| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2015-03-25 | free NULL cleanup | Rich Salz | |
| This commit handles BIO_ACCEPT_free BIO_CB_FREE BIO_CONNECT_free BIO_free BIO_free_all BIO_vfree Reviewed-by: Matt Caswell <matt@openssl.org> | |||
| 2015-03-25 | RAND_bytes updates | Matt Caswell | |
| Ensure RAND_bytes return value is checked correctly, and that we no longer use RAND_pseudo_bytes. Reviewed-by: Richard Levitte <levitte@openssl.org> | |||
| 2015-03-24 | make depend | Dr. Stephen Henson | |
| Reviewed-by: Matt Caswell <matt@openssl.org> | |||
| 2015-03-24 | Move some ASN.1 internals to asn1_int.h | Dr. Stephen Henson | |
| Move ASN.1 internals used across multiple directories into new internal header file asn1_int.h remove crypto/Makefile hack which allowed other directories to include "asn1_locl.h" Reviewed-by: Matt Caswell <matt@openssl.org> | |||
| 2015-03-05 | Unchecked malloc fixes | Matt Caswell | |
| Miscellaneous unchecked malloc fixes. Also fixed some mem leaks on error paths as I spotted them along the way. Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2015-01-29 | clang on Linux x86_64 complains about unreachable code. | Richard Levitte | |
| Reviewed-by: Rich Salz <rsalz@openssl.org> | |||
| 2015-01-22 | Run util/openssl-format-source -v -c . | Matt Caswell | |
| Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2014-12-11 | make update | Matt Caswell | |
| Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2014-12-08 | Include <openssl/foo.h> instead of "foo.h" | Geoff Thorpe | |
| Exported headers shouldn't be included as "foo.h" by code from the same module, it should only do so for module-internal headers. This is because the symlinking of exported headers (from include/openssl/foo.h to crypto/foo/foo.h) is being removed, and the exported headers are being moved to the include/openssl/ directory instead. Change-Id: I4c1d80849544713308ddc6999a549848afc25f94 Signed-off-by: Geoff Thorpe <geoff@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | |||
| 2014-12-08 | Remove fipscanister build functionality from makefiles. | Dr. Stephen Henson | |
| Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2014-11-28 | Remove all .cvsignore files | Rich Salz | |
| Reviewed-by: Tim Hudson <tjh@openssl.org> | |||
| 2014-08-15 | cms_SignerInfo_content_sign: free sig on failure path | Jonas Maebe | |
| Signed-off-by: Kurt Roeckx <kurt@openssl.org> Reviewed-by: Rich Salz <rsalz@openssl.org> | |||
| 2014-07-10 | Don't clean up uninitialised EVP_CIPHER_CTX on error (CID 483259). | Ben Laurie | |
| 2014-05-29 | Set version number correctly. | Dr. Stephen Henson | |
| PR#3249 | |||
| 2014-05-09 | Return an error if no recipient type matches. | Dr. Stephen Henson | |
| If the key type does not match any CMS recipient type return an error instead of using a random key (MMA mitigation). This does not leak any useful information to an attacker. PR#3348 | |||
| 2014-05-06 | Set Enveloped data version to 2 if ktri version not zero. | Dr. Stephen Henson | |
| 2014-02-19 | make depend | Dr. Stephen Henson | |
| 2014-02-15 | Remove duplicate statement. | Dr. Stephen Henson | |
| 2014-02-13 | Add suppot for ASCII with CRLF canonicalisation. | Dr. Stephen Henson | |
| 2013-12-22 | Canonicalise input in CMS_verify. | Dr. Stephen Henson | |
| If content is detached and not binary mode translate the input to CRLF format. Before this change the input was verified verbatim which lead to a discrepancy between sign and verify. | |||
| 2013-11-09 | Add CMS_SignerInfo_get0_signature function. | Dr. Stephen Henson | |
| Add function to retrieve the signature from a CMS_SignerInfo structure: applications can then read or modify it. | |||
| 2013-08-05 | Add KDF for DH. | Dr. Stephen Henson | |
| Add X9.42 DH KDF. Move sharedinfo generation code to CMS library as the same structure is used by DH and ECDH. Move ASN1_OBJECT typedef to ossl_typ.h so it can be picked up by dh headers without the need to use ASN1. | |||
| 2013-07-17 | CMS support for key agreeement recipient info. | Dr. Stephen Henson | |
| Add hooks to support key agreement recipient info type (KARI) using algorithm specific code in the relevant public key ASN1 method. | |||
| 2013-07-17 | Set CMS EnvelopedData version correctly. | Dr. Stephen Henson | |
| 2013-07-02 | Initialise CMS signature buffer length properly. | Dr. Stephen Henson | |
| 2013-06-21 | CMS public key parameter support. | Dr. Stephen Henson | |
| Add support for customisation of CMS handling of signed and enveloped data from custom public key parameters. This will provide support for RSA-PSS and RSA-OAEP but could also be applied to other algorithms. | |||
| 2013-02-26 | Add function CMS_RecipientInfo_encrypt | Dr. Stephen Henson | |
| Add CMS_RecipientInfo_encrypt: this function encrypts an existing content encryption key to match the key in the RecipientInfo structure: this is useful if a new recpient is added to and existing enveloped data structure. Add documentation. | |||
| 2013-01-23 | Don't include comp.h in cmd_cd.c if OPENSSL_NO_COMP set | Dr. Stephen Henson | |
| 2012-05-10 | Fix warning. | Ben Laurie | |
| 2012-05-10 | Reported by: Solar Designer of Openwall | Dr. Stephen Henson | |
| Make sure tkeylen is initialised properly when encrypting CMS messages. | |||
| 2012-03-12 | Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key and | Dr. Stephen Henson | |
| continue with symmetric decryption process to avoid leaking timing information to an attacker. Thanks to Ivan Nestlerode <inestlerode@us.ibm.com> for discovering this issue. (CVE-2012-0884) | |||
| 2011-11-14 | Fix some warnings caused by __owur. Temporarily (I hope) remove the more | Ben Laurie | |
| aspirational __owur annotations. | |||
| 2011-01-26 | Change AR to ARX to allow exclusion of fips object modules | Dr. Stephen Henson | |
| 2010-07-26 | Add new type ossl_ssize_t instead of ssize_t and move definitions to | Dr. Stephen Henson | |
| e_os2.h, this should fix WIN32 compilation issues and hopefully avoid conflicts with other headers which may workaround ssize_t in different ways. | |||
| 2010-06-01 | add CVE-2010-0742 and CVS-2010-1633 fixes | Dr. Stephen Henson | |
| 2010-03-11 | update cms code to use X509_ALGOR_set_md instead of internal function | Dr. Stephen Henson | |
| 2010-02-02 | tolerate broken CMS/PKCS7 implementations using signature OID instead of digest | Dr. Stephen Henson | |
| 2010-01-15 | make update | Dr. Stephen Henson | |
| 2009-11-26 | Experimental CMS password based recipient Info support. | Dr. Stephen Henson | |
| 2009-09-30 | PR: 2058 | Dr. Stephen Henson | |
| Submitted by: Julia Lawall <julia@diku.dk> Approved by: steve@openssl.org Correct EVP_DigestVerifyFinal error handling. | |||
| 2009-09-23 | Audit libcrypto for unchecked return values: fix all cases enountered | Dr. Stephen Henson | |
| 2009-09-13 | Submitted by: Julia Lawall <julia@diku.dk> | Dr. Stephen Henson | |
| The functions ENGINE_ctrl(), OPENSSL_isservice(), EVP_PKEY_sign(), CMS_get1_RecipientRequest() and RAND_bytes() can return <=0 on error fix so the return code is checked correctly. | |||
| 2009-03-25 | Update from stable branch. | Dr. Stephen Henson | |
| 2009-03-15 | Use correct ctx name. | Dr. Stephen Henson | |
| 2009-03-15 | Fix from stable branch. | Dr. Stephen Henson | |
| 2008-11-21 | Set memory BIOs up properly when stripping text headers from S/MIME messages. | Dr. Stephen Henson | |
| 2008-08-05 | Correctly handle errors in CMS I/O code. | Dr. Stephen Henson | |
| 2008-05-02 | New function CMS_add1_crl(). | Dr. Stephen Henson | |
| 2008-04-18 | Make certs argument work in CMS_sign() add test case. | Dr. Stephen Henson | |
| PR:1664 | |||
| 2008-04-11 | Fix prototype for CMS_decrypt(), don't free up detached content. | Dr. Stephen Henson | |
 |
index : openssl | |
| Mirror of https://github.com/openssl/openssl | matthias |
| summaryrefslogtreecommitdiffstats |