| blob | 1e6c88f77abfbf8d9db47184393a9929291e0041 |
1 See file ChangeLog.0_9_7-stable_not-in-head for explanations.
2 This is the "FIPS"-related part.
6 2003-07-27 19:00 ben
8 Changed:
9 Configure (1.314.2.85), "Exp", lines: +2 -0
10 Makefile.org (1.154.2.67), "Exp", lines: +12 -3
11 crypto/cryptlib.c (1.32.2.9), "Exp", lines: +5 -0
12 crypto/md32_common.h (1.22.2.4), "Exp", lines: +11 -0
13 crypto/aes/Makefile.ssl (1.4.2.6), "Exp", lines: +2 -1
14 crypto/aes/aes_core.c (1.1.2.4), "Exp", lines: +4 -0
15 crypto/des/des.h (1.40.2.4), "Exp", lines: +1 -1
16 crypto/des/des_old.c (1.11.2.4), "Exp", lines: +1 -1
17 crypto/des/destest.c (1.30.2.6), "Exp", lines: +2 -2
18 crypto/des/ecb3_enc.c (1.8.2.1), "Exp", lines: +1 -3
19 crypto/dsa/Makefile.ssl (1.49.2.5), "Exp", lines: +7 -4
20 crypto/dsa/dsa_ossl.c (1.12.2.4), "Exp", lines: +2 -0
21 crypto/dsa/dsa_sign.c (1.10.2.3), "Exp", lines: +12 -0
22 crypto/dsa/dsa_vrf.c (1.10.2.3), "Exp", lines: +8 -0
23 crypto/engine/engine.h (1.36.2.6), "Exp", lines: +4 -0
24 crypto/err/err.h (1.35.2.3), "Exp", lines: +2 -0
25 crypto/err/err_all.c (1.17.2.2), "Exp", lines: +4 -0
26 crypto/err/openssl.ec (1.11.2.1), "Exp", lines: +1 -0
27 crypto/evp/Makefile.ssl (1.64.2.8), "Exp", lines: +8 -7
28 crypto/evp/c_all.c (1.7.8.7), "Exp", lines: +1 -0
29 crypto/evp/e_aes.c (1.6.2.4), "Exp", lines: +12 -4
30 crypto/evp/e_des3.c (1.8.2.2), "Exp", lines: +1 -1
31 crypto/evp/evp.h (1.86.2.10), "Exp", lines: +2 -0
32 crypto/evp/evp_err.c (1.23.2.1), "Exp", lines: +3 -1
33 crypto/md4/Makefile.ssl (1.6.2.4), "Exp", lines: +7 -4
34 crypto/md5/Makefile.ssl (1.33.2.7), "Exp", lines: +7 -4
35 crypto/rand/Makefile.ssl (1.56.2.4), "Exp", lines: +17 -15
36 crypto/rand/md_rand.c (1.69.2.2), "Exp", lines: +9 -0
37 crypto/rand/rand.h (1.26.2.5), "Exp", lines: +2 -0
38 crypto/rand/rand_err.c (1.6.2.1), "Exp", lines: +3 -1
39 crypto/rand/rand_lib.c (1.15.2.2), "Exp", lines: +11 -0
40 crypto/ripemd/Makefile.ssl (1.25.2.5), "Exp", lines: +7 -2
41 crypto/sha/Makefile.ssl (1.26.2.5), "Exp", lines: +16 -6
42 fips/.cvsignore (1.1.2.1), "Exp", lines: +1 -0
43 fips/Makefile.ssl (1.1.2.1), "Exp", lines: +155 -0
44 fips/fingerprint.sha1 (1.1.2.1), "Exp", lines: +3 -0
45 fips/fips.c (1.1.2.1), "Exp", lines: +74 -0
46 fips/fips.h (1.1.2.1), "Exp", lines: +85 -0
47 fips/fips_check_sha1 (1.1.2.1), "Exp", lines: +7 -0
48 fips/fips_err.c (1.1.2.1), "Exp", lines: +96 -0
49 fips/fips_make_sha1 (1.1.2.1), "Exp", lines: +21 -0
50 fips/lib (1.1.2.1), "Exp", lines: +0 -0
51 fips/aes/.cvsignore (1.1.2.1), "Exp", lines: +4 -0
52 fips/aes/Makefile.ssl (1.1.2.1), "Exp", lines: +95 -0
53 fips/aes/fingerprint.sha1 (1.1.2.1), "Exp", lines: +2 -0
54 fips/aes/fips_aes_core.c (1.1.2.1), "Exp", lines: +1260 -0
55 fips/aes/fips_aes_locl.h (1.1.2.1), "Exp", lines: +85 -0
56 fips/aes/fips_aesavs.c (1.1.2.1), "Exp", lines: +896 -0
57 fips/dsa/.cvsignore (1.1.2.1), "Exp", lines: +2 -0
58 fips/dsa/Makefile.ssl (1.1.2.1), "Exp", lines: +95 -0
59 fips/dsa/fingerprint.sha1 (1.1.2.1), "Exp", lines: +1 -0
60 fips/dsa/fips_dsa_ossl.c (1.1.2.1), "Exp", lines: +366 -0
61 fips/dsa/fips_dsatest.c (1.1.2.1), "Exp", lines: +252 -0
62 fips/rand/.cvsignore (1.1.2.1), "Exp", lines: +2 -0
63 fips/rand/Makefile.ssl (1.1.2.1), "Exp", lines: +94 -0
64 fips/rand/fingerprint.sha1 (1.1.2.1), "Exp", lines: +2 -0
65 fips/rand/fips_rand.c (1.1.2.1), "Exp", lines: +236 -0
66 fips/rand/fips_rand.h (1.1.2.1), "Exp", lines: +55 -0
67 fips/rand/fips_randtest.c (1.1.2.1), "Exp", lines: +348 -0
68 fips/sha1/.cvsignore (1.1.2.1), "Exp", lines: +3 -0
69 fips/sha1/Makefile.ssl (1.1.2.1), "Exp", lines: +94 -0
70 fips/sha1/fingerprint.sha1 (1.1.2.1), "Exp", lines: +3 -0
71 fips/sha1/fips_md32_common.h (1.1.2.1), "Exp", lines: +637 -0
72 fips/sha1/fips_sha1dgst.c (1.1.2.1), "Exp", lines: +76 -0
73 fips/sha1/fips_sha1test.c (1.1.2.1), "Exp", lines: +128 -0
74 fips/sha1/fips_sha_locl.h (1.1.2.1), "Exp", lines: +472 -0
75 fips/sha1/fips_standalone_sha1.c (1.1.2.1), "Exp", lines: +101 -0
76 fips/sha1/standalone.sha1 (1.1.2.1), "Exp", lines: +4 -0
77 test/Makefile.ssl (1.84.2.29), "Exp", lines: +81 -13
78 util/mkerr.pl (1.18.2.4), "Exp", lines: +2 -1
80 Unfinished FIPS stuff for review/improvement.
82 2003-07-27 19:19 ben
84 Changed:
85 fips/fips_check_sha1 (1.1.2.2), "Exp", lines: +1 -1
87 Use unified diff.
89 2003-07-27 19:23 ben
91 Changed:
92 fips/Makefile.ssl (1.1.2.2), "Exp", lines: +3 -3
93 fips/fingerprint.sha1 (1.1.2.2), "Exp", lines: +2 -1
94 fips/fips_make_sha1 (1.1.2.2), "Exp", lines: +1 -1
96 Build in non-FIPS mode.
98 2003-07-27 23:13 ben
100 Changed:
101 Makefile.org (1.154.2.68), "Exp", lines: +1 -1
102 fips/fips_check_sha1 (1.1.2.3), "Exp", lines: +2 -1
103 fips/aes/fips_aesavs.c (1.1.2.2), "Exp", lines: +2 -0
104 fips/dsa/fips_dsa_ossl.c (1.1.2.2), "Exp", lines: +8 -0
105 fips/dsa/fips_dsatest.c (1.1.2.2), "Exp", lines: +2 -1
106 fips/sha1/fingerprint.sha1 (1.1.2.2), "Exp", lines: +1 -1
107 fips/sha1/fips_sha1dgst.c (1.1.2.2), "Exp", lines: +5 -1
108 fips/sha1/fips_standalone_sha1.c (1.1.2.2), "Exp", lines: +2 -0
109 fips/sha1/standalone.sha1 (1.1.2.2), "Exp", lines: +1 -1
111 Build when not FIPS.
113 2003-07-28 11:56 ben
115 Changed:
116 fips/dsa/fingerprint.sha1 (1.1.2.2), "Exp", lines: +1 -1
117 fips/sha1/standalone.sha1 (1.1.2.3), "Exp", lines: +1 -1
119 New fingerprints.
121 2003-07-29 16:06 ben
123 Changed:
124 fips/aes/fips_aesavs.c (1.1.2.5), "Exp", lines: +295 -303
126 Reformat.
128 2003-07-29 16:34 ben
130 Changed:
131 fips/aes/fips_aesavs.c (1.1.2.6), "Exp", lines: +43 -17
133 MMT for CFB1
135 2003-07-29 17:17 ben
137 Changed:
138 fips/fips_err_wrapper.c (1.1.2.1), "Exp", lines: +5 -0
139 fips/sha1/sha1hashes.txt (1.1.2.1), "Exp", lines: +342 -0
140 fips/sha1/sha1vectors.txt (1.1.2.1), "Exp", lines: +2293 -0
142 Missing files.
144 2003-07-31 23:30 levitte
146 Changed:
147 Makefile.org (1.154.2.71), "Exp", lines: +2 -0
149 If FDIRS is to be treated like SDIRS, let's not forget to
150 initialize it in Makefile.org.
152 2003-07-31 23:41 levitte
154 Changed:
155 fips/sha1/fips_sha1test.c (1.1.2.2), "Exp", lines: +3 -3
157 No C++ comments in C programs!
159 2003-08-01 15:07 steve
161 Changed:
162 fips/aes/fips_aesavs.c (1.1.2.8), "Exp", lines: +3 -3
164 Replace C++ style comments.
166 2003-08-03 14:22 ben
168 Changed:
169 fips/des/fips_desmovs.c (1.1.2.2), "Exp", lines: +55 -37
171 Make tests work (CFB1 still doesn't produce the right answers,
172 strangely).
174 2003-08-08 12:08 levitte
176 Changed:
177 fips/des/fips_des_enc.c (1.1.2.2), "Exp", lines: +9 -0
179 Avoid clashing with the regular DES functions when not compiling
180 with -DFIPS. This is basically only visible when building with
181 shared library supoort...
183 2003-08-11 11:36 levitte
185 Deleted:
186 fips/sha1/.cvsignore (1.1.2.2)
187 fips/sha1/Makefile.ssl (1.1.2.3)
188 fips/sha1/fingerprint.sha1 (1.1.2.3)
189 fips/sha1/fips_md32_common.h (1.1.2.2)
190 fips/sha1/fips_sha1dgst.c (1.1.2.3)
191 fips/sha1/fips_sha1test.c (1.1.2.3)
192 fips/sha1/fips_sha_locl.h (1.1.2.2)
193 fips/sha1/fips_standalone_sha1.c (1.1.2.3)
194 fips/sha1/sha1hashes.txt (1.1.2.2)
195 fips/sha1/sha1vectors.txt (1.1.2.2)
196 fips/sha1/standalone.sha1 (1.1.2.4)
197 fips/dsa/.cvsignore (1.1.2.2)
198 fips/dsa/Makefile.ssl (1.1.2.2)
199 fips/dsa/fingerprint.sha1 (1.1.2.3)
200 fips/dsa/fips_dsa_ossl.c (1.1.2.3)
201 fips/dsa/fips_dsatest.c (1.1.2.3)
202 fips/rand/.cvsignore (1.1.2.2)
203 fips/rand/Makefile.ssl (1.1.2.2)
204 fips/rand/fingerprint.sha1 (1.1.2.2)
205 fips/rand/fips_rand.c (1.1.2.2)
206 fips/rand/fips_rand.h (1.1.2.2)
207 fips/rand/fips_randtest.c (1.1.2.2)
208 fips/des/.cvsignore (1.1.2.2)
209 fips/des/Makefile.ssl (1.1.2.3)
210 fips/des/fingerprint.sha1 (1.1.2.2)
211 fips/des/fips_des_enc.c (1.1.2.3)
212 fips/des/fips_des_locl.h (1.1.2.2)
213 fips/des/fips_desmovs.c (1.1.2.3)
214 fips/aes/.cvsignore (1.1.2.2)
215 fips/aes/Makefile.ssl (1.1.2.5)
216 fips/aes/fingerprint.sha1 (1.1.2.2)
217 fips/aes/fips_aes_core.c (1.1.2.2)
218 fips/aes/fips_aes_locl.h (1.1.2.2)
219 fips/aes/fips_aesavs.c (1.1.2.9)
220 fips/.cvsignore (1.1.2.2)
221 fips/Makefile.ssl (1.1.2.6)
222 fips/fingerprint.sha1 (1.1.2.3)
223 fips/fips.c (1.1.2.2)
224 fips/fips.h (1.1.2.2)
225 fips/fips_check_sha1 (1.1.2.4)
226 fips/fips_err.c (1.1.2.2)
227 fips/fips_err_wrapper.c (1.1.2.2)
228 fips/fips_make_sha1 (1.1.2.4)
229 fips/lib (1.1.2.2)
230 Changed:
231 util/libeay.num (1.173.2.16), "Exp", lines: +11 -38
232 util/mkerr.pl (1.18.2.5), "Exp", lines: +1 -2
233 test/Makefile.ssl (1.84.2.31), "Exp", lines: +54 -180
234 crypto/ripemd/Makefile.ssl (1.25.2.6), "Exp", lines: +2 -7
235 crypto/sha/Makefile.ssl (1.26.2.6), "Exp", lines: +6 -16
236 crypto/rand/Makefile.ssl (1.56.2.5), "Exp", lines: +15 -17
237 crypto/rand/md_rand.c (1.69.2.3), "Exp", lines: +0 -9
238 crypto/rand/rand.h (1.26.2.6), "Exp", lines: +0 -2
239 crypto/rand/rand_err.c (1.6.2.2), "Exp", lines: +1 -3
240 crypto/rand/rand_lib.c (1.15.2.3), "Exp", lines: +0 -11
241 crypto/objects/obj_dat.h (1.49.2.18), "Exp", lines: +3 -27
242 crypto/objects/obj_mac.h (1.19.2.18), "Exp", lines: +0 -32
243 crypto/objects/obj_mac.num (1.15.2.14), "Exp", lines: +0 -8
244 crypto/objects/objects.txt (1.20.2.19), "Exp", lines: +0 -11
245 crypto/md4/Makefile.ssl (1.6.2.5), "Exp", lines: +4 -7
246 crypto/md5/Makefile.ssl (1.33.2.8), "Exp", lines: +4 -7
247 crypto/evp/Makefile.ssl (1.64.2.9), "Exp", lines: +7 -8
248 crypto/evp/c_allc.c (1.8.2.6), "Exp", lines: +0 -4
249 crypto/evp/e_aes.c (1.6.2.9), "Exp", lines: +4 -22
250 crypto/evp/e_des.c (1.5.2.5), "Exp", lines: +2 -43
251 crypto/evp/e_des3.c (1.8.2.4), "Exp", lines: +3 -3
252 crypto/evp/evp.h (1.86.2.13), "Exp", lines: +11 -36
253 crypto/evp/evp_err.c (1.23.2.2), "Exp", lines: +1 -3
254 crypto/evp/evp_lib.c (1.6.8.3), "Exp", lines: +0 -24
255 crypto/evp/evp_locl.h (1.7.2.5), "Exp", lines: +2 -11
256 crypto/evp/evp_test.c (1.14.2.12), "Exp", lines: +8 -17
257 crypto/evp/evptests.txt (1.9.2.6), "Exp", lines: +1 -106
258 crypto/dsa/Makefile.ssl (1.49.2.7), "Exp", lines: +6 -10
259 crypto/dsa/dsa_ossl.c (1.12.2.5), "Exp", lines: +0 -2
260 crypto/dsa/dsa_sign.c (1.10.2.4), "Exp", lines: +0 -12
261 crypto/dsa/dsa_vrf.c (1.10.2.4), "Exp", lines: +0 -8
262 crypto/err/Makefile.ssl (1.48.2.5), "Exp", lines: +16 -17
263 crypto/err/err.h (1.35.2.4), "Exp", lines: +0 -2
264 crypto/err/err_all.c (1.17.2.3), "Exp", lines: +0 -4
265 crypto/err/openssl.ec (1.11.2.2), "Exp", lines: +0 -1
266 crypto/des/des.h (1.40.2.5), "Exp", lines: +1 -1
267 crypto/des/des_enc.c (1.11.2.3), "Exp", lines: +0 -4
268 crypto/des/des_old.c (1.11.2.5), "Exp", lines: +1 -1
269 crypto/des/destest.c (1.30.2.7), "Exp", lines: +2 -2
270 crypto/des/ecb3_enc.c (1.8.2.2), "Exp", lines: +3 -1
271 crypto/aes/Makefile.ssl (1.4.2.7), "Exp", lines: +1 -2
272 crypto/aes/aes.h (1.1.2.8), "Exp", lines: +0 -9
273 crypto/aes/aes_cfb.c (1.1.2.8), "Exp", lines: +0 -93
274 crypto/aes/aes_core.c (1.1.2.5), "Exp", lines: +0 -4
275 crypto/cryptlib.c (1.32.2.10), "Exp", lines: +0 -5
276 crypto/md32_common.h (1.22.2.5), "Exp", lines: +0 -11
277 Configure (1.314.2.86), "Exp", lines: +0 -2
278 Makefile.org (1.154.2.72), "Exp", lines: +8 -34
279 TABLE (1.99.2.30), "Exp", lines: +0 -50
281 A new branch for FIPS-related changes has been created with the
282 name OpenSSL-fips-0_9_7-stable.
284 Since the 0.9.7-stable branch is supposed to be in freeze
285 and should only contain bug corrections, this change removes the
286 FIPS changes from that branch.
288 2004-05-11 14:44 ben
290 Deleted:
291 apps/Makefile.ssl (1.100.2.27)
292 crypto/Makefile.ssl (1.84.2.12)
293 crypto/aes/Makefile.ssl (1.4.2.9)
294 crypto/asn1/Makefile.ssl (1.77.2.7)
295 crypto/bf/Makefile.ssl (1.25.2.6)
296 crypto/bio/Makefile.ssl (1.52.2.4)
297 crypto/bn/Makefile.ssl (1.65.2.9)
298 crypto/buffer/Makefile.ssl (1.32.2.4)
299 crypto/cast/Makefile.ssl (1.31.2.6)
300 crypto/comp/Makefile.ssl (1.32.2.4)
301 crypto/conf/Makefile.ssl (1.38.2.8)
302 crypto/des/Makefile.ssl (1.61.2.13)
303 crypto/dh/Makefile.ssl (1.43.2.5)
304 crypto/dsa/Makefile.ssl (1.49.2.9)
305 crypto/dso/Makefile.ssl (1.11.2.4)
306 crypto/ec/Makefile.ssl (1.7.2.4)
307 crypto/engine/Makefile.ssl (1.30.2.13)
308 crypto/err/Makefile.ssl (1.48.2.7)
309 crypto/evp/Makefile.ssl (1.64.2.12)
310 crypto/hmac/Makefile.ssl (1.33.2.6)
311 crypto/idea/Makefile.ssl (1.20.2.4)
312 crypto/krb5/Makefile.ssl (1.5.2.6)
313 crypto/lhash/Makefile.ssl (1.28.2.4)
314 crypto/md2/Makefile.ssl (1.29.2.5)
315 crypto/md4/Makefile.ssl (1.6.2.7)
316 crypto/md5/Makefile.ssl (1.33.2.10)
317 crypto/mdc2/Makefile.ssl (1.30.2.4)
318 crypto/objects/Makefile.ssl (1.46.2.6)
319 crypto/ocsp/Makefile.ssl (1.19.2.7)
320 crypto/pem/Makefile.ssl (1.51.2.5)
321 crypto/pkcs12/Makefile.ssl (1.37.2.5)
322 crypto/pkcs7/Makefile.ssl (1.47.2.5)
323 crypto/rand/Makefile.ssl (1.56.2.8)
324 crypto/rc2/Makefile.ssl (1.20.2.4)
325 crypto/rc4/Makefile.ssl (1.25.2.6)
326 crypto/rc5/Makefile.ssl (1.22.2.6)
327 crypto/ripemd/Makefile.ssl (1.25.2.9)
328 crypto/rsa/Makefile.ssl (1.53.2.6)
329 crypto/sha/Makefile.ssl (1.26.2.9)
330 crypto/stack/Makefile.ssl (1.28.2.4)
331 crypto/txt_db/Makefile.ssl (1.26.2.4)
332 crypto/ui/Makefile.ssl (1.10.2.6)
333 crypto/x509/Makefile.ssl (1.56.2.5)
334 crypto/x509v3/Makefile.ssl (1.62.2.5)
335 ssl/Makefile.ssl (1.53.2.11)
336 test/Makefile.ssl (1.84.2.36)
337 tools/Makefile.ssl (1.9.2.4)
338 Changed:
339 .cvsignore (1.7.6.2), "Exp", lines: +2 -1
340 Configure (1.314.2.92), "Exp", lines: +38 -8
341 FAQ (1.61.2.31), "Exp", lines: +1 -1
342 INSTALL (1.45.2.9), "Exp", lines: +2 -2
343 INSTALL.W32 (1.30.2.14), "Exp", lines: +9 -4
344 Makefile.org (1.154.2.78), "Exp", lines: +51 -19
345 PROBLEMS (1.4.2.10), "Exp", lines: +2 -2
346 e_os.h (1.56.2.17), "Exp", lines: +20 -1
347 apps/.cvsignore (1.5.8.1), "Exp", lines: +1 -0
348 apps/Makefile (1.1.4.1), "Exp", lines: +1147 -0
349 apps/apps.c (1.49.2.27), "Exp", lines: +0 -10
350 apps/ca.c (1.102.2.31), "Exp", lines: +0 -10
351 apps/dgst.c (1.23.2.10), "Exp", lines: +39 -11
352 apps/openssl.c (1.48.2.9), "Exp", lines: +19 -0
353 crypto/Makefile (1.1.4.1), "Exp", lines: +217 -0
354 crypto/cryptlib.c (1.32.2.11), "Exp", lines: +5 -0
355 crypto/crypto-lib.com (1.53.2.12), "Exp", lines: +1 -1
356 crypto/md32_common.h (1.22.2.6), "Exp", lines: +12 -0
357 crypto/aes/Makefile (1.1.4.1), "Exp", lines: +102 -0
358 crypto/aes/aes.h (1.1.2.9), "Exp", lines: +9 -0
359 crypto/aes/aes_cfb.c (1.1.2.9), "Exp", lines: +93 -0
360 crypto/aes/aes_core.c (1.1.2.6), "Exp", lines: +4 -0
361 crypto/asn1/Makefile (1.1.4.1), "Exp", lines: +1150 -0
362 crypto/bf/Makefile (1.1.4.1), "Exp", lines: +113 -0
363 crypto/bio/Makefile (1.1.4.1), "Exp", lines: +214 -0
364 crypto/bio/bio.h (1.56.2.6), "Exp", lines: +1 -0
365 crypto/bn/Makefile (1.1.4.1), "Exp", lines: +324 -0
366 crypto/bn/bntest.c (1.55.2.4), "Exp", lines: +1 -1
367 crypto/buffer/Makefile (1.1.4.1), "Exp", lines: +92 -0
368 crypto/cast/Makefile (1.1.4.1), "Exp", lines: +118 -0
369 crypto/cast/asm/.cvsignore (1.2.8.1), "Exp", lines: +1 -0
370 crypto/comp/Makefile (1.1.4.1), "Exp", lines: +112 -0
371 crypto/conf/Makefile (1.1.4.1), "Exp", lines: +181 -0
372 crypto/des/Makefile (1.1.4.1), "Exp", lines: +314 -0
373 crypto/des/cfb64ede.c (1.6.2.4), "Exp", lines: +111 -0
374 crypto/des/des.h (1.40.2.6), "Exp", lines: +5 -1
375 crypto/des/des_enc.c (1.11.2.4), "Exp", lines: +8 -0
376 crypto/des/des_old.c (1.11.2.6), "Exp", lines: +1 -1
377 crypto/des/destest.c (1.30.2.8), "Exp", lines: +2 -2
378 crypto/des/ecb3_enc.c (1.8.2.3), "Exp", lines: +1 -3
379 crypto/des/set_key.c (1.18.2.2), "Exp", lines: +4 -0
380 crypto/dh/Makefile (1.1.4.1), "Exp", lines: +131 -0
381 crypto/dsa/Makefile (1.1.4.1), "Exp", lines: +173 -0
382 crypto/dsa/dsa_gen.c (1.19.2.1), "Exp", lines: +4 -1
383 crypto/dsa/dsa_key.c (1.9.2.1), "Exp", lines: +2 -0
384 crypto/dsa/dsa_ossl.c (1.12.2.6), "Exp", lines: +2 -0
385 crypto/dsa/dsa_sign.c (1.10.2.5), "Exp", lines: +12 -0
386 crypto/dsa/dsa_vrf.c (1.10.2.5), "Exp", lines: +8 -0
387 crypto/dso/Makefile (1.1.4.1), "Exp", lines: +140 -0
388 crypto/ec/Makefile (1.1.4.1), "Exp", lines: +126 -0
389 crypto/engine/Makefile (1.1.4.1), "Exp", lines: +536 -0
390 crypto/engine/hw_cryptodev.c (1.1.2.6), "Exp", lines: +6 -2
391 crypto/err/Makefile (1.1.4.1), "Exp", lines: +118 -0
392 crypto/err/err.h (1.35.2.6), "Exp", lines: +2 -0
393 crypto/err/err_all.c (1.17.2.4), "Exp", lines: +4 -0
394 crypto/err/openssl.ec (1.11.2.3), "Exp", lines: +1 -0
395 crypto/evp/Makefile (1.1.4.1), "Exp", lines: +1057 -0
396 crypto/evp/bio_md.c (1.11.2.1), "Exp", lines: +6 -0
397 crypto/evp/c_allc.c (1.8.2.7), "Exp", lines: +8 -0
398 crypto/evp/e_aes.c (1.6.2.10), "Exp", lines: +22 -4
399 crypto/evp/e_des.c (1.5.2.8), "Exp", lines: +36 -3
400 crypto/evp/e_des3.c (1.8.2.7), "Exp", lines: +43 -4
401 crypto/evp/evp.h (1.86.2.15), "Exp", lines: +39 -11
402 crypto/evp/evp_err.c (1.23.2.3), "Exp", lines: +3 -1
403 crypto/evp/evp_lib.c (1.6.8.4), "Exp", lines: +24 -0
404 crypto/evp/evp_locl.h (1.7.2.6), "Exp", lines: +11 -2
405 crypto/evp/evp_test.c (1.14.2.13), "Exp", lines: +17 -8
406 crypto/evp/evptests.txt (1.9.2.7), "Exp", lines: +106 -1
407 crypto/hmac/Makefile (1.1.4.1), "Exp", lines: +99 -0
408 crypto/idea/Makefile (1.1.4.1), "Exp", lines: +89 -0
409 crypto/krb5/Makefile (1.1.4.1), "Exp", lines: +88 -0
410 crypto/lhash/Makefile (1.1.4.1), "Exp", lines: +91 -0
411 crypto/md2/Makefile (1.1.4.1), "Exp", lines: +91 -0
412 crypto/md4/Makefile (1.1.4.1), "Exp", lines: +93 -0
413 crypto/md5/Makefile (1.1.4.1), "Exp", lines: +129 -0
414 crypto/mdc2/Makefile (1.1.4.1), "Exp", lines: +96 -0
415 crypto/objects/Makefile (1.1.4.1), "Exp", lines: +121 -0
416 crypto/objects/obj_dat.h (1.49.2.19), "Exp", lines: +33 -3
417 crypto/objects/obj_mac.h (1.19.2.19), "Exp", lines: +40 -0
418 crypto/objects/obj_mac.num (1.15.2.15), "Exp", lines: +10 -0
419 crypto/objects/objects.txt (1.20.2.20), "Exp", lines: +13 -0
420 crypto/ocsp/Makefile (1.1.4.1), "Exp", lines: +291 -0
421 crypto/pem/Makefile (1.1.4.1), "Exp", lines: +334 -0
422 crypto/pkcs12/Makefile (1.1.4.1), "Exp", lines: +415 -0
423 crypto/pkcs7/Makefile (1.1.4.1), "Exp", lines: +241 -0
424 crypto/rand/Makefile (1.1.4.1), "Exp", lines: +196 -0
425 crypto/rand/md_rand.c (1.69.2.4), "Exp", lines: +9 -0
426 crypto/rand/rand.h (1.26.2.7), "Exp", lines: +3 -0
427 crypto/rand/rand_err.c (1.6.2.3), "Exp", lines: +4 -1
428 crypto/rand/rand_lib.c (1.15.2.4), "Exp", lines: +11 -0
429 crypto/rc2/Makefile (1.1.4.1), "Exp", lines: +89 -0
430 crypto/rc4/Makefile (1.1.4.1), "Exp", lines: +108 -0
431 crypto/rc5/Makefile (1.1.4.1), "Exp", lines: +106 -0
432 crypto/ripemd/Makefile (1.1.4.1), "Exp", lines: +111 -0
433 crypto/rsa/Makefile (1.1.4.1), "Exp", lines: +239 -0
434 crypto/rsa/rsa_eay.c (1.28.2.9), "Exp", lines: +1 -1
435 crypto/rsa/rsa_gen.c (1.8.6.1), "Exp", lines: +3 -0
436 crypto/sha/Makefile (1.1.4.1), "Exp", lines: +118 -0
437 crypto/sha/sha1dgst.c (1.21.2.1), "Exp", lines: +8 -0
438 crypto/stack/Makefile (1.1.4.1), "Exp", lines: +86 -0
439 crypto/txt_db/Makefile (1.1.4.1), "Exp", lines: +86 -0
440 crypto/ui/Makefile (1.1.4.1), "Exp", lines: +115 -0
441 crypto/x509/Makefile (1.1.4.1), "Exp", lines: +592 -0
442 crypto/x509v3/Makefile (1.1.4.1), "Exp", lines: +601 -0
443 fips/Makefile (1.1.4.1), "Exp", lines: +202 -0
444 fips/fingerprint.sha1 (1.1.2.4), "Exp", lines: +4 -4
445 fips/fips.c (1.1.2.3), "Exp", lines: +120 -5
446 fips/fips.h (1.1.2.3), "Exp", lines: +42 -2
447 fips/fips_check_sha1 (1.1.2.5), "Exp", lines: +2 -2
448 fips/fips_err.h (1.1.4.1), "Exp", lines: +117 -0
449 fips/fips_err_wrapper.c (1.1.2.3), "Exp", lines: +4 -2
450 fips/fips_locl.h (1.1.4.1), "Exp", lines: +62 -0
451 fips/fips_make_sha1 (1.1.2.5), "Exp", lines: +9 -6
452 fips/fips_test_suite.c (1.1.4.1), "Exp", lines: +302 -0
453 fips/openssl_fips_fingerprint (1.1.4.1), "Exp", lines: +25 -0
454 fips/aes/Makefile (1.1.4.1), "Exp", lines: +131 -0
455 fips/aes/fingerprint.sha1 (1.1.2.3), "Exp", lines: +3 -2
456 fips/aes/fips_aes_core.c (1.1.2.3), "Exp", lines: +5 -2
457 fips/aes/fips_aes_locl.h (1.1.2.3), "Exp", lines: +0 -0
458 fips/aes/fips_aes_selftest.c (1.1.4.1), "Exp", lines: +112 -0
459 fips/aes/fips_aesavs.c (1.1.2.10), "Exp", lines: +12 -6
460 fips/des/Makefile (1.1.4.1), "Exp", lines: +155 -0
461 fips/des/fingerprint.sha1 (1.1.2.3), "Exp", lines: +5 -2
462 fips/des/fips_des_enc.c (1.1.2.4), "Exp", lines: +16 -3
463 fips/des/fips_des_locl.h (1.1.2.3), "Exp", lines: +1 -1
464 fips/des/fips_des_selftest.c (1.1.4.1), "Exp", lines: +200 -0
465 fips/des/fips_desmovs.c (1.1.2.4), "Exp", lines: +186 -79
466 fips/des/fips_set_key.c (1.1.4.1), "Exp", lines: +415 -0
467 fips/des/asm/fips-dx86-elf.s (1.1.4.1), "Exp", lines: +2697 -0
468 fips/dsa/Makefile (1.1.4.1), "Exp", lines: +159 -0
469 fips/dsa/fingerprint.sha1 (1.1.2.4), "Exp", lines: +3 -1
470 fips/dsa/fips_dsa_gen.c (1.1.4.1), "Exp", lines: +373 -0
471 fips/dsa/fips_dsa_ossl.c (1.1.2.4), "Exp", lines: +16 -3
472 fips/dsa/fips_dsa_selftest.c (1.1.4.1), "Exp", lines: +168 -0
473 fips/dsa/fips_dsatest.c (1.1.2.4), "Exp", lines: +10 -6
474 fips/dsa/fips_dssvs.c (1.1.4.1), "Exp", lines: +306 -0
475 fips/rand/Makefile (1.1.4.1), "Exp", lines: +104 -0
476 fips/rand/fingerprint.sha1 (1.1.2.3), "Exp", lines: +2 -2
477 fips/rand/fips_rand.c (1.1.2.3), "Exp", lines: +60 -10
478 fips/rand/fips_rand.h (1.1.2.3), "Exp", lines: +19 -1
479 fips/rand/fips_randtest.c (1.1.2.3), "Exp", lines: +31 -10
480 fips/rsa/Makefile (1.1.4.1), "Exp", lines: +112 -0
481 fips/rsa/fingerprint.sha1 (1.1.4.1), "Exp", lines: +3 -0
482 fips/rsa/fips_rsa_eay.c (1.1.4.1), "Exp", lines: +735 -0
483 fips/rsa/fips_rsa_gen.c (1.1.4.1), "Exp", lines: +249 -0
484 fips/rsa/fips_rsa_selftest.c (1.1.4.1), "Exp", lines: +207 -0
485 fips/sha1/.cvsignore (1.1.2.3), "Exp", lines: +1 -2
486 fips/sha1/Makefile (1.1.4.1), "Exp", lines: +158 -0
487 fips/sha1/fingerprint.sha1 (1.1.2.4), "Exp", lines: +5 -3
488 fips/sha1/fips_md32_common.h (1.1.2.3), "Exp", lines: +0 -0
489 fips/sha1/fips_sha1_selftest.c (1.1.4.1), "Exp", lines: +97 -0
490 fips/sha1/fips_sha1dgst.c (1.1.2.4), "Exp", lines: +4 -4
491 fips/sha1/fips_sha1test.c (1.1.2.4), "Exp", lines: +17 -0
492 fips/sha1/fips_sha_locl.h (1.1.2.3), "Exp", lines: +7 -0
493 fips/sha1/fips_standalone_sha1.c (1.1.2.4), "Exp", lines: +60 -7
494 fips/sha1/sha1hashes.txt (1.1.2.3), "Exp", lines: +0 -0
495 fips/sha1/sha1vectors.txt (1.1.2.3), "Exp", lines: +0 -0
496 fips/sha1/standalone.sha1 (1.1.2.5), "Exp", lines: +6 -4
497 fips/sha1/asm/sx86-elf.s (1.1.4.1), "Exp", lines: +1568 -0
498 ms/do_masm.bat (1.1.8.2), "Exp", lines: +12 -10
499 ms/do_ms.bat (1.4.8.2), "Exp", lines: +11 -11
500 ms/do_nasm.bat (1.1.8.2), "Exp", lines: +12 -11
501 ms/do_nt.bat (1.2.8.1), "Exp", lines: +4 -4
502 shlib/hpux10-cc.sh (1.3.2.2), "Exp", lines: +3 -3
503 ssl/Makefile (1.1.4.1), "Exp", lines: +1019 -0
504 ssl/s3_clnt.c (1.53.2.16), "Exp", lines: +10 -0
505 ssl/s3_srvr.c (1.85.2.21), "Exp", lines: +9 -0
506 ssl/ssl_cert.c (1.48.2.7), "Exp", lines: +9 -0
507 ssl/ssl_lib.c (1.110.2.12), "Exp", lines: +13 -1
508 ssl/ssltest.c (1.53.2.23), "Exp", lines: +33 -1
509 ssl/t1_enc.c (1.27.2.8), "Exp", lines: +19 -1
510 test/.cvsignore (1.4.8.1), "Exp", lines: +4 -0
511 test/Makefile (1.1.4.1), "Exp", lines: +941 -0
512 test/bctest (1.14.2.1), "Exp", lines: +1 -1
513 test/testenc (1.3.8.1), "Exp", lines: +1 -1
514 test/testfipsssl (1.1.4.1), "Exp", lines: +113 -0
515 tools/Makefile (1.1.4.1), "Exp", lines: +61 -0
516 util/cygwin.sh (1.1.2.5), "Exp", lines: +3 -3
517 util/domd (1.6.2.3), "Exp", lines: +5 -5
518 util/fixNT.sh (1.1.1.2.8.1), "Exp", lines: +3 -3
519 util/libeay.num (1.173.2.19), "Exp", lines: +55 -11
520 util/mk1mf.pl (1.41.2.10), "Exp", lines: +6 -4
521 util/mkdef.pl (1.67.2.7), "Exp", lines: +11 -4
522 util/mkerr.pl (1.18.2.6), "Exp", lines: +2 -1
523 util/mkfiles.pl (1.12.2.1), "Exp", lines: +8 -1
524 util/pod2mantest (1.1.2.7), "Exp", lines: +1 -1
525 util/selftest.pl (1.18.2.1), "Exp", lines: +2 -2
526 util/pl/BC-16.pl (1.2.2.1), "Exp", lines: +1 -1
527 util/pl/BC-32.pl (1.11.2.4), "Exp", lines: +1 -1
528 util/pl/Mingw32.pl (1.12.6.5), "Exp", lines: +1 -1
529 util/pl/OS2-EMX.pl (1.1.2.3), "Exp", lines: +1 -1
530 util/pl/VC-16.pl (1.3.2.1), "Exp", lines: +2 -2
531 util/pl/VC-32.pl (1.11.2.3), "Exp", lines: +2 -2
532 util/pl/VC-CE.pl (1.1.2.5), "Exp", lines: +1 -1
533 util/pl/ultrix.pl (1.2.8.1), "Exp", lines: +1 -1
535 Pull FIPS back into stable.
537 2004-05-12 10:27 levitte
539 Changed:
540 apps/Makefile (1.1.4.2), "Exp", lines: +3 -1
542 Only check for FIPS signatures when FIPS is enabled.
544 2004-05-12 10:28 levitte
546 Changed:
547 crypto/des/FILES0 (1.1.4.2), "Exp", lines: +1 -1
549 Makefile.ssl changed name to Makefile.
551 2004-05-12 10:28 levitte
553 Changed:
554 fips/rand/fips_rand.c (1.1.2.4), "Exp", lines: +5 -1
556 Only really build this file when OPENSSL_FIPS is defined. And oh,
557 let's keep internal variables static.
559 2004-05-12 10:42 levitte
561 Changed:
562 fips/rand/fingerprint.sha1 (1.1.2.4), "Exp", lines: +1 -1
564 I forgot to modify the signature for fips_rand.c...
566 2004-05-12 10:46 levitte
568 Changed:
569 fips/rsa/.cvsignore (1.1.4.1), "Exp", lines: +1 -0
570 fips/.cvsignore (1.1.2.3), "Exp", lines: +1 -1
571 fips/aes/.cvsignore (1.1.2.3), "Exp", lines: +0 -3
572 fips/des/.cvsignore (1.1.2.3), "Exp", lines: +0 -2
573 fips/dsa/.cvsignore (1.1.2.3), "Exp", lines: +0 -1
574 fips/rand/.cvsignore (1.1.2.3), "Exp", lines: +0 -1
576 Ignore the 'lib' timestamp file.
578 2004-05-12 12:07 levitte
580 Changed:
581 fips/.cvsignore (1.1.2.4), "Exp", lines: +1 -0
582 fips/aes/.cvsignore (1.1.2.4), "Exp", lines: +1 -0
583 fips/des/.cvsignore (1.1.2.4), "Exp", lines: +1 -0
584 fips/dsa/.cvsignore (1.1.2.4), "Exp", lines: +1 -0
585 fips/rand/.cvsignore (1.1.2.4), "Exp", lines: +1 -0
586 fips/rsa/.cvsignore (1.1.4.2), "Exp", lines: +1 -0
587 fips/sha1/.cvsignore (1.1.2.4), "Exp", lines: +1 -0
589 Ignore 'Makefile.save'
591 2004-05-12 16:11 ben
593 Changed:
594 crypto/rand/rand.h (1.26.2.8), "Exp", lines: +2 -0
595 crypto/rand/rand_err.c (1.6.2.4), "Exp", lines: +2 -0
596 fips/fingerprint.sha1 (1.1.2.5), "Exp", lines: +1 -1
597 fips/fips.c (1.1.2.4), "Exp", lines: +5 -1
598 fips/rand/fingerprint.sha1 (1.1.2.5), "Exp", lines: +1 -1
599 fips/rand/fips_rand.c (1.1.2.5), "Exp", lines: +29 -0
601 Blow up in people's faces if they don't reseed.
603 2004-05-15 19:51 ben
605 Changed:
606 crypto/dh/dh.h (1.23.2.6), "Exp", lines: +1 -0
607 crypto/dh/dh_err.c (1.6.2.3), "Exp", lines: +2 -1
608 crypto/dh/dh_gen.c (1.8.8.2), "Exp", lines: +9 -0
609 fips/fips_test_suite.c (1.1.4.2), "Exp", lines: +4 -3
610 fips/aes/fips_aesavs.c (1.1.2.11), "Exp", lines: +49 -1
611 fips/des/fingerprint.sha1 (1.1.2.4), "Exp", lines: +1 -1
612 fips/des/fips_desmovs.c (1.1.2.5), "Exp", lines: +49 -1
613 fips/des/fips_set_key.c (1.1.4.2), "Exp", lines: +2 -0
614 fips/sha1/fingerprint.sha1 (1.1.2.5), "Exp", lines: +1 -1
615 fips/sha1/fips_md32_common.h (1.1.2.4), "Exp", lines: +3 -0
616 fips/sha1/standalone.sha1 (1.1.2.6), "Exp", lines: +1 -1
618 Fix self-tests, ban some things in FIPS mode, fix copyrights.
620 2004-05-17 06:28 levitte
622 Changed:
623 util/mk1mf.pl (1.41.2.11), "Exp", lines: +8 -2
624 util/pl/BC-16.pl (1.2.2.2), "Exp", lines: +9 -4
625 util/pl/BC-32.pl (1.11.2.5), "Exp", lines: +8 -3
626 util/pl/Mingw32.pl (1.12.6.6), "Exp", lines: +7 -2
627 util/pl/OS2-EMX.pl (1.1.2.4), "Exp", lines: +7 -2
628 util/pl/VC-16.pl (1.3.2.2), "Exp", lines: +7 -2
629 util/pl/VC-32.pl (1.11.2.4), "Exp", lines: +7 -2
630 util/pl/VC-CE.pl (1.1.2.6), "Exp", lines: +7 -2
631 util/pl/linux.pl (1.3.6.1), "Exp", lines: +7 -2
632 util/pl/ultrix.pl (1.2.8.2), "Exp", lines: +7 -2
633 util/pl/unix.pl (1.2.8.1), "Exp", lines: +7 -2
635 Generate SHA1 files on Windows and other platforms supported by
636 mk1mf.pl, when building in FIPS mode.
638 Note: UNTESTED!
640 2004-05-17 06:30 levitte
642 Changed:
643 apps/apps.h (1.44.2.14), "Exp", lines: +3 -0
644 apps/openssl.c (1.48.2.10), "Exp", lines: +9 -5
646 Make sure the applications know when we are running in FIPS mode.
647 We can't use the variable in libcrypto, since it's supposedly
648 unknown.
650 Note: currently only supported in MONOLITH mode.
652 2004-05-17 06:31 levitte
654 Changed:
655 apps/enc.c (1.35.2.9), "Exp", lines: +10 -1
657 When in FIPS mode, use SHA1 to digest the key, rather than MD5, as
658 MD5 isn't a FIPS-approved algorithm.
660 Note: this means the user needs to keep track of this, and
661 we need to add support for that...
663 2004-05-19 16:16 levitte
665 Changed:
666 fips/rsa/fingerprint.sha1 (1.1.4.2), "Exp", lines: +2 -2
667 fips/rsa/fips_rsa_eay.c (1.1.4.2), "Exp", lines: +8 -8
668 fips/rsa/fips_rsa_gen.c (1.1.4.2), "Exp", lines: +1 -1
669 fips/dsa/fingerprint.sha1 (1.1.2.5), "Exp", lines: +2 -2
670 fips/dsa/fips_dsa_gen.c (1.1.4.2), "Exp", lines: +2 -2
671 fips/dsa/fips_dsa_ossl.c (1.1.2.5), "Exp", lines: +4 -4
672 fips/aes/fingerprint.sha1 (1.1.2.4), "Exp", lines: +1 -1
673 fips/aes/fips_aes_core.c (1.1.2.4), "Exp", lines: +5 -5
674 crypto/rsa/rsa.h (1.36.2.11), "Exp", lines: +4 -0
675 crypto/aes/aes.h (1.1.2.10), "Exp", lines: +6 -0
676 crypto/dsa/dsa.h (1.26.2.5), "Exp", lines: +4 -0
678 Define FIPS_*_SIZE_T for AES, DSA and RSA as well, in preparation
679 for size_t-ification of those algorithms in future version of
680 OpenSSL...
682 2004-05-27 11:33 levitte
684 Changed:
685 makevms.com (1.35.2.3), "Exp", lines: +27 -0
687 Copy the FIPS files to the temporary openssl include directory.
689 2004-05-27 12:04 levitte
691 Changed:
692 fips/fips-lib.com (1.1.2.1), "Exp", lines: +1179 -0
693 makevms.com (1.35.2.4), "Exp", lines: +8 -0
695 Compile the FIPS directory on VMS as well. fips-lib.com is
696 essentially a copy of crypto-lib.com, with just a few edits.
698 2004-05-27 12:07 levitte
700 Changed:
701 fips/install.com (1.1.2.1), "Exp", lines: +55 -0
702 install.com (1.4.2.2), "Exp", lines: +6 -6
704 Run an installation of FIPS stuff as well.
706 2004-05-27 12:19 levitte
708 Changed:
709 test/maketests.com (1.13.2.5), "Exp", lines: +3 -3
710 apps/makeapps.com (1.18.2.5), "Exp", lines: +3 -3
712 Make sure o_str.h is reachable.
714 2004-06-19 15:15 ben
716 Changed:
717 Makefile.org (1.154.2.80), "Exp", lines: +1 -1
718 crypto/dh/dh.h (1.23.2.7), "Exp", lines: +0 -1
719 crypto/dh/dh_check.c (1.6.2.1), "Exp", lines: +4 -0
720 crypto/dh/dh_err.c (1.6.2.4), "Exp", lines: +0 -1
721 crypto/dh/dh_gen.c (1.8.8.3), "Exp", lines: +5 -9
722 crypto/dh/dh_key.c (1.16.2.3), "Exp", lines: +4 -0
723 fips/Makefile (1.1.4.2), "Exp", lines: +13 -14
724 fips/fingerprint.sha1 (1.1.2.6), "Exp", lines: +2 -2
725 fips/fips.h (1.1.2.4), "Exp", lines: +1 -0
726 fips/fips_err.h (1.1.4.2), "Exp", lines: +1 -0
727 fips/fips_make_sha1 (1.1.2.6), "Exp", lines: +3 -0
728 fips/fips_test_suite.c (1.1.4.3), "Exp", lines: +13 -9
729 fips/openssl_fips_fingerprint (1.1.4.2), "Exp", lines: +1 -2
731 The version that was actually submitted for FIPS testing.
733 2004-06-19 15:16 ben
735 Changed:
736 fips/dh/Makefile (1.1.2.1), "Exp", lines: +92 -0
737 fips/dh/fingerprint.sha1 (1.1.2.1), "Exp", lines: +3 -0
738 fips/dh/fips_dh_check.c (1.1.2.1), "Exp", lines: +119 -0
739 fips/dh/fips_dh_gen.c (1.1.2.1), "Exp", lines: +182 -0
740 fips/dh/fips_dh_key.c (1.1.2.1), "Exp", lines: +222 -0
742 Add Diffie-Hellman to FIPS.
744 2004-06-19 15:18 ben
746 Changed:
747 fips/.cvsignore (1.1.2.5), "Exp", lines: +2 -0
748 fips/dh/.cvsignore (1.1.2.1), "Exp", lines: +1 -0
750 Update ignores.
752 2004-06-21 11:07 levitte
754 Changed:
755 fips/aes/Makefile (1.1.4.2), "Exp", lines: +7 -5
756 fips/des/Makefile (1.1.4.2), "Exp", lines: +7 -5
757 fips/dh/Makefile (1.1.2.2), "Exp", lines: +7 -6
758 fips/dsa/Makefile (1.1.4.2), "Exp", lines: +7 -6
759 fips/rsa/Makefile (1.1.4.2), "Exp", lines: +7 -6
760 fips/sha1/Makefile (1.1.4.2), "Exp", lines: +7 -5
762 Make sure we don't try to loop over an empty EXHEADER. In the
763 Makefiles where this was fixed by commenting away code, change it
764 to check for an empty EXHEADER instead, so we have less hassle in a
765 future where EXHEADER changes.
767 PR: 900
769 2004-06-21 20:05 levitte
771 Changed:
772 Makefile.org (1.154.2.82), "Exp", lines: +3 -1
774 Standard sh doesn't tolerate ! as part of the conditional command.
776 PR: 900
778 2004-06-28 22:33 levitte
780 Changed:
781 fips/dh/fips_dh_check.c (1.1.2.2), "Exp", lines: +6 -0
782 fips/dh/fips_dh_gen.c (1.1.2.2), "Exp", lines: +6 -2
783 fips/dh/fips_dh_key.c (1.1.2.2), "Exp", lines: +8 -0
785 Make sure the FIPS stuff is only really compiled when in FIPS mode.
787 2004-07-12 19:59 ben
789 Changed:
790 fips/fips_test_suite.c (1.1.4.4), "Exp", lines: +39 -6
791 fips/dh/fingerprint.sha1 (1.1.2.2), "Exp", lines: +3 -3
793 Corrected test program.
795 2004-07-17 14:48 appro
797 Changed:
798 fips/des/Makefile (1.1.4.3), "Exp", lines: +1 -1
800 Eliminate enforced -g from CFLAGS. It switches off optimization
801 with some compilers, e.g. DEC C.
803 2004-07-21 19:41 steve
805 Changed:
806 crypto/pem/pem_all.c (1.20.2.1), "Exp", lines: +119 -0
808 When in FIPS mode write private keys in PKCS#8 and PBES2 format to
809 avoid use of prohibited MD5 algorithm.
811 2004-07-23 15:20 ben
813 Changed:
814 fips/rand/fingerprint.sha1 (1.1.2.7), "Exp", lines: +1 -1
815 fips/rand/fips_rand.c (1.1.2.7), "Exp", lines: +22 -7
816 fips/rand/fips_randtest.c (1.1.2.5), "Exp", lines: +2 -2
818 Convert to X9.31.
820 2004-07-21 19:35 steve
822 Changed:
823 fips/fingerprint.sha1 (1.1.2.7), "Exp", lines: +1 -1
824 fips/fips.c (1.1.2.5), "Exp", lines: +3 -3
825 fips/rsa/fingerprint.sha1 (1.1.4.3), "Exp", lines: +1 -1
826 fips/rsa/fips_rsa_selftest.c (1.1.4.2), "Exp", lines: +8 -8
828 Avoid compiler warnings.
830 2004-07-27 02:17 steve
832 Changed:
833 fips/fips_test_suite.c (1.1.4.5), "Exp", lines: +9 -8
835 Stop compiler warnings.
837 2004-07-27 02:20 steve
839 Changed:
840 crypto/err/err.c (1.51.2.6), "Exp", lines: +1 -0
842 Add FIPS name to error library.
844 2004-07-27 14:22 steve
846 Changed:
847 Makefile.org (1.154.2.84), "Exp", lines: +3 -3
848 fips/fips_check_sha1 (1.1.2.6), "Exp", lines: +1 -1
849 fips/openssl_fips_fingerprint (1.1.4.3), "Exp", lines: +1 -1
851 Rename libcrypto.sha1 to libcrypto.a.sha1
853 2004-07-27 20:28 steve
855 Changed:
856 ssl/s3_lib.c (1.57.2.11), "Exp", lines: +33 -33
857 ssl/ssl.h (1.126.2.20), "Exp", lines: +1 -0
858 ssl/ssl_ciph.c (1.33.2.9), "Exp", lines: +11 -0
859 ssl/ssl_locl.h (1.47.2.3), "Exp", lines: +2 -1
861 New cipher "strength" FIPS which specifies that a cipher suite is
862 FIPS compatible.
864 New cipherstring "FIPS" is all FIPS compatible ciphersuites
865 except eNULL.
867 Only allow FIPS ciphersuites in FIPS mode.
869 2004-07-28 04:24 levitte
871 Changed:
872 makevms.com (1.35.2.6), "Exp", lines: +2 -2
874 From the FIPS directory, darnit!
876 2004-07-28 15:47 levitte
878 Changed:
879 makevms.com (1.35.2.7), "Exp", lines: +5 -1
881 Define OPENSSL_FIPS in opensslconf.h if a logical name with the
882 same name is defined.
884 Go up one directory level before dealing with FIPS stuff.
886 2004-07-30 00:26 levitte
888 Changed:
889 fips/fips-lib.com (1.1.2.2), "Exp", lines: +3 -3
891 We're building crypto stuff, not ssl stuff. Additionally, we're in
892 the fips subdirectory, not the crypto one...
894 2004-07-30 16:37 levitte
896 Changed:
897 fips/sha1/fingerprint.sha1 (1.1.2.7), "Exp", lines: +2 -2
898 fips/sha1/fips_md32_common.h (1.1.2.6), "Exp", lines: +1 -1
899 fips/sha1/fips_sha_locl.h (1.1.2.5), "Exp", lines: +2 -2
900 fips/sha1/fips_standalone_sha1.c (1.1.2.5), "Exp", lines: +1 -1
901 fips/sha1/standalone.sha1 (1.1.2.8), "Exp", lines: +3 -3
902 ssl/ssl_ciph.c (1.33.2.10), "Exp", lines: +2 -2
903 fips/rsa/fingerprint.sha1 (1.1.4.4), "Exp", lines: +2 -2
904 fips/rsa/fips_rsa_eay.c (1.1.4.3), "Exp", lines: +1 -1
905 fips/rsa/fips_rsa_gen.c (1.1.4.3), "Exp", lines: +1 -1
906 fips/dh/fingerprint.sha1 (1.1.2.3), "Exp", lines: +1 -1
907 fips/dh/fips_dh_gen.c (1.1.2.3), "Exp", lines: +1 -1
908 fips/dsa/fingerprint.sha1 (1.1.2.6), "Exp", lines: +2 -2
909 fips/dsa/fips_dsa_gen.c (1.1.4.3), "Exp", lines: +4 -3
910 fips/dsa/fips_dsa_ossl.c (1.1.2.6), "Exp", lines: +2 -2
911 fips/des/fingerprint.sha1 (1.1.2.5), "Exp", lines: +2 -2
912 fips/des/fips_des_enc.c (1.1.2.5), "Exp", lines: +2 -2
913 fips/des/fips_set_key.c (1.1.4.3), "Exp", lines: +3 -3
914 fips/fingerprint.sha1 (1.1.2.8), "Exp", lines: +2 -2
915 fips/fips.c (1.1.2.6), "Exp", lines: +76 -23
916 fips/fips.h (1.1.2.5), "Exp", lines: +2 -3
917 fips/fips_locl.h (1.1.4.2), "Exp", lines: +7 -2
918 fips/aes/fingerprint.sha1 (1.1.2.5), "Exp", lines: +1 -1
919 fips/aes/fips_aes_core.c (1.1.2.5), "Exp", lines: +1 -1
920 crypto/rand/md_rand.c (1.69.2.5), "Exp", lines: +1 -1
921 crypto/rand/rand_lib.c (1.15.2.5), "Exp", lines: +2 -1
922 crypto/dsa/dsa_sign.c (1.10.2.6), "Exp", lines: +2 -2
923 crypto/dsa/dsa_vrf.c (1.10.2.6), "Exp", lines: +1 -1
924 crypto/pem/pem_all.c (1.20.2.2), "Exp", lines: +2 -2
925 crypto/cryptlib.c (1.32.2.12), "Exp", lines: +122 -6
926 crypto/crypto.h (1.62.2.8), "Exp", lines: +8 -1
927 crypto/md32_common.h (1.22.2.7), "Exp", lines: +2 -2
929 To protect FIPS-related global variables, add locking mechanisms
930 around them.
932 NOTE: because two new locks are added, this adds potential
933 binary incompatibility with earlier versions in the 0.9.7 series.
934 However, those locks will only ever be touched when FIPS_mode_set()
935 is called and after, thanks to a variable that's only changed from
936 0 to 1 once (when FIPS_mode_set() is called). So basically, as
937 long as FIPS mode hasn't been engaged explicitely by the calling
938 application, the new locks are treated as if they didn't exist at
939 all, thus not becoming a problem. Applications that are built or
940 rebuilt to use FIPS functionality will need to be recompiled in any
941 case, thus not being a problem either.
943 2004-08-02 16:15 levitte
945 Changed:
946 crypto/cryptlib.c (1.32.2.13), "Exp", lines: +4 -4
948 Let's lock a write lock when changing values, shall we?
950 Thanks to Dr Stephen Henson <shenson@drh-consultancy.co.uk>
951 for making me aware of this error.
953 2004-08-05 20:11 steve
955 Changed:
956 fips/fingerprint.sha1 (1.1.2.9), "Exp", lines: +1 -1
957 fips/fips.c (1.1.2.7), "Exp", lines: +1 -1
959 Stop compiler giving bogus shadow warning.
961 2004-08-09 14:13 levitte
963 Changed:
964 makevms.com (1.35.2.8), "Exp", lines: +1 -1
966 In the fips directory, we use FIPS-LIB.COM, not CRYPTO-LIB.COM...
968 2004-08-09 14:14 levitte
970 Changed:
971 fips/fips-lib.com (1.1.2.3), "Exp", lines: +4 -4
973 Correct typos and include directory specifications.
975 2004-08-10 11:11 levitte
977 Changed:
978 fips/fips-lib.com (1.1.2.4), "Exp", lines: +2 -1
980 Update the VMS fips library builder with the DH library.
982 2004-08-10 12:04 levitte
984 Changed:
985 fips/rand/fingerprint.sha1 (1.1.2.8), "Exp", lines: +1 -1
986 fips/rand/fips_rand.c (1.1.2.8), "Exp", lines: +7 -1
988 With DEC C in ANSI C mode, we need to define _XOPEN_SOURCE_EXTENDED
989 to get struct timeval and gettimeofday().
991 2004-09-06 16:19 levitte
993 Changed:
994 fips/fips.c (1.1.2.8), "Exp", lines: +5 -4
996 Replace the bogus checks of n with proper uses of feof(), ferror()
997 and clearerr().
999 2004-09-06 16:21 levitte
1001 Changed:
1002 fips/sha1/fips_sha_locl.h (1.1.2.6), "Exp", lines: +2 -2
1004 num is an unsigned long, but since it was transfered from
1005 crypto/sha/sha_locl.h, where it is in fact an int, we need to check
1006 for less-than-zero as if it was an int...
1008 2004-10-08 12:03 ben
1010 Changed:
1011 fips/fingerprint.sha1 (1.1.2.10), "Exp", lines: +1 -1
1012 fips/sha1/fingerprint.sha1 (1.1.2.8), "Exp", lines: +1 -1
1013 fips/sha1/standalone.sha1 (1.1.2.9), "Exp", lines: +1 -1
1015 Update fingerprints.
1017 2004-10-14 07:51 levitte
1019 Changed:
1020 VMS/mkshared.com (1.3.2.1), "Exp", lines: +8 -0
1022 We need to check for OPENSSL_FIPS when building shared libraries,
1023 so we get correct transfer vectors for those functions when
1024 required.
1026 2004-10-26 13:47 steve
1028 Changed:
1029 util/mkfiles.pl (1.12.2.2), "Exp", lines: +1 -0
1031 Add fips/dh directory to mkfiles.pl
1033 2004-10-26 14:17 levitte
1035 Changed:
1036 fips/sha1/Makefile (1.1.4.4), "Exp", lines: +3 -1
1037 util/mkfiles.pl (1.12.2.3), "Exp", lines: +1 -0
1038 fips/Makefile (1.1.4.5), "Exp", lines: +7 -1
1039 crypto/sha/Makefile (1.1.4.4), "Exp", lines: +1 -7
1041 fips/dh was missing in mkfiles.pl. make update
1043 2004-10-26 15:01 steve
1045 Changed:
1046 util/mkfiles.pl (1.12.2.4), "Exp", lines: +0 -1
1048 Only add fips/dh once...
1050 2004-11-01 09:20 levitte
1052 Changed:
1053 fips/rand/fingerprint.sha1 (1.1.2.9), "Exp", lines: +1 -1
1054 fips/rand/fips_rand.c (1.1.2.9), "Exp", lines: +3 -1
1056 Make sure _XOPEN_SOURCE_EXTENDED is correctly defined, and only if
1057 not already defined.
1059 2004-12-09 19:03 appro
1061 vChanged:
1062 crypto/Makefile (1.1.4.4), "Exp", lines: +2 -0
1064 Postpone linking of shared libcrypto in FIPS build.
1066 2004-12-09 19:13 appro
1068 Changed:
1069 fips/fingerprint.sha1 (1.1.2.11), "Exp", lines: +1 -1
1070 fips/fips.c (1.1.2.9), "Exp", lines: +13 -1
1071 fips/openssl_fips_fingerprint (1.1.4.4), "Exp", lines: +4 -2
1073 Cygwin specific FIPS fix-ups.
1075 2004-12-09 23:43 appro
1077 Changed:
1078 Configure (1.314.2.100), "Exp", lines: +2 -3
1079 crypto/des/des_enc.c (1.11.2.5), "Exp", lines: +2 -2
1081 Eliminate false dependency on 386 config option is FIPS context.
1082 At the same time limit assembler support to ELF platforms [that's
1083 what is there, ELF modules].
1085 2004-12-10 12:37 appro
1087 Changed:
1088 Configure (1.314.2.101), "Exp", lines: +10 -3
1089 crypto/des/des_enc.c (1.11.2.6), "Exp", lines: +2 -2
1091 Respect no-asm with fips option and disable FIPS DES assembler in
1092 shared context [because it's not PIC].
1094 2004-12-10 14:15 appro
1096 Changed:
1097 fips/sha1/fingerprint.sha1 (1.1.2.10), "Exp", lines: +1 -1
1098 fips/sha1/standalone.sha1 (1.1.2.11), "Exp", lines: +1 -1
1099 fips/sha1/asm/sx86-elf.s (1.1.4.3), "Exp", lines: +32 -32
1101 Solaris x86 assembler update.
1103 2004-12-10 17:30 appro
1105 Changed:
1106 fips/fips_check_sha1 (1.1.2.7), "Exp", lines: +1 -1
1107 fips/openssl_fips_fingerprint (1.1.4.5), "Exp", lines: +1 -1
1108 fips/sha1/Makefile (1.1.4.6), "Exp", lines: +1 -1
1110 Adapt FIPS sub-tree for mingw.
1112 2005-01-03 18:46 steve
1114 Changed:
1115 fips/rsa/fingerprint.sha1 (1.1.4.5), "Exp", lines: +1 -1
1116 fips/rsa/fips_rsa_selftest.c (1.1.4.3), "Exp", lines: +55 -11
1118 RSA KAT.
1120 2005-01-11 17:54 levitte
1122 Changed:
1123 fips/rsa/fingerprint.sha1 (1.1.4.6), "Exp", lines: +1 -1
1124 fips/rsa/fips_rsa_selftest.c (1.1.4.4), "Exp", lines: +2 -2
1126 Clear signed vs. unsigned conflicts. Change the fingerprint
1127 accordingly.
1129 2005-01-11 19:25 levitte
1131 Changed:
1132 ssl/ssltest.c (1.53.2.24), "Exp", lines: +2 -2
1133 fips/rand/fips_randtest.c (1.1.2.6), "Exp", lines: +3 -3
1134 fips/sha1/fips_sha1test.c (1.1.2.5), "Exp", lines: +10 -4
1135 fips/des/fips_desmovs.c (1.1.2.6), "Exp", lines: +8 -7
1136 fips/dsa/fips_dsatest.c (1.1.2.5), "Exp", lines: +2 -2
1137 apps/openssl.c (1.48.2.12), "Exp", lines: +1 -1
1138 fips/aes/fips_aesavs.c (1.1.2.12), "Exp", lines: +8 -7
1140 Use EXIT() instead of exit().
1142 2005-01-26 21:00 steve
1144 Changed:
1145 apps/dgst.c (1.23.2.13), "Exp", lines: +10 -0
1146 apps/pkcs12.c (1.60.2.13), "Exp", lines: +8 -1
1147 crypto/crypto.h (1.62.2.9), "Exp", lines: +49 -0
1148 crypto/md32_common.h (1.22.2.9), "Exp", lines: +1 -1
1149 crypto/bf/bf_skey.c (1.6.2.1), "Exp", lines: +2 -1
1150 crypto/bf/blowfish.h (1.9.2.1), "Exp", lines: +4 -1
1151 crypto/cast/c_skey.c (1.5.6.1), "Exp", lines: +3 -1
1152 crypto/cast/cast.h (1.7.2.1), "Exp", lines: +4 -1
1153 crypto/evp/bio_md.c (1.11.2.3), "Exp", lines: +2 -7
1154 crypto/evp/digest.c (1.21.2.7), "Exp", lines: +11 -0
1155 crypto/evp/e_aes.c (1.6.2.11), "Exp", lines: +11 -11
1156 crypto/evp/e_des.c (1.5.2.9), "Exp", lines: +5 -3
1157 crypto/evp/e_des3.c (1.8.2.8), "Exp", lines: +6 -6
1158 crypto/evp/evp.h (1.86.2.16), "Exp", lines: +17 -0
1159 crypto/evp/evp_enc.c (1.28.2.11), "Exp", lines: +15 -1
1160 crypto/evp/evp_err.c (1.23.2.4), "Exp", lines: +6 -1
1161 crypto/evp/evp_locl.h (1.7.2.7), "Exp", lines: +17 -2
1162 crypto/evp/m_dss.c (1.8.2.1), "Exp", lines: +1 -1
1163 crypto/evp/m_md2.c (1.9.2.1), "Exp", lines: +1 -0
1164 crypto/evp/m_md4.c (1.8.2.1), "Exp", lines: +1 -0
1165 crypto/evp/m_md5.c (1.9.2.1), "Exp", lines: +1 -0
1166 crypto/evp/m_mdc2.c (1.9.2.1), "Exp", lines: +1 -0
1167 crypto/evp/m_sha.c (1.8.2.2), "Exp", lines: +1 -0
1168 crypto/evp/m_sha1.c (1.8.2.1), "Exp", lines: +1 -1
1169 crypto/evp/names.c (1.7.2.1), "Exp", lines: +3 -0
1170 crypto/hmac/hmac.c (1.12.2.3), "Exp", lines: +7 -0
1171 crypto/hmac/hmac.h (1.14.2.2), "Exp", lines: +1 -0
1172 crypto/idea/i_skey.c (1.5.6.1), "Exp", lines: +13 -0
1173 crypto/idea/idea.h (1.10.2.1), "Exp", lines: +4 -0
1174 crypto/md2/md2.h (1.11.2.1), "Exp", lines: +3 -0
1175 crypto/md2/md2_dgst.c (1.13.2.4), "Exp", lines: +3 -1
1176 crypto/md4/md4.h (1.3.2.1), "Exp", lines: +3 -0
1177 crypto/md4/md4_dgst.c (1.2.2.2), "Exp", lines: +1 -1
1178 crypto/md5/md5.h (1.10.2.3), "Exp", lines: +3 -0
1179 crypto/md5/md5_dgst.c (1.16.2.2), "Exp", lines: +1 -1
1180 crypto/mdc2/mdc2.h (1.9.2.1), "Exp", lines: +3 -1
1181 crypto/mdc2/mdc2dgst.c (1.13.2.1), "Exp", lines: +3 -1
1182 crypto/rc2/rc2.h (1.10.2.1), "Exp", lines: +4 -1
1183 crypto/rc2/rc2_skey.c (1.4.6.1), "Exp", lines: +13 -0
1184 crypto/rc4/rc4.h (1.10.2.2), "Exp", lines: +3 -0
1185 crypto/rc4/rc4_skey.c (1.10.8.2), "Exp", lines: +2 -1
1186 crypto/rc5/rc5.h (1.5.2.1), "Exp", lines: +4 -1
1187 crypto/rc5/rc5_skey.c (1.4.6.1), "Exp", lines: +14 -0
1188 crypto/ripemd/ripemd.h (1.8.2.1), "Exp", lines: +3 -0
1189 crypto/ripemd/rmd_dgst.c (1.13.2.2), "Exp", lines: +2 -1
1190 crypto/sha/sha.h (1.11.2.2), "Exp", lines: +3 -0
1191 crypto/sha/sha_locl.h (1.16.2.3), "Exp", lines: +4 -0
1192 crypto/x509/x509_cmp.c (1.22.2.4), "Exp", lines: +7 -1
1193 crypto/x509/x509_vfy.c (1.56.2.13), "Exp", lines: +1 -1
1194 ssl/s3_clnt.c (1.53.2.18), "Exp", lines: +2 -0
1195 ssl/s3_enc.c (1.31.2.9), "Exp", lines: +3 -0
1196 ssl/s3_srvr.c (1.85.2.23), "Exp", lines: +2 -0
1197 ssl/t1_enc.c (1.27.2.9), "Exp", lines: +2 -0
1199 FIPS algorithm blocking.
1201 Non FIPS algorithms are not normally allowed in FIPS mode.
1203 Any attempt to use them via high level functions will
1204 return an error.
1206 The low level non-FIPS algorithm functions cannot return
1207 errors so they produce assertion failures. HMAC also has to give an
1208 assertion error because it (erroneously) can't return an error
1209 either.
1211 There are exceptions (such as MD5 in TLS and non
1212 cryptographic use of algorithms) and applications can override the
1213 blocking and use non FIPS algorithms anyway.
1215 For low level functions the override is perfomed by
1216 prefixing the algorithm initalization function with "private_" for
1217 example private_MD5_Init().
1219 For high level functions an override is performed by
1220 setting a flag in the context.
1222 2005-01-27 02:49 steve
1224 Changed:
1225 apps/dgst.c (1.23.2.14), "Exp", lines: +9 -5
1226 crypto/crypto.h (1.62.2.10), "Exp", lines: +3 -0
1227 crypto/evp/digest.c (1.21.2.8), "Exp", lines: +34 -0
1228 crypto/hmac/hmac.c (1.12.2.4), "Exp", lines: +9 -0
1230 More FIPS algorithm blocking.
1232 Catch attempted use of non FIPS algorithms with HMAC.
1234 Give an assertion error for applications that ignore FIPS
1235 digest errors.
1237 Make -non-fips-allow work with dgst and HMAC.
1239 2005-01-28 15:03 steve
1241 Changed:
1242 apps/dgst.c (1.23.2.15), "Exp", lines: +2 -1
1243 apps/enc.c (1.35.2.13), "Exp", lines: +38 -4
1244 crypto/evp/e_rc4.c (1.11.2.2), "Exp", lines: +1 -0
1245 crypto/evp/evp.h (1.86.2.17), "Exp", lines: +3 -0
1246 crypto/evp/evp_enc.c (1.28.2.12), "Exp", lines: +60 -15
1247 crypto/evp/evp_locl.h (1.7.2.8), "Exp", lines: +1 -0
1248 test/testenc (1.3.8.2), "Exp", lines: +8 -8
1250 Further FIPS algorithm blocking.
1252 Fixes to cipher blocking and enabling code.
1254 Add option -non-fips-allow to 'enc' and update testenc.
1256 2005-01-31 02:33 steve
1258 Changed:
1259 ssl/s23_clnt.c (1.20.2.7), "Exp", lines: +16 -0
1260 ssl/s23_srvr.c (1.41.2.6), "Exp", lines: +9 -0
1261 ssl/s3_clnt.c (1.53.2.19), "Exp", lines: +0 -8
1262 ssl/s3_enc.c (1.31.2.10), "Exp", lines: +1 -0
1263 ssl/s3_srvr.c (1.85.2.24), "Exp", lines: +0 -8
1264 ssl/ssl.h (1.126.2.21), "Exp", lines: +1 -0
1265 ssl/ssl_cert.c (1.48.2.10), "Exp", lines: +0 -8
1266 ssl/ssl_err.c (1.41.2.4), "Exp", lines: +2 -1
1267 ssl/ssl_lib.c (1.110.2.13), "Exp", lines: +8 -9
1268 ssl/t1_enc.c (1.27.2.10), "Exp", lines: +0 -18
1270 Only allow TLS is FIPS mode.
1272 Remove old FIPS_allow_md5() calls.
1274 2005-02-05 19:24 steve
1276 Changed:
1277 apps/req.c (1.88.2.18), "Exp", lines: +8 -1
1278 apps/x509.c (1.67.2.20), "Exp", lines: +8 -1
1280 In FIPS mode use SHA1 as default digest in x509 and req utilities.
1282 2005-03-15 10:46 appro
1284 Changed:
1285 Makefile.org (1.154.2.96), "Exp", lines: +1 -1
1286 crypto/Makefile (1.1.4.6), "Exp", lines: +2 -3
1287 fips/Makefile (1.1.4.8), "Exp", lines: +4 -1
1289 Real Bourne shell doesn't accept ! as in "if ! grep ..." Fix this
1290 in crypto/Makefile and make Makefile.org and fips/Makefile more
1291 discreet.
1293 2005-03-22 18:29 steve
1295 Changed:
1296 fips/fingerprint.sha1 (1.1.2.12), "Exp", lines: +1 -1
1297 fips/fips.c (1.1.2.10), "Exp", lines: +1 -0
1299 Fix memory leak.
1301 2005-03-27 05:36 steve
1303 Changed:
1304 crypto/evp/e_null.c (1.9.2.1), "Exp", lines: +1 -1
1305 ssl/s3_lib.c (1.57.2.13), "Exp", lines: +3 -3
1307 Allow 'null' cipher and appropriate Kerberos ciphersuites in FIPS
1308 mode.
1310 2005-04-14 14:44 steve
1312 Changed:
1313 fips/fipshashes.sha1 (1.1.2.1), "Exp", lines: +29 -0
1314 util/checkhash.pl (1.1.2.1), "Exp", lines: +181 -0
1316 Perl script that checks or rebuilds FIPS hash files. This works on
1317 both Unix and Windows.
1319 Merge all FIPS hash files into a single hash file
1320 fips/fips.sha1
1322 2005-04-15 05:27 steve
1324 Changed:
1325 fips/Makefile (1.1.4.9), "Exp", lines: +1 -1
1326 fips/aes/Makefile (1.1.4.4), "Exp", lines: +1 -4
1327 fips/des/Makefile (1.1.4.6), "Exp", lines: +1 -4
1328 fips/dh/Makefile (1.1.2.5), "Exp", lines: +1 -4
1329 fips/dsa/Makefile (1.1.4.4), "Exp", lines: +1 -4
1330 fips/rand/Makefile (1.1.4.3), "Exp", lines: +1 -4
1331 fips/rsa/Makefile (1.1.4.5), "Exp", lines: +1 -4
1332 fips/sha1/Makefile (1.1.4.9), "Exp", lines: +1 -7
1334 Update hash checking in makefiles to use new perl script.
1336 2005-04-17 06:37 steve
1338 Changed:
1339 util/checkhash.pl (1.1.2.2), "Exp", lines: +163 -127
1341 Modify checkhash.pl so it can be run standalone or included as a
1342 funtion in another perl script.
1344 2005-04-17 16:00 appro
1346 Changed:
1347 fips/sha1/Makefile (1.1.4.10), "Exp", lines: +9 -5
1349 Bring back fips_standalone_sha1.
1351 2005-04-17 16:17 appro
1353 Deleted:
1354 fips/sha1/asm/sx86-elf.s (1.1.4.4)
1355 Changed:
1356 Configure (1.314.2.114), "Exp", lines: +1 -1
1357 fips/fipshashes.sha1 (1.1.2.2), "Exp", lines: +1 -1
1358 fips/sha1/Makefile (1.1.4.11), "Exp", lines: +1 -1
1359 fips/sha1/standalone.sha1 (1.1.2.13), "Exp", lines: +1 -1
1360 fips/sha1/asm/fips-sx86-elf.s (1.1.2.1), "Exp", lines: +1568 -0
1362 Rename fips/sha1/sx86-elf.s to fips/sha1/fips-sx86-elf.s.
1364 2005-04-17 16:21 steve
1366 Changed:
1367 util/checkhash.pl (1.1.2.3), "Exp", lines: +2 -0
1369 Return 0 for successful hash check.
1371 2005-04-17 16:54 appro
1373 Changed:
1374 Configure (1.314.2.116), "Exp", lines: +8 -1
1375 Makefile.org (1.154.2.99), "Exp", lines: +3 -2
1376 crypto/aes/aes_cbc.c (1.1.2.11), "Exp", lines: +2 -0
1377 fips/fipshashes.sha1 (1.1.2.4), "Exp", lines: +1 -0
1378 fips/aes/Makefile (1.1.4.5), "Exp", lines: +4 -2
1379 fips/aes/asm/fips-ax86-elf.s (1.1.2.1), "Exp", lines: +1822 -0
1381 Throw in fips/aes/asm/fips-ax86-elf.s.
1383 2005-04-17 16:35 appro
1385 Changed:
1386 Configure (1.314.2.115), "Exp", lines: +1 -1
1387 fips/fipshashes.sha1 (1.1.2.3), "Exp", lines: +1 -1
1388 fips/des/asm/fips-dx86-elf.s (1.1.4.2), "Exp", lines: +108 -98
1390 Regenerate fips/des/asm/fips-dx86-elf.s with -fPIC flag.
1392 2005-04-17 17:26 appro
1394 Changed:
1395 crypto/cryptlib.c (1.32.2.18), "Exp", lines: +6 -55
1396 crypto/crypto.h (1.62.2.11), "Exp", lines: +0 -3
1397 fips/fips.c (1.1.2.11), "Exp", lines: +62 -8
1398 fips/fips.h (1.1.2.7), "Exp", lines: +2 -3
1399 fips/fips_locl.h (1.1.4.3), "Exp", lines: +6 -3
1400 fips/fipshashes.sha1 (1.1.2.5), "Exp", lines: +4 -4
1401 fips/rand/fips_rand.c (1.1.2.10), "Exp", lines: +3 -1
1402 fips/rsa/fips_rsa_gen.c (1.1.4.4), "Exp", lines: +4 -2
1404 Resolve minor binary compatibility issues in fips.
1406 2005-04-17 18:22 appro
1408 Changed:
1409 fips/fipshashes.sha1 (1.1.2.6), "Exp", lines: +12 -12
1410 fips/des/fips_des_locl.h (1.1.2.4), "Exp", lines: +1 -1
1411 fips/des/fips_set_key.c (1.1.4.4), "Exp", lines: +2 -2
1412 fips/dh/fips_dh_key.c (1.1.2.3), "Exp", lines: +1 -1
1413 fips/dsa/fips_dsa_ossl.c (1.1.2.7), "Exp", lines: +1 -1
1414 fips/dsa/fips_dsa_selftest.c (1.1.4.2), "Exp", lines: +3 -3
1415 fips/rand/fips_rand.c (1.1.2.11), "Exp", lines: +2 -2
1416 fips/rand/fips_rand.h (1.1.2.5), "Exp", lines: +1 -1
1417 fips/rsa/fips_rsa_eay.c (1.1.4.4), "Exp", lines: +1 -1
1418 fips/rsa/fips_rsa_gen.c (1.1.4.5), "Exp", lines: +1 -1
1419 fips/rsa/fips_rsa_selftest.c (1.1.4.5), "Exp", lines: +11 -11
1420 fips/sha1/fips_sha1_selftest.c (1.1.4.2), "Exp", lines: +1 -1
1421 fips/sha1/fips_sha1dgst.c (1.1.2.5), "Exp", lines: +1 -1
1422 fips/sha1/standalone.sha1 (1.1.2.14), "Exp", lines: +2 -2
1424 Minor fips const-ification.
1426 2005-04-18 07:02 steve
1428 Changed:
1429 crypto/bf/bf_skey.c (1.6.2.2), "Exp", lines: +1 -0
1430 crypto/cast/c_skey.c (1.5.6.2), "Exp", lines: +1 -0
1431 crypto/idea/i_skey.c (1.5.6.2), "Exp", lines: +1 -0
1432 crypto/rc2/rc2_skey.c (1.4.6.2), "Exp", lines: +1 -0
1433 crypto/rc4/rc4_skey.c (1.10.8.3), "Exp", lines: +1 -0
1434 crypto/rc5/rc5_skey.c (1.4.6.2), "Exp", lines: +1 -0
1436 Pick up definition of FIPS_mode() in fips.h to avoid warnings.
1438 2005-04-18 10:34 steve
1440 Deleted:
1441 fips/fingerprint.sha1 (1.1.2.14)
1442 fips/fips_check_sha1 (1.1.2.8)
1443 fips/fips_make_sha1 (1.1.2.7)
1444 fips/aes/fingerprint.sha1 (1.1.2.7)
1445 fips/des/fingerprint.sha1 (1.1.2.6)
1446 fips/dh/fingerprint.sha1 (1.1.2.4)
1447 fips/dsa/fingerprint.sha1 (1.1.2.7)
1448 fips/rand/fingerprint.sha1 (1.1.2.10)
1449 fips/rsa/fingerprint.sha1 (1.1.4.7)
1450 fips/sha1/fingerprint.sha1 (1.1.2.12)
1451 Changed:
1452 fips/sha1/Makefile (1.1.4.12), "Exp", lines: +1 -4
1454 Remove obsolete fingerprint.sha1 files and associated scripts.
1455 Delete test in fips/sha1/Makefile: the top level test checks the
1456 same files.
1458 2005-04-19 09:11 appro
1460 Deleted:
1461 fips/fipshashes.sha1 (1.1.2.7)
1462 fips/sha1/standalone.sha1 (1.1.2.15)
1463 Changed:
1464 fips/fipshashes.c (1.1.2.1), "Exp", lines: +32 -0
1465 util/checkhash.pl (1.1.2.4), "Exp", lines: +7 -4
1467 Maintain fingerprint hashes as C source.
1469 2005-04-19 09:17 appro
1471 Changed:
1472 util/checkhash.pl (1.1.2.5), "Exp", lines: +1 -1
1474 Complete the transition C-code hashes.
1476 2005-04-21 19:06 steve
1478 Changed:
1479 apps/openssl.c (1.48.2.13), "Exp", lines: +0 -2
1480 fips/fips.c (1.1.2.12), "Exp", lines: +0 -27
1481 fips/fips.h (1.1.2.8), "Exp", lines: +0 -2
1482 fips/fipshashes.c (1.1.2.2), "Exp", lines: +2 -2
1484 Remove defunct FIPS_allow_md5() and related functions.
1486 2005-04-22 06:15 appro
1488 Changed:
1489 fips/fips.c (1.1.2.13), "Exp", lines: +3 -3
1490 fips/fips_err.h (1.1.4.4), "Exp", lines: +3 -3
1491 fips/fipshashes.c (1.1.2.4), "Exp", lines: +2 -2
1493 Move some variables to .bss.