提交 · c800c27a8c47c8e63254ec594682452c296f1e8e · OpenHarmony / Third Party Openssl

24 10月, 2014 1 次提交
- D
  Process signature algorithms in ClientHello late. · c800c27a
  由 Dr. Stephen Henson 提交于 10月 09, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  c800c27a
23 10月, 2014 2 次提交

由 Andy Polyakov 提交于 10月 23, 2014

Facilitate switch to custom scatter-gather routines. This modification
does not change algorithms, only makes it possible to implement
alternative. This is achieved by a) moving precompute table to assembly
(perlasm parses ecp_nistz256_table.c and is free to rearrange data to
match gathering algorithm); b) adhering to explicit scatter subroutine
(which for now is simply a memcpy). First implementations that will use
this option are 32-bit assembly implementations, ARMv4 and x86, where
equivalent of current read-whole-table-select-single-value algorithm
is too time-consuming. [On side note, switching to scatter-gather on
x86_64 would allow to improve server-side ECDSA performance by ~5%].
Reviewed-by: NBodo Moeller <bodo@openssl.org>

3ff08e1d

A
Configure: add ios64 target. · b06f7d9a
由 Andy Polyakov 提交于 10月 23, 2014
```
Reviewed-by: NSteve Marquess <marquess@openssl.org>
```
b06f7d9a

22 10月, 2014 4 次提交

A
Add missing credit. · 9f4bd9d5
由 Andy Polyakov 提交于 10月 22, 2014
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
9f4bd9d5
B
Fix and improve SSL_MODE_SEND_FALLBACK_SCSV documentation. · 98f1ac7d
由 Bodo Moeller 提交于 10月 21, 2014
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
98f1ac7d
B
When processing ClientHello.cipher_suites, don't ignore cipher suites · 8cb30232
由 Bodo Moeller 提交于 10月 21, 2014
```
listed after TLS_FALLBACK_SCSV.

RT: 3575
Reviewed-by: NEmilia Kasper <emilia@openssl.org>
```
8cb30232

Keep old method in case of an unsupported protocol · 392fa7a9

由 Kurt Roeckx 提交于 10月 21, 2014

When we're configured with no-ssl3 and we receive an SSL v3 Client Hello, we set
the method to NULL.  We didn't used to do that, and it breaks things.  This is a
regression introduced in 62f45cc2.  Keep the old
method since the code is not able to deal with a NULL method at this time.

CVE-2014-3569, PR#3571
Reviewed-by: NEmilia Käsper <emilia@openssl.org>

392fa7a9

20 10月, 2014 1 次提交
- T
  no-ssl2 with no-ssl3 does not mean drop the ssl lib · c882abd5
  由 Tim Hudson 提交于 10月 20, 2014
```
Reviewed-by: NGeoff Thorpe <geoff@openssl.org>
```
  c882abd5
17 10月, 2014 1 次提交
- K
  RT3547: Add missing static qualifier · 87d388c9
  由 Kurt Cancemi 提交于 9月 28, 2014
```
Reviewed-by: NBen Laurie <ben@openssl.org>
```
  87d388c9
15 10月, 2014 12 次提交

Add constant_time_locl.h to HEADERS, · c6e9b39c

由 Tim Hudson 提交于 9月 25, 2014

so the Win32 compile picks it up correctly.
Reviewed-by: NRichard Levitte <levitte@openssl.org>

Conflicts:
	crypto/Makefile

c6e9b39c

Include "constant_time_locl.h" rather than "../constant_time_locl.h". · 7f09a877

由 Richard Levitte 提交于 9月 24, 2014

The different -I compiler parameters will take care of the rest...
Reviewed-by: NTim Hudson <tjh@openssl.org>

Conflicts:
	crypto/evp/evp_enc.c
	crypto/rsa/rsa_oaep.c
	crypto/rsa/rsa_pk1.c

7f09a877

M
Updates to NEWS file · ed13270d
由 Matt Caswell 提交于 10月 15, 2014
```
Reviewed-by: NDr Stephen Henson <steve@openssl.org>
```
ed13270d
M
Updates CHANGES file · 53afbe12
由 Matt Caswell 提交于 10月 15, 2014
```
Reviewed-by: NBodo Möller <bodo@openssl.org>
```
53afbe12

Fix no-ssl3 configuration option · 62f45cc2

由 Geoff Thorpe 提交于 10月 15, 2014

CVE-2014-3568
Reviewed-by: NEmilia Kasper <emilia@openssl.org>
Reviewed-by: NRich Salz <rsalz@openssl.org>

62f45cc2

Fix for session tickets memory leak. · 74827055

由 Dr. Stephen Henson 提交于 10月 15, 2014

CVE-2014-3567
Reviewed-by: NRich Salz <rsalz@openssl.org>
Reviewed-by: NMatt Caswell <matt@openssl.org>

74827055

Fix SRTP compile issues for windows · 3dd814ac

由 Matt Caswell 提交于 10月 15, 2014

Related to CVE-2014-3513

This fix was developed by the OpenSSL Team
Reviewed-by: NTim Hudson <tjh@openssl.org>

Conflicts:
	util/mkdef.pl
	util/ssleay.num

3dd814ac

Fix for SRTP Memory Leak · e659eff2

由 Matt Caswell 提交于 10月 15, 2014

CVE-2014-3513

This issue was reported to OpenSSL on 26th September 2014, based on an original
issue and patch developed by the LibreSSL project. Further analysis of the issue
was performed by the OpenSSL team.

The fix was developed by the OpenSSL team.
Reviewed-by: NTim Hudson <tjh@openssl.org>

e659eff2

B
Fix SSL_R naming inconsistency. · 0b382a8e
由 Bodo Moeller 提交于 10月 15, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
0b382a8e
A
aesni-x86_64.pl: make ECB subroutine Windows ABI compliant. · 69d5747f
由 Andy Polyakov 提交于 10月 15, 2014
```
RT: 3553
Reviewed-by: NEmilia Kasper <emilia@openssl.org>
```
69d5747f
B
Add TLS_FALLBACK_SCSV documentation, and move s_client -fallback_scsv · fb0e87fb
由 Bodo Moeller 提交于 10月 15, 2014
```
handling out of #ifndef OPENSSL_NO_DTLS1 section.
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
fb0e87fb
B
Support TLS_FALLBACK_SCSV. · cf6da053
由 Bodo Moeller 提交于 10月 15, 2014
```
Reviewed-by: NStephen Henson <steve@openssl.org>
```
cf6da053

11 10月, 2014 1 次提交
- D
  Remove reference to deleted md4.c · ffa08b32
  由 Dr. Stephen Henson 提交于 10月 11, 2014
```
Reviewed-by: NKurt Roeckx <kurt@openssl.org>
```
  ffa08b32
10 10月, 2014 1 次提交
- D
  Disable encrypt them mac for SSL 3.0 and stream ciphers (RC4 only). · f3014206
  由 Dr. Stephen Henson 提交于 9月 30, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
  f3014206
07 10月, 2014 2 次提交

Removed duplicate definition of PKCS7_type_is_encrypted · e0fdea3e

由 Matt Caswell 提交于 10月 03, 2014

Patch supplied by Matthieu Patou <mat@matws.net>, and modified to also
remove duplicate definition of PKCS7_type_is_digest.

PR#3551
Reviewed-by: NRich Salz <rsalz@openssl.org>

e0fdea3e

B
Fix single makefile. · 71614df4
由 Ben Laurie 提交于 10月 04, 2014
```
Reviewed-by: NGeoffrey Thorpe <geoff@geoffthorpe.net>
```
71614df4

03 10月, 2014 1 次提交

RT3462: Document actions when data==NULL · 5aed1693

由 Rich Salz 提交于 9月 08, 2014

If data is NULL, return the size needed to hold the
derived key.  No other API to do this, so document
the behavior.
Reviewed-by: NRichard Levitte <levitte@openssl.org>

5aed1693

02 10月, 2014 3 次提交
- B
  DTLS 1.2 support has been added to 1.0.2. · 429a25b9
  由 Bodo Moeller 提交于 10月 02, 2014
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  429a25b9
- A
  crypto/cast/asm/cast-586.pl: +5% on PIII and remove obsolete readme. · ae4af7a0
  由 Andy Polyakov 提交于 10月 01, 2014
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  ae4af7a0
- R
  RT3549: Remove obsolete files in crypto · df8c39d5
  由 Rich Salz 提交于 9月 30, 2014
```
Reviewed-by: NAndy Polyakov <appro@openssl.org>
```
  df8c39d5
01 10月, 2014 5 次提交
- R
  RT2910: Remove des.c and its Makefile target · d5f34443
  由 Rich Salz 提交于 9月 30, 2014
```
Reviewed-by: NAndy Polyakov <appro@openssl.org>
```
  d5f34443
- R
  RT2309: Fix podpage MMNNFFPPS->MNNFFPPS · 9208640a
  由 Rich Salz 提交于 9月 30, 2014
```
Reviewed-by: NMatt Caswell <matt@openssl.org>
```
  9208640a
- D
  Parse custom extensions after internal extensions. · 4b6dee2b
  由 Dr. Stephen Henson 提交于 9月 29, 2014
```
Reviewed-by: NRich Salz <rsalz@openssl.org>
```
  4b6dee2b
- A
  e_os.h: refine inline override logic (to address warnings in debug build). · 55c7a4cf
  由 Andy Polyakov 提交于 9月 30, 2014
```
Reviewed-by: NDr Stephen Henson <steve@openssl.org>
```
  55c7a4cf
- A
  crypto/bn/bn_nist.c: bring original failing code back for reference. · 323154be
  由 Andy Polyakov 提交于 9月 30, 2014
```
RT: 3541
Reviewed-by: NEmilia Kasper <emilia@openssl.org>
```
  323154be
29 9月, 2014 2 次提交

D
Add additional explanation to CHANGES entry. · 7c477625
由 Dr. Stephen Henson 提交于 9月 29, 2014
```
Reviewed-by: NTim Hudson <tjh@openssl.org>
```
7c477625

Add additional DigestInfo checks. · 1cfd255c

由 Dr. Stephen Henson 提交于 9月 25, 2014

Reencode DigestInto in DER and check against the original: this
will reject any improperly encoded DigestInfo structures.

Note: this is a precautionary measure, there is no known attack
which can exploit this.

Thanks to Brian Smith for reporting this issue.
Reviewed-by: NTim Hudson <tjh@openssl.org>

1cfd255c

26 9月, 2014 2 次提交
- R
  Remove #ifdef's for IRIX_CC_BUG · 3d81ec5b
  由 Rich Salz 提交于 9月 25, 2014
```
Reviewed-by: NAndy Polyakov <appro@openssl.org>
```
  3d81ec5b
- R
  RT3544: Must update TABLE after Configure change · 008bef52
  由 Rich Salz 提交于 9月 25, 2014
```
Also add comment to Configure reminding people to do that.
Reviewed-by: NAndy Polyakov <appro@openssl.org>
```
  008bef52
25 9月, 2014 2 次提交
- E
  Add missing tests · fdc35a9d
  由 Emilia Kasper 提交于 9月 25, 2014
```
Accidentally omitted from commit 455b65dfReviewed-by: NKurt Roeckx <kurt@openssl.org>
```
  fdc35a9d
- D
  Use correct function name: CMS_add1_signer() · 5886354d
  由 Dr. Stephen Henson 提交于 9月 20, 2014
```
Reviewed-by: NMatt Caswell <matt@openssl.org>
```
  5886354d

OpenHarmony / Third Party Openssl 大约 1 年 前同步成功

OpenHarmony / Third Party Openssl
大约 1 年前同步成功