cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
109,029 Commits 1 Branch 0 Tags
Commit Graph

18 Commits

Author SHA1 Message Date
sthen
b4c0410c58 update to mbedtls-2.2.1 2016-01-06 10:59:59 +00:00
benoit
6f442fdbcd Update to mbedtls-2.2.0. 2015-11-11 21:01:44 +00:00
benoit
301ee3a6cf Update to polarssl/mbedtls-2.1.2. 2015-10-18 13:59:15 +00:00
benoit
2471cbfe06 Update to polarssl/mbedtls-2.1.1. 2015-09-21 11:44:50 +00:00
sthen
f315bdd8dd update to polarssl/mbedtls-2.1.0 2015-09-12 20:30:00 +00:00
sthen
d1e2572c6a update HOMEPAGE/MASTER_SITES (polarssl -> tls.mbed.org) 2015-06-29 20:33:28 +00:00
benoit
0b11a88e14 Update to mbedtls-1.3.11. 
ok sthen@
 2015-06-10 09:28:08 +00:00
sthen
2538df1cc8 fix paths 2015-02-11 14:07:29 +00:00
sthen
7bf01e0baa missed cvs rm 2015-02-11 11:13:27 +00:00
sthen
3215911fe5 Update to mbedtls 1.3.10 (the name changed). This version is still under GPL 
but a forthcoming version moves to the Apache license.
 2015-02-10 12:21:55 +00:00
sthen
86fd5c1df2 Patch PolarSSL for CVE-2015-1182. 
An error during parsing of an ASN.1 sequence (triggerable during certificate
parsing) results in an uninitialized pointer being freed.

https://polarssl.org/tech-updates/security-advisories/polarssl-security-advisory-2014-04
 2015-01-20 09:47:47 +00:00
dcoppa
f1e155f02f Respect our CFLAGS and remove default optimizations 2014-11-05 09:40:05 +00:00
sthen
c8c02a984b update to polarssl 1.3.9, security fixes (but note that nothing in the ports 
tree currently uses this library)

   * Lowest common hash was selected from signature_algorithms extension in
     TLS 1.2 (found by Darren Bane) (introduced in 1.3.8).
   * Remotely-triggerable memory leak when parsing some X.509 certificates
     (server is not affected if it doesn't ask for a client certificate)
     (found using Codenomicon Defensics).
   * Remotely-triggerable memory leak when parsing crafted ClientHello
     (not affected if ECC support was compiled out) (found using Codenomicon
     Defensics).
 2014-11-04 19:45:41 +00:00
jca
624c0d6cb7 SECURITY update to polarssl-1.3.8 
- includes a fix for CVE-2014-4911 (DoS)
- delete patches committed upstream
- unbreak sparc64
- new features, see ChangeLog
Regress tests pass on amd64 and sparc64.
ok sthen@

Note that no port uses it yet.
 2014-08-18 20:50:28 +00:00
sthen
6dff872b6a fix the name of examples/polarssl/README, found by naddy 2014-04-19 14:40:51 +00:00
sthen
eb63e31170 Missed PLIST from the commit, pointed out by dcoppa@ 2014-04-18 21:54:16 +00:00
sthen
2f7dcdba72 Joachim Schipper points out that the sample programs aren't great, so move 
them out of bin to share/examples and add a README. Update the BROKEN-sparc64
comment as I've also checked with gcc4.8 now.
 2014-04-18 20:51:48 +00:00
sthen
f13e34f027 import polarssl to ports, joint work with me, Joachim Schipper, dcoppa, benoit, 
testing also from florian@
 2014-04-18 11:37:02 +00:00