提交 · 6e45e6288e9729ea2e7550062c04d2211be70335 · OpenHarmony / Third Party Openssl

26 4月, 2023 1 次提交

Fix type confusion in nc_match_single() · 6e45e628

由 Viktor Dukhovni 提交于 12月 13, 2022

This function assumes that if the "gen" is an OtherName, then the "base"
is a rfc822Name constraint. This assumption is not true in all cases.
If the end-entity certificate contains an OtherName SAN of any type besides
SmtpUtf8Mailbox and the CA certificate contains a name constraint of
OtherName (of any type), then "nc_email_eai" will be invoked, with the
OTHERNAME "base" being incorrectly interpreted as a ASN1_IA5STRING.

Reported by Corey Bonnell from Digicert.

CVE-2022-4203
Reviewed-by: NPaul Dale <pauli@openssl.org>
Reviewed-by: NHugo Landau <hlandau@openssl.org>
Reviewed-by: NTomas Mraz <tomas@openssl.org>
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I008cc36abe7c7957312525e5ee002fdc42737649

6e45e628

12 4月, 2023 25 次提交

Fix llvm-15 build error, compile libssl_openssl.z.so to the updater image for... · 579419cb

由 code4lala 提交于 4月 12, 2023

Fix llvm-15 build error, compile libssl_openssl.z.so to the updater image for wpa to use, ssl_config -> ssl_config_private
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>

579419cb

add -Wno-error=sign-compare · 616b235f

由 code4lala 提交于 3月 01, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I5007924c8986ac134db278f7694b5bfcfa84c515

616b235f

add -Wno-error=implicit-fallthrough · 7ad8066b

由 code4lala 提交于 3月 01, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I729658f16c6d6fade57f4c327bc3f16beee3f0e4

7ad8066b

format gn · 79d5eb67

由 code4lala 提交于 3月 01, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Ie496270d939f787d14670a7851dbde783b6a4335

79d5eb67

version is ohos version, not openssl version · 122f732f

由 code4lala 提交于 3月 01, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I5913041696f769307c08cf87c28ba70e7870465d

122f732f

C
rm useless build_all_generated files, update readme version to 3.0.7 · deb3172f
由 code4lala 提交于 2月 28, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Iac985d5c82924614240d81262888975e29fcb8f6
```
deb3172f

print openssl detecting platform info · 8e5a6084

由 code4lala 提交于 2月 28, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Ife869932de66a5f0f9e5f4671a7946ac98a08499

8e5a6084

C
openssl include dir -> private include and public include · a7977556
由 code4lala 提交于 2月 28, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: If65075f86690553d4318c6bc14b7790ec66fca48
```
a7977556

remove duplicate ssl/s3_cbc.c · 56888bc5

由 code4lala 提交于 2月 27, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Ie41407008ba50276a06b3f043b191f73c800b640

56888bc5

remove duplicate ssl/record/tls_pad.c · 9049c2cc

由 code4lala 提交于 2月 27, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I8be4f5c60df0ad52e0fc4abbb938f510a0cfffa8

9049c2cc

C
cflags all private, remove typo crypto/packet.c in libssl · c7e094db
由 code4lala 提交于 2月 25, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I9a08705b953a1efc1eba7532ca883a93c21bed39
```
c7e094db

define UNICODE only if mingw64 internal · d7ee0774

由 code4lala 提交于 2月 25, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Ifcfc694b49a61f5e70672e574e868ba0a907f664

d7ee0774

add -DWIN32_LEAN_AND_MEAN only for openssl internal · c4d62814

由 code4lala 提交于 2月 25, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Id1de7fb5568d390a0ad450481d48bdb78a0f9649

c4d62814

add Wall only for openssl internal · 4f024383

由 code4lala 提交于 2月 25, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I83ec360d829238be6afd3b4f3985d8dceac4888f

4f024383

remove -DWIN32_LEAN_AND_MEAN · 489955e8

由 code4lala 提交于 2月 25, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I67c01812a50086aa0c209d510e17d02ffcc9b4fa

489955e8

add -Wno-error=macro-redefined · 66a69a90

由 code4lala 提交于 2月 25, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I2e04e618c067af3635f1b18076e7817ae0a23557

66a69a90

libssl_static should not include crypto · f7ac99a6

由 code4lala 提交于 2月 24, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: I89fc88a46e22fdc619d1796a09718d89f88857bd

f7ac99a6

libssl_shared ok · 99b31f2d

由 code4lala 提交于 2月 24, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Ie105d84584e24b23922d15deb9256b0dac0e8a57

99b31f2d

libcrypto_shared ok · 45b8cd35

由 code4lala 提交于 2月 24, 2023

Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
Change-Id: Ia207049b9291a11846e5025cec461e4d76c25699

45b8cd35

C
crypto ok · f87bff7a
由 code4lala 提交于 2月 23, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
```
f87bff7a
C
add huawei modify · a86a483e
由 code4lala 提交于 2月 22, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
```
a86a483e
C
add files diff -r -q tag and tgz release · 056887e5
由 code4lala 提交于 2月 22, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
```
056887e5

add make build_all_generated for linux-aarch64 linux-armv4 linux-x86_64... · 1606c3a1

由 code4lala 提交于 2月 22, 2023

add make build_all_generated for linux-aarch64 linux-armv4 linux-x86_64 mingw64, ignore test and doc
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>

1606c3a1

C
tar -xf openssl-openssl-3.0.7.tar.gz · a70d3a3d
由 code4lala 提交于 2月 22, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
```
a70d3a3d
C
rm all · 817dba00
由 code4lala 提交于 4月 12, 2023
```
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>
```
817dba00

31 3月, 2023 1 次提交
- O
  !97 fix CVE-2023-0465 CVE-2023-0466 · 1e4c2629
  由 openharmony_ci 提交于 3月 31, 2023
```
Merge pull request !97 from code4lala/fix-CVE-2023-0465-CVE-2023-0466
```
  1e4c2629
29 3月, 2023 4 次提交

O
!94 Fix llvm-15 build error · d9a0fb98
由 openharmony_ci 提交于 3月 29, 2023
```
Merge pull request !94 from yinchuang/fix_llvm15_openssl
```
d9a0fb98

Fix documentation of X509_VERIFY_PARAM_add0_policy() · 131d2c9f

由 Tomas Mraz 提交于 3月 21, 2023

The function was incorrectly documented as enabling policy checking.

Fixes: CVE-2023-0466
Reviewed-by: NMatt Caswell <matt@openssl.org>
Reviewed-by: NPaul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20564)
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>

131d2c9f

Ensure that EXFLAG_INVALID_POLICY is checked even in leaf certs · c3df4d3e

由 Matt Caswell 提交于 3月 07, 2023

Even though we check the leaf cert to confirm it is valid, we
later ignored the invalid flag and did not notice that the leaf
cert was bad.

Fixes: CVE-2023-0465
Reviewed-by: NHugo Landau <hlandau@openssl.org>
Reviewed-by: NTomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20588)
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>

c3df4d3e

Fix llvm-15 build error · c167acab

由 yinchuang 提交于 3月 27, 2023

Signed-off-by: Nyinchuang <yinchuang@huawei.com>
Change-Id: Ida0b31153d9a59d362a23338a5bf547524ec7dcf

c167acab

27 3月, 2023 2 次提交
- O
  !92 fix CVE-2023-0464 · e7c248d9
  由 openharmony_ci 提交于 3月 27, 2023
```
Merge pull request !92 from code4lala/fix-CVE-2023-0464
```
  e7c248d9
- O
  !93 Add the openssl to updater image · d4cd643b
  由 openharmony_ci 提交于 3月 27, 2023
```
Merge pull request !93 from jiangdi/master
```
  d4cd643b
24 3月, 2023 3 次提交

J
delete unnecessary spaces. · 6475a277
由 jiangdi 提交于 3月 24, 2023
```
Signed-off-by: Njiangdi <jiangdi11@huawei.com>
```
6475a277
J
compile libssl_openssl.z.so to the updater image for wpa to use. · bf15d390
由 jiangdi 提交于 3月 24, 2023
```
Signed-off-by: Njiangdi <jiangdi11@huawei.com>
```
bf15d390

x509: excessive resource use verifying policy constraints · f4030add

由 Pauli 提交于 3月 08, 2023

A security vulnerability has been identified in all supported versions
of OpenSSL related to the verification of X.509 certificate chains
that include policy constraints.  Attackers may be able to exploit this
vulnerability by creating a malicious certificate chain that triggers
exponential use of computational resources, leading to a denial-of-service
(DoS) attack on affected systems.

Fixes CVE-2023-0464
Reviewed-by: NTomas Mraz <tomas@openssl.org>
Reviewed-by: NShane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/20569)
Signed-off-by: Ncode4lala <fengziteng2@huawei.com>

f4030add

23 3月, 2023 1 次提交
- O
  !91 Ignore warnings for llvm15 upgrade · d5f26936
  由 openharmony_ci 提交于 3月 23, 2023
```
满足合入条件、但并发量过大；需要手动合入！
```
  d5f26936
06 3月, 2023 1 次提交

Ignore warnings for llvm15 · bd98e559

由 guzhihao4 提交于 3月 06, 2023

Issue: #I6ID6E
Signed-off-by: Nguzhihao4 <guzhihao4@huawei.com>
Change-Id: I4452c47fd141b3f995f9fa212c8590671edd7e74

bd98e559

10 2月, 2023 2 次提交

O
!78 fix CVE · 2d17631f
由 openharmony_ci 提交于 2月 10, 2023
```
Merge pull request !78 from code4lala/master
```
2d17631f

add rsa_sup_mul.c from CVE-2022-4304 fix... · 3a5e8638

由 code4lala 提交于 2月 10, 2023

add rsa_sup_mul.c from CVE-2022-4304 fix https://github.com/openssl/openssl/commit/43d8f88511991533f53680a751e9326999a6a31fSigned-off-by: Ncode4lala <fengziteng2@huawei.com>

3a5e8638

OpenHarmony / Third Party Openssl 1 年多 前同步成功

OpenHarmony / Third Party Openssl
1 年多前同步成功