| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
| |
hyphen in their official programming guide sometime between 2003 and
2005, and Clang's integrated assembler does not support hyphenated
mnemonics.
ok jsg, deraadt
|
| |
|
|
|
| |
from the openssl git (changes between openssl 1.0.1c and 1.0.1d).
ok djm@
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
have to go through the PLT/GOT to get at them anymore. In fact going through
the GOT now fails since we no longer have a GOT entry for OPENSSL_ia32cap_P.
Fixes the problem spotted by jasper@ and sthen@. Based on a diff from mikeb@
who did most of the actual work of tracking down the issue.
ok millert@, mikeb@
|
| |
|
|
| |
Disable use of dladdr() on a.out arches, they do not provide it (yet);
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
and __PIC__ defines. Makes things easier for PIE.
ok djm@
|
| |
|
|
| |
jmc@ noticed this in the manpage while updating it, but it applies here too.
|
| |
|
|
| |
Brad, jasper and naddy helped with test builds, fixing ports, etc.
|
| |
|
|
| |
ok miod@ deraadt@
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
ok markus@ jasper@ miod@
AFAIK nothing in base uses this, though apache2 from ports may be affected.
|
| |
|
|
|
|
| |
file it will be used from.
requested by/ok mikeb@
|
| |
|
|
|
|
|
| |
which should have been declared as CRYPTO_ALGORITHM_MAX + 1,
fix this and reserve enough space for the VIA additions as well.
ok/comments from mikeb & deraadt
|
| |
|
|
|
|
|
|
|
| |
where clients could modify the stored session
cache ciphersuite and in some cases even downgrade the suite to weaker ones.
This code is not enabled by default.
ok djm@
|
| |
|
|
| |
ok djm@ deraadt@
|
| | |
|
| |
|
|
|
|
|
|
|
| |
- Update local engines for the EVP API change (len u_int => size_t)
- Use hw_cryptodev.c instead of eng_cryptodev.c
- Make x86_64-xlate.pl always write to the output file and not stdout,
fixing "make -j" builds (spotted by naddy@)
ok naddy@
|
| |
|
|
|
|
|
|
|
|
|
| |
There's not much use for the declassified cipher from the 80's
with a questionable license these days. According to the FIPS
drafts, Skipjack reaches its EOL in December 2010.
The libc portion will be removed after the ports hackathon.
djm and thib agree, no objections from deraadt
Thanks to jsg for digging up FIPS drafts.
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Update our sources appropriately. OK deraadt@ jsg@
|
| |
|
|
|
|
|
|
|
|
| |
This is code mostly picked up from upstream OpenSSL, or to be more exact
a diff from David Woodhouse <dwmw2 at infradead dot org>.
Remember to make includes before doing a build!
no objections from djm@
OK deraadt@, reyk@ (AES is about 4.25x faster on his x201 now)
|
| |
|
|
|
|
|
|
|
| |
with suggestions from miod.
The codepath doesn't seem to be called yet, this will be
investigated later.
looks good miod@, ok deraadt@
|
| |
|
|
|
|
|
|
|
|
|
|
| |
the xcrypt inputs, hence the dance which is done to make this work.
The constraint for the key however was "mr" which is both from
memory and from a general register, it seems gcc3 went with the former
and gcc4 went with the later in the pic case, so change the
constraint for the key to just "m" which gives us more efficient
code that both gcc3 and gcc4 are happy with.
ok kettenis@
|
| |
|
|
|
|
|
| |
"mbuf" as a C string when using the pop3 s_client feature. This causes
a segmentation fault with malloc.conf option "J" set when BIO_printf()
runs off the end of the buffer. The following patch fixes PR 6282
from Matthew Haub (asked to submit upstream), ok djm
|
| |
|
|
|
|
|
|
|
| |
"In TLS connections, certain incorrectly formatted records can cause an OpenSSL
client or server to crash due to a read attempt at NULL."
http://openssl.org/news/secadv_20100324.txt
ok deraadt@ djm@ sthen@
|
| |
|
|
|
| |
*) Always check bn_wexpend() return values for failure. (CVE-2009-3245)
[Martin Olsson, Neel Mehta]
|
| |
|
|
|
|
|
|
| |
"Modify compression code so it avoids using ex_data free functions.
This stops applications that call CRYPTO_free_all_ex_data()
prematurely leaking memory."
looks ok to markus@
|
| | |
|
| |
|
|
| |
openssl 0.9.8l; crank minor version; ok djm@ deraadt@; initially from jsg@
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
"openssl s_client"), fix an unlikely memory leak
|
| |
|
|
| |
the size of the diff against openssl mainline
|
| |
|
|
| |
memcpy to avoid linker deprecation warnings; pointed out by dkrause@
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
- global function calls in .init sections (diff makes them via PLT)
- calls to global functions in aes-586.S (made static or local)
- global variable accesses in rc4-x86_64.S (now made via GOT)
from djm@large; ok miod@
|
| | |
|
matthew
markus
djm
kettenis
miod
pascal
sthen
jsg
jasper
mikeb
millert
thib
deraadt
sobrado
martynas
otto