- 11 Mar, 2015 1 commit
-
-
Matt Caswell authored
Cleanse various intermediate buffers used by the PRF (backported version from master). Reviewed-by:Richard Levitte <levitte@openssl.org>
-
- 10 Mar, 2015 3 commits
-
-
Emilia Kasper authored
Ensure all malloc failures return -1. Reported by Adam Langley (Google). Reviewed-by:
Matt Caswell <matt@openssl.org> (cherry picked from commit 06c6a2b4)
-
Richard Godbee authored
BIO_debug_callback() no longer assumes the hexadecimal representation of a pointer fits in 8 characters. Signed-off-by:
-
Matt Caswell authored
Fix security issue where under certain conditions a client can complete a handshake with an unseeded PRNG. The conditions are: - Client is on a platform where the PRNG has not been seeded, and the user has not seeded manually - A protocol specific client method version has been used (i.e. not SSL_client_methodv23) - A ciphersuite is used that does not require additional random data from the PRNG beyond the initial ClientHello client random (e.g. PSK-RC4-SHA) If the handshake succeeds then the client random that has been used will have been generated from a PRNG with insufficient entropy and therefore the output may be predictable. For example using the following command with an unseeded openssl will succeed on an unpatched platform: openssl s_client -psk 1a2b3c4d -tls1_2 -cipher PSK-RC4-SHA CVE-2015-0285 Reviewed-by:
-
- 09 Mar, 2015 4 commits
-
-
Dmitry-Me authored
Signed-off-by:
-
Dr. Stephen Henson authored
Reviewed-by: -
David Woodhouse authored
Since commit 741c9959 ("DTLS revision."), we put the wrong protocol version into our ClientHello for DTLS1_BAD_VER. The old DTLS code which used ssl->version was replaced by the more generic SSL3 code which uses ssl->client_version. The Cisco ASA no longer likes our ClientHello. RT#3711 Reviewed-by:
Rich Salz <rsalz@openssl.org> (cherry picked from commit f7683aaf)
-
Matt Caswell authored
Commit 9cf0f187 in HEAD, and 68039af3 in 1.0.2, removed a version check from dtls1_buffer_message() which was needed to distinguish between DTLS 1.x and Cisco's pre-standard version of DTLS (DTLS1_BAD_VER). Based on an original patch by David Woodhouse <dwmw2@infradead.org> RT#3703 Reviewed-by:
Tim Hudson <tjh@openssl.org> (cherry picked from commit 5178a16c)
-
- 08 Mar, 2015 3 commits
-
-
Dr. Stephen Henson authored
Reviewed-by: -
Dr. Stephen Henson authored
New function ASN1_STRING_clear_free which cleanses an ASN1_STRING structure before freeing it. Call ASN1_STRING_clear_free on PKCS#8 private key components. Reviewed-by:
-
Dr. Stephen Henson authored
Reviewed-by:
-
- 07 Mar, 2015 1 commit
-
-
Kurt Roeckx authored
They are moved to the COMPLEMENTOFDEFAULT instead. This also fixes SSLv2 to be part of COMPLEMENTOFDEFAULT. Reviewed-by:
-
- 06 Mar, 2015 1 commit
-
-
Matt Caswell authored
Make the output from mkerr.pl consistent with the newly reformatted code. Reviewed-by:
-
- 05 Mar, 2015 2 commits
-
-
Kurt Cancemi authored
This patch uses warning/fatal constants instead of numbers with comments for warning/alerts in d1_pkt.c and s3_pkt.c RT#3725 Reviewed-by:
-
Matt Caswell authored
Miscellaneous unchecked malloc fixes. Also fixed some mem leaks on error paths as I spotted them along the way. Reviewed-by:
-
- 02 Mar, 2015 2 commits
-
-
Dr. Stephen Henson authored
CVE-2015-0288 PR#3708 Reviewed-by:
-
Dr. Stephen Henson authored
The format script didn't correctly recognise some ASN.1 macros and didn't reformat some files as a result. Fix script and reformat affected files. Reviewed-by:
-
- 27 Feb, 2015 3 commits
-
-
Matt Caswell authored
Some Cisco appliances use a pre-standard version number for DTLS. We support this as DTLS1_BAD_VER within the code. This change fixes d2i_SSL_SESSION for that DTLS version. Based on an original patch by David Woodhouse <dwmw2@infradead.org> RT#3704 Reviewed-by: -
Matt Caswell authored
Added various missing return value checks in tls1_change_cipher_state. Reviewed-by: -
Matt Caswell authored
Fixed various missing return value checks in ssl3_send_newsession_ticket. Also a mem leak on error. Reviewed-by:
-
- 26 Feb, 2015 1 commit
-
-
Matt Caswell authored
When OpenSSL is configured with no-ec, then the new evp_extra_test fails to pass. This change adds appropriate OPENSSL_NO_EC guards around the code. Reviewed-by:
-
- 25 Feb, 2015 8 commits
-
-
Matt Caswell authored
Updates to include SHA224, SHA256, SHA384 and SHA512. In particular note the restriction on setting md to NULL with regards to thread safety. Reviewed-by:
-
Rainer Jung authored
the extract-names.pl script. RT#3718 Reviewed-by: -
Matt Caswell authored
Reviewed-by:Emilia Käsper <emilia@openssl.org>
-
Matt Caswell authored
Reviewed-by: -
Matt Caswell authored
Reviewed-by: -
Matt Caswell authored
Reviewed-by: -
Matt Caswell authored
Inspired by BoringSSL commit 517073cd4b by Eric Roman <eroman@chromium.org> CVE-2015-0209 Reviewed-by: -
Matt Caswell authored
called evp_test.c, so I have called this one evp_extra_test.c Reviewed-by:
-
- 24 Feb, 2015 2 commits
-
-
Dr. Stephen Henson authored
Reviewed-by:
-
Andy Polyakov authored
Reviewed-by:
-
- 22 Feb, 2015 7 commits
-
-
Andy Polyakov authored
The typo doesn't affect supported configuration, only unsupported masm. Reviewed-by:
-
Dr. Stephen Henson authored
Reviewed-by:
Kurt Roeckx <kurt@openssl.org> (cherry picked from commit 15b5d658)
-
Edgar Pek authored
Signed-off-by:
Kurt Roeckx <kurt@roeckx.be> Reviewed-by:
-
Kurt Roeckx authored
Reviewed-by:
-
Doug Hogan authored
Signed-off-by:
-
Richard Levitte authored
The previous defaulting to TERMIOS took away -DTERMIOS / -DTERMIO a bit too enthusiastically. Windows/DOSish platforms of all sorts get identified as OPENSSL_SYS_MSDOS, and they get a different treatment altogether UNLESS -DTERMIO or -DTERMIOS is explicitely given with the configuration. The answer is to restore those macro definitions for the affected configuration targets. Reviewed-by:
-
Richard Levitte authored
The rationale for this move is that TERMIOS is default, supported by POSIX-1.2001, and most definitely on Linux. For a few other systems, TERMIO may still be the termnial interface of preference, so we keep -DTERMIO on those in Configure. crypto/ui/ui_openssl.c is simplified in this regard, and will define TERMIOS for all systems except a select few exceptions. Reviewed-by:
-
- 13 Feb, 2015 1 commit
-
-
Richard Levitte authored
manually picked from e7b85bc4 Reviewed-by:
Stephen Henson <steve@openssl.org> (cherry picked from commit 774ccae6)
-
- 12 Feb, 2015 1 commit
-
-
Rich Salz authored
Reviewed-by:Andy Polyakov <appro@openssl.org>
-
