- Feb 14, 2016
-
-
Richard Levitte authored
While IO::Socket::IP is a core perl module (since Perl v5.19.8, or so says corelist), IO::Socket::INET6 has been around longer, is said to be more widely deployed, and most importantly, seems to have less bugs hitting us. We therefore prefer IO::Socket::INET6, and only fall back to IO::Socket::IP if the former doesn't exist on the local system. Reviewed-by:Viktor Dukhovni <viktor@openssl.org>
-
- Feb 13, 2016
-
-
Andy Polyakov authored
Reviewed-by:Rich Salz <rsalz@openssl.org>
-
Rainer Jung authored
Reviewed-by:Richard Levitte <levitte@openssl.org>
-
Viktor Szakats authored
Signed-off-by:
-
Richard Levitte authored
It seems that on some platforms, the perlasm scripts call the C compiler for certain checks. These scripts need the environment variable CC to have the C compiler command. Reviewed-by: -
Rich Salz authored
Reviewed-by: -
Richard Levitte authored
Test programs are now only built when running "make test" or "make build_tests". Reviewed-by: -
Richard Levitte authored
unix-Makefile.tmpl was lagging behind on this point. Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Richard Levitte authored
Also remove a spurious extra $(LDFLAGS) Reviewed-by: -
Viktor Szakats authored
Silencing this: crypto/async/arch/async_win.c: In function 'async_fibre_init_dispatcher': crypto/async/arch/async_win.c:112:12: warning: unused variable 'dispatcher' [-Wunused-variable] LPVOID dispatcher; ^ Signed-off-by: -
Richard Levitte authored
The installation of man files and html files alike didn't properly check that file names with different casing could be the same on case-insensitive file systems. This change fixes that. Reviewed-by: -
Benjamin Kaduk authored
The ocsp utility is something of a jack-of-all-trades; most anything related to the OCSP can be done with it. In particular, the manual page calls out that it can be used as either a client or a server of the protocol, but there are also a few things that it can do which do not quite fit into either role, such as encoding an OCSP request but not sending it, printing out a text form of an OCSP response (or request) from a file akin to the asn1parse utility, or performing a lookup into the server-side revocation database without actually sending a request or response. All three of these are documented as examples in the manual page, but the documentation prior to this commit is somewhat misleading, in that when printing the text form of an OCSP response, the code also attempts to verify the response, displaying an error message and returning failure if the response does not verify. (It is possible that the response would be able to verify with the given example, since the default trust roots are used for that verification, but OCSP responses frequently have alternate certification authorities that would require passing -CAfile or -CApath for verification.) Tidy up the documentation by passing -noverify for the case of converting from binary to textual representation, and also change a few instances of -respin to -reqin as appropriate, note that the -url option provides the same functionality as the -host and -path options, clarify that the example that saves an OCSP response to a file will also perform verification on that response, and fix a couple grammar nits in the manual page. Also remove an always-true conditional for rdb != NULL -- there are no codepaths in which it could be initialized at the time of this check. Signed-off-by:
Kurt Roeckx <kurt@openssl.org>
-
Richard Levitte authored
Reviewed-by: -
Dmitry-Me authored
Signed-off-by:
-
Dr. Stephen Henson authored
PR#4303 Reviewed-by: -
Richard Levitte authored
The previous method had some unfortunate consequences with --strict-warnings. To counteract, revert part of the previous change and move down the block of code that adds the user cflags and defines. Reviewed-by: -
Richard Levitte authored
Reviewed-by: -
Richard Levitte authored
In the early stages of creating the new test framework, 00-test_checkexes was a temporary check to ensure we had a recipe for every test program in test/. By now, this test has fulfilled its purpose, and we've learned how to make recipes properly. It's time for this check to go away. Reviewed-by: -
Richard Levitte authored
Otherwise, there will be an unbalance. Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
Reviewed-by: -
Andy Polyakov authored
RT#4230 Reviewed-by: -
Rob Percival authored
Removes SSIZE_MAX definition from bss_bio.c and changes that file to use OSSL_SSIZE_MAX. No need to account for OPENSSL_SYS_VXWORKS, since that never actually gets defined anywhere. It must be a historical artifact. Reviewed-by:
Ben Laurie <ben@openssl.org>
-
Viktor Dukhovni authored
Reviewed-by: -
Dr. Stephen Henson authored
Reviewed-by:
-
- Feb 12, 2016
-
-
Richard Levitte authored
We really needs a better util/shlib_wrap.sh, but will have to do for now. Reviewed-by: -
Richard Levitte authored
There was a catch 22, where 'make depend' directly after configuring in an otherwise pristine build tree would fail because buildinf.h didn't exist yet. This change has the depend building targets depend on the same other targets as the object file building targets, so the generation of buildinf.h and similar files would kick in during 'make depend'. Reviewed-by: -
Viktor Dukhovni authored
Reviewed-by: -
Andy Polyakov authored
RT#4210 Reviewed-by: -
Andy Polyakov authored
It's never problem if CRYPTO_ctr128_encrypt is called from EVP, because buffer in question is always aligned within EVP_CIPHER_CTX structure. RT#4218 Reviewed-by: -
Richard Levitte authored
INSTALL_PREFIX is a confusing name, as there's also --prefix. Instead, tag along with the rest of the open source world and adopt the Makefile variable DESTDIR to designate the desired staging directory. The Configure option --install_prefix is removed, the only way to designate a staging directory is with the Makefile variable (this is also implemented for VMS' descrip.mms et al). Reviewed-by: -
Andy Polyakov authored
Not all git versions understand **/Makefile, but all recognize that filename without any path applies to all directories. Reviewed-by: -
Andy Polyakov authored
Contemporary Xcode gcc is a front-end to clang, so that explicit gcc build is actually redundant on MacOS X. Reviewed-by: -
Rich Salz authored
Reviewed-by: -
Andy Polyakov authored
RT#4237 Reviewed-by:Matt Caswell <matt@openssl.org>
-
Richard Levitte authored
It's nearly impossible to determine what goes wrong in the tests running there without this. Reviewed-by: -
Richard Levitte authored
Reviewed-by:
-
