Neil Horman 50066236eb Fix coverity-1604661 ... Coverity called out an error in asn1parse_main, indicating that the for(;;) loop which repeatedly reads from a bio and updates the length value num, may overflow said value prior to exiting the loop. We could probably call this a false positive, but on very large PEM file, I suppose it could happen, so just add a check to ensure that num doesn't go from a large positive to a large negative value inside the loop Fixes openssl/private#571 Reviewed-by: Tom Cosgrove <tom.cosgrove@arm.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/24910)		2024-07-18 19:09:10 +02:00
..
demoSRP	Fix grammar in srp_verifier.txt	2024-04-25 11:07:20 +02:00
include	Fix typos found by codespell	2024-06-24 15:09:11 +02:00
lib	Fix coverity-1604665	2024-07-17 09:50:36 +02:00
asn1parse.c	Fix coverity-1604661	2024-07-18 19:09:10 +02:00
build.info	CMP test server: move apps/{,lib/}cmp_mock_srv.c and apps/{,include/}cmp_mock_srv.h	2021-05-20 16:23:27 +02:00
ca-cert.srl
ca-key.pem
ca-req.pem
ca.c	apps: ca,req,x509: Add explicit start and end dates options	2024-04-09 20:13:31 +02:00
CA.pl.in	Abstract out policy and extensions in CA.pl	2021-11-16 15:48:08 +00:00
cert.pem
ciphers.c	Check that sk_SSL_CIPHER_value returns non-NULL value.	2022-09-20 18:27:17 +02:00
client.pem
cmp.c	CMP: add support for requesting cert template using genm/genp	2024-06-20 13:38:13 +02:00
cms.c	{CMS,PKCS7}_verify(): use 'certs' parameter ('-certfile' option) also for chain building	2024-07-17 16:34:53 +02:00
crl2pkcs7.c	APPS: Improve diagnostics on missing/extra args and unknown cipher/digest	2021-12-07 15:26:40 +01:00
crl.c	Copyright year updates	2024-04-09 13:43:27 +02:00
ct_log_list.cnf
dgst.c	Fix some memory leaks in the openssl app	2023-09-21 14:39:36 +02:00
dhparam.c	Copyright year updates	2023-09-28 14:23:29 +01:00
dsa512.pem
dsa1024.pem
dsa-ca.pem
dsa-pca.pem
dsa.c	Copyright year updates	2023-09-07 09:59:15 +01:00
dsap.pem
dsaparam.c	Fix some memory leaks in the openssl app	2023-09-21 14:39:36 +02:00
ec.c	Copyright year updates	2023-09-07 09:59:15 +01:00
ecparam.c	Support decode SM2 parameters	2022-08-23 11:08:11 +10:00
enc.c	Copyright year updates	2024-04-09 13:43:26 +02:00
engine.c	Copyright year updates	2024-04-09 13:43:26 +02:00
errstr.c	Fix some invalid use of sscanf	2023-12-12 16:12:32 +00:00
fipsinstall.c	openssl fipsinstall: fix cosmetic wart	2024-04-19 10:35:38 +02:00
gendsa.c	Copyright year updates	2023-09-28 14:23:29 +01:00
genpkey.c	Copyright year updates	2024-04-09 13:43:26 +02:00
genrsa.c	Copyright year updates	2023-09-28 14:23:29 +01:00
info.c	Allow OPENSSLDIR/ENGINESDIR/MODULESDIR to be NULL	2024-07-09 04:01:44 -04:00
insta.ca.crt
kdf.c	kdf: use the app's libctx and property query when searching for algorithms	2021-06-15 18:26:47 +10:00
list.c	list_provider_info(): Fix leak on error	2024-04-15 09:09:32 +02:00
mac.c	Always use FORMAT_BINARY for infile	2022-09-20 08:18:25 +01:00
nseq.c	APPS: Improve diagnostics on missing/extra args and unknown cipher/digest	2021-12-07 15:26:40 +01:00
ocsp.c	Remove all references to FLOSS for NonStop Builds.	2024-04-24 09:35:29 +02:00
openssl-vms.cnf	Convert jdkTrustedKeyUsage to be a pkcs12 cmd line option	2023-10-20 16:30:43 +01:00
openssl.c	APPS: remove duplicate definition of trace_data_stack	2023-09-18 09:06:47 +10:00
openssl.cnf	Convert jdkTrustedKeyUsage to be a pkcs12 cmd line option	2023-10-20 16:30:43 +01:00
passwd.c	Update copyright year	2022-05-03 13:34:51 +01:00
pca-cert.srl
pca-key.pem
pca-req.pem
pkcs7.c	Update copyright year	2022-05-03 13:34:51 +01:00
pkcs8.c	Added a 'saltlen' option to the openssl pkcs8 command line app.	2023-09-04 14:15:34 +10:00
pkcs12.c	apps/pkcs12: Not writing the private key file until the import password is verified	2024-05-14 15:36:33 +02:00
pkey.c	Copyright year updates	2023-09-07 09:59:15 +01:00
pkeyparam.c	APPS: pkeyparam: Support setting properties	2022-08-17 09:20:41 +02:00
pkeyutl.c	Copyright year updates	2023-09-07 09:59:15 +01:00
prime.c	Update copyright year	2022-05-03 13:34:51 +01:00
privkey.pem
progs.pl	Copyright year updates	2023-09-28 14:23:29 +01:00
rand.c	Augment rand argument parsing to allow scaling	2023-11-13 12:21:34 +01:00
rehash.c	apps/rehash.c: Add the check for the EVP_MD_get_size()	2024-07-10 18:23:44 +02:00
req.c	apps/req: avoid needless hint on using -help on duplicate extensions added via -addext	2024-07-10 16:19:06 +02:00
req.pem
rsa8192.pem
rsa.c	Copyright year updates	2023-09-07 09:59:15 +01:00
rsautl.c	Copyright year updates	2023-09-07 09:59:15 +01:00
s512-key.pem
s512-req.pem
s1024key.pem
s1024req.pem
s_client.c	s_client: use the full buffer for reads	2024-06-21 13:09:17 -04:00
s_server.c	Copyright year updates	2024-04-09 13:43:26 +02:00
s_time.c	Copyright year updates	2024-04-09 13:43:26 +02:00
server2.pem
server.pem
server.srl
sess_id.c	APPS: Improve diagnostics on missing/extra args and unknown cipher/digest	2021-12-07 15:26:40 +01:00
smime.c	{CMS,PKCS7}_verify(): use 'certs' parameter ('-certfile' option) also for chain building	2024-07-17 16:34:53 +02:00
speed.c	fix: remove some odd empty lines	2024-07-03 11:24:07 +02:00
spkac.c	Copyright year updates	2023-09-07 09:59:15 +01:00
srp.c	openssl srp: make index.txt parsing error more verbose	2021-05-24 14:37:00 +02:00
storeutl.c	Fix openssl storeutl to allow serial + issuer	2022-12-14 09:33:25 +01:00
testCA.pem
testdsa.h	Replace OSSL_PARAM_BLD_free_params() with OSSL_PARAM_free().	2021-04-12 16:55:30 +10:00
testrsa.h
timeouts.h
ts.c	Replace and Deprecate TS_VERIFY_CTX Functions	2024-07-10 09:39:53 +02:00
tsget.in	convert tabs to spaces in two distributed Perl scripts	2021-09-14 07:21:22 +10:00
verify.c	apps & al : Fix various typos, repeated words, align some spelling to LDP.	2022-10-12 16:55:28 +11:00
version.c	Fixes for defaults code	2024-07-09 04:01:44 -04:00
vms_decc_init.c
x509.c	apps: ca,req,x509: Add explicit start and end dates options	2024-04-09 20:13:31 +02:00