Date: Thu, 7 Dec 2017 19:59:11 +0000 (UTC) From: Bernard Spil <brnrd@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org Subject: svn commit: r455752 - in branches/2017Q4/security/openssl: . files Message-ID: <201712071959.vB7JxBPV092425@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: brnrd Date: Thu Dec 7 19:59:11 2017 New Revision: 455752 URL: https://svnweb.freebsd.org/changeset/ports/455752 Log: MFH: r453409 r455706 security/openssl: Unbreak build with No-SSLv3 - Importing patch from upstream PR: 223388 Submitted by: tijl Reported by: Laurence Parry <greenreaper@hotmail.com> security/openssl: Update to 1.0.2n - Remove patch now included upstream - Include post-release patch for clang build error Security: 3bb451fc-db64-11e7-ac58-b499baebfeaf Approved by: ports-secteam (feld) Added: branches/2017Q4/security/openssl/files/patch-ssl_fatalerrtest.c - copied unchanged from r455706, head/security/openssl/files/patch-ssl_fatalerrtest.c Modified: branches/2017Q4/security/openssl/Makefile branches/2017Q4/security/openssl/distinfo Directory Properties: branches/2017Q4/ (props changed) Modified: branches/2017Q4/security/openssl/Makefile ============================================================================== --- branches/2017Q4/security/openssl/Makefile Thu Dec 7 19:52:17 2017 (r455751) +++ branches/2017Q4/security/openssl/Makefile Thu Dec 7 19:59:11 2017 (r455752) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= openssl -PORTVERSION= 1.0.2m +PORTVERSION= 1.0.2n PORTEPOCH= 1 CATEGORIES= security devel MASTER_SITES= http://www.openssl.org/source/ \ Modified: branches/2017Q4/security/openssl/distinfo ============================================================================== --- branches/2017Q4/security/openssl/distinfo Thu Dec 7 19:52:17 2017 (r455751) +++ branches/2017Q4/security/openssl/distinfo Thu Dec 7 19:59:11 2017 (r455752) @@ -1,6 +1,6 @@ -TIMESTAMP = 1509655985 -SHA256 (openssl-1.0.2/openssl-1.0.2m.tar.gz) = 8c6ff15ec6b319b50788f42c7abc2890c08ba5a1cdcd3810eb9092deada37b0f -SIZE (openssl-1.0.2/openssl-1.0.2m.tar.gz) = 5373776 +TIMESTAMP = 1512655797 +SHA256 (openssl-1.0.2/openssl-1.0.2n.tar.gz) = 370babb75f278c39e0c50e8c4e7493bc0f18db6867478341a832a982fd15a8fe +SIZE (openssl-1.0.2/openssl-1.0.2n.tar.gz) = 5375802 SHA256 (openssl-1.0.2/1001-crypto-hmac-support-EVP_MD_CTX_FLAG_ONESHOT-and-set-.patch) = 2eddcb7ab342285cb637ce6b6be143cca835f449f35dd9bb8c7b9167ba2117a7 SIZE (openssl-1.0.2/1001-crypto-hmac-support-EVP_MD_CTX_FLAG_ONESHOT-and-set-.patch) = 3717 SHA256 (openssl-1.0.2/1002-backport-changes-from-upstream-padlock-module.patch) = aee88a24622ce9d71e38deeb874e58435dcf8ff5690f56194f0e4a00fb09b260 Copied: branches/2017Q4/security/openssl/files/patch-ssl_fatalerrtest.c (from r455706, head/security/openssl/files/patch-ssl_fatalerrtest.c) ============================================================================== --- /dev/null 00:00:00 1970 (empty, because file is newly added) +++ branches/2017Q4/security/openssl/files/patch-ssl_fatalerrtest.c Thu Dec 7 19:59:11 2017 (r455752, copy of r455706, head/security/openssl/files/patch-ssl_fatalerrtest.c) @@ -0,0 +1,48 @@ +From a4597f079bf2662e06d505538f83b6b610c41c7c Mon Sep 17 00:00:00 2001 +From: Matt Caswell <matt@openssl.org> +Date: Thu, 7 Dec 2017 14:40:49 +0000 +Subject: [PATCH] Fix initialisation in fatalerrtest + +--- + ssl/fatalerrtest.c | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/ssl/fatalerrtest.c b/ssl/fatalerrtest.c +index 0288c33fa2e..749bc3697ea 100644 +--- ssl/fatalerrtest.c.orig ++++ ssl/fatalerrtest.c +@@ -13,8 +13,8 @@ + + int main(int argc, char *argv[]) + { +- SSL_CTX *sctx, *cctx; +- SSL *sssl, *cssl; ++ SSL_CTX *sctx = NULL, *cctx = NULL; ++ SSL *sssl = NULL, *cssl = NULL; + const char *msg = "Dummy"; + BIO *err = NULL, *wbio = NULL; + int ret = 1, len; +From b24e0573c6838e8d726fb16d558c562ce4e8f025 Mon Sep 17 00:00:00 2001 +From: Matt Caswell <matt@openssl.org> +Date: Thu, 7 Dec 2017 14:41:21 +0000 +Subject: [PATCH] Fix the buffer sizing in the fatalerrtest + +Fixes #4865 +--- + ssl/fatalerrtest.c | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/ssl/fatalerrtest.c b/ssl/fatalerrtest.c +index 749bc3697ea..f9d66e27b30 100644 +--- ssl/fatalerrtest.c.orig ++++ ssl/fatalerrtest.c +@@ -76,7 +76,7 @@ int main(int argc, char *argv[]) + } + + /* SSL_read()/SSL_write should fail because of a previous fatal error */ +- if ((len = SSL_read(sssl, buf, sizeof(buf - 1))) > 0) { ++ if ((len = SSL_read(sssl, buf, sizeof(buf) - 1)) > 0) { + buf[len] = '\0'; + printf("Unexpected success reading data: %s\n", buf); + goto err; +
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201712071959.vB7JxBPV092425>