提交 · e1f1d28f34cc5cfc87772e0d8331e00137a4a213 · OpenHarmony / Third Party Openssl

27 2月, 2013 3 次提交

Add function CMS_RecipientInfo_encrypt · e1f1d28f

由 Dr. Stephen Henson 提交于 2月 26, 2013

Add CMS_RecipientInfo_encrypt: this function encrypts an existing content
encryption key to match the key in the RecipientInfo structure: this is
useful if a new recpient is added to and existing enveloped data structure.

Add documentation.

e1f1d28f

D

Fix error codes. · 388aff08
由 Dr. Stephen Henson 提交于 2月 26, 2013

388aff08

Demo code for SSL_CONF API · 3646578a

由 Dr. Stephen Henson 提交于 2月 26, 2013

Two example programs one for command line argument processing and
one for configuration file processing.

3646578a

26 2月, 2013 1 次提交

Update SSL_CONF docs. · 4365e4aa

由 Dr. Stephen Henson 提交于 2月 26, 2013

Fix some typos and update version number first added: it has now been
backported to OpenSSL 1.0.2.

4365e4aa

22 2月, 2013 2 次提交
- B
  Fix ignored return value warnings. · 0850f118
  由 Ben Laurie 提交于 2月 21, 2013
```
Not sure why I am getting these now and not before.
```
  0850f118
- B
  
  make depend. · 975dfb1c
  由 Ben Laurie 提交于 2月 21, 2013
  
  975dfb1c
16 2月, 2013 1 次提交

Fix POD errors to stop make install_docs dying with pod2man 2.5.0+ · 5cc27077

由 Nick Alcock 提交于 2月 15, 2013

podlators 2.5.0 has switched to dying on POD syntax errors. This means
that a bunch of long-standing erroneous POD in the openssl documentation
now leads to fatal errors from pod2man, halting installation.

Unfortunately POD constraints mean that you have to sort numeric lists
in ascending order if they start with 1: you cannot do 1, 0, 2 even if
you want 1 to appear first. I've reshuffled such (alas, I wish there
were a better way but I don't know of one).

5cc27077

15 2月, 2013 2 次提交
- A
  
  sha256-586.pl: code refresh. · 47edeb9f
  由 Andy Polyakov 提交于 2月 15, 2013
  
  47edeb9f
- A
  
  sha1-586.pl: code refresh. · 35c77b73
  由 Andy Polyakov 提交于 2月 14, 2013
  
  35c77b73
14 2月, 2013 4 次提交
- A
  
  ghash-x86[_64].pl: code refresh. · 273a8081
  由 Andy Polyakov 提交于 2月 14, 2013
  
  273a8081
- A
  
  [aesni-]sha1-x86_64.pl: code refresh. · 7c9e81be
  由 Andy Polyakov 提交于 2月 14, 2013
  
  7c9e81be
- A
  
  sha512-x86_64.pl: add AVX2 code path. · c4558efb
  由 Andy Polyakov 提交于 2月 14, 2013
  
  c4558efb
- A
  
  bn_nist.c: work around clang 3.0 bug. · 750398ac
  由 Andy Polyakov 提交于 2月 14, 2013
  
  750398ac
13 2月, 2013 1 次提交

Upate FAQ. · 2527b94f

由 Dr. Stephen Henson 提交于 2月 12, 2013

Add description of "allocate and encode" operation for ASN1 routines.

Document how versioning will for after the letter release reaches
y.

2527b94f

12 2月, 2013 3 次提交
- D
  Check DTLS_BAD_VER for version number. · d980abb2
  由 David Woodhouse 提交于 2月 12, 2013
```
The version check for DTLS1_VERSION was redundant as
DTLS1_VERSION > TLS1_1_VERSION, however we do need to
check for DTLS1_BAD_VER for compatibility.

PR:2984
```
  d980abb2
- D
  Fix in ssltest is no-ssl2 configured · b7c37f2f
  由 Dr. Stephen Henson 提交于 2月 11, 2013
```
(cherry picked from commit cbf9b4aed3e209fe8a39e1d6f55aaf46d1369dc4)
```
  b7c37f2f
- D
  
  update FAQ · 7e47a695
  由 Dr. Stephen Henson 提交于 2月 11, 2013
  
  7e47a695
11 2月, 2013 2 次提交
- L
  FAQ/README: we are now using Git instead of CVS · 9fa24352
  由 Lutz Jaenicke 提交于 2月 11, 2013
```
(cherry picked from commit f88dbb8385c199a2a28e9525c6bba3a64bda96af)
```
  9fa24352
- A
  
  sparccpuid.S: work around emulator bug on T1. · 3caeef94
  由 Andy Polyakov 提交于 2月 11, 2013
  
  3caeef94
09 2月, 2013 1 次提交
- A
  
  s3_cbc.c: make CBC_MAC_ROTATE_IN_PLACE universal. · f93a4187
  由 Andy Polyakov 提交于 2月 08, 2013
  
  f93a4187
08 2月, 2013 4 次提交
- A
  
  s3_cbc.c: get rid of expensive divisions. · c98a4545
  由 Andy Polyakov 提交于 2月 08, 2013
  
  c98a4545
- A
  
  s3_cbc.c: fix warning [in Windows build]. · 0e4f7045
  由 Andy Polyakov 提交于 2月 08, 2013
  
  0e4f7045
- A
  e_aes_cbc_hmac_sha1.c: align calculated MAC at cache line. · 2141e6f3
  由 Andy Polyakov 提交于 2月 08, 2013
```
It also ensures that valgring is happy.
```
  2141e6f3
- A
  ssl/*: revert "remove SSL_RECORD->orig_len" and merge "fix IV". · dd7e60bd
  由 Andy Polyakov 提交于 2月 08, 2013
```
Revert is appropriate because binary compatibility is not an issue
in 1.1.
```
  dd7e60bd
07 2月, 2013 1 次提交

Fix for EXP-RC2-CBC-MD5 · 32620fe9

由 Adam Langley 提交于 2月 06, 2013

MD5 should use little endian order. Fortunately the only ciphersuite
affected is EXP-RC2-CBC-MD5 (TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5) which
is a rarely used export grade ciphersuite.
(cherry picked from commit f306b87d766e6ecf30824635c7c395b67cff9dbc)

32620fe9

06 2月, 2013 15 次提交

A
e_aes_cbc_hmac_sha1.c: cleanse temporary copy of HMAC secret. · 1041ab69
由 Andy Polyakov 提交于 2月 03, 2013
```
(cherry picked from commit 529d27ea472fc2c7ba9190a15a58cb84012d4ec6)
```
1041ab69

e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues. · 9970308c

由 Andy Polyakov 提交于 2月 02, 2013

Address CBC decrypt timing issues and reenable the AESNI+SHA1 stitch.
(cherry picked from commit 125093b59f3c2a2d33785b5563d929d0472f1721)

9970308c

ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility. · 2aec073a

由 Andy Polyakov 提交于 2月 01, 2013

Kludge alert. This is arranged by passing padding length in unused
bits of SSL3_RECORD->type, so that orig_len can be reconstructed.
(cherry picked from commit 8bfd4c659f180a6ce34f21c0e62956b362067fba)

2aec073a

D
Don't access EVP_MD_CTX internals directly. · b714a1fe
由 Dr. Stephen Henson 提交于 2月 01, 2013
```
(cherry picked from commit 04e45b52ee3be81121359cc1198fd01e38096e9f)
```
b714a1fe
A
s3/s3_cbc.c: allow for compilations with NO_SHA256|512. · bbb4ee85
由 Andy Polyakov 提交于 2月 01, 2013
```
(cherry picked from commit d5371324d978e4096bf99b9d0fe71b2cb65d9dc8)
```
bbb4ee85

ssl/s3_cbc.c: md_state alignment portability fix. · 4af91ec0

由 Andy Polyakov 提交于 2月 01, 2013

RISCs are picky and alignment granted by compiler for md_state can be
insufficient for SHA512.
(cherry picked from commit 36260233e7e3396feed884d3f501283e0453c04f)

4af91ec0

ssl/s3_cbc.c: uint64_t portability fix. · 6b2a8439

由 Andy Polyakov 提交于 2月 01, 2013

Break dependency on uint64_t. It's possible to declare bits as
unsigned int, because TLS packets are limited in size and 32-bit
value can't overflow.
(cherry picked from commit cab13fc8473856a43556d41d8dac5605f4ba1f91)

6b2a8439

typo. · 6b1f7bee

由 Dr. Stephen Henson 提交于 1月 31, 2013

(cherry picked from commit 34ab3c8c711ff79c2b768f0b17e4b2a78fd1df5d)

6b1f7bee

D
Add ordinal for CRYPTO_memcmp: since this will affect multiple · 8109e830
由 Dr. Stephen Henson 提交于 1月 31, 2013
```
branches it needs to be in a "gap".
(cherry picked from commit 81ce0e14e72e8e255ad1bd9c7cfaa47a6291919c)
```
8109e830

Timing fix mitigation for FIPS mode. · c4e6fb15

由 Dr. Stephen Henson 提交于 1月 29, 2013

We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to EVP_DigestSignUpdate to hash additonal blocks
to cover any timing differences caused by removal of padding.
(cherry picked from commit b908e88ec15aa0a74805e3f2236fc4f83f2789c2)

c4e6fb15

B
Oops. Add missing file. · a693ead6
由 Ben Laurie 提交于 1月 28, 2013
```
(cherry picked from commit 014265eb02e26f35c8db58e2ccbf100b0b2f0072)
```
a693ead6

Update DTLS code to match CBC decoding in TLS. · e33ac0e7

由 Ben Laurie 提交于 1月 28, 2013

This change updates the DTLS code to match the constant-time CBC
behaviour in the TLS.
(cherry picked from commit 9f27de170d1b7bef3d46d41382dc4dafde8b3900)

e33ac0e7

Don't crash when processing a zero-length, TLS >= 1.1 record. · 93cab6b3

由 Ben Laurie 提交于 1月 28, 2013

The previous CBC patch was bugged in that there was a path through enc()
in s3_pkt.c/d1_pkt.c which didn't set orig_len. orig_len would be left
at the previous value which could suggest that the packet was a
sufficient length when it wasn't.
(cherry picked from commit 6cb19b7681f600b2f165e4adc57547b097b475fd)

93cab6b3

Make CBC decoding constant time. · 2acc020b

由 Ben Laurie 提交于 1月 28, 2013

This patch makes the decoding of SSLv3 and TLS CBC records constant
time. Without this, a timing side-channel can be used to build a padding
oracle and mount Vaudenay's attack.

This patch also disables the stitched AESNI+SHA mode pending a similar
fix to that code.

In order to be easy to backport, this change is implemented in ssl/,
rather than as a generic AEAD mode. In the future this should be changed
around so that HMAC isn't in ssl/, but crypto/ as FIPS expects.
(cherry picked from commit e130841bccfc0bb9da254dc84e23bc6a1c78a64e)

2acc020b

Add and use a constant-time memcmp. · 7c770d57

由 Ben Laurie 提交于 1月 28, 2013

This change adds CRYPTO_memcmp, which compares two vectors of bytes in
an amount of time that's independent of their contents. It also changes
several MAC compares in the code to use this over the standard memcmp,
which may leak information about the size of a matching prefix.
(cherry picked from commit 2ee798880a246d648ecddadc5b91367bee4a5d98)

7c770d57

OpenHarmony / Third Party Openssl 大约 1 年 前同步成功

OpenHarmony / Third Party Openssl
大约 1 年前同步成功