summaryrefslogtreecommitdiffstats
path: root/meta/packages/openssl/openssl-0.9.7g/debian.patch
diff options
context:
space:
mode:
Diffstat (limited to 'meta/packages/openssl/openssl-0.9.7g/debian.patch')
-rw-r--r--meta/packages/openssl/openssl-0.9.7g/debian.patch2808
1 files changed, 0 insertions, 2808 deletions
diff --git a/meta/packages/openssl/openssl-0.9.7g/debian.patch b/meta/packages/openssl/openssl-0.9.7g/debian.patch
deleted file mode 100644
index 8cfdd2d653..0000000000
--- a/meta/packages/openssl/openssl-0.9.7g/debian.patch
+++ /dev/null
@@ -1,2808 +0,0 @@
1--- openssl097-0.9.7g.orig/apps/CA.pl
2+++ openssl097-0.9.7g/apps/CA.pl
3@@ -1,4 +1,4 @@
4-#!/usr/bin/perl
5+#!/usr/local/bin/perl
6 #
7 # CA - wrapper around ca to make it easier to use ... basically ca requires
8 # some setup stuff to be done before you can use it and this makes
9@@ -63,6 +63,7 @@
10 foreach (@ARGV) {
11 if ( /^(-\?|-h|-help)$/ ) {
12 print STDERR "usage: CA -newcert|-newreq|-newreq-nodes|-newca|-sign|-verify\n";
13+ print STDERR "usage: CA -signcert certfile keyfile|-newcert|-newreq|-newca|-sign|-verify\n";
14 exit 0;
15 } elsif (/^-newcert$/) {
16 # create a certificate
17@@ -158,6 +159,7 @@
18 } else {
19 print STDERR "Unknown arg $_\n";
20 print STDERR "usage: CA -newcert|-newreq|-newreq-nodes|-newca|-sign|-verify\n";
21+ print STDERR "usage: CA -signcert certfile keyfile|-newcert|-newreq|-newca|-sign|-verify\n";
22 exit 1;
23 }
24 }
25--- openssl097-0.9.7g.orig/apps/CA.pl.in
26+++ openssl097-0.9.7g/apps/CA.pl.in
27@@ -63,6 +63,7 @@
28 foreach (@ARGV) {
29 if ( /^(-\?|-h|-help)$/ ) {
30 print STDERR "usage: CA -newcert|-newreq|-newreq-nodes|-newca|-sign|-verify\n";
31+ print STDERR "usage: CA -signcert certfile keyfile|-newcert|-newreq|-newca|-sign|-verify\n";
32 exit 0;
33 } elsif (/^-newcert$/) {
34 # create a certificate
35@@ -158,6 +159,7 @@
36 } else {
37 print STDERR "Unknown arg $_\n";
38 print STDERR "usage: CA -newcert|-newreq|-newreq-nodes|-newca|-sign|-verify\n";
39+ print STDERR "usage: CA -signcert certfile keyfile|-newcert|-newreq|-newca|-sign|-verify\n";
40 exit 1;
41 }
42 }
43--- openssl097-0.9.7g.orig/apps/progs.h
44+++ openssl097-0.9.7g/apps/progs.h
45@@ -35,11 +35,9 @@
46 extern int spkac_main(int argc,char *argv[]);
47 extern int smime_main(int argc,char *argv[]);
48 extern int rand_main(int argc,char *argv[]);
49-extern int prime_main(int argc,char *argv[]);
50-#ifndef OPENSSL_NO_ENGINE
51 extern int engine_main(int argc,char *argv[]);
52-#endif
53 extern int ocsp_main(int argc,char *argv[]);
54+extern int prime_main(int argc,char *argv[]);
55
56 #define FUNC_TYPE_GENERAL 1
57 #define FUNC_TYPE_MD 2
58@@ -95,9 +93,7 @@
59 #if !defined(OPENSSL_NO_SOCK) && !(defined(OPENSSL_NO_SSL2) && defined(OPENSSL_NO_SSL3))
60 {FUNC_TYPE_GENERAL,"s_client",s_client_main},
61 #endif
62-#ifndef OPENSSL_NO_SPEED
63 {FUNC_TYPE_GENERAL,"speed",speed_main},
64-#endif
65 #if !defined(OPENSSL_NO_SOCK) && !(defined(OPENSSL_NO_SSL2) && defined(OPENSSL_NO_SSL3))
66 {FUNC_TYPE_GENERAL,"s_time",s_time_main},
67 #endif
68@@ -116,11 +112,9 @@
69 {FUNC_TYPE_GENERAL,"spkac",spkac_main},
70 {FUNC_TYPE_GENERAL,"smime",smime_main},
71 {FUNC_TYPE_GENERAL,"rand",rand_main},
72- {FUNC_TYPE_GENERAL,"prime",prime_main},
73-#ifndef OPENSSL_NO_ENGINE
74 {FUNC_TYPE_GENERAL,"engine",engine_main},
75-#endif
76 {FUNC_TYPE_GENERAL,"ocsp",ocsp_main},
77+ {FUNC_TYPE_GENERAL,"prime",prime_main},
78 #ifndef OPENSSL_NO_MD2
79 {FUNC_TYPE_MD,"md2",dgst_main},
80 #endif
81--- openssl097-0.9.7g.orig/config
82+++ openssl097-0.9.7g/config
83@@ -163,8 +163,8 @@
84 echo "${MACHINE}-whatever-linux1"; exit 0
85 ;;
86
87- GNU*)
88- echo "hurd-x86"; exit 0;
89+ GNU:*|GNU/*:*)
90+ echo "${MACHINE}-gnuish"; exit 0;
91 ;;
92
93 LynxOS:*)
94--- openssl097-0.9.7g.orig/Configure
95+++ openssl097-0.9.7g/Configure
96@@ -1,4 +1,4 @@
97-:
98+#!/usr/local/bin/perl
99 eval 'exec perl -S $0 ${1+"$@"}'
100 if $running_under_some_shell;
101 ##
102@@ -390,6 +390,42 @@
103 # assembler versions -- currently defunct:
104 ##"OpenBSD-alpha","gcc:-DTERMIOS -O3 -fomit-frame-pointer:::(unknown):SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2:${alpha_asm}",
105
106+# Debian GNU/* (various architectures)
107+"debian-alpha","gcc:-DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
108+"debian-alpha-ev4","gcc:-DTERMIO -O3 -mcpu=ev4 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
109+"debian-alpha-ev5","gcc:-DTERMIO -O3 -mcpu=ev5 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
110+"debian-arm","gcc:-DL_ENDIAN -DTERMIO -O2 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
111+#"debian-amd64","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
112+"debian-amd64", "gcc:-m64 -DL_ENDIAN -DTERMIO -O3 -Wall -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK RC4_CHAR BF_PTR2 DES_INT DES_UNROLL:asm/x86_64-gcc.o:::::::::dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
113+#"debian-freebsd-alpha","gcc:-DTERMIOS -O -fomit-frame-pointer::(unknown):::SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_PTR DES_RISC2::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
114+"debian-kfreebsd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
115+"debian-hppa","gcc:-DB_ENDIAN -DTERMIO -O2 -Wall::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
116+"debian-hurd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
117+"debian-ia64","gcc:-DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK RC4_CHAR:asm/ia64.o:::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
118+#"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC",
119+"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
120+"debian-i386-i486","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i486 -mcpu=i486 -Wa,--noexecstack -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
121+"debian-i386-i586","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i586 -mcpu=i586 -Wa,--noexecstack -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
122+"debian-i386-i686/cmov","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i686 -mcpu=i686 -Wa,--noexecstack -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
123+"debian-m68k","gcc:-DB_ENDIAN -DTERMIO -O2 -Wall::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
124+"debian-mips", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
125+"debian-mipsel", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
126+"debian-netbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486 -Wall::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
127+"debian-netbsd-m68k", "gcc:-DB_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -Wall::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
128+"debian-netbsd-sparc", "gcc:-DB_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -mv8 -Wall::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
129+"debian-openbsd-alpha","gcc:-DTERMIOS -O3 -fomit-frame-pointer::(unknown):::SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
130+"debian-openbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS -O3 -fomit-frame-pointer -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_out_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
131+"debian-openbsd-mips","gcc:-O2 -DL_ENDIAN::(unknown)::BN_LLONG MD2_CHAR RC4_INDEX RC4_CHAR DES_UNROLL DES_RISC2 DES_PTR BF_PTR:::::::::::dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
132+"debian-powerpc","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_UNROLL DES_RISC2 DES_PTR MD2_CHAR RC4_INDEX::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
133+"debian-ppc64","gcc:-m64 -DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:asm/linux_ppc64.o:::::::::dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
134+"debian-s390","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
135+"debian-sh3", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
136+"debian-sh4", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
137+"debian-sh3eb", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
138+"debian-sh4eb", "gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
139+"debian-sparc","gcc:-DB_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR::::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
140+"debian-sparc-v8","gcc:-DB_ENDIAN -DTERMIO -O3 -mcpu=v8 -fomit-frame-pointer -Wall -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:asm/sparcv8.o:::::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
141+"debian-sparc-v9","gcc:-DB_ENDIAN -DTERMIO -O3 -mcpu=v9 -Wa,-Av8plus -fomit-frame-pointer -Wall -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:asm/sparcv8plus.o:::asm/md5-sparcv8plus.o::::::dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
142 # The intel boxes :-), It would be worth seeing if bsdi-gcc can use the
143 # bn86-elf.o file file since it is hand tweaked assembler.
144 "linux-elf", "gcc:-DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
145@@ -1316,7 +1352,8 @@
146 elsif ($shared_extension ne "" && $shared_extension =~ /^\.s([ol])\.[^\.]*\.[^\.]*$/)
147 {
148 my $sotmp = $1;
149- s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/;
150+# s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/;
151+ s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp/;
152 }
153 elsif ($shared_extension ne "" && $shared_extension =~ /^\.[^\.]*\.[^\.]*\.dylib$/)
154 {
155--- openssl097-0.9.7g.orig/crypto/asn1/charmap.pl
156+++ openssl097-0.9.7g/crypto/asn1/charmap.pl
157@@ -1,4 +1,4 @@
158-#!/usr/local/bin/perl -w
159+#!/usr/local/bin/perl
160
161 use strict;
162
163--- openssl097-0.9.7g.orig/crypto/bn/asm/ppc.pl
164+++ openssl097-0.9.7g/crypto/bn/asm/ppc.pl
165@@ -1,4 +1,4 @@
166-#!/usr/bin/env perl
167+#!/usr/local/bin/perl
168 #
169 # Implemented as a Perl wrapper as we want to support several different
170 # architectures with single file. We pick up the target based on the
171--- openssl097-0.9.7g.orig/crypto/md5/asm/md5-sparcv9.S
172+++ openssl097-0.9.7g/crypto/md5/asm/md5-sparcv9.S
173@@ -74,14 +74,14 @@
174 #define Dval R8
175
176 #if defined(MD5_BLOCK_DATA_ORDER)
177-# if defined(OPENSSL_SYSNAME_ULTRASPARC)
178+/*# if defined(OPENSSL_SYSNAME_ULTRASPARC)*/
179 # define LOAD lda
180 # define X(i) [%i1+i*4]%asi
181 # define md5_block md5_block_asm_data_order_aligned
182 # define ASI_PRIMARY_LITTLE 0x88
183-# else
184+/*# else
185 # error "MD5_BLOCK_DATA_ORDER is supported only on UltraSPARC!"
186-# endif
187+# endif*/
188 #else
189 # define LOAD ld
190 # define X(i) [%i1+i*4]
191--- openssl097-0.9.7g.orig/crypto/opensslconf.h
192+++ openssl097-0.9.7g/crypto/opensslconf.h
193@@ -4,17 +4,38 @@
194 /* OpenSSL was configured with the following options: */
195 #ifndef OPENSSL_DOING_MAKEDEPEND
196
197+#ifndef OPENSSL_NO_IDEA
198+# define OPENSSL_NO_IDEA
199+#endif
200+#ifndef OPENSSL_NO_MDC2
201+# define OPENSSL_NO_MDC2
202+#endif
203+#ifndef OPENSSL_NO_RC5
204+# define OPENSSL_NO_RC5
205+#endif
206 #ifndef OPENSSL_NO_KRB5
207 # define OPENSSL_NO_KRB5
208 #endif
209
210 #endif /* OPENSSL_DOING_MAKEDEPEND */
211+#ifndef OPENSSL_THREADS
212+# define OPENSSL_THREADS
213+#endif
214
215 /* The OPENSSL_NO_* macros are also defined as NO_* if the application
216 asks for it. This is a transient feature that is provided for those
217 who haven't had the time to do the appropriate changes in their
218 applications. */
219 #ifdef OPENSSL_ALGORITHM_DEFINES
220+# if defined(OPENSSL_NO_IDEA) && !defined(NO_IDEA)
221+# define NO_IDEA
222+# endif
223+# if defined(OPENSSL_NO_MDC2) && !defined(NO_MDC2)
224+# define NO_MDC2
225+# endif
226+# if defined(OPENSSL_NO_RC5) && !defined(NO_RC5)
227+# define NO_RC5
228+# endif
229 # if defined(OPENSSL_NO_KRB5) && !defined(NO_KRB5)
230 # define NO_KRB5
231 # endif
232@@ -27,7 +48,7 @@
233
234 #if !(defined(VMS) || defined(__VMS)) /* VMS uses logical names instead */
235 #if defined(HEADER_CRYPTLIB_H) && !defined(OPENSSLDIR)
236-#define OPENSSLDIR "/usr/local/ssl"
237+#define OPENSSLDIR "/usr/lib/ssl"
238 #endif
239 #endif
240
241@@ -79,7 +100,7 @@
242
243 #if defined(HEADER_BN_H) && !defined(CONFIG_HEADER_BN_H)
244 #define CONFIG_HEADER_BN_H
245-#undef BN_LLONG
246+#define BN_LLONG
247
248 /* Should we define BN_DIV2W here? */
249
250@@ -98,7 +119,7 @@
251 #define CONFIG_HEADER_RC4_LOCL_H
252 /* if this is defined data[i] is used instead of *data, this is a %20
253 * speedup on x86 */
254-#undef RC4_INDEX
255+#define RC4_INDEX
256 #endif
257
258 #if defined(HEADER_BF_LOCL_H) && !defined(CONFIG_HEADER_BF_LOCL_H)
259@@ -112,14 +133,14 @@
260 /* the following is tweaked from a config script, that is why it is a
261 * protected undef/define */
262 #ifndef DES_PTR
263-#undef DES_PTR
264+#define DES_PTR
265 #endif
266
267 /* This helps C compiler generate the correct code for multiple functional
268 * units. It reduces register dependancies at the expense of 2 more
269 * registers */
270 #ifndef DES_RISC1
271-#undef DES_RISC1
272+#define DES_RISC1
273 #endif
274
275 #ifndef DES_RISC2
276@@ -133,7 +154,7 @@
277 /* Unroll the inner loop, this sometimes helps, sometimes hinders.
278 * Very mucy CPU dependant */
279 #ifndef DES_UNROLL
280-#undef DES_UNROLL
281+#define DES_UNROLL
282 #endif
283
284 /* These default values were supplied by
285--- openssl097-0.9.7g.orig/crypto/pkcs7/pk7_mime.c
286+++ openssl097-0.9.7g/crypto/pkcs7/pk7_mime.c
287@@ -277,9 +277,9 @@
288
289 if(strcmp(hdr->value, "application/x-pkcs7-signature") &&
290 strcmp(hdr->value, "application/pkcs7-signature")) {
291- sk_MIME_HEADER_pop_free(headers, mime_hdr_free);
292 PKCS7err(PKCS7_F_SMIME_READ_PKCS7,PKCS7_R_SIG_INVALID_MIME_TYPE);
293 ERR_add_error_data(2, "type: ", hdr->value);
294+ sk_MIME_HEADER_pop_free(headers, mime_hdr_free);
295 sk_BIO_pop_free(parts, BIO_vfree);
296 return NULL;
297 }
298--- openssl097-0.9.7g.orig/crypto/rc4/asm/rc4-amd64.pl
299+++ openssl097-0.9.7g/crypto/rc4/asm/rc4-amd64.pl
300@@ -1,4 +1,4 @@
301-#!/usr/bin/env perl
302+#!/usr/local/bin/perl
303 #
304 # ====================================================================
305 # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL
306--- openssl097-0.9.7g.orig/crypto/rc4/rc4_enc.c
307+++ openssl097-0.9.7g/crypto/rc4/rc4_enc.c
308@@ -77,10 +77,6 @@
309 x=key->x;
310 y=key->y;
311 d=key->data;
312-#if defined(__ia64) || defined(__ia64__) || defined(_M_IA64)
313- /* see crypto/rc4/asm/rc4-ia64.S for further details... */
314- d=(RC4_INT *)(((size_t)(d+255))&~(sizeof(key->data)-1));
315-#endif
316
317 #if defined(RC4_CHUNK)
318 /*
319--- openssl097-0.9.7g.orig/crypto/rc4/rc4.h
320+++ openssl097-0.9.7g/crypto/rc4/rc4.h
321@@ -73,10 +73,6 @@
322 {
323 RC4_INT x,y;
324 RC4_INT data[256];
325-#if defined(__ia64) || defined(__ia64__) || defined(_M_IA64)
326- /* see crypto/rc4/asm/rc4-ia64.S for further details... */
327- RC4_INT pad[512-256-2];
328-#endif
329 } RC4_KEY;
330
331
332--- openssl097-0.9.7g.orig/crypto/rc4/rc4_skey.c
333+++ openssl097-0.9.7g/crypto/rc4/rc4_skey.c
334@@ -94,10 +94,6 @@
335 unsigned int i;
336
337 d= &(key->data[0]);
338-#if defined(__ia64) || defined(__ia64__) || defined(_M_IA64)
339- /* see crypto/rc4/asm/rc4-ia64.S for further details... */
340- d=(RC4_INT *)(((size_t)(d+255))&~(sizeof(key->data)-1));
341-#endif
342
343 for (i=0; i<256; i++)
344 d[i]=i;
345--- openssl097-0.9.7g.orig/crypto/sha/asm/sha1-ia64.pl
346+++ openssl097-0.9.7g/crypto/sha/asm/sha1-ia64.pl
347@@ -1,4 +1,4 @@
348-#!/usr/bin/env perl
349+#!/usr/local/bin/perl
350 #
351 # ====================================================================
352 # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL
353--- openssl097-0.9.7g.orig/demos/tunala/configure.in
354+++ openssl097-0.9.7g/demos/tunala/configure.in
355@@ -1,4 +1,4 @@
356-dnl Process this file with autoconf to produce a configure script.
357+#!/usr/local/bin/perl
358 AC_INIT(tunala.c)
359 AM_CONFIG_HEADER(config.h)
360 AM_INIT_AUTOMAKE(tunala, 0.0.1-dev)
361--- openssl097-0.9.7g.orig/doc/apps/CA.pl.pod
362+++ openssl097-0.9.7g/doc/apps/CA.pl.pod
363@@ -47,7 +47,7 @@
364 creates a new certificate request. The private key and request are
365 written to the file "newreq.pem".
366
367-=item B<-newreq-nowdes>
368+=item B<-newreq-nodes>
369
370 is like B<-newreq> except that the private key will not be encrypted.
371
372--- openssl097-0.9.7g.orig/doc/Makefile
373+++ openssl097-0.9.7g/doc/Makefile
374@@ -0,0 +1,40 @@
375+VERSION =
376+
377+#PODS = $(wildcard *.pod)
378+#MANS = $(addsuffix .man, $(basename $(PODS)))
379+
380+MANS = openssl.1 ssl.3 crypto.3
381+
382+P2M = pod2man --center='OpenSSL Documentation' --release="OpenSSL $(VERSION)"
383+
384+all: manpages
385+
386+.PHONY: manpages
387+
388+manpages: openssl.1 crypto.3 ssl.3
389+
390+openssl.1:
391+ $(P2M) --section=1 openssl.pod > openssl.1
392+
393+crypto.3:
394+ $(P2M) --section=3 crypto.pod > crypto.3
395+
396+ssl.3:
397+ $(P2M) --section=3 ssl.pod > ssl.3
398+
399+.PHONY: install
400+install:
401+ mkdir -p $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man1
402+ mkdir -p $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3
403+ install -m 644 -p openssl.1 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man1
404+ install -m 644 -p crypto.3 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3
405+ install -m 644 -p ssl.3 $(INSTALL_PREFIX)$(INSTALLTOP)/share/man/man3
406+ rm -f $(MANS)
407+
408+.PHONY: clean
409+clean:
410+ rm -f $(MANS)
411+
412+.PHONY: realclean
413+realclean:
414+ -$(MAKE) clean
415--- openssl097-0.9.7g.orig/Makefile
416+++ openssl097-0.9.7g/Makefile
417@@ -11,11 +11,11 @@
418 SHLIB_VERSION_HISTORY=
419 SHLIB_MAJOR=0
420 SHLIB_MINOR=9.7
421-SHLIB_EXT=
422-PLATFORM=dist
423-OPTIONS= no-krb5
424-CONFIGURE_ARGS=dist
425-SHLIB_TARGET=
426+SHLIB_EXT=.so.$(SHLIB_MAJOR).$(SHLIB_MINOR)
427+PLATFORM=debian-i386
428+OPTIONS=--prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 zlib-dynamic debug no-krb5
429+CONFIGURE_ARGS=--prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 zlib-dynamic debug debian-i386
430+SHLIB_TARGET=linux-shared
431
432 # HERE indicates where this Makefile lives. This can be used to indicate
433 # where sub-Makefiles are expected to be. Currently has very limited usage,
434@@ -26,10 +26,10 @@
435 # for, say, /usr/ and yet have everything installed to /tmp/somedir/usr/.
436 # Normally it is left empty.
437 INSTALL_PREFIX=
438-INSTALLTOP=/usr/local/ssl
439+INSTALLTOP=/usr
440
441 # Do not edit this manually. Use Configure --openssldir=DIR do change this!
442-OPENSSLDIR=/usr/local/ssl
443+OPENSSLDIR=/usr/lib/ssl
444
445 # NO_IDEA - Define to build without the IDEA algorithm
446 # NO_RC4 - Define to build without the RC4 algorithm
447@@ -59,12 +59,13 @@
448 # equal 4.
449 # PKCS1_CHECK - pkcs1 tests.
450
451-CC= cc
452+#TOP=$(shell pwd)
453+CC= gcc
454 #CFLAG= -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall -Wuninitialized -DSHA1_ASM -DMD5_ASM -DRMD160_ASM
455-CFLAG= -DOPENSSL_NO_KRB5 -O
456-DEPFLAG=
457+CFLAG= -DZLIB_SHARED -DZLIB -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DOPENSSL_NO_KRB5 -DOPENSSL_NO_IDEA -DOPENSSL_NO_MDC2 -DOPENSSL_NO_RC5 -DL_ENDIAN -DTERMIO -O3 -Wall -g
458+DEPFLAG= -DOPENSSL_NO_IDEA -DOPENSSL_NO_MDC2 -DOPENSSL_NO_RC5
459 PEX_LIBS=
460-EX_LIBS=
461+EX_LIBS= -ldl
462 EXE_EXT=
463 ARFLAGS=
464 AR=ar $(ARFLAGS) r
465@@ -72,7 +73,7 @@
466 PERL= /usr/bin/perl
467 TAR= tar
468 TARFLAGS= --no-recursion
469-MAKEDEPPROG=makedepend
470+MAKEDEPPROG= gcc
471
472 # We let the C compiler driver to take care of .s files. This is done in
473 # order to be excused from maintaining a separate set of architecture
474@@ -177,13 +178,13 @@
475 # we might set SHLIB_MARK to '$(SHARED_LIBS)'.
476 SHLIB_MARK=
477
478-DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps test tools
479+DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps doc tools
480 SHLIBDIRS= crypto ssl
481
482 # dirs in crypto to build
483 SDIRS= objects \
484- md2 md4 md5 sha mdc2 hmac ripemd \
485- des rc2 rc4 rc5 idea bf cast \
486+ md2 md4 md5 sha hmac ripemd \
487+ des rc2 rc4 bf cast \
488 bn ec rsa dsa dh dso engine aes \
489 buffer bio stack lhash rand err \
490 evp asn1 pem x509 x509v3 conf txt_db pkcs7 pkcs12 comp ocsp ui krb5
491@@ -196,10 +197,10 @@
492
493 MAKEFILE= Makefile
494
495-MANDIR=$(OPENSSLDIR)/man
496+MANDIR=/usr/share/man
497 MAN1=1
498 MAN3=3
499-MANSUFFIX=
500+MANSUFFIX=ssl
501 SHELL=/bin/sh
502
503 TOP= .
504@@ -211,7 +212,7 @@
505 SHARED_CRYPTO=libcrypto$(SHLIB_EXT)
506 SHARED_SSL=libssl$(SHLIB_EXT)
507 SHARED_LIBS=
508-SHARED_LIBS_LINK_EXTS=
509+SHARED_LIBS_LINK_EXTS=.so
510 SHARED_LDFLAGS=
511
512 GENERAL= Makefile
513@@ -826,7 +827,7 @@
514 do \
515 if [ -f "$$i" ]; then \
516 ( echo installing $$i; \
517- cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
518+ cp -d $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
519 if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \
520 : ; \
521 else \
522--- openssl097-0.9.7g.orig/Makefile.org
523+++ openssl097-0.9.7g/Makefile.org
524@@ -57,6 +57,7 @@
525 # equal 4.
526 # PKCS1_CHECK - pkcs1 tests.
527
528+#TOP=$(shell pwd)
529 CC= gcc
530 #CFLAG= -DL_ENDIAN -DTERMIO -O3 -fomit-frame-pointer -m486 -Wall -Wuninitialized -DSHA1_ASM -DMD5_ASM -DRMD160_ASM
531 CFLAG= -DTERMIOS -DL_ENDIAN -fomit-frame-pointer -O3 -m486 -Wall -DSHA1_ASM -DMD5_ASM -DRMD160_ASM
532@@ -175,7 +176,7 @@
533 # we might set SHLIB_MARK to '$(SHARED_LIBS)'.
534 SHLIB_MARK=
535
536-DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps test tools
537+DIRS= crypto fips ssl $(SHLIB_MARK) sigs apps doc tools
538 SHLIBDIRS= crypto ssl
539
540 # dirs in crypto to build
541@@ -194,10 +195,10 @@
542
543 MAKEFILE= Makefile
544
545-MANDIR=$(OPENSSLDIR)/man
546+MANDIR=/usr/share/man
547 MAN1=1
548 MAN3=3
549-MANSUFFIX=
550+MANSUFFIX=ssl
551 SHELL=/bin/sh
552
553 TOP= .
554@@ -824,7 +825,7 @@
555 do \
556 if [ -f "$$i" ]; then \
557 ( echo installing $$i; \
558- cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
559+ cp -d $$i $(INSTALL_PREFIX)$(INSTALLTOP)/lib/$$i.new; \
560 if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \
561 : ; \
562 else \
563--- openssl097-0.9.7g.orig/os2/backwardify.pl
564+++ openssl097-0.9.7g/os2/backwardify.pl
565@@ -1,4 +1,4 @@
566-#!/usr/bin/perl -w
567+#!/usr/local/bin/perl
568 use strict;
569
570 # Use as $0
571--- openssl097-0.9.7g.orig/ssl/s23_srvr.c
572+++ openssl097-0.9.7g/ssl/s23_srvr.c
573@@ -528,9 +528,7 @@
574 }
575
576 s->state=SSL2_ST_GET_CLIENT_HELLO_A;
577- if ((s->options & SSL_OP_MSIE_SSLV2_RSA_PADDING) ||
578- use_sslv2_strong ||
579- (s->options & SSL_OP_NO_TLSv1 && s->options & SSL_OP_NO_SSLv3))
580+ if (s->options & SSL_OP_NO_TLSv1 && s->options & SSL_OP_NO_SSLv3)
581 s->s2->ssl2_rollback=0;
582 else
583 /* reject SSL 2.0 session if client supports SSL 3.0 or TLS 1.0
584--- openssl097-0.9.7g.orig/ssl/ssl_algs.c
585+++ openssl097-0.9.7g/ssl/ssl_algs.c
586@@ -109,3 +109,8 @@
587 return(1);
588 }
589
590+#undef SSLeay_add_ssl_algorithms
591+int SSLeay_add_ssl_algorithms(void)
592+ {
593+ return SSL_library_init();
594+ }
595--- openssl097-0.9.7g.orig/tools/c_rehash
596+++ openssl097-0.9.7g/tools/c_rehash
597@@ -6,7 +6,7 @@
598
599 my $openssl;
600
601-my $dir = "/usr/local/ssl";
602+my $dir = "/usr/lib/ssl";
603
604 if(defined $ENV{OPENSSL}) {
605 $openssl = $ENV{OPENSSL};
606--- openssl097-0.9.7g.orig/tools/c_rehash.in
607+++ openssl097-0.9.7g/tools/c_rehash.in
608@@ -1,4 +1,4 @@
609-#!/usr/local/bin/perl
610+#!/usr/bin/perl
611
612
613 # Perl c_rehash script, scan all files in a directory
614--- openssl097-0.9.7g.orig/util/clean-depend.pl
615+++ openssl097-0.9.7g/util/clean-depend.pl
616@@ -1,4 +1,4 @@
617-#!/usr/local/bin/perl -w
618+#!/usr/local/bin/perl
619 # Clean the dependency list in a makefile of standard includes...
620 # Written by Ben Laurie <ben@algroup.co.uk> 19 Jan 1999
621
622--- openssl097-0.9.7g.orig/util/extract-names.pl
623+++ openssl097-0.9.7g/util/extract-names.pl
624@@ -1,4 +1,4 @@
625-#!/usr/bin/perl
626+#!/usr/local/bin/perl
627
628 $/ = ""; # Eat a paragraph at once.
629 while(<STDIN>) {
630--- openssl097-0.9.7g.orig/util/mkdef.pl
631+++ openssl097-0.9.7g/util/mkdef.pl
632@@ -1,4 +1,4 @@
633-#!/usr/local/bin/perl -w
634+#!/usr/local/bin/perl
635 #
636 # generate a .def file
637 #
638--- openssl097-0.9.7g.orig/util/mkerr.pl
639+++ openssl097-0.9.7g/util/mkerr.pl
640@@ -1,4 +1,4 @@
641-#!/usr/local/bin/perl -w
642+#!/usr/local/bin/perl
643
644 my $config = "crypto/err/openssl.ec";
645 my $debug = 0;
646--- openssl097-0.9.7g.orig/util/mkstack.pl
647+++ openssl097-0.9.7g/util/mkstack.pl
648@@ -1,4 +1,4 @@
649-#!/usr/local/bin/perl -w
650+#!/usr/local/bin/perl
651
652 # This is a utility that searches out "DECLARE_STACK_OF()"
653 # declarations in .h and .c files, and updates/creates/replaces
654--- openssl097-0.9.7g.orig/util/pod2man.pl
655+++ openssl097-0.9.7g/util/pod2man.pl
656@@ -1,4 +1,4 @@
657-: #!/usr/bin/perl-5.005
658+#!/usr/local/bin/perl
659 eval 'exec /usr/bin/perl -S $0 ${1+"$@"}'
660 if $running_under_some_shell;
661
662--- openssl097-0.9.7g.orig/util/selftest.pl
663+++ openssl097-0.9.7g/util/selftest.pl
664@@ -1,4 +1,4 @@
665-#!/usr/local/bin/perl -w
666+#!/usr/local/bin/perl
667 #
668 # Run the test suite and generate a report
669 #
670--- openssl097-0.9.7g.orig/VMS/VMSify-conf.pl
671+++ openssl097-0.9.7g/VMS/VMSify-conf.pl
672@@ -1,4 +1,4 @@
673-#! /usr/bin/perl
674+#!/usr/local/bin/perl
675
676 use strict;
677 use warnings;
678--- openssl097-0.9.7g.orig/debian/po/sv.po
679+++ openssl097-0.9.7g/debian/po/sv.po
680@@ -0,0 +1,61 @@
681+# Translators, if you are not familiar with the PO format, gettext
682+# documentation is worth reading, especially sections dedicated to
683+# this format, e.g. by running:
684+# info -n '(gettext)PO Files'
685+# info -n '(gettext)Header Entry'
686+# Some information specific to po-debconf are available at
687+# /usr/share/doc/po-debconf/README-trans
688+# or http://www.debian.org/intl/l10n/po-debconf/README-trans
689+# Developers do not need to manually edit POT or PO files.
690+# , fuzzy
691+#
692+#
693+msgid ""
694+msgstr ""
695+"Project-Id-Version: openssl 0.9.7g-2\n"
696+"Report-Msgid-Bugs-To: \n"
697+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
698+"PO-Revision-Date: 2005-09-28 19:22-0700\n"
699+"Last-Translator: Daniel Nylander <po@danielnylander.se>\n"
700+"Language-Team: Swedish <sv@li.org>\n"
701+"MIME-Version: 1.0\n"
702+"Content-Type: text/plain; charset=iso-8859-1\n"
703+"Content-Transfer-Encoding: 8bit"
704+
705+#. Type: string
706+#. Description
707+#: ../libssl0.9.7.templates:3
708+msgid "Which services should be restarted to make them use the new libraries?"
709+msgstr "Vilka tjänster ska startas om för att få dom att använda de nya biblioteken?"
710+
711+#. Type: string
712+#. Description
713+#: ../libssl0.9.7.templates:3
714+msgid ""
715+"Security holes were fixed with this release. Services may not use these "
716+"fixes until they are restarted. Note: restarting sshd should not affect any "
717+"existing connections."
718+msgstr ""
719+"Säkerhetshålen fixades i denna versionen. Tjänster kommer inte att använda denna version förrän de har startats om. Notera: startar du om sshd kommer inte fixen aktiveras för redan etablerade anslutningar."
720+
721+#. Type: string
722+#. Description
723+#: ../libssl0.9.7.templates:3
724+msgid ""
725+"Following is a list of detected services that need to be restarted. Please "
726+"correct the list, if you think it is incorrect. The services names must be "
727+"identical to the script names in /etc/init.d and must be separated by "
728+"spaces. If you clear the list, no services will be restarted."
729+msgstr ""
730+"Följande är en lista på upptäcka tjänster som behöver startas om. Vänligen undersök listan och du tror den är felaktig. Namnen på tjänsterna måste vara identiska som skriptnamnen i /etc/init.d och måste separeras med mellanslag. Om du rensar listan kommer inga tjänster att startas om."
731+
732+#. Type: string
733+#. Description
734+#: ../libssl0.9.7.templates:3
735+msgid ""
736+"If other services begin to fail mysteriously after this upgrade, it may be "
737+"necessary to restart them too. We strongly recommend you to reboot your "
738+"machine to avoid the SSL related trouble."
739+msgstr ""
740+"Om andra tjänster börjar att få underliga problem efter denna uppgradering kanske de måste startas om också. Vi rekommenderar att du startar om din maskin för att inte få SSL-relaterade problem."
741+
742--- openssl097-0.9.7g.orig/debian/po/templates.pot
743+++ openssl097-0.9.7g/debian/po/templates.pot
744@@ -0,0 +1,59 @@
745+#
746+# Translators, if you are not familiar with the PO format, gettext
747+# documentation is worth reading, especially sections dedicated to
748+# this format, e.g. by running:
749+# info -n '(gettext)PO Files'
750+# info -n '(gettext)Header Entry'
751+#
752+# Some information specific to po-debconf are available at
753+# /usr/share/doc/po-debconf/README-trans
754+# or http://www.debian.org/intl/l10n/po-debconf/README-trans
755+#
756+# Developers do not need to manually edit POT or PO files.
757+#
758+#, fuzzy
759+msgid ""
760+msgstr ""
761+"Project-Id-Version: PACKAGE VERSION\n"
762+"Report-Msgid-Bugs-To: \n"
763+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
764+"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
765+"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
766+"Language-Team: LANGUAGE <LL@li.org>\n"
767+"MIME-Version: 1.0\n"
768+"Content-Type: text/plain; charset=CHARSET\n"
769+"Content-Transfer-Encoding: 8bit\n"
770+
771+#. Type: string
772+#. Description
773+#: ../libssl0.9.7.templates:3
774+msgid "Which services should be restarted to make them use the new libraries?"
775+msgstr ""
776+
777+#. Type: string
778+#. Description
779+#: ../libssl0.9.7.templates:3
780+msgid ""
781+"Security holes were fixed with this release. Services may not use these "
782+"fixes until they are restarted. Note: restarting sshd should not affect any "
783+"existing connections."
784+msgstr ""
785+
786+#. Type: string
787+#. Description
788+#: ../libssl0.9.7.templates:3
789+msgid ""
790+"Following is a list of detected services that need to be restarted. Please "
791+"correct the list, if you think it is incorrect. The services names must be "
792+"identical to the script names in /etc/init.d and must be separated by "
793+"spaces. If you clear the list, no services will be restarted."
794+msgstr ""
795+
796+#. Type: string
797+#. Description
798+#: ../libssl0.9.7.templates:3
799+msgid ""
800+"If other services begin to fail mysteriously after this upgrade, it may be "
801+"necessary to restart them too. We strongly recommend you to reboot your "
802+"machine to avoid the SSL related trouble."
803+msgstr ""
804--- openssl097-0.9.7g.orig/debian/po/ca.po
805+++ openssl097-0.9.7g/debian/po/ca.po
806@@ -0,0 +1,59 @@
807+# openssl (debconf) translation to Catalan.
808+# Copyright (C) 2004 Free Software Foundation, Inc.
809+# Aleix Badia i Bosch <abadia@ica.es>, 2004
810+msgid ""
811+msgstr ""
812+"Project-Id-Version: openssl_0.9.7d-1_templates\n"
813+"Report-Msgid-Bugs-To: \n"
814+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
815+"PO-Revision-Date: 2004-04-08 19:46GMT\n"
816+"Last-Translator: Aleix Badia i Bosch <abadia@ica.es>\n"
817+"Language-Team: Catalan <debian-l10n-catalan@lists.debian.org>\n"
818+"MIME-Version: 1.0\n"
819+"Content-Type: text/plain; charset=UTF-8\n"
820+"Content-Transfer-Encoding: 8bit\n"
821+
822+#. Type: string
823+#. Description
824+#: ../libssl0.9.7.templates:3
825+msgid "Which services should be restarted to make them use the new libraries?"
826+msgstr ""
827+"Quina serveis s'han de reiniciar perquè utilitzin les noves biblioteques?"
828+
829+#. Type: string
830+#. Description
831+#: ../libssl0.9.7.templates:3
832+msgid ""
833+"Security holes were fixed with this release. Services may not use these "
834+"fixes until they are restarted. Note: restarting sshd should not affect any "
835+"existing connections."
836+msgstr ""
837+"Aquesta versió resol els errors de seguretat. Els serveis no utilitzaran les "
838+"correccions fins que no s'hagin reiniciat. Nota: reiniciant l'sshd no "
839+"s'afectarà cap connexió existent."
840+
841+#. Type: string
842+#. Description
843+#: ../libssl0.9.7.templates:3
844+msgid ""
845+"Following is a list of detected services that need to be restarted. Please "
846+"correct the list, if you think it is incorrect. The services names must be "
847+"identical to the script names in /etc/init.d and must be separated by "
848+"spaces. If you clear the list, no services will be restarted."
849+msgstr ""
850+"És una llista de serveis que s'ha detectat que s'haurien de reiniciar, "
851+"corregiu-la si és incorrecta. El nom dels serveis hauria de ser idèntic als "
852+"noms de les seqüències del directori /etc/init.d i haurien d'estar separats "
853+"per espais. Si suprimiu la llista no es reiniciarà cap servei."
854+
855+#. Type: string
856+#. Description
857+#: ../libssl0.9.7.templates:3
858+msgid ""
859+"If other services begin to fail mysteriously after this upgrade, it may be "
860+"necessary to restart them too. We strongly recommend you to reboot your "
861+"machine to avoid the SSL related trouble."
862+msgstr ""
863+"Si després de l'actualització d'altres serveis fallen de forma inexplicable, "
864+"probablement també sigui necessari reiniciar-los. Us recomanem que per "
865+"evitar els problemes relacionats amb l'SSL reinicieu l'ordinador."
866--- openssl097-0.9.7g.orig/debian/po/da.po
867+++ openssl097-0.9.7g/debian/po/da.po
868@@ -0,0 +1,70 @@
869+# translation of openssl_0.9.7d-1_templates.po to Danish
870+#
871+# Translators, if you are not familiar with the PO format, gettext
872+# documentation is worth reading, especially sections dedicated to
873+# this format, e.g. by running:
874+# info -n '(gettext)PO Files'
875+# info -n '(gettext)Header Entry'
876+# Some information specific to po-debconf are available at
877+# /usr/share/doc/po-debconf/README-trans
878+# or http://www.debian.org/intl/l10n/po-debconf/README-trans#
879+# Developers do not need to manually edit POT or PO files.
880+# Claus Hindsgaul <claus_h@image.dk>, 2004.
881+#
882+msgid ""
883+msgstr ""
884+"Project-Id-Version: openssl_0.9.7d-1_templates\n"
885+"Report-Msgid-Bugs-To: \n"
886+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
887+"PO-Revision-Date: 2004-04-02 16:08+0200\n"
888+"Last-Translator: Claus Hindsgaul <claus_h@image.dk>\n"
889+"Language-Team: Danish <dansk@klid.dk>\n"
890+"MIME-Version: 1.0\n"
891+"Content-Type: text/plain; charset=ISO-8859-1\n"
892+"Content-Transfer-Encoding: 8bit\n"
893+"X-Generator: KBabel 1.3.1\n"
894+"Plural-Forms: nplurals=2; plural=(n != 1);\n"
895+
896+#. Type: string
897+#. Description
898+#: ../libssl0.9.7.templates:3
899+msgid "Which services should be restarted to make them use the new libraries?"
900+msgstr "Hvilke services skal genstartes, så de benytter de nye biblioteker?"
901+
902+#. Type: string
903+#. Description
904+#: ../libssl0.9.7.templates:3
905+msgid ""
906+"Security holes were fixed with this release. Services may not use these "
907+"fixes until they are restarted. Note: restarting sshd should not affect any "
908+"existing connections."
909+msgstr ""
910+"Der lukket nogle sikkerhedshuller i denne version af openssl. Disse huller "
911+"bliver ikke lukket i dine services før de er blevet genstartet. Bemærk at "
912+"det ikke vil påvirke eksisterende forbindelser at genstarte ssh."
913+
914+#. Type: string
915+#. Description
916+#: ../libssl0.9.7.templates:3
917+msgid ""
918+"Following is a list of detected services that need to be restarted. Please "
919+"correct the list, if you think it is incorrect. The services names must be "
920+"identical to the script names in /etc/init.d and must be separated by "
921+"spaces. If you clear the list, no services will be restarted."
922+msgstr ""
923+"Herunder ser du en liste over fundne services, som bør genstartes. Ret "
924+"listen, hvis du mener at den ikke er korrekt. Servicenavnene skal være "
925+"identiske med skriptnavnene i /etc/init.d, og skal adskilles med mellemrum. "
926+"Hvis du sletter listen, vil ingen services blive genstartet."
927+
928+#. Type: string
929+#. Description
930+#: ../libssl0.9.7.templates:3
931+msgid ""
932+"If other services begin to fail mysteriously after this upgrade, it may be "
933+"necessary to restart them too. We strongly recommend you to reboot your "
934+"machine to avoid the SSL related trouble."
935+msgstr ""
936+"Hvis andre services begynder at fejle på mystisk vis efter denne "
937+"opgradering, kan det være nødvendigt også at genstarte disse. Vi anbefaler "
938+"dig kraftigt at genstarte din maskine for at undgå SSL-relaterede problemer."
939--- openssl097-0.9.7g.orig/debian/po/cs.po
940+++ openssl097-0.9.7g/debian/po/cs.po
941@@ -0,0 +1,68 @@
942+#
943+# Translators, if you are not familiar with the PO format, gettext
944+# documentation is worth reading, especially sections dedicated to
945+# this format, e.g. by running:
946+# info -n '(gettext)PO Files'
947+# info -n '(gettext)Header Entry'
948+#
949+# Some information specific to po-debconf are available at
950+# /usr/share/doc/po-debconf/README-trans
951+# or http://www.debian.org/intl/l10n/po-debconf/README-trans
952+#
953+# Developers do not need to manually edit POT or PO files.
954+#
955+msgid ""
956+msgstr ""
957+"Project-Id-Version: openssl\n"
958+"Report-Msgid-Bugs-To: \n"
959+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
960+"PO-Revision-Date: 2004-09-26 17:40+0200\n"
961+"Last-Translator: Miroslav Kure <kurem@debian.cz>\n"
962+"Language-Team: Czech <provoz@debian.cz>\n"
963+"MIME-Version: 1.0\n"
964+"Content-Type: text/plain; charset=ISO-8859-2\n"
965+"Content-Transfer-Encoding: 8bit\n"
966+
967+#. Type: string
968+#. Description
969+#: ../libssl0.9.7.templates:3
970+msgid "Which services should be restarted to make them use the new libraries?"
971+msgstr "Které slu¾by se mají restartovat, aby zaèaly vyu¾ívat nové knihovny?"
972+
973+#. Type: string
974+#. Description
975+#: ../libssl0.9.7.templates:3
976+msgid ""
977+"Security holes were fixed with this release. Services may not use these "
978+"fixes until they are restarted. Note: restarting sshd should not affect any "
979+"existing connections."
980+msgstr ""
981+"V této verzi balíku byly opraveny bezbeènostní chyby. Tyto opravy se v "
982+"programech projeví a¾ po jejich restartu. Poznámka: restart sshd by nemìl "
983+"ovlivnit stávající spojení."
984+
985+#. Type: string
986+#. Description
987+#: ../libssl0.9.7.templates:3
988+msgid ""
989+"Following is a list of detected services that need to be restarted. Please "
990+"correct the list, if you think it is incorrect. The services names must be "
991+"identical to the script names in /etc/init.d and must be separated by "
992+"spaces. If you clear the list, no services will be restarted."
993+msgstr ""
994+"Následuje seznam rozpoznaných slu¾eb, které je tøeba restartovat. Pokud se "
995+"vám zdá, ¾e je tento seznam chybný, mù¾ete jej opravit. Názvy slu¾eb musí "
996+"být shodné s názvy skriptù v adresáøi /etc/init.d a musí být oddìleny "
997+"mezerami. Pokud seznam vyma¾ete, nebude restartována ¾ádná slu¾ba."
998+
999+#. Type: string
1000+#. Description
1001+#: ../libssl0.9.7.templates:3
1002+msgid ""
1003+"If other services begin to fail mysteriously after this upgrade, it may be "
1004+"necessary to restart them too. We strongly recommend you to reboot your "
1005+"machine to avoid the SSL related trouble."
1006+msgstr ""
1007+"Jestli¾e po této aktualizaci zaènou selhávat nìkteré slu¾by, mo¾ná bude "
1008+"nutné je takté¾ restartovat. Abyste se vyhnuli problémùm spojených se SSL, "
1009+"doporuèujeme restartovat celý poèítaè."
1010--- openssl097-0.9.7g.orig/debian/po/pt_BR.po
1011+++ openssl097-0.9.7g/debian/po/pt_BR.po
1012@@ -0,0 +1,69 @@
1013+#
1014+# Translators, if you are not familiar with the PO format, gettext
1015+# documentation is worth reading, especially sections dedicated to
1016+# this format, e.g. by running:
1017+# info -n '(gettext)PO Files'
1018+# info -n '(gettext)Header Entry'
1019+#
1020+# Some information specific to po-debconf are available at
1021+# /usr/share/doc/po-debconf/README-trans
1022+# or http://www.debian.org/intl/l10n/po-debconf/README-trans
1023+#
1024+# Developers do not need to manually edit POT or PO files.
1025+#
1026+msgid ""
1027+msgstr ""
1028+"Project-Id-Version: openssl\n"
1029+"Report-Msgid-Bugs-To: \n"
1030+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
1031+"PO-Revision-Date: 2004-04-04 15:21-0300\n"
1032+"Last-Translator: André Luís Lopes <andrelop@debian.org>\n"
1033+"Language-Team: Debian-BR Project <debian-l10n-portuguese@lists.debian.org>\n"
1034+"MIME-Version: 1.0\n"
1035+"Content-Type: text/plain; charset=ISO-8859-1\n"
1036+"Content-Transfer-Encoding: 8bit\n"
1037+
1038+#. Type: string
1039+#. Description
1040+#: ../libssl0.9.7.templates:3
1041+msgid "Which services should be restarted to make them use the new libraries?"
1042+msgstr "Quais serviços devem ser reiniciados para utilizar novas bibliotecas ?"
1043+
1044+#. Type: string
1045+#. Description
1046+#: ../libssl0.9.7.templates:3
1047+msgid ""
1048+"Security holes were fixed with this release. Services may not use these "
1049+"fixes until they are restarted. Note: restarting sshd should not affect any "
1050+"existing connections."
1051+msgstr ""
1052+"Falhas de segurança foram corrigidas nesta versão. Alguns serviços podem não "
1053+"utilizar estas correções até que sejam reiniciados. Note : reiniciar o sshd "
1054+"não afetará nenhuma conexão já estabelecida."
1055+
1056+#. Type: string
1057+#. Description
1058+#: ../libssl0.9.7.templates:3
1059+msgid ""
1060+"Following is a list of detected services that need to be restarted. Please "
1061+"correct the list, if you think it is incorrect. The services names must be "
1062+"identical to the script names in /etc/init.d and must be separated by "
1063+"spaces. If you clear the list, no services will be restarted."
1064+msgstr ""
1065+"A seguir será exibida uma lista de serviços que foram detectados e que "
1066+"precisam ser reiniciados. Por favor, corrija a lista caso você tenha certeza "
1067+"que ela esteja incorreta. Os nomes dos serviços devem ser idênticos aos "
1068+"nomes dos scripts sob o diretório /etc/init.d e devem estar separados por "
1069+"espaços. Caso você esvazie a lista, nenhum serviço será reiniciado."
1070+
1071+#. Type: string
1072+#. Description
1073+#: ../libssl0.9.7.templates:3
1074+msgid ""
1075+"If other services begin to fail mysteriously after this upgrade, it may be "
1076+"necessary to restart them too. We strongly recommend you to reboot your "
1077+"machine to avoid the SSL related trouble."
1078+msgstr ""
1079+"Caso outros serviços comecem a falhar misteriosamente após esta atualização, "
1080+"pode ser necessário reiniciá-los também. Recomendados fortemente que você "
1081+"reinicie sua máquina para evitar problemas relacionados a SSL."
1082--- openssl097-0.9.7g.orig/debian/po/es.po
1083+++ openssl097-0.9.7g/debian/po/es.po
1084@@ -0,0 +1,85 @@
1085+# openssl translation to spanish
1086+# Copyright (C) 2004 Software in the Public Interest
1087+# This file is distributed under the same license as the openssl package.
1088+#
1089+# Changes:
1090+# - Initial translation
1091+# Lucas Wall <kthulhu@kadath.com.ar>, 2004
1092+#
1093+#
1094+# Traductores, si no conoce el formato PO, merece la pena leer la
1095+# documentación de gettext, especialmente las secciones dedicadas a este
1096+# formato, por ejemplo ejecutando:
1097+# info -n '(gettext)PO Files'
1098+# info -n '(gettext)Header Entry'
1099+#
1100+# Equipo de traducción al español, por favor lean antes de traducir
1101+# los siguientes documentos:
1102+#
1103+# - El proyecto de traducción de Debian al español
1104+# http://www.debian.org/intl/spanish/coordinacion
1105+# especialmente las notas de traducción en
1106+# http://www.debian.org/intl/spanish/notas
1107+#
1108+# - La guía de traducción de po's de debconf:
1109+# /usr/share/doc/po-debconf/README-trans
1110+# o http://www.debian.org/intl/l10n/po-debconf/README-trans
1111+#
1112+msgid ""
1113+msgstr ""
1114+"Project-Id-Version: openssl 0.9.7d-3\n"
1115+"Report-Msgid-Bugs-To: \n"
1116+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
1117+"PO-Revision-Date: 2004-06-12 15:23-0300\n"
1118+"Last-Translator: Lucas Wall <kthulhu@kadath.com.ar>\n"
1119+"Language-Team: Debian Spanish <debian-l10n-spanish@lists.debian.org>\n"
1120+"MIME-Version: 1.0\n"
1121+"Content-Type: text/plain; charset=ISO-8859-15\n"
1122+"Content-Transfer-Encoding: 8bit\n"
1123+
1124+#. Type: string
1125+#. Description
1126+#: ../libssl0.9.7.templates:3
1127+msgid "Which services should be restarted to make them use the new libraries?"
1128+msgstr ""
1129+"¿Qué servicios desea reiniciar para que utilicen las nuevas bibliotecas?"
1130+
1131+#. Type: string
1132+#. Description
1133+#: ../libssl0.9.7.templates:3
1134+msgid ""
1135+"Security holes were fixed with this release. Services may not use these "
1136+"fixes until they are restarted. Note: restarting sshd should not affect any "
1137+"existing connections."
1138+msgstr ""
1139+"En esta versión se han solucionado problemas de seguridad. Los servicios "
1140+"afectados no gozarán de los arreglos hasta que no se hayan reiniciado. Nota: "
1141+"reiniciar el servicio «sshd» no afectará ninguna de las conexiones "
1142+"existentes."
1143+
1144+#. Type: string
1145+#. Description
1146+#: ../libssl0.9.7.templates:3
1147+msgid ""
1148+"Following is a list of detected services that need to be restarted. Please "
1149+"correct the list, if you think it is incorrect. The services names must be "
1150+"identical to the script names in /etc/init.d and must be separated by "
1151+"spaces. If you clear the list, no services will be restarted."
1152+msgstr ""
1153+"Una lista de los servicios que deben ser reiniciados se presenta a "
1154+"continuación. Si cree que no es correcta haga los ajustes necesarios. Los "
1155+"nombres de los servicios deben ser iguales a los nombres de los ficheros en "
1156+"«/etc/init.d» y debe estar separados por espacios. Ningún servicio será "
1157+"reiniciado si deja la lista en blanco."
1158+
1159+#. Type: string
1160+#. Description
1161+#: ../libssl0.9.7.templates:3
1162+msgid ""
1163+"If other services begin to fail mysteriously after this upgrade, it may be "
1164+"necessary to restart them too. We strongly recommend you to reboot your "
1165+"machine to avoid the SSL related trouble."
1166+msgstr ""
1167+"Si, tras esta actualización, otros servicios comienzan a fallar en forma "
1168+"misteriosa puede ser necesario reiniciarlos también. Para evitar problemas "
1169+"relacionados con «SSL» se le recomienda reiniciar su sistema."
1170--- openssl097-0.9.7g.orig/debian/po/fr.po
1171+++ openssl097-0.9.7g/debian/po/fr.po
1172@@ -0,0 +1,69 @@
1173+#
1174+# Translators, if you are not familiar with the PO format, gettext
1175+# documentation is worth reading, especially sections dedicated to
1176+# this format, e.g. by running:
1177+# info -n '(gettext)PO Files'
1178+# info -n '(gettext)Header Entry'
1179+# Some information specific to po-debconf are available at
1180+# /usr/share/doc/po-debconf/README-trans
1181+# or http://www.debian.org/intl/l10n/po-debconf/README-trans#
1182+# Developers do not need to manually edit POT or PO files.
1183+#
1184+msgid ""
1185+msgstr ""
1186+"Project-Id-Version: openssl_0.9.7c-5\n"
1187+"Report-Msgid-Bugs-To: \n"
1188+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
1189+"PO-Revision-Date: 2003-10-22 21:37+0200\n"
1190+"Last-Translator: Michel Grentzinger <mic.grentz@online.fr>\n"
1191+"Language-Team: French <debian-l10n-french@lists.debian.org>\n"
1192+"MIME-Version: 1.0\n"
1193+"Content-Type: text/plain; charset=ISO-8859-15\n"
1194+"Content-Transfer-Encoding: 8bit\n"
1195+
1196+#. Type: string
1197+#. Description
1198+#: ../libssl0.9.7.templates:3
1199+msgid "Which services should be restarted to make them use the new libraries?"
1200+msgstr "Services à redémarrer afin d'utiliser les nouvelles bibliothèques"
1201+
1202+#. Type: string
1203+#. Description
1204+#: ../libssl0.9.7.templates:3
1205+msgid ""
1206+"Security holes were fixed with this release. Services may not use these "
1207+"fixes until they are restarted. Note: restarting sshd should not affect any "
1208+"existing connections."
1209+msgstr ""
1210+"Des failles de sécurité on été corrigées dans cette version. Les services ne "
1211+"devraient pas utiliser ces correctifs tant qu'ils n'auront pas été "
1212+"redémarrés. Note : le redémarrage de sshd n'affectera aucune connexion "
1213+"existante."
1214+
1215+#. Type: string
1216+#. Description
1217+#: ../libssl0.9.7.templates:3
1218+msgid ""
1219+"Following is a list of detected services that need to be restarted. Please "
1220+"correct the list, if you think it is incorrect. The services names must be "
1221+"identical to the script names in /etc/init.d and must be separated by "
1222+"spaces. If you clear the list, no services will be restarted."
1223+msgstr ""
1224+"La liste suivante recense tous les services devant être redémarrés. Veuillez "
1225+"corriger la liste si vous pensez qu'elle contient des erreurs. Les noms des "
1226+"services doivent être identiques aux noms des scripts présents dans /etc/"
1227+"init.d et doivent être séparés par des espaces. Si vous effacez la liste, "
1228+"aucun service ne sera redémarré."
1229+
1230+#. Type: string
1231+#. Description
1232+#: ../libssl0.9.7.templates:3
1233+msgid ""
1234+"If other services begin to fail mysteriously after this upgrade, it may be "
1235+"necessary to restart them too. We strongly recommend you to reboot your "
1236+"machine to avoid the SSL related trouble."
1237+msgstr ""
1238+"Si d'autres services ne fonctionnent plus correctement après cette mise à "
1239+"jour, il est sans doute nécessaire de les redémarrer de la même façon. Il "
1240+"est fortement recommandé de redémarrer votre machine pour éviter les "
1241+"problèmes liés à SSL."
1242--- openssl097-0.9.7g.orig/debian/po/nl.po
1243+++ openssl097-0.9.7g/debian/po/nl.po
1244@@ -0,0 +1,71 @@
1245+# Translators, if you are not familiar with the PO format, gettext
1246+# documentation is worth reading, especially sections dedicated to
1247+# this format, e.g. by running:
1248+# info -n '(gettext)PO Files'
1249+# info -n '(gettext)Header Entry'
1250+#
1251+# Some information specific to po-debconf are available at
1252+# /usr/share/doc/po-debconf/README-trans
1253+# or http://www.debian.org/intl/l10n/po-debconf/README-trans
1254+#
1255+# Developers do not need to manually edit POT or PO files.
1256+#
1257+msgid ""
1258+msgstr ""
1259+"Project-Id-Version: openssl 0.9.7d-5\n"
1260+"Report-Msgid-Bugs-To: \n"
1261+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
1262+"PO-Revision-Date: 2004-08-01 18:31+0100\n"
1263+"Last-Translator: Luk Claes <luk.claes@ugent.be>\n"
1264+"Language-Team: Debian l10n Dutch <debian-l10n-dutch@lists.debian.org>\n"
1265+"MIME-Version: 1.0\n"
1266+"Content-Type: text/plain; charset=iso-8859-1\n"
1267+"Content-Transfer-Encoding: 8bit\n"
1268+
1269+#. Type: string
1270+#. Description
1271+#: ../libssl0.9.7.templates:3
1272+msgid "Which services should be restarted to make them use the new libraries?"
1273+msgstr ""
1274+"Welke diensten moeten herstart worden om ze de nieuwe bibliotheken te laten "
1275+"gebruiken?"
1276+
1277+#. Type: string
1278+#. Description
1279+#: ../libssl0.9.7.templates:3
1280+msgid ""
1281+"Security holes were fixed with this release. Services may not use these "
1282+"fixes until they are restarted. Note: restarting sshd should not affect any "
1283+"existing connections."
1284+msgstr ""
1285+"Er zijn veiligheidslekken gedicht in deze release. Diensten gebruiken deze "
1286+"versie misschien niet totdat ze herstart zijn. Merk op: sshd herstarten zou "
1287+"geen effect mogen hebben op bestaande verbindingen."
1288+
1289+#. Type: string
1290+#. Description
1291+#: ../libssl0.9.7.templates:3
1292+msgid ""
1293+"Following is a list of detected services that need to be restarted. Please "
1294+"correct the list, if you think it is incorrect. The services names must be "
1295+"identical to the script names in /etc/init.d and must be separated by "
1296+"spaces. If you clear the list, no services will be restarted."
1297+msgstr ""
1298+"Hierna volgt een lijst van gedetecteerde diensten die herstart moeten "
1299+"worden. Verbeter de lijst, als u denkt dat ze incorrect is. De namen moeten "
1300+"overeenkomen met de script-namen in /etc/init.d en moeten gescheiden worden "
1301+"door spaties. Als u de lijst ledigt, dan zullen er geen diensten worden "
1302+"herstart."
1303+
1304+#. Type: string
1305+#. Description
1306+#: ../libssl0.9.7.templates:3
1307+msgid ""
1308+"If other services begin to fail mysteriously after this upgrade, it may be "
1309+"necessary to restart them too. We strongly recommend you to reboot your "
1310+"machine to avoid the SSL related trouble."
1311+msgstr ""
1312+"Als er andere diensten mysterieus beginnen te falen na deze opwaardering, "
1313+"kan het nodig zijn om ze ook te herstarten. Er wordt u ten zeerste "
1314+"aanbevolen uw machine te herstarten om SSL-gerelateerde problemen te "
1315+"vermijden."
1316--- openssl097-0.9.7g.orig/debian/po/ja.po
1317+++ openssl097-0.9.7g/debian/po/ja.po
1318@@ -0,0 +1,69 @@
1319+#
1320+# Translators, if you are not familiar with the PO format, gettext
1321+# documentation is worth reading, especially sections dedicated to
1322+# this format, e.g. by running:
1323+# info -n '(gettext)PO Files'
1324+# info -n '(gettext)Header Entry'
1325+#
1326+# Some information specific to po-debconf are available at
1327+# /usr/share/doc/po-debconf/README-trans
1328+# or http://www.debian.org/intl/l10n/po-debconf/README-trans
1329+#
1330+# Developers do not need to manually edit POT or PO files.
1331+#
1332+#
1333+msgid ""
1334+msgstr ""
1335+"Project-Id-Version: openssl 0.9.7d-1\n"
1336+"Report-Msgid-Bugs-To: \n"
1337+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
1338+"PO-Revision-Date: 2004-03-24 23:41+0900\n"
1339+"Last-Translator: Hideki Yamane <henrich@samba.gr.jp>\n"
1340+"Language-Team: Japanese <debian-japanese@lists.debian.org>\n"
1341+"MIME-Version: 1.0\n"
1342+"Content-Type: text/plain; charset=EUC-JP\n"
1343+"Content-Transfer-Encoding: 8bit\n"
1344+
1345+#. Type: string
1346+#. Description
1347+#: ../libssl0.9.7.templates:3
1348+msgid "Which services should be restarted to make them use the new libraries?"
1349+msgstr "¤É¤Î¥µ¡¼¥Ó¥¹¤ò¿·¤·¤¤¥é¥¤¥Ö¥é¥ê¤ò»È¤¦¤¿¤á¤ËºÆµ¯Æ°¤·¤Þ¤¹¤«?"
1350+
1351+#. Type: string
1352+#. Description
1353+#: ../libssl0.9.7.templates:3
1354+msgid ""
1355+"Security holes were fixed with this release. Services may not use these "
1356+"fixes until they are restarted. Note: restarting sshd should not affect any "
1357+"existing connections."
1358+msgstr ""
1359+"º£²ó¤Î¥ê¥ê¡¼¥¹¤Ç¥»¥­¥å¥ê¥Æ¥£¥Û¡¼¥ë¤¬½¤Àµ¤µ¤ì¤Þ¤·¤¿¡£³Æ¥µ¡¼¥Ó¥¹¤ÏºÆµ¯Æ°¤ò¹Ô¤¦"
1360+"¤Þ¤Ç¤³¤Î½¤Àµ¤µ¤ì¤¿¥é¥¤¥Ö¥é¥ê¤òÍøÍѤ·¤Þ¤»¤ó¡£Ãí°Õ: sshd ¤ÎºÆµ¯Æ°¤Ï¸½¾õ¤ÎÀܳ¤Ë"
1361+"¤Ï²¿¤é±Æ¶Á¤·¤Þ¤»¤ó¡£"
1362+
1363+#. Type: string
1364+#. Description
1365+#: ../libssl0.9.7.templates:3
1366+msgid ""
1367+"Following is a list of detected services that need to be restarted. Please "
1368+"correct the list, if you think it is incorrect. The services names must be "
1369+"identical to the script names in /etc/init.d and must be separated by "
1370+"spaces. If you clear the list, no services will be restarted."
1371+msgstr ""
1372+"°Ê²¼¤¬ºÆµ¯Æ°¤¬É¬ÍפÀ¤ÈȽÃǤµ¤ì¤¿¥µ¡¼¥Ó¥¹¤Î¥ê¥¹¥È¤Ç¤¹¡£´Ö°ã¤Ã¤Æ¤¤¤ë¤È»×¤Ã¤¿¤é"
1373+"½¤Àµ¤·¤Æ¤¯¤À¤µ¤¤¡£¥µ¡¼¥Ó¥¹Ì¾¤Ï /etc/init.d ¤Ë¤¢¤ë¥¹¥¯¥ê¥×¥È¤Î̾Á°¤ò»Ø¤·¡¢¶õÇò"
1374+"¤Ç¶èÀÚ¤ëɬÍפ¬¤¢¤ê¤Þ¤¹¡£¥ê¥¹¥È¤¬¶õ¤Î¾ì¹ç¤Ï¡¢¥µ¡¼¥Ó¥¹¤ÎºÆµ¯Æ°¤ÏɬÍפ¢¤ê¤Þ¤»"
1375+"¤ó¡£"
1376+
1377+#. Type: string
1378+#. Description
1379+#: ../libssl0.9.7.templates:3
1380+msgid ""
1381+"If other services begin to fail mysteriously after this upgrade, it may be "
1382+"necessary to restart them too. We strongly recommend you to reboot your "
1383+"machine to avoid the SSL related trouble."
1384+msgstr ""
1385+"¾¤Î¥µ¡¼¥Ó¥¹¤¬¤³¤³¤Ç¤Î¥¢¥Ã¥×¥°¥ì¡¼¥É¤Î¸å¤Ë²¿¸Î¤«¥¨¥é¡¼¤òµ¯¤³¤·»Ï¤á¤¿¾ì¹ç¡¢¤½"
1386+"¤ì¤é¤âºÆµ¯Æ°¤¹¤ëɬÍפ¬¤¢¤ê¤Þ¤¹¡£SSL ´ØÏ¢¤Î¥È¥é¥Ö¥ë¤òÈò¤±¤ë¤¿¤á¤Ë¥Þ¥·¥ó¤òºÆµ¯"
1387+"Æ°¤¹¤ë¤Î¤ò¶¯¤¯¤ª´«¤á¤·¤Þ¤¹¡£"
1388--- openssl097-0.9.7g.orig/debian/po/POTFILES.in
1389+++ openssl097-0.9.7g/debian/po/POTFILES.in
1390@@ -0,0 +1 @@
1391+[type: gettext/rfc822deb] libssl0.9.7.templates
1392--- openssl097-0.9.7g.orig/debian/po/vi.po
1393+++ openssl097-0.9.7g/debian/po/vi.po
1394@@ -0,0 +1,61 @@
1395+# Vietnamese translation for openssl.
1396+# Copyright © 2005 Free Software Foundation, Inc.
1397+# Clytie Siddall <clytie@riverland.net.au>, 2005.
1398+#
1399+msgid ""
1400+msgstr ""
1401+"Project-Id-Version: openssl 0.9.7g-1\n"
1402+"Report-Msgid-Bugs-To: \n"
1403+"POT-Creation-Date: 2004-03-22 18:34+0100\n"
1404+"PO-Revision-Date: 2005-07-03 12:49+0930\n"
1405+"Last-Translator: Clytie Siddall <clytie@riverland.net.au>\n"
1406+"Language-Team: Vietnamese <gnomevi-list@lists.sourceforge.net>\n"
1407+"MIME-Version: 1.0\n"
1408+"Content-Type: text/plain; charset=utf-8\n"
1409+"Content-Transfer-Encoding: 8bit\n"
1410+"Plural-Forms: nplurals=1; plural=0\n"
1411+"X-Generator: LocFactoryEditor 1.2.2\n"
1412+
1413+#. Type: string
1414+#. Description
1415+#: ../libssl0.9.7.templates:3
1416+msgid "Which services should be restarted to make them use the new libraries?"
1417+msgstr "Äể dùng những thÆ° viên má»›i, cần phải khởi chạy lại dịch vụ nào?"
1418+
1419+#. Type: string
1420+#. Description
1421+#: ../libssl0.9.7.templates:3
1422+msgid ""
1423+"Security holes were fixed with this release. Services may not use these "
1424+"fixes until they are restarted. Note: restarting sshd should not affect any "
1425+"existing connections."
1426+msgstr ""
1427+"Phiên bản phát hành này đã sửa một số lỗ hổng bảo mật rồi. Dịch vụ sẽ dùng "
1428+"mã đã sửa chỉ sau khi khởi chạy lại thôi. Ghi chú: khởi chạy lại sshd nên "
1429+"không làm ảnh hưởng đến sá»± kết nối hiện thá»i nào."
1430+
1431+#. Type: string
1432+#. Description
1433+#: ../libssl0.9.7.templates:3
1434+msgid ""
1435+"Following is a list of detected services that need to be restarted. Please "
1436+"correct the list, if you think it is incorrect. The services names must be "
1437+"identical to the script names in /etc/init.d and must be separated by "
1438+"spaces. If you clear the list, no services will be restarted."
1439+msgstr ""
1440+"Theo đây có một danh sách dịch vụ đã phát hiện mà cần phải khởi chạy lại. "
1441+"Bạn hãy sửa danh sách nếu chưa đúng. Tên dịch vụ phải là cùng một tên với "
1442+"tên tập lệnh trong «/etc/init.d», những tên định giới bằng dấu cách. Nếu bạn "
1443+"xóa hết danh sách thì sẽ không khởi chạy lại dịch vụ nào."
1444+
1445+#. Type: string
1446+#. Description
1447+#: ../libssl0.9.7.templates:3
1448+msgid ""
1449+"If other services begin to fail mysteriously after this upgrade, it may be "
1450+"necessary to restart them too. We strongly recommend you to reboot your "
1451+"machine to avoid the SSL related trouble."
1452+msgstr ""
1453+"Nếu dịch vụ khác mới bị lỗi một cách lạ sau việc nâng cấp này, có lẽ bạn "
1454+"cũng cần phải khởi chạy lại chúng. Khuyến khích nặng bạn khởi động máy này "
1455+"để tránh lỗi liên quan đến SSL."
1456--- openssl097-0.9.7g.orig/debian/libssl0.9.7-dev.docs
1457+++ openssl097-0.9.7g/debian/libssl0.9.7-dev.docs
1458@@ -0,0 +1 @@
1459+demos
1460--- openssl097-0.9.7g.orig/debian/control
1461+++ openssl097-0.9.7g/debian/control
1462@@ -0,0 +1,27 @@
1463+Source: openssl097
1464+Build-Depends: debhelper (>= 4.2.0), binutils (>= 2.14.90.0.7), zlib1g-dev
1465+Section: utils
1466+Priority: optional
1467+Maintainer: Debian OpenSSL Team <pkg-openssl-devel@lists.alioth.debian.org>
1468+Uploaders: Christoph Martin <christoph.martin@uni-mainz.de>, Kurt Roeckx <kurt@roeckx.be>
1469+Standards-Version: 3.6.1
1470+
1471+Package: libssl0.9.7
1472+Section: oldlibs
1473+Priority: important
1474+Architecture: any
1475+Depends: ${shlibs:Depends}, ${misc:Depends}
1476+Conflicts: ssleay (<< 0.9.2b), libssl, openssl (<< 0.9.6-2), libssl096-dev (<< 0.9.6-2)
1477+Description: SSL shared libraries
1478+ libssl and libcrypto shared libraries needed by programs like
1479+ apache-ssl, telnet-ssl and openssh.
1480+ .
1481+ It is part of the OpenSSL implementation of SSL.
1482+
1483+Package: libssl0.9.7-dbg
1484+Section: libdevel
1485+Priority: extra
1486+Architecture: any
1487+Depends: libssl0.9.7 (= ${Source-Version})
1488+Description: Symbol tables for libssl and libcrypt
1489+ This package is part of the OpenSSL implementation of SSL.
1490--- openssl097-0.9.7g.orig/debian/libssl0.9.7-dev.prerm
1491+++ openssl097-0.9.7g/debian/libssl0.9.7-dev.prerm
1492@@ -0,0 +1,3 @@
1493+#!/bin/sh -e
1494+
1495+#DEBHELPER#
1496--- openssl097-0.9.7g.orig/debian/libssl0.9.7-dev.postinst
1497+++ openssl097-0.9.7g/debian/libssl0.9.7-dev.postinst
1498@@ -0,0 +1,3 @@
1499+#!/bin/sh -e
1500+
1501+#DEBHELPER#
1502--- openssl097-0.9.7g.orig/debian/libssl0.9.7-dev.files
1503+++ openssl097-0.9.7g/debian/libssl0.9.7-dev.files
1504@@ -0,0 +1,9 @@
1505+usr/lib/libssl.so
1506+usr/lib/libcrypto.so
1507+usr/lib/libssl.a
1508+usr/lib/libcrypto.a
1509+usr/lib/libssl_pic.a
1510+usr/lib/libcrypto_pic.a
1511+usr/lib/pkgconfig/openssl.pc
1512+usr/include
1513+usr/share/man/man3
1514--- openssl097-0.9.7g.orig/debian/libssl0.9.7.templates
1515+++ openssl097-0.9.7g/debian/libssl0.9.7.templates
1516@@ -0,0 +1,15 @@
1517+Template: libssl0.9.7/restart-services
1518+Type: string
1519+_Description: Which services should be restarted to make them use the new libraries?
1520+ Security holes were fixed with this release. Services may not use these
1521+ fixes until they are restarted. Note: restarting sshd should not affect any
1522+ existing connections.
1523+ .
1524+ Following is a list of detected services that need to be restarted. Please
1525+ correct the list, if you think it is incorrect. The services names must be
1526+ identical to the script names in /etc/init.d and must be separated by
1527+ spaces. If you clear the list, no services will be restarted.
1528+ .
1529+ If other services begin to fail mysteriously after this upgrade, it may be
1530+ necessary to restart them too. We strongly recommend you to reboot your
1531+ machine to avoid the SSL related trouble.
1532--- openssl097-0.9.7g.orig/debian/libssl0.9.7-dev.dirs
1533+++ openssl097-0.9.7g/debian/libssl0.9.7-dev.dirs
1534@@ -0,0 +1,3 @@
1535+usr/lib
1536+usr/share/doc/libssl0.9.7-dev
1537+usr/share/man
1538--- openssl097-0.9.7g.orig/debian/README.optimization
1539+++ openssl097-0.9.7g/debian/README.optimization
1540@@ -0,0 +1,32 @@
1541+openssl ships optimized libraries for some cpus. The loading of these
1542+libraries depends on the ability of the dynamic linker to automaticly
1543+search additional directories depending on the cpu. If you want to
1544+find out which are these directories for your computer, run the
1545+following command:
1546+
1547+LD_LIBRARY_PATH=/usr/lib strace true 2>&1 | fgrep "open(\"/usr/lib"
1548+
1549+On a Pentium III this gives:
1550+
1551+open("/usr/lib/i686/mmx/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1552+open("/usr/lib/i686/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1553+open("/usr/lib/mmx/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1554+open("/usr/lib/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory)
1555+
1556+Following is a list of cpus, library paths and possible optimizations:
1557+
1558+486 /usr/lib/i486 -march=i486 -mcpu=i486 +asm
1559+Pentium /usr/lib/i586 -march=i586 -mcpu=i586 +asm
1560+Pentium MMX /usr/lib/i586 -march=i586 -mcpu=i586 +asm
1561+Pentium II /usr/lib/i686 -march=i686 -mcpu=i686 +asm
1562+Pentium III /usr/lib/i686 -march=i686 -mcpu=i686 +asm
1563+AMD-K6 /usr/lib/i586 -march=i586 -mcpu=i586 +asm
1564+AMD-K7 /usr/lib/i686 -march=i686 -mcpu=i686 +asm
1565+
1566+Sparc v8 /usr/lib/v8 -mcpu=v8 +asm
1567+Sparc v9 /usr/lib/v9 -mcpu=v9 -Wa,-Av8plus +asm
1568+
1569+Alpha EV4 /usr/lib/ev4 -mcpu=ev4
1570+Alpha EV5 /usr/lib/ev5 -mcpu=ev5
1571+
1572++asm means that the handcrafted 586 assembler routines can be used.
1573--- openssl097-0.9.7g.orig/debian/libssl0.9.7.dirs
1574+++ openssl097-0.9.7g/debian/libssl0.9.7.dirs
1575@@ -0,0 +1,2 @@
1576+usr/lib
1577+usr/share/doc/libssl0.9.7
1578--- openssl097-0.9.7g.orig/debian/libssl0.9.7.files
1579+++ openssl097-0.9.7g/debian/libssl0.9.7.files
1580@@ -0,0 +1,3 @@
1581+usr/lib/*.so.*.*.*
1582+usr/lib/*/*.so.*.*.*
1583+usr/lib/i686/cmov/*.so.*.*.*
1584--- openssl097-0.9.7g.orig/debian/changelog
1585+++ openssl097-0.9.7g/debian/changelog
1586@@ -0,0 +1,689 @@
1587+openssl097 (0.9.7g-5) unstable; urgency=medium
1588+
1589+ * Add the shlibs for libcrypto again, removed by accident.
1590+ * Change priority of -dbg package to extra.
1591+ * Remove the libssl0.9.7-dev package.
1592+ * Add security patch for CAN-2005-2969, setting urgency to medium.
1593+
1594+ -- Kurt Roeckx <kurt@roeckx.be> Wed, 12 Oct 2005 21:07:19 +0200
1595+
1596+openssl097 (0.9.7g-4) unstable; urgency=low
1597+
1598+ * Reintroduce openssl 0.9.7 source package to provide the old
1599+ library version. This should make packages linked against
1600+ the old version installable again. (Closes: #332892)
1601+ * Drop the openssl and libcrypto0.9.7-udeb package.
1602+ * Rename libssl-dev to libssl0.9.7-dev.
1603+ * Add myself to the Uploaders field.
1604+
1605+ -- Kurt Roeckx <kurt@roeckx.be> Mon, 10 Oct 2005 18:38:30 +0200
1606+
1607+openssl (0.9.7g-3) unstable; urgency=low
1608+
1609+ * change Configure line for debian-freebsd-i386 to debian-kfreebsd-i386
1610+ (closes: #327692)
1611+ * include -dbg version. That implies compiling with -g and without
1612+ -fomit-frame-pointer (closes: #293823, #153811)
1613+
1614+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 23 Sep 2005 13:51:57 +0200
1615+
1616+openssl (0.9.7g-2) unstable; urgency=low
1617+
1618+ * really include nl translation
1619+ * remove special ia64 code from rc4 code to make the abi compatible to
1620+ older 0.9.7 versions (closes: #310489, #309274)
1621+ * fix compile flag for debian-ppc64 (closes: #318750)
1622+ * small fix in libssl0.9.7.postinst (closes: #239956)
1623+ * fix pk7_mime.c to prevent garbled messages because of to early memory
1624+ free (closes: #310184)
1625+ * include vietnamese debconf translation (closes: #316689)
1626+ * make optimized i386 libraries have non executable stack (closes:
1627+ #321721)
1628+ * remove leftover files from ssleay
1629+ * move from dh_installmanpages to dh_installman
1630+ * change Maintainer to pkg-openssl-devel@lists.alioth.debian.org
1631+
1632+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 7 Sep 2005 15:32:54 +0200
1633+
1634+openssl (0.9.7g-1) unstable; urgency=low
1635+
1636+ * New upstream release
1637+ * Added support for proxy certificates according to RFC 3820.
1638+ Because they may be a security thread to unaware applications,
1639+ they must be explicitely allowed in run-time. See
1640+ docs/HOWTO/proxy_certificates.txt for further information.
1641+ * Prompt for pass phrases when appropriate for PKCS12 input format.
1642+ * Back-port of selected performance improvements from development
1643+ branch, as well as improved support for PowerPC platforms.
1644+ * Add lots of checks for memory allocation failure, error codes to indicate
1645+ failure and freeing up memory if a failure occurs.
1646+ * Perform some character comparisons of different types in X509_NAME_cmp:
1647+ this is needed for some certificates that reencode DNs into UTF8Strings
1648+ (in violation of RFC3280) and can't or wont issue name rollover
1649+ certificates.
1650+ * corrected watchfile
1651+ * added upstream source url (closes: #292904)
1652+ * fix typo in CA.pl.1 (closes: #290271)
1653+ * change debian-powerpc64 to debian-ppc64 and adapt the configure
1654+ options to be the same like upstream (closes: #289841)
1655+ * include -signcert option in CA.pl usage
1656+ * compile with zlib-dynamic to use system zlib (closes: #289872)
1657+
1658+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 9 May 2005 23:32:03 +0200
1659+
1660+openssl (0.9.7e-3) unstable; urgency=high
1661+
1662+ * really fix der_chop. The fix from -1 was not really included (closes:
1663+ #281212)
1664+ * still fixes security problem CAN-2004-0975 etc.
1665+ - tempfile raise condition in der_chop
1666+ - Avoid a race condition when CRLs are checked in a multi threaded
1667+ environment.
1668+
1669+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 16 Dec 2004 18:41:29 +0100
1670+
1671+openssl (0.9.7e-2) unstable; urgency=high
1672+
1673+ * fix perl path in der_chop and c_rehash (closes: #281212)
1674+ * still fixes security problem CAN-2004-0975 etc.
1675+ - tempfile raise condition in der_chop
1676+ - Avoid a race condition when CRLs are checked in a multi threaded
1677+ environment.
1678+
1679+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 14 Nov 2004 20:16:21 +0100
1680+
1681+openssl (0.9.7e-1) unstable; urgency=high
1682+
1683+ * SECURITY UPDATE: fix insecure temporary file handling
1684+ * apps/der_chop:
1685+ - replaced $$-style creation of temporary files with
1686+ File::Temp::tempfile()
1687+ - removed unused temporary file name in do_certificate()
1688+ * References:
1689+ CAN-2004-0975 (closes: #278260)
1690+ * fix ASN1_STRING_to_UTF8 with UTF8 (closes: #260357)
1691+ * New upstream release with security fixes
1692+ - Avoid a race condition when CRLs are checked in a multi threaded
1693+ environment.
1694+ - Various fixes to s3_pkt.c so alerts are sent properly.
1695+ - Reduce the chances of duplicate issuer name and serial numbers (in
1696+ violation of RFC3280) using the OpenSSL certificate creation
1697+ utilities.
1698+ * depends openssl on perl-base instead of perl (closes: #280225)
1699+ * support powerpc64 in Configure (closes: #275224)
1700+ * include cs translation (closes: #273517)
1701+ * include nl translation (closes: #272479)
1702+ * Fix default dir of c_rehash (closes: #253126)
1703+
1704+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 12 Nov 2004 14:11:15 +0100
1705+
1706+openssl (0.9.7d-5) unstable; urgency=low
1707+
1708+ * Make S/MIME encrypt work again (backport from CVS) (closes: #241407,
1709+ #241386)
1710+
1711+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 26 Jul 2004 17:22:42 +0200
1712+
1713+openssl (0.9.7d-4) unstable; urgency=low
1714+
1715+ * add Catalan translation (closes: #248749)
1716+ * add Spanish translation (closes: #254561)
1717+ * include NMU fixes: see below
1718+ * decrease optimisation level for debian-arm to work around gcc bug
1719+ (closes: #253848) (thanks to Steve Langasek and Thom May)
1720+ * Add libcrypto0.9.7-udeb. (closes: #250010) (thanks to Bastian Blank)
1721+ * Add watchfile
1722+
1723+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 14 Jul 2004 14:31:02 +0200
1724+
1725+openssl (0.9.7d-3) unstable; urgency=low
1726+
1727+ * rename -pic.a libraries to _pic.a (closes: #250016)
1728+
1729+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 24 May 2004 17:02:29 +0200
1730+
1731+openssl (0.9.7d-2) unstable; urgency=low
1732+
1733+ * include PIC libs (libcrypto-pic.a and libssl-pic.a) to libssl-dev
1734+ (closes: #246928, #243999)
1735+ * add racoon to restart list (closes: #242652)
1736+ * add Brazilian, Japanese and Danish translations (closes: #242087,
1737+ #241830, #241705)
1738+
1739+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 11 May 2004 10:13:49 +0200
1740+
1741+openssl (0.9.7d-1) unstable; urgency=high
1742+
1743+ * new upstream
1744+ * fixes security holes (http://www.openssl.org/news/secadv_20040317.txt)
1745+ (closes: #238661)
1746+ * includes support for debian-amd64 (closes: #235551, #232310)
1747+ * fix typo in pem.pod (closes: #219873)
1748+ * fix typo in libssl0.9.7.templates (closes: #224690)
1749+ * openssl suggests ca-certificates (closes: #217180)
1750+ * change debconf template to gettext format (closes: #219013)
1751+ * include french debconf template (closes: #219014)
1752+
1753+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 18 Mar 2004 16:18:43 +0100
1754+
1755+openssl (0.9.7c-5) unstable; urgency=low
1756+
1757+ * include openssl.pc into libssl-dev (closes: #212545)
1758+
1759+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 16 Oct 2003 16:31:32 +0200
1760+
1761+openssl (0.9.7c-4) unstable; urgency=low
1762+
1763+ * change question to restart services to debconf (closes: #214840)
1764+ * stop using dh_undocumented (closes: #214831)
1765+
1766+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 10 Oct 2003 15:40:48 +0200
1767+
1768+openssl (0.9.7c-3) unstable; urgency=low
1769+
1770+ * fix POSIX conformance for head in libssl0.9.7.postinst (closes:
1771+ #214700)
1772+
1773+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 8 Oct 2003 14:02:38 +0200
1774+
1775+openssl (0.9.7c-2) unstable; urgency=low
1776+
1777+ * add filerc macro to libssl0.9.7.postinst (closes: #213906)
1778+ * restart spamassassins spamd on upgrade (closes: #214106)
1779+ * restart more services on upgrade
1780+ * fix EVP_BytesToKey manpage (closes: #213715)
1781+
1782+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 7 Oct 2003 15:01:32 +0200
1783+
1784+openssl (0.9.7c-1) unstable; urgency=high
1785+
1786+ * upstream security fix (closes: #213451)
1787+ - Fix various bugs revealed by running the NISCC test suite:
1788+ Stop out of bounds reads in the ASN1 code when presented with
1789+ invalid tags (CAN-2003-0543 and CAN-2003-0544).
1790+ Free up ASN1_TYPE correctly if ANY type is invalid (CAN-2003-0545).
1791+ If verify callback ignores invalid public key errors don't try to check
1792+ certificate signature with the NULL public key.
1793+ - In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate
1794+ if the server requested one: as stated in TLS 1.0 and SSL 3.0
1795+ specifications.
1796+ * more minor upstream bugfixes
1797+ * fix formatting in c_issuer (closes: #190026)
1798+ * fix Debian-FreeBSD support (closes: #200381)
1799+ * restart some services in postinst to make them use the new libraries
1800+ * remove duplicated openssl.1, crypto.3 and ssl.3 (closes: #198594)
1801+
1802+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 1 Oct 2003 08:54:27 +0200
1803+
1804+openssl (0.9.7b-2) unstable; urgency=high
1805+
1806+ * fix permission of /etc/ssl/private to 700 again
1807+ * change section of libssl-dev to libdevel
1808+
1809+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 23 Apr 2003 11:13:24 +0200
1810+
1811+openssl (0.9.7b-1) unstable; urgency=high
1812+
1813+ * upstream security fix
1814+ - Countermeasure against the Klima-Pokorny-Rosa extension of
1815+ Bleichbacher's attack on PKCS #1 v1.5 padding: treat
1816+ a protocol version number mismatch like a decryption error
1817+ in ssl3_get_client_key_exchange (ssl/s3_srvr.c). (CAN-2003-0131)
1818+ (closes: #189087)
1819+ - Turn on RSA blinding by default in the default implementation
1820+ to avoid a timing attack. Applications that don't want it can call
1821+ RSA_blinding_off() or use the new flag RSA_FLAG_NO_BLINDING.
1822+ They would be ill-advised to do so in most cases. (CAN-2003-0147)
1823+ - Change RSA blinding code so that it works when the PRNG is not
1824+ seeded (in this case, the secret RSA exponent is abused as
1825+ an unpredictable seed -- if it is not unpredictable, there
1826+ is no point in blinding anyway). Make RSA blinding thread-safe
1827+ by remembering the creator's thread ID in rsa->blinding and
1828+ having all other threads use local one-time blinding factors
1829+ (this requires more computation than sharing rsa->blinding, but
1830+ avoids excessive locking; and if an RSA object is not shared
1831+ between threads, blinding will still be very fast).
1832+ for more details see the CHANGES file
1833+
1834+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 16 Apr 2003 10:32:57 +0200
1835+
1836+openssl (0.9.7a-1) unstable; urgency=high
1837+
1838+ * upstream Security fix
1839+ - In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked
1840+ via timing by performing a MAC computation even if incorrrect
1841+ block cipher padding has been found. This is a countermeasure
1842+ against active attacks where the attacker has to distinguish
1843+ between bad padding and a MAC verification error. (CAN-2003-0078)
1844+ for more details see the CHANGES file
1845+
1846+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 21 Feb 2003 22:39:40 +0100
1847+
1848+openssl (0.9.7-4) unstable; urgency=low
1849+
1850+ * use DH_COMPAT=3 to build
1851+ * move i686 to i686/cmov to fix problems on Via C3. For that to work we
1852+ have to depend on the newest libc6 on i386 (closes: #177891)
1853+ * fix bug in ui_util.c (closes: #177615)
1854+ * fix typo in md5.h (closes: #178112)
1855+
1856+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 24 Jan 2003 10:22:56 +0100
1857+
1858+openssl (0.9.7-3) unstable; urgency=low
1859+
1860+ * enable build of ultrasparc code on non ultrasparc machines (closes:
1861+ #177024)
1862+
1863+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 17 Jan 2003 08:22:13 +0100
1864+
1865+openssl (0.9.7-2) unstable; urgency=low
1866+
1867+ * include changes between 0.9.6g-9 and -10
1868+ * fix problem in build-process on i386 with libc6 version number
1869+
1870+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 13 Jan 2003 14:26:56 +0100
1871+
1872+openssl (0.9.7-1) unstable; urgency=low
1873+
1874+ * new upstream
1875+ * includes engine support
1876+ * a lot of bugfixes and enhancements, see the CHANGES file
1877+ * include AES encryption
1878+ * makes preview of certificate configurable (closes: #176059)
1879+ * fix x509 manpage (closes: #168070)
1880+ * fix declaration of ERR_load_PEM_string in pem.h (closes: #141360)
1881+
1882+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 11 Jan 2003 09:12:16 +0100
1883+
1884+openssl (0.9.6g-10) unstable; urgency=low
1885+
1886+ * fix problem in build-process on i386 with libc6 version number
1887+ (closes: #167096)
1888+
1889+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 4 Nov 2002 12:27:21 +0100
1890+
1891+openssl (0.9.6g-9) unstable; urgency=low
1892+
1893+ * fix typo in i386 libc6 depend (sigh) (closes: #163848)
1894+
1895+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 8 Oct 2002 23:29:20 +0200
1896+
1897+openssl (0.9.6g-8) unstable; urgency=low
1898+
1899+ * fix libc6 depends. Only needed for i386 (closes: #163701)
1900+ * remove SHLIB section for bsds from Configure (closes: #163585)
1901+
1902+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 8 Oct 2002 10:57:35 +0200
1903+
1904+openssl (0.9.6g-7) unstable; urgency=low
1905+
1906+ * enable i686 optimisation and depend on fixed glibc (closes: #163500)
1907+ * remove transition package ssleay
1908+ * include optimisation vor sparcv8 (closes: #139996)
1909+ * improve optimisation vor sparcv9
1910+
1911+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 6 Oct 2002 14:07:12 +0200
1912+
1913+openssl (0.9.6g-6) unstable; urgency=low
1914+
1915+ * temporarily disable i686 optimisation (See bug in glibc #161788)
1916+
1917+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 21 Sep 2002 18:56:49 +0200
1918+
1919+openssl (0.9.6g-5) unstable; urgency=low
1920+
1921+ * i486 can use i586 assembler
1922+ * include set -xe in the for loops in the rules files to make it abort
1923+ on error (closes: #161768)
1924+
1925+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 21 Sep 2002 16:23:11 +0200
1926+
1927+openssl (0.9.6g-4) unstable; urgency=low
1928+
1929+ * fix optimization for alpha and sparc
1930+ * add optimization for i486
1931+
1932+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 20 Sep 2002 22:36:19 +0200
1933+
1934+openssl (0.9.6g-3) unstable; urgency=low
1935+
1936+ * add optimized libraries for i586, i686, ev4, ev5 and v9 (closes: #139783)
1937+
1938+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 19 Sep 2002 18:33:04 +0200
1939+
1940+openssl (0.9.6g-2) unstable; urgency=low
1941+
1942+ * fix manpage names (closes: #156717, #156718, #156719, #156721)
1943+
1944+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 15 Aug 2002 11:26:37 +0200
1945+
1946+openssl (0.9.6g-1) unstable; urgency=low
1947+
1948+ * new upstream version
1949+ * Use proper error handling instead of 'assertions' in buffer
1950+ overflow checks added in 0.9.6e. This prevents DoS (the
1951+ assertions could call abort()). (closes: #155985, #156495)
1952+ * Fix ASN1 checks. Check for overflow by comparing with LONG_MAX
1953+ and get fix the header length calculation.
1954+ * include support for new sh* architectures (closes: #155117)
1955+
1956+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 14 Aug 2002 13:59:22 +0200
1957+
1958+openssl (0.9.6e-1) unstable; urgency=high
1959+
1960+ * fixes remote exploits (see DSA-136-1)
1961+
1962+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 30 Jul 2002 18:32:28 +0200
1963+
1964+openssl (0.9.6d-1) unstable; urgency=low
1965+
1966+ * new upstream (minor) version
1967+ * includes Configure lines for debian-*bsd-* (closes: #130413)
1968+ * fix wrong prototype for BN_pseudo_rand_range in BN_rand(3ssl) (closes:
1969+ #144586)
1970+ * fix typos in package description (closes: #141469)
1971+ * fix typo in SSL_CTX_set_cert_store manpage (closes: #135297)
1972+
1973+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 3 Jun 2002 19:42:10 +0200
1974+
1975+openssl (0.9.6c-2) unstable; urgency=low
1976+
1977+ * moved from non-US to main
1978+
1979+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 19 Mar 2002 14:48:39 +0100
1980+
1981+openssl (0.9.6c-1) unstable; urgency=low
1982+
1983+ * new upstream version with a lot of bugfixes
1984+ * remove directory /usr/include/openssl from openssl package (closes:
1985+ bug #121226)
1986+ * remove selfdepends from libssl0.9.6
1987+ * link openssl binary shared again
1988+
1989+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 5 Jan 2002 19:04:31 +0100
1990+
1991+openssl (0.9.6b-4) unstable; urgency=low
1992+
1993+ * build with -D_REENTRANT for threads support on all architectures
1994+ (closes: #112329, #119239)
1995+
1996+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 24 Nov 2001 12:17:51 +0100
1997+
1998+openssl (0.9.6b-3) unstable; urgency=low
1999+
2000+ * disable idea, mdc2 and rc5 because they are not free (closes: #65368)
2001+ * ready to be moved from nonus to main
2002+
2003+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 21 Nov 2001 17:51:41 +0100
2004+
2005+openssl (0.9.6b-2) unstable; urgency=high
2006+
2007+ * fix definition of crypt in des.h (closes: #107533)
2008+ * fix descriptions (closes: #109503)
2009+
2010+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 17 Sep 2001 15:38:27 +0200
2011+
2012+openssl (0.9.6b-1) unstable; urgency=medium
2013+
2014+ * new upstream fixes some security issues (closes: #105835, #100146)
2015+ * added support for s390 (closes: #105681)
2016+ * added support for sh (closes: #100003)
2017+ * change priority of libssl096 to standard as ssh depends on it (closes:
2018+ #105440)
2019+ * don't optimize for i486 to support i386. (closes: #104127, #82194)
2020+
2021+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 20 Jul 2001 15:52:42 +0200
2022+
2023+openssl (0.9.6a-3) unstable; urgency=medium
2024+
2025+ * add perl-base to builddeps
2026+ * include static libraries in libssl-dev (closes: #93688)
2027+
2028+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 14 May 2001 20:16:06 +0200
2029+
2030+openssl (0.9.6a-2) unstable; urgency=medium
2031+
2032+ * change Architecture of ssleay from any to all (closes: #92913)
2033+ * depend libssl-dev on the exact same version of libssl0.9.6 (closes:
2034+ #88939)
2035+ * remove lib{crypto,ssl}.a from openssl (closes: #93666)
2036+ * rebuild with newer gcc to fix atexit problem (closes: #94036)
2037+
2038+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 2 May 2001 12:28:39 +0200
2039+
2040+openssl (0.9.6a-1) unstable; urgency=medium
2041+
2042+ * new upstream, fixes some security bugs (closes: #90584)
2043+ * fix typo in s_server manpage (closes: #89756)
2044+
2045+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 10 Apr 2001 12:13:11 +0200
2046+
2047+openssl (0.9.6-2) unstable; urgency=low
2048+
2049+ * policy: reorganisation of package names: libssl096 -> libssl0.9.6,
2050+ libssl096-dev -> libssl-dev (closes: #83426)
2051+ * libssl0.9.6 drops replaces libssl09 (Closes: #83425)
2052+ * install upstream CHANGES files (Closes: #83430)
2053+ * added support for hppa and ia64 (Closes: #88790)
2054+ * move man3 manpages to libssl-dev (Closes: #87546)
2055+ * fix formating problem in rand_add(1) (Closes: #87547)
2056+ * remove manpage duplicates (Closes: #87545, #74986)
2057+ * make package descriptions clearer (Closes: #83518, #83444)
2058+ * increase default emailAddress_max from 40 to 60 (Closes: #67238)
2059+ * removed RSAREF warning (Closes: #84122)
2060+
2061+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 8 Mar 2001 14:24:00 +0100
2062+
2063+openssl (0.9.6-1) unstable; urgency=low
2064+
2065+ * New upstream version (Thanks to Enrique Zanardi <ezanard@debian.org>)
2066+ (closes: #72388)
2067+ * Add support for debian-hurd (closes: #76032)
2068+
2069+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 13 Nov 2000 22:30:46 +0100
2070+
2071+openssl (0.9.5a-5) unstable; urgency=low
2072+
2073+ * move manpages in standard directories with section ssl (closes:
2074+ #72152, #69809)
2075+
2076+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 5 Oct 2000 19:56:20 +0200
2077+
2078+openssl (0.9.5a-4) unstable; urgency=low
2079+
2080+ * include edg_rand_bytes patch from and for apache-ssl
2081+
2082+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 23 Sep 2000 16:48:06 +0200
2083+
2084+openssl (0.9.5a-3) unstable; urgency=low
2085+
2086+ * fix call to dh_makeshlibs to create correct shlibs file and make
2087+ dependend programs link correctly (closes: Bug#61658)
2088+ * include a note in README.debian concerning the location of the
2089+ subcommand manpages (closes: Bug#69809)
2090+
2091+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 16 Sep 2000 19:10:50 +0200
2092+
2093+openssl (0.9.5a-2) unstable; urgency=low
2094+
2095+ * try to fix the sharedlib problem. change soname of library
2096+ (closes: Bug#4622, #66102, #66538, #66123)
2097+
2098+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 12 Jul 2000 03:26:30 +0200
2099+
2100+openssl (0.9.5a-1) unstable; urgency=low
2101+
2102+ * new upstream version (major changes see file NEWS) (closes: Bug#63976,
2103+ #65239, #65358)
2104+ * new library package libssl095a because of probably changed library
2105+ interface (closes: Bug#46222)
2106+ * added architecture mips and mipsel (closes: Bug#62437, #60366)
2107+ * provide shlibs.local file in build to help build if libraries are not
2108+ yet installed (closes: Bug#63984)
2109+
2110+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 11 Jun 2000 15:17:35 +0200
2111+
2112+openssl (0.9.4-5) frozen unstable; urgency=medium
2113+
2114+ * cleanup of move of doc directories to /usr/share/doc (closes:
2115+ Bug#56430)
2116+ * lintian issues (closes: Bug#49358)
2117+ * move demos from openssl to libssl09-dev (closes: Bug#59201)
2118+ * move to debhelpers
2119+
2120+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 11 Mar 2000 10:38:04 +0100
2121+
2122+openssl (0.9.4-4) unstable; urgency=medium
2123+
2124+ * Added 'debian-arm' in 'Configure'. (closes: Bug#54251, #54766)
2125+ * Fixed Configure for 'debian-m68k' (closes: Bug#53636)
2126+
2127+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 15 Jan 2000 13:16:18 +0100
2128+
2129+openssl (0.9.4-3) unstable; urgency=low
2130+
2131+ * define symbol SSLeay_add_ssl_algorithms for backward compatibility
2132+ (closes: Bug#46882)
2133+ * remove manpages from /usr/doc/openssl (closes: Bug#46791)
2134+
2135+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 14 Oct 1999 16:51:08 +0200
2136+
2137+openssl (0.9.4-2) unstable; urgency=low
2138+
2139+ * include some more docu in pod format (Bug #43933)
2140+ * removed -mv8 from sparc flags (Bug #44769)
2141+
2142+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 14 Sep 1999 22:04:06 +0200
2143+
2144+openssl (0.9.4-1) unstable; urgency=low
2145+
2146+ * new upstream version (Closes: #42926)
2147+
2148+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sat, 28 Aug 1999 17:04:23 +0200
2149+
2150+openssl (0.9.3a-1) unstable; urgency=low
2151+
2152+ * new upstream version (Bug #38345, #38627)
2153+ * sparc is big-endian (Bug #39973)
2154+
2155+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 7 Jul 1999 16:03:37 +0200
2156+
2157+openssl (0.9.2b-3) unstable; urgency=low
2158+
2159+ * correct move conffiles to /etc/ssl (Bug #38570)
2160+
2161+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 31 May 1999 21:08:07 +0200
2162+
2163+openssl (0.9.2b-2) unstable; urgency=low
2164+
2165+ * added convenience package ssleay to help upgrade to openssl (Bug
2166+ #37185, #37623, #36326)
2167+ * added some missing dependencies from libssl09 (Bug #36681, #35867,
2168+ #36326)
2169+ * move lib*.so to libssl09-dev (Bug #36761)
2170+ * corrected version numbers of library files
2171+ * introduce link from /usr/lib/ssl to /etc/ssl (Bug #36710)
2172+
2173+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 23 May 1999 14:57:48 +0200
2174+
2175+openssl (0.9.2b-1) unstable; urgency=medium
2176+
2177+ * First openssl version
2178+
2179+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 31 Mar 1999 15:54:26 +0200
2180+
2181+ssleay (0.9.0b-2) unstable; urgency=low
2182+
2183+ * Include message about the (not)usage of RSAREF (#24409)
2184+ * Move configfiles from /usr/lib/ssl to /etc/ssl (#26406)
2185+ * Change definitions for sparc (#26487)
2186+ * Added missing dependency (#28591)
2187+ * Make debian/libtool executable (#29708)
2188+ * /etc/ssl/lib/ssleay.cnf is now a confile (#32624)
2189+
2190+ -- Christoph Martin <christoph.martin@uni-mainz.de> Sun, 21 Mar 1999 19:41:04 +0100
2191+
2192+ssleay (0.9.0b-1) unstable; urgency=low
2193+
2194+ * new upstream version (Bug #21227, #25971)
2195+ * build shared libraries with -fPIC (Bug #20027)
2196+ * support sparc architecture (Bug #28467)
2197+
2198+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 13 Oct 1998 10:20:13 +0200
2199+
2200+ssleay (0.8.1-7) frozen unstable; urgency=high
2201+
2202+ * security fix patch to 0.8.1b (bug #24022)
2203+
2204+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 6 Jul 1998 15:42:15 +0200
2205+
2206+ssleay (0.8.1-6) frozen unstable; urgency=low
2207+
2208+ * second try to fix bug #15235 (copyright was still missing)
2209+
2210+ -- Christoph Martin <christoph.martin@uni-mainz.de> Mon, 22 Jun 1998 08:56:27 +0200
2211+
2212+ssleay (0.8.1-5) frozen unstable; urgency=high
2213+
2214+ * changed /dev/random to /dev/urandom (Bug #23169, #17817)
2215+ * copyright contains now the full licence (Bug #15235)
2216+ * fixed bug #19410 (md5sums-lists-nonexisting-file)
2217+ * added demos to /usr/doc (Bug #17372)
2218+ * fixed type in package description (Bug #18969)
2219+ * fixed bug in adding documentation (Bug #21463)
2220+ * added patch for support of debian-powerpc (Bug #21579)
2221+
2222+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 18 Jun 1998 23:09:13 +0200
2223+
2224+ssleay (0.8.1-4) unstable; urgency=low
2225+
2226+ * purged dependency from libc5
2227+
2228+ -- Christoph Martin <christoph.martin@uni-mainz.de> Tue, 11 Nov 1997 15:31:50 +0100
2229+
2230+ssleay (0.8.1-3) unstable; urgency=low
2231+
2232+ * changed packagename libssl to libssl08 to get better dependancies
2233+
2234+ -- Christoph Martin <christoph.martin@uni-mainz.de> Fri, 7 Nov 1997 14:23:17 +0100
2235+
2236+ssleay (0.8.1-2) unstable; urgency=low
2237+
2238+ * linked shared libraries against libc6
2239+ * use /dev/random for randomseed
2240+
2241+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 5 Nov 1997 11:21:40 +0100
2242+
2243+ssleay (0.8.1-1) unstable; urgency=low
2244+
2245+ * new upstream version
2246+
2247+ -- Christoph Martin <christoph.martin@uni-mainz.de> Thu, 16 Oct 1997 16:15:43 +0200
2248+
2249+ssleay (0.6.6-2) unstable; urgency=low
2250+
2251+ * cleanup in diffs
2252+ * removed INSTALL from docs (bug #13205)
2253+ * split libssl and libssl-dev (but #13735)
2254+
2255+ -- Christoph Martin <christoph.martin@uni-mainz.de> Wed, 15 Oct 1997 17:38:38 +0200
2256+
2257+ssleay (0.6.6-1) unstable; urgency=low
2258+
2259+ * New upstream version
2260+ * added shared libraries for libcrypto and libssl
2261+
2262+ -- Christoph Martin <martin@uni-mainz.de> Thu, 26 Jun 1997 19:26:14 +0200
2263+
2264+ssleay (0.6.4-2) unstable; urgency=low
2265+
2266+ * changed doc filenames from .doc to .txt to be able to read them
2267+ over with webbrowser
2268+
2269+ -- Christoph Martin <martin@uni-mainz.de> Tue, 25 Feb 1997 14:02:53 +0100
2270+
2271+ssleay (0.6.4-1) unstable; urgency=low
2272+
2273+ * Initial Release.
2274+
2275+ -- Christoph Martin <martin@uni-mainz.de> Fri, 22 Nov 1996 21:29:51 +0100
2276--- openssl097-0.9.7g.orig/debian/rules
2277+++ openssl097-0.9.7g/debian/rules
2278@@ -0,0 +1,173 @@
2279+#!/usr/bin/make -f
2280+# Sample debian.rules file - for GNU Hello (1.3).
2281+# Copyright 1994,1995 by Ian Jackson.
2282+# I hereby give you perpetual unlimited permission to copy,
2283+# modify and relicense this file, provided that you do not remove
2284+# my name from the file itself. (I assert my moral right of
2285+# paternity under the Copyright, Designs and Patents Act 1988.)
2286+# This file may have to be extensively modified
2287+#
2288+# Modified to be a prototype for debmake by Christoph Lameter <clameter@debian.org>
2289+SHELL=/bin/bash
2290+export DH_COMPAT=3
2291+
2292+package=openssl
2293+
2294+# For generating the manpages
2295+export VERSION=$(shell dpkg-parsechangelog | grep '^Version:' | sed -e 's/^.*://' -e 's/-.*//')
2296+
2297+# The binary architeture
2298+DEB_HOST_ARCH = $(shell dpkg-architecture -qDEB_HOST_ARCH)
2299+
2300+CONFARGS = --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 zlib-dynamic debug
2301+OPT_alpha = ev4 ev5
2302+OPT_i386 = i486 i586 i686/cmov
2303+OPT_sparc = v8 v9
2304+ARCHOPTS = OPT_$(DEB_HOST_ARCH)
2305+OPTS = $($(ARCHOPTS))
2306+WANTED_LIBC_VERSION = 2.3.1-10
2307+
2308+build:
2309+ dh_testdir
2310+ perl util/perlpath.pl /usr/bin
2311+# perl util/ssldir.pl /usr/lib/ssl
2312+# chmod +x debian/libtool
2313+ ./Configure no-shared $(CONFARGS) debian-$(DEB_HOST_ARCH)
2314+ make -f Makefile DIRS="crypto ssl" all
2315+ mv libcrypto.a libcrypto.static
2316+ mv libssl.a libssl.static
2317+ make -f Makefile DIRS="crypto ssl" clean
2318+ test -z "$(OPTS)" || for opt in $(OPTS); \
2319+ do \
2320+ set -xe; \
2321+ ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH)-$$opt; \
2322+ make -f Makefile DIRS="crypto ssl" all; \
2323+ mkdir -p $$opt; \
2324+ mv libcrypto.so* libssl.so* $$opt/; \
2325+ make -f Makefile DIRS="crypto ssl" clean; \
2326+ done
2327+ ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH)
2328+ #make -f Makefile depend
2329+ ln -sf apps/openssl.pod crypto/crypto.pod ssl/ssl.pod doc/
2330+# make -f Makefile linux-shared
2331+ make -f Makefile all
2332+# strip apps/openssl
2333+# make -f Makefile clean DIRS="crypto ssl"
2334+# ./Configure --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 debian-$(DEB_HOST_ARCH)
2335+# make -f Makefile all DIRS="crypto ssl"
2336+ touch build
2337+
2338+clean:
2339+ dh_testdir
2340+ dh_testroot
2341+ -rm -f build
2342+ -perl util/perlpath.pl /usr/bin
2343+ -./Configure $(CONFARGS) debian-$(DEB_HOST_ARCH)
2344+ -make -f Makefile clean clean-shared
2345+ #-make -f Makefile dclean
2346+ -perl util/perlpath.pl /usr/local/bin/perl
2347+# perl util/ssldir.pl /usr/local/ssl
2348+ -rm -f test/.rnd test/testkey.pem test/testreq.pem test/certCA.srl
2349+ -rm -f util/mk1mf.bak Makefile.bak `find . -name Makefile.save`
2350+ -rm -f crypto/pem/ctx_size
2351+ -rm -f `find . -name "*~"`
2352+ -rm -f `find . -name "*.orig" -o -name "*.rej"`
2353+ -rm -f certs/*.0 certs/*.1
2354+# -rm -rf debian/tmp debian/files* core `find debian/* -type d`
2355+ -rm -rf core $(OPTS)
2356+ -rm doc/*.pod
2357+ -rm -f libcrypto.* libssl.*
2358+ dh_clean
2359+
2360+binary-indep: build
2361+ dh_testdir
2362+ dh_testroot
2363+# There are no architecture-independent files to be uploaded
2364+# generated by this package. If there were any they would be
2365+# made here.
2366+
2367+binary-arch: build
2368+ dh_testdir
2369+ dh_testroot
2370+ dh_clean
2371+# -rm -rf debian/tmp `find debian/* -type d`
2372+# install -d debian/tmp debian/libssl0.9.7 debian/libssl0.9.7-dev
2373+# cd debian/tmp && install -d `cat ../dirs`
2374+# cd debian/libssl09 && install -d `cat ../libssl09.dirs`
2375+# cd debian/libssl09-dev && install -d `cat ../libssl09-dev.dirs`
2376+ dh_installdirs
2377+#openssl install
2378+ make -f Makefile install INSTALL_PREFIX=`pwd`/debian/tmp
2379+ rm debian/tmp/usr/share/man/man1/openssl.1
2380+ rm debian/tmp/usr/share/man/man3/crypto.3
2381+ rm debian/tmp/usr/share/man/man3/ssl.3
2382+# rm debian/tmp/usr/lib/libcrypto.a
2383+# rm debian/tmp/usr/lib/libssl.a
2384+ mv debian/tmp/usr/lib/libcrypto.a debian/tmp/usr/lib/libcrypto_pic.a
2385+ mv debian/tmp/usr/lib/libssl.a debian/tmp/usr/lib/libssl_pic.a
2386+ cp -pf libcrypto.static debian/tmp/usr/lib/libcrypto.a
2387+ cp -pf libssl.static debian/tmp/usr/lib/libssl.a
2388+# mv debian/tmp/usr/lib/ssl/bin debian/tmp/usr/bin/ssl
2389+# (cd debian/tmp/usr/lib/ssl; ln -s /usr/bin/ssl bin)
2390+# mv debian/tmp/usr/lib/ssl/include debian/tmp/usr/include/ssl
2391+# (cd debian/tmp/usr/lib/ssl; ln -s /usr/include/ssl include)
2392+# chmod -x debian/tmp/usr/lib/*.so.*
2393+# mv debian/tmp/usr/lib/*.a debian/libssl09-dev/usr/lib/
2394+# mv debian/tmp/usr/lib/*.so debian/libssl09-dev/usr/lib/
2395+# mv debian/tmp/usr/lib/*.so.*.*.* debian/libssl09/usr/lib/
2396+# mv debian/tmp/usr/lib/*.la debian/libssl09-dev/usr/lib/
2397+# mv debian/tmp/usr/include debian/libssl09-dev/usr/
2398+ mkdir -p debian/tmp/etc/ssl
2399+ mv debian/tmp/usr/lib/ssl/{certs,openssl.cnf,private} debian/tmp/etc/ssl/
2400+ ln -s /etc/ssl/{certs,openssl.cnf,private} debian/tmp/usr/lib/ssl/
2401+ cp -auv lib*.so* debian/tmp/usr/lib/
2402+# cp -auv lib*.a debian/tmp/usr/lib/
2403+ for opt in $(OPTS); do set -xe; mkdir -p debian/tmp/usr/lib/$$opt; cp -auv $$opt/lib*.so* debian/tmp/usr/lib/$$opt/; done
2404+ install debian/copyright debian/libssl0.9.7/usr/share/doc/libssl0.9.7/
2405+ install debian/changelog debian/libssl0.9.7/usr/share/doc/libssl0.9.7/changelog.Debian
2406+# install debian/copyright debian/libssl0.9.7-dev/usr/share/doc/libssl0.9.7-dev/
2407+# install debian/changelog debian/libssl0.9.7-dev/usr/share/doc/libssl0.9.7-dev/changelog.Debian
2408+# debstd -u CHANGES* LICENSE README NEWS
2409+ dh_installdocs CHANGES.SSLeay LICENSE README NEWS debian/README.optimization
2410+ dh_installexamples
2411+ dh_installchangelogs CHANGES
2412+# dh_installmenu
2413+# dh_installcron
2414+ dh_installdebconf
2415+# dh_undocumented c_rehash.1
2416+ dh_movefiles
2417+# rmdir debian/tmp/usr/lib/ssl/lib
2418+# rmdir debian/tmp/usr/include/openssl
2419+# rmdir debian/tmp/usr/include
2420+# for opt in $(OPTS); do set -xe; rm -fr debian/tmp/usr/lib/$$opt; done
2421+ dh_compress
2422+ dh_fixperms -X etc/ssl/private
2423+ dh_strip --dbg-package=libssl0.9.7
2424+ dh_perl -d
2425+# dh_suidregister
2426+ dh_shlibdeps -l`pwd` -Xlibssl.so
2427+ # Hack, to depend on version of libc6 which supports the i686 directory
2428+ if [ "${DEB_HOST_ARCH}" == "i386" ]; \
2429+ then \
2430+ SHLIB=`cat debian/libssl0.9.7.substvars`; \
2431+ LIBC_VERSION=`echo $$SHLIB | sed s'/.*libc6 (>= \(.*\))/\1/'`; \
2432+ if dpkg --compare-versions ${WANTED_LIBC_VERSION} gt $$LIBC_VERSION; \
2433+ then \
2434+ echo $$SHLIB | sed s'/libc6 (>= \(.*\))/libc6 (>= ${WANTED_LIBC_VERSION})/' > debian/libssl0.9.7.substvars; \
2435+ fi \
2436+ fi
2437+ dh_gencontrol
2438+ dh_makeshlibs -m 0.9.7
2439+ dh_installdeb
2440+ dh_md5sums
2441+ dh_builddeb
2442+ echo -en "\a"
2443+
2444+# Below here is fairly generic really
2445+
2446+binary: binary-indep binary-arch
2447+
2448+source diff:
2449+ @echo >&2 'source and diff are obsolete - use dpkg-source -b'; false
2450+
2451+.PHONY: binary binary-arch binary-indep clean
2452--- openssl097-0.9.7g.orig/debian/libssl0.9.7.postinst
2453+++ openssl097-0.9.7g/debian/libssl0.9.7.postinst
2454@@ -0,0 +1,139 @@
2455+#!/bin/sh -e
2456+
2457+. /usr/share/debconf/confmodule
2458+
2459+package_name()
2460+{
2461+ echo $(basename $0 .postinst)
2462+}
2463+
2464+# element() is a helper function for file-rc:
2465+element() {
2466+ local element list IFS
2467+
2468+ element="$1"
2469+
2470+ [ "$2" = "in" ] && shift
2471+ list="$2"
2472+ [ "$list" = "-" ] && return 1
2473+ [ "$list" = "*" ] && return 0
2474+
2475+ IFS=","
2476+ set -- $list
2477+ case $element in
2478+ "$1"|"$2"|"$3"|"$4"|"$5"|"$6"|"$7"|"$8"|"$9")
2479+ return 0
2480+ esac
2481+ return 1
2482+}
2483+
2484+# filerc (runlevel, service) returns /etc/init.d/service, if service is
2485+# running in $runlevel:
2486+filerc() {
2487+ local runlevel basename
2488+ runlevel=$1
2489+ basename=$2
2490+ while read LINE
2491+ do
2492+ case $LINE in
2493+ \#*|"") continue
2494+ esac
2495+
2496+ set -- $LINE
2497+ SORT_NO="$1"; STOP="$2"; START="$3"; CMD="$4"
2498+ [ "$CMD" = "/etc/init.d/$basename" ] || continue
2499+
2500+ if element "$runlevel" in "$START" || element "S" in "$START"
2501+ then
2502+ echo "/etc/init.d/$basename"
2503+ return 0
2504+ fi
2505+ done < /etc/runlevel.conf
2506+ echo ""
2507+}
2508+
2509+if [ "$1" = "configure" ]
2510+then
2511+ if [ ! -z "$2" ]; then
2512+ if dpkg --compare-versions "$2" lt 0.9.7d-1; then
2513+ echo -n "Checking for services that may need to be restarted..."
2514+
2515+ check="sendmail ssh"
2516+ check="$check apache2-common ssh-nonfree exim4"
2517+ check="$check apache-ssl libapache-mod-ssl openvpn spamassassin"
2518+ check="$check courier-imap-ssl courier-mta-ssl courier-pop-ssl"
2519+ check="$check postfix-tls cyrus21-imapd cyrus21-pop3d"
2520+ check="$check postgresql racoon"
2521+ # Only get the ones that are installed, and configured
2522+ check=$(dpkg -s $check 2> /dev/null | sed '/^$/{N;/^\n$/D;}' | awk 'BEGIN{RS="\n\n";FS="\n"}{if ( $2 ~ /Status: .* installed$/ ) { print $1 } }' | cut -f 2 -d ' ')
2523+ # apache2 ships its init script in apache2-common, but the
2524+ # script is apache2
2525+ check=$(echo $check | sed 's/apache2-common/apache2/g')
2526+ # For mod-ssl apache has to be restarted
2527+ check=$(echo $check | sed 's/libapache-mod-ssl/apache/g')
2528+ rl=$(runlevel | awk '{print $2}')
2529+ for service in $check; do
2530+ if [ -f /usr/share/file-rc/rc -o -f /usr/lib/file-rc/rc ] && [ -f /etc/runlevel.conf ]; then
2531+ idl=$(filerc $rl $service)
2532+ else
2533+ idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1)
2534+ fi
2535+ if [ -n "$idl" ] && [ -x $idl ]; then
2536+ services="$service $services"
2537+ fi
2538+ done
2539+ echo "done."
2540+ if [ -n "$services" ]; then
2541+ db_version 2.0
2542+
2543+ db_reset libssl0.9.7/restart-services
2544+ db_set libssl0.9.7/restart-services "$services"
2545+ db_input critical libssl0.9.7/restart-services || true
2546+ db_go || true
2547+ db_get libssl0.9.7/restart-services
2548+ # Arghhh, close all the stupid debconf pipes
2549+ db_stop
2550+
2551+ if [ "x$RET" != "x" ]
2552+ then
2553+ services=$RET
2554+ answer=yes
2555+ else
2556+ answer=no
2557+ fi
2558+ echo
2559+ if [ "$answer" = yes ] && [ "$services" != "" ]; then
2560+ echo "Restarting services possibly affected by the upgrade:"
2561+ failed=""
2562+ for service in $services; do
2563+ idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1)
2564+ echo -n " $service: stopping..."
2565+ $idl stop > /dev/null 2>&1 || true
2566+ sleep 1
2567+ echo -n "starting..."
2568+ if $idl start > /dev/null 2>&1; then
2569+ echo "done."
2570+ else
2571+ echo "FAILED! ($?)"
2572+ failed="$service $failed"
2573+ fi
2574+ done
2575+ echo
2576+ if [ -n "$failed" ]; then
2577+ # Ruh roh, George
2578+ echo "The following services failed to start: $failed"
2579+ echo
2580+ echo "You will need to start these manually by running \`/etc/init.d/<service> start'"
2581+ echo "If the service still fails to start, you may need to file a bug on"
2582+ echo "$(package_name) or the service involved."
2583+ else
2584+ echo "Services restarted successfully."
2585+ fi
2586+ echo
2587+ fi
2588+ fi
2589+ fi # end upgrading and $2 lt 0.9.7c-1
2590+ fi # Upgrading
2591+fi
2592+
2593+#DEBHELPER#
2594--- openssl097-0.9.7g.orig/debian/watch
2595+++ openssl097-0.9.7g/debian/watch
2596@@ -0,0 +1,2 @@
2597+version=2
2598+ftp://ftp.openssl.org/source/openssl-(\d+\.\d+\.\d+[a-z]?)\.tar\.gz debian uupdate
2599--- openssl097-0.9.7g.orig/debian/libssl0.9.7.preinst
2600+++ openssl097-0.9.7g/debian/libssl0.9.7.preinst
2601@@ -0,0 +1,3 @@
2602+#!/bin/sh -e
2603+
2604+#DEBHELPER#
2605--- openssl097-0.9.7g.orig/debian/libssl0.9.7.prerm
2606+++ openssl097-0.9.7g/debian/libssl0.9.7.prerm
2607@@ -0,0 +1,3 @@
2608+#!/bin/sh -e
2609+
2610+#DEBHELPER#
2611--- openssl097-0.9.7g.orig/debian/copyright
2612+++ openssl097-0.9.7g/debian/copyright
2613@@ -0,0 +1,135 @@
2614+This package was debianized by Christoph Martin martin@uni-mainz.de on
2615+Fri, 22 Nov 1996 21:29:51 +0100.
2616+
2617+Copyright (c) 1998-2004 The OpenSSL Project
2618+Copyright (c) 1995-1998 Eric A. Young, Tim J. Hudson
2619+
2620+The upstream sources were obtained from http://www.openssl.org/
2621+
2622+
2623+ LICENSE ISSUES
2624+ ==============
2625+
2626+ The OpenSSL toolkit stays under a dual license, i.e. both the conditions of
2627+ the OpenSSL License and the original SSLeay license apply to the toolkit.
2628+ See below for the actual license texts. Actually both licenses are BSD-style
2629+ Open Source licenses. In case of any license issues related to OpenSSL
2630+ please contact openssl-core@openssl.org.
2631+
2632+ OpenSSL License
2633+ ---------------
2634+
2635+/* ====================================================================
2636+ * Copyright (c) 1998-2004 The OpenSSL Project. All rights reserved.
2637+ *
2638+ * Redistribution and use in source and binary forms, with or without
2639+ * modification, are permitted provided that the following conditions
2640+ * are met:
2641+ *
2642+ * 1. Redistributions of source code must retain the above copyright
2643+ * notice, this list of conditions and the following disclaimer.
2644+ *
2645+ * 2. Redistributions in binary form must reproduce the above copyright
2646+ * notice, this list of conditions and the following disclaimer in
2647+ * the documentation and/or other materials provided with the
2648+ * distribution.
2649+ *
2650+ * 3. All advertising materials mentioning features or use of this
2651+ * software must display the following acknowledgment:
2652+ * "This product includes software developed by the OpenSSL Project
2653+ * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
2654+ *
2655+ * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
2656+ * endorse or promote products derived from this software without
2657+ * prior written permission. For written permission, please contact
2658+ * openssl-core@openssl.org.
2659+ *
2660+ * 5. Products derived from this software may not be called "OpenSSL"
2661+ * nor may "OpenSSL" appear in their names without prior written
2662+ * permission of the OpenSSL Project.
2663+ *
2664+ * 6. Redistributions of any form whatsoever must retain the following
2665+ * acknowledgment:
2666+ * "This product includes software developed by the OpenSSL Project
2667+ * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
2668+ *
2669+ * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
2670+ * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
2671+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
2672+ * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
2673+ * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
2674+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
2675+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
2676+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
2677+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
2678+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
2679+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
2680+ * OF THE POSSIBILITY OF SUCH DAMAGE.
2681+ * ====================================================================
2682+ *
2683+ * This product includes cryptographic software written by Eric Young
2684+ * (eay@cryptsoft.com). This product includes software written by Tim
2685+ * Hudson (tjh@cryptsoft.com).
2686+ *
2687+ */
2688+
2689+ Original SSLeay License
2690+ -----------------------
2691+
2692+/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
2693+ * All rights reserved.
2694+ *
2695+ * This package is an SSL implementation written
2696+ * by Eric Young (eay@cryptsoft.com).
2697+ * The implementation was written so as to conform with Netscapes SSL.
2698+ *
2699+ * This library is free for commercial and non-commercial use as long as
2700+ * the following conditions are aheared to. The following conditions
2701+ * apply to all code found in this distribution, be it the RC4, RSA,
2702+ * lhash, DES, etc., code; not just the SSL code. The SSL documentation
2703+ * included with this distribution is covered by the same copyright terms
2704+ * except that the holder is Tim Hudson (tjh@cryptsoft.com).
2705+ *
2706+ * Copyright remains Eric Young's, and as such any Copyright notices in
2707+ * the code are not to be removed.
2708+ * If this package is used in a product, Eric Young should be given attribution
2709+ * as the author of the parts of the library used.
2710+ * This can be in the form of a textual message at program startup or
2711+ * in documentation (online or textual) provided with the package.
2712+ *
2713+ * Redistribution and use in source and binary forms, with or without
2714+ * modification, are permitted provided that the following conditions
2715+ * are met:
2716+ * 1. Redistributions of source code must retain the copyright
2717+ * notice, this list of conditions and the following disclaimer.
2718+ * 2. Redistributions in binary form must reproduce the above copyright
2719+ * notice, this list of conditions and the following disclaimer in the
2720+ * documentation and/or other materials provided with the distribution.
2721+ * 3. All advertising materials mentioning features or use of this software
2722+ * must display the following acknowledgement:
2723+ * "This product includes cryptographic software written by
2724+ * Eric Young (eay@cryptsoft.com)"
2725+ * The word 'cryptographic' can be left out if the rouines from the library
2726+ * being used are not cryptographic related :-).
2727+ * 4. If you include any Windows specific code (or a derivative thereof) from
2728+ * the apps directory (application code) you must include an acknowledgement:
2729+ * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
2730+ *
2731+ * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
2732+ * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
2733+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
2734+ * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
2735+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
2736+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
2737+ * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
2738+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
2739+ * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
2740+ * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
2741+ * SUCH DAMAGE.
2742+ *
2743+ * The licence and distribution terms for any publically available version or
2744+ * derivative of this code cannot be changed. i.e. this code cannot simply be
2745+ * copied and put under another distribution licence
2746+ * [including the GNU Public Licence.]
2747+ */
2748+
2749--- openssl097-0.9.7g.orig/debian/shlibs.local
2750+++ openssl097-0.9.7g/debian/shlibs.local
2751@@ -0,0 +1,2 @@
2752+libcrypto 0.9.7 libssl0.9.7
2753+libssl 0.9.7 libssl0.9.7
2754--- openssl097-0.9.7g.orig/debian/README.debian
2755+++ openssl097-0.9.7g/debian/README.debian
2756@@ -0,0 +1,52 @@
2757+openssl for DEBIAN
2758+----------------------
2759+
2760+openssl replaces ssleay.
2761+
2762+The application links to openssl like req, ca, verify and s_client
2763+have been removed.
2764+
2765+Instead of `<application>` please call now `openssl <application>`
2766+
2767+eg:
2768+instead of `req` please call `openssl req`
2769+
2770+NOTE: The libssl library version for debian-i386 is optimized for
2771+486-processors and better. It will not run on 386-processors.
2772+
2773+----
2774+Self-signed certs and webservers:
2775+
2776+If you get with a selfsigned certificate and a webserver:
2777+ > "The certificate is not approved for the attempted operation."
2778+
2779+Bodo_Moeller@public.uni-hamburg.de (Bodo Moeller) writes:
2780+>Probably you are using a CA certificate for your server; if you use
2781+>"openssl req" to generate a new key and self-signed certificate with
2782+>the default openssl.cnf, the certificate you get includes certain
2783+>X.509v3 extensions that make it unfit for use as a server certificate.
2784+>This was not so with earlier versions of the software because back
2785+>then there was far less X.509v3 support.
2786+>
2787+>To look at the certificate some HTTPS server presents to its cliens,
2788+>use "openssl s_client -port 443 -host your.server", store the output
2789+>(at least the part from "-----BEGIN CERTIFICATE-----" up to "-----END
2790+>CERTIFICATE-----", including these separators) in a file and use
2791+>"openssl x509 -in the_file_you_just_stored -text" to look at it in
2792+>readable form. If it has in the "X509v3 extensions section" any of
2793+>the following entries, it is not usable as a server certificate:
2794+>
2795+> X509v3 Basic Constraints:
2796+> CA:TRUE
2797+>
2798+> X509v3 Key Usage:
2799+> Certificate Sign, CRL Sign
2800+>
2801+>To quickly create a new server key and certificate that works with
2802+>Netscape, you can just copy the original openssl.cnf file and comment
2803+>out the "x509_extensions" entry in the "[ req ]" section.
2804+>The, use "openssl req ..." as before to create a new certificate and
2805+>key.
2806+
2807+
2808+Christoph Martin <martin@uni-mainz.de>, Wed, 31 Mar 1999 16:00:51 +0200