Commits · 33cc5dde478ba5ad79f8fd4acd8737f0e60e236e · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Feb 01, 2016

Compat self-signed trust with reject-only aux data · 33cc5dde

Viktor Dukhovni authored Jan 29, 2016



When auxiliary data contains only reject entries, continue to trust
self-signed objects just as when no auxiliary data is present.

This makes it possible to reject specific uses without changing
what's accepted (and thus overring the underlying EKU).

Added new supported certs and doubled test count from 38 to 76.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>

33cc5dde

Check chain extensions also for trusted certificates · 0daccd4d

Viktor Dukhovni authored Jan 28, 2016



This includes basic constraints, key usages, issuer EKUs and auxiliary
trust OIDs (given a trust suitably related to the intended purpose).

Added tests and updated documentation.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>

0daccd4d

Jan 31, 2016

Zero newly allocated points · 1b4cf96f
Dr. Stephen Henson authored Jan 31, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
1b4cf96f

Remove redundant code. · aedc37e7

Dr. Stephen Henson authored Jan 31, 2016



d2i_ECPrivateKey always caculates the public key so there is
no need to caculate it again in eckey_priv_decode().

Reviewed-by: Rich Salz <rsalz@openssl.org>

aedc37e7

Add EC_GROUP_order_bits, EC_GROUP_get0_order and EC_GROUP_get0_cofactor · be2e334f

Dr. Stephen Henson authored Jan 31, 2016



New functions to return internal pointer for order and cofactor. This
avoids the need to allocate a new BIGNUM which to copy the value to.
Simplify code to use new functions.

Reviewed-by: Rich Salz <rsalz@openssl.org>

be2e334f

Engage poly1305-sparcv9 module. · 81e03785
Andy Polyakov authored Jan 29, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
81e03785
Add poly1305/asm/poly1305-sparcv9.pl. · 0049eb46
Andy Polyakov authored Jan 29, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
0049eb46
Configure: restore original logic for -DWHIRLPOOL_ASM. · 46d4d865
Andy Polyakov authored Jan 29, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
46d4d865
RT4129: BUF_new_mem_buf should take const void * · 8ab31975
Daniel Kahn Gillmor authored Jan 30, 2016
```
Signed-off-by: Rich Salz <rsalz@akamai.com>
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
```
8ab31975

Remove the extra checks for Intel's C compiler · 0e87e058

Richard Levitte authored Jan 31, 2016



When the target is {something}-icc, we're doing some extra checks of
the icc compiler.  However, all such targets were cleaned away in
March 2015, so this Configure section is dead code.

Reviewed-by: Rich Salz <rsalz@openssl.org>

0e87e058

RT3755: Remove duplicate #include · b59e1bed
Rich Salz authored Jan 30, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
b59e1bed
Don't go into dotted directories when copying Makefile.in to Makefile · fb36ca12
Richard Levitte authored Jan 31, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
fb36ca12
GH102: Extra volatile avoids GCC bug · 769adcfe
Rich Salz authored Jan 30, 2016
```
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
```
769adcfe

Jan 30, 2016

Remove extra level of indirection. · 9716b0b9

Rich Salz authored Jan 30, 2016



Remove OPENSSL_IMPORT as its only purpose is to define OPENSSL_EXTERN.

Reviewed-by: Richard Levitte <levitte@openssl.org>

9716b0b9

Move more BN internals to bn_lcl.h · 94af0cd7

Rich Salz authored Jan 28, 2016



There was an unused macro in ssl_locl.h that used an internal
type, so I removed it.
Move bio_st from bio.h to ossl_type.h

Reviewed-by: Andy Polyakov <appro@openssl.org>

94af0cd7

GH102: Add volatile to CRYPTO_memcmp · 98ab5764

Rich Salz authored Jan 29, 2016



Can't hurt and seems to prevent problems from some over-aggressive
(LTO?) compilers.

Reviewed-by: Richard Levitte <levitte@openssl.org>

98ab5764

When checking if there's a VMS directory spec, don't forget the possible device · c10d1bc8
Richard Levitte authored Jan 30, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
c10d1bc8

Fix test/recipes/25-test_verify.t · 9c626317

Richard Levitte authored Jan 30, 2016



top_dir() are used to create directory names, top_file() should be
used for files.  In a Unixly environment, that doesn't matter, but...

Reviewed-by: Rich Salz <rsalz@openssl.org>

9c626317

handle "Ctrl" in separate function · 4ddd5ace
Dr. Stephen Henson authored Jan 30, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
4ddd5ace
Add test data for ECDH · 404cc933
Dr. Stephen Henson authored Jan 30, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
404cc933
Add support for EVP_PKEY_derive in evp_test · d4ad48d7
Dr. Stephen Henson authored Jan 29, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
d4ad48d7
fix warning · bc9d9ce2
Dr. Stephen Henson authored Jan 29, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
bc9d9ce2
Add function to return internal enoding of X509_NAME. · 7ab50749
Dr. Stephen Henson authored Jan 30, 2016
```
PR#4280

Reviewed-by: Tim Hudson <tjh@openssl.org>
```
7ab50749

Fix opt_imax() call · 33254e1c

Richard Levitte authored Jan 30, 2016



Not all architectures have a time_t defined the same way.  To make
sure we get the same result, we need to cast &checkoffset to (intmax_t *)
and make sure that intmax_t is defined somehow.

To make really sure we don't pass a variable with the wrong size down
to opt_imax(), we use a temporary intmax_t.

Reviewed-by: Rich Salz <rsalz@openssl.org>

33254e1c

Configure: Clarify the handling of $thread_cflags · 421e30ec
Richard Levitte authored Jan 29, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
421e30ec

Jan 29, 2016

Make opt_imax visible in all apps · ea5e0c1c
Viktor Dukhovni authored Jan 29, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
ea5e0c1c

Missed rc2_int from before. · 826e9e54

Rich Salz authored Jan 29, 2016



Also remove $Makefile variable :)

Reviewed-by: Andy Polyakov <appro@openssl.org>

826e9e54

Fix invalid policy detection · bc8c34d7

Viktor Dukhovni authored Jan 29, 2016



As a side-effect of opaque x509, ex_flags were looked up too early,
before additional policy cache updates.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>

bc8c34d7

Templatize util/domd · ced2c2c5
Rich Salz authored Jan 29, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
ced2c2c5

Better type for x509 -checkend argument · 56087077

Viktor Dukhovni authored Jan 29, 2016



This is a time_t and can be zero or negative.  So use 'M' (maximal
signed int) not 'p' (positive int).

Reviewed-by: Rich Salz <rsalz@openssl.org>

56087077

Complete the lflags -> lflags/ex_libs transition · 04b08fbc

Richard Levitte authored Jan 29, 2016



Some last lflags to convert to ex_libs or a combo of lflags and ex_libs

Reviewed-by: Rich Salz <rsalz@openssl.org>

04b08fbc

Configure et al: split up the lflags configuration item into two · 1740c162

Richard Levitte authored Jan 29, 2016



The lflags configuration had a weird syntax with a % as separator.  If
it was present, whatever came before ended up as PEX_LIBS in Makefile
(usually, this is LDFLAGS), while whatever came after ended up as
EX_LIBS.

This change splits that item into lflags and ex_libs, making their use
more explicit.

Also, PEX_LIBS in all the Makefiles are renamed to LDFLAGS.

Reviewed-by: Rich Salz <rsalz@openssl.org>

1740c162

Make use of add() and add_before() in Configurations/ · ddf47a10

Richard Levitte authored Jan 29, 2016



A few more sub-joins could be replaced with calls to add() and add_before()

Reviewed-by: Rich Salz <rsalz@openssl.org>

ddf47a10

Revert "Don't replace cflags with thread_cflags, only append the latter" · f8206c8e
Richard Levitte authored Jan 29, 2016
```
This reverts commit a450326e

.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
f8206c8e
Merge error, wrong domd submitted. · 723acb14
Rich Salz authored Jan 29, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
723acb14
Don't replace cflags with thread_cflags, only append the latter · a450326e
Richard Levitte authored Jan 29, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
a450326e

Remove clean-depend · 96d608be

Rich Salz authored Jan 21, 2016



Remove depend hacks from demos/engines.
Remove clean-depend; just call makedepend (or $CC -M) and use that.

Reviewed-by: Richard Levitte <levitte@openssl.org>

96d608be

Make it possible to check for explicit auxiliary trust · aea61161

Viktor Dukhovni authored Jan 27, 2016



By default X509_check_trust() trusts self-signed certificates from
the trust store that have no explicit local trust/reject oids
encapsulated as a "TRUSTED CERTIFICATE" object.  (See the -addtrust
and -trustout options of x509(1)).

This commit adds a flag that makes it possible to distinguish between
that implicit trust, and explicit auxiliary settings.

With flags |= X509_TRUST_NO_SS_COMPAT, a certificate is only trusted
via explicit trust settings.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>

aea61161

Always DPURIFY · d8ca44ba

Emilia Kasper authored Jan 27, 2016



The use of the uninitialized buffer in the RNG has no real security
benefits and is only a nuisance when using memory sanitizers.

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

d8ca44ba

Remove x86_gcc_des,x86_gcc_opts · a01dab94

Rich Salz authored Jan 27, 2016



This is a followin from !1738, we no longer need those variables.

Reviewed-by: Richard Levitte <levitte@openssl.org>

a01dab94