Loading CHANGES +22 −0 Original line number Original line Diff line number Diff line Loading @@ -4,6 +4,18 @@ Changes between 0.9.7b and 0.9.7c [xx XXX 2003] Changes between 0.9.7b and 0.9.7c [xx XXX 2003] *) Fix various bugs revealed by running the NISCC test suite: Stop out of bounds reads in the ASN1 code when presented with invalid tags (CAN-2003-0543 and CAN-2003-0544). Free up ASN1_TYPE correctly if ANY type is invalid (CAN-2003-0545). If verify callback ignores invalid public key errors don't try to check certificate signature with the NULL public key. [Steve Henson] *) New -ignore_err option in ocsp application to stop the server *) New -ignore_err option in ocsp application to stop the server exiting on the first error in a request. exiting on the first error in a request. [Steve Henson] [Steve Henson] Loading Loading @@ -1982,6 +1994,16 @@ des-cbc 3624.96k 5258.21k 5530.91k 5624.30k 5628.26k Changes between 0.9.6j and 0.9.6k [xx XXX 2003] Changes between 0.9.6j and 0.9.6k [xx XXX 2003] *) Fix various bugs revealed by running the NISCC test suite: Stop out of bounds reads in the ASN1 code when presented with invalid tags (CAN-2003-0543 and CAN-2003-0544). If verify callback ignores invalid public key errors don't try to check certificate signature with the NULL public key. [Steve Henson] *) In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate *) In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate if the server requested one: as stated in TLS 1.0 and SSL 3.0 if the server requested one: as stated in TLS 1.0 and SSL 3.0 specifications. specifications. Loading crypto/asn1/asn1_lib.c +2 −0 Original line number Original line Diff line number Diff line Loading @@ -104,10 +104,12 @@ int ASN1_get_object(unsigned char **pp, long *plength, int *ptag, int *pclass, l<<=7L; l<<=7L; l|= *(p++)&0x7f; l|= *(p++)&0x7f; if (--max == 0) goto err; if (--max == 0) goto err; if (l > (INT_MAX >> 7L)) goto err; } } l<<=7L; l<<=7L; l|= *(p++)&0x7f; l|= *(p++)&0x7f; tag=(int)l; tag=(int)l; if (--max == 0) goto err; } } else else { { Loading crypto/asn1/tasn_dec.c +8 −1 Original line number Original line Diff line number Diff line Loading @@ -691,6 +691,7 @@ static int asn1_d2i_ex_primitive(ASN1_VALUE **pval, unsigned char **in, long inl int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char *free_cont, const ASN1_ITEM *it) int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char *free_cont, const ASN1_ITEM *it) { { ASN1_VALUE **opval = NULL; ASN1_STRING *stmp; ASN1_STRING *stmp; ASN1_TYPE *typ = NULL; ASN1_TYPE *typ = NULL; int ret = 0; int ret = 0; Loading @@ -705,6 +706,7 @@ int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char *pval = (ASN1_VALUE *)typ; *pval = (ASN1_VALUE *)typ; } else typ = (ASN1_TYPE *)*pval; } else typ = (ASN1_TYPE *)*pval; if(utype != typ->type) ASN1_TYPE_set(typ, utype, NULL); if(utype != typ->type) ASN1_TYPE_set(typ, utype, NULL); opval = pval; pval = (ASN1_VALUE **)&typ->value.ptr; pval = (ASN1_VALUE **)&typ->value.ptr; } } switch(utype) { switch(utype) { Loading Loading @@ -796,7 +798,12 @@ int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char ret = 1; ret = 1; err: err: if(!ret) ASN1_TYPE_free(typ); if(!ret) { ASN1_TYPE_free(typ); if (opval) *opval = NULL; } return ret; return ret; } } Loading crypto/x509/x509_vfy.c +1 −1 Original line number Original line Diff line number Diff line Loading @@ -674,7 +674,7 @@ static int internal_verify(X509_STORE_CTX *ctx) ok=(*cb)(0,ctx); ok=(*cb)(0,ctx); if (!ok) goto end; if (!ok) goto end; } } if (X509_verify(xs,pkey) <= 0) else if (X509_verify(xs,pkey) <= 0) /* XXX For the final trusted self-signed cert, /* XXX For the final trusted self-signed cert, * this is a waste of time. That check should * this is a waste of time. That check should * optional so that e.g. 'openssl x509' can be * optional so that e.g. 'openssl x509' can be Loading Loading
CHANGES +22 −0 Original line number Original line Diff line number Diff line Loading @@ -4,6 +4,18 @@ Changes between 0.9.7b and 0.9.7c [xx XXX 2003] Changes between 0.9.7b and 0.9.7c [xx XXX 2003] *) Fix various bugs revealed by running the NISCC test suite: Stop out of bounds reads in the ASN1 code when presented with invalid tags (CAN-2003-0543 and CAN-2003-0544). Free up ASN1_TYPE correctly if ANY type is invalid (CAN-2003-0545). If verify callback ignores invalid public key errors don't try to check certificate signature with the NULL public key. [Steve Henson] *) New -ignore_err option in ocsp application to stop the server *) New -ignore_err option in ocsp application to stop the server exiting on the first error in a request. exiting on the first error in a request. [Steve Henson] [Steve Henson] Loading Loading @@ -1982,6 +1994,16 @@ des-cbc 3624.96k 5258.21k 5530.91k 5624.30k 5628.26k Changes between 0.9.6j and 0.9.6k [xx XXX 2003] Changes between 0.9.6j and 0.9.6k [xx XXX 2003] *) Fix various bugs revealed by running the NISCC test suite: Stop out of bounds reads in the ASN1 code when presented with invalid tags (CAN-2003-0543 and CAN-2003-0544). If verify callback ignores invalid public key errors don't try to check certificate signature with the NULL public key. [Steve Henson] *) In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate *) In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate if the server requested one: as stated in TLS 1.0 and SSL 3.0 if the server requested one: as stated in TLS 1.0 and SSL 3.0 specifications. specifications. Loading
crypto/asn1/asn1_lib.c +2 −0 Original line number Original line Diff line number Diff line Loading @@ -104,10 +104,12 @@ int ASN1_get_object(unsigned char **pp, long *plength, int *ptag, int *pclass, l<<=7L; l<<=7L; l|= *(p++)&0x7f; l|= *(p++)&0x7f; if (--max == 0) goto err; if (--max == 0) goto err; if (l > (INT_MAX >> 7L)) goto err; } } l<<=7L; l<<=7L; l|= *(p++)&0x7f; l|= *(p++)&0x7f; tag=(int)l; tag=(int)l; if (--max == 0) goto err; } } else else { { Loading
crypto/asn1/tasn_dec.c +8 −1 Original line number Original line Diff line number Diff line Loading @@ -691,6 +691,7 @@ static int asn1_d2i_ex_primitive(ASN1_VALUE **pval, unsigned char **in, long inl int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char *free_cont, const ASN1_ITEM *it) int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char *free_cont, const ASN1_ITEM *it) { { ASN1_VALUE **opval = NULL; ASN1_STRING *stmp; ASN1_STRING *stmp; ASN1_TYPE *typ = NULL; ASN1_TYPE *typ = NULL; int ret = 0; int ret = 0; Loading @@ -705,6 +706,7 @@ int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char *pval = (ASN1_VALUE *)typ; *pval = (ASN1_VALUE *)typ; } else typ = (ASN1_TYPE *)*pval; } else typ = (ASN1_TYPE *)*pval; if(utype != typ->type) ASN1_TYPE_set(typ, utype, NULL); if(utype != typ->type) ASN1_TYPE_set(typ, utype, NULL); opval = pval; pval = (ASN1_VALUE **)&typ->value.ptr; pval = (ASN1_VALUE **)&typ->value.ptr; } } switch(utype) { switch(utype) { Loading Loading @@ -796,7 +798,12 @@ int asn1_ex_c2i(ASN1_VALUE **pval, unsigned char *cont, int len, int utype, char ret = 1; ret = 1; err: err: if(!ret) ASN1_TYPE_free(typ); if(!ret) { ASN1_TYPE_free(typ); if (opval) *opval = NULL; } return ret; return ret; } } Loading
crypto/x509/x509_vfy.c +1 −1 Original line number Original line Diff line number Diff line Loading @@ -674,7 +674,7 @@ static int internal_verify(X509_STORE_CTX *ctx) ok=(*cb)(0,ctx); ok=(*cb)(0,ctx); if (!ok) goto end; if (!ok) goto end; } } if (X509_verify(xs,pkey) <= 0) else if (X509_verify(xs,pkey) <= 0) /* XXX For the final trusted self-signed cert, /* XXX For the final trusted self-signed cert, * this is a waste of time. That check should * this is a waste of time. That check should * optional so that e.g. 'openssl x509' can be * optional so that e.g. 'openssl x509' can be Loading
