Commits · 9bf5fd894f02d832dc0ce7c1bf8b186f758d533f · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Mar 31, 2012
- modes_lcl.h: make it work on i386 [from HEAD]. · 9bf5fd89
  Andy Polyakov authored Mar 31, 2012
```
PR: 2780
```
  9bf5fd89
- vpaes-x86[_64].pl: handle zero length in vpaes_cbc_encrypt [from HEAD]. · 6296729f
  Andy Polyakov authored Mar 31, 2012
```
PR: 2775
```
  6296729f
- util/cygwin.sh update [from HEAD]. · 67d21680
  Andy Polyakov authored Mar 31, 2012
```
PR: 2761
Submitted by: Corinna Vinschen
```
  67d21680
Mar 30, 2012
- bn/bn_gf2m.c: make new BN_GF2m_mod_inv work with BN_DEBUG_RAND [from HEAD]. · 0a5575f3
  Andy Polyakov authored Mar 30, 2012
  
  0a5575f3
Mar 29, 2012
- Experimental workaround to large client hello issue (see PR#2771). · 418044cb
  Dr. Stephen Henson authored Mar 29, 2012
```
If OPENSSL_NO_TLS1_2_CLIENT is set then TLS v1.2 is disabled for clients
only.
```
  418044cb
- perlasm/x86masm.pl: fix last fix [from HEAD]. · 8c67b134
  Andy Polyakov authored Mar 29, 2012
  
  8c67b134
- ans1/tasn_prn.c: avoid bool in variable names [from HEAD]. · 2a477ccf
  Andy Polyakov authored Mar 29, 2012
```
PR: 2776
```
  2a477ccf
Mar 22, 2012
- fix leak · c34137be
  Dr. Stephen Henson authored Mar 22, 2012
  
  c34137be
- Submitted by: Markus Friedl <mfriedl@gmail.com> · 914d91c5
  Dr. Stephen Henson authored Mar 22, 2012
```
Fix memory leaks in 'goto err' cases.
```
  914d91c5
- update version to 1.0.1a-dev · e733dea3
  Dr. Stephen Henson authored Mar 22, 2012
  
  e733dea3
Mar 21, 2012
- use client version when deciding whether to send supported signature algorithms extension · 78c5d2a9
  Dr. Stephen Henson authored Mar 21, 2012
  
  78c5d2a9
Mar 18, 2012
- Always use SSLv23_{client,server}_method in s_client.c and s_server.c, · 3bf4e14c
  Dr. Stephen Henson authored Mar 18, 2012
```
the old code came from SSLeay days before TLS was even supported.
```
  3bf4e14c
Mar 16, 2012
- bsaes-x86_64.pl: optimize key conversion [from HEAD]. · d68d160c
  Andy Polyakov authored Mar 16, 2012
  
  d68d160c
Mar 14, 2012
- remove trailing slash · 202cb42f
  Dr. Stephen Henson authored Mar 14, 2012
  
  202cb42f
- cipher should only be set to PSK if JPAKE is used. · 49f6cb96
  Richard Levitte authored Mar 14, 2012
  
  OpenSSL_1_0_1
  
  49f6cb96
- update STATUS · 07e120b7
  Dr. Stephen Henson authored Mar 14, 2012
  
  07e120b7
- prepare for 1.0.1 release · f3dcae15
  Dr. Stephen Henson authored Mar 14, 2012
  
  f3dcae15
Mar 13, 2012
- update NEWS · 25ec498d
  Dr. Stephen Henson authored Mar 13, 2012
  
  25ec498d
- ssl/t1_enc.c: pay attention to EVP_CIPH_FLAG_CUSTOM_CIPHER [from HEAD]. · 9cc42cb0
  Andy Polyakov authored Mar 13, 2012
  
  9cc42cb0
- x86_64-xlate.pl: remove old kludge. · bcf9cf89
  Andy Polyakov authored Mar 13, 2012
```
PR: 2435,2440
```
  bcf9cf89
Mar 12, 2012
- corrected fix to PR#2711 and also cover mime_param_cmp · f0729fc3
  Dr. Stephen Henson authored Mar 12, 2012
  
  f0729fc3
- Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and · 8186c00e
  Dr. Stephen Henson authored Mar 12, 2012
```
continue with symmetric decryption process to avoid leaking timing
information to an attacker.

Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering
this issue. (CVE-2012-0884)
```
  8186c00e
Mar 11, 2012

PR: 2744 · c0b31ccb

Dr. Stephen Henson authored Mar 11, 2012

Submitted by: Dmitry Belyavsky <beldmit@gmail.com>

CMS support for ccgost engine

c0b31ccb

Mar 09, 2012
- Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr> · 267c950c
  Dr. Stephen Henson authored Mar 09, 2012
```
Add more extension names in s_cb.c extension printing code.
```
  267c950c
- PR: 2756 · ce1605b5
  Dr. Stephen Henson authored Mar 09, 2012
```
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>

Fix DTLS timeout handling.
```
  ce1605b5
Mar 08, 2012
- check return value of BIO_write in PKCS7_decrypt · 66fdb1c0
  Dr. Stephen Henson authored Mar 08, 2012
  
  66fdb1c0
Mar 06, 2012

PR: 2755 · 25bfdca1

Dr. Stephen Henson authored Mar 06, 2012

Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>

Reduce MTU after failed transmissions.

25bfdca1

PR: 2748 · 9c284f96

Dr. Stephen Henson authored Mar 06, 2012

Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>

Fix possible DTLS timer deadlock.

9c284f96

Mar 03, 2012
- Configure: make no-whirlpool work [from HEAD]. · 6d78c381
  Andy Polyakov authored Mar 03, 2012
  
  6d78c381
Mar 01, 2012
- On OpenVMS, try sha256 and sha512 et al as well. · 784e2080
  Richard Levitte authored Mar 01, 2012
  
  784e2080
- For OpenVMS, use inttypes.h instead of stdint.h · 70505bc3
  Richard Levitte authored Mar 01, 2012
  
  70505bc3
Feb 29, 2012

PR: 2743 · 8e8b2473

Dr. Stephen Henson authored Feb 29, 2012

Reported by: Dmitry Belyavsky <beldmit@gmail.com>

Fix memory leak if invalid GOST MAC key given.

8e8b2473

PR: 2742 · a8595879

Dr. Stephen Henson authored Feb 29, 2012

Reported by: Dmitry Belyavsky <beldmit@gmail.com>

If resigning with detached content in CMS just copy data across.

a8595879

Feb 28, 2012
- Fix memory leak cause by race condition when creating public keys. · 33a688e8
  Dr. Stephen Henson authored Feb 28, 2012
```
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
```
  33a688e8
- x86cpuid.pl: fix processor capability detection on pre-586 [from HEAD]. · 5c2bfad9
  Andy Polyakov authored Feb 28, 2012
  
  5c2bfad9
Feb 27, 2012

PR: 2736 · 250f9792

Dr. Stephen Henson authored Feb 27, 2012

Reported by: Remi Gacogne <rgacogne-bugs@coredump.fr>

Preserve unused bits value in non-canonicalised ASN1_STRING structures
by using ASN1_STRING_copy which preseves flags.

250f9792

PR: 2737 · b527b6e8

Dr. Stephen Henson authored Feb 27, 2012

Submitted by: Remi Gacogne <rgacogne-bugs@coredump.fr>

Fix double free in PKCS12_parse if we run out of memory.

b527b6e8

PR: 2739 · a54ce007

Dr. Stephen Henson authored Feb 27, 2012

Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>

Fix padding bugs in Heartbeat support.

a54ce007

PR: 2735 · 4ed1f349

Dr. Stephen Henson authored Feb 27, 2012

Make cryptodev digests work. Thanks to Nikos Mavrogiannopoulos for
this fix.

4ed1f349

free headers after use in error message · 0a082e9b
Dr. Stephen Henson authored Feb 27, 2012

0a082e9b