wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/crypto
History
Dr. Stephen Henson ab4a81f69e Remove broken DSA private key workarounds. 
Remove old code that handled various invalid DSA formats in ancient
software.

This also fixes a double free bug when parsing malformed DSA private keys.

Thanks to Adam Langley (Google/BoringSSL) for discovering this bug using
libFuzzer.

CVE-2016-0705

Reviewed-by: Emilia Käsper <emilia@openssl.org>
2016-02-19 18:54:50 +00:00
..
aes Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
asn1 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
async Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
bf Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
bio getaddrinfo: zero the hints structure 2016-02-19 16:44:28 +01:00
bn Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
buffer Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
camellia Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
cast Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
chacha Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
cmac Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
cms Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
comp Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
conf Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
ct Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
des Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
dh Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
dsa Remove broken DSA private key workarounds. 2016-02-19 18:54:50 +00:00
dso Let Configure figure out the diverse shared library and DSO extensions 2016-02-19 11:51:23 +01:00
ec Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
engine Big rename fest of engine DSO names, from libFOO.so to FOO.so 2016-02-19 11:52:15 +01:00
err Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
evp Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
hmac Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
idea Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
include/internal Let Configure figure out the diverse shared library and DSO extensions 2016-02-19 11:51:23 +01:00
kdf Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
lhash Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
md2 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
md4 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
md5 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
mdc2 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
modes Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
objects Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
ocsp Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
pem Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
perlasm Fix some issues near recent chomp changes. 2016-02-13 02:54:48 -05:00
pkcs7 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
pkcs12 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
poly1305 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
rand Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
rc2 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
rc4 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
rc5 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
ripemd Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
rsa Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
seed Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
sha Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
srp Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
stack Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
ts Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
txt_db Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
ui Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
whrlpool Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
x509 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
x509v3 Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
alphacpuid.pl alphacpuid.pl: fix alignment bug. 2011-08-12 12:28:52 +00:00
arm64cpuid.pl Add assembly support to ios64-cross. 2015-01-23 15:38:41 +01:00
arm_arch.h Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
armcap.c Add assembly support for 32-bit iOS. 2015-04-20 15:06:22 +02:00
armv4cpuid.pl ARMv4 assembly pack: implement support for Thumb2. 2015-09-25 13:34:02 +02:00
build.info Rethink the uplink / applink story 2016-02-19 11:06:54 +01:00
c64xpluscpuid.pl C64x+ assembly pack: make it work with older toolchain. 2014-05-04 16:38:32 +02:00
cpt_err.c After renaming init, update errors. 2016-02-10 15:52:32 -05:00
cryptlib.c Declare DllMain internally 2016-02-14 14:13:53 +01:00
cversion.c Make it possible to get ENGINESDIR info from OpenSSL_versions 2016-02-10 19:36:48 +01:00
ebcdic.c Use NON_EMPTY_TRANSLATION_UNIT, consistently. 2016-02-09 20:13:29 -05:00
ex_data.c GH601: Various spelling fixes. 2016-02-05 15:25:50 -05:00
fips_err.h Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
fips_ers.c Use NON_EMPTY_TRANSLATION_UNIT, consistently. 2016-02-09 20:13:29 -05:00
ia64cpuid.S
init.c Fix windows thread stop code 2016-02-18 15:27:16 +00:00
lock.c Finish 02f7114a7f 2016-02-17 17:04:47 -05:00
LPdir_nyi.c Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
LPdir_unix.c memset, memcpy, sizeof consistency fixes 2015-05-05 22:18:59 -04:00
LPdir_vms.c memset, memcpy, sizeof consistency fixes 2015-05-05 22:18:59 -04:00
LPdir_win.c memset, memcpy, sizeof consistency fixes 2015-05-05 22:18:59 -04:00
LPdir_win32.c Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
LPdir_wince.c Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
Makefile.in Remove all special make depend flags, as well as OPENSSL_DOING_MAKEDEPEND 2016-02-18 23:43:09 +01:00
mem.c Implement the use of heap manipulator implementions 2016-02-17 10:12:49 +01:00
mem_clr.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
mem_dbg.c Implement the use of heap manipulator implementions 2016-02-17 10:12:49 +01:00
mem_sec.c RT4313: Fix build for !IMPLEMENTED code path in CRYPTO_secure_free() 2016-02-17 09:16:01 -05:00
o_dir.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
o_fips.c Identify and move common internal libcrypto header files 2015-05-14 17:21:40 +02:00
o_init.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
o_str.c GH614: Use memcpy()/strdup() when possible 2016-02-03 15:45:56 -05:00
o_time.c GH601: Various spelling fixes. 2016-02-05 15:25:50 -05:00
pariscid.pl PA-RISC assembler pack: switch to bve in 64-bit builds. 2013-06-18 10:37:00 +02:00
ppc_arch.h crypto/ppccap.c: add SIGILL-free processor capability detection code. 2015-12-14 16:08:49 +01:00
ppccap.c Configurations: engage PPC ChaCha20 and Poly1305 modules. 2016-02-13 17:22:20 +01:00
ppccpuid.pl crpyto/ppccpuid.pl: add FPU probe and fix OPENSSL_rdtsc. 2015-12-14 16:09:25 +01:00
s390xcap.c Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
s390xcpuid.S
sparc_arch.h Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
sparccpuid.S Conversion to UTF-8 where needed 2015-07-14 01:10:01 +02:00
sparcv9cap.c crypto/sparcv9cap.c: add SIGILL-free feature detection for Solaris. 2015-12-02 10:53:33 +01:00
thr_id.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
uid.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
vms_rms.h Run util/openssl-format-source -v -c . 2015-01-22 09:20:09 +00:00
x86_64cpuid.pl x86[_64]cpuid.pl: add low-level RDSEED. 2014-02-14 17:24:12 +01:00
x86cpuid.pl Undo a90081576c 2014-08-09 08:02:20 -04:00