[Pkg-openssl-changes] r530 - in openssl/trunk/debian: . patches

Kurt Roeckx kroeckx at alioth.debian.org
Tue Mar 13 20:18:38 UTC 2012 

Author: kroeckx
Date: 2012-03-13 20:18:38 +0000 (Tue, 13 Mar 2012)
New Revision: 530

Modified:
   openssl/trunk/debian/changelog
   openssl/trunk/debian/patches/debian-targets.patch
Log:
Enable assembler for all i386 arches.  The assembler does proper
detection of CPU support, including cpuid support.
This should fix a problem with AES 192 and 256 with the padlock
engine because of the difference in NO_ASM between the between
the i686 optimized library and the engine.


Modified: openssl/trunk/debian/changelog
===================================================================
--- openssl/trunk/debian/changelog	2012-01-22 11:26:43 UTC (rev 529)
+++ openssl/trunk/debian/changelog	2012-03-13 20:18:38 UTC (rev 530)
@@ -1,3 +1,16 @@
+openssl (1.0.0h-1) unstable; urgency=high
+
+  * New upstream version
+    - Fixes CVE-2012-0884
+    - Properly fix CVE-2011-4619
+  * Enable assembler for all i386 arches.  The assembler does proper
+    detection of CPU support, including cpuid support.
+    This should fix a problem with AES 192 and 256 with the padlock
+    engine because of the difference in NO_ASM between the between
+    the i686 optimized library and the engine.
+
+ -- Kurt Roeckx <kurt at roeckx.be>  Tue, 13 Mar 2012 21:08:17 +0100
+
 openssl (1.0.0g-1) unstable; urgency=high
 
   * New upstream version

Modified: openssl/trunk/debian/patches/debian-targets.patch
===================================================================
--- openssl/trunk/debian/patches/debian-targets.patch	2012-01-22 11:26:43 UTC (rev 529)
+++ openssl/trunk/debian/patches/debian-targets.patch	2012-03-13 20:18:38 UTC (rev 530)
@@ -20,7 +20,7 @@
 +"debian-hppa","gcc:-DB_ENDIAN -DTERMIO -O2 -Wa,--noexecstack -g -Wall::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-hurd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -Wa,--noexecstack -g -mtune=i486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-ia64","gcc:-DTERMIO -O3 -Wa,--noexecstack -g -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_UNROLL DES_INT:${ia64_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -Wa,--noexecstack -g -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
++"debian-i386","gcc:-DL_ENDIAN -DTERMIO -O3 -Wa,--noexecstack -g -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-i386-i486","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i486 -Wa,--noexecstack -g -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-i386-i586","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i586 -Wa,--noexecstack -g -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
 +"debian-i386-i686/cmov","gcc:-DL_ENDIAN -DTERMIO -O3 -march=i686 -Wa,--noexecstack -g -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",

More information about the Pkg-openssl-changes mailing list