Commits · 04dbf0272e0df5d6b68c1cf277d2dd505f8e8e11 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Jan 25, 2010
- Forgot to correct the definition of __arch in this file. · 04dbf027
  Richard Levitte authored Jan 25, 2010
```
Submitted by Steven M. Schweda <sms@antinode.info>
```
  04dbf027
- It seems like sslroot: needs to be defined for some tests to work. · d15dd388
  Richard Levitte authored Jan 25, 2010
```
Submitted by Steven M. Schweda <sms@antinode.info>
```
  d15dd388
- Compile t1_reneg on VMS as well. · c3502985
  Richard Levitte authored Jan 25, 2010
```
Submitted by Steven M. Schweda <sms@antinode.info>
```
  c3502985
- A few more macros for long symbols. · 6fa0608e
  Richard Levitte authored Jan 25, 2010
```
Submitted by Steven M. Schweda <sms@antinode.info>
```
  6fa0608e
Jan 24, 2010
- ia64cpuid.S: OPENSSL_cleanse to accept zero length parameter. · 3f2a98ac
  Andy Polyakov authored Jan 24, 2010
  
  3f2a98ac
- PR: 2153, 2125 · bc120a54
  Dr. Stephen Henson authored Jan 24, 2010
```
Submitted by: steve@openssl.org

The original fix for PR#2125 broke compilation on some Unixware platforms:
revert and make conditional on VMS.
```
  bc120a54
- pariscid.pl: OPENSSL_cleanse to compile on PA-RISC 2.0W and to accept zero · 82a66ce3
  Andy Polyakov authored Jan 24, 2010
```
length parameter.
```
  82a66ce3
- OPENSSL_cleanse to accept zero length parameter [matching C implementation]. · 7676eebf
  Andy Polyakov authored Jan 24, 2010
  
  7676eebf
- The fix for PR#1949 unfortunately broke cases where the BIO_CTRL_WPENDING · 21a5c040
  Dr. Stephen Henson authored Jan 24, 2010
```
ctrl is incorrectly implemented (e.g. some versions of Apache). As a workaround
call both BIO_CTRL_INFO and BIO_CTRL_WPENDING if it returns zero. This should
both address the original bug and retain compatibility with the old behaviour.
```
  21a5c040
Jan 22, 2010
- Tolerate PKCS#8 DSA format with negative private key. · ba64ae6c
  Dr. Stephen Henson authored Jan 22, 2010
  
  ba64ae6c
- If legacy renegotiation is not permitted then send a fatal alert if a patched · 3a88efd4
  Dr. Stephen Henson authored Jan 22, 2010
```
server attempts to renegotiate with an unpatched client.
```
  3a88efd4
Jan 21, 2010
- typo · 3243698f
  Dr. Stephen Henson authored Jan 21, 2010
  
  3243698f
- fix comments · 55f39a19
  Dr. Stephen Henson authored Jan 21, 2010
  
  55f39a19
Jan 20, 2010
- oops · 49371e3a
  Dr. Stephen Henson authored Jan 20, 2010
  
  49371e3a
- update NEWS file · eb125795
  Dr. Stephen Henson authored Jan 20, 2010
  
  eb125795
- Update demo · 3ec5f38b
  Dr. Stephen Henson authored Jan 20, 2010
  
  3ec5f38b
- Support -L options in VC++ link. · a70e377f
  Dr. Stephen Henson authored Jan 20, 2010
  
  a70e377f
Jan 19, 2010
- rand_win.c: fix time limit logic. · b3020393
  Andy Polyakov authored Jan 19, 2010
  
  b3020393
- The use of NIDs in the password based encryption table can result in · 071ef65c
  Dr. Stephen Henson authored Jan 19, 2010
```
algorithms not found when an application uses PKCS#12 and only calls
SSL_library_init() instead of OpenSSL_add_all_algorithms(). Simple
work around is to add the missing algorithm (40 bit RC2) in
SSL_library_init().
```
  071ef65c
- PR: 2141 · d5e8d8b5
  Dr. Stephen Henson authored Jan 19, 2010
```
Submitted by: "NARUSE, Yui" <naruse@airemix.jp>

Remove non-ASCII comment which causes compilation errors on some versions
of VC++.
```
  d5e8d8b5
- PR: 2144 · 0debb681
  Dr. Stephen Henson authored Jan 19, 2010
```
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>

Better fix for PR#2144
```
  0debb681
- Enable PA-RISC assembler in Configure (feedback from PA-RISC 2.0 is still · 46c42e78
  Andy Polyakov authored Jan 19, 2010
```
needed).
```
  46c42e78
- x86_64-xlate.pl: refine sign extension logic when handling lea. · ee2b8ed2
  Andy Polyakov authored Jan 19, 2010
```
PR: 2094,2095
```
  ee2b8ed2
- rand_win.c: handle GetTickCount wrap-around. · 7a6e0901
  Andy Polyakov authored Jan 19, 2010
  
  7a6e0901
- s390x assembler update: add support for run-time facility detection. · 91fdacb2
  Andy Polyakov authored Jan 19, 2010
  
  91fdacb2
Jan 17, 2010
- apps/speed.c: limit loop counters to 2^31 in order to avoid overflows · d582c98d
  Andy Polyakov authored Jan 17, 2010
```
in performance calculations. For the moment there is only one code
fast enough to suffer from this: Intel AES-NI engine.
PR: 2096
```
  d582c98d
- Minor updates to ppccap.c and ppccpuid.pl. · 78a533cb
  Andy Polyakov authored Jan 17, 2010
  
  78a533cb
- bn_lcl.h: add MIPS III-specific BN_UMULT_LOHI as alternative to porting · 4f385652
  Andy Polyakov authored Jan 17, 2010
```
crypto/bn/asm/mips3.s from IRIX. Performance improvement is not as
impressive as with complete assembler, but still... it's almost 2.5x
[on R5000].
```
  4f385652
- ia64-mont.pl: add shorter vector support ("shorter" refers to 512 bits and · 4407700c
  Andy Polyakov authored Jan 17, 2010
```
less).
```
  4407700c
Jan 16, 2010

PR: 2135 · 72a9776a

Dr. Stephen Henson authored Jan 16, 2010

Submitted by: Mike Frysinger <vapier@gentoo.org>

Change missed references to lib to $(LIBDIR)

72a9776a

PR: 2144 · 8d39d280

Dr. Stephen Henson authored Jan 16, 2010

Submitted by: steve@openssl.org

Fix DTLS connection so new_session is reset if we read second client hello:
new_session is used to detect renegotiation.

8d39d280

PR: 2133 · 598b562a
Dr. Stephen Henson authored Jan 16, 2010
```
Submitted by: steve@openssl.org

Add missing DTLS state strings.
```
598b562a

Jan 15, 2010
- convert to Unix EOL form · dac40f87
  Dr. Stephen Henson authored Jan 15, 2010
  
  dac40f87
- make update · 031c7890
  Dr. Stephen Henson authored Jan 15, 2010
  
  031c7890
Jan 14, 2010

PR: 2125 · ce1ec9c3

Dr. Stephen Henson authored Jan 14, 2010

Submitted by: "Alon Bar-Lev" <alon.barlev@gmail.com>

Fix gcc-aix compilation issue.

ce1ec9c3

Jan 13, 2010

Fix version handling so it can cope with a major version >3. · bd5f21a4

Dr. Stephen Henson authored Jan 13, 2010

Although it will be many years before TLS v2.0 or later appears old versions
of servers have a habit of hanging around for a considerable time so best
if we handle this properly now.

bd5f21a4

Modify compression code so it avoids using ex_data free functions. This · 1b31b5ad
Dr. Stephen Henson authored Jan 13, 2010
```
stops applications that call CRYPTO_free_all_ex_data() prematurely leaking
memory.
```
1b31b5ad

Jan 12, 2010

update and sync ordinals · 97438f38
Dr. Stephen Henson authored Jan 12, 2010

97438f38

PR: 2136 · 0e0c6821

Dr. Stephen Henson authored Jan 12, 2010

Submitted by: Willy Weisz <weisz@vcpc.univie.ac.at>

Add options to output hash using older algorithm compatible with OpenSSL
versions before 1.0.0

0e0c6821

Jan 07, 2010
- Simplify RI+SCSV logic: · 423c66f1
  Dr. Stephen Henson authored Jan 07, 2010
```
1. Send SCSV is not renegotiating, never empty RI.
2. Send RI if renegotiating.
```
  423c66f1