summaryrefslogtreecommitdiffstats
path: root/crypto
AgeCommit message (Expand)Author
2019-05-28Update copyright yearRichard Levitte
2019-05-21Change default RSA, DSA and DH size to 2048 bitKurt Roeckx
2019-03-30fixed public range check in ec_GF2m_simple_oct2pointShane Lontis
2019-03-22Modify the RSA_private_decrypt functions to check the padding inBernd Edlinger
2019-03-22Make err_clear_constant_time really constant timeBernd Edlinger
2019-03-18Clear the point S before freeing in ec_mul_consttimeBernd Edlinger
2019-03-18Clear the secret point in ecdh_simple_compute_keyBernd Edlinger
2019-03-07Fix memory overrun in rsa padding check functionsBernd Edlinger
2019-03-07Avoid an underflow in ecp_nistp521.cMatt Caswell
2019-03-06Prevent over long nonces in ChaCha20-Poly1305Matt Caswell
2019-02-25Ensure bn_cmp_words can handle the case where n == 0Matt Caswell
2019-02-21Clear BN_FLG_CONSTTIME on BN_CTX_get()Nicola Tuveri
2019-02-20SCA hardening for mod. field inversion in EC_GROUPBilly Brumley
2019-02-18cygwin: drop explicit O_TEXTCorinna Vinschen
2019-02-11crypto/engine/eng_cryptodev.c: fix bignum<->crp conversionRichard Levitte
2019-01-31Fix a crash in reuse of d2i_X509_PUBKEYBernd Edlinger
2018-12-08err/err.c: improve err_clear_last_constant_time's portability.Andy Polyakov
2018-12-08rsa/rsa_ssl.c: make RSA_padding_check_SSLv23 constant-time.Andy Polyakov
2018-12-08rsa/rsa_oaep.c: remove memcpy calls from RSA_padding_check_PKCS1_OAEP.Andy Polyakov
2018-12-08rsa/rsa_pk1.c: remove memcpy calls from RSA_padding_check_PKCS1_type_2.Andy Polyakov
2018-12-08rsa/rsa_ossl.c: make RSAerr call in rsa_ossl_private_decrypt unconditional.Andy Polyakov
2018-12-08err/err.c: add err_clear_last_constant_time.Andy Polyakov
2018-12-07Make EVP_PKEY_asn1_add0() stricter about its inputRichard Levitte
2018-11-23rsa/rsa_ossl.c: cache MONT_CTX for public modulus earlier.Andy Polyakov
2018-11-20Update copyright yearMatt Caswell
2018-11-10[crypto/bn] swap BN_FLG_FIXED_TOP tooBilly Brumley
2018-11-02Add a constant time flag to one of the bignums to avoid a timing leak.Pauli
2018-10-30Remove brace from bad cherry-pick of DSA reallocation fixRod Vagg
2018-10-29Timing vulnerability in ECDSA signature generation (CVE-2018-0735)Pauli
2018-10-29Timing vulnerability in DSA signature generation (CVE-2018-0734).Pauli
2018-10-29DSA mod inverse fixPauli
2018-10-22md_rand.c: don't stop polling until properly initializedDr. Matthias St. Pierre
2018-10-19arch/async_posix.h: improve portability.Andy Polyakov
2018-10-18Apply self-imposed path length also to root CAsViktor Dukhovni
2018-10-18Only CA certificates can be self-issuedViktor Dukhovni
2018-10-12rsa/rsa_ossl.c: fix and extend commentary [skip ci].Andy Polyakov
2018-10-04Small cleanup (util/mkdef.pl, crypto/bio/bss_log.c, include/openssl/ocsp.h)Richard Levitte
2018-10-02Implement coordinate blinding for EC_POINTSohaib ul Hassan
2018-09-29[test] ECC: make sure negative tests pass for the right reasonsBilly Brumley
2018-09-24Use secure_getenv(3) when available.Pauli
2018-09-21crypto/bn/asm/x86_64-gcc.c: remove unnecessary redefinition of BN_ULONGRichard Levitte
2018-09-20crypto/ui/ui_openssl.c: make sure to recognise ENXIO and EIO tooRichard Levitte
2018-09-17Use 'i' as parameter name not 'I'.Pauli
2018-09-12minor fixes for WindowsViktor Szakats
2018-09-10Check the return value from ASN1_INTEGER_setMatt Caswell
2018-09-06RSA padding Zeroization fixesShane Lontis
2018-09-05Harmonize the error handling codepathNicola Tuveri
2018-09-05Fix segfault in RSA_free() (and DSA/DH/EC_KEY)Nicola Tuveri
2018-09-05Key zeroization fix for EVP_SealInit.Pauli
2018-09-05Make OBJ_NAME case insensitive.Pauli
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-23 19:21:05 +0000