Commits · bfaf796241d60132442db35bebda88dbafef53a1 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Jan 05, 2015

Add a clang build target for linux-x86_64 · bfaf7962

Emilia Kasper authored Jan 05, 2015



This change documents the world as-is, by turning all warnings on,
and then turning warnings that trigger off again.

Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

bfaf7962

Jan 04, 2015

ecp_nistz256-x86_64.pl: fix occasional failures. · c02e2d6a

Andy Polyakov authored Jan 04, 2015



RT: 3607
Reviewed-by: Adam Langley <agl@google.com>
Reviewed-by: Emilia Kasper <emilia@openssl.org>
(cherry picked from commit 9e557ab2)

c02e2d6a

RT2914: NULL check missing in X509_name_canon · 9f49067c

Rich Salz authored Jan 04, 2015



Check for NULL return from X509_NAME_ENTRY_new()

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
(cherry picked from commit 2c60925d)

9f49067c

Jan 02, 2015

Update SGC flag comment. · 5396c119

Dr. Stephen Henson authored Jan 02, 2015



Since SGC has been removed from OpenSSL 1.0.2 the
SSL3_FLAGS_SGC_RESTART_DONE is no longer used. However the #define is
retained for compatibility.
Reviewed-by: Matt Caswell <matt@openssl.org>

5396c119

Remove MS SGC · cf95b2d6

Dr. Stephen Henson authored Oct 24, 2014



MS Server gated cryptography is obsolete and dates from the time of export
restrictions on strong encryption and is only used by ancient versions of
MSIE.
Reviewed-by: Matt Caswell <matt@openssl.org>

(cherry picked from commit 63eab8a6)

cf95b2d6

Clear existing extension state. · 47606dda

Dr. Stephen Henson authored Dec 05, 2014



When parsing ClientHello clear any existing extension state from
SRP login and SRTP profile.

Thanks to Karthikeyan Bhargavan for reporting this issue.
Reviewed-by: Matt Caswell <matt@openssl.org>

(cherry picked from commit 4f605ccb)

Conflicts:
	ssl/t1_lib.c

47606dda

Dec 31, 2014

typo in s_client · c30c8761

Dominik Neubauer authored Mar 04, 2014



Signed-off-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Geoff Thorpe <geoff@openssl.org>

c30c8761

Dec 30, 2014

Make "run" volatile · 73bda31b
Kurt Roeckx authored Dec 16, 2014
```
RT#3629

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
73bda31b

Document openssl dgst -hmac option · dc00fb9d

Thorsten Glaser authored May 22, 2009



Signed-off-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Richard Levitte <levitte@openssl.org>

dc00fb9d

dlfcn: always define _GNU_SOURCE · 06c3e65d

Kurt Roeckx authored Dec 23, 2013

We need this for the freebsd kernel with glibc as used in the Debian kfreebsd
ports. There shouldn't be a problem defining this on systems not using glibc.

Reviewed-by: Richard Levitte <levitte@openssl.org>

06c3e65d

Fix memory leak in the apps · 5984c7e3

Kurt Roeckx authored Dec 07, 2014



The BIO_free() allocated ex_data again that we already freed.

Reviewed-by: Richard Levitte <levitte@openssl.org>

5984c7e3

Dec 22, 2014

Improves certificates HOWTO · beef278b

Alok Menghrajani authored Nov 30, 2014



* adds links to various related documents.
* fixes a few typos.
* rewords a few sentences.

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(cherry picked from commit 67472bd8)

beef278b

Small typo · 58191465

Richard Levitte authored Dec 22, 2014



Reviewed-by: Stephen Henson <steve@openssl.org>
(cherry picked from commit 7cfab40f)

58191465

Dec 20, 2014

Fix incorrect OPENSSL_assert() usage. · 5760c8b8

Michael Tuexen authored Nov 16, 2014



Return an error code for I/O errors instead of an assertion failure.

PR#3470
Reviewed-by: Stephen Henson <steve@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

(cherry picked from commit 2521fcd8)

5760c8b8

Dec 19, 2014
- Fix a problem if CFLAGS is too long cversion.c fails to compile when config · b6514072
  Matt Caswell authored Dec 19, 2014
```
is run with --strict-warnings.

Reviewed-by: Richard Levitte <levitte@openssl.org>
(cherry picked from commit 488f16e3)
```
  b6514072
Dec 18, 2014
- Return error when a bit string indicates an invalid amount of bits left · a760dde6
  Kurt Roeckx authored Dec 15, 2014
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
  a760dde6
Dec 17, 2014

Reject invalid constructed encodings. · f5e4b6b5

Dr. Stephen Henson authored Dec 17, 2014



According to X6.90 null, object identifier, boolean, integer and enumerated
types can only have primitive encodings: return an error if any of
these are received with a constructed encoding.
Reviewed-by: Emilia Käsper <emilia@openssl.org>

f5e4b6b5

Add a comment noting the padding oracle. · 9ca2cc78
Emilia Kasper authored Dec 17, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
(cherry picked from commit 03af8430)
```
9ca2cc78

Revert "RT3425: constant-time evp_enc" · 0cf55223

Emilia Kasper authored Dec 17, 2014

Causes more problems than it fixes: even though error codes
are not part of the stable API, several users rely on the
specific error code, and the change breaks them. Conversely,
we don't have any concrete use-cases for constant-time behaviour here.

This reverts commit 738911cd

.

Reviewed-by: Andy Polyakov <appro@openssl.org>

0cf55223

Build fixes · 0e1c318e

Emilia Kasper authored Dec 15, 2014



Various build fixes, mostly uncovered by clang's unused-const-variable
and unused-function errors.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

0e1c318e

Clear warnings/errors within RL_DEBUG code sections (RL_DEBUG should be renamed) · 8bc8450a
Richard Levitte authored Dec 16, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
8bc8450a
Clear warnings/errors within TLS_DEBUG code sections · bf68456f
Richard Levitte authored Dec 16, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
bf68456f
Clear warnings/errors within KSSL_DEBUG code sections · 53332a75
Richard Levitte authored Dec 16, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
53332a75
Clear warnings/errors within CIPHER_DEBUG code sections · cd387d21
Richard Levitte authored Dec 16, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
cd387d21
Clear warnings/errors within CIPHER_DEBUG code sections · 0c403e80
Richard Levitte authored Dec 16, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
0c403e80
Clear warnings/errors within BN_CTX_DEBUG code sections · 553affbe
Richard Levitte authored Dec 16, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
553affbe

Premaster secret handling fixes · 1ecfb673

Adam Langley authored Dec 16, 2014



From BoringSSL
- Send an alert when the client key exchange isn't correctly formatted.
- Reject overly short RSA ciphertexts to avoid a (benign) out-of-bounds memory access.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
(cherry picked from commit 4aecfd4d)

1ecfb673

Backport regression test · bb565cd2

Bodo Möller authored Oct 13, 2011

master branch has a specific regression test for a bug in x86_64-mont5 code,
see commit cdfe0fdd

.

This code is now in 1.0.2/1.0.1, so also backport the test.

Reviewed-by: Richard Levitte <levitte@openssl.org>

bb565cd2

Check for invalid divisors in BN_div. · a43bcd9e

Emilia Kasper authored Dec 15, 2014



Invalid zero-padding in the divisor could cause a division by 0.

Reviewed-by: Richard Levitte <levitte@openssl.org>

a43bcd9e

Dec 16, 2014

Check return value of ssl3_output_cert_chain · c8667a2e
Dr. Stephen Henson authored Mar 18, 2014
```
(cherry picked from commit 66f96fe2

)

Reviewed-by: Tim Hudson <tjh@openssl.org>
```
c8667a2e
The dtls1_output_cert_chain function no longer exists so remove it from · 5ee44116
Matt Caswell authored Dec 03, 2014
```
ssl_locl.h

Reviewed-by: Tim Hudson <tjh@openssl.org>
```
5ee44116

Don't set client_version to the ServerHello version. · 63ef0db6

Adam Langley authored Dec 13, 2014



The client_version needs to be preserved for the RSA key exchange.

This change also means that renegotiation will, like TLS, repeat the old
client_version rather than advertise only the final version. (Either way,
version change on renego is not allowed.) This is necessary in TLS to work
around an SChannel bug, but it's not strictly necessary in DTLS.

(From BoringSSL)

Reviewed-by: Emilia Käsper <emilia@openssl.org>
(cherry picked from commit ec1af3c4)

63ef0db6

Add more meaningful OPENSSL_NO_ECDH error message for suite b mode · f74f5c85
Matt Caswell authored Dec 16, 2014
```
Reviewed-by: Emilia Käsper <emilia@openssl.org>
(cherry picked from commit db812f2d)
```
f74f5c85

Add OPENSSL_NO_ECDH guards · a38ae11c

Matt Caswell authored Nov 18, 2014



Reviewed-by: Emilia Käsper <emilia@openssl.org>
(cherry picked from commit af6e2d51)

a38ae11c

Remove extraneous white space, and add some braces · 4ca0e95b
Matt Caswell authored Dec 15, 2014
```
Reviewed-by: Emilia Käsper <emilia@openssl.org>
(cherry picked from commit 55e53026)
```
4ca0e95b

DTLS fixes for signed/unsigned issues · f9398b92

Matt Caswell authored Dec 12, 2014



Reviewed-by: Emilia Käsper <emilia@openssl.org>
(cherry picked from commit 1904d211)

f9398b92

Dec 15, 2014

Fix unused variable warning · 6af16ec5

Emilia Kasper authored Dec 15, 2014



The temporary variable causes unused variable warnings in opt mode with clang,
because the subsequent assert is compiled out.

Reviewed-by: Rich Salz <rsalz@openssl.org>

6af16ec5

Dec 13, 2014
- Fix memory leak in s2_srvr.c if BUF_MEM_grow fails · d04a1e0b
  Matt Caswell authored Dec 12, 2014
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
```
  d04a1e0b
- Fixed memory leak if BUF_MEM_grow fails · bb1ddd3d
  Matt Caswell authored Dec 12, 2014
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
```
  bb1ddd3d
Dec 08, 2014
- Fixed memory leak in the event of a failure of BUF_MEM_grow · 6806b690
  Matt Caswell authored Dec 04, 2014
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
(cherry picked from commit 41bf2501)
```
  6806b690