Commits · 40e068d50687edbf9b6d6633563151ab59369747 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Mar 09, 2016

Move engine library over to using the new thread API · 40e068d5
Matt Caswell authored Mar 08, 2016
```
Remove usage of CRYPTO_LOCK_ENGINE

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
40e068d5
err_lcl.h is gone, don't pretend it's there · 660e7588
Richard Levitte authored Mar 09, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
660e7588
Add missing semi · a0130ded
Richard Levitte authored Mar 09, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
a0130ded
Counter mixed signedness with a cast · 6b99e875
Richard Levitte authored Mar 09, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
6b99e875
Fix names of the #define used for platform specific code · 2ea92604
Andrea Grandi authored Mar 08, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
2ea92604

Add empty line after local variables · 363a1fc6

Andrea Grandi authored Mar 07, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

363a1fc6

Fix error with wait set of fds for the select() · 564e1029

Andrea Grandi authored Mar 03, 2016



It also makes the call to select blocking to reduce CPU usage

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

564e1029

Use correct function ID in error path · 2f781956

Alessandro Ghedini authored Mar 08, 2016



This fixes "make update".

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>

2f781956

Move variable declaration to the start of the function · a0605744
Alessandro Ghedini authored Mar 08, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
```
a0605744

Ensure CRYPTO_mem_leaks is the last thing we do · bfd53c32

Matt Caswell authored Mar 09, 2016



CRYPTO_mem_leaks de-inits the library, so we must not do anything
interesting after we've used it!

Reviewed-by: Rich Salz <rsalz@openssl.org>

bfd53c32

Fix memory leak in ssltest · f58cee8f

Matt Caswell authored Mar 08, 2016



The new Rand usage of Thread API exposed a bug in ssltest. ssltest "cheats"
and uses internal headers to directly call functions that normally you
wouldn't be able to do. This means that auto-init doesn't happen, and
therefore auto-deinit doesn't happen either, meaning that the new rand locks
don't get cleaned up properly.

Reviewed-by: Rich Salz <rsalz@openssl.org>

f58cee8f

Convert rand code to new threading API · 8eed7e87

Matt Caswell authored Mar 08, 2016



Replace the CRYPTO_LOCK_RAND and CRYPTO_LOCK_RAND2 locks with new thread
API style locks.

Reviewed-by: Rich Salz <rsalz@openssl.org>

8eed7e87

Adapt unix Makefile template to 'no-makedepend' · 29eed3dd

Richard Levitte authored Mar 09, 2016



This change is a bit more complex, as it involves several recipe
variants.

Also, remove the $(CROSS_COMPILE) prefix for the makedepend program.
When we use the program "makedepend", this doesn't serve anything,
and when we use the compiler, this value isn't even used.

Reviewed-by: Rich Salz <rsalz@openssl.org>

29eed3dd

Adapt descrip.mms.tmpl to 'no-makedepend' · 952a9d1a

Richard Levitte authored Mar 09, 2016



VMS doesn't have "makedepend" anyway, so this is just a matter of using
the right qualifiers when 'makedepend' is enabled.

Reviewed-by: Rich Salz <rsalz@openssl.org>

952a9d1a

Add the configure option 'no-makedepend' · 09aa263a

Richard Levitte authored Mar 09, 2016



If no makedepend program or equaly capable compiler is present,
'makedepend' gets disabled automatically.

Reviewed-by: Rich Salz <rsalz@openssl.org>

09aa263a

Fix SSL_CIPHER_get_auth_nid return · 8eb33e4f

Todd Short authored Mar 08, 2016



Copy/paste error between SSL_CIPHER_get_kx_nid() and
SSL_CIPHER_get_auth_nid(), wrong table was referenced

Signed-off-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>

8eb33e4f

Fix a typo in dynamic_load() · 52c14c54
Richard Levitte authored Mar 09, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
52c14c54

Mar 08, 2016

Convert RSA blinding to new multi-threading API · 0b1a07c8
Alessandro Ghedini authored Mar 08, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
0b1a07c8
Convert CRYPTO_LOCK_SSL_* to new multi-threading API · 16203f7b
Alessandro Ghedini authored Feb 29, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
16203f7b
Remove the transfer of lock hooks from bind_engine · be1251f7
Richard Levitte authored Mar 09, 2016
```
With the new threads API, this is no longer needed.

Reviewed-by: Matt Caswell <matt@openssl.org>
```
be1251f7

Engine API repair - memory management hooks · 6d566711

Richard Levitte authored Mar 06, 2016



The Engine API lost the setting of memory management hooks in
bind_engine.  Here's putting that back.

EX_DATA and ERR functions need the same treatment.

Reviewed-by: Matt Caswell <matt@openssl.org>

6d566711

Redo the Unix source code generator · 8458f1bf

Richard Levitte authored Mar 08, 2016



For assembler, we want the final target to be foo.s (lowercase s).
However, the build.info may have lines like this (note upper case S):

    GENERATE[foo.S]=foo.pl

This indicates that foo.s (lowercase s) is still to be produced, but
that producing it will take an extra step via $(CC) -E.  Therefore,
the following variants (simplified for display) can be generated:

    GENERATE[foo.S]=foo.pl  =>  foo.s: foo.pl
                                	$(PERL) $foo.pl $@.S; \
                                	$(CC) $(CFLAGS) -E -P $@.S > $@ && \
                                	rm -f $@.S

    GENERATE[foo.s]=foo.pl  =>  foo.s: foo.pl
                                	$(PERL) $foo.pl $@

    GENERATE[foo.S]=foo.m4  =>  foo.s: foo.m4
                                	m4 -B 8192 $foo.m4 > $@.S; \
                                	$(CC) $(CFLAGS) -E -P $@.S > $@ && \
                                	rm -f $@.S

    GENERATE[foo.s]=foo.m4  =>  foo.s: foo.m4
                                	m4 -B 8192 $foo.m4 > $@

Reviewed-by: Andy Polyakov <appro@openssl.org>

8458f1bf

Fix error in ssltest · b2d6aed4

Matt Caswell authored Mar 08, 2016



Compiling ssltest with some compilers using --strict-warnings results in
complaints about an unused result.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>

b2d6aed4

Adapt e_capi to the DSA_SIG_get0() API · a8a35540
Richard Levitte authored Mar 08, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
a8a35540

Convert mem_dbg and mem_sec to the new Thread API · 9471f776

Matt Caswell authored Mar 08, 2016



Use new Thread API style locks, and thread local storage for mem_dbg

Reviewed-by: Rich Salz <rsalz@openssl.org>

9471f776

OpenSSLDie --> OPENSSL_die · 040d43b3

Rich Salz authored Feb 13, 2016



Also removed a bunch of unused define's from e_os.h

Reviewed-by: Richard Levitte <levitte@openssl.org>

040d43b3

Remove the -n tar flag from osx dist creation · c7f1fa8e

Richard Levitte authored Mar 08, 2016



With the unified build scheme, tar MUST recurse, or the tarball will
be empty.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

c7f1fa8e

Remove some old ms/* files · 87326458
Rich Salz authored Mar 08, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
87326458

Include e_os.h from ec_lcl.h · e519ecd8

Richard Levitte authored Mar 08, 2016



The EC code recently started using REF_PRINT_COUNT and REF_ASSERT_ISNT.
Those are defined in e_os.h.

Reviewed-by: Rich Salz <rsalz@openssl.org>

e519ecd8

Fix cert leaks in s_server · 049f3655

FdaSilvaYY authored Mar 07, 2016



Signed-off-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

049f3655

Reuse strndup(), simplify code · 1caaea13

Dmitry-Me authored Mar 08, 2016



Signed-off-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

1caaea13

make update · 939bd840
Dr. Stephen Henson authored Mar 08, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
939bd840

Make DSA_SIG opaque. · 706a13f1

Dr. Stephen Henson authored Mar 04, 2016



This adds a new accessor function DSA_SIG_get0.
The customisation of DSA_SIG structure initialisation has been removed this
means that the 'r' and 's' components are automatically allocated when
DSA_SIG_new() is called. Update documentation.

Reviewed-by: Rich Salz <rsalz@openssl.org>

706a13f1

Fix travis builds · 9cae86d5

Richard Levitte authored Mar 08, 2016



Travis doesn't seem to know about 'expr'

Reviewed-by: Emilia Käsper <emilia@openssl.org>

9cae86d5

make update · 638b3c88

Alessandro Ghedini authored Mar 05, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

638b3c88

Convert CRYPTO_LOCK_X509_* to new multi-threading API · c001ce33
Alessandro Ghedini authored Mar 01, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
c001ce33
Convert CRYPTO_LOCK_UI to new multi-threading API · 41cfbccc
Alessandro Ghedini authored Feb 29, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
41cfbccc
Convert CRYPTO_LOCK_EC_* to new multi-threading API · 9b398ef2
Alessandro Ghedini authored Feb 29, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
9b398ef2
Convert CRYPTO_LOCK_EVP_PKEY to new multi-threading API · 03273d61
Alessandro Ghedini authored Feb 26, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
03273d61
Convert CRYPTO_LOCK_BIO to new multi-threading API · fb46be03
Alessandro Ghedini authored Feb 26, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
fb46be03