summaryrefslogtreecommitdiff
path: root/lib/libssl
AgeCommit message (Collapse)Author
2005-08-01kernal->kernel;Jason McIntyre
from netbsd pr #30872 (anonymous post); ok deraadt@ krw@
2005-05-25avoid spurious ld evil string func warning, spotted by david@;Damien Miller
feedback & ok avsm@
2005-05-23no need to byteswap for AES_ASM, from tom@Markus Friedl
2005-05-10import i386 AES asm code from openssl.org; ok and help with testing djm@Markus Friedl
2005-05-10import of OpenSSL 0.9.8hMarkus Friedl
2005-05-10kill strcpy; ok hshoexer@, prodded by david@Damien Miller
2005-04-29typo; from grunk AT pestilenz.org via markus@Damien Miller
2005-04-29remove this junk that snuck in the import; spotted by markus@Damien Miller
2005-04-29crankDamien Miller
2005-04-29adjust for new files in 0.9.7gDamien Miller
2005-04-29increase EVP_MAX_MD_SIZE to something sane (big enough for SHA512)Damien Miller
2005-04-29resolve conflictsDamien Miller
2005-04-29import of openssl-0.9.7g; tested on platforms from alpha to zaurus, ok deraadt@Damien Miller
2005-04-25typoMiod Vallat
2005-04-23fix lies about snprintfTheo de Raadt
2005-04-01re-enable DSO_DLFCN on shared lib architectures; ok deraadtMarkus Friedl
2005-04-01Add a reasonably sane CA bundle to /etc/ssl/cert.pem, the defaultBob Beck
location for libssl, this makes lynx not bitch when seeing sites with certificates signed by these issuers. We should probably think carefully about adding a few more in here too.
2005-03-30backout last commit for now..Markus Friedl
2005-03-30enable openssl DSO (typo, it's -DDSO_DLFCN not -DSO_DLFCN); Douglas SantosMarkus Friedl
2005-03-29belive -> believeMiod Vallat
2005-02-07For amd64, build the bn routines in libcrypto with the amd64 specificBob Beck
x86_64-gcc.c replacement for the generic bn_asm.c. Seems to give a two to threefold speedup for rsa on amd64. ok millert@, hshoexer@
2005-01-29adjust comment, open_dev_crypto() returns -1 on error.Hans-Joerg Hoexer
ok markus@
2005-01-26on error set correct pointer to NULL.Hans-Joerg Hoexer
From phk@freebsd.org ok markus@
2004-09-07mips is now 64 bits so use a 64 bit configPer Fogelstrom
2004-08-11mips->mips64Per Fogelstrom
2004-08-06cleanup mipsPer Fogelstrom
2004-07-13errno changes, lib major version bumps, and general flag dayMarco S Hyman
To build you must: cd /usr/src && make obj && make includes cd lib/libc && make depend && make && NOMAN=1 sudo make install cd /usr/src && make build
2004-06-15machdep.xcrypt now has a different meaning: Instead of > 0 indicatingTheo de Raadt
that AES is there, we now have 3 flag bits: C3_HAS_AES, C3_HAS_SHA (SHA1 & SHA256), and C3_HAS_MM (RSA). Change this code to only look at C3_HAS_AES for now.
2004-04-27do not link ssltest.c into libssl, stops main/doit symbols from beingAnil Madhavapeddy
exported. no bump needed since nothing should use them, markus@ ok
2004-04-25update missing pieces from 0.9.7d; ok henningMarkus Friedl
crank minor for API extensions
2004-04-25avoid NULL deref; from danh@Markus Friedl
2004-04-25from openssl, 1.50.2.9, make S/MIME encrypt work again.Markus Friedl
2004-04-08backout for nowMarkus Friedl
2004-04-08merge 0.9.7dMarkus Friedl
2004-04-07import openssl-0.9.7dMarkus Friedl
2004-03-31support IPv6 connections in "openssl s_client", adding -4 and -6 options toDamien Miller
force protocol; ok itojun@
2004-03-22Unbreak rmd160. Was broken on sparc64 when compiled with gcc3. Fix and reportHans-Joerg Hoexer
by Simon Kellner. XXX This is only a temporary work-around and we still need a REAL fix for XXX this issue. Testing on different archs by marc@ tdvall@ millert@ otto@ ho@ miod@ hshoexer@ ok deraadt@
2004-03-21Insert missing ABORT if EC_GROUP_copy() fails.Tom Cosgrove
ok markus@
2004-03-17return(00); -> return(0); markus@ okAaron Campbell
2004-03-17out-of-bounds read in (unused) kerberos ciphersuites (CAN-2004-0112)Markus Friedl
2004-03-17avoid null-pointer deref (aka CAN-2004-0079)Markus Friedl
see http://www.openssl.org/news/secadv_20040317.txt
2004-02-27change amd64's MACHINE_ARCH from x86_64 to amd64. There are many manyTheo de Raadt
reasons for this, quite a few of them technical, and not all of them in response to Intel's broken ia32e crud. The gcc toolchain stays at x86_64 for now.
2004-02-13Cleanup and shrink ACSS_KEY a bit. Thus crank library minor.Hans-Joerg Hoexer
Change cipher modes to more generic names and add an additional mode. ok deraadt@ markus@
2004-02-09simpler ssl manpages, using --name=.Marc Espie
okay markus@
2004-02-04remove some debug code and cleanup..Theo de Raadt
2004-02-03OK, this time the AES soft keys work with ssh and such. I spent over 3Theo de Raadt
hours learning that OpenSSL's internal functions for AES extended keys generate screwy byte order swapped data..
2004-02-03oops, software key gen bugTheo de Raadt
2004-02-03Switch to using software generated extended keys (because the cpu cannotTheo de Raadt
yet generate 192 & 256 bit keys). Ensure that 192 and 256 are in the nids table. This also accelerates performance for 128 a tiny bit: type 16 bytes 64 bytes 256 bytes 1024 bytes 8192 bytes aes-128-cbc 34921.48k 129617.82k 362059.93k 623649.81k 790397.77k aes-192-cbc 26227.43k 99215.33k 283242.84k 509881.15k 665323.22k aes-256-cbc 26133.22k 97458.06k 265990.84k 457824.69k 579835.09k
2004-02-03config for arm, copied from powerpc/sparc ok markus@Dale Rahn
2004-02-03If on an i386, detect existance of the VIA C3 xcrypt-* using sysctl ofTheo de Raadt
the machdep.xcrypt node. If they exist, use the xcrypt-cbc instruction to accelerate aes-{128,192,256}-cbc, for more than 100x performance increase. This code has no effect on any cpu... Tested thus far using openssl speed command, and of course, ssh. 778MB/sec AES-128-CBC performance at 8192 byte block size.