diff options
| author | Cy Schubert <cy@FreeBSD.org> | 2024-02-02 04:39:16 +0000 |
|---|---|---|
| committer | Cy Schubert <cy@FreeBSD.org> | 2024-02-02 09:48:38 +0000 |
| commit | 9dd13e84fa8eca8f3462bd55485aa3da8c37f54a (patch) | |
| tree | 588240aeb9a7363618b8a687c72588bd74948634 /util/opensslwrap.sh | |
| parent | 825caf7e12445fa4818413cc37c8b45bebb6c3a9 (diff) | |
OpenSSL: Vendor import of OpenSSL 3.0.13vendor/openssl/3.0.13
* Fixed PKCS12 Decoding crashes ([CVE-2024-0727])
* Fixed Excessive time spent checking invalid RSA public keys
([CVE-2023-6237])
* Fixed POLY1305 MAC implementation corrupting vector registers on
PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129])
* Fix excessive time spent in DH check / generation with large Q
parameter value ([CVE-2023-5678])
Release notes can be found at
https://www.openssl.org/news/openssl-3.0-notes.html.
Diffstat (limited to 'util/opensslwrap.sh')
| -rwxr-xr-x | util/opensslwrap.sh | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/util/opensslwrap.sh b/util/opensslwrap.sh new file mode 100755 index 000000000000..7a388302703e --- /dev/null +++ b/util/opensslwrap.sh @@ -0,0 +1,29 @@ +#!/bin/sh + +HERE="`echo $0 | sed -e 's|[^/]*$||'`" +OPENSSL="${HERE}../apps/openssl" + +if [ -d "${HERE}../engines" -a "x$OPENSSL_ENGINES" = "x" ]; then + OPENSSL_ENGINES="${HERE}../engines"; export OPENSSL_ENGINES +fi +if [ -d "${HERE}../providers" -a "x$OPENSSL_MODULES" = "x" ]; then + OPENSSL_MODULES="${HERE}../providers"; export OPENSSL_MODULES +fi + +if [ -x "${OPENSSL}.exe" ]; then + # The original reason for this script existence is to work around + # certain caveats in run-time linker behaviour. On Windows platforms + # adjusting $PATH used to be sufficient, but with introduction of + # SafeDllSearchMode in XP/2003 the only way to get it right in + # *all* possible situations is to copy newly built .DLLs to apps/ + # and test/, which is now done elsewhere... The $PATH is adjusted + # for backward compatibility (and nostagical reasons:-). + if [ "$OSTYPE" != msdosdjgpp ]; then + PATH="${HERE}..:$PATH"; export PATH + fi + exec "${OPENSSL}.exe" "$@" +elif [ -x "${OPENSSL}" -a -x "${HERE}shlib_wrap.sh" ]; then + exec "${HERE}shlib_wrap.sh" "${OPENSSL}" "$@" +else + exec "${OPENSSL}" "$@" # hope for the best... +fi |