Commits · cc7113e8def99702ed59594e9eb7fea0bd1db518 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

31 May, 2016 1 commit
- return error in ct_move_scts() · cc7113e8
  Dr. Stephen Henson authored May 27, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
  cc7113e8
30 May, 2016 4 commits

Travis: update sanitizer configs · a7cbe963

Emilia Kasper authored May 12, 2016



- Use the new enable-ubsan and enable-asan configuration options.
- Separate ubsan and asan runs.
- In addition, run shared ubsan tests to get more coverage.
  (Shared asan tests need a bit more thought to get them working.)

Reviewed-by: Rich Salz <rsalz@openssl.org>

a7cbe963

Fix strdup macro redefinition · 8d95ca36

Mat authored May 27, 2016



This fixes the following error when the CRT debug heap (crtdbg.h) is used:
e_os.h(476): warning C4005: 'strdup': macro redefinition
C:\Program Files (x86)\Windows Kits\10\Include\10.0.10586.0\ucrt\crtdbg.h(319): note: see previous definition of 'strdup'
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1137)

8d95ca36

perl: use the 'if' module to conditionally load File::Glob · 23049aa5

Richard Levitte authored May 30, 2016



Trying to use normal perl conditions to conditionally 'use' a perl
module didn't quite work.  Using the 'if' module to do so does work.

Reviewed-by: Andy Polyakov <appro@openssl.org>

23049aa5

Make sure max in fmtstr() doesn't overflow into negativity · 453fc7a0
Richard Levitte authored May 30, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
453fc7a0

29 May, 2016 17 commits

set RAND_event and RAND_screen to deprecated in 1.1.0 in librypto.num · 6378809b

Joey Yandle authored May 17, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

6378809b

fix deprecation version number in docs · d407fd2c

Joey Yandle authored May 16, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

d407fd2c

update docs with descriptions and deprecation · 1931a04c

Joey Yandle authored May 16, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

1931a04c

fix return value in docs · 2ff3b693

Joey Yandle authored May 16, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

2ff3b693

add removed functions back as deprecated · 73241290

Joey Yandle authored May 16, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

73241290

get rid of now empty #if · ad0f926c

Joey Yandle authored Jan 13, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

ad0f926c

remove winrand.c entirely, nothing seems to reference it · 151a4376

Joey Yandle authored Jan 13, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

151a4376

cherry pick pr-512 changes · 6f0cc2a6

Joey Yandle authored Jan 12, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

6f0cc2a6

get rid of unnecessary include · 42af7479

Joey Yandle authored Jan 12, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

42af7479

remove RAND_screen and friends · 75dcf70a

Joey Yandle authored Jan 12, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

75dcf70a

cherry pick pr-512 changes · 888db7f2

Joey Yandle authored Jan 12, 2016



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

888db7f2

OR flags with CRYPT_SILENT to really make sure no UI pops up · 4447d829

Joey Yandle authored Dec 23, 2015



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

4447d829

fix endif comment · 1cd02c69

Joey Yandle authored Dec 20, 2015



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

1cd02c69

remove all WINCE ifdefs · 1150999e

Joey Yandle authored Dec 20, 2015



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

1150999e

- remove insane heap walk and kernel loading code; clean up style and calling conventions · eb9b92ec

Joey Yandle authored Dec 11, 2015



Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/1079)

eb9b92ec

x86_64 assembly pack: tolerate spaces in source directory name. · cfe1d992

Andy Polyakov authored May 28, 2016



[as it is now quoting $output is not required, but done just in case]

Reviewed-by: Richard Levitte <levitte@openssl.org>

cfe1d992

Configure,test/recipes: "pin" glob to File::Glob::glob. · 97855556

Andy Polyakov authored May 28, 2016



As it turns out default glob's behaviour for quoted argument varies
from version to version, making it impossible to Configure or run
tests in some cases. The reason for quoting globs was to accommodate
source path with spaces in its name, which was treated by default glob
as multiple paths. File::Glob::glob on the other hand doesn't consider
spaces as delimiters and therefore works with unquoted patterns.

[Unfortunaltely File::Glob::glob, being too csh-ly, doesn't work
on VMS, hence the "pinning" is conditional.]

Reviewed-by: Richard Levitte <levitte@openssl.org>

97855556

28 May, 2016 7 commits

Add more zalloc · f59f23c3

FdaSilvaYY authored Mar 06, 2016



Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/997)

f59f23c3

Fix some missing inits · 8e89e85f

FdaSilvaYY authored Mar 06, 2016



Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/997)

8e89e85f

poly1305/asm/poly1305-mips.pl: adhere to standard frame layout. · 8640f210
Andy Polyakov authored May 27, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
8640f210
SPARC assembly pack: add missing .type directives. · ff823ee8
Andy Polyakov authored May 27, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
ff823ee8
Change a call of OPENSSL_strcasecmp to strcasecmp · 38e19eb9
Richard Levitte authored May 27, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
38e19eb9
make update · da32e04b
Richard Levitte authored May 27, 2016
```
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
```
da32e04b

Remove internal functions OPENSSL_strcasecmp and OPENSSL_strncasecmp · 7233bea2

Richard Levitte authored May 27, 2016



Their only reason to exist was that they didn't exist in VMS before
version 7.0.  We do not support such old versions any more.

However, for the benefit of systems that don't get strings.h included
by string.h, we include the former in e_os.h.

RT#4458

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>

7233bea2

27 May, 2016 11 commits

include/openssl/e_os2.h: fix 'noreturn' pre-processor logic. · 90edbfcc

Andy Polyakov authored May 26, 2016



Newer gcc still recognizes e.g. -std=c9x in which case it wouldn't
have used 'noreturn' at all with original logic.

Reviewed-by: Richard Levitte <levitte@openssl.org>

90edbfcc

crypto/o_str.c: add _GNU_SOURCE strerror_r case. · efdb2d6c
Andy Polyakov authored May 27, 2016
```
Reviewed-by: Matt Caswell <matt@openssl.org>
```
efdb2d6c
crypto/o_str.c: strerror_s is provided by specific compiler run-time, · 43c4116c
Andy Polyakov authored May 26, 2016
```
not by OS [as was implied by guarding #if condition].

Reviewed-by: Matt Caswell <matt@openssl.org>
```
43c4116c
bn/bn_exp.c: explain 'volatile' in MOD_EXP_CTIME_COPY_FROM_PREBUF. · bb83c879
Andy Polyakov authored May 26, 2016
```
Reviewed-by: Tim Hudson <tjh@openssl.org>
```
bb83c879
bf/build.info: engage assembly module. · dae9e15d
Andy Polyakov authored May 22, 2016
```
Reviewed-by: Richard Levitte <levitte@openssl.org>
```
dae9e15d

Avoid calling memcpy with lenght of 0 · 369e9339

Kurt Roeckx authored May 26, 2016



We can call memcpy() with a pointer 1 past the last allocated byte and length
of 0 and you can argue that that's undefined behaviour.

Reported by tis-interpreter

Reviewed-by: Rich Salz <rsalz@openssl.org>

GH: #1132

369e9339

Fix ssl_cert_set0_chain invalid pointer · 4379d5ce

Todd Short authored May 25, 2016



When setting the certificate chain, if a certificate doesn't pass
security checks, then chain may point to a freed STACK_OF(X509)

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>

4379d5ce

Fix fmtstr for BIO_printf() et al · 230c691a

Richard Levitte authored May 21, 2016



-   If we have a maximum amount of characters permitted to be printed
    (for example "%.2s", which allows for a maximum of 2 chars), we
    minimize the number of characters from the string to printed to
    that size.
-   If there is space for padding and there is a maximum amount of
    characters to print (for example "%3.2s", which shall give at
    least a 1 space padding), the amount of characters to pad with
    gets added to the maximum so the minimum field size (3 in this
    example) gets filled out.

Reviewed-by: Matt Caswell <matt@openssl.org>

230c691a

make sure to put quotes around -config argument, in case of spaces · ac1a998d
Richard Levitte authored May 25, 2016
```
RT#4486

Reviewed-by: Matt Caswell <matt@openssl.org>
```
ac1a998d
perl glob: make sure to put quotes around the pattern, in case of spaces · 04b7805a
Richard Levitte authored May 25, 2016
```
RT#4486

Reviewed-by: Matt Caswell <matt@openssl.org>
```
04b7805a

Windows makefile: handle the case with space in source directory · cb663908

Richard Levitte authored May 25, 2016



This applies when building out-of-source.

RT#4486

NOTE: we can't do the same for Unix, as Unix make doesn't handle this
type of issue.  Also, directory specs are much less likely to have
spaces on Unix...

Reviewed-by: Matt Caswell <matt@openssl.org>

cb663908