- Mar 12, 2012
-
-
Dr. Stephen Henson authored
continue with symmetric decryption process to avoid leaking timing information to an attacker. Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering this issue. (CVE-2012-0884)
-
Dr. Stephen Henson authored
-
- Mar 11, 2012
-
-
Dr. Stephen Henson authored
Submitted by: Dmitry Belyavsky <beldmit@gmail.com> CMS support for ccgost engine
-
- Mar 09, 2012
-
-
Dr. Stephen Henson authored
Add more extension names in s_cb.c extension printing code.
-
Dr. Stephen Henson authored
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Fix DTLS timeout handling.
-
- Mar 08, 2012
-
-
Dr. Stephen Henson authored
-
- Mar 06, 2012
-
-
Dr. Stephen Henson authored
extensions to s_client and s_server to print out retrieved valued. Extend CERT structure to cache supported signature algorithm data.
-
Dr. Stephen Henson authored
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Reduce MTU after failed transmissions.
-
Dr. Stephen Henson authored
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Fix possible DTLS timer deadlock.
-
- Mar 05, 2012
-
-
Dr. Stephen Henson authored
-
- Mar 03, 2012
-
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Andy Polyakov authored
reference implementation, it does not interface to OpenSSL yet.
-
- Feb 29, 2012
-
-
Dr. Stephen Henson authored
Reported by: Dmitry Belyavsky <beldmit@gmail.com> Fix memory leak if invalid GOST MAC key given.
-
Dr. Stephen Henson authored
Reported by: Dmitry Belyavsky <beldmit@gmail.com> If resigning with detached content in CMS just copy data across.
-
- Feb 28, 2012
-
-
Dr. Stephen Henson authored
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
-
Andy Polyakov authored
-
- Feb 27, 2012
-
-
Dr. Stephen Henson authored
Reported by: Remi Gacogne <rgacogne-bugs@coredump.fr> Preserve unused bits value in non-canonicalised ASN1_STRING structures by using ASN1_STRING_copy which preseves flags.
-
Dr. Stephen Henson authored
Submitted by: Remi Gacogne <rgacogne-bugs@coredump.fr> Fix double free in PKCS12_parse if we run out of memory.
-
Dr. Stephen Henson authored
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> Fix padding bugs in Heartbeat support.
-
Dr. Stephen Henson authored
Make cryptodev digests work. Thanks to Nikos Mavrogiannopoulos for this fix.
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
-
- Feb 26, 2012
-
-
Andy Polyakov authored
following reasons: - it's not the way to engage XPG4v2 mode, defining _XOPEN_SOURCE to value less than 500 is (see standards(5)); - we need to work out strategy to handle _XOPEN_SOURCE, current state when we define e.g. _XOPEN_SOURCE to 500 in some files is inappropriate; - sctp implementation on Solaris is incomplete, in sense that bss_dgram.c doesn't compile, because not all structures are defined, so that enabling sctp doesn't work anyway;
-
Andy Polyakov authored
flags, because SS is defined after inclusion of <stdlib.h>, in <sys/regset.h>
-
- Feb 25, 2012
-
-
Dr. Stephen Henson authored
Submitted by: Arpadffy Zoltan <Zoltan.Arpadffy@scientificgames.se> VMS fixes: disable SCTP by default.
-
- Feb 23, 2012
-
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
Submitted by: Tomas Mraz <tmraz@redhat.com> Tolerate bad MIME headers in parser.
-
Dr. Stephen Henson authored
Submitted by: Rob Austein <sra@hactrn.net> Fix inverted range problem in RFC3779 code. Thanks to Andrew Chi for generating test cases for this bug.
-
Dr. Stephen Henson authored
Submitted by: Bruce Stephens <bruce.stephens@isode.com> Use same construct for EXHEADER in srp/Makefile as other makefiles to cope with possibly empty EXHEADER.
-
- Feb 22, 2012
-
-
Dr. Stephen Henson authored
Move new structure fields to end of structures.
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Feb 21, 2012
-
-
Dr. Stephen Henson authored
between NIDs and the more common NIST names such as "P-256". Enhance ecparam utility and ECC method to recognise the NIST names for curves.
-
- Feb 16, 2012
-
-
Dr. Stephen Henson authored
before rejecting multiple SGC restarts.
-
- Feb 15, 2012
-
-
Dr. Stephen Henson authored
Update RSA EVP_PKEY_METHOD to use the OCTET STRING form of MDC2 signature: this will make all versions of MDC2 signature equivalent.
-
Dr. Stephen Henson authored
signatures and MDC2 using EVP or RSA_sign. This has become more apparent when the dgst utility in OpenSSL 1.0.0 and later switched to using the EVP_DigestSign functions which call RSA_sign. This means that the signature format OpenSSL 1.0.0 and later used with dgst -sign and MDC2 is incompatible with previous versions. Add detection in RSA_verify so either format works. Note: MDC2 is disabled by default in OpenSSL and very rarely used in practice.
-
- Feb 12, 2012
-
-
Dr. Stephen Henson authored
Submitted by: Tomas Mraz <tmraz@redhat.com> Move libraries that are not needed for dynamic linking to Libs.private in the .pc files
-
- Feb 11, 2012
-
-
Dr. Stephen Henson authored
Submitted by: Tim Rice <tim@multitalents.net> Make compilation work on OpenServer 5.0.7
-
Dr. Stephen Henson authored
Submitted by: Adam Langley <agl@google.com> Fix handling of exporter return value and use OpenSSL indentation in s_client, s_server.
-