mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-12-03 05:41:46 +08:00
Code Issues Packages Projects Releases Wiki Activity
aabe3a3591
openssl/ssl
History
Matt Caswell aabe3a3591 Fix return code in tls1_mac 
The return code from tls1_mac is supposed to be a boolean 0 for fail, 1 for
success. In one place we returned -1 on error. This would cause code calling
the mac function to erroneously see this as a success (because a non-zero
value is being treated as success in all call sites).

Fortunately, AFAICT, the place that returns -1 can only happen on an
internal error so is not under attacker control. Additionally this code only
appears in master. In 1.1.0 the return codes are treated differently.
Therefore there are no security implications.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3495)
2017-05-19 17:02:11 +01:00
..
record Fix return code in tls1_mac 2017-05-19 17:02:11 +01:00
statem Try to be more consistent about the alerts we send 2017-05-19 08:47:08 +01:00
bio_ssl.c Get pointer type right in BIO_ssl_shutdown() 2017-03-07 09:56:49 -05:00
build.info Move ssl/t1_ext.c to ssl/statem/extensions_cust.c 2017-04-07 13:41:04 +01:00
d1_lib.c Code health: Stop using timeb.h / ftime() (VMS only) 2017-02-28 15:32:01 +01:00
d1_msg.c Remove special case code for SCTP reneg handling 2017-04-25 11:13:39 +01:00
d1_srtp.c
methods.c
packet_locl.h TLS1.3 Padding 2017-05-02 09:44:43 +01:00
packet.c TLS1.3 Padding 2017-05-02 09:44:43 +01:00
pqueue.c
s3_cbc.c
s3_enc.c Remove support for OPENSSL_SSL_TRACE_CRYPTO 2017-05-08 11:42:37 +01:00
s3_lib.c Remove ECDH(E) ciphers from SSLv3 2017-04-11 13:25:19 -04:00
s3_msg.c Provide functions to write early data 2017-03-02 17:44:14 +00:00
ssl_asn1.c ASN.1: adapt our use of INTxx et al by making them explicitely embedded 2017-04-13 10:23:31 +02:00
ssl_cert.c Ignore dups in X509_STORE_add_* 2017-04-20 15:33:42 -04:00
ssl_ciph.c Remove some obsolete/obscure internal define switches: 2017-03-01 10:44:49 +01:00
ssl_conf.c TLS1.3 Padding 2017-05-02 09:44:43 +01:00
ssl_err.c Add a new unsolicited extension error code and add enum tag 2017-05-17 15:32:25 +01:00
ssl_init.c
ssl_lib.c Make SSL_is_server() accept a const SSL 2017-05-19 08:54:39 +01:00
ssl_locl.h Fail if we receive a response to an extension that we didn't request 2017-05-17 15:23:49 +01:00
ssl_mcnf.c
ssl_rsa.c Try to be more consistent about the alerts we send 2017-05-19 08:47:08 +01:00
ssl_sess.c Try to be more consistent about the alerts we send 2017-05-19 08:47:08 +01:00
ssl_stat.c
ssl_txt.c
ssl_utst.c
t1_enc.c Remove support for OPENSSL_SSL_TRACE_CRYPTO 2017-05-08 11:42:37 +01:00
t1_lib.c Try to be more consistent about the alerts we send 2017-05-19 08:47:08 +01:00
t1_trce.c Add support to SSL_trace() for inner content types 2017-05-08 11:42:37 +01:00
tls13_enc.c Remove support for OPENSSL_SSL_TRACE_CRYPTO 2017-05-08 11:42:37 +01:00
tls_srp.c