mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-02-17 14:32:04 +08:00
Code Issues Packages Projects Releases Wiki Activity
ec27e619e8
openssl/ssl
History
Matt Caswell ec27e619e8 Move MAC removal responsibility to the various protocol "enc" functions 
For CBC ciphersuites using Mac-then-encrypt we have to be careful about
removing the MAC from the record in constant time. Currently that happens
immediately before MAC verification. Instead we move this responsibility
to the various protocol "enc" functions so that MAC removal is handled at
the same time as padding removal.

Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/12288)
2020-07-06 09:26:00 +01:00
..
record Move MAC removal responsibility to the various protocol "enc" functions 2020-07-06 09:26:00 +01:00
statem Fix many MarkDown issues in {NOTES*,README*,HACKING,LICENSE}.md files 2020-07-05 11:29:43 +02:00
bio_ssl.c Update copyright year 2020-05-15 14:09:49 +01:00
build.info
d1_lib.c
d1_msg.c
d1_srtp.c Update copyright year 2020-05-15 14:09:49 +01:00
methods.c
pqueue.c
s3_cbc.c Update copyright year 2020-04-23 13:55:52 +01:00
s3_enc.c Update copyright year 2020-04-23 13:55:52 +01:00
s3_lib.c Update the various SSL group getting and setting functions 2020-06-19 10:19:31 +01:00
s3_msg.c
ssl_asn1.c
ssl_cert_table.h
ssl_cert.c SSL: refactor ssl_cert_lookup_by_pkey() to work with provider side keys 2020-05-15 16:43:31 +02:00
ssl_ciph.c Add cipher list ciphersuites which using encryption algorithm in mode CBC. 2020-06-04 17:45:00 +03:00
ssl_conf.c SSL_OP_DISABLE_TLSEXT_CA_NAMES option implementation 2020-05-07 16:14:47 +03:00
ssl_err.c Provider a better error message if we fail to copy parameters 2020-06-19 10:19:32 +01:00
ssl_init.c Update copyright year 2020-04-23 13:55:52 +01:00
ssl_lib.c Move MAC removal responsibility to the various protocol "enc" functions 2020-07-06 09:26:00 +01:00
ssl_local.h Move MAC removal responsibility to the various protocol "enc" functions 2020-07-06 09:26:00 +01:00
ssl_mcnf.c
ssl_rsa.c Rename EVP_PKEY_cmp() to EVP_PKEY_eq() and EVP_PKEY_cmp_parameters() to EVP_PKEY_parameters_eq() 2020-05-27 14:36:13 +02:00
ssl_sess.c In OpenSSL builds, declare STACK for datatypes ... 2020-04-24 16:42:46 +02:00
ssl_stat.c
ssl_txt.c Update copyright year 2020-04-23 13:55:52 +01:00
ssl_utst.c
t1_enc.c kdf: make function naming consistent. 2020-06-11 11:14:21 +10:00
t1_lib.c Reduce the security bits for MD5 and SHA1 based signatures in TLS 2020-06-27 08:41:40 +02:00
t1_trce.c t1_trce: Fix remaining places where the 24 bit shift overflow happens 2020-05-20 17:31:56 +02:00
tls13_enc.c The EVP_MAC functions have been renamed for consistency. The EVP_MAC_CTX_* 2020-06-11 11:16:37 +10:00
tls_srp.c Update copyright year 2020-04-23 13:55:52 +01:00