SUCCESSFUL build of OpenSSL branch master with options -d --strict-warnings no-shared
Platform and configuration command: $ uname -a Linux run 5.4.0-52-generic #57-Ubuntu SMP Thu Oct 15 10:57:00 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-shared Commit log since last time: c34063d7a1 Add a test for setting, popping and clearing error marks 4e08ea6f11 Allow multiple nested marks 5b1d94c11c Fix some warnings from clang 10 in params.c 908c9fc7ed apps/pkcs12: Clean up the order in which many options are presented 09afbec94b e_loader_attic.c: Improve result handling of file_load_try_decode() 61dd4168f5 Allow for PKCS#12 input without MAC in p12_kiss.c and e_loader_attic.c 3a6df6bd5c e_loader_attic.c: Remove redundant 'pass phrase' sub-string from try_decode_PKCS12() 0c2c560cb9 apps/storeutl: Add error output in case of parse/decryption/mac errors in input files 852feb3bd8 apps/pkcs12: Really do not perform MAC in case -nomac b84965aff0 apps/pkcs12: Do not prompt for password in case -nomac and -noenc/-nodes bb57c90e6c Minor improvements of doc for ca and x509 app 279b61d0ca apps/pkcs12: Retain test output files 9c73e48a08 Minor cleanup of error output for various apps c1097eecdf apps/ca: Minor code and doc cleanup d7e498ac55 Deprecate RSA harder b24d6c335d Rename internal drbg_ functions so they have an ossl_ prefix. b68a947fd2 Rename SHA3 internal functions so they have an ossl_ prefix 5687afdf03 rename sha1_ctrl to ossl_sha1_ctrl. 1dc188ba0e Provide side RNG functions renamed to have an ossl_ prefix. 893d3df972 rename mac_key_* to ossl_mac_key_* 572e6df7db rename md5_block_asm_data_order to ossl_md5_block_asm_data_order 627b73cc72 Rename md5_sha1_* ossl_md5_sha1_* 3800cc6f4d DOC: Fix example in OSSL_PARAM_int.pod f1d6670840 Swap to FIPS186-2 DSA generation outside of the FIPS module c2bd8d2783 Swap to DH_PARAMGEN_TYPE_GENERATOR as the default outside of the FIPS module d3d2c0dc68 Adapt ssltest_old to not use deprecated DH APIs 3105d84693 Extend the auto DH testing to check DH sizes b6ae56fd27 Add some additional test certificates/keys 1b2a55ffa2 Add a CHANGES.md entry for the "tmp_dh" functions/macros 33c39a0659 Add a test for the various ways of setting temporary DH params 0437309fdf Document some SSL DH related functions/macros 1072041b17 Return sensible values for some SSL ctrls 13c453728c Only disabled what we need to in a no-dh build 163f6dc1f7 Implement a replacement for SSL_set_tmp_dh() 9912be1b33 Remove deprecated functionality from s_server 8b7df247b7 Disable the DHParameters config option in a no-deprecated build 936d565768 Remove DH usage from tls_process_cke_dhe 184280971c Remove DH usage in tls_construct_server_key_exchange() cb5a427acf Avoid the use of a DH object in tls_construct_cke_dhe() 1b2b475517 Deprecate SSL_CTRL_SET_TMP_DH and other related ctrls 1ee22dc268 Convert TLS ServerKeyExchange processing to use an EVP_PKEY 091f6074c5 Convert TLS auto DH parameters to use EVP_PKEY 2b93900e28 DOC: Rewrite the section on reporting errors in doc/man3/ERR_put_error.pod e19c5a1064 CONF: Convert one last CONFerr() to ERR_raise() 01fe51578e Simplify util/err-to-raise b06e70b868 Really deprecate the old NAMEerr() macros bf57cab74b util/find-doc-nits: check podchecker() return value c7d32b6ba5 util/mkrc.pl: Make sure FILEVERSION and PRODUCTVERSION have four numbers ef2a44eb31 NetBSD build fix. ccbf3f90c4 DOC: Fixup the description of the -x509_strict option 4605c5ab47 Fix dsa securitycheck for fips. e557d46333 Add documentation for EVP_PKEY2PKCS8/EVP_PKCS82PKEY 317b7c57e4 Fixup EVP-MAC-KMAC documentation fce56f5b69 REF_PRINT: cast pointer to void to avoid warnings 3084b9d316 Document the provider KDF API. e76a696273 test/endecoder_legacy_test.c: new test for legacy comparison efb4667f72 Fix SUPPORT.md for better readability 322d56cd64 Fix a few github file references a18cf8fc63 Remove -C option from x509 command 1696b8909b Remove -C from dhparam,dsaparam,ecparam 256d41d437 BIO: Undefine UNICODE in b_addr.c to get POSIX declaration of gai_strerror() 105d01f1eb crypto/provider_core.c: fix a couple of faulty ERR_raise_data() calls a150f8e1fc CRYPTO: refactor ERR_raise()+ERR_add_error_data() to ERR_raise_data() 9311d0c471 Convert all {NAME}err() in crypto/ to their corresponding ERR_raise() call 31a6b52f6d EVP: Adapt EVP_PKEY2PKCS8() to better handle provider-native keys 0bb450fe2f DragonFlyBSD build fix and update. a04400fc74 Remove unused helper functions EVP_str2ctrl() & EVP_hex2ctrl(). a7da4d488d [test/recipes] Split test_fuzz into separate recipes 9ce8e0d17e Optimize AES-XTS mode in OpenSSL for aarch64 c87a7f31a3 apps/passwd: remove the -crypt option. 93c87f745d rsa_test: add return value check d8701e2523 Do not prepend $OPENSSL_CONF_INCLUDE to absolute include paths 368d9e030f Add ossl_is_absolute_path function to detect absolute paths 69d16b70cf Avoid duplicate ends_with_dirsep functions 122e81f070 test/recipes/30-test_evp_libctx.t: use fips-and-base.cnf f49d486075 test/evp_libctx_test.c: use OSSL_ENCODER instead of
SUCCESSFUL build of OpenSSL branch master with options -d --strict-warnings no-shared
Platform and configuration command: $ uname -a Linux run 4.15.0-54-generic #58-Ubuntu SMP Mon Jun 24 10:55:24 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-shared Commit log since last time: 4114964865 Build files: add module installation targets ae6b654b66 TEST: make and use a fipsinstall script c0bfc473d8 Use the libctx for all EVP_PKEY_CTX operations 4f6c704495 Re-enable FIPS testing in sslapitest.c 5e30f2fd58 Use a non-default libctx in sslapitest 09ec5e6f5d dhparam: white space cleaning 61b2afb50a apps: undeprecate the conditioned out apps 19d9be09d1 openssl: include the version a command was deprecated in the output text. f84fe4f448 apps: reinstate deprecated commands but using PKEY APIs 7539cb70eb dsaparam: update command line app to use EVP calls b304f8567c CHANGES: note which command line utilities are marked for deprecation but still available. 769cfc3bd0 Undeprecate DH_get_length() and DH_set_length() functions dddbbc6f39 gendsa: update command line app to use EVP calls 8f7e1f68cc genrsa: update command line app to use EVP calls 99a7c3a7bf openssl: include the version a command was deprecated in the output text. 188dd86ab4 apps: reinstate deprecated commands but using PKEY APIs ccefc3411e dhparam: update command line app to use EVP calls b0cfe526d7 tests: reinstate tests for deprecated but non-removed functionality cd3572a110 dsaparam: update command line app to use EVP calls 54affb77c5 rsa: update command line app to use EVP calls b940349de1 dsa: update command line app to use EVP calls e0331eb8b8 Prevent crash in X509_NAME_cmp() etc. when cert has no issuer or no serialNumber 753283cd23 Add CMP error reason 'missing reference cert' e599d0aecd Add CMP fuzzing to fuzz/cmp.c, including a couple of helpers in crypto/cmp/ a81151bd56 Add a couple of hints to fuzz/README.md 642f60d840 Rename CMP_PROTECTEDPART to OSSL_CMP_PROTECTEDPART for consistency 7a41760667 GOST2012 TLS ClientCertificateType Identifiers support ccb47dbf47 DOC: Extend the description of EVP_PKEY_CTX_new_from_name() 476de2e5e5 DOC: Add more description of EVP_PKEY_fromdata(), and examples 031c9bd3f3 apps/speed: fix invalid final report when run SM2 benchmarks in parallel ad16671d49 GOST cipher names adjustment 301ea192c7 INSTALL: document 'no-ui-console' rather than 'no-ui' 629c72db5f When calling the import_to function pass the libctx too 7da7b27eec Windows: Add type casting in CRYPTO_atomic_add to remove warning 4350a6bd42 doc: note that the FIPS provider contains some non-approved algorithms. 19985ac42c news: note the addition of ECX and SHAKE256 to the FIPS provider as non-approved algorithms b5bcc05302 pkey: free key manager on error path d8171446a2 ecx: check for errors creating public keys from private ones. c1e48c5171 s390: ECX key generation fixes. 43cd37014e ecx: add key generation support. 1ee1e55114 Add ECX to FIPS provider as non-FIPS algorithms 8a5cb59601 TEST: Add a test of keygen with an empty template in test/evp_extra_test.c d0ddf9b409 EVP: Fix calls to evp_pkey_export_to_provider() 6f89229603 TLSEXT_SIGALG_gostr34102012 0x0840 and 0x0841 support 7525c93030 Document X509_verify_ex() and X509_REQ_verify_ex() 465f34ed27 Introduce an internal version of X509_check_issued() 0820217441 Create a libctx aware X509_verify_ex() b27ed81943 Put sys-specific files in build.info 705536e2b5 Use build.info, not ifdef for crypto modules 7165593ce5 Add DH keygen to providers b03ec3b5d6 Add DSA keygen to provider 09b3654096 Make sure we always send an alert in libssl if we hit a fatal error e395ba223d When calling EC_POINT_point2buf we must use a libctx 137b274aee Document the new libctx aware private key functions d6a2bdf7f1 Make sure we use the libctx in libssl when loading PrivateKeys 1531241c54 Teach PEM_read_bio_PrivateKey about libctx 8755b08524 Teach the OSSL_STORE code about libctx f13fdeb321 Use the libctx in Ed448 private key decoding 472a88b79e Teach d2i_PrivateKey et al about libctx ca59b00bbd Fix no-pic static builds 49276c3569 EVP: fix memleak in evp_pkey_downgrade() 813d317178 EVP: Add a temporary SM2 hack to key generation 10d756a70e EC: Refactor EVP_PKEY_CTX curve setting macros for param generation 1f185f51a7 PROV: Implement EC param / key generation 2b9add6965 KEYMGMT: Add functions to get param/key generation parameters a5c864ce90 Fix Dynamic engine loading so that the call to ENGINE_load_builtin_engines() is performed. 9bf475fcf3 mkerr: remove legacy guards from generated error headers ff1f7cdeb1 Add ex_data to EVP_PKEY. 0437435a96 BIO_do_accept: correct error return value b93e2ec273 Fix some errors in documentation e32e00ab20 Initialize files that declare internal symbols 8270c4791d Rework util/find-doc-nits to distinguish internal documentation eacd30a703 Add manpage entry for X509_check_purpose() abfc73f374 Fix EVP_DigestSign interface when used with DES CMAC cc572c2564 EVP: legacy_ctrl_to_param() to handle provider side keys aec8de1a5f CMS KARI:
[openssl-commits] SUCCESSFUL build of OpenSSL branch master with options -d --strict-warnings no-shared
Platform and configuration command: $ uname -a Linux run 4.4.0-119-generic #143-Ubuntu SMP Mon Apr 2 16:08:24 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-shared Commit log since last time: 1a50eed Fix typo in x25519-x86_64.pl 910fff7 Skip the GOST test where appropriate fbe9daf Fix a memory leak in the ticket test d162340 Fix no-psk 03cdf55 Test that a failed resumption issues the correct number of tickets 5f26ddf Always issue new tickets when using TLSv1.3 stateful tickets 04d7814 Improve testing of stateful tickets 84475cc Don't remove sessions from the cache during PHA in TLSv1.3 _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits
[openssl-commits] SUCCESSFUL build of OpenSSL branch master with options -d --strict-warnings no-shared
Platform and configuration command: $ uname -a Linux run 4.4.0-93-generic #116-Ubuntu SMP Fri Aug 11 21:17:51 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux $ CC=clang ../openssl/config -d --strict-warnings no-shared Commit log since last time: c061daa Always use $ as shell prompt in example dd8f6ed Document the recursive option fb43ddc Add a recursive option to 'openssl storeutl' 15a1bd0 Disable the EGD seeding meachanism when stdio is disabled _ openssl-commits mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-commits