Commits · 23b93b587b0ec48f6ec0c9ac0fbf86e05dc0dce5 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Jan 13, 2012
- aes-ppc.pl, sha512-ppc.pl: comply even with Embedded ABI specification · 23b93b58
  Andy Polyakov authored Jan 13, 2012
```
(most restrictive about r2 and r13 usage).
```
  23b93b58
Jan 12, 2012
- Sanitize usage of <ctype.h> functions. It's important that characters · a50bce82
  Andy Polyakov authored Jan 12, 2012
```
are passed zero-extended, not sign-extended.
PR: 2682
```
  a50bce82
- ec_pmeth.c: fix typo in commentary. · 713f4911
  Andy Polyakov authored Jan 12, 2012
```
PR: 2677
Submitted by: Annue Yousar
```
  713f4911
Jan 11, 2012
- doc/apps: formatting fixes. · 677741f8
  Andy Polyakov authored Jan 11, 2012
```
PR: 2683
Submitted by: Annie Yousar
```
  677741f8
- speed.c: typo in pkey_print_message. · 5beb93e1
  Andy Polyakov authored Jan 11, 2012
```
PR: 2681
Submitted by: Annie Yousar
```
  5beb93e1
- ecdsa.pod: typo. · 62d7dd5f
  Andy Polyakov authored Jan 11, 2012
```
PR: 2678
Submitted by: Annie Yousar
```
  62d7dd5f
- asn1/t_x509.c: fix serial number print, harmonize with a_int.c. · 6e913f99
  Andy Polyakov authored Jan 11, 2012
```
PR: 2675
Submitted by: Annie Yousar
```
  6e913f99
- aes-sparcv9.pl: clean up regexp · e255024b
  Andy Polyakov authored Jan 11, 2012
```
PR: 2685
```
  e255024b
Jan 10, 2012
- fix warning (revert original patch) · 8fa397a6
  Dr. Stephen Henson authored Jan 10, 2012
  
  8fa397a6
Jan 06, 2012
- cmac.c: optimize make_kn and move zero_iv to const segment. · 03cf7e78
  Andy Polyakov authored Jan 06, 2012
  
  03cf7e78
- bn_nist.c: harmonize buf in BN_nist_mod_256 with other mod functions. · ce0727f9
  Andy Polyakov authored Jan 06, 2012
  
  ce0727f9
Jan 05, 2012
- Update for 0.9.8s and 1.0.0f, and for 1.0.1 branch. · 8e855452
  Bodo Möller authored Jan 05, 2012
```
(While the 1.0.0f CHANGES entry on VOS PRNG seeding was missing
in HEAD, the actual code is here already.)
```
  8e855452
- Fix usage indentation · 6620bf34
  Bodo Möller authored Jan 05, 2012
  
  6620bf34
- Fix for builds without DTLS support. · 7bb1cc95
  Bodo Möller authored Jan 05, 2012
```
Submitted by: Brian Carlstrom
```
  7bb1cc95
- PR: 2671 · 59e68615
  Dr. Stephen Henson authored Jan 05, 2012
```
Submitted by: steve

Update maximum message size for certifiate verify messages to support
4096 bit RSA keys again as TLS v1.2 messages is two bytes longer.
```
  59e68615
- Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de> · 192540b5
  Dr. Stephen Henson authored Jan 05, 2012
```
Reviewed by: steve

Send fatal alert if heartbeat extension has an illegal value.
```
  192540b5
- disable heartbeats if tlsext disabled · e2ca32fc
  Dr. Stephen Henson authored Jan 05, 2012
  
  e2ca32fc
Jan 04, 2012
- update CHANGES · 4d0bafb4
  Dr. Stephen Henson authored Jan 04, 2012
  
  4d0bafb4
- Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>, Michael Tuexen <tuexen@fh-muenster.de> · e7455724
  Dr. Stephen Henson authored Jan 04, 2012
```
Reviewed by: steve

Fix for DTLS plaintext recovery attack discovered by Nadhem Alfardan and
Kenny Paterson.
```
  e7455724
- Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576) · 27dfffd5
  Dr. Stephen Henson authored Jan 04, 2012
  
  27dfffd5
- Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619) · d0dc991c
  Dr. Stephen Henson authored Jan 04, 2012
  
  d0dc991c
- fix CHANGES · 2ec0497f
  Dr. Stephen Henson authored Jan 04, 2012
  
  2ec0497f
- Check GOST parameters are not NULL (CVE-2012-0027) · 6bf896d9
  Dr. Stephen Henson authored Jan 04, 2012
  
  6bf896d9
- Prevent malformed RFC3779 data triggering an assertion failure (CVE-2011-4577) · be71c372
  Dr. Stephen Henson authored Jan 04, 2012
  
  be71c372
- update FAQ · 00155723
  Dr. Stephen Henson authored Jan 04, 2012
  
  00155723
- fix warnings · 6074fb09
  Dr. Stephen Henson authored Jan 04, 2012
  
  6074fb09
- Submitted by: Adam Langley <agl@chromium.org> · 25536ea6
  Dr. Stephen Henson authored Jan 04, 2012
```
Reviewed by: steve

Fix memory leaks.
```
  25536ea6
Jan 03, 2012
- oops, revert wrong patch · b3720c34
  Dr. Stephen Henson authored Jan 03, 2012
  
  b3720c34
- only send heartbeat extension from server if client sent one · 5733919d
  Dr. Stephen Henson authored Jan 03, 2012
  
  5733919d
Jan 02, 2012
- incomplete provisional OAEP CMS decrypt support · b3339050
  Dr. Stephen Henson authored Jan 02, 2012
  
  b3339050
Dec 31, 2011
- recognise HEARTBEATS in mkdef.pl script · 918fc30f
  Dr. Stephen Henson authored Dec 31, 2011
  
  918fc30f
- update CHANGES · 0b9f5ef8
  Dr. Stephen Henson authored Dec 31, 2011
  
  0b9f5ef8
- PR: 2658 · 4817504d
  Dr. Stephen Henson authored Dec 31, 2011
```
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Support for TLS/DTLS heartbeats.
```
  4817504d
Dec 27, 2011
- make update · 84b6e277
  Dr. Stephen Henson authored Dec 27, 2011
  
  84b6e277
- update default depflags · fa2c72e5
  Dr. Stephen Henson authored Dec 27, 2011
  
  fa2c72e5
- fix error code · ffdfce8d
  Dr. Stephen Henson authored Dec 27, 2011
  
  ffdfce8d
- fix deprecated statement · 816e243a
  Dr. Stephen Henson authored Dec 27, 2011
  
  816e243a
- PR: 1794 · c79f22c6
  Dr. Stephen Henson authored Dec 27, 2011
```
Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>
Reviewed by: steve

- remove some unncessary SSL_err and permit
an srp user callback to allow a worker to obtain
a user verifier.

- cleanup and comments in s_server and demonstration
for asynchronous srp user lookup
```
  c79f22c6
Dec 26, 2011

PR: 2326 · f3d781bb

Dr. Stephen Henson authored Dec 26, 2011

Submitted by: Tianjie Mao <tjmao@tjmao.net>
Reviewed by: steve

Fix incorrect comma expressions and goto f_err as alert has been set.

f3d781bb

Dec 25, 2011
- recognise no-sctp · 995a6b10
  Dr. Stephen Henson authored Dec 25, 2011
  
  995a6b10