From 591793a3e800f3efe191eb27f591c9ed8bd9f4f1 Mon Sep 17 00:00:00 2001 From: Jesse Gilles Date: Fri, 24 Sep 2010 16:57:19 -0500 Subject: openssl: upgrade to 0.9.8m --- recipes/openssl/openssl-0.9.7e/armeb.patch | 20 - recipes/openssl/openssl-0.9.7e/debian.patch | 2589 ------------------ recipes/openssl/openssl-0.9.7e/gnueabi-arm.patch | 15 - recipes/openssl/openssl-0.9.7g/armeb.patch | 18 - recipes/openssl/openssl-0.9.7g/armeb.patch.lock | 0 recipes/openssl/openssl-0.9.7g/avr32.patch | 10 - recipes/openssl/openssl-0.9.7g/debian.patch | 2808 -------------------- recipes/openssl/openssl-0.9.7g/debian.patch.lock | 0 recipes/openssl/openssl-0.9.7g/gnueabi-arm.patch | 15 - .../openssl/openssl-0.9.7g/gnueabi-arm.patch.lock | 0 recipes/openssl/openssl-0.9.7g/gnueabi-armeb.patch | 10 - .../openssl-0.9.7g/gnueabi-armeb.patch.lock | 0 recipes/openssl/openssl-0.9.7g/uclibcgnueabi.patch | 12 - recipes/openssl/openssl-0.9.7m/armeb.patch | 18 - recipes/openssl/openssl-0.9.7m/avr32.patch | 10 - recipes/openssl/openssl-0.9.7m/debian.patch | 832 ------ recipes/openssl/openssl-0.9.7m/gnueabi-arm.patch | 15 - recipes/openssl/openssl-0.9.7m/gnueabi-armeb.patch | 10 - recipes/openssl/openssl-0.9.7m/uclibcgnueabi.patch | 12 - .../openssl/openssl-0.9.8g/configure-targets.patch | 24 - recipes/openssl/openssl-0.9.8g/debian.patch | 1280 --------- recipes/openssl/openssl-0.9.8g/shared-libs.patch | 45 - .../openssl/openssl-0.9.8j/configure-targets.patch | 24 - recipes/openssl/openssl-0.9.8j/debian.patch | 561 ---- recipes/openssl/openssl-0.9.8j/oe-ldflags.patch | 21 - recipes/openssl/openssl-0.9.8j/shared-libs.patch | 81 - .../openssl/openssl-0.9.8m/configure-targets.patch | 24 + recipes/openssl/openssl-0.9.8m/debian.patch | 546 ++++ recipes/openssl/openssl-0.9.8m/oe-ldflags.patch | 21 + recipes/openssl/openssl-0.9.8m/shared-libs.patch | 48 + .../openssl/openssl-1.0.0a/configure-targets.patch | 25 + recipes/openssl/openssl-1.0.0a/debian.patch | 515 ++++ .../engines-install-in-libdir-ssl.patch | 53 + recipes/openssl/openssl-1.0.0a/libdeps-first.patch | 27 + recipes/openssl/openssl-1.0.0a/oe-ldflags.patch | 22 + recipes/openssl/openssl-1.0.0a/shared-libs.patch | 48 + recipes/openssl/openssl-native_0.9.7g.bb | 15 - recipes/openssl/openssl-native_0.9.7m.bb | 19 - recipes/openssl/openssl-native_0.9.8g.bb | 21 - recipes/openssl/openssl-native_0.9.8j.bb | 22 - recipes/openssl/openssl-native_0.9.8m.bb | 21 + recipes/openssl/openssl-native_1.0.0a.bb | 27 + recipes/openssl/openssl.inc | 20 +- recipes/openssl/openssl_0.9.7e.bb | 7 - recipes/openssl/openssl_0.9.7g.bb | 12 - recipes/openssl/openssl_0.9.7m.bb | 12 - recipes/openssl/openssl_0.9.8g.bb | 11 - recipes/openssl/openssl_0.9.8j.bb | 14 - recipes/openssl/openssl_0.9.8m.bb | 16 + recipes/openssl/openssl_1.0.0a.bb | 30 + 50 files changed, 1433 insertions(+), 8573 deletions(-) delete mode 100644 recipes/openssl/openssl-0.9.7e/armeb.patch delete mode 100644 recipes/openssl/openssl-0.9.7e/debian.patch delete mode 100644 recipes/openssl/openssl-0.9.7e/gnueabi-arm.patch delete mode 100644 recipes/openssl/openssl-0.9.7g/armeb.patch delete mode 100644 recipes/openssl/openssl-0.9.7g/armeb.patch.lock delete mode 100644 recipes/openssl/openssl-0.9.7g/avr32.patch delete mode 100644 recipes/openssl/openssl-0.9.7g/debian.patch delete mode 100644 recipes/openssl/openssl-0.9.7g/debian.patch.lock delete mode 100644 recipes/openssl/openssl-0.9.7g/gnueabi-arm.patch delete mode 100644 recipes/openssl/openssl-0.9.7g/gnueabi-arm.patch.lock delete mode 100644 recipes/openssl/openssl-0.9.7g/gnueabi-armeb.patch delete mode 100644 recipes/openssl/openssl-0.9.7g/gnueabi-armeb.patch.lock delete mode 100644 recipes/openssl/openssl-0.9.7g/uclibcgnueabi.patch delete mode 100644 recipes/openssl/openssl-0.9.7m/armeb.patch delete mode 100644 recipes/openssl/openssl-0.9.7m/avr32.patch delete mode 100644 recipes/openssl/openssl-0.9.7m/debian.patch delete mode 100644 recipes/openssl/openssl-0.9.7m/gnueabi-arm.patch delete mode 100644 recipes/openssl/openssl-0.9.7m/gnueabi-armeb.patch delete mode 100644 recipes/openssl/openssl-0.9.7m/uclibcgnueabi.patch delete mode 100644 recipes/openssl/openssl-0.9.8g/configure-targets.patch delete mode 100644 recipes/openssl/openssl-0.9.8g/debian.patch delete mode 100644 recipes/openssl/openssl-0.9.8g/shared-libs.patch delete mode 100644 recipes/openssl/openssl-0.9.8j/configure-targets.patch delete mode 100644 recipes/openssl/openssl-0.9.8j/debian.patch delete mode 100644 recipes/openssl/openssl-0.9.8j/oe-ldflags.patch delete mode 100644 recipes/openssl/openssl-0.9.8j/shared-libs.patch create mode 100644 recipes/openssl/openssl-0.9.8m/configure-targets.patch create mode 100644 recipes/openssl/openssl-0.9.8m/debian.patch create mode 100644 recipes/openssl/openssl-0.9.8m/oe-ldflags.patch create mode 100644 recipes/openssl/openssl-0.9.8m/shared-libs.patch create mode 100644 recipes/openssl/openssl-1.0.0a/configure-targets.patch create mode 100644 recipes/openssl/openssl-1.0.0a/debian.patch create mode 100644 recipes/openssl/openssl-1.0.0a/engines-install-in-libdir-ssl.patch create mode 100644 recipes/openssl/openssl-1.0.0a/libdeps-first.patch create mode 100644 recipes/openssl/openssl-1.0.0a/oe-ldflags.patch create mode 100644 recipes/openssl/openssl-1.0.0a/shared-libs.patch delete mode 100644 recipes/openssl/openssl-native_0.9.7g.bb delete mode 100644 recipes/openssl/openssl-native_0.9.7m.bb delete mode 100644 recipes/openssl/openssl-native_0.9.8g.bb delete mode 100644 recipes/openssl/openssl-native_0.9.8j.bb create mode 100644 recipes/openssl/openssl-native_0.9.8m.bb create mode 100644 recipes/openssl/openssl-native_1.0.0a.bb delete mode 100644 recipes/openssl/openssl_0.9.7e.bb delete mode 100644 recipes/openssl/openssl_0.9.7g.bb delete mode 100644 recipes/openssl/openssl_0.9.7m.bb delete mode 100644 recipes/openssl/openssl_0.9.8g.bb delete mode 100644 recipes/openssl/openssl_0.9.8j.bb create mode 100644 recipes/openssl/openssl_0.9.8m.bb create mode 100644 recipes/openssl/openssl_1.0.0a.bb diff --git a/recipes/openssl/openssl-0.9.7e/armeb.patch b/recipes/openssl/openssl-0.9.7e/armeb.patch deleted file mode 100644 index 46632d568a..0000000000 --- a/recipes/openssl/openssl-0.9.7e/armeb.patch +++ /dev/null @@ -1,20 +0,0 @@ -Index: openssl-0.9.7e/Configure -=================================================================== ---- openssl-0.9.7e.orig/Configure 2005-02-03 00:58:18.600626232 -0500 -+++ openssl-0.9.7e/Configure 2005-02-03 00:59:59.178336096 -0500 -@@ -385,6 +385,7 @@ - "debian-alpha-ev4","gcc:-DTERMIO -O3 -mcpu=ev4 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", - "debian-alpha-ev5","gcc:-DTERMIO -O3 -mcpu=ev5 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", - "debian-arm","gcc:-DL_ENDIAN -DTERMIO -O2 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-armeb","gcc:-DB_ENDIAN -DTERMIO -O2 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", - #"debian-amd64","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", - "debian-amd64", "gcc:-m64 -DL_ENDIAN -DTERMIO -O3 -Wall -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK RC4_CHAR BF_PTR2 DES_INT DES_UNROLL:asm/x86_64-gcc.o:::::::::dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", - #"debian-freebsd-alpha","gcc:-DTERMIOS -O -fomit-frame-pointer::(unknown):::SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_PTR DES_RISC2::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -@@ -460,6 +461,7 @@ - - # Linux on ARM - "linux-elf-arm","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"linux-elf-armeb","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", - - # SCO/Caldera targets. - # diff --git a/recipes/openssl/openssl-0.9.7e/debian.patch b/recipes/openssl/openssl-0.9.7e/debian.patch deleted file mode 100644 index 475c0c847f..0000000000 --- a/recipes/openssl/openssl-0.9.7e/debian.patch +++ /dev/null @@ -1,2589 +0,0 @@ ---- openssl-0.9.7e.orig/apps/CA.pl -+++ openssl-0.9.7e/apps/CA.pl -@@ -1,4 +1,4 @@ --#!/usr/bin/perl -+#!/usr/local/bin/perl - # - # CA - wrapper around ca to make it easier to use ... basically ca requires - # some setup stuff to be done before you can use it and this makes ---- openssl-0.9.7e.orig/apps/der_chop.in -+++ openssl-0.9.7e/apps/der_chop.in -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -+#!/usr/bin/perl - # - # der_chop ... this is one total hack that Eric is really not proud of - # so don't look at it and don't ask for support ---- openssl-0.9.7e.orig/apps/progs.h -+++ openssl-0.9.7e/apps/progs.h -@@ -36,9 +36,7 @@ - extern int smime_main(int argc,char *argv[]); - extern int rand_main(int argc,char *argv[]); - extern int prime_main(int argc,char *argv[]); --#ifndef OPENSSL_NO_ENGINE - extern int engine_main(int argc,char *argv[]); --#endif - extern int ocsp_main(int argc,char *argv[]); - - #define FUNC_TYPE_GENERAL 1 -@@ -95,9 +93,7 @@ - #if !defined(OPENSSL_NO_SOCK) && !(defined(OPENSSL_NO_SSL2) && defined(OPENSSL_NO_SSL3)) - {FUNC_TYPE_GENERAL,"s_client",s_client_main}, - #endif --#ifndef OPENSSL_NO_SPEED - {FUNC_TYPE_GENERAL,"speed",speed_main}, --#endif - #if !defined(OPENSSL_NO_SOCK) && !(defined(OPENSSL_NO_SSL2) && defined(OPENSSL_NO_SSL3)) - {FUNC_TYPE_GENERAL,"s_time",s_time_main}, - #endif -@@ -117,9 +113,7 @@ - {FUNC_TYPE_GENERAL,"smime",smime_main}, - {FUNC_TYPE_GENERAL,"rand",rand_main}, - {FUNC_TYPE_GENERAL,"prime",prime_main}, --#ifndef OPENSSL_NO_ENGINE - {FUNC_TYPE_GENERAL,"engine",engine_main}, --#endif - {FUNC_TYPE_GENERAL,"ocsp",ocsp_main}, - #ifndef OPENSSL_NO_MD2 - {FUNC_TYPE_MD,"md2",dgst_main}, ---- openssl-0.9.7e.orig/config -+++ openssl-0.9.7e/config -@@ -163,8 +163,8 @@ - echo "${MACHINE}-whatever-linux1"; exit 0 - ;; - -- GNU*) -- echo "hurd-x86"; exit 0; -+ GNU:*|GNU/*:*) -+ echo "${MACHINE}-gnuish"; exit 0; - ;; - - LynxOS:*) ---- openssl-0.9.7e.orig/Configure -+++ openssl-0.9.7e/Configure -@@ -1,4 +1,4 @@ --: -+#!/usr/local/bin/perl - eval 'exec perl -S $0 ${1+"$@"}' - if $running_under_some_shell; - ## -@@ -380,6 +380,43 @@ - # assembler versions -- currently defunct: - ##"OpenBSD-alpha","gcc:-DTERMIOS -O3 -fomit-frame-pointer:::(unknown):SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2:${alpha_asm}", - -+# Debian GNU/* (various architectures) -+"debian-alpha","gcc:-DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-alpha-ev4","gcc:-DTERMIO -O3 -mcpu=ev4 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-alpha-ev5","gcc:-DTERMIO -O3 -mcpu=ev5 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-arm","gcc:-DL_ENDIAN -DTERMIO -O2 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+#"debian-amd64","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-amd64", "gcc:-m64 -DL_ENDIAN -DTERMIO -O3 -Wall -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK RC4_CHAR BF_PTR2 DES_INT DES_UNROLL:asm/x86_64-gcc.o:::::::::dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+#"debian-freebsd-alpha","gcc:-DTERMIOS -O -fomit-frame-pointer::(unknown):::SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_PTR DES_RISC2::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+#"debian-freebsd-i386", "gcc:-DTERMIOS -DL_ENDIAN -fomit-frame-pointer -O3 -m486 -Wall::-pthread -D_REENTRANT -D_THREAD_SAFE -D_THREADSAFE:::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-freebsd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-hppa","gcc:-DB_ENDIAN -DTERMIO -O2 -Wall::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-hurd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-ia64","gcc:-DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK RC4_CHAR:asm/ia64.o:::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+#"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC", -+"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-i386-i486","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i486 -mcpu=i486 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-i386-i586","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i586 -mcpu=i586 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-i386-i686/cmov","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i686 -mcpu=i686 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-m68k","gcc:-DB_ENDIAN -DTERMIO -O2 -Wall::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-mips", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-mipsel", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-netbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-netbsd-m68k", "gcc:-DB_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -Wall::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-netbsd-sparc", "gcc:-DB_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -mv8 -Wall::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-openbsd-alpha","gcc:-DTERMIOS -O3 -fomit-frame-pointer::(unknown):::SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-openbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_out_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-openbsd-mips","gcc:-O2 -DL_ENDIAN::(unknown)::BN_LLONG MD2_CHAR RC4_INDEX RC4_CHAR DES_UNROLL DES_RISC2 DES_PTR BF_PTR:::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-powerpc","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_UNROLL DES_RISC2 DES_PTR MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-powerpc64","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_UNROLL DES_RISC2 DES_PTR MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-s390","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-sh3", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-sh4", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-sh3eb", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-sh4eb", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-sparc","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-sparc-v8","gcc:-DB_ENDIAN -DTERMIO -O3 -mcpu=v8 -fomit-frame-pointer -Wall -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:asm/sparcv8.o:::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -+"debian-sparc-v9","gcc:-DB_ENDIAN -DTERMIO -O3 -mcpu=v9 -Wa,-Av8plus -fomit-frame-pointer -Wall -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:asm/sparcv8plus.o:::asm/md5-sparcv8plus.o::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", - # The intel boxes :-), It would be worth seeing if bsdi-gcc can use the - # bn86-elf.o file file since it is hand tweaked assembler. - "linux-elf", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", -@@ -1297,7 +1334,8 @@ - elsif ($shared_extension ne "" && $shared_extension =~ /^\.s([ol])\.[^\.]*\.[^\.]*$/) - { - my $sotmp = $1; -- s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/; -+# s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/; -+ s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp/; - } - elsif ($shared_extension ne "" && $shared_extension =~ /^\.[^\.]*\.[^\.]*\.dylib$/) - { ---- openssl-0.9.7e.orig/crypto/asn1/charmap.pl -+++ openssl-0.9.7e/crypto/asn1/charmap.pl -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -w -+#!/usr/local/bin/perl - - use strict; - ---- openssl-0.9.7e.orig/crypto/md5/asm/md5-sparcv9.S -+++ openssl-0.9.7e/crypto/md5/asm/md5-sparcv9.S -@@ -74,14 +74,14 @@ - #define Dval R8 - - #if defined(MD5_BLOCK_DATA_ORDER) --# if defined(OPENSSL_SYSNAME_ULTRASPARC) -+/*# if defined(OPENSSL_SYSNAME_ULTRASPARC)*/ - # define LOAD lda - # define X(i) [%i1+i*4]%asi - # define md5_block md5_block_asm_data_order_aligned - # define ASI_PRIMARY_LITTLE 0x88 --# else -+/*# else - # error "MD5_BLOCK_DATA_ORDER is supported only on UltraSPARC!" --# endif -+# endif*/ - #else - # define LOAD ld - # define X(i) [%i1+i*4] ---- openssl-0.9.7e.orig/crypto/opensslconf.h -+++ openssl-0.9.7e/crypto/opensslconf.h -@@ -4,17 +4,38 @@ - /* OpenSSL was configured with the following options: */ - #ifndef OPENSSL_DOING_MAKEDEPEND - -+#ifndef OPENSSL_NO_IDEA -+# define OPENSSL_NO_IDEA -+#endif -+#ifndef OPENSSL_NO_MDC2 -+# define OPENSSL_NO_MDC2 -+#endif -+#ifndef OPENSSL_NO_RC5 -+# define OPENSSL_NO_RC5 -+#endif - #ifndef OPENSSL_NO_KRB5 - # define OPENSSL_NO_KRB5 - #endif - - #endif /* OPENSSL_DOING_MAKEDEPEND */ -+#ifndef OPENSSL_THREADS -+# define OPENSSL_THREADS -+#endif - - /* The OPENSSL_NO_* macros are also defined as NO_* if the application - asks for it. This is a transient feature that is provided for those - who haven't had the time to do the appropriate changes in their - applications. */ - #ifdef OPENSSL_ALGORITHM_DEFINES -+# if defined(OPENSSL_NO_IDEA) && !defined(NO_IDEA) -+# define NO_IDEA -+# endif -+# if defined(OPENSSL_NO_MDC2) && !defined(NO_MDC2) -+# define NO_MDC2 -+# endif -+# if defined(OPENSSL_NO_RC5) && !defined(NO_RC5) -+# define NO_RC5 -+# endif - # if defined(OPENSSL_NO_KRB5) && !defined(NO_KRB5) - # define NO_KRB5 - # endif -@@ -27,7 +48,7 @@ - - #if !(defined(VMS) || defined(__VMS)) /* VMS uses logical names instead */ - #if defined(HEADER_CRYPTLIB_H) && !defined(OPENSSLDIR) --#define OPENSSLDIR "/usr/local/ssl" -+#define OPENSSLDIR "/usr/lib/ssl" - #endif - #endif - -@@ -79,7 +100,7 @@ - - #if defined(HEADER_BN_H) && !defined(CONFIG_HEADER_BN_H) - #define CONFIG_HEADER_BN_H --#undef BN_LLONG -+#define BN_LLONG - - /* Should we define BN_DIV2W here? */ - -@@ -98,7 +119,7 @@ - #define CONFIG_HEADER_RC4_LOCL_H - /* if this is defined data[i] is used instead of *data, this is a %20 - * speedup on x86 */ --#undef RC4_INDEX -+#define RC4_INDEX - #endif - - #if defined(HEADER_BF_LOCL_H) && !defined(CONFIG_HEADER_BF_LOCL_H) -@@ -112,14 +133,14 @@ - /* the following is tweaked from a config script, that is why it is a - * protected undef/define */ - #ifndef DES_PTR --#undef DES_PTR -+#define DES_PTR - #endif - - /* This helps C compiler generate the correct code for multiple functional - * units. It reduces register dependancies at the expense of 2 more - * registers */ - #ifndef DES_RISC1 --#undef DES_RISC1 -+#define DES_RISC1 - #endif - - #ifndef DES_RISC2 -@@ -133,7 +154,7 @@ - /* Unroll the inner loop, this sometimes helps, sometimes hinders. - * Very mucy CPU dependant */ - #ifndef DES_UNROLL --#undef DES_UNROLL -+#define DES_UNROLL - #endif - - /* These default values were supplied by ---- openssl-0.9.7e.orig/demos/tunala/configure.in -+++ openssl-0.9.7e/demos/tunala/configure.in -@@ -1,4 +1,4 @@ --dnl Process this file with autoconf to produce a configure script. -+#!/usr/local/bin/perl - AC_INIT(tunala.c) - AM_CONFIG_HEADER(config.h) - AM_INIT_AUTOMAKE(tunala, 0.0.1-dev) ---- openssl-0.9.7e.orig/doc/Makefile -+++ openssl-0.9.7e/doc/Makefile -@@ -0,0 +1,40 @@ -+VERSION = -+ -+#PODS = $(wildcard *.pod) -+#MANS = $(addsuffix .man, $(basename $(PODS))) -+ -+MANS = openssl.1 ssl.3 crypto.3 -+ -+P2M = pod2man --center='OpenSSL Documentation' --release="OpenSSL $(VERSION)" -+ -+all: manpages -+ -+.PHONY: manpages -+ -+manpages: openssl.1 crypto.3 ssl.3 -+ -+openssl.1: -+ $(P2M) --section=1 openssl.pod > openssl.1 -+ -+crypto.3: -+ $(P2M) --section=3 crypto.pod > crypto.3 -+ -+ssl.3: -+ $(P2M) --section=3 ssl.pod > ssl.3 -+ -+.PHONY: install -+install: -+ mkdir -p $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man1 -+ mkdir -p $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3 -+ install -m 644 -p openssl.1 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man1 -+ install -m 644 -p crypto.3 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3 -+ install -m 644 -p ssl.3 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3 -+ rm -f $(MANS) -+ -+.PHONY: clean -+clean: -+ rm -f $(MANS) -+ -+.PHONY: realclean -+realclean: -+ -$(MAKE) clean ---- openssl-0.9.7e.orig/Makefile -+++ openssl-0.9.7e/Makefile -@@ -11,11 +11,11 @@ - SHLIB_VERSION_HISTORY= - SHLIB_MAJOR=0 - SHLIB_MINOR=9.7 --SHLIB_EXT= --PLATFORM=dist --OPTIONS= no-krb5 --CONFIGURE_ARGS=dist --SHLIB_TARGET= -+SHLIB_EXT=.so.$(SHLIB_MAJOR).$(SHLIB_MINOR) -+PLATFORM=debian-i386 -+OPTIONS=--prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 no-krb5 -+CONFIGURE_ARGS=--prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 debian-i386 -+SHLIB_TARGET=linux-shared - - # HERE indicates where this Makefile lives. This can be used to indicate - # where sub-Makefiles are expected to be. Currently has very limited usage, -@@ -26,10 +26,10 @@ - # for, say, /usr/ and yet have everything installed to /tmp/somedir/usr/. - # Normally it is left empty. - INSTALL_PREFIX= --INSTALLTOP=/usr/local/ssl -+INSTALLTOP=/usr - - # Do not edit this manually. Use Configure --openssldir=DIR do change this! --OPENSSLDIR=/usr/local/ssl -+OPENSSLDIR=/usr/lib/ssl - - # NO_IDEA - Define to build without the IDEA algorithm - # NO_RC4 - Define to build without the RC4 algorithm -@@ -59,12 +59,13 @@ - # equal 4. - # PKCS1_CHECK - pkcs1 tests. - --CC= cc -+#TOP=$(shell pwd) -+CC= gcc - #CFLAG= -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall -Wuninitialized -DSHA1_ASM -DMD5_ASM -DRMD160_ASM --CFLAG= -DOPENSSL_NO_KRB5 -O --DEPFLAG= -+CFLAG= -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_KRB5 -DOPENSSL_NO_IDEA -DOPENSSL_NO_MDC2 -DOPENSSL_NO_RC5 -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall -+DEPFLAG= -DOPENSSL_NO_IDEA -DOPENSSL_NO_MDC2 -DOPENSSL_NO_RC5 - PEX_LIBS= --EX_LIBS= -+EX_LIBS= -ldl - EXE_EXT= - ARFLAGS= - AR=ar $(ARFLAGS) r -@@ -72,7 +73,7 @@ - PERL= /usr/bin/perl - TAR= tar - TARFLAGS= --no-recursion --MAKEDEPPROG=makedepend -+MAKEDEPPROG= gcc - - # We let the C compiler driver to take care of .s files. This is done in - # order to be excused from maintaining a separate set of architecture -@@ -177,13 +178,13 @@ - # we might set SHLIB_MARK to '$(SHARED_LIBS)'. - SHLIB_MARK= - --DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps test tools -+DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps doc tools - SHLIBDIRS= fips crypto ssl - - # dirs in crypto to build - SDIRS= objects \ -- md2 md4 md5 sha mdc2 hmac ripemd \ -- des rc2 rc4 rc5 idea bf cast \ -+ md2 md4 md5 sha hmac ripemd \ -+ des rc2 rc4 bf cast \ - bn ec rsa dsa dh dso engine aes \ - buffer bio stack lhash rand err \ - evp asn1 pem x509 x509v3 conf txt_db pkcs7 pkcs12 comp ocsp ui krb5 -@@ -196,10 +197,10 @@ - - MAKEFILE= Makefile - --MANDIR=$(OPENSSLDIR)/man -+MANDIR=/usr/share/man - MAN1=1 - MAN3=3 --MANSUFFIX= -+MANSUFFIX=ssl - SHELL=/bin/sh - - TOP= . -@@ -211,7 +212,7 @@ - SHARED_CRYPTO=libcrypto$(SHLIB_EXT) - SHARED_SSL=libssl$(SHLIB_EXT) - SHARED_LIBS= --SHARED_LIBS_LINK_EXTS= -+SHARED_LIBS_LINK_EXTS=.so - SHARED_LDFLAGS= - - GENERAL= Makefile -@@ -818,7 +819,7 @@ - do \ - if [ -f "$$i" ]; then \ - ( echo installing $$i; \ -- cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \ -+ cp -d $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \ - if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \ - : ; \ - else \ ---- openssl-0.9.7e.orig/Makefile.org -+++ openssl-0.9.7e/Makefile.org -@@ -57,6 +57,7 @@ - # equal 4. - # PKCS1_CHECK - pkcs1 tests. - -+#TOP=$(shell pwd) - CC= gcc - #CFLAG= -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall -Wuninitialized -DSHA1_ASM -DMD5_ASM -DRMD160_ASM - CFLAG= -DTERMIOS -DL_ENDIAN -fomit-frame-pointer -O3 -m486 -Wall -DSHA1_ASM -DMD5_ASM -DRMD160_ASM -@@ -175,7 +176,7 @@ - # we might set SHLIB_MARK to '$(SHARED_LIBS)'. - SHLIB_MARK= - --DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps test tools -+DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps doc tools - SHLIBDIRS= fips crypto ssl - - # dirs in crypto to build -@@ -194,10 +195,10 @@ - - MAKEFILE= Makefile - --MANDIR=$(OPENSSLDIR)/man -+MANDIR=/usr/share/man - MAN1=1 - MAN3=3 --MANSUFFIX= -+MANSUFFIX=ssl - SHELL=/bin/sh - - TOP= . -@@ -816,7 +817,7 @@ - do \ - if [ -f "$$i" ]; then \ - ( echo installing $$i; \ -- cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \ -+ cp -d $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \ - if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \ - : ; \ - else \ ---- openssl-0.9.7e.orig/os2/backwardify.pl -+++ openssl-0.9.7e/os2/backwardify.pl -@@ -1,4 +1,4 @@ --#!/usr/bin/perl -w -+#!/usr/local/bin/perl - use strict; - - # Use as $0 ---- openssl-0.9.7e.orig/ssl/ssl_algs.c -+++ openssl-0.9.7e/ssl/ssl_algs.c -@@ -109,3 +109,8 @@ - return(1); - } - -+#undef SSLeay_add_ssl_algorithms -+int SSLeay_add_ssl_algorithms(void) -+ { -+ return SSL_library_init(); -+ } ---- openssl-0.9.7e.orig/tools/c_rehash -+++ openssl-0.9.7e/tools/c_rehash -@@ -6,7 +6,7 @@ - - my $openssl; - --my $dir = "/usr/local/ssl"; -+my $dir = "/usr/lib/ssl"; - - if(defined $ENV{OPENSSL}) { - $openssl = $ENV{OPENSSL}; ---- openssl-0.9.7e.orig/tools/c_rehash.in -+++ openssl-0.9.7e/tools/c_rehash.in -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -+#!/usr/bin/perl - - - # Perl c_rehash script, scan all files in a directory ---- openssl-0.9.7e.orig/util/clean-depend.pl -+++ openssl-0.9.7e/util/clean-depend.pl -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -w -+#!/usr/local/bin/perl - # Clean the dependency list in a makefile of standard includes... - # Written by Ben Laurie 19 Jan 1999 - ---- openssl-0.9.7e.orig/util/extract-names.pl -+++ openssl-0.9.7e/util/extract-names.pl -@@ -1,4 +1,4 @@ --#!/usr/bin/perl -+#!/usr/local/bin/perl - - $/ = ""; # Eat a paragraph at once. - while() { ---- openssl-0.9.7e.orig/util/mkdef.pl -+++ openssl-0.9.7e/util/mkdef.pl -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -w -+#!/usr/local/bin/perl - # - # generate a .def file - # ---- openssl-0.9.7e.orig/util/mkerr.pl -+++ openssl-0.9.7e/util/mkerr.pl -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -w -+#!/usr/local/bin/perl - - my $config = "crypto/err/openssl.ec"; - my $debug = 0; ---- openssl-0.9.7e.orig/util/mkstack.pl -+++ openssl-0.9.7e/util/mkstack.pl -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -w -+#!/usr/local/bin/perl - - # This is a utility that searches out "DECLARE_STACK_OF()" - # declarations in .h and .c files, and updates/creates/replaces ---- openssl-0.9.7e.orig/util/pod2man.pl -+++ openssl-0.9.7e/util/pod2man.pl -@@ -1,4 +1,4 @@ --: #!/usr/bin/perl-5.005 -+#!/usr/local/bin/perl - eval 'exec /usr/bin/perl -S $0 ${1+"$@"}' - if $running_under_some_shell; - ---- openssl-0.9.7e.orig/util/selftest.pl -+++ openssl-0.9.7e/util/selftest.pl -@@ -1,4 +1,4 @@ --#!/usr/local/bin/perl -w -+#!/usr/local/bin/perl - # - # Run the test suite and generate a report - # ---- openssl-0.9.7e.orig/VMS/VMSify-conf.pl -+++ openssl-0.9.7e/VMS/VMSify-conf.pl -@@ -1,4 +1,4 @@ --#! /usr/bin/perl -+#!/usr/local/bin/perl - - use strict; - use warnings; ---- openssl-0.9.7e.orig/debian/README.debian -+++ openssl-0.9.7e/debian/README.debian -@@ -0,0 +1,52 @@ -+openssl for DEBIAN -+---------------------- -+ -+openssl replaces ssleay. -+ -+The application links to openssl like req, ca, verify and s_client -+have been removed. -+ -+Instead of `` please call now `openssl ` -+ -+eg: -+instead of `req` please call `openssl req` -+ -+NOTE: The libssl library version for debian-i386 is optimized for -+486-processors and better. It will not run on 386-processors. -+ -+---- -+Self-signed certs and webservers: -+ -+If you get with a selfsigned certificate and a webserver: -+ > "The certificate is not approved for the attempted operation." -+ -+Bodo_Moeller@public.uni-hamburg.de (Bodo Moeller) writes: -+>Probably you are using a CA certificate for your server; if you use -+>"openssl req" to generate a new key and self-signed certificate with -+>the default openssl.cnf, the certificate you get includes certain -+>X.509v3 extensions that make it unfit for use as a server certificate. -+>This was not so with earlier versions of the software because back -+>then there was far less X.509v3 support. -+> -+>To look at the certificate some HTTPS server presents to its cliens, -+>use "openssl s_client -port 443 -host your.server", store the output -+>(at least the part from "-----BEGIN CERTIFICATE-----" up to "-----END -+>CERTIFICATE-----", including these separators) in a file and use -+>"openssl x509 -in the_file_you_just_stored -text" to look at it in -+>readable form. If it has in the "X509v3 extensions section" any of -+>the following entries, it is not usable as a server certificate: -+> -+> X509v3 Basic Constraints: -+> CA:TRUE -+> -+> X509v3 Key Usage: -+> Certificate Sign, CRL Sign -+> -+>To quickly create a new server key and certificate that works with -+>Netscape, you can just copy the original openssl.cnf file and comment -+>out the "x509_extensions" entry in the "[ req ]" section. -+>The, use "openssl req ..." as before to create a new certificate and -+>key. -+ -+ -+Christoph Martin , Wed, 31 Mar 1999 16:00:51 +0200 ---- openssl-0.9.7e.orig/debian/changelog -+++ openssl-0.9.7e/debian/changelog -@@ -0,0 +1,605 @@ -+openssl (0.9.7e-2) unstable; urgency=high -+ -+ * fix perl path in der_chop and c_rehash (closes: #281212) -+ * still fixes security problem CAN-2004-0975 etc. -+ - tempfile raise condition in der_chop -+ - Avoid a race condition when CRLs are checked in a multi threaded -+ environment. -+ -+ -- Christoph Martin Sun, 14 Nov 2004 20:16:21 +0100 -+ -+openssl (0.9.7e-1) unstable; urgency=high -+ -+ * SECURITY UPDATE: fix insecure temporary file handling -+ * apps/der_chop: -+ - replaced $$-style creation of temporary files with -+ File::Temp::tempfile() -+ - removed unused temporary file name in do_certificate() -+ * References: -+ CAN-2004-0975 (closes: #278260) -+ * fix ASN1_STRING_to_UTF8 with UTF8 (closes: #260357) -+ * New upstream release with security fixes -+ - Avoid a race condition when CRLs are checked in a multi threaded -+ environment. -+ - Various fixes to s3_pkt.c so alerts are sent properly. -+ - Reduce the chances of duplicate issuer name and serial numbers (in -+ violation of RFC3280) using the OpenSSL certificate creation -+ utilities. -+ * depends openssl on perl-base instead of perl (closes: #280225) -+ * support powerpc64 in Configure (closes: #275224) -+ * include cs translation (closes: #273517) -+ * include nl translation (closes: #272479) -+ * Fix default dir of c_rehash (closes: #253126) -+ -+ -- Christoph Martin Fri, 12 Nov 2004 14:11:15 +0100 -+ -+openssl (0.9.7d-5) unstable; urgency=low -+ -+ * Make S/MIME encrypt work again (backport from CVS) (closes: #241407, -+ #241386) -+ -+ -- Christoph Martin Mon, 26 Jul 2004 17:22:42 +0200 -+ -+openssl (0.9.7d-4) unstable; urgency=low -+ -+ * add Catalan translation (closes: #248749) -+ * add Spanish translation (closes: #254561) -+ * include NMU fixes: see below -+ * decrease optimisation level for debian-arm to work around gcc bug -+ (closes: #253848) (thanks to Steve Langasek and Thom May) -+ * Add libcrypto0.9.7-udeb. (closes: #250010) (thanks to Bastian Blank) -+ * Add watchfile -+ -+ -- Christoph Martin Wed, 14 Jul 2004 14:31:02 +0200 -+ -+openssl (0.9.7d-3) unstable; urgency=low -+ -+ * rename -pic.a libraries to _pic.a (closes: #250016) -+ -+ -- Christoph Martin Mon, 24 May 2004 17:02:29 +0200 -+ -+openssl (0.9.7d-2) unstable; urgency=low -+ -+ * include PIC libs (libcrypto-pic.a and libssl-pic.a) to libssl-dev -+ (closes: #246928, #243999) -+ * add racoon to restart list (closes: #242652) -+ * add Brazilian, Japanese and Danish translations (closes: #242087, -+ #241830, #241705) -+ -+ -- Christoph Martin Tue, 11 May 2004 10:13:49 +0200 -+ -+openssl (0.9.7d-1) unstable; urgency=high -+ -+ * new upstream -+ * fixes security holes (http://www.openssl.org/news/secadv_20040317.txt) -+ (closes: #238661) -+ * includes support for debian-amd64 (closes: #235551, #232310) -+ * fix typo in pem.pod (closes: #219873) -+ * fix typo in libssl0.9.7.templates (closes: #224690) -+ * openssl suggests ca-certificates (closes: #217180) -+ * change debconf template to gettext format (closes: #219013) -+ * include french debconf template (closes: #219014) -+ -+ -- Christoph Martin Thu, 18 Mar 2004 16:18:43 +0100 -+ -+openssl (0.9.7c-5) unstable; urgency=low -+ -+ * include openssl.pc into libssl-dev (closes: #212545) -+ -+ -- Christoph Martin Thu, 16 Oct 2003 16:31:32 +0200 -+ -+openssl (0.9.7c-4) unstable; urgency=low -+ -+ * change question to restart services to debconf (closes: #214840) -+ * stop using dh_undocumented (closes: #214831) -+ -+ -- Christoph Martin Fri, 10 Oct 2003 15:40:48 +0200 -+ -+openssl (0.9.7c-3) unstable; urgency=low -+ -+ * fix POSIX conformance for head in libssl0.9.7.postinst (closes: -+ #214700) -+ -+ -- Christoph Martin Wed, 8 Oct 2003 14:02:38 +0200 -+ -+openssl (0.9.7c-2) unstable; urgency=low -+ -+ * add filerc macro to libssl0.9.7.postinst (closes: #213906) -+ * restart spamassassins spamd on upgrade (closes: #214106) -+ * restart more services on upgrade -+ * fix EVP_BytesToKey manpage (closes: #213715) -+ -+ -- Christoph Martin Tue, 7 Oct 2003 15:01:32 +0200 -+ -+openssl (0.9.7c-1) unstable; urgency=high -+ -+ * upstream security fix (closes: #213451) -+ - Fix various bugs revealed by running the NISCC test suite: -+ Stop out of bounds reads in the ASN1 code when presented with -+ invalid tags (CAN-2003-0543 and CAN-2003-0544). -+ Free up ASN1_TYPE correctly if ANY type is invalid (CAN-2003-0545). -+ If verify callback ignores invalid public key errors don't try to check -+ certificate signature with the NULL public key. -+ - In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate -+ if the server requested one: as stated in TLS 1.0 and SSL 3.0 -+ specifications. -+ * more minor upstream bugfixes -+ * fix formatting in c_issuer (closes: #190026) -+ * fix Debian-FreeBSD support (closes: #200381) -+ * restart some services in postinst to make them use the new libraries -+ * remove duplicated openssl.1, crypto.3 and ssl.3 (closes: #198594) -+ -+ -- Christoph Martin Wed, 1 Oct 2003 08:54:27 +0200 -+ -+openssl (0.9.7b-2) unstable; urgency=high -+ -+ * fix permission of /etc/ssl/private to 700 again -+ * change section of libssl-dev to libdevel -+ -+ -- Christoph Martin Wed, 23 Apr 2003 11:13:24 +0200 -+ -+openssl (0.9.7b-1) unstable; urgency=high -+ -+ * upstream security fix -+ - Countermeasure against the Klima-Pokorny-Rosa extension of -+ Bleichbacher's attack on PKCS #1 v1.5 padding: treat -+ a protocol version number mismatch like a decryption error -+ in ssl3_get_client_key_exchange (ssl/s3_srvr.c). (CAN-2003-0131) -+ (closes: #189087) -+ - Turn on RSA blinding by default in the default implementation -+ to avoid a timing attack. Applications that don't want it can call -+ RSA_blinding_off() or use the new flag RSA_FLAG_NO_BLINDING. -+ They would be ill-advised to do so in most cases. (CAN-2003-0147) -+ - Change RSA blinding code so that it works when the PRNG is not -+ seeded (in this case, the secret RSA exponent is abused as -+ an unpredictable seed -- if it is not unpredictable, there -+ is no point in blinding anyway). Make RSA blinding thread-safe -+ by remembering the creator's thread ID in rsa->blinding and -+ having all other threads use local one-time blinding factors -+ (this requires more computation than sharing rsa->blinding, but -+ avoids excessive locking; and if an RSA object is not shared -+ between threads, blinding will still be very fast). -+ for more details see the CHANGES file -+ -+ -- Christoph Martin Wed, 16 Apr 2003 10:32:57 +0200 -+ -+openssl (0.9.7a-1) unstable; urgency=high -+ -+ * upstream Security fix -+ - In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked -+ via timing by performing a MAC computation even if incorrrect -+ block cipher padding has been found. This is a countermeasure -+ against active attacks where the attacker has to distinguish -+ between bad padding and a MAC verification error. (CAN-2003-0078) -+ for more details see the CHANGES file -+ -+ -- Christoph Martin Fri, 21 Feb 2003 22:39:40 +0100 -+ -+openssl (0.9.7-4) unstable; urgency=low -+ -+ * use DH_COMPAT=3 to build -+ * move i686 to i686/cmov to fix problems on Via C3. For that to work we -+ have to depend on the newest libc6 on i386 (closes: #177891) -+ * fix bug in ui_util.c (closes: #177615) -+ * fix typo in md5.h (closes: #178112) -+ -+ -- Christoph Martin Fri, 24 Jan 2003 10:22:56 +0100 -+ -+openssl (0.9.7-3) unstable; urgency=low -+ -+ * enable build of ultrasparc code on non ultrasparc machines (closes: -+ #177024) -+ -+ -- Christoph Martin Fri, 17 Jan 2003 08:22:13 +0100 -+ -+openssl (0.9.7-2) unstable; urgency=low -+ -+ * include changes between 0.9.6g-9 and -10 -+ * fix problem in build-process on i386 with libc6 version number -+ -+ -- Christoph Martin Mon, 13 Jan 2003 14:26:56 +0100 -+ -+openssl (0.9.7-1) unstable; urgency=low -+ -+ * new upstream -+ * includes engine support -+ * a lot of bugfixes and enhancements, see the CHANGES file -+ * include AES encryption -+ * makes preview of certificate configurable (closes: #176059) -+ * fix x509 manpage (closes: #168070) -+ * fix declaration of ERR_load_PEM_string in pem.h (closes: #141360) -+ -+ -- Christoph Martin Sat, 11 Jan 2003 09:12:16 +0100 -+ -+openssl (0.9.6g-10) unstable; urgency=low -+ -+ * fix problem in build-process on i386 with libc6 version number -+ (closes: #167096) -+ -+ -- Christoph Martin Mon, 4 Nov 2002 12:27:21 +0100 -+ -+openssl (0.9.6g-9) unstable; urgency=low -+ -+ * fix typo in i386 libc6 depend (sigh) (closes: #163848) -+ -+ -- Christoph Martin Tue, 8 Oct 2002 23:29:20 +0200 -+ -+openssl (0.9.6g-8) unstable; urgency=low -+ -+ * fix libc6 depends. Only needed for i386 (closes: #163701) -+ * remove SHLIB section for bsds from Configure (closes: #163585) -+ -+ -- Christoph Martin Tue, 8 Oct 2002 10:57:35 +0200 -+ -+openssl (0.9.6g-7) unstable; urgency=low -+ -+ * enable i686 optimisation and depend on fixed glibc (closes: #163500) -+ * remove transition package ssleay -+ * include optimisation vor sparcv8 (closes: #139996) -+ * improve optimisation vor sparcv9 -+ -+ -- Christoph Martin Sun, 6 Oct 2002 14:07:12 +0200 -+ -+openssl (0.9.6g-6) unstable; urgency=low -+ -+ * temporarily disable i686 optimisation (See bug in glibc #161788) -+ -+ -- Christoph Martin Sat, 21 Sep 2002 18:56:49 +0200 -+ -+openssl (0.9.6g-5) unstable; urgency=low -+ -+ * i486 can use i586 assembler -+ * include set -xe in the for loops in the rules files to make it abort -+ on error (closes: #161768) -+ -+ -- Christoph Martin Sat, 21 Sep 2002 16:23:11 +0200 -+ -+openssl (0.9.6g-4) unstable; urgency=low -+ -+ * fix optimization for alpha and sparc -+ * add optimization for i486 -+ -+ -- Christoph Martin Fri, 20 Sep 2002 22:36:19 +0200 -+ -+openssl (0.9.6g-3) unstable; urgency=low -+ -+ * add optimized libraries for i586, i686, ev4, ev5 and v9 (closes: #139783) -+ -+ -- Christoph Martin Thu, 19 Sep 2002 18:33:04 +0200 -+ -+openssl (0.9.6g-2) unstable; urgency=low -+ -+ * fix manpage names (closes: #156717, #156718, #156719, #156721) -+ -+ -- Christoph Martin Thu, 15 Aug 2002 11:26:37 +0200 -+ -+openssl (0.9.6g-1) unstable; urgency=low -+ -+ * new upstream version -+ * Use proper error handling instead of 'assertions' in buffer -+ overflow checks added in 0.9.6e. This prevents DoS (the -+ assertions could call abort()). (closes: #155985, #156495) -+ * Fix ASN1 checks. Check for overflow by comparing with LONG_MAX -+ and get fix the header length calculation. -+ * include support for new sh* architectures (closes: #155117) -+ -+ -- Christoph Martin Wed, 14 Aug 2002 13:59:22 +0200 -+ -+openssl (0.9.6e-1) unstable; urgency=high -+ -+ * fixes remote exploits (see DSA-136-1) -+ -+ -- Christoph Martin Tue, 30 Jul 2002 18:32:28 +0200 -+ -+openssl (0.9.6d-1) unstable; urgency=low -+ -+ * new upstream (minor) version -+ * includes Configure lines for debian-*bsd-* (closes: #130413) -+ * fix wrong prototype for BN_pseudo_rand_range in BN_rand(3ssl) (closes: -+ #144586) -+ * fix typos in package description (closes: #141469) -+ * fix typo in SSL_CTX_set_cert_store manpage (closes: #135297) -+ -+ -- Christoph Martin Mon, 3 Jun 2002 19:42:10 +0200 -+ -+openssl (0.9.6c-2) unstable; urgency=low -+ -+ * moved from non-US to main -+ -+ -- Christoph Martin Tue, 19 Mar 2002 14:48:39 +0100 -+ -+openssl (0.9.6c-1) unstable; urgency=low -+ -+ * new upstream version with a lot of bugfixes -+ * remove directory /usr/include/openssl from openssl package (closes: -+ bug #121226) -+ * remove selfdepends from libssl0.9.6 -+ * link openssl binary shared again -+ -+ -- Christoph Martin Sat, 5 Jan 2002 19:04:31 +0100 -+ -+openssl (0.9.6b-4) unstable; urgency=low -+ -+ * build with -D_REENTRANT for threads support on all architectures -+ (closes: #112329, #119239) -+ -+ -- Christoph Martin Sat, 24 Nov 2001 12:17:51 +0100 -+ -+openssl (0.9.6b-3) unstable; urgency=low -+ -+ * disable idea, mdc2 and rc5 because they are not free (closes: #65368) -+ * ready to be moved from nonus to main -+ -+ -- Christoph Martin Wed, 21 Nov 2001 17:51:41 +0100 -+ -+openssl (0.9.6b-2) unstable; urgency=high -+ -+ * fix definition of crypt in des.h (closes: #107533) -+ * fix descriptions (closes: #109503) -+ -+ -- Christoph Martin Mon, 17 Sep 2001 15:38:27 +0200 -+ -+openssl (0.9.6b-1) unstable; urgency=medium -+ -+ * new upstream fixes some security issues (closes: #105835, #100146) -+ * added support for s390 (closes: #105681) -+ * added support for sh (closes: #100003) -+ * change priority of libssl096 to standard as ssh depends on it (closes: -+ #105440) -+ * don't optimize for i486 to support i386. (closes: #104127, #82194) -+ -+ -- Christoph Martin Fri, 20 Jul 2001 15:52:42 +0200 -+ -+openssl (0.9.6a-3) unstable; urgency=medium -+ -+ * add perl-base to builddeps -+ * include static libraries in libssl-dev (closes: #93688) -+ -+ -- Christoph Martin Mon, 14 May 2001 20:16:06 +0200 -+ -+openssl (0.9.6a-2) unstable; urgency=medium -+ -+ * change Architecture of ssleay from any to all (closes: #92913) -+ * depend libssl-dev on the exact same version of libssl0.9.6 (closes: -+ #88939) -+ * remove lib{crypto,ssl}.a from openssl (closes: #93666) -+ * rebuild with newer gcc to fix atexit problem (closes: #94036) -+ -+ -- Christoph Martin Wed, 2 May 2001 12:28:39 +0200 -+ -+openssl (0.9.6a-1) unstable; urgency=medium -+ -+ * new upstream, fixes some security bugs (closes: #90584) -+ * fix typo in s_server manpage (closes: #89756) -+ -+ -- Christoph Martin Tue, 10 Apr 2001 12:13:11 +0200 -+ -+openssl (0.9.6-2) unstable; urgency=low -+ -+ * policy: reorganisation of package names: libssl096 -> libssl0.9.6, -+ libssl096-dev -> libssl-dev (closes: #83426) -+ * libssl0.9.6 drops replaces libssl09 (Closes: #83425) -+ * install upstream CHANGES files (Closes: #83430) -+ * added support for hppa and ia64 (Closes: #88790) -+ * move man3 manpages to libssl-dev (Closes: #87546) -+ * fix formating problem in rand_add(1) (Closes: #87547) -+ * remove manpage duplicates (Closes: #87545, #74986) -+ * make package descriptions clearer (Closes: #83518, #83444) -+ * increase default emailAddress_max from 40 to 60 (Closes: #67238) -+ * removed RSAREF warning (Closes: #84122) -+ -+ -- Christoph Martin Thu, 8 Mar 2001 14:24:00 +0100 -+ -+openssl (0.9.6-1) unstable; urgency=low -+ -+ * New upstream version (Thanks to Enrique Zanardi ) -+ (closes: #72388) -+ * Add support for debian-hurd (closes: #76032) -+ -+ -- Christoph Martin Mon, 13 Nov 2000 22:30:46 +0100 -+ -+openssl (0.9.5a-5) unstable; urgency=low -+ -+ * move manpages in standard directories with section ssl (closes: -+ #72152, #69809) -+ -+ -- Christoph Martin Thu, 5 Oct 2000 19:56:20 +0200 -+ -+openssl (0.9.5a-4) unstable; urgency=low -+ -+ * include edg_rand_bytes patch from and for apache-ssl -+ -+ -- Christoph Martin Sat, 23 Sep 2000 16:48:06 +0200 -+ -+openssl (0.9.5a-3) unstable; urgency=low -+ -+ * fix call to dh_makeshlibs to create correct shlibs file and make -+ dependend programs link correctly (closes: Bug#61658) -+ * include a note in README.debian concerning the location of the -+ subcommand manpages (closes: Bug#69809) -+ -+ -- Christoph Martin Sat, 16 Sep 2000 19:10:50 +0200 -+ -+openssl (0.9.5a-2) unstable; urgency=low -+ -+ * try to fix the sharedlib problem. change soname of library -+ (closes: Bug#4622, #66102, #66538, #66123) -+ -+ -- Christoph Martin Wed, 12 Jul 2000 03:26:30 +0200 -+ -+openssl (0.9.5a-1) unstable; urgency=low -+ -+ * new upstream version (major changes see file NEWS) (closes: Bug#63976, -+ #65239, #65358) -+ * new library package libssl095a because of probably changed library -+ interface (closes: Bug#46222) -+ * added architecture mips and mipsel (closes: Bug#62437, #60366) -+ * provide shlibs.local file in build to help build if libraries are not -+ yet installed (closes: Bug#63984) -+ -+ -- Christoph Martin Sun, 11 Jun 2000 15:17:35 +0200 -+ -+openssl (0.9.4-5) frozen unstable; urgency=medium -+ -+ * cleanup of move of doc directories to /usr/share/doc (closes: -+ Bug#56430) -+ * lintian issues (closes: Bug#49358) -+ * move demos from openssl to libssl09-dev (closes: Bug#59201) -+ * move to debhelpers -+ -+ -- Christoph Martin Sat, 11 Mar 2000 10:38:04 +0100 -+ -+openssl (0.9.4-4) unstable; urgency=medium -+ -+ * Added 'debian-arm' in 'Configure'. (closes: Bug#54251, #54766) -+ * Fixed Configure for 'debian-m68k' (closes: Bug#53636) -+ -+ -- Christoph Martin Sat, 15 Jan 2000 13:16:18 +0100 -+ -+openssl (0.9.4-3) unstable; urgency=low -+ -+ * define symbol SSLeay_add_ssl_algorithms for backward compatibility -+ (closes: Bug#46882) -+ * remove manpages from /usr/doc/openssl (closes: Bug#46791) -+ -+ -- Christoph Martin Thu, 14 Oct 1999 16:51:08 +0200 -+ -+openssl (0.9.4-2) unstable; urgency=low -+ -+ * include some more docu in pod format (Bug #43933) -+ * removed -mv8 from sparc flags (Bug #44769) -+ -+ -- Christoph Martin Tue, 14 Sep 1999 22:04:06 +0200 -+ -+openssl (0.9.4-1) unstable; urgency=low -+ -+ * new upstream version (Closes: #42926) -+ -+ -- Christoph Martin Sat, 28 Aug 1999 17:04:23 +0200 -+ -+openssl (0.9.3a-1) unstable; urgency=low -+ -+ * new upstream version (Bug #38345, #38627) -+ * sparc is big-endian (Bug #39973) -+ -+ -- Christoph Martin Wed, 7 Jul 1999 16:03:37 +0200 -+ -+openssl (0.9.2b-3) unstable; urgency=low -+ -+ * correct move conffiles to /etc/ssl (Bug #38570) -+ -+ -- Christoph Martin Mon, 31 May 1999 21:08:07 +0200 -+ -+openssl (0.9.2b-2) unstable; urgency=low -+ -+ * added convenience package ssleay to help upgrade to openssl (Bug -+ #37185, #37623, #36326) -+ * added some missing dependencies from libssl09 (Bug #36681, #35867, -+ #36326) -+ * move lib*.so to libssl09-dev (Bug #36761) -+ * corrected version numbers of library files -+ * introduce link from /usr/lib/ssl to /etc/ssl (Bug #36710) -+ -+ -- Christoph Martin Sun, 23 May 1999 14:57:48 +0200 -+ -+openssl (0.9.2b-1) unstable; urgency=medium -+ -+ * First openssl version -+ -+ -- Christoph Martin Wed, 31 Mar 1999 15:54:26 +0200 -+ -+ssleay (0.9.0b-2) unstable; urgency=low -+ -+ * Include message about the (not)usage of RSAREF (#24409) -+ * Move configfiles from /usr/lib/ssl to /etc/ssl (#26406) -+ * Change definitions for sparc (#26487) -+ * Added missing dependency (#28591) -+ * Make debian/libtool executable (#29708) -+ * /etc/ssl/lib/ssleay.cnf is now a confile (#32624) -+ -+ -- Christoph Martin Sun, 21 Mar 1999 19:41:04 +0100 -+ -+ssleay (0.9.0b-1) unstable; urgency=low -+ -+ * new upstream version (Bug #21227, #25971) -+ * build shared libraries with -fPIC (Bug #20027) -+ * support sparc architecture (Bug #28467) -+ -+ -- Christoph Martin Tue, 13 Oct 1998 10:20:13 +0200 -+ -+ssleay (0.8.1-7) frozen unstable; urgency=high -+ -+ * security fix patch to 0.8.1b (bug #24022) -+ -+ -- Christoph Martin Mon, 6 Jul 1998 15:42:15 +0200 -+ -+ssleay (0.8.1-6) frozen unstable; urgency=low -+ -+ * second try to fix bug #15235 (copyright was still missing) -+ -+ -- Christoph Martin Mon, 22 Jun 1998 08:56:27 +0200 -+ -+ssleay (0.8.1-5) frozen unstable; urgency=high -+ -+ * changed /dev/random to /dev/urandom (Bug #23169, #17817) -+ * copyright contains now the full licence (Bug #15235) -+ * fixed bug #19410 (md5sums-lists-nonexisting-file) -+ * added demos to /usr/doc (Bug #17372) -+ * fixed type in package description (Bug #18969) -+ * fixed bug in adding documentation (Bug #21463) -+ * added patch for support of debian-powerpc (Bug #21579) -+ -+ -- Christoph Martin Thu, 18 Jun 1998 23:09:13 +0200 -+ -+ssleay (0.8.1-4) unstable; urgency=low -+ -+ * purged dependency from libc5 -+ -+ -- Christoph Martin Tue, 11 Nov 1997 15:31:50 +0100 -+ -+ssleay (0.8.1-3) unstable; urgency=low -+ -+ * changed packagename libssl to libssl08 to get better dependancies -+ -+ -- Christoph Martin Fri, 7 Nov 1997 14:23:17 +0100 -+ -+ssleay (0.8.1-2) unstable; urgency=low -+ -+ * linked shared libraries against libc6 -+ * use /dev/random for randomseed -+ -+ -- Christoph Martin Wed, 5 Nov 1997 11:21:40 +0100 -+ -+ssleay (0.8.1-1) unstable; urgency=low -+ -+ * new upstream version -+ -+ -- Christoph Martin Thu, 16 Oct 1997 16:15:43 +0200 -+ -+ssleay (0.6.6-2) unstable; urgency=low -+ -+ * cleanup in diffs -+ * removed INSTALL from docs (bug #13205) -+ * split libssl and libssl-dev (but #13735) -+ -+ -- Christoph Martin Wed, 15 Oct 1997 17:38:38 +0200 -+ -+ssleay (0.6.6-1) unstable; urgency=low -+ -+ * New upstream version -+ * added shared libraries for libcrypto and libssl -+ -+ -- Christoph Martin Thu, 26 Jun 1997 19:26:14 +0200 -+ -+ssleay (0.6.4-2) unstable; urgency=low -+ -+ * changed doc filenames from .doc to .txt to be able to read them -+ over with webbrowser -+ -+ -- Christoph Martin Tue, 25 Feb 1997 14:02:53 +0100 -+ -+ssleay (0.6.4-1) unstable; urgency=low -+ -+ * Initial Release. -+ -+ -- Christoph Martin Fri, 22 Nov 1996 21:29:51 +0100 ---- openssl-0.9.7e.orig/debian/control -+++ openssl-0.9.7e/debian/control -@@ -0,0 +1,60 @@ -+Source: openssl -+Build-Depends: debhelper (>= 4.2.0) -+Section: utils -+Priority: optional -+Maintainer: Christoph Martin -+Standards-Version: 3.6.1 -+ -+Package: openssl -+Priority: optional -+Architecture: any -+Depends: ${shlibs:Depends}, ${perl:Depends} -+Conflicts: ssleay (<< 0.9.2b) -+Suggests: ca-certificates -+Description: Secure Socket Layer (SSL) binary and related cryptographic tools -+ This package contains the openssl binary and related tools. -+ . -+ It is part of the OpenSSL implementation of SSL. -+ . -+ You need it to perform certain cryptographic actions like: -+ o Creation of RSA, DH and DSA Key Parameters -+ o Creation of X.509 Certificates, CSRs and CRLs -+ o Calculation of Message Digests -+ o Encryption and Decryption with Ciphers -+ o SSL/TLS Client and Server Tests -+ o Handling of S/MIME signed or encrypted Mail -+ -+Package: libssl0.9.7 -+Section: libs -+Priority: standard -+Architecture: any -+Depends: ${shlibs:Depends}, ${misc:Depends} -+Conflicts: ssleay (<< 0.9.2b), libssl, openssl (<< 0.9.6-2), libssl096-dev (<< 0.9.6-2) -+Description: SSL shared libraries -+ libssl and libcrypto shared libraries needed by programs like -+ apache-ssl, telnet-ssl and openssh. -+ . -+ It is part of the OpenSSL implementation of SSL. -+ -+Package: libcrypto0.9.7-udeb -+XC-Package-Type: udeb -+Section: debian-installer -+Priority: optional -+Architecture: any -+Depends: ${shlibs:Depends}, ${misc:Depends} -+Provides: libssl0.9.7 -+Description: crypto shared library - udeb -+ libcrypto shared library. -+ . -+ Do not install it on a normal system. -+ -+Package: libssl-dev -+Section: libdevel -+Priority: optional -+Architecture: any -+Depends: libssl0.9.7 (= ${Source-Version}) -+Conflicts: ssleay (<< 0.9.2b), libssl08-dev, libssl09-dev, libssl095a-dev, libssl096-dev -+Description: SSL development libraries, header files and documentation -+ libssl and libcrypt development libraries, header files and manpages -+ . -+ It is part of the OpenSSL implementation of SSL. ---- openssl-0.9.7e.orig/debian/rules -+++ openssl-0.9.7e/debian/rules -@@ -0,0 +1,186 @@ -+#!/usr/bin/make -f -+# Sample debian.rules file - for GNU Hello (1.3). -+# Copyright 1994,1995 by Ian Jackson. -+# I hereby give you perpetual unlimited permission to copy, -+# modify and relicense this file, provided that you do not remove -+# my name from the file itself. (I assert my moral right of -+# paternity under the Copyright, Designs and Patents Act 1988.) -+# This file may have to be extensively modified -+# -+# Modified to be a prototype for debmake by Christoph Lameter -+SHELL=/bin/bash -+export DH_COMPAT=3 -+ -+package=openssl -+ -+# For generating the manpages -+export VERSION=$(shell dpkg-parsechangelog | grep '^Version:' | sed -e 's/^.*://' -e 's/-.*//') -+ -+# The binary architeture -+DEB_HOST_ARCH = $(shell dpkg-architecture -qDEB_HOST_ARCH) -+ -+CONFARGS = --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 -+OPT_alpha = ev4 ev5 -+OPT_i386 = i486 i586 i686/cmov -+OPT_sparc = v8 v9 -+ARCHOPTS = OPT_$(DEB_HOST_ARCH) -+OPTS = $($(ARCHOPTS)) -+WANTED_LIBC_VERSION = 2.3.1-10 -+ -+build: -+ dh_testdir -+ perl util/perlpath.pl /usr/bin -+# perl util/ssldir.pl /usr/lib/ssl -+# chmod +x debian/libtool -+ ./Configure no-shared $(CONFARGS) debian-$(DEB_HOST_ARCH) -+ make -f Makefile DIRS="crypto ssl" all -+ mv libcrypto.a libcrypto.static -+ mv libssl.a libssl.static -+ make -f Makefile DIRS="crypto ssl" clean -+ test -z "$(OPTS)" || for opt in $(OPTS); \ -+ do \ -+ set -xe; \ -+ ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH)-$$opt; \ -+ make -f Makefile DIRS="crypto ssl" all; \ -+ mkdir -p $$opt; \ -+ mv libcrypto.so* libssl.so* $$opt/; \ -+ make -f Makefile DIRS="crypto ssl" clean; \ -+ done -+ ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH) -+ #make -f Makefile depend -+ ln -sf apps/openssl.pod crypto/crypto.pod ssl/ssl.pod doc/ -+# make -f Makefile linux-shared -+ make -f Makefile all -+# strip apps/openssl -+# make -f Makefile clean DIRS="crypto ssl" -+# ./Configure --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 debian-$(DEB_HOST_ARCH) -+# make -f Makefile all DIRS="crypto ssl" -+ touch build -+ -+clean: -+ dh_testdir -+ dh_testroot -+ -rm -f build -+ perl util/perlpath.pl /usr/bin -+ ./Configure $(CONFARGS) debian-$(DEB_HOST_ARCH) -+ -make -f Makefile clean clean-shared -+ #-make -f Makefile dclean -+ perl util/perlpath.pl /usr/local/bin -+# perl util/ssldir.pl /usr/local/ssl -+ -rm -f test/.rnd test/testkey.pem test/testreq.pem test/certCA.srl -+ -rm -f util/mk1mf.bak Makefile.bak `find . -name Makefile.save` -+ -rm -f crypto/pem/ctx_size -+ -rm -f `find . -name "*~"` -+ -rm -f `find . -name "*.orig" -o -name "*.rej"` -+ -rm -f certs/*.0 certs/*.1 -+# -rm -rf debian/tmp debian/files* core `find debian/* -type d` -+ -rm -rf core $(OPTS) -+ -rm doc/*.pod -+ -rm -f libcrypto.* libssl.* -+ dh_clean -+ -+binary-indep: build -+ dh_testdir -+ dh_testroot -+# There are no architecture-independent files to be uploaded -+# generated by this package. If there were any they would be -+# made here. -+ -+binary-arch: build -+ dh_testdir -+ dh_testroot -+ dh_clean -+# -rm -rf debian/tmp `find debian/* -type d` -+ install -d debian/tmp debian/libssl0.9.7 debian/libssl-dev debian/ssleay/usr/share/doc -+# cd debian/tmp && install -d `cat ../dirs` -+# cd debian/libssl09 && install -d `cat ../libssl09.dirs` -+# cd debian/libssl09-dev && install -d `cat ../libssl09-dev.dirs` -+ dh_installdirs -+#openssl install -+ make -f Makefile install INSTALL_PREFIX=`pwd`/debian/tmp -+ rm debian/tmp/usr/share/man/man1/openssl.1 -+ rm debian/tmp/usr/share/man/man3/crypto.3 -+ rm debian/tmp/usr/share/man/man3/ssl.3 -+# rm debian/tmp/usr/lib/libcrypto.a -+# rm debian/tmp/usr/lib/libssl.a -+ mv debian/tmp/usr/lib/libcrypto.a debian/tmp/usr/lib/libcrypto_pic.a -+ mv debian/tmp/usr/lib/libssl.a debian/tmp/usr/lib/libssl_pic.a -+ cp -pf libcrypto.static debian/tmp/usr/lib/libcrypto.a -+ cp -pf libssl.static debian/tmp/usr/lib/libssl.a -+# mv debian/tmp/usr/lib/ssl/bin debian/tmp/usr/bin/ssl -+# (cd debian/tmp/usr/lib/ssl; ln -s /usr/bin/ssl bin) -+# mv debian/tmp/usr/lib/ssl/include debian/tmp/usr/include/ssl -+# (cd debian/tmp/usr/lib/ssl; ln -s /usr/include/ssl include) -+# chmod -x debian/tmp/usr/lib/*.so.* -+# mv debian/tmp/usr/lib/*.a debian/libssl09-dev/usr/lib/ -+# mv debian/tmp/usr/lib/*.so debian/libssl09-dev/usr/lib/ -+# mv debian/tmp/usr/lib/*.so.*.*.* debian/libssl09/usr/lib/ -+# mv debian/tmp/usr/lib/*.la debian/libssl09-dev/usr/lib/ -+# mv debian/tmp/usr/include debian/libssl09-dev/usr/ -+ mkdir -p debian/tmp/etc/ssl -+ mv debian/tmp/usr/lib/ssl/{certs,openssl.cnf,private} debian/tmp/etc/ssl/ -+ ln -s /etc/ssl/{certs,openssl.cnf,private} debian/tmp/usr/lib/ssl/ -+ cp -pf debian/tmp/usr/lib/libcrypto.so.* debian/libcrypto0.9.7-udeb/usr/lib/ -+#ssleay install -+ #ln -s openssl debian/ssleay/usr/share/doc/ssleay -+#libssl install -+# install -m 644 libcrypto.so.08.1 libssl.so.08.1 debian/libssl08/usr/lib/ -+# ln -s libssl.so.08 debian/libssl08-dev/usr/lib/libssl.so -+# ln -s libcrypto.so.08 debian/libssl08-dev/usr/lib/libcrypto.so -+# debian/libtool install -m 644 crypto/libcrypto.la -+# debian/libtool install -m 644 ssl/libssl.la -+ cp -auv lib*.so* debian/tmp/usr/lib/ -+# cp -auv lib*.a debian/tmp/usr/lib/ -+ for opt in $(OPTS); do set -xe; mkdir -p debia