Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Import OpenSSL 0.9.8m. | simon | 2010-02-28 | 235 | -19809/+4292 |
| | |||||
* | Import DTLS fix from upstream OpenSSL 0.9.8 branch: | simon | 2009-08-23 | 1 | -15/+16 |
| | | | | | | | | | | | | | Fix DTLS fragment bug - out-of-sequence message handling which could result in NULL pointer dereference in dtls1_process_out_of_seq_message(). Note that this will not get FreeBSD Security Advisory as DTLS is experimental in OpenSSL. Security: CVE-2009-1387 Obtained from: OpenSSL CVS http://cvs.openssl.org/chngview?cn=17958 | ||||
* | Import DTLS fix from upstream OpenSSL 0.9.8 branch: | simon | 2009-08-23 | 1 | -1/+2 |
| | | | | | | | | | | | Do not access freed data structure. Note that this will not get FreeBSD Security Advisory as DTLS is experimental in OpenSSL. Security: CVE-2009-1379 Obtained from: OpenSSL CVS http://cvs.openssl.org/chngview?cn=18156 | ||||
* | Import DTLS fix from upstream OpenSSL 0.9.8 branch: | simon | 2009-08-23 | 1 | -1/+10 |
| | | | | | | | | | | | Fix fragment handling memory leak. Note that this will not get FreeBSD Security Advisory as DTLS is experimental in OpenSSL. Security: CVE-2009-1378 Obtained from: OpenSSL CVS http://cvs.openssl.org/filediff?f=openssl/ssl/d1_both.c&v1=1.4.2.13&v2=1.4.2.15 | ||||
* | Import DTLS fix from upstream OpenSSL 0.9.8 branch: | simon | 2009-08-23 | 3 | -0/+19 |
| | | | | | | | | | | | Fix memory consumption bug with "future epoch" DTLS records. Note that this will not get FreeBSD Security Advisory as DTLS is experimental in OpenSSL. Security: CVE-2009-1377 Obtained from: OpenSSL CVS http://cvs.openssl.org/chngview?cn=18187 | ||||
* | Re-enable keyword expansion, at least for now. Having keyword | simon | 2009-06-08 | 0 | -0/+0 |
| | | | | | expension disabled on the vendor tree means merges to head removes the attributes there which clutters the merge. | ||||
* | Remove empty directory which has been removed upstream. | simon | 2009-06-08 | 0 | -0/+0 |
| | |||||
* | Add current WIP version of OpenSSL import documentation. | simon | 2009-06-07 | 1 | -12/+39 |
| | |||||
* | Import OpenSSL 0.9.8k. | simon | 2009-06-07 | 558 | -5595/+48778 |
| | |||||
* | - Do not exclude FIPS as it might be useful. I have not tested if | simon | 2009-06-06 | 1 | -3/+0 |
| | | | | | | | FIPS works but at least now we have the support source in case it does. - Do not exclude rsaref - it's not part of the OpenSSL distribution archive anymore. | ||||
* | Vendor import of OpenSSL 0.9.8i. | simon | 2008-09-21 | 388 | -10727/+30385 |
| | |||||
* | - Remove files which aren't in the vendor distribution anymore. | simon | 2008-09-21 | 1 | -4/+1 |
| | | | | | - Remove all of include as there is only the openssl subdir with symlinks (which were always removed). | ||||
* | - Change FREEBSD-Xlist so it can be used as input to tar(1). | simon | 2008-09-21 | 1 | -50/+50 |
| | |||||
* | Remove files from vendor tree which were not part of OpenSSL 0.9.8e | simon | 2008-09-21 | 90 | -23577/+0 |
| | | | | | | | (last vendor import). The file were removed in different earlier releases, but were not removed from the CVS vendor branch at the time. | ||||
* | The vendor area is the proper home for these files now. | simon | 2008-09-21 | 2 | -0/+93 |
| | |||||
* | Disable keyword expansion on vendor tree. | simon | 2008-09-21 | 0 | -0/+0 |
| | |||||
* | Flatten OpenSSL vendor tree. | simon | 2008-08-23 | 1806 | -0/+0 |
| | |||||
* | Import DTLS security fix from upstream OpenSSL_0_9_8-stable branch. | simon | 2007-10-18 | 4 | -615/+544 |
| | | | | | | | | | | | | | | | | | | From the OpenSSL advisory: Andy Polyakov discovered a flaw in OpenSSL's DTLS implementation which could lead to the compromise of clients and servers with DTLS enabled. DTLS is a datagram variant of TLS specified in RFC 4347 first supported in OpenSSL version 0.9.8. Note that the vulnerabilities do not affect SSL and TLS so only clients and servers explicitly using DTLS are affected. We believe this flaw will permit remote code execution. Security: CVE-2007-4995 Security: http://www.openssl.org/news/secadv_20071012.txt | ||||
* | Import fix from upstream OpenSSL_0_9_8-stable branch: | simon | 2007-03-15 | 1 | -1/+1 |
| | | | | | | | | | | | EVP_CIPHER_CTX_key_length() should return the set key length in the EVP_CIPHER_CTX structure which may not be the same as the underlying cipher key length for variable length ciphers. This fixes problems in OpenSSH using some ciphers, and possibly other applications. See also: http://bugzilla.mindrot.org/show_bug.cgi?id=1291 | ||||
* | Vendor import of OpenSSL 0.9.8e. | simon | 2007-03-15 | 203 | -805/+4104 |
| | |||||
* | Import from upstream OpenSSL 0.9.8 branch: | simon | 2006-10-01 | 1 | -1/+1 |
| | | | | | | | Fix uninitialized free of ctx in compute_key() when the OPENSSL_DH_MAX_MODULUS_BITS check is triggered. This fixes the same issue as FreeBSD-SA-06:23.openssl v1.1. | ||||
* | Vendor import of OpenSSL 0.9.8d. | simon | 2006-10-01 | 98 | -511/+6053 |
| | |||||
* | Vendor import of OpenSSL 0.9.8b | simon | 2006-07-29 | 915 | -20663/+98999 |
| | |||||
* | Remove files that are no longer part of OpenSSL from the vendor | nectar | 2005-02-25 | 57 | -15302/+0 |
| | | | | branch. This time, these are mostly the `Makefile.ssl' files. | ||||
* | Vendor import of OpenSSL 0.9.7e. | nectar | 2005-02-25 | 216 | -812/+17288 |
| | |||||
* | Clean up the OpenSSL vendor branch by removing files that are not | nectar | 2005-02-25 | 207 | -36723/+0 |
| | | | | part of recent releases. | ||||
* | Bring in support for VIA C3 Nehemiah Padlock crypto support (AES). | markm | 2004-08-13 | 1 | -0/+1054 |
| | | | | This is from the upcoming OpenSSL 0.9.8 release. | ||||
* | Repair a regression in OpenSSL 0.9.7d: processing an unsigned PKCS#7 | nectar | 2004-04-05 | 1 | -4/+9 |
| | | | | | | | | object could cause a null pointer dereference. Obtained from: OpenSSL CVS (change number 12080) MFC After: 1 day Reported by: Daniel Lang <dl@leo.org> | ||||
* | Vendor import of OpenSSL 0.9.7d. | nectar | 2004-03-17 | 190 | -1517/+2619 |
| | |||||
* | Correct a denial-of-service vulnerability in OpenSSL (CAN-2004-0079). | nectar | 2004-03-17 | 1 | -0/+8 |
| | | | | Obtained from: OpenSSL CVS (http://cvs.openssl.org/chngview?cn=12033) | ||||
* | Vendor import of OpenSSL 0.9.7c | nectar | 2003-10-01 | 137 | -589/+1616 |
| | |||||
* | Enable RSA blinding by default. | jedgar | 2003-03-20 | 2 | -5/+30 |
| | | | | http://www.openssl.org/news/secadv_20030317.txt | ||||
* | Import of PKCS #1 security fix. | jedgar | 2003-03-20 | 1 | -13/+12 |
| | | | | http://www.openssl.org/news/secadv_20030319.txt | ||||
* | Vendor import of OpenSSL 0.9.7a. | nectar | 2003-02-19 | 157 | -647/+1688 |
| | |||||
* | = Fix a bug in UI_UTIL_read_pw's error handling that caused | nectar | 2003-01-29 | 5 | -29/+33 |
| | | | | | | | | | | des_read_pw_string to break (and thus rather mysteriously breaking utilities such as kinit). = Enable the BSD /dev/crypto interface. (These changes are being imported on the vendor branch, as they have already been accepted and committed to the OpenSSL CVS repository.) | ||||
* | Vendor import of OpenSSL release 0.9.7. This release includes | markm | 2003-01-28 | 965 | -20829/+103840 |
| | | | | support for AES and OpenBSD's hardware crypto. | ||||
* | Import of OpenSSL 0.9.6g. | nectar | 2002-08-10 | 9 | -12/+27 |
| | |||||
* | Import of OpenSSL 0.9.6f. | nectar | 2002-08-10 | 13 | -42/+134 |
| | |||||
* | Import of OpenSSL 0.9.6f. | nectar | 2002-08-10 | 19 | -61/+92 |
| | |||||
* | Correct a bug in the ASN.1 decoder which was introduced with the | nectar | 2002-08-05 | 1 | -1/+1 |
| | | | | | | recent OpenSSL update. Obtained from: OpenSSL CVS | ||||
* | Import of OpenSSL 0.9.6e. | nectar | 2002-07-30 | 110 | -329/+968 |
| | |||||
* | Import of OpenSSL 0.9.6d. | nectar | 2002-07-30 | 104 | -1511/+2704 |
| | |||||
* | Initial import of OpenSSL 0.9.6c | kris | 2002-01-27 | 149 | -838/+5487 |
| | |||||
* | Initial import of OpenSSL 0.9.6b | kris | 2001-07-19 | 97 | -1460/+2538 |
| | |||||
* | Initial import of OpenSSL 0.9.6a | kris | 2001-05-20 | 122 | -841/+1941 |
| | |||||
* | Import of OpenSSL 0.9.6-STABLE snapshot dated 2001-02-10 | kris | 2001-02-18 | 154 | -359/+5666 |
| | |||||
* | Initial import of OpenSSL 0.9.6 | kris | 2000-11-13 | 598 | -11885/+39181 |
| | |||||
* | Virgin import of OpenSSL v0.9.5a | markm | 2000-04-16 | 4 | -5/+97 |
| | |||||
* | Initial import of OpenSSL 0.9.5a | kris | 2000-04-13 | 713 | -9597/+56254 |
| | |||||
* | Import the RSA support code. There shouldn't be any actual RSA | kris | 2000-01-16 | 13 | -0/+2601 |
| | | | | cryptography here. |