openssl
diff --git a/‎apps/lib/s_cb.c‎
Lines changed: 14 additions & 1 deletion b/‎apps/lib/s_cb.c‎
Lines changed: 14 additions & 1 deletion
diff --git a/‎apps/progs.pl‎
Lines changed: 0 additions & 1 deletion b/‎apps/progs.pl‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎crypto/dh/dh_ameth.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_ameth.c‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎crypto/dh/dh_asn1.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_asn1.c‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎crypto/dh/dh_check.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_check.c‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎crypto/dh/dh_depr.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_depr.c‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎crypto/dh/dh_gen.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_gen.c‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎crypto/dh/dh_group_params.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_group_params.c‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎crypto/dh/dh_kdf.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_kdf.c‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎crypto/dh/dh_key.c‎
Lines changed: 6 additions & 0 deletions b/‎crypto/dh/dh_key.c‎
Lines changed: 6 additions & 0 deletions
@@ -1434,7 +1434,20 @@ static int security_callback_debug(const SSL *s, const SSL_CTX *ctx,
     case SSL_SECOP_OTHER_DH:
         {
             DH *dh = other;
-            BIO_printf(sdb->out, "%d", DH_bits(dh));
+            EVP_PKEY *pkey = EVP_PKEY_new();
+            int fail = 1;
+
+            if (pkey != NULL) {
+                if (EVP_PKEY_set1_DH(pkey, dh)) {
+                    BIO_printf(sdb->out, "%d", EVP_PKEY_bits(pkey));
+                    fail = 0;
+                }
+
+                EVP_PKEY_free(pkey);
+            }
+            if (fail)
+                BIO_printf(sdb->out, "s_cb.c:security_callback_debug op=0x%x",
+                           op);
             break;
         }
 #endif
 
@@ -92,7 +92,6 @@
 
     my %cmd_disabler = (
         ciphers  => "sock",
-        gendh    => "dh",
         pkcs12   => "des",
     );
     my %cmd_deprecated = (
 
@@ -7,6 +7,12 @@
  * https://www.openssl.org/source/license.html
  */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include <stdio.h>
 #include "internal/cryptlib.h"
 #include <openssl/x509.h>
 
@@ -7,6 +7,12 @@
  * https://www.openssl.org/source/license.html
  */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include <stdio.h>
 #include "internal/cryptlib.h"
 #include <openssl/bn.h>
 
@@ -7,6 +7,12 @@
  * https://www.openssl.org/source/license.html
  */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include <stdio.h>
 #include "internal/cryptlib.h"
 #include <openssl/bn.h>
 
@@ -9,6 +9,12 @@
 
 /* This file contains deprecated functions as wrappers to the new ones */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include <openssl/opensslconf.h>
 #ifdef OPENSSL_NO_DEPRECATED_0_9_8
 NON_EMPTY_TRANSLATION_UNIT
 
@@ -12,6 +12,12 @@
  * dh_depr.c as wrappers to these ones.  - Geoff
  */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include <stdio.h>
 #include "internal/cryptlib.h"
 #include <openssl/bn.h>
 
@@ -9,6 +9,12 @@
 
 /* DH parameters from RFC7919 and RFC3526 */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include <stdio.h>
 #include "internal/cryptlib.h"
 #include "dh_local.h"
 
@@ -7,6 +7,12 @@
  * https://www.openssl.org/source/license.html
  */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include "e_os.h"
 
 #ifndef OPENSSL_NO_CMS
 
@@ -7,6 +7,12 @@
  * https://www.openssl.org/source/license.html
  */
 
+/*
+ * DH low level APIs are deprecated for public use, but still ok for
+ * internal use.
+ */
+#include "internal/deprecated.h"
+
 #include <stdio.h>
 #include "internal/cryptlib.h"
 #include "dh_local.h"