openssl - OpenGrok history log for /openssl

Revision (<<< Hide revision tags) (Show revision tags >>>)	Date	Author	Comments (<<< Hide modified files) (Show modified files >>>)
60ea150b	18-Oct-2022	Dr. David von Oheimb	CMS_decrypt_set1_(): remove misleading error queue entry when recipient mismatch was not the issue Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> CMS_decrypt_set1_(): remove misleading error queue entry when recipient mismatch was not the issue Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19222) show more ... crypto/cms/cms_smime.c
911045af	14-Oct-2022	Dr. David von Oheimb	CMS_decrypt_set1_password(): prevent mem leak on any previously set decryption key Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: CMS_decrypt_set1_password(): prevent mem leak on any previously set decryption key Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19222) show more ... crypto/cms/cms_smime.c
25dd7804	15-Sep-2022	Dr. David von Oheimb	CMS_decrypt(): fix misconceptions and mem leak Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb CMS_decrypt(): fix misconceptions and mem leak Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19222) show more ... crypto/cms/cms_env.c crypto/cms/cms_smime.c doc/man3/CMS_EncryptedData_decrypt.pod doc/man3/CMS_decrypt.pod
0b7ad5d9	23-Nov-2022	Jan	Fix typo in openssl-x509.pod.in CLA: trivial Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/o Fix typo in openssl-x509.pod.in CLA: trivial Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19746) show more ... doc/man1/openssl-x509.pod.in
3f32d29a	22-Nov-2022	Jiaxun Yang	Add SM2 support for EVP_PKEY_Q_keygen There is no reason preventing this API to support SM2, which gives us a simple method to do SM2 key gen. CLA: trivial Reviewed-by: Add SM2 support for EVP_PKEY_Q_keygen There is no reason preventing this API to support SM2, which gives us a simple method to do SM2 key gen. CLA: trivial Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19736) show more ... crypto/evp/evp_lib.c doc/man3/EVP_PKEY_keygen.pod
cba0e2af	13-Sep-2022	Dr. David von Oheimb	CMP: fix handling of unset or missing failInfo PKI status information Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Todd Short <todd.short@me.com> Reviewed-by: David von O CMP: fix handling of unset or missing failInfo PKI status information Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Todd Short <todd.short@me.com> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19205) show more ... crypto/cmp/cmp_client.c crypto/cmp/cmp_status.c doc/man3/OSSL_CMP_CTX_new.pod
19ddcc4c	13-Sep-2022	Dr. David von Oheimb	CMP: fix status held in OSSL_CMP_CTX, in particular for genp messages On this occasion, replace magic constants by mnemonic ones; update doc Reviewed-by: Tomas Mraz <tomas@openssl.o CMP: fix status held in OSSL_CMP_CTX, in particular for genp messages On this occasion, replace magic constants by mnemonic ones; update doc Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Todd Short <todd.short@me.com> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19205) show more ... apps/cmp.c crypto/cmp/cmp_client.c crypto/cmp/cmp_ctx.c crypto/cmp/cmp_msg.c crypto/cmp/cmp_server.c crypto/cmp/cmp_status.c doc/man3/OSSL_CMP_CTX_new.pod doc/man3/OSSL_CMP_exec_certreq.pod include/openssl/cmp.h.in
33a73e33	17-Sep-2022	Dr. David von Oheimb	OSSL_CMP_ITAV_set0.pod: fix formatting nits, update example Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: David von Ohei OSSL_CMP_ITAV_set0.pod: fix formatting nits, update example Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19230) show more ... doc/man3/OSSL_CMP_ITAV_set0.pod
357bfe73	17-Sep-2022	Dr. David von Oheimb	CMP+CRMF: fix formatting nits in crypto/, include/, and test/ Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: David von Oh CMP+CRMF: fix formatting nits in crypto/, include/, and test/ Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19230) show more ... crypto/cmp/cmp_asn.c crypto/cmp/cmp_client.c crypto/cmp/cmp_local.h crypto/cmp/cmp_msg.c crypto/cmp/cmp_protect.c crypto/cmp/cmp_status.c crypto/cmp/cmp_util.c crypto/cmp/cmp_vfy.c crypto/crmf/crmf_asn.c crypto/crmf/crmf_lib.c crypto/crmf/crmf_local.h crypto/crmf/crmf_pbm.c include/crypto/cmperr.h include/openssl/crmf.h.in test/cmp_asn_test.c test/cmp_client_test.c test/cmp_hdr_test.c test/cmp_msg_test.c test/cmp_protect_test.c test/cmp_status_test.c test/cmp_vfy_test.c
cd715b7e	09-Nov-2022	Maxim Mikityanskiy	Add support for KTLS zerocopy sendfile on Linux TLS device offload allows to perform zerocopy sendfile transmissions. FreeBSD provides this feature by default, and Linux 5.19 introduced Add support for KTLS zerocopy sendfile on Linux TLS device offload allows to perform zerocopy sendfile transmissions. FreeBSD provides this feature by default, and Linux 5.19 introduced it as an opt-in. Zerocopy improves the TX rate significantly, but has a side effect: if the underlying file is changed while being transmitted, and a TCP retransmission happens, the receiver may get a TLS record containing both new and old data, which leads to an authentication failure and termination of connection. This effect is the reason Linux makes a copy on sendfile by default. This commit adds support for TLS zerocopy sendfile on Linux disabled by default to avoid any unlikely backward compatibility issues on Linux, although sacrificing consistency in OpenSSL's behavior on Linux and FreeBSD. A new option called KTLSTxZerocopySendfile is added to enable the new zerocopy behavior on Linux. This option should be used when the the application guarantees that the file is not modified during transmission, or it doesn't care about breaking the connection. The related documentation is also added in this commit. The unit test added doesn't test the actual functionality (it would require specific hardware and a non-local peer), but solely checks that it's possible to set the new option flag. Signed-off-by: Maxim Mikityanskiy <maximmi@nvidia.com> Reviewed-by: Tariq Toukan <tariqt@nvidia.com> Reviewed-by: Boris Pismenny <borisp@nvidia.com> Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Todd Short <todd.short@me.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/18650) show more ... CHANGES.md apps/s_server.c crypto/bio/bss_conn.c crypto/bio/bss_sock.c doc/man1/openssl-s_server.pod.in doc/man3/SSL_CONF_cmd.pod doc/man3/SSL_CTX_set_options.pod include/internal/bio.h include/internal/ktls.h include/openssl/bio.h.in include/openssl/ssl.h.in ssl/record/methods/ktls_meth.c ssl/ssl_conf.c test/sslapitest.c
394f6f24	24-Nov-2022	Hugo Landau	QUIC TXP: Fix missing OSSL_NELEM include Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> (Merged from https://github.com/openssl/opens QUIC TXP: Fix missing OSSL_NELEM include Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> (Merged from https://github.com/openssl/openssl/pull/19756) show more ... ssl/quic/quic_stream_map.c
18af4d15	19-Sep-2022	Daniel Fiala	Make parsing of piped data in `speed.c` more robust Fixes openssl#19050 Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from h Make parsing of piped data in `speed.c` more robust Fixes openssl#19050 Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19238) show more ... apps/speed.c
a73078b7	26-Sep-2022	Hugo Landau	QUIC TX Packetiser and Streams Mapper Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged QUIC TX Packetiser and Streams Mapper Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19346) show more ... doc/designs/quic-design/tx-packetiser.md include/internal/quic_ackm.h include/internal/quic_fc.h include/internal/quic_fifd.h include/internal/quic_record_tx.h include/internal/quic_stream.h include/internal/quic_stream_map.h include/internal/quic_txp.h include/internal/quic_txpim.h include/internal/quic_types.h include/internal/quic_wire.h include/internal/quic_wire_pkt.h ssl/quic/build.info ssl/quic/quic_ackm.c ssl/quic/quic_fifd.c ssl/quic/quic_record_rx.c ssl/quic/quic_record_tx.c ssl/quic/quic_sstream.c ssl/quic/quic_stream_map.c ssl/quic/quic_txp.c ssl/quic/quic_wire.c ssl/quic/quic_wire_pkt.c test/build.info test/quic_fifd_test.c test/quic_record_test.c test/quic_record_test_util.h test/quic_stream_test.c test/quic_txp_test.c test/quic_wire_test.c test/recipes/70-test_quic_txp.t
f5060f9b	16-Nov-2022	slontis	Add HISTORY section to EVP_KEM-EC document. Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/ Add HISTORY section to EVP_KEM-EC document. Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19699) show more ... doc/man7/EVP_KEM-EC.pod
b863e1e4	27-Oct-2022	Everton Constantino	Add two new build targets to enable the possibility of using clang-cl as an assembler for Windows on Arm builds and also clang-cl as the compiler as well. Make appropriate changes to armcap s Add two new build targets to enable the possibility of using clang-cl as an assembler for Windows on Arm builds and also clang-cl as the compiler as well. Make appropriate changes to armcap source and peralsm scripts. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19523) show more ... Configurations/50-win-clang-cl.conf Configurations/windows-makefile.tmpl crypto/armcap.c crypto/perlasm/arm-xlate.pl
f2a6f838	20-Feb-2021	FdaSilvaYY	Cleanup : directly include of `internal/nelem.h` when required. And so clean a few useless includes Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@ope Cleanup : directly include of `internal/nelem.h` when required. And so clean a few useless includes Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19721) show more ... apps/s_client.c crypto/ec/ec_backend.c engines/e_devcrypto.c include/internal/e_os.h providers/baseprov.c providers/common/provider_util.c providers/fips/fipsprov.c providers/implementations/encode_decode/decode_der2key.c providers/implementations/kdfs/x942kdf.c providers/implementations/kem/rsa_kem.c providers/implementations/rands/seeding/rand_unix.c providers/implementations/rands/seeding/rand_vms.c ssl/ssl_lib.c ssl/t1_trce.c test/mdc2test.c test/pkcs12_format_test.c test/testutil/format_output.c test/testutil/tests.c test/x509aux.c
2da163cb	21-Sep-2022	Dr. David von Oheimb	CMP: add API functions OSSL_CMP_CTX_get0_libctx() and OSSL_CMP_CTX_get0_propq() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Da CMP: add API functions OSSL_CMP_CTX_get0_libctx() and OSSL_CMP_CTX_get0_propq() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/19715) show more ... crypto/cmp/cmp_ctx.c doc/man3/OSSL_CMP_CTX_new.pod include/openssl/cmp.h.in test/cmp_ctx_test.c util/libcrypto.num
d2f6e66d	02-Nov-2022	slontis	Improve FIPS RSA keygen performance. Reduce the Miller Rabin counts to the values specified by FIPS 186-5. The old code was using a fixed value of 64. Reviewed-by: Paul Dale <pa Improve FIPS RSA keygen performance. Reduce the Miller Rabin counts to the values specified by FIPS 186-5. The old code was using a fixed value of 64. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19579) show more ... crypto/bn/bn_prime.c crypto/bn/bn_rsa_fips186_4.c include/crypto/bn.h
f5e602b5	21-Nov-2022	Tomas Mraz	Fix version mistake in some HISTORY sections Follow up of PR#19690 Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged fro Fix version mistake in some HISTORY sections Follow up of PR#19690 Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19725) show more ... doc/man7/EVP_KDF-PVKKDF.pod doc/man7/EVP_KEM-X25519.pod
e0fbaf2a	01-Nov-2022	Tomas Mraz	Update CHANGES.md and NEWS.md from 3.0.7 Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Update CHANGES.md and NEWS.md from 3.0.7 Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19565) show more ... CHANGES.md NEWS.md
858b5d12	21-Oct-2022	Daniel Fiala	Add an EVP signature demo using DSA Fixes openssl#14114 Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mra Add an EVP signature demo using DSA Fixes openssl#14114 Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Shane Lontis <shane.lontis@oracle.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19492) show more ... demos/signature/EVP_DSA_Signature_demo.c demos/signature/EVP_EC_Signature_demo.c demos/signature/EVP_EC_Signature_demo.h demos/signature/Makefile
122ea851	22-Nov-2022	Richard Levitte	test/recipes/80-test_cms.t: Fix the "CAdES ko" test This test had commands that assumes that runner_loop() is used to perform the tests. These tests still run fine because Unix accepts test/recipes/80-test_cms.t: Fix the "CAdES ko" test This test had commands that assumes that runner_loop() is used to perform the tests. These tests still run fine because Unix accepts braces in file names, but other operating systems might not. Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19731) (cherry picked from commit 20d3731006c9d29cbe17c2aedeba5e2abccfcd57) show more ... test/recipes/80-test_cms.t
c48c3280	16-Nov-2022	Tomas Mraz	Split out thread pool tests into threadpool_test Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/ope Split out thread pool tests into threadpool_test Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19695) show more ... test/build.info test/recipes/90-test_threads.t test/threadpool_test.c test/threadstest.c
f5a3669c	16-Nov-2022	Tomas Mraz	Add functions supporting thread pool only when it is enabled Fixes #19691 Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged f Add functions supporting thread pool only when it is enabled Fixes #19691 Reviewed-by: Hugo Landau <hlandau@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19695) show more ... crypto/context.c crypto/thread/arch.c crypto/thread/build.info crypto/thread/internal.c
26cfa4cd	17-Nov-2022	slontis	Fix coverity issues in X509v3_addr CID 1516955 : Null pointer deref (REVERSE_INULL) CID 1516954 : Null pointer deref (REVERSE_INULL) CID 1516953 : RESOURCE_LEAK of child Rev Fix coverity issues in X509v3_addr CID 1516955 : Null pointer deref (REVERSE_INULL) CID 1516954 : Null pointer deref (REVERSE_INULL) CID 1516953 : RESOURCE_LEAK of child Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/19700) show more ... crypto/x509/v3_addr.c test/v3ext.c
1...<<151 152 153 154155156 157 158 159 160 >>...1443