- May 23, 2014
-
-
Andy Polyakov authored
-
- May 22, 2014
-
-
-
Mike Bland authored
Replaces the entire test with a trivial implementation when OPENSSL_NO_HEARTBEATS is defined.
-
Ben Laurie authored
-
- May 21, 2014
-
-
Matt Caswell authored
-
Matt Caswell authored
-
Ben Laurie authored
-
Ben Laurie authored
-
Viktor Dukhovni authored
Fixes to host checking wild card support and add support for setting host checking flags when verifying a certificate chain.
-
Dr. Stephen Henson authored
Use triple DES for certificate encryption if no-rc2 is specified. PR#3357
-
Dr. Stephen Henson authored
PR#3357
-
- May 20, 2014
-
-
Andy Polyakov authored
-
Andy Polyakov authored
-
Ben Laurie authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- May 19, 2014
-
-
Janpopan authored
-
Ben Laurie authored
-
Ben Laurie authored
-
Mike Bland authored
The previous calls to memset() were added to tear_down() when I noticed the test spuriously failing in opt mode, with different results each time. This appeared to be because the allocator zeros out memory in debug mode, but not in opt mode. Since the heartbeat functions silently drop the request on error without modifying the contents of the write buffer, whatever random contents were in memory before being reallocated to the write buffer used in the test would cause nondeterministic test failures in the Heartbleed regression cases. Adding these calls allowed the test to pass in both debug and opt modes. Ben Laurie notified me offline that the test was aborting in debug-ben-debug-64-clang mode, configured with GitConfigure and built with GitMake. Looking into this, I realized the first memset() call was zeroing out a reference count used by SSL_free() that was checked in debug-ben-debug-64-clang mode but not in the normal debug mode. Removing the memset() calls from tear_down() and adding a memset() for the write buffer in set_up() addresses the issue and allows the test to successfully execute in debug, opt, and debug-ben-debug-64-clang modes.
-
Mike Bland authored
Checks the return values of ssl_init_wbio_buffer() and ssl3_setup_buffers().
-
Ben Laurie authored
-
Mike Bland authored
Regression test against CVE-2014-0160 (Heartbleed). More info: http://mike-bland.com/tags/heartbleed.html
-
Andy Polyakov authored
"Teaser" means that it's initial proof-of-concept to build EVP module upon.
-
- May 15, 2014
-
-
Matt Caswell authored
Moved note about lack of support for AEAD modes out of BUGS section to SUPPORTED CIPHERS section (bug has been fixed, but still no support for AEAD)
-
Dr. Stephen Henson authored
(cherry picked from commit 09184dddead165901700b31eb39d540ba30f93c5)
-
- May 14, 2014
-
-
Jeffrey Walton authored
-
Jeffrey Walton authored
-
Michal Bozon authored
-
- May 12, 2014
-
-
Mike Frysinger authored
various link settings. PR#3332
-
Kurt Roeckx authored
-
Jean-Paul Calderone authored
-
Serguei E. Leontiev authored
Replace manual ASN.1 decoder with ASN1_get object. This will decode the tag and length properly and check against it does not exceed the supplied buffer length. PR#3335
-
Dr. Stephen Henson authored
-
Andy Polyakov authored
"Teaser" means that it's not integrated yet and purpose of this commit is primarily informational, to exhibit design choices, such as how to handle alignment and endianness. In other words it's proof-of-concept code that EVP module will build upon.
-
- May 11, 2014
-
-
Matt Caswell authored
-
Kurt Roeckx authored
-
Martin Brejcha authored
PR: 3327
-
Günther Noack authored
PR: 3317
-