openssl - Mirror of https://github.com/openssl/openssl

Age	Commit message (Collapse)	Author
2019-10-09	Explicitly test against NULL; do not use !p or similar	Rich Salz
	Also added blanks lines after declarations in a couple of places. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9916)
2019-09-28	Reorganize local header files	Dr. Matthias St. Pierre
	Apart from public and internal header files, there is a third type called local header files, which are located next to source files in the source directory. Currently, they have different suffixes like '_lcl.h', '_local.h', or '_int.h' This commit changes the different suffixes to '_local.h' uniformly. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9333)
2019-07-15	Make sure all BIGNUM operations work within the FIPS provider	Matt Caswell
	The FIPS provider does not have a default OPENSSL_CTX so, where necessary, we need to ensure we can always access an explicit OPENSSL_CTX. We remove functions from the FIPS provider that use the default OPENSSL_CTX, and fixup some places which were using those removed functions. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9310)
2018-12-06	Following the license change, modify the boilerplates in crypto/bn/	Richard Levitte
	[skip ci] Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/7777)
2018-05-29	Update copyright year	Matt Caswell
	Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6371)
2018-05-17	Make BN_GF2m_mod_arr more constant time	Matt Caswell
	Experiments have shown that the lookup table used by BN_GF2m_mod_arr introduces sufficient timing signal to recover the private key for an attacker with access to cache timing information on the victim's host. This only affects binary curves (which are less frequently used). No CVE is considered necessary for this issue. The fix is to replace the lookup table with an on-the-fly calculation of the value from the table instead, which can be performed in constant time. Thanks to Youngjoo Shin for reporting this issue. Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6270)
2018-05-09	Add blinding in BN_GF2m_mod_inv for binary field inversions	Billy Brumley
	Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Andy Polyakov <appro@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6070)
2017-10-18	Remove parentheses of return.	KaoruToda
	Since return is inconsistent, I removed unnecessary parentheses and unified them. Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/4541)
2017-08-03	Add RAND_priv_bytes() for private keys	Rich Salz
	Add a new global DRBG for private keys used by RAND_priv_bytes. Add BN_priv_rand() and BN_priv_rand_range() which use RAND_priv_bytes(). Change callers to use the appropriate BN_priv... function. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/4076)
2017-06-26	Change to check last return value of BN_CTX_get	Paul Yang
	To make it consistent in the code base Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de> (Merged from https://github.com/openssl/openssl/pull/3749)
2017-06-20	Modify Sun copyright to follow OpenSSL style	Rich Salz
	Approved by Oracle. Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de> (Merged from https://github.com/openssl/openssl/pull/3585)
2016-08-10	Change callers to use the new constants.	Rich Salz
	Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/1429)
2016-05-17	Copyright consolidation 06/10	Rich Salz
	Reviewed-by: Richard Levitte <levitte@openssl.org>
2016-01-26	Remove /* foo.c */ comments	Rich Salz
	This was done by the following find . -name '.[ch]' \| /tmp/pl where /tmp/pl is the following three-line script: print unless $. == 1 && m@/\ .\.[ch] \/@; close ARGV if eof; # Close file to reset $. And then some hand-editing of other files. Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
2015-10-29	BN_GF2m_mod_inv(): check bn_wexpand return value	Pascal Cuoq
	Signed-off-by: Kurt Roeckx <kurt@roeckx.be> Reviewed-by: Rich Salz <rsalz@akamai.com> MR #1276, RT #4107
2015-10-23	Fix memory leaks and other mistakes on errors	Alessandro Ghedini
	Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-06-11	bn/bn_gf2m.c: avoid infinite loop wich malformed ECParamters.	Andy Polyakov
	CVE-2015-1788 Reviewed-by: Matt Caswell <matt@openssl.org>
2015-05-24	bn/bn_gf2m.c: appease STACK, unstable code detector.	Andy Polyakov
	RT#3852 Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-05-14	Identify and move common internal libcrypto header files	Richard Levitte
	There are header files in crypto/ that are used by a number of crypto/ submodules. Move those to crypto/include/internal and adapt the affected source code and Makefiles. The header files that got moved are: crypto/cryptolib.h crypto/md32_common.h Reviewed-by: Rich Salz <rsalz@openssl.org>
2015-05-04	Use safer sizeof variant in malloc	Rich Salz
	For a local variable: TYPE p; Allocations like this are "risky": p = OPENSSL_malloc(sizeof(TYPE)); if the type of p changes, and the malloc call isn't updated, you could get memory corruption. Instead do this: p = OPENSSL_malloc(sizeof(p)); Also fixed a few memset() calls that I noticed while doing this. Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-05-03	Add OSSL_NELEM macro.	Dr. Stephen Henson
	Add OSSL_NELEM macro to e_os.h to determine the number of elements in an array. Reviewed-by: Tim Hudson <tjh@openssl.org>
2015-05-01	free null cleanup finale	Rich Salz
	Don't check for NULL before calling OPENSSL_free Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-04-28	remove malloc casts	Rich Salz
	Following ANSI C rules, remove the casts from calls to OPENSSL_malloc and OPENSSL_realloc. Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-01-22	Run util/openssl-format-source -v -c .	Matt Caswell
	Reviewed-by: Tim Hudson <tjh@openssl.org>
2015-01-22	Further comment changes for reformat (master)	Matt Caswell
	Reviewed-by: Tim Hudson <tjh@openssl.org>
2014-12-08	remove OPENSSL_FIPSAPI	Dr. Stephen Henson
	Reviewed-by: Tim Hudson <tjh@openssl.org>
2014-12-08	Remove fips_constseg references.	Dr. Stephen Henson
	Reviewed-by: Tim Hudson <tjh@openssl.org>
2012-03-30	don't shadow	Dr. Stephen Henson

2012-03-29	bn/bn_gf2m.c: make new BN_GF2m_mod_inv work with BN_DEBUG_RAND.	Andy Polyakov

2011-12-13	Fix warning.	Ben Laurie

2011-10-13	Oops - ectest.c finds further problems beyond those exposed by bntext.c	Bodo Möller

2011-10-13	Avoid failed assertion in BN_DEBUG builds	Bodo Möller

2011-09-14	Allow for dynamic base in Win64 FIPS module.	Andy Polyakov

2011-09-05	crypto/bn/bn_gf2m.c: make it work with BN_DEBUG.	Andy Polyakov

2011-09-05	Fix d2i_SSL_SESSION.	Bodo Möller

2011-06-22	PR: 2540	Dr. Stephen Henson
	Submitted by: emmanuel.azencot@bull.net Reviewed by: steve Prevent infinite loop in BN_GF2m_mod_inv().
2011-05-05	ARM assembler pack: engage newly introduced armv4-gf2m module.	Andy Polyakov

2011-05-05	Fix warning of signed/unsigned comparison.	Dr. Stephen Henson

2011-05-04	bn_gf2m.c: optimized BN_GF2m_mod_inv delivers sometimes 2x of ECDSA sign.	Andy Polyakov
	Exact improvement coefficients vary from one benchmark and platform to another, e.g. it performs 70%-33% better on ARM, hereafter less for longer keys, and 100%-90% better on x86_64.
2011-02-14	Add ECDSA functionality to fips module. Initial very incomplete version	Dr. Stephen Henson
	of algorithm test program.
2011-02-12	New option to disable characteristic two fields in EC code.	Dr. Stephen Henson

2010-02-23	Always check bn_wexpend() return values for failure (CVE-2009-3245).	Bodo Möller
	(The CHANGES entry covers the change from PR #2111 as well, submitted by Martin Olsson.) Submitted by: Neel Mehta
2008-06-23	avoid potential infinite loop in final reduction round of BN_GF2m_mod_arr()	Bodo Möller
	Submitted by: Huang Ying Reviewed by: Douglas Stebila
2006-07-04	Unsigned vs signed comparison warning.	Andy Polyakov

2006-06-18	Change array representation of binary polynomials to make GF2m part of	Bodo Möller
	the BN library more generally useful. Submitted by: Douglas Stebila
2006-01-29	add additional checks + cleanup	Nils Larsch
	Submitted by: David Hartman <david_hartman@symantec.com>
2005-12-16	Eliminate warning induced by http://cvs.openssl.org/chngview?cn=14690 and	Andy Polyakov
	keep disclaiming narrower than 32-bit support.
2005-04-26	Fix various incorrect error function codes.	Bodo Möller
	("perl util/ck_errf.pl /.c //*.c" still reports many more.)
2004-07-06	Improve error handling if decompression of an ec point fails, and cleanup	Geoff Thorpe
	ec_curve.c (unify comments, etc). Submitted by: Nils Larsch Reviewed by: Bodo Moeller, Geoff Thorpe
2004-03-13	Convert openssl code not to assume the deprecated form of BN_zero().	Geoff Thorpe
	Remove certain redundant BN_zero() initialisations, because BN_CTX_get(), BN_init(), [etc] already initialise to zero. Correct error checking in bn_sqr.c, and be less wishy-wash about how/why the result's 'top' value is set (note also, 'max' is always > 0 at this point).