1. 19 3月, 2018 7 次提交
  2. 18 3月, 2018 1 次提交
  3. 17 3月, 2018 1 次提交
  4. 15 3月, 2018 7 次提交
  5. 14 3月, 2018 3 次提交
  6. 13 3月, 2018 2 次提交
  7. 12 3月, 2018 2 次提交
  8. 10 3月, 2018 1 次提交
  9. 09 3月, 2018 2 次提交
  10. 08 3月, 2018 2 次提交
    • B
      Fix issues in ia32 RDRAND asm leading to reduced entropy · 082193ef
      Bryan Donlan 提交于
      This patch fixes two issues in the ia32 RDRAND assembly code that result in a
      (possibly significant) loss of entropy.
      
      The first, less significant, issue is that, by returning success as 0 from
      OPENSSL_ia32_rdrand() and OPENSSL_ia32_rdseed(), a subtle bias was introduced.
      Specifically, because the assembly routine copied the remaining number of
      retries over the result when RDRAND/RDSEED returned 'successful but zero', a
      bias towards values 1-8 (primarily 8) was introduced.
      
      The second, more worrying issue was that, due to a mixup in registers, when a
      buffer that was not size 0 or 1 mod 8 was passed to OPENSSL_ia32_rdrand_bytes
      or OPENSSL_ia32_rdseed_bytes, the last (n mod 8) bytes were all the same value.
      This issue impacts only the 64-bit variant of the assembly.
      
      This change fixes both issues by first eliminating the only use of
      OPENSSL_ia32_rdrand, replacing it with OPENSSL_ia32_rdrand_bytes, and fixes the
      register mixup in OPENSSL_ia32_rdrand_bytes. It also adds a sanity test for
      OPENSSL_ia32_rdrand_bytes and OPENSSL_ia32_rdseed_bytes to help catch problems
      of this nature in the future.
      Reviewed-by: NAndy Polyakov <appro@openssl.org>
      Reviewed-by: NRich Salz <rsalz@openssl.org>
      (Merged from https://github.com/openssl/openssl/pull/5342)
      082193ef
    • M
      Remove OPENSSL_USE_NODELETE guards in shlibloadtest · d8b67b9d
      Matt Caswell 提交于
      PR #3399 converted shlibloadtest to the new test framework. It also
      seemed to add some `OPENSSL_USE_NODELETE` guards to the library
      unloading part of the test. This part was added in a commit with this
      description:
      
          Review feedback; use single main, #ifdef ADD_TEST
      
          Suppose OPENSSL_USE_NODELETE (via Nick Reilly)
      
      Strangely though there doesn't seem to be any relevant review feedback
      in that PR that could justify the addition of those guards. The guards
      do not appear in 1.1.0.
      
      Having the guards changes the nature of the test, so that we only test
      library unloading on platforms where OPENSSL_USE_NODELETE is set (Linux
      and Windows). I can't think of any good reason for this and as it doesn't
      seem to be necessary in 1.1.0 so I think we should remove them.
      Reviewed-by: NRichard Levitte <levitte@openssl.org>
      (Merged from https://github.com/openssl/openssl/pull/5530)
      d8b67b9d
  11. 07 3月, 2018 1 次提交
  12. 05 3月, 2018 2 次提交
  13. 04 3月, 2018 1 次提交
  14. 02 3月, 2018 1 次提交
  15. 01 3月, 2018 4 次提交
  16. 27 2月, 2018 3 次提交