aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/openssl/crypto
Commit message (Collapse)AuthorAgeFilesLines
* Fix OpenSSL multiple vulnerabilities. [13:03]releng/9.0Xin LI2013-04-0246-205/+599
| | | | | | | | | | | | | Fix BIND remote denial of service. [13:04] Security: CVE-2013-0166, CVE-2013-0169 Security: FreeBSD-SA-13:03.openssl Security: CVE-2013-2266 Security: FreeBSD-SA-13:04.bind Approved by: so Notes: svn path=/releng/9.0/; revision=249029
* Update the previous openssl fix. [12:01]Bjoern A. Zeeb2012-05-301-1/+1
| | | | | | | | | | | Fix a bug in crypt(3) ignoring characters of a passphrase. [12:02] Security: FreeBSD-SA-12:01.openssl (revised) Security: FreeBSD-SA-12:02.crypt Approved by: so (bz, simon) Notes: svn path=/releng/9.0/; revision=236304
* Fix multiple OpenSSL vulnerabilities.Bjoern A. Zeeb2012-05-036-39/+134
| | | | | | | | | | Security: CVE-2011-4576, CVE-2011-4619, CVE-2011-4109 Security: CVE-2012-0884, CVE-2012-2110 Security: FreeBSD-SA-12:01.openssl Approved by: so (bz,simon) Notes: svn path=/releng/9.0/; revision=234954
* Merge OpenSSL 0.9.8q into head.Simon L. B. Nielsen2010-12-037-10/+44
|\ | | | | | | | | | | | | | | | | Security: CVE-2010-4180 Security: http://www.openssl.org/news/secadv_20101202.txt MFC after: 3 days Notes: svn path=/head/; revision=216166
* | Merge OpenSSL 0.9.8p into head.Simon L. B. Nielsen2010-11-2250-187/+276
|\| | | | | | | | | | | | | | | Security: CVE-2010-3864 Security: http://www.openssl.org/news/secadv_20101116.txt Notes: svn path=/head/; revision=215697
* | Bring in OpenSSL checkin 19821:Rui Paulo2010-09-212-6/+13
| | | | | | | | | | | | | | | | | | | | | | | | Make inline assembler clang-friendly [from HEAD]. openssl/crypto/md32_common.h 1.45.2.1 -> 1.45.2.2 openssl/crypto/rc5/rc5_locl.h 1.8 -> 1.8.8.1 Approved by: simon Notes: svn path=/head/; revision=212961
* | Merge OpenSSL 0.9.8n into head.Simon L. B. Nielsen2010-04-0114-23/+51
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes CVE-2010-0740 which only affected -CURRENT (OpenSSL 0.9.8m) but not -STABLE branches. I have not yet been able to find out if CVE-2010-0433 impacts FreeBSD. This will be investigated further. Security: CVE-2010-0433, CVE-2010-0740 Security: http://www.openssl.org/news/secadv_20100324.txt Notes: svn path=/head/; revision=206046
* | Merge OpenSSL 0.9.8m into head.Simon L. B. Nielsen2010-03-13115-16068/+1265
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | This also "reverts" some FreeBSD local changes so we should now be back to using entirely stock OpenSSL. The local changes were simple $FreeBSD$ lines additions, which were required in the CVS days, and the patch for FreeBSD-SA-09:15.ssl which has been superseded with OpenSSL 0.9.8m's RFC5746 'TLS renegotiation extension' support. MFC after: 3 weeks Notes: svn path=/head/; revision=205128
* | Merge DTLS fixes from vendor-crypto/openssl/dist:Simon L. B. Nielsen2009-08-232-0/+15
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Fix memory consumption bug with "future epoch" DTLS records. - Fix fragment handling memory leak. - Do not access freed data structure. - Fix DTLS fragment bug - out-of-sequence message handling which could result in NULL pointer dereference in dtls1_process_out_of_seq_message(). Note that this will not get FreeBSD Security Advisory as DTLS is experimental in OpenSSL. MFC after: 1 week Security: CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1387 Notes: svn path=/head/; revision=196474
* | Merge OpenSSL 0.9.8k into head.Simon L. B. Nielsen2009-06-14476-10102/+43336
|\| | | | | | | | | | | | | Approved by: re Notes: svn path=/head/; revision=194206
| * Flatten OpenSSL vendor tree.Simon L. B. Nielsen2008-08-23968-271131/+0
| | | | | | | | Notes: svn path=/vendor-crypto/openssl/dist/; revision=182044
* | Don't leak information via uninitialized space in db(3) records. [09:07]Colin Percival2009-04-223-0/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | Sanity-check string lengths in order to stop OpenSSL crashing when printing corrupt BMPString or UniversalString objects. [09:08] Security: FreeBSD-SA-09:07.libc Security: FreeBSD-SA-09:08.openssl Security: CVE-2009-0590 Approved by: re (kensmith) Approved by: so (cperciva) Notes: svn path=/head/; revision=191381
* | Unbreak detection of cryptodev support for FreeBSD which was brokenSimon L. B. Nielsen2008-01-131-1/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | with OpenSSL 0.9.8 import. Note that this does not enable cryptodev by default, as it was the case with OpenSSL 0.9.7 in FreeBSD base, but this change makes it possible to enable cryptodev at all. This has been submitted upstream as: http://rt.openssl.org/Ticket/Display.html?id=1624 Submitted by: nork Notes: svn path=/head/; revision=175292
* | Fix runtime crash in OpenSSL with "Illegal instruction" by making someSimon L. B. Nielsen2007-05-223-23/+25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | casts a bit less evil. This was e.g. seen when using portsnap as: Fetching snapshot tag from portsnap3.FreeBSD.org... Illegal instruction Note the patch is slightly different from kan's original patch to match style in the OpenSSL source files a bit better. Submitted by: kan Tested by: many Notes: svn path=/head/; revision=169883
* | This commit was generated by cvs2svn to compensate for changes in r167617,Simon L. B. Nielsen2007-03-151-1/+1
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=167618
| * Import fix from upstream OpenSSL_0_9_8-stable branch:Simon L. B. Nielsen2007-03-151-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | EVP_CIPHER_CTX_key_length() should return the set key length in the EVP_CIPHER_CTX structure which may not be the same as the underlying cipher key length for variable length ciphers. This fixes problems in OpenSSH using some ciphers, and possibly other applications. See also: http://bugzilla.mindrot.org/show_bug.cgi?id=1291 Notes: svn path=/vendor-crypto/openssl/dist/; revision=167617
* | Resolve conflicts after import of OpenSSL 0.9.8e.Simon L. B. Nielsen2007-03-157-42/+44
| | | | | | | | Notes: svn path=/head/; revision=167615
* | This commit was generated by cvs2svn to compensate for changes in r167612,Simon L. B. Nielsen2007-03-15132-565/+3259
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=167613
| * Vendor import of OpenSSL 0.9.8e.Simon L. B. Nielsen2007-03-15139-607/+3303
| | | | | | | | Notes: svn path=/vendor-crypto/openssl/dist/; revision=167612
* | This commit was generated by cvs2svn to compensate for changes in r162916,Simon L. B. Nielsen2006-10-011-1/+1
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=162917
| * Import from upstream OpenSSL 0.9.8 branch:Simon L. B. Nielsen2006-10-011-1/+1
| | | | | | | | | | | | | | | | | | | | Fix uninitialized free of ctx in compute_key() when the OPENSSL_DH_MAX_MODULUS_BITS check is triggered. This fixes the same issue as FreeBSD-SA-06:23.openssl v1.1. Notes: svn path=/vendor-crypto/openssl/dist/; revision=162916
* | Resolve conflicts after import of OpenSSL 0.9.8d.Simon L. B. Nielsen2006-10-014-18/+122
| | | | | | | | Notes: svn path=/head/; revision=162914
* | This commit was generated by cvs2svn to compensate for changes in r162911,Simon L. B. Nielsen2006-10-0146-381/+4356
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=162912
| * Vendor import of OpenSSL 0.9.8d.Simon L. B. Nielsen2006-10-0150-398/+4494
| | | | | | | | Notes: svn path=/vendor-crypto/openssl/dist/; revision=162911
* | Correct incorrect PKCS#1 v1.5 padding validation in crypto(3).Simon L. B. Nielsen2006-09-101-0/+17
| | | | | | | | | | | | | | | | Obtained from: OpenSSL project Security: FreeBSD-SA-06:19.openssl Notes: svn path=/head/; revision=162207
* | Resolve conflicts after import of OpenSSL 0.9.8b.Simon L. B. Nielsen2006-07-301-53/+215
| | | | | | | | | | | | | | | | | | | | | | This was missed the first time around since eng_padlock.c was not part of OpenSSL 0.9.7e and therefor did not have the v0_9_7e CVS tag used during original resolve of conflicts. Noticed by: Antoine Brodin <antoine.brodin@laposte.net> Notes: svn path=/head/; revision=160837
* | Resolve conflicts after import of OpenSSL 0.9.8b.Simon L. B. Nielsen2006-07-2976-22384/+645
| | | | | | | | Notes: svn path=/head/; revision=160817
* | This commit was generated by cvs2svn to compensate for changes in r160814,Simon L. B. Nielsen2006-07-29583-12044/+58289
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=160815
| * Vendor import of OpenSSL 0.9.8bSimon L. B. Nielsen2006-07-29595-12563/+59151
| | | | | | | | Notes: svn path=/vendor-crypto/openssl/dist/; revision=160814
| * Remove files that are no longer part of OpenSSL from the vendorJacques Vidrine2005-02-2545-10184/+0
| | | | | | | | | | | | | | branch. This time, these are mostly the `Makefile.ssl' files. Notes: svn path=/vendor-crypto/openssl/dist/; revision=142430
* | File removed in update from OpenSSL 0.9.7d -> 0.9.7e.Jacques Vidrine2005-02-251-91/+0
| | | | | | | | Notes: svn path=/head/; revision=142432
* | This commit was generated by cvs2svn to compensate for changes in r142430,Jacques Vidrine2005-02-2544-10093/+0
| | | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=142431
* | Resolve conflicts after import of OpenSSL 0.9.7e.Jacques Vidrine2005-02-255-13/+53
| | | | | | | | Notes: svn path=/head/; revision=142428
* | This commit was generated by cvs2svn to compensate for changes in r142425,Jacques Vidrine2005-02-25123-337/+11513
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=142426
| * Vendor import of OpenSSL 0.9.7e.Jacques Vidrine2005-02-25128-350/+11566
| | | | | | | | Notes: svn path=/vendor-crypto/openssl/dist/; revision=142425
| * Clean up the OpenSSL vendor branch by removing files that are notJacques Vidrine2005-02-25146-23761/+0
| | | | | | | | | | | | | | part of recent releases. Notes: svn path=/vendor-crypto/openssl/dist/; revision=142421
* | Add support for C3 Nehemiah ACE ("Padlock") AES crypto. This comesMark Murray2004-08-142-1/+4
| | | | | | | | | | | | | | from OpenSSL 0.9.5 (yet to be released), and is pretty complete. Notes: svn path=/head/; revision=133718
* | This commit was generated by cvs2svn to compensate for changes in r133665,Mark Murray2004-08-131-0/+1054
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=133666
| * Bring in support for VIA C3 Nehemiah Padlock crypto support (AES).Mark Murray2004-08-131-0/+1054
| | | | | | | | | | | | | | This is from the upcoming OpenSSL 0.9.8 release. Notes: svn path=/vendor-crypto/openssl/dist/; revision=133665
* | This commit was generated by cvs2svn to compensate for changes in r127904,Jacques Vidrine2004-04-051-4/+9
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=127905
| * Repair a regression in OpenSSL 0.9.7d: processing an unsigned PKCS#7Jacques Vidrine2004-04-051-4/+9
| | | | | | | | | | | | | | | | | | | | | | object could cause a null pointer dereference. Obtained from: OpenSSL CVS (change number 12080) MFC After: 1 day Reported by: Daniel Lang <dl@leo.org> Notes: svn path=/vendor-crypto/openssl/dist/; revision=127904
* | Resolve conflicts after import of OpenSSL 0.9.7d.Jacques Vidrine2004-03-172-1/+3
| | | | | | | | Notes: svn path=/head/; revision=127134
* | This commit was generated by cvs2svn to compensate for changes in r127128,Jacques Vidrine2004-03-17110-538/+670
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=127129
| * Vendor import of OpenSSL 0.9.7d.Jacques Vidrine2004-03-17112-539/+673
| | | | | | | | Notes: svn path=/vendor-crypto/openssl/dist/; revision=127128
* | Remove files no longer included with OpenSSL as of version 0.9.7c.Jacques Vidrine2003-10-011-4/+0
| | | | | | | | Notes: svn path=/head/; revision=120636
* | Merge conflicts after import of OpenSSL 0.9.7c.Jacques Vidrine2003-10-013-23/+151
| | | | | | | | Notes: svn path=/head/; revision=120635
* | This commit was generated by cvs2svn to compensate for changes in r120631,Jacques Vidrine2003-10-0170-318/+569
|\| | | | | | | | | | | | | which included commits to RCS files with non-trunk default branches. Notes: svn path=/head/; revision=120632
| * Vendor import of OpenSSL 0.9.7cJacques Vidrine2003-10-0173-344/+717
| | | | | | | | Notes: svn path=/vendor-crypto/openssl/dist/; revision=120631
| * Enable RSA blinding by default.Chris D. Faulhaber2003-03-202-5/+30
| | | | | | | | | | | | | | http://www.openssl.org/news/secadv_20030317.txt Notes: svn path=/vendor-crypto/openssl/dist/; revision=112442
* | Merge conflictsChris D. Faulhaber2003-03-202-5/+30
| | | | | | | | Notes: svn path=/head/; revision=112446