NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

PR/58039 CVS commit: [netbsd-10] src



The following reply was made to PR lib/58039; it has been noted by GNATS.

From: "Martin Husemann" <martin%netbsd.org@localhost>
To: gnats-bugs%gnats.NetBSD.org@localhost
Cc: 
Subject: PR/58039 CVS commit: [netbsd-10] src
Date: Mon, 25 Mar 2024 14:14:56 +0000

 Module Name:	src
 Committed By:	martin
 Date:		Mon Mar 25 14:14:56 UTC 2024
 
 Modified Files:
 	src/crypto/external/bsd/openssl/dist/crypto/evp [netbsd-10]:
 	    legacy_sha.c
 	src/crypto/external/bsd/openssl/dist/include/crypto [netbsd-10]: sha.h
 	src/crypto/external/bsd/openssl/dist/providers/implementations/digests [netbsd-10]:
 	    sha2_prov.c
 	src/crypto/external/bsd/openssl/lib/libcrypto [netbsd-10]:
 	    libc-sha2xx.c
 	src/distrib/sets/lists/debug [netbsd-10]: mi
 	src/distrib/sets/lists/tests [netbsd-10]: mi
 	src/tests/crypto/libcrypto [netbsd-10]: Makefile
 Added Files:
 	src/tests/crypto/libcrypto [netbsd-10]: t_sha512trunc.c
 
 Log Message:
 Pull up following revision(s) (requested by riastradh in ticket #637):
 
 	crypto/external/bsd/openssl/dist/providers/implementations/digests/sha2_prov.c: revision 1.2
 	tests/crypto/libcrypto/t_sha512trunc.c: revision 1.1
 	tests/crypto/libcrypto/t_sha512trunc.c: revision 1.2
 	tests/crypto/libcrypto/Makefile: revision 1.16
 	distrib/sets/lists/tests/mi: revision 1.1311
 	crypto/external/bsd/openssl/dist/crypto/evp/legacy_sha.c: revision 1.2
 	distrib/sets/lists/debug/mi: revision 1.430
 	crypto/external/bsd/openssl/dist/include/crypto/sha.h: revision 1.2
 	crypto/external/bsd/openssl/lib/libcrypto/libc-sha2xx.c: revision 1.4
 
 libcrypto: Add some trivial tests for truncated SHA-512 variants.
 These should use more of the test vectors from
 https://csrc.nist.gov/Projects/Cryptographic-Algorithm-Validation-Program/Secure-Hashing#Testing
 but this will do for now to detect the buffer overrun rake we left
 lying around for ourselves.
 PR lib/58039
 
 libcrypto: Fix buffer overrun in truncated SHA-512 functions.
 Further fallout from the libc/openssl sha2 symbol collision.
 PR lib/58039
 
 
 To generate a diff of this commit:
 cvs rdiff -u -r1.1.1.1.2.3 -r1.1.1.1.2.4 \
     src/crypto/external/bsd/openssl/dist/crypto/evp/legacy_sha.c
 cvs rdiff -u -r1.1.1.1.10.1 -r1.1.1.1.10.2 \
     src/crypto/external/bsd/openssl/dist/include/crypto/sha.h
 cvs rdiff -u -r1.1.1.1.2.2 -r1.1.1.1.2.3 \
     src/crypto/external/bsd/openssl/dist/providers/implementations/digests/sha2_prov.c
 cvs rdiff -u -r1.2.6.1 -r1.2.6.2 \
     src/crypto/external/bsd/openssl/lib/libcrypto/libc-sha2xx.c
 cvs rdiff -u -r1.394.2.5 -r1.394.2.6 src/distrib/sets/lists/debug/mi
 cvs rdiff -u -r1.1238.2.5 -r1.1238.2.6 src/distrib/sets/lists/tests/mi
 cvs rdiff -u -r1.14.10.1 -r1.14.10.2 src/tests/crypto/libcrypto/Makefile
 cvs rdiff -u -r0 -r1.2.2.2 src/tests/crypto/libcrypto/t_sha512trunc.c
 
 Please note that diffs are not public domain; they are subject to the
 copyright notices on the relevant files.
 


Home | Main Index | Thread Index | Old Index