openssl

mirror of https://github.com/openssl/openssl.git synced 2024-11-21 01:15:20 +08:00

History

Matt Caswell d23adad113 EVP_CIPHER_CTX_set_keylen should not succeed if a bad keylen is passed EVP_CIPHER_CTX_set_keylen() was succeeding even though a bad key length is passed to it. This is because the set_ctx_params() were all accepting this parameter and blindly changing the keylen even though the cipher did not accept a variable key length. Even removing this didn't entirely resolve the issue because set_ctx_params() functions succeed even if passed a parameter they do not recognise. This should fix various issues found by OSSfuzz/Cryptofuzz. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10449)		2019-11-19 13:33:54 +00:00
..
common	EVP_CIPHER_CTX_set_keylen should not succeed if a bad keylen is passed	2019-11-19 13:33:54 +00:00
fips	KDF: use string names not macros to align with other algorithms.	2019-10-31 13:20:09 +10:00
implementations	EVP_CIPHER_CTX_set_keylen should not succeed if a bad keylen is passed	2019-11-19 13:33:54 +00:00
build.info	Cleanup: move provider mains up	2019-10-10 14:12:15 +02:00
defltprov.c	Move RSA Asym cipher code to the default provider	2019-11-14 09:29:46 +00:00
legacyprov.c	Cleanup: move provider mains up	2019-10-10 14:12:15 +02:00