Merge pull request #93 from tls-attacker/timingScanAdjustments

mmaehren · web-flow · commit aa767ea07ef6 · 2023-11-17T15:00:51.000+01:00
Extended Server Management
diff --git a/images/DamnVulnerableOpenSSL/DamnVulnerableOpenSSL b/images/DamnVulnerableOpenSSL/DamnVulnerableOpenSSL
@@ -1 +1 @@
-Subproject commit e4687d050a880ade0a1875e809b41f6158db7b67
+Subproject commit 383eddde97eadb5052427bd04f3bd9dd5c7ca493
diff --git a/images/baseimage/entrypoints/cmd/server-entrypoint/main.go b/images/baseimage/entrypoints/cmd/server-entrypoint/main.go
@@ -4,7 +4,6 @@ import (
 	"entrypoints/lib"
 	"fmt"
 	"net/http"
-	"os"
 	"strconv"
 	"time"
 )
@@ -18,16 +17,11 @@ func infinite() {
 		elapsed := time.Since(start)
 
 		fmt.Println("Server terminated! (" + strconv.Itoa(int(elapsed.Milliseconds())) + "ms)")
-		if elapsed < 100 * time.Millisecond || exitCode > 0 || exitCode == -1 {
-			time.Sleep(50 * time.Millisecond)
+		if elapsed < 20 * time.Millisecond || exitCode > 0 || exitCode == -1 {
 			failed = failed + 1
 		} else {
 			failed = 0
 		}
-
-		if failed > 5 {
-			os.Exit(99)
-		}
 	}
 }
 
@@ -36,6 +30,9 @@ func main() {
 	go infinite()
 
 	http.HandleFunc("/shutdown", lib.Shutdown)
+	http.HandleFunc("/portrequest", lib.Portrequest)
+	http.HandleFunc("/enableportswitch", lib.EnablePortSwitch)
+	http.HandleFunc("/killserver", lib.KillServer)
 	fmt.Println("Listening on :8090...")
 	_ = http.ListenAndServe(":8090", nil)
-}
+}
diff --git a/images/baseimage/entrypoints/go.mod b/images/baseimage/entrypoints/go.mod
@@ -1,3 +1,5 @@
 module entrypoints
 
 go 1.14
+
+require github.com/phayes/freeport 1.0.2
diff --git a/images/baseimage/entrypoints/lib/lib.go b/images/baseimage/entrypoints/lib/lib.go
@@ -3,17 +3,61 @@ package lib
 import (
 	"fmt"
 	"net/http"
+	"strconv"
+	"strings"
 	"os"
 	"os/exec"
+	"github.com/phayes/freeport"
+	"regexp"
 )
 
 var args = os.Args[1:]
+var port = -1
+var portSwitch = false
+var cmd *exec.Cmd
 
 func ExecuteArgs() int {
-	var cmd *exec.Cmd
+	freeport, err := freeport.GetFreePort()
+	if err != nil {
+		fmt.Printf("Failed to get port")
+	}
+	
 	if len(args) > 1 {
 		program := args[0]
 		argv := args[1:]
+		
+		if portSwitch {
+			port = freeport
+			replaced := false
+			// find numbers in arguments and replace with free port
+			for i, s := range argv {
+				if _, errA := strconv.Atoi(s); errA == nil {
+					fmt.Printf("Changing port %q to %q for new container instance.\n", s, strconv.Itoa(port))
+					argv[i] = strconv.Itoa(port)
+				}
+			}
+			
+			// attempt to replace in structures like --port=4433
+			if replaced == false {
+				for j, t := range argv {
+					regex := regexp.MustCompile("[0-9]+")
+					found := regex.FindAllString(t, -1)
+					// ensure argument only has one number and ends with this number
+					if len(found) == 1 && strings.HasSuffix(t, found[0]) && strings.Contains(t, "=") {
+						fmt.Printf("Changing port %q of parameter %q to %q for new container instance.\n", found[0], t, strconv.Itoa(port))
+						argv[j] = strings.Replace(argv[j], found[0], strconv.Itoa(port), -1)
+					}
+				}
+			}
+			
+		} else {
+			// try to set port according to arguments
+			for _, s := range argv {
+				if val, errA := strconv.Atoi(s); errA == nil {
+					port = val
+				}
+			}
+		}
 
 		cmd = exec.Command(program, argv...)
 	} else if len(args) > 0 {
@@ -28,7 +72,7 @@ func ExecuteArgs() int {
 	cmd.Stdout = os.Stdout
 	cmd.Stderr = os.Stderr
 	// keep stdin open
-	_, err := cmd.StdinPipe()
+	_, err = cmd.StdinPipe()
 
 	err = cmd.Run()
 
@@ -44,3 +88,22 @@ func Shutdown(w http.ResponseWriter, req *http.Request) {
 
 	go os.Exit(0)
 }
+
+func Portrequest(w http.ResponseWriter, req *http.Request) {
+	concatenated := strings.Join([]string{"Use:",strconv.Itoa(port), "-Port"}, "")
+	fmt.Fprintf(w, concatenated)
+	fmt.Println("Reported port")
+}
+
+func EnablePortSwitch(w http.ResponseWriter, req *http.Request) {
+	portSwitch = true
+	cmd.Process.Kill()
+	fmt.Fprintf(w, "Port switching enabled, restarted server")
+	fmt.Println("Enabled port switching, restarted server")
+}
+
+func KillServer(w http.ResponseWriter, req *http.Request) {
+	cmd.Process.Kill()
+	fmt.Fprintf(w, "The server is dead, long live the server")
+	fmt.Println("Killed server as requested")
+}
diff --git a/images/bearssl/Dockerfile b/images/bearssl/Dockerfile
@@ -1,6 +1,6 @@
 FROM alpine-build:3.12 as bearssl-base1
 ARG VERSION
-RUN git clone --depth=1 --branch=v${VERSION} https://www.bearssl.org/git/BearSSL
+RUN git clone --depth=1 --branch=${VERSION} https://www.bearssl.org/git/BearSSL
 WORKDIR BearSSL
 RUN make
 
diff --git a/images/bearssl/bearssl-0_X.sh b/images/bearssl/bearssl-0_X.sh
diff --git a/images/bearssl/bearssl.sh b/images/bearssl/bearssl.sh
@@ -0,0 +1,16 @@
+#!/bin/bash
+cd "$(dirname "$0")" || exit 1
+source ../helper-functions.sh
+
+# build master when required since releases are rare
+_docker build --build-arg VERSION=master -t ${DOCKER_REPOSITORY}bearssl-server:master -f Dockerfile --target bearssl-server .
+_docker build --build-arg VERSION=master -t ${DOCKER_REPOSITORY}bearssl-client:master -f Dockerfile --target bearssl-client .
+
+# release versions
+versions=(0.4 0.5 0.6)
+for i in "${versions[@]}"; do
+    _docker build --build-arg VERSION=v${i} -t ${DOCKER_REPOSITORY}bearssl-server:${i} -f Dockerfile --target bearssl-server .
+    _docker build --build-arg VERSION=v${i} -t ${DOCKER_REPOSITORY}bearssl-client:${i} -f Dockerfile --target bearssl-client .
+done
+
+exit "$EXITCODE"
diff --git a/images/bearssl/build.sh b/images/bearssl/build.sh
@@ -3,6 +3,6 @@ cd "$(dirname "$0")" || exit 1
 source ../helper-functions.sh
 exit_on_error
 
-track_error ./bearssl-0_X.sh
+track_error ./bearssl.sh
 
 exit "$EXITCODE"
diff --git a/images/boringssl/Dockerfile-2214-2661 b/images/boringssl/Dockerfile-2214-2661
@@ -1,6 +1,6 @@
 FROM alpine-build:3.12 as boringssl-base1
 ARG VERSION
-RUN git clone --depth=1 -b ${VERSION} https://boringssl.googlesource.com/boringssl
+RUN git clone --depth=1 -b ${VERSION} https://github.com/google/boringssl.git
 #remove the errorflags in CMakeLists.txt otherwise boringssl will not compile (workaround)
 #/src/boringssl/crypto/pem/pem_lib.c:460:2: warning: this 'if' clause does not guard... [-Wmisleading-indentation]
 RUN sed -i -e 's/-Wall -Werror //g' /src/boringssl/CMakeLists.txt
diff --git a/images/boringssl/Dockerfile-2272-2357 b/images/boringssl/Dockerfile-2272-2357
@@ -1,6 +1,6 @@
 FROM alpine-build:3.12 as boringssl-base1
 ARG VERSION
-RUN git clone --depth=1 -b ${VERSION} https://boringssl.googlesource.com/boringssl
+RUN git clone --depth=1 -b ${VERSION} https://github.com/google/boringssl.git
 #remove the errorflags in CMakeLists.txt otherwise boringssl will not compile (workaround)
 #/src/boringssl/crypto/pem/pem_lib.c:460:2: warning: this 'if' clause does not guard... [-Wmisleading-indentation]
 RUN sed -i -e 's/-Wall -Wshadow -Werror //g' /src/boringssl/CMakeLists.txt
diff --git a/images/boringssl/Dockerfile-x b/images/boringssl/Dockerfile-x
@@ -1,6 +1,6 @@
 FROM alpine-build:3.12 as boringssl-base1
 ARG VERSION
-RUN git clone --depth=1 -b ${VERSION} https://boringssl.googlesource.com/boringssl
+RUN git clone --depth=1 -b ${VERSION} https://github.com/google/boringssl.git
 WORKDIR /build/
 RUN cmake -DCMAKE_BUILD_TYPE=Release -DBUILD_SHARED_LIBS=1 /src/boringssl/ &&\
   make
diff --git a/images/botan/botan-2_X.sh b/images/botan/botan-2_X.sh
@@ -10,7 +10,7 @@ do
 done
 
 
-versions=(11.0 12.0 12.1 13.0 14.0 15.0 16.0 17.0 17.1 17.2 17.3)
+versions=(11.0 12.0 12.1 13.0 14.0 15.0 16.0 17.0 17.1 17.2 17.3 19.3)
 for i in "${versions[@]}"
 do
     _docker build --build-arg VERSION=${i} -t ${DOCKER_REPOSITORY}botan-server:2.${i} -f Dockerfile-2_11-x --target botan-server .
diff --git a/images/gnutls/Dockerfile-3_7_0-x b/images/gnutls/Dockerfile-3_7_0-x
@@ -1,16 +1,18 @@
-FROM alpine-build:3.6 as gnutls-libnettle
+FROM alpine-build:3.12 as gnutls-libnettle
 RUN git clone --depth=1 --branch nettle_3.6_release_20200429 https://git.lysator.liu.se/nettle/nettle.git
 WORKDIR /src/nettle
 RUN ./.bootstrap && ./configure --disable-documentation --prefix=/build/
 RUN make && make install
 
-FROM alpine-build:3.6 as gnutls-gnutls
+FROM alpine-build:3.12 as gnutls-gnutls
 ARG VERSION
 ENV PKG_CONFIG_PATH=/build/lib/pkgconfig/
 # after 3.6.12 the tag format changed
 RUN git clone --depth=1 --branch gnutls_3_7_${VERSION} https://github.com/gnutls/gnutls || git clone --depth=1 --branch 3.7.${VERSION} https://github.com/gnutls/gnutls
+RUN apk add gtk-doc
 RUN apk add guile
 RUN apk add guile-dev
+RUN apk add libtasn1-progs
 RUN wget https://ftp.gnu.org/gnu/autogen/rel5.18.12/autogen-5.18.12.tar.gz
 RUN tar -xzf autogen-5.18.12.tar.gz
 WORKDIR /src/autogen-5.18.12/
diff --git a/images/gnutls/gnutls.sh b/images/gnutls/gnutls.sh
@@ -2,13 +2,13 @@
 cd "$(dirname "$0")" || exit 1
 source ../helper-functions.sh
 
-array=(0)
+array=(0 1 2 3 4 5 6 7 8)
 typeset -i i=0 max=${#array[*]}
 while (( i < max ))
 do
 	echo "Building: GnuTLS 3.7.${array[$i]}"
-	_docker build --build-arg VERSION=${array[$i]} -t ${DOCKER_REPOSITORY}gnutls-server:3.7.${array[$i]} -f Dockerfile-3_7_0-x --target gnutls-server .
-	_docker build --build-arg VERSION=${array[$i]} -t ${DOCKER_REPOSITORY}gnutls-client:3.7.${array[$i]} -f Dockerfile-3_7_0-x --target gnutls-client .
+	_docker build --build-arg VERSION=${array[$i]} -t ${DOCKER_REPOSITORY}gnutls-server:3.7.${array[$i]} -f Dockerfile-3_7_0-x --target gnutls-server --progress=plain .
+	_docker build --build-arg VERSION=${array[$i]} -t ${DOCKER_REPOSITORY}gnutls-client:3.7.${array[$i]} -f Dockerfile-3_7_0-x --target gnutls-client --progress=plain .
 	i=i+1
 done
 
diff --git a/images/libressl/libressl.sh b/images/libressl/libressl.sh
@@ -2,48 +2,14 @@
 cd "$(dirname "$0")" || exit 1
 source ../helper-functions.sh
 
-
-# version 3.3.x
-array=(0 1)
-typeset -i i=0 max=${#array[*]}
-while (( i < max ))
-do
-        echo "Building: LibreSSL 3.2.${array[$i]}"
-        _docker build --build-arg VERSION=3.3.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-server:3.3.${array[$i]} -f Dockerfile-2_x --target libressl-server .
-        _docker build --build-arg VERSION=3.3.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-client:3.3.${array[$i]} -f Dockerfile-2_x --target libressl-client .
-        i=i+1
-done
-
-# version 3.2.x
-array=(0 1 2 3)
-typeset -i i=0 max=${#array[*]}
-while (( i < max ))
-do
-        echo "Building: LibreSSL 3.2.${array[$i]}"
-        _docker build --build-arg VERSION=3.2.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-server:3.2.${array[$i]} -f Dockerfile-2_x --target libressl-server .
-        _docker build --build-arg VERSION=3.2.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-client:3.2.${array[$i]} -f Dockerfile-2_x --target libressl-client .
-        i=i+1
-done
-
-# version 3.1.x
-array=(0 1 2 3 4 5)
-typeset -i i=0 max=${#array[*]}
-while (( i < max ))
-do
-        echo "Building: LibreSSL 3.1.${array[$i]}"
-        _docker build --build-arg VERSION=3.1.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-server:3.1.${array[$i]} -f Dockerfile-2_x --target libressl-server .
-        _docker build --build-arg VERSION=3.1.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-client:3.1.${array[$i]} -f Dockerfile-2_x --target libressl-client .
-        i=i+1
-done
-
-# version 3.0.x
-array=(0 1 2)
+# version 3.x.x
+array=(7.0 3.0 3.1 2.0 2.1 2.2 2.3 1.0 1.1 1.2 1.3 1.4 1.5 0.0 0.1 0.2)
 typeset -i i=0 max=${#array[*]}
 while (( i < max ))
 do
-        echo "Building: LibreSSL 3.0.${array[$i]}"
-        _docker build --build-arg VERSION=3.0.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-server:3.0.${array[$i]} -f Dockerfile-2_x --target libressl-server .
-        _docker build --build-arg VERSION=3.0.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-client:3.0.${array[$i]} -f Dockerfile-2_x --target libressl-client .
+        echo "Building: LibreSSL 3.${array[$i]}"
+        _docker build --build-arg VERSION=3.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-server:3.${array[$i]} -f Dockerfile-2_x --target libressl-server .
+        _docker build --build-arg VERSION=3.${array[$i]} -t ${DOCKER_REPOSITORY}libressl-client:3.${array[$i]} -f Dockerfile-2_x --target libressl-client .
         i=i+1
 done
 
diff --git a/images/matrixssl/matrixssl.sh b/images/matrixssl/matrixssl.sh
@@ -2,7 +2,7 @@
 cd "$(dirname "$0")" || exit 1
 source ../helper-functions.sh
 
-array=(3.0 2.2 2.1 1.0 0.2 0.1 0.0)
+array=(6.0 5.1 3.0 2.2 2.1 1.0 0.2 0.1 0.0)
 typeset -i i=0 max=${#array[*]}
 while (( i < max ))
 do
diff --git a/images/mbedtls/Dockerfile-mbedtls_x2 b/images/mbedtls/Dockerfile-mbedtls_x2
@@ -1,6 +1,8 @@
 FROM alpine-build:3.12 as mbed-base1
 ARG VERSION
-RUN git clone --depth 1 --branch mbedtls-${VERSION} https://github.com/ARMmbed/mbedtls mbed
+RUN python3 -m ensurepip --upgrade
+RUN python3 -m pip install jsonschema jinja2
+RUN git clone --depth 1 --branch mbedtls-${VERSION} https://github.com/Mbed-TLS/mbedtls mbed
 RUN cd mbed && git submodule update --init --recursive
 RUN sed -i -e 's/ -Werror//g' /src/mbed/CMakeLists.txt
 WORKDIR /build/
diff --git a/images/mbedtls/Dockerfile-polarssl_under_1.2 b/images/mbedtls/Dockerfile-polarssl_under_1.2
@@ -1,6 +1,6 @@
 FROM alpine-build:3.12 as mbed-base1
 ARG VERSION
-RUN wget -O mbed.tgz https://tls.mbed.org/download/polarssl-${VERSION}-gpl.tgz
+RUN wget -O mbed.tgz https://github.com/Mbed-TLS/mbedtls/archive/refs/tags/polarssl-${VERSION}.tar.gz
 RUN mkdir mbed
 RUN tar -xzf mbed.tgz -C mbed --strip-components 1
 WORKDIR /build/
diff --git a/images/mbedtls/Dockerfile-polarssl_x b/images/mbedtls/Dockerfile-polarssl_x
@@ -1,6 +1,6 @@
 FROM alpine-build:3.12 as mbed-base1
 ARG VERSION
-RUN wget -O mbed.tgz https://tls.mbed.org/download/polarssl-${VERSION}-gpl.tgz
+RUN wget -O mbed.tgz https://github.com/Mbed-TLS/mbedtls/archive/refs/tags/polarssl-${VERSION}.tar.gz
 RUN mkdir mbed
 RUN tar -xzf mbed.tgz -C mbed --strip-components 1
 WORKDIR /build/
diff --git a/images/mbedtls/mbedtls.sh b/images/mbedtls/mbedtls.sh
@@ -3,7 +3,7 @@ cd "$(dirname "$0")" || exit 1
 source ../helper-functions.sh
 
 # https://tls.mbed.org/download-archive
-array=(1.3.10 1.3.11 1.3.12 1.3.13 1.3.14 1.3.15 1.3.16 1.3.17 1.3.18 1.3.19 1.3.20 1.3.21 1.3.22 2.0.0 2.1.0 2.1.1 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.8 2.1.9 2.1.10 2.1.11 2.1.12 2.1.13 2.1.14 2.1.15 2.1.16 2.1.17 2.1.18 2.2.0 2.2.1 2.3.0 2.4.0 2.4.2 2.5.1 2.6.0 2.7.0 2.7.2 2.7.3 2.7.4 2.7.5 2.7.6 2.7.7 2.7.8 2.7.9 2.7.10 2.7.11 2.7.12 2.7.13 2.7.14 2.7.15 2.7.16 2.7.17 2.7.18 2.8.0 2.9.0 2.11.0 2.12.0 2.13.0 2.14.0 2.14.1 2.16.0 2.16.1 2.16.2 2.16.3 2.16.4 2.16.5 2.16.6 2.16.7 2.16.8 2.16.9 2.17.0 2.18.0 2.18.1 2.19.0 2.19.1 2.20.0 2.21.0 2.22.0 2.23.0 2.24.0 2.25.0)
+array=(1.3.10 1.3.11 1.3.12 1.3.13 1.3.14 1.3.15 1.3.16 1.3.17 1.3.18 1.3.19 1.3.20 1.3.21 1.3.22 2.0.0 2.1.0 2.1.1 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.8 2.1.9 2.1.10 2.1.11 2.1.12 2.1.13 2.1.14 2.1.15 2.1.16 2.1.17 2.1.18 2.2.0 2.2.1 2.3.0 2.4.0 2.4.2 2.5.1 2.6.0 2.7.0 2.7.2 2.7.3 2.7.4 2.7.5 2.7.6 2.7.7 2.7.8 2.7.9 2.7.10 2.7.11 2.7.12 2.7.13 2.7.14 2.7.15 2.7.16 2.7.17 2.7.18 2.8.0 2.9.0 2.11.0 2.12.0 2.13.0 2.14.0 2.14.1 2.16.0 2.16.1 2.16.2 2.16.3 2.16.4 2.16.5 2.16.6 2.16.7 2.16.8 2.16.9 2.17.0 2.18.0 2.18.1 2.19.0 2.19.1 2.20.0 2.21.0 2.22.0 2.23.0 2.24.0 2.25.0 3.3.0)
 typeset -i i=0 max=${#array[*]}
 while (( i < max ))
 do
diff --git a/images/nss/Dockerfile b/images/nss/Dockerfile
@@ -10,6 +10,7 @@ RUN apk add py3-pip && \
   git clone https://chromium.googlesource.com/external/gyp && \
   cd gyp && python3 ./setup.py install
 WORKDIR /src/nss
+RUN cat coreconf/werror.py
 RUN ./build.sh --opt
 # copy all libs we need
 RUN mkdir /libdeps
diff --git a/images/nss/nss.sh b/images/nss/nss.sh
@@ -2,8 +2,8 @@
 cd "$(dirname "$0")" || exit 1
 source ../helper-functions.sh
 
-nss_versions=( 3_60_RTM 3_59_1_RTM 3_59_RTM 3_58_RTM 3_57_RTM 3_56_RTM 3_55_RTM 3_54_RTM 3_53_1_RTM 3_52_1_RTM 3_51_1_RTM 3_50_RTM 3_49_2_RTM 3_48_1_RTM 3_47_1_RTM 3_46_1_RTM 3_45_RTM 3_44_4_RTM 3_43_RTM 3_42_1_RTM 3_41_RTM 3_40_1_RTM 3_39_RTM 3_38_RTM 3_37_3_RTM 3_36_8_RTM)
-nspr_versions=(4_29_RTM 4_29_RTM   4_29_RTM 4_29_RTM 4_29_RTM 4_28_RTM 4_27_RTM 4_26_RTM 4_25_RTM   4_25_RTM   4_25_RTM   4_25_RTM 4_25_RTM   4_24_RTM   4_23_RTM   4_22_RTM   4_21_RTM 4_21_RTM   4_21_RTM 4_20_RTM   4_20_RTM 4_20_RTM   4_20_RTM 4_19_RTM 4_19_RTM   4_19_RTM)
+nss_versions=(3_87_RTM 3_86_RTM 3_79_3_RTM 3_60_RTM 3_59_1_RTM 3_59_RTM 3_58_RTM 3_57_RTM 3_56_RTM 3_55_RTM 3_54_RTM 3_53_1_RTM 3_52_1_RTM 3_51_1_RTM 3_50_RTM 3_49_2_RTM 3_48_1_RTM 3_47_1_RTM 3_46_1_RTM 3_45_RTM 3_44_4_RTM 3_43_RTM 3_42_1_RTM 3_41_RTM 3_40_1_RTM 3_39_RTM 3_38_RTM 3_37_3_RTM 3_36_8_RTM)
+nspr_versions=(4_35_RTM 4_35_RTM 4_35_RTM 4_29_RTM 4_29_RTM   4_29_RTM 4_29_RTM 4_29_RTM 4_28_RTM 4_27_RTM 4_26_RTM 4_25_RTM   4_25_RTM   4_25_RTM   4_25_RTM 4_25_RTM   4_24_RTM   4_23_RTM   4_22_RTM   4_21_RTM 4_21_RTM   4_21_RTM 4_20_RTM   4_20_RTM 4_20_RTM   4_20_RTM 4_19_RTM 4_19_RTM   4_19_RTM)
 
 typeset -i i=0 max=${#nss_versions[*]}
 while (( i < max ))
diff --git a/images/openssl/Dockerfile-3_x b/images/openssl/Dockerfile-3_x
diff --git a/images/openssl/build.sh b/images/openssl/build.sh
diff --git a/images/openssl/openssl-1_1_1X.sh b/images/openssl/openssl-1_1_1X.sh
diff --git a/images/openssl/openssl-3_X.sh b/images/openssl/openssl-3_X.sh
diff --git a/images/tlslite_ng/tlslite-ng.sh b/images/tlslite_ng/tlslite-ng.sh
diff --git a/images/wolfssl/Dockerfile-3_3-x b/images/wolfssl/Dockerfile-3_3-x
diff --git a/images/wolfssl/Dockerfile-4_x b/images/wolfssl/Dockerfile-4_x
diff --git a/images/wolfssl/wolfssl.sh b/images/wolfssl/wolfssl.sh

Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-Subproject commit e4687d050a880ade0a1875e809b41f6158db7b67`
	`1`	`+Subproject commit 383eddde97eadb5052427bd04f3bd9dd5c7ca493`
-Original file line number
+Diff line change
@@ @@ -1,3 +1,5 @@ @@
 module entrypoints
 go 1.14
++
 +require github.com/phayes/freeport 1.0.2