Commit Graph

174 Commits (f1d5ccdb6e67102a96b1efe1ae5e5c33d6f887a8)

Author SHA1 Message Date
Dmitry Belyavskiy c5b0dc92d3 Fixed Timing Oracle in RSA Decryption
2 years ago
Dmitry Belyavskiy 593a315f09 Fixed X.509 Name Constraints Read Buffer Overflow
2 years ago
Clemens Lang 770dcce08b Disallow SHAKE in OAEP decryption in FIPS mode
2 years ago
Dmitry Belyavskiy b19d91aec3 Refactor OpenSSL fips module MAC verification
2 years ago
Clemens Lang c0667361a5 Fix explicit indicator for PSS salt length
2 years ago
Dmitry Belyavskiy 657265459d Backport of ppc64le Montgomery multiply enhancement
2 years ago
Dmitry Belyavskiy c29e183891 Adjusting include for the FIPS_mode macro
2 years ago
Dmitry Belyavskiy d60bf2b343 Removed recommended package for openssl-libs
2 years ago
Dmitry Belyavskiy f2a49ef424 We should export 2 versions of OPENSSL_str[n]casecmp to be compatible with upstream
2 years ago
Dmitry Belyavskiy 0f139ead1a Various provider-related imrovements necessary for PKCS#11 provider correct operations
2 years ago
Dmitry Belyavskiy 07892fe646 Rebasing to OpenSSL 3.0.7 - removing redundant patches
2 years ago
Dmitry Belyavskiy 477d91adec Rebasing to OpenSSL 3.0.7
2 years ago
Dmitry Belyavskiy 5d738bdd7f Forbid short RSA keys for key encapsulation/decapsulation in FIPS mode
2 years ago
Clemens Lang 80de7ffd9c Add explicit indicator & clamp default PSS salt len
2 years ago
Clemens Lang fe09690308 pbkdf2: Set minimum password length of 8 bytes
2 years ago
Clemens Lang 438a2c64b7 Add indicator for HMAC with short key lengths
2 years ago
Clemens Lang 105cc32a20 Add indicator for SP 800-108 KDFs w/short keys
2 years ago
Clemens Lang 066be87ccd Remove support for X9.31 signature padding in FIPS mode
2 years ago
Dmitry Belyavskiy 2bd2c7ac27 FIPS-140-3 permits only SHA1, SHA256, and SHA512 for DRBG-HASH/DRBG-HMAC
2 years ago
Dmitry Belyavskiy fb8fee4b43 FIPS RSA CRT tests must use correct parameters
2 years ago
Dmitry Belyavskiy 474a112b98 Avoid memory leaks in TLS
2 years ago
Dmitry Belyavskiy 6c57fc8dcc SHAKE-128/256 are not allowed with RSA in FIPS mode
2 years ago
Dmitry Belyavskiy 39f800af50 CVE-2022-3602, CVE-2022-3786: X.509 Email Address Buffer Overflow
2 years ago
Clemens Lang 7c8235f8cd Zeroize public keys, add HKDF FIPS indicator
2 years ago
Dmitry Belyavskiy fc45520150 Reseed all the parent DRBGs in chain on reseeding a DRBG
2 years ago
Dmitry Belyavskiy a0907c129c Use signature for RSA pairwise test according FIPS-140-3 requirements
2 years ago
Dmitry Belyavskiy f1dba9d301 Deal with ECDH keys in FIPS mode according FIPS-140-3 requirements
2 years ago
Dmitry Belyavskiy 3f7cd79d02 Deal with DH keys in FIPS mode according FIPS-140-3 requirements
2 years ago
Clemens Lang 08d6c35051 FIPS self-test: RSA-OAEP, FFDHE2048, digest_sign
2 years ago
Clemens Lang 3e6d5a385b Improve AES-GCM & ChaCha20 perf on Power9+ ppc64le
2 years ago
Clemens Lang c64694b961 Fix segfault in EVP_PKEY_Q_keygen()
2 years ago
Clemens Lang 5901637dea CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86
2 years ago
Dmitry Belyavskiy f3b52e907b CVE-2022-2068: the c_rehash script allows command injection
2 years ago
Dmitry Belyavskiy fea833cb56 Strict certificates validation shouldn't allow explicit EC parameters
2 years ago
Dmitry Belyavskiy ea75c725ee Fix PPC64 Montgomery multiplication bug
2 years ago
Dmitry Belyavskiy f4e1bded66 Improve diagnostics when passing unsupported groups in TLS
2 years ago
Dmitry Belyavskiy cbe5a9ff12 FIPS provider should block RSA encryption for key transport.
2 years ago
Dmitry Belyavskiy 8638196167 Ciphersuites with RSAPSK KX should be filterd in FIPS mode
2 years ago
Clemens Lang 8b08b372c8 FIPS: Expose explicit indicator from fips.so
2 years ago
Dmitry Belyavskiy e859029ea0 Replace expired certificates
2 years ago
Dmitry Belyavskiy a8a3a389ee Use KAT for ECDSA signature tests, s390 arch
2 years ago
Clemens Lang 96926ffe00 Revert "Disable EVP_PKEY_sign/EVP_PKEY_verify in FIPS mode"
3 years ago
Dmitry Belyavskiy 794d81540e CVE-2022-1292 openssl: c_rehash script allows command injection
3 years ago
Dmitry Belyavskiy a63915eb2b CVE-2022-1343 openssl: inacurate verification when using OCSP_NOCHECKS
3 years ago
Dmitry Belyavskiy ac312e8ff7 CVE-2022-1473 openssl: OPENSSL_LH_flush() breaks reuse of memory
3 years ago
Dmitry Belyavskiy b5de6bd830 In FIPS mode limit key sizes for signature verification
3 years ago
Dmitry Belyavskiy 7bc4f9f094 Ciphersuites with RSA KX should be filterd in FIPS mode
3 years ago
Dmitry Belyavskiy b393177f7d `openssl ecparam -list_curves` lists only FIPS-approved curves in FIPS mode
3 years ago
Clemens Lang 389313b118 FIPS: Disable SHA1 signs and EVP_PKEY_{sign,verify}
3 years ago
Dmitry Belyavskiy 87f109e9fb Use KAT for ECDSA signature tests
3 years ago
Dmitry Belyavskiy 69c1abb4df openssl req defaults on PKCS#8 encryption changed to AES-256-CBC
3 years ago
Dmitry Belyavskiy b4d281e4de -config argument of openssl app should work properly
3 years ago
Dmitry Belyavskiy 1b2d08b2c2 Adaptation of upstream patches disabling explicit EC parameters in FIPS mode
3 years ago
Clemens Lang 1447e64bc3 Include hash in FIPS module version
3 years ago
Dmitry Belyavskiy ad863e9fc8 OpenSSL FIPS module should not build in non-approved algorithms
3 years ago
Dmitry Belyavskiy 6ba0e5efa3 When FIPS provider is in use, we forbid only some padding modes - spec
3 years ago
Clemens Lang 9afaa3d1f4 Fix regression in evp_pkey_name2type caused by tr_TR locale fix
3 years ago
Dmitry Belyavskiy a711ac2e4f Fix openssl curl error with LANG=tr_TR.utf8
3 years ago
Dmitry Belyavskiy 7a1c7b28bc FIPS provider doesn't block RSA encryption for key transport
3 years ago
Clemens Lang 93ff3f8fe5 Fix occasional internal error in TLS when DHE is used
3 years ago
Clemens Lang 153f593fa6 Fix SHA1 certs in LEGACY without openssl lib ctxt
3 years ago
Clemens Lang 4eb630f7d5 Fix TLS connections with SHA1 signatures if rh-allow-sha1-signatures = yes
3 years ago
Dmitry Belyavskiy 03697fff80 CVE-2022-0778 fix
3 years ago
Clemens Lang bc7dfd9722 Fix RSA PSS padding with SHA-1 disabled
3 years ago
Clemens Lang 3c66c99bd5 Allow SHA1 in seclevel 2 if rh-allow-sha1-signatures = yes
3 years ago
Clemens Lang ede38fcb54 Prevent use of SHA1 with ECDSA
3 years ago
Dmitry Belyavskiy ea9f0a5726 OpenSSL will generate keys with prime192v1 curve if it is provided using explicit parameters
3 years ago
Peter Robinson 849a9965ee Support KBKDF (NIST SP800-108) with an R value of 8bits Resolves: rhbz#2027261
3 years ago
Clemens Lang 53f53fedec Allow SHA1 usage in MGF1 for RSASSA-PSS signatures
3 years ago
Dmitry Belyavskiy b33dfd3fc3 Spec bump
3 years ago
Clemens Lang 5a9ab1160e Allow SHA1 usage in HMAC in TLS
3 years ago
Dmitry Belyavskiy 53b85f538c OpenSSL will generate keys with prime192v1 curve if it is provided using explicit parameters
3 years ago
Clemens Lang 78fb78d307 Disable SHA1 signature creation and verification by default
3 years ago
Sahana Prasad 0a5c81da78 s_server: correctly handle 2^14 byte long records
3 years ago
Dmitry Belyavskiy 922b5301ea Adjust FIPS provider version
3 years ago
Dmitry Belyavskiy 8c3b745547 On the s390x, zeroize all the copies of TLS premaster secret
3 years ago
Dmitry Belyavskiy 92e721fa5d Rebuild
3 years ago
Dmitry Belyavskiy d237e7f301 Restoring fips=yes to SHA-1
3 years ago
Dmitry Belyavskiy 9df33eabbe KATS self-tests should run before HMAC verifcation
3 years ago
Sahana Prasad f5421022ee Adds enable-buildtest-c++ to the configure options.
3 years ago
Sahana Prasad 78a467efcc Rebase to upstream version 3.0.1
3 years ago
Dmitry Belyavskiy e63c4b68b2 Update spec file, remove fipsmodule.cnf
3 years ago
Dmitry Belyavskiy 225b6d37b9 openssl speed should run in FIPS mode
3 years ago
Dmitry Belyavskiy 4c1c00d6af Updated spec, some cleanup done
3 years ago
Dmitry Belyavskiy 9422ae52de Always activate default provider via config
3 years ago
Dmitry Belyavskiy 210c37e906 Disable fipsinstall application
3 years ago
Dmitry Belyavskiy 3ff0db7558 Embed correct HMAC into fips provider
3 years ago
Dmitry Belyavskiy 694c426faf Fix memory leak in s_client
3 years ago
Dmitry Belyavskiy b76c2316a3 KTLS and FIPS may interfere, so tests need to be tuned
3 years ago
Dmitry Belyavskiy 3edf474b5d Avoid double-free on error seeding the RNG.
3 years ago
Sahana Prasad 34d46544a5 Rebase to upstream version 3.0.0
3 years ago
Sahana Prasad 07de966235 - Removes the dual-abi build as it not required anymore. The mass rebuild
3 years ago
Dmitry Belyavskiy ddd1eb3708 Correctly processing CMS reading from /dev/stdin
3 years ago
Sahana Prasad 49de59749c Add instruction for loading legacy provider in openssl.cnf
3 years ago
Sahana Prasad 03899fca38 Adds support for IDEA encryption.
3 years ago
Sahana Prasad 0c6f4a599c - Fixes core dump in openssl req -modulus
3 years ago
Mohan Boddu 2862adca42 Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
3 years ago
Dmitry Belyavskiy ecb6630fd3 When signature_algorithm extension is omitted, use more relevant alerts
3 years ago
Sahana Prasad fe7445d93d Rebase to upstream version beta2
3 years ago
Sahana Prasad 0b6afca185 - Prevents creation of duplicate cert entries in PKCS #12 files
3 years ago