kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
c4f25ce0c6
boringssl/ssl
History
Adam Langley c4f25ce0c6 Work around yaSSL bug. 
yaSSL has a couple of bugs in their DH client implementation. This
change works around the worst of the two.

Firstly, they expect the the DH public value to be the same length as
the prime. This change pads the public value as needed to ensure this.

Secondly, although they handle the first byte of the shared key being
zero, they don't handle the case of the second, third, etc bytes being
zero. So whenever that happens the handshake fails. I don't think that
there's anything that we can do about that one.

Change-Id: I789c9e5739f19449473305d59fe5c3fb9b4a6167
Reviewed-on: https://boringssl-review.googlesource.com/6578
Reviewed-by: David Benjamin <davidben@chromium.org>
Reviewed-by: Adam Langley <agl@google.com>
2015-11-30 22:41:24 +00:00
..
pqueue Add a run_tests target to run all tests. 2015-10-26 20:33:44 +00:00
test Work around yaSSL bug. 2015-11-30 22:41:24 +00:00
CMakeLists.txt Fix shared library build on OS X. 2015-10-26 23:39:47 +00:00
custom_extensions.c
d1_both.c Rewrite DTLS handshake message sending logic. 2015-11-06 21:43:32 +00:00
d1_clnt.c Reset epoch state in one place. 2015-11-16 23:19:31 +00:00
d1_lib.c Separate CCS and handshake writing in DTLS. 2015-11-04 00:11:14 +00:00
d1_meth.c Ditch remaining filename comments from public headers and ssl/ 2015-10-20 18:40:05 +00:00
d1_pkt.c Reset epoch state in one place. 2015-11-16 23:19:31 +00:00
d1_srtp.c Fix a missing initializer that only Clang warns about. 2015-10-30 17:24:03 -07:00
d1_srvr.c Reset epoch state in one place. 2015-11-16 23:19:31 +00:00
dtls_record.c
internal.h Remove algo_strength. 2015-11-19 01:30:44 +00:00
s3_both.c Switch the keylog BIO to a callback. 2015-11-19 01:23:49 +00:00
s3_clnt.c Add get0 getters for EVP_PKEY. 2015-11-20 23:34:12 +00:00
s3_enc.c Change some "int" variables to "size_t" in ssl3_handshake_mac(). 2015-09-24 00:04:59 +00:00
s3_lib.c Add get0 getters for EVP_PKEY. 2015-11-20 23:34:12 +00:00
s3_meth.c
s3_pkt.c Add ssl_renegotiate_ignore. 2015-11-03 21:58:13 +00:00
s3_srvr.c Work around yaSSL bug. 2015-11-30 22:41:24 +00:00
ssl_aead_ctx.c Revert most of "Refactor ChaCha20-Poly1305 AEAD nonce handling." 2015-10-29 18:40:33 +00:00
ssl_asn1.c Check for overflow when parsing a CBS with d2i_*. 2015-11-16 23:17:42 +00:00
ssl_buffer.c Fix DTLS asynchronous write handling. 2015-11-02 23:16:22 +00:00
ssl_cert.c Document certificate verification functions in SSL. 2015-09-23 23:31:18 +00:00
ssl_cipher.c Reformat the cipher suite table. 2015-11-19 01:32:55 +00:00
ssl_file.c More SSL_SESSION serialization functions. 2015-10-26 17:57:50 +00:00
ssl_lib.c Switch the keylog BIO to a callback. 2015-11-19 01:23:49 +00:00
ssl_rsa.c Add get0 getters for EVP_PKEY. 2015-11-20 23:34:12 +00:00
ssl_session.c Tidy up SSL_CTX_add_session. 2015-10-26 19:22:40 +00:00
ssl_stat.c Document alert handling. 2015-10-20 19:03:24 +00:00
ssl_test.cc Remove algo_strength. 2015-11-19 01:30:44 +00:00
t1_enc.c Reset epoch state in one place. 2015-11-16 23:19:31 +00:00
t1_lib.c Add get0 getters for EVP_PKEY. 2015-11-20 23:34:12 +00:00
tls_record.c Add use counters for SSL_OP_TLS_D5_BUG and SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER. 2015-10-20 18:22:47 +00:00