head 1.1; branch 1.1.1; access; symbols netbsd-11-0-RC5:1.1.1.1.2.1 openssl-3-5-7:1.1.1.2 netbsd-11-0-RC4:1.1.1.1 openssl-3-5-6:1.1.1.1 netbsd-11-0-RC3:1.1.1.1 netbsd-11-0-RC2:1.1.1.1 netbsd-11-0-RC1:1.1.1.1 openssl-3-5-5:1.1.1.1 perseant-exfatfs-base-20250801:1.1.1.1 netbsd-11:1.1.1.1.0.2 netbsd-11-base:1.1.1.1 openssl-3-5-1:1.1.1.1 OPENSSL:1.1.1; locks; strict; comment @# @; 1.1 date 2025.07.17.13.51.09; author christos; state Exp; branches 1.1.1.1; next ; commitid 6pNLKemi6p4Pw63G; 1.1.1.1 date 2025.07.17.13.51.09; author christos; state Exp; branches 1.1.1.1.2.1; next 1.1.1.2; commitid 6pNLKemi6p4Pw63G; 1.1.1.2 date 2026.06.09.19.09.21; author christos; state Exp; branches; next ; commitid 8dbJ3AaZnYQfM9JG; 1.1.1.1.2.1 date 2026.06.15.18.42.42; author martin; state Exp; branches; next ; commitid mNE27ubkHZRZpVJG; desc @@ 1.1 log @Initial revision @ text @#! /usr/bin/env perl # -*- mode: perl; -*- # Copyright 2016-2025 The OpenSSL Project Authors. All Rights Reserved. # # Licensed under the Apache License 2.0 (the "License"). You may not use # this file except in compliance with the License. You can obtain a copy # in the file LICENSE in the source distribution or at # https://www.openssl.org/source/license.html ## Configure -- OpenSSL source tree configuration script use 5.10.0; use strict; use Config; use FindBin; use lib "$FindBin::Bin/util/perl"; use File::Basename; use File::Spec::Functions qw/:DEFAULT abs2rel rel2abs splitdir/; use File::Path qw/mkpath/; use OpenSSL::fallback "$FindBin::Bin/external/perl/MODULES.txt"; use OpenSSL::Glob; use OpenSSL::Template; use OpenSSL::config; # see INSTALL.md for instructions. my $orig_death_handler = $SIG{__DIE__}; $SIG{__DIE__} = \&death_handler; my $usage="Usage: Configure [no- ...] [enable- ...] [-Dxxx] [-lxxx] [-Lxxx] [-fxxx] [-Kxxx] [no-hw-xxx|no-hw] [[no-]threads] [[no-]thread-pool] [[no-]default-thread-pool] [[no-]shared] [[no-]zlib|zlib-dynamic] [no-asm] [no-egd] [sctp] [386] [--prefix=DIR] [--openssldir=OPENSSLDIR] [--with-xxx[=vvv]] [--config=FILE] os/compiler[:flags]\n"; my $banner = <<"EOF"; ********************************************************************** *** *** *** OpenSSL has been successfully configured *** *** *** *** If you encounter a problem while building, please open an *** *** issue on GitHub *** *** and include the output from the following command: *** *** *** *** perl configdata.pm --dump *** *** *** *** (If you are new to OpenSSL, you might want to consult the *** *** 'Troubleshooting' section in the INSTALL.md file first) *** *** *** ********************************************************************** EOF # Options: # # --config add the given configuration file, which will be read after # any "Configurations*" files that are found in the same # directory as this script. # --prefix prefix for the OpenSSL installation, which includes the # directories bin, lib, include, share/man, share/doc/openssl # This becomes the value of INSTALLTOP in Makefile # (Default: /usr/local) # --openssldir OpenSSL data area, such as openssl.cnf, certificates and keys. # If it's a relative directory, it will be added on the directory # given with --prefix. # This becomes the value of OPENSSLDIR in Makefile and in C. # (Default: PREFIX/ssl) # --banner=".." Output specified text instead of default completion banner # # -w Don't wait after showing a Configure warning # # --cross-compile-prefix Add specified prefix to binutils components. # # --api One of 0.9.8, 1.0.0, 1.0.1, 1.0.2, 1.1.0, 1.1.1, or 3.0 # Define the public APIs as they were for that version # including patch releases. If 'no-deprecated' is also # given, do not compile support for interfaces deprecated # up to and including the specified OpenSSL version. # # no-hw-xxx do not compile support for specific crypto hardware. # Generic OpenSSL-style methods relating to this support # are always compiled but return NULL if the hardware # support isn't compiled. # # enable-demos Enable the building of the example code in the demos directory # enable-h3demo Enable the http3 demo, which currently only links to the # external nghttp3 library on unix platforms # # enable-hqinterop # Enable the building of the hq-interop code for construction # of the interop container # # no-hw do not compile support for any crypto hardware. # [no-]threads [don't] try to create a library that is suitable for # multithreaded applications (default is "threads" if we # know how to do it) # [no-]thread-pool # [don't] allow thread pool functionality # [no-]default-thread-pool # [don't] allow default thread pool functionality # [no-]shared [don't] try to create shared libraries when supported. # [no-]pic [don't] try to build position independent code when supported. # If disabled, it also disables shared and dynamic-engine. # no-asm do not use assembler # no-egd do not compile support for the entropy-gathering daemon APIs # [no-]zlib [don't] compile support for zlib compression. # zlib-dynamic Like "zlib", but the zlib library is expected to be a shared # library and will be loaded at run-time by the OpenSSL library. # sctp include SCTP support # no-quic disable QUIC support # no-uplink Don't build support for UPLINK interface. # enable-weak-ssl-ciphers # Enable weak ciphers that are disabled by default. # 386 generate 80386 code in assembly modules # no-sse2 disables IA-32 SSE2 code in assembly modules, the above # mentioned '386' option implies this one # no- build without specified algorithm (dsa, idea, rc5, ...) # - + All options which are unknown to the 'Configure' script are # / passed through to the compiler. Unix-style options beginning # with a '-' or '+' are recognized, as well as Windows-style # options beginning with a '/'. If the option contains arguments # separated by spaces, then the URL-style notation %20 can be # used for the space character in order to avoid having to quote # the option. For example, -opt%20arg gets expanded to -opt arg. # In fact, any ASCII character can be encoded as %xx using its # hexadecimal encoding. # -static while -static is also a pass-through compiler option (and # as such is limited to environments where it's actually # meaningful), it triggers a number configuration options, # namely no-pic, no-shared and no-threads. It is # argued that the only reason to produce statically linked # binaries (and in context it means executables linked with # -static flag, and not just executables linked with static # libcrypto.a) is to eliminate dependency on specific run-time, # a.k.a. libc version. The mentioned config options are meant # to achieve just that. Unfortunately on Linux it's impossible # to eliminate the dependency completely for openssl executable # because of getaddrinfo and gethostbyname calls, which can # invoke dynamically loadable library facility anyway to meet # the lookup requests. For this reason on Linux statically # linked openssl executable has rather debugging value than # production quality. # # BN_LLONG use the type 'long long' in crypto/bn/bn.h # RC4_CHAR use 'char' instead of 'int' for RC4_INT in crypto/rc4/rc4.h # Following are set automatically by this script # # MD5_ASM use some extra md5 assembler, # SHA1_ASM use some extra sha1 assembler, must define L_ENDIAN for x86 # RMD160_ASM use some extra ripemd160 assembler, # SHA256_ASM sha256_block is implemented in assembler # SHA512_ASM sha512_block is implemented in assembler # AES_ASM AES_[en|de]crypt is implemented in assembler # Minimum warning options... any contributions to OpenSSL should at least # get past these. Note that we only use these with C compilers, not with # C++ compilers. # -DPEDANTIC complements -pedantic and is meant to mask code that # is not strictly standard-compliant and/or implementation-specific, # e.g. inline assembly, disregards to alignment requirements, such # that -pedantic would complain about. Incidentally -DPEDANTIC has # to be used even in sanitized builds, because sanitizer too is # supposed to and does take notice of non-standard behaviour. Then # -pedantic with pre-C9x compiler would also complain about 'long # long' not being supported. As 64-bit algorithms are common now, # it grew impossible to resolve this without sizeable additional # code, so we just tell compiler to be pedantic about everything # but 'long long' type. my @@gcc_devteam_warn = qw( -DPEDANTIC -pedantic -Wno-long-long -DUNUSEDRESULT_DEBUG -Wall -Wmissing-declarations -Wextra -Wno-unused-parameter -Wno-missing-field-initializers -Wno-unterminated-string-initialization -Wswitch -Wsign-compare -Wshadow -Wformat -Wno-type-limits -Wundef -Werror -Wmissing-prototypes -Wstrict-prototypes ); # These are used in addition to $gcc_devteam_warn when the compiler is clang. # TODO(openssl-team): fix problems and investigate if (at least) the # following warnings can also be enabled: # -Wcast-align # -Wunreachable-code -- no, too ugly/compiler-specific # -Wlanguage-extension-token -- no, we use asm() # -Wunused-macros -- no, too tricky for BN and _XOPEN_SOURCE etc # -Wextended-offsetof -- no, needed in CMS ASN1 code my @@clang_devteam_warn = qw( -Wno-unknown-warning-option -Wno-parentheses-equality -Wno-language-extension-token -Wno-extended-offsetof -Wno-missing-braces -Wno-tautological-constant-out-of-range-compare -Wconditional-uninitialized -Wincompatible-pointer-types-discards-qualifiers -Wmissing-variable-declarations ); my @@cl_devteam_warn = qw( /WX ); my $strict_warnings = 0; # As for $BSDthreads. Idea is to maintain "collective" set of flags, # which would cover all BSD flavors. -pthread applies to them all, # but is treated differently. OpenBSD expands is as -D_POSIX_THREAD # -lc_r, which is sufficient. FreeBSD 4.x expands it as -lc_r, # which has to be accompanied by explicit -D_THREAD_SAFE and # sometimes -D_REENTRANT. FreeBSD 5.x expands it as -lc_r, which # seems to be sufficient? our $BSDthreads="-pthread -D_THREAD_SAFE -D_REENTRANT"; # # API compatibility name to version number mapping. # my $apitable = { # This table expresses when API additions or changes can occur. # The numbering used changes from 3.0 and on because we updated # (solidified) our version numbering scheme at that point. # From 3.0 and on, we internalise the given version number in decimal # as MAJOR * 10000 + MINOR * 100 + 0 "3.0.0" => 30000, "3.0" => 30000, # Note that before 3.0, we didn't have the same version number scheme. # Still, the numbering we use here covers what we need. "1.1.1" => 10101, "1.1.0" => 10100, "1.0.2" => 10002, "1.0.1" => 10001, "1.0.0" => 10000, "0.9.8" => 908, }; # For OpenSSL::config::get_platform my %guess_opts = (); my $dryrun = 0; our %table = (); our %config = (); our %withargs = (); our $now_printing; # set to current entry's name in print_table_entry # (todo: right thing would be to encapsulate name # into %target [class] and make print_table_entry # a method) # Forward declarations ############################################### # read_config(filename) # # Reads a configuration file and populates %table with the contents # (which the configuration file places in %targets). sub read_config; # resolve_config(target) # # Resolves all the late evaluations, inheritances and so on for the # chosen target and any target it inherits from. sub resolve_config; # Information collection ############################################# # Unified build supports separate build dir my $srcdir = catdir(absolutedir(dirname($0))); # catdir ensures local syntax my $blddir = catdir(absolutedir(".")); # catdir ensures local syntax # File::Spec::Unix doesn't detect case insensitivity, so we make sure to # check if the source and build directory are really the same, and make # them so. This avoids all kinds of confusion later on. # We must check @@File::Spec::ISA rather than using File::Spec->isa() to # know if File::Spec ended up loading File::Spec::Unix. $srcdir = $blddir if (grep(/::Unix$/, @@File::Spec::ISA) && samedir($srcdir, $blddir)); my $dofile = abs2rel(catfile($srcdir, "util/dofile.pl")); my $local_config_envname = 'OPENSSL_LOCAL_CONFIG_DIR'; $config{sourcedir} = abs2rel($srcdir, $blddir); $config{builddir} = abs2rel($blddir, $blddir); # echo -n 'holy hand grenade of antioch' | openssl sha256 $config{FIPSKEY} = 'f4556650ac31d35461610bac4ed81b1a181b2d8a43ea2854cbae22ca74560813'; # Collect reconfiguration information if needed my @@argvcopy=@@ARGV; if (grep /^reconf(igure)?$/, @@argvcopy) { die "reconfiguring with other arguments present isn't supported" if scalar @@argvcopy > 1; if (-f "./configdata.pm") { my $file = "./configdata.pm"; unless (my $return = do $file) { die "couldn't parse $file: $@@" if $@@; die "couldn't do $file: $!" unless defined $return; die "couldn't run $file" unless $return; } @@argvcopy = defined($configdata::config{perlargv}) ? @@{$configdata::config{perlargv}} : (); die "Incorrect data to reconfigure, please do a normal configuration\n" if (grep(/^reconf/,@@argvcopy)); $config{perlenv} = $configdata::config{perlenv} // {}; } else { die "Insufficient data to reconfigure, please do a normal configuration\n"; } } $config{perlargv} = [ @@argvcopy ]; # Historical: if known directories in crypto/ have been removed, it means # that those sub-systems are disabled. # (the other option would be to removed them from the SUBDIRS statement in # crypto/build.info) # We reverse the input list for cosmetic purely reasons, to compensate that # 'unshift' adds at the front of the list (i.e. in reverse input order). foreach ( reverse sort( 'aes', 'aria', 'bf', 'camellia', 'cast', 'des', 'dh', 'dsa', 'ec', 'hmac', 'idea', 'md2', 'md5', 'mdc2', 'rc2', 'rc4', 'rc5', 'ripemd', 'seed', 'sha', 'sm2', 'sm3', 'sm4') ) { unshift @@argvcopy, "no-$_" if ! -d catdir($srcdir, 'crypto', $_); } # Collect version numbers my %version = (); collect_information( collect_from_file(catfile($srcdir,'VERSION.dat')), qr/\s*(\w+)\s*=\s*(.*?)\s*$/ => sub { # Only define it if there is a value at all if ($2 ne '') { my $k = $1; my $v = $2; # Some values are quoted. Trim the quotes $v = $1 if $v =~ /^"(.*)"$/; $version{uc $k} = $v; } }, "OTHERWISE" => sub { die "Something wrong with this line:\n$_\nin $srcdir/VERSION.dat" }, ); $config{major} = $version{MAJOR} // 'unknown'; $config{minor} = $version{MINOR} // 'unknown'; $config{patch} = $version{PATCH} // 'unknown'; $config{prerelease} = defined $version{PRE_RELEASE_TAG} ? "-$version{PRE_RELEASE_TAG}" : ''; $config{build_metadata} = defined $version{BUILD_METADATA} ? "+$version{BUILD_METADATA}" : ''; $config{shlib_version} = $version{SHLIB_VERSION} // 'unknown'; $config{release_date} = $version{RELEASE_DATE} // 'xx XXX xxxx'; $config{version} = "$config{major}.$config{minor}.$config{patch}"; $config{full_version} = "$config{version}$config{prerelease}$config{build_metadata}"; die "erroneous version information in VERSION.dat: ", "$config{version}, $config{shlib_version}\n" unless (defined $version{MAJOR} && defined $version{MINOR} && defined $version{PATCH} && defined $version{SHLIB_VERSION}); # Collect target configurations my $pattern = catfile(dirname($0), "Configurations", "*.conf"); foreach (sort glob($pattern)) { &read_config($_); } if (defined env($local_config_envname)) { if ($^O eq 'VMS') { # VMS environment variables are logical names, # which can be used as is $pattern = $local_config_envname . ':' . '*.conf'; } else { $pattern = catfile(env($local_config_envname), '*.conf'); } foreach (sort glob($pattern)) { &read_config($_); } } # Fail if no configuration is apparent if (!%table) { print "Failed to find any os/compiler configurations. Please make sure the Configurations directory is included.\n"; &usage; } # Save away perl command information $config{perl_cmd} = $^X; $config{perl_version} = $Config{version}; $config{perl_archname} = $Config{archname}; $config{prefix}=""; $config{openssldir}=""; $config{processor}=""; $config{libdir}=""; my $auto_threads=1; # enable threads automatically? true by default my $default_ranlib; # Known TLS and DTLS protocols my @@tls = qw(ssl3 tls1 tls1_1 tls1_2 tls1_3); my @@dtls = qw(dtls1 dtls1_2); # Explicitly known options that are possible to disable. They can # be regexps, and will be used like this: /^no-${option}$/ # For developers: keep it sorted alphabetically my @@disablables = ( "acvp-tests", "afalgeng", "apps", "argon2", "aria", "asan", "asm", "async", "atexit", "autoalginit", "autoerrinit", "autoload-config", "bf", "blake2", "brotli", "brotli-dynamic", "buildtest-c++", "bulk", "cached-fetch", "camellia", "capieng", "winstore", "cast", "chacha", "cmac", "cmp", "cms", "comp", "crypto-mdebug", "ct", "default-thread-pool", "demos", "h3demo", "hqinterop", "deprecated", "des", "devcryptoeng", "dgram", "dh", "docs", "dsa", "dso", "dtls", "dynamic-engine", "ec", "ec2m", "ec_nistp_64_gcc_128", "ecdh", "ecdsa", "ecx", "egd", "engine", "err", "external-tests", "filenames", "fips", "fips-securitychecks", "fips-post", "fips-jitter", "fuzz-afl", "fuzz-libfuzzer", "gost", "http", "idea", "integrity-only-ciphers", "jitter", "ktls", "legacy", "loadereng", "makedepend", "md2", "md4", "mdc2", "ml-dsa", "ml-kem", "module", "msan", "multiblock", "nextprotoneg", "ocb", "ocsp", "padlockeng", "pic", "pie", "pinshared", "poly1305", "posix-io", "psk", "quic", "unstable-qlog", "rc2", "rc4", "rc5", "rdrand", "rfc3779", "rmd160", "scrypt", "sctp", "secure-memory", "seed", "shared", "siphash", "siv", "slh-dsa", "sm2", "sm2-precomp", "sm3", "sm4", "sock", "srp", "srtp", "sse2", "ssl", "ssl-trace", "static-engine", "stdio", "sslkeylog", "tests", "tfo", "thread-pool", "threads", "tls", "tls-deprecated-ec", "trace", "ts", "ubsan", "ui-console", "unit-test", "uplink", "weak-ssl-ciphers", "whirlpool", "zlib", "zlib-dynamic", "zstd", "zstd-dynamic", ); foreach my $proto ((@@tls, @@dtls)) { push(@@disablables, $proto); push(@@disablables, "$proto-method") unless $proto eq "tls1_3"; } # Internal disablables, for aliasing purposes. They serve no special # purpose here, but allow scripts to get to know them through configdata.pm, # where these are merged with @@disablables. # The actual aliasing mechanism is done via %disable_cascades my @@disablables_int = qw( crmf ); my %deprecated_disablables = ( "ssl2" => undef, "buf-freelists" => undef, "crypto-mdebug-backtrace" => undef, "hw" => "hw", # causes cascade, but no macro "hw-padlock" => "padlockeng", "ripemd" => "rmd160", "ui" => "ui-console", "heartbeats" => undef, ); # All of the following are disabled by default: our %disabled = ( # "what" => "comment" "fips" => "default", "fips-jitter" => "default", "asan" => "default", "brotli" => "default", "brotli-dynamic" => "default", "buildtest-c++" => "default", "crypto-mdebug" => "default", "crypto-mdebug-backtrace" => "default", "demos" => "default", "h3demo" => "default", "hqinterop" => "default", "devcryptoeng" => "default", "ec_nistp_64_gcc_128" => "default", "egd" => "default", "external-tests" => "default", "fuzz-afl" => "default", "fuzz-libfuzzer" => "default", "pie" => "default", "jitter" => "default", "ktls" => "default", "md2" => "default", "msan" => "default", "rc5" => "default", "sctp" => "default", "ssl3" => "default", "ssl3-method" => "default", "sslkeylog" => "default", "tfo" => "default", "trace" => "default", "ubsan" => "default", "unit-test" => "default", "weak-ssl-ciphers" => "default", "zlib" => "default", "zlib-dynamic" => "default", "zstd" => "default", "zstd-dynamic" => "default", ); # Note: => pair form used for aesthetics, not to truly make a hash table my @@disable_cascades = ( # "what" => [ "cascade", ... ] "bulk" => [ "shared", "dso", "aria", "async", "atexit", "autoload-config", "blake2", "bf", "camellia", "cast", "chacha", "cmac", "cms", "cmp", "comp", "ct", "des", "dgram", "dh", "dsa", "ec", "engine", "filenames", "idea", "ktls", "md4", "ml-dsa", "ml-kem", "multiblock", "nextprotoneg", "ocsp", "ocb", "poly1305", "psk", "rc2", "rc4", "rmd160", "seed", "siphash", "siv", "sm3", "sm4", "srp", "srtp", "ssl3-method", "ssl-trace", "tfo", "ts", "ui-console", "whirlpool", "fips-securitychecks" ], sub { $config{processor} eq "386" } => [ "sse2" ], "ssl" => [ "ssl3" ], "ssl3-method" => [ "ssl3" ], "zlib" => [ "zlib-dynamic" ], "brotli" => [ "brotli-dynamic" ], "zstd" => [ "zstd-dynamic" ], "des" => [ "mdc2" ], "deprecated" => [ "tls-deprecated-ec" ], "ec" => [ qw(ec2m ecdsa ecdh sm2 gost ecx tls-deprecated-ec) ], "dgram" => [ "dtls", "quic", "sctp" ], "sock" => [ "dgram", "tfo" ], "dtls" => [ @@dtls ], sub { 0 == scalar grep { !$disabled{$_} } @@dtls } => [ "dtls" ], "tls" => [ @@tls ], sub { 0 == scalar grep { !$disabled{$_} } @@tls } => [ "tls" ], "tls1_3" => [ "quic" ], "quic" => [ "unstable-qlog" ], "crypto-mdebug" => [ "crypto-mdebug-backtrace" ], "module" => [ "dynamic-engine", "fips" ], # Without shared libraries, dynamic engines aren't possible. # This is due to them having to link with libcrypto and register features # using the ENGINE functionality, and since that relies on global tables, # those *have* to be exactly the same as the ones accessed from the app, # which cannot be guaranteed if shared libraries aren't present. # (note that even with shared libraries, both the app and dynamic engines # must be linked with the same library) "shared" => [ "dynamic-engine", "uplink" ], "dso" => [ "dynamic-engine", "module" ], # Other modules don't necessarily have to link with libcrypto, so shared # libraries do not have to be a condition to produce those. # Without position independent code, there can be no shared libraries # or modules. "pic" => [ "shared", "module" ], "engine" => [ "dynamic-engine", grep(/eng$/, @@disablables) ], "dynamic-engine" => [ "loadereng" ], "hw" => [ "padlockeng" ], # no-autoalginit is only useful when building non-shared "autoalginit" => [ "shared", "apps", "fips" ], "stdio" => [ "apps", "capieng", "egd" ], "apps" => [ "tests" ], "tests" => [ "external-tests" ], "comp" => [ "zlib", "brotli", "zstd" ], "sm3" => [ "sm2" ], sub { !$disabled{"unit-test"} } => [ "heartbeats" ], sub { !$disabled{"msan"} } => [ "asm" ], "cmac" => [ "siv" ], "legacy" => [ "md2" ], "cmp" => [ "crmf" ], "fips" => [ "fips-securitychecks", "fips-post", "acvp-tests", "fips-jitter" ], "threads" => [ "thread-pool" ], "thread-pool" => [ "default-thread-pool" ], "blake2" => [ "argon2" ], "deprecated-3.0" => [ "engine", "srp" ], "http" => [ "ocsp" ] ); # Avoid protocol support holes. Also disable all versions below N, if version # N is disabled while N+1 is enabled. # my @@list = (reverse @@tls); while ((my $first, my $second) = (shift @@list, shift @@list)) { last unless @@list; push @@disable_cascades, ( sub { !$disabled{$first} && $disabled{$second} } => [ @@list ] ); unshift @@list, $second; } my @@list = (reverse @@dtls); while ((my $first, my $second) = (shift @@list, shift @@list)) { last unless @@list; push @@disable_cascades, ( sub { !$disabled{$first} && $disabled{$second} } => [ @@list ] ); unshift @@list, $second; } # Explicit "no-..." options will be collected in %disabled along with the defaults. # To remove something from %disabled, use "enable-foo". # For symmetry, "disable-foo" is a synonym for "no-foo". # For the "make variables" CPPINCLUDES and CPPDEFINES, we support lists with # platform specific list separators. Users from those platforms should # recognise those separators from how you set up the PATH to find executables. # The default is the Unix like separator, :, but as an exception, we also # support the space as separator. my $list_separator_re = { VMS => qr/(? qr/(? {$^O} // qr/(? env('AR'), ARFLAGS => [], AS => undef, ASFLAGS => [], CC => env('CC'), CFLAGS => [ env('CFLAGS') || () ], CXX => env('CXX'), CXXFLAGS => [ env('CXXFLAGS') || () ], CPP => undef, CPPFLAGS => [ env('CPPFLAGS') || () ], # -D, -I, -Wp, CPPDEFINES => [], # Alternative for -D CPPINCLUDES => [], # Alternative for -I CROSS_COMPILE => env('CROSS_COMPILE'), HASHBANGPERL=> env('HASHBANGPERL') || env('PERL'), LD => undef, LDFLAGS => [ env('LDFLAGS') || () ], # -L, -Wl, LDLIBS => [ env('LDLIBS') || () ], # -l MT => undef, MTFLAGS => [], PERL => env('PERL') || ($^O ne "VMS" ? $^X : "perl"), RANLIB => env('RANLIB'), RC => env('RC') || env('WINDRES'), RCFLAGS => [ env('RCFLAGS') || () ], OBJCOPY => undef, RM => undef, ); # Info about what "make variables" may be prefixed with the cross compiler # prefix. This should NEVER mention any such variable with a list for value. my @@user_crossable = qw ( AR AS CC CXX CPP LD MT RANLIB RC ); # The same but for flags given as Configure options. These are *additional* # input, as opposed to the VAR=string option that override the corresponding # config target attributes my %useradd = ( ASFLAGS => [], CPPDEFINES => [], CPPINCLUDES => [], CPPFLAGS => [], CFLAGS => [], CXXFLAGS => [], LDFLAGS => [], LDLIBS => [], RCFLAGS => [], ); my %user_synonyms = ( HASHBANGPERL=> 'PERL', RC => 'WINDRES', ); # Some target attributes have been renamed, this is the translation table my %target_attr_translate =( ar => 'AR', as => 'AS', cc => 'CC', cxx => 'CXX', cpp => 'CPP', hashbangperl => 'HASHBANGPERL', ld => 'LD', mt => 'MT', ranlib => 'RANLIB', rc => 'RC', rm => 'RM', ); # Initialisers coming from 'config' scripts $config{defines} = [ split(/$list_separator_re/, env('__CNF_CPPDEFINES')) ]; $config{includes} = [ split(/$list_separator_re/, env('__CNF_CPPINCLUDES')) ]; $config{cppflags} = [ env('__CNF_CPPFLAGS') || () ]; $config{cflags} = [ env('__CNF_CFLAGS') || () ]; $config{cxxflags} = [ env('__CNF_CXXFLAGS') || () ]; $config{lflags} = [ env('__CNF_LDFLAGS') || () ]; $config{ex_libs} = [ env('__CNF_LDLIBS') || () ]; $config{openssl_api_defines}=[]; $config{openssl_sys_defines}=[]; $config{openssl_feature_defines}=[]; $config{options}=""; $config{build_type} = "release"; my $target=""; my %cmdvars = (); # Stores FOO='blah' type arguments my %unsupported_options = (); my %deprecated_options = (); # If you change this, update apps/version.c my @@known_seed_sources = qw(getrandom devrandom os egd none rdcpu); my @@seed_sources = (); while (@@argvcopy) { $_ = shift @@argvcopy; # Support env variable assignments among the options if (m|^(\w+)=(.+)?$|) { $cmdvars{$1} = $2; # Every time a variable is given as a configuration argument, # it acts as a reset if the variable. if (exists $user{$1}) { $user{$1} = ref $user{$1} eq "ARRAY" ? [] : undef; } #if (exists $useradd{$1}) # { # $useradd{$1} = []; # } next; } # VMS is a case insensitive environment, and depending on settings # out of our control, we may receive options uppercased. Let's # downcase at least the part before any equal sign. if ($^O eq "VMS") { s/^([^=]*)/lc($1)/e; } # some people just can't read the instructions, clang people have to... s/^-no-(?!integrated-as)/no-/; # rewrite some options in "enable-..." form s /^-?-?shared$/enable-shared/; s /^sctp$/enable-sctp/; s /^threads$/enable-threads/; s /^zlib$/enable-zlib/; s /^zlib-dynamic$/enable-zlib-dynamic/; s /^fips$/enable-fips/; if (/^(no|disable|enable)-(.+)$/) { my $word = $2; if ($word !~ m|hw(?:-.+)| # special treatment for hw regexp opt && !exists $deprecated_disablables{$word} && !grep { $word eq $_ } @@disablables) { $unsupported_options{$_} = 1; next; } } if (/^no-(.+)$/ || /^disable-(.+)$/) { foreach my $proto ((@@tls, @@dtls)) { if ($1 eq "$proto-method") { $disabled{"$proto"} = "option($proto-method)"; last; } } if ($1 eq "dtls") { foreach my $proto (@@dtls) { $disabled{$proto} = "option(dtls)"; } $disabled{"dtls"} = "option(dtls)"; } elsif ($1 eq "ssl") { # Last one of its kind $disabled{"ssl3"} = "option(ssl)"; } elsif ($1 eq "tls") { # XXX: Tests will fail if all SSL/TLS # protocols are disabled. foreach my $proto (@@tls) { $disabled{$proto} = "option(tls)"; } } elsif ($1 eq "static-engine") { delete $disabled{"dynamic-engine"}; } elsif ($1 eq "dynamic-engine") { $disabled{"dynamic-engine"} = "option"; } elsif (exists $deprecated_disablables{$1}) { $deprecated_options{$_} = 1; if (defined $deprecated_disablables{$1}) { $disabled{$deprecated_disablables{$1}} = "option"; } } elsif ($1 =~ m|hw(?:-.+)|) # deprecate hw options in regexp form { $deprecated_options{$_} = 1; } else { $disabled{$1} = "option"; } # No longer an automatic choice $auto_threads = 0 if ($1 eq "threads"); } elsif (/^enable-(.+)$/) { if ($1 eq "static-engine") { $disabled{"dynamic-engine"} = "option"; } elsif ($1 eq "dynamic-engine") { delete $disabled{"dynamic-engine"}; } elsif ($1 eq "zlib-dynamic") { delete $disabled{"zlib"}; } elsif ($1 eq "brotli-dynamic") { delete $disabled{"brotli"}; } elsif ($1 eq "pie") { delete $disabled{"pie"}; } elsif ($1 eq "zstd-dynamic") { delete $disabled{"zstd"}; } elsif ($1 eq "fips-jitter") { delete $disabled{"fips"}; delete $disabled{"jitter"}; } my $algo = $1; delete $disabled{$algo}; # No longer an automatic choice $auto_threads = 0 if ($1 eq "threads"); } elsif (/^-d$/) # From older 'config' { $config{build_type} = "debug"; } elsif (/^-v$/) # From older 'config' { $guess_opts{verbose} = 1; } elsif (/^-w$/) { $guess_opts{nowait} = 1; } elsif (/^-t$/) # From older 'config' { $dryrun = 1; } elsif (/^--strict-warnings$/) { # Pretend that our strict flags is a C flag, and replace it # with the proper flags later on push @@{$useradd{CFLAGS}}, '--ossl-strict-warnings'; $strict_warnings=1; } elsif (/^--debug$/) { $config{build_type} = "debug"; } elsif (/^--release$/) { $config{build_type} = "release"; } elsif (/^386$/) { $config{processor}=386; } elsif (/^rsaref$/) { # No RSAref support any more since it's not needed. # The check for the option is there so scripts aren't # broken } elsif (m|^[-+/]|) { if (/^--prefix=(.*)$/) { $config{prefix}=$1; } elsif (/^--api=(.*)$/) { my $api = $1; die "Unknown API compatibility level $api" unless defined $apitable->{$api}; $config{api}=$apitable->{$api}; } elsif (/^--libdir=(.*)$/) { $config{libdir}=$1; } elsif (/^--openssldir=(.*)$/) { $config{openssldir}=$1; } elsif (/^--with-jitter-include=(.*)$/) { $withargs{jitter_include}=$1; } elsif (/^--with-jitter-lib=(.*)$/) { $withargs{jitter_lib}=$1; } elsif (/^--with-zlib-lib=(.*)$/) { $withargs{zlib_lib}=$1; } elsif (/^--with-zlib-include=(.*)$/) { $withargs{zlib_include}=$1; } elsif (/^--with-brotli-lib=(.*)$/) { $withargs{brotli_lib}=$1; } elsif (/^--with-brotli-include=(.*)$/) { $withargs{brotli_include}=$1; } elsif (/^--with-zstd-lib=(.*)$/) { $withargs{zstd_lib}=$1; } elsif (/^--with-zstd-include=(.*)$/) { $withargs{zstd_include}=$1; } elsif (/^--with-fuzzer-lib=(.*)$/) { $withargs{fuzzer_lib}=$1; } elsif (/^--with-fuzzer-include=(.*)$/) { $withargs{fuzzer_include}=$1; } elsif (/^--with-rand-seed=(.*)$/) { foreach my $x (split(m|,|, $1)) { die "Unknown --with-rand-seed choice $x\n" if ! grep { $x eq $_ } @@known_seed_sources; push @@seed_sources, $x; } } elsif (/^--fips-key=(.*)$/) { $user{FIPSKEY}=lc($1); die "Non-hex character in FIPS key\n" if $user{FIPSKEY} =~ /[^a-f0-9]/; die "FIPS key must have even number of characters\n" if length $1 & 1; die "FIPS key too long (64 bytes max)\n" if length $1 > 64; } elsif (/^--banner=(.*)$/) { $banner = $1 . "\n"; } elsif (/^--cross-compile-prefix=(.*)$/) { $user{CROSS_COMPILE}=$1; } elsif (/^--config=(.*)$/) { read_config $1; } elsif (/^-l(.*)$/) { push @@{$useradd{LDLIBS}}, $_; } elsif (/^-framework$/) { push @@{$useradd{LDLIBS}}, $_, shift(@@argvcopy); } elsif (/^-L(.*)$/ or /^-Wl,/) { push @@{$useradd{LDFLAGS}}, $_; } elsif (/^-rpath$/ or /^-R$/) # -rpath is the OSF1 rpath flag # -R is the old Solaris rpath flag { my $rpath = shift(@@argvcopy) || ""; $rpath .= " " if $rpath ne ""; push @@{$useradd{LDFLAGS}}, $_, $rpath; } elsif (/^-static$/) { push @@{$useradd{LDFLAGS}}, $_; } elsif (m|^[-/]D(.*)$|) { push @@{$useradd{CPPDEFINES}}, $1; } elsif (m|^[-/]I(.*)$|) { push @@{$useradd{CPPINCLUDES}}, $1; } elsif (/^-Wp,$/) { push @@{$useradd{CPPFLAGS}}, $1; } else # common if (/^[-+]/), just pass down... { # Treat %xx as an ASCII code (e.g. replace %20 by a space character). # This provides a simple way to pass options with arguments separated # by spaces without quoting (e.g. -opt%20arg translates to -opt arg). $_ =~ s/%([0-9a-f]{1,2})/chr(hex($1))/gei; push @@{$useradd{CFLAGS}}, $_; push @@{$useradd{CXXFLAGS}}, $_; } } elsif (m|^/|) { # Treat %xx as an ASCII code (e.g. replace %20 by a space character). # This provides a simple way to pass options with arguments separated # by spaces without quoting (e.g. /opt%20arg translates to /opt arg). $_ =~ s/%([0-9a-f]{1,2})/chr(hex($1))/gei; push @@{$useradd{CFLAGS}}, $_; push @@{$useradd{CXXFLAGS}}, $_; } else { die "target already defined - $target (offending arg: $_)\n" if ($target ne ""); $target=$_; } unless ($_ eq $target || /^no-/ || /^disable-/) { # "no-..." follows later after implied deactivations # have been derived. (Don't take this too seriously, # we really only write OPTIONS to the Makefile out of # nostalgia.) if ($config{options} eq "") { $config{options} = $_; } else { $config{options} .= " ".$_; } } } if (keys %deprecated_options) { warn "***** Deprecated options: ", join(", ", keys %deprecated_options), "\n"; } if (keys %unsupported_options) { die "***** Unsupported options: ", join(", ", keys %unsupported_options), "\n"; } # If any %useradd entry has been set, we must check that the "make # variables" haven't been set. We start by checking of any %useradd entry # is set. if (grep { scalar @@$_ > 0 } values %useradd) { # Hash of env / make variables names. The possible values are: # 1 - "make vars" # 2 - %useradd entry set # 3 - both set my %detected_vars = map { my $v = 0; $v += 1 if $cmdvars{$_}; $v += 2 if @@{$useradd{$_}}; $_ => $v } keys %useradd; # If any of the corresponding "make variables" is set, we error if (grep { $_ & 1 } values %detected_vars) { my $names = join(', ', grep { $detected_vars{$_} > 0 } sort keys %detected_vars); die <<"_____"; ***** Mixing make variables and additional compiler/linker flags as ***** configure command line option is not permitted. ***** Affected make variables: $names _____ } } # Check through all supported command line variables to see if any of them # were set, and canonicalise the values we got. If no compiler or linker # flag or anything else that affects %useradd was set, we also check the # environment for values. my $anyuseradd = grep { defined $_ && (ref $_ ne 'ARRAY' || @@$_) } values %useradd; foreach (keys %user) { my $value = $cmdvars{$_}; $value //= env($_) unless $anyuseradd; $value //= defined $user_synonyms{$_} ? $cmdvars{$user_synonyms{$_}} : undef; $value //= defined $user_synonyms{$_} ? env($user_synonyms{$_}) : undef unless $anyuseradd; if (defined $value) { if (ref $user{$_} eq 'ARRAY') { if ($_ eq 'CPPDEFINES' || $_ eq 'CPPINCLUDES') { $user{$_} = [ split /$list_separator_re/, $value ]; } else { $user{$_} = [ $value ]; } } elsif (!defined $user{$_}) { $user{$_} = $value; } } } if (grep { /-rpath\b/ } ($user{LDFLAGS} ? @@{$user{LDFLAGS}} : ()) && !$disabled{shared} && !($disabled{asan} && $disabled{msan} && $disabled{ubsan})) { die "***** Cannot simultaneously use -rpath, shared libraries, and\n", "***** any of asan, msan or ubsan\n"; } # If no target was given, try guessing. unless ($target) { my %system_config = OpenSSL::config::get_platform(%guess_opts, %user); # The $system_config{disable} is used to populate %disabled with # entries that aren't already there. foreach ( @@{$system_config{disable} // []} ) { $disabled{$_} = 'system' unless defined $disabled{$_}; } delete $system_config{disable}; # Override config entries with stuff from the guesser. # It's assumed that this really is nothing new. %config = ( %config, %system_config ); $target = $system_config{target}; } sub disable { my $disable_type = shift; for (@@_) { $disabled{$_} = $disable_type; } my @@tocheckfor = (@@_ ? @@_ : keys %disabled); while (@@tocheckfor) { my %new_tocheckfor = (); my @@cascade_copy = (@@disable_cascades); while (@@cascade_copy) { my ($test, $descendents) = (shift @@cascade_copy, shift @@cascade_copy); if (ref($test) eq "CODE" ? $test->() : defined($disabled{$test})) { foreach (grep { !defined($disabled{$_}) } @@$descendents) { $new_tocheckfor{$_} = 1; $disabled{$_} = "cascade"; } } } @@tocheckfor = (keys %new_tocheckfor); } } disable(); # First cascade run our $die = sub { die @@_; }; if ($target eq "TABLE") { local $die = sub { warn @@_; }; foreach (sort keys %table) { print_table_entry($_, "TABLE"); } exit 0; } if ($target eq "LIST") { foreach (sort keys %table) { print $_,"\n" unless $table{$_}->{template}; } exit 0; } if ($target eq "HASH") { local $die = sub { warn @@_; }; print "%table = (\n"; foreach (sort keys %table) { print_table_entry($_, "HASH"); } exit 0; } print "Configuring OpenSSL version $config{full_version} "; print "for target $target\n"; if (scalar(@@seed_sources) == 0) { print "Using os-specific seed configuration\n"; push @@seed_sources, 'os'; } if (scalar(grep { $_ eq 'egd' } @@seed_sources) > 0) { delete $disabled{'egd'}; } if (scalar(grep { $_ eq 'none' } @@seed_sources) > 0) { die "Cannot seed with none and anything else" if scalar(@@seed_sources) > 1; warn <<_____ if scalar(@@seed_sources) == 1; ============================== WARNING =============================== You have selected the --with-rand-seed=none option, which effectively disables automatic reseeding of the OpenSSL SEED-SRC random generator. All operations depending on the random generator such as creating keys will not work unless the random generator is seeded manually by the application. Instead of manually seeding, a different random generator can be set at runtime in openssl.cnf or configured at build time with -DOPENSSL_DEFAULT_SEED_SRC. Please read the 'Note on random number generation' section in the INSTALL.md instructions and the RAND_DRBG(7) manual page for more details. ============================== WARNING =============================== _____ } push @@{$config{openssl_feature_defines}}, map { (my $x = $_) =~ tr|[\-a-z]|[_A-Z]|; "OPENSSL_RAND_SEED_$x" } @@seed_sources; my $provider_string = $disabled{"fips-post"} ? "non-compliant FIPS Provider" : "FIPS Provider"; $config{FIPS_VENDOR} = (defined $version{FIPS_VENDOR} ? "$version{FIPS_VENDOR} $provider_string for OpenSSL" : "OpenSSL $provider_string"); # Backward compatibility? if ($target =~ m/^CygWin32(-.*)$/) { $target = "Cygwin".$1; } # Support for legacy targets having a name starting with 'debug-' my ($d, $t) = $target =~ m/^(debug-)?(.*)$/; if ($d) { $config{build_type} = "debug"; # If we do not find debug-foo in the table, the target is set to foo. if (!$table{$target}) { $target = $t; } } if ($target) { # It's possible that we have different config targets for specific # toolchains, so we try to detect them, and go for the plain config # target if not. my $found; foreach ( ( "$target-$user{CC}", "$target", undef ) ) { $found=$_ if $table{$_} && !$table{$_}->{template}; last if $found; } $target = $found; } else { # If we don't have a config target now, we try the C compiler as we # fallback my $cc = $user{CC} // 'cc'; $target = $cc if $table{$cc} && !$table{$cc}->{template}; } &usage unless $target; exit 0 if $dryrun; # From older 'config' $config{target} = $target; my %target = resolve_config($target); foreach (keys %target_attr_translate) { $target{$target_attr_translate{$_}} = $target{$_} if $target{$_}; delete $target{$_}; } %target = ( %{$table{DEFAULTS}}, %target ); my %conf_files = map { $_ => 1 } (@@{$target{_conf_fname_int}}); $config{conf_files} = [ sort keys %conf_files ]; # Using sub disable within these loops may prove fragile, so we run # a cascade afterwards foreach my $feature (@@{$target{disable}}) { if (exists $deprecated_disablables{$feature}) { warn "***** config $target disables deprecated feature $feature\n"; } elsif (!grep { $feature eq $_ } @@disablables) { die "***** config $target disables unknown feature $feature\n"; } $disabled{$feature} = 'config'; } foreach my $feature (@@{$target{enable}}) { if ("default" eq ($disabled{$feature} // "")) { if (exists $deprecated_disablables{$feature}) { warn "***** config $target enables deprecated feature $feature\n"; } elsif (!grep { $feature eq $_ } @@disablables) { die "***** config $target enables unknown feature $feature\n"; } delete $disabled{$feature}; } } # If uplink_arch isn't defined, disable uplink $disabled{uplink} = 'no uplink_arch' unless (defined $target{uplink_arch}); # If asm_arch isn't defined, disable asm $disabled{asm} = 'no asm_arch' unless (defined $target{asm_arch}); disable(); # Run a cascade now $target{CXXFLAGS}//=$target{CFLAGS} if $target{CXX}; $target{cxxflags}//=$target{cflags} if $target{CXX}; $target{exe_extension}=".exe" if ($config{target} eq "DJGPP"); $target{exe_extension}=".pm" if ($config{target} =~ /vos/); # Fill %config with values from %user, and in case those are undefined or # empty, use values from %target (acting as a default). foreach (keys %user) { my $ref_type = ref $user{$_}; # Temporary function. Takes an intended ref type (empty string or "ARRAY") # and a value that's to be coerced into that type. my $mkvalue = sub { my $type = shift; my $value = shift; my $undef_p = shift; die "Too many arguments for \$mkvalue" if @@_; while (ref $value eq 'CODE') { $value = $value->(); } if ($type eq 'ARRAY') { return undef unless defined $value; return undef if ref $value ne 'ARRAY' && !$value; return undef if ref $value eq 'ARRAY' && !@@$value; return [ $value ] unless ref $value eq 'ARRAY'; } return undef unless $value; return $value; }; $config{$_} = $mkvalue->($ref_type, $user{$_}) || $mkvalue->($ref_type, $target{$_}); delete $config{$_} unless defined $config{$_}; } # Finish up %config by appending things the user gave us on the command line # apart from "make variables" foreach (keys %useradd) { # The must all be lists, so we assert that here die "internal error: \$useradd{$_} isn't an ARRAY\n" unless ref $useradd{$_} eq 'ARRAY'; if (defined $config{$_}) { push @@{$config{$_}}, @@{$useradd{$_}}; } else { $config{$_} = [ @@{$useradd{$_}} ]; } } # At this point, we can forget everything about %user and %useradd, # because it's now all been merged into the corresponding $config entry if ($config{prefix} && !$config{CROSS_COMPILE}) { die "Directory given with --prefix MUST be absolute\n" unless file_name_is_absolute($config{prefix}); } if (grep { $_ =~ /(?:^|\s)-static(?:\s|$)/ } @@{$config{LDFLAGS}}) { disable('static', 'pic', 'threads'); } # Allow overriding the build file name $config{build_file} = env('BUILDFILE') || $target{build_file} || "Makefile"; # Make sure build_scheme is consistent. $target{build_scheme} = [ $target{build_scheme} ] if ref($target{build_scheme}) ne "ARRAY"; my ($builder, $builder_platform, @@builder_opts) = @@{$target{build_scheme}}; foreach my $checker (($builder_platform."-".$config{build_file}."-checker.pm", $builder_platform."-checker.pm")) { my $checker_path = catfile($srcdir, "Configurations", $checker); if (-f $checker_path) { my $fn = $ENV{CONFIGURE_CHECKER_WARN} ? sub { warn $@@; } : sub { die $@@; }; if (! do $checker_path) { if ($@@) { $fn->($@@); } elsif ($!) { $fn->($!); } else { $fn->("The detected tools didn't match the platform\n"); } } last; } } push @@{$config{defines}}, "NDEBUG" if $config{build_type} eq "release"; if ($target =~ /^mingw/ && `$config{CC} --target-help 2>&1` =~ m/-mno-cygwin/m) { push @@{$config{cflags}}, "-mno-cygwin"; push @@{$config{cxxflags}}, "-mno-cygwin" if $config{CXX}; push @@{$config{shared_ldflag}}, "-mno-cygwin"; } if ($target =~ /linux.*-mips/ && !$disabled{asm} && !grep { $_ =~ /-m(ips|arch=)/ } (@@{$config{CFLAGS}})) { # minimally required architecture flags for assembly modules my $value; $value = '-mips2' if ($target =~ /mips32/); $value = '-mips3' if ($target =~ /mips64/); unshift @@{$config{cflags}}, $value; unshift @@{$config{cxxflags}}, $value if $config{CXX}; } # If threads aren't disabled, check how possible they are unless ($disabled{threads}) { if ($auto_threads) { # Enabled by default, disable it forcibly if unavailable if ($target{thread_scheme} eq "(unknown)") { disable("unavailable", 'threads'); } } else { # The user chose to enable threads explicitly, let's see # if there's a chance that's possible if ($target{thread_scheme} eq "(unknown)") { # If the user asked for "threads" and we don't have internal # knowledge how to do it, [s]he is expected to provide any # system-dependent compiler options that are necessary. We # can't truly check that the given options are correct, but # we expect the user to know what [s]He is doing. if (!@@{$config{CFLAGS}} && !@@{$config{CPPDEFINES}}) { die "You asked for multi-threading support, but didn't\n" ,"provide any system-specific compiler options\n"; } } } } # Find out if clang's sanitizers have been enabled with -fsanitize # flags and ensure that the corresponding %disabled elements area # removed to reflect that the sanitizers are indeed enabled. my %detected_sanitizers = (); foreach (grep /^-fsanitize=/, @@{$config{CFLAGS} || []}) { (my $checks = $_) =~ s/^-fsanitize=//; foreach (split /,/, $checks) { my $d = { address => 'asan', undefined => 'ubsan', memory => 'msan' } -> {$_}; next unless defined $d; $detected_sanitizers{$d} = 1; if (defined $disabled{$d}) { die "***** Conflict between disabling $d and enabling $_ sanitizer" if $disabled{$d} ne "default"; delete $disabled{$d}; } } } # If threads still aren't disabled, add a C macro to ensure the source # code knows about it. Any other flag is taken care of by the configs. unless($disabled{threads}) { push @@{$config{openssl_feature_defines}}, "OPENSSL_THREADS"; } if ($disabled{"unstable-qlog"}) { $disabled{"qlog"} = 1; } my $no_shared_warn=0; if (($target{shared_target} // '') eq "") { $no_shared_warn = 1 if (!$disabled{shared} || !$disabled{"dynamic-engine"}); disable('no-shared-target', 'pic'); } if ($disabled{"dynamic-engine"}) { $config{dynamic_engines} = 0; } else { $config{dynamic_engines} = 1; } unless ($disabled{asan} || defined $detected_sanitizers{asan}) { push @@{$config{cflags}}, "-fsanitize=address"; } unless ($disabled{ubsan} || defined $detected_sanitizers{ubsan}) { push @@{$config{cflags}}, "-fsanitize=undefined", "-fno-sanitize-recover=all", "-DPEDANTIC"; } unless ($disabled{msan} || defined $detected_sanitizers{msan}) { push @@{$config{cflags}}, "-fsanitize=memory"; } unless ($disabled{"fuzz-libfuzzer"} && $disabled{"fuzz-afl"} && $disabled{asan} && $disabled{ubsan} && $disabled{msan}) { push @@{$config{cflags}}, "-fno-omit-frame-pointer", "-g"; push @@{$config{cxxflags}}, "-fno-omit-frame-pointer", "-g" if $config{CXX}; } # # Platform fix-ups # # This saves the build files from having to check if ($disabled{pic}) { foreach (qw(shared_cflag shared_cxxflag shared_cppflag shared_defines shared_includes shared_ldflag module_cflags module_cxxflags module_cppflags module_defines module_includes module_lflags)) { delete $config{$_}; $target{$_} = ""; } } else { push @@{$config{lib_defines}}, "OPENSSL_PIC"; } if ($target{sys_id} ne "") { push @@{$config{openssl_sys_defines}}, "OPENSSL_SYS_$target{sys_id}"; } my %predefined_C = compiler_predefined($config{CROSS_COMPILE}.$config{CC}); my %predefined_CXX = $config{CXX} ? compiler_predefined($config{CROSS_COMPILE}.$config{CXX}) : (); unless ($disabled{asm}) { # big endian systems can use ELFv2 ABI if ($target eq "linux-ppc64" || $target eq "BSD-ppc64") { $target{perlasm_scheme} = "linux64v2" if ($predefined_C{_CALL_ELF} == 2); } } # Check for makedepend capabilities. if (!$disabled{makedepend}) { # If the attribute makedep_scheme is defined, then we assume that the # config target and its associated build file are programmed to deal # with it. # If makedep_scheme is undefined, we go looking for GCC compatible # dependency making, and if that's not available, we try to fall back # on 'makedepend'. if ($target{makedep_scheme}) { $config{makedep_scheme} = $target{makedep_scheme}; # If the makedepcmd attribute is defined, copy it. If not, the # build files will have to fend for themselves. $config{makedepcmd} = $target{makedepcmd} if $target{makedepcmd}; } elsif (($predefined_C{__GNUC__} // -1) >= 3 && !($predefined_C{__APPLE_CC__} && !$predefined_C{__clang__})) { # We know that GNU C version 3 and up as well as all clang # versions support dependency generation, but Xcode did not # handle $cc -M before clang support (but claims __GNUC__ = 3) $config{makedep_scheme} = 'gcc'; } else { # In all other cases, we look for 'makedepend', and set the # makedep_scheme value if we found it. $config{makedepcmd} = which('makedepend'); $config{makedep_scheme} = 'makedepend' if $config{makedepcmd}; } # If no depend scheme is set, we disable makedepend disable('unavailable', 'makedepend') unless $config{makedep_scheme}; } if (!$disabled{asm} && !$predefined_C{__MACH__} && $^O ne 'VMS' && !$predefined_C{_AIX}) { # probe for -Wa,--noexecstack option... if ($predefined_C{__clang__}) { # clang has builtin assembler, which doesn't recognize --help, # but it apparently recognizes the option in question on all # supported platforms even when it's meaningless. In other words # probe would fail, but probed option always accepted... push @@{$config{cflags}}, "-Wa,--noexecstack", "-Qunused-arguments"; } else { my $cc = $config{CROSS_COMPILE}.$config{CC}; open(PIPE, "$cc -Wa,--help -c -o null.$$.o -x assembler /dev/null 2>&1 |"); while() { if (m/--noexecstack/) { push @@{$config{cflags}}, "-Wa,--noexecstack"; last; } } close(PIPE); unlink("null.$$.o"); } } # Deal with bn_ops ################################################### $config{bn_ll} =0; my $def_int="unsigned int"; $config{rc4_int} =$def_int; ($config{b64l},$config{b64},$config{b32})=(0,0,1); my $count = 0; foreach (sort split(/\s+/,$target{bn_ops})) { $count++ if /SIXTY_FOUR_BIT|SIXTY_FOUR_BIT_LONG|THIRTY_TWO_BIT/; $config{bn_ll}=1 if $_ eq 'BN_LLONG'; $config{rc4_int}="unsigned char" if $_ eq 'RC4_CHAR'; ($config{b64l},$config{b64},$config{b32}) =(0,1,0) if $_ eq 'SIXTY_FOUR_BIT'; ($config{b64l},$config{b64},$config{b32}) =(1,0,0) if $_ eq 'SIXTY_FOUR_BIT_LONG'; ($config{b64l},$config{b64},$config{b32}) =(0,0,1) if $_ eq 'THIRTY_TWO_BIT'; } die "Exactly one of SIXTY_FOUR_BIT|SIXTY_FOUR_BIT_LONG|THIRTY_TWO_BIT can be set in bn_ops\n" if $count > 1; $config{api} = $config{major} * 10000 + $config{minor} * 100 unless $config{api}; foreach (keys %$apitable) { $disabled{"deprecated-$_"} = "deprecation" if $disabled{deprecated} && $config{api} >= $apitable->{$_}; } disable(); # Run a cascade now # Hack cflags for better warnings (dev option) ####################### # "Stringify" the C and C++ flags string. This permits it to be made part of # a string and works as well on command lines. $config{cflags} = [ map { (my $x = $_) =~ s/([\\\"])/\\$1/g; $x } @@{$config{cflags}} ]; $config{cxxflags} = [ map { (my $x = $_) =~ s/([\\\"])/\\$1/g; $x } @@{$config{cxxflags}} ] if $config{CXX}; $config{openssl_api_defines} = [ "OPENSSL_CONFIGURED_API=".$config{api}, ]; my @@strict_warnings_collection=(); if ($strict_warnings) { my $wopt; my $gccver = $predefined_C{__GNUC__} // -1; if ($gccver >= 4) { push @@strict_warnings_collection, @@gcc_devteam_warn; push @@strict_warnings_collection, @@clang_devteam_warn if (defined($predefined_C{__clang__})); } elsif ($config{target} =~ /^VC-/) { push @@strict_warnings_collection, @@cl_devteam_warn; } else { warn "WARNING --strict-warnings requires gcc[>=4] or gcc-alike, or MSVC" } } $config{CFLAGS} = [ map { $_ eq '--ossl-strict-warnings' ? @@strict_warnings_collection : ( $_ ) } @@{$config{CFLAGS}} ]; unless ($disabled{afalgeng}) { $config{afalgeng}=""; if (grep { $_ eq 'afalgeng' } @@{$target{enable}}) { push @@{$config{engdirs}}, "afalg"; } else { disable('not-linux', 'afalgeng'); } } unless ($disabled{devcryptoeng}) { if ($target =~ m/^BSD/) { my $maxver = 5*100 + 7; my $sysstr = `uname -s`; my $verstr = `uname -r`; $sysstr =~ s|\R$||; $verstr =~ s|\R$||; my ($ma, $mi, @@rest) = split m|\.|, $verstr; my $ver = $ma*100 + $mi; if ($sysstr eq 'OpenBSD' && $ver >= $maxver) { disable('too-new-kernel', 'devcryptoeng'); } } } unless ($disabled{ktls}) { $config{ktls}=""; my $cc = $config{CROSS_COMPILE}.$config{CC}; if ($target =~ m/^linux/) { system("printf '#include \n#include ' | $cc -E - >/dev/null 2>&1"); if ($? != 0) { disable('too-old-kernel', 'ktls'); } } elsif ($target =~ m/^BSD/) { system("printf '#include \n#include ' | $cc -E - >/dev/null 2>&1"); if ($? != 0) { disable('too-old-freebsd', 'ktls'); } } else { disable('not-linux-or-freebsd', 'ktls'); } } unless ($disabled{winstore}) { unless ($target =~ /^(?:Cygwin|mingw|VC-|BC-)/) { disable('not-windows', 'winstore'); } } push @@{$config{openssl_other_defines}}, "OPENSSL_NO_KTLS" if ($disabled{ktls}); # Get the extra flags used when building shared libraries and modules. We # do this late because some of them depend on %disabled. # Make the flags to build DSOs the same as for shared libraries unless they # are already defined $target{module_cflags} = $target{shared_cflag} unless defined $target{module_cflags}; $target{module_cxxflags} = $target{shared_cxxflag} unless defined $target{module_cxxflags}; $target{module_ldflags} = $target{shared_ldflag} unless defined $target{module_ldflags}; { my $shared_info_pl = catfile(dirname($0), "Configurations", "shared-info.pl"); my %shared_info = read_eval_file($shared_info_pl); push @@{$target{_conf_fname_int}}, $shared_info_pl; my $si = $target{shared_target}; while (ref $si ne "HASH") { last if ! defined $si; if (ref $si eq "CODE") { $si = $si->(); } else { $si = $shared_info{$si}; } } # Some of the 'shared_target' values don't have any entries in # %shared_info. That's perfectly fine, AS LONG AS the build file # template knows how to handle this. That is currently the case for # Windows and VMS. if (defined $si) { # Just as above, copy certain shared_* attributes to the corresponding # module_ attribute unless the latter is already defined $si->{module_cflags} = $si->{shared_cflag} unless defined $si->{module_cflags}; $si->{module_cxxflags} = $si->{shared_cxxflag} unless defined $si->{module_cxxflags}; $si->{module_ldflags} = $si->{shared_ldflag} unless defined $si->{module_ldflags}; foreach (sort keys %$si) { $target{$_} = defined $target{$_} ? add($si->{$_})->($target{$_}) : $si->{$_}; } } } # ALL MODIFICATIONS TO %disabled, %config and %target MUST BE DONE FROM HERE ON ###################################################################### # Build up information for skipping certain directories depending on disabled # features, as well as setting up macros for disabled features. # This is a tentative database of directories to skip. Some entries may not # correspond to anything real, but that's ok, they will simply be ignored. # The actual processing of these entries is done in the build.info lookup # loop further down. # # The key is a Unix formatted path in the source tree, the value is an index # into %disabled_info, so any existing path gets added to a corresponding # 'skipped' entry in there with the list of skipped directories. my %skipdir = (); my %disabled_info = (); # For configdata.pm foreach my $what (sort keys %disabled) { # There are deprecated disablables that translate to themselves. # They cause disabling cascades, but should otherwise not register. next if $deprecated_disablables{$what}; # The generated $disabled{"deprecated-x.y"} entries are special # and treated properly elsewhere next if $what =~ m|^deprecated-|; $config{options} .= " no-$what"; if (!grep { $what eq $_ } ( 'buildtest-c++', 'fips', 'threads', 'shared', 'module', 'pic', 'dynamic-engine', 'makedepend', 'sse2', 'legacy' )) { (my $WHAT = uc $what) =~ s|-|_|g; my $skipdir = $what; # fix-up crypto/directory name(s) $skipdir = "ripemd" if $what eq "rmd160"; $skipdir = "whrlpool" if $what eq "whirlpool"; my $macro = $disabled_info{$what}->{macro} = "OPENSSL_NO_$WHAT"; push @@{$config{openssl_feature_defines}}, $macro; $skipdir{engines} = $what if $what eq 'engine'; $skipdir{"crypto/$skipdir"} = $what unless $what eq 'async' || $what eq 'err' || $what eq 'dso' || $what eq 'http'; } } if ($disabled{"dynamic-engine"}) { push @@{$config{openssl_feature_defines}}, "OPENSSL_NO_DYNAMIC_ENGINE"; } else { push @@{$config{openssl_feature_defines}}, "OPENSSL_NO_STATIC_ENGINE"; } # If we use the unified build, collect information from build.info files my %unified_info = (); my $buildinfo_debug = defined($ENV{CONFIGURE_DEBUG_BUILDINFO}); if ($builder eq "unified") { use Text::Template 1.46; sub cleandir { my $base = shift; my $dir = shift; my $relativeto = shift || "."; my $no_mkpath = shift // 0; $dir = catdir($base,$dir) unless isabsolute($dir); # Make sure the directories we're building in exists mkpath($dir) unless $no_mkpath; my $res = abs2rel(absolutedir($dir), rel2abs($relativeto)); #print STDERR "DEBUG[cleandir]: $dir , $base => $res\n"; return $res; } sub cleanfile { my $base = shift; my $file = shift; my $relativeto = shift || "."; my $no_mkpath = shift // 0; $file = catfile($base,$file) unless isabsolute($file); my $d = dirname($file); my $f = basename($file); # Make sure the directories we're building in exists mkpath($d) unless $no_mkpath; my $res = abs2rel(catfile(absolutedir($d), $f), rel2abs($relativeto)); #print STDERR "DEBUG[cleanfile]: $d , $f => $res\n"; return $res; } # Store the name of the template file we will build the build file from # in %config. This may be useful for the build file itself. my @@build_file_template_names = ( $builder_platform."-".$config{build_file}.".tmpl", $config{build_file}.".tmpl" ); my @@build_file_templates = (); # First, look in the user provided directory, if given if (defined env($local_config_envname)) { @@build_file_templates = map { if ($^O eq 'VMS') { # VMS environment variables are logical names, # which can be used as is $local_config_envname . ':' . $_; } else { catfile(env($local_config_envname), $_); } } @@build_file_template_names; } # Then, look in our standard directory push @@build_file_templates, ( map { cleanfile($srcdir, catfile("Configurations", $_), $blddir, 1) } @@build_file_template_names ); my $build_file_template; for $_ (@@build_file_templates) { $build_file_template = $_; last if -f $build_file_template; $build_file_template = undef; } if (!defined $build_file_template) { die "*** Couldn't find any of:\n", join("\n", @@build_file_templates), "\n"; } $config{build_file_templates} = [ cleanfile($srcdir, catfile("Configurations", "common0.tmpl"), $blddir, 1), $build_file_template ]; my @@build_dirs = ( [ ] ); # current directory $config{build_infos} = [ ]; # We want to detect configdata.pm in the source tree, so we # don't use it if the build tree is different. my $src_configdata = cleanfile($srcdir, "configdata.pm", $blddir, 1); # Any source file that we recognise is placed in this hash table, with # the list of its intended destinations as value. When everything has # been collected, there's a routine that checks that these source files # exist, or if they are generated, that the generator exists. my %check_exist = (); my %check_generate = (); my %ordinals = (); while (@@build_dirs) { my @@curd = @@{shift @@build_dirs}; my $sourced = catdir($srcdir, @@curd); my $buildd = catdir($blddir, @@curd); my $unixdir = join('/', @@curd); if (exists $skipdir{$unixdir}) { my $what = $skipdir{$unixdir}; push @@{$disabled_info{$what}->{skipped}}, catdir(@@curd); next; } mkpath($buildd); my $f = 'build.info'; # The basic things we're trying to build my @@programs = (); my @@libraries = (); my @@modules = (); my @@scripts = (); my %sources = (); my %shared_sources = (); my %includes = (); my %defines = (); my %depends = (); my %generate = (); my %imagedocs = (); my %htmldocs = (); my %mandocs = (); # Support for $variablename in build.info files. # Embedded perl code is the ultimate master, still. If its output # contains a dollar sign, it had better be escaped, or it will be # taken for a variable name prefix. my %variables = (); # Variable name syntax my $variable_name_re = qr/(?P[[:alpha:]][[:alnum:]_]*)/; # Value modifier syntaxes my $variable_subst_re = qr/\/(?P(?:\\\/|.)*?)\/(?P.*?)/; # Variable reference my $variable_simple_re = qr/(?(?:\\\/|.)*?)\}/; # Tie it all together my $variable_re = qr/${variable_simple_re}|${variable_w_mod_re}/; my $expand_variables = sub { my $value = ''; my $value_rest = shift; if ($ENV{CONFIGURE_DEBUG_VARIABLE_EXPAND}) { print STDERR "DEBUG[\$expand_variables] Parsed '$value_rest' ...\n" } while ($value_rest =~ /${variable_re}/) { # We must save important regexp values, because the next # regexp clears them my $mod = $+{MOD}; my $variable_value = $variables{$+{VARIABLE}}; $value_rest = $'; $value .= $`; # Process modifier expressions, if present if (defined $mod) { if ($mod =~ /^${variable_subst_re}$/) { my $re = $+{RE}; my $subst = $+{SUBST}; $variable_value =~ s/\Q$re\E/$subst/g; if ($ENV{CONFIGURE_DEBUG_VARIABLE_EXPAND}) { print STDERR "DEBUG[\$expand_variables] ... and substituted ", "'$re' with '$subst'\n"; } } } $value .= $variable_value; } if ($ENV{CONFIGURE_DEBUG_VARIABLE_EXPAND}) { print STDERR "DEBUG[\$expand_variables] ... into: '$value$value_rest'\n"; } return $value . $value_rest; }; # Support for attributes in build.info files my %attributes = (); my $handle_attributes = sub { my $attr_str = shift; my $ref = shift; my @@goals = @@_; return unless defined $attr_str; my @@a = tokenize($attr_str, qr|\s*,\s*|); foreach my $a (@@a) { my $ac = 1; my $ak = $a; my $av = 1; if ($a =~ m|^(!)?(.*?)\s* = \s*(.*?)$|x) { $ac = ! $1; $ak = $2; $av = $3; } foreach my $g (@@goals) { if ($ac) { $$ref->{$g}->{$ak} = $av; } else { delete $$ref->{$g}->{$ak}; } } } }; # Support for pushing values on multiple indexes of a given hash # array. my $push_to = sub { my $valueref = shift; my $index_str = shift; # May be undef or empty my $attrref = shift; # May be undef my $attr_str = shift; my @@values = @@_; if (defined $index_str) { my @@indexes = ( '' ); if ($index_str !~ m|^\s*$|) { @@indexes = tokenize($index_str); } foreach (@@indexes) { push @@{$valueref->{$_}}, @@values; if (defined $attrref) { $handle_attributes->($attr_str, \$$attrref->{$_}, @@values); } } } else { push @@$valueref, @@values; $handle_attributes->($attr_str, $attrref, @@values) if defined $attrref; } }; if ($buildinfo_debug) { print STDERR "DEBUG: Reading ",catfile($sourced, $f),"\n"; } push @@{$config{build_infos}}, catfile(abs2rel($sourced, $blddir), $f); my $template = Text::Template->new(TYPE => 'FILE', SOURCE => catfile($sourced, $f), PREPEND => qq{use lib "$FindBin::Bin/util/perl";}); die "Something went wrong with $sourced/$f: $!\n" unless $template; my @@text = split /^/m, $template->fill_in(HASH => { config => \%config, target => \%target, disabled => \%disabled, withargs => \%withargs, builddir => abs2rel($buildd, $blddir), sourcedir => abs2rel($sourced, $blddir), buildtop => abs2rel($blddir, $blddir), sourcetop => abs2rel($srcdir, $blddir) }, DELIMITERS => [ "{-", "-}" ]); # The top item of this stack has the following values # -2 positive already run and we found ELSE (following ELSIF should fail) # -1 positive already run (skip until ENDIF) # 0 negatives so far (if we're at a condition, check it) # 1 last was positive (don't skip lines until next ELSE, ELSIF or ENDIF) # 2 positive ELSE (following ELSIF should fail) my @@skip = (); # A few useful generic regexps my $index_re = qr/\[\s*(?P(?:\\.|.)*?)\s*\]/; my $cond_re = qr/\[\s*(?P(?:\\.|.)*?)\s*\]/; my $attribs_re = qr/(?:\{\s*(?P(?:\\.|.)*?)\s*\})?/; my $value_re = qr/(?P.*?)/; collect_information( collect_from_array([ @@text ], qr/\\$/ => sub { my $l1 = shift; my $l2 = shift; $l1 =~ s/\\$//; $l1.$l2 }), # Info we're looking for qr/^\s* IF ${cond_re} \s*$/x => sub { if (! @@skip || $skip[$#skip] > 0) { push @@skip, !! $expand_variables->($+{COND}); } else { push @@skip, -1; } }, qr/^\s* ELSIF ${cond_re} \s*$/x => sub { die "ELSIF out of scope" if ! @@skip; die "ELSIF following ELSE" if abs($skip[$#skip]) == 2; $skip[$#skip] = -1 if $skip[$#skip] != 0; $skip[$#skip] = !! $expand_variables->($+{COND}) if $skip[$#skip] == 0; }, qr/^\s* ELSE \s*$/x => sub { die "ELSE out of scope" if ! @@skip; $skip[$#skip] = -2 if $skip[$#skip] != 0; $skip[$#skip] = 2 if $skip[$#skip] == 0; }, qr/^\s* ENDIF \s*$/x => sub { die "ENDIF out of scope" if ! @@skip; pop @@skip; }, qr/^\s* ${variable_re} \s* = \s* ${value_re} \s* $/x => sub { if (!@@skip || $skip[$#skip] > 0) { $variables{$+{VARIABLE}} = $expand_variables->($+{VALUE}); } }, qr/^\s* SUBDIRS \s* = \s* ${value_re} \s* $/x => sub { if (!@@skip || $skip[$#skip] > 0) { foreach (tokenize($expand_variables->($+{VALUE}))) { push @@build_dirs, [ @@curd, splitdir($_, 1) ]; } } }, qr/^\s* PROGRAMS ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\@@programs, undef, \$attributes{programs}, $+{ATTRIBS}, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* LIBS ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\@@libraries, undef, \$attributes{libraries}, $+{ATTRIBS}, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* MODULES ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\@@modules, undef, \$attributes{modules}, $+{ATTRIBS}, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* SCRIPTS ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\@@scripts, undef, \$attributes{scripts}, $+{ATTRIBS}, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* IMAGEDOCS ${index_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%imagedocs, $expand_variables->($+{INDEX}), undef, undef, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* HTMLDOCS ${index_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%htmldocs, $expand_variables->($+{INDEX}), undef, undef, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* MANDOCS ${index_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%mandocs, $expand_variables->($+{INDEX}), undef, undef, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* SOURCE ${index_re} ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%sources, $expand_variables->($+{INDEX}), \$attributes{sources}, $+{ATTRIBS}, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* SHARED_SOURCE ${index_re} ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%shared_sources, $expand_variables->($+{INDEX}), \$attributes{sources}, $+{ATTRIBS}, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* INCLUDE ${index_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%includes, $expand_variables->($+{INDEX}), undef, undef, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* DEFINE ${index_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%defines, $expand_variables->($+{INDEX}), undef, undef, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* DEPEND ${index_re} ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%depends, $expand_variables->($+{INDEX}), \$attributes{depends}, $+{ATTRIBS}, tokenize($expand_variables->($+{VALUE}))) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* GENERATE ${index_re} ${attribs_re} \s* = \s* ${value_re} \s* $/x => sub { $push_to->(\%generate, $expand_variables->($+{INDEX}), \$attributes{generate}, $+{ATTRIBS}, $expand_variables->($+{VALUE})) if !@@skip || $skip[$#skip] > 0; }, qr/^\s* (?:\#.*)? $/x => sub { }, "OTHERWISE" => sub { die "Something wrong with this line:\n$_\nat $sourced/$f" }, "BEFORE" => sub { if ($buildinfo_debug) { print STDERR "DEBUG: Parsing ",join(" ", @@_),"\n"; print STDERR "DEBUG: ... before parsing, skip stack is ",join(" ", map { int($_) } @@skip),"\n"; } }, "AFTER" => sub { if ($buildinfo_debug) { print STDERR "DEBUG: .... after parsing, skip stack is ",join(" ", map { int($_) } @@skip),"\n"; } }, ); die "runaway IF?" if (@@skip); if (grep { defined $attributes{modules}->{$_}->{engine} } keys %attributes and !$config{dynamic_engines}) { die <<"EOF" ENGINES can only be used if configured with 'dynamic-engine'. This is usually a fault in a build.info file. EOF } { my %infos = ( programs => [ @@programs ], libraries => [ @@libraries ], modules => [ @@modules ], scripts => [ @@scripts ] ); foreach my $k (keys %infos) { foreach (@@{$infos{$k}}) { my $item = cleanfile($buildd, $_, $blddir); $unified_info{$k}->{$item} = 1; # Fix up associated attributes $unified_info{attributes}->{$k}->{$item} = $attributes{$k}->{$_} if defined $attributes{$k}->{$_}; } } } # Check that we haven't defined any library as both shared and # explicitly static. That is forbidden. my @@doubles = (); foreach (grep /\.a$/, keys %{$unified_info{libraries}}) { (my $l = $_) =~ s/\.a$//; push @@doubles, $l if defined $unified_info{libraries}->{$l}; } die "these libraries are both explicitly static and shared:\n ", join(" ", @@doubles), "\n" if @@doubles; foreach (keys %sources) { my $dest = $_; my $ddest = cleanfile($buildd, $_, $blddir); foreach (@@{$sources{$dest}}) { my $s = cleanfile($sourced, $_, $blddir, 1); # If it's generated or we simply don't find it in the source # tree, we assume it's in the build tree. if ($s eq $src_configdata || $generate{$_} || ! -f $s) { $s = cleanfile($buildd, $_, $blddir); } my $o = $_; # We recognise C++, C and asm files if ($s =~ /\.(cc|cpp|c|s|S)$/) { push @@{$check_exist{$s}}, $ddest; $o =~ s/\.[csS]$/.o/; # C and assembler $o =~ s/\.(cc|cpp)$/_cc.o/; # C++ $o = cleanfile($buildd, $o, $blddir); $unified_info{sources}->{$ddest}->{$o} = -1; $unified_info{sources}->{$o}->{$s} = -1; } elsif ($s =~ /\.rc$/) { # We also recognise resource files push @@{$check_exist{$s}}, $ddest; $o =~ s/\.rc$/.res/; # Resource configuration $o = cleanfile($buildd, $o, $blddir); $unified_info{sources}->{$ddest}->{$o} = -1; $unified_info{sources}->{$o}->{$s} = -1; } else { push @@{$check_exist{$s}}, $ddest; $unified_info{sources}->{$ddest}->{$s} = 1; } # Fix up associated attributes if ($o ne $_) { $unified_info{attributes}->{sources}->{$ddest}->{$o} = $unified_info{attributes}->{sources}->{$o}->{$s} = $attributes{sources}->{$dest}->{$_} if defined $attributes{sources}->{$dest}->{$_}; } else { $unified_info{attributes}->{sources}->{$ddest}->{$s} = $attributes{sources}->{$dest}->{$_} if defined $attributes{sources}->{$dest}->{$_}; } } } foreach (keys %shared_sources) { my $dest = $_; my $ddest = cleanfile($buildd, $_, $blddir); foreach (@@{$shared_sources{$dest}}) { my $s = cleanfile($sourced, $_, $blddir, 1); # If it's generated or we simply don't find it in the source # tree, we assume it's in the build tree. if ($s eq $src_configdata || $generate{$_} || ! -f $s) { $s = cleanfile($buildd, $_, $blddir); } my $o = $_; if ($s =~ /\.(cc|cpp|c|s|S)$/) { # We recognise C++, C and asm files push @@{$check_exist{$s}}, $ddest; $o =~ s/\.[csS]$/.o/; # C and assembler $o =~ s/\.(cc|cpp)$/_cc.o/; # C++ $o = cleanfile($buildd, $o, $blddir); $unified_info{shared_sources}->{$ddest}->{$o} = -1; $unified_info{sources}->{$o}->{$s} = -1; } elsif ($s =~ /\.rc$/) { # We also recognise resource files push @@{$check_exist{$s}}, $ddest; $o =~ s/\.rc$/.res/; # Resource configuration $o = cleanfile($buildd, $o, $blddir); $unified_info{shared_sources}->{$ddest}->{$o} = -1; $unified_info{sources}->{$o}->{$s} = -1; } elsif ($s =~ /\.ld$/) { # We also recognise linker scripts (or corresponding) # We know they are generated files push @@{$check_exist{$s}}, $ddest; $o = cleanfile($buildd, $_, $blddir); $unified_info{shared_sources}->{$ddest}->{$o} = 1; } else { die "unrecognised source file type for shared library: $s\n"; } # Fix up associated attributes if ($o ne $_) { $unified_info{attributes}->{shared_sources}->{$ddest}->{$o} = $unified_info{attributes}->{sources}->{$o}->{$s} = $attributes{sources}->{$dest}->{$_} if defined $attributes{sources}->{$dest}->{$_}; } else { $unified_info{attributes}->{shared_sources}->{$ddest}->{$o} = $attributes{sources}->{$dest}->{$_} if defined $attributes{sources}->{$dest}->{$_}; } } } foreach (keys %generate) { my $dest = $_; my $ddest = cleanfile($buildd, $_, $blddir); die "more than one generator for $dest: " ,join(" ", @@{$generate{$_}}),"\n" if scalar @@{$generate{$_}} > 1; my @@generator = split /\s+/, $generate{$dest}->[0]; my $gen = $generator[0]; $generator[0] = cleanfile($sourced, $gen, $blddir, 1); # If the generator is itself generated, it's in the build tree if ($generate{$gen} || ! -f $generator[0]) { $generator[0] = cleanfile($buildd, $gen, $blddir); } $check_generate{$ddest}->{$generator[0]}++; $unified_info{generate}->{$ddest} = [ @@generator ]; # Fix up associated attributes $unified_info{attributes}->{generate}->{$ddest} = $attributes{generate}->{$dest}->{$gen} if defined $attributes{generate}->{$dest}->{$gen}; } foreach (keys %depends) { my $dest = $_; my $ddest = $dest; if ($dest =~ /^\|(.*)\|$/) { # Collect the raw target $unified_info{targets}->{$1} = 1; $ddest = $1; } elsif ($dest eq '') { $ddest = ''; } else { $ddest = cleanfile($sourced, $dest, $blddir, 1); # If the destination doesn't exist in source, it can only be # a generated file in the build tree. if ($ddest eq $src_configdata || ! -f $ddest) { $ddest = cleanfile($buildd, $dest, $blddir); } } foreach my $f (@@{$depends{$dest}}) { # If the dependency destination is generated, dependencies # may have an extra syntax to separate the intended inclusion # directory from the module to be loaded: a | instead of a # / as directory separator. # Do note that this has to be handled in the build file # template as well. # $i = inclusion path in source directory # $i2 = inclusion path in build directory # $m = module path (within the inclusion path) # $i = full module path in source directory # $i2 = full module path in build directory my $i; my $i2; my $m; my $d; my $d2; if ($unified_info{generate}->{$ddest} && $f =~ m/^(.*?)\|(.*)$/) { $i = $1; $m = $2; # We must be very careful to modify $i last $d = cleanfile($sourced, "$i/$m", $blddir, 1); $d2 = cleanfile($buildd, "$i/$m", $blddir); $i2 = cleandir($buildd, $i, $blddir); $i = cleandir($sourced, $i, $blddir, 1); } else { $d = cleanfile($sourced, $f, $blddir, 1); $d2 = cleanfile($buildd, $f, $blddir); } # If we know it's generated, or assume it is because we can't # find it in the source tree, we set file we depend on to be # in the build tree rather than the source tree. if ($d eq $src_configdata || (grep { $d2 eq $_ } keys %{$unified_info{generate}}) || ! -f $d) { $d = $d2; $i = $i2; } if ($i) { # Put together the computed inclusion dir with the # original module name. Do note that we conserve the # Unixly path syntax for the module path. $d = "$i|$m"; } $unified_info{depends}->{$ddest}->{$d} = 1; # Fix up associated attributes $unified_info{attributes}->{depends}->{$ddest}->{$d} = $attributes{depends}->{$dest}->{$f} if defined $attributes{depends}->{$dest}->{$f}; } } foreach (keys %includes) { my $dest = $_; my $ddest = cleanfile($sourced, $_, $blddir, 1); # If the destination doesn't exist in source, it can only be # a generated file in the build tree. if ($ddest eq $src_configdata || ! -f $ddest) { $ddest = cleanfile($buildd, $_, $blddir); } foreach (@@{$includes{$dest}}) { my $is = cleandir($sourced, $_, $blddir, 1); my $ib = cleandir($buildd, $_, $blddir); push @@{$unified_info{includes}->{$ddest}->{source}}, $is unless grep { $_ eq $is } @@{$unified_info{includes}->{$ddest}->{source}}; push @@{$unified_info{includes}->{$ddest}->{build}}, $ib unless grep { $_ eq $ib } @@{$unified_info{includes}->{$ddest}->{build}}; } } foreach my $dest (keys %defines) { my $ddest; if ($dest ne "") { $ddest = cleanfile($sourced, $dest, $blddir, 1); # If the destination doesn't exist in source, it can only # be a generated file in the build tree. if (! -f $ddest) { $ddest = cleanfile($buildd, $dest, $blddir); } } foreach my $v (@@{$defines{$dest}}) { $v =~ m|^([^=]*)(=.*)?$|; die "0 length macro name not permitted\n" if $1 eq ""; if ($dest ne "") { die "$1 defined more than once\n" if defined $unified_info{defines}->{$ddest}->{$1}; $unified_info{defines}->{$ddest}->{$1} = $2; } else { die "$1 defined more than once\n" if grep { $v eq $_ } @@{$config{defines}}; push @@{$config{defines}}, $v; } } } foreach my $section (keys %imagedocs) { foreach (@@{$imagedocs{$section}}) { my $imagedocs = cleanfile($buildd, $_, $blddir); $unified_info{imagedocs}->{$section}->{$imagedocs} = 1; } } foreach my $section (keys %htmldocs) { foreach (@@{$htmldocs{$section}}) { my $htmldocs = cleanfile($buildd, $_, $blddir); $unified_info{htmldocs}->{$section}->{$htmldocs} = 1; } } foreach my $section (keys %mandocs) { foreach (@@{$mandocs{$section}}) { my $mandocs = cleanfile($buildd, $_, $blddir); $unified_info{mandocs}->{$section}->{$mandocs} = 1; } } } my $ordinals_text = join(', ', sort keys %ordinals); warn <<"EOF" if $ordinals_text; WARNING: ORDINALS were specified for $ordinals_text They are ignored and should be replaced with a combination of GENERATE, DEPEND and SHARED_SOURCE. EOF # Check that each generated file is only generated once my $ambiguous_generation = 0; foreach (sort keys %check_generate) { my @@generators = sort keys %{$check_generate{$_}}; my $generators_txt = join(', ', @@generators); if (scalar @@generators > 1) { warn "$_ is GENERATEd by more than one generator ($generators_txt)\n"; $ambiguous_generation++; } if ($check_generate{$_}->{$generators[0]} > 1) { warn "INFO: $_ has more than one GENERATE declaration (same generator)\n" } } die "There are ambiguous source file generations\n" if $ambiguous_generation > 0; # All given source files should exist, or if generated, their # generator should exist. This loop ensures this is true. my $missing = 0; foreach my $orig (sort keys %check_exist) { foreach my $dest (@@{$check_exist{$orig}}) { if ($orig ne $src_configdata) { if ($orig =~ /\.a$/) { # Static library names may be used as sources, so we # need to detect those and give them special treatment. unless (grep { $_ eq $orig } keys %{$unified_info{libraries}}) { warn "$orig is given as source for $dest, but no such library is built\n"; $missing++; } } else { # A source may be generated, and its generator may be # generated as well. We therefore loop to dig out the # first generator. my $gen = $orig; while (my @@next = keys %{$check_generate{$gen}}) { $gen = $next[0]; } if (! -f $gen) { if ($gen ne $orig) { $missing++; warn "$orig is given as source for $dest, but its generator (leading to $gen) is missing\n"; } else { $missing++; warn "$orig is given as source for $dest, but is missing\n"; } } } } } } die "There are files missing\n" if $missing > 0; # Go through the sources of all libraries and check that the same basename # doesn't appear more than once. Some static library archivers depend on # them being unique. { my $err = 0; foreach my $prod (keys %{$unified_info{libraries}}) { my @@prod_sources = map { keys %{$unified_info{sources}->{$_}} } keys %{$unified_info{sources}->{$prod}}; my %srccnt = (); # Count how many times a given each source basename # appears for each product. foreach my $src (@@prod_sources) { $srccnt{basename $src}++; } foreach my $src (keys %srccnt) { if ((my $cnt = $srccnt{$src}) > 1) { print STDERR "$src appears $cnt times for the product $prod\n"; $err++ } } } die if $err > 0; } # Massage the result # If we depend on a header file or a perl module, add an inclusion of # its directory to allow smoothe inclusion foreach my $dest (keys %{$unified_info{depends}}) { next if $dest eq ""; foreach my $d (keys %{$unified_info{depends}->{$dest}}) { next unless $d =~ /\.(h|pm)$/; # Take into account when a dependency uses the inclusion|module # syntax my $i = $d =~ m/\|/ ? $` : dirname($d); my $spot = $d eq "configdata.pm" || defined($unified_info{generate}->{$d}) ? 'build' : 'source'; push @@{$unified_info{includes}->{$dest}->{$spot}}, $i unless grep { $_ eq $i } @@{$unified_info{includes}->{$dest}->{$spot}}; } } # Go through all intermediary files and change their names to something that # reflects what they will be built for. Note that for some source files, # this leads to duplicate object files because they are used multiple times. # the goal is to rename all object files according to this scheme: # {productname}-{midfix}-{origobjname}.[o|res] # the {midfix} is a keyword indicating the type of product, which is mostly # valuable for libraries since they come in two forms. # # This also reorganises the {sources} and {shared_sources} so that the # former only contains ALL object files that are supposed to end up in # static libraries and programs, while the latter contains ALL object files # that are supposed to end up in shared libraries and DSOs. # The main reason for having two different source structures is to allow # the same name to be used for the static and the shared variants of a # library. { # Take copies so we don't get interference from added stuff my %unified_copy = (); foreach (('sources', 'shared_sources')) { $unified_copy{$_} = { %{$unified_info{$_}} } if defined($unified_info{$_}); delete $unified_info{$_}; } foreach my $prodtype (('programs', 'libraries', 'modules', 'scripts')) { # $intent serves multi purposes: # - give a prefix for the new object files names # - in the case of libraries, rearrange the object files so static # libraries use the 'sources' structure exclusively, while shared # libraries use the 'shared_sources' structure exclusively. my $intent = { programs => { bin => { src => [ 'sources' ], dst => 'sources' } }, libraries => { lib => { src => [ 'sources' ], dst => 'sources' }, shlib => { prodselect => sub { grep !/\.a$/, @@_ }, src => [ 'sources', 'shared_sources' ], dst => 'shared_sources' } }, modules => { dso => { src => [ 'sources' ], dst => 'sources' } }, scripts => { script => { src => [ 'sources' ], dst => 'sources' } } } -> {$prodtype}; foreach my $kind (keys %$intent) { next if ($intent->{$kind}->{dst} eq 'shared_sources' && $disabled{shared}); my @@src = @@{$intent->{$kind}->{src}}; my $dst = $intent->{$kind}->{dst}; my $prodselect = $intent->{$kind}->{prodselect} // sub { @@_ }; foreach my $prod ($prodselect->(keys %{$unified_info{$prodtype}})) { # %prod_sources has all applicable objects as keys, and # their corresponding sources as values my %prod_sources = map { $_ => [ keys %{$unified_copy{sources}->{$_}} ] } map { keys %{$unified_copy{$_}->{$prod}} } @@src; foreach (keys %prod_sources) { # Only affect object files and resource files, # the others simply get a new value # (+1 instead of -1) if ($_ =~ /\.(o|res)$/) { (my $prodname = $prod) =~ s|\.a$||; my $newobj = catfile(dirname($_), basename($prodname) . '-' . $kind . '-' . basename($_)); $unified_info{$dst}->{$prod}->{$newobj} = 1; foreach my $src (@@{$prod_sources{$_}}) { $unified_info{sources}->{$newobj}->{$src} = 1; # Adjust source attributes my $attrs = $unified_info{attributes}->{sources}; if (defined $attrs->{$prod} && defined $attrs->{$prod}->{$_}) { $attrs->{$prod}->{$newobj} = $attrs->{$prod}->{$_}; delete $attrs->{$prod}->{$_}; } foreach my $objsrc (keys %{$attrs->{$_} // {}}) { $attrs->{$newobj}->{$objsrc} = $attrs->{$_}->{$objsrc}; delete $attrs->{$_}->{$objsrc}; } } # Adjust dependencies foreach my $deps (keys %{$unified_info{depends}->{$_}}) { $unified_info{depends}->{$_}->{$deps} = -1; $unified_info{depends}->{$newobj}->{$deps} = 1; } # Adjust includes foreach my $k (('source', 'build')) { next unless defined($unified_info{includes}->{$_}->{$k}); my @@incs = @@{$unified_info{includes}->{$_}->{$k}}; $unified_info{includes}->{$newobj}->{$k} = [ @@incs ]; } } else { $unified_info{$dst}->{$prod}->{$_} = 1; } } } } } } # At this point, we have a number of sources with the value -1. They # aren't part of the local build and are probably meant for a different # platform, and can therefore be cleaned away. That happens when making # %unified_info more efficient below. ### Make unified_info a bit more efficient # One level structures foreach (("programs", "libraries", "modules", "scripts", "targets")) { $unified_info{$_} = [ sort keys %{$unified_info{$_}} ]; } # Two level structures foreach my $l1 (("sources", "shared_sources", "ldadd", "depends", "imagedocs", "htmldocs", "mandocs")) { foreach my $l2 (sort keys %{$unified_info{$l1}}) { my @@items = sort grep { $unified_info{$l1}->{$l2}->{$_} > 0 } keys %{$unified_info{$l1}->{$l2}}; if (@@items) { $unified_info{$l1}->{$l2} = [ @@items ]; } else { delete $unified_info{$l1}->{$l2}; } } } # Defines foreach my $dest (sort keys %{$unified_info{defines}}) { $unified_info{defines}->{$dest} = [ map { $_.$unified_info{defines}->{$dest}->{$_} } sort keys %{$unified_info{defines}->{$dest}} ]; } # Includes foreach my $dest (sort keys %{$unified_info{includes}}) { if (defined($unified_info{includes}->{$dest}->{build})) { my @@source_includes = (); @@source_includes = ( @@{$unified_info{includes}->{$dest}->{source}} ) if defined($unified_info{includes}->{$dest}->{source}); $unified_info{includes}->{$dest} = [ @@{$unified_info{includes}->{$dest}->{build}} ]; foreach my $inc (@@source_includes) { push @@{$unified_info{includes}->{$dest}}, $inc unless grep { $_ eq $inc } @@{$unified_info{includes}->{$dest}}; } } elsif (defined($unified_info{includes}->{$dest}->{source})) { $unified_info{includes}->{$dest} = [ @@{$unified_info{includes}->{$dest}->{source}} ]; } else { delete $unified_info{includes}->{$dest}; } } # For convenience collect information regarding directories where # files are generated, those generated files and the end product # they end up in where applicable. Then, add build rules for those # directories my %loopinfo = ( "lib" => [ @@{$unified_info{libraries}} ], "dso" => [ @@{$unified_info{modules}} ], "bin" => [ @@{$unified_info{programs}} ], "script" => [ @@{$unified_info{scripts}} ], "docs" => [ (map { @@{$unified_info{imagedocs}->{$_} // []} } keys %{$unified_info{imagedocs} // {}}), (map { @@{$unified_info{htmldocs}->{$_} // []} } keys %{$unified_info{htmldocs} // {}}), (map { @@{$unified_info{mandocs}->{$_} // []} } keys %{$unified_info{mandocs} // {}}) ] ); foreach my $type (sort keys %loopinfo) { foreach my $product (@@{$loopinfo{$type}}) { my %dirs = (); my $pd = dirname($product); foreach (@@{$unified_info{sources}->{$product} // []}, @@{$unified_info{shared_sources}->{$product} // []}) { my $d = dirname($_); # We don't want to create targets for source directories # when building out of source next if ($config{sourcedir} ne $config{builddir} && $d =~ m|^\Q$config{sourcedir}\E|); # We already have a "test" target, and the current directory # is just silly to make a target for next if $d eq "test" || $d eq "."; $dirs{$d} = 1; push @@{$unified_info{dirinfo}->{$d}->{deps}}, $_ if $d ne $pd; } foreach (sort keys %dirs) { push @@{$unified_info{dirinfo}->{$_}->{products}->{$type}}, $product; } } } } # For the schemes that need it, we provide the old *_obj configs # from the *_asm_obj ones foreach (grep /_(asm|aux)_src$/, keys %target) { my $src = $_; (my $obj = $_) =~ s/_(asm|aux)_src$/_obj/; $target{$obj} = $target{$src}; $target{$obj} =~ s/\.[csS]\b/.o/g; # C and assembler $target{$obj} =~ s/\.(cc|cpp)\b/_cc.o/g; # C++ } # Write down our configuration where it fits ######################### my %template_vars = ( config => \%config, target => \%target, disablables => \@@disablables, disablables_int => \@@disablables_int, disabled => \%disabled, withargs => \%withargs, unified_info => \%unified_info, tls => \@@tls, dtls => \@@dtls, makevars => [ sort keys %user ], disabled_info => \%disabled_info, user_crossable => \@@user_crossable, ); my $configdata_outname = 'configdata.pm'; open CONFIGDATA, ">$configdata_outname.new" or die "Trying to create $configdata_outname.new: $!"; my $configdata_tmplname = cleanfile($srcdir, "configdata.pm.in", $blddir, 1); my $configdata_tmpl = OpenSSL::Template->new(TYPE => 'FILE', SOURCE => $configdata_tmplname); $configdata_tmpl->fill_in( FILENAME => $configdata_tmplname, OUTPUT => \*CONFIGDATA, HASH => { %template_vars, autowarntext => [ 'WARNING: do not edit!', "Generated by Configure from $configdata_tmplname", ] } ) or die $Text::Template::ERROR; close CONFIGDATA; rename "$configdata_outname.new", $configdata_outname; if ($builder_platform eq 'unix') { my $mode = (0755 & ~umask); chmod $mode, 'configdata.pm' or warn sprintf("WARNING: Couldn't change mode for 'configdata.pm' to 0%03o: %s\n",$mode,$!); } print "Created $configdata_outname\n"; print "Running $configdata_outname\n"; my $perlcmd = (quotify("maybeshell", $config{PERL}))[0]; my $cmd = "$perlcmd $configdata_outname"; #print STDERR "DEBUG[run_dofile]: \$cmd = $cmd\n"; system($cmd); exit 1 if $? != 0; $SIG{__DIE__} = $orig_death_handler; print <<"EOF" if ($disabled{threads} eq "unavailable"); The library could not be configured for supporting multi-threaded applications as the compiler options required on this system are not known. See file INSTALL.md for details if you need multi-threading. EOF print <<"EOF" if ($no_shared_warn); The options 'shared', 'pic' and 'dynamic-engine' aren't supported on this platform, so we will pretend you gave the option 'no-pic', which also disables 'shared' and 'dynamic-engine'. If you know how to implement shared libraries or position independent code, please let us know (but please first make sure you have tried with a current version of OpenSSL). EOF print $banner; exit(0); ###################################################################### # # Helpers and utility functions # # Death handler, to print a helpful message in case of failure ####### # sub death_handler { die @@_ if $^S; # To prevent the added message in eval blocks my $build_file = $config{build_file} // "build file"; my @@message = ( <<"_____", @@_ ); Failure! $build_file wasn't produced. Please read INSTALL.md and associated NOTES-* files. You may also have to look over your available compiler tool chain or change your configuration. _____ # Dying is terminal, so it's ok to reset the signal handler here. $SIG{__DIE__} = $orig_death_handler; die @@message; } # Configuration file reading ######################################### # Note: All of the helper functions are for lazy evaluation. They all # return a CODE ref, which will return the intended value when evaluated. # Thus, whenever there's mention of a returned value, it's about that # intended value. # Helper function to implement conditional value variants, with a default # plus additional values based on the value of $config{build_type}. # Arguments are given in hash table form: # # picker(default => "Basic string: ", # debug => "debug", # release => "release") # # When configuring with --debug, the resulting string will be # "Basic string: debug", and when not, it will be "Basic string: release" # # This can be used to create variants of sets of flags according to the # build type: # # cflags => picker(default => "-Wall", # debug => "-g -O0", # release => "-O3") # sub picker { my %opts = @@_; return sub { add($opts{default} || (), $opts{$config{build_type}} || ())->(); } } # Helper function to combine several values of different types into one. # This is useful if you want to combine a string with the result of a # lazy function, such as: # # cflags => combine("-Wall", sub { $disabled{zlib} ? () : "-DZLIB" }) # sub combine { my @@stuff = @@_; return sub { add(@@stuff)->(); } } # Helper function to implement conditional values depending on the value # of $disabled{threads}. Can be used as follows: # # cflags => combine("-Wall", threads("-pthread")) # sub threads { my @@flags = @@_; return sub { add($disabled{threads} ? () : @@flags)->(); } } sub shared { my @@flags = @@_; return sub { add($disabled{shared} ? () : @@flags)->(); } } our $add_called = 0; # Helper function to implement adding values to already existing configuration # values. It handles elements that are ARRAYs, CODEs and scalars sub _add { my $separator = shift; # If there's any ARRAY in the collection of values OR the separator # is undef, we will return an ARRAY of combined values, otherwise a # string of joined values with $separator as the separator. my $found_array = !defined($separator); my @@values = map { my $res = $_; while (ref($res) eq "CODE") { $res = $res->(); } if (defined($res)) { if (ref($res) eq "ARRAY") { $found_array = 1; @@$res; } else { $res; } } else { (); } } (@@_); $add_called = 1; if ($found_array) { [ @@values ]; } else { join($separator, grep { defined($_) && $_ ne "" } @@values); } } sub add_before { my $separator = " "; if (ref($_[$#_]) eq "HASH") { my $opts = pop; $separator = $opts->{separator}; } my @@x = @@_; sub { _add($separator, @@x, @@_) }; } sub add { my $separator = " "; if (ref($_[$#_]) eq "HASH") { my $opts = pop; $separator = $opts->{separator}; } my @@x = @@_; sub { _add($separator, @@_, @@x) }; } sub read_eval_file { my $fname = shift; my $content; my @@result; open F, "< $fname" or die "Can't open '$fname': $!\n"; { undef local $/; $content = ; } close F; { local $@@; @@result = ( eval $content ); warn $@@ if $@@; } return wantarray ? @@result : $result[0]; } # configuration reader, evaluates the input file as a perl script and expects # it to fill %targets with target configurations. Those are then added to # %table. sub read_config { my $fname = shift; my %targets; { # Protect certain tables from tampering local %table = (); %targets = read_eval_file($fname); } my %preexisting = (); foreach (sort keys %targets) { $preexisting{$_} = 1 if $table{$_}; } die <<"EOF", The following config targets from $fname shadow pre-existing config targets with the same name: EOF map { " $_\n" } sort keys %preexisting if %preexisting; # For each target, check that it's configured with a hash table. foreach (keys %targets) { if (ref($targets{$_}) ne "HASH") { if (ref($targets{$_}) eq "") { warn "Deprecated target configuration for $_, ignoring...\n"; } else { warn "Misconfigured target configuration for $_ (should be a hash table), ignoring...\n"; } delete $targets{$_}; } else { $targets{$_}->{_conf_fname_int} = add([ $fname ]); } } %table = (%table, %targets); } # configuration resolver. Will only resolve all the lazy evaluation # codeblocks for the chosen target and all those it inherits from, # recursively sub resolve_config { my $target = shift; my @@breadcrumbs = @@_; # my $extra_checks = defined($ENV{CONFIGURE_EXTRA_CHECKS}); if (grep { $_ eq $target } @@breadcrumbs) { die "inherit_from loop! target backtrace:\n " ,$target,"\n ",join("\n ", @@breadcrumbs),"\n"; } if (!defined($table{$target})) { warn "Warning! target $target doesn't exist!\n"; return (); } # Recurse through all inheritances. They will be resolved on the # fly, so when this operation is done, they will all just be a # bunch of attributes with string values. # What we get here, though, are keys with references to lists of # the combined values of them all. We will deal with lists after # this stage is done. my %combined_inheritance = (); if ($table{$target}->{inherit_from}) { my @@inherit_from = map { ref($_) eq "CODE" ? $_->() : $_ } @@{$table{$target}->{inherit_from}}; foreach (@@inherit_from) { my %inherited_config = resolve_config($_, $target, @@breadcrumbs); # 'template' is a marker that's considered private to # the config that had it. delete $inherited_config{template}; foreach (keys %inherited_config) { if (!$combined_inheritance{$_}) { $combined_inheritance{$_} = []; } push @@{$combined_inheritance{$_}}, $inherited_config{$_}; } } } # We won't need inherit_from in this target any more, since we've # resolved all the inheritances that lead to this delete $table{$target}->{inherit_from}; # Now is the time to deal with those lists. Here's the place to # decide what shall be done with those lists, all based on the # values of the target we're currently dealing with. # - If a value is a coderef, it will be executed with the list of # inherited values as arguments. # - If the corresponding key doesn't have a value at all or is the # empty string, the inherited value list will be run through the # default combiner (below), and the result becomes this target's # value. # - Otherwise, this target's value is assumed to be a string that # will simply override the inherited list of values. my $default_combiner = add(); my %all_keys = map { $_ => 1 } (keys %combined_inheritance, keys %{$table{$target}}); sub process_values { my $object = shift; my $inherited = shift; # Always a [ list ] my $target = shift; my $entry = shift; $add_called = 0; while(ref($object) eq "CODE") { $object = $object->(@@$inherited); } if (!defined($object)) { return (); } elsif (ref($object) eq "ARRAY") { local $add_called; # To make sure recursive calls don't affect it return [ map { process_values($_, $inherited, $target, $entry) } @@$object ]; } elsif (ref($object) eq "") { return $object; } else { die "cannot handle reference type ",ref($object) ," found in target ",$target," -> ",$entry,"\n"; } } foreach my $key (sort keys %all_keys) { my $previous = $combined_inheritance{$key}; # Current target doesn't have a value for the current key? # Assign it the default combiner, the rest of this loop body # will handle it just like any other coderef. if (!exists $table{$target}->{$key}) { $table{$target}->{$key} = $default_combiner; } $table{$target}->{$key} = process_values($table{$target}->{$key}, $combined_inheritance{$key}, $target, $key); unless(defined($table{$target}->{$key})) { delete $table{$target}->{$key}; } # if ($extra_checks && # $previous && !($add_called || $previous ~~ $table{$target}->{$key})) { # warn "$key got replaced in $target\n"; # } } # Finally done, return the result. return %{$table{$target}}; } sub usage { print STDERR $usage; print STDERR "\npick os/compiler from:\n"; my $j=0; my $i; my $k=0; foreach $i (sort keys %table) { next if $table{$i}->{template}; next if $i =~ /^debug/; $k += length($i) + 1; if ($k > 78) { print STDERR "\n"; $k=length($i); } print STDERR $i . " "; } foreach $i (sort keys %table) { next if $table{$i}->{template}; next if $i !~ /^debug/; $k += length($i) + 1; if ($k > 78) { print STDERR "\n"; $k=length($i); } print STDERR $i . " "; } exit(1); } sub compiler_predefined { state %predefined; my $cc = shift; return () if $^O eq 'VMS'; die 'compiler_predefined called without a compiler command' unless $cc; if (! $predefined{$cc}) { $predefined{$cc} = {}; # collect compiler pre-defines from gcc or gcc-alike... open(PIPE, "$cc -dM -E -x c /dev/null 2>&1 |"); while (my $l = ) { $l =~ m/^#define\s+(\w+(?:\(\w+\))?)(?:\s+(.+))?/ or last; $predefined{$cc}->{$1} = $2 // ''; } close(PIPE); } return %{$predefined{$cc}}; } sub which { my ($name)=@@_; if (eval { require IPC::Cmd; 1; }) { IPC::Cmd->import(); return scalar IPC::Cmd::can_run($name); } else { # if there is $directories component in splitpath, # then it's not something to test with $PATH... return $name if (File::Spec->splitpath($name))[1]; foreach (File::Spec->path()) { my $fullpath = catfile($_, "$name$target{exe_extension}"); if (-f $fullpath and -x $fullpath) { return $fullpath; } } } } sub env { my $name = shift; my %opts = @@_; unless ($opts{cacheonly}) { # Note that if $ENV{$name} doesn't exist or is undefined, # $config{perlenv}->{$name} will be created with the value # undef. This is intentional. $config{perlenv}->{$name} = $ENV{$name} if ! exists $config{perlenv}->{$name}; } return $config{perlenv}->{$name}; } # Configuration printer ############################################## sub print_table_entry { local $now_printing = shift; my %target = resolve_config($now_printing); my $type = shift; # Don't print the templates return if $target{template}; my @@sequence = ( "sys_id", "cpp", "cppflags", "defines", "includes", "cc", "cflags", "ld", "lflags", "loutflag", "ex_libs", "bn_ops", "enable", "disable", "poly1035_asm_src", "thread_scheme", "perlasm_scheme", "dso_scheme", "shared_target", "shared_cflag", "shared_defines", "shared_ldflag", "shared_rcflag", "shared_extension", "dso_extension", "obj_extension", "exe_extension", "ranlib", "ar", "arflags", "aroutflag", "rc", "rcflags", "rcoutflag", "mt", "mtflags", "mtinflag", "mtoutflag", "multilib", "build_scheme", ); if ($type eq "TABLE") { print "\n"; print "*** $now_printing\n"; foreach (@@sequence) { if (ref($target{$_}) eq "ARRAY") { printf "\$%-12s = %s\n", $_, join(" ", @@{$target{$_}}); } else { printf "\$%-12s = %s\n", $_, $target{$_}; } } } elsif ($type eq "HASH") { my $largest = length((sort { length($a) <=> length($b) } @@sequence)[-1]); print " '$now_printing' => {\n"; foreach (@@sequence) { if ($target{$_}) { if (ref($target{$_}) eq "ARRAY") { print " '",$_,"'"," " x ($largest - length($_))," => [ ",join(", ", map { "'$_'" } @@{$target{$_}})," ],\n"; } else { print " '",$_,"'"," " x ($largest - length($_))," => '",$target{$_},"',\n"; } } } print " },\n"; } } # Utility routines ################################################### # On VMS, if the given file is a logical name, File::Spec::Functions # will consider it an absolute path. There are cases when we want a # purely syntactic check without checking the environment. sub isabsolute { my $file = shift; # On non-platforms, we just use file_name_is_absolute(). return file_name_is_absolute($file) unless $^O eq "VMS"; # If the file spec includes a device or a directory spec, # file_name_is_absolute() is perfectly safe. return file_name_is_absolute($file) if $file =~ m|[:\[]|; # Here, we know the given file spec isn't absolute return 0; } # Makes a directory absolute and cleans out /../ in paths like foo/../bar # On some platforms, this uses rel2abs(), while on others, realpath() is used. # realpath() requires that at least all path components except the last is an # existing directory. On VMS, the last component of the directory spec must # exist. sub absolutedir { my $dir = shift; # realpath() is quite buggy on VMS. It uses LIB$FID_TO_NAME, which # will return the volume name for the device, no matter what. Also, # it will return an incorrect directory spec if the argument is a # directory that doesn't exist. if ($^O eq "VMS") { return rel2abs($dir); } # realpath() on Windows seems to check if the directory actually exists, # which isn't what is wanted here. All we want to know is if a directory # spec is absolute, not if it exists. if ($^O eq "MSWin32") { return rel2abs($dir); } # We use realpath() on Unix, since no other will properly clean out # a directory spec. use Cwd qw/realpath/; return realpath($dir); } # Check if all paths are one and the same, using stat. They must both exist # We need this for the cases when File::Spec doesn't detect case insensitivity # (File::Spec::Unix assumes case sensitivity) sub samedir { die "samedir expects two arguments\n" unless scalar @@_ == 2; my @@stat0 = stat($_[0]); # First argument my @@stat1 = stat($_[1]); # Second argument die "Couldn't stat $_[0]" unless @@stat0; die "Couldn't stat $_[1]" unless @@stat1; # Compare device number return 0 unless ($stat0[0] == $stat1[0]); # Compare "inode". The perl manual recommends comparing as # string rather than as number. return 0 unless ($stat0[1] eq $stat1[1]); return 1; # All the same } sub quotify { my %processors = ( perl => sub { my $x = shift; $x =~ s/([\\\$\@@"])/\\$1/g; return '"'.$x.'"'; }, maybeshell => sub { my $x = shift; (my $y = $x) =~ s/([\\\"])/\\$1/g; if ($x ne $y || $x =~ m|\s|) { return '"'.$y.'"'; } else { return $x; } }, ); my $for = shift; my $processor = defined($processors{$for}) ? $processors{$for} : sub { shift; }; return map { $processor->($_); } @@_; } # collect_from_file($filename, $line_concat_cond_re, $line_concat) # $filename is a file name to read from # $line_concat_cond_re is a regexp detecting a line continuation ending # $line_concat is a CODEref that takes care of concatenating two lines sub collect_from_file { my $filename = shift; my $line_concat_cond_re = shift; my $line_concat = shift; open my $fh, $filename || die "unable to read $filename: $!\n"; return sub { my $saved_line = ""; $_ = ""; while (<$fh>) { s|\R$||; if (defined $line_concat) { $_ = $line_concat->($saved_line, $_); $saved_line = ""; } if (defined $line_concat_cond_re && /$line_concat_cond_re/) { $saved_line = $_; next; } return $_; } die "$filename ending with continuation line\n" if $_; close $fh; return undef; } } # collect_from_array($array, $line_concat_cond_re, $line_concat) # $array is an ARRAYref of lines # $line_concat_cond_re is a regexp detecting a line continuation ending # $line_concat is a CODEref that takes care of concatenating two lines sub collect_from_array { my $array = shift; my $line_concat_cond_re = shift; my $line_concat = shift; my @@array = (@@$array); return sub { my $saved_line = ""; $_ = ""; while (defined($_ = shift @@array)) { s|\R$||; if (defined $line_concat) { $_ = $line_concat->($saved_line, $_); $saved_line = ""; } if (defined $line_concat_cond_re && /$line_concat_cond_re/) { $saved_line = $_; next; } return $_; } die "input text ending with continuation line\n" if $_; return undef; } } # collect_information($lineiterator, $line_continue, $regexp => $CODEref, ...) # $lineiterator is a CODEref that delivers one line at a time. # All following arguments are regex/CODEref pairs, where the regexp detects a # line and the CODEref does something with the result of the regexp. sub collect_information { my $lineiterator = shift; my %collectors = @@_; while(defined($_ = $lineiterator->())) { s|\R$||; my $found = 0; if ($collectors{"BEFORE"}) { $collectors{"BEFORE"}->($_); } foreach my $re (keys %collectors) { if ($re !~ /^OTHERWISE|BEFORE|AFTER$/ && /$re/) { $collectors{$re}->($lineiterator); $found = 1; }; } if ($collectors{"OTHERWISE"}) { $collectors{"OTHERWISE"}->($lineiterator, $_) unless $found || !defined $collectors{"OTHERWISE"}; } if ($collectors{"AFTER"}) { $collectors{"AFTER"}->($_); } } } # tokenize($line) # tokenize($line,$separator) # $line is a line of text to split up into tokens # $separator [optional] is a regular expression that separates the tokens, # the default being spaces. Do not use quotes of any kind as separators, # that will give undefined results. # Returns a list of tokens. # # Tokens are divided by separator (spaces by default). If the tokens include # the separators, they have to be quoted with single or double quotes. # Double quotes inside a double quoted token must be escaped. Escaping is done # with backslash. # Basically, the same quoting rules apply for " and ' as in any # Unix shell. sub tokenize { my $line = my $debug_line = shift; my $separator = shift // qr|\s+|; my @@result = (); if ($ENV{CONFIGURE_DEBUG_TOKENIZE}) { print STDERR "DEBUG[tokenize]: \$separator = $separator\n"; } while ($line =~ s|^${separator}||, $line ne "") { my $token = ""; again: $line =~ m/^(.*?)(${separator}|"|'|$)/; $token .= $1; $line = $2.$'; if ($line =~ m/^"((?:[^"\\]+|\\.)*)"/) { $token .= $1; $line = $'; goto again; } elsif ($line =~ m/^'([^']*)'/) { $token .= $1; $line = $'; goto again; } push @@result, $token; } if ($ENV{CONFIGURE_DEBUG_TOKENIZE}) { print STDERR "DEBUG[tokenize]: Parsed '$debug_line' into:\n"; print STDERR "DEBUG[tokenize]: ('", join("', '", @@result), "')\n"; } return @@result; } @ 1.1.1.1 log @Import openssl-3.5.1 (previous was 3.0.16). Changes: Changes between 3.5.0 and 3.5.1 [xx XXX xxxx] Fix x509 application adds trusted use instead of rejected use. Issue summary: Use of -addreject option with the openssl x509 application adds a trusted use instead of a rejected use for a certificate. Impact summary: If a user intends to make a trusted certificate rejected for a particular use it will be instead marked as trusted for that use. (CVE-2025-4575) Tomas Mraz Aligned the behaviour of TLS and DTLS in the event of a no_renegotiation alert being received. Older versions of OpenSSL failed with DTLS if a no_renegotiation alert was received. All versions of OpenSSL do this for TLS. From 3.2 a bug was exposed that meant that DTLS ignored no_rengotiation. We have now restored the original behaviour and brought DTLS back into line with TLS. Matt Caswell Changes between 3.4 and 3.5.0 [8 Apr 2025] Added server side support for QUIC Hugo Landau, Matt Caswell, Tomáš Mráz, Neil Horman, Sasha Nedvedicky, Andrew Dinh Tolerate PKCS#8 version 2 with optional public keys. The public key data is currently ignored. Viktor Dukhovni Signature schemes without an explicit signing digest in CMS are now supported. Examples of such schemes are ED25519 or ML-DSA. Michael Schroeder The TLS Signature algorithms defaults now include all three ML-DSA variants as first algorithms. Viktor Dukhovni Added a no-tls-deprecated-ec configuration option. The no-tls-deprecated-ec option disables support for TLS elliptic curve groups deprecated in RFC8422 at compile time. This does not affect use of the associated curves outside TLS. By default support for these groups is compiled in, but, as before, they are not included in the default run-time list of supported groups. With the enable-tls-deprecated-ec option these TLS groups remain enabled at compile time even if the default configuration is changed, provided the underlying EC curves remain implemented. Viktor Dukhovni Added new API to enable 0-RTT for 3rd party QUIC stacks. Cheng Zhang Added support for a new callback registration SSL_CTX_set_new_pending_conn_cb, which allows for application notification of new connection SSL object creation, which occurs independently of calls to SSL_accept_connection(). Note: QUIC objects passed through SSL callbacks should not have their state mutated via calls back into the SSL api until such time as they have been received via a call to SSL_accept_connection(). Neil Horman Add SLH-DSA as specified in FIPS 205. Shane Lontis and Dr Paul Dale ML-KEM as specified in FIPS 203. Based on the original implementation in BoringSSL, ported from C++ to C, refactored, and integrated into the OpenSSL default and FIPS providers. Including also the X25519MLKEM768, SecP256r1MLKEM768, SecP384r1MLKEM1024 TLS hybrid key post-quantum/classical key agreement schemes. Michael Baentsch, Viktor Dukhovni, Shane Lontis and Paul Dale Add ML-DSA as specified in FIPS 204. The base code was derived from BoringSSL C++ code. Shane Lontis, Viktor Dukhovni and Paul Dale Added new API calls to enable 3rd party QUIC stacks to use the OpenSSL TLS implementation. Matt Caswell The default DRBG implementations have been changed to prefer to fetch algorithm implementations from the default provider (the provider the DRBG implementation is built in) regardless of the default properties set in the configuration file. The code will still fallback to find an implementation, as done previously, if needed. Simo Sorce Initial support for opaque symmetric keys objects (EVP_SKEY). These replace the ad-hoc byte arrays that are pervasive throughout the library. Dmitry Belyavskiy and Simo Sorce The default TLS group list setting is now set to: ?*X25519MLKEM768 / ?*X25519:?secp256r1 / ?X448:?secp384r1:?secp521r1 / ?ffdhe2048:?ffdhe3072 This means two key shares (X25519MLKEM768 and X25519) will be sent by default by the TLS client. GOST groups and FFDHE groups larger than 3072 bits are no longer enabled by default. The group names in the group list setting are now also case insensitive. Viktor Dukhovni For TLSv1.3: Add capability for a client to send multiple key shares. Extend the scope of SSL_OP_CIPHER_SERVER_PREFERENCE to cover server-side key exchange group selection. Extend the server-side key exchange group selection algorithm and related group list syntax to support multiple group priorities, e.g. to prioritize (hybrid-)KEMs. David Kelsey, Martin Schmatz A new random generation API has been introduced which modifies all of the L family of calls so they are routed through a specific named provider instead of being resolved via the normal DRBG chaining. In a future OpenSSL release, this will obsolete RAND_METHOD. Dr Paul Dale New inline functions were added to support loads and stores of unsigned 16-bit, 32-bit and 64-bit integers in either little-endian or big-endian form, regardless of the host byte-order. See the OPENSSL_load_u16_le(3) manpage for details. Viktor Dukhovni All the BIO_meth_get_*() functions allowing reuse of the internal OpenSSL BIO method implementations were deprecated. The reuse is unsafe due to dependency on the code of the internal methods not changing. Tomáš Mráz Support DEFAULT keyword and '-' prefix in SSL_CTX_set1_groups_list(). SSL_CTX_set1_groups_list() now supports the DEFAULT keyword which sets the available groups to the default selection. The '-' prefix allows the calling application to remove a group from the selection. Frederik Wedel-Heinen Updated the default encryption cipher for the req, cms, and smime applications from des-ede3-cbc to aes-256-cbc. AES-256 provides a stronger 256-bit key encryption than legacy 3DES. Aditya Enhanced PKCS#7 inner contents verification. In the PKCS7_verify() function, the BIO *indata parameter refers to the signed data if the content is detached from p7. Otherwise, indata should be NULL, and then the signed data must be in p7. The previous OpenSSL implementation only supported MIME inner content [RFC 5652, section 5.2]. The added functionality now enables support for PKCS#7 inner content [RFC 2315, section 7]. MaÅgorzata Olszówka The -rawin option of the pkeyutl command is now implied (and thus no longer required) when using -digest or when signing or verifying with an Ed25519 or Ed448 key. The -digest and -rawin option may only be given with -sign or verify. David von Oheimb X509_PURPOSE_add() has been modified to take sname instead of id as the primary purpose identifier. For its convenient use, X509_PURPOSE_get_unused_id() has been added. This work was sponsored by Siemens AG. David von Oheimb Added support for central key generation in CMP. This work was sponsored by Siemens AG. Rajeev Ranjan Optionally allow the FIPS provider to use the JITTER entropy source. Note that using this option will require the resulting FIPS provider to undergo entropy source validation ESV by the CMVP, without this the FIPS provider will not be FIPS compliant. Enable this using the configuration option enable-fips-jitter. Paul Dale Extended OPENSSL_ia32cap support to accommodate additional CPUID feature/capability bits in leaf 0x7 (Extended Feature Flags) as well as leaf 0x24 (Converged Vector ISA). Dan Zimmerman, Alina Elizarova Cipher pipelining support for provided ciphers with new API functions EVP_CIPHER_can_pipeline(), EVP_CipherPipelineEncryptInit(), EVP_CipherPipelineDecryptInit(), EVP_CipherPipelineUpdate(), and EVP_CipherPipelineFinal(). Cipher pipelining support allows application to submit multiple chunks of data in one cipher update call, thereby allowing the provided implementation to take advantage of parallel computing. There are currently no built-in ciphers that support pipelining. This new API replaces the legacy pipeline API SSL_CTX_set_max_pipelines used with Engines. Ramkumar Add CMS_NO_SIGNING_TIME flag to CMS_sign(), CMS_add1_signer() Previously there was no way to create a CMS SignedData signature without a signing time attribute, because CMS_SignerInfo_sign added it unconditionally. However, there is a use case (PAdES signatures ETSI EN 319 142-1 ) where this attribute is not allowed, so a new flag was added to the CMS API that causes this attribute to be omitted at signing time. The new -no_signing_time option of the cms command enables this flag. Juhász Péter Parallel dual-prime 1024/1536/2048-bit modular exponentiation for AVX_IFMA capable processors (Intel Sierra Forest and its successor). This optimization brings performance enhancement, ranging from 1.8 to 2.2 times, for the sign/decryption operations of rsaz-2k/3k/4k (openssl speed rsa) on the Intel Sierra Forest. Zhiguo Zhou, Wangyang Guo (Intel Corp) VAES/AVX-512 support for AES-XTS. For capable processors (>= Intel Icelake), this provides a vectorized implementation of AES-XTS with a throughput improvement between 1.3x to 2x, depending on the block size. Pablo De Lara Guarch, Dan Pittman Fixed EVP_DecodeUpdate() to not write padding zeros to the decoded output. According to the documentation, for every 4 valid base64 bytes processed (ignoring whitespace, carriage returns and line feeds), EVP_DecodeUpdate() produces 3 bytes of binary output data (except at the end of data terminated with one or two padding characters). However, the function behaved like an EVP_DecodeBlock(). It produced exactly 3 output bytes for every 4 input bytes. Such behaviour could cause writes to a non-allocated output buffer if a user allocates its size based on the documentation and knowing the padding size. The fix makes EVP_DecodeUpdate() produce exactly as many output bytes as in the initial non-encoded message. Valerii Krygin Added support for aAissuingDistributionPoint, allowedAttributeAssignments, timeSpecification, attributeDescriptor, roleSpecCertIdentifier, authorityAttributeIdentifier and attributeMappings X.509v3 extensions. Jonathan M. Wilbur Added a new CLI option -provparam and API functions for setting of provider configuration parameters. Viktor Dukhovni Added a new trace category for PROVIDER calls and added new tracing calls in provider and algorithm fetching API functions. Neil Horman Fixed benchmarking for AEAD ciphers in the openssl speed utility. Mohammed Alhabib Added a build configuration option enable-sslkeylog for enabling support for SSLKEYLOGFILE environment variable to log TLS connection secrets. Neil Horman Added EVP_get_default_properties() function to retrieve the current default property query string. Dmitry Belyavskiy OpenSSL 3.4 Changes between 3.4.1 and 3.4.2 [xx XXX xxxx] When displaying distinguished names in the openssl application escape control characters by default. Tomáš Mráz Changes between 3.4.0 and 3.4.1 [11 Feb 2025] Fixed RFC7250 handshakes with unauthenticated servers don't abort as expected. Clients using RFC7250 Raw Public Keys (RPKs) to authenticate a server may fail to notice that the server was not authenticated, because handshakes don't abort as expected when the SSL_VERIFY_PEER verification mode is set. ([CVE-2024-12797]) Viktor Dukhovni Fixed timing side-channel in ECDSA signature computation. There is a timing signal of around 300 nanoseconds when the top word of the inverted ECDSA nonce value is zero. This can happen with significant probability only for some of the supported elliptic curves. In particular the NIST P-521 curve is affected. To be able to measure this leak, the attacker process must either be located in the same physical computer or must have a very fast network connection with low latency. (CVE-2024-13176) Tomáš Mráz Reverted the behavior change of CMS_get1_certs() and CMS_get1_crls() that happened in the 3.4.0 release. These functions now return NULL again if there are no certs or crls in the CMS object. Tomáš Mráz Changes between 3.3 and 3.4.0 [22 Oct 2024] For the FIPS provider only, replaced the primary DRBG with a continuous health check module. This also removes the now forbidden DRBG chaining. Paul Dale Improved base64 BIO correctness and error reporting. Viktor Dukhovni Added support for directly fetched composite signature algorithms such as RSA-SHA2-256 including new API functions in the EVP_PKEY_sign, EVP_PKEY_verify and EVP_PKEY_verify_recover groups. Richard Levitte XOF Digest API improvements EVP_MD_CTX_get_size() and EVP_MD_CTX_size are macros that were aliased to EVP_MD_get_size which returns a constant value. XOF Digests such as SHAKE have an output size that is not fixed, so calling EVP_MD_get_size() is not sufficent. The existing macros now point to the new function EVP_MD_CTX_get_size_ex() which will retrieve the "size" for a XOF digest, otherwise it falls back to calling EVP_MD_get_size(). Note that the SHAKE implementation did not have a context getter previously, so the "size" will only be able to be retrieved with new providers. Also added a EVP_xof() helper. Shane Lontis Added FIPS indicators to the FIPS provider. FIPS 140-3 requires indicators to be used if the FIPS provider allows non-approved algorithms. An algorithm is approved if it passes all required checks such as minimum key size. By default an error will occur if any check fails. For backwards compatibility individual algorithms may override the checks by using either an option in the FIPS configuration OR in code using an algorithm context setter. Overriding the check means that the algorithm is not FIPS compliant. OSSL_INDICATOR_set_callback() can be called to register a callback to log unapproved algorithms. At the end of any algorithm operation the approved status can be queried using an algorithm context getter. FIPS provider configuration options are set using 'openssl fipsinstall'. Note that new FIPS 140-3 restrictions have been enforced such as RSA Encryption using PKCS1 padding is no longer approved. Documentation related to the changes can be found on the [fips_module(7)] manual page. [fips_module(7)]: https://docs.openssl.org/master/man7/fips_module/#FIPS indicators Shane Lontis, Paul Dale, Po-Hsing Wu and Dimitri John Ledkov Added support for hardware acceleration for HMAC on S390x architecture. Ingo Franzki Added debuginfo Makefile target for unix platforms to produce a separate DWARF info file from the corresponding shared libs. Neil Horman Added support for encapsulation and decapsulation operations in the pkeyutl command. Dmitry Belyavskiy Added implementation of RFC 9579 (PBMAC1) in PKCS#12. Dmitry Belyavskiy Add a new random seed source RNG JITTER using a statically linked jitterentropy library. Dimitri John Ledkov Added a feature to retrieve configured TLS signature algorithms, e.g., via the openssl list command. Michael Baentsch Deprecated TS_VERIFY_CTX_set_* functions and added replacement TS_VERIFY_CTX_set0_* functions with improved semantics. Tobias Erbsland Redesigned Windows use of OPENSSLDIR/ENGINESDIR/MODULESDIR such that what were formerly build time locations can now be defined at run time with registry keys. See NOTES-WINDOWS.md. Neil Horman Added options -not_before and -not_after for explicit setting start and end dates of certificates created with the req and x509 commands. Added the same options also to ca command as alias for -startdate and -enddate options. Stephan Wurm The X25519 and X448 key exchange implementation in the FIPS provider is unapproved and has fips=no property. Tomáš Mráz SHAKE-128 and SHAKE-256 implementations have no default digest length anymore. That means these algorithms cannot be used with EVP_DigestFinal/_ex() unless the xoflen param is set before. This change was necessary because the preexisting default lengths were half the size necessary for full collision resistance supported by these algorithms. Tomáš Mráz Setting config_diagnostics=1 in the config file will cause errors to be returned from SSL_CTX_new() and SSL_CTX_new_ex() if there is an error in the ssl module configuration. Tomáš Mráz An empty renegotiate extension will be used in TLS client hellos instead of the empty renegotiation SCSV, for all connections with a minimum TLS version > 1.0. Tim Perry Added support for integrity-only cipher suites TLS_SHA256_SHA256 and TLS_SHA384_SHA384 in TLS 1.3, as defined in RFC 9150. This work was sponsored by Siemens AG. Rajeev Ranjan Added support for retrieving certificate request templates and CRLs in CMP, with the respective CLI options -template, -crlcert, -oldcrl, -crlout, -crlform>, and -rsp_crl. This work was sponsored by Siemens AG. Rajeev Ranjan Added support for issuedOnBehalfOf, auditIdentity, basicAttConstraints, userNotice, acceptablePrivilegePolicies, acceptableCertPolicies, subjectDirectoryAttributes, associatedInformation, delegatedNameConstraints, holderNameConstraints and targetingInformation X.509v3 extensions. Jonathan M. Wilbur Added Attribute Certificate (RFC 5755) support. Attribute Certificates can be created, parsed, modified and printed via the public API. There is no command-line tool support at this time. Damian Hobson-Garcia Added support to build Position Independent Executables (PIE). Configuration option enable-pie configures the cflag '-fPIE' and ldflag '-pie' to support Address Space Layout Randomization (ASLR) in the openssl executable, removes reliance on external toolchain configurations. Craig Lorentzen SSL_SESSION_get_time()/SSL_SESSION_set_time()/SSL_CTX_flush_sessions() have been deprecated in favour of their respective ..._ex() replacement functions which are Y2038-safe. Alexander Kanavin ECC groups may now customize their initialization to save CPU by using precomputed values. This is used by the P-256 implementation. Watson Ladd OpenSSL 3.3 Changes between 3.3.2 and 3.3.3 [xx XXX xxxx] Fixed possible OOB memory access with invalid low-level GF(2^m) elliptic curve parameters. Use of the low-level GF(2^m) elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes. Applications working with "exotic" explicit binary (GF(2^m)) curve parameters, that make it possible to represent invalid field polynomials with a zero constant term, via the above or similar APIs, may terminate abruptly as a result of reading or writing outside of array bounds. Remote code execution cannot easily be ruled out. (CVE-2024-9143) Viktor Dukhovni Changes between 3.3.1 and 3.3.2 [3 Sep 2024] Fixed possible denial of service in X.509 name checks. Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to read an invalid memory address when comparing the expected name with an otherName subject alternative name of an X.509 certificate. This may result in an exception that terminates the application program. (CVE-2024-6119) Viktor Dukhovni Fixed possible buffer overread in SSL_select_next_proto(). Calling the OpenSSL API function SSL_select_next_proto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. (CVE-2024-5535) Matt Caswell Changes between 3.3.0 and 3.3.1 [4 Jun 2024] Fixed potential use after free after SSL_free_buffers() is called. The SSL_free_buffers function is used to free the internal OpenSSL buffer used when processing an incoming record from the network. The call is only expected to succeed if the buffer is not currently in use. However, two scenarios have been identified where the buffer is freed even when still in use. The first scenario occurs where a record header has been received from the network and processed by OpenSSL, but the full record body has not yet arrived. In this case calling SSL_free_buffers will succeed even though a record has only been partially processed and the buffer is still in use. The second scenario occurs where a full record containing application data has been received and processed by OpenSSL but the application has only read part of this data. Again a call to SSL_free_buffers will succeed even though the buffer is still in use. (CVE-2024-4741) Matt Caswell Fixed an issue where checking excessively long DSA keys or parameters may be very slow. Applications that use the functions EVP_PKEY_param_check() or EVP_PKEY_public_check() to check a DSA public key or DSA parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. To resolve this issue DSA keys larger than OPENSSL_DSA_MAX_MODULUS_BITS will now fail the check immediately with a DSA_R_MODULUS_TOO_LARGE error reason. (CVE-2024-4603) Tomáš Mráz Improved EC/DSA nonce generation routines to avoid bias and timing side channel leaks. Thanks to Florian Sieck from Universität zu Lübeck and George Pantelakis and Hubert Kario from Red Hat for reporting the issues. Tomáš Mráz and Paul Dale Changes between 3.2 and 3.3.0 [9 Apr 2024] The -verify option to the openssl crl and openssl req will make the program exit with 1 on failure. Vladimír Kotal The BIO_get_new_index() function can only be called 127 times before it reaches its upper bound of BIO_TYPE_MASK. It will now correctly return an error of -1 once it is exhausted. Users may need to reserve using this function for cases where BIO_find_type() is required. Either BIO_TYPE_NONE or BIO_get_new_index() can be used to supply a type to BIO_meth_new(). Shane Lontis Added API functions SSL_SESSION_get_time_ex(), SSL_SESSION_set_time_ex() using time_t which is Y2038 safe on 32 bit systems when 64 bit time is enabled (e.g via setting glibc macro _TIME_BITS=64). Ijtaba Hussain The d2i_ASN1_GENERALIZEDTIME(), d2i_ASN1_UTCTIME(), ASN1_TIME_check(), and related functions have been augmented to check for a minimum length of the input string, in accordance with ITU-T X.690 section 11.7 and 11.8. Job Snijders Unknown entries in TLS SignatureAlgorithms, ClientSignatureAlgorithms config options and the respective calls to SSL[_CTX]_set1_sigalgs() and SSL[_CTX]_set1_client_sigalgs() that start with ? character are ignored and the configuration will still be used. Similarly unknown entries that start with ? character in a TLS Groups config option or set with SSL[_CTX]_set1_groups_list() are ignored and the configuration will still be used. In both cases if the resulting list is empty, an error is returned. Tomáš Mráz The EVP_PKEY_fromdata function has been augmented to allow for the derivation of CRT (Chinese Remainder Theorem) parameters when requested. See the OSSL_PKEY_PARAM_RSA_DERIVE_FROM_PQ param in the EVP_PKEY-RSA documentation. Neil Horman The activate and soft_load configuration settings for providers in openssl.cnf have been updated to require a value of [1|yes|true|on] (in lower or UPPER case) to enable the setting. Conversely a value of [0|no|false|off] will disable the setting. All other values, or the omission of a value for these settings will result in an error. Neil Horman Added -set_issuer and -set_subject options to openssl x509 to override the Issuer and Subject when creating a certificate. The -subj option now is an alias for -set_subject. Job Snijders, George Michaelson OPENSSL_sk_push() and sk__push() functions now return 0 instead of -1 if called with a NULL stack argument. Tomáš Mráz In openssl speed, changed the default hash function used with hmac from md5 to sha256. James Muir Added several new features of CMPv3 defined in RFC 9480 and RFC 9483: certProfile request message header and respective -profile CLI option support for delayed delivery of all types of response messages This work was sponsored by Siemens AG. David von Oheimb The build of exporters (such as .pc files for pkg-config) cleaned up to be less hard coded in the build file templates, and to allow easier addition of more exporters. With that, an exporter for CMake is also added. Richard Levitte The BLAKE2s hash algorithm matches BLAKE2b's support for configurable output length. Ahelenia ZiemiaÅska New option SSL_OP_PREFER_NO_DHE_KEX, which allows configuring a TLS1.3 server to prefer session resumption using PSK-only key exchange over PSK with DHE, if both are available. Markus Minichmayr, Tapkey GmbH New API SSL_write_ex2, which can be used to send an end-of-stream (FIN) condition in an optimised way when using QUIC. Hugo Landau New atexit configuration switch, which controls whether the OPENSSL_cleanup is registered when libcrypto is unloaded. This is turned off on NonStop configurations because of loader differences on that platform compared to Linux. Randall S. Becker Support for qlog for tracing QUIC connections has been added. The qlog output from OpenSSL currently uses a pre-standard draft version of qlog. The output from OpenSSL will change in incompatible ways in future releases, and is not subject to any format stability or compatibility guarantees at this time. This functionality can be disabled with the build-time option no-unstable-qlog. See the openssl-qlog(7) manpage for details. Hugo Landau Added APIs to allow configuring the negotiated idle timeout for QUIC connections, and to allow determining the number of additional streams that can currently be created for a QUIC connection. Hugo Landau Added APIs to allow disabling implicit QUIC event processing for QUIC SSL objects, allowing applications to control when event handling occurs. Refer to the SSL_get_value_uint(3) manpage for details. Hugo Landau Limited support for polling of QUIC connection and stream objects in a non-blocking manner. Refer to the SSL_poll(3) manpage for details. Hugo Landau Added APIs to allow querying the size and utilisation of a QUIC stream's write buffer. Refer to the SSL_get_value_uint(3) manpage for details. Hugo Landau New limit on HTTP response headers is introduced to HTTP client. The default limit is set to 256 header lines. If limit is exceeded the response processing stops with error HTTP_R_RESPONSE_TOO_MANY_HDRLINES. Application may call OSSL_HTTP_REQ_CTX_set_max_response_hdr_lines(3) to change the default. Setting the value to 0 disables the limit. Alexandr Nedvedicky Applied AES-GCM unroll8 optimisation to Microsoft Azure Cobalt 100 Tom Cosgrove Added X509_STORE_get1_objects to avoid issues with the existing X509_STORE_get0_objects API in multi-threaded applications. Refer to the documentation for details. David Benjamin Added assembly implementation for md5 on loongarch64 Min Zhou Optimized AES-CTR for ARM Neoverse V1 and V2 Fisher Yu Enable AES and SHA3 optimisations on Apple Silicon M3-based MacOS systems similar to M1/M2. Tom Cosgrove Added a new EVP_DigestSqueeze() API. This allows SHAKE to squeeze multiple times with different output sizes. Shane Lontis, Holger Dengler Various optimizations for cryptographic routines using RISC-V vector crypto extensions Christoph Müllner, Charalampos Mitrodimas, Ard Biesheuvel, Phoebe Chen, Jerry Shih Accept longer context for TLS 1.2 exporters While RFC 5705 implies that the maximum length of a context for exporters is 65535 bytes as the length is embedded in uint16, the previous implementation enforced a much smaller limit, which is less than 1024 bytes. This restriction has been removed. Daiki Ueno OpenSSL 3.2 Changes between 3.2.1 and 3.2.2 [xx XXX xxxx] Fixed an issue where some non-default TLS server configurations can cause unbounded memory growth when processing TLSv1.3 sessions. An attacker may exploit certain server configurations to trigger unbounded memory growth that would lead to a Denial of Service This problem can occur in TLSv1.3 if the non-default SSL_OP_NO_TICKET option is being used (but not if early_data is also configured and the default anti-replay protection is in use). In this case, under certain conditions, the session cache can get into an incorrect state and it will fail to flush properly as it fills. The session cache will continue to grow in an unbounded manner. A malicious client could deliberately create the scenario for this failure to force a Denial of Service. It may also happen by accident in normal operation. (CVE-2024-2511) Matt Caswell Fixed bug where SSL_export_keying_material() could not be used with QUIC connections. (#23560) Hugo Landau Changes between 3.2.0 and 3.2.1 [30 Jan 2024] A file in PKCS12 format can contain certificates and keys and may come from an untrusted source. The PKCS12 specification allows certain fields to be NULL, but OpenSSL did not correctly check for this case. A fix has been applied to prevent a NULL pointer dereference that results in OpenSSL crashing. If an application processes PKCS12 files from an untrusted source using the OpenSSL APIs then that application will be vulnerable to this issue prior to this fix. OpenSSL APIs that were vulnerable to this are: PKCS12_parse(), PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes() and PKCS12_newpass(). We have also fixed a similar issue in SMIME_write_PKCS7(). However since this function is related to writing data we do not consider it security significant. (CVE-2024-0727) Matt Caswell When function EVP_PKEY_public_check() is called on RSA public keys, a computation is done to confirm that the RSA modulus, n, is composite. For valid RSA keys, n is a product of two or more large primes and this computation completes quickly. However, if n is an overly large prime, then this computation would take a long time. An application that calls EVP_PKEY_public_check() and supplies an RSA key obtained from an untrusted source could be vulnerable to a Denial of Service attack. The function EVP_PKEY_public_check() is not called from other OpenSSL functions however it is called from the OpenSSL pkey command line application. For that reason that application is also vulnerable if used with the "-pubin" and "-check" options on untrusted data. To resolve this issue RSA keys larger than OPENSSL_RSA_MAX_MODULUS_BITS will now fail the check immediately with an RSA_R_MODULUS_TOO_LARGE error reason. (CVE-2023-6237) Tomáš Mráz Restore the encoding of SM2 PrivateKeyInfo and SubjectPublicKeyInfo to have the contained AlgorithmIdentifier.algorithm set to id-ecPublicKey rather than SM2. Richard Levitte The POLY1305 MAC (message authentication code) implementation in OpenSSL for PowerPC CPUs saves the contents of vector registers in different order than they are restored. Thus the contents of some of these vector registers is corrupted when returning to the caller. The vulnerable code is used only on newer PowerPC processors supporting the PowerISA 2.07 instructions. The consequences of this kind of internal application state corruption can be various - from no consequences, if the calling application does not depend on the contents of non-volatile XMM registers at all, to the worst consequences, where the attacker could get complete control of the application process. However unless the compiler uses the vector registers for storing pointers, the most likely consequence, if any, would be an incorrect result of some application dependent calculations or a crash leading to a denial of service. (CVE-2023-6129) Rohan McLure Disable building QUIC server utility when OpenSSL is configured with no-apps. Vitalii Koshura Changes between 3.1 and 3.2.0 [23 Nov 2023] Fix excessive time spent in DH check / generation with large Q parameter value. Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex() or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. (CVE-2023-5678) Richard Levitte The BLAKE2b hash algorithm supports a configurable output length by setting the "size" parameter. Äestmír Kalina and Tomáš Mráz Enable extra Arm64 optimization on Windows for GHASH, RAND and AES. Evgeny Karpov Added a function to delete objects from store by URI - OSSL_STORE_delete() and the corresponding provider-storemgmt API function OSSL_FUNC_store_delete(). Dmitry Belyavskiy Added OSSL_FUNC_store_open_ex() provider-storemgmt API function to pass a passphrase callback when opening a store. Simo Sorce Changed the default salt length used by PBES2 KDF's (PBKDF2 and scrypt) from 8 bytes to 16 bytes. The PKCS5 (RFC 8018) standard uses a 64 bit salt length for PBE, and recommends a minimum of 64 bits for PBES2. For FIPS compliance PBKDF2 requires a salt length of 128 bits. This affects OpenSSL command line applications such as "genrsa" and "pkcs8" and API's such as PEM_write_bio_PrivateKey() that are reliant on the default value. The additional commandline option 'saltlen' has been added to the OpenSSL command line applications for "pkcs8" and "enc" to allow the salt length to be set to a non default value. Shane Lontis Changed the default value of the ess_cert_id_alg configuration option which is used to calculate the TSA's public key certificate identifier. The default algorithm is updated to be sha256 instead of sha1. MaÅgorzata Olszówka Added optimization for SM2 algorithm on aarch64. It uses a huge precomputed table for point multiplication of the base point, which increases the size of libcrypto from 4.4 MB to 4.9 MB. A new configure option no-sm2-precomp has been added to disable the precomputed table. Xu Yizhou Added client side support for QUIC Hugo Landau, Matt Caswell, Paul Dale, Tomáš Mráz, Richard Levitte Added multiple tutorials on the OpenSSL library and in particular on writing various clients (using TLS and QUIC protocols) with libssl. Matt Caswell Added secp384r1 implementation using Solinas' reduction to improve speed of the NIST P-384 elliptic curve. To enable the implementation the build option enable-ec_nistp_64_gcc_128 must be used. Rohan McLure Improved RFC7468 compliance of the asn1parse command. Matthias St. Pierre Added SHA256/192 algorithm support. Fergus Dall Improved contention on global write locks by using more read locks where appropriate. Matt Caswell Improved performance of OSSL_PARAM lookups in performance critical provider functions. Paul Dale Added the SSL_get0_group_name() function to provide access to the name of the group used for the TLS key exchange. Alex Bozarth Provide a new configure option no-http that can be used to disable the HTTP support. Provide new configure options no-apps and no-docs to disable building the openssl command line application and the documentation. Vladimír Kotal Provide a new configure option no-ecx that can be used to disable the X25519, X448, and EdDSA support. Yi Li When multiple OSSL_KDF_PARAM_INFO parameters are passed to the EVP_KDF_CTX_set_params() function they are now concatenated not just for the HKDF algorithm but also for SSKDF and X9.63 KDF algorithms. Paul Dale Added OSSL_FUNC_keymgmt_im/export_types_ex() provider functions that get the provider context as a parameter. Ingo Franzki TLS round-trip time calculation was added by a Brigham Young University Capstone team partnering with Sandia National Laboratories. A new function in ssl_lib titled SSL_get_handshake_rtt will calculate and retrieve this value. Jairus Christensen Added the "-quic" option to s_client to enable connectivity to QUIC servers. QUIC requires the use of ALPN, so this must be specified via the "-alpn" option. Use of the "advanced" s_client command command via the "-adv" option is recommended. Matt Caswell Added an "advanced" command mode to s_client. Use this with the "-adv" option. The old "basic" command mode recognises certain letters that must always appear at the start of a line and cannot be escaped. The advanced command mode enables commands to be entered anywhere and there is an escaping mechanism. After starting s_client with "-adv" type "{help}" to show a list of available commands. Matt Caswell Add Raw Public Key (RFC7250) support. Authentication is supported by matching keys against either local policy (TLSA records synthesised from the expected keys) or DANE (TLSA records obtained by the application from DNS). TLSA records will also match the same key in the server certificate, should RPK use not happen to be negotiated. Todd Short Added support for modular exponentiation and CRT offloading for the S390x architecture. Juergen Christ Added further assembler code for the RISC-V architecture. Christoph Müllner Added EC_GROUP_to_params() which creates an OSSL_PARAM array from a given EC_GROUP. Oliver Mihatsch Improved support for non-default library contexts and property queries when parsing PKCS#12 files. Shane Lontis Implemented support for all five instances of EdDSA from RFC8032: Ed25519, Ed25519ctx, Ed25519ph, Ed448, and Ed448ph. The streaming is not yet supported for the HashEdDSA variants (Ed25519ph and Ed448ph). James Muir Added SM4 optimization for ARM processors using ASIMD and AES HW instructions. Xu Yizhou Implemented SM4-XTS support. Xu Yizhou Added platform-agnostic OSSL_sleep() function. Richard Levitte Implemented deterministic ECDSA signatures (RFC6979) support. Shane Lontis Implemented AES-GCM-SIV (RFC8452) support. Todd Short Added support for pluggable (provider-based) TLS signature algorithms. This enables TLS 1.3 authentication operations with algorithms embedded in providers not included by default in OpenSSL. In combination with the already available pluggable KEM and X.509 support, this enables for example suitable providers to deliver post-quantum or quantum-safe cryptography to OpenSSL users. Michael Baentsch Added support for pluggable (provider-based) CMS signature algorithms. This enables CMS sign and verify operations with algorithms embedded in providers not included by default in OpenSSL. Michael Baentsch Added support for Hybrid Public Key Encryption (HPKE) as defined in RFC9180. HPKE is required for TLS Encrypted ClientHello (ECH), Message Layer Security (MLS) and other IETF specifications. HPKE can also be used by other applications that require encrypting "to" an ECDH public key. External APIs are defined in include/openssl/hpke.h and documented in doc/man3/OSSL_HPKE_CTX_new.pod Stephen Farrell Implemented HPKE DHKEM support in providers used by HPKE (RFC9180) API. Shane Lontis Add support for certificate compression (RFC8879), including library support for Brotli and Zstandard compression. Todd Short Add the ability to add custom attributes to PKCS12 files. Add a new API PKCS12_create_ex2, identical to the existing PKCS12_create_ex but allows for a user specified callback and optional argument. Added a new PKCS12_SAFEBAG_set0_attr, which allows for a new attr to be added to the existing STACK_OF attrs. Graham Woodward Major refactor of the libssl record layer. Matt Caswell Add a mac salt length option for the pkcs12 command. Xinping Chen Add more SRTP protection profiles from RFC8723 and RFC8269. Kijin Kim Extended Kernel TLS (KTLS) to support TLS 1.3 receive offload. Daiki Ueno, John Baldwin and Dmitry Podgorny Add support for TCP Fast Open (RFC7413) to macOS, Linux, and FreeBSD where supported and enabled. Todd Short Add ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK (RFC 5489) to the list of ciphersuites providing Perfect Forward Secrecy as required by SECLEVEL >= 3. Dmitry Belyavskiy, Nicola Tuveri Add new SSL APIs to aid in efficiently implementing TLS/SSL fingerprinting. The SSL_CTRL_GET_IANA_GROUPS control code, exposed as the SSL_get0_iana_groups() function-like macro, retrieves the list of supported groups sent by the peer. The function SSL_client_hello_get_extension_order() populates a caller-supplied array with the list of extension types present in the ClientHello, in order of appearance. Phus Lu Fixed PEM_write_bio_PKCS8PrivateKey() and PEM_write_bio_PKCS8PrivateKey_nid() to make it possible to use empty passphrase strings. Darshan Sen The PKCS12_parse() function now supports MAC-less PKCS12 files. Daniel Fiala Added ASYNC_set_mem_functions() and ASYNC_get_mem_functions() calls to be able to change functions used for allocating the memory of asynchronous call stack. Arran Cudbard-Bell Added support for signed BIGNUMs in the OSSL_PARAM APIs. Richard Levitte A failure exit code is returned when using the openssl x509 command to check certificate attributes and the checks fail. Rami Khaldi The default SSL/TLS security level has been changed from 1 to 2. RSA, DSA and DH keys of 1024 bits and above and less than 2048 bits and ECC keys of 160 bits and above and less than 224 bits were previously accepted by default but are now no longer allowed. By default TLS compression was already disabled in previous OpenSSL versions. At security level 2 it cannot be enabled. Matt Caswell The SSL_CTX_set_cipher_list family functions now accept ciphers using their IANA standard names. Erik Lax The PVK key derivation function has been moved from b2i_PVK_bio_ex() into the legacy crypto provider as an EVP_KDF. Applications requiring this KDF will need to load the legacy crypto provider. Paul Dale CCM8 cipher suites in TLS have been downgraded to security level zero because they use a short authentication tag which lowers their strength. Paul Dale Subject or issuer names in X.509 objects are now displayed as UTF-8 strings by default. Also spaces surrounding = in DN output are removed. Dmitry Belyavskiy Add X.509 certificate codeSigning purpose and related checks on key usage and extended key usage of the leaf certificate according to the CA/Browser Forum. Lutz Jänicke* The x509, ca, and req commands now produce X.509 v3 certificates. The -x509v1 option of req prefers generation of X.509 v1 certificates. X509_sign() and X509_sign_ctx() make sure that the certificate has X.509 version 3 if the certificate information includes X.509 extensions. David von Oheimb Fix and extend certificate handling and the commands x509, verify etc. such as adding a trace facility for debugging certificate chain building. David von Oheimb Various fixes and extensions to the CMP+CRMF implementation and the cmp app in particular supporting various types of genm/genp exchanges such as getting CA certificates and root CA cert updates defined in CMP Updates [RFC 9480], as well as the -srvcertout and -serial CLI options. This work was sponsored by Siemens AG. David von Oheimb Fixes and extensions to the HTTP client and to the HTTP server in apps/ like correcting the TLS and proxy support and adding tracing for debugging. David von Oheimb Extended the CMS API for handling CMS_SignedData and CMS_EnvelopedData. David von Oheimb CMS_add0_cert() and CMS_add1_cert() no longer throw an error if a certificate to be added is already present. CMS_sign_ex() and CMS_sign() now ignore any duplicate certificates in their certs argument and no longer throw an error for them. David von Oheimb Fixed and extended util/check-format.pl for checking adherence to the coding style https://www.openssl.org/policies/technical/coding-style.html. The checks are meanwhile more complete and yield fewer false positives. David von Oheimb Added BIO_s_dgram_pair() and BIO_s_dgram_mem() that provide memory-based BIOs with datagram semantics and support for BIO_sendmmsg() and BIO_recvmmsg() calls. They can be used as the transport BIOs for QUIC. Hugo Landau, Matt Caswell and Tomáš Mráz Add new BIO_sendmmsg() and BIO_recvmmsg() BIO methods which allow sending and receiving multiple messages in a single call. An implementation is provided for BIO_dgram. For further details, see BIO_sendmmsg(3). Hugo Landau Support for loading root certificates from the Windows certificate store has been added. The support is in the form of a store which recognises the URI string of org.openssl.winstore://. This URI scheme currently takes no arguments. This store is built by default and can be disabled using the new compile-time option no-winstore. This store is not currently used by default and must be loaded explicitly using the above store URI. It is expected to be loaded by default in the future. Hugo Landau Enable KTLS with the TLS 1.3 CCM mode ciphersuites. Note that some linux kernel versions that support KTLS have a known bug in CCM processing. That has been fixed in stable releases starting from 5.4.164, 5.10.84, 5.15.7, and all releases since 5.16. KTLS with CCM ciphersuites should be only used on these releases. Tianjia Zhang Added -ktls option to s_server and s_client commands to enable the KTLS support. Tianjia Zhang Zerocopy KTLS sendfile() support on Linux. Maxim Mikityanskiy The OBJ_ calls are now thread safe using a global lock. Paul Dale New parameter -digest for openssl cms command allowing signing pre-computed digests and new CMS API functions supporting that functionality. Viktor Söderqvist OPENSSL_malloc() and other allocation functions now raise errors on allocation failures. The callers do not need to explicitly raise errors unless they want to for tracing purposes. David von Oheimb Added and enabled by default implicit rejection in RSA PKCS#1 v1.5 decryption as a protection against Bleichenbacher-like attacks. The RSA decryption API will now return a randomly generated deterministic message instead of an error in case it detects an error when checking padding during PKCS#1 v1.5 decryption. This is a general protection against issues like CVE-2020-25659 and CVE-2020-25657. This protection can be disabled by calling EVP_PKEY_CTX_ctrl_str(ctx, "rsa_pkcs1_implicit_rejection". "0") on the RSA decryption context. Hubert Kario Added support for Brainpool curves in TLS-1.3. Bernd Edlinger and Matt Caswell Added OpenBSD specific build targets. David Carlier Support for Argon2d, Argon2i, Argon2id KDFs has been added along with a basic thread pool implementation for select platforms. Äestmír Kalina OpenSSL 3.1 Changes between 3.1.3 and 3.1.4 [24 Oct 2023] Fix incorrect key and IV resizing issues when calling EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() or EVP_CipherInit_ex2() with OSSL_PARAM parameters that alter the key or IV length (CVE-2023-5363). Paul Dale Changes between 3.1.2 and 3.1.3 [19 Sep 2023] Fix POLY1305 MAC implementation corrupting XMM registers on Windows. The POLY1305 MAC (message authentication code) implementation in OpenSSL does not save the contents of non-volatile XMM registers on Windows 64 platform when calculating the MAC of data larger than 64 bytes. Before returning to the caller all the XMM registers are set to zero rather than restoring their previous content. The vulnerable code is used only on newer x86_64 processors supporting the AVX512-IFMA instructions. The consequences of this kind of internal application state corruption can be various - from no consequences, if the calling application does not depend on the contents of non-volatile XMM registers at all, to the worst consequences, where the attacker could get complete control of the application process. However given the contents of the registers are just zeroized so the attacker cannot put arbitrary values inside, the most likely consequence, if any, would be an incorrect result of some application dependent calculations or a crash leading to a denial of service. (CVE-2023-4807) Bernd Edlinger Changes between 3.1.1 and 3.1.2 [1 Aug 2023] Fix excessive time spent checking DH q parameter value. The function DH_check() performs various checks on DH parameters. After fixing CVE-2023-3446 it was discovered that a large q parameter value can also trigger an overly long computation during some of these checks. A correct q value, if present, cannot be larger than the modulus p parameter, thus it is unnecessary to perform these checks if q is larger than p. If DH_check() is called with such q parameter value, DH_CHECK_INVALID_Q_VALUE return flag is set and the computationally intensive checks are skipped. (CVE-2023-3817) Tomáš Mráz Fix DH_check() excessive time with over sized modulus. The function DH_check() performs various checks on DH parameters. One of those checks confirms that the modulus ("p" parameter) is not too large. Trying to use a very large modulus is slow and OpenSSL will not normally use a modulus which is over 10,000 bits in length. However the DH_check() function checks numerous aspects of the key or parameters that have been supplied. Some of those checks use the supplied modulus value even if it has already been found to be too large. A new limit has been added to DH_check of 32,768 bits. Supplying a key/parameters with a modulus over this size will simply cause DH_check() to fail. (CVE-2023-3446) Matt Caswell Do not ignore empty associated data entries with AES-SIV. The AES-SIV algorithm allows for authentication of multiple associated data entries along with the encryption. To authenticate empty data the application has to call EVP_EncryptUpdate() (or EVP_CipherUpdate()) with NULL pointer as the output buffer and 0 as the input buffer length. The AES-SIV implementation in OpenSSL just returns success for such call instead of performing the associated data authentication operation. The empty data thus will not be authenticated. (CVE-2023-2975) Thanks to Juerg Wullschleger (Google) for discovering the issue. The fix changes the authentication tag value and the ciphertext for applications that use empty associated data entries with AES-SIV. To decrypt data encrypted with previous versions of OpenSSL the application has to skip calls to EVP_DecryptUpdate() for empty associated data entries. Tomáš Mráz When building with the enable-fips option and using the resulting FIPS provider, TLS 1.2 will, by default, mandate the use of an extended master secret (FIPS 140-3 IG G.Q) and the Hash and HMAC DRBGs will not operate with truncated digests (FIPS 140-3 IG G.R). Paul Dale Changes between 3.1.0 and 3.1.1 [30 May 2023] Mitigate for the time it takes for OBJ_obj2txt to translate gigantic OBJECT IDENTIFIER sub-identifiers to canonical numeric text form. OBJ_obj2txt() would translate any size OBJECT IDENTIFIER to canonical numeric text form. For gigantic sub-identifiers, this would take a very long time, the time complexity being O(n^2) where n is the size of that sub-identifier. (CVE-2023-2650) To mitigitate this, OBJ_obj2txt() will only translate an OBJECT IDENTIFIER to canonical numeric text form if the size of that OBJECT IDENTIFIER is 586 bytes or less, and fail otherwise. The basis for this restriction is RFC 2578 (STD 58), section 3.5. OBJECT IDENTIFIER values, which stipulates that OBJECT IDENTIFIERS may have at most 128 sub-identifiers, and that the maximum value that each sub- identifier may have is 2^32-1 (4294967295 decimal). For each byte of every sub-identifier, only the 7 lower bits are part of the value, so the maximum amount of bytes that an OBJECT IDENTIFIER with these restrictions may occupy is 32 * 128 / 7, which is approximately 586 bytes. Richard Levitte Multiple algorithm implementation fixes for ARM BE platforms. Liu-ErMeng Added a -pedantic option to fipsinstall that adjusts the various settings to ensure strict FIPS compliance rather than backwards compatibility. Paul Dale Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms which happens if the buffer size is 4 mod 5 in 16 byte AES blocks. This can trigger a crash of an application using AES-XTS decryption if the memory just after the buffer being decrypted is not mapped. Thanks to Anton Romanov (Amazon) for discovering the issue. (CVE-2023-1255) Nevine Ebeid Reworked the Fix for the Timing Oracle in RSA Decryption (CVE-2022-4304). The previous fix for this timing side channel turned out to cause a severe 2-3x performance regression in the typical use case compared to 3.0.7. The new fix uses existing constant time code paths, and restores the previous performance level while fully eliminating all existing timing side channels. The fix was developed by Bernd Edlinger with testing support by Hubert Kario. Bernd Edlinger Add FIPS provider configuration option to disallow the use of truncated digests with Hash and HMAC DRBGs (q.v. FIPS 140-3 IG D.R.). The option '-no_drbg_truncated_digests' can optionally be supplied to 'openssl fipsinstall'. Paul Dale Corrected documentation of X509_VERIFY_PARAM_add0_policy() to mention that it does not enable policy checking. Thanks to David Benjamin for discovering this issue. (CVE-2023-0466) Tomáš Mráz Fixed an issue where invalid certificate policies in leaf certificates are silently ignored by OpenSSL and other certificate policy checks are skipped for that certificate. A malicious CA could use this to deliberately assert invalid certificate policies in order to circumvent policy checking on the certificate altogether. (CVE-2023-0465) Matt Caswell Limited the number of nodes created in a policy tree to mitigate against CVE-2023-0464. The default limit is set to 1000 nodes, which should be sufficient for most installations. If required, the limit can be adjusted by setting the OPENSSL_POLICY_TREE_NODES_MAX build time define to a desired maximum number of nodes or zero to allow unlimited growth. (CVE-2023-0464) Paul Dale Changes between 3.0 and 3.1.0 [14 Mar 2023] Add FIPS provider configuration option to enforce the Extended Master Secret (EMS) check during the TLS1_PRF KDF. The option '-ems_check' can optionally be supplied to 'openssl fipsinstall'. Shane Lontis The FIPS provider includes a few non-approved algorithms for backward compatibility purposes and the "fips=yes" property query must be used for all algorithm fetches to ensure FIPS compliance. The algorithms that are included but not approved are Triple DES ECB, Triple DES CBC and EdDSA. Paul Dale Added support for KMAC in KBKDF. Shane Lontis RNDR and RNDRRS support in provider functions to provide random number generation for Arm CPUs (aarch64). Orr Toledano s_client and s_server commands now explicitly say when the TLS version does not include the renegotiation mechanism. This avoids confusion between that scenario versus when the TLS version includes secure renegotiation but the peer lacks support for it. Felipe Gasper AES-GCM enabled with AVX512 vAES and vPCLMULQDQ. Tomasz Kantecki, Andrey Matyukov The various OBJ_* functions have been made thread safe. Paul Dale Parallel dual-prime 1536/2048-bit modular exponentiation for AVX512_IFMA capable processors. Sergey Kirillov, Andrey Matyukov (Intel Corp) The functions OPENSSL_LH_stats, OPENSSL_LH_node_stats, OPENSSL_LH_node_usage_stats, OPENSSL_LH_stats_bio, OPENSSL_LH_node_stats_bio and OPENSSL_LH_node_usage_stats_bio are now marked deprecated from OpenSSL 3.1 onwards and can be disabled by defining OPENSSL_NO_DEPRECATED_3_1. The macro DEFINE_LHASH_OF is now deprecated in favour of the macro DEFINE_LHASH_OF_EX, which omits the corresponding type-specific function definitions for these functions regardless of whether OPENSSL_NO_DEPRECATED_3_1 is defined. Users of DEFINE_LHASH_OF may start receiving deprecation warnings for these functions regardless of whether they are using them. It is recommended that users transition to the new macro, DEFINE_LHASH_OF_EX. Hugo Landau When generating safe-prime DH parameters set the recommended private key length equivalent to minimum key lengths as in RFC 7919. Tomáš Mráz Change the default salt length for PKCS#1 RSASSA-PSS signatures to the maximum size that is smaller or equal to the digest length to comply with FIPS 186-4 section 5. This is implemented by a new option OSSL_PKEY_RSA_PSS_SALT_LEN_AUTO_DIGEST_MAX ("auto-digestmax") for the rsa_pss_saltlen parameter, which is now the default. Signature verification is not affected by this change and continues to work as before. Clemens Lang @ text @@ 1.1.1.1.2.1 log @Pull up the following revisions, requested by christos in ticket #308: crypto/external/apache2/openssl/dist/test/recipes/80-test_cmsapi_data/cms_pwri_kek_oob.der up to 1.1.1.1 crypto/external/apache2/openssl/dist/test/recipes/80-test_pkcs12_data/pbmac1_256_256.bad-key-len.p12 up to 1.1.1.1 crypto/external/apache2/openssl/dist/test/recipes/80-test_pkcs12_data/pbmac1_256_256.good-shorter-key-len.p12 up to 1.1.1.1 crypto/external/apache2/openssl/dist/test/recipes/70-test_tls13ticket.t up to 1.1.1.1 crypto/external/apache2/openssl/dist/test/smime-eml/pkcs7-empty-digest-set.eml up to 1.1.1.1 crypto/external/apache2/openssl/dist/test/cms-msg/make_missing_kdf_der.py up to 1.1.1.1 crypto/external/apache2/openssl/dist/test/cms-msg/missing-kdf.der up to 1.1.1.1 crypto/external/apache2/openssl/dist/test/tls13tickettest.c up to 1.1.1.1 crypto/external/apache2/openssl/dist/CHANGES.md up to 1.1.1.4 crypto/external/apache2/openssl/dist/Configure up to 1.1.1.2 crypto/external/apache2/openssl/dist/NEWS.md up to 1.1.1.4 crypto/external/apache2/openssl/dist/VERSION.dat up to 1.1.1.4 crypto/external/apache2/openssl/dist/Configurations/README.md up to 1.1.1.2 crypto/external/apache2/openssl/dist/apps/enc.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/apps/list.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/apps/s_client.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/apps/skeyutl.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/apps/speed.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/apps/testdsa.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/apps/testrsa.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/apps/lib/apps.c up to 1.5 crypto/external/apache2/openssl/dist/apps/lib/cmp_mock_srv.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/initthread.c up to 1.4 crypto/external/apache2/openssl/dist/crypto/param_build.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/param_build_set.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/threads_none.c up to 1.3 crypto/external/apache2/openssl/dist/crypto/threads_pthread.c up to 1.7 crypto/external/apache2/openssl/dist/crypto/threads_win.c up to 1.3 crypto/external/apache2/openssl/dist/crypto/aes/asm/aesfx-sparcv9.pl up to 1.1.1.2 crypto/external/apache2/openssl/dist/crypto/asn1/a_d2i_fp.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/asn1/a_mbstr.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/asn1/asn1_lib.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/asn1/asn_mime.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/asn1/tasn_dec.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/bio/bss_dgram.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/bio/bss_dgram_pair.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/bn/bn_const.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/bn/bn_mod.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/cast/cast_s.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/chacha/asm/chachap10-ppc.pl up to 1.1.1.2 crypto/external/apache2/openssl/dist/crypto/cmp/cmp_genm.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/cms/cms_enc.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/cms/cms_env.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/cms/cms_pwri.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/crmf/crmf_lib.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/des/fcrypt.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/dso/dso_win32.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/ec/ec_curve.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/ec/ec_lib.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/ec/ecp_s390x_nistp.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/ec/ecp_sm2p256.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/ec/curve448/scalar.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/ec/curve448/word.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/evp/asymcipher.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/evp/e_aes.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/evp/encode.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/evp/evp_lib.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/evp/kem.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/evp/m_sigver.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/evp/signature.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/ffc/ffc_params.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/hashtable/hashtable.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/hpke/hpke_util.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/http/http_client.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/http/http_lib.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/md2/md2_dgst.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/ml_dsa/ml_dsa_key.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/modes/wrap128.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/objects/obj_dat.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/objects/obj_lib.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/pkcs12/p12_decr.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/pkcs12/p12_mutl.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/pkcs7/pk7_doit.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/crypto/pkcs7/pk7_smime.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/rc2/rc2_skey.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/slh_dsa/slh_dsa_key.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/sm2/sm2_crypt.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/sm2/sm2_sign.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/crypto/x509/v3_ist.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/demos/cipher/aeskeywrap.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/demos/cipher/ariacbc.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/demos/digest/EVP_MD_demo.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/demos/encrypt/rsa_encrypt.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/demos/mac/cmac-aes256.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/demos/mac/hmac-sha512.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/demos/signature/EVP_EC_Signature_demo.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/doc/fingerprints.txt up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/internal/man3/ossl_rcu_lock_new.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man1/openssl-format-options.pod up to 1.1.1.3 crypto/external/apache2/openssl/dist/doc/man1/openssl-pkcs8.pod.in up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man1/openssl-rehash.pod.in up to 1.1.1.3 crypto/external/apache2/openssl/dist/doc/man1/openssl-s_client.pod.in up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man1/openssl-s_server.pod.in up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man1/openssl-smime.pod.in up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/BIO_s_bio.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/BN_add.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/CMS_decrypt.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/EVP_EncryptInit.pod up to 1.1.1.4 crypto/external/apache2/openssl/dist/doc/man3/OSSL_HTTP_REQ_CTX.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/OSSL_HTTP_parse_url.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/OSSL_HTTP_transfer.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/PKCS7_decrypt.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/SSL_CTX_set_session_cache_mode.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/SSL_CTX_set_session_id_context.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/SSL_CTX_set_tlsext_servername_callback.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man3/d2i_X509.pod up to 1.1.1.3 crypto/external/apache2/openssl/dist/doc/man7/EVP_CIPHER-AES.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man7/openssl-env.pod up to 1.1.1.4 crypto/external/apache2/openssl/dist/doc/man7/provider-asym_cipher.pod up to 1.1.1.2 crypto/external/apache2/openssl/dist/doc/man7/provider-signature.pod up to 1.1.1.3 crypto/external/apache2/openssl/dist/fuzz/dtlsserver.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/fuzz/server.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/crypto/riscv_arch.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/internal/cryptlib.h up to 1.3 crypto/external/apache2/openssl/dist/include/internal/quic_cfq.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/internal/quic_channel.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/internal/quic_fifd.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/internal/quic_stream_map.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/internal/rcu.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/openssl/bn.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/openssl/ssl.h.in up to 1.1.1.3 crypto/external/apache2/openssl/dist/include/openssl/x509_acert.h.in up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/defltprov.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/fips-sources.checksums up to 1.1.1.4 crypto/external/apache2/openssl/dist/providers/fips.checksum up to 1.1.1.4 crypto/external/apache2/openssl/dist/providers/fips.module.sources up to 1.1.1.2 crypto/external/apache2/openssl/dist/providers/fips/self_test_data.inc up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/ciphers/cipher_aes_gcm_hw_rv64i.inc up to 1.1.1.2 crypto/external/apache2/openssl/dist/providers/implementations/ciphers/cipher_aes_gcm_siv_hw.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/ciphers/cipher_aes_ocb.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/providers/implementations/ciphers/cipher_aes_siv.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/encode_decode/ml_dsa_codecs.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/encode_decode/ml_dsa_codecs.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/encode_decode/ml_kem_codecs.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/exchange/dh_exch.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/include/prov/implementations.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/keymgmt/ecx_kmgmt.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/keymgmt/ml_kem_kmgmt.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/providers/implementations/keymgmt/mlx_kmgmt.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/macs/poly1305_prov.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/signature/rsa_sig.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/providers/implementations/signature/slh_dsa_sig.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/ssl_ciph.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/ssl_rsa.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/t1_lib.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/ssl/t1_trce.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_ackm.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_cfq.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_channel.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_channel_local.h up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_fifd.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_impl.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/ssl/quic/quic_port.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_record_rx.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_record_shared.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_record_tx.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/quic_rx_depack.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/ssl/quic/quic_stream_map.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/ssl/quic/quic_txp.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/quic/uint_set.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/ssl/record/methods/ktls_meth.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/record/methods/tls_common.c up to 1.3 crypto/external/apache2/openssl/dist/ssl/statem/extensions_cust.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/statem/extensions_srvr.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/statem/statem.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/statem/statem_clnt.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/statem/statem_lib.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/ssl/statem/statem_srvr.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/asn1_decode_test.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/test/bad_dtls_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/bio_tfo_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/build.info up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/chacha_internal_test.c up to 1.1.1.2 crypto/external/apache2/openssl/dist/test/cipherlist_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/cmsapitest.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/destest.c up to 1.4 crypto/external/apache2/openssl/dist/test/dsatest.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/ectest.c up to 1.4 crypto/external/apache2/openssl/dist/test/endecode_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/enginetest.c up to 1.4 crypto/external/apache2/openssl/dist/test/evp_extra_test.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/test/evp_extra_test2.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/evp_kdf_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/evp_libctx_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/evp_pkey_provided_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/evp_skey_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/hpke_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/http_test.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/test/ideatest.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/ml_kem_evp_extra_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/param_build_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/pbetest.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/pkcs12_format_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/quic_record_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/quic_txp_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/quic_wire_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/quicapitest.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/test/siphash_internal_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/sslapitest.c up to 1.1.1.4 crypto/external/apache2/openssl/dist/test/stack_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/threadstest.c up to 1.4 crypto/external/apache2/openssl/dist/test/x509_test.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/helpers/predefined_dhparams.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/radix/quic_tests.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/radix/terp.c up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/recipes/80-test_cms.t up to 1.1.1.4 crypto/external/apache2/openssl/dist/test/recipes/80-test_cmsapi.t up to 1.1.1.3 crypto/external/apache2/openssl/dist/test/recipes/80-test_pkcs12.t up to 1.1.1.3 crypto/external/apache2/openssl/dist/util/missingcrypto.txt up to 1.1.1.4 crypto/external/apache2/openssl/dist/util/missingcrypto111.txt up to 1.1.1.2 doc/3RDPARTY (manually edited) Import OpenSSL 3.5.7 @ text @d3 1 a3 1 # Copyright 2016-2026 The OpenSSL Project Authors. All Rights Reserved. d224 9 a233 2 # This table expresses when API additions or changes can occur my $apitable = { a243 12 # From 3.0 and on, we internalise the given version number in decimal # as MAJOR * 10000 + MINOR * 100 + 0 my @@post30_versions = ([3, 0], [3, 1], [3, 2], [3, 3], [3, 4], [3, 5], ); # The numbering used changes from 3.0 and on because we updated # (solidified) our version numbering scheme at that point. foreach (@@post30_versions) { my ($x, $y) = @@{$_}; $apitable->{"$x.$y.0"} = $apitable->{"$x.$y"} = $x * 10000 + $y * 100; } @ 1.1.1.2 log @Import OpenSSL 3.5.7 (previous was 3.5.6) OpenSSL 3.5.7 is a security patch release. The most severe CVE fixed in this release is High. This release incorporates the following bug fixes and mitigations: Fixed heap use-after-free in PKCS7_verify(). (CVE-2026-45447) Fixed CMS AuthEnvelopedData processing may accept forged messages. (CVE-2026-34182) Fixed unbounded memory growth in the QUIC PATH_CHALLENGE handler. (CVE-2026-34183) Fixed NULL pointer dereference in QUIC server initial packet handling. (CVE-2026-42764) Fixed AES-OCB IV ignored on EVP_Cipher() path. (CVE-2026-45445) Fixed possible heap buffer overflow in ASN.1 multibyte string conversion. (CVE-2026-7383) Fixed out-of-bounds read in CMS password-based decryption. (CVE-2026-9076) Fixed heap buffer over-read in ASN.1 content parsing. (CVE-2026-34180) Fixed PKCS#12 files with PBMAC1 are accepted with short HMAC keys. (CVE-2026-34181) Fixed possible NULL dereference in password-dased CMS decryption. (CVE-2026-42766) Fixed NULL pointer dereference in CRMF EncryptedValue decryption. (CVE-2026-42767) Fixed multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt(). (CVE-2026-42768) Fixed trust anchor substitution via cert/issuer typo in CMP rootCaKeyUpdate. (CVE-2026-42769) Fixed FFC-DH peer validation uses attacker-supplied q. (CVE-2026-42770) Fixed incorrect tag processing for empty messages in AES-GCM-SIV and AES-SIV modes. (CVE-2026-45446) @ text @d3 1 a3 1 # Copyright 2016-2026 The OpenSSL Project Authors. All Rights Reserved. d224 9 a233 2 # This table expresses when API additions or changes can occur my $apitable = { a243 12 # From 3.0 and on, we internalise the given version number in decimal # as MAJOR * 10000 + MINOR * 100 + 0 my @@post30_versions = ([3, 0], [3, 1], [3, 2], [3, 3], [3, 4], [3, 5], ); # The numbering used changes from 3.0 and on because we updated # (solidified) our version numbering scheme at that point. foreach (@@post30_versions) { my ($x, $y) = @@{$_}; $apitable->{"$x.$y.0"} = $apitable->{"$x.$y"} = $x * 10000 + $y * 100; } @