gitweb.dragonflybsd.org Git - dragonfly.git/commit

author	Daniel Fojt <df@neosystem.org>
	Tue, 3 Nov 2020 18:37:17 +0000 (19:37 +0100)
committer	Daniel Fojt <df@neosystem.org>
	Thu, 5 Nov 2020 10:05:07 +0000 (11:05 +0100)
commit	8edacedfc4a3bc9ac4f463b53f61cb4a6eb8d031
tree	fb9bd7343763fcd581853e83725d3aab06341172	tree \| snapshot
parent	f015dc589551ad8356ba343b70d1889885249ae4	commit \| diff

vendor/libressl: upgrade from 3.1.4 to 3.2.2

Summary of notable changes:

  * new TLSv1.3 implementation enabled by default for both client
    and server

  * new X509 certificate chain validator that correctly handles
    multiple paths through intermediate certificates

  * new name constraints verification implementation which passes
    the bettertls.com certificate validation check suite

  * numerous leaks and out-of-bounds write fixed

  * many improvements, refactoring, optimizations and code cleanups

See ChangeLog for details.

116 files changed:

crypto/libressl/ChangeLog		diff \| blob \| blame \| history
crypto/libressl/VERSION		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/apps.c		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/apps.h		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/cert.pem		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/ocsp.c		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/openssl.1		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/req.c		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/s_client.c		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/s_server.c		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/verify.c		diff \| blob \| blame \| history
crypto/libressl/apps/openssl/x509.c		diff \| blob \| blame \| history
crypto/libressl/crypto/asn1/a_bitstr.c		diff \| blob \| blame \| history
crypto/libressl/crypto/asn1/x_attrib.c		diff \| blob \| blame \| history
crypto/libressl/crypto/asn1/x_info.c		diff \| blob \| blame \| history
crypto/libressl/crypto/bn/bn_rand.c		diff \| blob \| blame \| history
crypto/libressl/crypto/cms/cms_err.c		diff \| blob \| blame \| history
crypto/libressl/crypto/ec/ec_curve.c		diff \| blob \| blame \| history
crypto/libressl/crypto/evp/e_aes.c		diff \| blob \| blame \| history
crypto/libressl/crypto/evp/evp_pbe.c		diff \| blob \| blame \| history
crypto/libressl/crypto/gost/gost2814789.c		diff \| blob \| blame \| history
crypto/libressl/crypto/gost/gost_err.c		diff \| blob \| blame \| history
crypto/libressl/crypto/gost/gostr341001_ameth.c		diff \| blob \| blame \| history
crypto/libressl/crypto/gost/gostr341001_params.c		diff \| blob \| blame \| history
crypto/libressl/crypto/objects/obj_dat.h		diff \| blob \| blame \| history
crypto/libressl/crypto/pem/pem_info.c		diff \| blob \| blame \| history
crypto/libressl/crypto/pkcs12/pk12err.c		diff \| blob \| blame \| history
crypto/libressl/crypto/pkcs7/pkcs7err.c		diff \| blob \| blame \| history
crypto/libressl/crypto/ui/ui_lib.c		diff \| blob \| blame \| history
crypto/libressl/crypto/x509/ext_dat.h	[moved from crypto/libressl/crypto/x509v3/ext_dat.h with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/pcy_cache.c	[moved from crypto/libressl/crypto/x509v3/pcy_cache.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/pcy_data.c	[moved from crypto/libressl/crypto/x509v3/pcy_data.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/pcy_int.h	[moved from crypto/libressl/crypto/x509v3/pcy_int.h with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/pcy_lib.c	[moved from crypto/libressl/crypto/x509v3/pcy_lib.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/pcy_map.c	[moved from crypto/libressl/crypto/x509v3/pcy_map.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/pcy_node.c	[moved from crypto/libressl/crypto/x509v3/pcy_node.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/pcy_tree.c	[moved from crypto/libressl/crypto/x509v3/pcy_tree.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_akey.c	[moved from crypto/libressl/crypto/x509v3/v3_akey.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_akeya.c	[moved from crypto/libressl/crypto/x509v3/v3_akeya.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_alt.c	[moved from crypto/libressl/crypto/x509v3/v3_alt.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_bcons.c	[moved from crypto/libressl/crypto/x509v3/v3_bcons.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_bitst.c	[moved from crypto/libressl/crypto/x509v3/v3_bitst.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_conf.c	[moved from crypto/libressl/crypto/x509v3/v3_conf.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_constraints.c	[new file with mode: 0644]	blob
crypto/libressl/crypto/x509/x509_cpols.c	[moved from crypto/libressl/crypto/x509v3/v3_cpols.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_crld.c	[moved from crypto/libressl/crypto/x509v3/v3_crld.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_enum.c	[moved from crypto/libressl/crypto/x509v3/v3_enum.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_err.c		diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_extku.c	[moved from crypto/libressl/crypto/x509v3/v3_extku.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_genn.c	[moved from crypto/libressl/crypto/x509v3/v3_genn.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_ia5.c	[moved from crypto/libressl/crypto/x509v3/v3_ia5.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_info.c	[moved from crypto/libressl/crypto/x509v3/v3_info.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_int.c	[moved from crypto/libressl/crypto/x509v3/v3_int.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_internal.h	[new file with mode: 0644]	blob
crypto/libressl/crypto/x509/x509_issuer_cache.c	[new file with mode: 0644]	blob
crypto/libressl/crypto/x509/x509_issuer_cache.h	[new file with mode: 0644]	blob
crypto/libressl/crypto/x509/x509_lib.c	[moved from crypto/libressl/crypto/x509v3/v3_lib.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_ncons.c	[moved from crypto/libressl/crypto/x509v3/v3_ncons.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_ocsp.c	[moved from crypto/libressl/crypto/x509v3/v3_ocsp.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_pci.c	[moved from crypto/libressl/crypto/x509v3/v3_pci.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_pcia.c	[moved from crypto/libressl/crypto/x509v3/v3_pcia.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_pcons.c	[moved from crypto/libressl/crypto/x509v3/v3_pcons.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_pku.c	[moved from crypto/libressl/crypto/x509v3/v3_pku.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_pmaps.c	[moved from crypto/libressl/crypto/x509v3/v3_pmaps.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_prn.c	[moved from crypto/libressl/crypto/x509v3/v3_prn.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_purp.c	[moved from crypto/libressl/crypto/x509v3/v3_purp.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_skey.c	[moved from crypto/libressl/crypto/x509v3/v3_skey.c with 98% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_sxnet.c	[moved from crypto/libressl/crypto/x509v3/v3_sxnet.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_utl.c	[moved from crypto/libressl/crypto/x509v3/v3_utl.c with 99% similarity]	diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_verify.c	[new file with mode: 0644]	blob
crypto/libressl/crypto/x509/x509_vfy.c		diff \| blob \| blame \| history
crypto/libressl/crypto/x509/x509_vpm.c		diff \| blob \| blame \| history
crypto/libressl/crypto/x509v3/v3err.c	[deleted file]	blob \| blame \| history
crypto/libressl/include/openssl/obj_mac.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/opensslfeatures.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/opensslv.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/ssl.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/ssl3.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/tls1.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/ui.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/x509_verify.h	[new file with mode: 0644]	blob
crypto/libressl/include/openssl/x509_vfy.h		diff \| blob \| blame \| history
crypto/libressl/include/openssl/x509v3.h		diff \| blob \| blame \| history
crypto/libressl/ssl/bs_cbb.c		diff \| blob \| blame \| history
crypto/libressl/ssl/d1_both.c		diff \| blob \| blame \| history
crypto/libressl/ssl/d1_lib.c		diff \| blob \| blame \| history
crypto/libressl/ssl/d1_pkt.c		diff \| blob \| blame \| history
crypto/libressl/ssl/s3_cbc.c		diff \| blob \| blame \| history
crypto/libressl/ssl/s3_lib.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_both.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_cert.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_ciph.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_ciphers.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_clnt.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_lib.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_locl.h		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_methods.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_pkt.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_sess.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_sigalgs.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_srvr.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_tlsext.c		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_tlsext.h		diff \| blob \| blame \| history
crypto/libressl/ssl/ssl_versions.c		diff \| blob \| blame \| history
crypto/libressl/ssl/t1_enc.c		diff \| blob \| blame \| history
crypto/libressl/ssl/t1_lib.c		diff \| blob \| blame \| history
crypto/libressl/ssl/tls12_record_layer.c	[new file with mode: 0644]	blob
crypto/libressl/ssl/tls13_client.c		diff \| blob \| blame \| history
crypto/libressl/ssl/tls13_handshake.c		diff \| blob \| blame \| history
crypto/libressl/ssl/tls13_internal.h		diff \| blob \| blame \| history
crypto/libressl/ssl/tls13_legacy.c		diff \| blob \| blame \| history
crypto/libressl/ssl/tls13_lib.c		diff \| blob \| blame \| history
crypto/libressl/ssl/tls13_record.c		diff \| blob \| blame \| history
crypto/libressl/ssl/tls13_record_layer.c		diff \| blob \| blame \| history
crypto/libressl/ssl/tls13_server.c		diff \| blob \| blame \| history
crypto/libressl/tls/tls.c		diff \| blob \| blame \| history

DragonFly Project Source

RSS Atom