[OpenSSL-3.0LTS] upgrade base OpenSSL 1.0.2 → 3.0LTS

Comments (5)

1. 

   Takehiko NOZAKI reporter

   these pacthes are TNF local 1.0.1 modification that applied to my N6 1.0.2:

   • Issue #153 enable opencrypto(9)'s hardware cryptodev engine support
   • Issue #156 [N**BSD-PR/42881] openssl sha384 broken. Returns 64 bytes instead of 48
   • Issue #159 build configuration on opensslconf.h
   • Issue #160 [N**BSD-PR/24458] openssl.cnf cannot correctly do variable substitution
   • Issue #161 NEED_CPUID_SETUP macro
   • Issue #162 DONT_USE_SHA256_FROM_LIBC macro
   • Issue #164 use arc4random(was: use poll(2) instead of select(2) to read /dev/urandom) - replaced by getentropy(3)
   • Issue #165 if RAND_file_name() cannot find .rnd(PRNG seed file), use /dev/urandom instead.
   • Issue #177 cleanup all testcase
   • Issue #179 OPENSSL_API_COMPAT macro and sihm for OpenSSL-1.0.1 API.

   ‌

   • 2023-12-23T10:02:42+00:00
2. 

   Takehiko NOZAKI reporter

   following patches is deprecated, already fixed in upstream.

   ‌

   • Issue #142 Coverity analysis warning(unchecked returm)

   • Issue #163 OPENSSL_rdtsc() uses non-atomic ops under 32bit PowerPC

   ‌

   • 2023-12-23T10:03:45+00:00
3. 

   Takehiko NOZAKI reporter

   here’s TNF local modification for opebssl-3.0.12

   • Issue #370 - TNF HEAD enables ec_nistp_64_gcc_128 on alpha/ia64/powerpc64
   • Issue #371 - TNF HEAD's 32bit arch disables _atomic* in threads_pthread.c by -DBROKEN_CLANG_ATOMICS
   • Issue #376 - automatically generate N6's Makefile from configdata\.pm
   • Issue #378 - TNF local patch prototype change app_bail_out()
   • Issue #379 - TNF local patch respect -Wcast-qual
   • Issue #380 - bsd\.lib\.mk don't support build shared library from multipile lib*_pic.a archive
   • Issue #381 - TNF local patch crypto/ppccap.c - check sysctl machdep.fpu_present value
   • Issue #382 - TNF local patch crypto/sparccpuid.S - avoid illegal instruction trap
   • Issue #384 - TNF local patch use %u instead %lu for DWORD GetCurrentProcessId()
   • Issue #385 - TNF local patch change IDEA_encrypt() prototype and using IDEA_INT instead of long
   • Issue #386 - TNF local patch use MD5_LONG instead of unsigned long
   • Issue #387 - TNF local patch change RC2_encrypt() prototype and use uint32_t instead of unsigned long
   • Issue #388 - TNF local patch change RC5_{en,de}crypt() prototype and use RC5_32_INT instead of unsigned long
   • Issue #389 TNF local patch - shut up lint(1) warning
   • Issue #390 TNF local patch - use snprintf(3) instead of unsafe sprintf(3)
   • Issue #391 DES API marked as obsolete(OSSL_DEPRECATEDIN_3_0) brokes building libtelnet
   • Issue #392 TNF local patch - use SHA* libc implementation

   ‌

   • 2023-12-30T09:12:39+00:00
4. 

   Takehiko NOZAKI reporter

   following patch applied:

   • Issue #148 gcc -fstack-protector + alloca(3)
   • Issue #149 Fix mips asm to not use outdated stuff.
   • Issue #158 disable Hardware GCM128 accelaration Sparc 32bit
   • Issue #168 Sparc asm label fix
   • Issue #169 use native issetugid(3)

   ‌

   • 2024-01-03T10:06:47+00:00
5. 

   Takehiko NOZAKI reporter

   • changed title to [OpenSSL-3.0LTS] upgrade base OpenSSL 1.0.2 → 3.0LTS

   • 2024-01-03T15:05:16+00:00
6. Log in to comment