Commits · ecf4d660902dcef6e0afc51d52926f00d409ee6b · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Aug 28, 2014

Dr. Stephen Henson authored Aug 10, 2014



Use the same structure for client and server custom extensions.

Add utility functions in new file t1_ext.c.
Use new utility functions to handle custom server and client extensions
and remove a lot of code duplication.
Reviewed-by: Emilia Käsper <emilia@openssl.org>

ecf4d660

fix warning · 879bde12
Dr. Stephen Henson authored Aug 26, 2014
```
Reviewed-by: Geoff Thorpe <geoff@openssl.org>
```
879bde12

Constant-time utilities · 5a3d21c0

Emilia Kasper authored Aug 28, 2014



Pull constant-time methods out to a separate header, add tests.

Reviewed-by: Bodo Moeller <bodo@openssl.org>

5a3d21c0

RT2400: ASN1_STRING_to_UTF8 missing initializer · f9fb43e1
Raphael Spreitzer authored Aug 27, 2014
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
```
f9fb43e1
Merge branch 'master' of git.openssl.org:openssl · 506a3d1f
Rich Salz authored Aug 27, 2014
```
Gah, I hate when I forget to pull before merging.

Reviewed-by: rsalz
```
506a3d1f

RT2308: Add extern "C" { ... } wrapper · 17e80c6b

Rich Salz authored Aug 27, 2014



Add the wrapper to all public header files (Configure
generates one).  Don't bother for those that are just
lists of #define's that do renaming.

Reviewed-by: Tim Hudson <tjh@openssl.org>

17e80c6b

Aug 27, 2014

Explicitly check for empty ASN.1 strings in d2i_ECPrivateKey · f34a5720

Emilia Kasper authored Aug 25, 2014



The old code implicitly relies on the ASN.1 code returning a \0-prefixed buffer
when the buffer length is 0. Change this to verify explicitly that the ASN.1 string
has positive length.

Reviewed-by: Dr Stephen Henson <steve@openssl.org>

f34a5720

RT3065: automatically generate a missing EC public key · f063e30f

Matt Caswell authored Aug 22, 2014

When d2i_ECPrivateKey reads a private key with a missing (optional) public key,
generate one automatically from the group and private key.

Reviewed-by: Dr Stephen Henson <steve@openssl.org>

f063e30f

RT3065: ec_private_key_dont_crash · 0388ac4c

Adam Langley authored Apr 23, 2013



This change saves several EC routines from crashing when an EC_KEY is
missing a public key. The public key is optional in the EC private key
format and, without this patch, running the following through `openssl
ec` causes a crash:

-----BEGIN EC PRIVATE KEY-----
MBkCAQEECAECAwQFBgcIoAoGCCqGSM49AwEH
-----END EC PRIVATE KEY-----

Reviewed-by: Dr Stephen Henson <steve@openssl.org>

0388ac4c

RT2210: Add missing EVP_cleanup to example · 7b3e11c5

Mihai Militaru authored Aug 26, 2014



I also removed some trailing whitespace and cleaned
up the "see also" list.

Reviewed-by: Emilia Kasper <emilia@openssl.org>

7b3e11c5

Add tags/TAGS target; rm tags/TAGS in clean · 34ccd24d
Rich Salz authored Aug 26, 2014
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
```
34ccd24d

Aug 26, 2014

Merge branch 'master' of git.openssl.org:openssl · ed49eb4a
Rich Salz authored Aug 26, 2014
```
Stupid git tricks :(

Reviewed-by: rsalz
```
ed49eb4a

RT1744: SSL_CTX_set_dump_dh() doc feedback · fa60b909

David Gatwood authored Aug 26, 2014



The description of when the server creates a DH key is
confusing.  This cleans it up.
(rsalz: also removed trailing whitespace.)

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

fa60b909

RT1744: SSL_CTX_set_dump_dh() doc feedback · a4d266b8

David Gatwood authored Aug 26, 2014



The description of when the server creates a DH key is
confusing.  This cleans it up.
(rsalz: also removed trailing whitespace.)

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

a4d266b8

Aug 25, 2014

RT1804: fix EXAMPLE in EVP_EncryptInit.pod · fd4592be

Jan Schaumann authored Aug 14, 2014



The EXAMPLE that used FILE and RC2 doesn't compile due to a
few minor errors.  Tweak to use IDEA and AES-128. Remove
examples about RC2 and RC5.

Reviewed-by: Emilia Kasper <emilia@openssl.org>

fd4592be

Aug 24, 2014

Typo fixes to evp documentation. · 2dd8cb3b

Matt Caswell authored Jul 24, 2014



This patch was submitted by user "Kox" via the wiki

Reviewed-by: Tim Hudson <tjh@openssl.org>

2dd8cb3b

Aug 22, 2014

RT 3060: amend patch · be0477a8

Emilia Kasper authored Aug 21, 2014



Use existing error code SSL_R_RECORD_TOO_SMALL for too many empty records.

For ease of backporting the patch to release branches.

Reviewed-by: Bodo Moeller <bodo@openssl.org>

be0477a8

RT3061: slightly amend patch · bc46db60

Emilia Kasper authored Aug 22, 2014



Add an extra NULL dereference check

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

bc46db60

Improve EVP_PKEY_sign documentation · d64c533a

Emilia Kasper authored Aug 22, 2014



Clarify the intended use of EVP_PKEY_sign. Make the code example compile.

Reviewed-by: Dr Stephen Henson <steve@openssl.org>

d64c533a

Aug 21, 2014

RT3142: Extra initialization in state_machine · a520ae36

Jeffrey Walton authored Aug 19, 2014



Remove extra initialization calls in the sample program.

Reviewed-by: Emilia Kasper <emilia@openssl.org>

a520ae36

define inline for Visual Studio · f511b25a

Emilia Kasper authored Aug 19, 2014

In Visual Studio, inline is available in C++ only, however __inline is available for C, see
http://msdn.microsoft.com/en-us/library/z8y1yy88.aspx

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Dr Stephen Henson <steve@openssl.org>

f511b25a

Fix build when BSAES_ASM is defined but VPAES_ASM is not · da92be4d
Emilia Kasper authored Aug 19, 2014
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
da92be4d

Aug 20, 2014
- bn/asm/rsaz-*.pl: allow spaces in Perl path name. · 15735e4f
  Andy Polyakov authored Aug 21, 2014
```
RT: 2835

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
```
  15735e4f
- sha1-mb-x86_64.pl: add commentary. · e608273a
  Andy Polyakov authored Aug 21, 2014
```
Reviewed-by: Emilia Kasper <emilia@openssl.org>
```
  e608273a
- PR2490: Remove unused local variable bn ecp_nist.c · 09ec8c8e
  Laszlo Papp authored Aug 18, 2014
```
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
```
  09ec8c8e
- crypto/evp/e_aes_cbc_hmac_sha[1|256].c: fix compiler warnings. · 2893a302
  Andy Polyakov authored Aug 20, 2014
```
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
```
  2893a302
- sha1-mb-x86_64.pl: fix typo. · 55eb14da
  Andy Polyakov authored Aug 20, 2014
```
Reviewed-by: Emilia Kasper <emilia@openssl.org>
```
  55eb14da
Aug 19, 2014

RT2847: Don't "check" uninitialized memory · 89fb142b

Martin Olsson authored Aug 19, 2014



Don't check err variable until after it's been set.

Reviewed-by: Emilia Kasper <emilia@openssl.org>

89fb142b

RT2848: Remove extra NULL check · 96208cb1

Martin Olsson authored Aug 19, 2014



Don't need to check auth for NULL since we did when we
assigned to it.

Reviewed-by: Emilia Kasper <emilia@openssl.org>

96208cb1

RT2513: Fix typo's paramter-->parameter · 1afd7fa9

Martin Olsson authored Aug 19, 2014



I also found a couple of others (padlock and signinit)
and fixed them.

Reviewed-by: Emilia Kasper <emilia@openssl.org>

1afd7fa9

Merge branch 'master' of git.openssl.org:openssl · 0df043f6
Rich Salz authored Aug 19, 2014

0df043f6

PR2401: Typos in FAQ · 76b10e13

Jeffrey Walton authored Aug 18, 2014



Also rewrite section on compiler bugs; Matt pointed out that
it has some grammatical issues.

Reviewed-by: Emilia Kasper <emilia@openssl.org>

76b10e13

PR2401: Typos in FAQ · bcd3e36c

Jeffrey Walton authored Aug 18, 2014

Also rewrite section on compiler bugs; Matt pointed out that
it has some grammatical issues.

bcd3e36c

RT2724: Remove extra declaration · 3609b023

John Fitzgibbon authored Aug 18, 2014



Extra SSL_get_selected_srtp_profile() declaration in ssl/srtp.h
causes -Werror builds to fail.

Reviewed-by: Tim Hudson <tjh@openssl.org>

3609b023

Aug 18, 2014

RT2492: Remove extra NULL check. · 8b6e517e
Laszlo Papp authored Aug 18, 2014

8b6e517e
RT2489: Remove extra "sig" local variable. · ddc29125
Laszlo Papp authored Aug 18, 2014
```
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
```
ddc29125
RT2942: CRYPTO_set_dynlock_create_callback doc fix · fc979b93
John Gardiner Myers authored Aug 18, 2014
```
The file param is "const char*" not "char*"

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
```
fc979b93

RT2163: Remove some unneeded #include's · 448155e9

Doug Goldstein authored Aug 14, 2014



Several files #include stdio.h and don't need it.
Also, per tjh, remove BN_COUNT

Reviewed-by: Emilia Kasper <emilia@openssl.org>

448155e9

RT1815: More const'ness improvements · f756fb43

Justin Blanchard authored Aug 18, 2014



Add a dozen more const declarations where appropriate.
These are from Justin; while adding his patch, I noticed
ASN1_BIT_STRING_check could be fixed, too.

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>

f756fb43

Aug 17, 2014

pub_decode_gost94, pub_decode_gost01: check for NULL after allocating databuf... · defe438d

Jonas Maebe authored Dec 08, 2013

pub_decode_gost94, pub_decode_gost01: check for NULL after allocating databuf pub_encode_gost94, pub_encode_gost01: check for NULL after allocating databuf and octet

Signed-off-by: Kurt Roeckx <kurt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

defe438d