zzy/openssl
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Commit Graph

  • c4a5d70d98 CI: Update upload-artifact action to be compatible Tomas Mraz 2024-09-04 17:17:29 +02:00
  • 2a6305dfcd build(deps): bump actions/download-artifact in /.github/workflows dependabot[bot] 2024-09-03 22:45:53 +00:00
  • bbe4571f57 EVP_CIPHER_CTX_get_algor_params() may attempt to access params array at position -1 (prams[=1]). Alexandr Nedvedicky 2024-08-28 14:37:07 +02:00
  • c23ce35225 s390x: Fix prehash-by-caller handling for ED25519 and ED448 Ingo Franzki 2024-09-02 09:08:02 +02:00
  • a75d62637a s390x: Disable HMAC hardware acceleration when an engine is used for the digest Ingo Franzki 2024-08-26 11:26:03 +02:00
  • 03b22b4d73 Add CVE-2024-5535 to CHANGES and NEWS Tomas Mraz 2024-09-03 12:24:58 +02:00
  • ca979e854b Updated CHANGES and NEWS for CVE-2024-6119 fix Viktor Dukhovni 2024-07-10 19:50:57 +10:00
  • 0890cd13d4 Avoid type errors in EAI-related name check logic. Viktor Dukhovni 2024-06-19 21:04:11 +10:00
  • 5650289743 Add CHANGES.md and NEWS.md updates for the 3.4 release Tomas Mraz 2024-08-30 17:06:12 +02:00
  • 01f4b44e07 Add support for elf_aux_info() on OpenBSD Brad Smith 2024-09-01 01:07:16 -04:00
  • 16e7da091c Missing .rodata for AVX2/AVX512 codepaths Theo Buehler 2024-08-30 17:06:26 +02:00
  • c94d13a069 Detect MinGW 32 bit for NO_INTERLOCKEDOR64 Adam (ThinLinc team) 2024-07-29 13:54:46 +02:00
  • d5b3c0e24b s390x: Fix HMAC digest detection Ingo Franzki 2024-08-28 14:56:33 +02:00
  • 0cd9dd703e Improve base64 BIO correctness and error reporting Viktor Dukhovni 2024-08-22 00:43:33 +10:00
  • d1c2c054a4 fix: ossl_digest_get_approved_nid() returns NID_undef on invalid digest Richard Levitte 2024-08-28 16:36:31 +02:00
  • f68ba38e18 Refactor OpenSSL 'ECDSA' EVP_SIGNATURE to also include ECDSA+hash composites Richard Levitte 2024-07-24 22:07:32 +02:00
  • bb2be4f066 Refactor OpenSSL 'DSA' EVP_SIGNATURE to also include DSA+hash composites Richard Levitte 2024-07-24 15:37:08 +02:00
  • c6c6af18ea endecode_test.c: Fix !fips v3.0.0 check Pauli 2024-08-30 11:43:29 +10:00
  • 15b748496f exporters for pkg-config: align with the changes for CMake Richard Levitte 2024-08-28 18:52:39 +02:00
  • 0b97a5505e endecode_test.c: Avoid running the SM2 tests with 3.0.0 FIPS provider Tomas Mraz 2024-08-29 18:42:14 +02:00
  • b4e4bf29ba Check for excess data in CertificateVerify Viktor Dukhovni 2024-08-28 20:36:09 +10:00
  • 25f5d7b85f s390x: support CPACF sha3/shake performance improvements Joerg Schmidbauer 2024-02-29 12:50:05 +01:00
  • 6772c2ab1b doc: Document properties param for Argon2 KDF Clemens Lang 2024-08-28 17:18:03 +02:00
  • 80008d4a94 Refactor and Enhance Compression Field Testing erbsland-dev 2024-08-25 12:08:36 +02:00
  • c026101be0 Correct Alert Handling for Missing Compression Methods erbsland-dev 2024-08-21 18:18:58 +02:00
  • 6696682774 Add ED25519 and ED448 support for EVP_PKEY_{sign,verify}_init_ex2() Richard Levitte 2024-07-24 07:25:57 +02:00
  • 1751334f59 Refactor OpenSSL 'EdDSA' EVP_SIGNATURE to allow use with EVP_PKEY functions Richard Levitte 2024-02-02 08:20:06 +01:00
  • d20cf21b20 Fix compile err when building VC-CLANG-WIN64-CLANGASM-ARM target Zhiqing Xie 2024-07-25 10:25:01 +08:00
  • 25bd0c77bf Fix decoder error on SM2 private key Jamie Cui 2024-08-22 11:41:50 +08:00
  • 14c45338e9 EVP_MD_size() updates slontis 2024-08-26 11:24:24 +10:00
  • 976dd3581a Update code to use EVP_MD_xof() slontis 2024-08-26 11:14:55 +10:00
  • c48e56874c XOF / EVP_MD_size() changes. slontis 2024-08-26 09:38:56 +10:00
  • 6dacee485f RSA decoder should check also sanity of p, q, e, d ... with respect to n sashan 2024-08-14 20:07:29 +02:00
  • f6a296c386 Cleanups for FIPS options.. slontis 2024-08-12 19:31:10 +10:00
  • accd835f8d fix: for exporters to work for build config, there may be two include dirs Richard Levitte 2024-07-17 18:23:57 +02:00
  • a82d9e572c fix: exporters/cmake/OpenSSLConfig.cmake.in to work for build config Richard Levitte 2024-07-17 11:09:11 +02:00
  • 0acb32052a test: issuedOnBehalfOf X.509v3 extension Jonathan M. Wilbur 2024-08-20 23:27:43 +00:00
  • 254693280d feat: add support for issuedOnBehalfOf X.509v3 extension Jonathan M. Wilbur 2024-08-20 23:24:01 +00:00
  • 873f269697 fix coding style Richard Levitte 2024-08-21 11:10:00 +02:00
  • 9524ca1bf4 doc: Document EVP_{TYPE}_CTX_get_algor etc Richard Levitte 2024-07-25 16:55:08 +02:00
  • 033dcce2ba feat: Implement EVP_PKEY_CTX_{set,get}_algor_params() and EVP_PKEY_CTX_get_algor() Richard Levitte 2024-07-25 13:30:28 +02:00
  • 258aaa97b8 feat: Implement EVP_CIPHER_CTX_{set,get}_algor_params() and EVP_CIPHER_CTX_get_algor() Richard Levitte 2024-07-25 12:34:06 +02:00
  • 3b1ea04650 fix: in RC2 implementation, handle both old and new AID.params keys Richard Levitte 2024-07-25 12:18:24 +02:00
  • 0941666728 Amend the design of AlgorithmIdentifier parameter passing Richard Levitte 2024-07-25 11:56:13 +02:00
  • c07a34e18b Return SSL_AD_UNEXPECTED_MESSAGE alert when receiving any other change_cipher_spec value(RFC 8446) Fixes: #25086 cx 2024-08-22 02:13:01 +08:00
  • 91432b9ea0 fix: alias auditEntity OID Jonathan M. Wilbur 2024-08-01 17:45:54 +00:00
  • dbd3d65d7c test: auditIdentity X.509v3 extension decoding and display Jonathan M. Wilbur 2024-06-27 20:30:06 +00:00
  • 9216859f7b feat: support auditIdentity X.509v3 extension Jonathan M. Wilbur 2024-06-27 20:29:49 +00:00
  • bce3a8d57e fix: wrong name for OID -> auditIdentity Jonathan M. Wilbur 2024-06-27 20:29:26 +00:00
  • 8e7f39e883 Cleanups for FIPS indicator documentation slontis 2024-08-15 16:20:26 +10:00
  • 5139b51cea Add FIPS indicator documentation slontis 2024-08-15 16:18:56 +10:00
  • c37e21763b Add FIPS indicators to X25519 and X448. X25519 and X448 are unapproved in FIPS 140-3 So always trigger the indicator callback if these Keys are used, and add "fips-indicator" getters that return 0. slontis 2024-08-21 17:43:19 +10:00
  • 32b43b9160 Update new FIPS indicator evp_tests to use FIPSversion + Availablein options. slontis 2024-08-22 14:11:13 +10:00
  • f2a5c80ca4 Revert evp_test change that made "FIPSversion" skip the default provider. slontis 2024-08-22 14:07:33 +10:00
  • bb1aab38a6 FIPS: Add EDDSA public key validation. slontis 2024-08-22 11:50:17 +10:00
  • f7fd43402c Update FIPS 140-3 self tests slontis 2024-08-19 12:01:53 +10:00
  • 06179b4be0 FIPS: Change fips tests to use SHA2 for corruption test. slontis 2024-08-22 09:09:14 +10:00
  • 19b87d2d2b s390x: Fix memory leak in s390x_HMAC_CTX_copy() Ingo Franzki 2024-08-20 11:35:20 +02:00
  • fe1ce91f7f acvptest: add positive and negative tests for verify message param Pauli 2024-08-19 11:34:12 +10:00
  • f5c8000c0a rsa: add verify_message param support Pauli 2024-08-19 10:40:24 +10:00
  • b80e2ddb66 ecdsa: add verify_message param support Pauli 2024-08-19 10:40:14 +10:00
  • 38f1e18e93 param: add OSSL_SIGNATURE_PARAM_FIPS_VERIFY_MESSAGE parameter name Pauli 2024-08-16 10:24:05 +10:00
  • a9fc8702e0 doc: document the OSSL_SIGNATURE_PARAM_FIPS_VERIFY_MESSAGE parameter Pauli 2024-08-16 10:21:12 +10:00
  • 3c1713aeed fuzz/hashtable.c: rc == -1 on insert is OK when fuzzing Tomas Mraz 2024-08-22 14:49:05 +02:00
  • 8951ee06b4 ossl_ht_insert(): Allow for 4 iterations of grow_hashtable() Tomas Mraz 2024-08-22 14:44:02 +02:00
  • 6c39d21a48 Replace PKCS#1 v1.5 padding in RSA PCT Joachim Vandersmissen 2024-03-15 11:34:12 -05:00
  • 9341e6683c Replace PKCS#1 v1.5 encryption in RSA PCT Joachim Vandersmissen 2024-03-13 19:26:21 -05:00
  • e91384d5b0 Fix error handling in OBJ_add_object Bernd Edlinger 2023-10-27 12:05:05 +02:00
  • 223e0020e4 x_attrib: fix a memory leak Beat Bolli 2024-08-15 12:35:02 +02:00
  • 1fb39522a2 Add Changes entry for debuginfo generation Neil Horman 2024-08-15 08:29:34 -04:00
  • 0fdbcf4c3c Add a test for debuginfo generation Neil Horman 2024-08-14 11:18:04 -04:00
  • a5d56626b9 Add debuginfo build target Neil Horman 2024-08-13 15:16:08 -04:00
  • 55662b6745 test/provider_test.c: Add OSSL_PROVIDER_unload() to avoid memory leak Jiasheng Jiang 2024-08-06 19:18:34 +00:00
  • 6e8a1031ed test/provider_fallback_test.c: Add OSSL_PROVIDER_unload() to avoid memory leak Jiasheng Jiang 2024-08-06 18:42:06 +00:00
  • 60358f2c5e Fix the alert used on a missing key_share Matt Caswell 2024-07-31 15:25:48 +01:00
  • 95994ded95 Add additional test cases for Single Step KDF. slontis 2024-08-07 10:58:10 +10:00
  • ea396c7024 Add FIPS KMAC key check slontis 2024-08-05 15:25:35 +10:00
  • 390f00a1e9 Add HMAC FIPS keysize check. slontis 2024-07-31 14:56:44 +10:00
  • d2739fc350 hashtable.c: Code style fixes Tomas Mraz 2024-08-16 16:27:17 +02:00
  • f0b1d4d1b0 core_namemap.c: 2048 hashtable buckets should be sufficient Tomas Mraz 2024-08-16 15:54:15 +02:00
  • 9f7489835d For lockless reads use the whole hashtable for colliding entries Tomas Mraz 2024-08-16 15:40:43 +02:00
  • 4cad608509 Use the new hashtable for core_namemap Tomas Mraz 2024-05-27 16:50:05 +02:00
  • 71fe7f0983 hashtable: Support lockless reads Tomas Mraz 2024-05-27 16:49:15 +02:00
  • 6cdca7b9fe hashtable.c: Avoid infinite loop in ossl_ht_insert() Tomas Mraz 2024-05-17 13:41:09 +02:00
  • 14efc05314 some performance improvements Neil Horman 2024-05-15 15:34:15 -04:00
  • 435531ec24 alternate collision checking support Neil Horman 2024-05-15 09:20:30 -04:00
  • 772481cf7c fix: Have util/mkerr.pl comply better with our coding style Richard Levitte 2024-07-16 06:52:07 +02:00
  • 523187df47 Enable RSA-SM3 in the default provider Richard Levitte 2024-08-19 08:38:56 +02:00
  • 8736de5e77 fix coding style Richard Levitte 2024-07-16 07:06:05 +02:00
  • b02cf2fc8f Add new test types in test/evp_test.c, and a test for RSA sigalgs Richard Levitte 2024-07-10 21:26:30 +02:00
  • 572a8371ab Refactor OpenSSL 'RSA' EVP_SIGNATURE to also include RSA+hash composites Richard Levitte 2024-07-06 16:26:39 +02:00
  • e675aabb87 Implement functionality for direct use of composite signature algorithms Richard Levitte 2024-01-18 15:27:34 +01:00
  • 1985ba60bb Link to the place where signature options are defined Hubert Kario 2024-07-26 16:25:42 +02:00
  • 391334dd8c When calling ASN1_item_i2d () check both returned length and allocated pointer XZ-X 2024-07-22 14:33:02 -04:00
  • dc6993a625 Enhance s_client Output erbsland-dev 2024-07-17 23:21:42 +02:00
  • a0b652825c test: add command line indicator option checking to fipsinstall Pauli 2024-08-15 10:58:25 +10:00
  • 96de408228 Add FIPS self test updates slontis 2024-08-16 19:10:22 +10:00
  • e113a92e29 test/hmactest: Add further tests for HMAC with multiple update calls Ingo Franzki 2024-02-02 14:55:32 +01:00
  • 0499de5add s390x: Add hardware acceleration for HMAC Ingo Franzki 2024-02-01 15:15:27 +01:00
  • 518b53b139 s390x: Add defines for new CPACF functions Ingo Franzki 2024-01-31 16:26:52 +01:00