openbsd, branch OPENBSD_6

openbsd, branch OPENBSD_6_3 A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_6_3 2018-12-15T15:13:23+00:00 bump for LibreSSL 2.7.5 2018-12-15T15:13:23+00:00 bcook 2018-12-15T15:13:23+00:00 urn:sha1:5044e73fda29e14aa487421b75abb668af034376 Backport getentropy changes from deraadt@ on MAIN 2018-12-15T15:10:53+00:00 bcook 2018-12-15T15:10:53+00:00 urn:sha1:4b20f609ceab4d4ea9ac907c9435e392af690aaf Saw a mention somewhere a while back that the gotdata() function in here could creates non-uniformity since very short fetches of 0 would be excluded. blocks of 0 are just as random as any other data, including blocks of 4 4 4.. This is a misguided attempt to identify errors from the entropy churn/gather code doesn't make sense, errors don't happen. ok bcook Use a blinding value when generating DSA and ECDSA signatures, in order to 2018-11-17T18:46:43+00:00 tb 2018-11-17T18:46:43+00:00 urn:sha1:798d8cfebee4c5fcbf64856a9b3f667ec024da4e reduce the possibility of a side-channel attack leaking the private key. OpenBSD 6.3 errata 022 MFC: Reject excessively large primes in DH key generation. Problem reported 2018-06-13T15:13:30+00:00 jsing 2018-06-13T15:13:30+00:00 urn:sha1:d579103b8da90de816647e4df81e92ed59fcff8f by Guido Vranken to OpenSSL (https://github.com/openssl/openssl/pull/6457) and based on his diff. suggestions from tb@, ok tb@ jsing@ Original commit by sthen@ MFC: Avoid a timing side-channel leak when generating DSA and ECDSA 2018-06-13T15:08:08+00:00 jsing 2018-06-13T15:08:08+00:00 urn:sha1:752cb6f550d07071e7ee95a9266cb5f555f57ee6 signatures. This is caused by an attempt to do fast modular arithmetic, which introduces branches that leak information regarding secret values. Issue identified and reported by Keegan Ryan of NCC Group. ok beck@ tb@ Bump to LibreSSL 2.6.4 2018-06-13T14:54:17+00:00 bcook 2018-06-13T14:54:17+00:00 urn:sha1:2bf011a1634104f61568c0877ed47984c8491aba bump to 2.7.3 2018-05-03T00:44:28+00:00 bcook 2018-05-03T00:44:28+00:00 urn:sha1:7667f84f591ba140a67e4cb703ea59e03439bd00 MFC: 2018-05-02T16:57:35+00:00 tb 2018-05-02T16:57:35+00:00 urn:sha1:e21964afb1b9e46ccf5ec0a5429736d3aabf7139 Remove incorrect NULL checks in DH_set0_key(). Reported by Ondrej Sury, LibreSSL-portable issue #92. ok inoguchi, jsing Limit tls_config_clear_keys() to only clearing private keys. 2018-04-18T16:29:11+00:00 jsing 2018-04-18T16:29:11+00:00 urn:sha1:1f2eb700ae7e3c6771d21629af14f1956a6238a3 This was inadvertently clearing the keypair, which includes the OCSP staple and pubkey hash - if an application called tls_configure() followed by tls_config_clear_keys(), this would prevent OCSP staples from working. ok beck@ This commit was manufactured by cvs2git to create branch 'OPENBSD_6_3'. 2018-03-24T13:51:29+00:00 cvs2svn admin@example.com 2018-03-24T13:51:29+00:00 urn:sha1:748fecf73080b1ad39249f3c231e1b61c181d50e