A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=OPENBSD_6_5_BASE 2019-04-10T16:23:55+00:00 2019-04-10T16:23:55+00:00 jsing 2019-04-10T16:23:55+00:00 urn:sha1:8ab9e3c33c0dd587e42c1c871bbe154fd19af00f There are cases where the old_priv_decode() function can fail but consume bytes. This will result in the pp pointer being advanced, which causes d2i_PKCS8_PRIV_KEY_INFO() to be called with an advanced pointer and incorrect length. Fixes oss-fuzz #13803 and #14142. ok deraadt@ tb@ 2019-04-09T22:01:50+00:00 schwarze 2019-04-09T22:01:50+00:00 urn:sha1:1e058bee4dd8093d5d6bebd88f82654927d1582c SSL_CTX_add_extra_chain_cert(3). From Dr. Stephen Henson <steve at openssl dot org> via OpenSSL commit a4339ea3 Jan 3 22:38:03 2014 +0000 which is still under a free license. 2019-04-09T21:06:31+00:00 schwarze 2019-04-09T21:06:31+00:00 urn:sha1:58b03032ff8a03f5c8a1f05dc50a303855755822 From Kurt Roeckx <kurt at roeckx dot be> via OpenSSL commit 57fd5170 May 13 11:24:11 2018 +0200 which is still under a free license. While here, polish awkward wording and reduce duplication. 2019-04-07T16:35:50+00:00 jsing 2019-04-07T16:35:50+00:00 urn:sha1:a2af4c7dba7453f0994ce278075358a1d3a0e14f In this code, just because something is cast to a type doesn't mean it is necessarily that type - in this case we cannot check the length of the ASN1_STRING here, since it might be another data type and later handled as an int (for example, in the V_ASN1_BOOLEAN case). We will revisit this post release. ok tb@ 2019-04-05T20:23:38+00:00 tb 2019-04-05T20:23:38+00:00 urn:sha1:c2876e8ba1959b3e0627d20de447c1449f8294da the spec. To avoid the obvious loop in the RFC's state machine, we added a CLIENT_HELLO_RETRY state which is a second ClientHello with special rules. There is, however, no state to react to this second client hello. This adds a matching SERVER_HELLO_RETRY state to the handshakes table. This means in particular that the WITH_HRR state cannot be set in tls13_server_hello_recv(), so remove this now dead check. ok jsing 2019-04-05T18:29:43+00:00 schwarze 2019-04-05T18:29:43+00:00 urn:sha1:a98b4eba250f598d6a0d68257edc1e04e6374565 under a free license, omitting functions we don't have and tweaked by me; the functions were provided by jsing@ in ssl.h rev. 1.166. While here, also document SSL_CTX_get_extra_chain_certs(3) because it is closely related to companion functions are already documented and the API is kind of incomplete without it. 2019-04-05T05:13:12+00:00 tb 2019-04-05T05:13:12+00:00 urn:sha1:577d186c707e745daefd41a6fb594038fbebe6d1 record_type member of the tls13_handshake_action struct. ok jsing 2019-04-04T16:53:57+00:00 jsing 2019-04-04T16:53:57+00:00 urn:sha1:e827d532c25b674208a351af5d04b7d4513ddaad If the Server Hello received indicates that the server did not negotiate TLS 1.3, fallback to the original TLS client implementation. ok bcook@, tb@ 2019-04-04T16:44:24+00:00 jsing 2019-04-04T16:44:24+00:00 urn:sha1:e08a868e8ded4fb95c7382fe5f5b7d6e9fb4dc23 The original implementation allows for libcrypto to be compiled without a given algorithm and libssl then detects that ciphers or digests are unavailable so that it can disable the associated cipher suites. This is unnecessary since we do not compile out algorithms. ok beck@, tb@ (a while back) 2019-04-04T15:10:10+00:00 jsing 2019-04-04T15:10:10+00:00 urn:sha1:5dd1c6b96f9dc9a54b9f610ec892e291593d83b6 This avoids ever having a non-zero len with a NULL pointer.