Commits · 4f59fd4d55f23f46f03b4ee3247ed61b2b628463 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Mar 17, 2016

Use correct C format for keysets.pl · 4f59fd4d
Dr. Stephen Henson authored Mar 17, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
4f59fd4d

Start documenting Configure internals · a4a71748

Richard Levitte authored Mar 10, 2016



This is a living document, everyone is encouraged to add to it.
Implementation details as well as broader implementation philosophy
has a place here.

I'm starting with documentation of the how conditions in build.info
files are treated.

Reviewed-by: Rich Salz <rsalz@openssl.org>

a4a71748

Added build.info debugging capability to Configure · 2b6b606c

Richard Levitte authored Mar 10, 2016



This is only enabled when the environment variable
CONFIGURE_DEBUG_BUILDINFO is defined.  This will cause every line in
every build.info file to be displayed, along with the content of the
skip stack before and after parsing.  This can be a very powerful tool
to see that all conditions are working as expected.

Reviewed-by: Rich Salz <rsalz@openssl.org>

2b6b606c

Simplify define as we don't support MS-DOS anymore. · a7e7bad1
Dr. Stephen Henson authored Mar 17, 2016
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
```
a7e7bad1

Don't define OPENSSL_ENGINES in test recipes, do it in Makefiles instead · a717738b

Richard Levitte authored Mar 05, 2016



In most builds, we can assume that engines live in the build tree
subdirectory "engines".  This was hard coded into the tests that use
the engine ossltest.

However, that hard coding is tedious, it would need to be done in
every test recipe, and it's an incorrect assumption in some cases.

This change has us play it safe and let the build files tell the
testing framework where the engines are.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

a717738b

Have 'openssl version -a' output the default engines directory as well · 909289df
Richard Levitte authored Mar 16, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
909289df
Bugfix: Encode the requested length in s_cb.c:hexencode() · b5f40eb2
Viktor Dukhovni authored Mar 16, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
b5f40eb2

Sort cipher-list at runtime. · 748f2546

Rich Salz authored Mar 16, 2016



Reduces #ifdef complexity.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

748f2546

Mar 16, 2016

unix-Makefile template: use $(PERL) everywhere · 757c416c
Richard Levitte authored Mar 16, 2016
```
There was one spot that had hard-coded 'perl'

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
757c416c
Deal with DSA_SIG opaqueness. · 43c1fd6b
Ben Laurie authored Mar 12, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
43c1fd6b
Prepare for 1.1.0-pre5-dev · 37d42aae
Richard Levitte authored Mar 16, 2016
```
Reviewed-by: Emilia Käsper <emilia@openssl.org>
```
37d42aae
Prepare for 1.1.0-pre4 release · e711d13a
Richard Levitte authored Mar 16, 2016
```
Reviewed-by: Emilia Käsper <emilia@openssl.org>
```
OpenSSL_1_1_0-pre4

e711d13a

Some platforms provide getcontext() but it does not work · c521edc3

Matt Caswell authored Mar 16, 2016



Some platforms claim to be POSIX but their getcontext() implementation
does not work. Therefore we update the ASYNC_is_capable() function to test
for this.

RT#4366

Reviewed-by: Richard Levitte <levitte@openssl.org>

c521edc3

When building DLLs, hack the library name in the .def file · 685b6f29

Richard Levitte authored Mar 16, 2016



util/mkdef.pl assumes it knows what the resulting library name will
be.  Really, it shouldn't, but changing it will break classic native
Windows builds, so we leave it for now and change the LIBRARY line
externally when needed instead.

Reviewed-by: Matt Caswell <matt@openssl.org>

685b6f29

DLL object files should not be built with /Zl" · 8975fb62

Richard Levitte authored Mar 16, 2016



When building the DLLs, we depend on the correct default C RTL info.

Reviewed-by: Matt Caswell <matt@openssl.org>

8975fb62

Appveyor - make sure to actually build "shared" in the shared configuration · f527b6e4
Richard Levitte authored Mar 16, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
f527b6e4

Fix up CHANGES · 8a0333c9

Emilia Kasper authored Mar 16, 2016



- Remove duplicate entry
- Add author for SSL_CIPHER query functions
- Note HKDF support in CHANGES and NEWS

[ci skip]

Reviewed-by: Richard Levitte <levitte@openssl.org>

8a0333c9

We should use $SRCDIR in Makefiles · c1ea997a

Matt Caswell authored Mar 16, 2016



Normally we always refer to source files relative to $SRCDIR in Makefiles.
However the reference to unix-Makefile.tmpl was using a fully expanded
absolute path. This can cause problems for Mingw.

Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

c1ea997a

Disable AFALG when cross-compiling · 68dc37c1

Matt Caswell authored Mar 16, 2016



We don't currently support cross-compiling of the afalg engine. However
we were failing to explicitly mark it as disabled during Configure leading
to a failed build.

Reviewed-by: Richard Levitte <levitte@openssl.org>

68dc37c1

Mar 15, 2016

Fix a TLSProxy race condition · 5427976d

Matt Caswell authored Mar 15, 2016



TLSProxy starts s_server and specifies the number of client connects
it should expect. After that s_server is supposed to close down
automatically. However, if another test is then run then TLSProxy
will start a new instance of s_server. If the previous instance
hasn't closed down yet then the new instance can fail to bind to
the socket.

Reviewed-by: Richard Levitte <levitte@openssl.org>

5427976d

poly1305/asm/poly1305-x86_64.pl: make it work with linux-x32. · 2460c7f1
Andy Polyakov authored Mar 15, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
2460c7f1
On Windows, page walking is known as __chkstk. · 0a86f668
Emilia Kasper authored Mar 15, 2016
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
0a86f668
Explain *cough*-dows · 1bf80d93
Emilia Kasper authored Mar 15, 2016
```
Reviewed-by: Andy Polyakov <appro@openssl.org>
```
1bf80d93

Make the perl dependency post-processor into just one line · 4def90c5

Richard Levitte authored Mar 15, 2016



Make doesn't always treat multiline quoted strings as nicely as one
would wish.

Reviewed-by: Andy Polyakov <appro@openssl.org>

4def90c5

Not all shells understand ! · 29b28eee

Richard Levitte authored Mar 15, 2016



In unix-Makefile.tmpl, this construction has been used a few times

	if ! something; then ...

It seems, though, that some shells do not understand !, so these need
to be changed.

Reviewed-by: Rich Salz <rsalz@openssl.org>

29b28eee

General verify options to openssl ts · 08538fc0

fbroda authored Mar 15, 2016



This commit adds the general verify options of ocsp, verify,
cms, etc. to the openssl timestamping app as suggested by
Stephen N. Henson in [openssl.org #4287]. The conflicting
"-policy" option of "openssl ts" has been renamed to
"-tspolicy". Documentation and tests have been updated.

CAVE: This will break code, which currently uses the "-policy"
option.

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>

08538fc0

Fix CRYPTO_THREAD_run_once return value checks · 3ddd1d04
Emilia Kasper authored Mar 15, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
3ddd1d04
Cygwin configs were missing thread_scheme settings, add them · e58d9102
Richard Levitte authored Mar 15, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
e58d9102

Small typo · a4d8bcf1

Richard Levitte authored Mar 15, 2016



OPENSSL_INIT_ONCE and OPENSSL_INIT_ONCE_STATIC_INIT are really
CRYPTO_ONCE and CRYPTO_ONCE_STATIC_INIT.

Reviewed-by: Rich Salz <rsalz@openssl.org>

a4d8bcf1

static-engine is no longer an internal keyword, remove it from %disabled · 3e19b07f
Richard Levitte authored Mar 15, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
3e19b07f
Clarify NOTES.WIN. · ad839325
Andy Polyakov authored Mar 14, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
ad839325

Mar 14, 2016
- Update and clarify ECDSA documentation. · 580b557b
  Dr. Stephen Henson authored Mar 14, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  580b557b
- Disable afalg when engine is disabled. · c91a0a83
  Emilia Kasper authored Mar 14, 2016
```
Also make it possible to disable afalg separately.

we still need to update config again

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  c91a0a83
- Fix typo in manual, missing ending '>' · d1beebdf
  Richard Levitte authored Mar 14, 2016
```
Reviewed-by: Stephen Henson <steve@openssl.org>
```
  d1beebdf
- Travis: build tests in BUILDONLY mode · d7a275ee
  Emilia Kasper authored Mar 14, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  d7a275ee
- config: fix HP-UX PA-RISC detection. · 74acf1c4
  Andy Polyakov authored Mar 14, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  74acf1c4
- s390x assembly pack: 32-bit fixups. · 8d51db86
  Andy Polyakov authored Mar 11, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  8d51db86
- build.info/Makefile.in: Itanium fixups. · 6bfb7db3
  Andy Polyakov authored Mar 13, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  6bfb7db3
- engines/Makefile.in: some [older] shell complain about 'for i ;', · d43a8fdc
  Andy Polyakov authored Mar 13, 2016
```
but not if there is reference to empty variable.

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  d43a8fdc
- Fix the init cleanup order · 58a8fc25
  Matt Caswell authored Mar 14, 2016
```
There are internal dependencies between the various cleanup functions.
This re-orders things to try and get that right.

Reviewed-by: Richard Levitte <levitte@openssl.org>
```
  58a8fc25