From 15451aff6bb61c9a7c8552c84109f3fc6daa242d Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Fri, 2 Aug 2024 04:54:22 -0600 Subject: ex_data is now implemented in crypto_ex_data.c --- crypto/CMakeLists.txt | 2 +- crypto/Makefile.am | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/crypto/CMakeLists.txt b/crypto/CMakeLists.txt index 5ee20ff..7d4ff70 100644 --- a/crypto/CMakeLists.txt +++ b/crypto/CMakeLists.txt @@ -221,9 +221,9 @@ set( ${CRYPTO_SRC} cpt_err.c cryptlib.c + crypto_ex_data.c crypto_init.c cversion.c - ex_data.c malloc-wrapper.c mem_clr.c mem_dbg.c diff --git a/crypto/Makefile.am b/crypto/Makefile.am index 6e1e975..cb463fb 100644 --- a/crypto/Makefile.am +++ b/crypto/Makefile.am @@ -203,6 +203,7 @@ endif libcrypto_la_SOURCES += cpt_err.c libcrypto_la_SOURCES += cryptlib.c +libcrypto_la_SOURCES += crypto_ex_data.c libcrypto_la_SOURCES += crypto_init.c if !HOST_WIN libcrypto_la_SOURCES += crypto_lock.c @@ -210,7 +211,6 @@ else libcrypto_la_SOURCES += compat/crypto_lock_win.c endif libcrypto_la_SOURCES += cversion.c -libcrypto_la_SOURCES += ex_data.c libcrypto_la_SOURCES += malloc-wrapper.c libcrypto_la_SOURCES += mem_clr.c libcrypto_la_SOURCES += mem_dbg.c -- cgit v1.2.3-55-g6feb From 73ba2f055709f60f33dbc1548020edb3b9174048 Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Fri, 2 Aug 2024 04:54:42 -0600 Subject: Update ChangeLog --- ChangeLog | 3 +++ 1 file changed, 3 insertions(+) diff --git a/ChangeLog b/ChangeLog index 20d185c..8608965 100644 --- a/ChangeLog +++ b/ChangeLog @@ -71,6 +71,9 @@ LibreSSL Portable Release Notes: - Added support for TLS PRF in the EVP KDF API. - Cleaned up cipher handling in SSL_SESSION. - Removed get_cipher from SSL_METHOD. + - Rewrote CRYPTO_EX_DATA from scratch. The only intentional change of + behavior is that there is now a hard limit on the number of indexes + that can be allocated. * Documentation improvements - Removed documentation of no longer existing API. * Testing and proactive security -- cgit v1.2.3-55-g6feb From 161984f56f2953ebedc1a97056e4fd9cb938d672 Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Fri, 2 Aug 2024 07:32:01 -0600 Subject: Use check_symbol_exists() rather than check_function_exists() --- tests/CMakeLists.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/tests/CMakeLists.txt b/tests/CMakeLists.txt index d81d012..f79f69e 100644 --- a/tests/CMakeLists.txt +++ b/tests/CMakeLists.txt @@ -676,7 +676,7 @@ set_tests_properties(shutdowntest PROPERTIES ENVIRONMENT "srcdir=${TEST_SOURCE_D # Emscripten does not support socketpair syscall. if(NOT (CMAKE_SYSTEM_NAME MATCHES "WindowsStore" OR EMSCRIPTEN)) set(SIGNERTEST_SRC signertest.c) - check_function_exists(pipe2 HAVE_PIPE2) + check_symbol_exists(pipe2 "fcntl.h unistd.h" HAVE_PIPE2) if(HAVE_PIPE2) add_definitions(-DHAVE_PIPE2) else() @@ -792,7 +792,7 @@ add_platform_test(tlslegacytest tlslegacytest) # Emscripten does not support socketpair syscall. if(NOT (CMAKE_SYSTEM_NAME MATCHES "WindowsStore" OR EMSCRIPTEN)) set(TLSTEST_SRC tlstest.c) - check_function_exists(pipe2 HAVE_PIPE2) + check_symbol_exists(pipe2 "fcntl.h unistd.h" HAVE_PIPE2) if(HAVE_PIPE2) add_definitions(-DHAVE_PIPE2) else() -- cgit v1.2.3-55-g6feb From c05b84c11a5d2a412016c21fc51b4cf6f61f34cf Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Fri, 2 Aug 2024 08:43:47 -0600 Subject: Silly ChangeLog entry to trigger CI --- ChangeLog | 1 + 1 file changed, 1 insertion(+) diff --git a/ChangeLog b/ChangeLog index 8608965..29bce3a 100644 --- a/ChangeLog +++ b/ChangeLog @@ -34,6 +34,7 @@ LibreSSL Portable Release Notes: - Added initial Emscripten support in CMake builds - Removed timegm() compatibility layer since all uses were replaced with OPENSSL_timegm(). Cleaned up the corresponding test harness. + - Fixed pipe2 detection to use check_symbol_exists() * Internal improvements - Cleaned up parts of the conf directory. Simplified some logic, fixed memory leaks. -- cgit v1.2.3-55-g6feb From cd0ae0ef32d308a4704006b4514e2d065ed8df3c Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Fri, 2 Aug 2024 09:08:05 -0600 Subject: Update ChangeLog --- ChangeLog | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/ChangeLog b/ChangeLog index 29bce3a..1230099 100644 --- a/ChangeLog +++ b/ChangeLog @@ -34,7 +34,6 @@ LibreSSL Portable Release Notes: - Added initial Emscripten support in CMake builds - Removed timegm() compatibility layer since all uses were replaced with OPENSSL_timegm(). Cleaned up the corresponding test harness. - - Fixed pipe2 detection to use check_symbol_exists() * Internal improvements - Cleaned up parts of the conf directory. Simplified some logic, fixed memory leaks. @@ -80,6 +79,9 @@ LibreSSL Portable Release Notes: * Testing and proactive security - Switched the remaining tests to new certs. * Compatibility changes + - Protocol parsing in libtls was changed. The no longer supported + TLSv1.1 and TLSv1.0 protocols are now completely ignored and no + longer enable or disable TLSv1.2 in surprising ways. - The one-step hashing functions, MD4(), MD5(), RIPEMD160(), SHA1(), all SHA-2, and HMAC() no longer support returning a static buffer. Callers must pass in a correctly sized buffer. -- cgit v1.2.3-55-g6feb