A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_7_2 2022-08-28T18:27:47+00:00 2022-08-28T18:27:47+00:00 tb 2022-08-28T18:27:47+00:00 urn:sha1:b0456ada9d95082610b820d3b1226160e07765d5 ASN1_INTEGER_set() fails. ok jsing 2022-07-12T14:42:50+00:00 kn 2022-07-12T14:42:50+00:00 urn:sha1:89e42d5857196a8071fbafb5565388d0e20ec32b This script is not used at all and files are edited by hand instead. Thus remove misleading comments incl. the obsolete script/config. Feedback OK jsing tb 2022-01-20T10:58:35+00:00 inoguchi 2022-01-20T10:58:35+00:00 urn:sha1:2192f9d8c922d7178d2f2df094d0e82bb30c8afb It returns 1 on success and 0 for failure, never negative value. ok jsing@ millert@ tb@ 2022-01-19T13:47:44+00:00 inoguchi 2022-01-19T13:47:44+00:00 urn:sha1:588ca0cba94f4202b54289ec730f971a07e97001 CID 345137 ok jsing@ tb@ 2022-01-14T08:16:13+00:00 tb 2022-01-14T08:16:13+00:00 urn:sha1:ec5f7af843436771be5081c868e0fb0b44069ead This is unused and was removed in OpenSSL 5b70372d when it was replaced with an ASN.1 ADB callback (which we don't support). ok inoguchi jsing 2021-11-01T20:53:08+00:00 tb 2021-11-01T20:53:08+00:00 urn:sha1:f478d62658b61e2242dbf3575bf454f8c0f432b1 Garbage collect the now unused LIBRESSL_CRYPTO_INTERNAL and LIBRESSL_OPAQUE_X509. Include "x509_lcl.h" where needed and fix a couple of unnecessary reacharounds. ok jsing 2021-09-08T14:33:02+00:00 tb 2021-09-08T14:33:02+00:00 urn:sha1:34dad726781647a28729bb3e2fa6f77ca206abe8 Free ec->key before reassigning it. From OpenSSL 1.1.1, 58e1e397 ok inoguchi 2020-06-05T16:51:12+00:00 jsing 2020-06-05T16:51:12+00:00 urn:sha1:6aa0c4f1ec702bb2c820322709abd9c1767842fa A number of years ago we dropped the concept of having function names in errors, since it is not that useful and very quickly gets out of sync when refactoring. It would seem that some new ones got imported and some missed the last clean up. ok tb@ beck@ "kill it with fire" 2019-10-04T18:03:56+00:00 tb 2019-10-04T18:03:56+00:00 urn:sha1:03a0a727a85c64d9828255b797ef2d1d59c061df (Note that the CMS code is currently disabled.) Port of Edlinger's Fix for CVE-2019-1563 from OpenSSL 1.1.1 (old license) tests from bluhm@ ok jsing commit e21f8cf78a125cd3c8c0d1a1a6c8bb0b901f893f Author: Bernd Edlinger <bernd.edlinger@hotmail.de> Date: Sun Sep 1 00:16:28 2019 +0200 Fix a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey An attack is simple, if the first CMS_recipientInfo is valid but the second CMS_recipientInfo is chosen ciphertext. If the second recipientInfo decodes to PKCS #1 v1.5 form plaintext, the correct encryption key will be replaced by garbage, and the message cannot be decoded, but if the RSA decryption fails, the correct encryption key is used and the recipient will not notice the attack. As a work around for this potential attack the length of the decrypted key must be equal to the cipher default key length, in case the certifiate is not given and all recipientInfo are tried out. The old behaviour can be re-enabled in the CMS code by setting the CMS_DEBUG_DECRYPT flag. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9777) (cherry picked from commit 5840ed0cd1e6487d247efbc1a04136a41d7b3a37) 2019-08-12T18:13:13+00:00 jsing 2019-08-12T18:13:13+00:00 urn:sha1:ec1073627f94774923660f4ee69df060acd2c9e0 It seems that the CMS code is currently the only code in existence that uses this function.