diff --git a/openssl.yaml b/openssl.yaml index 5e166936afb..cd22e5a9481 100644 --- a/openssl.yaml +++ b/openssl.yaml @@ -1,7 +1,7 @@ package: name: openssl version: "3.6.0" - epoch: 4 + epoch: 5 description: "the OpenSSL cryptography suite" copyright: - license: Apache-2.0 @@ -49,17 +49,6 @@ pipeline: 0001-baseprovider-add-MD5-and-SHA1.patch 0001-fips-block-HMAC-calculation-with-unapproved-digests.patch - - name: Create dbg sourcecode - runs: | - SRCDIR=$(mktemp -d) - cp -r . $SRCDIR/ - mkdir -p ${{targets.destdir}}-dbg/usr/src/ - mv $SRCDIR ${{targets.destdir}}-dbg/usr/src/${{package.name}} - # Note that mktemp -d created it as 700, whilst the contents - # inside is 644 for files and 755 for dirs, without this gdb - # doesn't work for non-root user, fix this up. - chmod 755 ${{targets.destdir}}-dbg/usr/src/${{package.name}} - - name: Configure and build runs: | perl ./Configure \ @@ -85,6 +74,21 @@ pipeline: no-weak-ssl-ciphers \ -Wa,--noexecstack perl configdata.pm --dump + + # Create generated .c from .c.in + make build_all_generated + + # Create debug sources after creating all the generated .c from .c.in + SRCDIR=$(mktemp -d) + cp -r . $SRCDIR/ + mkdir -p ${{targets.destdir}}-dbg/usr/src/ + mv $SRCDIR ${{targets.destdir}}-dbg/usr/src/${{package.name}} + # Note that mktemp -d created it as 700, whilst the contents + # inside is 644 for files and 755 for dirs, without this gdb + # doesn't work for non-root user, fix this up. + chmod 755 ${{targets.destdir}}-dbg/usr/src/${{package.name}} + + # Continue building everything make -j$(nproc) make tests HARNESS_JOBS=10 @@ -272,9 +276,9 @@ test: run genrsa -out /dev/null EOF gdb --batch --command ./openssl.gdb openssl - # Assert that jitter entropy was not used + # Assert that jitter entropy was used grep -q 'Breakpoint 1,' jitter.log || exit 1 - # Assert that getrandom syscall wrapper was used + # Assert that getrandom syscall wrapper was not used grep -q 'Breakpoint 2,' jitter.log && exit 1 - name: docker-dind certificate generation runs: |