projects / openwrt / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b044b52) | patch
openssl: add configuration options, disable ssl3
authorEneas U de Queiroz <cote2004-github@yahoo.com>
Mon, 22 Oct 2018 14:32:56 +0000 (11:32 -0300)
committerHauke Mehrtens <hauke@hauke-m.de>
Tue, 12 Feb 2019 20:14:46 +0000 (21:14 +0100)
commitbe3892284ca77a69615351b106b8dfbadad728c4
tree63a04a5d53b72ac6d8d86a0f6d3788d4f9c8a3cbtree | snapshot
parentb044b52ab9553b8d94cfc5565d2ea5013364159dcommit | diff
openssl: add configuration options, disable ssl3

Adds the following configuration options:
* using optimized assembler code (was always on before)
* use of x86 SSE2 instructions
* dyanic engine support
* include error messages
* Camellia, Gost, Idea, MDC2, Seed & Whirlpool algorithms
* RFC3779, CMS protocols
* VIA padlock hardware acceleration engine

Installs openssl.cnf with the library as it is used by engines
independent of the openssl util.

Fixes DTLS option that was innefective before.

Disables insecure SSL3 protocol and SHA0.

Adds openwrt-specific targets to Configure script, including asm support
for i386, ppc and mips64.

Strips building dirs from CFLAGS shown in binary.

Skips the fuzz directory during build.

Removed include/crypto/devcrypto.h that was included here, to use the
cryptodev-linux package, now that it was been moved from the packages
feed to the main openwrt repository.

This decreses the size of the ipk binray on MIPS32 by about 3.3%:
old:
706.957 bin/packages/mips_24kc/base/libopenssl1.0.0_1.0.2q-2_mips_24kc.ipk
199.294 bin/packages/mips_24kc/base/openssl-util_1.0.2q-2_mips_24kc.ipk

new:
693.941 bin/packages/mips_24kc/base/libopenssl1.0.0_1.0.2q-2_mips_24kc.ipk
193.827 bin/packages/mips_24kc/base/openssl-util_1.0.2q-2_mips_24kc.ipk

Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
21 files changed:
package/libs/openssl/Config.in diff | blob | history
package/libs/openssl/Makefile diff | blob | history
package/libs/openssl/include/crypto/cryptodev.h [deleted file] blob | history
package/libs/openssl/patches/100-openwrt_targets.patch [new file with mode: 0644] blob
package/libs/openssl/patches/110-optimize-for-size.patch [deleted file] blob | history
package/libs/openssl/patches/110-perl-path.patch [new file with mode: 0644] blob
package/libs/openssl/patches/120-makefile-dirs.patch [new file with mode: 0644] blob
package/libs/openssl/patches/130-disable_doc_tests.patch [new file with mode: 0644] blob
package/libs/openssl/patches/130-perl-path.patch [deleted file] blob | history
package/libs/openssl/patches/140-bash_path.patch [new file with mode: 0644] blob
package/libs/openssl/patches/140-makefile-dirs.patch [deleted file] blob | history
package/libs/openssl/patches/150-fix_link_segfault.patch [new file with mode: 0644] blob
package/libs/openssl/patches/150-no_engines.patch [deleted file] blob | history
package/libs/openssl/patches/160-disable_doc_tests.patch [deleted file] blob | history
package/libs/openssl/patches/160-remove_timestamp_check.patch [new file with mode: 0644] blob
package/libs/openssl/patches/170-bash_path.patch [deleted file] blob | history
package/libs/openssl/patches/170-parallel_build.patch [new file with mode: 0644] blob
package/libs/openssl/patches/180-fix_link_segfault.patch [deleted file] blob | history
package/libs/openssl/patches/180-strip-cflags-from-binary.patch [new file with mode: 0644] blob
package/libs/openssl/patches/190-remove_timestamp_check.patch [deleted file] blob | history
package/libs/openssl/patches/200-parallel_build.patch [deleted file] blob | history
OpenWrt Source Repository