Commits · 7c43601d4424575d589f028aed0d5a4ae337527f · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Mar 01, 2013
- x86_64-gf2m.pl: add missing Windows build fix for #2963. · 7c43601d
  Andy Polyakov authored Mar 01, 2013
```
PR: 3004
```
  7c43601d
Feb 26, 2013
- Ignore MINFO. · 1aaa0419
  Ben Laurie authored Feb 26, 2013
  
  1aaa0419
- Missing files target. · e46a281d
  Ben Laurie authored Feb 26, 2013
  
  e46a281d
- Add function CMS_RecipientInfo_encrypt · e1f1d28f
  Dr. Stephen Henson authored Feb 26, 2013
```
Add CMS_RecipientInfo_encrypt: this function encrypts an existing content
encryption key to match the key in the RecipientInfo structure: this is
useful if a new recpient is added to and existing enveloped data structure.

Add documentation.
```
  e1f1d28f
- Fix error codes. · 388aff08
  Dr. Stephen Henson authored Feb 26, 2013
  
  388aff08
- Demo code for SSL_CONF API · 3646578a
  Dr. Stephen Henson authored Feb 26, 2013
```
Two example programs one for command line argument processing and
one for configuration file processing.
```
  3646578a
- Update SSL_CONF docs. · 4365e4aa
  Dr. Stephen Henson authored Feb 26, 2013
```
Fix some typos and update version number first added: it has now been
backported to OpenSSL 1.0.2.
```
  4365e4aa
Feb 21, 2013
- Fix ignored return value warnings. · 0850f118
  Ben Laurie authored Feb 21, 2013
```
Not sure why I am getting these now and not before.
```
  0850f118
- make depend. · 975dfb1c
  Ben Laurie authored Feb 21, 2013
  
  975dfb1c
Feb 15, 2013

Fix POD errors to stop make install_docs dying with pod2man 2.5.0+ · 5cc27077

Nick Alcock authored Feb 15, 2013

podlators 2.5.0 has switched to dying on POD syntax errors. This means
that a bunch of long-standing erroneous POD in the openssl documentation
now leads to fatal errors from pod2man, halting installation.

Unfortunately POD constraints mean that you have to sort numeric lists
in ascending order if they start with 1: you cannot do 1, 0, 2 even if
you want 1 to appear first. I've reshuffled such (alas, I wish there
were a better way but I don't know of one).

5cc27077

sha256-586.pl: code refresh. · 47edeb9f
Andy Polyakov authored Feb 15, 2013

47edeb9f

Feb 14, 2013
- sha1-586.pl: code refresh. · 35c77b73
  Andy Polyakov authored Feb 14, 2013
  
  35c77b73
- ghash-x86[_64].pl: code refresh. · 273a8081
  Andy Polyakov authored Feb 14, 2013
  
  273a8081
- [aesni-]sha1-x86_64.pl: code refresh. · 7c9e81be
  Andy Polyakov authored Feb 14, 2013
  
  7c9e81be
- sha512-x86_64.pl: add AVX2 code path. · c4558efb
  Andy Polyakov authored Feb 14, 2013
  
  c4558efb
- bn_nist.c: work around clang 3.0 bug. · 750398ac
  Andy Polyakov authored Feb 14, 2013
  
  750398ac
Feb 12, 2013

Upate FAQ. · 2527b94f

Dr. Stephen Henson authored Feb 12, 2013

Add description of "allocate and encode" operation for ASN1 routines.

Document how versioning will for after the letter release reaches
y.

2527b94f

Check DTLS_BAD_VER for version number. · d980abb2

David Woodhouse authored Feb 12, 2013

The version check for DTLS1_VERSION was redundant as
DTLS1_VERSION > TLS1_1_VERSION, however we do need to
check for DTLS1_BAD_VER for compatibility.

PR:2984

d980abb2

Feb 11, 2013
- Fix in ssltest is no-ssl2 configured · b7c37f2f
  Dr. Stephen Henson authored Feb 11, 2013
```
(cherry picked from commit cbf9b4ae)
```
  b7c37f2f
- update FAQ · 7e47a695
  Dr. Stephen Henson authored Feb 11, 2013
  
  7e47a695
- FAQ/README: we are now using Git instead of CVS · 9fa24352
  Lutz Jaenicke authored Feb 11, 2013
```
(cherry picked from commit f88dbb83)
```
  9fa24352
- sparccpuid.S: work around emulator bug on T1. · 3caeef94
  Andy Polyakov authored Feb 11, 2013
  
  3caeef94
Feb 08, 2013
- s3_cbc.c: make CBC_MAC_ROTATE_IN_PLACE universal. · f93a4187
  Andy Polyakov authored Feb 08, 2013
  
  f93a4187
- s3_cbc.c: get rid of expensive divisions. · c98a4545
  Andy Polyakov authored Feb 08, 2013
  
  c98a4545
- s3_cbc.c: fix warning [in Windows build]. · 0e4f7045
  Andy Polyakov authored Feb 08, 2013
  
  0e4f7045
- e_aes_cbc_hmac_sha1.c: align calculated MAC at cache line. · 2141e6f3
  Andy Polyakov authored Feb 08, 2013
```
It also ensures that valgring is happy.
```
  2141e6f3
- ssl/*: revert "remove SSL_RECORD->orig_len" and merge "fix IV". · dd7e60bd
  Andy Polyakov authored Feb 08, 2013
```
Revert is appropriate because binary compatibility is not an issue
in 1.1.
```
  dd7e60bd
Feb 06, 2013

Fix for EXP-RC2-CBC-MD5 · 32620fe9

Adam Langley authored Feb 06, 2013

MD5 should use little endian order. Fortunately the only ciphersuite
affected is EXP-RC2-CBC-MD5 (TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5) which
is a rarely used export grade ciphersuite.
(cherry picked from commit f306b87d766e6ecf30824635c7c395b67cff9dbc)

32620fe9

e_aes_cbc_hmac_sha1.c: cleanse temporary copy of HMAC secret. · 1041ab69
Andy Polyakov authored Feb 03, 2013
```
(cherry picked from commit 529d27ea)
```
1041ab69

e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues. · 9970308c

Andy Polyakov authored Feb 02, 2013

Address CBC decrypt timing issues and reenable the AESNI+SHA1 stitch.
(cherry picked from commit 125093b59f3c2a2d33785b5563d929d0472f1721)

9970308c

ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility. · 2aec073a

Andy Polyakov authored Feb 01, 2013

Kludge alert. This is arranged by passing padding length in unused
bits of SSL3_RECORD->type, so that orig_len can be reconstructed.
(cherry picked from commit 8bfd4c659f180a6ce34f21c0e62956b362067fba)

2aec073a

Don't access EVP_MD_CTX internals directly. · b714a1fe
Dr. Stephen Henson authored Feb 01, 2013
```
(cherry picked from commit 04e45b52)
```
b714a1fe
s3/s3_cbc.c: allow for compilations with NO_SHA256|512. · bbb4ee85
Andy Polyakov authored Feb 01, 2013
```
(cherry picked from commit d5371324)
```
bbb4ee85

ssl/s3_cbc.c: md_state alignment portability fix. · 4af91ec0

Andy Polyakov authored Feb 01, 2013

RISCs are picky and alignment granted by compiler for md_state can be
insufficient for SHA512.
(cherry picked from commit 36260233e7e3396feed884d3f501283e0453c04f)

4af91ec0

ssl/s3_cbc.c: uint64_t portability fix. · 6b2a8439

Andy Polyakov authored Feb 01, 2013

Break dependency on uint64_t. It's possible to declare bits as
unsigned int, because TLS packets are limited in size and 32-bit
value can't overflow.
(cherry picked from commit cab13fc8)

6b2a8439

typo. · 6b1f7bee

Dr. Stephen Henson authored Jan 31, 2013

(cherry picked from commit 34ab3c8c711ff79c2b768f0b17e4b2a78fd1df5d)

6b1f7bee

Add ordinal for CRYPTO_memcmp: since this will affect multiple · 8109e830
Dr. Stephen Henson authored Jan 31, 2013
```
branches it needs to be in a "gap".
(cherry picked from commit 81ce0e14)
```
8109e830

Timing fix mitigation for FIPS mode. · c4e6fb15

Dr. Stephen Henson authored Jan 29, 2013

We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to EVP_DigestSignUpdate to hash additonal blocks
to cover any timing differences caused by removal of padding.
(cherry picked from commit b908e88e)

c4e6fb15

Oops. Add missing file. · a693ead6
Ben Laurie authored Jan 28, 2013
```
(cherry picked from commit 014265eb02e26f35c8db58e2ccbf100b0b2f0072)
```
a693ead6

Update DTLS code to match CBC decoding in TLS. · e33ac0e7

Ben Laurie authored Jan 28, 2013

This change updates the DTLS code to match the constant-time CBC
behaviour in the TLS.
(cherry picked from commit 9f27de170d1b7bef3d46d41382dc4dafde8b3900)

e33ac0e7