Commits · 4ceddeea6c626a922e1b8f54b6fe1d2b89f8ef90 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

10 Jun, 2014 4 commits

backport changes to ciphers(1) man page · 4ceddeea

Hubert Kario authored Jun 10, 2014

Backport of patch:
add ECC strings to ciphers(1), point out difference between DH and ECDH

and backport of other other assorted fixes to this man page

 * Make a clear distinction between DH and ECDH key exchange.
 * Group all key exchange cipher suite identifiers, first DH then ECDH
 * add descriptions for all supported *DH* identifiers
 * add ECDSA authentication descriptions
 * add example showing how to disable all suites that offer no
   authentication or encryption
 * update status of static DH (it's now supported)
 * backport descriptions of AES128, AES256, AESGCM
 * backport descriptions of CAMELLIA128, CAMELLIA256
 * backport listing of standard names for ECC cipher suites
   and TLSv1.2 cipher suites
 * backport description of PSK cipher suites

4ceddeea

Create test/testutil.h for unit test helper macros · 2fddc5fc

Mike Bland authored Jun 07, 2014

Defines SETUP_TEST_FIXTURE and EXECUTE_TEST, and updates ssl/heartbeat_test.c
using these macros. SETUP_TEST_FIXTURE makes use of the new TEST_CASE_NAME
macro, defined to use __func__ or __FUNCTION__ on platforms that support those
symbols, or to use the file name and line number otherwise. This should fix
several reported build problems related to lack of C99 support.

2fddc5fc

Remove experimental DANE code. · e3beef1e
Dr. Stephen Henson authored Jun 06, 2014
```
Remove experimental DANE/dnssec code: not ready for use in an
official release yet.
```
e3beef1e
Fix null pointer errors. · cea5a1d5
Dr. Stephen Henson authored Jun 10, 2014
```
PR#3394
(cherry picked from commit 7a9d59c1)
```
cea5a1d5

09 Jun, 2014 2 commits

SRP ciphersuite correction. · f472ada0

Dr. Stephen Henson authored Jun 09, 2014

SRP ciphersuites do not have no authentication. They have authentication
based on SRP. Add new SRP authentication flag and cipher string.
(cherry picked from commit a86b88acc373ac1fb0ca709a5fb8a8fa74683f67)

f472ada0

Update strength_bits for 3DES. · 05b22104

Dr. Stephen Henson authored Jun 09, 2014

Fix strength_bits to 112 for 3DES.
(cherry picked from commit 837c203719205ab19b5609b2df7151be8df05687)

05b22104

08 Jun, 2014 2 commits

Link heartbeat_test with the static version of the libraries · 33e1a1d6
Kurt Roeckx authored Jun 07, 2014
```
It's using an internal API that that might not be available in the shared
library.
```
33e1a1d6

Create ~/.rnd with mode 0600 instead of 0666 · 38956b07

Jakub Wilk authored Jun 07, 2014

Because of a missing include <fcntl.h> we don't have O_CREATE and don't create
the file with open() using mode 0600 but fall back to using fopen() with the
default umask followed by a chmod().

Problem found by Jakub Wilk <jwilk@debian.org>.

38956b07

07 Jun, 2014 3 commits
- Make tls_session_secret_cb work with CVE-2014-0224 fix. · a21f350a
  Dr. Stephen Henson authored Jun 07, 2014
```
If application uses tls_session_secret_cb for session resumption
set the CCS_OK flag.
(cherry picked from commit 953c592572e8811b7956cc09fbd8e98037068b58)
```
  a21f350a
- Update NEWS. · 74360af3
  Dr. Stephen Henson authored Jun 06, 2014
  
  74360af3
- Fixed minor duplication in docs · 5400882c
  Matt Caswell authored Jun 07, 2014
  
  5400882c
05 Jun, 2014 5 commits

Fix for CVE-2014-0195 · eb6508d5

Dr. Stephen Henson authored May 13, 2014

A buffer overrun attack can be triggered by sending invalid DTLS fragments
to an OpenSSL DTLS client or server. This is potentially exploitable to
run arbitrary code on a vulnerable client or server.

Fixed by adding consistency check for DTLS fragments.

Thanks to Jüri Aedla for reporting this issue.
(cherry picked from commit 1632ef74)

eb6508d5

Fix for CVE-2014-0224 · 77719aef

Dr. Stephen Henson authored May 16, 2014

Only accept change cipher spec when it is expected instead of at any
time. This prevents premature setting of session keys before the master
secret is determined which an attacker could use as a MITM attack.

Thanks to KIKUCHI Masashi (Lepidum Co. Ltd.) for reporting this issue
and providing the initial fix this patch is based on.
(cherry picked from commit bc8923b1)

77719aef

Additional CVE-2014-0224 protection. · 9d2c9dd1

Dr. Stephen Henson authored May 16, 2014

Return a fatal error if an attempt is made to use a zero length
master secret.
(cherry picked from commit 006cd708)

9d2c9dd1

Fix CVE-2014-0221 · 8942b92c

Dr. Stephen Henson authored May 16, 2014

Unnecessary recursion when receiving a DTLS hello request can be used to
crash a DTLS client. Fixed by handling DTLS hello request without recursion.

Thanks to Imre Rad (Search-Lab Ltd.) for discovering this issue.
(cherry picked from commit d3152655)

8942b92c

Fix CVE-2014-3470 · e5f70659

Dr. Stephen Henson authored May 29, 2014

Check session_cert is not NULL before dereferencing it.
(cherry picked from commit 8011cd56)

e5f70659

03 Jun, 2014 1 commit
- Corrected OPENSSL_NO_EC_NISTP_64_GCC_128 usage in ec_lcl.h. PR#3370 · a5d03c54
  Libor Krystek authored Jun 03, 2014
  
  a5d03c54
02 Jun, 2014 4 commits

Check there is enough room for extension. · 56b94a38
David Benjamin authored Jun 02, 2014
```
(cherry picked from commit 7d89b3bf42e4b4067371ab33ef7631434e41d1e4)
```
56b94a38
Free up s->d1->buffered_app_data.q properly. · d52eb827
zhu qun-ying authored Jun 02, 2014
```
PR#3286
(cherry picked from commit 71e95000afb2227fe5cac1c79ae884338bcd8d0b)
```
d52eb827

Allow reordering of certificates when signing. · 4967a832

Dr. Stephen Henson authored Jun 02, 2014

Add certificates if -nocerts and -certfile specified when signing
in smime application. This can be used this to specify the
order certificates appear in the PKCS#7 structure: some broken
applications require a certain ordering.

PR#3316
(cherry picked from commit e114abee9ec084a56c1d6076ac6de8a7a3a5cf34)

4967a832

Typo: set i to -1 before goto. · 64688668
Sami Farin authored Jun 02, 2014
```
PR#3302
(cherry picked from commit 9717f01951f976f76dd40a38d9fc7307057fa4c4)
```
64688668

01 Jun, 2014 7 commits

Added SSLErr call for internal error in dtls1_buffer_record · de8a5b52
Matt Caswell authored Jun 01, 2014

de8a5b52
Delays the queue insertion until after the ssl3_setup_buffers() call due to... · 8de85b00
David Ramos authored Jun 01, 2014
```
Delays the queue insertion until after the ssl3_setup_buffers() call due to use-after-free bug. PR#3362
```
8de85b00

Recognise padding extension. · 8d715741

Dr. Stephen Henson authored Jun 01, 2014

(cherry picked from commit ea2bb861f0daaa20819bf9ac8c146f7593feacd4)

Conflicts:

	apps/s_cb.c

8d715741

Option to disable padding extension. · 623a01df

Dr. Stephen Henson authored Jun 01, 2014

Add TLS padding extension to SSL_OP_ALL so it is used with other
"bugs" options and can be turned off.

This replaces SSL_OP_SSLREF2_REUSE_CERT_TYPE_BUG which is an ancient
option referring to SSLv2 and SSLREF.

PR#3336
(cherry picked from commit 758415b2259fa45d3fe17d8e53ae1341b7b6e482)

Conflicts:

	ssl/t1_lib.c

623a01df

Set default global mask to UTF8 only. · 08b172b9
Dr. Stephen Henson authored Jun 01, 2014
```
(cherry picked from commit 3009244d)
```
08b172b9

Allocate extra space when NETSCAPE_HANG_BUG defined. · 856a4585

David Ramos authored Jun 01, 2014

Make sure there is an extra 4 bytes for server done message when
NETSCAPE_HANG_BUG is defined.

PR#3361
(cherry picked from commit 92d81ba6)

856a4585

Initialise alg. · 3329765b
David Ramos authored Jun 01, 2014
```
PR#3313
(cherry picked from commit 7e2c6f7e)
```
3329765b

30 May, 2014 2 commits
- Use correct digest when exporting keying material. · 87a0cbdf
  Dr. Stephen Henson authored May 30, 2014
```
PR#3319
(cherry picked from commit 84691390eae86befd33c83721dacedb539ae34e6)
```
  87a0cbdf
- Don't compile heartbeat test code on Windows (for now). · b5bdde9e
  Dr. Stephen Henson authored May 30, 2014
```
(cherry picked from commit 2c575907d2c8601a18716f718ce309ed4e1f1783)
```
  b5bdde9e
29 May, 2014 3 commits
- Set version number correctly. · 1788072b
  Dr. Stephen Henson authored May 29, 2014
```
PR#3249
(cherry picked from commit 8909bf20269035d295743fca559207ef2eb84eb3)
```
  1788072b
- Fix memory leak. · 5f2b5e38
  František Bořánek authored May 29, 2014
```
PR#3278
(cherry picked from commit de56fe797081fc09ebd1add06d6e2df42a324fd5)
```
  5f2b5e38
- remove duplicate 0x for default RSASSA-PSS salt len · 42d73874
  Martin Kaiser authored May 28, 2014
```
(cherry picked from commit 3820fec3a09faecba7fe9912aa20ef7fcda8337b)
```
  42d73874
25 May, 2014 1 commit
- Fixed error in args for SSL_set_msg_callback and SSL_set_msg_callback_arg · 88d3d6c9
  Matt Caswell authored May 25, 2014
  
  88d3d6c9
24 May, 2014 1 commit
- Only copy opensslconf.h at init time. · 3435ef46
  Ben Laurie authored May 24, 2014
  
  3435ef46
23 May, 2014 1 commit
- vpaes-ppc.pl: comply with ABI. · c90c694b
  Andy Polyakov authored May 23, 2014
```
(cherry picked from commit b83d09f5)
```
  c90c694b
22 May, 2014 2 commits
- Fix heartbeat_test for -DOPENSSL_NO_HEARTBEATS · 8db2ba4b
  Mike Bland authored May 22, 2014
```
Replaces the entire test with a trivial implementation when
OPENSSL_NO_HEARTBEATS is defined.
```
  8db2ba4b
- Check length first in BUF_strnlen(). · d77501d8
  Ben Laurie authored May 22, 2014
  
  d77501d8
21 May, 2014 2 commits
- Fixed minor copy&paste error, and stray space causing rendering problem · 15e45659
  Matt Caswell authored May 22, 2014
  
  15e45659
- Fixed unterminated B tag, causing build to fail with newer pod2man versions · 57577665
  Matt Caswell authored May 22, 2014
  
  57577665