openssl - Mirror of https://github.com/openssl/openssl

Age	Commit message (Collapse)	Author
2015-09-15	RT4044: Remove .cvsignore files.	Rich Salz
	Reviewed-by: Matt Caswell <matt@openssl.org>
2015-09-12	Constify ECDSA_METHOD_new.	Dr. Stephen Henson
	PR#3920. Reviewed-by: Rich Salz <rsalz@openssl.org> (cherry picked from commit aabd49232025807babe995006a46c4c7815ce868)
2015-05-23	Fix the update target and remove duplicate file updates	Richard Levitte
	We had updates of certain header files in both Makefile.org and the Makefile in the directory the header file lived in. This is error prone and also sometimes generates slightly different results (usually just a comment that differs) depending on which way the update was done. This removes the file update targets from the top level Makefile, adds an update: target in all Makefiles and has it depend on the depend: or local_depend: targets, whichever is appropriate, so we don't get a double run through the whole file tree. Reviewed-by: Rich Salz <rsalz@openssl.org> (cherry picked from commit 0f539dc1a2f45580435c39dada44dd276e79cb88) Conflicts: Makefile.org apps/Makefile test/Makefile
2015-03-25	Fix RAND_(pseudo_)?_bytes returns	Matt Caswell
	Ensure all calls to RAND_bytes and RAND_pseudo_bytes have their return value checked correctly Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-01-22	Run util/openssl-format-source -v -c .	Matt Caswell
	Reviewed-by: Tim Hudson <tjh@openssl.org>
2015-01-22	mark all block comments that need format preserving so that	Tim Hudson
	indent will not alter them when reformatting comments (cherry picked from commit 1d97c8435171a7af575f73c526d79e1ef0ee5960) Conflicts: crypto/bn/bn_lcl.h crypto/bn/bn_prime.c crypto/engine/eng_all.c crypto/rc4/rc4_utl.c crypto/sha/sha.h ssl/kssl.c ssl/t1_lib.c Reviewed-by: Tim Hudson <tjh@openssl.org>
2015-01-13	Fix warning where BIO_FLAGS_UPLINK was being redefined.	Matt Caswell
	This warning breaks the build in 1.0.0 and 0.9.8 Reviewed-by: Andy Polyakov <appro@openssl.org> (cherry picked from commit b1ffc6ca1c387efad0772c16dfe426afef45dc4f)
2015-01-05	Fix various certificate fingerprint issues.	Dr. Stephen Henson
	By using non-DER or invalid encodings outside the signed portion of a certificate the fingerprint can be changed without breaking the signature. Although no details of the signed portion of the certificate can be changed this can cause problems with some applications: e.g. those using the certificate fingerprint for blacklists. 1. Reject signatures with non zero unused bits. If the BIT STRING containing the signature has non zero unused bits reject the signature. All current signature algorithms require zero unused bits. 2. Check certificate algorithm consistency. Check the AlgorithmIdentifier inside TBS matches the one in the certificate signature. NB: this will result in signature failure errors for some broken certificates. 3. Check DSA/ECDSA signatures use DER. Reencode DSA/ECDSA signatures and compare with the original received signature. Return an error if there is a mismatch. This will reject various cases including garbage after signature (thanks to Antti Karjalainen and Tuomo Untinen from the Codenomicon CROSS program for discovering this case) and use of BER or invalid ASN.1 INTEGERs (negative or with leading zeroes). CVE-2014-8275 Reviewed-by: Emilia Käsper <emilia@openssl.org> (cherry picked from commit 684400ce192dac51df3d3e92b61830a6ef90be3e)
2014-09-22	Reserve option to use BN_mod_exp_mont_consttime in ECDSA.	Andy Polyakov
	Submitted by Shay Gueron, Intel Corp. RT: 3149 Reviewed-by: Rich Salz <rsalz@openssl.org> (cherry picked from commit f54be179aa4cbbd944728771d7d59ed588158a12)
2014-07-02	Accessor functions for app_data in ECDSA_METHOD	Dr. Stephen Henson
	(cherry picked from commit 387b844ffdc79b733be0b1dbaddd2ac64a6c1192)
2013-09-18	Add functions to set ECDSA_METHOD structure.	Dr. Stephen Henson
	Add various functions to allocate and set the fields of an ECDSA_METHOD structure. (cherry picked from commit 94c2f77a62be7079ab1893ab14b18a30157c4532)
2012-10-05	Fix EC_KEY initialization race.	Bodo Möller
	Submitted by: Adam Langley
2011-12-09	Fix warning.	Ben Laurie

2011-12-02	Fix ecdsatest.c.	Bodo Möller
	Submitted by: Emilia Kasper
2011-09-01	make timing attack protection unconditional	Dr. Stephen Henson

2011-06-20	Don't set default public key methods in FIPS mode so applications	Dr. Stephen Henson
	can switch between modes.
2011-06-08	Check fips method flags for ECDH, ECDSA.	Dr. Stephen Henson

2011-06-06	Redirection of ECDSA, ECDH operations to FIPS module.	Dr. Stephen Henson
	Also use FIPS EC methods unconditionally for now: might want to use them only in FIPS mode or with a switch later.
2011-06-06	Backport from HEAD:	Dr. Stephen Henson
	New option to disable characteristic two fields in EC code. Make no-ec2m work on Win32 build.
2011-05-25	Fix the ECDSA timing attack mentioned in the paper at:	Dr. Stephen Henson
	http://eprint.iacr.org/2011/232.pdf Thanks to the original authors Billy Bob Brumley and Nicola Tuveri for bringing this to our attention.
2011-04-06	check buffer is larger enough before overwriting	Dr. Stephen Henson

2010-06-15	Fix warnings (From HEAD, original patch by Ben).	Dr. Stephen Henson

2009-12-01	PR: 1432	Dr. Stephen Henson
	Submitted by: "Andrzej Chmielowiec" <achmielowiec@enigma.com.pl>, steve@openssl.org Approved by: steve@openssl.org Truncate hash if it is too large: as required by FIPS 186-3.
2009-10-18	make update	Dr. Stephen Henson

2009-09-09	Seed PRNG with DSA and ECDSA digests for additional protection against	Dr. Stephen Henson
	possible PRNG state duplication.
2008-11-12	Revert the size_t modifications from HEAD that had led to more	Geoff Thorpe
	knock-on work than expected - they've been extracted into a patch series that can be completed elsewhere, or in a different branch, before merging back to HEAD.
2008-11-01	More size_tification.	Ben Laurie

2008-08-06	Remove the dual-callback scheme for numeric and pointer thread IDs,	Geoff Thorpe
	deprecate the original (numeric-only) scheme, and replace with the CRYPTO_THREADID object. This hides the platform-specifics and should reduce the possibility for programming errors (where failing to explicitly check both thread ID forms could create subtle, platform-specific bugs). Thanks to Bodo, for invaluable review and feedback.
2008-07-03	Revert my earlier CRYPTO_THREADID commit, I will commit a reworked	Geoff Thorpe
	version some time soon.
2008-06-04	More type-checking.	Ben Laurie

2008-03-28	There was a need to support thread ID types that couldn't be reliably cast	Geoff Thorpe
	to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed version was added but it required portable code to check both modes to determine equality. This commit maintains the availability of both thread ID types, but deprecates the type-specific accessor APIs that invoke the callbacks - instead a single type-independent API is used. This simplifies software that calls into this interface, and should also make it less error-prone - as forgetting to call and compare both thread ID accessors could have led to hard-to-debug/infrequent bugs (that might only affect certain platforms or thread implementations). As the CHANGES note says, there were corresponding deprecations and replacements in the thread-related functions for BN_BLINDING and ERR too.
2007-11-19	Should reject signatures that we can't properly verify	Bodo Möller
	and couldn't generate (as pointed out by Ernst G Giessmann)
2007-11-16	The hash length check wasn't strict enough,	Bodo Möller
	as pointed out by Ernst G Giessmann
2007-08-12	Fix warnings.	Dr. Stephen Henson

2007-01-21	Constify version strings and some structures.	Dr. Stephen Henson

2006-11-21	Update from 0.9.8 stable. Eliminate duplicate error codes.	Dr. Stephen Henson

2006-10-04	return an error if the supplied precomputed values lead to an invalid signature	Nils Larsch

2006-02-13	fix typo: pass pre-computed parameters to the underlying signature function; ↵	Nils Larsch
	thanks to Lucas Newman
2006-01-29	add additional checks + cleanup	Nils Larsch
	Submitted by: David Hartman <david_hartman@symantec.com>
2005-12-18	Missing CFLAG in couple of depend: targets.	Andy Polyakov
	PR: 1247 Submitted by: Doug Kaufman
2005-09-19	cleanup doxygen comments	Nils Larsch

2005-07-17	fix typo	Nils Larsch

2005-07-16	make	Nils Larsch
	./configure no-deprecated [no-dsa] [no-dh] [no-ec] [no-rsa] make depend all test work again PR: 1159
2005-06-23	Wrap the inclusion of openssl/engine.h with a protective check for	Richard Levitte
	the absence of OPENSSL_NO_ENGINE.
2005-05-20	fix typo, add prototype	Nils Larsch

2005-05-16	Further BUILDENV refinement, further fool-proofing of Makefiles and	Andy Polyakov
	[most importantly] put back dependencies accidentaly eliminated in check-in #13342.
2005-05-16	ecc api cleanup; summary:	Nils Larsch
	- hide the EC_KEY structure definition in ec_lcl.c + add some functions to use/access the EC_KEY fields - change the way how method specific data (ecdsa/ecdh) is attached to a EC_KEY - add ECDSA_sign_ex and ECDSA_do_sign_ex functions with additional parameters for pre-computed values - rebuild libeay.num from 0.9.7
2005-05-15	Fool-proofing Makefiles	Andy Polyakov

2005-05-10	give EC_GROUP_new_by_nid a more meanigful name:	Nils Larsch
	EC_GROUP_new_by_nid -> EC_GROUP_new_by_curve_name
2005-05-09	Update util/ck_errf.pl script, and have it run automatically	Bodo Möller
	during "make errors" and thus during "make update". Fix lots of bugs that util/ck_errf.pl can detect automatically. Various others of these are still left to fix; that's why "make update" will complain loudly when run now.