Skip to content
  1. Feb 07, 2018
  3. Jan 29, 2018
  5. Jan 28, 2018
  7. Jan 23, 2018
  9. Jan 07, 2018
  11. Jan 02, 2018
  13. Dec 12, 2017
  15. Dec 07, 2017
  17. Dec 06, 2017
  19. Nov 21, 2017
    • Paul Yang's avatar
      Support multi-prime RSA (RFC 8017) · 665d899f
      Paul Yang authored 
      

* Introduce RSA_generate_multi_prime_key to generate multi-prime
  RSA private key. As well as the following functions:
    RSA_get_multi_prime_extra_count
    RSA_get0_multi_prime_factors
    RSA_get0_multi_prime_crt_params
    RSA_set0_multi_prime_params
    RSA_get_version
* Support EVP operations for multi-prime RSA
* Support ASN.1 operations for multi-prime RSA
* Support multi-prime check in RSA_check_key_ex
* Support multi-prime RSA in apps/genrsa and apps/speed
* Support multi-prime RSA manipulation functions
* Test cases and documentation are added
* CHANGES is updated

Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
Reviewed-by: default avatarBernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/4241)
      665d899f
  21. Nov 12, 2017
  23. Nov 05, 2017
  25. Nov 02, 2017
  27. Oct 31, 2017
  29. Oct 25, 2017
  31. Oct 07, 2017
  33. Aug 30, 2017
  35. Aug 27, 2017
  37. Aug 15, 2017
  39. Aug 07, 2017
  41. Jul 25, 2017
  43. Jul 03, 2017
  45. Jun 29, 2017
  47. Jun 28, 2017
  49. Jun 27, 2017
    • Richard Levitte's avatar
      util/mkerr.pl: allow module names prefixed with OSSL_ or OPENSSL_ · 4b2799c1
      Richard Levitte authored 
      

To make sure that our symbols don't clash with other libraries, we
claim the namespaces OSSL and OPENSSL.  Because C doesn't provide
namespaces, the only solution is to have them as prefixes on symbols,
thus we allow OSSL_ and OPENSSL_ as prefixes.

These namespace prefixes are optional for the foreseeable future, and
will only be used for new modules as needed on a case by case basis,
until further notice.

For extra safety, there's an added requirement that module names -
apart from the namespace prefix - be at least 2 characters long.

Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3781)
      4b2799c1
  51. Jun 19, 2017
  53. Jun 16, 2017
  55. Jun 08, 2017
  57. Jun 02, 2017
  59. May 31, 2017
  61. May 25, 2017
  63. May 17, 2017
    • Matt Caswell's avatar
      Don't allow fragmented alerts · bd990e25
      Matt Caswell authored 
      

An alert message is 2 bytes long. In theory it is permissible in SSLv3 -
TLSv1.2 to fragment such alerts across multiple records (some of which
could be empty). In practice it make no sense to send an empty alert
record, or to fragment one. TLSv1.3 prohibts this altogether and other
libraries (BoringSSL, NSS) do not support this at all. Supporting it adds
significant complexity to the record layer, and its removal is unlikely
to cause inter-operability issues.

The DTLS code for this never worked anyway and it is not supported at a
protocol level for DTLS. Similarly fragmented DTLS handshake records only
work at a protocol level where at least the handshake message header
exists within the record. DTLS code existed for trying to handle fragmented
handshake records smaller than this size. This code didn't work either so
has also been removed.

Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3476)
      bd990e25
  65. Apr 27, 2017
  67. Apr 20, 2017
  69. Apr 10, 2017
  71. Apr 07, 2017
  73. Mar 30, 2017
  75. Mar 29, 2017