CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/07 10:35:50
Modified files:
lib/libcrypto/asn1: tasn_prn.c
Log message:
Revert tasn_prn.c r1.18.
In this code, just because something is cast to a type doesn't mean it is
necessarily that type - in
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/10 10:23:55
Modified files:
lib/libcrypto/asn1: d2i_pr.c
Log message:
Avoid an overread caused by d2i_PrivateKey().
There are cases where the old_priv_decode() function can fail but consume
bytes. T
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/14 10:43:49
Modified files:
lib/libcrypto/evp: evp_enc.c
Log message:
Avoid potential double-frees following EVP_CIPHER_CTX_copy().
In the case of a cipher with a custom copy control, if that contro
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/14 10:46:26
Modified files:
lib/libcrypto/evp: evp_enc.c
Log message:
Annotate a future improvement.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/14 11:16:57
Modified files:
lib/libcrypto/evp: evp_enc.c
Log message:
Use calloc() when allocating cipher_data.
Avoids use of uninitialised memory.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/14 11:26:27
Modified files:
lib/libcrypto/evp: e_aes.c
Log message:
Remove two pointless chunks of code.
This reverts part of OpenSSL c2fd5d79, which added the same code to AES
CCM, GCM and XTS. In
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/14 11:27:42
Modified files:
lib/libcrypto/evp: e_aes.c
Log message:
Some more malloc() to calloc() conversions.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/14 11:39:04
Modified files:
lib/libcrypto/bio: bio_lib.c
Log message:
Add input validation to BIO_read()/BIO_write().
Some bread/bwrite functions implement this themselves, while others do not.
This
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/15 11:46:02
Modified files:
lib/libcrypto/asn1: x_long.c
Log message:
Avoid signed integer overflow.
Fixes oss-fuzz issue #13843.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/19 08:52:00
Modified files:
lib/libcrypto/objects: obj_mac.num
Log message:
Allocate fixed NIDs for SM3/SM4.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/19 11:04:45
Modified files:
lib/libcrypto/evp: digest.c
Log message:
Allocate md_data with calloc to avoid use of uninitialised memory.
Found by Guido Vranken when fuzzing and trying to use GOST wit
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/20 05:13:15
Modified files:
lib/libcrypto/asn1: x_long.c
Log message:
Avoid undefined behaviour that results from negating a signed long with
minimum value.
Fixes oss-fuzz #14354.
ok beck@ bcook@ t
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/21 04:17:25
Modified files:
lib/libssl : t1_lib.c
Log message:
Start cleaning up tls_decrypt_ticket().
Rather than returning from multiple places and trying to clean up as we go,
move to a singl
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/21 08:38:32
Modified files:
lib/libssl : t1_lib.c
Log message:
Cleanup more of tls_decrypt_ticket().
Separate the malloc() check and EVP_DecryptUpdate() - the malloc() failure
is fatal while a E
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/21 08:41:30
Modified files:
lib/libssl : t1_lib.c
Log message:
Clean up tls1_process_ticket().
We only have to find one extension, so do that first then proceed with
processing and decryption. T
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/22 08:49:42
Modified files:
lib/libssl : ssl_locl.h ssl_srvr.c t1_lib.c
Log message:
Inline and remove the tlsext_tick_md macro.
There is not much point having a tlsext_tick_md macro that replac
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/22 09:12:20
Modified files:
lib/libssl : ssl_locl.h ssl_sess.c ssl_srvr.c t1_lib.c
Log message:
Pass the session ID down to the session/ticket handling code as a CBS.
Convert ssl_get_prev_sessio
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/22 10:03:54
Modified files:
lib/libssl : t1_lib.c
Log message:
Provide a derr label (decode/decrypt error) in tls1_decrypt_ticket().
This handles the ret = 2 case and makes the code more readabl
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/23 11:02:45
Modified files:
lib/libssl : t1_lib.c
Log message:
Convert tls_decrypt_ticket() to CBS.
This removes various pointer arithmetic and manual length checks.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/24 22:48:56
Modified files:
lib/libssl : t1_lib.c
Log message:
Rename some variables in tls_decrypt_ticket().
Rename mlen to hlen since it is a hmac (and this matches hctx and hmac).
Rename ctx
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/24 22:54:35
Modified files:
lib/libssl : t1_lib.c
Log message:
Use EVP_CIPHER_CTX_{new,free}() and HMAC_CTX_{new,free}() instead of
allocating on stack.
While here also check the return values f
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/04/24 22:57:36
Modified files:
lib/libssl : t1_lib.c
Log message:
Use calloc/freezero when allocating and freeing the session ticket data.
The decrypted session ticket contains key material.
ok tb
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/05/28 11:16:42
Modified files:
lib/libssl : ssl_tlsext.c
Log message:
Tidy up some names/structures following the renaming of TLS extension
functions based on message type (clienthello/serverhello),
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/05/28 11:34:32
Modified files:
lib/libssl : ssl_tlsext.c
Log message:
Fix typo and label indent.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/05/29 11:25:27
Modified files:
lib/libssl : ssl_tlsext.c
Log message:
Do not send an SNI extension when resuming a session that contains a server
name (which means the client sent SNI during the ini
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/05/29 11:28:37
Modified files:
lib/libssl : ssl_tlsext.c
Log message:
Relax parsing of TLS key share extensions on the server.
The RFC does not require X25519 and it also allows clients to send an
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/07/09 11:58:33
Modified files:
lib/libtls/man : tls_read.3
Log message:
Group tls_{handshake,read,write,close}() return values documentation.
Move the documentation for tls_error() down so that both th
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 09:55:20
Added files:
lib/libcrypto/cms: cms_asn1.c cms_att.c cms_cd.c cms_dd.c
cms_enc.c cms_env.c cms_err.c cms_ess.c
cms_io.c cms_kari.c cm
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:02:24
Modified files:
lib/libcrypto/cms: cms_asn1.c cms_att.c cms_cd.c cms_dd.c
cms_enc.c cms_env.c cms_ess.c cms_io.c
cms_kari.c cms_lcl.h
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:03:54
Modified files:
lib/libcrypto/cms: cms_asn1.c cms_att.c cms_cd.c cms_dd.c
cms_enc.c cms_env.c cms_err.c cms_ess.c
cms_io.c cms_kari.c
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:18:22
Added files:
lib/libcrypto/cms: cms.h
Log message:
Provide cms.h.
This is OpenSSL 1.1.1 cms.h and cmserr.h combined, essentially reverting
OpenSSL 52df25cf2e656146cb3b206d8220124f0417d03
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:20:45
Modified files:
lib/libcrypto/cms: cms.h
Log message:
Restore the per-file license for cms.h.
This reverts the removal from OpenSSL
21dcbebc6e35419f1842f39a125374ea1ba45693.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:22:09
Modified files:
lib/libcrypto/cms: cms.h
Log message:
Add $OpenBSD$ tag.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:38:47
Modified files:
lib/libcrypto/cms: cms_err.c
Log message:
Include cms.h instead of cmserr.h.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:39:17
Modified files:
lib/libcrypto/cms: cms_cd.c cms_dd.c cms_enc.c cms_env.c
cms_ess.c cms_kari.c cms_pwri.c cms_sd.c
cms_smime.c
Log m
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 10:42:20
Modified files:
lib/libcrypto/cms: cms_asn1.c cms_att.c cms_cd.c cms_dd.c
cms_enc.c cms_env.c cms_err.c cms_ess.c
cms_io.c cms_kari.c
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 12:15:52
Modified files:
lib/libcrypto/cms: cms_asn1.c cms_att.c cms_cd.c cms_dd.c
cms_enc.c cms_env.c cms_err.c cms_ess.c
cms_io.c cms_kari.c
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 12:24:33
Modified files:
lib/libcrypto/cms: cms.h
Log message:
More style(9) and whitespace.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/10 12:27:49
Modified files:
lib/libcrypto/cms: cms_lcl.h
Log message:
Fix style(9) and whitespace.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 00:47:19
Modified files:
lib/libcrypto/cms: cms.h cms_pwri.c cms_smime.c
Log message:
Unlike OpenSSL we do not have our own special ssize_t.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 02:15:27
Modified files:
lib/libcrypto/cms: cms.h cms_lcl.h
Log message:
We use DECLARE_STACK_OF rather than DEFINE_STACK_OF.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:15:30
Modified files:
lib/libcrypto/cms: cms.h cms_asn1.c cms_ess.c cms_io.c cms_lcl.h
cms_lib.c cms_pwri.c cms_sd.c
Log message:
Expand ASN.1 macros.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:24:15
Modified files:
lib/libcrypto/cms: cms_asn1.c
Log message:
Expand a new macro that tried to get away...
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:26:04
Modified files:
lib/libcrypto/cms: cms_asn1.c cms_lcl.h
Log message:
Switch ASN.1 INT32 back to LONG.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:38:27
Modified files:
lib/libcrypto/cms: cms_cd.c cms_dd.c cms_enc.c cms_env.c
cms_ess.c cms_io.c cms_kari.c cms_lib.c
cms_pwri.c cms_sd.c
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:41:49
Modified files:
lib/libcrypto/cms: cms_enc.c cms_env.c cms_ess.c cms_kari.c
cms_pwri.c cms_sd.c
Log message:
Use malloc(3) and free(3), rather than OPENSSL_{ma
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:43:24
Modified files:
lib/libcrypto/cms: cms_env.c cms_kari.c
Log message:
Use explicit_bzero() instead of OPENSSL_cleanse().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:43:57
Modified files:
lib/libcrypto/cms: cms_asn1.c cms_enc.c cms_env.c cms_kari.c
cms_pwri.c
Log message:
Use freezero() rather than OPENSSL_clear_free().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:50:23
Modified files:
lib/libcrypto/cms: cms_dd.c cms_enc.c cms_ess.c cms_pwri.c
cms_sd.c
Log message:
Include string.h for memcmp()/memcpy().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 04:54:11
Modified files:
lib/libcrypto/cms: cms_enc.c cms_ess.c cms_pwri.c
Log message:
Use arc4random_buf() instead of RAND_bytes().
This also removes return checks since arc4random_buf() does n
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 05:04:18
Modified files:
lib/libcrypto/cms: cms_cd.c cms_dd.c cms_enc.c cms_env.c
cms_ess.c cms_kari.c cms_lib.c cms_pwri.c
cms_sd.c
Log mes
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 05:07:40
Modified files:
lib/libcrypto/cms: cms_env.c cms_kari.c
Log message:
Include string.h for explicit_bzero().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 08:11:28
Modified files:
lib/libcrypto/evp: evp.h
Log message:
Provide ASN1_PKEY_CTRL_CMS_RI_TYPE.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 08:14:14
Modified files:
lib/libcrypto/stack: safestack.h
Log message:
Bring back stack macros for CMS structs.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 08:18:38
Modified files:
lib/libcrypto/cms: cms_err.c
Log message:
Fix loading of CMS error strings.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 08:19:09
Modified files:
lib/libcrypto/cms: cms_ess.c
Log message:
Remove label that is now unused (due to arc4random_buf() returning void).
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 08:27:01
Modified files:
lib/libcrypto/cms: cms_kari.c
Log message:
Disable DES3 since we do not currently provide DES3 keywrap.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 08:35:57
Modified files:
lib/libcrypto/cms: cms_sd.c
Log message:
Remove unsupported GOST 2012 NIDs.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/11 08:51:15
Modified files:
lib/libcrypto/cms: cms_smime.c
Log message:
Use ERR_asprintf_error_data() instead of ERR_add_error_data().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/12 12:03:17
Modified files:
usr.sbin/rpki-client: Makefile main.c
regress/usr.sbin/rpki-client: Makefile test-cert.c test-ip.c
test-mft.c test-roa.c test
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/12 12:04:57
Modified files:
lib/libcrypto/cms: cms_pwri.c
Log message:
Inline the equivalent of ASN1_TYPE_unpack_sequence().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/08/12 12:13:13
Modified files:
lib/libcrypto/cms: cms_lib.c
Log message:
Provide a local version of X509_get0_subject_key_id()
It seems that the CMS code is currently the only code in existence that
us
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:04:42
Added files:
lib/libcrypto/ecdh: ecdh_kdf.c
Log message:
Provide ECDH KDF for X9.63 as needed for CMS ECC.
>From OpenSSL 1.1.1b.
ok tb@ inoguchi@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:05:36
Modified files:
lib/libcrypto/ecdh: ecdh_kdf.c
Log message:
Remove ECDH_KDF_X9_62 wrapper.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:07:00
Modified files:
lib/libcrypto/ecdh: ecdh_kdf.c
Log message:
Restore per-file license/copyright removed in OpenSSL commit 4f22f40507f.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:10:11
Modified files:
lib/libcrypto/ecdh: ecdh_kdf.c
Log message:
style(9) and whitespace.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:12:15
Modified files:
lib/libcrypto/ecdh: ecdh_kdf.c
Log message:
Include correct header.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:12:36
Modified files:
lib/libcrypto/ecdh: ech_locl.h
Log message:
Provide prototype for ecdh_KDF_X9_63()
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:15:39
Modified files:
lib/libcrypto/ecdh: ecdh_kdf.c
Log message:
Replace OPENSSL_cleanse() with explicit_bzero().
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:16:05
Modified files:
lib/libcrypto : Makefile
Log message:
Build ecdh_kdf.c
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/05 10:17:48
Modified files:
lib/libcrypto/objects: obj_mac.num objects.txt
Log message:
Add objects for ECDH schemes in RFC 5753.
Based on OpenSSL 1.1.1b.
ok inoguchi@ tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/06 11:41:05
Modified files:
lib/libcrypto/pem: pem_lib.c
Log message:
Handle CMS PEM headers.
ok inoguchi@ tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/06 11:59:25
Modified files:
lib/libcrypto : Makefile
lib/libcrypto/ec: ec.h ec_err.c ec_pmeth.c
Log message:
Add various macros and controls for EC_PKEY_CTX.
These are needed for the upcom
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/08 11:00:05
Modified files:
lib/libcrypto/ec: ec_ameth.c
Log message:
Add CMS ECC support.
This brings in EC code from OpenSSL 1.1.1b, with style(9) and whitespace
cleanups. All of this code is curr
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/09 10:49:03
Modified files:
lib/libcrypto : Makefile
Log message:
Install the openssl/cms.h header.
This header includes OPENSSL_NO_CMS guards, so even if things find the
header it provides no usef
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/09 10:49:34
Modified files:
distrib/sets/lists/comp: mi
Log message:
Sync for openssl/cms.h.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/09 11:56:00
Modified files:
lib/libcrypto/ec: ec_ameth.c
Log message:
Move #include to more appropriate location (since it is
now being installed).
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/09 11:56:21
Modified files:
lib/libcrypto/err: err_all.c
Log message:
Load CMS error strings.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/09/09 12:06:26
Modified files:
lib/libcrypto/dsa: dsa_pmeth.c
lib/libcrypto/ec: ec_pmeth.c
lib/libcrypto/evp: evp.h
lib/libcrypto/rsa: rsa_pmeth.c
Log message:
Provide EVP_PKE
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/03 11:45:27
Modified files:
lib/libcrypto/rsa: rsa_oaep.c
Log message:
Move towards making RSA OAEP functions handle arbitrary message digests.
Based on OpenSSL 1.1.1.
ok tb@, inoguchi@ (on an earl
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/04 10:51:31
Modified files:
lib/libcrypto/rsa: rsa_locl.h rsa_oaep.c
Log message:
Provide internal RSA_padding_{add,check}_PKCS1_OAEP_mgf1() functions.
These are internal only for now and will be ma
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/04 11:21:24
Modified files:
lib/libssl : s3_lib.c
Log message:
Use a valid curve when constructing an EC_KEY that looks like X25519.
The recent EC group cofactor change results in stricter valid
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/09 10:17:59
Modified files:
lib/libcrypto/rsa: rsa_oaep.c
Log message:
Use EVP_MAX_MD_SIZE instead of SHA_DIGEST_LENGTH and remove OPENSSL_NO_SHA*
conditionals, now that this code handles arbitrary m
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/17 08:28:53
Modified files:
lib/libcrypto : constant_time_locl.h
lib/libcrypto/err: err.c
Log message:
Provide err_clear_last_constant_time() as a way of clearing an error from
the top of t
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/17 08:31:56
Modified files:
lib/libcrypto/rsa: rsa_oaep.c
Log message:
Sync RSA_padding_check_PKCS1_OAEP_mgf1().
Update RSA_padding_check_PKCS1_OAEP_mgf1() with code from OpenSSL 1.1.1d
(with some i
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/24 09:43:09
Modified files:
lib/libcrypto/evp: evp.h
Log message:
Add EVP_PKEY_RSA_PSS.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/24 09:47:15
Modified files:
lib/libcrypto : Symbols.list
lib/libcrypto/rsa: rsa.h rsa_lib.c
Log message:
Provide RSA_pkey_ctx_ctrl().
This is a wrapper around EVP_PKEY_CTX_ctrl() which req
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/24 09:51:23
Modified files:
lib/libcrypto/rsa: rsa.h
Log message:
Add maskHash field to RSA_PSS_PARAMS.
This will be soon used as an optimisation and reduces the differences
between OpenSSL.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/24 09:54:29
Modified files:
lib/libcrypto/rsa: rsa.h
Log message:
Add RSA_PSS_PARAMS pointer to RSA struct.
This will be used by upcoming RSA-PSS code.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/24 09:58:38
Modified files:
lib/libcrypto : shlib_version
lib/libssl : shlib_version
lib/libtls : shlib_version
Log message:
Bump libcrypto, libssl and libtls majors due to
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/24 10:26:13
Modified files:
lib/libcrypto/rsa: rsa_asn1.c rsa_locl.h
Log message:
Provide RSA_OAEP_PARAMS along with ASN.1 encoding/decoding.
For now these are internal only.
>From OpenSSL 1.1.1d.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/24 10:36:10
Modified files:
lib/libcrypto/asn1: a_type.c asn1_locl.h
Log message:
Provide ASN1_TYPE_{,un}pack_sequence().
These are internal only for now.
Based on OpenSSL 1.1.1d.
ok inoguchi@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/25 08:40:19
Modified files:
lib/libcrypto/rsa: rsa_asn1.c
Log message:
Free maskHash when RSA_PSS_PARAMS is freed.
ok tb@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/29 01:52:17
Modified files:
lib/libcrypto/evp: evp_locl.h pmeth_lib.c
Log message:
Provide EVP_PKEY_CTX_md().
This handles controls with a message digest by name, looks up the message
digest and the
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/29 02:00:18
Modified files:
lib/libcrypto/rsa: rsa.h rsa_pmeth.c
Log message:
Update RSA OAEP code.
This syncs the RSA OAEP code with OpenSSL 1.1.1d, correctly handling OAEP
padding and providing va
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/29 02:52:02
Modified files:
lib/libcrypto/rsa: rsa_pmeth.c
Log message:
Add two controls that were missed in the previous commit.
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/31 06:32:48
Modified files:
lib/libcrypto/rsa: rsa_pmeth.c
Log message:
Avoid potentially leaking pub_exp in pkey_rsa_copy().
ok inoguchi@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/31 06:46:02
Modified files:
lib/libcrypto/rsa: rsa_pmeth.c
Log message:
Clean up some code.
Assign and test, explicitly test against NULL and use calloc() rather than
malloc.
ok inoguchi@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/31 07:02:49
Modified files:
lib/libcrypto/rsa: rsa_pmeth.c
Log message:
Add additional validation of key size, message digest size and public
exponent.
>From OpenSSL 1.1.1d.
ok inoguchi@
CVSROOT:/cvs
Module name:src
Changes by: js...@cvs.openbsd.org 2019/10/31 07:05:08
Modified files:
lib/libcrypto/rsa: rsa_pmeth.c
Log message:
Use braces where a statement has both multi-line and single-line blocks.
Makes code more robust and reduces differences with O
501 - 600 of 4229 matches
Mail list logo