Commits · 753585b94897f5628cf9c13d8a6c97861074febb · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

21 Mar, 2016 3 commits

Remove the mk1mf VC-WIN* builds and its supporting scripts · 753585b9

Richard Levitte authored Mar 17, 2016



The mk1mf build for the VC-WIN* targets is broken and the unified
scheme works well enough, so we clean out the old.

Reviewed-by: Andy Polyakov <appro@openssl.org>

753585b9

Fix ALPN - more fixes · 0351baae

Todd Short authored Mar 12, 2016



* Clear proposed, along with selected, before looking at ClientHello
* Add test case for above
* Clear NPN seen after selecting ALPN on server
* Minor documentation updates

Reviewed-by: Emilia Käsper <emilia@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

0351baae

Add a comment on dane_verify() logic · 89ff989d
Viktor Dukhovni authored Mar 20, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
89ff989d

20 Mar, 2016 8 commits

Remove #error from include files. · 3c27208f

Rich Salz authored Mar 18, 2016



Don't have #error statements in header files, but instead wrap
the contents of that file in #ifndef OPENSSL_NO_xxx
This means it is now always safe to include the header file.

Reviewed-by: Richard Levitte <levitte@openssl.org>

3c27208f

GH886: CONNECT should use HTTP/1.1 · 8230f6c7

Rich Salz authored Mar 19, 2016



By default you get 0.9 which isn't widely available.
But we use HTTP/1.0 for now.
Courtesy beusink@users.github.com

Reviewed-by: Tim Hudson <tjh@openssl.org>

8230f6c7

Have makedepend output to stdout and redirect it · f3e5948a

Richard Levitte authored Mar 20, 2016



This gives us better control of what files are produced.

Reviewed-by: Andy Polyakov <appro@openssl.org>

f3e5948a

ct_int.h only needed by crypto/ct · d57611ea

Rich Salz authored Mar 20, 2016



Merge ct_int.h into ct_locl.h

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

d57611ea

constify DSA_SIG_get0() · 99cccf36
Dr. Stephen Henson authored Mar 20, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
99cccf36
Move blake2_loclh to blake2 directory · 01ce6f74
Rich Salz authored Mar 20, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
01ce6f74

Fixed language · 270862b4

Alex Gaynor authored Mar 19, 2016


Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

270862b4

Fixed a bunch of typos in the docs · 35ed393e

Alex Gaynor authored Mar 19, 2016



Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>

35ed393e

19 Mar, 2016 25 commits

constify ECDSA_SIG_get0() · 34c2db9b

Dr. Stephen Henson authored Mar 17, 2016



PR#4436

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

34c2db9b

If the asm file to be compiled isn't generated, leave the ext alone · 674d5858
Richard Levitte authored Mar 19, 2016
```
Closes RT#4447

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
674d5858
make update · 812e0c8d
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
812e0c8d

Don't let 'generate' target depend on generated files, act directly instead · 9a9f8ee7

Richard Levitte authored Mar 19, 2016



One of the 'generate' targets depended on $(SRCDIR)/apps/progs.h,
which depended on...  nothing.  This meant it never got regenerated
once it existed, regardless of need.  Of course, we could have it
depend on all the files checked to generate it, but they also depend
on progs.h, so we'd end up getting cricular dependencies, which makes
make unhappy.

Furthermore, and this applies for the other generated files, having
them as targets means that they may be regenerated on the fly in some
cases, and since they get written to the source tree, this isn't such
a good idea if that tree is read-only (which is a possible situation
in an out-of-tree build).

So, we move all the actions to the 'generate' targets themselves, thus
making sure they get regenerated in a controlled manner and regardless
of dependencies.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

9a9f8ee7

apps/progs.pl: add back the INCLUDE_FUNCTION_TABLE wrapper · ad2c5ed7
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
ad2c5ed7
Revert "Ignore the generated apps/progs.h" · 37bbfd48
Viktor Dukhovni authored Mar 18, 2016
```
This reverts commit 91056e72

.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
37bbfd48
Revert "Generate apps/progs.h on the fly" · ffc8d605
Viktor Dukhovni authored Mar 18, 2016
```
This reverts commit 04e2a527

.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
ffc8d605
Revert "Include progs.h directly in openssl.c instead of via apps.h" · 1e7e1c8d
Viktor Dukhovni authored Mar 18, 2016
```
This reverts commit a45d7d53

.

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
1e7e1c8d
GH36: Add casts to match the documentation · 5a339364
Alex Gaynor authored Mar 19, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
5a339364
Correct faulty L<> links in .pods · c1e35057
Richard Levitte authored Mar 19, 2016
```
Closes RT#4450

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
c1e35057
Add a few more quotes for Windows (install_ssldirs) · 50bf25d2
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
50bf25d2

The command source are files, not directories · 41850f6b

Richard Levitte authored Mar 19, 2016



Therefore, they should be concatenated with the source directory using
catfile(), not catdir()

Reviewed-by: Rich Salz <rsalz@openssl.org>

41850f6b

Replace sed command with perl · 5287761b

Richard Levitte authored Mar 19, 2016



Some implementations of sed require a newline before an ending '}'.
The easier method is to replace that sed command with the
corresponding perl command.

Closes RT#4448

Reviewed-by: Rich Salz <rsalz@openssl.org>

5287761b

Clear the exit code from 'find' in 'make depend' · 243a98d4

Richard Levitte authored Mar 19, 2016



Depending on what has been built so far, all .d files may not be
present and 'find' will exit with non-zero exit code.  This isn't a
bother for us but may break make, so clear the exit code with an added
'exit 0'.

Closes RT#4444

Reviewed-by: Rich Salz <rsalz@openssl.org>

243a98d4

Shut find up about files not found · ac89799c

Richard Levitte authored Mar 19, 2016



Some of the files in $(DEPS) might not exist.  We don't need to know.

Reviewed-by: Rich Salz <rsalz@openssl.org>

ac89799c

Don't free up EVP_MD_CTX. · c6aca19b

Schüller Felix authored Mar 18, 2016



Don't free up passed EVP_MD_CTX in ASN1_item_sign_ctx(). This
simplifies handling and retains compatiblity with previous behaviour.

PR#4446

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Stephen Henson <steve@openssl.org>

c6aca19b

Use the dependencies received in generatesrc() · 769777b0

Richard Levitte authored Mar 19, 2016



generatesrc() did already receive dependency information, but never
used it, and never really needed to...  until now.

Reviewed-by: Rich Salz <rsalz@openssl.org>

769777b0

Ignore the generated apps/progs.h · 91056e72
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
91056e72
Generate apps/progs.h on the fly · 04e2a527
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
04e2a527
Include progs.h directly in openssl.c instead of via apps.h · a45d7d53
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
a45d7d53

Make apps/progs.pl more flexible · 3850f8cb

Richard Levitte authored Mar 19, 2016



Make Configure write @disablables to configdata.pm and have
apps/progs.pl use that data.

Reviewed-by: Rich Salz <rsalz@openssl.org>

3850f8cb

Correct the export list when writing configdata.pm · d4037cea
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
d4037cea
Correct the check of files to depend on against known generated ones · da1f2104
Richard Levitte authored Mar 19, 2016
```
The check was erroneously inversed

Reviewed-by: Rich Salz <rsalz@openssl.org>
```
da1f2104
Don't perform tsa tests if configured "no-ts" · bec5e4ae
Richard Levitte authored Mar 19, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
bec5e4ae

Correct incorrect path · 1c0e7dad

Richard Levitte authored Mar 19, 2016



In crypto, buildinf.h depends on ../configdata.pm, not ./configdata.pm

Reviewed-by: Rich Salz <rsalz@openssl.org>

1c0e7dad

18 Mar, 2016 4 commits

Better 'make depend' mechanism · a6adf099

Richard Levitte authored Mar 18, 2016



Instead of relying on the '-nt' test operator, which doesn't exist
everywhere, use find's '-newer' to find out if any of the known .d
files is newer than Makefile.

Closes RT#4444

Reviewed-by: Andy Polyakov <appro@openssl.org>

a6adf099

make update · b4ae8861
Richard Levitte authored Mar 18, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
b4ae8861
Implement support for no-ts · f3852635
Richard Levitte authored Mar 18, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
f3852635
apps/progs.pl: more consistent output for digests · 03f03129
Richard Levitte authored Mar 18, 2016
```
Reviewed-by: Rich Salz <rsalz@openssl.org>
```
03f03129