mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-12-15 06:01:37 +08:00
Code Issues Packages Projects Releases Wiki Activity
c7f8edfc11
openssl/crypto
History
Matt Caswell c7f8edfc11 Ensure that we check the ASN.1 type of an "otherName" before using it 
We should not assume that the type of an ASN.1 value is UTF8String as
expected. We must actually check it, otherwise we could get a NULL ptr
deref, or worse memory errors.

Reported by David Benjamin.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/16443)
2021-08-31 20:47:25 +10:00
..
aes Update copyright year 2021-07-29 15:41:35 +01:00
aria Update copyright year 2021-04-08 13:04:41 +01:00
asn1 Make the -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION pass tests 2021-08-31 12:20:12 +02:00
async Update copyright year 2021-06-17 13:24:59 +01:00
bf
bio Ensure that _GNU_SOURCE is defined for bss_dgram.c 2021-08-29 18:54:40 +02:00
bn Update copyright year 2021-07-29 15:41:35 +01:00
buffer Update copyright year 2021-06-17 13:24:59 +01:00
camellia Update copyright year 2021-07-29 15:41:35 +01:00
cast
chacha ppccap.c: Split out algorithm-specific functions 2021-06-25 08:49:45 +01:00
cmac Rename all getters to use get/get0 in name 2021-06-01 12:40:00 +02:00
cmp Fix CMP code to not assume NUL terminated strings 2021-08-24 14:22:06 +01:00
cms cms: fix memleaks in cms_env.c 2021-08-27 09:26:12 +02:00
comp Update copyright year 2021-06-17 13:24:59 +01:00
conf Update copyright year 2021-06-17 13:24:59 +01:00
crmf OSSL_CRMF_{CERTTEMPLATE,CERTID}_get0_serialNumber(): Make result const for consistency 2021-06-30 10:38:23 +02:00
ct Update copyright year 2021-06-17 13:24:59 +01:00
des Update copyright year 2021-07-29 15:41:35 +01:00
dh Update our EVP_PKEY_METHODs to get low level keys via public APIs 2021-07-22 13:52:46 +02:00
dsa Update copyright year 2021-07-29 15:41:35 +01:00
dso Update copyright year 2021-06-17 13:24:59 +01:00
ec [ec] Do not default to OPENSSL_EC_NAMED_CURVE for curves without OID 2021-08-30 15:18:19 +03:00
encode_decode Coverity #1486687: fix potential dereference of NULL keymgmt 2021-07-05 12:44:54 +10:00
engine Update copyright year 2021-06-17 13:24:59 +01:00
err Add invalid input length error 2021-08-26 09:33:39 +10:00
ess err: rename err_load_xxx_strings_int functions 2021-05-26 13:01:47 +10:00
evp EVP_DigestSign/VerifyFinal: Duplicate the pctx to allow multiple calls 2021-08-26 16:06:57 +02:00
ffc Set FFC_PARAM_FLAG_VALIDATE_LEGACY on params generated with FIPS 186-2 gen 2021-08-11 12:07:08 +02:00
hmac Adapt other parts of the source to the changed EVP_Q_digest() and EVP_Q_mac() 2021-06-23 23:00:36 +02:00
http OSSL_HTTP_open(): Fix memory leak on TLS connect failure via proxy 2021-07-22 10:14:47 +02:00
idea Update copyright year 2021-04-08 13:04:41 +01:00
kdf
lhash Update copyright year 2021-04-08 13:04:41 +01:00
md2
md4
md5 Update copyright year 2021-07-29 15:41:35 +01:00
mdc2
modes Update copyright year 2021-07-29 15:41:35 +01:00
objects Update copyright year 2021-06-17 13:24:59 +01:00
ocsp Update copyright year 2021-06-17 13:24:59 +01:00
pem pem_read_bio_key: Add passphrase caching to avoid asking for password twice 2021-07-02 15:33:34 +02:00
perlasm Update copyright year 2021-06-17 13:24:59 +01:00
pkcs7 Update copyright year 2021-06-17 13:24:59 +01:00
pkcs12 Update copyright year 2021-06-17 13:24:59 +01:00
poly1305 Update copyright year 2021-07-29 15:41:35 +01:00
property property: remove spurious incorrect comments 2021-06-24 15:51:48 +10:00
rand err: remove the derivation function is mandatory for FIPS error message since it's no longer used and newly introduced 2021-07-20 18:34:07 +10:00
rc2 Update copyright year 2021-05-06 13:03:23 +01:00
rc4
rc5
ripemd Drop libimplementations.a 2021-05-07 10:17:23 +02:00
rsa Allow small RSA exponents in the default provider 2021-08-13 10:35:56 +02:00
seed Update copyright year 2021-06-17 13:24:59 +01:00
sha Update copyright year 2021-07-29 15:41:35 +01:00
siphash
sm2 sm2: fix error raise to not fail make update 2021-08-25 10:12:17 +10:00
sm3 Add "origin" field to EVP_CIPHER, EVP_MD 2021-04-18 10:03:07 +02:00
sm4 Update copyright year 2021-04-08 13:04:41 +01:00
srp add zero strenght arguments to BN and RAND RNG calls 2021-05-29 17:17:12 +10:00
stack Improve the implementation of X509_STORE_CTX_get1_issuer() 2021-04-28 11:19:34 +02:00
store PROV & STORE: Make the 'file:' store loader understand more binary formats 2021-07-03 19:44:15 +02:00
ts ts: fix memleaks caused by TS_VERIFY_CTX_set_imprint 2021-08-26 11:06:06 +02:00
txt_db
ui Update copyright year 2021-07-29 15:41:35 +01:00
whrlpool A few cleanups of the provider build.infos 2021-05-12 13:23:33 +02:00
x509 Ensure that we check the ASN.1 type of an "otherName" before using it 2021-08-31 20:47:25 +10:00
alphacpuid.pl
arm64cpuid.pl
arm_arch.h Update copyright year 2021-05-20 14:22:33 +01:00
armcap.c enable getauxval on android 10 2021-06-25 18:31:05 +10:00
armv4cpuid.pl
asn1_dsa.c Update copyright year 2021-04-08 13:04:41 +01:00
bsearch.c
build.info FIPS: don't include crypto/passphrase.c in libfips.a 2021-06-05 10:32:13 +02:00
c64xpluscpuid.pl
context.c Add the concept of a child OSSL_LIB_CTX 2021-05-11 14:56:55 +01:00
core_algorithm.c Fix pointer passed to provider_unquery_operation 2021-05-17 10:22:27 +10:00
core_fetch.c CORE: Do a bit of cleanup of core fetching 2021-06-16 12:32:53 +01:00
core_namemap.c Rename all getters to use get/get0 in name 2021-06-01 12:40:00 +02:00
cpt_err.c err: rename err_load_xxx_strings_int functions 2021-05-26 13:01:47 +10:00
cpuid.c
cryptlib.c crypto: remove TODOs 2021-06-02 16:30:15 +10:00
ctype.c Use <> for #include openssl/xxx 2021-05-27 09:56:41 +10:00
cversion.c
der_writer.c
dllmain.c
ebcdic.c
ex_data.c Add the ability for ex_data to have a priority 2021-05-11 14:56:55 +01:00
getenv.c
ia64cpuid.S
info.c
init.c Prevent recursive call of OPENSSL_INIT_LOAD_CONFIG 2021-08-05 09:21:00 +10:00
initthread.c Fix a memleak in the FIPS provider 2021-05-24 09:39:15 +10:00
LPdir_nyi.c
LPdir_unix.c
LPdir_vms.c
LPdir_win32.c
LPdir_win.c
LPdir_wince.c
mem_clr.c
mem_sec.c Update copyright year 2021-04-08 13:04:41 +01:00
mem.c
mips_arch.h
o_dir.c
o_fopen.c
o_init.c
o_str.c Update copyright year 2021-04-08 13:04:41 +01:00
o_time.c
packet.c Update copyright year 2021-06-17 13:24:59 +01:00
param_build_set.c
param_build.c Replace OSSL_PARAM_BLD_free_params() with OSSL_PARAM_free(). 2021-04-12 16:55:30 +10:00
params_dup.c params_dup: fix off by one error that allows array overreach. 2021-04-21 08:57:42 +10:00
params_from_text.c
params.c params: fix range check when converting double to uint64_t. 2021-06-19 15:47:57 +10:00
pariscid.pl
passphrase.c Update copyright year 2021-07-29 15:41:35 +01:00
ppccap.c enable getauxval on android 10 2021-06-25 18:31:05 +10:00
ppccpuid.pl
provider_child.c Fix a race in ossl_provider_add_to_store() 2021-06-24 14:48:15 +01:00
provider_conf.c Add locking for the provider_conf.c 2021-08-27 09:51:00 +10:00
provider_core.c Refactor provider_core.c to adhere to the locking rules 2021-08-31 20:44:16 +10:00
provider_local.h make struct provider_info_st a full type 2021-06-24 14:48:15 +01:00
provider_predefined.c make struct provider_info_st a full type 2021-06-24 14:48:15 +01:00
provider.c Fix a race in ossl_provider_add_to_store() 2021-06-24 14:48:15 +01:00
punycode.c
README-sparse_array.md
s390x_arch.h
s390xcap.c
s390xcpuid.pl
self_test_core.c Update copyright year 2021-05-20 14:22:33 +01:00
sparccpuid.S
sparcv9cap.c Split bignum code out of the sparcv9cap.c 2021-07-15 09:33:04 +02:00
sparse_array.c Update copyright year 2021-04-08 13:04:41 +01:00
threads_lib.c
threads_none.c Update copyright year 2021-04-08 13:04:41 +01:00
threads_pthread.c Defined out MUTEX attributes not available on NonStop SPT Threads. 2021-07-02 12:33:45 +10:00
threads_win.c
trace.c Rework and make DEBUG macros consistent. 2021-05-28 10:04:31 +02:00
uid.c Update copyright year 2021-07-29 15:41:35 +01:00
vms_rms.h
x86_64cpuid.pl Update copyright year 2021-04-08 13:04:41 +01:00
x86cpuid.pl