git: vendor/OPENSSL Import OpenSSL 1.0.1q.
Sascha Wildner
swildner at crater.dragonflybsd.org
Fri Dec 4 12:47:52 PST 2015
commit 8be1fb4e66e6f9b586764beb6f4a83efb977b088
Author: Sascha Wildner <saw at online.de>
Date: Fri Dec 4 21:45:11 2015 +0100
Import OpenSSL 1.0.1q.
* Certificate verify crash with missing PSS parameter (CVE-2015-3194)
* X509_ATTRIBUTE memory leak (CVE-2015-3195)
* Rewrite EVP_DecodeUpdate (base64 decoding) to fix several bugs
* In DSA_generate_parameters_ex, if the provided seed is too short,
return an error
Summary of changes:
crypto/openssl/CHANGES | 221 +++---
crypto/openssl/CONTRIBUTING | 38 +
crypto/openssl/FAQ | 1041 +-------------------------
crypto/openssl/NEWS | 9 +
crypto/openssl/README | 206 ++---
crypto/openssl/README.DELETED | 49 +-
crypto/openssl/apps/apps.c | 9 +-
crypto/openssl/apps/asn1pars.c | 4 +-
crypto/openssl/apps/ca.c | 14 +-
crypto/openssl/apps/ecparam.c | 7 +-
crypto/openssl/apps/engine.c | 5 -
crypto/openssl/apps/ocsp.c | 4 +-
crypto/openssl/apps/pkcs12.c | 14 +-
crypto/openssl/apps/s_client.c | 3 +
crypto/openssl/apps/s_server.c | 15 +
crypto/openssl/crypto/aes/asm/aes-586.pl | 6 +-
crypto/openssl/crypto/aes/asm/aesni-x86.pl | 2 +-
crypto/openssl/crypto/asn1/asn1_par.c | 10 +
crypto/openssl/crypto/asn1/d2i_pr.c | 15 +-
crypto/openssl/crypto/asn1/tasn_dec.c | 11 +-
crypto/openssl/crypto/asn1/x_bignum.c | 5 +-
crypto/openssl/crypto/asn1/x_pubkey.c | 5 +-
crypto/openssl/crypto/asn1/x_x509.c | 9 +-
crypto/openssl/crypto/bio/b_dump.c | 1 -
crypto/openssl/crypto/bio/bss_file.c | 13 +-
crypto/openssl/crypto/bn/asm/x86-gf2m.pl | 16 +-
crypto/openssl/crypto/bn/asm/x86_64-gcc.c | 2 +-
crypto/openssl/crypto/bn/asm/x86_64-gf2m.pl | 16 +-
crypto/openssl/crypto/bn/bn_exp.c | 7 +-
crypto/openssl/crypto/bn/bn_gcd.c | 2 +
crypto/openssl/crypto/bn/bn_gf2m.c | 11 +-
crypto/openssl/crypto/bn/bn_mont.c | 9 +-
crypto/openssl/crypto/bn/bn_recp.c | 4 +-
crypto/openssl/crypto/bn/bn_x931p.c | 7 +-
crypto/openssl/crypto/buffer/buf_str.c | 21 +-
crypto/openssl/crypto/buffer/buffer.h | 6 +
crypto/openssl/crypto/cms/cms_enc.c | 2 +-
crypto/openssl/crypto/cms/cms_pwri.c | 3 +
crypto/openssl/crypto/cms/cms_smime.c | 2 +-
crypto/openssl/crypto/comp/c_zlib.c | 3 +-
crypto/openssl/crypto/conf/conf_def.c | 3 +-
crypto/openssl/crypto/conf/conf_sap.c | 1 +
crypto/openssl/crypto/cryptlib.c | 26 +-
crypto/openssl/crypto/dsa/dsa_ameth.c | 1 +
crypto/openssl/crypto/dsa/dsa_gen.c | 19 +-
crypto/openssl/crypto/ec/ec.h | 2 +-
crypto/openssl/crypto/ec/ec_asn1.c | 8 +-
crypto/openssl/crypto/ec/ec_key.c | 12 +-
crypto/openssl/crypto/engine/eng_cryptodev.c | 7 +-
crypto/openssl/crypto/engine/eng_list.c | 1 +
crypto/openssl/crypto/evp/e_des3.c | 2 +-
crypto/openssl/crypto/evp/encode.c | 198 ++---
crypto/openssl/crypto/evp/evp_key.c | 6 +-
crypto/openssl/crypto/evp/evp_lib.c | 33 +-
crypto/openssl/crypto/evp/evp_pbe.c | 16 +-
crypto/openssl/crypto/evp/p_lib.c | 2 +-
crypto/openssl/crypto/evp/pmeth_gn.c | 9 +-
crypto/openssl/crypto/hmac/hm_ameth.c | 9 +-
crypto/openssl/crypto/mem_clr.c | 4 +
crypto/openssl/crypto/modes/asm/ghash-x86.pl | 2 +-
crypto/openssl/crypto/ocsp/ocsp_lib.c | 6 -
crypto/openssl/crypto/ocsp/ocsp_prn.c | 3 +-
crypto/openssl/crypto/opensslv.h | 6 +-
crypto/openssl/crypto/pem/pem_info.c | 6 +
crypto/openssl/crypto/pem/pvkfmt.c | 10 +-
crypto/openssl/crypto/pkcs12/p12_add.c | 27 +-
crypto/openssl/crypto/pkcs12/p12_crpt.c | 3 +
crypto/openssl/crypto/pkcs12/p12_mutl.c | 4 +-
crypto/openssl/crypto/pkcs7/pk7_doit.c | 3 +-
crypto/openssl/crypto/rc4/asm/rc4-x86_64.pl | 2 +-
crypto/openssl/crypto/rsa/rsa_ameth.c | 2 +-
crypto/openssl/crypto/rsa/rsa_gen.c | 4 +-
crypto/openssl/crypto/rsa/rsa_sign.c | 11 +-
crypto/openssl/crypto/sha/asm/sha1-586.pl | 4 +-
crypto/openssl/crypto/sha/asm/sha256-586.pl | 2 +-
crypto/openssl/crypto/sha/asm/sha512-586.pl | 2 +-
crypto/openssl/crypto/srp/srp_vfy.c | 34 +-
crypto/openssl/crypto/ts/ts_rsp_verify.c | 2 +-
crypto/openssl/crypto/whrlpool/asm/wp-mmx.pl | 2 +-
crypto/openssl/crypto/x509/x509_cmp.c | 15 +-
crypto/openssl/crypto/x509/x509_lu.c | 2 -
crypto/openssl/crypto/x509v3/v3_cpols.c | 4 +
crypto/openssl/crypto/x509v3/v3_ncons.c | 2 +
crypto/openssl/crypto/x509v3/v3_pci.c | 2 +-
crypto/openssl/crypto/x509v3/v3_pcia.c | 2 +-
crypto/openssl/e_os.h | 8 +-
crypto/openssl/engines/e_chil.c | 4 +
crypto/openssl/ssl/bio_ssl.c | 4 +
crypto/openssl/ssl/d1_both.c | 7 +-
crypto/openssl/ssl/d1_clnt.c | 23 +-
crypto/openssl/ssl/d1_srvr.c | 31 +-
crypto/openssl/ssl/s23_clnt.c | 21 +-
crypto/openssl/ssl/s3_cbc.c | 45 +-
crypto/openssl/ssl/s3_clnt.c | 119 ++-
crypto/openssl/ssl/s3_enc.c | 108 +--
crypto/openssl/ssl/s3_lib.c | 2 +-
crypto/openssl/ssl/s3_srvr.c | 78 +-
crypto/openssl/ssl/ssl.h | 4 +
crypto/openssl/ssl/ssl3.h | 2 +
crypto/openssl/ssl/ssl_asn1.c | 5 +-
crypto/openssl/ssl/ssl_cert.c | 2 +-
crypto/openssl/ssl/ssl_ciph.c | 11 +-
crypto/openssl/ssl/ssl_err.c | 5 +
crypto/openssl/ssl/ssl_lib.c | 9 +-
crypto/openssl/ssl/ssl_locl.h | 20 +-
crypto/openssl/ssl/ssl_rsa.c | 23 +-
crypto/openssl/ssl/ssl_sess.c | 4 +-
crypto/openssl/ssl/t1_enc.c | 48 +-
crypto/openssl/ssl/t1_lib.c | 57 +-
crypto/openssl/ssl/tls1.h | 15 +-
crypto/openssl/util/extract-names.pl | 26 -
crypto/openssl/util/extract-section.pl | 12 -
112 files changed, 1155 insertions(+), 1886 deletions(-)
create mode 100644 crypto/openssl/CONTRIBUTING
delete mode 100644 crypto/openssl/util/extract-names.pl
delete mode 100644 crypto/openssl/util/extract-section.pl
http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/8be1fb4e66e6f9b586764beb6f4a83efb977b088
--
DragonFly BSD source repository
More information about the Commits
mailing list