Dr. Stephen Henson 62e4506a7d Don't try and verify signatures if key is NULL (CVE-2013-0166) ...

Add additional check to catch this in ASN1_item_verify too.

2013-01-29 16:49:24 +00:00

..

aes

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

asn1

Don't try and verify signatures if key is NULL (CVE-2013-0166)

2013-01-29 16:49:24 +00:00

bf

Remove hard coded ecdsaWithSHA1 hack in ssl routines and check for RSA

2011-08-14 13:47:30 +00:00

bio

Unused variable.

2012-07-01 16:04:12 +00:00

bn

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

buffer

correct error code

2012-04-22 13:31:26 +00:00

camellia

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

cast

Revert "version skew" patches that break FIPS compilation.

2012-06-09 23:35:34 +00:00

cmac

oops, macro not present in OpenSSL 1.0.2

2012-04-11 15:11:16 +00:00

cms

Don't include comp.h in cmd_cd.c if OPENSSL_NO_COMP set

2013-01-23 01:07:23 +00:00

comp

Assorted bugfixes:

2011-02-03 12:03:57 +00:00

conf

PR: 2840

2012-07-03 20:16:30 +00:00

des

Reduce version skew.

2012-06-08 09:18:47 +00:00

dh

DH keys have an (until now) unused 'q' parameter. When creating from DSA copy

2011-11-14 14:16:09 +00:00

dsa

DH keys have an (until now) unused 'q' parameter. When creating from DSA copy

2011-11-14 14:16:09 +00:00

dso

PR: 2589

2011-09-01 13:52:38 +00:00

ec

Fix EC_KEY initialization race.

2012-10-05 20:51:12 +00:00

ecdh

Fix EC_KEY initialization race.

2012-10-05 20:51:12 +00:00

ecdsa

Fix EC_KEY initialization race.

2012-10-05 20:51:12 +00:00

engine

PR: 2735

2012-02-27 16:33:25 +00:00

err

Don't include comp.h if no-comp set.

2013-01-20 01:10:52 +00:00

evp

Make CBC decoding constant time.

2013-01-28 17:31:49 +00:00

hmac

Backport PSS signature support from HEAD.

2011-10-09 23:13:50 +00:00

idea

Revert "version skew" patches that break FIPS compilation.

2012-06-09 23:35:34 +00:00

jpake

apply J-PKAKE fix to HEAD (original by Ben)

2010-11-29 18:33:28 +00:00

krb5

Further BUILDENV refinement, further fool-proofing of Makefiles and

2005-05-16 16:55:47 +00:00

lhash

Revert lhash patch for PR#2124

2009-12-09 15:00:20 +00:00

md2

Prohibit use of low level digest APIs in FIPS mode.

2011-06-01 13:39:45 +00:00

md4

Fix some clang warnings.

2013-01-14 00:22:28 +00:00

md5

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

mdc2

Reduce version skew.

2012-06-08 09:18:47 +00:00

modes

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

objects

Fix some clang warnings.

2013-01-14 00:22:28 +00:00

ocsp

Don't try and verify signatures if key is NULL (CVE-2013-0166)

2013-01-29 16:49:24 +00:00

pem

In FIPS mode use PKCS#8 format when writing private keys:

2013-01-07 16:19:28 +00:00

perlasm

Reduce version skew.

2012-06-08 09:18:47 +00:00

pkcs7

Reduce version skew.

2012-06-08 09:18:47 +00:00

pkcs12

Reduce version skew.

2012-06-08 09:18:47 +00:00

pqueue

Fix warnings (From HEAD, original patch by Ben).

2010-06-15 17:25:15 +00:00

rand

PR: 2786

2012-08-22 22:42:04 +00:00

rc2

Revert "version skew" patches that break FIPS compilation.

2012-06-09 23:35:34 +00:00

rc4

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

rc5

Make inline assembler clang-friendly [from HEAD].

2010-08-02 21:54:48 +00:00

ripemd

Fix some clang warnings.

2013-01-14 00:22:28 +00:00

rsa

Add and use a constant-time memcmp.

2013-01-28 17:30:38 +00:00

seed

Revert "version skew" patches that break FIPS compilation.

2012-06-09 23:35:34 +00:00

sha

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

srp

Reduce version skew.

2012-06-08 09:18:47 +00:00

stack

Add DTLS-SRTP.

2011-11-15 23:02:16 +00:00

store

Make it possible to disable STORE.

2009-02-19 09:42:51 +00:00

threads

Functional VMS changes submitted by sms@antinode.info (Steven M. Schweda).

2009-05-15 16:37:08 +00:00

ts

only include evp.h once

2012-01-24 22:59:46 +00:00

txt_db

Change STRING to OPENSSL_STRING etc as common words such

2009-07-27 21:08:53 +00:00

ui

Reduce version skew.

2012-06-08 09:18:47 +00:00

whrlpool

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

x509

Fix two bugs which affect delta CRL handling:

2012-12-06 18:25:03 +00:00

x509v3

Fix two bugs which affect delta CRL handling:

2012-12-06 18:25:03 +00:00

.cvsignore

Apply mingw patches as supplied by Roumen Petrov an Alon Bar-Lev

2008-04-17 10:19:16 +00:00

alphacpuid.pl

Alpha assembler fixed from HEAD.

2011-08-12 12:31:08 +00:00

arm_arch.h

ARM assembler pack update from HEAD.

2011-11-14 20:58:01 +00:00

armcap.c

ARM assembler pack update from HEAD.

2011-11-14 20:58:01 +00:00

armv4cpuid.S

ARM assembler pack update from HEAD.

2011-11-14 20:58:01 +00:00

cpt_err.c

Implement FIPS_mode and FIPS_mode_set

2011-05-19 18:19:07 +00:00

cryptlib.c

Add and use a constant-time memcmp.

2013-01-28 17:30:38 +00:00

cryptlib.h

Reduce version skew.

2012-06-08 09:18:47 +00:00

crypto-lib.com

Add evp_cnf in the build.

2012-07-05 12:58:27 +00:00

crypto.h

Add and use a constant-time memcmp.

2013-01-28 17:30:38 +00:00

cversion.c

(oops) Apologies all, that last header-cleanup commit was from the wrong

2004-04-19 18:09:28 +00:00

ebcdic.c

Oops, this file already had the "empty source file" workaround but it

2003-10-29 22:25:04 +00:00

ebcdic.h

EBCDIC support.

2000-02-01 02:21:16 +00:00

ex_data.c

Avoid warnings with -pedantic, specifically:

2008-07-04 23:12:52 +00:00

fips_err.h

Update error codes for FIPS.

2011-10-21 13:04:27 +00:00

fips_ers.c

Add FIPS error codes.

2011-06-21 16:58:10 +00:00

ia64cpuid.S

IA64 assembler pack update from HEAD.

2011-11-14 20:45:57 +00:00

install-crypto.com

Apply all the changes submitted by Steven M. Schweda <sms@antinode.info>

2011-03-19 09:47:47 +00:00

LPdir_nyi.c

Copy a few files from LPlib (a new project of mine), add a wrapper.

2004-07-10 13:16:02 +00:00

LPdir_unix.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

LPdir_vms.c

Apply all the changes submitted by Steven M. Schweda <sms@antinode.info>

2011-03-19 09:47:47 +00:00

LPdir_win32.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

LPdir_win.c

Fix mingw warnings.

2006-10-23 07:41:05 +00:00

LPdir_wince.c

Import changed files from LPlib. The changes are logged as follows

2004-09-23 22:11:39 +00:00

Makefile

typo

2011-12-10 01:37:55 +00:00

md32_common.h

Make inline assembler clang-friendly [from HEAD].

2010-08-02 21:54:48 +00:00

mem_clr.c

Fix warning.

2007-06-23 18:47:51 +00:00

mem_dbg.c

PR: 1894

2009-04-16 17:22:51 +00:00

mem.c

Reduce version skew.

2012-06-08 09:18:47 +00:00

o_dir_test.c

Copy a few files from LPlib (a new project of mine), add a wrapper.

2004-07-10 13:16:02 +00:00

o_dir.c

DJGPP has opendir() and friends, according to Gisle Vanem <giva@bgnett.no>.

2004-08-03 19:15:21 +00:00

o_dir.h

Copy a few files from LPlib (a new project of mine), add a wrapper.

2004-07-10 13:16:02 +00:00

o_fips.c

call OPENSSL_init when calling FIPS_mode too

2012-04-20 14:42:54 +00:00

o_init.c

The first of many changes to make OpenSSL 1.0.1 FIPS capable.

2011-05-26 14:19:19 +00:00

o_str.c

Update from HEAD.

2009-06-01 12:14:15 +00:00

o_str.h

"Overload" SunOS 4.x memcmp, which ruins ASN1_OBJECT table lookups.

2005-09-20 20:19:07 +00:00

o_time.c

Apply all the changes submitted by Steven M. Schweda <sms@antinode.info>

2011-03-19 09:47:47 +00:00

o_time.h

Experimental new date handling routines. These fix issues with X509_time_adj()

2008-10-07 22:55:27 +00:00

opensslconf.h.in

Eliminate warning induced by http://cvs.openssl.org/chngview?cn=14690 and

2005-12-16 10:37:24 +00:00

opensslv.h

prepare for next version

2012-05-10 16:02:30 +00:00

ossl_typ.h

Backport PSS signature support from HEAD.

2011-10-09 23:13:50 +00:00

pariscid.pl

PA-RISC assembler pack update from HEAD.

2011-11-14 20:50:15 +00:00

ppccap.c

ppccap.c: assume no features under 32-bit AIX kernel [from HEAD].

2012-05-16 18:18:29 +00:00

ppccpuid.pl

ppccpuid.pl: branch hints in OPENSSL_cleanse impact small block performance

2012-04-27 20:20:15 +00:00

s390xcap.c

s390x assembler pack update from HEAD.

2011-11-14 20:47:22 +00:00

s390xcpuid.S

s390x assembler pack update from HEAD.

2011-11-14 20:47:22 +00:00

sparccpuid.S

sparcv9cap.c: disengange Solaris-specific CPU detection routine in favour

2010-09-05 19:48:19 +00:00

sparcv9cap.c

sparcv9cap.c: omit unused variable.

2012-01-12 14:19:52 +00:00

symhacks.h

Have the new names start in column 48, that makes it easy to see when

2012-07-05 09:00:49 +00:00

uid.c

Netware-specific changes,

2003-11-28 13:10:58 +00:00

vms_rms.h

Apply all the changes submitted by Steven M. Schweda <sms@antinode.info>

2011-03-19 09:47:47 +00:00

x86_64cpuid.pl

x86_64 assembly pack: make Windows build more robust [from master].

2013-01-22 22:54:04 +01:00

x86cpuid.pl

Reduce version skew.

2012-06-08 09:18:47 +00:00