Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | main/openssl: support crosscompiling, arm and musl | Timo Teräs | 2013-07-08 | 2 | -2/+36 |
| | |||||
* | main/openssl: fix openssl tools default CApath | Timo Teräs | 2013-06-15 | 2 | -5/+111 |
| | | | | Apply patch from openssl rt. | ||||
* | main/openssl: update padlock sha1 patch | Timo Teräs | 2013-03-05 | 2 | -5/+5 |
| | | | | | | | | | Add EVP_MD_FLAG_PKEY_METHOD_SIGNATURE to padlock_sha1_md to fix DSA/SHA1 verification in certain cases. Seems that NID_sha1 instead of NID_dss is used sometimes incorrectly, and this seems to be the workaround regular SHA1 code does too. Suggested-by: Daniel Mansfield <daniel.mansfield@unsw.edu.au> | ||||
* | main/openssl: upgrade to 1.0.1e | Natanael Copa | 2013-02-12 | 2 | -81/+5 |
| | |||||
* | main/openssl: fix regression | Natanael Copa | 2013-02-08 | 2 | -1/+95 |
| | | | | http://marc.info/?t=136018837600003&r=1&w=2 | ||||
* | main/openssl: eglibc update verioned symbols | Carlo Landmeter | 2013-02-07 | 2 | -2/+57 |
| | |||||
* | main/openssl: security upgrade to 1.0.1d ↵ | Natanael Copa | 2013-02-06 | 1 | -3/+3 |
| | | | | | | (CVE-2013-0169,CVE-2012-2686,CVE-2013-0166) fixes #1591 | ||||
* | main/openssl: add versioned symbols | Carlo Landmeter | 2013-01-04 | 2 | -7/+4692 |
| | | | | when building on eglibc we need versioned symbols | ||||
* | main/openssl: add ircv3 tls-3.1 extension support to s_client | William Pitcock | 2012-09-22 | 2 | -2/+60 |
| | |||||
* | main/openssl: refresh hmac/oneshot and padlock patches | Timo Teräs | 2012-08-02 | 5 | -67/+83 |
| | | | | | * fixed hmac oneshot flag to work as expected * renamed the patch series, and rebased against 1.0.1c | ||||
* | main/openssl: fix padlock sha1/256 oneshot finalizing update | Timo Teräs | 2012-08-02 | 2 | -4/+4 |
| | | | | | | We want to handle bytes upto next block boundary, to work with hardware from block boundary. The code incorrectly fed just the amount of bytes in the block. | ||||
* | main/openssl: security upgrade to 1.0.1c (CVE-2012-2333) | Natanael Copa | 2012-05-14 | 1 | -2/+2 |
| | | | | | fixes #1151 (cherry picked from commit 1831053bb87f432f0d45ccd9f7a368fc885a1d64) | ||||
* | main/openssl: upgrade to 1.0.1b | Natanael Copa | 2012-04-26 | 1 | -2/+2 |
| | |||||
* | main/openssl: security upgrade to 1.0.1a (CVE-2012-2110) | Natanael Copa | 2012-04-23 | 1 | -2/+2 |
| | | | | fixes #1107 | ||||
* | main/openssl: upgrade to 1.0.1 | Timo Teräs | 2012-03-28 | 3 | -398/+4 |
| | | | | | | | Remove the unneeded 0002-apps-speed-fix; the speed utility can now measure evp speeds with -evp flag. Padlock autoloading patch is rebased. | ||||
* | main/openssl: upgrade to 1.0.0h | Natanael Copa | 2012-03-13 | 1 | -2/+2 |
| | |||||
* | main/openssl: security upgrade to 1.0.0g (CVE-2012-0050) | Natanael Copa | 2012-01-19 | 1 | -2/+2 |
| | | | | fixes #935 | ||||
* | main/openssl: security upgrade to 1.0.0f | Natanael Copa | 2012-01-05 | 1 | -2/+2 |
| | | | | | | | | | | | CVE-2011-4108 CVE-2011-4109 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2012-0027 fixes #893 | ||||
* | main/openssl: security upgrade to 1.0.0e (CVE-2011-3207, CVE-2011-3210) | Natanael Copa | 2011-09-06 | 1 | -2/+2 |
| | |||||
* | main/openssl: update to 1.0.0d | Timo Teräs | 2011-02-09 | 1 | -2/+2 |
| | | | | * contains security fix to CVE-2011-0014 | ||||
* | Set all packages with arch="x86 x86_64" to arch="all". | William Pitcock | 2011-01-13 | 1 | -1/+1 |
| | |||||
* | main/*: add arch | Natanael Copa | 2010-12-13 | 1 | -0/+1 |
| | |||||
* | main/openssl: security update to 1.0.0c | Timo Teräs | 2010-12-03 | 1 | -2/+2 |
| | | | | | | | | - Fix for security issue CVE-2010-4180 - Fix for CVE-2010-4252 - Fix mishandling of absent EC point format extension. - Fix various platform compilation issues. - Corrected fix for security issue CVE-2010-3864. | ||||
* | main/openssl: specify libdir | Natanael Copa | 2010-11-23 | 1 | -0/+1 |
| | | | | so we avoid /usr/lib64 on x86_64 | ||||
* | main/openssl: upgrade to 1.0.0b and claim maintainership | Timo Teräs | 2010-11-17 | 3 | -23/+9 |
| | | | | | | * upgrade to 1.0.0b which has security fixes * update patch which did not apply anymore * delete patch merged upstream | ||||
* | main/openssl: fix double free. cve-2010-2939 | Natanael Copa | 2010-10-08 | 2 | -2/+16 |
| | |||||
* | main/openssl: -dev package needs zlib-dev | Natanael Copa | 2010-08-31 | 1 | -1/+2 |
| | |||||
* | main/openssl: refresh padlock patches | Timo Teräs | 2010-07-28 | 6 | -94/+377 |
| | | | | The new feature is support for VIA Nano Padlock in 64-bit mode. | ||||
* | Merge remote branch 'alpine/master' | Andrew Manison | 2010-06-19 | 5 | -11/+1220 |
|\ | | | | | | | | | Conflicts: main/openssl/APKBUILD | ||||
| * | main/openssl: add padlock sha support, autoload dynamic padlock | Timo Teräs | 2010-06-04 | 5 | -2/+1218 |
| | | | | | | | | | | | | | | | | | | | | | | | | Add new version of padlock patches which enable: - limited support of VIA C7 SHA acceleration - full support for VIA Nano SHA acceleration Openssl HMAC core is also patched to take full performance out of padlock. Speed application is updated for measuring hmac(sha1). Padlock was moved to be dynamic engine in openssl-1.0.0. So add some code that losfd automatically that engine. | ||||
| * | main/openssl: upgrade to 1.0.0a | Natanael Copa | 2010-06-01 | 1 | -9/+2 |
| | | |||||
* | | Fixes for total repository build. | Andrew Manison | 2010-06-11 | 1 | -1/+1 |
| | | |||||
* | | Deleted old patch file. | Andrew Manison | 2010-06-01 | 1 | -821/+0 |
|/ | |||||
* | main/openssl: upgrade to 1.0.0 | Natanael Copa | 2010-05-14 | 3 | -85/+1362 |
| | | | | and introduce libssl1.0 and libcrypto1.0 packages | ||||
* | main/[various]: bump pkgrel to force rebuild against nptl | Natanael Copa | 2010-05-04 | 1 | -1/+1 |
| | |||||
* | main/openssl: upgrade to 0.9.8n | Natanael Copa | 2010-03-30 | 1 | -2/+2 |
| | |||||
* | main/openssl: upgrade to 0.9.8m | Natanael Copa | 2010-03-12 | 6 | -249/+16 |
| | |||||
* | main/openssl: security patches | Natanael Copa | 2009-12-09 | 6 | -2/+241 |
| | | | | | | | | | * CVE-2009-1377 * CVE-2009-1378 * CVE-2009-1379 * CVE-2009-1387 * CVE-2009-2409 * CVE-2009-3555 | ||||
* | main/openssl: upgrade to 0.9.8l | Natanael Copa | 2009-11-09 | 1 | -3/+3 |
| | |||||
* | main/openssl: enable optimized montgomery multiplication | Timo Teras | 2009-08-20 | 1 | -2/+2 |
| | | | | gives about 2x performance improvement on sse enabled chips. | ||||
* | main/openssl: the libcrypto subpackage replaces openssl for upgrades | Natanael Copa | 2009-08-06 | 1 | -1/+2 |
| | |||||
* | main/openssl: fix random padlock sha1 breakage | Timo Teras | 2009-07-30 | 2 | -14/+17 |
| | | | | | | | fix copying of oneshot sha1 context. also decrease the size of "small buffer", to make context smaller (and context copy faster in most cases); it should be still enough to catch most hmac operations. | ||||
* | main/openssl: update checksum | Natanael Copa | 2009-07-27 | 1 | -1/+1 |
| | |||||
* | main/openssl: fix padlock patch | Timo Teras | 2009-07-27 | 2 | -238/+159 |
| | | | | | | | | there was a bug sha context copying, that caused all hmac users (and possibly others) to crash. also implemented a third intermediate hashing mode with small buffer: it'll speed up hashing in most cases considerably (packets / certificates to be hashed are not usually too long). | ||||
* | move core/* to main/ | Natanael Copa | 2009-07-23 | 4 | -0/+1036 |
added maintainer to several packages as well |