diff options
Diffstat (limited to 'openssl/crypto')
105 files changed, 1004 insertions, 392 deletions
| diff --git a/openssl/crypto/aes/asm/aes-mips.pl b/openssl/crypto/aes/asm/aes-mips.pl index 2ce6deffc..e52395421 100644 --- a/openssl/crypto/aes/asm/aes-mips.pl +++ b/openssl/crypto/aes/asm/aes-mips.pl @@ -1036,9 +1036,9 @@ _mips_AES_set_encrypt_key:  	nop  .end	_mips_AES_set_encrypt_key -.globl	AES_set_encrypt_key -.ent	AES_set_encrypt_key -AES_set_encrypt_key: +.globl	private_AES_set_encrypt_key +.ent	private_AES_set_encrypt_key +private_AES_set_encrypt_key:  	.frame	$sp,$FRAMESIZE,$ra  	.mask	$SAVED_REGS_MASK,-$SZREG  	.set	noreorder @@ -1060,7 +1060,7 @@ $code.=<<___ if ($flavour =~ /nubi/i);	# optimize non-nubi prologue  ___  $code.=<<___ if ($flavour !~ /o32/i);	# non-o32 PIC-ification  	.cplocal	$Tbl -	.cpsetup	$pf,$zero,AES_set_encrypt_key +	.cpsetup	$pf,$zero,private_AES_set_encrypt_key  ___  $code.=<<___;  	.set	reorder @@ -1083,7 +1083,7 @@ ___  $code.=<<___;  	jr	$ra  	$PTR_ADD $sp,$FRAMESIZE -.end	AES_set_encrypt_key +.end	private_AES_set_encrypt_key  ___  my ($head,$tail)=($inp,$bits); @@ -1091,9 +1091,9 @@ my ($tp1,$tp2,$tp4,$tp8,$tp9,$tpb,$tpd,$tpe)=($a4,$a5,$a6,$a7,$s0,$s1,$s2,$s3);  my ($m,$x80808080,$x7f7f7f7f,$x1b1b1b1b)=($at,$t0,$t1,$t2);  $code.=<<___;  .align	5 -.globl	AES_set_decrypt_key -.ent	AES_set_decrypt_key -AES_set_decrypt_key: +.globl	private_AES_set_decrypt_key +.ent	private_AES_set_decrypt_key +private_AES_set_decrypt_key:  	.frame	$sp,$FRAMESIZE,$ra  	.mask	$SAVED_REGS_MASK,-$SZREG  	.set	noreorder @@ -1115,7 +1115,7 @@ $code.=<<___ if ($flavour =~ /nubi/i);	# optimize non-nubi prologue  ___  $code.=<<___ if ($flavour !~ /o32/i);	# non-o32 PIC-ification  	.cplocal	$Tbl -	.cpsetup	$pf,$zero,AES_set_decrypt_key +	.cpsetup	$pf,$zero,private_AES_set_decrypt_key  ___  $code.=<<___;  	.set	reorder @@ -1226,7 +1226,7 @@ ___  $code.=<<___;  	jr	$ra  	$PTR_ADD $sp,$FRAMESIZE -.end	AES_set_decrypt_key +.end	private_AES_set_decrypt_key  ___  }}} diff --git a/openssl/crypto/aes/asm/aes-s390x.pl b/openssl/crypto/aes/asm/aes-s390x.pl index 445a1e676..e75dcd031 100644 --- a/openssl/crypto/aes/asm/aes-s390x.pl +++ b/openssl/crypto/aes/asm/aes-s390x.pl @@ -1598,11 +1598,11 @@ $code.=<<___ if(1);  	lghi	$s1,0x7f  	nr	$s1,%r0  	lghi	%r0,0			# query capability vector -	la	%r1,2*$SIZE_T($sp) +	la	%r1,$tweak-16($sp)  	.long	0xb92e0042		# km %r4,%r2  	llihh	%r1,0x8000  	srlg	%r1,%r1,32($s1)		# check for 32+function code -	ng	%r1,2*$SIZE_T($sp) +	ng	%r1,$tweak-16($sp)  	lgr	%r0,$s0			# restore the function code  	la	%r1,0($key1)		# restore $key1  	jz	.Lxts_km_vanilla @@ -1628,7 +1628,7 @@ $code.=<<___ if(1);  	lrvg	$s0,$tweak+0($sp)	# load the last tweak  	lrvg	$s1,$tweak+8($sp) -	stmg	%r0,%r3,$tweak-32(%r1)	# wipe copy of the key +	stmg	%r0,%r3,$tweak-32($sp)	# wipe copy of the key  	nill	%r0,0xffdf		# switch back to original function code  	la	%r1,0($key1)		# restore pointer to $key1 @@ -1684,11 +1684,9 @@ $code.=<<___;  	lghi	$i1,0x87  	srag	$i2,$s1,63		# broadcast upper bit  	ngr	$i1,$i2			# rem -	srlg	$i2,$s0,63		# carry bit from lower half -	sllg	$s0,$s0,1 -	sllg	$s1,$s1,1 +	algr	$s0,$s0 +	alcgr	$s1,$s1  	xgr	$s0,$i1 -	ogr	$s1,$i2  .Lxts_km_start:  	lrvgr	$i1,$s0			# flip byte order  	lrvgr	$i2,$s1 @@ -1745,11 +1743,9 @@ $code.=<<___;  	lghi	$i1,0x87  	srag	$i2,$s1,63		# broadcast upper bit  	ngr	$i1,$i2			# rem -	srlg	$i2,$s0,63		# carry bit from lower half -	sllg	$s0,$s0,1 -	sllg	$s1,$s1,1 +	algr	$s0,$s0 +	alcgr	$s1,$s1  	xgr	$s0,$i1 -	ogr	$s1,$i2  	ltr	$len,$len		# clear zero flag  	br	$ra @@ -1781,8 +1777,8 @@ $code.=<<___ if (!$softonly);  	clr	%r0,%r1  	jl	.Lxts_enc_software +	st${g}	$ra,5*$SIZE_T($sp)  	stm${g}	%r6,$s3,6*$SIZE_T($sp) -	st${g}	$ra,14*$SIZE_T($sp)  	sllg	$len,$len,4		# $len&=~15  	slgr	$out,$inp @@ -1830,9 +1826,9 @@ $code.=<<___ if (!$softonly);  	stg	$i2,8($i3)  .Lxts_enc_km_done: -	l${g}	$ra,14*$SIZE_T($sp) -	st${g}	$sp,$tweak($sp)		# wipe tweak -	st${g}	$sp,$tweak($sp) +	stg	$sp,$tweak+0($sp)	# wipe tweak +	stg	$sp,$tweak+8($sp) +	l${g}	$ra,5*$SIZE_T($sp)  	lm${g}	%r6,$s3,6*$SIZE_T($sp)  	br	$ra  .align	16 @@ -1843,12 +1839,11 @@ $code.=<<___;  	slgr	$out,$inp -	xgr	$s0,$s0			# clear upper half -	xgr	$s1,$s1 -	lrv	$s0,$stdframe+4($sp)	# load secno -	lrv	$s1,$stdframe+0($sp) -	xgr	$s2,$s2 -	xgr	$s3,$s3 +	l${g}	$s3,$stdframe($sp)	# ivp +	llgf	$s0,0($s3)		# load iv +	llgf	$s1,4($s3) +	llgf	$s2,8($s3) +	llgf	$s3,12($s3)  	stm${g}	%r2,%r5,2*$SIZE_T($sp)  	la	$key,0($key2)  	larl	$tbl,AES_Te @@ -1864,11 +1859,9 @@ $code.=<<___;  	lghi	%r1,0x87  	srag	%r0,$s3,63		# broadcast upper bit  	ngr	%r1,%r0			# rem -	srlg	%r0,$s1,63		# carry bit from lower half -	sllg	$s1,$s1,1 -	sllg	$s3,$s3,1 +	algr	$s1,$s1 +	alcgr	$s3,$s3  	xgr	$s1,%r1 -	ogr	$s3,%r0  	lrvgr	$s1,$s1			# flip byte order  	lrvgr	$s3,$s3  	srlg	$s0,$s1,32		# smash the tweak to 4x32-bits  @@ -1917,11 +1910,9 @@ $code.=<<___;  	lghi	%r1,0x87  	srag	%r0,$s3,63		# broadcast upper bit  	ngr	%r1,%r0			# rem -	srlg	%r0,$s1,63		# carry bit from lower half -	sllg	$s1,$s1,1 -	sllg	$s3,$s3,1 +	algr	$s1,$s1 +	alcgr	$s3,$s3  	xgr	$s1,%r1 -	ogr	$s3,%r0  	lrvgr	$s1,$s1			# flip byte order  	lrvgr	$s3,$s3  	srlg	$s0,$s1,32		# smash the tweak to 4x32-bits  @@ -1956,7 +1947,8 @@ $code.=<<___;  .size	AES_xts_encrypt,.-AES_xts_encrypt  ___  # void AES_xts_decrypt(const char *inp,char *out,size_t len, -#	const AES_KEY *key1, const AES_KEY *key2,u64 secno); +#	const AES_KEY *key1, const AES_KEY *key2, +#	const unsigned char iv[16]);  #  $code.=<<___;  .globl	AES_xts_decrypt @@ -1988,8 +1980,8 @@ $code.=<<___ if (!$softonly);  	clr	%r0,%r1  	jl	.Lxts_dec_software +	st${g}	$ra,5*$SIZE_T($sp)  	stm${g}	%r6,$s3,6*$SIZE_T($sp) -	st${g}	$ra,14*$SIZE_T($sp)  	nill	$len,0xfff0		# $len&=~15  	slgr	$out,$inp @@ -2028,11 +2020,9 @@ $code.=<<___ if (!$softonly);  	lghi	$i1,0x87  	srag	$i2,$s1,63		# broadcast upper bit  	ngr	$i1,$i2			# rem -	srlg	$i2,$s0,63		# carry bit from lower half -	sllg	$s0,$s0,1 -	sllg	$s1,$s1,1 +	algr	$s0,$s0 +	alcgr	$s1,$s1  	xgr	$s0,$i1 -	ogr	$s1,$i2  	lrvgr	$i1,$s0			# flip byte order  	lrvgr	$i2,$s1 @@ -2075,9 +2065,9 @@ $code.=<<___ if (!$softonly);  	stg	$s2,0($i3)  	stg	$s3,8($i3)  .Lxts_dec_km_done: -	l${g}	$ra,14*$SIZE_T($sp) -	st${g}	$sp,$tweak($sp)		# wipe tweak -	st${g}	$sp,$tweak($sp) +	stg	$sp,$tweak+0($sp)	# wipe tweak +	stg	$sp,$tweak+8($sp) +	l${g}	$ra,5*$SIZE_T($sp)  	lm${g}	%r6,$s3,6*$SIZE_T($sp)  	br	$ra  .align	16 @@ -2089,12 +2079,11 @@ $code.=<<___;  	srlg	$len,$len,4  	slgr	$out,$inp -	xgr	$s0,$s0			# clear upper half -	xgr	$s1,$s1 -	lrv	$s0,$stdframe+4($sp)	# load secno -	lrv	$s1,$stdframe+0($sp) -	xgr	$s2,$s2 -	xgr	$s3,$s3 +	l${g}	$s3,$stdframe($sp)	# ivp +	llgf	$s0,0($s3)		# load iv +	llgf	$s1,4($s3) +	llgf	$s2,8($s3) +	llgf	$s3,12($s3)  	stm${g}	%r2,%r5,2*$SIZE_T($sp)  	la	$key,0($key2)  	larl	$tbl,AES_Te @@ -2113,11 +2102,9 @@ $code.=<<___;  	lghi	%r1,0x87  	srag	%r0,$s3,63		# broadcast upper bit  	ngr	%r1,%r0			# rem -	srlg	%r0,$s1,63		# carry bit from lower half -	sllg	$s1,$s1,1 -	sllg	$s3,$s3,1 +	algr	$s1,$s1 +	alcgr	$s3,$s3  	xgr	$s1,%r1 -	ogr	$s3,%r0  	lrvgr	$s1,$s1			# flip byte order  	lrvgr	$s3,$s3  	srlg	$s0,$s1,32		# smash the tweak to 4x32-bits  @@ -2156,11 +2143,9 @@ $code.=<<___;  	lghi	%r1,0x87  	srag	%r0,$s3,63		# broadcast upper bit  	ngr	%r1,%r0			# rem -	srlg	%r0,$s1,63		# carry bit from lower half -	sllg	$s1,$s1,1 -	sllg	$s3,$s3,1 +	algr	$s1,$s1 +	alcgr	$s3,$s3  	xgr	$s1,%r1 -	ogr	$s3,%r0  	lrvgr	$i2,$s1			# flip byte order  	lrvgr	$i3,$s3  	stmg	$i2,$i3,$tweak($sp)	# save the 1st tweak @@ -2176,11 +2161,9 @@ $code.=<<___;  	lghi	%r1,0x87  	srag	%r0,$s3,63		# broadcast upper bit  	ngr	%r1,%r0			# rem -	srlg	%r0,$s1,63		# carry bit from lower half -	sllg	$s1,$s1,1 -	sllg	$s3,$s3,1 +	algr	$s1,$s1 +	alcgr	$s3,$s3  	xgr	$s1,%r1 -	ogr	$s3,%r0  	lrvgr	$s1,$s1			# flip byte order  	lrvgr	$s3,$s3  	srlg	$s0,$s1,32		# smash the tweak to 4x32-bits diff --git a/openssl/crypto/aes/asm/aes-x86_64.pl b/openssl/crypto/aes/asm/aes-x86_64.pl index 48fa857d5..34cbb5d84 100644 --- a/openssl/crypto/aes/asm/aes-x86_64.pl +++ b/openssl/crypto/aes/asm/aes-x86_64.pl @@ -36,7 +36,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  $verticalspin=1;	# unlike 32-bit version $verticalspin performs  			# ~15% better on both AMD and Intel cores diff --git a/openssl/crypto/aes/asm/aesni-sha1-x86_64.pl b/openssl/crypto/aes/asm/aesni-sha1-x86_64.pl index c6f6b3334..3c8f6c19e 100644 --- a/openssl/crypto/aes/asm/aesni-sha1-x86_64.pl +++ b/openssl/crypto/aes/asm/aesni-sha1-x86_64.pl @@ -69,7 +69,8 @@ $avx=1 if (!$avx && $win64 && ($flavour =~ /masm/ || $ENV{ASM} =~ /ml64/) &&  	   `ml64 2>&1` =~ /Version ([0-9]+)\./ &&  	   $1>=10); -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  # void aesni_cbc_sha1_enc(const void *inp,  #			void *out, diff --git a/openssl/crypto/aes/asm/aesni-x86_64.pl b/openssl/crypto/aes/asm/aesni-x86_64.pl index 499f3b3f4..0dbb194b8 100644 --- a/openssl/crypto/aes/asm/aesni-x86_64.pl +++ b/openssl/crypto/aes/asm/aesni-x86_64.pl @@ -172,7 +172,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  $movkey = $PREFIX eq "aesni" ? "movups" : "movups";  @_4args=$win64?	("%rcx","%rdx","%r8", "%r9") :	# Win64 order diff --git a/openssl/crypto/aes/asm/bsaes-x86_64.pl b/openssl/crypto/aes/asm/bsaes-x86_64.pl index c9c6312fa..ceb02b50d 100644 --- a/openssl/crypto/aes/asm/bsaes-x86_64.pl +++ b/openssl/crypto/aes/asm/bsaes-x86_64.pl @@ -105,7 +105,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  my ($inp,$out,$len,$key,$ivp)=("%rdi","%rsi","%rdx","%rcx");  my @XMM=map("%xmm$_",(15,0..14));	# best on Atom, +10% over (0..15) diff --git a/openssl/crypto/aes/asm/vpaes-x86_64.pl b/openssl/crypto/aes/asm/vpaes-x86_64.pl index 37998db5e..41f2e46f6 100644 --- a/openssl/crypto/aes/asm/vpaes-x86_64.pl +++ b/openssl/crypto/aes/asm/vpaes-x86_64.pl @@ -56,7 +56,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  $PREFIX="vpaes"; diff --git a/openssl/crypto/asn1/a_strex.c b/openssl/crypto/asn1/a_strex.c index 264ebf239..ead37ac32 100644 --- a/openssl/crypto/asn1/a_strex.c +++ b/openssl/crypto/asn1/a_strex.c @@ -567,6 +567,7 @@ int ASN1_STRING_to_UTF8(unsigned char **out, ASN1_STRING *in)  	if(mbflag == -1) return -1;  	mbflag |= MBSTRING_FLAG;  	stmp.data = NULL; +	stmp.length = 0;  	ret = ASN1_mbstring_copy(&str, in->data, in->length, mbflag, B_ASN1_UTF8STRING);  	if(ret < 0) return ret;  	*out = stmp.data; diff --git a/openssl/crypto/asn1/a_verify.c b/openssl/crypto/asn1/a_verify.c index 432722e40..fc84cd3d1 100644 --- a/openssl/crypto/asn1/a_verify.c +++ b/openssl/crypto/asn1/a_verify.c @@ -140,6 +140,12 @@ int ASN1_item_verify(const ASN1_ITEM *it, X509_ALGOR *a,  	int mdnid, pknid; +	if (!pkey) +		{ +		ASN1err(ASN1_F_ASN1_ITEM_VERIFY, ERR_R_PASSED_NULL_PARAMETER); +		return -1; +		} +  	EVP_MD_CTX_init(&ctx);  	/* Convert signature OID into digest and public key OIDs */ diff --git a/openssl/crypto/asn1/x_pubkey.c b/openssl/crypto/asn1/x_pubkey.c index 627ec87f9..b649e1fcf 100644 --- a/openssl/crypto/asn1/x_pubkey.c +++ b/openssl/crypto/asn1/x_pubkey.c @@ -175,12 +175,15 @@ EVP_PKEY *X509_PUBKEY_get(X509_PUBKEY *key)  	CRYPTO_w_lock(CRYPTO_LOCK_EVP_PKEY);  	if (key->pkey)  		{ +		CRYPTO_w_unlock(CRYPTO_LOCK_EVP_PKEY);  		EVP_PKEY_free(ret);  		ret = key->pkey;  		}  	else +		{  		key->pkey = ret; -	CRYPTO_w_unlock(CRYPTO_LOCK_EVP_PKEY); +		CRYPTO_w_unlock(CRYPTO_LOCK_EVP_PKEY); +		}  	CRYPTO_add(&ret->references, 1, CRYPTO_LOCK_EVP_PKEY);  	return ret; diff --git a/openssl/crypto/bio/bss_dgram.c b/openssl/crypto/bio/bss_dgram.c index 1b1e4bec8..899090997 100644 --- a/openssl/crypto/bio/bss_dgram.c +++ b/openssl/crypto/bio/bss_dgram.c @@ -77,10 +77,20 @@  #define OPENSSL_SCTP_FORWARD_CUM_TSN_CHUNK_TYPE 0xc0  #endif -#ifdef OPENSSL_SYS_LINUX +#if defined(OPENSSL_SYS_LINUX) && !defined(IP_MTU)  #define IP_MTU      14 /* linux is lame */  #endif +#if defined(__FreeBSD__) && defined(IN6_IS_ADDR_V4MAPPED) +/* Standard definition causes type-punning problems. */ +#undef IN6_IS_ADDR_V4MAPPED +#define s6_addr32 __u6_addr.__u6_addr32 +#define IN6_IS_ADDR_V4MAPPED(a)               \ +        (((a)->s6_addr32[0] == 0) &&          \ +         ((a)->s6_addr32[1] == 0) &&          \ +         ((a)->s6_addr32[2] == htonl(0x0000ffff))) +#endif +  #ifdef WATT32  #define sock_write SockWrite  /* Watt-32 uses same names */  #define sock_read  SockRead @@ -255,7 +265,7 @@ static void dgram_adjust_rcv_timeout(BIO *b)  	{  #if defined(SO_RCVTIMEO)  	bio_dgram_data *data = (bio_dgram_data *)b->ptr; -	int sz = sizeof(int); +	union { size_t s; int i; } sz = {0};  	/* Is a timer active? */  	if (data->next_timeout.tv_sec > 0 || data->next_timeout.tv_usec > 0) @@ -265,8 +275,10 @@ static void dgram_adjust_rcv_timeout(BIO *b)  		/* Read current socket timeout */  #ifdef OPENSSL_SYS_WINDOWS  		int timeout; + +		sz.i = sizeof(timeout);  		if (getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO, -					   (void*)&timeout, &sz) < 0) +					   (void*)&timeout, &sz.i) < 0)  			{ perror("getsockopt"); }  		else  			{ @@ -274,9 +286,12 @@ static void dgram_adjust_rcv_timeout(BIO *b)  			data->socket_timeout.tv_usec = (timeout % 1000) * 1000;  			}  #else +		sz.i = sizeof(data->socket_timeout);  		if ( getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,   						&(data->socket_timeout), (void *)&sz) < 0)  			{ perror("getsockopt"); } +		else if (sizeof(sz.s)!=sizeof(sz.i) && sz.i==0) +			OPENSSL_assert(sz.s<=sizeof(data->socket_timeout));  #endif  		/* Get current time */ @@ -445,11 +460,10 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  	int *ip;  	struct sockaddr *to = NULL;  	bio_dgram_data *data = NULL; -#if defined(IP_MTU_DISCOVER) || defined(IP_MTU) -	long sockopt_val = 0; -	unsigned int sockopt_len = 0; -#endif -#ifdef OPENSSL_SYS_LINUX +#if defined(OPENSSL_SYS_LINUX) && (defined(IP_MTU_DISCOVER) || defined(IP_MTU)) +	int sockopt_val = 0; +	socklen_t sockopt_len;	/* assume that system supporting IP_MTU is +				 * modern enough to define socklen_t */  	socklen_t addr_len;  	union	{  		struct sockaddr	sa; @@ -531,7 +545,7 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  		break;  		/* (Linux)kernel sets DF bit on outgoing IP packets */  	case BIO_CTRL_DGRAM_MTU_DISCOVER: -#ifdef OPENSSL_SYS_LINUX +#if defined(OPENSSL_SYS_LINUX) && defined(IP_MTU_DISCOVER) && defined(IP_PMTUDISC_DO)  		addr_len = (socklen_t)sizeof(addr);  		memset((void *)&addr, 0, sizeof(addr));  		if (getsockname(b->num, &addr.sa, &addr_len) < 0) @@ -539,7 +553,6 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  			ret = 0;  			break;  			} -		sockopt_len = sizeof(sockopt_val);  		switch (addr.sa.sa_family)  			{  		case AF_INET: @@ -548,7 +561,7 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  				&sockopt_val, sizeof(sockopt_val))) < 0)  				perror("setsockopt");  			break; -#if OPENSSL_USE_IPV6 && defined(IPV6_MTU_DISCOVER) +#if OPENSSL_USE_IPV6 && defined(IPV6_MTU_DISCOVER) && defined(IPV6_PMTUDISC_DO)  		case AF_INET6:  			sockopt_val = IPV6_PMTUDISC_DO;  			if ((ret = setsockopt(b->num, IPPROTO_IPV6, IPV6_MTU_DISCOVER, @@ -565,7 +578,7 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  		break;  #endif  	case BIO_CTRL_DGRAM_QUERY_MTU: -#ifdef OPENSSL_SYS_LINUX +#if defined(OPENSSL_SYS_LINUX) && defined(IP_MTU)  		addr_len = (socklen_t)sizeof(addr);  		memset((void *)&addr, 0, sizeof(addr));  		if (getsockname(b->num, &addr.sa, &addr_len) < 0) @@ -727,12 +740,15 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  #endif  		break;  	case BIO_CTRL_DGRAM_GET_RECV_TIMEOUT: -#ifdef OPENSSL_SYS_WINDOWS  		{ -		int timeout, sz = sizeof(timeout); +		union { size_t s; int i; } sz = {0}; +#ifdef OPENSSL_SYS_WINDOWS +		int timeout;  		struct timeval *tv = (struct timeval *)ptr; + +		sz.i = sizeof(timeout);  		if (getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO, -			(void*)&timeout, &sz) < 0) +			(void*)&timeout, &sz.i) < 0)  			{ perror("getsockopt"); ret = -1; }  		else  			{ @@ -740,12 +756,20 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  			tv->tv_usec = (timeout % 1000) * 1000;  			ret = sizeof(*tv);  			} -		}  #else +		sz.i = sizeof(struct timeval);  		if ( getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO,  -			ptr, (void *)&ret) < 0) +			ptr, (void *)&sz) < 0)  			{ perror("getsockopt"); ret = -1; } +		else if (sizeof(sz.s)!=sizeof(sz.i) && sz.i==0) +			{ +			OPENSSL_assert(sz.s<=sizeof(struct timeval)); +			ret = (int)sz.s; +			} +		else +			ret = sz.i;  #endif +		}  		break;  #endif  #if defined(SO_SNDTIMEO) @@ -765,12 +789,15 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  #endif  		break;  	case BIO_CTRL_DGRAM_GET_SEND_TIMEOUT: -#ifdef OPENSSL_SYS_WINDOWS  		{ -		int timeout, sz = sizeof(timeout); +		union { size_t s; int i; } sz = {0}; +#ifdef OPENSSL_SYS_WINDOWS +		int timeout;  		struct timeval *tv = (struct timeval *)ptr; + +		sz.i = sizeof(timeout);  		if (getsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO, -			(void*)&timeout, &sz) < 0) +			(void*)&timeout, &sz.i) < 0)  			{ perror("getsockopt"); ret = -1; }  		else  			{ @@ -778,12 +805,20 @@ static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr)  			tv->tv_usec = (timeout % 1000) * 1000;  			ret = sizeof(*tv);  			} -		}  #else +		sz.i = sizeof(struct timeval);  		if ( getsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO,  -			ptr, (void *)&ret) < 0) +			ptr, (void *)&sz) < 0)  			{ perror("getsockopt"); ret = -1; } +		else if (sizeof(sz.s)!=sizeof(sz.i) && sz.i==0) +			{ +			OPENSSL_assert(sz.s<=sizeof(struct timeval)); +			ret = (int)sz.s; +			} +		else +			ret = sz.i;  #endif +		}  		break;  #endif  	case BIO_CTRL_DGRAM_GET_SEND_TIMER_EXP: @@ -955,7 +990,6 @@ static int dgram_sctp_free(BIO *a)  #ifdef SCTP_AUTHENTICATION_EVENT  void dgram_sctp_handle_auth_free_key_event(BIO *b, union sctp_notification *snp)  	{ -	unsigned int sockopt_len = 0;  	int ret;  	struct sctp_authkey_event* authkeyevent = &snp->sn_auth_event; @@ -965,9 +999,8 @@ void dgram_sctp_handle_auth_free_key_event(BIO *b, union sctp_notification *snp)  		/* delete key */  		authkeyid.scact_keynumber = authkeyevent->auth_keynumber; -		sockopt_len = sizeof(struct sctp_authkeyid);  		ret = setsockopt(b->num, IPPROTO_SCTP, SCTP_AUTH_DELETE_KEY, -		      &authkeyid, sockopt_len); +		      &authkeyid, sizeof(struct sctp_authkeyid));  		}  	}  #endif @@ -1298,7 +1331,7 @@ static long dgram_sctp_ctrl(BIO *b, int cmd, long num, void *ptr)  	{  	long ret=1;  	bio_dgram_sctp_data *data = NULL; -	unsigned int sockopt_len = 0; +	socklen_t sockopt_len = 0;  	struct sctp_authkeyid authkeyid;  	struct sctp_authkey *authkey; diff --git a/openssl/crypto/bn/asm/mips.pl b/openssl/crypto/bn/asm/mips.pl index c162a3ec2..38b51645f 100644 --- a/openssl/crypto/bn/asm/mips.pl +++ b/openssl/crypto/bn/asm/mips.pl @@ -819,7 +819,7 @@ ___  $code.=<<___;  	.set	reorder  	move	$ta3,$ra -	bal	bn_div_words +	bal	bn_div_words_internal  	move	$ra,$ta3  	$MULTU	$ta2,$v0  	$LD	$t2,-2*$BNSZ($a3) diff --git a/openssl/crypto/bn/asm/modexp512-x86_64.pl b/openssl/crypto/bn/asm/modexp512-x86_64.pl index 54aeb0192..bfd6e9754 100644 --- a/openssl/crypto/bn/asm/modexp512-x86_64.pl +++ b/openssl/crypto/bn/asm/modexp512-x86_64.pl @@ -68,7 +68,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  use strict;  my $code=".text\n\n"; diff --git a/openssl/crypto/bn/asm/x86_64-gf2m.pl b/openssl/crypto/bn/asm/x86_64-gf2m.pl index 1658acbbd..a30d4ef02 100644 --- a/openssl/crypto/bn/asm/x86_64-gf2m.pl +++ b/openssl/crypto/bn/asm/x86_64-gf2m.pl @@ -31,7 +31,7 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open STDOUT,"| \"$^X\" $xlate $flavour $output";  ($lo,$hi)=("%rax","%rdx");	$a=$lo;  ($i0,$i1)=("%rsi","%rdi"); diff --git a/openssl/crypto/bn/asm/x86_64-mont.pl b/openssl/crypto/bn/asm/x86_64-mont.pl index 5d79b35e1..17fb94c84 100644 --- a/openssl/crypto/bn/asm/x86_64-mont.pl +++ b/openssl/crypto/bn/asm/x86_64-mont.pl @@ -40,7 +40,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  # int bn_mul_mont(  $rp="%rdi";	# BN_ULONG *rp, diff --git a/openssl/crypto/bn/asm/x86_64-mont5.pl b/openssl/crypto/bn/asm/x86_64-mont5.pl index 057cda28a..8f8dc5a59 100644 --- a/openssl/crypto/bn/asm/x86_64-mont5.pl +++ b/openssl/crypto/bn/asm/x86_64-mont5.pl @@ -28,7 +28,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  # int bn_mul_mont_gather5(  $rp="%rdi";	# BN_ULONG *rp, diff --git a/openssl/crypto/bn/bn_div.c b/openssl/crypto/bn/bn_div.c index 52b330429..7b2403185 100644 --- a/openssl/crypto/bn/bn_div.c +++ b/openssl/crypto/bn/bn_div.c @@ -141,6 +141,7 @@ int BN_div(BIGNUM *dv, BIGNUM *rem, const BIGNUM *m, const BIGNUM *d,      *      *					<appro@fy.chalmers.se>      */ +#undef bn_div_words  #  define bn_div_words(n0,n1,d0)		\  	({  asm volatile (			\  		"divl	%4"			\ @@ -155,6 +156,7 @@ int BN_div(BIGNUM *dv, BIGNUM *rem, const BIGNUM *m, const BIGNUM *d,      * Same story here, but it's 128-bit by 64-bit division. Wow!      *					<appro@fy.chalmers.se>      */ +#  undef bn_div_words  #  define bn_div_words(n0,n1,d0)		\  	({  asm volatile (			\  		"divq	%4"			\ diff --git a/openssl/crypto/bn/bn_gcd.c b/openssl/crypto/bn/bn_gcd.c index 4a352119b..a808f5317 100644 --- a/openssl/crypto/bn/bn_gcd.c +++ b/openssl/crypto/bn/bn_gcd.c @@ -205,6 +205,7 @@ err:  /* solves ax == 1 (mod n) */  static BIGNUM *BN_mod_inverse_no_branch(BIGNUM *in,          const BIGNUM *a, const BIGNUM *n, BN_CTX *ctx); +  BIGNUM *BN_mod_inverse(BIGNUM *in,  	const BIGNUM *a, const BIGNUM *n, BN_CTX *ctx)  	{ diff --git a/openssl/crypto/bn/bn_lcl.h b/openssl/crypto/bn/bn_lcl.h index eecfd8cc9..817c773b6 100644 --- a/openssl/crypto/bn/bn_lcl.h +++ b/openssl/crypto/bn/bn_lcl.h @@ -282,16 +282,23 @@ extern "C" {  #  endif  # elif defined(__mips) && (defined(SIXTY_FOUR_BIT) || defined(SIXTY_FOUR_BIT_LONG))  #  if defined(__GNUC__) && __GNUC__>=2 -#   define BN_UMULT_HIGH(a,b)	({	\ +#   if __GNUC__>=4 && __GNUC_MINOR__>=4 /* "h" constraint is no more since 4.4 */ +#     define BN_UMULT_HIGH(a,b)		 (((__uint128_t)(a)*(b))>>64) +#     define BN_UMULT_LOHI(low,high,a,b) ({	\ +	__uint128_t ret=(__uint128_t)(a)*(b);	\ +	(high)=ret>>64; (low)=ret;	 }) +#   else +#     define BN_UMULT_HIGH(a,b)	({	\  	register BN_ULONG ret;		\  	asm ("dmultu	%1,%2"		\  	     : "=h"(ret)		\  	     : "r"(a), "r"(b) : "l");	\  	ret;			}) -#   define BN_UMULT_LOHI(low,high,a,b)	\ +#     define BN_UMULT_LOHI(low,high,a,b)\  	asm ("dmultu	%2,%3"		\  	     : "=l"(low),"=h"(high)	\  	     : "r"(a), "r"(b)); +#    endif  #  endif  # endif		/* cpu */  #endif		/* OPENSSL_NO_ASM */ diff --git a/openssl/crypto/bn/bn_word.c b/openssl/crypto/bn/bn_word.c index ee7b87c45..de83a15b9 100644 --- a/openssl/crypto/bn/bn_word.c +++ b/openssl/crypto/bn/bn_word.c @@ -144,26 +144,17 @@ int BN_add_word(BIGNUM *a, BN_ULONG w)  			a->neg=!(a->neg);  		return(i);  		} -	/* Only expand (and risk failing) if it's possibly necessary */ -	if (((BN_ULONG)(a->d[a->top - 1] + 1) == 0) && -			(bn_wexpand(a,a->top+1) == NULL)) -		return(0); -	i=0; -	for (;;) +	for (i=0;w!=0 && i<a->top;i++)  		{ -		if (i >= a->top) -			l=w; -		else -			l=(a->d[i]+w)&BN_MASK2; -		a->d[i]=l; -		if (w > l) -			w=1; -		else -			break; -		i++; +		a->d[i] = l = (a->d[i]+w)&BN_MASK2; +		w = (w>l)?1:0;  		} -	if (i >= a->top) +	if (w && i==a->top) +		{ +		if (bn_wexpand(a,a->top+1) == NULL) return 0;  		a->top++; +		a->d[i]=w; +		}  	bn_check_top(a);  	return(1);  	} diff --git a/openssl/crypto/camellia/asm/cmll-x86_64.pl b/openssl/crypto/camellia/asm/cmll-x86_64.pl index 76955e472..9f4b82fa4 100644 --- a/openssl/crypto/camellia/asm/cmll-x86_64.pl +++ b/openssl/crypto/camellia/asm/cmll-x86_64.pl @@ -40,7 +40,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  sub hi() { my $r=shift; $r =~ s/%[er]([a-d])x/%\1h/;    $r; }  sub lo() { my $r=shift; $r =~ s/%[er]([a-d])x/%\1l/; diff --git a/openssl/crypto/cms/cms_cd.c b/openssl/crypto/cms/cms_cd.c index a5fc2c4e2..202168810 100644 --- a/openssl/crypto/cms/cms_cd.c +++ b/openssl/crypto/cms/cms_cd.c @@ -58,7 +58,9 @@  #include <openssl/err.h>  #include <openssl/cms.h>  #include <openssl/bio.h> +#ifndef OPENSSL_NO_COMP  #include <openssl/comp.h> +#endif  #include "cms_lcl.h"  DECLARE_ASN1_ITEM(CMS_CompressedData) diff --git a/openssl/crypto/cms/cms_enc.c b/openssl/crypto/cms/cms_enc.c index f873ce379..bebeaf29c 100644 --- a/openssl/crypto/cms/cms_enc.c +++ b/openssl/crypto/cms/cms_enc.c @@ -74,7 +74,7 @@ BIO *cms_EncryptedContent_init_bio(CMS_EncryptedContentInfo *ec)  	X509_ALGOR *calg = ec->contentEncryptionAlgorithm;  	unsigned char iv[EVP_MAX_IV_LENGTH], *piv = NULL;  	unsigned char *tkey = NULL; -	size_t tkeylen; +	size_t tkeylen = 0;  	int ok = 0; diff --git a/openssl/crypto/cms/cms_lib.c b/openssl/crypto/cms/cms_lib.c index f88e8f3b5..b62d1bfac 100644 --- a/openssl/crypto/cms/cms_lib.c +++ b/openssl/crypto/cms/cms_lib.c @@ -411,9 +411,7 @@ int cms_DigestAlgorithm_find_ctx(EVP_MD_CTX *mctx, BIO *chain,  		 * algorithm  OID instead of digest.  		 */  			|| EVP_MD_pkey_type(EVP_MD_CTX_md(mtmp)) == nid) -			{  			return EVP_MD_CTX_copy_ex(mctx, mtmp); -			}  		chain = BIO_next(chain);  		}  	} diff --git a/openssl/crypto/conf/conf_mall.c b/openssl/crypto/conf/conf_mall.c index c6f4cb2d5..213890e0c 100644 --- a/openssl/crypto/conf/conf_mall.c +++ b/openssl/crypto/conf/conf_mall.c @@ -76,5 +76,6 @@ void OPENSSL_load_builtin_modules(void)  #ifndef OPENSSL_NO_ENGINE  	ENGINE_add_conf_module();  #endif +	EVP_add_alg_module();  	} diff --git a/openssl/crypto/cryptlib.c b/openssl/crypto/cryptlib.c index 766ea8cac..304c6b706 100644 --- a/openssl/crypto/cryptlib.c +++ b/openssl/crypto/cryptlib.c @@ -504,7 +504,7 @@ void CRYPTO_THREADID_current(CRYPTO_THREADID *id)  	CRYPTO_THREADID_set_numeric(id, (unsigned long)find_thread(NULL));  #else  	/* For everything else, default to using the address of 'errno' */ -	CRYPTO_THREADID_set_pointer(id, &errno); +	CRYPTO_THREADID_set_pointer(id, (void*)&errno);  #endif  	} @@ -704,6 +704,7 @@ void OPENSSL_cpuid_setup(void)      }      else  	vec = OPENSSL_ia32_cpuid(); +      /*       * |(1<<10) sets a reserved bit to signal that variable       * was initialized already... This is to avoid interference @@ -924,3 +925,16 @@ void OpenSSLDie(const char *file,int line,const char *assertion)  	}  void *OPENSSL_stderr(void)	{ return stderr; } + +int CRYPTO_memcmp(const void *in_a, const void *in_b, size_t len) +	{ +	size_t i; +	const unsigned char *a = in_a; +	const unsigned char *b = in_b; +	unsigned char x = 0; + +	for (i = 0; i < len; i++) +		x |= a[i] ^ b[i]; + +	return x; +	} diff --git a/openssl/crypto/cryptlib.h b/openssl/crypto/cryptlib.h index 1761f6b66..d26f9630e 100644 --- a/openssl/crypto/cryptlib.h +++ b/openssl/crypto/cryptlib.h @@ -100,7 +100,7 @@ extern "C" {  void OPENSSL_cpuid_setup(void);  extern unsigned int OPENSSL_ia32cap_P[]; -void OPENSSL_showfatal(const char *,...); +void OPENSSL_showfatal(const char *fmta,...);  void *OPENSSL_stderr(void);  extern int OPENSSL_NONPIC_relocated; diff --git a/openssl/crypto/crypto-lib.com b/openssl/crypto/crypto-lib.com index c280aa03a..dc8a8c174 100644 --- a/openssl/crypto/crypto-lib.com +++ b/openssl/crypto/crypto-lib.com @@ -282,7 +282,7 @@ $ LIB_RAND = "md_rand,randfile,rand_lib,rand_err,rand_egd,"+ -  	"rand_vms"  $ LIB_ERR = "err,err_all,err_prn"  $ LIB_OBJECTS = "o_names,obj_dat,obj_lib,obj_err,obj_xref" -$ LIB_EVP = "encode,digest,evp_enc,evp_key,evp_acnf,"+ - +$ LIB_EVP = "encode,digest,evp_enc,evp_key,evp_acnf,evp_cnf,"+ -  	"e_des,e_bf,e_idea,e_des3,e_camellia,"+ -  	"e_rc4,e_aes,names,e_seed,"+ -  	"e_xcbc_d,e_rc2,e_cast,e_rc5" diff --git a/openssl/crypto/crypto.h b/openssl/crypto/crypto.h index 6aeda0a9a..f92fc5182 100644 --- a/openssl/crypto/crypto.h +++ b/openssl/crypto/crypto.h @@ -488,10 +488,10 @@ void CRYPTO_get_mem_debug_functions(void (**m)(void *,int,const char *,int,int),  				    long (**go)(void));  void *CRYPTO_malloc_locked(int num, const char *file, int line); -void CRYPTO_free_locked(void *); +void CRYPTO_free_locked(void *ptr);  void *CRYPTO_malloc(int num, const char *file, int line);  char *CRYPTO_strdup(const char *str, const char *file, int line); -void CRYPTO_free(void *); +void CRYPTO_free(void *ptr);  void *CRYPTO_realloc(void *addr,int num, const char *file, int line);  void *CRYPTO_realloc_clean(void *addr,int old_num,int num,const char *file,  			   int line); @@ -574,6 +574,13 @@ void OPENSSL_init(void);  #define fips_cipher_abort(alg) while(0)  #endif +/* CRYPTO_memcmp returns zero iff the |len| bytes at |a| and |b| are equal. It + * takes an amount of time dependent on |len|, but independent of the contents + * of |a| and |b|. Unlike memcmp, it cannot be used to put elements into a + * defined order as the return value when a != b is undefined, other than to be + * non-zero. */ +int CRYPTO_memcmp(const void *a, const void *b, size_t len); +  /* BEGIN ERROR CODES */  /* The following lines are auto generated by the script mkerr.pl. Any changes   * made after this point may be overwritten when the script is next run. diff --git a/openssl/crypto/des/set_key.c b/openssl/crypto/des/set_key.c index d3e69ca8b..da4d62e11 100644 --- a/openssl/crypto/des/set_key.c +++ b/openssl/crypto/des/set_key.c @@ -63,9 +63,8 @@   * 1.1 added norm_expand_bits   * 1.0 First working version   */ -#include "des_locl.h" -  #include <openssl/crypto.h> +#include "des_locl.h"  OPENSSL_IMPLEMENT_GLOBAL(int,DES_check_key,0)	/* defaults to false */ diff --git a/openssl/crypto/des/str2key.c b/openssl/crypto/des/str2key.c index 9c2054bda..1077f99d1 100644 --- a/openssl/crypto/des/str2key.c +++ b/openssl/crypto/des/str2key.c @@ -56,8 +56,8 @@   * [including the GNU Public Licence.]   */ -#include "des_locl.h"  #include <openssl/crypto.h> +#include "des_locl.h"  void DES_string_to_key(const char *str, DES_cblock *key)  	{ diff --git a/openssl/crypto/ec/ec.h b/openssl/crypto/ec/ec.h index 9d01325af..dfe8710d3 100644 --- a/openssl/crypto/ec/ec.h +++ b/openssl/crypto/ec/ec.h @@ -274,10 +274,10 @@ int EC_GROUP_get_curve_name(const EC_GROUP *group);  void EC_GROUP_set_asn1_flag(EC_GROUP *group, int flag);  int EC_GROUP_get_asn1_flag(const EC_GROUP *group); -void EC_GROUP_set_point_conversion_form(EC_GROUP *, point_conversion_form_t); +void EC_GROUP_set_point_conversion_form(EC_GROUP *group, point_conversion_form_t form);  point_conversion_form_t EC_GROUP_get_point_conversion_form(const EC_GROUP *); -unsigned char *EC_GROUP_get0_seed(const EC_GROUP *); +unsigned char *EC_GROUP_get0_seed(const EC_GROUP *x);  size_t EC_GROUP_get_seed_len(const EC_GROUP *);  size_t EC_GROUP_set_seed(EC_GROUP *, const unsigned char *, size_t len); @@ -626,8 +626,8 @@ int EC_POINT_is_on_curve(const EC_GROUP *group, const EC_POINT *point, BN_CTX *c   */  int EC_POINT_cmp(const EC_GROUP *group, const EC_POINT *a, const EC_POINT *b, BN_CTX *ctx); -int EC_POINT_make_affine(const EC_GROUP *, EC_POINT *, BN_CTX *); -int EC_POINTs_make_affine(const EC_GROUP *, size_t num, EC_POINT *[], BN_CTX *); +int EC_POINT_make_affine(const EC_GROUP *group, EC_POINT *point, BN_CTX *ctx); +int EC_POINTs_make_affine(const EC_GROUP *group, size_t num, EC_POINT *points[], BN_CTX *ctx);  /** Computes r = generator * n sum_{i=0}^num p[i] * m[i]   *  \param  group  underlying EC_GROUP object @@ -800,16 +800,24 @@ const EC_POINT *EC_KEY_get0_public_key(const EC_KEY *key);  int EC_KEY_set_public_key(EC_KEY *key, const EC_POINT *pub);  unsigned EC_KEY_get_enc_flags(const EC_KEY *key); -void EC_KEY_set_enc_flags(EC_KEY *, unsigned int); -point_conversion_form_t EC_KEY_get_conv_form(const EC_KEY *); -void EC_KEY_set_conv_form(EC_KEY *, point_conversion_form_t); +void EC_KEY_set_enc_flags(EC_KEY *eckey, unsigned int flags); +point_conversion_form_t EC_KEY_get_conv_form(const EC_KEY *key); +void EC_KEY_set_conv_form(EC_KEY *eckey, point_conversion_form_t cform);  /* functions to set/get method specific data  */ -void *EC_KEY_get_key_method_data(EC_KEY *,  +void *EC_KEY_get_key_method_data(EC_KEY *key,   	void *(*dup_func)(void *), void (*free_func)(void *), void (*clear_free_func)(void *)); -void EC_KEY_insert_key_method_data(EC_KEY *, void *data, +/** Sets the key method data of an EC_KEY object, if none has yet been set. + *  \param  key              EC_KEY object + *  \param  data             opaque data to install. + *  \param  dup_func         a function that duplicates |data|. + *  \param  free_func        a function that frees |data|. + *  \param  clear_free_func  a function that wipes and frees |data|. + *  \return the previously set data pointer, or NULL if |data| was inserted. + */ +void *EC_KEY_insert_key_method_data(EC_KEY *key, void *data,  	void *(*dup_func)(void *), void (*free_func)(void *), void (*clear_free_func)(void *));  /* wrapper functions for the underlying EC_GROUP object */ -void EC_KEY_set_asn1_flag(EC_KEY *, int); +void EC_KEY_set_asn1_flag(EC_KEY *eckey, int asn1_flag);  /** Creates a table of pre-computed multiples of the generator to    *  accelerate further EC_KEY operations. diff --git a/openssl/crypto/ec/ec_key.c b/openssl/crypto/ec/ec_key.c index bf9fd2dc2..7fa247593 100644 --- a/openssl/crypto/ec/ec_key.c +++ b/openssl/crypto/ec/ec_key.c @@ -520,18 +520,27 @@ void EC_KEY_set_conv_form(EC_KEY *key, point_conversion_form_t cform)  void *EC_KEY_get_key_method_data(EC_KEY *key,  	void *(*dup_func)(void *), void (*free_func)(void *), void (*clear_free_func)(void *))  	{ -	return EC_EX_DATA_get_data(key->method_data, dup_func, free_func, clear_free_func); +	void *ret; + +	CRYPTO_r_lock(CRYPTO_LOCK_EC); +	ret = EC_EX_DATA_get_data(key->method_data, dup_func, free_func, clear_free_func); +	CRYPTO_r_unlock(CRYPTO_LOCK_EC); + +	return ret;  	} -void EC_KEY_insert_key_method_data(EC_KEY *key, void *data, +void *EC_KEY_insert_key_method_data(EC_KEY *key, void *data,  	void *(*dup_func)(void *), void (*free_func)(void *), void (*clear_free_func)(void *))  	{  	EC_EXTRA_DATA *ex_data; +  	CRYPTO_w_lock(CRYPTO_LOCK_EC);  	ex_data = EC_EX_DATA_get_data(key->method_data, dup_func, free_func, clear_free_func);  	if (ex_data == NULL)  		EC_EX_DATA_set_data(&key->method_data, data, dup_func, free_func, clear_free_func);  	CRYPTO_w_unlock(CRYPTO_LOCK_EC); + +	return ex_data;  	}  void EC_KEY_set_asn1_flag(EC_KEY *key, int flag) diff --git a/openssl/crypto/ec/ec_pmeth.c b/openssl/crypto/ec/ec_pmeth.c index d1ed66c37..66ee397d8 100644 --- a/openssl/crypto/ec/ec_pmeth.c +++ b/openssl/crypto/ec/ec_pmeth.c @@ -188,7 +188,7 @@ static int pkey_ec_derive(EVP_PKEY_CTX *ctx, unsigned char *key, size_t *keylen)  	pubkey = EC_KEY_get0_public_key(ctx->peerkey->pkey.ec); -	/* NB: unlike PKS#3 DH, if *outlen is less than maximum size this is +	/* NB: unlike PKCS#3 DH, if *outlen is less than maximum size this is  	 * not an error, the result is truncated.  	 */ diff --git a/openssl/crypto/ec/ecp_mont.c b/openssl/crypto/ec/ecp_mont.c index 079e47431..f04f132c7 100644 --- a/openssl/crypto/ec/ecp_mont.c +++ b/openssl/crypto/ec/ecp_mont.c @@ -114,7 +114,6 @@ const EC_METHOD *EC_GFp_mont_method(void)  		ec_GFp_mont_field_decode,  		ec_GFp_mont_field_set_to_one }; -  	return &ret;  #endif  	} diff --git a/openssl/crypto/ec/ectest.c b/openssl/crypto/ec/ectest.c index f107782de..102eaa9b2 100644 --- a/openssl/crypto/ec/ectest.c +++ b/openssl/crypto/ec/ectest.c @@ -236,7 +236,7 @@ static void group_order_tests(EC_GROUP *group)  	}  static void prime_field_tests(void) -	{	 +	{  	BN_CTX *ctx = NULL;  	BIGNUM *p, *a, *b;  	EC_GROUP *group; diff --git a/openssl/crypto/ecdh/Makefile b/openssl/crypto/ecdh/Makefile index 65d8904ee..ba05fea05 100644 --- a/openssl/crypto/ecdh/Makefile +++ b/openssl/crypto/ecdh/Makefile @@ -84,17 +84,12 @@ ech_err.o: ../../include/openssl/ossl_typ.h ../../include/openssl/safestack.h  ech_err.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h  ech_err.o: ech_err.c  ech_key.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h -ech_key.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h -ech_key.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h -ech_key.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h -ech_key.o: ../../include/openssl/engine.h ../../include/openssl/evp.h -ech_key.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h -ech_key.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h -ech_key.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h -ech_key.o: ../../include/openssl/pkcs7.h ../../include/openssl/safestack.h -ech_key.o: ../../include/openssl/sha.h ../../include/openssl/stack.h -ech_key.o: ../../include/openssl/symhacks.h ../../include/openssl/x509.h -ech_key.o: ../../include/openssl/x509_vfy.h ech_key.c ech_locl.h +ech_key.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h +ech_key.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h +ech_key.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h +ech_key.o: ../../include/openssl/ossl_typ.h ../../include/openssl/safestack.h +ech_key.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h +ech_key.o: ech_key.c ech_locl.h  ech_lib.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h  ech_lib.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h  ech_lib.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h diff --git a/openssl/crypto/ecdh/ech_key.c b/openssl/crypto/ecdh/ech_key.c index f44da9298..2988899ea 100644 --- a/openssl/crypto/ecdh/ech_key.c +++ b/openssl/crypto/ecdh/ech_key.c @@ -68,9 +68,6 @@   */  #include "ech_locl.h" -#ifndef OPENSSL_NO_ENGINE -#include <openssl/engine.h> -#endif  int ECDH_compute_key(void *out, size_t outlen, const EC_POINT *pub_key,  	EC_KEY *eckey, diff --git a/openssl/crypto/ecdh/ech_lib.c b/openssl/crypto/ecdh/ech_lib.c index dadbfd3c4..0644431b7 100644 --- a/openssl/crypto/ecdh/ech_lib.c +++ b/openssl/crypto/ecdh/ech_lib.c @@ -222,8 +222,15 @@ ECDH_DATA *ecdh_check(EC_KEY *key)  		ecdh_data = (ECDH_DATA *)ecdh_data_new();  		if (ecdh_data == NULL)  			return NULL; -		EC_KEY_insert_key_method_data(key, (void *)ecdh_data, -			ecdh_data_dup, ecdh_data_free, ecdh_data_free); +		data = EC_KEY_insert_key_method_data(key, (void *)ecdh_data, +			   ecdh_data_dup, ecdh_data_free, ecdh_data_free); +		if (data != NULL) +			{ +			/* Another thread raced us to install the key_method +			 * data and won. */ +			ecdh_data_free(ecdh_data); +			ecdh_data = (ECDH_DATA *)data; +			}  	}  	else  		ecdh_data = (ECDH_DATA *)data; diff --git a/openssl/crypto/ecdsa/ecs_lib.c b/openssl/crypto/ecdsa/ecs_lib.c index e477da430..814a6bf40 100644 --- a/openssl/crypto/ecdsa/ecs_lib.c +++ b/openssl/crypto/ecdsa/ecs_lib.c @@ -200,8 +200,15 @@ ECDSA_DATA *ecdsa_check(EC_KEY *key)  		ecdsa_data = (ECDSA_DATA *)ecdsa_data_new();  		if (ecdsa_data == NULL)  			return NULL; -		EC_KEY_insert_key_method_data(key, (void *)ecdsa_data, -			ecdsa_data_dup, ecdsa_data_free, ecdsa_data_free); +		data = EC_KEY_insert_key_method_data(key, (void *)ecdsa_data, +			   ecdsa_data_dup, ecdsa_data_free, ecdsa_data_free); +		if (data != NULL) +			{ +			/* Another thread raced us to install the key_method +			 * data and won. */ +			ecdsa_data_free(ecdsa_data); +			ecdsa_data = (ECDSA_DATA *)data; +			}  	}  	else  		ecdsa_data = (ECDSA_DATA *)data; diff --git a/openssl/crypto/err/err_all.c b/openssl/crypto/err/err_all.c index bd8946d8b..8eb547d98 100644 --- a/openssl/crypto/err/err_all.c +++ b/openssl/crypto/err/err_all.c @@ -64,7 +64,9 @@  #endif  #include <openssl/buffer.h>  #include <openssl/bio.h> +#ifndef OPENSSL_NO_COMP  #include <openssl/comp.h> +#endif  #ifndef OPENSSL_NO_RSA  #include <openssl/rsa.h>  #endif @@ -95,6 +97,9 @@  #include <openssl/ui.h>  #include <openssl/ocsp.h>  #include <openssl/err.h> +#ifdef OPENSSL_FIPS +#include <openssl/fips.h> +#endif  #include <openssl/ts.h>  #ifndef OPENSSL_NO_CMS  #include <openssl/cms.h> @@ -102,11 +107,6 @@  #ifndef OPENSSL_NO_JPAKE  #include <openssl/jpake.h>  #endif -#include <openssl/comp.h> - -#ifdef OPENSSL_FIPS -#include <openssl/fips.h> -#endif  void ERR_load_crypto_strings(void)  	{ @@ -130,7 +130,9 @@ void ERR_load_crypto_strings(void)  	ERR_load_ASN1_strings();  	ERR_load_CONF_strings();  	ERR_load_CRYPTO_strings(); +#ifndef OPENSSL_NO_COMP  	ERR_load_COMP_strings(); +#endif  #ifndef OPENSSL_NO_EC  	ERR_load_EC_strings();  #endif @@ -153,15 +155,14 @@ void ERR_load_crypto_strings(void)  #endif  	ERR_load_OCSP_strings();  	ERR_load_UI_strings(); +#ifdef OPENSSL_FIPS +	ERR_load_FIPS_strings(); +#endif  #ifndef OPENSSL_NO_CMS  	ERR_load_CMS_strings();  #endif  #ifndef OPENSSL_NO_JPAKE  	ERR_load_JPAKE_strings();  #endif -	ERR_load_COMP_strings(); -#endif -#ifdef OPENSSL_FIPS -	ERR_load_FIPS_strings();  #endif  	} diff --git a/openssl/crypto/evp/Makefile b/openssl/crypto/evp/Makefile index 0fe1b96bf..1e46cebf5 100644 --- a/openssl/crypto/evp/Makefile +++ b/openssl/crypto/evp/Makefile @@ -18,7 +18,7 @@ TESTDATA=evptests.txt  APPS=  LIB=$(TOP)/libcrypto.a -LIBSRC= encode.c digest.c evp_enc.c evp_key.c evp_acnf.c \ +LIBSRC= encode.c digest.c evp_enc.c evp_key.c evp_acnf.c evp_cnf.c \  	e_des.c e_bf.c e_idea.c e_des3.c e_camellia.c\  	e_rc4.c e_aes.c names.c e_seed.c \  	e_xcbc_d.c e_rc2.c e_cast.c e_rc5.c \ @@ -31,7 +31,7 @@ LIBSRC= encode.c digest.c evp_enc.c evp_key.c evp_acnf.c \  	e_old.c pmeth_lib.c pmeth_fn.c pmeth_gn.c m_sigver.c evp_fips.c	\  	e_aes_cbc_hmac_sha1.c e_rc4_hmac_md5.c -LIBOBJ=	encode.o digest.o evp_enc.o evp_key.o evp_acnf.o \ +LIBOBJ=	encode.o digest.o evp_enc.o evp_key.o evp_acnf.o evp_cnf.o \  	e_des.o e_bf.o e_idea.o e_des3.o e_camellia.o\  	e_rc4.o e_aes.o names.o e_seed.o \  	e_xcbc_d.o e_rc2.o e_cast.o e_rc5.o \ @@ -67,7 +67,7 @@ files:  links:  	@$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER)  	@$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) -	cp $(TESTDATA) ../../test +	[ ! -f $(TESTDATA) ] || cp $(TESTDATA) ../../test  	@$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS)  install: @@ -356,6 +356,20 @@ evp_acnf.o: ../../include/openssl/opensslconf.h  evp_acnf.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h  evp_acnf.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h  evp_acnf.o: ../../include/openssl/symhacks.h ../cryptlib.h evp_acnf.c +evp_cnf.o: ../../e_os.h ../../include/openssl/asn1.h +evp_cnf.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h +evp_cnf.o: ../../include/openssl/conf.h ../../include/openssl/crypto.h +evp_cnf.o: ../../include/openssl/dso.h ../../include/openssl/e_os2.h +evp_cnf.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h +evp_cnf.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h +evp_cnf.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h +evp_cnf.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h +evp_cnf.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h +evp_cnf.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h +evp_cnf.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h +evp_cnf.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h +evp_cnf.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h +evp_cnf.o: ../../include/openssl/x509v3.h ../cryptlib.h evp_cnf.c  evp_enc.o: ../../e_os.h ../../include/openssl/asn1.h  evp_enc.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h  evp_enc.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h @@ -437,28 +451,22 @@ evp_pkey.o: ../asn1/asn1_locl.h ../cryptlib.h evp_pkey.c  m_dss.o: ../../e_os.h ../../include/openssl/asn1.h ../../include/openssl/bio.h  m_dss.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h  m_dss.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h -m_dss.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h -m_dss.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h -m_dss.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h -m_dss.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h -m_dss.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h -m_dss.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h +m_dss.o: ../../include/openssl/err.h ../../include/openssl/evp.h +m_dss.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h +m_dss.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h +m_dss.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h  m_dss.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h  m_dss.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h -m_dss.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h  m_dss.o: ../cryptlib.h m_dss.c  m_dss1.o: ../../e_os.h ../../include/openssl/asn1.h ../../include/openssl/bio.h  m_dss1.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h  m_dss1.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h -m_dss1.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h -m_dss1.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h -m_dss1.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h -m_dss1.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h -m_dss1.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h -m_dss1.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h +m_dss1.o: ../../include/openssl/err.h ../../include/openssl/evp.h +m_dss1.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h +m_dss1.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h +m_dss1.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h  m_dss1.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h  m_dss1.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h -m_dss1.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h  m_dss1.o: ../cryptlib.h m_dss1.c  m_ecdsa.o: ../../e_os.h ../../include/openssl/asn1.h  m_ecdsa.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h @@ -563,16 +571,13 @@ m_sha.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h  m_sha.o: ../cryptlib.h evp_locl.h m_sha.c  m_sha1.o: ../../e_os.h ../../include/openssl/asn1.h ../../include/openssl/bio.h  m_sha1.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h -m_sha1.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h -m_sha1.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h -m_sha1.o: ../../include/openssl/err.h ../../include/openssl/evp.h -m_sha1.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h -m_sha1.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h -m_sha1.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h -m_sha1.o: ../../include/openssl/pkcs7.h ../../include/openssl/rsa.h +m_sha1.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h +m_sha1.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h +m_sha1.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h +m_sha1.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h +m_sha1.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rsa.h  m_sha1.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h  m_sha1.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h -m_sha1.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h  m_sha1.o: ../cryptlib.h m_sha1.c  m_sigver.o: ../../e_os.h ../../include/openssl/asn1.h  m_sigver.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h diff --git a/openssl/crypto/evp/digest.c b/openssl/crypto/evp/digest.c index 467e6b5ae..6fc469f9c 100644 --- a/openssl/crypto/evp/digest.c +++ b/openssl/crypto/evp/digest.c @@ -267,6 +267,7 @@ int EVP_DigestFinal_ex(EVP_MD_CTX *ctx, unsigned char *md, unsigned int *size)  	return FIPS_digestfinal(ctx, md, size);  #else  	int ret; +  	OPENSSL_assert(ctx->digest->md_size <= EVP_MAX_MD_SIZE);  	ret=ctx->digest->final(ctx,md);  	if (size != NULL) diff --git a/openssl/crypto/evp/e_aes.c b/openssl/crypto/evp/e_aes.c index 1e4af0cb7..1bfb5d92b 100644 --- a/openssl/crypto/evp/e_aes.c +++ b/openssl/crypto/evp/e_aes.c @@ -969,8 +969,6 @@ static int aes_gcm_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,  	if (!gctx->iv_set)  		return -1; -	if (!ctx->encrypt && gctx->taglen < 0) -		return -1;  	if (in)  		{  		if (out == NULL) @@ -1012,6 +1010,8 @@ static int aes_gcm_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,  		{  		if (!ctx->encrypt)  			{ +			if (gctx->taglen < 0) +				return -1;  			if (CRYPTO_gcm128_finish(&gctx->gcm,  					ctx->buf, gctx->taglen) != 0)  				return -1; @@ -1217,6 +1217,7 @@ static int aes_ccm_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key,  			vpaes_set_encrypt_key(key, ctx->key_len*8, &cctx->ks);  			CRYPTO_ccm128_init(&cctx->ccm, cctx->M, cctx->L,  					&cctx->ks, (block128_f)vpaes_encrypt); +			cctx->str = NULL;  			cctx->key_set = 1;  			break;  			} diff --git a/openssl/crypto/evp/e_aes_cbc_hmac_sha1.c b/openssl/crypto/evp/e_aes_cbc_hmac_sha1.c index 710fb79ba..483e04b60 100644 --- a/openssl/crypto/evp/e_aes_cbc_hmac_sha1.c +++ b/openssl/crypto/evp/e_aes_cbc_hmac_sha1.c @@ -1,5 +1,5 @@  /* ==================================================================== - * Copyright (c) 2011 The OpenSSL Project.  All rights reserved. + * Copyright (c) 2011-2013 The OpenSSL Project.  All rights reserved.   *   * Redistribution and use in source and binary forms, with or without   * modification, are permitted provided that the following conditions @@ -90,6 +90,10 @@ typedef struct  	defined(_M_AMD64)	|| defined(_M_X64)	|| \  	defined(__INTEL__)	) +#if defined(__GNUC__) && __GNUC__>=2 && !defined(PEDANTIC) +# define BSWAP(x) ({ unsigned int r=(x); asm ("bswapl %0":"=r"(r):"0"(r)); r; }) +#endif +  extern unsigned int OPENSSL_ia32cap_P[2];  #define AESNI_CAPABLE   (1<<(57-32)) @@ -167,6 +171,9 @@ static void sha1_update(SHA_CTX *c,const void *data,size_t len)  		SHA1_Update(c,ptr,res);  } +#ifdef SHA1_Update +#undef SHA1_Update +#endif  #define SHA1_Update sha1_update  static int aesni_cbc_hmac_sha1_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, @@ -184,6 +191,8 @@ static int aesni_cbc_hmac_sha1_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,  	sha_off = SHA_CBLOCK-key->md.num;  #endif +	key->payload_length = NO_PAYLOAD_LENGTH; +  	if (len%AES_BLOCK_SIZE) return 0;  	if (ctx->encrypt) { @@ -234,47 +243,210 @@ static int aesni_cbc_hmac_sha1_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,  					&key->ks,ctx->iv,1);  		}  	} else { -		unsigned char mac[SHA_DIGEST_LENGTH]; +		union { unsigned int  u[SHA_DIGEST_LENGTH/sizeof(unsigned int)]; +			unsigned char c[32+SHA_DIGEST_LENGTH]; } mac, *pmac; + +		/* arrange cache line alignment */ +		pmac = (void *)(((size_t)mac.c+31)&((size_t)0-32));  		/* decrypt HMAC|padding at once */  		aesni_cbc_encrypt(in,out,len,  				&key->ks,ctx->iv,0);  		if (plen) {	/* "TLS" mode of operation */ -			/* figure out payload length */ -			if (len<(size_t)(out[len-1]+1+SHA_DIGEST_LENGTH)) -				return 0; - -			len -= (out[len-1]+1+SHA_DIGEST_LENGTH); +			size_t inp_len, mask, j, i; +			unsigned int res, maxpad, pad, bitlen; +			int ret = 1; +			union {	unsigned int  u[SHA_LBLOCK]; +				unsigned char c[SHA_CBLOCK]; } +				*data = (void *)key->md.data;  			if ((key->aux.tls_aad[plen-4]<<8|key->aux.tls_aad[plen-3]) -			    >= TLS1_1_VERSION) { -				len -= AES_BLOCK_SIZE; +			    >= TLS1_1_VERSION)  				iv = AES_BLOCK_SIZE; -			} -			key->aux.tls_aad[plen-2] = len>>8; -			key->aux.tls_aad[plen-1] = len; +			if (len<(iv+SHA_DIGEST_LENGTH+1)) +				return 0; + +			/* omit explicit iv */ +			out += iv; +			len -= iv; + +			/* figure out payload length */ +			pad = out[len-1]; +			maxpad = len-(SHA_DIGEST_LENGTH+1); +			maxpad |= (255-maxpad)>>(sizeof(maxpad)*8-8); +			maxpad &= 255; + +			inp_len = len - (SHA_DIGEST_LENGTH+pad+1); +			mask = (0-((inp_len-len)>>(sizeof(inp_len)*8-1))); +			inp_len &= mask; +			ret &= (int)mask; + +			key->aux.tls_aad[plen-2] = inp_len>>8; +			key->aux.tls_aad[plen-1] = inp_len; -			/* calculate HMAC and verify it */ +			/* calculate HMAC */  			key->md = key->head;  			SHA1_Update(&key->md,key->aux.tls_aad,plen); -			SHA1_Update(&key->md,out+iv,len); -			SHA1_Final(mac,&key->md); +#if 1 +			len -= SHA_DIGEST_LENGTH;		/* amend mac */ +			if (len>=(256+SHA_CBLOCK)) { +				j = (len-(256+SHA_CBLOCK))&(0-SHA_CBLOCK); +				j += SHA_CBLOCK-key->md.num; +				SHA1_Update(&key->md,out,j); +				out += j; +				len -= j; +				inp_len -= j; +			} + +			/* but pretend as if we hashed padded payload */ +			bitlen = key->md.Nl+(inp_len<<3);	/* at most 18 bits */ +#ifdef BSWAP +			bitlen = BSWAP(bitlen); +#else +			mac.c[0] = 0; +			mac.c[1] = (unsigned char)(bitlen>>16); +			mac.c[2] = (unsigned char)(bitlen>>8); +			mac.c[3] = (unsigned char)bitlen; +			bitlen = mac.u[0]; +#endif + +			pmac->u[0]=0; +			pmac->u[1]=0; +			pmac->u[2]=0; +			pmac->u[3]=0; +			pmac->u[4]=0; + +			for (res=key->md.num, j=0;j<len;j++) { +				size_t c = out[j]; +				mask = (j-inp_len)>>(sizeof(j)*8-8); +				c &= mask; +				c |= 0x80&~mask&~((inp_len-j)>>(sizeof(j)*8-8)); +				data->c[res++]=(unsigned char)c; + +				if (res!=SHA_CBLOCK) continue; + +				mask = 0-((inp_len+8-j)>>(sizeof(j)*8-1)); +				data->u[SHA_LBLOCK-1] |= bitlen&mask; +				sha1_block_data_order(&key->md,data,1); +				mask &= 0-((j-inp_len-73)>>(sizeof(j)*8-1)); +				pmac->u[0] |= key->md.h0 & mask; +				pmac->u[1] |= key->md.h1 & mask; +				pmac->u[2] |= key->md.h2 & mask; +				pmac->u[3] |= key->md.h3 & mask; +				pmac->u[4] |= key->md.h4 & mask; +				res=0; +			} + +			for(i=res;i<SHA_CBLOCK;i++,j++) data->c[i]=0; + +			if (res>SHA_CBLOCK-8) { +				mask = 0-((inp_len+8-j)>>(sizeof(j)*8-1)); +				data->u[SHA_LBLOCK-1] |= bitlen&mask; +				sha1_block_data_order(&key->md,data,1); +				mask &= 0-((j-inp_len-73)>>(sizeof(j)*8-1)); +				pmac->u[0] |= key->md.h0 & mask; +				pmac->u[1] |= key->md.h1 & mask; +				pmac->u[2] |= key->md.h2 & mask; +				pmac->u[3] |= key->md.h3 & mask; +				pmac->u[4] |= key->md.h4 & mask; + +				memset(data,0,SHA_CBLOCK); +				j+=64; +			} +			data->u[SHA_LBLOCK-1] = bitlen; +			sha1_block_data_order(&key->md,data,1); +			mask = 0-((j-inp_len-73)>>(sizeof(j)*8-1)); +			pmac->u[0] |= key->md.h0 & mask; +			pmac->u[1] |= key->md.h1 & mask; +			pmac->u[2] |= key->md.h2 & mask; +			pmac->u[3] |= key->md.h3 & mask; +			pmac->u[4] |= key->md.h4 & mask; + +#ifdef BSWAP +			pmac->u[0] = BSWAP(pmac->u[0]); +			pmac->u[1] = BSWAP(pmac->u[1]); +			pmac->u[2] = BSWAP(pmac->u[2]); +			pmac->u[3] = BSWAP(pmac->u[3]); +			pmac->u[4] = BSWAP(pmac->u[4]); +#else +			for (i=0;i<5;i++) { +				res = pmac->u[i]; +				pmac->c[4*i+0]=(unsigned char)(res>>24); +				pmac->c[4*i+1]=(unsigned char)(res>>16); +				pmac->c[4*i+2]=(unsigned char)(res>>8); +				pmac->c[4*i+3]=(unsigned char)res; +			} +#endif +			len += SHA_DIGEST_LENGTH; +#else +			SHA1_Update(&key->md,out,inp_len); +			res = key->md.num; +			SHA1_Final(pmac->c,&key->md); + +			{ +			unsigned int inp_blocks, pad_blocks; + +			/* but pretend as if we hashed padded payload */ +			inp_blocks = 1+((SHA_CBLOCK-9-res)>>(sizeof(res)*8-1)); +			res += (unsigned int)(len-inp_len); +			pad_blocks = res / SHA_CBLOCK; +			res %= SHA_CBLOCK; +			pad_blocks += 1+((SHA_CBLOCK-9-res)>>(sizeof(res)*8-1)); +			for (;inp_blocks<pad_blocks;inp_blocks++) +				sha1_block_data_order(&key->md,data,1); +			} +#endif  			key->md = key->tail; -			SHA1_Update(&key->md,mac,SHA_DIGEST_LENGTH); -			SHA1_Final(mac,&key->md); +			SHA1_Update(&key->md,pmac->c,SHA_DIGEST_LENGTH); +			SHA1_Final(pmac->c,&key->md); -			if (memcmp(out+iv+len,mac,SHA_DIGEST_LENGTH)) -				return 0; +			/* verify HMAC */ +			out += inp_len; +			len -= inp_len; +#if 1 +			{ +			unsigned char *p = out+len-1-maxpad-SHA_DIGEST_LENGTH; +			size_t off = out-p; +			unsigned int c, cmask; + +			maxpad += SHA_DIGEST_LENGTH; +			for (res=0,i=0,j=0;j<maxpad;j++) { +				c = p[j]; +				cmask = ((int)(j-off-SHA_DIGEST_LENGTH))>>(sizeof(int)*8-1); +				res |= (c^pad)&~cmask;	/* ... and padding */ +				cmask &= ((int)(off-1-j))>>(sizeof(int)*8-1); +				res |= (c^pmac->c[i])&cmask; +				i += 1&cmask; +			} +			maxpad -= SHA_DIGEST_LENGTH; + +			res = 0-((0-res)>>(sizeof(res)*8-1)); +			ret &= (int)~res; +			} +#else +			for (res=0,i=0;i<SHA_DIGEST_LENGTH;i++) +				res |= out[i]^pmac->c[i]; +			res = 0-((0-res)>>(sizeof(res)*8-1)); +			ret &= (int)~res; + +			/* verify padding */ +			pad = (pad&~res) | (maxpad&res); +			out = out+len-1-pad; +			for (res=0,i=0;i<pad;i++) +				res |= out[i]^pad; + +			res = (0-res)>>(sizeof(res)*8-1); +			ret &= (int)~res; +#endif +			return ret;  		} else {  			SHA1_Update(&key->md,out,len);  		}  	} -	key->payload_length = NO_PAYLOAD_LENGTH; -  	return 1;  	} @@ -309,6 +481,8 @@ static int aesni_cbc_hmac_sha1_ctrl(EVP_CIPHER_CTX *ctx, int type, int arg, void  		SHA1_Init(&key->tail);  		SHA1_Update(&key->tail,hmac_key,sizeof(hmac_key)); +		OPENSSL_cleanse(hmac_key,sizeof(hmac_key)); +  		return 1;  		}  	case EVP_CTRL_AEAD_TLS1_AAD: diff --git a/openssl/crypto/evp/evp.h b/openssl/crypto/evp/evp.h index 0d1b20a7d..faeb3c24e 100644 --- a/openssl/crypto/evp/evp.h +++ b/openssl/crypto/evp/evp.h @@ -402,7 +402,6 @@ struct evp_cipher_st  /* Length of tag for TLS */  #define EVP_GCM_TLS_TAG_LEN				16 -  typedef struct evp_cipher_info_st  	{  	const EVP_CIPHER *cipher; @@ -789,8 +788,8 @@ const EVP_CIPHER *EVP_aes_128_cfb128(void);  # define EVP_aes_128_cfb EVP_aes_128_cfb128  const EVP_CIPHER *EVP_aes_128_ofb(void);  const EVP_CIPHER *EVP_aes_128_ctr(void); -const EVP_CIPHER *EVP_aes_128_gcm(void);  const EVP_CIPHER *EVP_aes_128_ccm(void); +const EVP_CIPHER *EVP_aes_128_gcm(void);  const EVP_CIPHER *EVP_aes_128_xts(void);  const EVP_CIPHER *EVP_aes_192_ecb(void);  const EVP_CIPHER *EVP_aes_192_cbc(void); @@ -800,8 +799,8 @@ const EVP_CIPHER *EVP_aes_192_cfb128(void);  # define EVP_aes_192_cfb EVP_aes_192_cfb128  const EVP_CIPHER *EVP_aes_192_ofb(void);  const EVP_CIPHER *EVP_aes_192_ctr(void); -const EVP_CIPHER *EVP_aes_192_gcm(void);  const EVP_CIPHER *EVP_aes_192_ccm(void); +const EVP_CIPHER *EVP_aes_192_gcm(void);  const EVP_CIPHER *EVP_aes_256_ecb(void);  const EVP_CIPHER *EVP_aes_256_cbc(void);  const EVP_CIPHER *EVP_aes_256_cfb1(void); @@ -810,8 +809,8 @@ const EVP_CIPHER *EVP_aes_256_cfb128(void);  # define EVP_aes_256_cfb EVP_aes_256_cfb128  const EVP_CIPHER *EVP_aes_256_ofb(void);  const EVP_CIPHER *EVP_aes_256_ctr(void); -const EVP_CIPHER *EVP_aes_256_gcm(void);  const EVP_CIPHER *EVP_aes_256_ccm(void); +const EVP_CIPHER *EVP_aes_256_gcm(void);  const EVP_CIPHER *EVP_aes_256_xts(void);  #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA1)  const EVP_CIPHER *EVP_aes_128_cbc_hmac_sha1(void); @@ -1243,6 +1242,8 @@ void EVP_PKEY_meth_set_ctrl(EVP_PKEY_METHOD *pmeth,  	int (*ctrl_str)(EVP_PKEY_CTX *ctx,  					const char *type, const char *value)); +void EVP_add_alg_module(void); +  /* BEGIN ERROR CODES */  /* The following lines are auto generated by the script mkerr.pl. Any changes   * made after this point may be overwritten when the script is next run. @@ -1257,6 +1258,7 @@ void ERR_load_EVP_strings(void);  #define EVP_F_AES_INIT_KEY				 133  #define EVP_F_AES_XTS					 172  #define EVP_F_AES_XTS_CIPHER				 175 +#define EVP_F_ALG_MODULE_INIT				 177  #define EVP_F_CAMELLIA_INIT_KEY				 159  #define EVP_F_CMAC_INIT					 173  #define EVP_F_D2I_PKEY					 100 @@ -1350,15 +1352,19 @@ void ERR_load_EVP_strings(void);  #define EVP_R_DIFFERENT_PARAMETERS			 153  #define EVP_R_DISABLED_FOR_FIPS				 163  #define EVP_R_ENCODE_ERROR				 115 +#define EVP_R_ERROR_LOADING_SECTION			 165 +#define EVP_R_ERROR_SETTING_FIPS_MODE			 166  #define EVP_R_EVP_PBE_CIPHERINIT_ERROR			 119  #define EVP_R_EXPECTING_AN_RSA_KEY			 127  #define EVP_R_EXPECTING_A_DH_KEY			 128  #define EVP_R_EXPECTING_A_DSA_KEY			 129  #define EVP_R_EXPECTING_A_ECDSA_KEY			 141  #define EVP_R_EXPECTING_A_EC_KEY			 142 +#define EVP_R_FIPS_MODE_NOT_SUPPORTED			 167  #define EVP_R_INITIALIZATION_ERROR			 134  #define EVP_R_INPUT_NOT_INITIALIZED			 111  #define EVP_R_INVALID_DIGEST				 152 +#define EVP_R_INVALID_FIPS_MODE				 168  #define EVP_R_INVALID_KEY_LENGTH			 130  #define EVP_R_INVALID_OPERATION				 148  #define EVP_R_IV_TOO_LARGE				 102 @@ -1383,6 +1389,7 @@ void ERR_load_EVP_strings(void);  #define EVP_R_TOO_LARGE					 164  #define EVP_R_UNKNOWN_CIPHER				 160  #define EVP_R_UNKNOWN_DIGEST				 161 +#define EVP_R_UNKNOWN_OPTION				 169  #define EVP_R_UNKNOWN_PBE_ALGORITHM			 121  #define EVP_R_UNSUPORTED_NUMBER_OF_ROUNDS		 135  #define EVP_R_UNSUPPORTED_ALGORITHM			 156 diff --git a/openssl/crypto/evp/evp_cnf.c b/openssl/crypto/evp/evp_cnf.c new file mode 100644 index 000000000..2e4db3023 --- /dev/null +++ b/openssl/crypto/evp/evp_cnf.c @@ -0,0 +1,125 @@ +/* evp_cnf.c */ +/* Written by Stephen Henson (steve@openssl.org) for the OpenSSL + * project 2007. + */ +/* ==================================================================== + * Copyright (c) 2007 The OpenSSL Project.  All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * + * 1. Redistributions of source code must retain the above copyright + *    notice, this list of conditions and the following disclaimer.  + * + * 2. Redistributions in binary form must reproduce the above copyright + *    notice, this list of conditions and the following disclaimer in + *    the documentation and/or other materials provided with the + *    distribution. + * + * 3. All advertising materials mentioning features or use of this + *    software must display the following acknowledgment: + *    "This product includes software developed by the OpenSSL Project + *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" + * + * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to + *    endorse or promote products derived from this software without + *    prior written permission. For written permission, please contact + *    licensing@OpenSSL.org. + * + * 5. Products derived from this software may not be called "OpenSSL" + *    nor may "OpenSSL" appear in their names without prior written + *    permission of the OpenSSL Project. + * + * 6. Redistributions of any form whatsoever must retain the following + *    acknowledgment: + *    "This product includes software developed by the OpenSSL Project + *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" + * + * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY + * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR + * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR + * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT + * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; + * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, + * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) + * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED + * OF THE POSSIBILITY OF SUCH DAMAGE. + * ==================================================================== + * + * This product includes cryptographic software written by Eric Young + * (eay@cryptsoft.com).  This product includes software written by Tim + * Hudson (tjh@cryptsoft.com). + * + */ + +#include <stdio.h> +#include <ctype.h> +#include <openssl/crypto.h> +#include "cryptlib.h" +#include <openssl/conf.h> +#include <openssl/dso.h> +#include <openssl/x509.h> +#include <openssl/x509v3.h> +#ifdef OPENSSL_FIPS +#include <openssl/fips.h> +#endif + + +/* Algorithm configuration module. */ + +static int alg_module_init(CONF_IMODULE *md, const CONF *cnf) +	{ +	int i; +	const char *oid_section; +	STACK_OF(CONF_VALUE) *sktmp; +	CONF_VALUE *oval; +	oid_section = CONF_imodule_get_value(md); +	if(!(sktmp = NCONF_get_section(cnf, oid_section))) +		{ +		EVPerr(EVP_F_ALG_MODULE_INIT, EVP_R_ERROR_LOADING_SECTION); +		return 0; +		} +	for(i = 0; i < sk_CONF_VALUE_num(sktmp); i++) +		{ +		oval = sk_CONF_VALUE_value(sktmp, i); +		if (!strcmp(oval->name, "fips_mode")) +			{ +			int m; +			if (!X509V3_get_value_bool(oval, &m)) +				{ +				EVPerr(EVP_F_ALG_MODULE_INIT, EVP_R_INVALID_FIPS_MODE); +				return 0; +				} +			if (m > 0) +				{ +#ifdef OPENSSL_FIPS +				if (!FIPS_mode() && !FIPS_mode_set(1)) +					{ +					EVPerr(EVP_F_ALG_MODULE_INIT, EVP_R_ERROR_SETTING_FIPS_MODE); +					return 0; +					} +#else +				EVPerr(EVP_F_ALG_MODULE_INIT, EVP_R_FIPS_MODE_NOT_SUPPORTED); +				return 0; +#endif +				} +			} +		else +			{ +			EVPerr(EVP_F_ALG_MODULE_INIT, EVP_R_UNKNOWN_OPTION); +			ERR_add_error_data(4, "name=", oval->name, +						", value=", oval->value); +			} +				 +		} +	return 1; +	} + +void EVP_add_alg_module(void) +	{ +	CONF_module_add("alg_section", alg_module_init, 0); +	} diff --git a/openssl/crypto/evp/evp_err.c b/openssl/crypto/evp/evp_err.c index db0f76d59..08eab9882 100644 --- a/openssl/crypto/evp/evp_err.c +++ b/openssl/crypto/evp/evp_err.c @@ -75,6 +75,7 @@ static ERR_STRING_DATA EVP_str_functs[]=  {ERR_FUNC(EVP_F_AES_INIT_KEY),	"AES_INIT_KEY"},  {ERR_FUNC(EVP_F_AES_XTS),	"AES_XTS"},  {ERR_FUNC(EVP_F_AES_XTS_CIPHER),	"AES_XTS_CIPHER"}, +{ERR_FUNC(EVP_F_ALG_MODULE_INIT),	"ALG_MODULE_INIT"},  {ERR_FUNC(EVP_F_CAMELLIA_INIT_KEY),	"CAMELLIA_INIT_KEY"},  {ERR_FUNC(EVP_F_CMAC_INIT),	"CMAC_INIT"},  {ERR_FUNC(EVP_F_D2I_PKEY),	"D2I_PKEY"}, @@ -171,15 +172,19 @@ static ERR_STRING_DATA EVP_str_reasons[]=  {ERR_REASON(EVP_R_DIFFERENT_PARAMETERS)  ,"different parameters"},  {ERR_REASON(EVP_R_DISABLED_FOR_FIPS)     ,"disabled for fips"},  {ERR_REASON(EVP_R_ENCODE_ERROR)          ,"encode error"}, +{ERR_REASON(EVP_R_ERROR_LOADING_SECTION) ,"error loading section"}, +{ERR_REASON(EVP_R_ERROR_SETTING_FIPS_MODE),"error setting fips mode"},  {ERR_REASON(EVP_R_EVP_PBE_CIPHERINIT_ERROR),"evp pbe cipherinit error"},  {ERR_REASON(EVP_R_EXPECTING_AN_RSA_KEY)  ,"expecting an rsa key"},  {ERR_REASON(EVP_R_EXPECTING_A_DH_KEY)    ,"expecting a dh key"},  {ERR_REASON(EVP_R_EXPECTING_A_DSA_KEY)   ,"expecting a dsa key"},  {ERR_REASON(EVP_R_EXPECTING_A_ECDSA_KEY) ,"expecting a ecdsa key"},  {ERR_REASON(EVP_R_EXPECTING_A_EC_KEY)    ,"expecting a ec key"}, +{ERR_REASON(EVP_R_FIPS_MODE_NOT_SUPPORTED),"fips mode not supported"},  {ERR_REASON(EVP_R_INITIALIZATION_ERROR)  ,"initialization error"},  {ERR_REASON(EVP_R_INPUT_NOT_INITIALIZED) ,"input not initialized"},  {ERR_REASON(EVP_R_INVALID_DIGEST)        ,"invalid digest"}, +{ERR_REASON(EVP_R_INVALID_FIPS_MODE)     ,"invalid fips mode"},  {ERR_REASON(EVP_R_INVALID_KEY_LENGTH)    ,"invalid key length"},  {ERR_REASON(EVP_R_INVALID_OPERATION)     ,"invalid operation"},  {ERR_REASON(EVP_R_IV_TOO_LARGE)          ,"iv too large"}, @@ -204,6 +209,7 @@ static ERR_STRING_DATA EVP_str_reasons[]=  {ERR_REASON(EVP_R_TOO_LARGE)             ,"too large"},  {ERR_REASON(EVP_R_UNKNOWN_CIPHER)        ,"unknown cipher"},  {ERR_REASON(EVP_R_UNKNOWN_DIGEST)        ,"unknown digest"}, +{ERR_REASON(EVP_R_UNKNOWN_OPTION)        ,"unknown option"},  {ERR_REASON(EVP_R_UNKNOWN_PBE_ALGORITHM) ,"unknown pbe algorithm"},  {ERR_REASON(EVP_R_UNSUPORTED_NUMBER_OF_ROUNDS),"unsuported number of rounds"},  {ERR_REASON(EVP_R_UNSUPPORTED_ALGORITHM) ,"unsupported algorithm"}, diff --git a/openssl/crypto/evp/m_dss.c b/openssl/crypto/evp/m_dss.c index 4ad63ada6..6fb7e9a86 100644 --- a/openssl/crypto/evp/m_dss.c +++ b/openssl/crypto/evp/m_dss.c @@ -60,7 +60,7 @@  #include "cryptlib.h"  #include <openssl/evp.h>  #include <openssl/objects.h> -#include <openssl/x509.h> +#include <openssl/sha.h>  #ifndef OPENSSL_NO_DSA  #include <openssl/dsa.h>  #endif diff --git a/openssl/crypto/evp/m_dss1.c b/openssl/crypto/evp/m_dss1.c index f80170efe..2df362a67 100644 --- a/openssl/crypto/evp/m_dss1.c +++ b/openssl/crypto/evp/m_dss1.c @@ -63,7 +63,7 @@  #include <openssl/evp.h>  #include <openssl/objects.h> -#include <openssl/x509.h> +#include <openssl/sha.h>  #ifndef OPENSSL_NO_DSA  #include <openssl/dsa.h>  #endif diff --git a/openssl/crypto/evp/m_sha1.c b/openssl/crypto/evp/m_sha1.c index 3cb11f1eb..bd0c01ad3 100644 --- a/openssl/crypto/evp/m_sha1.c +++ b/openssl/crypto/evp/m_sha1.c @@ -65,7 +65,7 @@  #include <openssl/evp.h>  #include <openssl/objects.h> -#include <openssl/x509.h> +#include <openssl/sha.h>  #ifndef OPENSSL_NO_RSA  #include <openssl/rsa.h>  #endif diff --git a/openssl/crypto/evp/p_sign.c b/openssl/crypto/evp/p_sign.c index dfa48c157..8afb66430 100644 --- a/openssl/crypto/evp/p_sign.c +++ b/openssl/crypto/evp/p_sign.c @@ -80,7 +80,7 @@ int EVP_SignFinal(EVP_MD_CTX *ctx, unsigned char *sigret, unsigned int *siglen,  	{  	unsigned char m[EVP_MAX_MD_SIZE];  	unsigned int m_len; -	int i=0,ok=0,v; +	int i = 0,ok = 0,v;  	EVP_MD_CTX tmp_ctx;  	EVP_PKEY_CTX *pkctx = NULL; diff --git a/openssl/crypto/evp/p_verify.c b/openssl/crypto/evp/p_verify.c index 5f5c409f4..c66d63ccf 100644 --- a/openssl/crypto/evp/p_verify.c +++ b/openssl/crypto/evp/p_verify.c @@ -67,7 +67,7 @@ int EVP_VerifyFinal(EVP_MD_CTX *ctx, const unsigned char *sigbuf,  	{  	unsigned char m[EVP_MAX_MD_SIZE];  	unsigned int m_len; -	int i=-1,ok=0,v; +	int i = 0,ok = 0,v;  	EVP_MD_CTX tmp_ctx;  	EVP_PKEY_CTX *pkctx = NULL; diff --git a/openssl/crypto/md4/md4_dgst.c b/openssl/crypto/md4/md4_dgst.c index 82c2cb2d9..b5b165b05 100644 --- a/openssl/crypto/md4/md4_dgst.c +++ b/openssl/crypto/md4/md4_dgst.c @@ -106,22 +106,23 @@ void md4_block_data_order (MD4_CTX *c, const void *data_, size_t num)  	for (;num--;)  		{ -	HOST_c2l(data,l); X( 0)=l;		HOST_c2l(data,l); X( 1)=l; +	(void)HOST_c2l(data,l); X( 0)=l; +	(void)HOST_c2l(data,l); X( 1)=l;  	/* Round 0 */ -	R0(A,B,C,D,X( 0), 3,0);	HOST_c2l(data,l); X( 2)=l; -	R0(D,A,B,C,X( 1), 7,0);	HOST_c2l(data,l); X( 3)=l; -	R0(C,D,A,B,X( 2),11,0);	HOST_c2l(data,l); X( 4)=l; -	R0(B,C,D,A,X( 3),19,0);	HOST_c2l(data,l); X( 5)=l; -	R0(A,B,C,D,X( 4), 3,0);	HOST_c2l(data,l); X( 6)=l; -	R0(D,A,B,C,X( 5), 7,0);	HOST_c2l(data,l); X( 7)=l; -	R0(C,D,A,B,X( 6),11,0);	HOST_c2l(data,l); X( 8)=l; -	R0(B,C,D,A,X( 7),19,0);	HOST_c2l(data,l); X( 9)=l; -	R0(A,B,C,D,X( 8), 3,0);	HOST_c2l(data,l); X(10)=l; -	R0(D,A,B,C,X( 9), 7,0);	HOST_c2l(data,l); X(11)=l; -	R0(C,D,A,B,X(10),11,0);	HOST_c2l(data,l); X(12)=l; -	R0(B,C,D,A,X(11),19,0);	HOST_c2l(data,l); X(13)=l; -	R0(A,B,C,D,X(12), 3,0);	HOST_c2l(data,l); X(14)=l; -	R0(D,A,B,C,X(13), 7,0);	HOST_c2l(data,l); X(15)=l; +	R0(A,B,C,D,X( 0), 3,0);	(void)HOST_c2l(data,l); X( 2)=l; +	R0(D,A,B,C,X( 1), 7,0);	(void)HOST_c2l(data,l); X( 3)=l; +	R0(C,D,A,B,X( 2),11,0);	(void)HOST_c2l(data,l); X( 4)=l; +	R0(B,C,D,A,X( 3),19,0);	(void)HOST_c2l(data,l); X( 5)=l; +	R0(A,B,C,D,X( 4), 3,0);	(void)HOST_c2l(data,l); X( 6)=l; +	R0(D,A,B,C,X( 5), 7,0);	(void)HOST_c2l(data,l); X( 7)=l; +	R0(C,D,A,B,X( 6),11,0);	(void)HOST_c2l(data,l); X( 8)=l; +	R0(B,C,D,A,X( 7),19,0);	(void)HOST_c2l(data,l); X( 9)=l; +	R0(A,B,C,D,X( 8), 3,0);	(void)HOST_c2l(data,l); X(10)=l; +	R0(D,A,B,C,X( 9), 7,0);	(void)HOST_c2l(data,l); X(11)=l; +	R0(C,D,A,B,X(10),11,0);	(void)HOST_c2l(data,l); X(12)=l; +	R0(B,C,D,A,X(11),19,0);	(void)HOST_c2l(data,l); X(13)=l; +	R0(A,B,C,D,X(12), 3,0);	(void)HOST_c2l(data,l); X(14)=l; +	R0(D,A,B,C,X(13), 7,0);	(void)HOST_c2l(data,l); X(15)=l;  	R0(C,D,A,B,X(14),11,0);  	R0(B,C,D,A,X(15),19,0);  	/* Round 1 */ diff --git a/openssl/crypto/md4/md4_locl.h b/openssl/crypto/md4/md4_locl.h index c8085b0ea..99c3e5004 100644 --- a/openssl/crypto/md4/md4_locl.h +++ b/openssl/crypto/md4/md4_locl.h @@ -77,10 +77,10 @@ void md4_block_data_order (MD4_CTX *c, const void *p,size_t num);  #define HASH_FINAL		MD4_Final  #define	HASH_MAKE_STRING(c,s)	do {	\  	unsigned long ll;		\ -	ll=(c)->A; HOST_l2c(ll,(s));	\ -	ll=(c)->B; HOST_l2c(ll,(s));	\ -	ll=(c)->C; HOST_l2c(ll,(s));	\ -	ll=(c)->D; HOST_l2c(ll,(s));	\ +	ll=(c)->A; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->B; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->C; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->D; (void)HOST_l2c(ll,(s));	\  	} while (0)  #define	HASH_BLOCK_DATA_ORDER	md4_block_data_order diff --git a/openssl/crypto/md5/asm/md5-x86_64.pl b/openssl/crypto/md5/asm/md5-x86_64.pl index 867885435..f11224d17 100644 --- a/openssl/crypto/md5/asm/md5-x86_64.pl +++ b/openssl/crypto/md5/asm/md5-x86_64.pl @@ -120,7 +120,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; my $dir=$1; my $xlate;  die "can't locate x86_64-xlate.pl";  no warnings qw(uninitialized); -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  $code .= <<EOF;  .text diff --git a/openssl/crypto/md5/md5_locl.h b/openssl/crypto/md5/md5_locl.h index 968d57799..74d63d1f9 100644 --- a/openssl/crypto/md5/md5_locl.h +++ b/openssl/crypto/md5/md5_locl.h @@ -86,10 +86,10 @@ void md5_block_data_order (MD5_CTX *c, const void *p,size_t num);  #define HASH_FINAL		MD5_Final  #define	HASH_MAKE_STRING(c,s)	do {	\  	unsigned long ll;		\ -	ll=(c)->A; HOST_l2c(ll,(s));	\ -	ll=(c)->B; HOST_l2c(ll,(s));	\ -	ll=(c)->C; HOST_l2c(ll,(s));	\ -	ll=(c)->D; HOST_l2c(ll,(s));	\ +	ll=(c)->A; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->B; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->C; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->D; (void)HOST_l2c(ll,(s));	\  	} while (0)  #define	HASH_BLOCK_DATA_ORDER	md5_block_data_order diff --git a/openssl/crypto/mdc2/mdc2dgst.c b/openssl/crypto/mdc2/mdc2dgst.c index b74bb1a75..d66ed6a1c 100644 --- a/openssl/crypto/mdc2/mdc2dgst.c +++ b/openssl/crypto/mdc2/mdc2dgst.c @@ -59,9 +59,9 @@  #include <stdio.h>  #include <stdlib.h>  #include <string.h> +#include <openssl/crypto.h>  #include <openssl/des.h>  #include <openssl/mdc2.h> -#include <openssl/crypto.h>  #undef c2l  #define c2l(c,l)	(l =((DES_LONG)(*((c)++)))    , \ diff --git a/openssl/crypto/mem.c b/openssl/crypto/mem.c index 21c001138..1cc62eafd 100644 --- a/openssl/crypto/mem.c +++ b/openssl/crypto/mem.c @@ -121,10 +121,10 @@ static void (*set_debug_options_func)(long) = NULL;  static long (*get_debug_options_func)(void) = NULL;  #endif -  int CRYPTO_set_mem_functions(void *(*m)(size_t), void *(*r)(void *, size_t),  	void (*f)(void *))  	{ +	/* Dummy call just to ensure OPENSSL_init() gets linked in */  	OPENSSL_init();  	if (!allow_customize)  		return 0; diff --git a/openssl/crypto/modes/asm/ghash-x86.pl b/openssl/crypto/modes/asm/ghash-x86.pl index 6b09669d4..83c727e07 100644 --- a/openssl/crypto/modes/asm/ghash-x86.pl +++ b/openssl/crypto/modes/asm/ghash-x86.pl @@ -635,7 +635,7 @@ sub mmx_loop() {      { my @lo  = ("mm0","mm1","mm2");        my @hi  = ("mm3","mm4","mm5");        my @tmp = ("mm6","mm7"); -      my $off1=0,$off2=0,$i; +      my ($off1,$off2,$i) = (0,0,);        &add	($Htbl,128);			# optimize for size        &lea	("edi",&DWP(16+128,"esp")); @@ -883,7 +883,7 @@ sub reduction_alg9 {	# 17/13 times faster than Intel version  my ($Xhi,$Xi) = @_;  	# 1st phase -	&movdqa		($T1,$Xi)		# +	&movdqa		($T1,$Xi);		#  	&psllq		($Xi,1);  	&pxor		($Xi,$T1);		#  	&psllq		($Xi,5);		# @@ -1019,7 +1019,7 @@ my ($Xhi,$Xi) = @_;  	&movdqa		($Xhn,$Xn);  	 &pxor		($Xhi,$T1);		# "Ii+Xi", consume early -	  &movdqa	($T1,$Xi)		#&reduction_alg9($Xhi,$Xi); 1st phase +	  &movdqa	($T1,$Xi);		#&reduction_alg9($Xhi,$Xi); 1st phase  	  &psllq	($Xi,1);  	  &pxor		($Xi,$T1);		#  	  &psllq	($Xi,5);		# diff --git a/openssl/crypto/modes/asm/ghash-x86_64.pl b/openssl/crypto/modes/asm/ghash-x86_64.pl index a5ae18088..38d779edb 100644 --- a/openssl/crypto/modes/asm/ghash-x86_64.pl +++ b/openssl/crypto/modes/asm/ghash-x86_64.pl @@ -50,7 +50,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  # common register layout  $nlo="%rax"; diff --git a/openssl/crypto/modes/gcm128.c b/openssl/crypto/modes/gcm128.c index 7d6d03497..0e6ff8b0a 100644 --- a/openssl/crypto/modes/gcm128.c +++ b/openssl/crypto/modes/gcm128.c @@ -723,7 +723,7 @@ void CRYPTO_gcm128_init(GCM128_CONTEXT *ctx,void *key,block128_f block)  #  endif  	gcm_init_4bit(ctx->Htable,ctx->H.u);  #  if	defined(GHASH_ASM_X86)			/* x86 only */ -#   if defined(OPENSSL_IA32_SSE2) +#   if	defined(OPENSSL_IA32_SSE2)  	if (OPENSSL_ia32cap_P[0]&(1<<25)) {	/* check SSE bit */  #   else  	if (OPENSSL_ia32cap_P[0]&(1<<23)) {	/* check MMX bit */ @@ -1398,7 +1398,7 @@ int CRYPTO_gcm128_finish(GCM128_CONTEXT *ctx,const unsigned char *tag,  	void (*gcm_gmult_p)(u64 Xi[2],const u128 Htable[16])	= ctx->gmult;  #endif -	if (ctx->mres) +	if (ctx->mres || ctx->ares)  		GCM_MUL(ctx,Xi);  	if (is_endian.little) { diff --git a/openssl/crypto/objects/o_names.c b/openssl/crypto/objects/o_names.c index 84380a96a..4a548c2ed 100644 --- a/openssl/crypto/objects/o_names.c +++ b/openssl/crypto/objects/o_names.c @@ -73,7 +73,7 @@ int OBJ_NAME_new_index(unsigned long (*hash_func)(const char *),  		name_funcs_stack=sk_NAME_FUNCS_new_null();  		MemCheck_on();  		} -	if ((name_funcs_stack == NULL)) +	if (name_funcs_stack == NULL)  		{  		/* ERROR */  		return(0); diff --git a/openssl/crypto/ocsp/ocsp_vfy.c b/openssl/crypto/ocsp/ocsp_vfy.c index 415d67e61..276718304 100644 --- a/openssl/crypto/ocsp/ocsp_vfy.c +++ b/openssl/crypto/ocsp/ocsp_vfy.c @@ -91,9 +91,12 @@ int OCSP_basic_verify(OCSP_BASICRESP *bs, STACK_OF(X509) *certs,  		{  		EVP_PKEY *skey;  		skey = X509_get_pubkey(signer); -		ret = OCSP_BASICRESP_verify(bs, skey, 0); -		EVP_PKEY_free(skey); -		if(ret <= 0) +		if (skey) +			{ +			ret = OCSP_BASICRESP_verify(bs, skey, 0); +			EVP_PKEY_free(skey); +			} +		if(!skey || ret <= 0)  			{  			OCSPerr(OCSP_F_OCSP_BASIC_VERIFY, OCSP_R_SIGNATURE_FAILURE);  			goto end; @@ -108,6 +111,7 @@ int OCSP_basic_verify(OCSP_BASICRESP *bs, STACK_OF(X509) *certs,  			init_res = X509_STORE_CTX_init(&ctx, st, signer, bs->certs);  		if(!init_res)  			{ +			ret = -1;  			OCSPerr(OCSP_F_OCSP_BASIC_VERIFY,ERR_R_X509_LIB);  			goto end;  			} diff --git a/openssl/crypto/opensslv.h b/openssl/crypto/opensslv.h index 71be3590a..5bc8e53e6 100644 --- a/openssl/crypto/opensslv.h +++ b/openssl/crypto/opensslv.h @@ -25,11 +25,11 @@   * (Prior to 0.9.5a beta1, a different scheme was used: MMNNFFRBB for   *  major minor fix final patch/beta)   */ -#define OPENSSL_VERSION_NUMBER	0x1000103fL +#define OPENSSL_VERSION_NUMBER	0x1000105fL  #ifdef OPENSSL_FIPS -#define OPENSSL_VERSION_TEXT	"OpenSSL 1.0.1c-fips 10 May 2012" +#define OPENSSL_VERSION_TEXT	"OpenSSL 1.0.1e-fips 11 Feb 2013"  #else -#define OPENSSL_VERSION_TEXT	"OpenSSL 1.0.1c 10 May 2012" +#define OPENSSL_VERSION_TEXT	"OpenSSL 1.0.1e 11 Feb 2013"  #endif  #define OPENSSL_VERSION_PTEXT	" part of " OPENSSL_VERSION_TEXT diff --git a/openssl/crypto/pem/pem_all.c b/openssl/crypto/pem/pem_all.c index 3e7a6093a..eac0460e3 100644 --- a/openssl/crypto/pem/pem_all.c +++ b/openssl/crypto/pem/pem_all.c @@ -193,7 +193,61 @@ RSA *PEM_read_RSAPrivateKey(FILE *fp, RSA **rsa, pem_password_cb *cb,  #endif +#ifdef OPENSSL_FIPS + +int PEM_write_bio_RSAPrivateKey(BIO *bp, RSA *x, const EVP_CIPHER *enc, +                                               unsigned char *kstr, int klen, +                                               pem_password_cb *cb, void *u) +{ +	if (FIPS_mode()) +		{ +		EVP_PKEY *k; +		int ret; +		k = EVP_PKEY_new(); +		if (!k) +			return 0; +		EVP_PKEY_set1_RSA(k, x); + +		ret = PEM_write_bio_PrivateKey(bp, k, enc, kstr, klen, cb, u); +		EVP_PKEY_free(k); +		return ret; +		} +	else +		return PEM_ASN1_write_bio((i2d_of_void *)i2d_RSAPrivateKey, +					PEM_STRING_RSA,bp,x,enc,kstr,klen,cb,u); +} + +#ifndef OPENSSL_NO_FP_API +int PEM_write_RSAPrivateKey(FILE *fp, RSA *x, const EVP_CIPHER *enc, +                                               unsigned char *kstr, int klen, +                                               pem_password_cb *cb, void *u) +{ +	if (FIPS_mode()) +		{ +		EVP_PKEY *k; +		int ret; +		k = EVP_PKEY_new(); +		if (!k) +			return 0; + +		EVP_PKEY_set1_RSA(k, x); + +		ret = PEM_write_PrivateKey(fp, k, enc, kstr, klen, cb, u); +		EVP_PKEY_free(k); +		return ret; +		} +	else +		return PEM_ASN1_write((i2d_of_void *)i2d_RSAPrivateKey, +					PEM_STRING_RSA,fp,x,enc,kstr,klen,cb,u); +} +#endif + +#else +  IMPLEMENT_PEM_write_cb_const(RSAPrivateKey, RSA, PEM_STRING_RSA, RSAPrivateKey) + +#endif +  IMPLEMENT_PEM_rw_const(RSAPublicKey, RSA, PEM_STRING_RSA_PUBLIC, RSAPublicKey)  IMPLEMENT_PEM_rw(RSA_PUBKEY, RSA, PEM_STRING_PUBLIC, RSA_PUBKEY) @@ -223,7 +277,59 @@ DSA *PEM_read_bio_DSAPrivateKey(BIO *bp, DSA **dsa, pem_password_cb *cb,  	return pkey_get_dsa(pktmp, dsa);	/* will free pktmp */  } +#ifdef OPENSSL_FIPS + +int PEM_write_bio_DSAPrivateKey(BIO *bp, DSA *x, const EVP_CIPHER *enc, +                                               unsigned char *kstr, int klen, +                                               pem_password_cb *cb, void *u) +{ +	if (FIPS_mode()) +		{ +		EVP_PKEY *k; +		int ret; +		k = EVP_PKEY_new(); +		if (!k) +			return 0; +		EVP_PKEY_set1_DSA(k, x); + +		ret = PEM_write_bio_PrivateKey(bp, k, enc, kstr, klen, cb, u); +		EVP_PKEY_free(k); +		return ret; +		} +	else +		return PEM_ASN1_write_bio((i2d_of_void *)i2d_DSAPrivateKey, +					PEM_STRING_DSA,bp,x,enc,kstr,klen,cb,u); +} + +#ifndef OPENSSL_NO_FP_API +int PEM_write_DSAPrivateKey(FILE *fp, DSA *x, const EVP_CIPHER *enc, +                                               unsigned char *kstr, int klen, +                                               pem_password_cb *cb, void *u) +{ +	if (FIPS_mode()) +		{ +		EVP_PKEY *k; +		int ret; +		k = EVP_PKEY_new(); +		if (!k) +			return 0; +		EVP_PKEY_set1_DSA(k, x); +		ret = PEM_write_PrivateKey(fp, k, enc, kstr, klen, cb, u); +		EVP_PKEY_free(k); +		return ret; +		} +	else +		return PEM_ASN1_write((i2d_of_void *)i2d_DSAPrivateKey, +					PEM_STRING_DSA,fp,x,enc,kstr,klen,cb,u); +} +#endif + +#else +  IMPLEMENT_PEM_write_cb_const(DSAPrivateKey, DSA, PEM_STRING_DSA, DSAPrivateKey) + +#endif +  IMPLEMENT_PEM_rw(DSA_PUBKEY, DSA, PEM_STRING_PUBLIC, DSA_PUBKEY)  #ifndef OPENSSL_NO_FP_API @@ -269,8 +375,63 @@ EC_KEY *PEM_read_bio_ECPrivateKey(BIO *bp, EC_KEY **key, pem_password_cb *cb,  IMPLEMENT_PEM_rw_const(ECPKParameters, EC_GROUP, PEM_STRING_ECPARAMETERS, ECPKParameters) + + +#ifdef OPENSSL_FIPS + +int PEM_write_bio_ECPrivateKey(BIO *bp, EC_KEY *x, const EVP_CIPHER *enc, +                                               unsigned char *kstr, int klen, +                                               pem_password_cb *cb, void *u) +{ +	if (FIPS_mode()) +		{ +		EVP_PKEY *k; +		int ret; +		k = EVP_PKEY_new(); +		if (!k) +			return 0; +		EVP_PKEY_set1_EC_KEY(k, x); + +		ret = PEM_write_bio_PrivateKey(bp, k, enc, kstr, klen, cb, u); +		EVP_PKEY_free(k); +		return ret; +		} +	else +		return PEM_ASN1_write_bio((i2d_of_void *)i2d_ECPrivateKey, +						PEM_STRING_ECPRIVATEKEY, +						bp,x,enc,kstr,klen,cb,u); +} + +#ifndef OPENSSL_NO_FP_API +int PEM_write_ECPrivateKey(FILE *fp, EC_KEY *x, const EVP_CIPHER *enc, +                                               unsigned char *kstr, int klen, +                                               pem_password_cb *cb, void *u) +{ +	if (FIPS_mode()) +		{ +		EVP_PKEY *k; +		int ret; +		k = EVP_PKEY_new(); +		if (!k) +			return 0; +		EVP_PKEY_set1_EC_KEY(k, x); +		ret = PEM_write_PrivateKey(fp, k, enc, kstr, klen, cb, u); +		EVP_PKEY_free(k); +		return ret; +		} +	else +		return PEM_ASN1_write((i2d_of_void *)i2d_ECPrivateKey, +						PEM_STRING_ECPRIVATEKEY, +						fp,x,enc,kstr,klen,cb,u); +} +#endif + +#else +  IMPLEMENT_PEM_write_cb(ECPrivateKey, EC_KEY, PEM_STRING_ECPRIVATEKEY, ECPrivateKey) +#endif +  IMPLEMENT_PEM_rw(EC_PUBKEY, EC_KEY, PEM_STRING_PUBLIC, EC_PUBKEY)  #ifndef OPENSSL_NO_FP_API diff --git a/openssl/crypto/pem/pem_lib.c b/openssl/crypto/pem/pem_lib.c index cfc89a992..5a421fc4b 100644 --- a/openssl/crypto/pem/pem_lib.c +++ b/openssl/crypto/pem/pem_lib.c @@ -394,7 +394,8 @@ int PEM_ASN1_write_bio(i2d_of_void *i2d, const char *name, BIO *bp,  			goto err;  		/* The 'iv' is used as the iv and as a salt.  It is  		 * NOT taken from the BytesToKey function */ -		EVP_BytesToKey(enc,EVP_md5(),iv,kstr,klen,1,key,NULL); +		if (!EVP_BytesToKey(enc,EVP_md5(),iv,kstr,klen,1,key,NULL)) +			goto err;  		if (kstr == (unsigned char *)buf) OPENSSL_cleanse(buf,PEM_BUFSIZE); @@ -406,12 +407,15 @@ int PEM_ASN1_write_bio(i2d_of_void *i2d, const char *name, BIO *bp,  		/* k=strlen(buf); */  		EVP_CIPHER_CTX_init(&ctx); -		EVP_EncryptInit_ex(&ctx,enc,NULL,key,iv); -		EVP_EncryptUpdate(&ctx,data,&j,data,i); -		EVP_EncryptFinal_ex(&ctx,&(data[j]),&i); +		ret = 1; +		if (!EVP_EncryptInit_ex(&ctx,enc,NULL,key,iv) +			|| !EVP_EncryptUpdate(&ctx,data,&j,data,i) +			|| !EVP_EncryptFinal_ex(&ctx,&(data[j]),&i)) +			ret = 0;  		EVP_CIPHER_CTX_cleanup(&ctx); +		if (ret == 0) +			goto err;  		i+=j; -		ret=1;  		}  	else  		{ @@ -459,14 +463,17 @@ int PEM_do_header(EVP_CIPHER_INFO *cipher, unsigned char *data, long *plen,  	ebcdic2ascii(buf, buf, klen);  #endif -	EVP_BytesToKey(cipher->cipher,EVP_md5(),&(cipher->iv[0]), -		(unsigned char *)buf,klen,1,key,NULL); +	if (!EVP_BytesToKey(cipher->cipher,EVP_md5(),&(cipher->iv[0]), +		(unsigned char *)buf,klen,1,key,NULL)) +		return 0;  	j=(int)len;  	EVP_CIPHER_CTX_init(&ctx); -	EVP_DecryptInit_ex(&ctx,cipher->cipher,NULL, key,&(cipher->iv[0])); -	EVP_DecryptUpdate(&ctx,data,&i,data,j); -	o=EVP_DecryptFinal_ex(&ctx,&(data[i]),&j); +	o = EVP_DecryptInit_ex(&ctx,cipher->cipher,NULL, key,&(cipher->iv[0])); +	if (o) +		o = EVP_DecryptUpdate(&ctx,data,&i,data,j); +	if (o) +		o = EVP_DecryptFinal_ex(&ctx,&(data[i]),&j);  	EVP_CIPHER_CTX_cleanup(&ctx);  	OPENSSL_cleanse((char *)buf,sizeof(buf));  	OPENSSL_cleanse((char *)key,sizeof(key)); diff --git a/openssl/crypto/pem/pem_seal.c b/openssl/crypto/pem/pem_seal.c index 59690b56a..b6b4e1349 100644 --- a/openssl/crypto/pem/pem_seal.c +++ b/openssl/crypto/pem/pem_seal.c @@ -96,7 +96,8 @@ int PEM_SealInit(PEM_ENCODE_SEAL_CTX *ctx, EVP_CIPHER *type, EVP_MD *md_type,  	EVP_EncodeInit(&ctx->encode);  	EVP_MD_CTX_init(&ctx->md); -	EVP_SignInit(&ctx->md,md_type); +	if (!EVP_SignInit(&ctx->md,md_type)) +		goto err;  	EVP_CIPHER_CTX_init(&ctx->cipher);  	ret=EVP_SealInit(&ctx->cipher,type,ek,ekl,iv,pubk,npubk); @@ -163,7 +164,8 @@ int PEM_SealFinal(PEM_ENCODE_SEAL_CTX *ctx, unsigned char *sig, int *sigl,  		goto err;  		} -	EVP_EncryptFinal_ex(&ctx->cipher,s,(int *)&i); +	if (!EVP_EncryptFinal_ex(&ctx->cipher,s,(int *)&i)) +		goto err;  	EVP_EncodeUpdate(&ctx->encode,out,&j,s,i);  	*outl=j;  	out+=j; diff --git a/openssl/crypto/perlasm/cbc.pl b/openssl/crypto/perlasm/cbc.pl index 6fc251090..24561e759 100644 --- a/openssl/crypto/perlasm/cbc.pl +++ b/openssl/crypto/perlasm/cbc.pl @@ -150,7 +150,7 @@ sub cbc  &set_label("PIC_point");  	&blindpop("edx");  	&lea("ecx",&DWP(&label("cbc_enc_jmp_table")."-".&label("PIC_point"),"edx")); -	&mov($count,&DWP(0,"ecx",$count,4)) +	&mov($count,&DWP(0,"ecx",$count,4));  	&add($count,"edx");  	&xor("ecx","ecx");  	&xor("edx","edx"); diff --git a/openssl/crypto/perlasm/x86masm.pl b/openssl/crypto/perlasm/x86masm.pl index 96b1b73e1..f937d07c8 100644 --- a/openssl/crypto/perlasm/x86masm.pl +++ b/openssl/crypto/perlasm/x86masm.pl @@ -33,6 +33,7 @@ sub ::generic  sub ::call	{ &::emit("call",(&::islabel($_[0]) or "$nmdecor$_[0]")); }  sub ::call_ptr	{ &::emit("call",@_);	}  sub ::jmp_ptr	{ &::emit("jmp",@_);	} +sub ::lock	{ &::data_byte(0xf0);	}  sub get_mem  { my($size,$addr,$reg1,$reg2,$idx)=@_; diff --git a/openssl/crypto/pkcs12/p12_key.c b/openssl/crypto/pkcs12/p12_key.c index c55c7b60b..61d58502f 100644 --- a/openssl/crypto/pkcs12/p12_key.c +++ b/openssl/crypto/pkcs12/p12_key.c @@ -176,24 +176,32 @@ int PKCS12_key_gen_uni(unsigned char *pass, int passlen, unsigned char *salt,  		out += u;  		for (j = 0; j < v; j++) B[j] = Ai[j % u];  		/* Work out B + 1 first then can use B as tmp space */ -		if (!BN_bin2bn (B, v, Bpl1)) goto err; -		if (!BN_add_word (Bpl1, 1)) goto err; +		if (!BN_bin2bn (B, v, Bpl1)) +			goto err; +		if (!BN_add_word (Bpl1, 1)) +			goto err;  		for (j = 0; j < Ilen ; j+=v) { -			if (!BN_bin2bn (I + j, v, Ij)) goto err; -			if (!BN_add (Ij, Ij, Bpl1)) goto err; -			BN_bn2bin (Ij, B); +			if (!BN_bin2bn(I + j, v, Ij)) +				goto err; +			if (!BN_add(Ij, Ij, Bpl1)) +				goto err; +			if (!BN_bn2bin(Ij, B)) +				goto err;  			Ijlen = BN_num_bytes (Ij);  			/* If more than 2^(v*8) - 1 cut off MSB */  			if (Ijlen > v) { -				BN_bn2bin (Ij, B); +				if (!BN_bn2bin (Ij, B)) +					goto err;  				memcpy (I + j, B + 1, v);  #ifndef PKCS12_BROKEN_KEYGEN  			/* If less than v bytes pad with zeroes */  			} else if (Ijlen < v) {  				memset(I + j, 0, v - Ijlen); -				BN_bn2bin(Ij, I + j + v - Ijlen);  +				if (!BN_bn2bin(Ij, I + j + v - Ijlen)) +					goto err;  #endif -			} else BN_bn2bin (Ij, I + j); +			} else if (!BN_bn2bin (Ij, I + j)) +				goto err;  		}  	} diff --git a/openssl/crypto/pkcs7/bio_pk7.c b/openssl/crypto/pkcs7/bio_pk7.c index c8d06d6cd..0fd31e730 100644 --- a/openssl/crypto/pkcs7/bio_pk7.c +++ b/openssl/crypto/pkcs7/bio_pk7.c @@ -56,7 +56,7 @@  #include <openssl/pkcs7.h>  #include <openssl/bio.h> -#ifndef OPENSSL_SYSNAME_NETWARE +#if !defined(OPENSSL_SYSNAME_NETWARE) && !defined(OPENSSL_SYSNAME_VXWORKS)  #include <memory.h>  #endif  #include <stdio.h> diff --git a/openssl/crypto/ppccap.c b/openssl/crypto/ppccap.c index ab89ccaa1..f71ba66aa 100644 --- a/openssl/crypto/ppccap.c +++ b/openssl/crypto/ppccap.c @@ -3,6 +3,7 @@  #include <string.h>  #include <setjmp.h>  #include <signal.h> +#include <unistd.h>  #include <crypto.h>  #include <openssl/bn.h> @@ -53,6 +54,7 @@ static sigjmp_buf ill_jmp;  static void ill_handler (int sig) { siglongjmp(ill_jmp,sig); }  void OPENSSL_ppc64_probe(void); +void OPENSSL_altivec_probe(void);  void OPENSSL_cpuid_setup(void)  	{ @@ -82,6 +84,15 @@ void OPENSSL_cpuid_setup(void)  	OPENSSL_ppccap_P = 0; +#if defined(_AIX) +	if (sizeof(size_t)==4 +# if defined(_SC_AIX_KERNEL_BITMODE) +	    && sysconf(_SC_AIX_KERNEL_BITMODE)!=64 +# endif +	   ) +		return; +#endif +  	memset(&ill_act,0,sizeof(ill_act));  	ill_act.sa_handler = ill_handler;  	ill_act.sa_mask    = all_masked; diff --git a/openssl/crypto/rand/md_rand.c b/openssl/crypto/rand/md_rand.c index fcdd3f2a8..1e3bcb9bc 100644 --- a/openssl/crypto/rand/md_rand.c +++ b/openssl/crypto/rand/md_rand.c @@ -123,10 +123,10 @@  #include "e_os.h" +#include <openssl/crypto.h>  #include <openssl/rand.h>  #include "rand_lcl.h" -#include <openssl/crypto.h>  #include <openssl/err.h>  #ifdef BN_DEBUG diff --git a/openssl/crypto/rand/rand_lib.c b/openssl/crypto/rand/rand_lib.c index daf1dab97..476a0cd18 100644 --- a/openssl/crypto/rand/rand_lib.c +++ b/openssl/crypto/rand/rand_lib.c @@ -210,8 +210,11 @@ static size_t drbg_get_entropy(DRBG_CTX *ctx, unsigned char **pout,  static void drbg_free_entropy(DRBG_CTX *ctx, unsigned char *out, size_t olen)  	{ -	OPENSSL_cleanse(out, olen); -	OPENSSL_free(out); +	if (out) +		{ +		OPENSSL_cleanse(out, olen); +		OPENSSL_free(out); +		}  	}  /* Set "additional input" when generating random data. This uses the diff --git a/openssl/crypto/rand/randfile.c b/openssl/crypto/rand/randfile.c index 030e07f41..7f1428072 100644 --- a/openssl/crypto/rand/randfile.c +++ b/openssl/crypto/rand/randfile.c @@ -57,7 +57,9 @@   */  /* We need to define this to get macros like S_IFBLK and S_IFCHR */ +#if !defined(OPENSSL_SYS_VXWORKS)  #define _XOPEN_SOURCE 500 +#endif  #include <errno.h>  #include <stdio.h> diff --git a/openssl/crypto/rc4/asm/rc4-md5-x86_64.pl b/openssl/crypto/rc4/asm/rc4-md5-x86_64.pl index 7f684092d..272fa91e1 100644 --- a/openssl/crypto/rc4/asm/rc4-md5-x86_64.pl +++ b/openssl/crypto/rc4/asm/rc4-md5-x86_64.pl @@ -51,7 +51,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; my $dir=$1; my $xlate;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  my ($dat,$in0,$out,$ctx,$inp,$len, $func,$nargs); diff --git a/openssl/crypto/rc4/asm/rc4-x86_64.pl b/openssl/crypto/rc4/asm/rc4-x86_64.pl index d6eac205e..75750dbf3 100644 --- a/openssl/crypto/rc4/asm/rc4-x86_64.pl +++ b/openssl/crypto/rc4/asm/rc4-x86_64.pl @@ -112,7 +112,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  $dat="%rdi";	    # arg1  $len="%rsi";	    # arg2 diff --git a/openssl/crypto/ripemd/rmd_dgst.c b/openssl/crypto/ripemd/rmd_dgst.c index 63f0d983f..d8e72da51 100644 --- a/openssl/crypto/ripemd/rmd_dgst.c +++ b/openssl/crypto/ripemd/rmd_dgst.c @@ -105,21 +105,21 @@ void ripemd160_block_data_order (RIPEMD160_CTX *ctx, const void *p, size_t num)  	A=ctx->A; B=ctx->B; C=ctx->C; D=ctx->D; E=ctx->E; -	HOST_c2l(data,l); X( 0)=l;	HOST_c2l(data,l); X( 1)=l; -	RIP1(A,B,C,D,E,WL00,SL00);	HOST_c2l(data,l); X( 2)=l; -	RIP1(E,A,B,C,D,WL01,SL01);	HOST_c2l(data,l); X( 3)=l; -	RIP1(D,E,A,B,C,WL02,SL02);	HOST_c2l(data,l); X( 4)=l; -	RIP1(C,D,E,A,B,WL03,SL03);	HOST_c2l(data,l); X( 5)=l; -	RIP1(B,C,D,E,A,WL04,SL04);	HOST_c2l(data,l); X( 6)=l; -	RIP1(A,B,C,D,E,WL05,SL05);	HOST_c2l(data,l); X( 7)=l; -	RIP1(E,A,B,C,D,WL06,SL06);	HOST_c2l(data,l); X( 8)=l; -	RIP1(D,E,A,B,C,WL07,SL07);	HOST_c2l(data,l); X( 9)=l; -	RIP1(C,D,E,A,B,WL08,SL08);	HOST_c2l(data,l); X(10)=l; -	RIP1(B,C,D,E,A,WL09,SL09);	HOST_c2l(data,l); X(11)=l; -	RIP1(A,B,C,D,E,WL10,SL10);	HOST_c2l(data,l); X(12)=l; -	RIP1(E,A,B,C,D,WL11,SL11);	HOST_c2l(data,l); X(13)=l; -	RIP1(D,E,A,B,C,WL12,SL12);	HOST_c2l(data,l); X(14)=l; -	RIP1(C,D,E,A,B,WL13,SL13);	HOST_c2l(data,l); X(15)=l; +	(void)HOST_c2l(data,l); X( 0)=l;(void)HOST_c2l(data,l); X( 1)=l; +	RIP1(A,B,C,D,E,WL00,SL00);	(void)HOST_c2l(data,l); X( 2)=l; +	RIP1(E,A,B,C,D,WL01,SL01);	(void)HOST_c2l(data,l); X( 3)=l; +	RIP1(D,E,A,B,C,WL02,SL02);	(void)HOST_c2l(data,l); X( 4)=l; +	RIP1(C,D,E,A,B,WL03,SL03);	(void)HOST_c2l(data,l); X( 5)=l; +	RIP1(B,C,D,E,A,WL04,SL04);	(void)HOST_c2l(data,l); X( 6)=l; +	RIP1(A,B,C,D,E,WL05,SL05);	(void)HOST_c2l(data,l); X( 7)=l; +	RIP1(E,A,B,C,D,WL06,SL06);	(void)HOST_c2l(data,l); X( 8)=l; +	RIP1(D,E,A,B,C,WL07,SL07);	(void)HOST_c2l(data,l); X( 9)=l; +	RIP1(C,D,E,A,B,WL08,SL08);	(void)HOST_c2l(data,l); X(10)=l; +	RIP1(B,C,D,E,A,WL09,SL09);	(void)HOST_c2l(data,l); X(11)=l; +	RIP1(A,B,C,D,E,WL10,SL10);	(void)HOST_c2l(data,l); X(12)=l; +	RIP1(E,A,B,C,D,WL11,SL11);	(void)HOST_c2l(data,l); X(13)=l; +	RIP1(D,E,A,B,C,WL12,SL12);	(void)HOST_c2l(data,l); X(14)=l; +	RIP1(C,D,E,A,B,WL13,SL13);	(void)HOST_c2l(data,l); X(15)=l;  	RIP1(B,C,D,E,A,WL14,SL14);  	RIP1(A,B,C,D,E,WL15,SL15); diff --git a/openssl/crypto/ripemd/rmd_locl.h b/openssl/crypto/ripemd/rmd_locl.h index f14b346e6..2bd8957d1 100644 --- a/openssl/crypto/ripemd/rmd_locl.h +++ b/openssl/crypto/ripemd/rmd_locl.h @@ -88,11 +88,11 @@ void ripemd160_block_data_order (RIPEMD160_CTX *c, const void *p,size_t num);  #define HASH_FINAL              RIPEMD160_Final  #define	HASH_MAKE_STRING(c,s)	do {	\  	unsigned long ll;		\ -	ll=(c)->A; HOST_l2c(ll,(s));	\ -	ll=(c)->B; HOST_l2c(ll,(s));	\ -	ll=(c)->C; HOST_l2c(ll,(s));	\ -	ll=(c)->D; HOST_l2c(ll,(s));	\ -	ll=(c)->E; HOST_l2c(ll,(s));	\ +	ll=(c)->A; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->B; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->C; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->D; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->E; (void)HOST_l2c(ll,(s));	\  	} while (0)  #define HASH_BLOCK_DATA_ORDER   ripemd160_block_data_order diff --git a/openssl/crypto/rsa/rsa.h b/openssl/crypto/rsa/rsa.h index 4814a2fc1..5f269e577 100644 --- a/openssl/crypto/rsa/rsa.h +++ b/openssl/crypto/rsa/rsa.h @@ -280,7 +280,7 @@ struct rsa_st  RSA *	RSA_new(void);  RSA *	RSA_new_method(ENGINE *engine); -int	RSA_size(const RSA *); +int	RSA_size(const RSA *rsa);  /* Deprecated version */  #ifndef OPENSSL_NO_DEPRECATED diff --git a/openssl/crypto/rsa/rsa_eay.c b/openssl/crypto/rsa/rsa_eay.c index 2e1ddd48d..88ee2cb55 100644 --- a/openssl/crypto/rsa/rsa_eay.c +++ b/openssl/crypto/rsa/rsa_eay.c @@ -847,12 +847,12 @@ static int RSA_eay_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx)  	if (!BN_mod(r0,pr1,rsa->p,ctx)) goto err;  	/* If p < q it is occasionally possible for the correction of -         * adding 'p' if r0 is negative above to leave the result still +	 * adding 'p' if r0 is negative above to leave the result still  	 * negative. This can break the private key operations: the following  	 * second correction should *always* correct this rare occurrence.  	 * This will *never* happen with OpenSSL generated keys because -         * they ensure p > q [steve] -         */ +	 * they ensure p > q [steve] +	 */  	if (BN_is_negative(r0))  		if (!BN_add(r0,r0,rsa->p)) goto err;  	if (!BN_mul(r1,r0,rsa->q,ctx)) goto err; diff --git a/openssl/crypto/rsa/rsa_oaep.c b/openssl/crypto/rsa/rsa_oaep.c index 553d212eb..af4d24a56 100644 --- a/openssl/crypto/rsa/rsa_oaep.c +++ b/openssl/crypto/rsa/rsa_oaep.c @@ -149,7 +149,7 @@ int RSA_padding_check_PKCS1_OAEP(unsigned char *to, int tlen,  	if (!EVP_Digest((void *)param, plen, phash, NULL, EVP_sha1(), NULL))  		return -1; -	if (memcmp(db, phash, SHA_DIGEST_LENGTH) != 0 || bad) +	if (CRYPTO_memcmp(db, phash, SHA_DIGEST_LENGTH) != 0 || bad)  		goto decoding_err;  	else  		{ diff --git a/openssl/crypto/sha/asm/sha1-armv4-large.pl b/openssl/crypto/sha/asm/sha1-armv4-large.pl index fe8207f77..33da3e0e3 100644 --- a/openssl/crypto/sha/asm/sha1-armv4-large.pl +++ b/openssl/crypto/sha/asm/sha1-armv4-large.pl @@ -177,6 +177,7 @@ for($i=0;$i<5;$i++) {  $code.=<<___;  	teq	$Xi,sp  	bne	.L_00_15		@ [((11+4)*5+2)*3] +	sub	sp,sp,#25*4  ___  	&BODY_00_15(@V);	unshift(@V,pop(@V));  	&BODY_16_19(@V);	unshift(@V,pop(@V)); @@ -186,7 +187,6 @@ ___  $code.=<<___;  	ldr	$K,.LK_20_39		@ [+15+16*4] -	sub	sp,sp,#25*4  	cmn	sp,#0			@ [+3], clear carry to denote 20_39  .L_20_39_or_60_79:  ___ diff --git a/openssl/crypto/sha/asm/sha1-ia64.pl b/openssl/crypto/sha/asm/sha1-ia64.pl index db28f0805..02d35d161 100644 --- a/openssl/crypto/sha/asm/sha1-ia64.pl +++ b/openssl/crypto/sha/asm/sha1-ia64.pl @@ -271,7 +271,8 @@ tmp6=loc13;  ___ -{ my $i,@V=($A,$B,$C,$D,$E); +{ my $i; +  my @V=($A,$B,$C,$D,$E);  	for($i=0;$i<16;$i++)	{ &BODY_00_15(\$code,$i,@V); unshift(@V,pop(@V)); }  	for(;$i<20;$i++)	{ &BODY_16_19(\$code,$i,@V); unshift(@V,pop(@V)); } diff --git a/openssl/crypto/sha/asm/sha1-sparcv9a.pl b/openssl/crypto/sha/asm/sha1-sparcv9a.pl index 85e8d6808..e65291bbd 100644 --- a/openssl/crypto/sha/asm/sha1-sparcv9a.pl +++ b/openssl/crypto/sha/asm/sha1-sparcv9a.pl @@ -549,7 +549,7 @@ ___  # programmer detect if current CPU is VIS capable at run-time.  sub unvis {  my ($mnemonic,$rs1,$rs2,$rd)=@_; -my $ref,$opf; +my ($ref,$opf);  my %visopf = (	"fmul8ulx16"	=> 0x037,  		"faligndata"	=> 0x048,  		"fpadd32"	=> 0x052, diff --git a/openssl/crypto/sha/asm/sha1-x86_64.pl b/openssl/crypto/sha/asm/sha1-x86_64.pl index f27c1e3fb..cfdc45cce 100644 --- a/openssl/crypto/sha/asm/sha1-x86_64.pl +++ b/openssl/crypto/sha/asm/sha1-x86_64.pl @@ -82,7 +82,8 @@ $avx=1 if (!$avx && $win64 && ($flavour =~ /masm/ || $ENV{ASM} =~ /ml64/) &&  	   `ml64 2>&1` =~ /Version ([0-9]+)\./ &&  	   $1>=10); -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  $ctx="%rdi";	# 1st arg  $inp="%rsi";	# 2nd arg diff --git a/openssl/crypto/sha/asm/sha512-586.pl b/openssl/crypto/sha/asm/sha512-586.pl index 5b9f3337a..7eab6a5b8 100644 --- a/openssl/crypto/sha/asm/sha512-586.pl +++ b/openssl/crypto/sha/asm/sha512-586.pl @@ -142,9 +142,9 @@ sub BODY_00_15_x86 {  	&mov	("edx",$Ehi);  	&mov	("esi","ecx"); -	&shr	("ecx",9)	# lo>>9 +	&shr	("ecx",9);	# lo>>9  	&mov	("edi","edx"); -	&shr	("edx",9)	# hi>>9 +	&shr	("edx",9);	# hi>>9  	&mov	("ebx","ecx");  	&shl	("esi",14);	# lo<<14  	&mov	("eax","edx"); @@ -207,9 +207,9 @@ sub BODY_00_15_x86 {  	&mov	($Dhi,"ebx");  	&mov	("esi","ecx"); -	&shr	("ecx",2)	# lo>>2 +	&shr	("ecx",2);	# lo>>2  	&mov	("edi","edx"); -	&shr	("edx",2)	# hi>>2 +	&shr	("edx",2);	# hi>>2  	&mov	("ebx","ecx");  	&shl	("esi",4);	# lo<<4  	&mov	("eax","edx"); @@ -452,9 +452,9 @@ if ($sse2) {  	&mov	("edx",&DWP(8*(9+15+16-1)+4,"esp"));  	&mov	("esi","ecx"); -	&shr	("ecx",1)	# lo>>1 +	&shr	("ecx",1);	# lo>>1  	&mov	("edi","edx"); -	&shr	("edx",1)	# hi>>1 +	&shr	("edx",1);	# hi>>1  	&mov	("eax","ecx");  	&shl	("esi",24);	# lo<<24  	&mov	("ebx","edx"); @@ -488,9 +488,9 @@ if ($sse2) {  	&mov	("edx",&DWP(8*(9+15+16-14)+4,"esp"));  	&mov	("esi","ecx"); -	&shr	("ecx",6)	# lo>>6 +	&shr	("ecx",6);	# lo>>6  	&mov	("edi","edx"); -	&shr	("edx",6)	# hi>>6 +	&shr	("edx",6);	# hi>>6  	&mov	("eax","ecx");  	&shl	("esi",3);	# lo<<3  	&mov	("ebx","edx"); diff --git a/openssl/crypto/sha/asm/sha512-x86_64.pl b/openssl/crypto/sha/asm/sha512-x86_64.pl index f611a2d89..8d5167855 100644 --- a/openssl/crypto/sha/asm/sha512-x86_64.pl +++ b/openssl/crypto/sha/asm/sha512-x86_64.pl @@ -51,7 +51,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  if ($output =~ /512/) {  	$func="sha512_block_data_order"; diff --git a/openssl/crypto/sha/sha1_one.c b/openssl/crypto/sha/sha1_one.c index 7c65b6027..c56ec9402 100644 --- a/openssl/crypto/sha/sha1_one.c +++ b/openssl/crypto/sha/sha1_one.c @@ -58,8 +58,8 @@  #include <stdio.h>  #include <string.h> -#include <openssl/sha.h>  #include <openssl/crypto.h> +#include <openssl/sha.h>  #ifndef OPENSSL_NO_SHA1  unsigned char *SHA1(const unsigned char *d, size_t n, unsigned char *md) diff --git a/openssl/crypto/sha/sha1dgst.c b/openssl/crypto/sha/sha1dgst.c index 81219af08..a98690225 100644 --- a/openssl/crypto/sha/sha1dgst.c +++ b/openssl/crypto/sha/sha1dgst.c @@ -56,8 +56,8 @@   * [including the GNU Public Licence.]   */ -#include <openssl/opensslconf.h>  #include <openssl/crypto.h> +#include <openssl/opensslconf.h>  #if !defined(OPENSSL_NO_SHA1) && !defined(OPENSSL_NO_SHA)  #undef  SHA_0 diff --git a/openssl/crypto/sha/sha256.c b/openssl/crypto/sha/sha256.c index f88d3d6da..4eae07484 100644 --- a/openssl/crypto/sha/sha256.c +++ b/openssl/crypto/sha/sha256.c @@ -88,17 +88,17 @@ int SHA224_Final (unsigned char *md, SHA256_CTX *c)  	switch ((c)->md_len)		\  	{   case SHA224_DIGEST_LENGTH:	\  		for (nn=0;nn<SHA224_DIGEST_LENGTH/4;nn++)	\ -		{   ll=(c)->h[nn]; HOST_l2c(ll,(s));   }	\ +		{   ll=(c)->h[nn]; (void)HOST_l2c(ll,(s));   }	\  		break;			\  	    case SHA256_DIGEST_LENGTH:	\  		for (nn=0;nn<SHA256_DIGEST_LENGTH/4;nn++)	\ -		{   ll=(c)->h[nn]; HOST_l2c(ll,(s));   }	\ +		{   ll=(c)->h[nn]; (void)HOST_l2c(ll,(s));   }	\  		break;			\  	    default:			\  		if ((c)->md_len > SHA256_DIGEST_LENGTH)	\  		    return 0;				\  		for (nn=0;nn<(c)->md_len/4;nn++)		\ -		{   ll=(c)->h[nn]; HOST_l2c(ll,(s));   }	\ +		{   ll=(c)->h[nn]; (void)HOST_l2c(ll,(s));   }	\  		break;			\  	}				\  	} while (0) diff --git a/openssl/crypto/sha/sha_dgst.c b/openssl/crypto/sha/sha_dgst.c index c946ad827..fb63b17ff 100644 --- a/openssl/crypto/sha/sha_dgst.c +++ b/openssl/crypto/sha/sha_dgst.c @@ -56,8 +56,8 @@   * [including the GNU Public Licence.]   */ -#include <openssl/opensslconf.h>  #include <openssl/crypto.h> +#include <openssl/opensslconf.h>  #if !defined(OPENSSL_NO_SHA0) && !defined(OPENSSL_NO_SHA)  #undef  SHA_1 diff --git a/openssl/crypto/sha/sha_locl.h b/openssl/crypto/sha/sha_locl.h index 7a0c3ca8d..d673255f7 100644 --- a/openssl/crypto/sha/sha_locl.h +++ b/openssl/crypto/sha/sha_locl.h @@ -69,11 +69,11 @@  #define HASH_CBLOCK             SHA_CBLOCK  #define HASH_MAKE_STRING(c,s)   do {	\  	unsigned long ll;		\ -	ll=(c)->h0; HOST_l2c(ll,(s));	\ -	ll=(c)->h1; HOST_l2c(ll,(s));	\ -	ll=(c)->h2; HOST_l2c(ll,(s));	\ -	ll=(c)->h3; HOST_l2c(ll,(s));	\ -	ll=(c)->h4; HOST_l2c(ll,(s));	\ +	ll=(c)->h0; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->h1; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->h2; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->h3; (void)HOST_l2c(ll,(s));	\ +	ll=(c)->h4; (void)HOST_l2c(ll,(s));	\  	} while (0)  #if defined(SHA_0) @@ -256,21 +256,21 @@ static void HASH_BLOCK_DATA_ORDER (SHA_CTX *c, const void *p, size_t num)  		}  	else  		{ -		HOST_c2l(data,l); X( 0)=l;		HOST_c2l(data,l); X( 1)=l; -		BODY_00_15( 0,A,B,C,D,E,T,X( 0));	HOST_c2l(data,l); X( 2)=l; -		BODY_00_15( 1,T,A,B,C,D,E,X( 1));	HOST_c2l(data,l); X( 3)=l; -		BODY_00_15( 2,E,T,A,B,C,D,X( 2));	HOST_c2l(data,l); X( 4)=l; -		BODY_00_15( 3,D,E,T,A,B,C,X( 3));	HOST_c2l(data,l); X( 5)=l; -		BODY_00_15( 4,C,D,E,T,A,B,X( 4));	HOST_c2l(data,l); X( 6)=l; -		BODY_00_15( 5,B,C,D,E,T,A,X( 5));	HOST_c2l(data,l); X( 7)=l; -		BODY_00_15( 6,A,B,C,D,E,T,X( 6));	HOST_c2l(data,l); X( 8)=l; -		BODY_00_15( 7,T,A,B,C,D,E,X( 7));	HOST_c2l(data,l); X( 9)=l; -		BODY_00_15( 8,E,T,A,B,C,D,X( 8));	HOST_c2l(data,l); X(10)=l; -		BODY_00_15( 9,D,E,T,A,B,C,X( 9));	HOST_c2l(data,l); X(11)=l; -		BODY_00_15(10,C,D,E,T,A,B,X(10));	HOST_c2l(data,l); X(12)=l; -		BODY_00_15(11,B,C,D,E,T,A,X(11));	HOST_c2l(data,l); X(13)=l; -		BODY_00_15(12,A,B,C,D,E,T,X(12));	HOST_c2l(data,l); X(14)=l; -		BODY_00_15(13,T,A,B,C,D,E,X(13));	HOST_c2l(data,l); X(15)=l; +		(void)HOST_c2l(data,l); X( 0)=l;	(void)HOST_c2l(data,l); X( 1)=l; +		BODY_00_15( 0,A,B,C,D,E,T,X( 0));	(void)HOST_c2l(data,l); X( 2)=l; +		BODY_00_15( 1,T,A,B,C,D,E,X( 1));	(void)HOST_c2l(data,l); X( 3)=l; +		BODY_00_15( 2,E,T,A,B,C,D,X( 2));	(void)HOST_c2l(data,l); X( 4)=l; +		BODY_00_15( 3,D,E,T,A,B,C,X( 3));	(void)HOST_c2l(data,l); X( 5)=l; +		BODY_00_15( 4,C,D,E,T,A,B,X( 4));	(void)HOST_c2l(data,l); X( 6)=l; +		BODY_00_15( 5,B,C,D,E,T,A,X( 5));	(void)HOST_c2l(data,l); X( 7)=l; +		BODY_00_15( 6,A,B,C,D,E,T,X( 6));	(void)HOST_c2l(data,l); X( 8)=l; +		BODY_00_15( 7,T,A,B,C,D,E,X( 7));	(void)HOST_c2l(data,l); X( 9)=l; +		BODY_00_15( 8,E,T,A,B,C,D,X( 8));	(void)HOST_c2l(data,l); X(10)=l; +		BODY_00_15( 9,D,E,T,A,B,C,X( 9));	(void)HOST_c2l(data,l); X(11)=l; +		BODY_00_15(10,C,D,E,T,A,B,X(10));	(void)HOST_c2l(data,l); X(12)=l; +		BODY_00_15(11,B,C,D,E,T,A,X(11));	(void)HOST_c2l(data,l); X(13)=l; +		BODY_00_15(12,A,B,C,D,E,T,X(12));	(void)HOST_c2l(data,l); X(14)=l; +		BODY_00_15(13,T,A,B,C,D,E,X(13));	(void)HOST_c2l(data,l); X(15)=l;  		BODY_00_15(14,E,T,A,B,C,D,X(14));  		BODY_00_15(15,D,E,T,A,B,C,X(15));  		} diff --git a/openssl/crypto/sparccpuid.S b/openssl/crypto/sparccpuid.S index ae61f7f5c..0cc247e48 100644 --- a/openssl/crypto/sparccpuid.S +++ b/openssl/crypto/sparccpuid.S @@ -235,10 +235,10 @@ _sparcv9_rdtick:  .global	_sparcv9_vis1_probe  .align	8  _sparcv9_vis1_probe: -	.word	0x81b00d80	!fxor	%f0,%f0,%f0  	add	%sp,BIAS+2,%o1 -	retl  	.word	0xc19a5a40	!ldda	[%o1]ASI_FP16_P,%f0 +	retl +	.word	0x81b00d80	!fxor	%f0,%f0,%f0  .type	_sparcv9_vis1_probe,#function  .size	_sparcv9_vis1_probe,.-_sparcv9_vis1_probe diff --git a/openssl/crypto/srp/srp_vfy.c b/openssl/crypto/srp/srp_vfy.c index c8be907d7..4a3d13edf 100644 --- a/openssl/crypto/srp/srp_vfy.c +++ b/openssl/crypto/srp/srp_vfy.c @@ -390,7 +390,7 @@ int SRP_VBASE_init(SRP_VBASE *vb, char *verifier_file)  		}  	for (i = 0; i < sk_OPENSSL_PSTRING_num(tmpdb->data); i++)  		{ -		pp = (char **)sk_OPENSSL_PSTRING_value(tmpdb->data,i); +		pp = sk_OPENSSL_PSTRING_value(tmpdb->data,i);  		if (pp[DB_srptype][0] == DB_SRP_INDEX)  			{  			/*we add this couple in the internal Stack */ @@ -581,7 +581,8 @@ char *SRP_create_verifier(const char *user, const char *pass, char **salt,  	if (*salt == NULL)  		{  		char *tmp_salt; -		if ((tmp_salt = (char *)OPENSSL_malloc(SRP_RANDOM_SALT_LEN * 2)) == NULL) + +		if ((tmp_salt = OPENSSL_malloc(SRP_RANDOM_SALT_LEN * 2)) == NULL)  			{  			OPENSSL_free(vf);  			goto err; diff --git a/openssl/crypto/symhacks.h b/openssl/crypto/symhacks.h index 403f592dc..07a412f84 100644 --- a/openssl/crypto/symhacks.h +++ b/openssl/crypto/symhacks.h @@ -193,17 +193,17 @@  #undef SSL_CTX_set_srp_username_callback  #define SSL_CTX_set_srp_username_callback	SSL_CTX_set_srp_un_cb  #undef ssl_add_clienthello_use_srtp_ext -#define ssl_add_clienthello_use_srtp_ext ssl_add_clihello_use_srtp_ext +#define ssl_add_clienthello_use_srtp_ext	ssl_add_clihello_use_srtp_ext  #undef ssl_add_serverhello_use_srtp_ext -#define ssl_add_serverhello_use_srtp_ext ssl_add_serhello_use_srtp_ext +#define ssl_add_serverhello_use_srtp_ext	ssl_add_serhello_use_srtp_ext  #undef ssl_parse_clienthello_use_srtp_ext -#define ssl_parse_clienthello_use_srtp_ext ssl_parse_clihello_use_srtp_ext +#define ssl_parse_clienthello_use_srtp_ext	ssl_parse_clihello_use_srtp_ext  #undef ssl_parse_serverhello_use_srtp_ext -#define ssl_parse_serverhello_use_srtp_ext ssl_parse_serhello_use_srtp_ext +#define ssl_parse_serverhello_use_srtp_ext	ssl_parse_serhello_use_srtp_ext  #undef SSL_CTX_set_next_protos_advertised_cb -#define SSL_CTX_set_next_protos_advertised_cb SSL_CTX_set_next_protos_adv_cb +#define SSL_CTX_set_next_protos_advertised_cb	SSL_CTX_set_next_protos_adv_cb  #undef SSL_CTX_set_next_proto_select_cb -#define SSL_CTX_set_next_proto_select_cb SSL_CTX_set_next_proto_sel_cb +#define SSL_CTX_set_next_proto_select_cb	SSL_CTX_set_next_proto_sel_cb  /* Hack some long ENGINE names */  #undef ENGINE_get_default_BN_mod_exp_crt @@ -316,8 +316,6 @@  #define ec_GFp_simple_point_set_to_infinity     ec_GFp_simple_pt_set_to_inf  #undef ec_GFp_simple_points_make_affine  #define ec_GFp_simple_points_make_affine	ec_GFp_simple_pts_make_affine -#undef ec_GFp_simple_group_get_curve_GFp -#define ec_GFp_simple_group_get_curve_GFp       ec_GFp_simple_grp_get_curve_GFp  #undef ec_GFp_simple_set_Jprojective_coordinates_GFp  #define ec_GFp_simple_set_Jprojective_coordinates_GFp \                                                  ec_GFp_smp_set_Jproj_coords_GFp diff --git a/openssl/crypto/ui/ui_openssl.c b/openssl/crypto/ui/ui_openssl.c index 5832a73cf..a38c7581e 100644 --- a/openssl/crypto/ui/ui_openssl.c +++ b/openssl/crypto/ui/ui_openssl.c @@ -122,9 +122,15 @@   * sigaction and fileno included. -pedantic would be more appropriate for   * the intended purposes, but we can't prevent users from adding -ansi.   */ +#if defined(OPENSSL_SYSNAME_VXWORKS) +#include <sys/types.h> +#endif +  #if !defined(_POSIX_C_SOURCE) && defined(OPENSSL_SYS_VMS) +#ifndef _POSIX_C_SOURCE  #define _POSIX_C_SOURCE 2  #endif +#endif  #include <signal.h>  #include <stdio.h>  #include <string.h> diff --git a/openssl/crypto/whrlpool/asm/wp-mmx.pl b/openssl/crypto/whrlpool/asm/wp-mmx.pl index 32cf16380..cb2381c22 100644 --- a/openssl/crypto/whrlpool/asm/wp-mmx.pl +++ b/openssl/crypto/whrlpool/asm/wp-mmx.pl @@ -119,7 +119,7 @@ $tbl="ebp";  	&mov	("eax",&DWP(0,"esp"));  	&mov	("ebx",&DWP(4,"esp"));  for($i=0;$i<8;$i++) { -    my $func = ($i==0)? movq : pxor; +    my $func = ($i==0)? \&movq : \&pxor;  	&movb	(&LB("ecx"),&LB("eax"));  	&movb	(&LB("edx"),&HB("eax"));  	&scale	("esi","ecx"); diff --git a/openssl/crypto/whrlpool/asm/wp-x86_64.pl b/openssl/crypto/whrlpool/asm/wp-x86_64.pl index 87c0843dc..24b2ff60c 100644 --- a/openssl/crypto/whrlpool/asm/wp-x86_64.pl +++ b/openssl/crypto/whrlpool/asm/wp-x86_64.pl @@ -41,7 +41,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; my $dir=$1; my $xlate;  ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  sub L() { $code.=".byte	".join(',',@_)."\n"; }  sub LL(){ $code.=".byte	".join(',',@_).",".join(',',@_)."\n"; } diff --git a/openssl/crypto/x509/x509_cmp.c b/openssl/crypto/x509/x509_cmp.c index 7c2aaee2e..352aa3743 100644 --- a/openssl/crypto/x509/x509_cmp.c +++ b/openssl/crypto/x509/x509_cmp.c @@ -86,10 +86,9 @@ unsigned long X509_issuer_and_serial_hash(X509 *a)  	EVP_MD_CTX_init(&ctx);  	f=X509_NAME_oneline(a->cert_info->issuer,NULL,0); -	ret=strlen(f);  	if (!EVP_DigestInit_ex(&ctx, EVP_md5(), NULL))  		goto err; -	if (!EVP_DigestUpdate(&ctx,(unsigned char *)f,ret)) +	if (!EVP_DigestUpdate(&ctx,(unsigned char *)f,strlen(f)))  		goto err;  	OPENSSL_free(f);  	if(!EVP_DigestUpdate(&ctx,(unsigned char *)a->cert_info->serialNumber->data, @@ -249,14 +248,14 @@ unsigned long X509_NAME_hash_old(X509_NAME *x)  	i2d_X509_NAME(x,NULL);  	EVP_MD_CTX_init(&md_ctx);  	EVP_MD_CTX_set_flags(&md_ctx, EVP_MD_CTX_FLAG_NON_FIPS_ALLOW); -	EVP_DigestInit_ex(&md_ctx, EVP_md5(), NULL); -	EVP_DigestUpdate(&md_ctx, x->bytes->data, x->bytes->length); -	EVP_DigestFinal_ex(&md_ctx,md,NULL); +	if (EVP_DigestInit_ex(&md_ctx, EVP_md5(), NULL) +	    && EVP_DigestUpdate(&md_ctx, x->bytes->data, x->bytes->length) +	    && EVP_DigestFinal_ex(&md_ctx,md,NULL)) +		ret=(((unsigned long)md[0]     )|((unsigned long)md[1]<<8L)| +		     ((unsigned long)md[2]<<16L)|((unsigned long)md[3]<<24L) +		     )&0xffffffffL;  	EVP_MD_CTX_cleanup(&md_ctx); -	ret=(	((unsigned long)md[0]     )|((unsigned long)md[1]<<8L)| -		((unsigned long)md[2]<<16L)|((unsigned long)md[3]<<24L) -		)&0xffffffffL;  	return(ret);  	}  #endif diff --git a/openssl/crypto/x509/x509_vfy.c b/openssl/crypto/x509/x509_vfy.c index b0779db02..12d71f54e 100644 --- a/openssl/crypto/x509/x509_vfy.c +++ b/openssl/crypto/x509/x509_vfy.c @@ -872,7 +872,7 @@ static int crl_extension_match(X509_CRL *a, X509_CRL *b, int nid)  	{  	ASN1_OCTET_STRING *exta, *extb;  	int i; -	i = X509_CRL_get_ext_by_NID(a, nid, 0); +	i = X509_CRL_get_ext_by_NID(a, nid, -1);  	if (i >= 0)  		{  		/* Can't have multiple occurrences */ @@ -883,7 +883,7 @@ static int crl_extension_match(X509_CRL *a, X509_CRL *b, int nid)  	else  		exta = NULL; -	i = X509_CRL_get_ext_by_NID(b, nid, 0); +	i = X509_CRL_get_ext_by_NID(b, nid, -1);  	if (i >= 0)  		{ diff --git a/openssl/crypto/x509v3/v3_purp.c b/openssl/crypto/x509v3/v3_purp.c index 181bd3497..ad688657e 100644 --- a/openssl/crypto/x509v3/v3_purp.c +++ b/openssl/crypto/x509v3/v3_purp.c @@ -474,11 +474,11 @@ static void x509v3_cache_extensions(X509 *x)  	for (i = 0; i < X509_get_ext_count(x); i++)  		{  		ex = X509_get_ext(x, i); -		if (!X509_EXTENSION_get_critical(ex)) -			continue;  		if (OBJ_obj2nid(X509_EXTENSION_get_object(ex))  					== NID_freshest_crl)  			x->ex_flags |= EXFLAG_FRESHEST; +		if (!X509_EXTENSION_get_critical(ex)) +			continue;  		if (!X509_supported_extension(ex))  			{  			x->ex_flags |= EXFLAG_CRITICAL; diff --git a/openssl/crypto/x86_64cpuid.pl b/openssl/crypto/x86_64cpuid.pl index 7b7b93b22..6ebfd017e 100644 --- a/openssl/crypto/x86_64cpuid.pl +++ b/openssl/crypto/x86_64cpuid.pl @@ -11,7 +11,8 @@ $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;  ( $xlate="${dir}perlasm/x86_64-xlate.pl" and -f $xlate) or  die "can't locate x86_64-xlate.pl"; -open STDOUT,"| $^X $xlate $flavour $output"; +open OUT,"| \"$^X\" $xlate $flavour $output"; +*STDOUT=*OUT;  ($arg1,$arg2,$arg3,$arg4)=$win64?("%rcx","%rdx","%r8", "%r9") :	# Win64 order  				 ("%rdi","%rsi","%rdx","%rcx");	# Unix order diff --git a/openssl/crypto/x86cpuid.pl b/openssl/crypto/x86cpuid.pl index 39fd8f229..c18b0e248 100644 --- a/openssl/crypto/x86cpuid.pl +++ b/openssl/crypto/x86cpuid.pl @@ -165,7 +165,7 @@ for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); }  	&jnz	(&label("nohalt"));	# not enough privileges  	&pushf	(); -	&pop	("eax") +	&pop	("eax");  	&bt	("eax",9);  	&jnc	(&label("nohalt"));	# interrupts are disabled @@ -280,7 +280,7 @@ for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); }  #	arguments is 1 or 2!  &function_begin_B("OPENSSL_indirect_call");  	{ -	my $i,$max=7;		# $max has to be chosen as 4*n-1 +	my ($max,$i)=(7,);	# $max has to be chosen as 4*n-1  				# in order to preserve eventual  				# stack alignment  	&push	("ebp"); | 
