提交 · 1041ab696ef8bc5d2d91c95a2de32c8623fab97e · OpenHarmony / Third Party Openssl

06 2月, 2013 15 次提交

A
e_aes_cbc_hmac_sha1.c: cleanse temporary copy of HMAC secret. · 1041ab69
由 Andy Polyakov 提交于 2月 03, 2013
```
(cherry picked from commit 529d27ea472fc2c7ba9190a15a58cb84012d4ec6)
```
1041ab69

e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues. · 9970308c

由 Andy Polyakov 提交于 2月 02, 2013

Address CBC decrypt timing issues and reenable the AESNI+SHA1 stitch.
(cherry picked from commit 125093b59f3c2a2d33785b5563d929d0472f1721)

9970308c

ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility. · 2aec073a

由 Andy Polyakov 提交于 2月 01, 2013

Kludge alert. This is arranged by passing padding length in unused
bits of SSL3_RECORD->type, so that orig_len can be reconstructed.
(cherry picked from commit 8bfd4c659f180a6ce34f21c0e62956b362067fba)

2aec073a

D
Don't access EVP_MD_CTX internals directly. · b714a1fe
由 Dr. Stephen Henson 提交于 2月 01, 2013
```
(cherry picked from commit 04e45b52ee3be81121359cc1198fd01e38096e9f)
```
b714a1fe
A
s3/s3_cbc.c: allow for compilations with NO_SHA256|512. · bbb4ee85
由 Andy Polyakov 提交于 2月 01, 2013
```
(cherry picked from commit d5371324d978e4096bf99b9d0fe71b2cb65d9dc8)
```
bbb4ee85

ssl/s3_cbc.c: md_state alignment portability fix. · 4af91ec0

由 Andy Polyakov 提交于 2月 01, 2013

RISCs are picky and alignment granted by compiler for md_state can be
insufficient for SHA512.
(cherry picked from commit 36260233e7e3396feed884d3f501283e0453c04f)

4af91ec0

ssl/s3_cbc.c: uint64_t portability fix. · 6b2a8439

由 Andy Polyakov 提交于 2月 01, 2013

Break dependency on uint64_t. It's possible to declare bits as
unsigned int, because TLS packets are limited in size and 32-bit
value can't overflow.
(cherry picked from commit cab13fc8473856a43556d41d8dac5605f4ba1f91)

6b2a8439

typo. · 6b1f7bee

由 Dr. Stephen Henson 提交于 1月 31, 2013

(cherry picked from commit 34ab3c8c711ff79c2b768f0b17e4b2a78fd1df5d)

6b1f7bee

D
Add ordinal for CRYPTO_memcmp: since this will affect multiple · 8109e830
由 Dr. Stephen Henson 提交于 1月 31, 2013
```
branches it needs to be in a "gap".
(cherry picked from commit 81ce0e14e72e8e255ad1bd9c7cfaa47a6291919c)
```
8109e830

Timing fix mitigation for FIPS mode. · c4e6fb15

由 Dr. Stephen Henson 提交于 1月 29, 2013

We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to EVP_DigestSignUpdate to hash additonal blocks
to cover any timing differences caused by removal of padding.
(cherry picked from commit b908e88ec15aa0a74805e3f2236fc4f83f2789c2)

c4e6fb15

B
Oops. Add missing file. · a693ead6
由 Ben Laurie 提交于 1月 28, 2013
```
(cherry picked from commit 014265eb02e26f35c8db58e2ccbf100b0b2f0072)
```
a693ead6

Update DTLS code to match CBC decoding in TLS. · e33ac0e7

由 Ben Laurie 提交于 1月 28, 2013

This change updates the DTLS code to match the constant-time CBC
behaviour in the TLS.
(cherry picked from commit 9f27de170d1b7bef3d46d41382dc4dafde8b3900)

e33ac0e7

Don't crash when processing a zero-length, TLS >= 1.1 record. · 93cab6b3

由 Ben Laurie 提交于 1月 28, 2013

The previous CBC patch was bugged in that there was a path through enc()
in s3_pkt.c/d1_pkt.c which didn't set orig_len. orig_len would be left
at the previous value which could suggest that the packet was a
sufficient length when it wasn't.
(cherry picked from commit 6cb19b7681f600b2f165e4adc57547b097b475fd)

93cab6b3

Make CBC decoding constant time. · 2acc020b

由 Ben Laurie 提交于 1月 28, 2013

This patch makes the decoding of SSLv3 and TLS CBC records constant
time. Without this, a timing side-channel can be used to build a padding
oracle and mount Vaudenay's attack.

This patch also disables the stitched AESNI+SHA mode pending a similar
fix to that code.

In order to be easy to backport, this change is implemented in ssl/,
rather than as a generic AEAD mode. In the future this should be changed
around so that HMAC isn't in ssl/, but crypto/ as FIPS expects.
(cherry picked from commit e130841bccfc0bb9da254dc84e23bc6a1c78a64e)

2acc020b

Add and use a constant-time memcmp. · 7c770d57

由 Ben Laurie 提交于 1月 28, 2013

This change adds CRYPTO_memcmp, which compares two vectors of bytes in
an amount of time that's independent of their contents. It also changes
several MAC compares in the code to use this over the standard memcmp,
which may leak information about the size of a matching prefix.
(cherry picked from commit 2ee798880a246d648ecddadc5b91367bee4a5d98)

7c770d57

04 2月, 2013 1 次提交
- D
  Fix for trace code: SSL3 doesn't include a length value for · ea34a583
  由 Dr. Stephen Henson 提交于 2月 04, 2013
```
encrypted premaster secret value.
```
  ea34a583
03 2月, 2013 1 次提交
- A
  x86_64 assembly pack: keep making Windows build more robust. · 4568182a
  由 Andy Polyakov 提交于 2月 02, 2013
```
PR: 2963 and a number of others
```
  4568182a
25 1月, 2013 1 次提交
- D
  
  Don't use C++ style comments. · e511c64a
  由 Dr. Stephen Henson 提交于 1月 24, 2013
  
  e511c64a
24 1月, 2013 1 次提交
- D
  
  Fix warning: lenmax isn't used any more. · c38b76bf
  由 Dr. Stephen Henson 提交于 1月 24, 2013
  
  c38b76bf
23 1月, 2013 7 次提交
- D
  
  Don't include comp.h in cmd_cd.c if OPENSSL_NO_COMP set · 1703627b
  由 Dr. Stephen Henson 提交于 1月 23, 2013
  
  1703627b
- D
  
  fix domd · 498e89fe
  由 Dr. Stephen Henson 提交于 1月 23, 2013
  
  498e89fe
- A
  x86_64 assembly pack: make Windows build more robust. · 46bf83f0
  由 Andy Polyakov 提交于 1月 22, 2013
```
PR: 2963 and a number of others
```
  46bf83f0
- A
  
  TABLE update. · 7c47f0d9
  由 Andy Polyakov 提交于 1月 22, 2013
  
  7c47f0d9
- A
  
  Configure: update linux-mips* lines. · 058843bd
  由 Andy Polyakov 提交于 1月 22, 2013
  
  058843bd
- A
  
  bn/asm/mips.pl: hardwire local call to bn_div_words. · 543fd854
  由 Andy Polyakov 提交于 1月 22, 2013
  
  543fd854
- A
  
  sha512-ppc.pl: minimize stack frame. · 1598af9a
  由 Andy Polyakov 提交于 1月 22, 2013
  
  1598af9a
22 1月, 2013 2 次提交
- A
  
  gost2814789t.c: portability fixes. · 06b3b640
  由 Andy Polyakov 提交于 1月 22, 2013
  
  06b3b640
- B
  
  Fix warnings. · 5bdf1f1a
  由 Ben Laurie 提交于 1月 21, 2013
  
  5bdf1f1a
20 1月, 2013 10 次提交
- D
  
  Don't include comp.h if no-comp set. · f20c673d
  由 Dr. Stephen Henson 提交于 1月 20, 2013
  
  f20c673d
- A
  Improve WINCE support. · a006fef7
  由 Andy Polyakov 提交于 1月 19, 2013
```
Submitted by: Pierre Delaage
```
  a006fef7
- B
  
  Merge branch 'master' of openssl.net:openssl · 0e5cf7bc
  由 Ben Laurie 提交于 1月 19, 2013
  
  0e5cf7bc
- A
  
  More .gitignore adjustments. · bd2bceb9
  由 Andy Polyakov 提交于 1月 19, 2013
  
  bd2bceb9
- B
  
  Merge branch 'master' of openssl.net:openssl · 6f0a93b0
  由 Ben Laurie 提交于 1月 19, 2013
  
  6f0a93b0
- B
  
  Remove kludge to use RC4 asm. · ed60d9de
  由 Ben Laurie 提交于 1月 19, 2013
  
  ed60d9de
- B
  
  Build/test cleanly on MacOS. · e721909d
  由 Ben Laurie 提交于 1月 19, 2013
  
  e721909d
- A
  gost_crypt.c: add assertions. · a0dcb8d8
  由 Andy Polyakov 提交于 1月 19, 2013
```
Submitted by: Seguei Leontiev
PR: 2821
```
  a0dcb8d8
- A
  engines/ccgost: add test case. · 26906f2d
  由 Andy Polyakov 提交于 1月 19, 2013
```
Submitted by: Serguei Leontiev
PR: 2821
```
  26906f2d
- A
  
  sha512-ppc.pl: add PPC32 code, >2x improvement on in-order cores. · d4571f43
  由 Andy Polyakov 提交于 1月 19, 2013
  
  d4571f43
19 1月, 2013 2 次提交
- B
  
  Remove extraneous brackets (clang doesn't like them). · eef69354
  由 Ben Laurie 提交于 1月 19, 2013
  
  eef69354
- B
  
  Can't check a size_t for < 0. · 517dd307
  由 Ben Laurie 提交于 1月 19, 2013
  
  517dd307

OpenHarmony / Third Party Openssl 大约 1 年 前同步成功

OpenHarmony / Third Party Openssl
大约 1 年前同步成功