src, branch vendor/openssl/0.9.8i

src, branch vendor/openssl/0.9.8i FreeBSD source tree https://cgit-dev.freebsd.org/src/atom?h=vendor%2Fopenssl%2F0.9.8i 2008-09-21T14:56:30Z Vendor import of OpenSSL 0.9.8i. 2008-09-21T14:56:30Z Simon L. B. Nielsen simon@FreeBSD.org 2008-09-21T14:56:30Z urn:sha1:bb1499d2aac1d25a95b8573ff425751f06f159e1 - Remove files which aren't in the vendor distribution anymore. 2008-09-21T14:30:38Z Simon L. B. Nielsen simon@FreeBSD.org 2008-09-21T14:30:38Z urn:sha1:ee266f1253f9cc49430572463d26f72910dfb49e - Remove all of include as there is only the openssl subdir with symlinks (which were always removed). - Change FREEBSD-Xlist so it can be used as input to tar(1). 2008-09-21T14:15:02Z Simon L. B. Nielsen simon@FreeBSD.org 2008-09-21T14:15:02Z urn:sha1:ecd6bb9f2e791c39f7a95ff77f23fc33446c924e Remove files from vendor tree which were not part of OpenSSL 0.9.8e 2008-09-21T14:12:30Z Simon L. B. Nielsen simon@FreeBSD.org 2008-09-21T14:12:30Z urn:sha1:11bac091f5e8d9f8137f53dbdc1866e325f5e8b6 (last vendor import). The file were removed in different earlier releases, but were not removed from the CVS vendor branch at the time. The vendor area is the proper home for these files now. 2008-09-21T13:18:25Z Simon L. B. Nielsen simon@FreeBSD.org 2008-09-21T13:18:25Z urn:sha1:9d8854235be91bc390d1722ec8151ae08a9efb34 Disable keyword expansion on vendor tree. 2008-09-21T11:02:23Z Simon L. B. Nielsen simon@FreeBSD.org 2008-09-21T11:02:23Z urn:sha1:3933877864a97f09b1ee06de61115e6f6d4f302d Flatten OpenSSL vendor tree. 2008-08-23T10:51:00Z Simon L. B. Nielsen simon@FreeBSD.org 2008-08-23T10:51:00Z urn:sha1:c4a78426bef17a0a7c81195c2b2399e7441f14ad Import DTLS security fix from upstream OpenSSL_0_9_8-stable branch. 2007-10-18T20:19:33Z Simon L. B. Nielsen simon@FreeBSD.org 2007-10-18T20:19:33Z urn:sha1:a0ddfe4e7233d81e88a86217b7653708db2720fa From the OpenSSL advisory: Andy Polyakov discovered a flaw in OpenSSL's DTLS implementation which could lead to the compromise of clients and servers with DTLS enabled. DTLS is a datagram variant of TLS specified in RFC 4347 first supported in OpenSSL version 0.9.8. Note that the vulnerabilities do not affect SSL and TLS so only clients and servers explicitly using DTLS are affected. We believe this flaw will permit remote code execution. Security: CVE-2007-4995 Security: http://www.openssl.org/news/secadv_20071012.txt Import fix from upstream OpenSSL_0_9_8-stable branch: 2007-03-15T20:26:26Z Simon L. B. Nielsen simon@FreeBSD.org 2007-03-15T20:26:26Z urn:sha1:c30e4c61747efa38a51b4f5848b597da341fd0cd EVP_CIPHER_CTX_key_length() should return the set key length in the EVP_CIPHER_CTX structure which may not be the same as the underlying cipher key length for variable length ciphers. This fixes problems in OpenSSH using some ciphers, and possibly other applications. See also: http://bugzilla.mindrot.org/show_bug.cgi?id=1291 Vendor import of OpenSSL 0.9.8e. 2007-03-15T20:03:30Z Simon L. B. Nielsen simon@FreeBSD.org 2007-03-15T20:03:30Z urn:sha1:5471f83ea72e251ea1f0d04428878a74347efa0f