boringssl

Graf revizí

Autor	SHA1	Zpráva	Datum
Adam Langley	c2d3280f0f	Add SSL_get_ivs. This function allows one to extract the current IVs from an SSL connection. This is needed for the CBC cipher suites with implicit IVs because, for those, the IV can't be extracted from the handshake key material. Change-Id: I247a1d0813b7a434b3cfc88db86d2fe8754344b6 Reviewed-on: https://boringssl-review.googlesource.com/6433 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
Adam Langley	c85373da00	Use EVP_AEAD_CTX in crypto/cipher/internal.h. Change-Id: I3002d95d2b9db4dd05e1c56ef6ae410315b97ab9 Reviewed-on: https://boringssl-review.googlesource.com/4710 Reviewed-by: David Benjamin <davidben@chromium.org> Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
Adam Langley	5aa8a86438	AEAD: allow _cleanup after failed _init. This change makes it safe to call EVP_AEAD_CTX_cleanup after a failed EVP_AEAD_CTX_init. Change-Id: I608ed550e08d638cd7e941f5067edd3da4c850ab Reviewed-on: https://boringssl-review.googlesource.com/4692 Reviewed-by: David Benjamin <davidben@chromium.org> Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
Adam Langley	c3ef76f327	Compatibility changes for wpa_supplicant and OpenSSH. OpenSSH, especially, does some terrible things that mean that it needs the EVP_CIPHER structure to be exposed ☹. Damian is open to a better API to replace this, but only if OpenSSL agree too. Either way, it won't be happening soon. Change-Id: I393b7a6af6694d4d2fe9ebcccd40286eff4029bd Reviewed-on: https://boringssl-review.googlesource.com/4330 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
Brian Smith	054e682675	Eliminate unnecessary includes from low-level crypto modules. Beyond generally eliminating unnecessary includes, eliminate as many includes of headers that declare/define particularly error-prone functionality like strlen, malloc, and free. crypto/err/internal.h was added to remove the dependency on openssl/thread.h from the public openssl/err.h header. The include of <stdlib.h> in openssl/mem.h was retained since it defines OPENSSL_malloc and friends as macros around the stdlib.h functions. The public x509.h, x509v3.h, and ssl.h headers were not changed in order to minimize breakage of source compatibility with external code. Change-Id: I0d264b73ad0a720587774430b2ab8f8275960329 Reviewed-on: https://boringssl-review.googlesource.com/4220 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
Brian Smith	7d897a1bf2	Replace RC4 in examples with AES-128-GCM. Avoiding superflous references to RC4 makes it easier to audit the code to find unsafe uses of it. It also avoids subtly encouraging users to choose RC4 instead of a better alternative. Change-Id: Ia27d7f4cd465e143d30a28b36c7871f7c30411ea Reviewed-on: https://boringssl-review.googlesource.com/3990 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
Adam Langley	3f92d21094	Add SSL_get_rc4_state. This allows the current RC4 state of an SSL* to be extracted. We have internal uses for this functionality. Change-Id: Ic124c4b253c8325751f49e7a4c021768620ea4b7 Reviewed-on: https://boringssl-review.googlesource.com/3722 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
David Benjamin	b34f510b3b	Don't delay-initialize legacy AEADs. Instead, add a separate init_with_direction hook. Normal AEADs ignore the direction, while legacy AEADs must be initialized with it. This avoids maintaining extra state to support the delayed initialization. Change-Id: I25271f0e56ee2783a2fd4d4026434154d58dc0a8 Reviewed-on: https://boringssl-review.googlesource.com/3731 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
David Benjamin	3f5917f320	EVP_CIPHER_CTX_cleanup cannot fail. There is exactly one implementation and it doesn't fail. Plus a cleanup function that can fail is very bad manners; the caller has no choice but to leak at that point. Change-Id: I5b524617ef37bc7d92273472fa742416ea7dfd43 Reviewed-on: https://boringssl-review.googlesource.com/3564 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
David Benjamin	7f1d5d5932	Follow-ups from recent patch train. Comment fixups and a mismerge in aead_test. Also some buffer was larger than needed. Change-Id: I0e158089f42801575833684912f9edb206f61007 Reviewed-on: https://boringssl-review.googlesource.com/2870 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
David Benjamin	bbd8444d92	Drop SSLv3 parts of crypto/cipher/tls_cbc.c. CBC modes in SSLv3 are bust already with POODLE and we're moving away from it. Align all the names from 'ssl3' and 'tls1' to 'tls', to match the names of the TLS-only AEADs. Change-Id: If742296a8e2633ef42a484e4d873b4a83558b6aa Reviewed-on: https://boringssl-review.googlesource.com/2693 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
David Benjamin	df109ab3d4	Replicate s3_cbc.c under crypto/cipher/internal.h. These helper functions will be used in the implementation of the legacy CBC mode AEADs. The file is copied as-is and then modified to remove the dependency on ssl/. Notably explicit IV logic is removed (that's a side effect of how explicit IVs are currently implemented) and the padding length is returned directly rather than smuggled into rec->type. (Diffing tls_cbc.c and s3_cbc.c is probably the easiest for a review.) The helpers are currently unused. Change-Id: Ib703f4d3620196c9f2921cb3b8bf985f2d1777db Reviewed-on: https://boringssl-review.googlesource.com/2691 Reviewed-by: Adam Langley <agl@google.com>	před 9 roky
Adam Langley	fd772a5aeb	AEAD interface. This change adds an AEAD interface to EVP and an AES-GCM implementation suitable for use in TLS.	před 10 roky
Adam Langley	95c29f3cd1	Inital import. Initial fork from `f2d678e6e8` (1.0.2 beta). (This change contains substantial changes from the original and effectively starts a new history.)	před 10 roky

14 Revize (b9afd51ca1a9ef6e37514dbe5eb31a7f4ef78acd)