Check-in [66023e665f]
Bounty program for improvements to Tcl and certain Tcl packages.
Overview
Comment:Added a consolidated check for pre-OpenSSL 1.1 API usage
Downloads: Tarball | ZIP archive | SQL archive
Timelines: family | ancestors | descendants | both | trunk
Files: files | file ages | folders
SHA1: 66023e665fad4e7bb21f005fcf402862f8b66736
User & Date: rkeene on 2016-12-08 08:50:46
Other Links: manifest | tags
Context
2016-12-09
14:55
Updated to latest remote tcl.m4 check-in: 0561feec30 user: rkeene tags: trunk
2016-12-08
08:50
Added a consolidated check for pre-OpenSSL 1.1 API usage check-in: 66023e665f user: rkeene tags: trunk
08:36
Moved BIO_ wrappers into the BIO source and added more debugging output check-in: 333d833f31 user: rkeene tags: trunk
Changes

Modified gen_dh_params from [c6f609976c] to [2fbb069da4].

72
73
74
75
76
77
78
79

80
81
82
83
84
85
86
72
73
74
75
76
77
78

79
80
81
82
83
84
85
86






-
+







	if (dh == NULL) {
		return NULL;
	}

	dhp_bn = BN_bin2bn(dhp_2048, sizeof (dhp_2048), NULL);
	dhg_bn = BN_bin2bn(dhg_2048, sizeof (dhg_2048), NULL);

#if OPENSSL_VERSION_NUMBER < 0x10100000L
#ifdef TCLTLS_OPENSSL_PRE_1_1_API
	dh->p = dhp_bn;
	dh->g = dhg_bn;

	if (dhp_bn == NULL || dhg_bn == NULL) {
#else
	if (dhp_bn == NULL || dhg_bn == NULL || !DH_set0_pqg(dh, dhp_bn, NULL, dhg_bn)) {
#endif

Modified tlsBIO.c from [0649a89784] to [19e4f3db10].

1
2
3
4
5
6
7
8
9

10
11
12
13
14
15
16
1
2
3
4
5
6
7
8

9
10
11
12
13
14
15
16







-
+







/*
 * Copyright (C) 1997-2000 Matt Newman <[email protected]>
 *
 * Provides BIO layer to interface openssl to Tcl.
 */

#include "tlsInt.h"

#if OPENSSL_VERSION_NUMBER < 0x10100000L
#ifdef TCLTLS_OPENSSL_PRE_1_1_API
#define BIO_get_data(bio)                ((bio)->ptr)
#define BIO_get_init(bio)                ((bio)->init)
#define BIO_get_shutdown(bio)            ((bio)->shutdown)
#define BIO_set_data(bio, val)           (bio)->ptr = (val)
#define BIO_set_init(bio, val)           (bio)->init = (val)
#define BIO_set_shutdown(bio, val)       (bio)->shutdown = (val)

Modified tlsInt.h from [0c22832f9f] to [b4a76786cc].

51
52
53
54
55
56
57
58
59
60


61
62
63
64


65
66


67
68
69
70
71
72
73
74
51
52
53
54
55
56
57



58
59




60
61


62
63

64
65
66
67
68
69
70






-
-
-
+
+
-
-
-
-
+
+
-
-
+
+
-







#else
#include <openssl/ssl.h>
#include <openssl/err.h>
#include <openssl/rand.h>
#include <openssl/opensslv.h>
#endif

#ifndef NO_TLS1_1
#  ifndef SSL_OP_NO_TLSv1_1
#    define NO_TLS1_1
/*
 * Determine if we should use the pre-OpenSSL 1.1.0 API
#  endif
#endif

#ifndef NO_TLS1_2
 */
#undef TCLTLS_OPENSSL_PRE_1_1
#  ifndef SSL_OP_NO_TLSv1_2
#    define NO_TLS1_2
#if (defined(LIBRESSL_VERSION_NUMBER)) || OPENSSL_VERSION_NUMBER < 0x10100000L
#  define TCLTLS_OPENSSL_PRE_1_1_API 1
#  endif
#endif

#ifdef TCL_STORAGE_CLASS
# undef TCL_STORAGE_CLASS
#endif
#ifdef BUILD_tls
# define TCL_STORAGE_CLASS DLLEXPORT