zzy/openssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Commit Graph

  • 3992add1b7 Update sslkeylog in response to comments Neil Horman 2024-10-03 11:35:04 -04:00
  • 8458f873a0 Adding documentation to INSTALL Neil Horman 2024-10-03 09:52:45 -04:00
  • 825bb7f4bd Enable sslkeylog for some CI builds for checking Neil Horman 2024-08-27 08:15:32 -04:00
  • d381fc54b1 Add test to confirm sslkeylogfile format Neil Horman 2024-08-27 04:42:57 -04:00
  • 97d4b67cca Add documentation for SSLKEYLOGFILE Neil Horman 2024-08-26 18:33:14 -04:00
  • 4a69a6d171 Add sslkeylog config option and implementation Neil Horman 2024-08-26 17:59:46 -04:00
  • 256f580dcd CHANGES.md: Support for PKCS#7 inner contents verification olszomal 2024-10-14 14:19:55 +02:00
  • 8cfc26e6c4 Add support for p7->d.sign->contents with the V_ASN1_SEQUENCE type olszomal 2024-10-11 09:36:26 +02:00
  • f4c4674526 Revert API change of OPENSSL_version() Tomas Mraz 2024-10-15 11:18:24 +02:00
  • 0f8ff8fc25 [DOC] Document the OPENSSL_WINCTX type for OpenSSL_version() Richard Levitte 2024-10-15 12:47:37 +02:00
  • 7b36037e22 fix: let util/mkbuildinf.pl use SOURCE_DATE_EPOCH, even if it's zero Richard Levitte 2024-10-15 14:25:34 +02:00
  • 6bb62ab826 openssl-info.pod.in: Add windowscontext option to synopsis in doc Tomas Mraz 2024-10-16 20:00:19 +02:00
  • 5f3fefe2f3 Add 'openssl info' item for the Windows install context Richard Levitte 2024-10-15 12:22:52 +02:00
  • 50e9d2b188 mem: Don't use posix_memalign() and friends with custom wrapper Sebastian Andrzej Siewior 2024-10-13 18:05:55 +02:00
  • e524ac548a Dependabot update dependabot[bot] 2024-10-15 17:29:43 +00:00
  • 8e008cb8b2 Harden BN_GF2m_poly2arr against misuse. Viktor Dukhovni 2024-09-19 01:02:40 +10:00
  • f1607c8a2c Update documentation for SSL_SESSION_set_time_ex() Christopher Triantafilis 2024-10-10 16:14:01 -04:00
  • 2c536c8b15 replace various calls to sprintf() by BiO_snprintf() to avoid compiler warnings, e.g., on MacOS Dr. David von Oheimb 2024-09-24 21:24:39 +02:00
  • b2474b287f Fix memory leak in tls_parse_ctos_psk() Niels Dossche 2024-10-09 15:42:37 +02:00
  • 01244adfc6 fipsinstall: Save the 'status indicator' if the FIPS provider is 3.0.X. slontis 2024-02-27 15:57:14 +11:00
  • 792b2c8da2 Fix potential double free through SRP_user_pwd_set1_ids() Niels Dossche 2024-10-09 23:00:13 +02:00
  • 38e8392ba0 Use poll() in BIO_socket_wait() if available Andreas Mair 2024-07-31 13:59:45 +02:00
  • 99548cd16e Avoid undefined behaviour with the <ctype.h> functions. Taylor R Campbell 2023-03-29 05:48:44 +00:00
  • 6afaa3f41f Revert "TEMPORARY: run daily checks on PR" Tomas Mraz 2024-10-10 08:26:38 +02:00
  • ee0bf38e87 improve and move text on OPENSSL_TRACE from doc/man1/openssl.pod to doc/man7/openssl-env.pod Dr. David von Oheimb 2024-09-25 12:18:12 +02:00
  • f5981c9629 Add utility function ossl_param_is_empty() slontis 2024-09-20 10:34:08 +10:00
  • 187952d449 APPS/storeutl: fix case where uri and outfile are the same Dr. David von Oheimb 2024-09-27 08:24:45 +02:00
  • d1a0bbe658 test/recipes/tconversion.pl: add sub test_file_contains Dr. David von Oheimb 2024-09-27 13:32:08 +02:00
  • 47ebeb1c10 doc: add note about fips jitter option Pauli 2024-10-02 12:29:41 +10:00
  • 4bdbd830ac doc: add note about the configuration option for the jitter source. Pauli 2024-10-02 12:11:30 +10:00
  • 4c44603d55 TEMPORARY: run daily checks on PR Pauli 2024-09-20 09:10:40 +10:00
  • 348c928d66 fips: fix locking issues Pauli 2024-09-23 14:18:22 +10:00
  • b448cc1ac4 test: add test for fips-jitter Pauli 2024-09-20 09:09:29 +10:00
  • ed524da19a add news and changes entries for the internal jitter source in FIPS Pauli 2024-09-20 09:00:02 +10:00
  • fc5fb3c925 fips: mention the internal jitter source in the FIPS README Pauli 2024-09-20 08:59:40 +10:00
  • 3a01d5d65b jitter: support an internal jitter entropy source in the FIPS provider Pauli 2024-09-20 08:58:47 +10:00
  • 61f032cc7b Add configuration option to allow the FIPS provider to use the jitter source internally Pauli 2024-09-20 08:58:12 +10:00
  • 01ec59defd jitter: avoid a signed vs unsigned comparison Pauli 2024-09-19 08:39:20 +10:00
  • 6f08353a4b doc: EVP_KDF document the semantic meaning of output Dimitri John Ledkov 2024-10-04 23:41:44 +01:00
  • cdbe47bf3c Increase limit for CRL download Dmitry Belyavskiy 2024-10-04 17:07:38 +02:00
  • e647220c00 Documenting CRL download usage and restrictions Dmitry Belyavskiy 2024-10-04 17:06:38 +02:00
  • 73e720c3a5 evp_libctx_test: fix provider compat CI regression Pauli 2024-10-08 10:38:26 +11:00
  • 0a2a8d970f Fix potential memory leak in save_statusInfo() Niels Dossche 2024-10-03 16:58:30 +02:00
  • d8b7a6eae9 Fix potential memory leak in PKCS7_signatureVerify() Niels Dossche 2024-10-02 21:53:52 +02:00
  • 80a31435e5 Test PBMAC1 with absent PBKDF2 PRF Olivier Chéron 2024-09-30 21:44:28 +02:00
  • f3652dff2f Handle PBMAC1 with absent PBKDF2 PRF Olivier Chéron 2024-09-29 17:50:08 +02:00
  • 0d6544cdf8 check-format-commit: call fewer unneeded processes Beat Bolli 2024-08-17 17:34:14 +02:00
  • 1c1223ff53 Add some documentation to describe the encap/decap requirements Neil Horman 2024-09-27 09:33:35 -04:00
  • 796b2caa9e Adjust tests to fetch the output len for EVP_PKEY_[en|de]cap Neil Horman 2024-09-24 13:54:14 -04:00
  • 0f9516855e Update rsasve_recover to properly store outlen on success Neil Horman 2024-09-23 14:14:18 -04:00
  • 5bc13d5d8c cmp_vfy_test.c: Avoid NULL pointer dereference Tomas Mraz 2024-09-20 14:42:52 +02:00
  • 445017152b Added check for __QNX__ define when using in_pktinfo.ipi_spec_dst Klaus Holst Jacobsen 2024-05-10 11:10:35 +02:00
  • b69ca92a5e Drop the aid field of the signature prov ctx lan1120 2024-09-30 15:00:04 +08:00
  • 76c4f0e8ea Update test/quic-openssl-docker/run_endpoint.sh Neil Horman 2024-09-29 14:03:03 -04:00
  • a941f5d52e quic-interop: exlude multiplexing Neil Horman 2024-09-24 06:24:55 -04:00
  • c8b050eef1 Update quic interop docker container for chacha20 Neil Horman 2024-09-24 04:31:47 -04:00
  • 5f43a3376b Add SSL_CIPHER_SUITES env variable to quic-hq-interop Neil Horman 2024-09-24 04:24:26 -04:00
  • ffa5465e54 Exclude EVP_DigestSign and EVP_DigestVerify related APIs from the FIPS provider. slontis 2024-09-30 11:20:08 +10:00
  • 349815b57f Fix rsa_sigalg_set_ctx_params() to return 1 for unknown parameters. slontis 2024-09-20 10:37:55 +10:00
  • 923baa12e1 Change FIPS self tests to use EVP_PKEY_sign/verify API. slontis 2024-09-30 11:12:38 +10:00
  • 4f48629c9d v3_ncons: Fix difference args names in nc_match_single function Maks Mishin 2024-10-02 07:29:04 +03:00
  • a571425492 add test/recipes/15-test_pkey.t Dr. David von Oheimb 2024-09-27 21:53:24 +02:00
  • c8359abb88 APPS/pkey: fix case where infile and outfile are the same Dr. David von Oheimb 2024-09-26 19:25:43 +02:00
  • d5c4a8aecc APPS/pkcs8: fix case where infile and outfile are the same Dr. David von Oheimb 2024-09-27 07:58:33 +02:00
  • 421e8d7af8 APPS/ocsp: fix case where reqin and outfile are the same Dr. David von Oheimb 2024-09-27 07:49:22 +02:00
  • 1dbb67c4f1 APPS/{ecparam,pkeyparam}: fix case where infile and outfile are the same Dr. David von Oheimb 2024-09-27 07:58:20 +02:00
  • 32189981a3 APPS/dsaparam: fix case where infile and outfile are the same Dr. David von Oheimb 2024-09-27 07:39:17 +02:00
  • 9ae1e6596f APPS/dhparam: fix case where infile and outfile are the same Dr. David von Oheimb 2024-09-27 07:31:36 +02:00
  • 93d1bb6dff os-zoo.yml: Disable stringop-overflow warning on alpine edge Tomas Mraz 2024-10-03 09:24:05 +02:00
  • 27af422b1c Update fips-label.yml to make 'Cleanup artifact' conditional Richard Levitte 2024-10-01 09:52:59 +02:00
  • c262cc0c04 fips: add lots of potentially missing ossl_prov_is_running checks Dimitri John Ledkov 2024-09-30 15:54:45 +01:00
  • 5c91f70ba8 Use the correct length value for input salt Simo Sorce 2024-09-30 09:25:48 -04:00
  • c477fa5a22 ci: add 3.4 to prov-compat-label tests Pauli 2024-10-01 15:16:37 +10:00
  • 3cc299258c ci: add 3.4 to the provider compatibility test Pauli 2024-10-01 15:05:29 +10:00
  • 12d14de641 test: add FIPS version check for EC cofactor derive tests Pauli 2024-10-01 09:23:28 +10:00
  • 2f362e99a1 Fix bugs in ECDH cofactor FIPS indicator. slontis 2024-09-26 15:18:59 +10:00
  • fc68cf21b5 kdfs: implement key length check in X9.42 Dimitri John Ledkov 2024-09-21 15:25:53 +01:00
  • 3be6387588 docs: document options added in openssl-fipsinstall 3.4+ Dimitri John Ledkov 2024-09-30 10:49:02 +01:00
  • 9331a202fe docs: document options added in openssl-fipsinstall 3.2+ Dimitri John Ledkov 2024-09-30 10:48:29 +01:00
  • 1b52b24aa4 docs: document options added in openssl-fipsinstall 3.1+ Dimitri John Ledkov 2024-09-30 10:46:28 +01:00
  • 634d84324a docs: add HISTORY section to openssl-fipsinstall (3.0+) Dimitri John Ledkov 2024-09-30 10:45:28 +01:00
  • c788f1c6be Add CHANGES entry Pauli 2024-09-26 08:11:30 +10:00
  • 0081964805 test: fix unit tests for fips CRNG tests Pauli 2024-09-25 10:30:58 +10:00
  • d927eb2950 doc: fix typo in CRNG test documentation. Pauli 2024-09-25 10:03:42 +10:00
  • ed68623287 fips: Prohibit SHA1 in DH & ECDH exchange Dimitri John Ledkov 2024-09-23 12:57:22 +01:00
  • 3ef1b7426b Check file name for not being NULL before opening it Зишан Мирза 2024-09-14 00:24:24 +02:00
  • 4f899849ce Fix examples in EVP_PKEY_encapsulate/decapsulate documentation Зишан Мирза 2024-09-12 16:01:21 +02:00
  • ffc5a29608 Remove double engine reference in ossl_ec_key_dup() Зишан Мирза 2024-09-16 23:20:58 +02:00
  • 8ac42a5f41 Fix NULL ptr dereference on EC_POINT *point Shawn C 2024-09-19 17:14:09 +00:00
  • c4ec708bd5 Rename list macros Neil Horman 2024-09-23 12:11:01 -04:00
  • 91ec19e92e check-format.pl: do checks regarding statement/block after for() also on {OSSL_,}LIST_FOREACH{,_*} Dr. David von Oheimb 2024-09-24 22:00:59 +02:00
  • 260ecea0d4 ctr-drbg: always use the DF for OpenSSL's DRBGs Pauli 2024-09-23 14:45:41 +10:00
  • 9d71a6622b Check sk_X509_value result before dereference JohnnySavages 2024-07-24 07:17:49 -04:00
  • e7abc2118f document the format of DSA signature Vladimir Kotal 2024-03-06 15:37:58 +01:00
  • 1ef3032eac 80-test_cmp_http.t: fix handling of IPv6 server host (localhost '::1') David von Oheimb 2024-07-26 15:34:05 +02:00
  • ac91bd88d9 doc/man{1,3}: fix details on IPv6 host addresses and of whitespace in no_proxy David von Oheimb 2024-08-01 21:36:02 +02:00
  • fe004a09ac OSSL_HTTP_adapt_proxy(): fix handling of escaped IPv6 host addresses and of whitespace in no_proxy David von Oheimb 2024-08-01 21:33:18 +02:00
  • 1c90d36ab1 OSSL_HTTP_open(): fix completion with default port for IPv6 host addresses David von Oheimb 2024-08-01 21:25:44 +02:00
  • ec4b123a96 http_server.{c,h}: make clear that IPv4 or IPv6 is used by http_server_init() David von Oheimb 2024-07-31 19:36:16 +02:00
  • 7ec5d5916b http_server.c: fix checks of error return code in http_server_init() David von Oheimb 2024-07-31 19:32:44 +02:00