Commits · 6dfd3cf68e025fdbd917b3f4ade63bcee64e09cd · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

06 Apr, 2010 4 commits

PR: 2218 · 6dfd3cf6

Dr. Stephen Henson authored Apr 06, 2010

Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>

Fixes for DTLS replay bug.

6dfd3cf6

PR: 2219 · 073775cb

Dr. Stephen Henson authored Apr 06, 2010

Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>

Fixes for DTLS buffering bug.

073775cb

PR: 2223 · e995d504

Dr. Stephen Henson authored Apr 06, 2010

Submitted By: Robin Seggelmann <seggelmann@fh-muenster.de>

Fixes for DTLS timeout bug

e995d504

PR: 2220 · 5b0a79a2
Dr. Stephen Henson authored Apr 06, 2010
```
Fixes to make OpenSSL compile with no-rc4
```
5b0a79a2

30 Mar, 2010 1 commit
- updates for next release · 6747de65
  Dr. Stephen Henson authored Mar 30, 2010
  
  6747de65
29 Mar, 2010 3 commits
- Prepare for 1.0.0 release - finally ;-) · 91bad2b0
  Dr. Stephen Henson authored Mar 29, 2010
  
  OpenSSL_1_0_0
  
  91bad2b0
- ARMv4 assembler: [unconfirmed] fix for compilation failure [from HEAD]. · 1244d5b7
  Andy Polyakov authored Mar 29, 2010
  
  1244d5b7
- dso_dlfcn.c: fix compile failure on Tru64 [from HEAD]. · c0ed5cd4
  Andy Polyakov authored Mar 29, 2010
  
  c0ed5cd4
28 Mar, 2010 1 commit
- PR: 1696 · c8281fd3
  Dr. Stephen Henson authored Mar 28, 2010
```
Check return value if d2i_PBEPARAM().
```
  c8281fd3
27 Mar, 2010 3 commits

PR: 1763 · fe8e6bff

Dr. Stephen Henson authored Mar 27, 2010

Remove useless num = 0 assignment.

Remove redundant cases on sock_ctrl(): default case handles them.

fe8e6bff

PR: 1904 · 9caf25d1

Dr. Stephen Henson authored Mar 27, 2010

Submitted by: David Woodhouse <dwmw2@infradead.org>

Pass passphrase minimum length down to UI.

9caf25d1

PR: 1813 · 348620c7

Dr. Stephen Henson authored Mar 27, 2010

Submitted by: Torsten Hilbrich <torsten.hilbrich@secunet.com>

Fix memory leak when engine name cannot be loaded.

348620c7

25 Mar, 2010 2 commits
- update FAQ · 30fc2ab9
  Dr. Stephen Henson authored Mar 25, 2010
  
  30fc2ab9
- Fix for "Record of death" vulnerability CVE-2010-0740. · 5b5464d5
  Bodo Möller authored Mar 25, 2010
```
Also, add missing CHANGES entry for CVE-2009-3245 (code changes submitted to this branch on 23 Feb 2010).
```
  5b5464d5
24 Mar, 2010 2 commits
- initialise buf if wrong_info not used · cd15a052
  Dr. Stephen Henson authored Mar 24, 2010
  
  cd15a052
- PR: 1731 and maybe 2197 · 7b52778e
  Dr. Stephen Henson authored Mar 24, 2010
```
Clear error queue in a few places in SSL code where errors are expected
so they don't stay in the queue.
```
  7b52778e
22 Mar, 2010 2 commits
- rand_win.c: fix logical bug in readscreen [from HEAD]. · 162de2f2
  Andy Polyakov authored Mar 22, 2010
  
  162de2f2
- bss_file.c: fix MSC 6.0 warning [from HEAD]. · f6e4af6f
  Andy Polyakov authored Mar 22, 2010
  
  f6e4af6f
15 Mar, 2010 3 commits
- e_capi.c: fix typo. · 32b76dcd
  Andy Polyakov authored Mar 15, 2010
  
  32b76dcd
- Fix UPLINK typo [from HEAD]. · bcfd2520
  Andy Polyakov authored Mar 15, 2010
  
  bcfd2520
- workaround for missing definition in some headers · 32c45277
  Dr. Stephen Henson authored Mar 15, 2010
  
  32c45277
12 Mar, 2010 2 commits

PR: 2192 · 118b90c5

Dr. Stephen Henson authored Mar 12, 2010

Submitted By: Jaroslav Imrich <jaroslav.imrich@disig.sk>

The prompt_info and wrong_info parameters can be empty strings which
can produce confusing prompts. Treat empty string same as NULL.

118b90c5

missing goto meant signature was never printed out · f6a61b14
Dr. Stephen Henson authored Mar 12, 2010

f6a61b14

10 Mar, 2010 1 commit
- don't leave bogus errors in the queue · 75ece4b5
  Dr. Stephen Henson authored Mar 10, 2010
  
  75ece4b5
09 Mar, 2010 3 commits
- make update · 724cca41
  Dr. Stephen Henson authored Mar 09, 2010
  
  724cca41
- PR: 2188 · 5b3fdb01
  Dr. Stephen Henson authored Mar 09, 2010
```
Submitted By: Jaroslav Imrich <jaroslav.imrich@disig.sk>

Add "missing" functions to get and set prompt constructor.
```
  5b3fdb01
- PR: 2186 · fcc3d026
  Dr. Stephen Henson authored Mar 09, 2010
```
Submitted By: "Joel Rabinovitch" <Joel.Rabinovitch@tecsys.com>

Detect aix64-gcc
```
  fcc3d026
08 Mar, 2010 1 commit
- reserve a few more bits for future cipher modes · 5356ea7c
  Dr. Stephen Henson authored Mar 08, 2010
  
  5356ea7c
07 Mar, 2010 1 commit
- The OID sanity check was incorrect. It should only disallow *leading* 0x80 · 06226df1
  Dr. Stephen Henson authored Mar 07, 2010
```
values.
```
  06226df1
06 Mar, 2010 1 commit
- don't add digest alias if signature algorithm is undefined · bf638ef0
  Dr. Stephen Henson authored Mar 06, 2010
  
  bf638ef0
05 Mar, 2010 1 commit
- Fix memory leak: free up ENGINE functional reference if digest is not · 07973d5d
  Dr. Stephen Henson authored Mar 05, 2010
```
found in an ENGINE.
```
  07973d5d
03 Mar, 2010 3 commits

PR: 2183 · 3b3f7112

Dr. Stephen Henson authored Mar 03, 2010

PR#1999 broke fork detection by assuming HAVE_FORK was set for all platforms.
Include original HAVE_FORK detection logic while allowing it to be
overridden on specific platforms with -DHAVE_FORK=1 or -DHAVE_FORK=0

3b3f7112

Submitted by: Tomas Hoger <thoger@redhat.com> · 47333a34

Dr. Stephen Henson authored Mar 03, 2010

Fix for CVE-2010-0433 where some kerberos enabled versions of OpenSSL
could be crashed if the relevant tables were not present (e.g. chrooted).

47333a34

don't mix definitions and code · d92138f7
Dr. Stephen Henson authored Mar 03, 2010

d92138f7

02 Mar, 2010 1 commit
- Fix s390x-specific HOST_l2c|c2l [from HEAD]. · b2bf3353
  Andy Polyakov authored Mar 02, 2010
```
Submitted by: Andreas Krebbel
```
  b2bf3353
01 Mar, 2010 5 commits
- PR: 2178 · 33bec62a
  Dr. Stephen Henson authored Mar 01, 2010
```
Submitted by: "Kennedy, Brendan" <brendan.kennedy@intel.com>

Handle error codes correctly: cryptodev returns 0 for success whereas OpenSSL
returns 1.
```
  33bec62a
- use supplied ENGINE in genrsa · 2e630b18
  Dr. Stephen Henson authored Mar 01, 2010
  
  2e630b18
- use correct prototype as in HEAD · 002d3fe8
  Dr. Stephen Henson authored Mar 01, 2010
  
  002d3fe8
- 'typo' · fb24311e
  Dr. Stephen Henson authored Mar 01, 2010
  
  fb24311e
- make USE_CRYPTODEV_DIGESTS work · 90278430
  Dr. Stephen Henson authored Mar 01, 2010
  
  90278430