1 --- openssl-0.9.7e.orig/apps/CA.pl
2 +++ openssl-0.9.7e/apps/CA.pl
7 # CA - wrapper around ca to make it easier to use ... basically ca requires
8 # some setup stuff to be done before you can use it and this makes
9 --- openssl-0.9.7e.orig/apps/der_chop.in
10 +++ openssl-0.9.7e/apps/der_chop.in
12 -#!/usr/local/bin/perl
15 # der_chop ... this is one total hack that Eric is really not proud of
16 # so don't look at it and don't ask for support
17 --- openssl-0.9.7e.orig/apps/progs.h
18 +++ openssl-0.9.7e/apps/progs.h
20 extern int smime_main(int argc,char *argv[]);
21 extern int rand_main(int argc,char *argv[]);
22 extern int prime_main(int argc,char *argv[]);
23 -#ifndef OPENSSL_NO_ENGINE
24 extern int engine_main(int argc,char *argv[]);
26 extern int ocsp_main(int argc,char *argv[]);
28 #define FUNC_TYPE_GENERAL 1
30 #if !defined(OPENSSL_NO_SOCK) && !(defined(OPENSSL_NO_SSL2) && defined(OPENSSL_NO_SSL3))
31 {FUNC_TYPE_GENERAL,"s_client",s_client_main},
33 -#ifndef OPENSSL_NO_SPEED
34 {FUNC_TYPE_GENERAL,"speed",speed_main},
36 #if !defined(OPENSSL_NO_SOCK) && !(defined(OPENSSL_NO_SSL2) && defined(OPENSSL_NO_SSL3))
37 {FUNC_TYPE_GENERAL,"s_time",s_time_main},
40 {FUNC_TYPE_GENERAL,"smime",smime_main},
41 {FUNC_TYPE_GENERAL,"rand",rand_main},
42 {FUNC_TYPE_GENERAL,"prime",prime_main},
43 -#ifndef OPENSSL_NO_ENGINE
44 {FUNC_TYPE_GENERAL,"engine",engine_main},
46 {FUNC_TYPE_GENERAL,"ocsp",ocsp_main},
47 #ifndef OPENSSL_NO_MD2
48 {FUNC_TYPE_MD,"md2",dgst_main},
49 --- openssl-0.9.7e.orig/config
50 +++ openssl-0.9.7e/config
52 echo "${MACHINE}-whatever-linux1"; exit 0
56 - echo "hurd-x86"; exit 0;
58 + echo "${MACHINE}-gnuish"; exit 0;
62 --- openssl-0.9.7e.orig/Configure
63 +++ openssl-0.9.7e/Configure
66 +#!/usr/local/bin/perl
67 eval 'exec perl -S $0 ${1+"$@"}'
68 if $running_under_some_shell;
71 # assembler versions -- currently defunct:
72 ##"OpenBSD-alpha","gcc:-DTERMIOS -O3 -fomit-frame-pointer:::(unknown):SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2:${alpha_asm}",
74 +# Debian GNU/* (various architectures)
75 +"debian-alpha","gcc:-DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
76 +"debian-alpha-ev4","gcc:-DTERMIO -O3 -mcpu=ev4 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
77 +"debian-alpha-ev5","gcc:-DTERMIO -O3 -mcpu=ev5 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
78 +"debian-arm","gcc:-DL_ENDIAN -DTERMIO -O2 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
79 +#"debian-amd64","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
80 +"debian-amd64", "gcc:-m64 -DL_ENDIAN -DTERMIO -O3 -Wall -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK RC4_CHAR BF_PTR2 DES_INT DES_UNROLL:asm/x86_64-gcc.o:::::::::dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
81 +#"debian-freebsd-alpha","gcc:-DTERMIOS -O -fomit-frame-pointer::(unknown):::SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_PTR DES_RISC2::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
82 +#"debian-freebsd-i386", "gcc:-DTERMIOS -DL_ENDIAN -fomit-frame-pointer -O3 -m486 -Wall::-pthread -D_REENTRANT -D_THREAD_SAFE -D_THREADSAFE:::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
83 +"debian-freebsd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
84 +"debian-hppa","gcc:-DB_ENDIAN -DTERMIO -O2 -Wall::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
85 +"debian-hurd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
86 +"debian-ia64","gcc:-DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK RC4_CHAR:asm/ia64.o:::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
87 +#"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC",
88 +"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
89 +"debian-i386-i486","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i486 -mcpu=i486 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
90 +"debian-i386-i586","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i586 -mcpu=i586 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
91 +"debian-i386-i686/cmov","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i686 -mcpu=i686 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
92 +"debian-m68k","gcc:-DB_ENDIAN -DTERMIO -O2 -Wall::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
93 +"debian-mips", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
94 +"debian-mipsel", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
95 +"debian-netbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
96 +"debian-netbsd-m68k", "gcc:-DB_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -Wall::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
97 +"debian-netbsd-sparc", "gcc:-DB_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -mv8 -Wall::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
98 +"debian-openbsd-alpha","gcc:-DTERMIOS -O3 -fomit-frame-pointer::(unknown):::SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
99 +"debian-openbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_out_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
100 +"debian-openbsd-mips","gcc:-O2 -DL_ENDIAN::(unknown)::BN_LLONG MD2_CHAR RC4_INDEX RC4_CHAR DES_UNROLL DES_RISC2 DES_PTR BF_PTR:::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
101 +"debian-powerpc","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_UNROLL DES_RISC2 DES_PTR MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
102 +"debian-powerpc64","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_UNROLL DES_RISC2 DES_PTR MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
103 +"debian-s390","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
104 +"debian-sh3", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
105 +"debian-sh4", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
106 +"debian-sh3eb", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
107 +"debian-sh4eb", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
108 +"debian-sparc","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
109 +"debian-sparc-v8","gcc:-DB_ENDIAN -DTERMIO -O3 -mcpu=v8 -fomit-frame-pointer -Wall -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:asm/sparcv8.o:::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
110 +"debian-sparc-v9","gcc:-DB_ENDIAN -DTERMIO -O3 -mcpu=v9 -Wa,-Av8plus -fomit-frame-pointer -Wall -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:asm/sparcv8plus.o:::asm/md5-sparcv8plus.o::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
111 # The intel boxes :-), It would be worth seeing if bsdi-gcc can use the
112 # bn86-elf.o file file since it is hand tweaked assembler.
113 "linux-elf", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
114 @@ -1297,7 +1334,8 @@
115 elsif ($shared_extension ne "" && $shared_extension =~ /^\.s([ol])\.[^\.]*\.[^\.]*$/)
118 - s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/;
119 +# s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/;
120 + s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp/;
122 elsif ($shared_extension ne "" && $shared_extension =~ /^\.[^\.]*\.[^\.]*\.dylib$/)
124 --- openssl-0.9.7e.orig/crypto/asn1/charmap.pl
125 +++ openssl-0.9.7e/crypto/asn1/charmap.pl
127 -#!/usr/local/bin/perl -w
128 +#!/usr/local/bin/perl
132 --- openssl-0.9.7e.orig/crypto/md5/asm/md5-sparcv9.S
133 +++ openssl-0.9.7e/crypto/md5/asm/md5-sparcv9.S
137 #if defined(MD5_BLOCK_DATA_ORDER)
138 -# if defined(OPENSSL_SYSNAME_ULTRASPARC)
139 +/*# if defined(OPENSSL_SYSNAME_ULTRASPARC)*/
141 # define X(i) [%i1+i*4]%asi
142 # define md5_block md5_block_asm_data_order_aligned
143 # define ASI_PRIMARY_LITTLE 0x88
146 # error "MD5_BLOCK_DATA_ORDER is supported only on UltraSPARC!"
151 # define X(i) [%i1+i*4]
152 --- openssl-0.9.7e.orig/crypto/opensslconf.h
153 +++ openssl-0.9.7e/crypto/opensslconf.h
155 /* OpenSSL was configured with the following options: */
156 #ifndef OPENSSL_DOING_MAKEDEPEND
158 +#ifndef OPENSSL_NO_IDEA
159 +# define OPENSSL_NO_IDEA
161 +#ifndef OPENSSL_NO_MDC2
162 +# define OPENSSL_NO_MDC2
164 +#ifndef OPENSSL_NO_RC5
165 +# define OPENSSL_NO_RC5
167 #ifndef OPENSSL_NO_KRB5
168 # define OPENSSL_NO_KRB5
171 #endif /* OPENSSL_DOING_MAKEDEPEND */
172 +#ifndef OPENSSL_THREADS
173 +# define OPENSSL_THREADS
176 /* The OPENSSL_NO_* macros are also defined as NO_* if the application
177 asks for it. This is a transient feature that is provided for those
178 who haven't had the time to do the appropriate changes in their
180 #ifdef OPENSSL_ALGORITHM_DEFINES
181 +# if defined(OPENSSL_NO_IDEA) && !defined(NO_IDEA)
184 +# if defined(OPENSSL_NO_MDC2) && !defined(NO_MDC2)
187 +# if defined(OPENSSL_NO_RC5) && !defined(NO_RC5)
190 # if defined(OPENSSL_NO_KRB5) && !defined(NO_KRB5)
195 #if !(defined(VMS) || defined(__VMS)) /* VMS uses logical names instead */
196 #if defined(HEADER_CRYPTLIB_H) && !defined(OPENSSLDIR)
197 -#define OPENSSLDIR "/usr/local/ssl"
198 +#define OPENSSLDIR "/usr/lib/ssl"
204 #if defined(HEADER_BN_H) && !defined(CONFIG_HEADER_BN_H)
205 #define CONFIG_HEADER_BN_H
209 /* Should we define BN_DIV2W here? */
212 #define CONFIG_HEADER_RC4_LOCL_H
213 /* if this is defined data[i] is used instead of *data, this is a %20
219 #if defined(HEADER_BF_LOCL_H) && !defined(CONFIG_HEADER_BF_LOCL_H)
220 @@ -112,14 +133,14 @@
221 /* the following is tweaked from a config script, that is why it is a
222 * protected undef/define */
228 /* This helps C compiler generate the correct code for multiple functional
229 * units. It reduces register dependancies at the expense of 2 more
238 /* Unroll the inner loop, this sometimes helps, sometimes hinders.
239 * Very mucy CPU dependant */
245 /* These default values were supplied by
246 --- openssl-0.9.7e.orig/demos/tunala/configure.in
247 +++ openssl-0.9.7e/demos/tunala/configure.in
249 -dnl Process this file with autoconf to produce a configure script.
250 +#!/usr/local/bin/perl
252 AM_CONFIG_HEADER(config.h)
253 AM_INIT_AUTOMAKE(tunala, 0.0.1-dev)
254 --- openssl-0.9.7e.orig/doc/Makefile
255 +++ openssl-0.9.7e/doc/Makefile
259 +#PODS = $(wildcard *.pod)
260 +#MANS = $(addsuffix .man, $(basename $(PODS)))
262 +MANS = openssl.1 ssl.3 crypto.3
264 +P2M = pod2man --center='OpenSSL Documentation' --release="OpenSSL $(VERSION)"
270 +manpages: openssl.1 crypto.3 ssl.3
273 + $(P2M) --section=1 openssl.pod > openssl.1
276 + $(P2M) --section=3 crypto.pod > crypto.3
279 + $(P2M) --section=3 ssl.pod > ssl.3
283 + mkdir -p $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man1
284 + mkdir -p $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3
285 + install -m 644 -p openssl.1 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man1
286 + install -m 644 -p crypto.3 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3
287 + install -m 644 -p ssl.3 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3
297 --- openssl-0.9.7e.orig/Makefile
298 +++ openssl-0.9.7e/Makefile
300 SHLIB_VERSION_HISTORY=
308 +SHLIB_EXT=.so.$(SHLIB_MAJOR).$(SHLIB_MINOR)
309 +PLATFORM=debian-i386
310 +OPTIONS=--prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 no-krb5
311 +CONFIGURE_ARGS=--prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 debian-i386
312 +SHLIB_TARGET=linux-shared
314 # HERE indicates where this Makefile lives. This can be used to indicate
315 # where sub-Makefiles are expected to be. Currently has very limited usage,
317 # for, say, /usr/ and yet have everything installed to /tmp/somedir/usr/.
318 # Normally it is left empty.
320 -INSTALLTOP=/usr/local/ssl
323 # Do not edit this manually. Use Configure --openssldir=DIR do change this!
324 -OPENSSLDIR=/usr/local/ssl
325 +OPENSSLDIR=/usr/lib/ssl
327 # NO_IDEA - Define to build without the IDEA algorithm
328 # NO_RC4 - Define to build without the RC4 algorithm
331 # PKCS1_CHECK - pkcs1 tests.
336 #CFLAG= -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall -Wuninitialized -DSHA1_ASM -DMD5_ASM -DRMD160_ASM
337 -CFLAG= -DOPENSSL_NO_KRB5 -O
339 +CFLAG= -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_KRB5 -DOPENSSL_NO_IDEA -DOPENSSL_NO_MDC2 -DOPENSSL_NO_RC5 -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall
340 +DEPFLAG= -DOPENSSL_NO_IDEA -DOPENSSL_NO_MDC2 -DOPENSSL_NO_RC5
350 TARFLAGS= --no-recursion
351 -MAKEDEPPROG=makedepend
354 # We let the C compiler driver to take care of .s files. This is done in
355 # order to be excused from maintaining a separate set of architecture
356 @@ -177,13 +178,13 @@
357 # we might set SHLIB_MARK to '$(SHARED_LIBS)'.
360 -DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps test tools
361 +DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps doc tools
362 SHLIBDIRS= fips crypto ssl
364 # dirs in crypto to build
366 - md2 md4 md5 sha mdc2 hmac ripemd \
367 - des rc2 rc4 rc5 idea bf cast \
368 + md2 md4 md5 sha hmac ripemd \
369 + des rc2 rc4 bf cast \
370 bn ec rsa dsa dh dso engine aes \
371 buffer bio stack lhash rand err \
372 evp asn1 pem x509 x509v3 conf txt_db pkcs7 pkcs12 comp ocsp ui krb5
373 @@ -196,10 +197,10 @@
377 -MANDIR=$(OPENSSLDIR)/man
378 +MANDIR=/usr/share/man
387 SHARED_CRYPTO=libcrypto$(SHLIB_EXT)
388 SHARED_SSL=libssl$(SHLIB_EXT)
390 -SHARED_LIBS_LINK_EXTS=
391 +SHARED_LIBS_LINK_EXTS=.so
397 if [ -f "$$i" ]; then \
398 ( echo installing $$i; \
399 - cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
400 + cp -d $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
401 if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \
404 --- openssl-0.9.7e.orig/Makefile.org
405 +++ openssl-0.9.7e/Makefile.org
408 # PKCS1_CHECK - pkcs1 tests.
412 #CFLAG= -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall -Wuninitialized -DSHA1_ASM -DMD5_ASM -DRMD160_ASM
413 CFLAG= -DTERMIOS -DL_ENDIAN -fomit-frame-pointer -O3 -m486 -Wall -DSHA1_ASM -DMD5_ASM -DRMD160_ASM
415 # we might set SHLIB_MARK to '$(SHARED_LIBS)'.
418 -DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps test tools
419 +DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps doc tools
420 SHLIBDIRS= fips crypto ssl
422 # dirs in crypto to build
423 @@ -194,10 +195,10 @@
427 -MANDIR=$(OPENSSLDIR)/man
428 +MANDIR=/usr/share/man
438 if [ -f "$$i" ]; then \
439 ( echo installing $$i; \
440 - cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
441 + cp -d $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
442 if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \
445 --- openssl-0.9.7e.orig/os2/backwardify.pl
446 +++ openssl-0.9.7e/os2/backwardify.pl
449 +#!/usr/local/bin/perl
453 --- openssl-0.9.7e.orig/ssl/ssl_algs.c
454 +++ openssl-0.9.7e/ssl/ssl_algs.c
459 +#undef SSLeay_add_ssl_algorithms
460 +int SSLeay_add_ssl_algorithms(void)
462 + return SSL_library_init();
464 --- openssl-0.9.7e.orig/tools/c_rehash
465 +++ openssl-0.9.7e/tools/c_rehash
470 -my $dir = "/usr/local/ssl";
471 +my $dir = "/usr/lib/ssl";
473 if(defined $ENV{OPENSSL}) {
474 $openssl = $ENV{OPENSSL};
475 --- openssl-0.9.7e.orig/tools/c_rehash.in
476 +++ openssl-0.9.7e/tools/c_rehash.in
478 -#!/usr/local/bin/perl
482 # Perl c_rehash script, scan all files in a directory
483 --- openssl-0.9.7e.orig/util/clean-depend.pl
484 +++ openssl-0.9.7e/util/clean-depend.pl
486 -#!/usr/local/bin/perl -w
487 +#!/usr/local/bin/perl
488 # Clean the dependency list in a makefile of standard includes...
489 # Written by Ben Laurie <ben@algroup.co.uk> 19 Jan 1999
491 --- openssl-0.9.7e.orig/util/extract-names.pl
492 +++ openssl-0.9.7e/util/extract-names.pl
495 +#!/usr/local/bin/perl
497 $/ = ""; # Eat a paragraph at once.
499 --- openssl-0.9.7e.orig/util/mkdef.pl
500 +++ openssl-0.9.7e/util/mkdef.pl
502 -#!/usr/local/bin/perl -w
503 +#!/usr/local/bin/perl
505 # generate a .def file
507 --- openssl-0.9.7e.orig/util/mkerr.pl
508 +++ openssl-0.9.7e/util/mkerr.pl
510 -#!/usr/local/bin/perl -w
511 +#!/usr/local/bin/perl
513 my $config = "crypto/err/openssl.ec";
515 --- openssl-0.9.7e.orig/util/mkstack.pl
516 +++ openssl-0.9.7e/util/mkstack.pl
518 -#!/usr/local/bin/perl -w
519 +#!/usr/local/bin/perl
521 # This is a utility that searches out "DECLARE_STACK_OF()"
522 # declarations in .h and .c files, and updates/creates/replaces
523 --- openssl-0.9.7e.orig/util/pod2man.pl
524 +++ openssl-0.9.7e/util/pod2man.pl
526 -: #!/usr/bin/perl-5.005
527 +#!/usr/local/bin/perl
528 eval 'exec /usr/bin/perl -S $0 ${1+"$@"}'
529 if $running_under_some_shell;
531 --- openssl-0.9.7e.orig/util/selftest.pl
532 +++ openssl-0.9.7e/util/selftest.pl
534 -#!/usr/local/bin/perl -w
535 +#!/usr/local/bin/perl
537 # Run the test suite and generate a report
539 --- openssl-0.9.7e.orig/VMS/VMSify-conf.pl
540 +++ openssl-0.9.7e/VMS/VMSify-conf.pl
543 +#!/usr/local/bin/perl
547 --- openssl-0.9.7e.orig/debian/README.debian
548 +++ openssl-0.9.7e/debian/README.debian
551 +----------------------
553 +openssl replaces ssleay.
555 +The application links to openssl like req, ca, verify and s_client
558 +Instead of `<application>` please call now `openssl <application>`
561 +instead of `req` please call `openssl req`
563 +NOTE: The libssl library version for debian-i386 is optimized for
564 +486-processors and better. It will not run on 386-processors.
567 +Self-signed certs and webservers:
569 +If you get with a selfsigned certificate and a webserver:
570 + > "The certificate is not approved for the attempted operation."
572 +Bodo_Moeller@public.uni-hamburg.de (Bodo Moeller) writes:
573 +>Probably you are using a CA certificate for your server; if you use
574 +>"openssl req" to generate a new key and self-signed certificate with
575 +>the default openssl.cnf, the certificate you get includes certain
576 +>X.509v3 extensions that make it unfit for use as a server certificate.
577 +>This was not so with earlier versions of the software because back
578 +>then there was far less X.509v3 support.
580 +>To look at the certificate some HTTPS server presents to its cliens,
581 +>use "openssl s_client -port 443 -host your.server", store the output
582 +>(at least the part from "-----BEGIN CERTIFICATE-----" up to "-----END
583 +>CERTIFICATE-----", including these separators) in a file and use
584 +>"openssl x509 -in the_file_you_just_stored -text" to look at it in
585 +>readable form. If it has in the "X509v3 extensions section" any of
586 +>the following entries, it is not usable as a server certificate:
588 +> X509v3 Basic Constraints:
592 +> Certificate Sign, CRL Sign
594 +>To quickly create a new server key and certificate that works with
595 +>Netscape, you can just copy the original openssl.cnf file and comment
596 +>out the "x509_extensions" entry in the "[ req ]" section.
597 +>The, use "openssl req ..." as before to create a new certificate and
601 +Christoph Martin <martin@uni-mainz.de>, Wed, 31 Mar 1999 16:00:51 +0200
602 --- openssl-0.9.7e.orig/debian/changelog
603 +++ openssl-0.9.7e/debian/changelog
605 +openssl (0.9.7e-2) unstable; urgency=high
607 + * fix perl path in der_chop and c_rehash (closes: #281212)
608 + * still fixes security problem CAN-2004-0975 etc.
609 + - tempfile raise condition in der_chop
610 + - Avoid a race condition when CRLs are checked in a multi threaded
613 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 14 Nov 2004 20:16:21 +0100
615 +openssl (0.9.7e-1) unstable; urgency=high
617 + * SECURITY UPDATE: fix insecure temporary file handling
619 + - replaced $$-style creation of temporary files with
620 + File::Temp::tempfile()
621 + - removed unused temporary file name in do_certificate()
623 + CAN-2004-0975 (closes: #278260)
624 + * fix ASN1_STRING_to_UTF8 with UTF8 (closes: #260357)
625 + * New upstream release with security fixes
626 + - Avoid a race condition when CRLs are checked in a multi threaded
628 + - Various fixes to s3_pkt.c so alerts are sent properly.
629 + - Reduce the chances of duplicate issuer name and serial numbers (in
630 + violation of RFC3280) using the OpenSSL certificate creation
632 + * depends openssl on perl-base instead of perl (closes: #280225)
633 + * support powerpc64 in Configure (closes: #275224)
634 + * include cs translation (closes: #273517)
635 + * include nl translation (closes: #272479)
636 + * Fix default dir of c_rehash (closes: #253126)
638 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 12 Nov 2004 14:11:15 +0100
640 +openssl (0.9.7d-5) unstable; urgency=low
642 + * Make S/MIME encrypt work again (backport from CVS) (closes: #241407,
645 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 26 Jul 2004 17:22:42 +0200
647 +openssl (0.9.7d-4) unstable; urgency=low
649 + * add Catalan translation (closes: #248749)
650 + * add Spanish translation (closes: #254561)
651 + * include NMU fixes: see below
652 + * decrease optimisation level for debian-arm to work around gcc bug
653 + (closes: #253848) (thanks to Steve Langasek and Thom May)
654 + * Add libcrypto0.9.7-udeb. (closes: #250010) (thanks to Bastian Blank)
657 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 14 Jul 2004 14:31:02 +0200
659 +openssl (0.9.7d-3) unstable; urgency=low
661 + * rename -pic.a libraries to _pic.a (closes: #250016)
663 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 24 May 2004 17:02:29 +0200
665 +openssl (0.9.7d-2) unstable; urgency=low
667 + * include PIC libs (libcrypto-pic.a and libssl-pic.a) to libssl-dev
668 + (closes: #246928, #243999)
669 + * add racoon to restart list (closes: #242652)
670 + * add Brazilian, Japanese and Danish translations (closes: #242087,
673 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 11 May 2004 10:13:49 +0200
675 +openssl (0.9.7d-1) unstable; urgency=high
678 + * fixes security holes (http://www.openssl.org/news/secadv_20040317.txt)
680 + * includes support for debian-amd64 (closes: #235551, #232310)
681 + * fix typo in pem.pod (closes: #219873)
682 + * fix typo in libssl0.9.7.templates (closes: #224690)
683 + * openssl suggests ca-certificates (closes: #217180)
684 + * change debconf template to gettext format (closes: #219013)
685 + * include french debconf template (closes: #219014)
687 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 18 Mar 2004 16:18:43 +0100
689 +openssl (0.9.7c-5) unstable; urgency=low
691 + * include openssl.pc into libssl-dev (closes: #212545)
693 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 16 Oct 2003 16:31:32 +0200
695 +openssl (0.9.7c-4) unstable; urgency=low
697 + * change question to restart services to debconf (closes: #214840)
698 + * stop using dh_undocumented (closes: #214831)
700 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 10 Oct 2003 15:40:48 +0200
702 +openssl (0.9.7c-3) unstable; urgency=low
704 + * fix POSIX conformance for head in libssl0.9.7.postinst (closes:
707 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 8 Oct 2003 14:02:38 +0200
709 +openssl (0.9.7c-2) unstable; urgency=low
711 + * add filerc macro to libssl0.9.7.postinst (closes: #213906)
712 + * restart spamassassins spamd on upgrade (closes: #214106)
713 + * restart more services on upgrade
714 + * fix EVP_BytesToKey manpage (closes: #213715)
716 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 7 Oct 2003 15:01:32 +0200
718 +openssl (0.9.7c-1) unstable; urgency=high
720 + * upstream security fix (closes: #213451)
721 + - Fix various bugs revealed by running the NISCC test suite:
722 + Stop out of bounds reads in the ASN1 code when presented with
723 + invalid tags (CAN-2003-0543 and CAN-2003-0544).
724 + Free up ASN1_TYPE correctly if ANY type is invalid (CAN-2003-0545).
725 + If verify callback ignores invalid public key errors don't try to check
726 + certificate signature with the NULL public key.
727 + - In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate
728 + if the server requested one: as stated in TLS 1.0 and SSL 3.0
730 + * more minor upstream bugfixes
731 + * fix formatting in c_issuer (closes: #190026)
732 + * fix Debian-FreeBSD support (closes: #200381)
733 + * restart some services in postinst to make them use the new libraries
734 + * remove duplicated openssl.1, crypto.3 and ssl.3 (closes: #198594)
736 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 1 Oct 2003 08:54:27 +0200
738 +openssl (0.9.7b-2) unstable; urgency=high
740 + * fix permission of /etc/ssl/private to 700 again
741 + * change section of libssl-dev to libdevel
743 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 23 Apr 2003 11:13:24 +0200
745 +openssl (0.9.7b-1) unstable; urgency=high
747 + * upstream security fix
748 + - Countermeasure against the Klima-Pokorny-Rosa extension of
749 + Bleichbacher's attack on PKCS #1 v1.5 padding: treat
750 + a protocol version number mismatch like a decryption error
751 + in ssl3_get_client_key_exchange (ssl/s3_srvr.c). (CAN-2003-0131)
753 + - Turn on RSA blinding by default in the default implementation
754 + to avoid a timing attack. Applications that don't want it can call
755 + RSA_blinding_off() or use the new flag RSA_FLAG_NO_BLINDING.
756 + They would be ill-advised to do so in most cases. (CAN-2003-0147)
757 + - Change RSA blinding code so that it works when the PRNG is not
758 + seeded (in this case, the secret RSA exponent is abused as
759 + an unpredictable seed -- if it is not unpredictable, there
760 + is no point in blinding anyway). Make RSA blinding thread-safe
761 + by remembering the creator's thread ID in rsa->blinding and
762 + having all other threads use local one-time blinding factors
763 + (this requires more computation than sharing rsa->blinding, but
764 + avoids excessive locking; and if an RSA object is not shared
765 + between threads, blinding will still be very fast).
766 + for more details see the CHANGES file
768 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 16 Apr 2003 10:32:57 +0200
770 +openssl (0.9.7a-1) unstable; urgency=high
772 + * upstream Security fix
773 + - In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked
774 + via timing by performing a MAC computation even if incorrrect
775 + block cipher padding has been found. This is a countermeasure
776 + against active attacks where the attacker has to distinguish
777 + between bad padding and a MAC verification error. (CAN-2003-0078)
778 + for more details see the CHANGES file
780 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 21 Feb 2003 22:39:40 +0100
782 +openssl (0.9.7-4) unstable; urgency=low
784 + * use DH_COMPAT=3 to build
785 + * move i686 to i686/cmov to fix problems on Via C3. For that to work we
786 + have to depend on the newest libc6 on i386 (closes: #177891)
787 + * fix bug in ui_util.c (closes: #177615)
788 + * fix typo in md5.h (closes: #178112)
790 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 24 Jan 2003 10:22:56 +0100
792 +openssl (0.9.7-3) unstable; urgency=low
794 + * enable build of ultrasparc code on non ultrasparc machines (closes:
797 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 17 Jan 2003 08:22:13 +0100
799 +openssl (0.9.7-2) unstable; urgency=low
801 + * include changes between 0.9.6g-9 and -10
802 + * fix problem in build-process on i386 with libc6 version number
804 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 13 Jan 2003 14:26:56 +0100
806 +openssl (0.9.7-1) unstable; urgency=low
809 + * includes engine support
810 + * a lot of bugfixes and enhancements, see the CHANGES file
811 + * include AES encryption
812 + * makes preview of certificate configurable (closes: #176059)
813 + * fix x509 manpage (closes: #168070)
814 + * fix declaration of ERR_load_PEM_string in pem.h (closes: #141360)
816 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 11 Jan 2003 09:12:16 +0100
818 +openssl (0.9.6g-10) unstable; urgency=low
820 + * fix problem in build-process on i386 with libc6 version number
823 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 4 Nov 2002 12:27:21 +0100
825 +openssl (0.9.6g-9) unstable; urgency=low
827 + * fix typo in i386 libc6 depend (sigh) (closes: #163848)
829 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 8 Oct 2002 23:29:20 +0200
831 +openssl (0.9.6g-8) unstable; urgency=low
833 + * fix libc6 depends. Only needed for i386 (closes: #163701)
834 + * remove SHLIB section for bsds from Configure (closes: #163585)
836 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 8 Oct 2002 10:57:35 +0200
838 +openssl (0.9.6g-7) unstable; urgency=low
840 + * enable i686 optimisation and depend on fixed glibc (closes: #163500)
841 + * remove transition package ssleay
842 + * include optimisation vor sparcv8 (closes: #139996)
843 + * improve optimisation vor sparcv9
845 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 6 Oct 2002 14:07:12 +0200
847 +openssl (0.9.6g-6) unstable; urgency=low
849 + * temporarily disable i686 optimisation (See bug in glibc #161788)
851 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 21 Sep 2002 18:56:49 +0200
853 +openssl (0.9.6g-5) unstable; urgency=low
855 + * i486 can use i586 assembler
856 + * include set -xe in the for loops in the rules files to make it abort
857 + on error (closes: #161768)
859 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 21 Sep 2002 16:23:11 +0200
861 +openssl (0.9.6g-4) unstable; urgency=low
863 + * fix optimization for alpha and sparc
864 + * add optimization for i486
866 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 20 Sep 2002 22:36:19 +0200
868 +openssl (0.9.6g-3) unstable; urgency=low
870 + * add optimized libraries for i586, i686, ev4, ev5 and v9 (closes: #139783)
872 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 19 Sep 2002 18:33:04 +0200
874 +openssl (0.9.6g-2) unstable; urgency=low
876 + * fix manpage names (closes: #156717, #156718, #156719, #156721)
878 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 15 Aug 2002 11:26:37 +0200
880 +openssl (0.9.6g-1) unstable; urgency=low
882 + * new upstream version
883 + * Use proper error handling instead of 'assertions' in buffer
884 + overflow checks added in 0.9.6e. This prevents DoS (the
885 + assertions could call abort()). (closes: #155985, #156495)
886 + * Fix ASN1 checks. Check for overflow by comparing with LONG_MAX
887 + and get fix the header length calculation.
888 + * include support for new sh* architectures (closes: #155117)
890 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 14 Aug 2002 13:59:22 +0200
892 +openssl (0.9.6e-1) unstable; urgency=high
894 + * fixes remote exploits (see DSA-136-1)
896 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 30 Jul 2002 18:32:28 +0200
898 +openssl (0.9.6d-1) unstable; urgency=low
900 + * new upstream (minor) version
901 + * includes Configure lines for debian-*bsd-* (closes: #130413)
902 + * fix wrong prototype for BN_pseudo_rand_range in BN_rand(3ssl) (closes:
904 + * fix typos in package description (closes: #141469)
905 + * fix typo in SSL_CTX_set_cert_store manpage (closes: #135297)
907 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 3 Jun 2002 19:42:10 +0200
909 +openssl (0.9.6c-2) unstable; urgency=low
911 + * moved from non-US to main
913 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 19 Mar 2002 14:48:39 +0100
915 +openssl (0.9.6c-1) unstable; urgency=low
917 + * new upstream version with a lot of bugfixes
918 + * remove directory /usr/include/openssl from openssl package (closes:
920 + * remove selfdepends from libssl0.9.6
921 + * link openssl binary shared again
923 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 5 Jan 2002 19:04:31 +0100
925 +openssl (0.9.6b-4) unstable; urgency=low
927 + * build with -D_REENTRANT for threads support on all architectures
928 + (closes: #112329, #119239)
930 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 24 Nov 2001 12:17:51 +0100
932 +openssl (0.9.6b-3) unstable; urgency=low
934 + * disable idea, mdc2 and rc5 because they are not free (closes: #65368)
935 + * ready to be moved from nonus to main
937 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 21 Nov 2001 17:51:41 +0100
939 +openssl (0.9.6b-2) unstable; urgency=high
941 + * fix definition of crypt in des.h (closes: #107533)
942 + * fix descriptions (closes: #109503)
944 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 17 Sep 2001 15:38:27 +0200
946 +openssl (0.9.6b-1) unstable; urgency=medium
948 + * new upstream fixes some security issues (closes: #105835, #100146)
949 + * added support for s390 (closes: #105681)
950 + * added support for sh (closes: #100003)
951 + * change priority of libssl096 to standard as ssh depends on it (closes:
953 + * don't optimize for i486 to support i386. (closes: #104127, #82194)
955 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 20 Jul 2001 15:52:42 +0200
957 +openssl (0.9.6a-3) unstable; urgency=medium
959 + * add perl-base to builddeps
960 + * include static libraries in libssl-dev (closes: #93688)
962 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 14 May 2001 20:16:06 +0200
964 +openssl (0.9.6a-2) unstable; urgency=medium
966 + * change Architecture of ssleay from any to all (closes: #92913)
967 + * depend libssl-dev on the exact same version of libssl0.9.6 (closes:
969 + * remove lib{crypto,ssl}.a from openssl (closes: #93666)
970 + * rebuild with newer gcc to fix atexit problem (closes: #94036)
972 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 2 May 2001 12:28:39 +0200
974 +openssl (0.9.6a-1) unstable; urgency=medium
976 + * new upstream, fixes some security bugs (closes: #90584)
977 + * fix typo in s_server manpage (closes: #89756)
979 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 10 Apr 2001 12:13:11 +0200
981 +openssl (0.9.6-2) unstable; urgency=low
983 + * policy: reorganisation of package names: libssl096 -> libssl0.9.6,
984 + libssl096-dev -> libssl-dev (closes: #83426)
985 + * libssl0.9.6 drops replaces libssl09 (Closes: #83425)
986 + * install upstream CHANGES files (Closes: #83430)
987 + * added support for hppa and ia64 (Closes: #88790)
988 + * move man3 manpages to libssl-dev (Closes: #87546)
989 + * fix formating problem in rand_add(1) (Closes: #87547)
990 + * remove manpage duplicates (Closes: #87545, #74986)
991 + * make package descriptions clearer (Closes: #83518, #83444)
992 + * increase default emailAddress_max from 40 to 60 (Closes: #67238)
993 + * removed RSAREF warning (Closes: #84122)
995 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 8 Mar 2001 14:24:00 +0100
997 +openssl (0.9.6-1) unstable; urgency=low
999 + * New upstream version (Thanks to Enrique Zanardi <ezanard@debian.org>)
1001 + * Add support for debian-hurd (closes: #76032)
1003 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 13 Nov 2000 22:30:46 +0100
1005 +openssl (0.9.5a-5) unstable; urgency=low
1007 + * move manpages in standard directories with section ssl (closes:
1010 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 5 Oct 2000 19:56:20 +0200
1012 +openssl (0.9.5a-4) unstable; urgency=low
1014 + * include edg_rand_bytes patch from and for apache-ssl
1016 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 23 Sep 2000 16:48:06 +0200
1018 +openssl (0.9.5a-3) unstable; urgency=low
1020 + * fix call to dh_makeshlibs to create correct shlibs file and make
1021 + dependend programs link correctly (closes: Bug#61658)
1022 + * include a note in README.debian concerning the location of the
1023 + subcommand manpages (closes: Bug#69809)
1025 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 16 Sep 2000 19:10:50 +0200
1027 +openssl (0.9.5a-2) unstable; urgency=low
1029 + * try to fix the sharedlib problem. change soname of library
1030 + (closes: Bug#4622, #66102, #66538, #66123)
1032 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 12 Jul 2000 03:26:30 +0200
1034 +openssl (0.9.5a-1) unstable; urgency=low
1036 + * new upstream version (major changes see file NEWS) (closes: Bug#63976,
1038 + * new library package libssl095a because of probably changed library
1039 + interface (closes: Bug#46222)
1040 + * added architecture mips and mipsel (closes: Bug#62437, #60366)
1041 + * provide shlibs.local file in build to help build if libraries are not
1042 + yet installed (closes: Bug#63984)
1044 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 11 Jun 2000 15:17:35 +0200
1046 +openssl (0.9.4-5) frozen unstable; urgency=medium
1048 + * cleanup of move of doc directories to /usr/share/doc (closes:
1050 + * lintian issues (closes: Bug#49358)
1051 + * move demos from openssl to libssl09-dev (closes: Bug#59201)
1052 + * move to debhelpers
1054 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 11 Mar 2000 10:38:04 +0100
1056 +openssl (0.9.4-4) unstable; urgency=medium
1058 + * Added 'debian-arm' in 'Configure'. (closes: Bug#54251, #54766)
1059 + * Fixed Configure for 'debian-m68k' (closes: Bug#53636)
1061 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 15 Jan 2000 13:16:18 +0100
1063 +openssl (0.9.4-3) unstable; urgency=low
1065 + * define symbol SSLeay_add_ssl_algorithms for backward compatibility
1066 + (closes: Bug#46882)
1067 + * remove manpages from /usr/doc/openssl (closes: Bug#46791)
1069 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 14 Oct 1999 16:51:08 +0200
1071 +openssl (0.9.4-2) unstable; urgency=low
1073 + * include some more docu in pod format (Bug #43933)
1074 + * removed -mv8 from sparc flags (Bug #44769)
1076 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 14 Sep 1999 22:04:06 +0200
1078 +openssl (0.9.4-1) unstable; urgency=low
1080 + * new upstream version (Closes: #42926)
1082 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 28 Aug 1999 17:04:23 +0200
1084 +openssl (0.9.3a-1) unstable; urgency=low
1086 + * new upstream version (Bug #38345, #38627)
1087 + * sparc is big-endian (Bug #39973)
1089 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 7 Jul 1999 16:03:37 +0200
1091 +openssl (0.9.2b-3) unstable; urgency=low
1093 + * correct move conffiles to /etc/ssl (Bug #38570)
1095 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 31 May 1999 21:08:07 +0200
1097 +openssl (0.9.2b-2) unstable; urgency=low
1099 + * added convenience package ssleay to help upgrade to openssl (Bug
1100 + #37185, #37623, #36326)
1101 + * added some missing dependencies from libssl09 (Bug #36681, #35867,
1103 + * move lib*.so to libssl09-dev (Bug #36761)
1104 + * corrected version numbers of library files
1105 + * introduce link from /usr/lib/ssl to /etc/ssl (Bug #36710)
1107 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 23 May 1999 14:57:48 +0200
1109 +openssl (0.9.2b-1) unstable; urgency=medium
1111 + * First openssl version
1113 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 31 Mar 1999 15:54:26 +0200
1115 +ssleay (0.9.0b-2) unstable; urgency=low
1117 + * Include message about the (not)usage of RSAREF (#24409)
1118 + * Move configfiles from /usr/lib/ssl to /etc/ssl (#26406)
1119 + * Change definitions for sparc (#26487)
1120 + * Added missing dependency (#28591)
1121 + * Make debian/libtool executable (#29708)
1122 + * /etc/ssl/lib/ssleay.cnf is now a confile (#32624)
1124 + -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 21 Mar 1999 19:41:04 +0100
1126 +ssleay (0.9.0b-1) unstable; urgency=low
1128 + * new upstream version (Bug #21227, #25971)
1129 + * build shared libraries with -fPIC (Bug #20027)
1130 + * support sparc architecture (Bug #28467)
1132 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 13 Oct 1998 10:20:13 +0200
1134 +ssleay (0.8.1-7) frozen unstable; urgency=high
1136 + * security fix patch to 0.8.1b (bug #24022)
1138 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 6 Jul 1998 15:42:15 +0200
1140 +ssleay (0.8.1-6) frozen unstable; urgency=low
1142 + * second try to fix bug #15235 (copyright was still missing)
1144 + -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 22 Jun 1998 08:56:27 +0200
1146 +ssleay (0.8.1-5) frozen unstable; urgency=high
1148 + * changed /dev/random to /dev/urandom (Bug #23169, #17817)
1149 + * copyright contains now the full licence (Bug #15235)
1150 + * fixed bug #19410 (md5sums-lists-nonexisting-file)
1151 + * added demos to /usr/doc (Bug #17372)
1152 + * fixed type in package description (Bug #18969)
1153 + * fixed bug in adding documentation (Bug #21463)
1154 + * added patch for support of debian-powerpc (Bug #21579)
1156 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 18 Jun 1998 23:09:13 +0200
1158 +ssleay (0.8.1-4) unstable; urgency=low
1160 + * purged dependency from libc5
1162 + -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 11 Nov 1997 15:31:50 +0100
1164 +ssleay (0.8.1-3) unstable; urgency=low
1166 + * changed packagename libssl to libssl08 to get better dependancies
1168 + -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 7 Nov 1997 14:23:17 +0100
1170 +ssleay (0.8.1-2) unstable; urgency=low
1172 + * linked shared libraries against libc6
1173 + * use /dev/random for randomseed
1175 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 5 Nov 1997 11:21:40 +0100
1177 +ssleay (0.8.1-1) unstable; urgency=low
1179 + * new upstream version
1181 + -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 16 Oct 1997 16:15:43 +0200
1183 +ssleay (0.6.6-2) unstable; urgency=low
1185 + * cleanup in diffs
1186 + * removed INSTALL from docs (bug #13205)
1187 + * split libssl and libssl-dev (but #13735)
1189 + -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 15 Oct 1997 17:38:38 +0200
1191 +ssleay (0.6.6-1) unstable; urgency=low
1193 + * New upstream version
1194 + * added shared libraries for libcrypto and libssl
1196 + -- Christoph Martin <martin@uni-mainz.de> Thu, 26 Jun 1997 19:26:14 +0200
1198 +ssleay (0.6.4-2) unstable; urgency=low
1200 + * changed doc filenames from .doc to .txt to be able to read them
1201 + over with webbrowser
1203 + -- Christoph Martin <martin@uni-mainz.de> Tue, 25 Feb 1997 14:02:53 +0100
1205 +ssleay (0.6.4-1) unstable; urgency=low
1207 + * Initial Release.
1209 + -- Christoph Martin <martin@uni-mainz.de> Fri, 22 Nov 1996 21:29:51 +0100
1210 --- openssl-0.9.7e.orig/debian/control
1211 +++ openssl-0.9.7e/debian/control
1214 +Build-Depends: debhelper (>= 4.2.0)
1217 +Maintainer: Christoph Martin <christoph.martin@uni-mainz.de>
1218 +Standards-Version: 3.6.1
1223 +Depends: ${shlibs:Depends}, ${perl:Depends}
1224 +Conflicts: ssleay (<< 0.9.2b)
1225 +Suggests: ca-certificates
1226 +Description: Secure Socket Layer (SSL) binary and related cryptographic tools
1227 + This package contains the openssl binary and related tools.
1229 + It is part of the OpenSSL implementation of SSL.
1231 + You need it to perform certain cryptographic actions like:
1232 + o Creation of RSA, DH and DSA Key Parameters
1233 + o Creation of X.509 Certificates, CSRs and CRLs
1234 + o Calculation of Message Digests
1235 + o Encryption and Decryption with Ciphers
1236 + o SSL/TLS Client and Server Tests
1237 + o Handling of S/MIME signed or encrypted Mail
1239 +Package: libssl0.9.7
1243 +Depends: ${shlibs:Depends}, ${misc:Depends}
1244 +Conflicts: ssleay (<< 0.9.2b), libssl, openssl (<< 0.9.6-2), libssl096-dev (<< 0.9.6-2)
1245 +Description: SSL shared libraries
1246 + libssl and libcrypto shared libraries needed by programs like
1247 + apache-ssl, telnet-ssl and openssh.
1249 + It is part of the OpenSSL implementation of SSL.
1251 +Package: libcrypto0.9.7-udeb
1252 +XC-Package-Type: udeb
1253 +Section: debian-installer
1256 +Depends: ${shlibs:Depends}, ${misc:Depends}
1257 +Provides: libssl0.9.7
1258 +Description: crypto shared library - udeb
1259 + libcrypto shared library.
1261 + Do not install it on a normal system.
1263 +Package: libssl-dev
1267 +Depends: libssl0.9.7 (= ${Source-Version})
1268 +Conflicts: ssleay (<< 0.9.2b), libssl08-dev, libssl09-dev, libssl095a-dev, libssl096-dev
1269 +Description: SSL development libraries, header files and documentation
1270 + libssl and libcrypt development libraries, header files and manpages
1272 + It is part of the OpenSSL implementation of SSL.
1273 --- openssl-0.9.7e.orig/debian/rules
1274 +++ openssl-0.9.7e/debian/rules
1277 +# Sample debian.rules file - for GNU Hello (1.3).
1278 +# Copyright 1994,1995 by Ian Jackson.
1279 +# I hereby give you perpetual unlimited permission to copy,
1280 +# modify and relicense this file, provided that you do not remove
1281 +# my name from the file itself. (I assert my moral right of
1282 +# paternity under the Copyright, Designs and Patents Act 1988.)
1283 +# This file may have to be extensively modified
1285 +# Modified to be a prototype for debmake by Christoph Lameter <clameter@debian.org>
1291 +# For generating the manpages
1292 +export VERSION=$(shell dpkg-parsechangelog | grep '^Version:' | sed -e 's/^.*://' -e 's/-.*//')
1294 +# The binary architeture
1295 +DEB_HOST_ARCH = $(shell dpkg-architecture -qDEB_HOST_ARCH)
1297 +CONFARGS = --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5
1298 +OPT_alpha = ev4 ev5
1299 +OPT_i386 = i486 i586 i686/cmov
1301 +ARCHOPTS = OPT_$(DEB_HOST_ARCH)
1302 +OPTS = $($(ARCHOPTS))
1303 +WANTED_LIBC_VERSION = 2.3.1-10
1307 + perl util/perlpath.pl /usr/bin
1308 +# perl util/ssldir.pl /usr/lib/ssl
1309 +# chmod +x debian/libtool
1310 + ./Configure no-shared $(CONFARGS) debian-$(DEB_HOST_ARCH)
1311 + make -f Makefile DIRS="crypto ssl" all
1312 + mv libcrypto.a libcrypto.static
1313 + mv libssl.a libssl.static
1314 + make -f Makefile DIRS="crypto ssl" clean
1315 + test -z "$(OPTS)" || for opt in $(OPTS); \
1318 + ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH)-$$opt; \
1319 + make -f Makefile DIRS="crypto ssl" all; \
1321 + mv libcrypto.so* libssl.so* $$opt/; \
1322 + make -f Makefile DIRS="crypto ssl" clean; \
1324 + ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH)
1325 + #make -f Makefile depend
1326 + ln -sf apps/openssl.pod crypto/crypto.pod ssl/ssl.pod doc/
1327 +# make -f Makefile linux-shared
1328 + make -f Makefile all
1329 +# strip apps/openssl
1330 +# make -f Makefile clean DIRS="crypto ssl"
1331 +# ./Configure --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 debian-$(DEB_HOST_ARCH)
1332 +# make -f Makefile all DIRS="crypto ssl"
1339 + perl util/perlpath.pl /usr/bin
1340 + ./Configure $(CONFARGS) debian-$(DEB_HOST_ARCH)
1341 + -make -f Makefile clean clean-shared
1342 + #-make -f Makefile dclean
1343 + perl util/perlpath.pl /usr/local/bin
1344 +# perl util/ssldir.pl /usr/local/ssl
1345 + -rm -f test/.rnd test/testkey.pem test/testreq.pem test/certCA.srl
1346 + -rm -f util/mk1mf.bak Makefile.bak `find . -name Makefile.save`
1347 + -rm -f crypto/pem/ctx_size
1348 + -rm -f `find . -name "*~"`
1349 + -rm -f `find . -name "*.orig" -o -name "*.rej"`
1350 + -rm -f certs/*.0 certs/*.1
1351 +# -rm -rf debian/tmp debian/files* core `find debian/* -type d`
1352 + -rm -rf core $(OPTS)
1354 + -rm -f libcrypto.* libssl.*
1357 +binary-indep: build
1360 +# There are no architecture-independent files to be uploaded
1361 +# generated by this package. If there were any they would be
1368 +# -rm -rf debian/tmp `find debian/* -type d`
1369 + install -d debian/tmp debian/libssl0.9.7 debian/libssl-dev debian/ssleay/usr/share/doc
1370 +# cd debian/tmp && install -d `cat ../dirs`
1371 +# cd debian/libssl09 && install -d `cat ../libssl09.dirs`
1372 +# cd debian/libssl09-dev && install -d `cat ../libssl09-dev.dirs`
1375 + make -f Makefile install INSTALL_PREFIX=`pwd`/debian/tmp
1376 + rm debian/tmp/usr/share/man/man1/openssl.1
1377 + rm debian/tmp/usr/share/man/man3/crypto.3
1378 + rm debian/tmp/usr/share/man/man3/ssl.3
1379 +# rm debian/tmp/usr/lib/libcrypto.a
1380 +# rm debian/tmp/usr/lib/libssl.a
1381 + mv debian/tmp/usr/lib/libcrypto.a debian/tmp/usr/lib/libcrypto_pic.a
1382 + mv debian/tmp/usr/lib/libssl.a debian/tmp/usr/lib/libssl_pic.a
1383 + cp -pf libcrypto.static debian/tmp/usr/lib/libcrypto.a
1384 + cp -pf libssl.static debian/tmp/usr/lib/libssl.a
1385 +# mv debian/tmp/usr/lib/ssl/bin debian/tmp/usr/bin/ssl
1386 +# (cd debian/tmp/usr/lib/ssl; ln -s /usr/bin/ssl bin)
1387 +# mv debian/tmp/usr/lib/ssl/include debian/tmp/usr/include/ssl
1388 +# (cd debian/tmp/usr/lib/ssl; ln -s /usr/include/ssl include)
1389 +# chmod -x debian/tmp/usr/lib/*.so.*
1390 +# mv debian/tmp/usr/lib/*.a debian/libssl09-dev/usr/lib/
1391 +# mv debian/tmp/usr/lib/*.so debian/libssl09-dev/usr/lib/
1392 +# mv debian/tmp/usr/lib/*.so.*.*.* debian/libssl09/usr/lib/
1393 +# mv debian/tmp/usr/lib/*.la debian/libssl09-dev/usr/lib/
1394 +# mv debian/tmp/usr/include debian/libssl09-dev/usr/
1395 + mkdir -p debian/tmp/etc/ssl
1396 + mv debian/tmp/usr/lib/ssl/{certs,openssl.cnf,private} debian/tmp/etc/ssl/
1397 + ln -s /etc/ssl/{certs,openssl.cnf,private} debian/tmp/usr/lib/ssl/
1398 + cp -pf debian/tmp/usr/lib/libcrypto.so.* debian/libcrypto0.9.7-udeb/usr/lib/
1400 + #ln -s openssl debian/ssleay/usr/share/doc/ssleay
1402 +# install -m 644 libcrypto.so.08.1 libssl.so.08.1 debian/libssl08/usr/lib/
1403 +# ln -s libssl.so.08 debian/libssl08-dev/usr/lib/libssl.so
1404 +# ln -s libcrypto.so.08 debian/libssl08-dev/usr/lib/libcrypto.so
1405 +# debian/libtool install -m 644 crypto/libcrypto.la
1406 +# debian/libtool install -m 644 ssl/libssl.la
1407 + cp -auv lib*.so* debian/tmp/usr/lib/
1408 +# cp -auv lib*.a debian/tmp/usr/lib/
1409 + for opt in $(OPTS); do set -xe; mkdir -p debian/tmp/usr/lib/$$opt; cp -auv $$opt/lib*.so* debian/tmp/usr/lib/$$opt/; done
1410 + install debian/copyright debian/libssl0.9.7/usr/share/doc/libssl0.9.7/
1411 + install debian/changelog debian/libssl0.9.7/usr/share/doc/libssl0.9.7/changelog.Debian
1412 + install debian/copyright debian/libssl-dev/usr/share/doc/libssl-dev/
1413 + install debian/changelog debian/libssl-dev/usr/share/doc/libssl-dev/changelog.Debian
1414 +# (cd debian/tmp/usr/doc/openssl/doc; for f in *.doc*; do mv "$$f" "$$(echo $$f | sed -e 's/doc/txt/')";done)
1415 +# (cd doc; for f in *; do install "$$f" ../debian/tmp/usr/share/doc/openssl/doc/"$$(echo $$f | sed -e 's/doc/txt/')";done)
1416 +# debstd -u CHANGES* LICENSE README NEWS
1417 + dh_installdocs -Nssleay CHANGES.SSLeay LICENSE README NEWS debian/README.optimization
1418 + dh_installexamples
1419 + dh_installchangelogs -Nssleay CHANGES
1422 + dh_installmanpages -popenssl
1424 +# dh_undocumented c_rehash.1
1426 +# rmdir debian/tmp/usr/lib/ssl/lib
1427 +# rmdir debian/tmp/usr/include/openssl
1428 +# rmdir debian/tmp/usr/include
1429 +# for opt in $(OPTS); do set -xe; rm -fr debian/tmp/usr/lib/$$opt; done
1432 + chmod 700 debian/openssl/etc/ssl/private
1433 + dh_fixperms -X etc/ssl/private
1436 + dh_shlibdeps -l`pwd` -Xlibssl.so
1437 + # Hack, to depend on version of libc6 which supports the i686 directory
1438 + if [ "${DEB_HOST_ARCH}" == "i386" ]; \
1440 + SHLIB=`cat debian/libssl0.9.7.substvars`; \
1441 + LIBC_VERSION=`echo $$SHLIB | sed s'/.*libc6 (>= \(.*\))/\1/'`; \
1442 + if dpkg --compare-versions ${WANTED_LIBC_VERSION} gt $$LIBC_VERSION; \
1444 + echo $$SHLIB | sed s'/libc6 (>= \(.*\))/libc6 (>= ${WANTED_LIBC_VERSION})/' > debian/libssl0.9.7.substvars; \
1448 + dh_makeshlibs -m 0.9.7
1454 +# Below here is fairly generic really
1456 +binary: binary-indep binary-arch
1459 + @echo >&2 'source and diff are obsolete - use dpkg-source -b'; false
1461 +.PHONY: binary binary-arch binary-indep clean
1462 --- openssl-0.9.7e.orig/debian/copyright
1463 +++ openssl-0.9.7e/debian/copyright
1465 +This package was debianized by Christoph Martin martin@uni-mainz.de on
1466 +Fri, 22 Nov 1996 21:29:51 +0100.
1472 + The OpenSSL toolkit stays under a dual license, i.e. both the conditions of
1473 + the OpenSSL License and the original SSLeay license apply to the toolkit.
1474 + See below for the actual license texts. Actually both licenses are BSD-style
1475 + Open Source licenses. In case of any license issues related to OpenSSL
1476 + please contact openssl-core@openssl.org.
1481 +/* ====================================================================
1482 + * Copyright (c) 1998-1999 The OpenSSL Project. All rights reserved.
1484 + * Redistribution and use in source and binary forms, with or without
1485 + * modification, are permitted provided that the following conditions
1488 + * 1. Redistributions of source code must retain the above copyright
1489 + * notice, this list of conditions and the following disclaimer.
1491 + * 2. Redistributions in binary form must reproduce the above copyright
1492 + * notice, this list of conditions and the following disclaimer in
1493 + * the documentation and/or other materials provided with the
1496 + * 3. All advertising materials mentioning features or use of this
1497 + * software must display the following acknowledgment:
1498 + * "This product includes software developed by the OpenSSL Project
1499 + * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
1501 + * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
1502 + * endorse or promote products derived from this software without
1503 + * prior written permission. For written permission, please contact
1504 + * openssl-core@openssl.org.
1506 + * 5. Products derived from this software may not be called "OpenSSL"
1507 + * nor may "OpenSSL" appear in their names without prior written
1508 + * permission of the OpenSSL Project.
1510 + * 6. Redistributions of any form whatsoever must retain the following
1512 + * "This product includes software developed by the OpenSSL Project
1513 + * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
1515 + * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
1516 + * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1517 + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
1518 + * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
1519 + * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
1520 + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
1521 + * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
1522 + * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1523 + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
1524 + * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
1525 + * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
1526 + * OF THE POSSIBILITY OF SUCH DAMAGE.
1527 + * ====================================================================
1529 + * This product includes cryptographic software written by Eric Young
1530 + * (eay@cryptsoft.com). This product includes software written by Tim
1531 + * Hudson (tjh@cryptsoft.com).
1535 + Original SSLeay License
1536 + -----------------------
1538 +/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
1539 + * All rights reserved.
1541 + * This package is an SSL implementation written
1542 + * by Eric Young (eay@cryptsoft.com).
1543 + * The implementation was written so as to conform with Netscapes SSL.
1545 + * This library is free for commercial and non-commercial use as long as
1546 + * the following conditions are aheared to. The following conditions
1547 + * apply to all code found in this distribution, be it the RC4, RSA,
1548 + * lhash, DES, etc., code; not just the SSL code. The SSL documentation
1549 + * included with this distribution is covered by the same copyright terms
1550 + * except that the holder is Tim Hudson (tjh@cryptsoft.com).
1552 + * Copyright remains Eric Young's, and as such any Copyright notices in
1553 + * the code are not to be removed.
1554 + * If this package is used in a product, Eric Young should be given attribution
1555 + * as the author of the parts of the library used.
1556 + * This can be in the form of a textual message at program startup or
1557 + * in documentation (online or textual) provided with the package.
1559 + * Redistribution and use in source and binary forms, with or without
1560 + * modification, are permitted provided that the following conditions
1562 + * 1. Redistributions of source code must retain the copyright
1563 + * notice, this list of conditions and the following disclaimer.
1564 + * 2. Redistributions in binary form must reproduce the above copyright
1565 + * notice, this list of conditions and the following disclaimer in the
1566 + * documentation and/or other materials provided with the distribution.
1567 + * 3. All advertising materials mentioning features or use of this software
1568 + * must display the following acknowledgement:
1569 + * "This product includes cryptographic software written by
1570 + * Eric Young (eay@cryptsoft.com)"
1571 + * The word 'cryptographic' can be left out if the rouines from the library
1572 + * being used are not cryptographic related :-).
1573 + * 4. If you include any Windows specific code (or a derivative thereof) from
1574 + * the apps directory (application code) you must include an acknowledgement:
1575 + * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
1577 + * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
1578 + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1579 + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1580 + * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
1581 + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1582 + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1583 + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1584 + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1585 + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1586 + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1589 + * The licence and distribution terms for any publically available version or
1590 + * derivative of this code cannot be changed. i.e. this code cannot simply be
1591 + * copied and put under another distribution licence
1592 + * [including the GNU Public Licence.]
1595 --- openssl-0.9.7e.orig/debian/libssl-dev.docs
1596 +++ openssl-0.9.7e/debian/libssl-dev.docs
1599 --- openssl-0.9.7e.orig/debian/libssl0.9.7.prerm
1600 +++ openssl-0.9.7e/debian/libssl0.9.7.prerm
1605 --- openssl-0.9.7e.orig/debian/libssl0.9.7.files
1606 +++ openssl-0.9.7e/debian/libssl0.9.7.files
1609 +usr/lib/*/*.so.*.*.*
1610 +usr/lib/i686/cmov/*.so.*.*.*
1611 --- openssl-0.9.7e.orig/debian/openssl.prerm
1612 +++ openssl-0.9.7e/debian/openssl.prerm
1617 --- openssl-0.9.7e.orig/debian/ssleay.postinst
1618 +++ openssl-0.9.7e/debian/ssleay.postinst
1622 + if [ "$1" = "configure" ]; then
1623 + if [ -d /usr/doc -a ! -e /usr/doc/ssleay -a -d /usr/share/doc/ssleay ]; then
1624 + ln -sf ../share/doc/ssleay /usr/doc/ssleay
1629 --- openssl-0.9.7e.orig/debian/ssleay.prerm
1630 +++ openssl-0.9.7e/debian/ssleay.prerm
1634 + if [ \( "$1" = "upgrade" -o "$1" = "remove" \) -a -L /usr/doc/ssleay ]; then
1635 + rm -f /usr/doc/ssleay
1639 --- openssl-0.9.7e.orig/debian/libssl-dev.postinst
1640 +++ openssl-0.9.7e/debian/libssl-dev.postinst
1645 --- openssl-0.9.7e.orig/debian/libssl-dev.files
1646 +++ openssl-0.9.7e/debian/libssl-dev.files
1649 +usr/lib/libcrypto.so
1651 +usr/lib/libcrypto.a
1652 +usr/lib/libssl_pic.a
1653 +usr/lib/libcrypto_pic.a
1654 +usr/lib/pkgconfig/openssl.pc
1657 --- openssl-0.9.7e.orig/debian/libssl-dev.dirs
1658 +++ openssl-0.9.7e/debian/libssl-dev.dirs
1661 +usr/share/doc/libssl-dev
1663 --- openssl-0.9.7e.orig/debian/libssl-dev.prerm
1664 +++ openssl-0.9.7e/debian/libssl-dev.prerm
1669 --- openssl-0.9.7e.orig/debian/shlibs.local
1670 +++ openssl-0.9.7e/debian/shlibs.local
1672 +libcrypto 0.9.7 libssl0.9.7
1673 +libssl 0.9.7 libssl0.9.7
1674 --- openssl-0.9.7e.orig/debian/README.optimization
1675 +++ openssl-0.9.7e/debian/README.optimization
1677 +openssl ships optimized libraries for some cpus. The loading of these
1678 +libraries depends on the ability of the dynamic linker to automaticly
1679 +search additional directories depending on the cpu. If you want to
1680 +find out which are these directories for your computer, run the
1683 +LD_LIBRARY_PATH=/usr/lib strace true 2>&1 | fgrep "open(\"/usr/lib"
1685 +On a Pentium III this gives:
1687 +open("/usr/lib/i686/mmx/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1688 +open("/usr/lib/i686/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1689 +open("/usr/lib/mmx/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1690 +open("/usr/lib/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1692 +Following is a list of cpus, library paths and possible optimizations:
1694 +486 /usr/lib/i486 -march=i486 -mcpu=i486 +asm
1695 +Pentium /usr/lib/i586 -march=i586 -mcpu=i586 +asm
1696 +Pentium MMX /usr/lib/i586 -march=i586 -mcpu=i586 +asm
1697 +Pentium II /usr/lib/i686 -march=i686 -mcpu=i686 +asm
1698 +Pentium III /usr/lib/i686 -march=i686 -mcpu=i686 +asm
1699 +AMD-K6 /usr/lib/i586 -march=i586 -mcpu=i586 +asm
1700 +AMD-K7 /usr/lib/i686 -march=i686 -mcpu=i686 +asm
1702 +Sparc v8 /usr/lib/v8 -mcpu=v8 +asm
1703 +Sparc v9 /usr/lib/v9 -mcpu=v9 -Wa,-Av8plus +asm
1705 +Alpha EV4 /usr/lib/ev4 -mcpu=ev4
1706 +Alpha EV5 /usr/lib/ev5 -mcpu=ev5
1708 ++asm means that the handcrafted 586 assembler routines can be used.
1709 --- openssl-0.9.7e.orig/debian/openssl.preinst
1710 +++ openssl-0.9.7e/debian/openssl.preinst
1716 + echo Removing obsolete link /etc/ssl
1719 +if [ ! -d /etc/ssl ]
1721 + echo Creating directory /etc/ssl
1724 +if [ -d /usr/lib/ssl ]
1726 + for file in lib certs private
1728 + if [ -e /usr/lib/ssl/$file -a ! -L /usr/lib/ssl/$file ]
1730 + echo Moving $file from /usr/lib/ssl to /etc/ssl
1731 + cp -av /usr/lib/ssl/$file /etc/ssl || true
1732 + rm -fr /usr/lib/ssl/$file
1736 +if [ -L /usr/lib/ssl ]
1738 + echo Removeing obsolete link /usr/lib/ssl
1741 +if [ -e /etc/ssl/lib/openssl.cnf ]
1743 + echo Moving openssl.cnf
1744 + mv /etc/ssl/lib/openssl.cnf /etc/ssl/
1748 --- openssl-0.9.7e.orig/debian/libssl0.9.7.dirs
1749 +++ openssl-0.9.7e/debian/libssl0.9.7.dirs
1752 +usr/share/doc/libssl0.9.7
1753 --- openssl-0.9.7e.orig/debian/libssl0.9.7.postinst
1754 +++ openssl-0.9.7e/debian/libssl0.9.7.postinst
1758 +. /usr/share/debconf/confmodule
1762 + echo $(basename $0 .postinst)
1765 +# element() is a helper function for file-rc:
1767 + local element list IFS
1771 + [ "$2" = "in" ] && shift
1773 + [ "$list" = "-" ] && return 1
1774 + [ "$list" = "*" ] && return 0
1779 + "$1"|"$2"|"$3"|"$4"|"$5"|"$6"|"$7"|"$8"|"$9")
1785 +# filerc (runlevel, service) returns /etc/init.d/service, if service is
1786 +# running in $runlevel:
1788 + local runlevel basename
1798 + SORT_NO="$1"; STOP="$2"; START="$3"; CMD="$4"
1799 + [ "$CMD" = "/etc/init.d/$basename" ] || continue
1801 + if element "$runlevel" in "$START" || element "S" in "$START"
1803 + echo "/etc/init.d/$basename"
1806 + done < /etc/runlevel.conf
1810 +if [ "$1" = "configure" ]
1812 + if [ ! -z $2 ]; then
1813 + if dpkg --compare-versions $2 lt 0.9.7d-1; then
1814 + echo -n "Checking for services that may need to be restarted..."
1816 + check="sendmail ssh"
1817 + check="$check apache2-common ssh-nonfree exim4"
1818 + check="$check apache-ssl libapache-mod-ssl openvpn spamassassin"
1819 + check="$check courier-imap-ssl courier-mta-ssl courier-pop-ssl"
1820 + check="$check postfix-tls cyrus21-imapd cyrus21-pop3d"
1821 + check="$check postgresql racoon"
1822 + # Only get the ones that are installed, and configured
1823 + check=$(dpkg -s $check 2> /dev/null | sed '/^$/{N;/^\n$/D;}' | awk 'BEGIN{RS="\n\n";FS="\n"}{if ( $2 ~ /Status: .* installed$/ ) { print $1 } }' | cut -f 2 -d ' ')
1824 + # apache2 ships its init script in apache2-common, but the
1825 + # script is apache2
1826 + check=$(echo $check | sed 's/apache2-common/apache2/g')
1827 + # For mod-ssl apache has to be restarted
1828 + check=$(echo $check | sed 's/libapache-mod-ssl/apache/g')
1829 + rl=$(runlevel | awk '{print $2}')
1830 + for service in $check; do
1831 + if [ -f /usr/share/file-rc/rc -o -f /usr/lib/file-rc/rc ] && [ -f /etc/runlevel.conf ]; then
1832 + idl=$(filerc $rl $service)
1834 + idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1)
1836 + if [ -n "$idl" ] && [ -x $idl ]; then
1837 + services="$service $services"
1841 + if [ -n "$services" ]; then
1844 + db_reset libssl0.9.7/restart-services
1845 + db_set libssl0.9.7/restart-services "$services"
1846 + db_input critical libssl0.9.7/restart-services || true
1848 + db_get libssl0.9.7/restart-services
1849 + # Arghhh, close all the stupid debconf pipes
1852 + if [ "x$RET" != "x" ]
1860 + if [ "$answer" = yes ] && [ "$services" != "" ]; then
1861 + echo "Restarting services possibly affected by the upgrade:"
1863 + for service in $services; do
1864 + idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1)
1865 + echo -n " $service: stopping..."
1866 + $idl stop > /dev/null 2>&1 || true
1868 + echo -n "starting..."
1869 + if $idl start > /dev/null 2>&1; then
1872 + echo "FAILED! ($?)"
1873 + failed="$service $failed"
1877 + if [ -n "$failed" ]; then
1879 + echo "The following services failed to start: $failed"
1881 + echo "You will need to start these manually by running \`/etc/init.d/<service> start'"
1882 + echo "If the service still fails to start, you may need to file a bug on"
1883 + echo "$(package_name) or the service involved."
1885 + echo "Services restarted successfully."
1890 + fi # end upgrading and $2 lt 0.9.7c-1
1895 --- openssl-0.9.7e.orig/debian/openssl.postinst
1896 +++ openssl-0.9.7e/debian/openssl.postinst
1900 +if [ ! -e /usr/lib/ssl ]
1902 + echo Linking /usr/lib/ssl to /etc/ssl
1903 + ln -sf /etc/ssl /usr/lib/ssl
1907 --- openssl-0.9.7e.orig/debian/openssl.docs
1908 +++ openssl-0.9.7e/debian/openssl.docs
1911 --- openssl-0.9.7e.orig/debian/openssl.dirs
1912 +++ openssl-0.9.7e/debian/openssl.dirs
1914 +usr/share/doc/openssl/doc
1919 --- openssl-0.9.7e.orig/debian/openssl.files
1920 +++ openssl-0.9.7e/debian/openssl.files
1928 --- openssl-0.9.7e.orig/debian/libssl0.9.7.preinst
1929 +++ openssl-0.9.7e/debian/libssl0.9.7.preinst
1934 --- openssl-0.9.7e.orig/debian/libssl0.9.7.templates
1935 +++ openssl-0.9.7e/debian/libssl0.9.7.templates
1937 +Template: libssl0.9.7/restart-services
1939 +_Description: Which services should be restarted to make them use the new libraries?
1940 + Security holes were fixed with this release. Services may not use these
1941 + fixes until they are restarted. Note: restarting sshd should not affect any
1942 + existing connections.
1944 + Following is a list of detected services that need to be restarted. Please
1945 + correct the list, if you think it is incorrect. The services names must be
1946 + identical to the script names in /etc/init.d and must be separated by
1947 + spaces. If you clear the list, no services will be restarted.
1949 + If other services begin to fail mysteriously after this upgrade, it may be
1950 + necessary to restart them too. We strongly recommend you to reboot your
1951 + machine to avoid the SSL related trouble.
1952 --- openssl-0.9.7e.orig/debian/watch
1953 +++ openssl-0.9.7e/debian/watch
1956 +ftp://ftp.openssl.org/source/openssl-(([\d+\.]+|\d+)[a-z]?)\.tar\.gz debian uupdate
1957 --- openssl-0.9.7e.orig/debian/libcrypto0.9.7-udeb.dirs
1958 +++ openssl-0.9.7e/debian/libcrypto0.9.7-udeb.dirs
1961 --- openssl-0.9.7e.orig/debian/po/POTFILES.in
1962 +++ openssl-0.9.7e/debian/po/POTFILES.in
1964 +[type: gettext/rfc822deb] libssl0.9.7.templates
1965 --- openssl-0.9.7e.orig/debian/po/fr.po
1966 +++ openssl-0.9.7e/debian/po/fr.po
1969 +# Translators, if you are not familiar with the PO format, gettext
1970 +# documentation is worth reading, especially sections dedicated to
1971 +# this format, e.g. by running:
1972 +# info -n '(gettext)PO Files'
1973 +# info -n '(gettext)Header Entry'
1974 +# Some information specific to po-debconf are available at
1975 +# /usr/share/doc/po-debconf/README-trans
1976 +# or http://www.debian.org/intl/l10n/po-debconf/README-trans#
1977 +# Developers do not need to manually edit POT or PO files.
1981 +"Project-Id-Version: openssl_0.9.7c-5\n"
1982 +"Report-Msgid-Bugs-To: \n"
1983 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
1984 +"PO-Revision-Date: 2003-10-22 21:37+0200\n"
1985 +"Last-Translator: Michel Grentzinger <mic.grentz@online.fr>\n"
1986 +"Language-Team: French <debian-l10n-french@lists.debian.org>\n"
1987 +"MIME-Version: 1.0\n"
1988 +"Content-Type: text/plain; charset=ISO-8859-15\n"
1989 +"Content-Transfer-Encoding: 8bit\n"
1993 +#: ../libssl0.9.7.templates:3
1994 +msgid "Which services should be restarted to make them use the new libraries?"
1995 +msgstr "Services à redémarrer afin d'utiliser les nouvelles bibliothèques"
1999 +#: ../libssl0.9.7.templates:3
2001 +"Security holes were fixed with this release. Services may not use these "
2002 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2003 +"existing connections."
2005 +"Des failles de sécurité on été corrigées dans cette version. Les services ne "
2006 +"devraient pas utiliser ces correctifs tant qu'ils n'auront pas été "
2007 +"redémarrés. Note : le redémarrage de sshd n'affectera aucune connexion "
2012 +#: ../libssl0.9.7.templates:3
2014 +"Following is a list of detected services that need to be restarted. Please "
2015 +"correct the list, if you think it is incorrect. The services names must be "
2016 +"identical to the script names in /etc/init.d and must be separated by "
2017 +"spaces. If you clear the list, no services will be restarted."
2019 +"La liste suivante recense tous les services devant être redémarrés. Veuillez "
2020 +"corriger la liste si vous pensez qu'elle contient des erreurs. Les noms des "
2021 +"services doivent être identiques aux noms des scripts présents dans /etc/"
2022 +"init.d et doivent être séparés par des espaces. Si vous effacez la liste, "
2023 +"aucun service ne sera redémarré."
2027 +#: ../libssl0.9.7.templates:3
2029 +"If other services begin to fail mysteriously after this upgrade, it may be "
2030 +"necessary to restart them too. We strongly recommend you to reboot your "
2031 +"machine to avoid the SSL related trouble."
2033 +"Si d'autres services ne fonctionnent plus correctement après cette mise à "
2034 +"jour, il est sans doute nécessaire de les redémarrer de la même façon. Il "
2035 +"est fortement recommandé de redémarrer votre machine pour éviter les "
2036 +"problèmes liés à SSL."
2037 --- openssl-0.9.7e.orig/debian/po/templates.pot
2038 +++ openssl-0.9.7e/debian/po/templates.pot
2041 +# Translators, if you are not familiar with the PO format, gettext
2042 +# documentation is worth reading, especially sections dedicated to
2043 +# this format, e.g. by running:
2044 +# info -n '(gettext)PO Files'
2045 +# info -n '(gettext)Header Entry'
2047 +# Some information specific to po-debconf are available at
2048 +# /usr/share/doc/po-debconf/README-trans
2049 +# or http://www.debian.org/intl/l10n/po-debconf/README-trans
2051 +# Developers do not need to manually edit POT or PO files.
2056 +"Project-Id-Version: PACKAGE VERSION\n"
2057 +"Report-Msgid-Bugs-To: \n"
2058 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
2059 +"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
2060 +"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
2061 +"Language-Team: LANGUAGE <LL@li.org>\n"
2062 +"MIME-Version: 1.0\n"
2063 +"Content-Type: text/plain; charset=CHARSET\n"
2064 +"Content-Transfer-Encoding: 8bit\n"
2068 +#: ../libssl0.9.7.templates:3
2069 +msgid "Which services should be restarted to make them use the new libraries?"
2074 +#: ../libssl0.9.7.templates:3
2076 +"Security holes were fixed with this release. Services may not use these "
2077 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2078 +"existing connections."
2083 +#: ../libssl0.9.7.templates:3
2085 +"Following is a list of detected services that need to be restarted. Please "
2086 +"correct the list, if you think it is incorrect. The services names must be "
2087 +"identical to the script names in /etc/init.d and must be separated by "
2088 +"spaces. If you clear the list, no services will be restarted."
2093 +#: ../libssl0.9.7.templates:3
2095 +"If other services begin to fail mysteriously after this upgrade, it may be "
2096 +"necessary to restart them too. We strongly recommend you to reboot your "
2097 +"machine to avoid the SSL related trouble."
2099 --- openssl-0.9.7e.orig/debian/po/pt_BR.po
2100 +++ openssl-0.9.7e/debian/po/pt_BR.po
2103 +# Translators, if you are not familiar with the PO format, gettext
2104 +# documentation is worth reading, especially sections dedicated to
2105 +# this format, e.g. by running:
2106 +# info -n '(gettext)PO Files'
2107 +# info -n '(gettext)Header Entry'
2109 +# Some information specific to po-debconf are available at
2110 +# /usr/share/doc/po-debconf/README-trans
2111 +# or http://www.debian.org/intl/l10n/po-debconf/README-trans
2113 +# Developers do not need to manually edit POT or PO files.
2117 +"Project-Id-Version: openssl\n"
2118 +"Report-Msgid-Bugs-To: \n"
2119 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
2120 +"PO-Revision-Date: 2004-04-04 15:21-0300\n"
2121 +"Last-Translator: André Luís Lopes <andrelop@debian.org>\n"
2122 +"Language-Team: Debian-BR Project <debian-l10n-portuguese@lists.debian.org>\n"
2123 +"MIME-Version: 1.0\n"
2124 +"Content-Type: text/plain; charset=ISO-8859-1\n"
2125 +"Content-Transfer-Encoding: 8bit\n"
2129 +#: ../libssl0.9.7.templates:3
2130 +msgid "Which services should be restarted to make them use the new libraries?"
2131 +msgstr "Quais serviços devem ser reiniciados para utilizar novas bibliotecas ?"
2135 +#: ../libssl0.9.7.templates:3
2137 +"Security holes were fixed with this release. Services may not use these "
2138 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2139 +"existing connections."
2141 +"Falhas de segurança foram corrigidas nesta versão. Alguns serviços podem "
2142 +"não utilizar estas correções até que sejam reiniciados. Note : reiniciar "
2143 +"o sshd não afetará nenhuma conexão já estabelecida."
2147 +#: ../libssl0.9.7.templates:3
2149 +"Following is a list of detected services that need to be restarted. Please "
2150 +"correct the list, if you think it is incorrect. The services names must be "
2151 +"identical to the script names in /etc/init.d and must be separated by "
2152 +"spaces. If you clear the list, no services will be restarted."
2154 +"A seguir será exibida uma lista de serviços que foram detectados e que "
2155 +"precisam ser reiniciados. Por favor, corrija a lista caso você tenha "
2156 +"certeza que ela esteja incorreta. Os nomes dos serviços devem ser "
2157 +"idênticos aos nomes dos scripts sob o diretório /etc/init.d e devem "
2158 +"estar separados por espaços. Caso você esvazie a lista, nenhum serviço "
2163 +#: ../libssl0.9.7.templates:3
2165 +"If other services begin to fail mysteriously after this upgrade, it may be "
2166 +"necessary to restart them too. We strongly recommend you to reboot your "
2167 +"machine to avoid the SSL related trouble."
2169 +"Caso outros serviços comecem a falhar misteriosamente após esta "
2170 +"atualização, pode ser necessário reiniciá-los também. Recomendados "
2171 +"fortemente que você reinicie sua máquina para evitar problemas "
2172 +"relacionados a SSL."
2173 --- openssl-0.9.7e.orig/debian/po/ja.po
2174 +++ openssl-0.9.7e/debian/po/ja.po
2177 +# Translators, if you are not familiar with the PO format, gettext
2178 +# documentation is worth reading, especially sections dedicated to
2179 +# this format, e.g. by running:
2180 +# info -n '(gettext)PO Files'
2181 +# info -n '(gettext)Header Entry'
2183 +# Some information specific to po-debconf are available at
2184 +# /usr/share/doc/po-debconf/README-trans
2185 +# or http://www.debian.org/intl/l10n/po-debconf/README-trans
2187 +# Developers do not need to manually edit POT or PO files.
2192 +"Project-Id-Version: openssl 0.9.7d-1\n"
2193 +"Report-Msgid-Bugs-To: \n"
2194 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
2195 +"PO-Revision-Date: 2004-03-24 23:41+0900\n"
2196 +"Last-Translator: Hideki Yamane <henrich@samba.gr.jp>\n"
2197 +"Language-Team: Japanese <debian-japanese@lists.debian.org>\n"
2198 +"MIME-Version: 1.0\n"
2199 +"Content-Type: text/plain; charset=EUC-JP\n"
2200 +"Content-Transfer-Encoding: 8bit\n"
2204 +#: ../libssl0.9.7.templates:3
2205 +msgid "Which services should be restarted to make them use the new libraries?"
2206 +msgstr "¤É¤Î¥µ¡¼¥Ó¥¹¤ò¿·¤·¤¤¥é¥¤¥Ö¥é¥ê¤ò»È¤¦¤¿¤á¤ËºÆµ¯Æ°¤·¤Þ¤¹¤«?"
2210 +#: ../libssl0.9.7.templates:3
2212 +"Security holes were fixed with this release. Services may not use these "
2213 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2214 +"existing connections."
2216 +"º£²ó¤Î¥ê¥ê¡¼¥¹¤Ç¥»¥¥å¥ê¥Æ¥£¥Û¡¼¥ë¤¬½¤Àµ¤µ¤ì¤Þ¤·¤¿¡£³Æ¥µ¡¼¥Ó¥¹¤ÏºÆµ¯Æ°¤ò¹Ô¤¦"
2217 +"¤Þ¤Ç¤³¤Î½¤Àµ¤µ¤ì¤¿¥é¥¤¥Ö¥é¥ê¤òÍøÍѤ·¤Þ¤»¤ó¡£Ãí°Õ: sshd ¤ÎºÆµ¯Æ°¤Ï¸½¾õ¤ÎÀܳ¤Ë"
2218 +"¤Ï²¿¤é±Æ¶Á¤·¤Þ¤»¤ó¡£"
2222 +#: ../libssl0.9.7.templates:3
2224 +"Following is a list of detected services that need to be restarted. Please "
2225 +"correct the list, if you think it is incorrect. The services names must be "
2226 +"identical to the script names in /etc/init.d and must be separated by "
2227 +"spaces. If you clear the list, no services will be restarted."
2229 +"°Ê²¼¤¬ºÆµ¯Æ°¤¬É¬ÍפÀ¤ÈȽÃǤµ¤ì¤¿¥µ¡¼¥Ó¥¹¤Î¥ê¥¹¥È¤Ç¤¹¡£´Ö°ã¤Ã¤Æ¤¤¤ë¤È»×¤Ã¤¿¤é"
2230 +"½¤Àµ¤·¤Æ¤¯¤À¤µ¤¤¡£¥µ¡¼¥Ó¥¹Ì¾¤Ï /etc/init.d ¤Ë¤¢¤ë¥¹¥¯¥ê¥×¥È¤Î̾Á°¤ò»Ø¤·¡¢¶õÇò"
2231 +"¤Ç¶èÀÚ¤ëɬÍפ¬¤¢¤ê¤Þ¤¹¡£¥ê¥¹¥È¤¬¶õ¤Î¾ì¹ç¤Ï¡¢¥µ¡¼¥Ó¥¹¤ÎºÆµ¯Æ°¤ÏɬÍפ¢¤ê¤Þ¤»"
2236 +#: ../libssl0.9.7.templates:3
2238 +"If other services begin to fail mysteriously after this upgrade, it may be "
2239 +"necessary to restart them too. We strongly recommend you to reboot your "
2240 +"machine to avoid the SSL related trouble."
2242 +"¾¤Î¥µ¡¼¥Ó¥¹¤¬¤³¤³¤Ç¤Î¥¢¥Ã¥×¥°¥ì¡¼¥É¤Î¸å¤Ë²¿¸Î¤«¥¨¥é¡¼¤òµ¯¤³¤·»Ï¤á¤¿¾ì¹ç¡¢¤½"
2243 +"¤ì¤é¤âºÆµ¯Æ°¤¹¤ëɬÍפ¬¤¢¤ê¤Þ¤¹¡£SSL ´ØÏ¢¤Î¥È¥é¥Ö¥ë¤òÈò¤±¤ë¤¿¤á¤Ë¥Þ¥·¥ó¤òºÆµ¯"
2244 +"Æ°¤¹¤ë¤Î¤ò¶¯¤¯¤ª´«¤á¤·¤Þ¤¹¡£"
2245 --- openssl-0.9.7e.orig/debian/po/da.po
2246 +++ openssl-0.9.7e/debian/po/da.po
2248 +# translation of openssl_0.9.7d-1_templates.po to Danish
2250 +# Translators, if you are not familiar with the PO format, gettext
2251 +# documentation is worth reading, especially sections dedicated to
2252 +# this format, e.g. by running:
2253 +# info -n '(gettext)PO Files'
2254 +# info -n '(gettext)Header Entry'
2255 +# Some information specific to po-debconf are available at
2256 +# /usr/share/doc/po-debconf/README-trans
2257 +# or http://www.debian.org/intl/l10n/po-debconf/README-trans#
2258 +# Developers do not need to manually edit POT or PO files.
2259 +# Claus Hindsgaul <claus_h@image.dk>, 2004.
2263 +"Project-Id-Version: openssl_0.9.7d-1_templates\n"
2264 +"Report-Msgid-Bugs-To: \n"
2265 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
2266 +"PO-Revision-Date: 2004-04-02 16:08+0200\n"
2267 +"Last-Translator: Claus Hindsgaul <claus_h@image.dk>\n"
2268 +"Language-Team: Danish <dansk@klid.dk>\n"
2269 +"MIME-Version: 1.0\n"
2270 +"Content-Type: text/plain; charset=ISO-8859-1\n"
2271 +"Content-Transfer-Encoding: 8bit\n"
2272 +"X-Generator: KBabel 1.3.1\n"
2273 +"Plural-Forms: nplurals=2; plural=(n != 1);\n"
2277 +#: ../libssl0.9.7.templates:3
2278 +msgid "Which services should be restarted to make them use the new libraries?"
2279 +msgstr "Hvilke services skal genstartes, så de benytter de nye biblioteker?"
2283 +#: ../libssl0.9.7.templates:3
2285 +"Security holes were fixed with this release. Services may not use these "
2286 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2287 +"existing connections."
2289 +"Der lukket nogle sikkerhedshuller i denne version af openssl. Disse huller "
2290 +"bliver ikke lukket i dine services før de er blevet genstartet. Bemærk at "
2291 +"det ikke vil påvirke eksisterende forbindelser at genstarte ssh."
2295 +#: ../libssl0.9.7.templates:3
2297 +"Following is a list of detected services that need to be restarted. Please "
2298 +"correct the list, if you think it is incorrect. The services names must be "
2299 +"identical to the script names in /etc/init.d and must be separated by "
2300 +"spaces. If you clear the list, no services will be restarted."
2302 +"Herunder ser du en liste over fundne services, som bør genstartes. Ret "
2303 +"listen, hvis du mener at den ikke er korrekt. Servicenavnene skal være "
2304 +"identiske med skriptnavnene i /etc/init.d, og skal adskilles med "
2305 +"mellemrum. Hvis du sletter listen, vil ingen services blive genstartet."
2309 +#: ../libssl0.9.7.templates:3
2311 +"If other services begin to fail mysteriously after this upgrade, it may be "
2312 +"necessary to restart them too. We strongly recommend you to reboot your "
2313 +"machine to avoid the SSL related trouble."
2315 +"Hvis andre services begynder at fejle på mystisk vis efter denne opgradering, "
2316 +"kan det være nødvendigt også at genstarte disse. Vi anbefaler dig kraftigt "
2317 +"at genstarte din maskine for at undgå SSL-relaterede problemer."
2319 --- openssl-0.9.7e.orig/debian/po/ca.po
2320 +++ openssl-0.9.7e/debian/po/ca.po
2322 +# openssl (debconf) translation to Catalan.
2323 +# Copyright (C) 2004 Free Software Foundation, Inc.
2324 +# Aleix Badia i Bosch <abadia@ica.es>, 2004
2327 +"Project-Id-Version: openssl_0.9.7d-1_templates\n"
2328 +"Report-Msgid-Bugs-To: \n"
2329 +"POT-Creation-Date: 2003-07-20 11:44+0200\n"
2330 +"PO-Revision-Date: 2004-04-08 19:46GMT\n"
2331 +"Last-Translator: Aleix Badia i Bosch <abadia@ica.es>\n"
2332 +"Language-Team: Catalan <debian-l10n-catalan@lists.debian.org>\n"
2333 +"MIME-Version: 1.0\n"
2334 +"Content-Type: text/plain; charset=UTF-8\n"
2335 +"Content-Transfer-Encoding: 8bit"
2339 +#: ../libssl0.9.7.templates:3
2340 +msgid "Which services should be restarted to make them use the new libraries?"
2342 +"Quina serveis s'han de reiniciar perquè utilitzin les noves biblioteques?"
2346 +#: ../libssl0.9.7.templates:3
2348 +"Security holes were fixed with this release. Services may not use these "
2349 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2350 +"existing connections."
2352 +"Aquesta versió resol els errors de seguretat. Els serveis no utilitzaran les "
2353 +"correccions fins que no s'hagin reiniciat. Nota: reiniciant l'sshd no "
2354 +"s'afectarà cap connexió existent."
2358 +#: ../libssl0.9.7.templates:3
2360 +"Following is a list of detected services that need to be restarted. Please "
2361 +"correct the list, if you think it is incorrect. The services names must be "
2362 +"identical to the script names in /etc/init.d and must be separated by "
2363 +"spaces. If you clear the list, no services will be restarted."
2365 +"És una llista de serveis que s'ha detectat que s'haurien de reiniciar, "
2366 +"corregiu-la si és incorrecta. El nom dels serveis hauria de ser idèntic als "
2367 +"noms de les seqüències del directori /etc/init.d i haurien d'estar separats "
2368 +"per espais. Si suprimiu la llista no es reiniciarà cap servei."
2372 +#: ../libssl0.9.7.templates:3
2374 +"If other services begin to fail mysteriously after this upgrade, it may be "
2375 +"necessary to restart them too. We strongly recommend you to reboot your "
2376 +"machine to avoid the SSL related trouble."
2378 +"Si després de l'actualització d'altres serveis fallen de forma inexplicable, "
2379 +"probablement també sigui necessari reiniciar-los. Us recomanem que per "
2380 +"evitar els problemes relacionats amb l'SSL reinicieu l'ordinador."
2381 --- openssl-0.9.7e.orig/debian/po/es.po
2382 +++ openssl-0.9.7e/debian/po/es.po
2384 +# openssl translation to spanish
2385 +# Copyright (C) 2004 Software in the Public Interest
2386 +# This file is distributed under the same license as the openssl package.
2389 +# - Initial translation
2390 +# Lucas Wall <kthulhu@kadath.com.ar>, 2004
2393 +# Traductores, si no conoce el formato PO, merece la pena leer la
2394 +# documentación de gettext, especialmente las secciones dedicadas a este
2395 +# formato, por ejemplo ejecutando:
2396 +# info -n '(gettext)PO Files'
2397 +# info -n '(gettext)Header Entry'
2399 +# Equipo de traducción al español, por favor lean antes de traducir
2400 +# los siguientes documentos:
2402 +# - El proyecto de traducción de Debian al español
2403 +# http://www.debian.org/intl/spanish/coordinacion
2404 +# especialmente las notas de traducción en
2405 +# http://www.debian.org/intl/spanish/notas
2407 +# - La guía de traducción de po's de debconf:
2408 +# /usr/share/doc/po-debconf/README-trans
2409 +# o http://www.debian.org/intl/l10n/po-debconf/README-trans
2413 +"Project-Id-Version: openssl 0.9.7d-3\n"
2414 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
2415 +"PO-Revision-Date: 2004-06-12 15:23-0300\n"
2416 +"Last-Translator: Lucas Wall <kthulhu@kadath.com.ar>\n"
2417 +"Language-Team: Debian Spanish <debian-l10n-spanish@lists.debian.org>\n"
2418 +"MIME-Version: 1.0\n"
2419 +"Content-Type: text/plain; charset=ISO-8859-15\n"
2420 +"Content-Transfer-Encoding: 8bit\n"
2424 +#: ../libssl0.9.7.templates:3
2425 +msgid "Which services should be restarted to make them use the new libraries?"
2427 +"¿Qué servicios desea reiniciar para que utilicen las nuevas bibliotecas?"
2431 +#: ../libssl0.9.7.templates:3
2433 +"Security holes were fixed with this release. Services may not use these "
2434 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2435 +"existing connections."
2437 +"En esta versión se han solucionado problemas de seguridad. Los servicios "
2438 +"afectados no gozarán de los arreglos hasta que no se hayan reiniciado. Nota: "
2439 +"reiniciar el servicio «sshd» no afectará ninguna de las conexiones "
2444 +#: ../libssl0.9.7.templates:3
2446 +"Following is a list of detected services that need to be restarted. Please "
2447 +"correct the list, if you think it is incorrect. The services names must be "
2448 +"identical to the script names in /etc/init.d and must be separated by "
2449 +"spaces. If you clear the list, no services will be restarted."
2451 +"Una lista de los servicios que deben ser reiniciados se presenta a "
2452 +"continuación. Si cree que no es correcta haga los ajustes necesarios. Los "
2453 +"nombres de los servicios deben ser iguales a los nombres de los ficheros "
2454 +"en «/etc/init.d» y debe estar separados por espacios. Ningún servicio será "
2455 +"reiniciado si deja la lista en blanco."
2459 +#: ../libssl0.9.7.templates:3
2461 +"If other services begin to fail mysteriously after this upgrade, it may be "
2462 +"necessary to restart them too. We strongly recommend you to reboot your "
2463 +"machine to avoid the SSL related trouble."
2465 +"Si, tras esta actualización, otros servicios comienzan a fallar en forma "
2466 +"misteriosa puede ser necesario reiniciarlos también. Para evitar problemas "
2467 +"relacionados con «SSL» se le recomienda reiniciar su sistema."
2468 --- openssl-0.9.7e.orig/debian/po/nl.pl
2469 +++ openssl-0.9.7e/debian/po/nl.pl
2471 +#!/usr/local/bin/perl
2472 +# Translators, if you are not familiar with the PO format, gettext
2473 +# documentation is worth reading, especially sections dedicated to
2474 +# this format, e.g. by running:
2475 +# info -n '(gettext)PO Files'
2476 +# info -n '(gettext)Header Entry'
2478 +# Some information specific to po-debconf are available at
2479 +# /usr/share/doc/po-debconf/README-trans
2480 +# or http://www.debian.org/intl/l10n/po-debconf/README-trans
2482 +# Developers do not need to manually edit POT or PO files.
2486 +"Project-Id-Version: openssl 0.9.7d-5\n"
2487 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
2488 +"PO-Revision-Date: 2004-08-01 18:31+0100\n"
2489 +"Last-Translator: Luk Claes <luk.claes@ugent.be>\n"
2490 +"Language-Team: Debian l10n Dutch <debian-l10n-dutch@lists.debian.org>\n"
2491 +"MIME-Version: 1.0\n"
2492 +"Content-Type: text/plain; charset=iso-8859-1\n"
2493 +"Content-Transfer-Encoding: 8bit\n"
2497 +#: ../libssl0.9.7.templates:3
2498 +msgid "Which services should be restarted to make them use the new libraries?"
2499 +msgstr "Welke diensten moeten herstart worden om ze de nieuwe bibliotheken te laten gebruiken?"
2503 +#: ../libssl0.9.7.templates:3
2504 +msgid "Security holes were fixed with this release. Services may not use these fixes until they are restarted. Note: restarting sshd should not affect any existing connections."
2505 +msgstr "Er zijn veiligheidslekken gedicht in deze release. Diensten gebruiken deze versie misschien niet totdat ze herstart zijn. Merk op: sshd herstarten zou geen effect mogen hebben op bestaande verbindingen."
2509 +#: ../libssl0.9.7.templates:3
2510 +msgid "Following is a list of detected services that need to be restarted. Please correct the list, if you think it is incorrect. The services names must be identical to the script names in /etc/init.d and must be separated by spaces. If you clear the list, no services will be restarted."
2511 +msgstr "Hierna volgt een lijst van gedetecteerde diensten die herstart moeten worden. Verbeter de lijst, als u denkt dat ze incorrect is. De namen moeten overeenkomen met de script-namen in /etc/init.d en moeten gescheiden worden door spaties. Als u de lijst ledigt, dan zullen er geen diensten worden herstart."
2515 +#: ../libssl0.9.7.templates:3
2516 +msgid "If other services begin to fail mysteriously after this upgrade, it may be necessary to restart them too. We strongly recommend you to reboot your machine to avoid the SSL related trouble."
2517 +msgstr "Als er andere diensten mysterieus beginnen te falen na deze opwaardering, kan het nodig zijn om ze ook te herstarten. Er wordt u ten zeerste aanbevolen uw machine te herstarten om SSL-gerelateerde problemen te vermijden."
2519 --- openssl-0.9.7e.orig/debian/po/cs.po
2520 +++ openssl-0.9.7e/debian/po/cs.po
2523 +# Translators, if you are not familiar with the PO format, gettext
2524 +# documentation is worth reading, especially sections dedicated to
2525 +# this format, e.g. by running:
2526 +# info -n '(gettext)PO Files'
2527 +# info -n '(gettext)Header Entry'
2529 +# Some information specific to po-debconf are available at
2530 +# /usr/share/doc/po-debconf/README-trans
2531 +# or http://www.debian.org/intl/l10n/po-debconf/README-trans
2533 +# Developers do not need to manually edit POT or PO files.
2537 +"Project-Id-Version: openssl\n"
2538 +"Report-Msgid-Bugs-To: \n"
2539 +"POT-Creation-Date: 2004-03-22 18:34+0100\n"
2540 +"PO-Revision-Date: 2004-09-26 17:40+0200\n"
2541 +"Last-Translator: Miroslav Kure <kurem@debian.cz>\n"
2542 +"Language-Team: Czech <provoz@debian.cz>\n"
2543 +"MIME-Version: 1.0\n"
2544 +"Content-Type: text/plain; charset=ISO-8859-2\n"
2545 +"Content-Transfer-Encoding: 8bit\n"
2549 +#: ../libssl0.9.7.templates:3
2550 +msgid "Which services should be restarted to make them use the new libraries?"
2551 +msgstr "Které slu¾by se mají restartovat, aby zaèaly vyu¾ívat nové knihovny?"
2555 +#: ../libssl0.9.7.templates:3
2557 +"Security holes were fixed with this release. Services may not use these "
2558 +"fixes until they are restarted. Note: restarting sshd should not affect any "
2559 +"existing connections."
2561 +"V této verzi balíku byly opraveny bezbeènostní chyby. Tyto opravy se v "
2562 +"programech projeví a¾ po jejich restartu. Poznámka: restart sshd by nemìl "
2563 +"ovlivnit stávající spojení."
2567 +#: ../libssl0.9.7.templates:3
2569 +"Following is a list of detected services that need to be restarted. Please "
2570 +"correct the list, if you think it is incorrect. The services names must be "
2571 +"identical to the script names in /etc/init.d and must be separated by "
2572 +"spaces. If you clear the list, no services will be restarted."
2574 +"Následuje seznam rozpoznaných slu¾eb, které je tøeba restartovat. Pokud se "
2575 +"vám zdá, ¾e je tento seznam chybný, mù¾ete jej opravit. Názvy slu¾eb musí "
2576 +"být shodné s názvy skriptù v adresáøi /etc/init.d a musí být oddìleny "
2577 +"mezerami. Pokud seznam vyma¾ete, nebude restartována ¾ádná slu¾ba."
2581 +#: ../libssl0.9.7.templates:3
2583 +"If other services begin to fail mysteriously after this upgrade, it may be "
2584 +"necessary to restart them too. We strongly recommend you to reboot your "
2585 +"machine to avoid the SSL related trouble."
2587 +"Jestli¾e po této aktualizaci zaènou selhávat nìkteré slu¾by, mo¾ná bude "
2588 +"nutné je takté¾ restartovat. Abyste se vyhnuli problémùm spojených se SSL, "
2589 +"doporuèujeme restartovat celý poèítaè."