1. 22 May, 2022 1 commit
  2. 18 May, 2022 1 commit
  3. 15 May, 2022 1 commit
  4. 08 May, 2022 1 commit
  5. 05 May, 2022 1 commit
    • Peter Wu's avatar
      TLS: fix RSA decryption with EMS and renegotiation · 4ba41070
      Peter Wu authored
      The handshake hash is used to derive TLS decryption keys when the
      Extended Master Secret (EMS) extension is in use.
      ssl_calculate_handshake_hash updates this hash only when the master
      secret has not been determined yet.
      
      During TLS renegotiation, there are two master secrets: one before, and
      one after. Before this fix, the second calculated master secret is
      wrong because the second Client Hello is missing in the handshake hash.
      It was missing because the handshake hash was not being updated since
      the master secret for the first handshake was still present, and the
      decryption state was only reset after that hash update.
      
      To fix this, make sure to clear the SSL_MASTER_SECRET flag before
      updating the handshake hash when needed. Additionally, clear the
      handshake hash when processing the Client Hello just to make sure that
      any previous state is gone.
      
      Fixes #18059
      
      (cherry picked from commit 62100da7)
      4ba41070
  6. 04 May, 2022 2 commits
  7. 02 May, 2022 1 commit
  8. 01 May, 2022 1 commit
  9. 25 Apr, 2022 1 commit
  10. 24 Apr, 2022 1 commit
  11. 21 Apr, 2022 2 commits
  12. 20 Apr, 2022 3 commits
  13. 18 Apr, 2022 1 commit
    • Gerald Combs's avatar
      macOS: Add support for Sparkle 2. · 4b4aa48a
      Gerald Combs authored and Gerald Combs's avatar Gerald Combs committed
      Sparkle 2 deprecated the sharedUpdater singleton, so create our own
      which uses Sparkle 2's updated API. Ping #18035.
      
      Update our CMake version check.
      
      (cherry picked from commit fea6591b)
      
      Conflicts:
      	.editorconfig
      	CMakeLists.txt
      4b4aa48a
  14. 17 Apr, 2022 2 commits
  15. 15 Apr, 2022 1 commit
  16. 14 Apr, 2022 3 commits
  17. 12 Apr, 2022 1 commit
  18. 10 Apr, 2022 3 commits
  19. 07 Apr, 2022 1 commit
    • Thomas Jansen's avatar
      icmpv6: Fix dissection of PREF64 option for shorter prefixes · d306c521
      Thomas Jansen authored and Alexis La Goutte's avatar Alexis La Goutte committed
      RFC 8781 shows in section 4 that the prefix field of the PREF64 option
      header is always 96 bits (or 12 bytes), regardless of the prefix length
      code that only specifies which parts of the prefix are significant. The
      option itself thus always has a fixed length. Even if they are not used
      in the significant part of the prefix itself, the unused bits are still
      part of the prefix field of the PREF64 option and the offset must be
      adapted accordingly.
      
      The previous implementation would fail to correctly parse any PREF64
      option with a PLC other than 0 (i.e. the full 96 bits) due to the unused
      remaining bits in the option not being consumed.
      
      Closes #18033.
      
      
      (cherry picked from commit aac695d6)
      d306c521
  20. 03 Apr, 2022 3 commits
  21. 27 Mar, 2022 1 commit
  22. 23 Mar, 2022 2 commits
  23. 21 Mar, 2022 1 commit
  24. 20 Mar, 2022 1 commit
  25. 19 Mar, 2022 1 commit
  26. 15 Mar, 2022 1 commit
  27. 13 Mar, 2022 1 commit
  28. 06 Mar, 2022 1 commit