Commits · 5818a07a4fdae6cff28c625f947b409f21b34c53 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Jul 20, 2012
- update NEWS · 5818a07a
  Dr. Stephen Henson authored Jul 20, 2012
  
  5818a07a
- set ciphers to NULL before calling cert_cb · 050ce4ca
  Dr. Stephen Henson authored Jul 20, 2012
  
  050ce4ca
Jul 19, 2012
- stop warning · 8e2a06bf
  Dr. Stephen Henson authored Jul 19, 2012
  
  8e2a06bf
- add ssl_locl.h to err header files, rebuild ssl error strings · a1644902
  Dr. Stephen Henson authored Jul 19, 2012
  
  a1644902
- Don't ignore (\!) reference count in X509_STORE_free · bff9ce4d
  Dr. Stephen Henson authored Jul 19, 2012
  
  bff9ce4d
Jul 18, 2012
- New function ssl_set_client_disabled to set masks for any ciphersuites · b7bfe69b
  Dr. Stephen Henson authored Jul 18, 2012
```
that are disabled for this session (as opposed to always disabled by
configuration).
```
  b7bfe69b
- reinclude crypto.h: this is needed in HEAD only to get the __fips_constseg definition · 5180f57c
  Dr. Stephen Henson authored Jul 18, 2012
  
  5180f57c
- update trace messages · 63fe4ee1
  Dr. Stephen Henson authored Jul 18, 2012
  
  63fe4ee1
Jul 15, 2012
- sha1-[586|x86_64].pl: shave off one instruction from body_40_59, it's · 69f45c52
  Andy Polyakov authored Jul 15, 2012
```
2% less instructions in SIMD code paths, so 2% improvement in average:-)
```
  69f45c52
- mk1mf.pl: replace chop to make it work in mixture of perls for Windows. · 7bb98eee
  Andy Polyakov authored Jul 15, 2012
  
  7bb98eee
- test_aesni: harmonize with AES-NI support at EVP layer. · 79937921
  Andy Polyakov authored Jul 15, 2012
  
  79937921
- wp-x86_64.pl: ~10% performance improvement. · 701d593f
  Andy Polyakov authored Jul 15, 2012
  
  701d593f
- sha512-s390x.pl: lingering comment update. · ee923b4c
  Andy Polyakov authored Jul 15, 2012
  
  ee923b4c
- sha512-ia64.pl: 15-20% performance improvement. · 46a2b338
  Andy Polyakov authored Jul 15, 2012
  
  46a2b338
- sha256-armv4.pl: 4% performance improvement. · e09039c0
  Andy Polyakov authored Jul 15, 2012
  
  e09039c0
- sha1-s390x.pl: lingering comment update. · da3bd277
  Andy Polyakov authored Jul 15, 2012
  
  da3bd277
- rc5.h: stop wasting space on 64-bit platforms [breaks binary compatibility!]. · b046d706
  Andy Polyakov authored Jul 15, 2012
  
  b046d706
- wp-mmx.pl: ~10% performance improvement. · ae007d4d
  Andy Polyakov authored Jul 15, 2012
  
  ae007d4d
- sha512-586.pl: optimize SSE2 code path, +5-7% on most CPUs, +13% on AMD K8. · 660164a9
  Andy Polyakov authored Jul 15, 2012
  
  660164a9
- sha1-586.pl: let masm compile AVX code. · 367b1264
  Andy Polyakov authored Jul 15, 2012
  
  367b1264
- x86gas.pl: treat OPENSSL_ia32cap_P accordingly to .hidden status. · ac82e51f
  Andy Polyakov authored Jul 15, 2012
  
  ac82e51f
Jul 08, 2012

Add new ctrl to retrieve client certificate types, print out · 9f27b1ee

Dr. Stephen Henson authored Jul 08, 2012

details in s_client.

Also add ctrl to set client certificate types. If not used sensible values
will be included based on supported signature algorithms: for example if
we don't include any DSA signing algorithms the DSA certificate type is
omitted.

Fix restriction in old code where certificate types would be truncated
if it exceeded TLS_CT_NUMBER.

9f27b1ee

Jul 05, 2012
- Install srtp.h · 9fd603be
  Richard Levitte authored Jul 05, 2012
  
  9fd603be
- Add d1_srtp and t1_trce. · bec44866
  Richard Levitte authored Jul 05, 2012
  
  bec44866
- Add the missing modules for Camellia, as well as dh_rfc5114 and evp_cnf. · 5dbf4f42
  Richard Levitte authored Jul 05, 2012
  
  5dbf4f42
- Harmonise symhacks.h in this branch with lower versions. · c58de759
  Richard Levitte authored Jul 05, 2012
```
Add aliases for SSL_CTX_set_not_resumable_session_callback and
SSL_set_not_resumable_session_callback on top of that.
```
  c58de759
Jul 04, 2012
- add missing evp_cnf.c file · 44488723
  Dr. Stephen Henson authored Jul 04, 2012
  
  44488723
Jul 03, 2012
- PR: 2840 · ea1d8435
  Dr. Stephen Henson authored Jul 03, 2012
```
Reported by: David McCullough <david_mccullough@mcafee.com>

Restore fips configuration module from 0.9.8.
```
  ea1d8435
- Fix memory leak. · dd251659
  Dr. Stephen Henson authored Jul 03, 2012
```
Always perform nexproto callback argument initialisation in s_server
otherwise we use uninitialised data if -nocert is specified.
```
  dd251659
- cert_flags is unsigned · 657e29c1
  Dr. Stephen Henson authored Jul 03, 2012
  
  657e29c1
- add support for client certificate callbak, fix memory leak · 3208fc59
  Dr. Stephen Henson authored Jul 03, 2012
  
  3208fc59
- new function SSL_is_server to which returns 1 is the corresponding SSL context is for a server · 87adf1fa
  Dr. Stephen Henson authored Jul 03, 2012
  
  87adf1fa
- no need to check s->server as default_nid is never used for TLS 1.2 client authentication · 15a70fe5
  Dr. Stephen Henson authored Jul 03, 2012
  
  15a70fe5
- Separate client and server permitted signature algorithm support: by default · 3dbc46df
  Dr. Stephen Henson authored Jul 03, 2012
```
the permitted signature algorithms for server and client authentication
are the same but it is now possible to set different algorithms for client
authentication only.
```
  3dbc46df
Jul 02, 2012
- bn_nist.c: compensate for VC bug [with optimization off!]. · 32e03a30
  Andy Polyakov authored Jul 02, 2012
```
PR: 2837
```
  32e03a30
- crypto/bn/*.h: move PTR_SIZE_INT to private header. · 8d00f342
  Andy Polyakov authored Jul 02, 2012
  
  8d00f342
Jul 01, 2012
- remove unnecessary attempt to automatically call OPENSSL_init · df538201
  Dr. Stephen Henson authored Jul 01, 2012
  
  df538201
- Fix Win32 build. · c65c5d05
  Dr. Stephen Henson authored Jul 01, 2012
  
  c65c5d05
- recognise OPENSSL_NO_SSL_TRACE · 8fdb4f1a
  Dr. Stephen Henson authored Jul 01, 2012
  
  8fdb4f1a
- bss_dgram.c: fix typos in Windows code. · ae432028
  Andy Polyakov authored Jul 01, 2012
  
  ae432028