Commits · 00f5ee445b9b4c41b52ba2ac1800b3bf99afae0f · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Jun 22, 2014
- Revert "Fix off-by-one errors in ssl_cipher_get_evp()" · 00f5ee44
  Matt Caswell authored Jun 22, 2014
```
This reverts commit 3d860774.

Incorrect attribution.
```
  00f5ee44
- Fixed Windows compilation failure · e7911530
  Matt Caswell authored May 27, 2014
  
  e7911530
Jun 18, 2014
- Make sure test/tests.com exit gracefully, even when openssl.exe wasn't · 6ff73426
  Richard Levitte authored Jun 18, 2014
```
properly built.
```
  6ff73426
- Adjust VMS build to Unix build. Most of all, make it so the disabled · a61e509e
  Richard Levitte authored Jun 17, 2014
```
algorithms MD2 and RC5 don't get built.
Also, disable building the test apps in crypto/des and crypto/pkcs7, as
they have no support at all.
```
  a61e509e
Jun 17, 2014
- Fix signed/unsigned comparisons. · 1b823494
  Felix Laurie von Massenbach authored Jun 15, 2014
```
(cherry picked from commit 50cc4f7b)
```
  1b823494
- Fix shadow declaration. · 6657e68b
  Felix Laurie von Massenbach authored Jun 15, 2014
```
(cherry picked from commit 1f61d8b5)
```
  6657e68b
- Remove unused DANE macros. This should be the last DANE stuff... · 23351c60
  Richard Levitte authored Jun 17, 2014
  
  23351c60
Jun 16, 2014
- DCL doesn't do well with empty lines, or lines starting with # · 9a6112d1
  Richard Levitte authored Jun 16, 2014
  
  9a6112d1
- Spaces were added in some strings for better readability. However, those... · b9c0dae2
  Richard Levitte authored Jun 16, 2014
```
Spaces were added in some strings for better readability.  However, those spaces do not belong in file names, so when picking out the individual parts, remove the spaces
```
  b9c0dae2
- aesni-sha[1|256]-x86_64.pl: fix logical error and MacOS X build. · d940b3b9
  Andy Polyakov authored Jun 16, 2014
```
(cherry picked from commit 9024b84b)
```
  d940b3b9
Jun 14, 2014
- Enforce _X509_CHECK_FLAG_DOT_SUBDOMAINS internal-only · cfbc10fb
  Viktor Dukhovni authored Jun 13, 2014
```
(cherry picked from commit d435e23959f1c2cb4feadbfba9ad884c59f37db9)
```
  cfbc10fb
- Accept CCS after sending finished. · 90d94ce3
  Dr. Stephen Henson authored Jun 14, 2014
```
Allow CCS after finished has been sent by client: at this point
keys have been correctly set up so it is OK to accept CCS from
server. Without this renegotiation can sometimes fail.

PR#3400
(cherry picked from commit 99cd6a91fcb0931feaebbb4832681d40a66fad41)
```
  90d94ce3
- evp/e_aes_cbc_sha[1|256].c: fix -DPEDANTIC build. · 79b960c0
  Andy Polyakov authored Jun 14, 2014
```
(cherry picked from commit ce00c64d)
```
  79b960c0
- Adjust VMS build files to the Unix ones · 66a6e2b2
  Richard Levitte authored Jun 14, 2014
  
  66a6e2b2
- Make sure that disabling the MAYLOSEDATA3 warning is only done when the · 1be1d051
  Richard Levitte authored Jun 14, 2014
```
compiler supports it.  Otherwise, there are warnings about it lacking
everywhere, which is quite tedious to read through while trying to check
for other warnings.
```
  1be1d051
- Update the VMS tests according to the latest unixly tests. · 9f8c1832
  Richard Levitte authored Jun 12, 2014
```
Partly provided by Zoltan Arpadffy <arpadffy@polarhome.com>
```
  9f8c1832
- aesni-sha256-x86_64.pl: add missing rex in shaext. · 8301245a
  Andy Polyakov authored Jun 14, 2014
```
PR: 3405
(cherry picked from commit 91a6bf80)
```
  8301245a
- sha1-x86_64.pl: add missing rex prefix in shaext. · 1f6d2076
  Andy Polyakov authored Jun 14, 2014
```
PR: 3405
(cherry picked from commit c9cf29cc)
```
  1f6d2076
Jun 13, 2014
- Fixed incorrect return code handling in ssl3_final_finish_mac. · 561ba124
  Matt Caswell authored Jun 10, 2014
```
Based on an original patch by Joel Sing (OpenBSD) who also originally identified the issue.
```
  561ba124
- Revert "Fixed incorrect return code handling in ssl3_final_finish_mac" · 7f133c35
  Matt Caswell authored Jun 13, 2014
```
This reverts commit 728bd41a.

Missing attribution.
```
  7f133c35
Jun 12, 2014
- Client-side namecheck wildcards. · 3cc8a3f2
  Viktor Dukhovni authored Jun 12, 2014
```
A client reference identity of ".example.com" matches a server
certificate presented identity that is any sub-domain of "example.com"
(e.g. "www.sub.example.com).

With the X509_CHECK_FLAG_SINGLE_LABEL_SUBDOMAINS flag, it matches
only direct child sub-domains (e.g. "www.sub.example.com").
(cherry picked from commit e52c52f10bb8e34aaf8f28f3e5b56939e8f6b357)
```
  3cc8a3f2
- Fix off-by-one errors in ssl_cipher_get_evp() · 3d860774
  Kurt Cancemi authored Jun 04, 2014
```
In the ssl_cipher_get_evp() function, fix off-by-one errors in index validation before accessing arrays.

PR#3375
```
  3d860774
- Facilitate back-porting of AESNI and SHA modules. · 56ba280c
  Andy Polyakov authored Jun 12, 2014
```
Fix SEH and stack handling in Win64 build.
(cherry picked from commit 977f32e8)
```
  56ba280c
- Added OPENSSL_assert check as per PR#3377 reported by Rainer Jung <rainer.jung@kippdata.de> · 955bfbc2
  Matt Caswell authored Jun 12, 2014
  
  955bfbc2
- remove some more DANE code · 2eab488c
  Dr. Stephen Henson authored Jun 12, 2014
  
  2eab488c
- make update · fa7a0efb
  Dr. Stephen Henson authored Jun 12, 2014
  
  fa7a0efb
- Fix Windows build. · 3fe8f005
  Dr. Stephen Henson authored Jun 12, 2014
  
  3fe8f005
- Remove unimplemented functions. · 5af09776
  Dr. Stephen Henson authored Jun 12, 2014
  
  5af09776
- Update the VMS build according to the latest unixly build. · 995d08d1
  Richard Levitte authored Jun 12, 2014
```
Partly provided by Zoltan Arpadffy <arpadffy@polarhome.com>
```
  995d08d1
- The 1.0.2 cms-test.pl had some changes that don't quite work on VMS... · ca422f35
  Richard Levitte authored Jun 12, 2014
  
  ca422f35
- Bring in the 1.0.1g to 1.0.1h changes into CHANGES. · 68a1e0bc
  Richard Levitte authored Jun 12, 2014
  
  68a1e0bc
- Small cleanup, double entry in CHANGES. · ed6c278f
  Richard Levitte authored Jun 12, 2014
  
  ed6c278f
Jun 11, 2014
- Enable multi-block support by default. · d85a772e
  Andy Polyakov authored Jun 11, 2014
```
(cherry picked from commit 77a27a50)
```
  d85a772e
- Fix compilation with no-comp · fb2f9f26
  Dr. Stephen Henson authored Jun 11, 2014
```
(cherry picked from commit 7239a09c7b5757ed8d0e9869f3e9b03c0e11f4d1)
```
  fb2f9f26
- ghash-x86_64.pl: optimize for upcoming Atom. · 66aeaec0
  Andy Polyakov authored Jun 11, 2014
```
(cherry picked from commit 1cf8f57b)
```
  66aeaec0
- Add support for Intel SHA extension. · 70fddbe3
  Andy Polyakov authored Jun 11, 2014
```
(cherry picked from commit 619b9466)
```
  70fddbe3
Jun 10, 2014
- Separate the SCT List parser from the SCT List viewer · 5fc3d333
  Rob Stradling authored May 12, 2014
```
(cherry picked from commit fd2309aa)
```
  5fc3d333
- Fixed incorrect return code handling in ssl3_final_finish_mac · 728bd41a
  Matt Caswell authored Jun 10, 2014
  
  728bd41a
- Engage GHASH for ARMv8. · 77fb5a30
  Andy Polyakov authored Jun 06, 2014
```
(cherry picked from commit 82741e9c)
```
  77fb5a30
- Add GHASH for ARMv8 Crypto Extension. · 7344089d
  Andy Polyakov authored Jun 06, 2014
```
Result of joint effort with Ard Biesheuvel.
(cherry picked from commit 2d5a799d)
```
  7344089d