root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
11,272 Commits 32 Branches 398 Tags 545 MiB
Commit Graph

12 Commits

Author SHA1 Message Date
Andy Polyakov 0e4f7045ea s3_cbc.c: fix warning [in Windows build]. 2013-02-08 14:22:22 +01:00
Andy Polyakov dd7e60bd70 ssl/*: revert "remove SSL_RECORD->orig_len" and merge "fix IV". 
Revert is appropriate because binary compatibility is not an issue
in 1.1.
 2013-02-08 10:20:48 +01:00
Adam Langley 32620fe9d1 Fix for EXP-RC2-CBC-MD5 
MD5 should use little endian order. Fortunately the only ciphersuite
affected is EXP-RC2-CBC-MD5 (TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5) which
is a rarely used export grade ciphersuite.
(cherry picked from commit f306b87d76)
 2013-02-06 16:11:31 +00:00
Andy Polyakov 9970308c88 e_aes_cbc_hmac_sha1.c: address the CBC decrypt timing issues. 
Address CBC decrypt timing issues and reenable the AESNI+SHA1 stitch.
(cherry picked from commit 125093b59f)
 2013-02-06 14:19:10 +00:00
Andy Polyakov 2aec073a52 ssl/*: remove SSL3_RECORD->orig_len to restore binary compatibility. 
Kludge alert. This is arranged by passing padding length in unused
bits of SSL3_RECORD->type, so that orig_len can be reconstructed.
(cherry picked from commit 8bfd4c659f)
 2013-02-06 14:19:10 +00:00
Dr. Stephen Henson b714a1fe09 Don't access EVP_MD_CTX internals directly. 
(cherry picked from commit 04e45b52ee)
 2013-02-06 14:19:10 +00:00
Andy Polyakov bbb4ee8574 s3/s3_cbc.c: allow for compilations with NO_SHA256|512. 
(cherry picked from commit d5371324d9)
 2013-02-06 14:19:10 +00:00
Andy Polyakov 4af91ec072 ssl/s3_cbc.c: md_state alignment portability fix. 
RISCs are picky and alignment granted by compiler for md_state can be
insufficient for SHA512.
(cherry picked from commit 36260233e7)
 2013-02-06 14:19:09 +00:00
Andy Polyakov 6b2a843970 ssl/s3_cbc.c: uint64_t portability fix. 
Break dependency on uint64_t. It's possible to declare bits as
unsigned int, because TLS packets are limited in size and 32-bit
value can't overflow.
(cherry picked from commit cab13fc847)
 2013-02-06 14:19:09 +00:00
Dr. Stephen Henson 6b1f7beeee typo. 
(cherry picked from commit 34ab3c8c71)
 2013-02-06 14:19:09 +00:00
Dr. Stephen Henson c4e6fb1524 Timing fix mitigation for FIPS mode. 
We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to EVP_DigestSignUpdate to hash additonal blocks
to cover any timing differences caused by removal of padding.
(cherry picked from commit b908e88ec1)
 2013-02-06 14:19:08 +00:00
Ben Laurie a693ead6dc Oops. Add missing file. 
(cherry picked from commit 014265eb02)
 2013-02-06 14:19:08 +00:00