- Fix for security issue CVE-2010-4180
- Fix for CVE-2010-4252
- Fix mishandling of absent EC point format extension.
- Fix various platform compilation issues.
- Corrected fix for security issue CVE-2010-3864.
Add new version of padlock patches which enable:
- limited support of VIA C7 SHA acceleration
- full support for VIA Nano SHA acceleration
Openssl HMAC core is also patched to take full performance out of
padlock. Speed application is updated for measuring hmac(sha1).
Padlock was moved to be dynamic engine in openssl-1.0.0. So add some
code that losfd automatically that engine.
fix copying of oneshot sha1 context. also decrease the size
of "small buffer", to make context smaller (and context copy
faster in most cases); it should be still enough to catch
most hmac operations.
there was a bug sha context copying, that caused all hmac users
(and possibly others) to crash. also implemented a third
intermediate hashing mode with small buffer: it'll speed up
hashing in most cases considerably (packets / certificates to
be hashed are not usually too long).
