projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ce7e647) | patch
More secure storage of key material.
authorRich Salz <rsalz@akamai.com>
Fri, 24 Apr 2015 20:39:40 +0000 (16:39 -0400)
committerRich Salz <rsalz@openssl.org>
Tue, 23 Jun 2015 21:09:35 +0000 (17:09 -0400)
commit74924dcb3802640d7e2ae2e80ca6515d0a53de7a
tree6de4138b01d5f649bdaa32d858bd5fa20e9ad4b6tree | snapshot
parentce7e647bc2c328404b1e3cdac6211773afdefe07commit | diff
More secure storage of key material.

Add secure heap for storage of private keys (when possible).
Add BIO_s_secmem(), CBIGNUM, etc.
Add BIO_CTX_secure_new so all BIGNUM's in the context are secure.
Contributed by Akamai Technologies under the Corporate CLA.

Reviewed-by: Richard Levitte <levitte@openssl.org>
30 files changed:
CHANGES diff | blob | history
crypto/Makefile diff | blob | history
crypto/asn1/x_bignum.c diff | blob | history
crypto/bio/bss_mem.c diff | blob | history
crypto/bn/bn_ctx.c diff | blob | history
crypto/bn/bn_lib.c diff | blob | history
crypto/buffer/buffer.c diff | blob | history
crypto/dh/dh_ameth.c diff | blob | history
crypto/dh/dh_key.c diff | blob | history
crypto/dsa/dsa_ameth.c diff | blob | history
crypto/dsa/dsa_asn1.c diff | blob | history
crypto/dsa/dsa_key.c diff | blob | history
crypto/ec/ec_asn1.c diff | blob | history
crypto/mem.c diff | blob | history
crypto/rsa/rsa_asn1.c diff | blob | history
crypto/rsa/rsa_gen.c diff | blob | history
crypto/sec_mem.c [new file with mode: 0644] blob
doc/crypto/BIO_s_mem.pod diff | blob | history
doc/crypto/BN_CTX_new.pod diff | blob | history
doc/crypto/CRYPTO_secure_malloc.pod [new file with mode: 0644] blob
doc/crypto/bio.pod diff | blob | history
doc/crypto/bn.pod diff | blob | history
doc/crypto/buffer.pod diff | blob | history
include/openssl/bio.h diff | blob | history
include/openssl/bn.h diff | blob | history
include/openssl/buffer.h diff | blob | history
include/openssl/crypto.h diff | blob | history
test/Makefile diff | blob | history
test/secmemtest.c [new file with mode: 0644] blob
util/libeay.num diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.