mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-02-11 14:22:43 +08:00
Code Issues Packages Projects Releases Wiki Activity
52a75f4088
openssl/crypto/asn1
History
Job Snijders eadd8c4727 Add appropriate lower bound checks for GeneralizedTime and UTCTime 
ITU-T X.690 / ISO/IEC 8825-1 section 11.7 and section 11.8
impose specific constraints on how GeneralizedTime and UTCTime
can be encoded in BER/CER/DER. Following from these constraints
a minimum length can be derived.

Checking the length in this context can potentially help prevent
applications from interpreting an invalid GeneralizedTime as a
valid UTCTime.

Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23483)
2024-02-25 09:17:41 +01:00
..
a_bitstr.c Copyright year updates 2023-09-07 09:59:15 +01:00
a_d2i_fp.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_digest.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_dup.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_gentm.c Update copyright year 2021-04-08 13:04:41 +01:00
a_i2d_fp.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_int.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_mbstr.c Fix error handling in ASN1_mbstring_ncopy 2023-12-29 10:23:29 +01:00
a_object.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_octet.c
a_print.c Update copyright year 2021-09-07 13:35:43 +02:00
a_sign.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_strex.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
a_strnid.c Copyright year updates 2023-09-07 09:59:15 +01:00
a_time.c Add appropriate lower bound checks for GeneralizedTime and UTCTime 2024-02-25 09:17:41 +01:00
a_type.c Update copyright year 2021-04-08 13:04:41 +01:00
a_utctm.c Update copyright year 2021-04-08 13:04:41 +01:00
a_utf8.c
a_verify.c Copyright year updates 2023-09-07 09:59:15 +01:00
ameth_lib.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
asn1_err.c Add appropriate lower bound checks for GeneralizedTime and UTCTime 2024-02-25 09:17:41 +01:00
asn1_gen.c Do not include crypto/asn1.h from internal/cryptlib.h 2023-10-19 10:15:56 +02:00
asn1_item_list.c
asn1_item_list.h CMS: Export CMS_EnvelopedData and add CMS_EnvelopedData_decrypt() 2022-06-28 17:51:21 +02:00
asn1_lib.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
asn1_local.h libcrypto refactoring: introduce and use ossl_asn1_string_set_bits_left() 2022-07-19 08:44:19 +02:00
asn1_parse.c Copyright year updates 2023-09-07 09:59:15 +01:00
asn_mime.c Copyright year updates 2023-09-07 09:59:15 +01:00
asn_moid.c Harden asn1 oid loader to invalid inputs 2023-12-13 11:10:36 -05:00
asn_mstbl.c Fix NULL pointer deref when parsing the stable section 2024-01-12 10:37:22 +01:00
asn_pack.c Copyright year updates 2023-09-07 09:59:15 +01:00
bio_asn1.c Fix BIO_f_asn1() to properly report some errors 2022-12-22 11:01:06 +01:00
bio_ndef.c Copyright year updates 2023-09-07 09:59:15 +01:00
build.info ASN1: rename asn1_par.c to asn1_parse.c for clarity; simplify asn1_parse2() 2021-06-15 14:23:21 +02:00
charmap.h Fix copyright year issues 2022-01-06 09:27:02 +01:00
charmap.pl
d2i_param.c Update copyright year 2021-06-17 13:24:59 +01:00
d2i_pr.c Copyright year updates 2023-09-07 09:59:15 +01:00
d2i_pu.c Update copyright year 2022-05-03 13:34:51 +01:00
evp_asn1.c Avoid invoking memcpy if size is zero or the supplied buffer is NULL 2021-08-25 17:02:37 +02:00
f_int.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
f_string.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
i2d_evp.c Copyright year updates 2023-09-07 09:59:15 +01:00
n_pkey.c Update copyright year 2021-06-17 13:24:59 +01:00
nsseq.c
p5_pbe.c Copyright year updates 2023-09-07 09:59:15 +01:00
p5_pbev2.c Copyright year updates 2023-09-07 09:59:15 +01:00
p5_scrypt.c Copyright year updates 2023-09-07 09:59:15 +01:00
p8_pkey.c
standard_methods.h Copyright year updates 2023-09-07 09:59:15 +01:00
t_bitst.c
t_pkey.c
t_spki.c Update copyright year 2021-09-07 13:35:43 +02:00
tasn_dec.c Add appropriate lower bound checks for GeneralizedTime and UTCTime 2024-02-25 09:17:41 +01:00
tasn_enc.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
tasn_fre.c Update copyright year 2021-04-08 13:04:41 +01:00
tasn_new.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
tasn_prn.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
tasn_scn.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
tasn_typ.c
tasn_utl.c Copyright year updates 2023-09-07 09:59:15 +01:00
tbl_standard.h
x_algor.c Update copyright year 2022-05-03 13:34:51 +01:00
x_bignum.c
x_info.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
x_int64.c Cast values to match printf format strings. 2022-11-14 07:47:53 +00:00
x_long.c
x_pkey.c Stop raising ERR_R_MALLOC_FAILURE in most places 2022-10-05 14:02:03 +02:00
x_sig.c
x_spki.c
x_val.c