Hi,
Upon receipt GET_CLIENT_KEY_EXCHANGE (after /* Decrypt session key */):
1. Manual decoder ASN.1 tag incomplete;
2. Possible buffer overflow, because "inlen" don't checked;
Affected version: 1.0.0, 1.0.1, 1.0.2 and trunk.
Attachment "ccgost-asn.140428-lowasn1.patch" (1 KiB) change manual dec
Hi, Kurt,
> On Wed, Feb 13, 2013 at 12:19:19PM +0100, Andy Polyakov via RT wrote:
>>
>>> Probably this "strict aliasing" 64-bit optimization bug for
>>> "crypto/bn/bn_nist.c"
> What bug are you talking about? There doesn't seem to be a strict
> aliasing warning in that file, and they use a unio
P.S.
64-bit test elliptic curves fail for openssl-SNAP-20130212.test-x86_64 with
no-asm flag.
$ ./Configure darwin64-x86_64-cc no-asm
$ make depend
$ make
$ make test
...
test elliptic curves
../util/shlib_wrap.sh ./ectest
Curve defined by Weierstrass equation
y^2 = x^3 + a*x + b (mod 0x17
Hi,
Mac OS X 10.8.2, Xcode 4.6, clang
leom:openssl-1.0.1e.test leo$ uname -a
Darwin leom-3.local 12.2.0 Darwin Kernel Version 12.2.0: Sat Aug 25 00:48:52
PDT 2012; root:xnu-2050.18.24~1/RELEASE_X86_64 x86_64
leom:openssl-1.0.1e.test leo$ xcodebuild -version
Xcode 4.6
Build version 4H127
leom:ope
P.S.
> May be add `OPENSSL_assert(0 == c->count%8 && 1024 >= c->count)' for explicit
> assertion?
Attachment "assert.121221.patch" (1KB)
assert.121221.patch
Description: Binary data
--
Sorry for my bests English.
Serguei E. Leontiev w:+7(495)939-2382 USSR,Moscow,Universitetskij 13
Ster
Hi,
Attachment patch "test341194.121120.patch" (11 KB) add test message digest of
cgost engine.
Particularly, this test detect bug "[openssl.org #2858] bug in gosthash.c
circle_xor8() routine", when used standart calng compiler on Mac OSX.
See aso: PR# 2858
--
Sorry for my bests English