summaryrefslogtreecommitdiff
path: root/src/lib/libc/crypt (unfollow)
Commit message (Collapse)AuthorFilesLines
2016-06-25Fix several issues in the OCSP code that could result in the incorrectbeck2-9/+33
generation and parsing of OCSP requests. This remediates a lack of error checking on time parsing in these functions, and ensures that only GENERALIZEDTIME formats are accepted for OCSP, as per RFC 6960 Issues reported, and fixes provided by Kazuki Yamaguchi <k@rhe.jp> and Kinichiro Inoguchi <kinichiro.inoguchi@gmail.com>
2016-06-06Set BN_FLG_CONSTTIME on the correct variable. beck committed wrong fix.libressl-v2.2.9tedu1-2/+2
Mistake noted by Billy Brumley. Many thanks.
2016-06-06Correct a problem that prevents the DSA signing algorithm from runningbeck1-4/+6
in constant time even if the flag BN_FLG_CONSTTIME is set. This issue was reported by Cesar Pereida (Aalto University), Billy Brumley (Tampere University of Technology), and Yuval Yarom (The University of Adelaide and NICTA). The fix was developed by Cesar Pereida
2016-06-06LibreSSL 2.2.9bcook1-3/+3
2016-05-29bump to 2.2.8libressl-v2.2.8bcook1-3/+3
2016-05-29Fix a short-read bug in the previous version of asn1_d2i_read_biobcook1-26/+28
The outer while() loop is missing, so we only read up to chunk_max bytes. ok tedu
2016-05-03prefer limits.h over sys/limits.hlibressl-v2.2.7bcook1-2/+2
2016-05-03bump to 2.2.7bcook1-2/+2
2016-05-03backport patch from openssl for multiple issues:tedu7-30/+56
missing padding check in aesni functions overflow in evp encode functions use of invalid negative asn.1 types ok beck