Skip to content
  1. Mar 12, 2014
    • Dr. Stephen Henson's avatar
      Update ordinals. · 40acdb19
      Dr. Stephen Henson authored
      Use a previously unused value as we will be updating multiple released
      branches.
      (cherry picked from commit 0737acd2)
      40acdb19
    • Dr. Stephen Henson's avatar
      Fix for CVE-2014-0076 · 4b7a4ba2
      Dr. Stephen Henson authored
      Fix for the attack described in the paper "Recovering OpenSSL
      ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack"
      by Yuval Yarom and Naomi Benger. Details can be obtained from:
      http://eprint.iacr.org/2014/140
      
      Thanks to Yuval Yarom and Naomi Benger for discovering this
      flaw and to Yuval Yarom for supplying a fix.
      (cherry picked from commit 2198be34)
      
      Conflicts:
      
      	CHANGES
      4b7a4ba2
  2. Mar 10, 2014
  3. Mar 07, 2014
  4. Feb 27, 2014
  5. Feb 26, 2014
  6. Feb 25, 2014
  7. Feb 24, 2014
  8. Feb 15, 2014
  9. Feb 14, 2014
    • Kurt Roeckx's avatar
      Use defaults bits in req when not given · e420060a
      Kurt Roeckx authored
      If you use "-newkey rsa" it's supposed to read the default number of bits from the
      config file.  However the value isn't used to generate the key, but it does
      print it's generating such a key.  The set_keygen_ctx() doesn't call
      EVP_PKEY_CTX_set_rsa_keygen_bits() and you end up with the default set in
      pkey_rsa_init() (1024).  Afterwards the number of bits gets read from the config
      file, but nothing is done with that anymore.
      
      We now read the config first and use the value from the config file when no size
      is given.
      
      PR: 2592
      (cherry picked from commit 33432203)
      e420060a
    • Kurt Roeckx's avatar
      Fix additional pod errors with numbered items. · d8ec8a4a
      Kurt Roeckx authored
      (cherry picked from commit e547c45f)
      d8ec8a4a
    • Scott Schaefer's avatar
      Fix various spelling errors · 040ed7b4
      Scott Schaefer authored
      (cherry picked from commit 2b4ffc65)
      040ed7b4
    • Scott Schaefer's avatar
      Document pkcs12 -password behavior · c76e5b08
      Scott Schaefer authored
      apps/pkcs12.c accepts -password as an argument.  The document author
      almost certainly meant to write "-password, -passin".
      
      However, that is not correct, either.  Actually the code treats
      -password as equivalent to -passin, EXCEPT when -export is also
      specified, in which case -password as equivalent to -passout.
      (cherry picked from commit 856c6dfb)
      c76e5b08
    • Dr. Stephen Henson's avatar
      Backport TLS padding extension from master. · 00712158
      Dr. Stephen Henson authored
      (cherry picked from commit 8c6d8c2a)
      
      Conflicts:
      
      	CHANGES
      	ssl/t1_lib.c
      00712158
  10. Feb 05, 2014
  11. Feb 03, 2014
  12. Jan 29, 2014
    • Dr. Stephen Henson's avatar
      Clarify docs. · f21e6b6e
      Dr. Stephen Henson authored
      Remove reference to ERR_TXT_MALLOCED in the error library as that is
      only used internally. Indicate that returned error data must not be
      freed.
      (cherry picked from commit f2d678e6)
      f21e6b6e
  13. Jan 28, 2014
  14. Jan 23, 2014
  15. Jan 16, 2014
  16. Jan 11, 2014
  17. Jan 09, 2014
  18. Jan 08, 2014
  19. Jan 06, 2014