summaryrefslogtreecommitdiffstats
path: root/crypto/evp/c_allc.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* SM4: Add SM4 block cipher to EVPRonald Tse2017-10-311-0/+10
| | | | | | Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/4552)
* Implement Aria GCM/CCM Modes and TLS cipher suitesJon Spillett2017-08-301-0/+6
| | | | | | | | | | | | | | AEAD cipher mode implementation is based on that used for AES: https://tools.ietf.org/html/rfc5116 TLS GCM cipher suites as specified in: https://tools.ietf.org/html/rfc6209 Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/4287)
* Use "" not <> for internal/ includesRich Salz2017-08-221-1/+1
| | | | | Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/4217)
* Implementation of the ARIA cipher as described in RFC 5794.Pauli2017-02-211-1/+31
| | | | | | | | | | | | | | This implementation is written in endian agnostic C code. No attempt at providing machine specific assembly code has been made. This implementation expands the evptests by including the test cases from RFC 5794 and ARIA official site rather than providing an individual test case. Support for ARIA has been integrated into the command line applications, but not TLS. Implemented modes are CBC, CFB1, CFB8, CFB128, CTR, ECB and OFB128. Reviewed-by: Andy Polyakov <appro@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2337)
* Copyright consolidation 04/10Rich Salz2016-05-171-54/+6
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* Add aliases for des-ede-ecb and des-ede3-ecb ciphers.Kirill Marinushkin2016-04-291-0/+4
| | | | | | | | | | | | | | | | | | | Currently we can get all block ciphers with EVP_get_cipherbyname("<alg_name>-<block-mode-name>") for example, by names "aes-128-ecb" or "des-ede-cbc". I found a problem with des-ede-ecb and des-ede3-ecb ciphers as they can be accessed only with names: EVP_get_cipherbyname("des-ede") EVP_get_cipherbyname("des-ede3") It breaks the general concept. In this patch I add aliases which allow to use names: EVP_get_cipherbyname("des-ede-ecb") EVP_get_cipherbyname("des-ede3-ecb") in addition to the currently used names. Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org>
* Remove OPENSSL_NO_AES guardsMatt Caswell2016-04-131-8/+6
| | | | | | | no-aes is no longer a Configure option and therefore the OPENSSL_NO_AES guards can be removed. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Rename int_*() functions to *_int()Matt Caswell2016-04-131-1/+1
| | | | | | | | | | There is a preference for suffixes to indicate that a function is internal rather than prefixes. Note: the suffix is only required to disambiguate internal functions and public symbols with the same name (but different case) Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org>
* Rename lots of *_intern or *_internal function to int_*Matt Caswell2016-04-131-1/+1
| | | | | | | | There was a lot of naming inconsistency, so we try and standardise on one form. Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org>
* Auto init/deinit libcryptoMatt Caswell2016-02-091-1/+2
| | | | | | | This builds on the previous commit to auto initialise/deinitialise libcrypto. Reviewed-by: Richard Levitte <levitte@openssl.org>
* Remove /* foo.c */ commentsRich Salz2016-01-261-1/+0
| | | | | | | | | | | | This was done by the following find . -name '*.[ch]' | /tmp/pl where /tmp/pl is the following three-line script: print unless $. == 1 && m@/\* .*\.[ch] \*/@; close ARGV if eof; # Close file to reset $. And then some hand-editing of other files. Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
* evp/c_allc.c: wire ChaCha20-Poly1305 and add tests.Andy Polyakov2015-12-101-0/+7
| | | | Reviewed-by: Richard Levitte <levitte@openssl.org>
* Identify and move common internal libcrypto header filesRichard Levitte2015-05-141-1/+1
| | | | | | | | | | | | | There are header files in crypto/ that are used by a number of crypto/ submodules. Move those to crypto/include/internal and adapt the affected source code and Makefiles. The header files that got moved are: crypto/cryptolib.h crypto/md32_common.h Reviewed-by: Rich Salz <rsalz@openssl.org>
* Big apps cleanup (option-parsing, etc)Rich Salz2015-04-241-0/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This is merges the old "rsalz-monolith" branch over to master. The biggest change is that option parsing switch from cascasding 'else if strcmp("-foo")' to a utility routine and somethin akin to getopt. Also, an error in the command line no longer prints the full summary; use -help (or --help :) for that. There have been many other changes and code-cleanup, see bullet list below. Special thanks to Matt for the long and detailed code review. TEMPORARY: For now, comment out CRYPTO_mem_leaks() at end of main Tickets closed: RT3515: Use 3DES in pkcs12 if built with no-rc2 RT1766: s_client -reconnect and -starttls broke RT2932: Catch write errors RT2604: port should be 'unsigned short' RT2983: total_bytes undeclared #ifdef RENEG RT1523: Add -nocert to fix output in x509 app RT3508: Remove unused variable introduced by b09eb24 RT3511: doc fix; req default serial is random RT1325,2973: Add more extensions to c_rehash RT2119,3407: Updated to dgst.pod RT2379: Additional typo fix RT2693: Extra include of string.h RT2880: HFS is case-insensitive filenames RT3246: req command prints version number wrong Other changes; incompatibilities marked with *: Add SCSV support Add -misalign to speed command Make dhparam, dsaparam, ecparam, x509 output C in proper style Make some internal ocsp.c functions void Only display cert usages with -help in verify Use global bio_err, remove "BIO*err" parameter from functions For filenames, - always means stdin (or stdout as appropriate) Add aliases for -des/aes "wrap" ciphers. *Remove support for IISSGC (server gated crypto) *The undocumented OCSP -header flag is now "-header name=value" *Documented the OCSP -header flag Reviewed-by: Matt Caswell <matt@openssl.org>
* Add Camellia CTR mode.Andy Polyakov2015-02-111-0/+3
| | | | Reviewed-by: Rich Salz <rsalz@openssl.org>
* OPENSSL_NO_xxx cleanup: SHARich Salz2015-01-271-4/+0
| | | | | | | | | | | | | | | Remove support for SHA0 and DSS0 (they were broken), and remove the ability to attempt to build without SHA (it didn't work). For simplicity, remove the option of not building various SHA algorithms; you could argue that SHA_224/256/384/512 should be kept, since they're like crypto algorithms, but I decided to go the other way. So these options are gone: GENUINE_DSA OPENSSL_NO_SHA0 OPENSSL_NO_SHA OPENSSL_NO_SHA1 OPENSSL_NO_SHA224 OPENSSL_NO_SHA256 OPENSSL_NO_SHA384 OPENSSL_NO_SHA512 Reviewed-by: Richard Levitte <levitte@openssl.org>
* Run util/openssl-format-source -v -c .Matt Caswell2015-01-221-165/+165
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* Added OPENSSL_NO_OCB guardsMatt Caswell2014-12-081-0/+6
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* Add EVP support for OCB modeMatt Caswell2014-12-081-0/+3
| | | | Reviewed-by: Tim Hudson <tjh@openssl.org>
* RFC 5649 support.Dr. Stephen Henson2014-07-181-0/+3
| | | | | | | | | | | | | | Add support for RFC5649 key wrapping with padding. Add RFC5649 tests to evptests.txt Based on PR#3434 contribution by Petr Spacek <pspacek@redhat.com>. EVP support and minor changes added by Stephen Henson. Doxygen comment block updates by Tim Hudson. Reviewed-by: Tim Hudson <tjh@openssl.org>
* EVP support for wrapping algorithms.Dr. Stephen Henson2013-07-171-0/+4
| | | | | | | | | Add support for key wrap algorithms via EVP interface. Generalise AES wrap algorithm and add to modes, making existing AES wrap algorithm a special case. Move test code to evptests.txt
* Add AES-SHA256 stitch.Andy Polyakov2013-05-131-0/+4
|
* Add CCM ciphers to tables.Dr. Stephen Henson2013-03-061-0/+3
|
* e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues.Andy Polyakov2013-02-061-2/+0
| | | | | Address CBC decrypt timing issues and reenable the AESNI+SHA1 stitch. (cherry picked from commit 125093b59f3c2a2d33785b5563d929d0472f1721)
* Make CBC decoding constant time.Ben Laurie2013-02-061-0/+2
| | | | | | | | | | | | | | This patch makes the decoding of SSLv3 and TLS CBC records constant time. Without this, a timing side-channel can be used to build a padding oracle and mount Vaudenay's attack. This patch also disables the stitched AESNI+SHA mode pending a similar fix to that code. In order to be easy to backport, this change is implemented in ssl/, rather than as a generic AEAD mode. In the future this should be changed around so that HMAC isn't in ssl/, but crypto/ as FIPS expects. (cherry picked from commit e130841bccfc0bb9da254dc84e23bc6a1c78a64e)
* c_allc.c: add aes-xts to loop.Andy Polyakov2011-10-181-0/+2
|
* Add RC4-MD5 and AESNI-SHA1 "stitched" implementations.Andy Polyakov2011-08-231-0/+7
|
* Expand range of ctrls for AES GCM to support retrieval and setting ofDr. Stephen Henson2011-08-031-0/+3
| | | | | | | invocation field. Add complete support for AES GCM ciphersuites including all those in RFC5288 and RFC5289.
* Add AES counter mode to EVP.Andy Polyakov2010-02-231-6/+0
|
* Traditional Yuletide commit ;-)Dr. Stephen Henson2009-12-251-0/+2
| | | | Add Triple DES CFB1 and CFB8 to algorithm list and NID translation.
* Add SEED encryption algorithm.Bodo Möller2007-04-241-0/+9
| | | | | | PR: 1503 Submitted by: KISA Reviewed by: Bodo Moeller
* Camellia cipher, contributed by NTTBodo Möller2006-06-091-0/+27
| | | | | Submitted by: Masashi Fujita Reviewed by: Bodo Moeller
* Change builting PBE to use static table. Add entries for HMAC and MD5, GOST.Dr. Stephen Henson2006-05-151-2/+0
|
* Add the missing parts for DES CFB1 and CFB8.Richard Levitte2004-01-281-0/+8
| | | | | Add the corresponding AES parts while I'm at it. make update
* Declare the CFB and OFB modes for AES, and prepare for a declarationRichard Levitte2002-05-311-0/+15
| | | | of CTR mode.
* Add comfy aliases for AES in CBC mode.Richard Levitte2002-02-201-0/+6
|
* Add first cut symmetric crypto support.Ben Laurie2001-08-181-4/+0
|
* Clean up EVP macros, rename DES EDE3 modes correctly, temporary support forBen Laurie2001-07-211-0/+4
| | | | | OpenBSD /dev/crypto (this will be revamped later when the appropriate machinery is available).
* Make all configuration macros available for application by makingRichard Levitte2001-02-191-8/+8
| | | | | | | | | | | | sure they are available in opensslconf.h, by giving them names starting with "OPENSSL_" to avoid conflicts with other packages and by making sure e_os2.h will cover all platform-specific cases together with opensslconf.h. I've checked fairly well that nothing breaks with this (apart from external software that will adapt if they have used something like NO_KRB5), but I can't guarantee it completely, so a review of this change would be a good thing.
* Fix AES code.Dr. Stephen Henson2001-02-071-8/+7
| | | | | | | | | | Update Rijndael source to v3.0 Add AES OIDs. Change most references of Rijndael to AES. Add new draft AES ciphersuites.
* Rijdael CBC mode and partial undebugged SSL support.Ben Laurie2001-02-061-0/+3
|
* The experimental Rijndael code moved to the main trunk.Richard Levitte2000-10-141-0/+8
| | | | make update done.
* Add PBE algorithms with ciphers, not digests.Dr. Stephen Henson2000-02-231-1/+3
|
* Rename SSLeay_add_all_algorithms() et al toDr. Stephen Henson2000-02-041-0/+147
OpenSSL_add_all_algorithms(). Move these into separate files so they work properly.
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-28 05:01:52 +0100