mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-01-12 13:36:28 +08:00
Code Issues Packages Projects Releases Wiki Activity
c568900c9a
openssl/ssl
History
Pauli e07102220a tls/ccm8: reduce the cipher strength for CCM8 ciphers to 64 bits 
This is the length of the tag they use and should be considered an upper bound
on their strength.

This lowers their security strength to level 0.

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/16652)
2021-09-24 17:38:39 +10:00
..
record Fix the array size of dtlsseq in tls1_enc 2021-08-25 16:53:24 +02:00
statem Fix potential double-free 2021-08-16 12:56:53 +02:00
bio_ssl.c Update copyright year 2021-04-08 13:04:41 +01:00
build.info Do not duplicate symbols between libcrypto and libssl in static builds 2021-06-14 09:21:05 +10:00
d1_lib.c Fix dtls timeout dead code 2021-07-29 10:08:07 -07:00
d1_msg.c Update copyright year 2020-11-26 14:18:57 +00:00
d1_srtp.c Convert all {NAME}err() in ssl/ to their corresponding ERR_raise() call 2020-11-11 12:12:11 +01:00
ktls.c KTLS: AES-CCM in TLS-1.3 is broken on 5.x kernels, disable it 2021-07-27 13:19:20 +10:00
methods.c
pqueue.c Update copyright year 2020-11-26 14:18:57 +00:00
s3_cbc.c fips module header inclusion fine-tunning 2021-07-06 10:52:27 +10:00
s3_enc.c tls: remove TODOs 2021-06-02 16:30:15 +10:00
s3_lib.c tls/ccm8: reduce the cipher strength for CCM8 ciphers to 64 bits 2021-09-24 17:38:39 +10:00
s3_msg.c Update copyright year 2021-05-20 14:22:33 +01:00
ssl_asn1.c Make the -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION pass tests 2021-08-31 12:20:12 +02:00
ssl_cert_table.h
ssl_cert.c Change TLS RC4 cipher strength check to be data driven. 2021-09-23 14:17:33 +02:00
ssl_ciph.c tls: remove TODOs 2021-06-02 16:30:15 +10:00
ssl_conf.c Disabling Encrypt-then-MAC extension in s_client/s_server 2021-06-15 22:14:34 +02:00
ssl_err_legacy.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_err.c err: rename err_load_xxx_strings_int functions 2021-05-26 13:01:47 +10:00
ssl_init.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_lib.c Fix some minor record layer issues 2021-07-17 08:50:55 -07:00
ssl_local.h Fix dtls timeout dead code 2021-07-29 10:08:07 -07:00
ssl_mcnf.c SSL: refactor all SSLfatal() calls 2020-11-11 12:12:23 +01:00
ssl_rsa_legacy.c Deprecate RSA harder 2020-11-18 23:38:34 +01:00
ssl_rsa.c ssl: coverity 1465527 - dereference after null check 2021-03-20 10:18:32 +10:00
ssl_sess.c Add missing session timeout calc 2021-07-28 10:37:21 +10:00
ssl_stat.c Update copyright year 2021-09-07 13:35:43 +02:00
ssl_txt.c Update copyright year 2021-06-17 13:24:59 +01:00
ssl_utst.c
sslerr.h err: rename err_load_xxx_strings_int functions 2021-05-26 13:01:47 +10:00
t1_enc.c tls: remove TODOs 2021-06-02 16:30:15 +10:00
t1_lib.c Omitted signature_algorithms extension alerts updated 2021-08-11 09:47:47 +02:00
t1_trce.c Update copyright year 2021-02-18 15:05:17 +00:00
tls13_enc.c Fix indentation of tls13_hkdf_expand parameters 2021-09-03 08:55:29 +10:00
tls_depr.c Remove OPENSSL_NO_DH guards from libssl 2021-02-05 15:20:36 +00:00
tls_srp.c ssl: add zero strenght arguments to BN and RAND RNG calls 2021-05-29 17:17:12 +10:00