generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
openssl/ssl
History
Matt Caswell fc7804ec39 Fix DTLS handshake message size checks. 
In |dtls1_reassemble_fragment|, the value of
|msg_hdr->frag_off+frag_len| was being checked against the maximum
handshake message size, but then |msg_len| bytes were allocated for the
fragment buffer. This means that so long as the fragment was within the
allowed size, the pending handshake message could consume 16MB + 2MB
(for the reassembly bitmap). Approx 10 outstanding handshake messages
are allowed, meaning that an attacker could consume ~180MB per DTLS
connection.

In the non-fragmented path (in |dtls1_process_out_of_seq_message|), no
check was applied.

Fixes CVE-2014-3506

Wholly based on patch by Adam Langley with one minor amendment.

Reviewed-by: Emilia Käsper <emilia@openssl.org>
2014-08-06 20:27:51 +01:00
..
.cvsignore
Add emacs cache files to .cvsignore.
2005-04-11 14:17:07 +00:00
bio_ssl.c
OPENSSL_NO_SOCK fixes [from HEAD].
2012-04-16 17:43:15 +00:00
d1_both.c
Fix DTLS handshake message size checks.
2014-08-06 20:27:51 +01:00
d1_clnt.c
Add ECC extensions with DTLS.
2014-07-15 12:20:30 +01:00
d1_enc.c
Update DTLS code to match CBC decoding in TLS.
2013-01-28 17:34:33 +00:00
d1_lib.c
Free up s->d1->buffered_app_data.q properly.
2014-06-02 14:40:18 +01:00
d1_meth.c
Let the TLSv1_method() etc. functions return a const SSL_METHOD
2005-08-14 21:48:33 +00:00
d1_pkt.c
Added SSLErr call for internal error in dtls1_buffer_record
2014-06-01 21:38:01 +01:00
d1_srtp.c
ssl/*: fix linking errors with no-srtp.
2013-02-09 19:52:07 +01:00
d1_srvr.c
Fix DTLS certificate requesting code.
2014-07-15 18:23:44 +01:00
dtls1.h
Reduce version skew.
2012-06-08 09:18:47 +00:00
heartbeat_test.c
Add conditional unit testing interface.
2014-07-24 19:43:25 +01:00
install-ssl.com
Don't forget to install srtp.h as well
2012-05-10 15:01:22 +00:00
kssl_lcl.h
Some fixes for kerberos builds.
2009-04-21 22:20:12 +00:00
kssl.c
make kerberos work with OPENSSL_NO_SSL_INTERN
2011-05-11 22:52:34 +00:00
kssl.h
Fix for WIN32 builds with KRB5
2014-02-26 15:33:09 +00:00
Makefile
make update
2014-08-01 21:23:49 +01:00
s2_clnt.c
Add and use a constant-time memcmp.
2013-01-28 17:30:38 +00:00
s2_enc.c
Update ssl library to support EVP_PKEY MAC API. Include generic MAC support.
2007-06-04 17:04:40 +00:00
s2_lib.c
Update strength_bits for 3DES.
2014-06-09 12:09:49 +01:00
s2_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s2_pkt.c
Add and use a constant-time memcmp.
2013-01-28 17:30:38 +00:00
s2_srvr.c
Reduce version skew.
2012-06-08 09:18:47 +00:00
s3_both.c
Fix for TLS record tampering bug CVE-2013-4353
2014-01-06 14:35:04 +00:00
s3_cbc.c
Check DTLS_BAD_VER for version number.
2013-02-12 15:16:05 +00:00
s3_clnt.c
Accept CCS after sending finished.
2014-06-14 22:26:10 +01:00
s3_enc.c
Fixed incorrect return code handling in ssl3_final_finish_mac.
2014-06-13 15:53:29 +01:00
s3_lib.c
SRP ciphersuite correction.
2014-06-09 12:09:49 +01:00
s3_meth.c
Type-checked (and modern C compliant) OBJ_bsearch.
2008-10-12 14:32:47 +00:00
s3_pkt.c
Remove redundant check.
2014-06-27 23:18:21 +01:00
s3_srvr.c
Don't limit message sizes in ssl3_get_cert_verify.
2014-07-05 13:30:55 +01:00
s23_clnt.c
Fix warning
2014-01-08 13:36:27 +00:00
s23_lib.c
Don't advertise ECC ciphersuits in SSLv2 compatible client hello.
2014-06-27 16:52:05 +01:00
s23_meth.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
s23_pkt.c
Reorder inclusion of header files:
2002-07-10 07:01:54 +00:00
s23_srvr.c
add FIPS support to ssl: doesn't do anything on this branch yet as there is no FIPS compilation support
2011-05-19 18:22:16 +00:00
srtp.h
move internal functions to ssl_locl.h
2011-11-21 22:52:01 +00:00
ssl2.h
Initial "opaque SSL" framework. If an application defines OPENSSL_NO_SSL_INTERN
2011-05-11 12:56:38 +00:00
ssl3.h
Fix for CVE-2014-0224
2014-06-05 09:04:27 +01:00
ssl23.h
Import of old SSLeay release: SSLeay 0.9.0b
1998-12-21 10:56:39 +00:00
ssl_algs.c
e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues.
2013-02-02 19:35:09 +01:00
ssl_asn1.c
fix coverity issue 966597 - error line is not always initialised
2014-05-08 00:00:08 +01:00
ssl_cert.c
don't use pseudo digests for default values of keys
2012-06-27 14:11:40 +00:00
ssl_ciph.c
Use more common name for GOST key exchange.
2014-07-14 18:31:54 +01:00
ssl_err2.c
Use new-style system-id macros everywhere possible. I hope I haven't
2001-02-20 08:13:47 +00:00
ssl_err.c
Fixed spelling error in error message. Fix supplied by Marcos Marado
2014-05-01 00:23:57 +01:00
ssl_lib.c
Check sk_SSL_CIPHER_num() after assigning sk.
2014-05-12 23:01:06 +01:00
ssl_locl.h
Add conditional unit testing interface.
2014-07-24 19:43:25 +01:00
ssl_rsa.c
Reduce version skew.
2012-06-08 09:18:47 +00:00
ssl_sess.c
New ctrl values to clear or retrieve extra chain certs from an SSL_CTX.
2011-12-22 15:01:16 +00:00
ssl_stat.c
Don't disable state strings with no-ssl2
2014-06-28 00:56:42 +01:00
ssl_task.c
Security fixes brought forward from 0.9.7.
2002-11-13 15:43:43 +00:00
ssl_txt.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
ssl_utst.c
Add conditional unit testing interface.
2014-07-24 19:43:25 +01:00
ssl-lib.com
VMS build fix #2.
2014-04-08 17:23:03 +01:00
ssl.h
Add conditional unit testing interface.
2014-07-24 19:43:25 +01:00
ssltest.c
Fix in ssltest is no-ssl2 configured
2013-02-11 18:17:50 +00:00
t1_clnt.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
t1_enc.c
Fix compilation with -DSSL_DEBUG -DTLS_DEBUG -DKSSL_DEBUG
2014-06-28 00:41:49 +01:00
t1_lib.c
Add ECC extensions with DTLS.
2014-07-15 12:20:30 +01:00
t1_meth.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
t1_reneg.c
Update RI to match latest spec.
2009-12-27 22:59:09 +00:00
t1_srvr.c
Backport TLS v1.2 support from HEAD.
2011-05-11 13:37:52 +00:00
tls1.h
Set TLS padding extension value.
2014-04-05 20:52:59 +01:00
tls_srp.c
Reduce version skew.
2012-06-08 09:18:47 +00:00