| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=277268
svn path=/vendor-crypto/openssl/0.9.8ze/; revision=277269; tag=vendor/openssl/0.9.8ze
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=276859
svn path=/vendor-crypto/openssl/0.9.8zd/; revision=276860; tag=vendor/openssl/0.9.8zd
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=273140
svn path=/vendor-crypto/openssl/0.9.8zc/; revision=273141; tag=vendor/openssl/0.9.8zc
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=269676
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=269672
svn path=/vendor-crypto/openssl/0.9.8zb/; revision=269673; tag=vendor/openssl/0.9.8zb
|
|
|
|
|
|
|
|
| |
Approved by: so (delphij)
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=267190
svn path=/vendor-crypto/openssl/0.9.8za/; revision=267192; tag=vendor/openssl/0.9.8za
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fb092ef4fca897344daf7189526f5f26be6487ce,
a93cc7c57333f4538cbcdedd2e961a5a38caa52d, and
76c61a5d1adb92388f39e585e4af860a20feb9bb.
This removes the newly added orig_len field of SSL3_RECORD and
restored ABI.
Approved by: benl
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=248595
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist-0.9.8/; revision=247957
svn path=/vendor-crypto/openssl/0.9.8y/; revision=247958; tag=vendor/openssl/0.9.8y
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=237653
svn path=/vendor-crypto/openssl/0.9.8x/; revision=237654; tag=vendor/openssl/0.9.8x
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=216135
svn path=/vendor-crypto/openssl/0.9.8q/; revision=216136; tag=vendor/openssl/0.9.8q
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=215643
svn path=/vendor-crypto/openssl/0.9.8p/; revision=215644; tag=vendor/openssl/0.9.8p
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=206035
svn path=/vendor-crypto/openssl/0.9.8n/; revision=206037; tag=vendor/openssl/0.9.8n
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=204477
svn path=/vendor-crypto/openssl/0.9.8m/; revision=204478; tag=vendor/openssl/0.9.8m
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix DTLS fragment bug - out-of-sequence message handling which could
result in NULL pointer dereference in
dtls1_process_out_of_seq_message().
Note that this will not get FreeBSD Security Advisory as DTLS is
experimental in OpenSSL.
Security: CVE-2009-1387
Obtained from: OpenSSL CVS
http://cvs.openssl.org/chngview?cn=17958
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=196467
svn path=/vendor-crypto/openssl/0.9.8k-dtls-fixes/; revision=196468; tag=vendor/openssl/0.9.8k-dtls-fixes
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Do not access freed data structure.
Note that this will not get FreeBSD Security Advisory as DTLS is
experimental in OpenSSL.
Security: CVE-2009-1379
Obtained from: OpenSSL CVS
http://cvs.openssl.org/chngview?cn=18156
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=196463
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix fragment handling memory leak.
Note that this will not get FreeBSD Security Advisory as DTLS is
experimental in OpenSSL.
Security: CVE-2009-1378
Obtained from: OpenSSL CVS
http://cvs.openssl.org/filediff?f=openssl/ssl/d1_both.c&v1=1.4.2.13&v2=1.4.2.15
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=196462
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix memory consumption bug with "future epoch" DTLS records.
Note that this will not get FreeBSD Security Advisory as DTLS is
experimental in OpenSSL.
Security: CVE-2009-1377
Obtained from: OpenSSL CVS
http://cvs.openssl.org/chngview?cn=18187
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=196461
|
|
|
|
|
|
|
|
| |
expension disabled on the vendor tree means merges to head
removes the attributes there which clutters the merge.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=193770
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=193763
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=193647
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=193645
svn path=/vendor-crypto/openssl/0.9.8k/; revision=193646; tag=vendor/openssl/0.9.8k
|
|
|
|
|
|
|
|
|
|
| |
FIPS works but at least now we have the support source in case it
does.
- Do not exclude rsaref - it's not part of the OpenSSL distribution
archive anymore.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=193587
|
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=183234
svn path=/vendor-crypto/openssl/0.9.8i/; revision=193572; tag=vendor/openssl/0.9.8i
|
|
|
|
|
|
|
|
| |
- Remove all of include as there is only the openssl subdir with
symlinks (which were always removed).
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=183233
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=183232
|
|
|
|
|
|
|
|
|
|
| |
(last vendor import).
The file were removed in different earlier releases, but were not
removed from the CVS vendor branch at the time.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=183231
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=183229
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=183226
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=182044
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
From the OpenSSL advisory:
Andy Polyakov discovered a flaw in OpenSSL's DTLS
implementation which could lead to the compromise of clients
and servers with DTLS enabled.
DTLS is a datagram variant of TLS specified in RFC 4347 first
supported in OpenSSL version 0.9.8. Note that the
vulnerabilities do not affect SSL and TLS so only clients and
servers explicitly using DTLS are affected.
We believe this flaw will permit remote code execution.
Security: CVE-2007-4995
Security: http://www.openssl.org/news/secadv_20071012.txt
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=172767
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
EVP_CIPHER_CTX_key_length() should return the set key length
in the EVP_CIPHER_CTX structure which may not be the same as
the underlying cipher key length for variable length ciphers.
This fixes problems in OpenSSH using some ciphers, and possibly other
applications.
See also: http://bugzilla.mindrot.org/show_bug.cgi?id=1291
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=167617
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=167612
|
|
|
|
|
|
|
|
|
|
| |
Fix uninitialized free of ctx in compute_key() when the
OPENSSL_DH_MAX_MODULUS_BITS check is triggered.
This fixes the same issue as FreeBSD-SA-06:23.openssl v1.1.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=162916
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=162911
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=160814
|
|
|
|
|
|
|
| |
branch. This time, these are mostly the `Makefile.ssl' files.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=142430
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=142425
|
|
|
|
|
|
|
| |
part of recent releases.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=142421
|
|
|
|
|
|
|
| |
This is from the upcoming OpenSSL 0.9.8 release.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=133665
|
|
|
|
|
|
|
|
|
|
|
| |
object could cause a null pointer dereference.
Obtained from: OpenSSL CVS (change number 12080)
MFC After: 1 day
Reported by: Daniel Lang <dl@leo.org>
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=127904
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=127128
|
|
|
|
|
|
|
| |
Obtained from: OpenSSL CVS (http://cvs.openssl.org/chngview?cn=12033)
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=127114
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=120631
|
|
|
|
|
|
|
| |
http://www.openssl.org/news/secadv_20030317.txt
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=112442
|
|
|
|
|
|
|
| |
http://www.openssl.org/news/secadv_20030319.txt
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=112439
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=111147
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
des_read_pw_string to break (and thus rather mysteriously
breaking utilities such as kinit).
= Enable the BSD /dev/crypto interface.
(These changes are being imported on the vendor branch, as they have
already been accepted and committed to the OpenSSL CVS repository.)
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=110018
|
|
|
|
|
|
|
| |
support for AES and OpenBSD's hardware crypto.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=109998
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=101618
|
|
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=101615
|