openssl

Author	SHA1	Message	Date
Kurt Roeckx	9e5267fcdd	Fix warning about negative unsigned intergers Reviewed-by: Richard Levitte <levitte@openssl.org>	2014-11-11 15:48:18 +01:00
Samuel Neves	0d330ce5cc	Use only unsigned arithmetic in constant-time operations Signed-off-by: Kurt Roeckx <kurt@roeckx.be> Reviewed-by: Emilia Käsper <emilia@openssl.org>	2014-10-28 20:54:34 +01:00
Kurt Cancemi	e2e13b8f3a	RT3547: Add missing static qualifier Reviewed-by: Ben Laurie <ben@openssl.org> (cherry picked from commit 87d388c955c14a7c1371f9c7555fb429a406a3d3)	2014-10-17 11:48:47 +02:00
Emilia Kasper	9a6940a349	RT3067: simplify patch (Original commit adb46dbc6dd7347750df2468c93e8c34bcb93a4b) Use the new constant-time methods consistently in s3_srvr.c Reviewed-by: Kurt Roeckx <kurt@openssl.org> (cherry picked from commit 455b65dfab0de51c9f67b3c909311770f2b3f801) Conflicts: ssl/Makefile	2014-09-24 15:58:20 +02:00
Emilia Kasper	904fcce0c6	RT3066: rewrite RSA padding checks to be slightly more constant time. Also tweak s3_cbc.c to use new constant-time methods. Also fix memory leaks from internal errors in RSA_padding_check_PKCS1_OAEP_mgf1 This patch is based on the original RT submission by Adam Langley <agl@chromium.org>, as well as code from BoringSSL and OpenSSL. Reviewed-by: Kurt Roeckx <kurt@openssl.org> Conflicts: crypto/rsa/rsa_oaep.c	2014-09-24 14:35:03 +02:00
Emilia Kasper	da8dd611ae	Make the inline const-time functions static. "inline" without static is not correct as the compiler may choose to ignore it and will then either emit an external definition, or expect one. Reviewed-by: Geoff Thorpe <geoff@openssl.org> (cherry picked from commit 86f50b36e63275a916b147f9d8764e3c0c060fdb)	2014-09-02 15:25:04 +02:00
Emilia Kasper	73729e4cf3	Constant-time utilities Pull constant-time methods out to a separate header, add tests. Reviewed-by: Bodo Moeller <bodo@openssl.org> (cherry picked from commit e7169a5835390d20057de8a19785982bd6a9b8c8) Conflicts: ssl/Makefile test/Makefile	2014-08-28 17:18:01 +02:00

7 Commits