« back to all changes in this revision
Viewing changes to ssl/t1_lib.c
- Committer: Package Import Robot
- Date: 2013-05-21 16:31:47 UTC
- mfrom: (11.1.41 sid)
- Revision ID: package-import@ubuntu.com-20130521163147-96isrq0asz929zm6
* Resynchronise with Debian unstable. Remaining changes:
- debian/libssl1.0.0.postinst:
+ Display a system restart required notification on libssl1.0.0
upgrade on servers.
+ Use a different priority for libssl1.0.0/restart-services depending
on whether a desktop, or server dist-upgrade is being performed.
- debian/{libssl1.0.0-udeb.dirs, control, rules}: Create
libssl1.0.0-udeb, for the benefit of wget-udeb (no wget-udeb package
in Debian).
- debian/{libcrypto1.0.0-udeb.dirs, libssl1.0.0.dirs, libssl1.0.0.files,
rules}: Move runtime libraries to /lib, for the benefit of
wpasupplicant.
- debian/patches/perlpath-quilt.patch: Don't change perl #! paths under
.pc.
- debian/rules:
+ Don't run 'make test' when cross-building.
+ Use host compiler when cross-building. Patch from Neil Williams.
+ Don't build for processors no longer supported: i586 (on i386)
+ Fix Makefile to properly clean up libs/ dirs in clean target.
+ Replace duplicate files in the doc directory with symlinks.
- Unapply patch c_rehash-multi and comment it out in the series as it
breaks parsing of certificates with CRLF line endings and other cases
(see Debian #642314 for discussion), it also changes the semantics of
c_rehash directories by requiring applications to parse hash link
targets as files containing potentially *multiple* certificates rather
than exactly one.
- debian/patches/tls12_workarounds.patch: Workaround large client hello
issues when TLS 1.1 and lower is in use
- debian/control: Mark Debian Vcs-* as XS-Debian-Vcs-*
- debian/patches/ubuntu_deb676533_arm_asm.patch: Enable arm assembly
code.
- debian/patches/arm64-support: Add basic arm64 support (no assembler)
- debian/rules: Enable optimized 64bit elliptic curve code contributed
by Google.
* debian/patches/tls12_workarounds.patch: updated to also disable TLS 1.2
in test suite since we disable it in the client.
* Dropped changes:
- debian/patches/CVE-2013-0169.patch: upstream.
- debian/patches/fix_key_decoding_deadlock.patch: upstream.
- debian/patches/CVE-2013-0166.patch: upstream.
- debian/libssl1.0.0.postinst:
+ Display a system restart required notification on libssl1.0.0
upgrade on servers.
+ Use a different priority for libssl1.0.0/restart-services depending
on whether a desktop, or server dist-upgrade is being performed.
- debian/{libssl1.0.0-udeb.dirs, control, rules}: Create
libssl1.0.0-udeb, for the benefit of wget-udeb (no wget-udeb package
in Debian).
- debian/{libcrypto1.0.0-udeb.dirs, libssl1.0.0.dirs, libssl1.0.0.files,
rules}: Move runtime libraries to /lib, for the benefit of
wpasupplicant.
- debian/patches/perlpath-quilt.patch: Don't change perl #! paths under
.pc.
- debian/rules:
+ Don't run 'make test' when cross-building.
+ Use host compiler when cross-building. Patch from Neil Williams.
+ Don't build for processors no longer supported: i586 (on i386)
+ Fix Makefile to properly clean up libs/ dirs in clean target.
+ Replace duplicate files in the doc directory with symlinks.
- Unapply patch c_rehash-multi and comment it out in the series as it
breaks parsing of certificates with CRLF line endings and other cases
(see Debian #642314 for discussion), it also changes the semantics of
c_rehash directories by requiring applications to parse hash link
targets as files containing potentially *multiple* certificates rather
than exactly one.
- debian/patches/tls12_workarounds.patch: Workaround large client hello
issues when TLS 1.1 and lower is in use
- debian/control: Mark Debian Vcs-* as XS-Debian-Vcs-*
- debian/patches/ubuntu_deb676533_arm_asm.patch: Enable arm assembly
code.
- debian/patches/arm64-support: Add basic arm64 support (no assembler)
- debian/rules: Enable optimized 64bit elliptic curve code contributed
by Google.
* debian/patches/tls12_workarounds.patch: updated to also disable TLS 1.2
in test suite since we disable it in the client.
* Dropped changes:
- debian/patches/CVE-2013-0169.patch: upstream.
- debian/patches/fix_key_decoding_deadlock.patch: upstream.
- debian/patches/CVE-2013-0166.patch: upstream.
- files added:
- .pc/aesni-mac.patch
- .pc/aesni-mac.patch/crypto
- .pc/aesni-mac.patch/crypto/evp
- .pc/cpuid.patch
- .pc/cpuid.patch/crypto
- .pc/dtls_version.patch
- .pc/dtls_version.patch/ssl
- .pc/get_certificate.patch
- .pc/get_certificate.patch/ssl
- .pc/ssltest_no_sslv2.patch
- .pc/ssltest_no_sslv2.patch/ssl
- .pc/tls12_workarounds.patch/test
- files removed:
- .pc/CVE-2013-0166.patch
- .pc/CVE-2013-0166.patch/crypto
- .pc/CVE-2013-0166.patch/crypto/asn1
- .pc/CVE-2013-0166.patch/crypto/ocsp
- .pc/CVE-2013-0169.patch
- .pc/CVE-2013-0169.patch/crypto
- .pc/CVE-2013-0169.patch/crypto/bn
- .pc/CVE-2013-0169.patch/crypto/evp
- .pc/CVE-2013-0169.patch/crypto/rsa
- .pc/CVE-2013-0169.patch/ssl
- .pc/CVE-2013-0169.patch/test
- .pc/CVE-2013-0169.patch/util
- .pc/fix_key_decoding_deadlock.patch
- .pc/fix_key_decoding_deadlock.patch/crypto
- .pc/fix_key_decoding_deadlock.patch/crypto/asn1
- .pc/renegiotate_tls.patch
- .pc/renegiotate_tls.patch/ssl
- files modified:
- .pc/applied-patches
added
removed
ssl/t1_lib.c
