Skip to main content
swh:1:snp:dc2a5002442a00b1c0eda7c65d04ea7455e166cd
sort by:
RevisionAuthorDateMessageCommit Date
a0f8d28 Steve Marquess04 July 2015, 19:18:46 UTCAdd new iOS subdirectory Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Stephen Henson <steve@openssl.org>04 July 2015, 19:18:46 UTC
0f38e9c Andy Polyakov04 July 2015, 19:17:45 UTCAdd new VxWorks x86 platform Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Stephen Henson <steve@openssl.org>04 July 2015, 19:17:45 UTC
34f39b0 Andy Polyakov11 May 2015, 10:16:01 UTCutil/incore update that allows FINGERPRINT_premain-free build. As for complementary fips.c modification. Goal is to ensure that FIPS_signature does not end up in .bss segment, one guaranteed to be zeroed upon program start-up. One would expect explicitly initialized values to end up in .data segment, but it turned out that values explicitly initialized with zeros can end up in .bss. The modification does not affect program flow, because first byte was the only one of significance [to FINGERPRINT_premain]. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:48:08 UTC
6db8e3b Andy Polyakov11 May 2015, 10:04:12 UTCAdd support for Android 5, both 32- and 64-bit cases. Special note about additional -pie flag in android-armv7. The initial reason for adding it is that Android 5 refuses to execute non-PIE binaries. But what about older systems and previously validated platforms? It should be noted that flag is not used when compiling object code, fipscanister.o in this context, only when linking applications, *supplementary* fips_algvs used during validation procedure. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:47:55 UTC
50e2a0e Andy Polyakov11 May 2015, 09:56:30 UTCAdditional vxWorks target. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:47:43 UTC
3f137e6 Andy Polyakov11 May 2015, 09:55:19 UTCfipsalgtest.pl update. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:47:32 UTC
97fbb0c Andy Polyakov11 May 2015, 09:53:41 UTCConfigure: add ios-cross target with ARM assembly support. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:47:21 UTC
5837e90 Andy Polyakov11 May 2015, 09:50:29 UTCAdd iOS-specific armv4cpud.S module. Normally it would be generated from a perlasm module, but doing so would affect existing armv4cpuid.S, which in turn would formally void previously validated platforms. Hense separate module is generated. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:47:10 UTC
874faf2 Andy Polyakov11 May 2015, 09:43:55 UTCAdapt ARM assembly pack for iOS. This is achieved by filtering perlasm output through arm-xlate.pl. But note that it's done only if "flavour" argument is not 'void'. As 'void' is default value for other ARM targets, permasm output is not actually filtered on previously validated platforms. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:46:58 UTC
0b45df7 Andy Polyakov11 May 2015, 09:20:52 UTCcrypto/modes/modes_lcl.h: let STRICT_ALIGNMENT be on iOS. While ARMv7 in general is capable of unaligned access, not all instructions actually are. And trouble is that compiler doesn't seem to differentiate those capable and incapable of unaligned access. As result exceptions could be observed in xts128.c and ccm128.c modules. Contemporary Linux kernels handle such exceptions by performing requested operation and resuming execution as is if it succeeded. While on iOS exception is fatal. Correct solution is to let STRICT_ALIGNMENT be on all ARM platforms, but doing so is in formal conflict with FIPS maintenance policy. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:46:44 UTC
2bd3976 Andy Polyakov11 May 2015, 09:39:04 UTCAdd iOS-specific fips_algvs application. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:46:26 UTC
c6d1090 Andy Polyakov11 May 2015, 09:36:48 UTCConfigure: engage ARMv8 assembly pack in ios64-cross target. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:45:50 UTC
083ed53 Andy Polyakov11 May 2015, 09:34:56 UTCEngage ARMv8 assembly pack. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:45:07 UTC
b84813e Andy Polyakov11 May 2015, 09:18:04 UTCAdd ARMv8 assembly pack. Reviewed-by: Dr. Stephen Henson <steve@openssl.org>13 May 2015, 14:43:25 UTC
7447e65 Dr. Stephen Henson24 October 2014, 19:41:49 UTCsupport for iOS 7.x/ARMv8 Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Steve Marquess <marquess@openssl.org24 October 2014, 19:41:49 UTC
60cd2b7 Dr. Stephen Henson24 October 2014, 19:32:27 UTCUpdate fipsalgtest.pl to cope with changes in file names and format X9.31 tests need to look in files for '9.31' RSA-PSS tests may contain additonal text as well as "salt len: n". We now just look at the start of a filename for a match. Separate ECDSA2 test list. Reorder test to handle new formats: for example PQGVer for DSA2 can be detected based on file format but if this fails revert to PQGVER. For future debugging add a --debug-detect option which prints out more details of the test detection including the first few lines of each request file. Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Steve Marquess <marquess@openssl.org24 October 2014, 19:32:27 UTC
7fb7844 Dr. Stephen Henson11 July 2014, 18:12:21 UTCRemove Dual EC DRBG again... Dual EC DRBG removal now accepted for 2.0.8 onwards.11 July 2014, 18:14:15 UTC
005563b Dr. Stephen Henson12 May 2014, 17:38:41 UTCAdd linux-x86_64-cross target.12 May 2014, 17:38:41 UTC
3b43568 Dr. Stephen Henson12 May 2014, 17:35:30 UTCRevert "Remove Dual EC DRBG from FIPS module." Revert Dual EC DRBG removal commit as it was not accepted for 2.0.7 version of the module. This reverts commit 200f249b8c3b6439e0200d01caadc24806f1a983.12 May 2014, 17:35:30 UTC
2659a2a Dr. Stephen Henson16 December 2013, 21:41:07 UTCQNX6-armv4 support.16 December 2013, 21:41:07 UTC
200f249 Dr. Stephen Henson09 December 2013, 21:54:50 UTCRemove Dual EC DRBG from FIPS module.16 December 2013, 19:00:58 UTC
4089bd6 Dr. Stephen Henson16 December 2013, 14:29:20 UTCeCos ARMv4/5 support16 December 2013, 14:29:20 UTC
baab0cf Andy Polyakov17 August 2012, 19:57:04 UTCsha1-armv4-large.pl: comply with ABI. (cherry picked from commit 1a9d60d2e3b02d5e1954fc71c92bf3a6af691495)16 December 2013, 14:08:56 UTC
7e98d95 Dr. Stephen Henson16 October 2012, 22:46:08 UTCDon't require tag before ciphertext in AESGCM mode (cherry picked from commit 964eaad78ccdc6c4537664924e6082b08cc1c8ee)16 December 2013, 14:08:30 UTC
b0ee17a Dr. Stephen Henson16 December 2013, 14:07:18 UTCAdd MIPS support.16 December 2013, 14:07:18 UTC
4f6c4c1 Dr. Stephen Henson10 April 2013, 14:38:24 UTCSupport for WinEC7.10 April 2013, 14:38:24 UTC
2d183e4 Dr. Stephen Henson14 October 2012, 12:02:53 UTCAdd BSD-ppc85xx support and avoid copying overlapping buffers in fips_dssvs.c14 October 2012, 12:02:53 UTC
7049d13 Dr. Stephen Henson04 October 2012, 14:10:12 UTCupdate CHANGES04 October 2012, 14:10:12 UTC
c616200 Dr. Stephen Henson04 October 2012, 13:27:11 UTCAdd support for Windows CE and C64+ to FIPS module.04 October 2012, 13:27:11 UTC
7b899c1 Dr. Stephen Henson23 May 2012, 17:07:25 UTCfile msincore was added on branch OpenSSL-fips-2_0-stable on 2012-10-04 13:27:10 +000023 May 2012, 17:07:25 UTC
6b2e340 Dr. Stephen Henson23 May 2012, 17:07:24 UTCfile hmac_sha1.pl was added on branch OpenSSL-fips-2_0-stable on 2012-10-04 13:27:10 +000023 May 2012, 17:07:24 UTC
1de6a62 Dr. Stephen Henson18 January 2012, 15:07:11 UTCrevert fipslink.pl unlink retry change18 January 2012, 15:07:11 UTC
ac38194 Dr. Stephen Henson18 January 2012, 14:54:20 UTCgive a hand old assemblers assembling loop instruction. (original by Andy)18 January 2012, 14:54:20 UTC
24fadf2 Dr. Stephen Henson03 January 2012, 19:43:06 UTCtypo03 January 2012, 19:43:06 UTC
409abd2 Dr. Stephen Henson03 January 2012, 14:23:54 UTCPrepare RC803 January 2012, 14:23:54 UTC
421de62 Dr. Stephen Henson03 January 2012, 14:22:45 UTCunlink target and retry to avoid intermittent Win32 failures03 January 2012, 14:22:45 UTC
c567812 Dr. Stephen Henson12 December 2011, 14:02:57 UTCset version to rc8-dev12 December 2011, 14:02:57 UTC
49dbcba Dr. Stephen Henson12 December 2011, 13:44:05 UTCPrepare for RC7.12 December 2011, 13:44:05 UTC
df0884f Dr. Stephen Henson10 December 2011, 18:06:55 UTCRetry rename operation with a slight delay to workaround problems on some versions of Windows.10 December 2011, 18:06:55 UTC
0e480d5 Dr. Stephen Henson10 December 2011, 13:29:23 UTCuse different names for asm temp files to avoid problems on some platforms10 December 2011, 13:29:23 UTC
7c0d300 Dr. Stephen Henson08 December 2011, 15:14:38 UTCClose file streams in FIPS algorithm test utilities.08 December 2011, 15:14:38 UTC
81fc8cd Dr. Stephen Henson04 December 2011, 21:29:08 UTCprepare for RC604 December 2011, 21:29:08 UTC
1d23503 Dr. Stephen Henson04 December 2011, 15:26:26 UTCFor FIPS builds we don't use the normal test files (and in the restricted tarball some don't exist) so set TEST='' to avoid linking to them. This also avoids problems on platforms that copy instead of symlink.04 December 2011, 15:26:26 UTC
58886fd Dr. Stephen Henson04 December 2011, 15:14:13 UTCuse BUILD_ONE_CMD for fips specific links otherwise we effectively do 'make links' twice04 December 2011, 15:14:13 UTC
61c3085 Dr. Stephen Henson04 December 2011, 15:11:44 UTCWorkaround for VxWorks04 December 2011, 15:11:44 UTC
32b56fe Dr. Stephen Henson04 December 2011, 15:04:20 UTCavoid use of symlinks on Windows: it causes problems on some build environments04 December 2011, 15:04:20 UTC
efd031a Dr. Stephen Henson03 December 2011, 21:47:48 UTCFix x86cpuid so it doesn't fail for some (currently theoretical) virtual machines.03 December 2011, 21:47:48 UTC
dd4eefd Dr. Stephen Henson03 December 2011, 21:44:01 UTCChange EVP_MAXCHUNK so it doesn't wraparound to 0 on some platforms (IP32L64).03 December 2011, 21:44:01 UTC
fcd3e8e Dr. Stephen Henson03 December 2011, 19:51:52 UTCPrepare for RC6.03 December 2011, 19:51:52 UTC
476e7e4 Dr. Stephen Henson03 December 2011, 19:41:28 UTCAdd tests to ensure ECDSA key gen and DSA signing fails if DRBG entropy source fails.03 December 2011, 19:41:28 UTC
5e900f3 Dr. Stephen Henson03 December 2011, 19:19:34 UTCfunctions aren't unused: revert03 December 2011, 19:19:34 UTC
75b250a Dr. Stephen Henson03 December 2011, 18:27:31 UTCremove unused functions from module03 December 2011, 18:27:31 UTC
44cb365 Dr. Stephen Henson03 December 2011, 18:26:26 UTCbn/asm/mips.pl: fix typos [from HEAD], original by Andy03 December 2011, 18:26:26 UTC
9bd2dde Dr. Stephen Henson25 November 2011, 16:27:19 UTCprepare for rc525 November 2011, 16:27:19 UTC
31bf5f1 Dr. Stephen Henson25 November 2011, 16:03:27 UTCreturn error if counter exceeds limit and seed value supplied25 November 2011, 16:03:27 UTC
7dcdc0d Dr. Stephen Henson25 November 2011, 15:00:20 UTCcheck counter value against 4 * L, not 409625 November 2011, 15:00:20 UTC
6ecd287 Dr. Stephen Henson21 November 2011, 00:05:15 UTCbump version for rc5-dev: hopefully will never be needed...21 November 2011, 00:05:15 UTC
0e508c1 Dr. Stephen Henson19 November 2011, 17:04:28 UTCprepare for rc419 November 2011, 17:04:28 UTC
f638524 Dr. Stephen Henson19 November 2011, 17:03:44 UTCAdd flag to support cofactor ECDH19 November 2011, 17:03:44 UTC
52876c3 Dr. Stephen Henson18 November 2011, 21:59:36 UTCbump version to rc4-dev18 November 2011, 21:59:36 UTC
c08128a Dr. Stephen Henson18 November 2011, 18:50:57 UTCprepare for RC318 November 2011, 18:50:57 UTC
901b9b5 Dr. Stephen Henson16 November 2011, 13:28:11 UTCIn EC_KEY_set_public_key_affine_coordinates include explicit check to see passed components do not exceed field order16 November 2011, 13:28:11 UTC
9eca239 Dr. Stephen Henson11 November 2011, 19:01:11 UTCportability fix for some perl versions11 November 2011, 19:01:11 UTC
3b4fb53 Dr. Stephen Henson09 November 2011, 14:23:17 UTCfclose streams in fips_drbvs.c Produced error message for unsupported curves in fips_ecdhvs.c09 November 2011, 14:23:17 UTC
7437036 Dr. Stephen Henson08 November 2011, 19:08:40 UTCPrepare for RC3 (which may never happen).08 November 2011, 19:08:40 UTC
ffa7673 Andy Polyakov08 November 2011, 14:44:55 UTCPlatform update from HEAD.08 November 2011, 14:44:55 UTC
cbed6cf Dr. Stephen Henson07 November 2011, 13:54:30 UTCadd fips_algvs.c to restricted tarball07 November 2011, 13:54:30 UTC
be6dc7e Dr. Stephen Henson07 November 2011, 13:18:12 UTCPrepare for RC207 November 2011, 13:18:12 UTC
bb25a72 Dr. Stephen Henson07 November 2011, 13:16:55 UTCMacOS and iOS support07 November 2011, 13:16:55 UTC
1562ce1 Andy Polyakov07 November 2011, 00:22:59 UTCfipsld, incore: switch to new cross-compile support [from HEAD].07 November 2011, 00:22:59 UTC
68b2f55 Andy Polyakov06 November 2011, 19:49:58 UTCe_aes.c: fold aesni_xts_cipher and [most importantly] fix aes_xts_cipher's return value after custom flag was rightly reverted [from HEAD].06 November 2011, 19:49:58 UTC
79f2c9d Dr. Stephen Henson06 November 2011, 13:08:54 UTCcheck for unset entropy and nonce callbacks06 November 2011, 13:08:54 UTC
8a794ab Dr. Stephen Henson06 November 2011, 12:52:27 UTCUpdate fips_test_suite to take multiple command line options and an induced error checking function.06 November 2011, 12:52:27 UTC
03eae35 Dr. Stephen Henson05 November 2011, 18:25:16 UTCtypo05 November 2011, 18:25:16 UTC
df64f34 Dr. Stephen Henson05 November 2011, 18:15:01 UTCmake post failure simulation reversible in all cases05 November 2011, 18:15:01 UTC
21a5cb2 Dr. Stephen Henson05 November 2011, 18:11:16 UTCtypo: use key for POST callback05 November 2011, 18:11:16 UTC
01fc2c1 Dr. Stephen Henson05 November 2011, 18:04:50 UTCfix set but unused warnings05 November 2011, 18:04:50 UTC
04c8062 Andy Polyakov05 November 2011, 13:57:02 UTCarmv4cpuid.S, armv4-gf2m.pl: make newest code compilable by older assembler [from HEAD].05 November 2011, 13:57:02 UTC
6fcc2bb Andy Polyakov05 November 2011, 13:56:10 UTCx86cpuid.pl: don't punish "last-year" OSes on "this-year" CPUs [from HEAD]. PR: 263305 November 2011, 13:56:10 UTC
f2b0cf9 Andy Polyakov05 November 2011, 13:55:20 UTCppc.pl: fix bug in bn_mul_comba4 [from HEAD]. PR: 2636 Submitted by: Charles Bryant05 November 2011, 13:55:20 UTC
485ef85 Dr. Stephen Henson05 November 2011, 01:32:52 UTCAdd single call public key sign and verify functions.05 November 2011, 01:32:52 UTC
b7de76b Dr. Stephen Henson02 November 2011, 19:16:43 UTCAdd support for memory leak checking in fips_algvs. Fix many memory leaks in algorithm test utilities.02 November 2011, 19:16:43 UTC
8ab0d50 Dr. Stephen Henson02 November 2011, 16:35:24 UTCRemove duplicate test from health check. Fix memory leaks by uninstantiating DRBG before reinitialising it.02 November 2011, 16:35:24 UTC
cb47a71 Dr. Stephen Henson02 November 2011, 00:43:45 UTCPrint out an error for "make test" in FIPS builds.02 November 2011, 00:43:45 UTC
d593906 Dr. Stephen Henson02 November 2011, 00:07:15 UTCReplace exit calls with return in fips_test_suite02 November 2011, 00:07:15 UTC
8b8096d Dr. Stephen Henson01 November 2011, 13:45:30 UTCAdd support for multicall fips_algvs utility combining functionality of all fips test utilities in a single binary and some minimal script parsing for platforms lacking a suitable shell. In order to keep changes to the build system to a minimum it #includes all the utilities C source files (yuck).01 November 2011, 13:45:30 UTC
9ab6d68 Dr. Stephen Henson26 October 2011, 16:46:20 UTCPR: 2632 Submitted by: emmanuel.azencot@bull.net Reviewed by: steve Return -1 immediately if not affine coordinates as BN_CTX has not been set up.26 October 2011, 16:46:20 UTC
45e5f55 Dr. Stephen Henson24 October 2011, 16:58:49 UTCPrepare for RC2.24 October 2011, 16:58:49 UTC
51035e7 Dr. Stephen Henson24 October 2011, 16:53:59 UTCprepare for RC124 October 2011, 16:53:59 UTC
319c726 Dr. Stephen Henson24 October 2011, 13:24:28 UTCtypo24 October 2011, 13:24:28 UTC
0684e77 cvs2svn24 October 2011, 06:00:07 UTCThis commit was manufactured by cvs2svn to create branch 'OpenSSL-fips- 2_0-stable'.24 October 2011, 06:00:07 UTC
f278499 Andy Polyakov24 October 2011, 06:00:06 UTCe_aes.c: fold even aesni_ccm_cipher.24 October 2011, 06:00:06 UTC
507b0d9 Andy Polyakov23 October 2011, 22:58:40 UTCe_aes.c: prevent potential DoS in aes_gcm_tls_cipher.23 October 2011, 22:58:40 UTC
181fbb7 Andy Polyakov23 October 2011, 19:41:00 UTCcryptlib.c: remove stdio dependency in Windows fipscanister.lib.23 October 2011, 19:41:00 UTC
f59a5d6 Dr. Stephen Henson23 October 2011, 17:06:28 UTCNo need for custom flag in XTS mode: block length is 1.23 October 2011, 17:06:28 UTC
005cdac Andy Polyakov23 October 2011, 15:17:30 UTCfips_canister.c: harmonize fingerprinting for all Windows, CE or not.23 October 2011, 15:17:30 UTC
8b8d2dc Andy Polyakov23 October 2011, 15:12:37 UTCconfig: in cross-compile case interrogate cross-compiler, not host, work around sub-shell limitation.23 October 2011, 15:12:37 UTC
5fd7226 Dr. Stephen Henson22 October 2011, 17:24:27 UTCCheck for selftest failure in various places.22 October 2011, 17:24:27 UTC
5b198d5 Andy Polyakov22 October 2011, 10:49:52 UTCx86gas.pl: relax .init segment alignment.22 October 2011, 10:49:52 UTC
16190a7 Andy Polyakov21 October 2011, 19:34:48 UTCmk1mk.pl: cleanup engines' handling and make fips build work on WIN64I.21 October 2011, 19:34:48 UTC
back to top