VigorTLS Mirror - Please do not use for any real security related purpose, I recommend using LibreSSL
Switch branches/tags
Clone or download
x64architecture crypto/evp: harden AEAD ciphers.
Originally a crash in 32-bit build was reported CHACHA20-POLY1305
cipher. The crash is triggered by truncated packet and is result
of excessive hashing to the edge of accessible memory. Since hash
operation is read-only it is not considered to be exploitable
beyond a DoS condition. Other ciphers were hardened.

CVE-2017-3731

Based on OpenSSL
Latest commit 96d5ef3 Jan 26, 2017

README.md

VigorTLS

VigorTLS is a fork of OpenSSL developed by Kurt Cancemi.

Some new features added:

  • ChaCha20-Poly1305 Support
  • Support for GOST in the EVP interface

Build Status

Goal

The goal of the VigorTLS Project is to improve the original OpenSSL codebase by using modern C features, removing support for ancient operating systems that are rarely used/hard to support, replacing potentially dangerous functions/calls with secure ones, replacing the unreadable coding style, adding in some new features, etc.

Currently tested operating systems

  • Windows: x86, x86_64
  • Linux: x86, x86_64, armv6
  • Mac OS X: x86_64
  • FreeBSD: x86_64