| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
| |
These files contain build host paths and other configuration details
that can be regenerated via the standard vendor import process. Don't
clutter up the FreeBSD tree with these files.
Add the paths to .gitignore to prevent them from accidentally being
added in a future update.
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D53044
|
| |
|
|
|
|
| |
MFC with: 046c625e9382
Fixes: 046c625e9382 ("crypto/openssl: update to 3.5.4")
Reported by: Herbert J. Skuhra <herbert@gojira.at>
|
| |\
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This change updates the sources for crypto/openssl. The subsequent
commit will update the build artifacts to match the 3.5.3 release.
More details about the update can be found in the related vendor branch
commits.
MFC after: 1 week
Merge commit 'aed904c48f330dc76da942a8ee2d6eef9d11f572'
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This change adds a custom BSD makefile containing multiple high-level PHONY
targets, similar to targets provided by the ports framework.
The Makefile does the following:
- Reruns Configure with a deterministic set of arguments to ensure that
all appropriate features have been enabled/disabled in OpenSSL.
- Preens the pkgconfig files to remove duplicate paths in their
`CFLAGS` and `includedir` variables.
- Rebuilds all ASM files to ensure that the content contained is fresh.
- Rebuilds all manpages to ensure that the content contained in the
manpages is fresh.
Some additional work needs to be done to make the manpage regeneration
"operation" reproducible (the date the manpages were generated is
embedded in the files).
All dynamic configuration previously captured in
`include/openssl/configuration.h` and `include/crypto/bn_conf.h` has been
moved to `freebsd/include/dynamic_freebsd_configuration.h` and
`freebsd/include/crypto/bn_conf.h`, respectively. This helps
ensure that future updates don't wipe out FreeBSD customizations to
these files, which tune behavior on a per-target architecture basis, e.g.,
ARM vs x86, 32-bit vs 64-bit, etc.
MFC after: 1 month
Differential Revision: https://reviews.freebsd.org/D51663
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Migrate to OpenSSL 3.5 in advance of FreeBSD 15.0. OpenSSL 3.0 will be
EOL after 2026-09-07.
Approved by: philip (mentor)
Sponsored by: Alpha-Omega Beach Cleaning Project
Sponsored by: The FreeBSD Foundation
Differential revision: https://reviews.freebsd.org/D51613
|
| |\|
| |
| |
| |
| |
| | |
Approved by: philip (mentor)
Sponsored by: Alpha-Omega Beach Cleaning Project
Sponsored by: The FreeBSD Foundation
|
| |\|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This release incorporates the following bug fixes and mitigations:
- [CVE-2024-13176](https://www.openssl.org/news/vulnerabilities.html#CVE-2024-13176
- [CVE-2024-9143](https://www.openssl.org/news/vulnerabilities.html#CVE-2024-9143)
Release notes can be found at:
https://openssl-library.org/news/openssl-3.0-notes/index.html
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D49296
|
| |\|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This release incorporates the following bug fixes and mitigations:
- Fixed possible denial of service in X.509 name checks ([CVE-2024-6119])
- Fixed possible buffer overread in SSL_select_next_proto() ([CVE-2024-5535])
Release notes can be found at:
https://openssl-library.org/news/openssl-3.0-notes/index.html
Co-authored-by: gordon
MFC after: 1 week
Differential Revision: https://reviews.freebsd.org/D46602
Merge commit '108164cf95d9594884c2dcccba2691335e6f221b'
|
| |/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Fixed PKCS12 Decoding crashes ([CVE-2024-0727])
* Fixed Excessive time spent checking invalid RSA public keys
([CVE-2023-6237])
* Fixed POLY1305 MAC implementation corrupting vector registers on
PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129])
* Fix excessive time spent in DH check / generation with large Q
parameter value ([CVE-2023-5678])
Release notes can be found at
https://www.openssl.org/news/openssl-3.0-notes.html.
Approved by: emaste
MFC after: 3 days
Merge commit '9dd13e84fa8eca8f3462bd55485aa3da8c37f54a'
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=182044
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=167612
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=162911
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=160814
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=142425
|
| |
|
|
|
|
|
| |
part of recent releases.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=142421
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=127128
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=120631
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=111147
|
| |
|
|
|
|
|
| |
support for AES and OpenBSD's hardware crypto.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=109998
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=101615
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=100936
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=100928
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=89837
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=76866
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=72613
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=68651
|
| |
|
|
| |
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=59191
|
|
|
infringement reasons.
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=55714
|
