1. 20 3月, 2014 1 次提交
  2. 19 3月, 2014 1 次提交
  3. 12 3月, 2014 2 次提交
    • D
      Update ordinals. · 14c67a70
      Dr. Stephen Henson 提交于
      Use a previously unused value as we will be updating multiple released
      branches.
      (cherry picked from commit 0737acd2a8cc688902b5151cab5dc6737b82fb96)
      14c67a70
    • D
      Fix for CVE-2014-0076 · f9b6c0ba
      Dr. Stephen Henson 提交于
      Fix for the attack described in the paper "Recovering OpenSSL
      ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack"
      by Yuval Yarom and Naomi Benger. Details can be obtained from:
      http://eprint.iacr.org/2014/140
      
      Thanks to Yuval Yarom and Naomi Benger for discovering this
      flaw and to Yuval Yarom for supplying a fix.
      (cherry picked from commit 2198be3483259de374f91e57d247d0fc667aef29)
      
      Conflicts:
      
      	CHANGES
      f9b6c0ba
  4. 10 3月, 2014 2 次提交
  5. 08 3月, 2014 1 次提交
  6. 07 3月, 2014 2 次提交
  7. 06 3月, 2014 3 次提交
  8. 04 3月, 2014 1 次提交
  9. 02 3月, 2014 3 次提交
    • D
      PKCS#8 support for alternative PRFs. · 5693a308
      Dr. Stephen Henson 提交于
      Add option to set an alternative to the default hmacWithSHA1 PRF
      for PKCS#8 private key encryptions. This is used automatically
      by PKCS8_encrypt if the nid specified is a PRF.
      
      Add option to pkcs8 utility.
      
      Update docs.
      (cherry picked from commit b60272b01fcb4f69201b3e1659b4f7e9e9298dfb)
      5693a308
    • D
      Fix memory leak. · 01757858
      Dr. Stephen Henson 提交于
      (cherry picked from commit 124d218889dfca33d277404612f1319afe04107e)
      01757858
    • D
      Add function to free compression methods. · db7b5e0d
      Dr. Stephen Henson 提交于
      Although the memory allocated by compression methods is fixed and
      cannot grow over time it can cause warnings in some leak checking
      tools. The function SSL_COMP_free_compression_methods() will free
      and zero the list of supported compression methods. This should
      *only* be called in a single threaded context when an application
      is shutting down to avoid interfering with existing contexts
      attempting to look up compression methods.
      (cherry picked from commit 976c58302b13d085edb3ab822f5eac4b2f1bff95)
      db7b5e0d
  10. 01 3月, 2014 1 次提交
  11. 27 2月, 2014 5 次提交
  12. 26 2月, 2014 7 次提交
  13. 25 2月, 2014 6 次提交
  14. 24 2月, 2014 3 次提交
  15. 23 2月, 2014 2 次提交
    • D
      Only set current certificate to valid values. · 358d352a
      Dr. Stephen Henson 提交于
      When setting the current certificate check that it has a corresponding
      private key.
      358d352a
    • D
      New chain building flags. · 13dc3ce9
      Dr. Stephen Henson 提交于
      New flags to build certificate chains. The can be used to rearrange
      the chain so all an application needs to do is add all certificates
      in arbitrary order and then build the chain to check and correct them.
      
      Add verify error code when building chain.
      
      Update docs.
      13dc3ce9