mirror of
https://github.com/freebsd/freebsd-src
synced 2024-07-22 02:37:15 +00:00
e0c4386e7e
* Fixed PKCS12 Decoding crashes ([CVE-2024-0727])
* Fixed Excessive time spent checking invalid RSA public keys
([CVE-2023-6237])
* Fixed POLY1305 MAC implementation corrupting vector registers on
PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129])
* Fix excessive time spent in DH check / generation with large Q
parameter value ([CVE-2023-5678])
Release notes can be found at
https://www.openssl.org/news/openssl-3.0-notes.html.
Approved by: emaste
MFC after: 3 days
Merge commit '9dd13e84fa8eca8f3462bd55485aa3da8c37f54a'
32 lines
981 B
Bash
Executable file
32 lines
981 B
Bash
Executable file
#! /bin/sh
|
|
|
|
HERE=`dirname $0`
|
|
|
|
for f in "$@"; do
|
|
# It's worth nothing that 'openssl sha256 -r' assumes that all input
|
|
# is binary. This isn't quite true, and we know better, so we convert
|
|
# the '*stdin' marker to the filename preceded by a space. See the
|
|
# sha1sum manual for a specification of the format.
|
|
case "$f" in
|
|
*.c | *.c.in | *.h | *.h.in | *.inc)
|
|
cat "$f" \
|
|
| $HERE/lang-compress.pl 'C' \
|
|
| unifdef -DFIPS_MODULE=1 \
|
|
| openssl sha256 -r \
|
|
| sed -e "s| \\*stdin| $f|"
|
|
;;
|
|
*.pl )
|
|
cat "$f" \
|
|
| $HERE/lang-compress.pl 'perl' \
|
|
| openssl sha256 -r \
|
|
| sed -e "s| \\*stdin| $f|"
|
|
;;
|
|
*.S )
|
|
cat "$f" \
|
|
| $HERE/lang-compress.pl 'S' \
|
|
| openssl sha256 -r \
|
|
| sed -e "s| \\*stdin| $f|"
|
|
;;
|
|
esac
|
|
done
|