Age | Commit message (Collapse) | Author |
|
Fix memory leaks in 'goto err' cases.
|
|
|
|
algorithms extension
|
|
the old code came from SSLeay days before TLS was even supported.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
PR: 2435,2440
|
|
|
|
continue with symmetric decryption process to avoid leaking timing
information to an attacker.
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering
this issue. (CVE-2012-0884)
|
|
Submitted by: Dmitry Belyavsky <beldmit@gmail.com>
CMS support for ccgost engine
|
|
Add more extension names in s_cb.c extension printing code.
|
|
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Fix DTLS timeout handling.
|
|
|
|
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Reduce MTU after failed transmissions.
|
|
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Fix possible DTLS timer deadlock.
|
|
|
|
|
|
|
|
Reported by: Dmitry Belyavsky <beldmit@gmail.com>
Fix memory leak if invalid GOST MAC key given.
|
|
Reported by: Dmitry Belyavsky <beldmit@gmail.com>
If resigning with detached content in CMS just copy data across.
|
|
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
|
|
|
|
Reported by: Remi Gacogne <rgacogne-bugs@coredump.fr>
Preserve unused bits value in non-canonicalised ASN1_STRING structures
by using ASN1_STRING_copy which preseves flags.
|
|
Submitted by: Remi Gacogne <rgacogne-bugs@coredump.fr>
Fix double free in PKCS12_parse if we run out of memory.
|
|
Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>
Fix padding bugs in Heartbeat support.
|
|
Make cryptodev digests work. Thanks to Nikos Mavrogiannopoulos for
this fix.
|
|
|
|
Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for reporting this bug.
|
|
see corresponding commit to HEAD for details.
|
|
|
|
Submitted by: Arpadffy Zoltan <Zoltan.Arpadffy@scientificgames.se>
VMS fixes: disable SCTP by default.
|
|
|
|
Submitted by: Tomas Mraz <tmraz@redhat.com>
Tolerate bad MIME headers in parser.
|
|
Submitted by: Rob Austein <sra@hactrn.net>
Fix inverted range problem in RFC3779 code.
Thanks to Andrew Chi for generating test cases for this bug.
|
|
Submitted by: Bruce Stephens <bruce.stephens@isode.com>
Use same construct for EXHEADER in srp/Makefile as other makefiles to cope
with possibly empty EXHEADER.
|
|
Move new structure fields to end of structures.
Import library codes from 1.0.0 and recreate new ones.
|
|
|
|
|
|
before rejecting multiple SGC restarts.
|
|
Update RSA EVP_PKEY_METHOD to use the OCTET STRING form of MDC2 signature:
this will make all versions of MDC2 signature equivalent.
|
|
signatures and MDC2 using EVP or RSA_sign. This has become more apparent
when the dgst utility in OpenSSL 1.0.0 and later switched to using the
EVP_DigestSign functions which call RSA_sign.
This means that the signature format OpenSSL 1.0.0 and later used with
dgst -sign and MDC2 is incompatible with previous versions.
Add detection in RSA_verify so either format works.
Note: MDC2 is disabled by default in OpenSSL and very rarely used in practice.
|
|
Submitted by: Bruce Stephens <bruce.stephens@isode.com>
Translate path separators correctly for $fipsdir in util/mk1mf.pl
|
|
Submitted by: Tomas Mraz <tmraz@redhat.com>
Move libraries that are not needed for dynamic linking to Libs.private in
the .pc files
|
|
Submitted by: Tim Rice <tim@multitalents.net>
Make compilation work on OpenServer 5.0.7
|
|
Submitted by: Adam Langley <agl@google.com>
Fix handling of exporter return value and use OpenSSL indentation in
s_client, s_server.
|