legacy package [release 1.0.2q-2mamba;Sat Dec 08 2018]
This commit is contained in:
parent
09eb739c8a
commit
335aa48cc2
@ -1,2 +1,7 @@
|
||||
# openssl102
|
||||
|
||||
The openssl certificate management tool and the shared libraries that provide various encryption and decription algorithms and protocols, including DES, RC4, RSA and SSL.
|
||||
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/).
|
||||
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
|
||||
This product includes software written by Tim Hudson (tjh@cryptsoft.com).
|
||||
|
||||
|
245
openssl-1.0.2a-version.patch
Normal file
245
openssl-1.0.2a-version.patch
Normal file
@ -0,0 +1,245 @@
|
||||
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
|
||||
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
||||
<html xmlns='http://www.w3.org/1999/xhtml' xml:lang='en' lang='en'>
|
||||
<head>
|
||||
<title>rpms/openssl.git - openssl</title>
|
||||
<meta name='generator' content='cgit v0.12'/>
|
||||
<meta name='robots' content='index, nofollow'/>
|
||||
<link rel='stylesheet' type='text/css' href='/cgit-data/cgit.css'/>
|
||||
<link rel='shortcut icon' href='/favicon.ico'/>
|
||||
<link rel='alternate' title='Atom feed' href='http://pkgs.fedoraproject.org/cgit/rpms/openssl.git/atom/openssl-1.0.2a-version.patch?h=master' type='application/atom+xml'/>
|
||||
<link rel='vcs-git' href='git://pkgs.fedoraproject.org/rpms/openssl.git' title='rpms/openssl.git Git repository'/>
|
||||
<link rel='vcs-git' href='ssh://pkgs.fedoraproject.org/rpms/openssl.git' title='rpms/openssl.git Git repository'/>
|
||||
<link rel='vcs-git' href='http://pkgs.fedoraproject.org/git/rpms/openssl.git' title='rpms/openssl.git Git repository'/>
|
||||
</head>
|
||||
<body>
|
||||
<script src="https://apps.fedoraproject.org/fedmenu/js/jquery-1.11.2.min.js"></script>
|
||||
<script src="https://apps.fedoraproject.org/fedmenu/js/fedmenu.js"></script>
|
||||
|
||||
<script>
|
||||
var base = 'https://apps.fedoraproject.org/';
|
||||
var tokens = window.location.href.split('/');
|
||||
var repo = null;
|
||||
if (tokens.length > 4 && tokens[4] != '') {
|
||||
repo = tokens[4].split('.')[0];
|
||||
}
|
||||
fedmenu({
|
||||
'url': base + 'js/data.js',
|
||||
'mimeType': 'application/javascript',
|
||||
'position': 'bottom-right',
|
||||
'package': repo,
|
||||
});
|
||||
</script>
|
||||
<div id='cgit'><table id='header'>
|
||||
<tr>
|
||||
<td class='logo' rowspan='2'><a href='/cgit/'><img src='/cgit-data/cgit.png' alt='cgit logo'/></a></td>
|
||||
<td class='main'><a href='/cgit/'>index</a> : <a title='rpms/openssl.git' href='/cgit/rpms/openssl.git/'>rpms/openssl.git</a></td><td class='form'><form method='get' action=''>
|
||||
<select name='h' onchange='this.form.submit();'>
|
||||
<option value='f10'>f10</option>
|
||||
<option value='f11'>f11</option>
|
||||
<option value='f12'>f12</option>
|
||||
<option value='f13'>f13</option>
|
||||
<option value='f14'>f14</option>
|
||||
<option value='f15'>f15</option>
|
||||
<option value='f16'>f16</option>
|
||||
<option value='f17'>f17</option>
|
||||
<option value='f18'>f18</option>
|
||||
<option value='f19'>f19</option>
|
||||
<option value='f20'>f20</option>
|
||||
<option value='f21'>f21</option>
|
||||
<option value='f22'>f22</option>
|
||||
<option value='f23'>f23</option>
|
||||
<option value='f24'>f24</option>
|
||||
<option value='f7'>f7</option>
|
||||
<option value='f8'>f8</option>
|
||||
<option value='f9'>f9</option>
|
||||
<option value='master' selected='selected'>master</option>
|
||||
</select> <input type='submit' name='' value='switch'/></form></td></tr>
|
||||
<tr><td class='sub'>openssl</td><td class='sub right'>Jesse Keating</td></tr></table>
|
||||
<table class='tabs'><tr><td>
|
||||
<a href='/cgit/rpms/openssl.git/'>summary</a><a href='/cgit/rpms/openssl.git/refs/'>refs</a><a href='/cgit/rpms/openssl.git/log/openssl-1.0.2a-version.patch'>log</a><a class='active' href='/cgit/rpms/openssl.git/tree/openssl-1.0.2a-version.patch'>tree</a><a href='/cgit/rpms/openssl.git/commit/openssl-1.0.2a-version.patch'>commit</a><a href='/cgit/rpms/openssl.git/diff/openssl-1.0.2a-version.patch'>diff</a><a href='/cgit/rpms/openssl.git/stats/openssl-1.0.2a-version.patch'>stats</a></td><td class='form'><form class='right' method='get' action='/cgit/rpms/openssl.git/log/openssl-1.0.2a-version.patch'>
|
||||
<select name='qt'>
|
||||
<option value='grep'>log msg</option>
|
||||
<option value='author'>author</option>
|
||||
<option value='committer'>committer</option>
|
||||
<option value='range'>range</option>
|
||||
</select>
|
||||
<input class='txt' type='text' size='10' name='q' value=''/>
|
||||
<input type='submit' value='search'/>
|
||||
</form>
|
||||
</td></tr></table>
|
||||
<div class='path'>path: <a href='/cgit/rpms/openssl.git/tree/'>root</a>/<a href='/cgit/rpms/openssl.git/tree/openssl-1.0.2a-version.patch'>openssl-1.0.2a-version.patch</a></div><div class='content'>blob: 25dfff51b067efd41d92d3b67c9c8fad820efff5 (<a href='/cgit/rpms/openssl.git/plain/openssl-1.0.2a-version.patch'>plain</a>)
|
||||
<table summary='blob content' class='blob'>
|
||||
<tr><td class='linenumbers'><pre><a id='n1' href='#n1'>1</a>
|
||||
<a id='n2' href='#n2'>2</a>
|
||||
<a id='n3' href='#n3'>3</a>
|
||||
<a id='n4' href='#n4'>4</a>
|
||||
<a id='n5' href='#n5'>5</a>
|
||||
<a id='n6' href='#n6'>6</a>
|
||||
<a id='n7' href='#n7'>7</a>
|
||||
<a id='n8' href='#n8'>8</a>
|
||||
<a id='n9' href='#n9'>9</a>
|
||||
<a id='n10' href='#n10'>10</a>
|
||||
<a id='n11' href='#n11'>11</a>
|
||||
<a id='n12' href='#n12'>12</a>
|
||||
<a id='n13' href='#n13'>13</a>
|
||||
<a id='n14' href='#n14'>14</a>
|
||||
<a id='n15' href='#n15'>15</a>
|
||||
<a id='n16' href='#n16'>16</a>
|
||||
<a id='n17' href='#n17'>17</a>
|
||||
<a id='n18' href='#n18'>18</a>
|
||||
<a id='n19' href='#n19'>19</a>
|
||||
<a id='n20' href='#n20'>20</a>
|
||||
<a id='n21' href='#n21'>21</a>
|
||||
<a id='n22' href='#n22'>22</a>
|
||||
<a id='n23' href='#n23'>23</a>
|
||||
<a id='n24' href='#n24'>24</a>
|
||||
<a id='n25' href='#n25'>25</a>
|
||||
<a id='n26' href='#n26'>26</a>
|
||||
<a id='n27' href='#n27'>27</a>
|
||||
<a id='n28' href='#n28'>28</a>
|
||||
<a id='n29' href='#n29'>29</a>
|
||||
<a id='n30' href='#n30'>30</a>
|
||||
<a id='n31' href='#n31'>31</a>
|
||||
<a id='n32' href='#n32'>32</a>
|
||||
<a id='n33' href='#n33'>33</a>
|
||||
<a id='n34' href='#n34'>34</a>
|
||||
<a id='n35' href='#n35'>35</a>
|
||||
<a id='n36' href='#n36'>36</a>
|
||||
<a id='n37' href='#n37'>37</a>
|
||||
<a id='n38' href='#n38'>38</a>
|
||||
<a id='n39' href='#n39'>39</a>
|
||||
<a id='n40' href='#n40'>40</a>
|
||||
<a id='n41' href='#n41'>41</a>
|
||||
<a id='n42' href='#n42'>42</a>
|
||||
<a id='n43' href='#n43'>43</a>
|
||||
<a id='n44' href='#n44'>44</a>
|
||||
<a id='n45' href='#n45'>45</a>
|
||||
<a id='n46' href='#n46'>46</a>
|
||||
<a id='n47' href='#n47'>47</a>
|
||||
<a id='n48' href='#n48'>48</a>
|
||||
<a id='n49' href='#n49'>49</a>
|
||||
<a id='n50' href='#n50'>50</a>
|
||||
<a id='n51' href='#n51'>51</a>
|
||||
<a id='n52' href='#n52'>52</a>
|
||||
<a id='n53' href='#n53'>53</a>
|
||||
<a id='n54' href='#n54'>54</a>
|
||||
<a id='n55' href='#n55'>55</a>
|
||||
<a id='n56' href='#n56'>56</a>
|
||||
<a id='n57' href='#n57'>57</a>
|
||||
<a id='n58' href='#n58'>58</a>
|
||||
<a id='n59' href='#n59'>59</a>
|
||||
<a id='n60' href='#n60'>60</a>
|
||||
<a id='n61' href='#n61'>61</a>
|
||||
<a id='n62' href='#n62'>62</a>
|
||||
<a id='n63' href='#n63'>63</a>
|
||||
<a id='n64' href='#n64'>64</a>
|
||||
<a id='n65' href='#n65'>65</a>
|
||||
<a id='n66' href='#n66'>66</a>
|
||||
<a id='n67' href='#n67'>67</a>
|
||||
<a id='n68' href='#n68'>68</a>
|
||||
<a id='n69' href='#n69'>69</a>
|
||||
<a id='n70' href='#n70'>70</a>
|
||||
<a id='n71' href='#n71'>71</a>
|
||||
<a id='n72' href='#n72'>72</a>
|
||||
<a id='n73' href='#n73'>73</a>
|
||||
<a id='n74' href='#n74'>74</a>
|
||||
<a id='n75' href='#n75'>75</a>
|
||||
<a id='n76' href='#n76'>76</a>
|
||||
<a id='n77' href='#n77'>77</a>
|
||||
<a id='n78' href='#n78'>78</a>
|
||||
<a id='n79' href='#n79'>79</a>
|
||||
<a id='n80' href='#n80'>80</a>
|
||||
<a id='n81' href='#n81'>81</a>
|
||||
<a id='n82' href='#n82'>82</a>
|
||||
<a id='n83' href='#n83'>83</a>
|
||||
</pre></td>
|
||||
<td class='lines'><pre><code>diff -up openssl-1.0.2a/crypto/cversion.c.version openssl-1.0.2a/crypto/cversion.c
|
||||
--- openssl-1.0.2a/crypto/cversion.c.version 2015-03-19 14:30:36.000000000 +0100
|
||||
+++ openssl-1.0.2a/crypto/cversion.c 2015-04-21 16:48:56.285535316 +0200
|
||||
@@ -62,7 +62,7 @@
|
||||
# include "buildinf.h"
|
||||
#endif
|
||||
|
||||
-const char *SSLeay_version(int t)
|
||||
+const char *_current_SSLeay_version(int t)
|
||||
{
|
||||
if (t == SSLEAY_VERSION)
|
||||
return OPENSSL_VERSION_TEXT;
|
||||
@@ -101,7 +101,40 @@ const char *SSLeay_version(int t)
|
||||
return ("not available");
|
||||
}
|
||||
|
||||
-unsigned long SSLeay(void)
|
||||
+const char *_original_SSLeay_version(int t)
|
||||
+{
|
||||
+ if (t == SSLEAY_VERSION)
|
||||
+ return "OpenSSL 1.0.0-fips 29 Mar 2010";
|
||||
+ else
|
||||
+ return _current_SSLeay_version(t);
|
||||
+}
|
||||
+
|
||||
+const char *_original101_SSLeay_version(int t)
|
||||
+{
|
||||
+ if (t == SSLEAY_VERSION)
|
||||
+ return "OpenSSL 1.0.1e-fips 11 Feb 2013";
|
||||
+ else
|
||||
+ return _current_SSLeay_version(t);
|
||||
+}
|
||||
+
|
||||
+unsigned long _original_SSLeay(void)
|
||||
+{
|
||||
+ return (0x10000003L);
|
||||
+}
|
||||
+
|
||||
+unsigned long _original101_SSLeay(void)
|
||||
+{
|
||||
+ return (0x1000105fL);
|
||||
+}
|
||||
+
|
||||
+unsigned long _current_SSLeay(void)
|
||||
{
|
||||
return (SSLEAY_VERSION_NUMBER);
|
||||
}
|
||||
+
|
||||
+__asm__(".symver _original_SSLeay,SSLeay@");
|
||||
+__asm__(".symver _original_SSLeay_version,SSLeay_version@");
|
||||
+__asm__(".symver _original101_SSLeay,SSLeay@OPENSSL_1.0.1");
|
||||
+__asm__(".symver _original101_SSLeay_version,SSLeay_version@OPENSSL_1.0.1");
|
||||
+__asm__(".symver _current_SSLeay,SSLeay@@OPENSSL_1.0.2");
|
||||
+__asm__(".symver _current_SSLeay_version,SSLeay_version@@OPENSSL_1.0.2");
|
||||
diff -up openssl-1.0.2a/Makefile.shared.version openssl-1.0.2a/Makefile.shared
|
||||
--- openssl-1.0.2a/Makefile.shared.version 2015-04-21 16:43:02.624170648 +0200
|
||||
+++ openssl-1.0.2a/Makefile.shared 2015-04-21 16:43:02.676171879 +0200
|
||||
@@ -151,7 +151,7 @@ DO_GNU_SO=$(CALC_VERSIONS); \
|
||||
SHLIB_SUFFIX=; \
|
||||
ALLSYMSFLAGS='-Wl,--whole-archive'; \
|
||||
NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \
|
||||
- SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
|
||||
+ SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,--default-symver,--version-script=version.map -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
|
||||
|
||||
DO_GNU_APP=LDFLAGS="$(CFLAGS)"
|
||||
|
||||
diff -up openssl-1.0.2a/version.map.version openssl-1.0.2a/version.map
|
||||
--- openssl-1.0.2a/version.map.version 2015-04-21 16:43:02.676171879 +0200
|
||||
+++ openssl-1.0.2a/version.map 2015-04-21 16:51:49.621630589 +0200
|
||||
@@ -0,0 +1,13 @@
|
||||
+OPENSSL_1.0.1 {
|
||||
+ global:
|
||||
+ SSLeay;
|
||||
+ SSLeay_version;
|
||||
+ local:
|
||||
+ _original*;
|
||||
+ _current*;
|
||||
+};
|
||||
+OPENSSL_1.0.2 {
|
||||
+ global:
|
||||
+ SSLeay;
|
||||
+ SSLeay_version;
|
||||
+} OPENSSL_1.0.1;
|
||||
</code></pre></td></tr></table>
|
||||
</div> <!-- class=content -->
|
||||
<div class='footer'>generated by <a href='http://git.zx2c4.com/cgit/about/'>cgit v0.12</a> at 2016-04-30 09:59:51 (GMT)</div>
|
||||
</div> <!-- id=cgit -->
|
||||
</body>
|
||||
</html>
|
160
openssl-makecerts
Normal file
160
openssl-makecerts
Normal file
@ -0,0 +1,160 @@
|
||||
#!/bin/bash
|
||||
#
|
||||
# Creates self-signed ssl certificates
|
||||
# Copyright (c) 2003-2008 by Silvan Calarco <silvan.calarco@mambasoft.it>
|
||||
# Copyright (c) 2003-2005 by Davide Madrisan <davide.madrisan@qilinux.it>
|
||||
#
|
||||
# Create server side certificates
|
||||
# documentation taken from openssl howtos http://www.openssl.org/docs/HOWTO/
|
||||
|
||||
SSLDIR=/var/ssl
|
||||
[ "$CADAYS" ] || CADAYS=3650
|
||||
[ "$CERTDAYS" ] || CERTDAYS=1825
|
||||
mksslc_tempfile=`tempfile 2>/dev/null`
|
||||
# 1. Creating a certificate request (optional)
|
||||
# To create a certificate, you need to start with a certificate request
|
||||
# or, as some certificate authorities like to put it,
|
||||
# "certificate signing request", since that's exactly what they do,
|
||||
# they sign it and give you the result back, thus making it authentic
|
||||
# according to their policies. A certificate request can then be sent
|
||||
# to a certificate authority to get it signed into a certificate, or if
|
||||
# you have your own certificate authority, you may sign it yourself, or
|
||||
# if you need a self-signed certificate. Because you just want a test
|
||||
# certificate or because you are setting up your own CA.
|
||||
|
||||
#openssl req -new -key privkey.perm -out cert.csr
|
||||
|
||||
# 2. Creating a self-signed root Certification Authority certificate
|
||||
# If you don't want to deal with another certificate authority, or just
|
||||
# want to create a test certificate for yourself. This is similar to
|
||||
# creating a certificate request, but creates a certificate instead of
|
||||
# a certificate request. This is NOT the recommended way to create a
|
||||
# CA certificate, see ca.txt.
|
||||
|
||||
if [ ! -e $SSLDIR/cacert.pem ]; then
|
||||
echo
|
||||
echo "Creating a new Certification Authority"
|
||||
[ "$CAPASS" -a "$CACOUNTRY" -a "$CASTATE" -a "$CACITY" -a \
|
||||
"$CAORGANIZATION" -a "$CAOU" -a "$CACOMMONNAME" -a "$CAEMAIL" ] ||
|
||||
echo "Please enter information about the Certification Authority"
|
||||
while [ ! "$CACOUNTRY" -o ${#CACOUNTRY} -ne 2 ]; do
|
||||
read -p "Two-letters country code (e.g. IT): " CACOUNTRY;
|
||||
done
|
||||
while [ ! "$CASTATE" ]; do read -p "State: " CASTATE; done
|
||||
while [ ! "$CACITY" ]; do read -p "City: " CACITY; done
|
||||
while [ ! "$CAORGANIZATION" ]; do read -p "Organization: " CAORGANIZATION; done
|
||||
while [ ! "$CAOU" ]; do read -p "Operational unit: " CAOU; done
|
||||
while [ ! "$CACOMMONNAME" ]; do read -p "Common name: " CACOMMONNAME; done
|
||||
while [ ! "$CAEMAIL" ]; do read -p "Email: " CAEMAIL; done
|
||||
while [ ! "$CAPASS" -o "$CAPASS" != "$CONFIRMPASS" ]; do
|
||||
unset CAPASS
|
||||
while [ ! "$CAPASS" ]; do read -s -p "Please enter a passphrase: " CAPASS; echo; done
|
||||
read -s -p "Please confirm the passphrase: " CONFIRMPASS
|
||||
echo
|
||||
done
|
||||
|
||||
echo "Generating a self-signed root Certification Authority certificate"
|
||||
cat << _EOF > $mksslc_tempfile
|
||||
$CAPASS
|
||||
$CACOUNTRY
|
||||
$CASTATE
|
||||
$CACITY
|
||||
$CAORGANIZATION
|
||||
$CAOU
|
||||
$CACOMMONNAME
|
||||
$CAEMAIL
|
||||
_EOF
|
||||
|
||||
openssl req -passout stdin -new -x509 -keyout $SSLDIR/private/cakey.pem \
|
||||
-out $SSLDIR/cacert.pem -days 3650 < $mksslc_tempfile 2>&1 || exit 1
|
||||
|
||||
fi
|
||||
|
||||
rm -f $mksslc_tempfile # remove sensible data
|
||||
|
||||
[ "$CERTPASS" -a "$CERTCOUNTRY" -a "$CERTSTATE" -a "$CERTCITY" -a \
|
||||
"$CERTORGANIZATION" -a "$CERTOU" -a "$CERTCOMMONNAME" -a "$CERTEMAIL" ] || {
|
||||
echo
|
||||
echo "Please enter information about the self-signed server certificate"
|
||||
}
|
||||
|
||||
while [ ! "$CERTCOUNTRY" -o ${#CERTCOUNTRY} -ne 2 ]; do
|
||||
read -p "Two-letters country code (e.g. IT) [$CACOUNTRY]: " CERTCOUNTRY
|
||||
[ "$CERTCOUNTRY" ] || CERTCOUNTRY=$CACOUNTRY
|
||||
done
|
||||
while [ ! "$CERTSTATE" ]; do
|
||||
read -p "State [$CASTATE]: " CERTSTATE
|
||||
[ "$CERTSTATE" ] || CERTSTATE=$CASTATE
|
||||
done
|
||||
while [ ! "$CERTCITY" ]; do
|
||||
read -p "City [$CACITY]: " CERTCITY
|
||||
[ "$CERTCITY" ] || CERTCITY=$CACITY
|
||||
done
|
||||
while [ ! "$CERTORGANIZATION" ]; do
|
||||
read -p "Organization [$CAORGANIZATION]: " CERTORGANIZATION
|
||||
[ "$CERTORGANIZATION" ] || CERTORGANIZATION="$CAORGANIZATION"
|
||||
done
|
||||
while [ ! "$CERTOU" ]; do
|
||||
read -p "Operational unit [$CAOU]: " CERTOU
|
||||
[ "$CERTOU" ] || CERTOU=$CAOU
|
||||
done
|
||||
while [ ! "$CERTCOMMONNAME" ]; do
|
||||
read -p "Common name [$CACOMMONNAME]: " CERTCOMMONNAME
|
||||
[ "$CERTCOMMONNAME" ] || CERTCOMMONNAME=$CACOMMONNAME
|
||||
done
|
||||
while [ ! "$CERTEMAIL" ]; do
|
||||
read -p "Email [$CAEMAIL]: " CERTEMAIL
|
||||
[ "$CERTEMAIL" ] || CERTEMAIL=$CAEMAIL
|
||||
done
|
||||
while [ ! "$CERTPASS" -o "$CERTPASS" != "$CONFIRMPASS" ]; do
|
||||
unset CERTPASS
|
||||
while [ ! "$CERTPASS" ]; do read -s -p "Please enter a passphrase: " CERTPASS; echo; done
|
||||
read -s -p "Please confirm the passphrase: " CONFIRMPASS
|
||||
echo
|
||||
done
|
||||
while [ ! "$CAPASS" ]; do
|
||||
read -s -p "Please, enter the CA passphrase for signing the certificate: " CAPASS
|
||||
done
|
||||
|
||||
[ -e $SSLDIR/certs/localhost.crt ] && {
|
||||
read -p "A certificate called $SSLDIR/certs/localhost.crt already exists; overwrite [y/N]?" OVERWRITE
|
||||
echo
|
||||
[ "$OVERWRITE" != "y" -a "$OVERWRITE" != "Y" ] && exit 0
|
||||
}
|
||||
|
||||
# 3. Generate a key without password
|
||||
openssl genrsa -out $SSLDIR/private/localhost.key >/dev/null || exit 1
|
||||
|
||||
# 4. Create a server certificate signing request (CSR)
|
||||
echo "Creating a server certificate request (CSR)"
|
||||
cat << _EOF > $mksslc_tempfile
|
||||
$CERTPASS
|
||||
$CERTCOUNTRY
|
||||
$CERTSTATE
|
||||
$CERTCITY
|
||||
$CERTORGANIZATION
|
||||
$CERTOU
|
||||
$CERTCOMMONNAME
|
||||
$CERTEMAIL
|
||||
_EOF
|
||||
echo "" >> $mksslc_tempfile # A challenge password
|
||||
echo "" >> $mksslc_tempfile # An optional company name
|
||||
|
||||
openssl req -passout stdin -new -key $SSLDIR/private/localhost.key \
|
||||
-out $SSLDIR/localhost.csr -days $CERTDAYS < $mksslc_tempfile >/dev/null || exit 1
|
||||
|
||||
rm -f $mksslc_tempfile
|
||||
|
||||
# 4. Sign a server certificate request
|
||||
echo "Signing the certificate request"
|
||||
|
||||
echo "$CAPASS" > $mksslc_tempfile
|
||||
echo "y" >> $mksslc_tempfile # Sign the certificate? [y/n]
|
||||
echo "y" >> $mksslc_tempfile # 1 out of 1 certificate requests certified, commit?
|
||||
|
||||
openssl ca -days $CERTDAYS -passin stdin -policy policy_anything -out $SSLDIR/certs/localhost.crt \
|
||||
-infiles $SSLDIR/localhost.csr < $mksslc_tempfile >/dev/null || exit 1
|
||||
|
||||
rm -f $mksslc_tempfile
|
||||
|
||||
exit 0
|
393
openssl102.spec
Normal file
393
openssl102.spec
Normal file
@ -0,0 +1,393 @@
|
||||
Name: openssl102
|
||||
Version: 1.0.2q
|
||||
Release: 2mamba
|
||||
Summary: Secure Sockets Layer communications libs and utils
|
||||
Group: Network/Security
|
||||
Vendor: openmamba
|
||||
Distribution: openmamba
|
||||
Packager: Silvan Calarco <silvan.calarco@mambasoft.it>
|
||||
URL: http://www.openssl.org
|
||||
Source: http://www.openssl.org/source/openssl-%{version}.tar.gz
|
||||
Source1: openssl-makecerts
|
||||
Patch1: openssl-1.0.2a-version.patch
|
||||
License: BSD
|
||||
## AUTOBUILDREQ-BEGIN
|
||||
BuildRequires: glibc-devel
|
||||
BuildRequires: libperl
|
||||
BuildRequires: perl-WWW-Curl
|
||||
BuildRequires: perl-devel
|
||||
## AUTOBUILDREQ-END
|
||||
Requires: lib%{name} = %{?epoch:%epoch:}%{version}-%{release}
|
||||
BuildRoot: %{_tmppath}/%{name}-%{version}-root
|
||||
|
||||
%description
|
||||
The openssl certificate management tool and the shared libraries that provide various encryption and decription algorithms and protocols, including DES, RC4, RSA and SSL.
|
||||
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/).
|
||||
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
|
||||
This product includes software written by Tim Hudson (tjh@cryptsoft.com).
|
||||
|
||||
%package -n lib%{name}
|
||||
Summary: Library for OpenSSL
|
||||
Group: System/Libraries
|
||||
|
||||
%description -n lib%{name}
|
||||
The libraries files are needed for various cryptographic algorithms and protocols, including DES, RC4, RSA and SSL.
|
||||
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/).
|
||||
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
|
||||
This product includes software written by Tim Hudson (tjh@cryptsoft.com).
|
||||
|
||||
%package -n lib%{name}-devel
|
||||
Summary: Library Devel for OpenSSL
|
||||
Group: Development/Libraries
|
||||
Requires: lib%{name} = %{version}-%{release}
|
||||
|
||||
%description -n lib%{name}-devel
|
||||
Library symlinks and include files needed to compile apps with support for various cryptographic algorithms and protocols, including DES, RC4, RSA and SSL.
|
||||
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/).
|
||||
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
|
||||
This product includes software written by Tim Hudson (tjh@cryptsoft.com).
|
||||
|
||||
%package -n lib%{name}-static
|
||||
Summary: OpenSSL static libraries
|
||||
Group: Development/Libraries
|
||||
Requires: lib%{name} = %{version}-%{release}
|
||||
Requires: lib%{name}-devel = %{version}-%{release}
|
||||
|
||||
%description -n lib%{name}-static
|
||||
Static libraries needed to compile apps with support for various cryptographic algorithms and protocols, including DES, RC4, RSA and SSL.
|
||||
|
||||
%debug_package
|
||||
|
||||
%prep
|
||||
%setup -q -n openssl-%{version}
|
||||
|
||||
# Using Fedora versioning patch
|
||||
%patch1 -p1
|
||||
sed -i 's/SHLIB_VERSION_NUMBER "1.0.0"/SHLIB_VERSION_NUMBER "%{version}"/' crypto/opensslv.h
|
||||
|
||||
%build
|
||||
# FIXME: --openssldir=%{_libdir}/ssl
|
||||
# (FHS: no executable files should be installed in /etc)
|
||||
./Configure \
|
||||
%ifarch ppc
|
||||
linux-ppc \
|
||||
%endif
|
||||
%ifarch i586
|
||||
linux-elf \
|
||||
%endif
|
||||
%ifarch x86_64
|
||||
linux-x86_64 \
|
||||
enable-ec_nistp_64_gcc_128 \
|
||||
%endif
|
||||
%ifarch arm
|
||||
linux-generic32 \
|
||||
%endif
|
||||
shared \
|
||||
enable-md2 \
|
||||
--prefix=%{_prefix} \
|
||||
--openssldir=/etc/ssl
|
||||
|
||||
%ifarch ppc
|
||||
sed -i "s/-m486/-march=%{_target_cpu}/g" Makefile
|
||||
%endif
|
||||
|
||||
sed -i 's|\(.*\)chmod 644\(.*/lib/pkgconfig\)|\1chmod 755\2|' Makefile
|
||||
|
||||
%make -j1 CC=%{_host}-gcc MANDIR=%{_mandir}
|
||||
%make -j1 CC=%{_host}-gcc rehash
|
||||
|
||||
#export LD_LIBRARY_PATH=`pwd`${LD_LIBRARY_PATH:+:${LD_LIBRARY_PATH}}
|
||||
%if "%{_host}" == "%{_build}"
|
||||
make test
|
||||
%endif
|
||||
|
||||
%install
|
||||
[ "%{buildroot}" != / ] && rm -rf "%{buildroot}"
|
||||
make install CC=%{_host}-gcc INSTALL_PREFIX=%{buildroot} MANDIR=%{_mandir}
|
||||
|
||||
chmod 755 %{buildroot}%{_libdir}/pkgconfig
|
||||
chmod 644 %{buildroot}%{_libdir}/pkgconfig/*.pc
|
||||
|
||||
mv %{buildroot}%{_mandir}/man1/passwd.* \
|
||||
%{buildroot}%{_mandir}/man1/openssl-passwd.*
|
||||
mv %{buildroot}%{_mandir}/man3/err.* \
|
||||
%{buildroot}%{_mandir}/man3/openssl-err.*
|
||||
mv %{buildroot}%{_mandir}/man3/rand.* \
|
||||
%{buildroot}%{_mandir}/man3/openssl-rand.*
|
||||
# rpmbuild can't correctly handle spaces in symlink names
|
||||
rm -f %{buildroot}%{_mandir}/man7/Modes\ of\ DES.7
|
||||
|
||||
mkdir -p %{buildroot}/var/ssl/{certs,newcerts,private,crl}
|
||||
touch %{buildroot}/var/ssl/index.txt
|
||||
echo "01" > %{buildroot}/var/ssl/serial
|
||||
|
||||
sed -i "s|./demoCA|/var/ssl|" %{buildroot}/etc/ssl/openssl.cnf
|
||||
|
||||
rm -f %{buildroot}%{_libdir}/fips_premain.c
|
||||
rm -f %{buildroot}%{_libdir}/fips_premain.c.sha1
|
||||
rm -f %{buildroot}%{_mandir}/man3/.3*
|
||||
|
||||
install -m 0755 -D %{SOURCE1} %{buildroot}%{_sbindir}/openssl-makecerts
|
||||
|
||||
%clean
|
||||
[ "%{buildroot}" != / ] && rm -rf "%{buildroot}"
|
||||
|
||||
%post -p /sbin/ldconfig
|
||||
%postun -p /sbin/ldconfig
|
||||
|
||||
%files
|
||||
%defattr(-,root,root)
|
||||
%config(noreplace) %{_sysconfdir}/ssl/openssl.cnf
|
||||
%dir %{_sysconfdir}/ssl/private
|
||||
%{_sysconfdir}/ssl/misc
|
||||
%{_bindir}/c_rehash
|
||||
#%{_bindir}/fipsld
|
||||
%{_bindir}/openssl
|
||||
%{_sbindir}/openssl-makecerts
|
||||
#%{_bindir}/openssl_fips_fingerprint
|
||||
%{_mandir}/man1/*
|
||||
%{_mandir}/man5/*
|
||||
%{_mandir}/man7/*
|
||||
%dir /var/ssl
|
||||
%dir /var/ssl/certs
|
||||
%dir /var/ssl/crl
|
||||
%dir /var/ssl/newcerts
|
||||
%dir %attr(0700,root,root) /var/ssl/private
|
||||
%config(noreplace) /var/ssl/index.txt
|
||||
%config(noreplace) /var/ssl/serial
|
||||
|
||||
%files -n lib%{name}
|
||||
%defattr(-,root,root)
|
||||
%{_libdir}/libcrypto.so.*
|
||||
%{_libdir}/libssl.so.*
|
||||
%{_libdir}/engines/lib*.so
|
||||
%doc LICENSE
|
||||
|
||||
%files -n lib%{name}-devel
|
||||
%defattr(-,root,root)
|
||||
%dir %{_includedir}/openssl
|
||||
%{_includedir}/openssl/*
|
||||
%{_libdir}/*.so
|
||||
%{_libdir}/pkgconfig/libcrypto.pc
|
||||
%{_libdir}/pkgconfig/libssl.pc
|
||||
%{_libdir}/pkgconfig/openssl.pc
|
||||
%{_mandir}/man3/*
|
||||
%doc CHANGES* FAQ NEWS PROBLEMS README*
|
||||
|
||||
%files -n lib%{name}-static
|
||||
%defattr(-,root,root)
|
||||
%{_libdir}/*.a
|
||||
|
||||
%changelog
|
||||
* Sat Dec 08 2018 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.2q-2mamba
|
||||
- legacy package
|
||||
|
||||
* Sat Dec 08 2018 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.2q-1mamba
|
||||
- update to 1.0.2q
|
||||
|
||||
* Sun Sep 09 2018 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.2p-1mamba
|
||||
- update to 1.0.2p
|
||||
|
||||
* Thu Dec 07 2017 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.2m-1mamba
|
||||
- update to 1.0.2m
|
||||
|
||||
* Wed May 04 2016 Automatic Build System <autodist@mambasoft.it> 1.0.2h-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Sat Apr 30 2016 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.2g-3mamba
|
||||
- /etc and /var files moved from libopenssl to openssl
|
||||
|
||||
* Sat Apr 30 2016 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.2g-2mamba
|
||||
- rebuilt after updating versioning patch (from Fedora)
|
||||
|
||||
* Tue Mar 01 2016 Automatic Build System <autodist@mambasoft.it> 1.0.2g-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Thu Jan 28 2016 Automatic Build System <autodist@mambasoft.it> 1.0.2f-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Dec 04 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2e-2mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Dec 04 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2e-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Thu Jul 09 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2d-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Sat Jun 13 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2c-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Jun 12 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2b-2mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Jun 12 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2b-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Mon Apr 27 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2a-2mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Mon Apr 27 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2a-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Tue Mar 10 2015 Automatic Build System <autodist@mambasoft.it> 1.0.2-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Jan 16 2015 Automatic Build System <autodist@mambasoft.it> 1.0.1l-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Jan 09 2015 Automatic Build System <autodist@mambasoft.it> 1.0.1k-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Thu Oct 16 2014 Automatic Build System <autodist@mambasoft.it> 1.0.1j-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Thu Aug 07 2014 Automatic Build System <autodist@mambasoft.it> 1.0.1i-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Sat Jul 26 2014 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.1h-2mamba
|
||||
- x86_64: rebuild with enable-ec_nistp_64_gcc_128 as suggested by tor
|
||||
|
||||
* Fri Jun 06 2014 Automatic Build System <autodist@mambasoft.it> 1.0.1h-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Tue Apr 08 2014 Automatic Build System <autodist@mambasoft.it> 1.0.1g-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Sun Feb 09 2014 Automatic Build System <autodist@mambasoft.it> 1.0.1f-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Nov 15 2013 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.1e-3mamba
|
||||
- added openssl-static subpackage
|
||||
|
||||
* Thu Jun 27 2013 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.1e-2mamba
|
||||
- man and doc pages moved to appropriate subpackage
|
||||
- don't provide 1.0.0 lib compatibility links (use now openssl100 legacy package)
|
||||
|
||||
* Tue Feb 12 2013 Automatic Build System <autodist@mambasoft.it> 1.0.1e-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Feb 08 2013 Automatic Build System <autodist@mambasoft.it> 1.0.1d-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Mon Jul 02 2012 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.1c-2mamba
|
||||
- addded patch to enable symbol versioning
|
||||
|
||||
* Sat May 12 2012 Automatic Build System <autodist@mambasoft.it> 1.0.1c-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Fri Apr 20 2012 Automatic Build System <autodist@mambasoft.it> 1.0.1a-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Thu Mar 15 2012 Automatic Build System <autodist@mambasoft.it> 1.0.1-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Tue Mar 13 2012 Automatic Build System <autodist@mambasoft.it> 1.0.0h-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Thu Jan 19 2012 Automatic Build System <autodist@mambasoft.it> 1.0.0g-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Thu Jan 05 2012 Automatic Build System <autodist@mambasoft.it> 1.0.0f-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Tue Sep 06 2011 Automatic Build System <autodist@mambasoft.it> 1.0.0e-1mamba
|
||||
- automatic version update by autodist
|
||||
|
||||
* Mon Mar 14 2011 Silvan Calarco <silvan.calarco@mambasoft.it> 1.0.0d-2mamba
|
||||
- rebuilt with debug package
|
||||
|
||||
* Wed Feb 09 2011 Automatic Build System <autodist@mambasoft.it> 1.0.0d-1mamba
|
||||
- automatic update by autodist
|
||||
|
||||
* Mon Dec 06 2010 Automatic Build System <autodist@mambasoft.it> 1.0.0c-1mamba
|
||||
- automatic update to 1.0.0c by autodist
|
||||
|
||||
* Fri Jul 02 2010 Davide Madrisan <davide.madrisan@gmail.com> 1.0.0a-2mamba
|
||||
- enable md2 support
|
||||
|
||||
* Wed Jun 02 2010 Automatic Build System <autodist@mambasoft.it> 1.0.0a-1mamba
|
||||
- automatic update to 1.0.0a by autodist
|
||||
|
||||
* Tue Mar 30 2010 Automatic Build System <autodist@mambasoft.it> 1.0.0-1mamba
|
||||
- automatic update to 1.0.0 by autodist
|
||||
|
||||
* Mon Mar 29 2010 Automatic Build System <autodist@mambasoft.it> 0.9.8n-1mamba
|
||||
- automatic update to 0.9.8n by autodist
|
||||
|
||||
* Tue Mar 23 2010 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8m-2mamba
|
||||
- move /etc/ssl/misc to openssl package
|
||||
- removed build requirement for perl
|
||||
- add support for arm target
|
||||
|
||||
* Fri Feb 26 2010 Automatic Build System <autodist@mambasoft.it> 0.9.8m-1mamba
|
||||
- automatic update to 0.9.8m by autodist
|
||||
|
||||
* Wed Nov 18 2009 Automatic Build System <autodist@mambasoft.it> 0.9.8l-1mamba
|
||||
- automatic update to 0.9.8l by autodist
|
||||
|
||||
* Fri Mar 27 2009 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8k-1mamba
|
||||
- automatic update to 0.9.8k by autodist
|
||||
|
||||
* Wed Jan 07 2009 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8j-1mamba
|
||||
- automatic update to 0.9.8j by autodist
|
||||
|
||||
* Sat Oct 04 2008 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8i-2mamba
|
||||
- libopenssl-devel: obsolete libopenssl097-devel
|
||||
- set 700 permission to /var/ssl/private directory
|
||||
|
||||
* Tue Sep 16 2008 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8i-1mamba
|
||||
- automatic update to 0.9.8i by autodist
|
||||
|
||||
* Tue Jun 17 2008 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8h-1mamba
|
||||
- update to 0.9.8h
|
||||
|
||||
* Fri Mar 14 2008 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8g-3mamba
|
||||
- added openssl-makecerts script for creating a CA and a self-signed certificate
|
||||
|
||||
* Mon Dec 31 2007 Aleph0 <aleph0@openmamba.org> 0.9.8g-2mamba
|
||||
- fix permissions of .pc files
|
||||
|
||||
* Sun Nov 18 2007 Silvan Calarco <silvan.calarco@mambasoft.it> 0.9.8g-1mamba
|
||||
- update to 0.9.8g
|
||||
|
||||
* Wed Sep 06 2006 Davide Madrisan <davide.madrisan@qilinux.it> 0.9.7k-1qilnx
|
||||
- update to version 0.9.7k by autospec
|
||||
- also fixes CAN-2006-4339 (bugzilla#230)
|
||||
|
||||
* Fri Oct 14 2005 Davide Madrisan <davide.madrisan@qilinux.it> 0.9.7h-1qilnx
|
||||
- update to version 0.9.7h by autospec
|
||||
- also fixes the security issue QSA-2005-119 (CAN-2005-2969)
|
||||
- patches removed (merget upstream)
|
||||
|
||||
* Wed Jul 27 2005 Davide Madrisan <davide.madrisan@qilinux.it> 0.9.7e-2qilnx
|
||||
- fix security issue QSA-2005-083 (CAN-2005-0109)
|
||||
- do not create a broken link to the libfips library (p0)
|
||||
see http://www.mail-archive.com/openssl-dev%40openssl.org/msg18268.html
|
||||
|
||||
* Tue Dec 14 2004 Davide Madrisan <davide.madrisan@qilinux.it> 0.9.7e-1qilnx
|
||||
- update to version 0.9.7e by autospec
|
||||
- fix security issue QSA-2004-062 (CAN-2004-0975)
|
||||
- added documentation
|
||||
|
||||
* Thu Mar 18 2004 Davide Madrisan <davide.madrisan@qilinux.it> 0.9.7d-1qilnx
|
||||
- security fix release (CAN-2004-0079, CAN-2004-0112)
|
||||
|
||||
* Mon Jan 19 2004 Davide Madrisan <davide.madrisan@qilinux.it> 0.9.7c-2qilnx
|
||||
- specfile fixes
|
||||
|
||||
* Wed Oct 01 2003 Davide Madrisan <davide.madrisan@qilinux.it> 0.9.7c-1qilnx
|
||||
- rebuilt with new version (important security bugfixes)
|
||||
|
||||
* Fri Jul 25 2003 Silvan Calarco <silvan.calarco@qinet.it> 0.9.7b-4qilnx
|
||||
- configured so that certificates are by default under /var/ssl
|
||||
|
||||
* Wed Jun 18 2003 Silvan Calarco <silvan.calarco@qinet.it> 0.9.7b-3qilnx
|
||||
- rebuilt against gcc 3.2.3
|
||||
- files correctly redistributed beetwen main and devel package
|
||||
|
||||
* Wed Apr 30 2003 Silvan Calarco <silvan.calarco@qinet.it>
|
||||
- err, rand and passwd manpages renamed to openssl-* to avoid conflicts with other versions
|
||||
|
||||
* Tue Apr 16 2003 Luca Tinelli <luca.tinelli@qinet.it>
|
||||
- first build
|
Loading…
Reference in New Issue
Block a user