- 13 Aug, 2021 3 commits
-
-
Tomas Mraz authored
This fixes numerous bugs in documentation in regards to UTF8 params and their sizes. The returned size should always be without the terminating NUL byte. On the other hand on the requestor side the size of the buffer should include the NUL byte if it expects it being included in the returned string. Also make this clear in the EVP_PKEY_get_group_name() documentation which uses utf8 string params under the hood. Fixes #16287 Reviewed-by:
Viktor Dukhovni <viktor@openssl.org> Reviewed-by:
Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/16296)
-
Tomas Mraz authored
Fixes #16244 Reviewed-by:
Dmitry Belyavskiy <beldmit@gmail.com> (Merged from https://github.com/openssl/openssl/pull/16281)
-
Shane Lontis authored
Fixes #16255 Reviewed-by:
Paul Dale <pauli@openssl.org> Reviewed-by:
Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/16285)
-
- 12 Aug, 2021 2 commits
-
-
Dmitry Belyavskiy authored
Fixes #16249 Reviewed-by:
-
Pauli authored
Fixes #16238 Reviewed-by:
Tim Hudson <tjh@openssl.org> (Merged from https://github.com/openssl/openssl/pull/16240)
-
- 11 Aug, 2021 8 commits
-
-
Todd Short authored
Reviewed-by:
-
Todd Short authored
Add missing SSL_OP flags. Correct the list of flags set by SSL_OP_ALL. Reviewed-by:
-
Tomas Mraz authored
If key length is different from the existing key length and it is not a settable parameter, raise an error. Fixes #16277 Reviewed-by:
-
Tomas Mraz authored
Reviewed-by:
Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/16268)
-
Tomas Mraz authored
Fixes #16261 Reviewed-by:
-
Tomas Mraz authored
Fixes #16273 Reviewed-by:
-
Dmitry Belyavskiy authored
Fixes #15484 Reviewed-by:
-
David Bohman authored
The include is added before <CommonCrypto/CommonRandom.h>, as required by older releases of the macOS developer tools. Fixes #16248 CLA: trivial Reviewed-by:
-
- 08 Aug, 2021 2 commits
-
-
Pauli authored
Reviewed-by:
-
Pauli authored
Both Ed448 and Ed25519 were omitted from the signature list. X448 and X25519 were flagged as not FIPS valid which wasn't correct. Fixes #16234 Reviewed-by:
-
- 06 Aug, 2021 6 commits
-
-
Tomas Mraz authored
Fixes #16226 Reviewed-by:
-
Dr. David von Oheimb authored
Reviewed-by:
-
Amir Mohammadi authored
Reviewed-by:
-
Christian Heimes authored
Unit test to show that a2i_IPADDRESS("1.2.3.4.test.example") ignores trailing data. See: https://github.com/openssl/openssl/issues/12649 See: https://bugs.python.org/issue41556 Signed-off-by:Christian Heimes <christian@python.org> Reviewed-by:
-
Amir Mohammadi authored
sscanf() call in ipv4_from_asc does not check that the string is terminated immediately after the last digit. Reviewed-by:
-
Tomas Mraz authored
Original PR by Eric Valcik (https://github.com/openssl/openssl/pull/12302 ) Reviewed-by:
-
- 05 Aug, 2021 19 commits
-
-
Kelvin Lee authored
encode_key2text.c(689): error C4703: potentially uninitialized local pointer variable 'modulus_label' used encode_key2text.c(691): error C4703: potentially uninitialized local pointer variable 'exponent_label' used CLA: trivial Reviewed-by:
Richard Levitte <levitte@openssl.org> Reviewed-by:
-
Tomas Mraz authored
Reviewed-by:
-
Tomas Mraz authored
Fixes #16195 Reviewed-by:
-
Tomas Mraz authored
Fixes #16196 Reviewed-by:
-
Billy Brumley authored
Reviewed-by:
Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by:
-
Pauli authored
Comparison checksum generated using 1.1.1f. Reviewed-by:
-
Pauli authored
Fixes #16200 Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
The power up known answer test for the TLS 1.3 KDF does just the first step to derive the "client_early_traffic_secret" using the two modes of the KDF. Reviewed-by:
-
Pauli authored
Fix link to TLS1 PRF. Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
This function needs to be power up tested as part of the FIPS validation and thus it needs to be inside the provider boundary. This is realised by introducing a new KDF "TLS13-KDF" which does the required massaging of parameters but is otherwise functionally equivalent to HKDF. Reviewed-by:
-
Pauli authored
Reviewed-by:
-
Pauli authored
Reviewed-by:
-
