Update to openssl-0.9.8h. Changes from 0.9.8g: Two crashes discovered using the Codenomicon TLS test suite, as reported in CVE-2008-0891 and CVE-2008-1672, were fixed. The root CA certificates of commercial CAs were removed from the distribution. Functions were added to implement RFC3394 compatible AES key wrapping. Utility functions to handle ASN1 structures were added. The certificate status request TLS extension, as defined in RFC3546, was implemented. Several other bugfixes and enhancements were made.diff -r1.133 -r1.134 pkgsrc/security/openssl/Makefile
(tnn)
@@ -1,19 +1,18 @@ | @@ -1,19 +1,18 @@ | |||
1 | # $NetBSD: Makefile,v 1.133 2008/06/16 20:18:20 tonnerre Exp $ | 1 | # $NetBSD: Makefile,v 1.134 2008/07/14 03:52:54 tnn Exp $ | |
2 | 2 | |||
3 | OPENSSL_SNAPSHOT?= # empty | 3 | OPENSSL_SNAPSHOT?= # empty | |
4 | OPENSSL_STABLE?= # empty | 4 | OPENSSL_STABLE?= # empty | |
5 | OPENSSL_VERS?= 0.9.8g | 5 | OPENSSL_VERS?= 0.9.8h | |
6 | PKGREVISION= 2 | |||
7 | 6 | |||
8 | .if empty(OPENSSL_SNAPSHOT) | 7 | .if empty(OPENSSL_SNAPSHOT) | |
9 | DISTNAME= openssl-${OPENSSL_VERS} | 8 | DISTNAME= openssl-${OPENSSL_VERS} | |
10 | MASTER_SITES= http://mirrors.isc.org/pub/openssl/source/ \ | 9 | MASTER_SITES= http://mirrors.isc.org/pub/openssl/source/ \ | |
11 | http://www.mirrors.wiretapped.net/security/cryptography/libraries/tls/openssl/ \ | 10 | http://www.mirrors.wiretapped.net/security/cryptography/libraries/tls/openssl/ \ | |
12 | http://sunsite.rediris.es/pub/mirror/OpenSSL/ \ | 11 | http://sunsite.rediris.es/pub/mirror/OpenSSL/ \ | |
13 | http://ftp.wayne.edu/pub/openssl/source/ \ | 12 | http://ftp.wayne.edu/pub/openssl/source/ \ | |
14 | http://www.binarycode.org/openssl/source/ \ | 13 | http://www.binarycode.org/openssl/source/ \ | |
15 | ftp://ftp.openssl.org/source/ | 14 | ftp://ftp.openssl.org/source/ | |
16 | .else | 15 | .else | |
17 | . if !empty(OPENSSL_STABLE:M[yY][eE][sS]) | 16 | . if !empty(OPENSSL_STABLE:M[yY][eE][sS]) | |
18 | DISTNAME= openssl-${OPENSSL_VERS:C/[a-z]$//}-stable-SNAP-${OPENSSL_SNAPSHOT} | 17 | DISTNAME= openssl-${OPENSSL_VERS:C/[a-z]$//}-stable-SNAP-${OPENSSL_SNAPSHOT} | |
19 | PKGNAME= openssl-${OPENSSL_VERS}beta${OPENSSL_SNAPSHOT} | 18 | PKGNAME= openssl-${OPENSSL_VERS}beta${OPENSSL_SNAPSHOT} |
@@ -1,15 +1,15 @@ | @@ -1,15 +1,15 @@ | |||
1 | $NetBSD: distinfo,v 1.61 2008/06/16 20:18:20 tonnerre Exp $ | 1 | $NetBSD: distinfo,v 1.62 2008/07/14 03:52:54 tnn Exp $ | |
2 | 2 | |||
3 | SHA1 (openssl-0.9.8g.tar.gz) = 4e9c5ced466715d18fd924de79bde5c15da80fa1 | 3 | SHA1 (openssl-0.9.8h.tar.gz) = ced4f2da24a202e01ea22bef30ebc8aee274de86 | |
4 | RMD160 (openssl-0.9.8g.tar.gz) = f080a32da9becdc8b98c38744d62c6fd8664f603 | 4 | RMD160 (openssl-0.9.8h.tar.gz) = 676337da20c3fc3fc4001a79c6d28589cba719cd | |
5 | Size (openssl-0.9.8g.tar.gz) = 3354792 bytes | 5 | Size (openssl-0.9.8h.tar.gz) = 3439981 bytes | |
6 | SHA1 (patch-aa) = b28ec662bf0586e31d59cab45e3a28b91b10dac1 | 6 | SHA1 (patch-aa) = b28ec662bf0586e31d59cab45e3a28b91b10dac1 | |
7 | SHA1 (patch-ab) = b09beb8db8046293cd63d3f37e0c1ae5001eb5a1 | 7 | SHA1 (patch-ab) = b09beb8db8046293cd63d3f37e0c1ae5001eb5a1 | |
8 | SHA1 (patch-ac) = a766699f2d007b70689bbad538ede07ded7b34ff | 8 | SHA1 (patch-ac) = a766699f2d007b70689bbad538ede07ded7b34ff | |
9 | SHA1 (patch-ad) = bb86ac463fc4ab8b485df5f1a4fb9c13c1fc41c3 | 9 | SHA1 (patch-ad) = bb86ac463fc4ab8b485df5f1a4fb9c13c1fc41c3 | |
10 | SHA1 (patch-ae) = 7a58f1765a3761321dcc8dafc5fe2e33207be480 | 10 | SHA1 (patch-ae) = 7a58f1765a3761321dcc8dafc5fe2e33207be480 | |
11 | SHA1 (patch-af) = 3c1a88329b1a1c54bdd4624ceaf723af3749ec32 | 11 | SHA1 (patch-af) = 3c1a88329b1a1c54bdd4624ceaf723af3749ec32 | |
12 | SHA1 (patch-ag) = 5f12c72b85e4b6c6a79dfcf87055e9e029fbd8c8 | 12 | SHA1 (patch-ag) = 5f12c72b85e4b6c6a79dfcf87055e9e029fbd8c8 | |
13 | SHA1 (patch-ah) = c961d75984a7a94c0584df8e8aa24e1f61158787 | 13 | SHA1 (patch-ah) = c961d75984a7a94c0584df8e8aa24e1f61158787 | |
14 | SHA1 (patch-ak) = 049250b9bd42e6f155145703135dab39a7ec17e0 | 14 | SHA1 (patch-ak) = 049250b9bd42e6f155145703135dab39a7ec17e0 | |
15 | SHA1 (patch-al) = 076a606352bdeaeea1cc64f16be2ac1325882302 | 15 | SHA1 (patch-al) = 076a606352bdeaeea1cc64f16be2ac1325882302 |