Commits · 74b31db68ac5f1fc8d85f8fbd53dc186d0016b0b · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Jan 11, 2016

Only run DANE tests when EC is supported · 74b31db6

Richard Levitte authored Jan 11, 2016



Since danetest is to test DANE rather than specific algorithms, it's
acceptable to require EC when testing it.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

74b31db6

Make SSL{_CTX,}_{get,set,clear}_options functions · 8106cb8b

Viktor Dukhovni authored Jan 10, 2016



These now take and return unsigned long, and get is constified.
Updated related documentation and util/ssleay.num

Reviewed-by: Matt Caswell <matt@openssl.org>

8106cb8b

Adjust $default_depflags to changes in Configure · ccf73257

Richard Levitte authored Jan 11, 2016



We use $default_depflags to check if a 'make depend' is needed after
configuring, so it needs to be kept up to date.

Reviewed-by: Matt Caswell <matt@openssl.org>

ccf73257

Fix NSS format session output · 1446f72b

Matt Caswell authored Dec 29, 2015

Commit 189ae368

 (RT ticket 3352) provided the capability to output
session key data in NSS format. The big apps cleanup broke that capability.
This commit restores it.

RT#4201

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

1446f72b

Update leak test to check return values. · ec04e866
Dr. Stephen Henson authored Jan 10, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
ec04e866

Add memory leak return value. · 4e482ae6

Dr. Stephen Henson authored Jan 10, 2016



Make CRYPTO_mem_leaks() and CRYPTO_mem_leaks_fp() return a status value.
Update documentation. Don't abort() if there are leaks.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

4e482ae6

Enable/disable crypto-mdebug just like other features · c2e27310
Viktor Dukhovni authored Jan 10, 2016
```
Also always abort() on leak failure.

Reviewed-by: Stephen Henson <steve@openssl.org>
```
c2e27310
Disable some algorithms by default · 3af45d99
Dr. Stephen Henson authored Jan 10, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
3af45d99
Regenerate SSL record/statem error strings · aea145e3
Viktor Dukhovni authored Jan 09, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
aea145e3

Jan 10, 2016

fix shadow warning · 71405d68
Dr. Stephen Henson authored Jan 10, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
71405d68
File is about s_time, not s_client · 1918e01c
Kurt Roeckx authored Jan 02, 2016
```
Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
```
1918e01c
Allow disabling the min and max version · 869e978c
Kurt Roeckx authored Jan 02, 2016
```
Reviewed-by: Viktor Dukhovni <openssl-users@dukhovni.org>
```
869e978c

Future-proof deprecated declartion parsing · ca0004e5

Viktor Dukhovni authored Jan 09, 2016



Support two-digest major/minor/micro numbers and die when the input
fails to parse

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>

ca0004e5

RT41897: Add an CRYPTO_secure_actual_size · d594199b

Rich Salz authored Jan 07, 2016



This is already documented, I just forgot to include the code :)

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

d594199b

Fix c++ compilation · f820b792

Mat authored Jan 09, 2016

Fixes https://github.com/openssl/openssl/issues/532



Signed-off-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

f820b792

Adds missing type casts · 77f31b3a

Mat authored Jan 09, 2016

This fixes https://github.com/openssl/openssl/issues/534



Signed-off-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

77f31b3a

Adds crypto-mdebug as a valid option · 3e45d393

Mat authored Jan 09, 2016

Adds crypto-mdebug as a valid option. Fixes https://github.com/openssl/openssl/issues/537



Signed-off-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>

3e45d393

Jan 09, 2016
- Fix build failure on Windows · 85d7bdf0
  Mat authored Jan 09, 2016
```
Fixes https://github.com/openssl/openssl/issues/530



Signed-off-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
```
  85d7bdf0
- update ordinals · 7ba4f9dd
  Dr. Stephen Henson authored Jan 09, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
  7ba4f9dd
- Add DEPRECATEDIN support. · 7a556fb6
  Dr. Stephen Henson authored Jan 09, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
  7a556fb6
- Correct header defines · c3be59a4
  Dr. Stephen Henson authored Jan 08, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
  c3be59a4
- remove hard coded algorithms · a9988d54
  Dr. Stephen Henson authored Jan 08, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
  a9988d54
- Recognise disabled algorithms automatically. · 2854c798
  Dr. Stephen Henson authored Jan 07, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
  2854c798
Jan 08, 2016

Fix no CRYPTO_MDEBUG build (windows) · 6ac11bd0

Rich Salz authored Jan 07, 2016



In order for mkdep to find #ifdef'd functions, they must be
wrapped (in the header file) with
        #ifndef OPENSSL_NO_...
So do that for various CRYPTO_mem_debug... things.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

6ac11bd0

Fixup actually update danetest.c · 8da94770
Viktor Dukhovni authored Jan 07, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
8da94770
Another portability fix. · f232d6ec
Rich Salz authored Jan 08, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
f232d6ec
Update comment as bn_dup_expand is gone · 8707e3be
Viktor Dukhovni authored Jan 07, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
8707e3be
Simplify deprecated declaration exception · 64c711cd
Viktor Dukhovni authored Jan 07, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
64c711cd

Portability fix for apps/s_client.c · 7ff970ef

Rich Salz authored Jan 08, 2016



Make some local variables and a table of them be static.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

7ff970ef

DANE CHANGES · 59fd40d4
Viktor Dukhovni authored Jan 07, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
59fd40d4
Fix some typos in comments · 60d8edbc
Viktor Dukhovni authored Jan 06, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
60d8edbc

Backwards-compatibility subject to OPENSSL_API_COMPAT · 98186eb4

Viktor Dukhovni authored Jan 04, 2016



Provide backwards-compatiblity for functions, macros and include
files if OPENSSL_API_COMPAT is either not defined or defined less
than the version number of the release in which the feature was
deprecated.

Reviewed-by: Richard Levitte <levitte@openssl.org>

98186eb4

DANE s_client support · cddd424a
Viktor Dukhovni authored Dec 29, 2015
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
cddd424a
Remove all remaining traces if PEM_Seal · 0c1badc8
Richard Levitte authored Jan 07, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
0c1badc8

Jan 07, 2016

Minor test update · 21fa90b2

Viktor Dukhovni authored Jan 07, 2016



* Remove extraneous test/Makefile.orig
* Use basedomain instead of argv[1] in test/danetest.c

Reviewed-by: Rich Salz <rsalz@openssl.org>

21fa90b2

Fix another build break for no-mem-debug · 7b0a09f9
Rich Salz authored Jan 07, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
7b0a09f9

Fix build-break; 'make update' · ebd8df0e

Rich Salz authored Jan 07, 2016

Commit bbd86bf5 broke certain builds.
Commit 0674427f

 missing 'make update'

Reviewed-by: Richard Levitte <levitte@openssl.org>

ebd8df0e

mem functions cleanup · bbd86bf5

Rich Salz authored Jan 07, 2016



Only two macros CRYPTO_MDEBUG and CRYPTO_MDEBUG_ABORT to control this.
If CRYPTO_MDEBUG is not set, #ifdef out the whole debug machinery.
        (Thanks to Jakob Bohm for the suggestion!)
Make the "change wrapper functions" be the only paradigm.
Wrote documentation!
Format the 'set func' functions so their paramlists are legible.
Format some multi-line comments.
Remove ability to get/set the "memory debug" functions at runtme.
Remove MemCheck_* and CRYPTO_malloc_debug_init macros.
Add CRYPTO_mem_debug(int flag) function.
Add test/memleaktest.
Rename CRYPTO_malloc_init to OPENSSL_malloc_init; remove needless calls.

Reviewed-by: Richard Levitte <levitte@openssl.org>

bbd86bf5

Remove the old VMS linker option file creator for shlibs · 3cb8c326
Richard Levitte authored Jan 07, 2016
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
```
3cb8c326
Enhance util/mkdef.pl to provide a VMS linker option file for shlibs · a388633d
Richard Levitte authored Jan 07, 2016
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
```
a388633d