Commits · 12c1621523d001db9b7ae1bab8c29d75208b9a6d · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Aug 16, 2012
- Enable message names for TLS 1.1, 1.2 with -msg. · 12c16215
  Bodo Möller authored Aug 16, 2012
  
  12c16215
Aug 13, 2012
- gosthash.c: use memmove in circle_xor8, as input pointers can be equal · f9b48d60
  Andy Polyakov authored Aug 13, 2012
```
[from HEAD].

PR: 2858
```
  f9b48d60
- ./Configure: libcrypto.a can grow to many GB on Solaris 10, because of ar bug · 5c291276
  Andy Polyakov authored Aug 13, 2012
```
[from HEAD].

PR: 2838
```
  5c291276
- gcm128.c: fix AAD-only case with AAD length not divisible by 16 [from HEAD]. · 78d767f5
  Andy Polyakov authored Aug 13, 2012
```
PR: 2859
Submitted by: John Foley
```
  78d767f5
Jul 05, 2012
- Add evp_cnf in the build. · c8b979e9
  Richard Levitte authored Jul 05, 2012
  
  c8b979e9
- update NEWS · 2beaa91c
  Dr. Stephen Henson authored Jul 05, 2012
  
  2beaa91c
- Have the new names start in column 48, that makes it easy to see when · efa288ce
  Richard Levitte authored Jul 05, 2012
```
the 31 character limit is reached (on a 80 column display, do the math)
```
  efa288ce
- Cosmetics: remove duplicate symbol in crypto/symhacks.h · ad3bbd4a
  Richard Levitte authored Jul 05, 2012
  
  ad3bbd4a
Jul 04, 2012
- add missing evp_cnf.c file · 73913443
  Dr. Stephen Henson authored Jul 04, 2012
  
  73913443
Jul 03, 2012

PR: 2840 · e133ff71

Dr. Stephen Henson authored Jul 03, 2012

Reported by: David McCullough <david_mccullough@mcafee.com>

Restore fips configuration module from 0.9.8.

e133ff71

Fix memory leak. · 25da47c3

Dr. Stephen Henson authored Jul 03, 2012

Always perform nexproto callback argument initialisation in s_server
otherwise we use uninitialised data if -nocert is specified.

25da47c3

Jul 01, 2012
- Unused variable. · 4dc40f5e
  Ben Laurie authored Jul 01, 2012
  
  4dc40f5e
- bss_dgram.c: fix typos in Windows code. · a1a37575
  Andy Polyakov authored Jul 01, 2012
  
  a1a37575
Jun 27, 2012
- don't use pseudo digests for default values of keys · c64c0e03
  Dr. Stephen Henson authored Jun 27, 2012
  
  c64c0e03
- x86_64 assembly pack: make it possible to compile with Perl located · e1e882a3
  Andy Polyakov authored Jun 27, 2012
```
on path with spaces [from HEAD].

PR: 2835
```
  e1e882a3
Jun 19, 2012
- oops, add -debug_decrypt option which was accidenatally left out · 36b07197
  Dr. Stephen Henson authored Jun 19, 2012
  
  36b07197
- bss_dgram.c: fix bugs [from HEAD]. · 7655044d
  Andy Polyakov authored Jun 19, 2012
```
PR: 2833
```
  7655044d
Jun 10, 2012
- revert more "version skew" changes that break FIPS builds · 58fdd306
  Dr. Stephen Henson authored Jun 10, 2012
  
  58fdd306
Jun 09, 2012
- Revert "version skew" patches that break FIPS compilation. · 7175dbae
  Dr. Stephen Henson authored Jun 09, 2012
  
  7175dbae
Jun 08, 2012
- Reduce version skew. · af454b5b
  Ben Laurie authored Jun 08, 2012
  
  af454b5b
May 16, 2012
- s2_clnt.c: compensate for compiler bug [from HEAD]. · 5b2bbf37
  Andy Polyakov authored May 16, 2012
  
  5b2bbf37
- ppccap.c: assume no features under 32-bit AIX kernel [from HEAD]. · 6321ac9e
  Andy Polyakov authored May 16, 2012
```
PR: 2810
```
  6321ac9e
May 11, 2012

PR: 2813 · eeca72f7

Dr. Stephen Henson authored May 11, 2012

Reported by: Constantine Sapuntzakis <csapuntz@gmail.com>

Fix possible deadlock when decoding public keys.

eeca72f7

PR: 2811 · 6e164e5c

Dr. Stephen Henson authored May 11, 2012

Reported by: Phil Pennock <openssl-dev@spodhuis.org>

Make renegotiation work for TLS 1.2, 1.1 by not using a lower record
version client hello workaround if renegotiating.

6e164e5c

May 10, 2012
- PR: 2806 · 1b452133
  Dr. Stephen Henson authored May 10, 2012
```
Submitted by: PK <runningdoglackey@yahoo.com>

Correct ciphersuite signature algorithm definitions.
```
  1b452133
- prepare for next version · d9c34505
  Dr. Stephen Henson authored May 10, 2012
  
  d9c34505
- prepare for 1.0.1c release · f9885acc
  Dr. Stephen Henson authored May 10, 2012
  
  OpenSSL_1_0_1c
  
  f9885acc
- update NEWS · fa9df484
  Dr. Stephen Henson authored May 10, 2012
  
  fa9df484
- Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 and · d414a5a0
  Dr. Stephen Henson authored May 10, 2012
```
DTLS to fix DoS attack.

Thanks to Codenomicon for discovering this issue using Fuzz-o-Matic
fuzzing as a service testing platform.
(CVE-2012-2333)
```
  d414a5a0
- Don't forget to install srtp.h as well · 9eb4460e
  Richard Levitte authored May 10, 2012
  
  9eb4460e
- oops, revert unrelated change · 6984d166
  Dr. Stephen Henson authored May 10, 2012
  
  6984d166
- Reported by: Solar Designer of Openwall · 5b9d0995
  Dr. Stephen Henson authored May 10, 2012
```
Make sure tkeylen is initialised properly when encrypting CMS messages.
```
  5b9d0995
May 04, 2012
- Correct environment variable is OPENSSL_ALLOW_PROXY_CERTS. · 7ad8e1fc
  Richard Levitte authored May 04, 2012
  
  7ad8e1fc
Apr 27, 2012

ppccpuid.pl: branch hints in OPENSSL_cleanse impact small block performance · c9b31189

Andy Polyakov authored Apr 27, 2012

of digest algorithms, mosty SHA, on Power7. Mystery of century, why SHA,
why slower algorithm are affected more... [from HEAD].
PR: 2794
Submitted by: Ashley Lai

c9b31189

Apr 26, 2012
- Don't try to use unvalidated composite ciphers in FIPS mode · c76b7a1a
  Dr. Stephen Henson authored Apr 26, 2012
  
  c76b7a1a
- prepare for next version · c940e070
  Dr. Stephen Henson authored Apr 26, 2012
  
  c940e070
- make update · 88be4ebf
  Dr. Stephen Henson authored Apr 26, 2012
  
  OpenSSL_1_0_1b
  
  88be4ebf
- prepare for 1.0.1b release · effa47b8
  Dr. Stephen Henson authored Apr 26, 2012
  
  effa47b8
- update NEWS · 067400b1
  Dr. Stephen Henson authored Apr 26, 2012
  
  067400b1
- CHANGES: clarify. · 748628ce
  Andy Polyakov authored Apr 26, 2012
  
  748628ce