| Commit message (Collapse) | Author | Age | Files | Lines |
|\ |
|
| |\ |
|
| | |
| | |
| | |
| | | |
* Update wrong zip-code
|
|\ \ \
| |/ / |
|
| |\ \
| | |/ |
|
| | |\ |
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
LAST BYTE ONLY (YASSL)
Description:- TLS cipher negociation happens incorrectly
leading to the use of a different
Analysis:- YaSSL based MySQL server will compare only the
last byte of each cipher sent in the Client Hello message.
This can cause TLS connections to fail, due to the server
picking a cipher which the client doesn't actually support.
Fix:- A fix for detecting cipher suites with non leading
zeros is included as YaSSL only supports cipher suites with
leading zeros.
|
|\ \ \ \
| |/ / / |
|
| |\ \ \
| | |/ / |
|
| | |\ \
| | | |/ |
|
| | | |
| | | |
| | | |
| | | | |
EXPECTED.
|
|/ / / |
|
|\ \ \
| |/ / |
|
| |\ \
| | |/
| | |
| | |
| | | |
reverted about half of commits as either not applicable or
outright wrong
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
one leading zeros for the key agreement instead of
potentially any number.
There is about 1 in 50,000 connections to fail
when using DHE cipher suites. The second problem was the
case where a server would send a public value shorter than
the prime value, causing about 1 in 128 client connections
to fail, and also caused the yaSSL client to read off the
end of memory.
All client side DHE cipher suite users should update.
Note: The patch is received from YaSSL people
|
|\ \ \
| |/ / |
|
| |\ \
| | |/ |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Upgrading YaSSL from 2.3.5 to 2.3.7
Reviewed-by : Kristofer Pettersson <kristofer.pettersson@oracle.com>
Reviewed-by : Vamsikrishna Bhagi <vamsikrishna.bhagi@oracle.com>
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
LIES ABOUT SUITE_LEN_
and
Bug#19355577 : YASSL PRE-AUTH BUFFER OVERFLOW WHEN CLIENT
LIES ABOUT COMP_LEN_
Description : Updating yaSSL to version 2.3.4.
|
| | |
| | |
| | |
| | |
| | |
| | | |
to pick up some new security fixes that are in it.
Patch provided by Georgi Kodinov.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
$SUBJ$
1. Took a diff between the previous base version and the
mysql sources.
2. Added the new 2.1.4 base version.
3. Reviewed and re-applied the diff from step #1.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
AND 5.5 YASSL FIXES.
Took the 5.5 yassl code and applied it to the 5.0 codebase, keeping the
compilation files.
|
| | | |
|
| | |
| | |
| | |
| | |
| | | |
- Remove bothersome warning messages. This change focuses on the warnings
that are covered by the ignore file: support-files/compiler_warnings.supp.
- Strings are guaranteed to be max uint in length
|
| | |
| | |
| | |
| | |
| | | |
- Fix bug#27265
- Support for fixing bug#18441
|
| | | |
|
| | |
| | |
| | |
| | | |
Added an option to yassl to allow "quiet shutdown" like openssl does. This option causes the SSL libs to NOT perform the close_notify handshake during shutdown. This fixes a hang we experience because we hold a lock during socket shutdown.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
- Replace SawTooth copyright header with MySQL's
- Bug#19209 Test 'rpl_openssl' hangs on Windows
- Spurious "2013 Connection to server lost" errors fixed
yaSSL doesn't close socket anymore, that is left to the application
|
| | | |
|
| | | |
|
| | | |
|
| | |
| | |
| | |
| | | |
- Fix for "bug#16755 Please find a SSL library that is FLOSS-Exception / LGPL copyrighted"
|
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
- avoid allocating memory for each call to 'EVP_md5' and
'EVP_des_ede3_cbc' which were not released until server was stopped
- Those functions are used from the SQL function 'des_encrypt' and
'des_decrypt'.
|
| | | |
|
| | |
| | |
| | |
| | |
| | | |
Fixes for HPUX etc.
Don't define exceptions operator new on hpux as the linker will look for the function
|
| | | |
|
| | | |
|
| | | |
|
| | |\
| | | |
| | | |
| | | | |
into shellback.(none):/home/msvensson/mysql/mysql-5.0-maint
|
| | | | |
|
| | | | |
|
| | |/
| | |
| | |
| | | |
- Apply patch to remove dependency on C++ libs when linking "libmysql" from c
|
| | |
| | |
| | |
| | |
| | | |
Merge with latest yaSSL. It includes fix for bigendian/littleendian
problem (fixes func_encrypt test failure). Our trees are in sync now.
|
| | |
| | |
| | |
| | |
| | | |
Fix GCC 4.0 link failure.
Better CXX_VERSION guessing.
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Fix for yaSSL link failures with Forte Developer 7, MIPSpro Compilers, Compaq C++.
These compilers have problem with implicit template instantiation in archives
(libyassl.a, libtaocrypt.a). Instantiate templates explicitly.
Fix for yaSSL link failure on powermacg5 (gcc 3.3). When -O3 is specified gcc inlines
__cxa_pure_virtual. This is wrong behavior, __cxa_pure_virtual must never be inlined.
|
| | |
| | |
| | |
| | | |
merge with latest yaSSL, move templates instantiation into separate file where it is possible
|
| | |
| | |
| | |
| | | |
Merge with latest yaSSL, fix compilation error for SSE2 processors.
|
| | | |
|
| | |
| | |
| | |
| | | |
This fix is about WL#2286 - Compile MySQL w/YASSL support
|
| | | |
|