|
cvsdist |
e32c112 |
# For the curious:
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
a9e5f01 |
# 0.9.8jk + EAP-FAST soversion = 8
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
58b40a3 |
# 1.0.0 soversion = 10
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
# 1.1.0 soversion = 1.1 (same as upstream although presence of some symbols
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
# depends on build configuration options)
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# 3.0.0 soversion = 3 (same as upstream)
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%define soversion 3
|
|
cvsdist |
b966cc9 |
|
|
cvsdist |
b966cc9 |
# Arches on which we need to prevent arch conflicts on opensslconf.h, must
|
|
cvsdist |
b966cc9 |
# also be handled in opensslconf-new.h.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
357b7a7 |
%define multilib_arches %{ix86} ia64 %{mips} ppc ppc64 s390 s390x sparcv9 sparc64 x86_64
|
|
cvsdist |
b966cc9 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
a9591c7 |
%global _performance_build 1
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
a9591c7 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
Summary: Utilities from the general purpose cryptography library with TLS implementation
|
|
cvsdist |
e21e184 |
Name: openssl
|
|
Clemens Lang |
3290897 |
Version: 3.0.5
|
|
![](https://seccdn.libravatar.org/avatar/66cca4ddfe914918eb13788577f8ad64d709ccf9f83b384b49228bb9a83a1533?s=16&d=retro) |
d1b1996 |
Release: 2%{?dist}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
Epoch: 1
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c28bd1c |
# We have to remove certain patented algorithms from the openssl source
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c28bd1c |
# tarball with the hobble-openssl script which is included below.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c28bd1c |
# The original openssl upstream tarball cannot be shipped in the .src.rpm.
|
|
Clemens Lang |
3290897 |
Source: openssl-%{version}-hobbled.tar.xz
|
|
cvsdist |
e21e184 |
Source1: hobble-openssl
|
|
cvsdist |
e21e184 |
Source2: Makefile.certificate
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Source3: genpatches
|
|
Clemens Lang |
82a6212 |
Source4: openssl.rpmlintrc
|
|
cvsdist |
321fa67 |
Source6: make-dummy-cert
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c67ea97 |
Source7: renew-dummy-cert
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Source9: configuration-switch.h
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Source10: configuration-prefix.h
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
b355146 |
Source12: ec_curve.c
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
b355146 |
Source13: ectest.c
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
fb8e66a |
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Patches exported from source git
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Aarch64 and ppc64le use lib64
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch1: 0001-Aarch64-and-ppc64le-use-lib64.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Use more general default values in openssl.cnf
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch2: 0002-Use-more-general-default-values-in-openssl.cnf.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Do not install html docs
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch3: 0003-Do-not-install-html-docs.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Override default paths for the CA directory tree
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch4: 0004-Override-default-paths-for-the-CA-directory-tree.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# apps/ca: fix md option help text
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch5: 0005-apps-ca-fix-md-option-help-text.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Disable signature verification with totally unsafe hash algorithms
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch6: 0006-Disable-signature-verification-with-totally-unsafe-h.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Add support for PROFILE=SYSTEM system default cipherlist
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch7: 0007-Add-support-for-PROFILE-SYSTEM-system-default-cipher.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Add FIPS_mode() compatibility macro
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch8: 0008-Add-FIPS_mode-compatibility-macro.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Add check to see if fips flag is enabled in kernel
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
#Patch9: 0009-Add-Kernel-FIPS-mode-flag-support.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# remove unsupported EC curves
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch11: 0011-Remove-EC-curves.patch
|
|
Dmitry Belyavskiy |
a0bd929 |
# Disable explicit EC curves
|
|
Dmitry Belyavskiy |
a0bd929 |
Patch12: 0012-Disable-explicit-ec.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Instructions to load legacy provider in openssl.cnf
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
Patch24: 0024-load-legacy-prov.patch
|
|
Clemens Lang |
0967bb5 |
%if 0%{?rhel}
|
|
Clemens Lang |
0967bb5 |
# Selectively disallow SHA1 signatures
|
|
Clemens Lang |
0967bb5 |
Patch49: 0049-Selectively-disallow-SHA1-signatures.patch
|
|
Clemens Lang |
0967bb5 |
%else
|
|
Clemens Lang |
432cfa2 |
# Selectively disallow SHA1 signatures rhbz#2070977
|
|
Clemens Lang |
432cfa2 |
Patch49: 0049-Allow-disabling-of-SHA1-signatures.patch
|
|
Clemens Lang |
0967bb5 |
%endif
|
|
Dmitry Belyavskiy |
a0bd929 |
# Backport of patch for RHEL for Edge rhbz #2027261
|
|
Dmitry Belyavskiy |
a0bd929 |
Patch51: 0051-Support-different-R_BITS-lengths-for-KBKDF.patch
|
|
Clemens Lang |
0967bb5 |
%if 0%{?rhel}
|
|
Clemens Lang |
0967bb5 |
# Allow SHA1 in seclevel 2 if rh-allow-sha1-signatures = yes
|
|
Clemens Lang |
0967bb5 |
Patch52: 0052-Allow-SHA1-in-seclevel-2-if-rh-allow-sha1-signatures.patch
|
|
Clemens Lang |
0967bb5 |
%else
|
|
Clemens Lang |
432cfa2 |
# Support SHA1 in TLS in LEGACY crypto-policy (which is SECLEVEL=1)
|
|
Clemens Lang |
432cfa2 |
Patch52: 0052-Allow-SHA1-in-seclevel-1-if-rh-allow-sha1-signatures.patch
|
|
Clemens Lang |
0967bb5 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
%if 0%{?rhel}
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
# no USDT probe instrumentation required
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
%else
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
# Instrument with USDT probes related to SHA-1 deprecation
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
Patch53: 0053-Add-SHA1-probes.patch
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
%endif
|
|
Dmitry Belyavskiy |
8a03afa |
# https://github.com/openssl/openssl/pull/18103
|
|
Dmitry Belyavskiy |
8a03afa |
# The patch is incorporated in 3.0.3 but we provide this function since 3.0.1
|
|
Dmitry Belyavskiy |
8a03afa |
# so the patch should persist
|
|
Dmitry Belyavskiy |
8a03afa |
Patch56: 0056-strcasecmp.patch
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
License: ASL 2.0
|
|
cvsdist |
e21e184 |
URL: http://www.openssl.org/
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6d92af0 |
BuildRequires: gcc
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
7a654fc |
BuildRequires: coreutils, perl-interpreter, sed, zlib-devel, /usr/bin/cmp
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
341f751 |
BuildRequires: lksctp-tools-devel
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1181966 |
BuildRequires: /usr/bin/rename
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
314b235 |
BuildRequires: /usr/bin/pod2man
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
BuildRequires: /usr/sbin/sysctl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
BuildRequires: perl(Test::Harness), perl(Test::More), perl(Math::BigInt)
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c6d0704 |
BuildRequires: perl(Module::Load::Conditional), perl(File::Temp)
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
BuildRequires: perl(Time::HiRes), perl(IPC::Cmd), perl(Pod::Html), perl(Digest::SHA)
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
BuildRequires: perl(FindBin), perl(lib), perl(File::Compare), perl(File::Copy), perl(bigint)
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
BuildRequires: git-core
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
BuildRequires: systemtap-sdt-devel
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
f20f5f4 |
Requires: coreutils
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
Requires: %{name}-libs%{?_isa} = %{epoch}:%{version}-%{release}
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
e21e184 |
%description
|
|
cvsdist |
0d16b0b |
The OpenSSL toolkit provides support for secure communications between
|
|
cvsdist |
0d16b0b |
machines. OpenSSL includes a certificate management tool and shared
|
|
cvsdist |
0d16b0b |
libraries which provide various cryptographic algorithms and
|
|
cvsdist |
0d16b0b |
protocols.
|
|
cvsdist |
e21e184 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%package libs
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
Summary: A general purpose cryptography library with TLS implementation
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
Requires: ca-certificates >= 2008-5
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6035707 |
Requires: crypto-policies >= 20180730
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6eb8f62 |
Recommends: openssl-pkcs11%{?_isa}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%description libs
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
OpenSSL is a toolkit for supporting cryptography. The openssl-libs
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
package contains the libraries that are used by various applications which
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
support cryptographic algorithms and protocols.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
|
|
cvsdist |
e21e184 |
%package devel
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
499412d |
Summary: Files for development of applications which will use OpenSSL
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
Requires: %{name}-libs%{?_isa} = %{epoch}:%{version}-%{release}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
b191bc7 |
Requires: pkgconfig
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
e21e184 |
%description devel
|
|
cvsdist |
0d16b0b |
OpenSSL is a toolkit for supporting cryptography. The openssl-devel
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
15d9ef2 |
package contains include files needed to develop applications which
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
15d9ef2 |
support various cryptographic algorithms and protocols.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
15d9ef2 |
|
|
cvsdist |
e21e184 |
%package perl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
499412d |
Summary: Perl scripts provided with OpenSSL
|
|
![](https://seccdn.libravatar.org/avatar/7b64540d61cb742c2384f9efbbdfaf5f91a89e5c58c0b1861e414ba49b507d8b?s=16&d=retro) |
f852080 |
Requires: perl-interpreter
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
Requires: %{name}%{?_isa} = %{epoch}:%{version}-%{release}
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
e21e184 |
%description perl
|
|
cvsdist |
0d16b0b |
OpenSSL is a toolkit for supporting cryptography. The openssl-perl
|
|
cvsdist |
0d16b0b |
package provides Perl scripts for converting certificates and keys
|
|
cvsdist |
0d16b0b |
from other formats to the formats used by the OpenSSL toolkit.
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
e21e184 |
%prep
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%autosetup -S git -n %{name}-%{version}
|
|
cvsdist |
321fa67 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c28bd1c |
# The hobble_openssl is called here redundantly, just to be sure.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c28bd1c |
# The tarball has already the sources removed.
|
|
cvsdist |
e32c112 |
%{SOURCE1} > /dev/null
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
b355146 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
cp %{SOURCE12} crypto/ec/
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
cp %{SOURCE13} test/
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
b355146 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
2d6ef07 |
%build
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
e96bebc |
# Figure out which flags we want to use.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
e96bebc |
# default
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
0b4cee3 |
sslarch=%{_os}-%{_target_cpu}
|
|
cvsdist |
e21e184 |
%ifarch %ix86
|
|
cvsdist |
e21e184 |
sslarch=linux-elf
|
|
cvsdist |
4f250d3 |
if ! echo %{_target} | grep -q i686 ; then
|
|
cvsdist |
4f250d3 |
sslflags="no-asm 386"
|
|
cvsdist |
4f250d3 |
fi
|
|
cvsdist |
e21e184 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6536aa4 |
%ifarch x86_64
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6536aa4 |
sslflags=enable-ec_nistp_64_gcc_128
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6536aa4 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
%ifarch sparcv9
|
|
cvsdist |
e21e184 |
sslarch=linux-sparcv9
|
|
cvsdist |
821b825 |
sslflags=no-asm
|
|
cvsdist |
e21e184 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
%ifarch sparc64
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
sslarch=linux64-sparcv9
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
sslflags=no-asm
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
65e6d90 |
%ifarch alpha alphaev56 alphaev6 alphaev67
|
|
cvsdist |
566a67e |
sslarch=linux-alpha-gcc
|
|
cvsdist |
e21e184 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
cc7d549 |
%ifarch s390 sh3eb sh4eb
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
cc7d549 |
sslarch="linux-generic32 -DB_ENDIAN"
|
|
cvsdist |
821b825 |
%endif
|
|
cvsdist |
107c5de |
%ifarch s390x
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
sslarch="linux64-s390x"
|
|
cvsdist |
7520711 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/4e8d68fe76de63043f2c89e9e363e4dc5af5775e488004cc7a8398c86381b072?s=16&d=retro) |
6705192 |
%ifarch %{arm}
|
|
![](https://seccdn.libravatar.org/avatar/4e8d68fe76de63043f2c89e9e363e4dc5af5775e488004cc7a8398c86381b072?s=16&d=retro) |
6705192 |
sslarch=linux-armv4
|
|
![](https://seccdn.libravatar.org/avatar/4e8d68fe76de63043f2c89e9e363e4dc5af5775e488004cc7a8398c86381b072?s=16&d=retro) |
6705192 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/4e8d68fe76de63043f2c89e9e363e4dc5af5775e488004cc7a8398c86381b072?s=16&d=retro) |
18455c9 |
%ifarch aarch64
|
|
![](https://seccdn.libravatar.org/avatar/4e8d68fe76de63043f2c89e9e363e4dc5af5775e488004cc7a8398c86381b072?s=16&d=retro) |
18455c9 |
sslarch=linux-aarch64
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6536aa4 |
sslflags=enable-ec_nistp_64_gcc_128
|
|
![](https://seccdn.libravatar.org/avatar/4e8d68fe76de63043f2c89e9e363e4dc5af5775e488004cc7a8398c86381b072?s=16&d=retro) |
18455c9 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/4e8d68fe76de63043f2c89e9e363e4dc5af5775e488004cc7a8398c86381b072?s=16&d=retro) |
6705192 |
%ifarch sh3 sh4
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
b191bc7 |
sslarch=linux-generic32
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
b191bc7 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
239d122 |
%ifarch ppc64 ppc64p7
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
55a3598 |
sslarch=linux-ppc64
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
55a3598 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
239d122 |
%ifarch ppc64le
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
239d122 |
sslarch="linux-ppc64le"
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6536aa4 |
sslflags=enable-ec_nistp_64_gcc_128
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
239d122 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
%ifarch mips mipsel
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
sslarch="linux-mips32 -mips32r2"
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
%ifarch mips64 mips64el
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
sslarch="linux64-mips64 -mips64r2"
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
%ifarch mips64el
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
sslflags=enable-ec_nistp_64_gcc_128
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1004dab |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/2b144df64913845151df534542e1c73358afff4b3b67d9228c548513b08c6d02?s=16&d=retro) |
d0c38b1 |
%ifarch riscv64
|
|
![](https://seccdn.libravatar.org/avatar/2b144df64913845151df534542e1c73358afff4b3b67d9228c548513b08c6d02?s=16&d=retro) |
d0c38b1 |
sslarch=linux-generic64
|
|
![](https://seccdn.libravatar.org/avatar/2b144df64913845151df534542e1c73358afff4b3b67d9228c548513b08c6d02?s=16&d=retro) |
d0c38b1 |
%endif
|
|
Dmitry Belyavskiy |
a0bd929 |
ktlsopt=enable-ktls
|
|
Dmitry Belyavskiy |
a0bd929 |
%ifarch armv7hl
|
|
Dmitry Belyavskiy |
a0bd929 |
ktlsopt=disable-ktls
|
|
Dmitry Belyavskiy |
a0bd929 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
55a3598 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
# Add -Wa,--noexecstack here so that libcrypto's assembler modules will be
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
# marked as not requiring an executable stack.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
# Also add -DPURIFY to make using valgrind with openssl easier as we do not
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
# want to depend on the uninitialized memory as a source of entropy anyway.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
68f387b |
RPM_OPT_FLAGS="$RPM_OPT_FLAGS -Wa,--noexecstack -Wa,--generate-missing-build-notes=yes -DPURIFY $RPM_LD_FLAGS"
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
e85d727 |
export HASHBANGPERL=/usr/bin/perl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
e85d727 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
55a3598 |
# ia64, x86_64, ppc are OK by default
|
|
cvsdist |
e21e184 |
# Configure the build tree. Override OpenSSL defaults with known-good defaults
|
|
cvsdist |
821b825 |
# usable on all platforms. The Configure script already knows to use -fPIC and
|
|
cvsdist |
821b825 |
# RPM_OPT_FLAGS, so we can skip specifiying them here.
|
|
cvsdist |
321fa67 |
./Configure \
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
653e1ef |
--prefix=%{_prefix} --openssldir=%{_sysconfdir}/pki/tls ${sslflags} \
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
f550490 |
--system-ciphers-file=%{_sysconfdir}/crypto-policies/back-ends/openssl.config \
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
zlib enable-camellia enable-seed enable-rfc3779 enable-sctp \
|
|
Dmitry Belyavskiy |
a0bd929 |
enable-cms enable-md2 enable-rc5 ${ktlsopt} enable-fips\
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
90121b0 |
no-mdc2 no-ec2m no-sm2 no-sm4 \
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
90121b0 |
shared ${sslarch} $RPM_OPT_FLAGS '-DDEVRANDOM="\"/dev/urandom\""'
|
|
cvsdist |
ee71aae |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
5a93773 |
# Do not run this in a production package the FIPS symbols must be patched-in
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
5a93773 |
#util/mkdef.pl crypto update
|
|
cvsdist |
e21e184 |
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
make -s %{?_smp_mflags} all
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
44abf9d |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
4240eca |
# Clean up the .pc files
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
4240eca |
for i in libcrypto.pc libssl.pc openssl.pc ; do
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
4240eca |
sed -i '/^Libs.private:/{s/-L[^ ]* //;s/-Wl[^ ]* //}' $i
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
4240eca |
done
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
4240eca |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1d20b5f |
%check
|
|
cvsdist |
e21e184 |
# Verify that what was compiled actually works.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1d20b5f |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
# Hack - either enable SCTP AUTH chunks in kernel or disable sctp for check
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
(sysctl net.sctp.addip_enable=1 && sysctl net.sctp.auth_enable=1) || \
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
(echo 'Failed to enable SCTP AUTH chunks, disabling SCTP for tests...' &&
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
sed '/"msan" => "default",/a\ \ "sctp" => "default",' configdata.pm > configdata.pm.new && \
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
touch -r configdata.pm configdata.pm.new && \
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
mv -f configdata.pm.new configdata.pm)
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# We must revert patch4 before tests otherwise they will fail
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
patch -p1 -R < %{PATCH4}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1d20b5f |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
dcd0fb1 |
OPENSSL_ENABLE_MD5_VERIFY=
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
dcd0fb1 |
export OPENSSL_ENABLE_MD5_VERIFY
|
|
Clemens Lang |
0967bb5 |
%if 0%{?rhel}
|
|
Clemens Lang |
0967bb5 |
OPENSSL_ENABLE_SHA1_SIGNATURES=
|
|
Clemens Lang |
0967bb5 |
export OPENSSL_ENABLE_SHA1_SIGNATURES
|
|
Clemens Lang |
0967bb5 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
OPENSSL_SYSTEM_CIPHERS_OVERRIDE=xyz_nonexistent_file
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
export OPENSSL_SYSTEM_CIPHERS_OVERRIDE
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
make test HARNESS_JOBS=8
|
|
cvsdist |
e21e184 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
1d20b5f |
# Add generation of HMAC checksum of the final stripped library
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
#%define __spec_install_post \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# %{?__debug_package:%{__debug_install_post}} \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# %{__arch_install_post} \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# %{__os_install_post} \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# crypto/fips/fips_standalone_hmac $RPM_BUILD_ROOT%{_libdir}/libcrypto.so.%{version} >$RPM_BUILD_ROOT%{_libdir}/.libcrypto.so.%{version}.hmac \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# ln -sf .libcrypto.so.%{version}.hmac $RPM_BUILD_ROOT%{_libdir}/.libcrypto.so.%{soversion}.hmac \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# crypto/fips/fips_standalone_hmac $RPM_BUILD_ROOT%{_libdir}/libssl.so.%{version} >$RPM_BUILD_ROOT%{_libdir}/.libssl.so.%{version}.hmac \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# ln -sf .libssl.so.%{version}.hmac $RPM_BUILD_ROOT%{_libdir}/.libssl.so.%{soversion}.hmac \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
#%{nil}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
79f559a |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%define __provides_exclude_from %{_libdir}/openssl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
|
|
cvsdist |
e21e184 |
%install
|
|
cvsdist |
e21e184 |
[ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT
|
|
cvsdist |
e21e184 |
# Install OpenSSL.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
f20f5f4 |
install -d $RPM_BUILD_ROOT{%{_bindir},%{_includedir},%{_libdir},%{_mandir},%{_libdir}/openssl,%{_pkgdocdir}}
|
|
![](https://seccdn.libravatar.org/avatar/80291f53aa3d70b7d101ab9ebd5fc0f1120995d1343f3c99cff2a6bcdab33e7d?s=16&d=retro) |
a75e581 |
%make_install
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
58f96a7 |
rename so.%{soversion} so.%{version} $RPM_BUILD_ROOT%{_libdir}/*.so.%{soversion}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
58f96a7 |
for lib in $RPM_BUILD_ROOT%{_libdir}/*.so.%{version} ; do
|
|
cvsdist |
107c5de |
chmod 755 ${lib}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
58f96a7 |
ln -s -f `basename ${lib}` $RPM_BUILD_ROOT%{_libdir}/`basename ${lib} .%{version}`
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
58f96a7 |
ln -s -f `basename ${lib}` $RPM_BUILD_ROOT%{_libdir}/`basename ${lib} .%{version}`.%{soversion}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
3bdf494 |
done
|
|
cvsdist |
e21e184 |
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Remove static libraries
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
for lib in $RPM_BUILD_ROOT%{_libdir}/*.a ; do
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
rm -f ${lib}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
done
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
|
|
cvsdist |
107c5de |
# Install a makefile for generating keys and self-signed certs, and a script
|
|
cvsdist |
107c5de |
# for generating them on the fly.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
79f559a |
mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/certs
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
f20f5f4 |
install -m644 %{SOURCE2} $RPM_BUILD_ROOT%{_pkgdocdir}/Makefile.certificate
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
install -m755 %{SOURCE6} $RPM_BUILD_ROOT%{_bindir}/make-dummy-cert
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
install -m755 %{SOURCE7} $RPM_BUILD_ROOT%{_bindir}/renew-dummy-cert
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
# Move runable perl scripts to bindir
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
mv $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/misc/*.pl $RPM_BUILD_ROOT%{_bindir}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
mv $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/misc/tsget $RPM_BUILD_ROOT%{_bindir}
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
0d16b0b |
# Rename man pages so that they don't conflict with other system man pages.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6f11ea3 |
pushd $RPM_BUILD_ROOT%{_mandir}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
mv man5/config.5ossl man5/openssl.cnf.5
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
6f11ea3 |
popd
|
|
cvsdist |
e21e184 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
290d51e |
mkdir -m755 $RPM_BUILD_ROOT%{_sysconfdir}/pki/CA
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
79f559a |
mkdir -m700 $RPM_BUILD_ROOT%{_sysconfdir}/pki/CA/private
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
290d51e |
mkdir -m755 $RPM_BUILD_ROOT%{_sysconfdir}/pki/CA/certs
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
290d51e |
mkdir -m755 $RPM_BUILD_ROOT%{_sysconfdir}/pki/CA/crl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
290d51e |
mkdir -m755 $RPM_BUILD_ROOT%{_sysconfdir}/pki/CA/newcerts
|
|
cvsdist |
0cfdac5 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
# Ensure the config file timestamps are identical across builds to avoid
|
|
![](https://seccdn.libravatar.org/avatar/f564676db5b026375871ea16d034be575fd80ecefd43609d78770bf97852405f?s=16&d=retro) |
acba378 |
# mulitlib conflicts and unnecessary renames on upgrade
|
|
![](https://seccdn.libravatar.org/avatar/f564676db5b026375871ea16d034be575fd80ecefd43609d78770bf97852405f?s=16&d=retro) |
acba378 |
touch -r %{SOURCE2} $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/openssl.cnf
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
touch -r %{SOURCE2} $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/ct_log_list.cnf
|
|
![](https://seccdn.libravatar.org/avatar/f564676db5b026375871ea16d034be575fd80ecefd43609d78770bf97852405f?s=16&d=retro) |
acba378 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
rm -f $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/openssl.cnf.dist
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
rm -f $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/ct_log_list.cnf.dist
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%ifarch i686
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
rm -f $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/fipsmodule.cnf
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
|
|
cvsdist |
c7b9ffb |
# Determine which arch opensslconf.h is going to try to #include.
|
|
cvsdist |
c7b9ffb |
basearch=%{_arch}
|
|
cvsdist |
c7b9ffb |
%ifarch %{ix86}
|
|
cvsdist |
c7b9ffb |
basearch=i386
|
|
cvsdist |
c7b9ffb |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
%ifarch sparcv9
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
basearch=sparc
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
%ifarch sparc64
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
basearch=sparc64
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
3bbf540 |
%endif
|
|
cvsdist |
c7b9ffb |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
8574fb5 |
# Next step of gradual disablement of SSL3.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
8574fb5 |
# Make SSL3 disappear to newly built dependencies.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
8574fb5 |
sed -i '/^\#ifndef OPENSSL_NO_SSL_TRACE/i\
|
|
![](https://seccdn.libravatar.org/avatar/da3993ad9cc468876a3870c7acb6152e9f41e03b5593d3714f9c291cf99ce8c4?s=16&d=retro) |
3bfe874 |
#ifndef OPENSSL_NO_SSL3\
|
|
![](https://seccdn.libravatar.org/avatar/da3993ad9cc468876a3870c7acb6152e9f41e03b5593d3714f9c291cf99ce8c4?s=16&d=retro) |
3bfe874 |
# define OPENSSL_NO_SSL3\
|
|
![](https://seccdn.libravatar.org/avatar/da3993ad9cc468876a3870c7acb6152e9f41e03b5593d3714f9c291cf99ce8c4?s=16&d=retro) |
3bfe874 |
#endif' $RPM_BUILD_ROOT/%{_prefix}/include/openssl/opensslconf.h
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
8574fb5 |
|
|
cvsdist |
b966cc9 |
%ifarch %{multilib_arches}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
# Do an configuration.h switcheroo to avoid file conflicts on systems where you
|
|
cvsdist |
b966cc9 |
# can have both a 32- and 64-bit version of the library, and they each need
|
|
cvsdist |
b966cc9 |
# their own correct-but-different versions of opensslconf.h to be usable.
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
4d4d77e |
install -m644 %{SOURCE10} \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
$RPM_BUILD_ROOT/%{_prefix}/include/openssl/configuration-${basearch}.h
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
cat $RPM_BUILD_ROOT/%{_prefix}/include/openssl/configuration.h >> \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
$RPM_BUILD_ROOT/%{_prefix}/include/openssl/configuration-${basearch}.h
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
4d4d77e |
install -m644 %{SOURCE9} \
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
$RPM_BUILD_ROOT/%{_prefix}/include/openssl/configuration.h
|
|
cvsdist |
b966cc9 |
%endif
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
632ff53 |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
2d6ef07 |
%files
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
6c0bfa0 |
%{!?_licensedir:%global license %%doc}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%license LICENSE.txt
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%doc NEWS.md README.md
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_bindir}/make-dummy-cert
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_bindir}/renew-dummy-cert
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_bindir}/openssl
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_mandir}/man1/*
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_mandir}/man5/*
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_mandir}/man7/*
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
f20f5f4 |
%{_pkgdocdir}/Makefile.certificate
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%exclude %{_mandir}/man1/*.pl*
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%exclude %{_mandir}/man1/tsget*
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
79f559a |
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%files libs
|
|
![](https://seccdn.libravatar.org/avatar/6bc20550c752ba849c045db39b646a1cf4359ecaade6d9cca60b8421d81bd73e?s=16&d=retro) |
6c0bfa0 |
%{!?_licensedir:%global license %%doc}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%license LICENSE.txt
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%dir %{_sysconfdir}/pki/tls
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%dir %{_sysconfdir}/pki/tls/certs
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%dir %{_sysconfdir}/pki/tls/misc
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
00c4986 |
%dir %{_sysconfdir}/pki/tls/private
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
79f559a |
%config(noreplace) %{_sysconfdir}/pki/tls/openssl.cnf
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
9189f03 |
%config(noreplace) %{_sysconfdir}/pki/tls/ct_log_list.cnf
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
c2e3151 |
%attr(0755,root,root) %{_libdir}/libcrypto.so.%{version}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_libdir}/libcrypto.so.%{soversion}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
3bdf494 |
%attr(0755,root,root) %{_libdir}/libssl.so.%{version}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_libdir}/libssl.so.%{soversion}
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%attr(0755,root,root) %{_libdir}/engines-%{soversion}
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%attr(0755,root,root) %{_libdir}/ossl-modules
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%ifnarch i686
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%config(noreplace) %{_sysconfdir}/pki/tls/fipsmodule.cnf
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%endif
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
e21e184 |
%files devel
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%doc CHANGES.md doc/dir-locals.example.el doc/openssl-c-indent.el
|
|
cvsdist |
e21e184 |
%{_prefix}/include/openssl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_libdir}/*.so
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_mandir}/man3/*
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_libdir}/pkgconfig/*.pc
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
e21e184 |
%files perl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_bindir}/c_rehash
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_bindir}/*.pl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%{_bindir}/tsget
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_mandir}/man1/*.pl*
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
%{_mandir}/man1/tsget*
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%dir %{_sysconfdir}/pki/CA
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%dir %{_sysconfdir}/pki/CA/private
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%dir %{_sysconfdir}/pki/CA/certs
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%dir %{_sysconfdir}/pki/CA/crl
|
|
![](https://seccdn.libravatar.org/avatar/dedd662cd18533e6b346ba9fced85f9b3e4c6ff8041e69506ad783477abed011?s=16&d=retro) |
510bcc2 |
%dir %{_sysconfdir}/pki/CA/newcerts
|
|
cvsdist |
e21e184 |
|
|
![](https://seccdn.libravatar.org/avatar/522f0859d72d8d86c8d610f3d46a8d3efe6fd2fe35ddd2512e51a8506ba62906?s=16&d=retro) |
5ee2302 |
%ldconfig_scriptlets libs
|
|
cvsdist |
e21e184 |
|
|
cvsdist |
e21e184 |
%changelog
|
|
![](https://seccdn.libravatar.org/avatar/66cca4ddfe914918eb13788577f8ad64d709ccf9f83b384b49228bb9a83a1533?s=16&d=retro) |
d1b1996 |
* Fri Jul 22 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.0.5-2
|
|
![](https://seccdn.libravatar.org/avatar/66cca4ddfe914918eb13788577f8ad64d709ccf9f83b384b49228bb9a83a1533?s=16&d=retro) |
d1b1996 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
|
|
![](https://seccdn.libravatar.org/avatar/66cca4ddfe914918eb13788577f8ad64d709ccf9f83b384b49228bb9a83a1533?s=16&d=retro) |
d1b1996 |
|
|
Clemens Lang |
3290897 |
* Tue Jul 05 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.5-1
|
|
Clemens Lang |
3290897 |
- Rebase to upstream version 3.0.5
|
|
Clemens Lang |
3290897 |
Related: rhbz#2099972, CVE-2022-2097
|
|
Clemens Lang |
3290897 |
|
|
Dmitry Belyavskiy |
8a03afa |
* Wed Jun 01 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.3-1
|
|
Dmitry Belyavskiy |
8a03afa |
- Rebase to upstream version 3.0.3
|
|
Dmitry Belyavskiy |
8a03afa |
|
|
Dmitry Belyavskiy |
8a03afa |
* Thu Apr 28 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-5
|
|
Dmitry Belyavskiy |
8a03afa |
- Instrument with USDT probes related to SHA-1 deprecation
|
|
Dmitry Belyavskiy |
8a03afa |
|
|
Clemens Lang |
efdb8c6 |
* Wed Apr 27 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-4
|
|
Clemens Lang |
efdb8c6 |
- Support rsa_pkcs1_md5_sha1 in TLS 1.0/1.1 with rh-allow-sha1-signatures = yes
|
|
Clemens Lang |
efdb8c6 |
to restore TLS 1.0 and 1.1 support in LEGACY crypto-policy.
|
|
Clemens Lang |
efdb8c6 |
Related: rhbz#2069239
|
|
Clemens Lang |
efdb8c6 |
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
* Tue Apr 26 2022 Alexander Sosedkin <asosedkin@redhat.com> - 1:3.0.2-4
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
- Instrument with USDT probes related to SHA-1 deprecation
|
|
![](https://seccdn.libravatar.org/avatar/1d1ec0af076583f19ae04ab22bbec47bd3961c300f27e5f5d1f154ed13ebbd13?s=16&d=retro) |
8f08128 |
|
|
Clemens Lang |
0967bb5 |
* Wed Apr 20 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-3
|
|
Clemens Lang |
0967bb5 |
- Disable SHA-1 by default in ELN using the patches from CentOS
|
|
Clemens Lang |
0eaa001 |
- Fix a FIXME in the openssl.cnf(5) manpage
|
|
Clemens Lang |
0967bb5 |
|
|
Clemens Lang |
432cfa2 |
* Thu Apr 07 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-2
|
|
Clemens Lang |
82a6212 |
- Silence a few rpmlint false positives.
|
|
Clemens Lang |
82a6212 |
|
|
Clemens Lang |
82a6212 |
* Thu Apr 07 2022 Clemens Lang <cllang@redhat.com> - 1:3.0.2-2
|
|
Clemens Lang |
432cfa2 |
- Allow disabling SHA1 signature creation and verification.
|
|
Clemens Lang |
432cfa2 |
Set rh-allow-sha1-signatures = no to disable.
|
|
Clemens Lang |
432cfa2 |
Allow SHA1 in TLS in SECLEVEL 1 if rh-allow-sha1-signatures = yes. This will
|
|
Clemens Lang |
432cfa2 |
support SHA1 in TLS in the LEGACY crypto-policy.
|
|
Clemens Lang |
432cfa2 |
Resolves: rhbz#2070977
|
|
Clemens Lang |
432cfa2 |
Related: rhbz#2031742, rhbz#2062640
|
|
Clemens Lang |
432cfa2 |
|
|
Dmitry Belyavskiy |
a0bd929 |
* Fri Mar 18 2022 Dmitry Belyavskiy <dbelyavs@redhat.com> - 1:3.0.2-1
|
|
Dmitry Belyavskiy |
a0bd929 |
- Rebase to upstream version 3.0.2
|
|
Dmitry Belyavskiy |
a0bd929 |
|
|
![](https://seccdn.libravatar.org/avatar/66cca4ddfe914918eb13788577f8ad64d709ccf9f83b384b49228bb9a83a1533?s=16&d=retro) |
b9f33d7 |
* Thu Jan 20 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.0.0-2
|
|
![](https://seccdn.libravatar.org/avatar/66cca4ddfe914918eb13788577f8ad64d709ccf9f83b384b49228bb9a83a1533?s=16&d=retro) |
b9f33d7 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
|
|
![](https://seccdn.libravatar.org/avatar/66cca4ddfe914918eb13788577f8ad64d709ccf9f83b384b49228bb9a83a1533?s=16&d=retro) |
b9f33d7 |
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
* Thu Sep 09 2021 Sahana Prasad <sahana@redhat.com> - 1:3.0.0-1
|
|
![](https://seccdn.libravatar.org/avatar/c46e6fdf0c8a369644e33f885fbffb7dbdd60ec90bb7bd848f8473686a66fc15?s=16&d=retro) |
347681c |
- Rebase to upstream version 3.0.0
|