c64f6fe2be99cb3fa8e491b5bede9a217de87a4c |
06-Nov-2014 |
Kenny Root <kroot@google.com> |
Upgrade to 1.0.1j Upgraded from archive: cff86857507624f0ad42d922bb6f77c4f1c2b819 openssl-1.0.1j.tar.gz (cherry picked from commit c642a4957fa6f518a02839abc38de4e1476cdfc6) Bug: 18018599 Change-Id: I7db55f15e6c5670cc2ced1ffbc736b1b354be740
_object.c
_strex.c
_utctm.c
meth_lib.c
sn1_lib.c
sn_mime.c
sn_pack.c
io_asn1.c
harmap.pl
vp_asn1.c
_x509.c
asn_enc.c
_crl.c
|
77c6be7176c48d2ce4d5979a84876d34204eedaf |
12-Jun-2014 |
Kenny Root <kroot@google.com> |
Upgrade to OpenSSL 1.0.1h sha1sum of distribution: b2239599c8bf8f7fc48590a55205c26abe560bf8 openssl-1.0.1h.tar.gz Bug: 15442813 Change-Id: I9abd00afcb7efb0e80b27bf7beade3c6dc511082
_strnid.c
|
7f7ea2d72f2e316ba518e82f06513e3477840c15 |
07-Apr-2014 |
Kenny Root <kroot@google.com> |
Update to OpenSSL 1.0.1g Upgrade to the new OpenSSL 1.0.1g release. SHA-1 hash of file: b28b3bcb1dc3ee7b55024c9f795be60eb3183e3c openssl-1.0.1g.tar.gz Change-Id: Ie839cf2a4367afbd2919180ea4ce016b1c8d6668
sn1_err.c
|
ff41a4bc41ae1e1391f9b05117623ff70b985983 |
07-Jan-2014 |
Kenny Root <kroot@google.com> |
Import OpenSSL 1.0.1f Upgrade to the new OpenSSL 1.0.1f release. SHA-1 hash of file: 9ef09e97dfc9f14ac2c042f3b7e301098794fc0f openssl-1.0.1f.tar.gz Some changes had to be made to the existing source: Fixed the import script to work with "sh -x" for debugging problems. Update some of the files from patches/ to work with 1.0.1f, because 1.0.1f fixes have used some of the constants that were used (0x20L was changed to 0x80L and 0x40L was changed to 0x100L). Delete the "Makefile.save" files that are newly present in the OpenSSL 1.0.1f release tarball. Change-Id: Ib0f13b91e863157da23ec1d736ff2d788897d9f1
_int.c
|
04ef91b390dfcc6125913e2f2af502d23d7a5112 |
05-Feb-2013 |
Brian Carlstrom <bdc@google.com> |
openssl-1.0.1d upgrade Change-Id: Ie980c8834cf2c843858182d98d1f60c65a2a9b70
_strex.c
_verify.c
|
f6e80656429bacaf943834480e96929001f5d443 |
24-Jan-2013 |
David 'Digit' Turner <digit@android.com> |
Fix recursive lock in X509_PUBKEY_get This was discovered recently by the Chromium "linux_redux" build, the bug was causing one of the unit tests to stall. Note that the patch is already applied in upstream OpenSSL. For more details, see http://crbug.com/171812 Change-Id: I9ca8886fba6c89fc19fc71c0cc9b732c9fb82208
_pubkey.c
|
a1a5710c055e139ea00e785f9eb55b3af3e4dab1 |
19-Apr-2012 |
Brian Carlstrom <bdc@google.com> |
openssl-1.0.1a upgrade Bug: 6366068 Change-Id: I0b6ec75b5c2a8f082b4b0fe6db2697d24f2f9b00
_d2i_fp.c
asn_prn.c
|
243c891739b450bb831aabcd5cd601da4828cd25 |
02-Apr-2012 |
Brian Carlstrom <bdc@google.com> |
Fix integer overflow in ASN.1 parsing functions. Bug: 6274291 Change-Id: Id0850ce39aebfc9018c0459ec3147e05506a646f
_d2i_fp.c
|
392aa7cc7d2b122614c5393c3e357da07fd07af3 |
16-Mar-2012 |
Brian Carlstrom <bdc@google.com> |
openssl-1.0.1 upgrade Bug: 6168278 Change-Id: I648f9172828120df5d19a14425e9ceec92647921
_digest.c
_sign.c
_verify.c
meth_lib.c
sn1.h
sn1_err.c
sn1_locl.h
_pkey.c
5_pbev2.c
_crl.c
_x509.c
_algor.c
|
21c841450af61d0a9119cdc863e93d019127bfe1 |
12-Mar-2012 |
Brian Carlstrom <bdc@google.com> |
Upgrade to openssl-1.0.0h Change-Id: I0bc9b6b486bf10ebae34b994b63cf6011afdf5e1
sn_mime.c
_name.c
_pubkey.c
|
7d3d122363e2a85d516db314892f3d6112cb1377 |
19-Jan-2012 |
Brian Carlstrom <bdc@google.com> |
Upgrade to openssl-1.0.0g Change-Id: I568ac8da185ddbaab980757c7bf902bf829ecd03
_int.c
sn_mime.c
_x509.c
|
ee7afb3c942c4eefef6ed06201eafaf8ec58e2e3 |
06-Sep-2011 |
Brian Carlstrom <bdc@google.com> |
Upgrade to openssl-1.0.0e Bug: 5261862 Change-Id: I34d2d458aa85e61b1faacb8b5f386353be679d9b
_object.c
io_ndef.c
_name.c
|
81c4de7869b646592127e952cda763abf8305069 |
08-Feb-2011 |
Brian Carlstrom <bdc@google.com> |
Upgrade to openssl-1.0.0d Bug: 3435285 Change-Id: Ied92c240f0a3ef9b2ce9b841089c03e0b29018b8
_strex.c
_strnid.c
meth_lib.c
sn1.h
|
43c12e3d4f9bbbbd4a8ba7b149686437514bc6b6 |
16-Nov-2010 |
Brian Carlstrom <bdc@google.com> |
Upgrade to openssl-1.0.0b Bug: 3201137 Change-Id: I20cd6bed7717e5982abc3734e9a6522067f2908e
_int.c
_pkey.c
_crl.c
asn_dec.c
_x509.c
|
221304ee937bc0910948a8be1320cb8cc4eb6d36 |
15-Apr-2010 |
Brian Carlstrom <bdc@google.com> |
openssl-1.0.0 upgrade external/openssl Updated version to 1.0.0 openssl.version Updated small records patch for 1.0.0. This is probably the most significant change. patches/small_records.patch Removed bad_version.patch since fix is included in 0.9.8n and beyond patches/README patches/bad_version.patch openssl.config Changed import_openssl.sh to generate armv4 asm with the 1.0.0 scripts, not our backported 0.9.9-dev backported version in patches/arm-asm.patch. import_openssl.sh openssl.config patches/README patches/arm-asm.patch Added -DOPENSSL_NO_STORE to match ./Configure output Added -DOPENSSL_NO_WHIRLPOOL (no-whrlpool) to skip new optional cipher android-config.mk openssl.config Fixed import to remove include directory during import like other imported directories (apps, ssl, crypto) import_openssl.sh Updated UNNEEDED_SOURCES. Pruned Makefiles which we don't use. openssl.config Updated to build newly required files patches/apps_Android.mk patches/crypto_Android.mk Disable some new openssl tools patches/progs.patch Updated upgrade testing notes to include running BigInteger tests README.android Automatically imported android.testssl/ apps/ crypto/ e_os.h e_os2.h include/ ssl/ dalvik Change makeCipherList to skip SSLv2 ciphers that 1.0.0 now returns so there are not duplicate ciphersuite names in getEnabledCipherSuites. libcore/x-net/src/main/native/org_apache_harmony_xnet_provider_jsse_NativeCrypto.cpp Updated OpenSSLSocketImpl_cipherauthenticationmethod for new SSL_CIPHER algorithms -> algorithm_auth (and const-ness) libcore/x-net/src/main/native/org_apache_harmony_xnet_provider_jsse_NativeCrypto.cpp Update to const SSL_CIPHER in OpenSSLSessionImpl_getCipherSuite (and cipherauthenticationmethod) libcore/x-net/src/main/native/org_apache_harmony_xnet_provider_jsse_NativeCrypto.cpp test_EnabledCipherSuites on both SSLSocketTest and SSLServerSocketTest caught the makeCipherList problem. However the asserts where a bit out of sync and didn't give good messages because they didn't actually show what was going on. As part of debugging the issue they found, I tried to make align the asserts and improve their output for the future. libcore/x-net/src/test/java/tests/api/javax/net/ssl/SSLServerSocketTest.java libcore/x-net/src/test/java/tests/api/javax/net/ssl/SSLSocketTest.java vendor/google Add const to X509V3_EXT_METHOD* for 1.0.0 compatibility libraries/libjingle/talk/base/openssladapter.cc Change-Id: I90fb1566dede6034eebc96d2b0dcf4533d9643bf
akefile
_bitstr.c
_dup.c
_gentm.c
_hdr.c
_int.c
_meth.c
_object.c
_octet.c
_set.c
_sign.c
_strnid.c
_time.c
_type.c
_utctm.c
_verify.c
meth_lib.c
sn1.h
sn1_err.c
sn1_gen.c
sn1_lib.c
sn1_locl.h
sn1_mac.h
sn1_par.c
sn1t.h
sn_mime.c
sn_pack.c
io_asn1.c
io_ndef.c
harmap.h
2i_pr.c
2i_pu.c
2d_pr.c
sseq.c
5_pbe.c
5_pbev2.c
8_key.c
8_pkey.c
_pkey.c
_req.c
_spki.c
_x509.c
asn_dec.c
asn_enc.c
asn_fre.c
asn_new.c
asn_prn.c
asn_typ.c
_crl.c
_long.c
_name.c
_nx509.c
_pubkey.c
_req.c
_x509.c
|
98d58bb80c64b02a33662f0ea80351d4a1535267 |
09-Mar-2010 |
Brian Carlstrom <bdc@google.com> |
Summary: upgrading to openssl-0.9.8m and adding new testssl.sh Testing Summary: - Passed new android.testssl/testssl.sh - General testing with BrowserActivity based program Details: Expanded detail in README.android about how to build and test openssl upgrades based on my first experience. modified: README.android Significant rework of import_openssl.sh script that does most of the work of the upgrade. Most of the existing code became the main and import functions. The newly regenerate code helps regenerate patch files, building on the fact that import now keeps and original unmodified read-only source tree for use for patch generation. Patch generation relies on additions to openssl.config for defining which patches include which files. Note that sometimes a file may be patched multiple times, in that case manual review is still necessary to prune the patch after auto-regeneration. Other enhancements to import_openssl.sh include generating android.testssl and printing Makefile defines for android-config.mk review. modified: import_openssl.sh Test support files for openssl/ Add support for building /system/bin/ssltest as test executible for use by testssl script. Need confirmation that this is the right way to define such a test binary. modified: patches/ssl_Android.mk Driver script that generates user and CA keys and certs on the device with /system/bin/openssl before running testssl. Based on openssl/test/testss for generation and openssl/test/Makefile test_ssl for test execution. new file: patches/testssl.sh Note all following android.testssl files are automatically imported from openssl, although possible with modifications by import_openssl.sh testssl script imported from openssl/test that does the bulk of the testing. Includes new tests patched in for our additions. new file: android.testssl/testssl CA and user certificate configuration files from openssl. Automatically imported from openssl/test/ new file: android.testssl/CAss.cnf new file: android.testssl/Uss.cnf certificate and key test file imported from openssl/apps new file: android.testssl/server2.pem Actual 0.9.8m upgrade specific bits Trying to bring ngm's small records support into 0.9.8m. Needs signoff by ngm although it does pass testing. modified: patches/small_records.patch Update openssl.config for 0.9.8m. Expanded lists of undeeded directories and files for easier update and review, adding new excludes. Also added new definitions to support "import_openssl.sh regenerate" for patch updating. modified: openssl.config Updated OPENSSL_VERSION to 0.9.8m modified: openssl.version Automatically imported/patched files. Seems like it could be further pruned in by openssl.config UNNEEDED_SOURCES, but extra stuff doesn't end up impacting device. modified: apps/... modified: crypto/... modified: include/... modified: ssl/... Other Android build stuff. Note for these patches/... is source, .../Android.mk is derived. Split LOCAL_CFLAGS additions into lines based on openssl/Makefile source for easier comparison when upgrading. I knowingly left the lines long and unwrapped for easy vdiff with openssl/Makefile modified: android-config.mk Removed local -DOPENSSL_NO_ECDH already in android-config.mk. modified: patches/apps_Android.mk Sync up with changes that had crept into derived crypto/Android.mk modified: patches/crypto_Android.mk Change-Id: I73204c56cdaccfc45d03a9c8088a6a93003d7ce6
_mbstr.c
_object.c
meth_lib.c
sn1.h
sn1_err.c
sn1_gen.c
sn1_locl.h
sn1_par.c
io_asn1.c
io_ndef.c
_x509.c
_nx509.c
|
e45f106cb6b47af1f21efe76e933bdea2f5dd1ca |
30-Sep-2009 |
Nagendra Modadugu <ngm@google.com> |
Upgrade to openssl-0.9.8k. The source tree (and the size of the compiled library) can be reduced further. This will be done in a future commit.
akefile
_bytes.c
_mbstr.c
_sign.c
_strex.c
_strnid.c
_verify.c
meth_lib.c
sn1.h
sn1_err.c
sn1_gen.c
sn1_locl.h
sn1_par.c
sn1t.h
sn_mime.c
sn_moid.c
sn_pack.c
io_asn1.c
io_ndef.c
sseq.c
5_pbe.c
5_pbev2.c
8_pkey.c
_bitst.c
_crl.c
_spki.c
_x509.c
_x509a.c
asn_dec.c
asn_enc.c
asn_fre.c
asn_new.c
asn_prn.c
asn_typ.c
asn_utl.c
_algor.c
_bignum.c
_exten.c
_long.c
_nx509.c
_x509a.c
|
656d9c7f52f88b3a3daccafa7655dec086c4756e |
04-Mar-2009 |
The Android Open Source Project <initial-contribution@android.com> |
auto import from //depot/cupcake/@135843
akefile
_bitstr.c
_bool.c
_bytes.c
_d2i_fp.c
_digest.c
_dup.c
_enum.c
_gentm.c
_hdr.c
_i2d_fp.c
_int.c
_mbstr.c
_meth.c
_object.c
_octet.c
_print.c
_set.c
_sign.c
_strex.c
_strnid.c
_time.c
_type.c
_utctm.c
_utf8.c
_verify.c
sn1.h
sn1_err.c
sn1_gen.c
sn1_lib.c
sn1_mac.h
sn1_par.c
sn1t.h
sn_mime.c
sn_moid.c
sn_pack.c
harmap.h
harmap.pl
2i_pr.c
2i_pu.c
vp_asn1.c
_enum.c
_int.c
_string.c
2d_pr.c
2d_pu.c
_pkey.c
sseq.c
5_pbe.c
5_pbev2.c
8_key.c
8_pkey.c
_bitst.c
_crl.c
_pkey.c
_req.c
_spki.c
_x509.c
_x509a.c
asn_dec.c
asn_enc.c
asn_fre.c
asn_new.c
asn_prn.c
asn_typ.c
asn_utl.c
_algor.c
_attrib.c
_bignum.c
_crl.c
_exten.c
_info.c
_long.c
_name.c
_pkey.c
_pubkey.c
_req.c
_sig.c
_spki.c
_val.c
_x509.c
_x509a.c
|
d2cbe6ee0fd4269543a9a243f2b0963ce6f46280 |
04-Mar-2009 |
The Android Open Source Project <initial-contribution@android.com> |
auto import from //depot/cupcake/@135843
akefile
_bitstr.c
_bool.c
_bytes.c
_d2i_fp.c
_digest.c
_dup.c
_enum.c
_gentm.c
_hdr.c
_i2d_fp.c
_int.c
_mbstr.c
_meth.c
_object.c
_octet.c
_print.c
_set.c
_sign.c
_strex.c
_strnid.c
_time.c
_type.c
_utctm.c
_utf8.c
_verify.c
sn1.h
sn1_err.c
sn1_gen.c
sn1_lib.c
sn1_mac.h
sn1_par.c
sn1t.h
sn_mime.c
sn_moid.c
sn_pack.c
harmap.h
harmap.pl
2i_pr.c
2i_pu.c
vp_asn1.c
_enum.c
_int.c
_string.c
2d_pr.c
2d_pu.c
_pkey.c
sseq.c
5_pbe.c
5_pbev2.c
8_key.c
8_pkey.c
_bitst.c
_crl.c
_pkey.c
_req.c
_spki.c
_x509.c
_x509a.c
asn_dec.c
asn_enc.c
asn_fre.c
asn_new.c
asn_prn.c
asn_typ.c
asn_utl.c
_algor.c
_attrib.c
_bignum.c
_crl.c
_exten.c
_info.c
_long.c
_name.c
_pkey.c
_pubkey.c
_req.c
_sig.c
_spki.c
_val.c
_x509.c
_x509a.c
|
bdfb8ad83da0647e9b9a32792598e8ce7ba3ef4d |
12-Jan-1970 |
Upstream <upstream-import@none> |
external/openssl 0.9.8h
akefile
_bitstr.c
_bool.c
_bytes.c
_d2i_fp.c
_digest.c
_dup.c
_enum.c
_gentm.c
_hdr.c
_i2d_fp.c
_int.c
_mbstr.c
_meth.c
_object.c
_octet.c
_print.c
_set.c
_sign.c
_strex.c
_strnid.c
_time.c
_type.c
_utctm.c
_utf8.c
_verify.c
sn1.h
sn1_err.c
sn1_gen.c
sn1_lib.c
sn1_mac.h
sn1_par.c
sn1t.h
sn_mime.c
sn_moid.c
sn_pack.c
harmap.h
harmap.pl
2i_pr.c
2i_pu.c
vp_asn1.c
_enum.c
_int.c
_string.c
2d_pr.c
2d_pu.c
_pkey.c
sseq.c
5_pbe.c
5_pbev2.c
8_key.c
8_pkey.c
_bitst.c
_crl.c
_pkey.c
_req.c
_spki.c
_x509.c
_x509a.c
asn_dec.c
asn_enc.c
asn_fre.c
asn_new.c
asn_prn.c
asn_typ.c
asn_utl.c
_algor.c
_attrib.c
_bignum.c
_crl.c
_exten.c
_info.c
_long.c
_name.c
_pkey.c
_pubkey.c
_req.c
_sig.c
_spki.c
_val.c
_x509.c
_x509a.c
|