root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
15,006 Commits 32 Branches 398 Tags 545 MiB
Commit Graph

943 Commits

Author SHA1 Message Date
Andy Polyakov 7b4a4b71b5 Engage ecp_nistz256-armv4 module. 
Reviewed-by: Emilia Käsper <emilia@openssl.org>
 2015-02-11 20:36:55 +01:00
Andy Polyakov ea5f8411cd Configure: disable warning C4090 in Windows builds. 
Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-02-10 22:02:54 +01:00
Matt Caswell a8b4e057b3 Remove -DOPENSSL_NO_DEPRECATED from --strict-warnings flags. 
In master OPENSSL_NO_DEPRECATED is the default anyway. By including it in
--strict-warnings as well this means you cannot combine enable-deprecated
with --strict-warnings.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-02-10 14:32:29 +00:00
Andy Polyakov 79ee5afa26 Engage ecp_nistz256-x86 module. 
Reviewed-by: Emilia Käsper <emilia@openssl.org>
 2015-02-09 23:21:11 +01:00
Dr. Stephen Henson a479d72dba fix windows build 
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-02-04 22:51:01 +00:00
Dr. Stephen Henson 5496cd3e5d More unused FIPS module code. 
Remove fips_algvs.c

Remove unused fips module build code from Configure and Makefile.org
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-02-04 18:54:36 +00:00
Ben Laurie 4de8385796 Build correctly for me on FreeBSD 10. 
Reviewed-by: Rich Salz

Don't debug.
 2015-01-30 22:23:17 +00:00
Andy Polyakov 2a4af9478d Configure: addendum to OPENSSL_NO_[RMD160|RIPEMD] harmonization. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2015-01-27 12:23:42 +01:00
Rich Salz 68b00c2372 ifdef cleanup part 3: OPENSSL_SYSNAME 
Rename OPENSSL_SYSNAME_xxx to OPENSSL_SYS_xxx
Remove MS_STATIC; it's a relic from platforms <32 bits.

Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-01-23 11:58:26 -05:00
Andy Polyakov 9b05cbc33e Add assembly support to ios64-cross. 
Fix typos in ios64-cross config line.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-01-23 15:38:41 +01:00
Corinna Vinschen 732c5a6b92 Drop redundant and outdated __CYGWIN32__ tests. 
Change OPENSSL_SYSNAME_CYGWIN32 to OPENSSL_SYSNAME_CYGWIN.
Drop outdated Cygwin targets.

RT#3605
Signed-off-by: Corinna Vinschen <vinschen@redhat.com>
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2015-01-22 12:55:25 +01:00
Rich Salz fcf64ba0ac RT3548: Remove some unsupported platforms. 
This commit removes NCR, Tandem, Cray.
Regenerates TABLE.
Removes another missing BEOS fluff.
The last platform remaining on this ticket is WIN16.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-01-12 10:40:00 -05:00
Emilia Kasper cb2bc0543a Add a clang build target for linux-x86_64 
This change documents the world as-is, by turning all warnings on,
and then turning warnings that trigger off again.

Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2015-01-05 13:46:26 +01:00
Andy Polyakov c1669e1c20 Remove inconsistency in ARM support. 
This facilitates "universal" builds, ones that target multiple
architectures, e.g. ARMv5 through ARMv7. See commentary in
Configure for details.

Reviewed-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
 2015-01-04 23:45:08 +01:00
Rich Salz 32dfde1076 RT3548: Remove unsupported platforms 
This commit removes DG-UX.
It also flushes out some left-behinds in config.
And regenerates TABLE from Configure (hadn't been done in awhile).

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2014-12-28 01:17:52 -05:00
Rich Salz 6c23ca0cbb RT3548: unsupported platforms 
This commit removes Sinix/ReliantUNIX RM400
(And a missed piece of BEOS fluff)

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2014-12-25 16:16:29 -05:00
Rich Salz f231941444 RT3548: Remvoe unsupported platforms 
This commit removes SunOS (a sentimental favorite of mine).

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2014-12-21 23:18:02 -05:00
Matt Caswell c0fc27f88e Made it an error to define OPENSSL_USE_DEPRECATED if OpenSSL has been built 
with OPENSSL_NO_DEPRECATED defined

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2014-12-18 19:57:44 +00:00
Matt Caswell 07c4c14c47 Turn on OPENSSL_NO_DEPRECATED by default. 
Also introduce OPENSSL_USE_DEPRECATED. If OPENSSL_NO_DEPRECATED is
defined at config stage then OPENSSL_USE_DEPRECATED has no effect -
deprecated functions are not available.
If OPENSSL_NO_DEPRECATED is not defined at config stage then
applications must define OPENSSL_USE_DEPRECATED in order to access
deprecated functions.
Also introduce compiler warnings for gcc for applications using
deprecated functions

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2014-12-18 19:56:31 +00:00
Rich Salz 59ff1ce061 RT3548: Remove some obsolete platforms 
This commit removes Sony NEWS4

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2014-12-18 14:17:33 -05:00
Dr. Stephen Henson 78c990c156 Remove fipscanister from Configure, delete fips directory 
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2014-12-08 13:18:43 +00:00
Kurt Roeckx 45f55f6a5b Remove SSLv2 support 
The only support for SSLv2 left is receiving a SSLv2 compatible client hello.

Reviewed-by: Richard Levitte <levitte@openssl.org>
 2014-12-04 11:55:03 +01:00
Dr. Stephen Henson 3881d8106d New option no-ssl3-method which removes SSLv3_*method 
When no-ssl3 is set only make SSLv3 disabled by default. Retain -ssl3
options for s_client/s_server/ssltest.

When no-ssl3-method is set SSLv3_*method() is removed and all -ssl3
options.

We should document this somewhere, e.g. wiki, FAQ or manual page.
Reviewed-by: Emilia Käsper <emilia@openssl.org>
 2014-11-19 18:11:37 +00:00
Mike Bland a4b8457db9 {,darwin64-}debug-test-64-clang Configure targets 
These are based on debug-ben-debug-64-clang and is intended to produce
consistent settings for folks involved in the unit testing effort detailed at:

http://wiki.openssl.org/index.php/Unit_Testing

-fsanitize has been removed from the set of clang flags for now. Apparently
clang 3.1, which ships with FreeBSD 9.1, completely ignores -fsanitize. Clang
3.3, which ships with FreeBSD 9.2, compiles with it, but fails to link due to
the absence of libasan:

http://lists.freebsd.org/pipermail/freebsd-hackers/2013-December/043995.html
https://www.mail-archive.com/cfe-commits@cs.uiuc.edu/msg92260.html
http://reviews.llvm.org/D2644

We need -Wno-error=unused-const-variable because of this error:
.../crypto/ec/ec_lib.c:74:19: error: unused variable 'EC_version' [-Werror,-Wunused-const-variable]
static const char EC_version[] = "EC" OPENSSL_VERSION_PTEXT;

Change-Id: I2cba53537137186114c083049ea1233550a741f9
Signed-off-by: Mike Bland <mbland@acm.org>
Signed-off-by: Geoff Thorpe <geoff@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2014-11-16 16:44:37 -05:00
Andy Polyakov b06f7d9ac0 Configure: add ios64 target. 
Reviewed-by: Steve Marquess <marquess@openssl.org>
 2014-10-23 16:04:01 +02:00
Rich Salz 008bef521c RT3544: Must update TABLE after Configure change 
Also add comment to Configure reminding people to do that.

Reviewed-by: Andy Polyakov <appro@openssl.org>
 2014-09-25 13:18:22 -04:00
Rich Salz 92c7846372 RT3544: Remove MWERKS support 
The following #ifdef tests were all removed:
	__MWERKS__
	MAC_OS_pre_X
	MAC_OS_GUSI_SOURCE
	MAC_OS_pre_X
	OPENSSL_SYS_MACINTOSH_CLASSIC
	OPENSSL_SYS_MACOSX_RHAPSODY

Reviewed-by: Andy Polyakov <appro@openssl.org>
 2014-09-24 18:07:29 -04:00
Andy Polyakov 847147908b Configure: engage ECP_NISTZ256. 
RT: 3149

Reviewed-by: Rich Salz <rsalz@openssl.org>
 2014-09-12 00:38:57 +02:00
Andy Polyakov 6019cdd327 Configure: add configuration for crypto/ec/asm extensions. 
Reviewed-by: Rich Salz <rsalz@openssl.org>
 2014-08-30 19:22:51 +02:00
Rich Salz 17e80c6bd0 RT2308: Add extern "C" { ... } wrapper 
Add the wrapper to all public header files (Configure
generates one).  Don't bother for those that are just
lists of #define's that do renaming.

Reviewed-by: Tim Hudson <tjh@openssl.org>
 2014-08-27 21:35:32 -04:00
nnposter@users.sourceforge.net cde8ad1a28 PR 719: Configure not exiting with child status 
If subcommand fails, just die.
Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
 2014-08-12 14:45:49 -04:00
Bodo Moeller a46149c672 Update $default_depflags to match current defaults. 2014-08-01 19:02:10 +02:00
Dr. Stephen Henson e0fc7961c4 Add conditional unit testing interface. 
Don't call internal functions directly call them through
SSL_test_functions(). This also makes unit testing work on
Windows and platforms that don't export internal functions
from shared libraries.

By default unit testing is not enabled: it requires the compile
time option "enable-unit-test".
Reviewed-by: Geoff Thorpe <geoff@openssl.org>
 2014-07-24 19:41:29 +01:00
Andy Polyakov 0e716d9207 Engage GHASH for PowerISA 2.0.7. 
[and split ppccap.c to ppccap.c and ppc_arch.h]

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
 2014-07-20 14:16:31 +02:00
Andy Polyakov 6cd13f70bb Revert "Engage GHASH for PowerISA 2.07." 
This reverts commit 14aaf883d9.
 2014-07-16 13:37:37 +02:00
Andy Polyakov 14aaf883d9 Engage GHASH for PowerISA 2.07. 2014-07-16 08:03:34 +02:00
Andy Polyakov cd1922cde0 Engage SHA256/512 for PowerISA 2.07. 2014-07-01 19:09:11 +02:00
Andy Polyakov 77a27a5066 Enable multi-block support by default. 2014-06-11 20:40:51 +02:00
Andy Polyakov 82741e9c89 Engage GHASH for ARMv8. 2014-06-06 20:48:35 +02:00
Andy Polyakov de51e830a6 Engage POWER8 AES support. 2014-06-01 23:38:11 +02:00
Andy Polyakov ddacb8f27b Engage ARMv8 AES support. 2014-06-01 22:20:37 +02:00
Andy Polyakov f8aab6174c linux-aarch64: engage SHA modules. 2014-06-01 18:03:51 +02:00
Andy Polyakov e8d93e342b Add linux-aarch64 taget. 
armcap.c is shared between 32- and 64-bit builds and features link-time
detection of getauxval.

Submitted by: Ard Biesheuvel.
 2014-06-01 17:21:06 +02:00
Felix Laurie von Massenbach fce0ba5fcd Strip trailing whitespace from Configure. 2014-06-01 15:31:26 +01:00
Felix Laurie von Massenbach d7f200779c Add a new target to Configure for me. 2014-06-01 15:31:26 +01:00
Andy Polyakov 496f2b148b C64x+ assembply pack: add RC4 module. 2014-05-04 16:39:59 +02:00
Ben Laurie 9cabf6bb80 More warnings. 2014-04-29 18:19:54 +01:00
Dr. Stephen Henson ab0f880433 Remove -WX option from debug-VC-WIN32 
(cherry picked from commit 7a3e67f029969620966b8a627b8485d83692cca5)
 2014-03-07 19:07:52 +00:00
Andy Polyakov 4ca026560a Configure: mark unixware target as elf-1. 2014-02-27 14:27:15 +01:00
Andy Polyakov 7bb9d84e35 Configure: blended processor target in solaris-x86-cc. 2014-02-26 09:28:22 +01:00
Andy Polyakov 1fb83a3bc2 aes/asm/vpaes-ppc.pl: add little-endian support. 2014-01-07 16:48:04 +01:00
Andy Polyakov 128e1d101b PPC assembly pack: improve AIX support (enable vpaes-ppc). 2013-12-18 21:19:08 +01:00
Andy Polyakov 34b1008c93 Configure: remove vpaes-ppc from aix targets. 
AIX assembler doesn't hanle .align, which is essential for vpaes module.
 2013-12-04 21:45:20 +01:00
Andy Polyakov 07f3e4f3f9 Take vpaes-ppc module into loop. 2013-11-27 22:39:13 +01:00
Andy Polyakov f1982acc12 Configure: add linux-ppc64le target. 
Submitted by: Marcelo Cerri
 2013-11-12 22:36:24 +01:00
Ben Laurie b39d4768e6 Add clang debug target. 2013-10-20 13:10:25 +01:00
Andy Polyakov 2d752737c5 Configure: recognize experimental-multiblock. 2013-10-08 23:41:31 +02:00
Andy Polyakov 6bcb68da41 Configire: take multi-block modules into build loop. 2013-10-03 00:21:10 +02:00
Bodo Moeller ca567a03ad Fix overly lenient comparisons: 
- EC_GROUP_cmp shouldn't consider curves equal just because
      the curve name is the same. (They really *should* be the same
      in this case, but there's an EC_GROUP_set_curve_name API,
      which could be misused.)

    - EC_POINT_cmp shouldn't return 0 for ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED
      or EC_R_INCOMPATIBLE_OBJECTS errors because in a cmp API, 0 indicates
      equality (not an error).

    Reported by: king cope
 2013-09-16 12:59:21 +02:00
Andy Polyakov b3ef742cbb Add support for Cygwin-x86_64. 
PR: 3110
Submitted by Corinna Vinschen.
 2013-09-15 22:01:23 +02:00
Scott Deboy 36086186a9 Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions) 
Removed prior audit proof logic - audit proof support was implemented using the generic TLS extension API
Tests exercising the new supplemental data registration and callback api can be found in ssltest.c.
Implemented changes to s_server and s_client to exercise supplemental data callbacks via the -auth argument, as well as additional flags to exercise supplemental data being sent only during renegotiation.
 2013-09-06 13:59:13 +01:00
Veres Lajos 478b50cf67 misspellings fixes by https://github.com/vlajos/misspell_fixer 2013-09-05 21:39:42 +01:00
Ben Laurie a108f841ba Add a no-opt 64-bit target. 2013-07-22 15:28:20 +01:00
Andy Polyakov f5b132d652 Remove RSAX engine, superseded by RSAZ module. 2013-07-05 22:11:28 +02:00
Andy Polyakov ca48ace5c5 Take RSAZ modules into build loop, add glue and engage. 
RT: 2582, 2850
 2013-07-05 21:39:47 +02:00
Andy Polyakov 8a97a33063 Add AES-SHA256 stitch. 2013-05-13 22:49:58 +02:00
Andy Polyakov 75fe422323 bsaes-armv7.pl: take it into build loop. 2013-04-23 17:49:54 +02:00
Andy Polyakov c5d975a743 Add support for SPARC T4 DES opcode. 2013-03-31 14:32:05 +02:00
Andy Polyakov 4e049c5259 Add AES-NI GCM stitch. 2013-03-29 20:45:33 +01:00
Andy Polyakov 058843bd0f Configure: update linux-mips* lines. 2013-01-22 21:20:34 +01:00
Ben Laurie 6f0a93b069 Merge branch 'master' of openssl.net:openssl 2013-01-19 17:35:41 +00:00
Ben Laurie ed60d9ded0 Remove kludge to use RC4 asm. 2013-01-19 17:31:46 +00:00
Ben Laurie e721909d7f Build/test cleanly on MacOS. 2013-01-19 17:24:40 +00:00
Andy Polyakov d4571f43e8 sha512-ppc.pl: add PPC32 code, >2x improvement on in-order cores. 2013-01-19 17:22:05 +01:00
Ben Laurie a6bbbf2ff5 Make "make depend" work on MacOS out of the box. 2013-01-19 14:14:30 +00:00
Ben Laurie e7cf2b1022 Improve my 64-bit debug target. 2012-12-12 14:14:43 +00:00
Andy Polyakov 904732f68b C64x+ assembly pack: improve EABI support. 2012-11-28 13:19:10 +00:00
Andy Polyakov cf5ecc3e1f Update support for Intel compiler: add linux-x86_64-icc and fix problems. 2012-11-28 13:05:13 +00:00
Andy Polyakov 68c06bf6b2 Support for SPARC T4 MONT[MUL|SQR] instructions. 
Submitted by: David Miller, Andy Polyakov
 2012-11-17 10:34:11 +00:00
Ben Laurie 5b0e3daf50 Remove unused static function. 2012-11-05 02:01:07 +00:00
Andy Polyakov 0c832ec5c6 Add VIS3-capable sparcv9-gf2m module. 2012-10-20 15:59:14 +00:00
Andy Polyakov 947d78275b Add VIS3 Montgomery multiplication. 2012-10-20 09:13:21 +00:00
Andy Polyakov 3bc522a246 aix[64]-cc: get MT support right (gcc targets are not affected). 2012-10-16 08:06:51 +00:00
Andy Polyakov 4739ccdb39 Add SPARC T4 Camellia support. 
Submitted by: David Miller
 2012-10-11 18:35:18 +00:00
Andy Polyakov c5f6da54fc Add SPARC T4 AES support. 
Submitted by: David Miller
 2012-10-06 18:08:09 +00:00
Richard Levitte c9d3ec6943 * Configure: make the debug-levitte-linux{elf,noasm} less extreme. 2012-09-24 18:48:37 +00:00
Andy Polyakov e98c526b68 Add md5-sparcv9.pl. 2012-09-23 20:39:53 +00:00
Andy Polyakov 800a4a707d Configure: allow for compiler options starting with double dash. 2012-09-18 12:54:35 +00:00
Andy Polyakov 63d8834c26 Configure: add MIPS targets. 2012-09-15 11:21:50 +00:00
Andy Polyakov be0d31b166 Add linux-x32 target. 2012-08-29 14:08:46 +00:00
Dr. Stephen Henson 093050b660 update debug-steve* configurations 2012-08-28 23:06:12 +00:00
Andy Polyakov 9a10ea3fc0 Configure: add mips-mont to MIPS32 builds. 2012-08-17 09:38:45 +00:00
Andy Polyakov cb726fe8d4 ./Configure: libcrypto.a can grow to many GB because of ar bug. 
PR: 2838
 2012-08-13 16:10:08 +00:00
Dr. Stephen Henson 93ab9e421e Initial record tracing code. Print out all fields in SSL/TLS records 
for debugging purposes. Needs "enable-ssl-trace" configuration option.
 2012-06-15 12:46:09 +00:00
Ben Laurie 7a412ded50 Padlock doesn't build. I don't even know what it is. 2012-05-10 20:28:02 +00:00
Andy Polyakov 3e181369dd C64x+ assembler pack. linux-c64xplus build is *not* tested nor can it be 
tested, because kernel is not in shape to handle it *yet*. The code is
committed mostly to stimulate the kernel development.
 2012-04-18 13:01:36 +00:00
Andy Polyakov ce0ed3b778 Configure: make no-whirlpool work. 2012-03-03 13:17:47 +00:00
Andy Polyakov f7ef20c5ee Configure: I remove adding of -D_XPG4_2 -D__EXTENSIONS__ in sctp builds for 
following reasons:

- it's not the way to engage XPG4v2 mode, defining _XOPEN_SOURCE to
  value less than 500 is (see standards(5));
- we need to work out strategy to handle _XOPEN_SOURCE, current state
  when we define e.g. _XOPEN_SOURCE to 500 in some files is inappropriate;
- sctp implementation on Solaris is incomplete, in sense that bss_dgram.c
  doesn't compile, because not all structures are defined, so that
  enabling sctp doesn't work anyway;
 2012-02-26 22:02:59 +00:00
Andy Polyakov faed798c32 hpux-parisc2-*: engage assembler. 2012-02-02 07:41:29 +00:00
Dr. Stephen Henson e2ca32fc2b disable heartbeats if tlsext disabled 2012-01-05 00:07:46 +00:00
Dr. Stephen Henson fa2c72e549 update default depflags 2011-12-27 14:45:32 +00:00
Dr. Stephen Henson 7e159e0133 PR: 2535 
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Add SCTP support for DTLS (RFC 6083).
 2011-12-25 14:45:15 +00:00
Dr. Stephen Henson ad89bf7894 PR: 2563 
Submitted by: Paul Green <Paul.Green@stratus.com>
Reviewed by: steve

Improved PRNG seeding for VOS.
 2011-12-19 17:01:37 +00:00
Andy Polyakov dce7f142a6 Configure: reimplement commit#21695. 2011-11-15 12:32:18 +00:00
Andy Polyakov 77aae9654f Configure, e_aes.c: allow for XTS assembler implementation. 2011-11-15 12:18:40 +00:00
Ben Laurie ae55176091 Fix some warnings caused by __owur. Temporarily (I hope) remove the more 
aspirational __owur annotations.
 2011-11-14 00:36:10 +00:00
Andy Polyakov 4a5397fb68 Configure, x86gas.pl: fix linker warnings in 32-bit Darwin build. 2011-11-12 12:16:11 +00:00
Andy Polyakov 3f54a7460c Configure: harmonize darwin64-x86_64-cc line with assembler pack. 2011-11-08 18:32:07 +00:00
Andy Polyakov a2570242a9 Configure: initial support for iOS. 2011-11-08 13:02:57 +00:00
Andy Polyakov f6666ad19d Configure: allow ./config to pass compiler flags with white spaces. 2011-11-08 12:45:00 +00:00
Dr. Stephen Henson 5e4eb9954b add authentication parameter to FIPS_module_mode_set 2011-10-19 22:34:53 +00:00
Andy Polyakov 227a822ab6 vxworks-mips: unify and add assembler. 2011-10-19 21:49:20 +00:00
Bodo Möller 7d8bb91233 Fix indentation 2011-10-19 09:24:22 +00:00
Bodo Möller e0d6132b8c Fix warnings. 
Also, use the common Configure mechanism for enabling/disabling the 64-bit ECC code.
 2011-10-19 08:59:53 +00:00
Dr. Stephen Henson 1db4a63bc3 Do global replace to remove assembly language object files. 2011-10-18 00:02:42 +00:00
Andy Polyakov 993adc0531 Engage bsaes-x86_64.pl, bit-sliced AES. 2011-10-17 17:10:54 +00:00
Andy Polyakov 8fcdb1e60f Add android-x86. 2011-10-15 08:32:16 +00:00
Dr. Stephen Henson 1fb2e0f940 Allow override of GCCVER and noexecstack checking from environment. 
Vxworks support.
 2011-10-14 17:28:10 +00:00
Dr. Stephen Henson b63698b70d Don't use vpaes in fips builds and exclude from restricted tarball. 2011-09-15 21:06:37 +00:00
Andy Polyakov 8ca28da0a7 Integrate Vector Permutation AES into build system. 2011-09-15 20:22:59 +00:00
Dr. Stephen Henson d47d0d2b0d Remove fipsdso target: it isn't supported in the 2.0 module. 2011-09-14 15:20:59 +00:00
Andy Polyakov ed28aef8b4 Padlock engine: make it independent of inline assembler. 2011-09-06 20:45:36 +00:00
Bodo Möller 03a64ef56d Fix expected DEFFLAG for default config. 2011-09-05 09:43:44 +00:00
Dr. Stephen Henson edd4d402c6 Don't use some object files in FIPS build. 2011-08-23 23:35:30 +00:00
Andy Polyakov c608171d9c Add RC4-MD5 and AESNI-SHA1 "stitched" implementations. 2011-08-23 20:51:38 +00:00
Andy Polyakov 361512da0d This commit completes recent modular exponentiation optimizations on 
x86_64 platform. It targets specifically RSA1024 sign (using ideas
from http://eprint.iacr.org/2011/239) and adds more than 10% on most
platforms. Overall performance improvement relative to 1.0.0 is ~40%
in average, with best result of 54% on Westmere. Incidentally ~40%
is average improvement even for longer key lengths.
 2011-08-12 16:44:32 +00:00
Dr. Stephen Henson 1d5121552d Make sure OPENSSL_FIPSCANISTER is visible to ARM assembly language files. 2011-07-22 14:20:50 +00:00
Andy Polyakov be9a8cc2af Add RSAX builtin engine. It optimizes RSA1024 sign benchmark. 2011-07-20 21:49:46 +00:00
Andy Polyakov 87873f4328 ARM assembler pack: add platform run-time detection. 2011-07-17 17:40:29 +00:00
Andy Polyakov 12b1b9a4fa Configure: clean up linux32-s390x line. 2011-06-27 10:53:27 +00:00
Andy Polyakov 0c237e42a4 s390x assembler pack: add s390x-gf2m.pl and harmonize AES_xts_[en|de]crypt. 2011-06-27 10:00:31 +00:00
Dr. Stephen Henson ce02589259 Now the FIPS capable OpenSSL is available simplify the various FIPS test 
build options.

All fispcanisterbuild builds only build fipscanister.o and include symbol
renaming.

Move all renamed symbols to fipssyms.h

Update README.FIPS
 2011-06-22 12:30:18 +00:00
Dr. Stephen Henson b234848879 Option "fipscheck" which checks to see if FIPS is autodetected in 
a build. Use this for WIN32 builds.
 2011-06-16 16:27:36 +00:00
Dr. Stephen Henson a1a8a71cf7 Install FIPS module in FIPSDIR if set. 2011-06-09 21:52:44 +00:00
Andy Polyakov afebe623c5 x86_64 assembler pack: add x86_64-gf2m module. 2011-05-16 17:46:45 +00:00
Dr. Stephen Henson 03bc500a9f Remove gf2m modules from bn_asm if no-ec2m set. 2011-05-07 22:56:56 +00:00
Andy Polyakov 58cc21fdea x86 assembler pack: add bn_GF2m_mul_2x2 implementations (see x86-gf2m.pl for 
details and performance data).
 2011-05-07 10:31:06 +00:00
Dr. Stephen Henson 2677d85631 Don't fail WIN32 builds on warnings. 2011-05-06 17:55:59 +00:00
Andy Polyakov 925596f85b ARM assembler pack: engage newly introduced armv4-gf2m module. 2011-05-05 21:57:11 +00:00
Dr. Stephen Henson 614dd926cb Remove debugging print. 
Explicitly use LINKDIRS for fipsdist links.
 2011-05-04 18:33:42 +00:00
Dr. Stephen Henson 2f6efd6acb Some changes to support VxWorks in the validted module. 2011-05-01 15:36:54 +00:00
Dr. Stephen Henson 4fd7256b77 Use correct version number. 2011-04-11 14:55:19 +00:00
Dr. Stephen Henson f9bf6314ea Don't give dependency warning for fips builds. 
Give error for "make depend" in restricted tarball builds.

Document how restricted tarballs work.
 2011-04-11 00:22:42 +00:00
Dr. Stephen Henson 284e2d2b37 fix fipscanisteronly autodetect 2011-04-10 23:28:24 +00:00
Dr. Stephen Henson 4582626544 Auto detect no-ec2m add option to make no-ec2m tarball. 2011-04-10 18:30:13 +00:00
Dr. Stephen Henson ccc5784e37 set OPENSSL_FIPSSYMS for restricted buils and auto detect no-ec2m 2011-04-10 17:31:03 +00:00
Dr. Stephen Henson c105c96bac Auto configure for fips is from restricted tarball. 
Remove more unnecessary files form fips tarball.
 2011-04-10 16:18:19 +00:00
Andy Polyakov 1e86318091 ARM assembler pack: profiler-assisted optimizations and NEON support. 2011-04-01 20:58:34 +00:00
Dr. Stephen Henson 8e51aef611 Typo. 2011-03-25 12:00:16 +00:00
Richard Levitte 30fafdebf3 * Configure, crypto/ec/ec.h, crypto/ec/ecp_nistp224.c, util/mkdef.pl: 
Have EC_NISTP224_64_GCC_128 treated like any algorithm, and have
  disabled by default.  If we don't do it this way, it screws up
  libeay.num.
* util/libeay.num: make update
 2011-03-25 09:29:46 +00:00