- 06 2月, 2013 2 次提交
-
-
由 Andy Polyakov 提交于
Address CBC decrypt timing issues and reenable the AESNI+SHA1 stitch. (cherry picked from commit 125093b59f3c2a2d33785b5563d929d0472f1721)
-
由 Ben Laurie 提交于
This patch makes the decoding of SSLv3 and TLS CBC records constant time. Without this, a timing side-channel can be used to build a padding oracle and mount Vaudenay's attack. This patch also disables the stitched AESNI+SHA mode pending a similar fix to that code. In order to be easy to backport, this change is implemented in ssl/, rather than as a generic AEAD mode. In the future this should be changed around so that HMAC isn't in ssl/, but crypto/ as FIPS expects. (cherry picked from commit e130841bccfc0bb9da254dc84e23bc6a1c78a64e)
-
- 10 10月, 2011 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 24 8月, 2011 1 次提交
-
-
由 Andy Polyakov 提交于
-
- 07 4月, 2010 1 次提交
-
-
由 Dr. Stephen Henson 提交于
directly by SSL/TLS SHA2 certificates are becoming more common and applications that only call SSL_library_init() and not OpenSSL_add_all_alrgorithms() will fail when verifying certificates. Update docs.
-
- 20 1月, 2010 1 次提交
-
-
由 Dr. Stephen Henson 提交于
algorithms not found when an application uses PKCS#12 and only calls SSL_library_init() instead of OpenSSL_add_all_algorithms(). Simple work around is to add the missing algorithm (40 bit RC2) in SSL_library_init().
-
- 08 7月, 2009 1 次提交
-
-
由 Dr. Stephen Henson 提交于
a new branch we can also disable it by default.
-
- 24 4月, 2007 1 次提交
-
-
由 Bodo Möller 提交于
PR: 1503 Submitted by: KISA Reviewed by: Bodo Moeller
-
- 09 6月, 2006 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Masashi Fujita Reviewed by: Bodo Moeller
-
- 22 8月, 2005 1 次提交
-
-
由 Nils Larsch 提交于
-
- 06 10月, 2003 1 次提交
-
-
由 Richard Levitte 提交于
-
- 09 8月, 2002 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Douglas Stebila <douglas.stebila@sun.com> (Authors: Vipul Gupta and Sumit Gupta, Sun Microsystems Laboratories)
-
- 20 2月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
missed any. This compiles and runs on Linux, and external applications have no problems with it. The definite test will be to build this on VMS.
-
- 08 2月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Fix AES code. Update Rijndael source to v3.0 Add AES OIDs. Change most references of Rijndael to AES. Add new draft AES ciphersuites.
-
- 06 2月, 2001 1 次提交
-
-
由 Ben Laurie 提交于
-
- 23 1月, 2001 1 次提交
-
-
由 Bodo Möller 提交于
digest aliases (as found in OpenSSL_add_all_digests).
-
- 08 6月, 1999 1 次提交
-
-
由 Bodo Möller 提交于
a pain to read when using 4-space tabs.
-
- 27 4月, 1999 1 次提交
-
-
由 Ulf Möller 提交于
-
- 24 4月, 1999 1 次提交
-
-
由 Bodo Möller 提交于
Submitted by: Reviewed by: PR:
-
- 20 4月, 1999 1 次提交
-
-
由 Ulf Möller 提交于
-
- 16 2月, 1999 1 次提交
-
-
由 Mark J. Cox 提交于
[Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)] Fix so that the version number in the master secret, when passed via RSA, checks that if TLS was proposed, but we roll back to SSLv3 (because the server will not accept higher), that the version number is 0x03,0x01, not 0x03,0x00 [Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)] Submitted by: Reviewed by: PR:
-
- 21 12月, 1998 3 次提交
-
-
由 Ralf S. Engelschall 提交于
-
由 Ralf S. Engelschall 提交于
-
由 Ralf S. Engelschall 提交于
-