Commits · 1f2502eb58db6ba4cbdb96292f626fd0a7183a93 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Feb 07, 2011
- gcm128.c: add boundary condition checks. · 1f2502eb
  Andy Polyakov authored Feb 07, 2011
  
  1f2502eb
- Initial *very* experimental EVP support for AES-GCM. Note: probably very · bdaa5415
  Dr. Stephen Henson authored Feb 07, 2011
```
broken and subject to change.
```
  bdaa5415
- Add CRYPTO_gcm128_tag() function to retrieve the tag. · fd3dbc1d
  Dr. Stephen Henson authored Feb 07, 2011
  
  fd3dbc1d
- Use 0 not -1 (since type is size_t) for finalisation argument to do_cipher: · d45087c6
  Dr. Stephen Henson authored Feb 07, 2011
```
the NULL value for the input buffer is sufficient to notice this case.
```
  d45087c6
- Typo. · 634b6618
  Dr. Stephen Henson authored Feb 07, 2011
  
  634b6618
- New flags EVP_CIPH_FLAG_CUSTOM_CIPHER in cipher structures if an underlying · 3da0ca79
  Dr. Stephen Henson authored Feb 07, 2011
```
cipher handles all cipher symantics itself.
```
  3da0ca79
- Fix memory leak. · f9678b8b
  Dr. Stephen Henson authored Feb 07, 2011
  
  f9678b8b
- Use default ASN1 if flag set. · 83e9c362
  Dr. Stephen Henson authored Feb 07, 2011
  
  83e9c362
Feb 06, 2011
- gcm128.c: allow multiple calls to CRYPTO_gcm128_aad. · b68c1315
  Andy Polyakov authored Feb 06, 2011
  
  b68c1315
- gcm128.c: fix bug in OPENSSL_SMALL_FOOTPRINT decrypt. · 68e2586b
  Andy Polyakov authored Feb 06, 2011
```
PR: 2432
Submitted by: Michael Heyman
```
  68e2586b
- Fix duplicate code and typo. · 61f477f4
  Dr. Stephen Henson authored Feb 06, 2011
  
  61f477f4
Feb 04, 2011
- Remove unneeded functions, make some functions and variables static. · 7e951160
  Dr. Stephen Henson authored Feb 04, 2011
  
  7e951160
Feb 03, 2011
- Add FIPS support to the WIN32 build system. · 06b433ac
  Dr. Stephen Henson authored Feb 03, 2011
  
  06b433ac
- Transfer error redirection to fips.h, add OPENSSL_FIPSAPI to source files · 14ae26f2
  Dr. Stephen Henson authored Feb 03, 2011
```
that use it.
```
  14ae26f2
- Rename crypto/fips_err.c to fips_ers.c to avoid clash with other fips_err.c · 3710d1aa
  Dr. Stephen Henson authored Feb 03, 2011
  
  3710d1aa
- Include fips header file in err_all.c if needed. · cc5c772a
  Dr. Stephen Henson authored Feb 03, 2011
  
  cc5c772a
- Add FIPS error codes. · 65041aa2
  Dr. Stephen Henson authored Feb 03, 2011
  
  65041aa2
- add -stripcr option to copy.pl from 0.9.8 · 7dbbd4b3
  Dr. Stephen Henson authored Feb 03, 2011
  
  7dbbd4b3
- Add Windows FIPS build utilities. · 544c84b7
  Dr. Stephen Henson authored Feb 03, 2011
  
  544c84b7
- For now disable EC_GFp_nistp224_method() for WIN32 so the WIN32 build · 65847ca3
  Dr. Stephen Henson authored Feb 03, 2011
```
completes without linker errors.
```
  65847ca3
- Add FIPS support to mkdef.pl script, update ordinals. · 53f76337
  Dr. Stephen Henson authored Feb 03, 2011
  
  53f76337
- Use single X931 key generation source file for FIPS and non-FIPS builds. · c2a45931
  Dr. Stephen Henson authored Feb 03, 2011
  
  c2a45931
- Assorted bugfixes: · e2b798c8
  Bodo Möller authored Feb 03, 2011
```
- safestack macro changes for C++ were incomplete
- RLE decompression boundary case
- SSL 2.0 key arg length check

Submitted by: Google (Adam Langley, Neel Mehta, Bodo Moeller)
```
  e2b798c8
- fix omissions · 9bda7458
  Bodo Möller authored Feb 03, 2011
  
  9bda7458
- CVE-2010-4180 fix (from OpenSSL_1_0_0-stable) · 88f2a4cf
  Bodo Möller authored Feb 03, 2011
  
  88f2a4cf
- make update · 9d0397e9
  Bodo Möller authored Feb 03, 2011
  
  9d0397e9
- Fix error codes. · 2440d8b1
  Bodo Möller authored Feb 03, 2011
  
  2440d8b1
Feb 02, 2011
- Cope with new DSA2 file format where some p/q only tests are made. · ee988465
  Dr. Stephen Henson authored Feb 02, 2011
  
  ee988465
- Fix target config errors. · 5f885f1e
  Dr. Stephen Henson authored Feb 02, 2011
  
  5f885f1e
- Make no-asm work in fips mode. Add android platform. · 7a4ec19a
  Dr. Stephen Henson authored Feb 02, 2011
  
  7a4ec19a
- Add sign/verify digest API to handle an explicit digest instead of finalising · a5b196a2
  Dr. Stephen Henson authored Feb 02, 2011
```
a context.
```
  a5b196a2
- Remove DSA parameter generation from DSA selftest. It is unnecessary and · b6104f9a
  Dr. Stephen Henson authored Feb 02, 2011
```
can be very slow on embedded platforms. Hard code DSA parameters instead.
```
  b6104f9a
Feb 01, 2011
- Don't try to set pmd if it is NULL. · 96d5997f
  Dr. Stephen Henson authored Feb 01, 2011
  
  96d5997f
- Add DSA2 support to final algorithm tests: keypair and keyver. · 92eb4c55
  Dr. Stephen Henson authored Feb 01, 2011
  
  92eb4c55
- Support more DSA2 tests. · 89f63d06
  Dr. Stephen Henson authored Feb 01, 2011
  
  89f63d06
- Tolerate mixed case and leading zeroes when comparing. · 2ecc1505
  Dr. Stephen Henson authored Feb 01, 2011
  
  2ecc1505
- fixes for DSA2 parameter generation · 3c2c4cc5
  Dr. Stephen Henson authored Feb 01, 2011
  
  3c2c4cc5
- update README.FIPS · 5eedacc9
  Dr. Stephen Henson authored Feb 01, 2011
  
  5eedacc9
- Since FIPS 186-3 specifies we use the leftmost bits of the digest · 7f64c265
  Dr. Stephen Henson authored Feb 01, 2011
```
we shouldn't reject digest lengths larger than SHA256: the FIPS
algorithm tests include SHA384 and SHA512 tests.
```
  7f64c265
Jan 31, 2011
- Provisional, experimental support for DSA2 parameter generation algorithm. · 3dd9b31d
  Dr. Stephen Henson authored Jan 31, 2011
```
Not properly integrated or tested yet.
```
  3dd9b31d