upgrade base OpenSSL 1.0.1 to 1.0.2

Takehiko NOZAKI reporter

Issue ~~#141~~ gcc-4.5 does not like fileno() to be unchecked
Issue ~~#142~~ Coverity analysis warning(unchecked returm)
Issue ~~#143~~ ARMv7 Cryptographic accelerator runtime detection
Issue ~~#144~~ CVE-2018-0739 Constructed ASN.1 types with a recursive definition could exceed the stack
Issue ~~#145~~ BIO_get_accept_socket()'s IPv6 support is broken
Issue ~~#146~~ CVE-2017-3738 rsaz_1024_mul_avx2 overflow bug on x86_64
Issue ~~#147~~ CVE-2017-3736 bn_sqrx8x_internal carry bug on x86_64
Issue ~~#148~~ gcc -fstack-protector + alloca(3)
Issue ~~#149~~ Fix mips asm to not use outdated stuff.
Issue ~~#150~~ CVE-2007-3108 related ifdef
Issue ~~#151~~ define OPENSSL_DISABLE_OLD_DES_SUPPORT to drop des_old.h its obsoleted API.
Issue ~~#152~~ avoid DES_KEY_SZ/DES_SCHEDULE_SZ definition between des.h and openssl/des.h
Issue ~~#153~~ enable opencrypto(9)'s hardware cryptodev engine support
Issue ~~#154~~ PowerPC hardware AES accelarator support
Issue ~~#155~~ enable hardware AES/GCM128 accelarator support on ARM
Issue ~~#156~~ [N**BSD-PR/42881] openssl sha384 broken. Returns 64 bytes instead of 48
Issue ~~#157~~ integer type portability and backward compatibility
Issue ~~#158~~ disable Hardware GCM128 accelaration Sparc 32bit
Issue ~~#159~~ build configuration on opensslconf.h
Issue ~~#160~~ [N**BSD-PR/24458] openssl.cnf cannot correctly do variable substitution
Issue ~~#161~~ NEED_CPUID_SETUP macro
Issue ~~#162~~ DONT_USE_SHA256_FROM_LIBC macro
Issue ~~#163~~ OPENSSL_rdtsc() uses non-atomic ops under 32bit PowerPC
Issue ~~#164~~ use arc4random(was: use poll(2) instead of select(2) to read /dev/urandom).
Issue ~~#165~~ if RAND_file_name() cannot find .rnd(PRNG seed file), use /dev/urandom instead.
Issue ~~#166~~ CVE-2006-2940 openssl public key DoS
Issue ~~#167~~ CVE-2018-0737 RSA key generation cache timing vulnerability
Issue ~~#168~~ Sparc asm label fix
Issue ~~#169~~ use native issetugid(3)
Issue ~~#170~~ CVE-2017-3735 Malformed X.509 IPAdressFamily could cause OOB read
Issue ~~#171~~ SSLv3 crash null pointer violation by unchecked buffer initialization
Issue ~~#172~~ NULL pointer dereference with SSL_MODE_RELEASE_BUFFERS flag
Issue ~~#173~~ CVE-2017-3737 Read/write after SSL object in error state
Issue ~~#174~~ use strl{cat,cpy}, snprintf instead of unsafe function.
Issue ~~#175~~ rename free_func -> freefunc to avoid zlib.h namespace conflict.
Issue ~~#176~~ use <unistd.h> instead of OPENSSL_UNISTD macro
Issue ~~#177~~ cleanup all testcase
Issue ~~#178~~ remove openss2n**bsd script (was: eliminate RCSID keyword)
Issue ~~#179~~ OPENSSL_API_COMPAT macro and sihm for OpenSSL-1.0.1 API.
Issue ~~#182~~ avoid to free illegal pointer

2019-07-09T09:07:33+00:00

Comments (3)

Takehiko NOZAKI reporter
see tnozaki-openssl branch
- 2019-07-05T08:07:05+00:00
Takehiko NOZAKI reporter
- Issue ~~#141~~ gcc-4.5 does not like fileno() to be unchecked
- Issue ~~#142~~ Coverity analysis warning(unchecked returm)
- Issue ~~#143~~ ARMv7 Cryptographic accelerator runtime detection
- Issue ~~#144~~ CVE-2018-0739 Constructed ASN.1 types with a recursive definition could exceed the stack
- Issue ~~#145~~ BIO_get_accept_socket()'s IPv6 support is broken
- Issue ~~#146~~ CVE-2017-3738 rsaz_1024_mul_avx2 overflow bug on x86_64
- Issue ~~#147~~ CVE-2017-3736 bn_sqrx8x_internal carry bug on x86_64
- Issue ~~#148~~ gcc -fstack-protector + alloca(3)
- Issue ~~#149~~ Fix mips asm to not use outdated stuff.
- Issue ~~#150~~ CVE-2007-3108 related ifdef
- Issue ~~#151~~ define OPENSSL_DISABLE_OLD_DES_SUPPORT to drop des_old.h its obsoleted API.
- Issue ~~#152~~ avoid DES_KEY_SZ/DES_SCHEDULE_SZ definition between des.h and openssl/des.h
- Issue ~~#153~~ enable opencrypto(9)'s hardware cryptodev engine support
- Issue ~~#154~~ PowerPC hardware AES accelarator support
- Issue ~~#155~~ enable hardware AES/GCM128 accelarator support on ARM
- Issue ~~#156~~ [N**BSD-PR/42881] openssl sha384 broken. Returns 64 bytes instead of 48
- Issue ~~#157~~ integer type portability and backward compatibility
- Issue ~~#158~~ disable Hardware GCM128 accelaration Sparc 32bit
- Issue ~~#159~~ build configuration on opensslconf.h
- Issue ~~#160~~ [N**BSD-PR/24458] openssl.cnf cannot correctly do variable substitution
- Issue ~~#161~~ NEED_CPUID_SETUP macro
- Issue ~~#162~~ DONT_USE_SHA256_FROM_LIBC macro
- Issue ~~#163~~ OPENSSL_rdtsc() uses non-atomic ops under 32bit PowerPC
- Issue ~~#164~~ use arc4random(was: use poll(2) instead of select(2) to read /dev/urandom).
- Issue ~~#165~~ if RAND_file_name() cannot find .rnd(PRNG seed file), use /dev/urandom instead.
- Issue ~~#166~~ CVE-2006-2940 openssl public key DoS
- Issue ~~#167~~ CVE-2018-0737 RSA key generation cache timing vulnerability
- Issue ~~#168~~ Sparc asm label fix
- Issue ~~#169~~ use native issetugid(3)
- Issue ~~#170~~ CVE-2017-3735 Malformed X.509 IPAdressFamily could cause OOB read
- Issue ~~#171~~ SSLv3 crash null pointer violation by unchecked buffer initialization
- Issue ~~#172~~ NULL pointer dereference with SSL_MODE_RELEASE_BUFFERS flag
- Issue ~~#173~~ CVE-2017-3737 Read/write after SSL object in error state
- Issue ~~#174~~ use strl{cat,cpy}, snprintf instead of unsafe function.
- Issue ~~#175~~ rename free_func -> freefunc to avoid zlib.h namespace conflict.
- Issue ~~#176~~ use <unistd.h> instead of OPENSSL_UNISTD macro
- Issue ~~#177~~ cleanup all testcase
- Issue ~~#178~~ remove openss2n**bsd script (was: eliminate RCSID keyword)
- Issue ~~#179~~ OPENSSL_API_COMPAT macro and sihm for OpenSSL-1.0.1 API.
- Issue ~~#182~~ avoid to free illegal pointer
- 2019-07-09T09:07:33+00:00
Takehiko NOZAKI reporter
- changed status to resolved
merged latest OpenSSL-1_0_2-stable(1.0.2v-dev), done.
- 2021-01-10T10:13:05+00:00
Log in to comment