/[pkgs]/devel/openssl/openssl-0.9.8j-readme-warning.patch
ViewVC logotype

Contents of /devel/openssl/openssl-0.9.8j-readme-warning.patch

Parent Directory Parent Directory | Revision Log Revision Log

Revision 1.1 - (show annotations) (download) (as text)
Thu Jan 15 09:10:25 2009 UTC (10 months, 1 week ago) by tmraz
Branch: MAIN
CVS Tags: openssl-0_9_8j-2_fc11, F-12-split, openssl-1_0_0-0_8_beta3_fc13, openssl-0_9_8j-1_fc11, openssl-0_9_8j-9_fc11, openssl-1_0_0-0_1_beta3_fc12, openssl-0_9_8j-10_fc11, openssl-1_0_0-0_3_beta3_fc12, openssl-1_0_0-0_13_beta4_fc13, openssl-1_0_0-0_9_beta3_fc13, openssl-1_0_0-0_11_beta4_fc13, F-11-split, openssl-1_0_0-0_5_beta3_fc12, openssl-1_0_0-0_2_beta3_fc12, openssl-1_0_0-0_4_beta3_fc12, openssl-0_9_8j-3_fc11, openssl-0_9_8k-5_fc12, openssl-0_9_8k-6_fc12, openssl-0_9_8k-1_fc11, openssl-0_9_8k-7_fc12, openssl-0_9_8k-3_fc12, openssl-0_9_8j-5_fc11, openssl-0_9_8j-6_fc11, openssl-0_9_8k-2_fc11, openssl-1_0_0-0_7_beta3_fc12, openssl-0_9_8j-4_fc11, openssl-0_9_8j-8_fc11, openssl-0_9_8j-7_fc11, openssl-0_9_8k-4_fc12, openssl-1_0_0-0_10_beta3_fc13, openssl-1_0_0-0_14_beta4_fc13, openssl-1_0_0-0_15_beta4_fc13, openssl-1_0_0-0_12_beta4_fc13, openssl-1_0_0-0_6_beta3_fc12, HEAD
File MIME type: text/x-patch 
* Thu Jan 15 2009 Tomas Mraz <tmraz@redhat.com> 0.9.8j-1
- new upstream version with necessary soname bump (#455753)
- temporarily provide symlink to old soname to make it possible to rebuild
  the dependent packages in rawhide
- add eap-fast support (#428181)
- add possibility to disable zlib by setting
- add fips mode support for testing purposes
- do not null dereference on some invalid smime files
- add buildrequires pkgconfig (#479493)
1 diff -up openssl-0.9.8j/README.warning openssl-0.9.8j/README
2 --- openssl-0.9.8j/README.warning 2009-01-07 11:50:53.000000000 +0100
3 +++ openssl-0.9.8j/README 2009-01-14 17:43:02.000000000 +0100
4 @@ -5,6 +5,31 @@
5 Copyright (c) 1995-1998 Eric A. Young, Tim J. Hudson
6 All rights reserved.
7
8 + WARNING
9 + -------
10 +
11 + This version of OpenSSL is built in a way that supports operation in
12 + the so called FIPS mode. Note though that the library as we build it
13 + is not FIPS validated and the FIPS mode is present for testing purposes
14 + only.
15 +
16 + This version also contains a few differences from the upstream code
17 + some of which are:
18 + * The FIPS integrity verification check is implemented differently
19 + from the upstream FIPS validated OpenSSL module. It verifies
20 + HMAC-SHA256 checksum of the whole libcrypto shared library.
21 + * The module respects the kernel FIPS flag /proc/sys/crypto/fips and
22 + tries to initialize the FIPS mode if it is set to 1 aborting if the
23 + FIPS mode could not be initialized. It is also possible to force the
24 + OpenSSL library to FIPS mode especially for debugging purposes by
25 + setting the environment variable OPENSSL_FORCE_FIPS_MODE.
26 + * If the environment variable OPENSSL_NO_DEFAULT_ZLIB is set the module
27 + will not automatically load the built in compression method ZLIB
28 + when initialized. Applications can still explicitely ask for ZLIB
29 + compression method.
30 + * There is added a support for EAP-FAST through TLS extension. This code
31 + is backported from OpenSSL upstream development branch.
32 +
33 DESCRIPTION
34 -----------
35
admin@fedoraproject.org
 ViewVC Help
Powered by ViewVC 1.1.2