Commits · e46f23344462c33b9a9c25d5cfe09be7d1f039e3 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Dec 08, 2016

Add EncryptedExtensions message · e46f2334

Matt Caswell authored Nov 23, 2016



At this stage the message is just empty. We need to fill it in with
extension data.

Perl changes reviewed by Richard Levitte. Non-perl changes reviewed by Rich
Salz

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

e46f2334

Send and Receive a TLSv1.3 format ServerHello · 71728dd8

Matt Caswell authored Nov 07, 2016



There are some minor differences in the format of a ServerHello in TLSv1.3.

Perl changes reviewed by Richard Levitte. Non-perl changes reviewed by Rich
Salz

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

71728dd8

UI_OpenSSL()'s session opener fails on MacOS X · c901bcce

Richard Levitte authored Dec 07, 2016



If on a non-tty stdin, TTY_get() will fail with errno == ENODEV.
We didn't catch that.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2039)

c901bcce

In UI_OpenSSL's open(), generate an error on unknown errno · 49844486

Richard Levitte authored Dec 08, 2016



TTY_get() sometimes surprises us with new errno values to determine if
we have a controling terminal or not.  This generated error is a
helpful tool to figure out that this was what happened and what the
unknown value is.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2043)

49844486

Make sure that password_callback exercises UI · 57c0f378

Richard Levitte authored Dec 08, 2016



Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2040)

57c0f378

Dec 07, 2016

Add a test for the UI API · 17ac8eaf

Richard Levitte authored Dec 07, 2016



The best way to test the UI interface is currently by using an openssl
command that uses password_callback.  The only one that does this is
'genrsa'.
Since password_callback uses a UI method derived from UI_OpenSSL(), it
ensures that one gets tested well enough as well.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2040)

17ac8eaf

UI_process() didn't generate errors · 0a687ab0

Richard Levitte authored Dec 07, 2016



Since there are many parts of UI_process() that can go wrong, it isn't
very helpful to only return -1 with no further explanation.  With this
change, the error message will at least show which part went wrong.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2037)

0a687ab0

Dec 05, 2016
- Also set the CXXFLAG to the user supplied flags · 7cb58c0f
  Kurt Roeckx authored Dec 03, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>

GH: #2025
```
  7cb58c0f
- travis: Use no-shared for the FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION targets · 2886a69c
  Kurt Roeckx authored Dec 03, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>

GH: #2025
```
  2886a69c
- Change various repeated wr[someindex]/pkt[someindex] references to a pointer · 44e58f3b
  Matt Caswell authored Dec 05, 2016
```
Improves the readability of the code, and reduces the liklihood of errors.
Also made a few minor style changes.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  44e58f3b
- Various style fixes from the TLSv1.3 record changes review · 829754a6
  Matt Caswell authored Dec 02, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  829754a6
- Change various repeated rr[someindex] references to a pointer · 88858868
  Matt Caswell authored Dec 02, 2016
```
Improves the readability of the code, and reduces the liklihood of errors.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  88858868
- Ensure compressdata is always initialised · e8eb224b
  Matt Caswell authored Dec 01, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  e8eb224b
- Add a TLS1.3 TODO for the msg callback · f31d5e10
  Matt Caswell authored Nov 21, 2016
```
At the moment the msg callback only received the record header with the
outer record type in it. We never pass the inner record type - we probably
need to at some point.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  f31d5e10
- Add more TLS1.3 record tests · b4c6e37e
  Matt Caswell authored Nov 21, 2016
```
Add some tests for the new record construction

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  b4c6e37e
- Update the record layer to use TLSv1.3 style record construction · e60ce9c4
  Matt Caswell authored Nov 18, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  e60ce9c4
- Convert TLS Record receipt to use PACKET · 6a149cee
  Matt Caswell authored Nov 18, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  6a149cee
- Convert TLS record construction to use WPACKET · c7c42022
  Matt Caswell authored Nov 18, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  c7c42022
- Add an ability to find out the current write location from a WPACKET · 3171bad6
  Matt Caswell authored Nov 18, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  3171bad6
Dec 03, 2016
- Restore last-resort expired untrusted intermediate issuers · c53f7355
  Viktor Dukhovni authored Nov 25, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
  c53f7355
Dec 02, 2016

Run a some tests with -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION · ef2bf0f5

Kurt Roeckx authored Dec 02, 2016



The fuzzers use -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION, and actually
get different results based on that. We should have at least some
targets that actually fully use the fuzz corpora.

Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023

ef2bf0f5

Make the fuzzers more reproducible · d69d8f90

Kurt Roeckx authored Dec 02, 2016



We want to be in the same global state each time we come in
FuzzerTestOneInput(). There are various reasons why we might not be that
include:
- Initialization that happens on first use. This is mostly the
  RUN_ONCE() things, or loading of error strings.
- Results that get cached. For instance a stack that is sorted, RSA
  blinding that has been set up, ...

So I try to trigger as much as possible in FuzzerInitialize(), and for
things I didn't find out how to trigger this it needs to happen in
FuzzerTestOneInput().

Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023

d69d8f90

Move libfuzzer sanitizer options to README · 0282aeb6

Kurt Roeckx authored Dec 02, 2016



This is something you might want to change depending on the version to
use, there is no point in us fixing this to something.

Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023

0282aeb6

CMS fuzzer: also use id2 · 1b6a77a1
Kurt Roeckx authored Nov 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023
```
1b6a77a1
Make the random number generator predictable when fuzzing. · 3a9b9b2d
Kurt Roeckx authored Nov 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023
```
3a9b9b2d
Use 8bit-counters when using libfuzzer · 3a85d05f
Kurt Roeckx authored Nov 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023
```
3a85d05f
bndiv fuzzer: move new and free calls to the init and cleanup function. · 8087bcb3
Kurt Roeckx authored Nov 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023
```
8087bcb3
bignum fuzzer: move new and free calls to the init and cleanup function. · 7d22ccee
Kurt Roeckx authored Nov 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023
```
7d22ccee
asn1parse: create the out bio during init, free it during cleanup · da15cb7c
Kurt Roeckx authored Nov 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023
```
da15cb7c

Add a FuzzerClean() function · ad4da7fb

Kurt Roeckx authored Nov 19, 2016



This allows to free everything we allocated, so we can detect memory
leaks.

Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023

ad4da7fb

FuzzerInitialize always exists · baae2cbc

Kurt Roeckx authored Nov 19, 2016



There was a time it could be NULL, but that was changed to always have it.

Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023

baae2cbc

Fix formatting of fuzzers · f3e911d5
Kurt Roeckx authored Nov 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2023
```
f3e911d5
Fix a typo in bio_read_intern · 82cb311f
Matt Caswell authored Dec 01, 2016
```
Reviewed-by: Stephen Henson <steve@openssl.org>
```
82cb311f

Nov 30, 2016
- Make refdata in tls13encryptest static · bcd62c25
  Matt Caswell authored Nov 30, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  bcd62c25
- Convert tls13encryptiontest so that we pass around a pointer not an index · f60d68dc
  Matt Caswell authored Nov 30, 2016
```
We also split the long string literals into 3 to avoid problems where we
go over the 509 character limit.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  f60d68dc
Nov 29, 2016
- Fix some style issues in the TLSv1.3 nonce construction code · 6606d600
  Matt Caswell authored Nov 29, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  6606d600
- Fix a double free in tls13encryptiontest · d3ab93e9
  Matt Caswell authored Nov 22, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  d3ab93e9
- Fix a travis compilation error · 6c670174
  Matt Caswell authored Nov 21, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  6c670174
- Add a test for TLSv1.3 encryption using the new nonce construction · f01675c6
  Matt Caswell authored Nov 17, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  f01675c6
- Use the TLSv1.3 nonce construction · bebc0c7d
  Matt Caswell authored Nov 17, 2016
```
This updates the record layer to use the TLSv1.3 style nonce construciton.
It also updates TLSProxy and ossltest to be able to recognise the new
layout.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
  bebc0c7d