Commits · 7832d6ab1c56d1096a23c18a3b56fa3bfd3bed3b · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

May 25, 2011
- PR: 2506 · 7832d6ab
  Dr. Stephen Henson authored May 25, 2011
```
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Fully implement SSL_clear for DTLS.
```
  7832d6ab
- PR: 2505 · ee4b5ceb
  Dr. Stephen Henson authored May 25, 2011
```
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reviewed by: steve

Fix DTLS session resumption timer bug.
```
  ee4b5ceb
- use TLS1_get_version macro to check version so TLS v1.2 changes don't interfere with DTLS · 238b6361
  Dr. Stephen Henson authored May 25, 2011
  
  238b6361
- e_padlock.c: fix typo. · 87f6b97e
  Andy Polyakov authored May 25, 2011
  
  87f6b97e
- rc4-586.pl: optimize unused code path. · 6a99984b
  Andy Polyakov authored May 25, 2011
  
  6a99984b
May 24, 2011
- e_padlock.c: last x86_64 commit didn't work with some optimizers. · 67d8487b
  Andy Polyakov authored May 24, 2011
  
  67d8487b
- rc4-586.pl: 50% improvement on Core2 and 80% on Westmere. · 760d2551
  Andy Polyakov authored May 24, 2011
  
  760d2551
May 23, 2011
- PR: 2522 · 73ab3411
  Dr. Stephen Henson authored May 23, 2011
```
Submitted by: Henrik Grindal Bakken <henribak@cisco.com>

Don't compare past end of buffer.
```
  73ab3411
- spacrv9cap.c: addenum to recent EC optimizations. · 62f29eb1
  Andy Polyakov authored May 23, 2011
  
  62f29eb1
May 22, 2011
- aesni-x86[_64].pl: optimize for Sandy Bridge and add XTS mode. · f8501464
  Andy Polyakov authored May 22, 2011
  
  f8501464
- x86_64-gf2m.pl: add Win64 SEH. · 96abea33
  Andy Polyakov authored May 22, 2011
  
  96abea33
May 21, 2011
- ppccap.c: addenum to recent EC optimizations. · 2e75ed33
  Andy Polyakov authored May 21, 2011
  
  2e75ed33
- ec_cvt.c: ARM comparison results were wrong, clarify the background. · d8ea368c
  Andy Polyakov authored May 21, 2011
  
  d8ea368c
May 20, 2011

ec_cvt.c: avoid EC_GFp_nist_method on platforms with bn_mul_mont [see · fdf6dac8
Andy Polyakov authored May 20, 2011
```
commentary for details].
```
fdf6dac8

PR: 2295 · f37f20ff

Dr. Stephen Henson authored May 20, 2011

Submitted by: Alexei Khlebnikov <alexei.khlebnikov@opera.com>
Reviewed by: steve

OOM checking. Leak in OOM fix. Fall-through comment. Duplicate code
elimination.

f37f20ff

May 19, 2011
- Add CHANGES entry: add FIPS support to ssl · 101e6e19
  Dr. Stephen Henson authored May 19, 2011
  
  101e6e19
- Implement FIPS_mode and FIPS_mode_set · 086e32a6
  Dr. Stephen Henson authored May 19, 2011
  
  086e32a6
- oops · 05b4fc6c
  Dr. Stephen Henson authored May 19, 2011
  
  05b4fc6c
- update date · 0fba7a8f
  Dr. Stephen Henson authored May 19, 2011
  
  0fba7a8f
- inherit HMAC flags from MD_CTX · 92b4d936
  Dr. Stephen Henson authored May 19, 2011
  
  92b4d936
- set encodedPoint to NULL after freeing it · 4f7533eb
  Dr. Stephen Henson authored May 19, 2011
  
  4f7533eb
May 18, 2011
- aesni-x86_64.pl: make it compile on MacOS X. · fb2f3411
  Andy Polyakov authored May 18, 2011
  
  fb2f3411
- x86gas.pl: don't omit .comm OPENSSL_ia32cap_P on MacOS X. · c30a2505
  Andy Polyakov authored May 18, 2011
  
  c30a2505
- x86_64-xlate.pl: add inter-register movq and make x86_64-gfm.s compile on · c7b903e0
  Andy Polyakov authored May 18, 2011
```
Solaris, MacOS X, elderly gas...
```
  c7b903e0
- x86_64cpuid.pl: allow shared build to work without -Bsymbolic. · ddc20d4d
  Andy Polyakov authored May 18, 2011
```
PR: 2466
```
  ddc20d4d
- e_padlock.c: make it compile on MacOS X. · b5084203
  Andy Polyakov authored May 18, 2011
  
  b5084203
May 16, 2011
- x86[_64]cpuid.pl: handle new extensions. · b9064221
  Andy Polyakov authored May 16, 2011
  
  b9064221
- ppc-xlate.pl: get linux64 declaration right. · a3e07010
  Andy Polyakov authored May 16, 2011
  
  a3e07010
- cms-test.pl: make it work with not-so-latest perl. · 9c437e2f
  Andy Polyakov authored May 16, 2011
  
  9c437e2f
- x86gas.pl: add palignr and move pclmulqdq. · 2b9a8ca1
  Andy Polyakov authored May 16, 2011
  
  2b9a8ca1
- x86_64 assembler pack: add x86_64-gf2m module. · afebe623
  Andy Polyakov authored May 16, 2011
  
  afebe623
- x86_64-xlate.pl: allow "base-less" effective address, add palignr, move · b5c6aab5
  Andy Polyakov authored May 16, 2011
```
pclmulqdq.
```
  b5c6aab5
May 15, 2011
- new flag to stop ENGINE methods being registered · b9b0a177
  Dr. Stephen Henson authored May 15, 2011
  
  b9b0a177
- NULL is a valid cspname · 9609ea86
  Dr. Stephen Henson authored May 15, 2011
  
  9609ea86
May 13, 2011
- Typo. · ff636340
  Dr. Stephen Henson authored May 13, 2011
  
  ff636340
- typo · 3ece5928
  Dr. Stephen Henson authored May 13, 2011
  
  3ece5928
- Recognise NO_NISTP224-64-GCC-128 · a75829de
  Dr. Stephen Henson authored May 13, 2011
  
  a75829de
May 12, 2011
- Enter FIPS mode by calling FIPS_module_mode_set in openssl.c until · d39c4951
  Dr. Stephen Henson authored May 12, 2011
```
FIPS_mode_set is implemented.
```
  d39c4951
- Provisional support for TLS v1.2 client authentication: client side only. · 855a54a9
  Dr. Stephen Henson authored May 12, 2011
```
Parse certificate request message and set digests appropriately.

Generate new TLS v1.2 format certificate verify message.

Keep handshake caches around for longer as they are needed for client auth.
```
  855a54a9
- Process signature algorithms during TLS v1.2 client authentication. · 8f829124
  Dr. Stephen Henson authored May 12, 2011
```
Make sure message is long enough for signature algorithms.
```
  8f829124