diff --git a/debian/changelog b/debian/changelog new file mode 100644 index 0000000..960fd47 --- /dev/null +++ b/debian/changelog @@ -0,0 +1,2083 @@ +openssl1.0 (1.0.2s-1~deb9u1) stretch-security; urgency=medium + + * New upstream version + + -- Sebastian Andrzej Siewior Wed, 26 Jun 2019 20:25:01 +0200 + +openssl1.0 (1.0.2r-1~deb9u1) stretch-security; urgency=medium + + [ Kurt Roeckx ] + * New upstream version + - Fixes CVE-2019-1559 + + [ Sebastian Andrzej Siewior ] + * Use openssl.cnf from the build directory for the testsuite. + + -- Kurt Roeckx Wed, 27 Feb 2019 21:58:52 +0100 + +openssl1.0 (1.0.2q-1~deb9u1) stretch-security; urgency=medium + + * use signing-key.asc and a https links for downloads + * Import 1.0.2q stable release. + - CVE-2018-0737 (Cache timing vulnerability in RSA Key Generation) + - CVE-2018-0732 (Client DoS due to large DH parameter) + - CVE-2018-0734 (Timing vulnerability in DSA signature generation) + - CVE-2018-5407 (Microarchitecture timing vulnerability in ECC scalar + multiplication) + + -- Sebastian Andrzej Siewior Sun, 16 Dec 2018 21:07:51 +0100 + +openssl1.0 (1.0.2l-2+deb9u3) stretch-security; urgency=high + + * CVE-2018-0739 (Constructed ASN.1 types with a recursive definition could + exceed the stack) + + -- Sebastian Andrzej Siewior Thu, 29 Mar 2018 13:10:14 +0200 + +openssl1.0 (1.0.2l-2+deb9u2) stretch-security; urgency=high + + * CVE-2017-3737 (Read/write after SSL object in error state) + * Add a testcase for CVE-2017-3737 + * CVE-2017-3738 (rsaz_1024_mul_avx2 overflow bug on x86_64) + + -- Sebastian Andrzej Siewior Wed, 13 Dec 2017 23:09:47 +0100 + +openssl1.0 (1.0.2l-2+deb9u1) stretch-security; urgency=medium + + * Fix CVE-2017-3735 + * Fix CVE-2017-3736 + + -- Kurt Roeckx Thu, 02 Nov 2017 14:03:53 +0100 + +openssl1.0 (1.0.2l-2) unstable; urgency=medium + + * Make the udeb use a versioned depends (Closes: #864081) + + -- Kurt Roeckx Sun, 04 Jun 2017 19:15:33 +0200 + +openssl1.0 (1.0.2l-1) unstable; urgency=medium + + * New upstream release + - Properly detect features on the AMD Ryzen processor (Closes: #861145) + * Refresh valgrind.patch + + -- Kurt Roeckx Thu, 25 May 2017 22:53:57 +0200 + +openssl1.0 (1.0.2k-1) unstable; urgency=medium + + * New upstream release + - Fixes CVE-2017-3731 + - Fixes CVE-2017-3732 + - Fixes CVE-2016-7055 + + -- Sebastian Andrzej Siewior Thu, 26 Jan 2017 16:39:16 +0100 + +openssl1.0 (1.0.2j-5) unstable; urgency=medium + + * Add myself as Uploader. + * Drop zlib1g-dev from libssl1.0-dev's deps (Closes: #845945). + * Mark RC4 and 3DES as weak which removes them from the SSL/TLS protocol + (Closes: #736687). + * Update Standards-Version, no change required. + * Drop asm support for X32 because the testsuite segfaults. + * Limit the watchfile to the 1.0.2x series. + * Redo rules file to newer debhelper syntax + * Add homepage filed + * Remove recommends for libssl-doc because the doc package from 1.1.0 is not + really matching the -dev package from 1.0.2 + + -- Sebastian Andrzej Siewior Sat, 31 Dec 2016 14:09:16 +0100 + +openssl1.0 (1.0.2j-4) unstable; urgency=medium + + * Re-add udebs + + -- Kurt Roeckx Sun, 06 Nov 2016 12:07:19 +0100 + +openssl1.0 (1.0.2j-3) unstable; urgency=medium + + * Upload to unstable + + -- Kurt Roeckx Tue, 01 Nov 2016 22:05:22 +0100 + +openssl1.0 (1.0.2j-2) experimental; urgency=medium + + * Provide an 1.0.2 version of the library for Stretch. + + -- Kurt Roeckx Thu, 27 Oct 2016 21:10:24 +0200 + +openssl (1.0.2j-1) unstable; urgency=medium + + * New upstream release + - Fixes CVE-2016-7052 + + -- Kurt Roeckx Mon, 26 Sep 2016 18:17:39 +0200 + +openssl (1.0.2i-1) unstable; urgency=high + + * New upstream version + - Fix CVE-2016-2177 + - Fix CVE-2016-2178 + - Fix CVE-2016-2179 + - Fix CVE-2016-2180 + - Fix CVE-2016-2181 + - Fix CVE-2016-2182 + - Fix CVE-2016-2183 + - Fix CVE-2016-6302 + - Fix CVE-2016-6303 + - Fix CVE-2016-6304 + - Fix CVE-2016-6306 + * Drop ca.patch, option is now documented upstream + * Update engines-path.patch to also update the libcrypto.pc, now that that + has an enginesdir in it. + + -- Kurt Roeckx Thu, 22 Sep 2016 19:39:36 +0200 + +openssl (1.0.2h-2) unstable; urgency=medium + + * Re-add libdoc-manpgs-pod-spell.patch to series files (Closes: #813191) + * Don't build i686 optimized version anymore on i386, it's now the default. + (Closes: #823774) + + -- Kurt Roeckx Sun, 08 May 2016 13:16:29 +0200 + +openssl (1.0.2h-1) unstable; urgency=high + + * New upstream version + - Fixes CVE-2016-2107 + - Fixes CVE-2016-2105 + - Fixes CVE-2016-2106 + - Fixes CVE-2016-2109 + - Fixes CVE-2016-2176 + + -- Kurt Roeckx Tue, 03 May 2016 18:31:22 +0200 + +openssl (1.0.2g-2) unstable; urgency=medium + + * Use assembler of arm64 (Closes: #794326) + Patch from Riku Voipio + * Add a udeb for libssl, based on similar changes done in Ubuntu + starting in version 0.9.8o-4ubuntu1 (Closes: #802591) + Patch from Margarita Manterola + * Add support for nios2 (Closes: #816239) + Based on patch from Marek Vasut + * Update Spanish translation from Manuel "Venturi" Porras Peralta + (Closes: #773601) + * Don't build an i586 optimized version anymore, the default + already targets that. Patch from Sven Joachim + (Closes: #759811) + + -- Kurt Roeckx Thu, 21 Apr 2016 23:43:06 +0200 + +openssl (1.0.2g-1) unstable; urgency=high + + * New upstream version + * Fix CVE-2016-0797 + * Fix CVE-2016-0798 + * Fix CVE-2016-0799 + * Fix CVE-2016-0702 + * Fix CVE-2016-0705 + * Disable EXPORT and LOW ciphers: The DROWN attack (CVE-2016-0800) + makes use of those, and SLOTH attack (CVE-2015-7575) can make use of them + too. + + -- Kurt Roeckx Tue, 01 Mar 2016 18:31:09 +0100 + +openssl (1.0.2f-2) unstable; urgency=high + + * New upstream version. + - Fixes CVE-2016-0701 + - Not affected by CVE-2015-3197 because SSLv2 is disabled. + + -- Kurt Roeckx Thu, 28 Jan 2016 19:32:02 +0100 + +openssl (1.0.2e-1) unstable; urgency=high + + * New upstream release + - Fix CVE-2015-3193 + - Fix CVE-2015-3194 + - Fix CVE-2015-3195 + - Fix CVE-2015-3196 + * Remove all symlinks during clean + * Run make depend after configure + * Remove openssl_button.* from the doc package + + -- Kurt Roeckx Thu, 03 Dec 2015 19:33:05 +0100 + +openssl (1.0.2d-3) unstable; urgency=medium + + * Upload to unstable + + -- Kurt Roeckx Sun, 01 Nov 2015 19:14:34 +0100 + +openssl (1.0.2d-2) experimental; urgency=medium + + * Build with no-ssl3-method to remove all SSLv3 support. This results in + the functions SSLv3_method(), SSLv3_server_method() and + SSLv3_client_method() being removed from libssl. Change the soname as + result of that and also changes name of the binary package. + (Closes: #768476) + * Enable rfc3779 and cms support (Closes: #630790) + * Fix cross compilation for mips architectures. (Closes: #782492) + + -- Kurt Roeckx Sun, 06 Sep 2015 14:21:27 +0200 + +openssl (1.0.2d-1) unstable; urgency=high + + * New upstream version + - Fixes CVE-2015-1793 + + -- Kurt Roeckx Thu, 09 Jul 2015 18:22:26 +0200 + +openssl (1.0.2c-1) unstable; urgency=medium + + * New upstream version + - Fixes ABI (Closes: #788511) + + -- Kurt Roeckx Fri, 12 Jun 2015 20:35:12 +0200 + +openssl (1.0.2b-1) unstable; urgency=high + + * New upstream version + - Fix CVE-2015-4000 + - Fix CVE-2015-1788 + - Fix CVE-2015-1789 + - Fix CVE-2015-1790 + - Fix CVE-2015-1792 + - Fix CVE-2015-1791 + * Update c_rehash-compat.patch to make it apply to the new version. + * Remove openssl-pod-misspell.patch applied upstream + + -- Kurt Roeckx Thu, 11 Jun 2015 18:20:38 +0200 + +openssl (1.0.2a-1) unstable; urgency=medium + + * New upstrema version + - Fix CVE-2015-0286 + - Fix CVE-2015-0287 + - Fix CVE-2015-0289 + - Fix CVE-2015-0293 (not affected, SSLv2 disabled) + - Fix CVE-2015-0209 + - Fix CVE-2015-0288 + - Fix CVE-2015-0291 + - Fix CVE-2015-0290 + - Fix CVE-2015-0207 + - Fix CVE-2015-0208 + - Fix CVE-2015-1787 + - Fix CVE-2015-0285 + * Temporary enable SSLv3 methods again, but they will go away. + * Don't set TERMIO anymore, use the default TERMIOS instead. + + -- Kurt Roeckx Thu, 30 Apr 2015 23:37:27 +0200 + +openssl (1.0.2-1) experimental; urgency=medium + + * New upstream release + - Fixes CVE-2014-3571 + - Fixes CVE-2015-0206 + - Fixes CVE-2014-3569 + - Fixes CVE-2014-3572 + - Fixes CVE-2015-0204 + - Fixes CVE-2015-0205 + - Fixes CVE-2014-8275 + - Fixes CVE-2014-3570 + - Drop git_snapshot.patch + * Drop gnu_source.patch, dgst_hmac.patch, stddef.patch, + no_ssl3_method.patch: applied upstream + * Update patches to apply + + -- Kurt Roeckx Fri, 23 Jan 2015 18:54:13 +0100 + +openssl (1.0.2~beta3-1) experimental; urgency=low + + * New usptream beta version + * Add git snapshot + * Merge changes between 1.0.1h-3 and 1.0.1j-1: + - Disables SSLv3 because of CVE-2014-3566 + * Drop patch rehash-crt.patch: partially applied upstream. + c_rehash now doesn't support files in DER format anymore. + * Drop patch rehash_pod.patch: applied upstream + * Update c_rehash-compat.patch to apply to new upstream version. This + undoes upstream's "-old" option and creates both the new and old again. + It now also does it for CRLs. + * Drop defaults.patch, applied upstream + * dgst_hmac.patch updated to apply to upstream version. + * engines-path.patch updated to apply to upstream version. + * Update list of exported symbols + * Update symbols files to require beta3 + * Enable unit tests + * Add patch to add support for the no-ssl3-method option that completly + disable SSLv3 and pass the option. This drops the following functions + from the library: SSLv3_method, SSLv3_server_method and + SSLv3_client_method + * Build using OPENSSL_NO_BUF_FREELISTS + + -- Kurt Roeckx Fri, 07 Nov 2014 00:20:10 +0100 + +openssl (1.0.2~beta2-1) experimental; urgency=medium + + * New usptream beta version + - Fix CVE-2014-0224 + - Fix CVE-2014-0221 + - Fix CVE-2014-0195 + - Fix CVE-2014-3470 + - Fix CVE-2014-0198 + - Fix CVE-2010-5298 + - Fix CVE-2014-0160 + - Fix CVE-2014-0076 + * Merge changes between 1.0.1f-1 and 1.0.1h-3: + - postinst: Updated check for restarting services + * libdoc-manpgs-pod-spell.patch and openssl-pod-misspell.patch + partially applied upstream + * Drop fix-pod-errors.patch, applied upstream. + * Add support for ppc64le (Closes: #745657) + * Add support for OpenRISC (Closes: #736772) + + -- Kurt Roeckx Wed, 23 Jul 2014 19:54:09 +0200 + +openssl (1.0.2~beta1-1) experimental; urgency=medium + + * New upstream beta version + - Update list of symbols that should be exported and adjust the symbols + file. This also removes a bunch of duplicate symbols in the linker + file. + - Fix additional pod errors + - Following patches have been applied upstream and are removed: + libssl-misspell.patch, pod_req_misspell2.patch, + pod_pksc12.misspell.patch, pod_s_server.misspell.patch, + pod_x509setflags.misspell.patch, pod_ec.misspell.patch, + pkcs12-doc.patch, req_bits.patch + - Following patches have been partially applied upstream: + libdoc-manpgs-pod-spell.patch, openssl-pod-misspell.patch + - Remove openssl_fix_for_x32.patch, different patch applied upstream. + * Add support for cross compiling (Closes: #465248) + + -- Kurt Roeckx Tue, 25 Feb 2014 00:36:51 +0100 + +openssl (1.0.1f-1) unstable; urgency=high + + * New upstream version + - Fix for TLS record tampering bug CVE-2013-4353 + - Drop the snapshot patch + * update watch file to check for upstream signature and add upstream pgp key. + * Drop conflicts against openssh since we now on a released version again. + + -- Kurt Roeckx Mon, 06 Jan 2014 18:50:54 +0100 + +openssl (1.0.1e-6) unstable; urgency=medium + + * Add Breaks: openssh-client (<< 1:6.4p1-1.1), openssh-server (<< + 1:6.4p1-1.1). This is to prevent people running into #732940. + This Breaks can be removed again when we stop using a git snapshot. + + -- Kurt Roeckx Mon, 23 Dec 2013 15:19:17 +0100 + +openssl (1.0.1e-5) unstable; urgency=low + + * Change default digest to SHA256 instead of SHA1. (Closes: #694738) + * Drop support for multiple certificates in 1 file. It never worked + properly in the first place, and the only one shipping in + ca-certificates has been split. + * Fix libdoc-manpgs-pod-spell.patch to only fix spalling errors + * Remove make-targets.patch. It prevented the test dir from being cleaned. + * Update to a git snapshot of the OpenSSL_1_0_1-stable branch. + - Fixes CVE-2013-6449 (Closes: #732754) + - Fixes CVE-2013-6450 + - Drop patches ssltest_no_sslv2.patch cpuid.patch aesni-mac.patch + dtls_version.patch get_certificate.patch, since they where all + already commited upstream. + - adjust fix-pod-errors.patch for the reordering of items in the + documentation they've done trying to fix those pod errors. + - disable rdrand engine by default (Closes: #732710) + * disable zlib support. Fixes CVE-2012-4929 (Closes: #728055) + * Add arm64 support (Closes: #732348) + * Properly use the default number of bits in req when none are given + + -- Kurt Roeckx Sun, 22 Dec 2013 19:25:35 +0100 + +openssl (1.0.1e-4) unstable; urgency=low + + [ Peter Michael Green ] + * Fix pod errors (Closes: #723954) + * Fix clean target + + [ Kurt Roeckx ] + * Add mipsn32 and mips64 targets. Patch from Eleanor Chen + (Closes: #720654) + * Add support for nocheck in DEB_BUILD_OPTIONS + * Update Norwegian translation (Closes: #653574) + * Update description of the packages. Patch by Justin B Rye + (Closes: #719262) + * change to debhelper compat level 9: + - change dh_strip call so only the files from libssl1.0.0 get debug + symbols. + - change dh_makeshlibs call so the engines don't get added to the + shlibs + * Update Standards-Version from 3.8.0 to 3.9.5. No changes required. + + -- Kurt Roeckx Fri, 01 Nov 2013 17:11:53 +0100 + +openssl (1.0.1e-3) unstable; urgency=low + + * Move to /usr/include/$(DEB_HOST_MULTIARCH), and + mark libssl-dev Multi-Arch: same. + Patch by Colin Watson (Closes: #689093) + * Add Polish translation (Closes: #658162) + * Add Turkish translation (Closes: #660971) + * Enable assembler for the arm targets, and remove armeb. + Patch by Riku Voipio (Closes: #676533) + * Add support for x32 (Closes: #698406) + * enable ec_nistp_64_gcc_128 on *-amd64 (Closes: #698447) + + -- Kurt Roeckx Mon, 20 May 2013 16:56:06 +0200 + +openssl (1.0.1e-2) unstable; urgency=high + + * Bump shlibs. It's needed for the udeb. + * Make cpuid work on cpu's that don't set ecx (Closes: #699692) + * Fix problem with AES-NI causing bad record mac (Closes: #701868, #702635, #678353) + * Fix problem with DTLS version check (Closes: #701826) + * Fix segfault in SSL_get_certificate (Closes: #703031) + + -- Kurt Roeckx Mon, 18 Mar 2013 20:37:11 +0100 + +openssl (1.0.1e-1) unstable; urgency=high + + * New upstream version (Closes: #699889) + - Fixes CVE-2013-0169, CVE-2012-2686, CVE-2013-0166 + - Drop renegiotate_tls.patch, applied upstream + - Export new CRYPTO_memcmp symbol, update symbol file + * Add ssltest_no_sslv2.patch so that "make test" works. + + -- Kurt Roeckx Mon, 11 Feb 2013 19:39:44 +0100 + +openssl (1.0.1c-5) unstable; urgency=low + + * Re-enable assembler versions on sparc. They shouldn't have + been disabled for sparc v9. (Closes: #649841) + + -- Kurt Roeckx Sun, 09 Sep 2012 08:43:40 +0200 + +openssl (1.0.1c-4) unstable; urgency=low + + * Fix the configure rules for alpha (Closes: #672710) + * Switch the postinst to sh again, there never was a reason to + switch it to bash (Closes: #676398) + * Fix pic.patch to not use #ifdef in x86cpuid.s, only .S files are + preprocessed. We generate the file again for pic anyway. + (Closes: #677468) + * Drop Breaks against openssh as it was only for upgrades + between versions that were only in testing/unstable. + (Closes: #668600) + + -- Kurt Roeckx Tue, 17 Jul 2012 11:49:19 +0200 + +openssl (1.0.1c-3) unstable; urgency=low + + * Disable padlock engine again, causes problems for hosts not supporting it. + + -- Kurt Roeckx Wed, 06 Jun 2012 18:29:37 +0200 + +openssl (1.0.1c-2) unstable; urgency=high + + * Fix renegiotation when using TLS > 1.0. This breaks tor. Patch from + upstream. (Closes: #675990) + * Enable the padlock engine by default. + * Change default bits from 1024 to 2048 (Closes: #487152) + + -- Kurt Roeckx Wed, 06 Jun 2012 00:55:42 +0200 + +openssl (1.0.1c-1) unstable; urgency=high + + * New upstream version + - Fixes CVE-2012-2333 (Closes: #672452) + + -- Kurt Roeckx Fri, 11 May 2012 18:44:51 +0200 + +openssl (1.0.1b-1) unstable; urgency=high + + * New upstream version + - Remaps SSL_OP_NO_TLSv1_1, so applications linked to 1.0.0 + can talk to servers supporting TLS 1.1 but not TLS 1.2 + - Drop rc4_hmac_md5.patch, applied upstream + + -- Kurt Roeckx Thu, 26 Apr 2012 23:34:34 +0200 + +openssl (1.0.1a-3) unstable; urgency=low + + * Use patch from upstream for the rc4_hmac_md5 issue. + + -- Kurt Roeckx Thu, 19 Apr 2012 23:16:30 +0200 + +openssl (1.0.1a-2) unstable; urgency=low + + * Fix rc4_hmac_md5 on non-i386/amd64 arches. + + -- Kurt Roeckx Thu, 19 Apr 2012 21:54:42 +0200 + +openssl (1.0.1a-1) unstable; urgency=high + + * New upstream version + - Fixes CVE-2012-2110 + - Fix crash in rc4_hmac_md5 (Closes: #666405) + - Fixes some issues with talking to other servers when TLS 1.1 and 1.2 is + supported + - Drop patches no_ssl2.patch vpaes.patch tls1.2_client_algorithms.patch, + applied upstream. + + -- Kurt Roeckx Thu, 19 Apr 2012 19:54:12 +0200 + +openssl (1.0.1-4) unstable; urgency=low + + * Use official patch for the vpaes problem, also covering amd64. + + -- Kurt Roeckx Sat, 31 Mar 2012 20:54:13 +0200 + +openssl (1.0.1-3) unstable; urgency=high + + * Fix crash in vpaes (Closes: #665836) + * use client version when deciding whether to send supported signature + algorithms extension + + -- Kurt Roeckx Sat, 31 Mar 2012 18:35:59 +0200 + +openssl (1.0.1-2) unstable; urgency=low + + * Properly quote the new cflags in Configure + + -- Kurt Roeckx Mon, 19 Mar 2012 19:56:05 +0100 + +openssl (1.0.1-1) unstable; urgency=low + + * New upstream version + - Remove kfreebsd-pipe.patch, fixed upstream + - Update pic.patch, openssl-pod-misspell.patch and make-targets.patch + - Add OPENSSL_1.0.1 to version-script.patch and libssl1.0.0.symbols for + the new functions. + - AES-NI support (Closes: #644743) + * pic.patch: upstream made OPENSSL_ia32cap_P and OPENSSL_cpuid_setup + hidden on amd64, no need to access it PIC anymore. + * pic.patch: Make OPENSSL_ia32cap_P hidden on i386 too (Closes: #663977) + * Enable hardening using dpkg-buildflags (Closes: #653495) + * s_client and s_server were forcing SSLv3 only connection when SSLv2 was + disabled instead of the SSLv2 with upgrade method. (Closes: #664454) + * Add Breaks on openssh < 1:5.9p1-4, it has a too strict version check. + + -- Kurt Roeckx Mon, 19 Mar 2012 18:23:32 +0100 + +openssl (1.0.0h-1) unstable; urgency=high + + * New upstream version + - Fixes CVE-2012-0884 + - Fixes CVE-2012-1165 + - Properly fix CVE-2011-4619 + - pkg-config.patch applied upstream, remove it. + * Enable assembler for all i386 arches. The assembler does proper + detection of CPU support, including cpuid support. + This should fix a problem with AES 192 and 256 with the padlock + engine because of the difference in NO_ASM between the between + the i686 optimized library and the engine. + + -- Kurt Roeckx Tue, 13 Mar 2012 21:08:17 +0100 + +openssl (1.0.0g-1) unstable; urgency=high + + * New upstream version + - Fixes CVE-2012-0050 + + -- Kurt Roeckx Wed, 18 Jan 2012 20:46:13 +0100 + +openssl (1.0.0f-1) unstable; urgency=high + + * New upstream version + - Fixes CVE-2011-4108, CVE-2011-4576, CVE-2011-4619, CVE-2012-0027, + CVE-2011-4577 + + -- Kurt Roeckx Thu, 12 Jan 2012 19:02:43 +0100 + +openssl (1.0.0e-3) unstable; urgency=low + + * Don't build v8 and v9 variants of sparc anymore, they're older than + the default. (Closes: #649841) + * Don't build i486 optimized version, that's the default anyway, and + it uses assembler that doesn't always work on i486. + + -- Kurt Roeckx Mon, 28 Nov 2011 22:17:26 +0100 + +openssl (1.0.0e-2.1) unstable; urgency=high + + * Non-maintainer upload by the Security Team. + * Block Malaysian's Digicert Sdn. Bhd. certificates by marking them + as revoked. + + -- Raphael Geissert Sun, 06 Nov 2011 01:39:30 -0600 + +openssl (1.0.0e-2) unstable; urgency=low + + * Add a missing $(DEB_HOST_MULTIARCH) + + -- Kurt Roeckx Sat, 10 Sep 2011 17:02:29 +0200 + +openssl (1.0.0e-1) unstable; urgency=low + + * New upstream version + - Fix bug where CRLs with nextUpdate in the past are sometimes accepted + by initialising X509_STORE_CTX properly. (CVE-2011-3207) + - Fix SSL memory handling for (EC)DH ciphersuites, in particular + for multi-threaded use of ECDH. (CVE-2011-3210) + - Add protection against ECDSA timing attacks (CVE-2011-1945) + * Block DigiNotar certifiates. Patch from + Raphael Geissert + * Generate hashes for all certs in a file (Closes: #628780, #594524) + Patch from Klaus Ethgen + * Add multiarch support (Closs: #638137) + Patch from Steve Langasek / Ubuntu + * Symbols from the gost engine were removed because it didn't have + a linker file. Thanks to Roman I Khimov + (Closes: #631503) + * Add support for s390x. Patch from Aurelien Jarno + (Closes: #641100) + * Add build-arch and build-indep targets to the rules file. + + -- Kurt Roeckx Sat, 10 Sep 2011 12:03:13 +0200 + +openssl (1.0.0d-3) unstable; urgency=low + + * Make it build on sparc64. Patch from Aurelien Jarno. (Closes: #626060) + * Apply patches from Scott Schaefer to + fix various pod and spelling errors. (Closes: #622820, #605561) + * Add missing symbols for the engines (Closes: #623038) + * More spelling fixes from Scott Schaefer (Closes: #395424) + * Patch from Scott Schaefer to better document pkcs12 password options + (Closes: #462489) + * Document dgst -hmac option. Patch by Thorsten Glaser + (Closes: #529586) + + -- Kurt Roeckx Mon, 13 Jun 2011 12:39:54 +0200 + +openssl (1.0.0d-2) unstable; urgency=high + + * Make c_rehash also generate the old subject hash. Gnutls applications + seem to require it. (Closes: #611102) + + -- Kurt Roeckx Wed, 13 Apr 2011 22:36:49 +0200 + +openssl (1.0.0d-1) unstable; urgency=low + + * New upstream version + - Fixes CVE-2011-0014 + * Make libssl-doc Replaces/Breaks with old libssl-dev packages + (Closes: #607609) + * Only export the symbols we should, instead of all. + * Add symbol file. + * Upload to unstable + + -- Kurt Roeckx Sat, 02 Apr 2011 13:19:19 +0000 + +openssl (1.0.0c-2) experimental; urgency=low + + * Set $ in front of {sparcv9_asm} so that the sparc v9 variant builds. + * Always define _GNU_SOURCE, not only for Linux. + * Drop SSL2 support (Closes: #589706) + + -- Kurt Roeckx Sun, 19 Dec 2010 16:24:16 +0100 + +openssl (1.0.0c-1) experimental; urgency=low + + * New upstream version (Closes: #578376) + - New soname: Rename library packages + - Drop patch perl-path.diff, not needed anymore + - Drop patches CVE-2010-2939.patch, CVE-2010-3864.patch + and CVE-2010-4180.patch: applied upstream. + - Update Configure for the new fields for the assembler options + per arch. alpha now makes use of assembler. + * Move man3 manpages and demos to libssl-doc (Closes: #470594) + * Drop .pod files from openssl package (Closes: #518167) + * Don't use RC4_CHAR on amd64 and drop rc4-amd64.patch + * Stop using BF_PTR2 on (kfreebd-)amd64. + * Drop debian-arm from the list of arches. + * Update arm arches to use BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL + BF_PTR instead of BN_LLONG DES_RISC1 + * ia64: Drop RC4_CHAR, add DES_UNROLL DES_INT + * powerpc: Use RC4_CHAR RC4_CHUNK DES_RISC1 instead + of DES_RISC2 DES_PTR MD2_CHAR RC4_INDEX + * s390: Use RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL instead of BN_LLONG + + -- Kurt Roeckx Sun, 12 Dec 2010 15:37:21 +0100 + +openssl (0.9.8o-4) unstable; urgency=low + + * Fix CVE-2010-4180 (Closes: #529221) + + -- Kurt Roeckx Mon, 06 Dec 2010 20:33:21 +0100 + +openssl (0.9.8o-3) unstable; urgency=high + + * Fix TLS extension parsing race condition (CVE-2010-3864) (Closes: #603709) + * Re-add the engines. They were missing since 0.9.8m-1. + Patch by Joerg Schneider. (Closes: #603693) + * Not all architectures were build using -g (Closes: #570702) + * Add powerpcspe support (Closes: #579805) + * Add armhf support (Closes: #596881) + * Update translations: + - Brazilian Portuguese (Closes: #592154) + - Danish (Closes: #599459) + - Vietnamese (Closes: #601536) + - Arabic (Closes: #596166) + * Generate the proper stamp file so that everything doesn't get build twice. + + -- Kurt Roeckx Tue, 16 Nov 2010 19:20:55 +0100 + +openssl (0.9.8o-2) unstable; urgency=high + + * Fix CVE-2010-2939: Double free using ECDH. (Closes: #594415) + + -- Kurt Roeckx Thu, 26 Aug 2010 18:25:29 +0200 + +openssl (0.9.8o-1) unstable; urgency=low + + * New upstream version + - Add SHA2 algorithms to SSL_library_init(). + - aes-x86_64.pl is now PIC, update pic.patch. + * Add sparc64 support (Closes: #560240) + + -- Kurt Roeckx Sun, 18 Apr 2010 01:42:44 +0200 + +openssl (0.9.8n-1) unstable; urgency=high + + * New upstream version. + - Fixes CVE-2010-0740. + - Drop cfb.patch, applied upstream. + + -- Kurt Roeckx Thu, 25 Mar 2010 20:30:52 +0100 + +openssl (0.9.8m-2) unstable; urgency=low + + * Revert CFB block length change preventing reading older files. + (Closes: #571810, #571940) + + -- Kurt Roeckx Sun, 28 Feb 2010 22:08:49 +0100 + +openssl (0.9.8m-1) unstable; urgency=low + + * New upstream version + - Implements RFC5746, reenables renegotiation but requires the extension. + - Fixes CVE-2009-3245 + - Drop patches CVE-2009-4355.patch, CVE-2009-1378.patch, + CVE-2009-1377.patch, CVE-2009-1379.patch, CVE-2009-3555.patch, + CVE-2009-2409.patch, CVE-2009-1387.patch, tls_ext_v3.patch, + no_check_self_signed.patch: applied upstream + - pk7_mime_free.patch removed, code rewritten + - ca.diff partially applied upstream + - engines-path.patch adjusted, upstream made some minor changes to the + build system. + - some flags changed values, bump shlibs. + * Switch to 3.0 (quilt) source package. + * Make sure the package is properly cleaned. + * Add ${misc:Depends} to the Depends on all packages. + * Fix spelling of extension in the changelog file. + + -- Kurt Roeckx Sat, 27 Feb 2010 12:24:03 +0000 + +openssl (0.9.8k-8) unstable; urgency=high + + * Clean up zlib state so that it will be reinitialized on next use and + not cause a memory leak. (CVE-2009-4355, CVE-2008-1678) + + -- Kurt Roeckx Wed, 13 Jan 2010 21:26:49 +0100 + +openssl (0.9.8k-7) unstable; urgency=low + + * Bump the shlibs to require 0.9.8k-1. The following symbols + to added between g and k: AES_wrap_key, AES_unwrap_key, + ASN1_TYPE_set1, ASN1_STRING_set0, asn1_output_data_fn, + SMIME_read_ASN1, BN_X931_generate_Xpq, BN_X931_derive_prime_ex, + BN_X931_generate_prime_ex, COMP_zlib_cleanup, CRYPTO_malloc_debug_init, + int_CRYPTO_set_do_dynlock_callback, CRYPTO_set_mem_info_functions, + CRYPTO_strdup, CRYPTO_dbg_push_info, CRYPTO_dbg_pop_info, + CRYPTO_dbg_remove_all_info, OPENSSL_isservice, OPENSSL_init, + ENGINE_set_load_ssl_client_cert_function, + ENGINE_get_ssl_client_cert_function, ENGINE_load_ssl_client_cert, + EVP_CIPHER_CTX_set_flags, EVP_CIPHER_CTX_clear_flags, + EVP_CIPHER_CTX_test_flags, HMAC_CTX_set_flags, OCSP_sendreq_new + OCSP_sendreq_nbio, OCSP_REQ_CTX_free, RSA_X931_derive_ex, + RSA_X931_generate_key_ex, X509_ALGOR_set0, X509_ALGOR_get0, + X509at_get0_data_by_OBJ, X509_get1_ocsp + + -- Kurt Roeckx Sat, 28 Nov 2009 14:34:26 +0100 + +openssl (0.9.8k-6) unstable; urgency=low + + * Disable SSL/TLS renegotiation (CVE-2009-3555) (Closes: #555829) + + -- Kurt Roeckx Thu, 12 Nov 2009 18:10:31 +0000 + +openssl (0.9.8k-5) unstable; urgency=low + + * Don't check self signed certificate signatures in X509_verify_cert() + (Closes: #541735) + + -- Kurt Roeckx Fri, 11 Sep 2009 15:42:32 +0200 + +openssl (0.9.8k-4) unstable; urgency=low + + * Split all the patches into a separate files + * Stop undefinging HZ, the issue on alpha should be fixed. + * Remove MD2 from digest algorithm table. (CVE-2009-2409) (Closes: #539899) + + -- Kurt Roeckx Tue, 11 Aug 2009 21:19:18 +0200 + +openssl (0.9.8k-3) unstable; urgency=low + + * Make rc4-x86_64 PIC. Based on patch from Petr Salinger (Closes: #532336) + * Add workaround for kfreebsd that can't see the different between + two pipes. Patch from Petr Salinger. + + -- Kurt Roeckx Sat, 13 Jun 2009 18:15:46 +0200 + +openssl (0.9.8k-2) unstable; urgency=low + + * Move libssl0.9.8-dbg to the debug section. + * Use the rc4 assembler on kfreebsd-amd64 (Closes: #532336) + * Split the line to generate md5-x86_64.s in the Makefile. This will + hopefully fix the build issue on kfreebsd that now outputs the file + to stdout instead of the file. + * Fix denial of service via an out-of-sequence DTLS handshake message + (CVE-2009-1387) (Closes: #532037) + + -- Kurt Roeckx Mon, 08 Jun 2009 19:05:56 +0200 + +openssl (0.9.8k-1) unstable; urgency=low + + * New upstream release + - 0.9.8i fixed denial of service via a DTLS ChangeCipherSpec packet + that occurs before ClientHello (CVE-2009-1386) + * Make aes-x86_64.pl use PIC. + * Fix security issues (Closes: #530400) + - "DTLS record buffer limitation bug." (CVE-2009-1377) + - "DTLS fragment handling" (CVE-2009-1378) + - "DTLS use after free" (CVE-2009-1379) + * Fixed Configure for hurd: use -mtune=i486 instead of -m486 + Patch by Marc Dequènes (Duck) (Closes: #530459) + * Add support for avr32 (Closes: #528648) + + -- Kurt Roeckx Sat, 16 May 2009 17:33:55 +0200 + +openssl (0.9.8g-16) unstable; urgency=high + + * Properly validate the length of an encoded BMPString and UniversalString + (CVE-2009-0590) (Closes: #522002) + + -- Kurt Roeckx Wed, 01 Apr 2009 22:04:53 +0200 + +openssl (0.9.8g-15) unstable; urgency=low + + * Internal calls to didn't properly check for errors which + resulted in malformed DSA and ECDSA signatures being treated as + a good signature rather than as an error. (CVE-2008-5077) + * ipv6_from_asc() could write 1 byte longer than the buffer in case + the ipv6 address didn't have "::" part. (Closes: #506111) + + -- Kurt Roeckx Mon, 05 Jan 2009 21:14:31 +0100 + +openssl (0.9.8g-14) unstable; urgency=low + + * Don't give the warning about security updates when upgrading + from etch since it doesn't have any known security problems. + * Automaticly use engines that succesfully initialised. Patch + from the 0.9.8h upstream version. (Closes: #502177) + + -- Kurt Roeckx Fri, 31 Oct 2008 22:45:14 +0100 + +openssl (0.9.8g-13) unstable; urgency=low + + * Fix a problem with tlsext preventing firefox 3 from connection. + Patch from upstream CVS and part of 0.9.8h. + (Closes: #492758) + + -- Kurt Roeckx Sun, 03 Aug 2008 19:47:10 +0200 + +openssl (0.9.8g-12) unstable; urgency=low + + * add the changelog of the 10.1 NMU to make bugtracking happy + + -- Christoph Martin Tue, 22 Jul 2008 14:58:26 +0200 + +openssl (0.9.8g-11) unstable; urgency=low + + [ Christoph Martin ] + * updated cs, gl, sv, ru, ro debconf translation (closes: #480926, #480967, + #482465, #484324, #488595) + * add Vcs-Svn header (closes: #481654) + * fix debian-kfreebsd-i386 build flags (closes: #482275) + * add stunnel4 to restart list (closes: #482111) + * include fixes from 10.1 NMU by Security team + - Fix double free in TLS server name extension which leads to a remote + denial of service (CVE-2008-0891; Closes: #483379). + - Fix denial of service if the 'Server Key exchange message' + is omitted from a TLS handshake which could lead to a client + crash (CVE-2008-1672; Closes: #483379). + This only works if openssl is compiled with enable-tlsext which is + done in Debian. + * fix some lintian warnings + * update to newest standards version + + -- Christoph Martin Thu, 17 Jul 2008 09:53:01 +0200 + +openssl (0.9.8g-10.1) unstable; urgency=high + + * Non-maintainer upload by the Security team. + * Fix denial of service if the 'Server Key exchange message' + is omitted from a TLS handshake which could lead to a client + crash (CVE-2008-1672; Closes: #483379). + This only works if openssl is compiled with enable-tlsext which is + done in Debian. + * Fix double free in TLS server name extension which leads to a remote + denial of service (CVE-2008-0891; Closes: #483379). + + -- Nico Golde Tue, 27 May 2008 11:13:44 +0200 + +openssl (0.9.8g-10) unstable; urgency=low + + * undefine HZ so that the code falls back to sysconf(_SC_CLK_TCK) + to fix a build failure on alpha. + + -- Kurt Roeckx Thu, 08 May 2008 17:56:13 +0000 + +openssl (0.9.8g-9) unstable; urgency=high + + [ Christoph Martin ] + * Include updated debconf translations (closes: #473477, #461597, + #461880, #462011, #465517, #475439) + + [ Kurt Roeckx ] + * ssleay_rand_add() really needs to call MD_Update() for buf. + + -- Kurt Roeckx Wed, 07 May 2008 20:32:12 +0200 + +openssl (0.9.8g-8) unstable; urgency=high + + * Don't add extensions to ssl v3 connections. It breaks with some + other software. (Closes: #471681) + + -- Kurt Roeckx Sun, 23 Mar 2008 17:50:04 +0000 + +openssl (0.9.8g-7) unstable; urgency=low + + * Upload to unstable. + + -- Kurt Roeckx Wed, 13 Feb 2008 22:22:29 +0000 + +openssl (0.9.8g-6) experimental; urgency=low + + * Bump shlibs. + + -- Kurt Roeckx Sat, 09 Feb 2008 15:42:22 +0100 + +openssl (0.9.8g-5) experimental; urgency=low + + * Enable tlsext. This changes the ABI, but should hopefully + not cause any problems. (Closes: #462596) + + -- Kurt Roeckx Sat, 09 Feb 2008 13:32:49 +0100 + +openssl (0.9.8g-4) unstable; urgency=low + + * Fix aes ige test speed not to overwrite it's buffer and + cause segfauls. Thanks to Tim Hudson (Closes: #459619) + * Mark some strings in the templates as non translatable. + Patch from Christian Perrier (Closes: #450418) + * Update Dutch debconf translation (Closes: #451290) + * Update French debconf translation (Closes: #451375) + * Update Catalan debconf translation (Closes: #452694) + * Update Basque debconf translation (Closes: #457285) + * Update Finnish debconf translation (Closes: #458261) + + -- Kurt Roeckx Wed, 16 Jan 2008 21:49:43 +0100 + +openssl (0.9.8g-3) unstable; urgency=low + + * aes-586.pl: push %ebx on the stack before we put some things on the + stack and call a function, giving AES_decrypt() wrong values to work + with. (Closes: #449200) + + -- Kurt Roeckx Sun, 04 Nov 2007 21:49:00 +0100 + +openssl (0.9.8g-2) unstable; urgency=low + + * Avoid text relocations on i386 caused by the assembler versions: + - x86unix.pl: Create a function_begin_B_static to create a + static/local assembler function. + - aes-586.pl: Use the function_begin_B_static for _x86_AES_decrypt + so that it doesn't get exported and doesn't have any (text) relocations. + - aes-586.pl: Set up ebx to point to the GOT and call AES_set_encrypt_key + via the PLT to avoid a relocation. + - x86unix.pl: Call the init function via the PLT, avoiding a relocation + in case of a PIC object. + - cbc.pl: Call functions via the PLT. + - desboth.pl: Call DES_encrypt2 via the PLT. + * CA.sh should use the v3_ca extension when called with -newca + (Closes: #428051) + * Use -Wa,--noexecstack for all arches in Debian. (Closes: #430583) + * Convert the failure message when services fail restart to a debconf + message. + * To restart a service, just restart, instead of stop and start. + Hopefully fixes #444946 + * Also remove igetest from the test dir in the clean target. + (Closes: #424362) + + -- Kurt Roeckx Sat, 03 Nov 2007 13:25:45 +0100 + +openssl (0.9.8g-1) unstable; urgency=low + + * New upstream release + - Fixes version number not to say it's a development version. + + -- Kurt Roeckx Sat, 20 Oct 2007 12:47:10 +0200 + +openssl (0.9.8f-1) unstable; urgency=low + + * New upstream release + - Fixes DTLS issues, also fixes CVE-2007-4995 (Closes: #335703, #439737) + - Proper inclusion of opensslconf.h in pq_compat.h (Closes: #408686) + - New function SSL_set_SSL_CTX: bump shlibs. + * Remove build dependency on gcc > 4.2 + * Remove the openssl preinst, it looks like a workaround + for a change in 0.9.2b where config files got moved. (Closes: #445095) + * Update debconf translations: + - Vietnamese (Closes: #426988) + - Danish (Closes: #426774) + - Slovak (Closes: #440723) + - Finnish (Closes: #444258) + + -- Kurt Roeckx Sat, 13 Oct 2007 00:47:22 +0200 + +openssl (0.9.8e-9) unstable; urgency=high + + * CVE-2007-5135: Fix off by one error in SSL_get_shared_ciphers(). + (Closes: #444435) + * Add postgresql-8.2 to the list of services to check. + + -- Kurt Roeckx Fri, 28 Sep 2007 19:47:33 +0200 + +openssl (0.9.8e-8) unstable; urgency=low + + * Fix another case of the "if this code is reached, the program will abort" + (Closes: #429740) + * Temporary force to build with gcc >= 4.2 + + -- Kurt Roeckx Sun, 02 Sep 2007 18:12:11 +0200 + +openssl (0.9.8e-7) unstable; urgency=low + + * Fix problems with gcc-4.2 (Closes: #429740) + * Stop using -Bsymbolic to create the shared library. + * Make x86_64cpuid.pl use PIC. + + -- Kurt Roeckx Sun, 02 Sep 2007 16:15:18 +0200 + +openssl (0.9.8e-6) unstable; urgency=high + + * Add fix for CVE-2007-3108 (Closes: #438142) + + -- Kurt Roeckx Wed, 15 Aug 2007 19:49:54 +0200 + +openssl (0.9.8e-5) unstable; urgency=low + + [ Christian Perrier ] + * Debconf templates proofread and slightly rewritten by + the debian-l10n-english team as part of the Smith Review Project. + Closes: #418584 + * Debconf templates translations: + - Arabic. Closes: #418669 + - Russian. Closes: #418670 + - Galician. Closes: #418671 + - Swedish. Closes: #418679 + - Korean. Closes: #418755 + - Czech. Closes: #418768 + - Basque. Closes: #418784 + - German. Closes: #418785 + - Traditional Chinese. Closes: #419915 + - Brazilian Portuguese. Closes: #419959 + - French. Closes: #420429 + - Italian. Closes: #420461 + - Japanese. Closes: #420482 + - Catalan. Closes: #420833 + - Dutch. Closes: #420925 + - Malayalam. Closes: #420986 + - Portuguese. Closes: #421032 + - Romanian. Closes: #421708 + + [ Kurt Roeckx ] + * Remove the Provides for the udeb. Patch from Frans Pop. (Closes: #419608) + * Updated Spanish debconf template. (Closes: #421336) + * Do the header changes, changing those defines into real functions, + and bump the shlibs to match. + * Update Japanese debconf translation. (Closes: #422270) + + -- Kurt Roeckx Tue, 15 May 2007 17:21:08 +0000 + +openssl (0.9.8e-4) unstable; urgency=low + + * openssl should depend on libssl0.9.8 0.9.8e-1 since it + uses some of the defines that changed to functions. + Other things build against libssl or libcrypto shouldn't + have this problem since they use the old headers. + (Closes: #414283) + + -- Kurt Roeckx Sat, 10 Mar 2007 17:11:46 +0000 + +openssl (0.9.8e-3) unstable; urgency=low + + * Add nagios-nrpe-server to the list of services to be checked + (Closes: #391188) + * EVP_CIPHER_CTX_key_length() should return the set key length in the + EVP_CIPHER_CTX structure which may not be the same as the underlying + cipher key length for variable length ciphers. + From upstream CVS. (Closes: #412979) + + -- Kurt Roeckx Sun, 4 Mar 2007 23:22:51 +0000 + +openssl (0.9.8e-2) unstable; urgency=low + + * Undo include changes that change defines into real functions, + but keep the new functions in the library. + + -- Kurt Roeckx Sun, 25 Feb 2007 19:19:19 +0000 + +openssl (0.9.8e-1) unstable; urgency=low + + * New upstream release + - Inludes security fixes for CVE-2006-2937, CVE-2006-2940, + CVE-2006-3738, CVE-2006-4343 (Closes: #408902) + - s_client now properly works with SMTP. Also added support + for IMAP. (closes: #221689) + - Load padlock modules (Closes: #345656, #368476) + * Add clamav-freshclam and clamav-daemon to the list of service that + need to be restarted. (Closes: #391191) + * Add armel support. Thanks to Guillem Jover + for the patch. (Closes: #407196) + * Add Portuguese translations. Thanks to Carlos Lisboa. (Closes: 408157) + * Add Norwegian translations. Thanks to Bjørn Steensrud + (Closes: #412326) + + -- Kurt Roeckx Sun, 25 Feb 2007 18:06:28 +0000 + +openssl (0.9.8c-4) unstable; urgency=low + + * Add German debconf translation. Thanks to + Johannes Starosta (Closes: #388108) + * Make c_rehash look for both .pem and .crt files. Also make it support + files in DER format. Patch by "Yauheni Kaliuta" + (Closes: #387089) + * Use & instead of && to check a flag in the X509 policy checking. + Patch from upstream cvs. (Closes: #397151) + * Also restart slapd for security updates (Closes: #400221) + * Add Romanian debconf translation. Thanks to + stan ioan-eugen (Closes: #393507) + + -- Kurt Roeckx Thu, 30 Nov 2006 20:57:46 +0000 + +openssl (0.9.8c-3) unstable; urgency=low + + * Fix patch for CVE-2006-2940, it left ctx unintiliased. + + -- Kurt Roeckx Mon, 2 Oct 2006 18:05:00 +0200 + +openssl (0.9.8c-2) unstable; urgency=high + + * Fix security vulnerabilities (CVE-2006-2937, CVE-2006-2940, + CVE-2006-3738, CVE-2006-4343). Urgency set to high. + + -- Kurt Roeckx Wed, 27 Sep 2006 21:24:55 +0000 + +openssl (0.9.8c-1) unstable; urgency=low + + * New upstream release + - block padding bug with compression now fixed upstream, using + their patch. + - Includes the RSA Signature Forgery (CVE-2006-4339) patch. + - New functions AES_bi_ige_encrypt and AES_ige_encrypt: + bumping shlibs to require 0.9.8c-1. + * Change the postinst script to check that ntp is installed instead + of ntp-refclock and ntp-simple. The binary is now in the ntp + package. + * Move the modified rand/md_rand.c file to the right place, + really fixing #363516. + * Add partimage-server conserver-server and tor to the list of service + to check for restart. Add workaround for openssh-server so it finds + the init script. (Closes: #386365, #386400, #386513) + * Add manpage for c_rehash. + Thanks to James Westby (Closes: #215618) + * Add Lithuanian debconf translation. + Thanks to Gintautas Miliauskas (Closes: #374364) + * Add m32r support. + Thanks to Kazuhiro Inaoka + (Closes: #378689) + + -- Kurt Roeckx Sun, 17 Sep 2006 14:47:59 +0000 + +openssl (0.9.8b-3) unstable; urgency=high + + * Fix RSA Signature Forgery (CVE-2006-4339) using patch provided + by upstream. + * Restart services using a smaller version that 0.9.8b-3, so + they get the fixed version. + * Change the postinst to check for postfix instead of postfix-tls. + + -- Kurt Roeckx Tue, 5 Sep 2006 18:26:10 +0000 + +openssl (0.9.8b-2) unstable; urgency=low + + * Don't call gcc with -mcpu on i386, we already use -march, so no need for + -mtune either. + * Always make all directories when building something: + - The engines directory didn't get build for the static directory, so + where missing in libcrypo.a + - The apps directory didn't always get build, so we didn't have an openssl + and a small part of the regression tests failed. + * Make the package fail to build if the regression tests fail. + + -- Kurt Roeckx Mon, 15 May 2006 16:00:58 +0000 + +openssl (0.9.8b-1) unstable; urgency=low + + * New upstream release + - New functions added (EVP_CIPHER_CTX_new, EVP_CIPHER_CTX_free), bump shlibs. + - CA.pl/CA.sh now calls openssl ca with -extensions v3_ca, setting CA:TRUE + instead of FALSE. + - CA.pl/CA.sh creates crlnumber now. (Closes: #347612) + * Run debconf-updatepo, which really already was in the 0.9.8a-8 version + as it was uploaded. + * Add Galician debconf translation. Patch from + Jacobo Tarrio (Closes: #361266) + * libssl0.9.8.postinst makes uses of bashisms (local variables) + so use #!/bin/bash + * libssl0.9.8.postinst: Call set -e after sourcing the debconf + script. + * libssl0.9.8.postinst: Change list of service that may need + to be restarted: + - Replace ssh by openssh-server + - Split postgresql in postgresql-7.4 postgresql-8.0 postgresql-8.1 + - Add: dovecot-common bind9 ntp-refclock ntp-simple openntpd clamcour + fetchmail ftpd-ssl proftpd proftpd-ldap proftpd-mysql proftpd-pgsql + * libssl0.9.8.postinst: The check to see if something was installed + wasn't working. + * libssl0.9.8.postinst: Add workaround to find the name of the init + script for proftpd and dovecot. + * libssl0.9.8.postinst: Use invoke-rc.d when it's available. + * Change Standards-Version to 3.7.0: + - Make use of invoke-rc.d + * Add comment to README.Debian that rc5, mdc2 and idea have been + disabled (since 0.9.6b-3) (Closes: #362754) + * Don't add uninitialised data to the random number generator. This stop + valgrind from giving error messages in unrelated code. + (Closes: #363516) + * Put the FAQ in the openssl docs. + * Add russian debconf translations from Yuriy Talakan + (Closes #367216) + + -- Kurt Roeckx Thu, 4 May 2006 20:40:03 +0200 + +openssl (0.9.8a-8) unstable; urgency=low + + * Call pod2man with the proper section. Section changed + from 1/3/5/7 to 1SSL/3SSL/5SSL/7SSL. The name of the files + already had the ssl in, the section didn't. The references + to other manpage is still wrong. + * Don't install the LICENSE file, it's already in the copyright file. + * Don't set an rpath on openssl to point to /usr/lib. + * Add support for kfreebsd-amd64. (Closes: #355277) + * Add udeb to the shlibs. Patch from Frans Pop + (Closes: #356908) + + -- Kurt Roeckx Sat, 11 Feb 2006 14:14:37 +0100 + +openssl (0.9.8a-7) unstable; urgency=high + + * Add italian debconf templates. Thanks to Luca Monducci. + (Closes: #350249) + * Change the debconf question to use version 0.9.8-3 + instead of 0.9.8-1, since that's the last version + with a security fix. + * Call conn_state() if the BIO is not in the BIO_CONN_S_OK state + (Closes: #352047). RC bug affecting testing, so urgency high. + + -- Kurt Roeckx Sat, 9 Feb 2006 19:07:56 +0100 + +openssl (0.9.8a-6) unstable; urgency=low + + * Remove empty postinst/preinst/prerm scripts. There is no need + to have empty ones, debhelper will add them when needed. + * Remove the static pic libraries. Nobody should be linking + it's shared libraries static to libssl or libcrypto. + This was added for opensc who now links to it shared. + * Do not assume that in case the sequence number is 0 and the + packet has an odd number of bytes that the other side has + the block padding bug, but try to check that it actually + has the bug. The wrong detection of this bug resulted + in an "decryption failed or bad record mac" error in case + both sides were using zlib compression. (Closes: #338006) + + -- Kurt Roeckx Mon, 21 Jan 2006 16:25:41 +0100 + +openssl (0.9.8a-5) unstable; urgency=low + + * Stop ssh from crashing randomly on sparc (Closes: #335912) + Patch from upstream cvs. + + -- Kurt Roeckx Tue, 13 Dec 2005 21:37:42 +0100 + +openssl (0.9.8a-4) unstable; urgency=low + + * Call dh_makeshlibs with the proper version instead of putting + it in shlibs.local, which doesn't seem to do anything. 0.9.8a-1 + added symbol versioning, so it should have bumped the shlibs. + (Closes: #338284) + * The openssl package had a duplicate dependency on libssl0.9.8, + only require the version as required by the shlibs. + * Make libssl-dev depend on zlib1g-dev, since it's now required for + static linking. (Closes: #338313) + * Generate .pc files that make use of Libs.private, so things only + link to the libraries they should when linking shared. + * Use -m64 instead of -bpowerpc64-linux on ppc64. (Closes: #335486) + * Make powerpc and ppc64 use the assembler version for bn. ppc64 + had the location in the string wrong, powerpc had it missing. + * Add includes for stddef to get size_t in md2.h, md4.h, md5.h, + ripemd.h and sha.h. (Closes: #333101) + * Run make test for each of the versions we build, make it + not fail the build process if an error is found. + * Add build dependency on bc for the regression tests. + + -- Kurt Roeckx Wed, 13 Nov 2005 16:01:05 +0100 + +openssl (0.9.8a-3) unstable; urgency=high + + * Link to libz instead of dynamicly loading it. It gets loaded + at the moment the library is initialised, so there is no point + in not linking to it. It's now failing in some cases since + it's not opened by it's soname, but by the symlink to it. + This should hopefully solve most of the bugs people have reported + since the move to libssl0.9.8. + (Closes: #334180, #336140, #335271) + * Urgency set to high because it fixes a grave bug affecting testing. + + -- Kurt Roeckx Tue, 1 Nov 2005 14:56:40 +0100 + +openssl (0.9.8a-2) unstable; urgency=low + + * Add Build-Dependency on m4, since sparc needs it to generate + it's assembler files. (Closes: #334542) + * Don't use rc4-x86_64.o on amd64 for now, it seems to be broken + and causes a segfault. (Closes: #334501, #334502) + + -- Kurt Roeckx Tue, 18 Oct 2005 19:05:53 +0200 + +openssl (0.9.8a-1) unstable; urgency=low + + Christoph Martin: + * fix asm entries for some architectures, fixing #332758 properly. + * add noexecstack option to i386 subarch + * include symbol versioning in Configure (closes: #330867) + * include debian-armeb arch (closes: #333579) + * include new upstream patches; includes some minor fixes + * fix dh_shlibdeps line, removing the redundant dependency on + libssl0.9.8 (closes: #332755) + * add swedish debconf template (closes: #330554) + + Kurt Roeckx: + * Also add noexecstack option for amd64, since it now has an + executable stack with the assembler fixes for amd64. + + -- Christoph Martin Mon, 17 Oct 2005 17:01:06 +0200 + +openssl (0.9.8-3) unstable; urgency=low + + * Apply security fix for CAN-2005-2969. (Closes: #333500) + * Change priority of -dbg package to extra. + + -- Kurt Roeckx Wed, 12 Oct 2005 22:38:58 +0200 + +openssl (0.9.8-2) unstable; urgency=low + + * Don't use arch specific assembler. Should fix build failure on + ia64, sparc and amd64. (Closes: #332758) + * Add myself to the uploaders. + + -- Kurt Roeckx Mon, 10 Oct 2005 19:22:36 +0200 + +openssl (0.9.8-1) unstable; urgency=low + + * New upstream release (closes: #311826) + + -- Christoph Martin Thu, 29 Sep 2005 14:20:04 +0200 + +openssl (0.9.7g-3) unstable; urgency=low + + * change Configure line for debian-freebsd-i386 to debian-kfreebsd-i386 + (closes: #327692) + * include -dbg version. That implies compiling with -g and without + -fomit-frame-pointer (closes: #293823, #153811) + + -- Christoph Martin Fri, 23 Sep 2005 13:51:57 +0200 + +openssl (0.9.7g-2) unstable; urgency=low + + * really include nl translation + * remove special ia64 code from rc4 code to make the abi compatible to + older 0.9.7 versions (closes: #310489, #309274) + * fix compile flag for debian-ppc64 (closes: #318750) + * small fix in libssl0.9.7.postinst (closes: #239956) + * fix pk7_mime.c to prevent garbled messages because of to early memory + free (closes: #310184) + * include vietnamese debconf translation (closes: #316689) + * make optimized i386 libraries have non executable stack (closes: + #321721) + * remove leftover files from ssleay + * move from dh_installmanpages to dh_installman + * change Maintainer to pkg-openssl-devel@lists.alioth.debian.org + + -- Christoph Martin Wed, 7 Sep 2005 15:32:54 +0200 + +openssl (0.9.7g-1) unstable; urgency=low + + * New upstream release + * Added support for proxy certificates according to RFC 3820. + Because they may be a security thread to unaware applications, + they must be explicitely allowed in run-time. See + docs/HOWTO/proxy_certificates.txt for further information. + * Prompt for pass phrases when appropriate for PKCS12 input format. + * Back-port of selected performance improvements from development + branch, as well as improved support for PowerPC platforms. + * Add lots of checks for memory allocation failure, error codes to indicate + failure and freeing up memory if a failure occurs. + * Perform some character comparisons of different types in X509_NAME_cmp: + this is needed for some certificates that reencode DNs into UTF8Strings + (in violation of RFC3280) and can't or wont issue name rollover + certificates. + * corrected watchfile + * added upstream source url (closes: #292904) + * fix typo in CA.pl.1 (closes: #290271) + * change debian-powerpc64 to debian-ppc64 and adapt the configure + options to be the same like upstream (closes: #289841) + * include -signcert option in CA.pl usage + * compile with zlib-dynamic to use system zlib (closes: #289872) + + -- Christoph Martin Mon, 9 May 2005 23:32:03 +0200 + +openssl (0.9.7e-3) unstable; urgency=high + + * really fix der_chop. The fix from -1 was not really included (closes: + #281212) + * still fixes security problem CAN-2004-0975 etc. + - tempfile raise condition in der_chop + - Avoid a race condition when CRLs are checked in a multi threaded + environment. + + -- Christoph Martin Thu, 16 Dec 2004 18:41:29 +0100 + +openssl (0.9.7e-2) unstable; urgency=high + + * fix perl path in der_chop and c_rehash (closes: #281212) + * still fixes security problem CAN-2004-0975 etc. + - tempfile raise condition in der_chop + - Avoid a race condition when CRLs are checked in a multi threaded + environment. + + -- Christoph Martin Sun, 14 Nov 2004 20:16:21 +0100 + +openssl (0.9.7e-1) unstable; urgency=high + + * SECURITY UPDATE: fix insecure temporary file handling + * apps/der_chop: + - replaced $$-style creation of temporary files with + File::Temp::tempfile() + - removed unused temporary file name in do_certificate() + * References: + CAN-2004-0975 (closes: #278260) + * fix ASN1_STRING_to_UTF8 with UTF8 (closes: #260357) + * New upstream release with security fixes + - Avoid a race condition when CRLs are checked in a multi threaded + environment. + - Various fixes to s3_pkt.c so alerts are sent properly. + - Reduce the chances of duplicate issuer name and serial numbers (in + violation of RFC3280) using the OpenSSL certificate creation + utilities. + * depends openssl on perl-base instead of perl (closes: #280225) + * support powerpc64 in Configure (closes: #275224) + * include cs translation (closes: #273517) + * include nl translation (closes: #272479) + * Fix default dir of c_rehash (closes: #253126) + + -- Christoph Martin Fri, 12 Nov 2004 14:11:15 +0100 + +openssl (0.9.7d-5) unstable; urgency=low + + * Make S/MIME encrypt work again (backport from CVS) (closes: #241407, + #241386) + + -- Christoph Martin Mon, 26 Jul 2004 17:22:42 +0200 + +openssl (0.9.7d-4) unstable; urgency=low + + * add Catalan translation (closes: #248749) + * add Spanish translation (closes: #254561) + * include NMU fixes: see below + * decrease optimisation level for debian-arm to work around gcc bug + (closes: #253848) (thanks to Steve Langasek and Thom May) + * Add libcrypto0.9.7-udeb. (closes: #250010) (thanks to Bastian Blank) + * Add watchfile + + -- Christoph Martin Wed, 14 Jul 2004 14:31:02 +0200 + +openssl (0.9.7d-3) unstable; urgency=low + + * rename -pic.a libraries to _pic.a (closes: #250016) + + -- Christoph Martin Mon, 24 May 2004 17:02:29 +0200 + +openssl (0.9.7d-2) unstable; urgency=low + + * include PIC libs (libcrypto-pic.a and libssl-pic.a) to libssl-dev + (closes: #246928, #243999) + * add racoon to restart list (closes: #242652) + * add Brazilian, Japanese and Danish translations (closes: #242087, + #241830, #241705) + + -- Christoph Martin Tue, 11 May 2004 10:13:49 +0200 + +openssl (0.9.7d-1) unstable; urgency=high + + * new upstream + * fixes security holes (http://www.openssl.org/news/secadv_20040317.txt) + (closes: #238661) + * includes support for debian-amd64 (closes: #235551, #232310) + * fix typo in pem.pod (closes: #219873) + * fix typo in libssl0.9.7.templates (closes: #224690) + * openssl suggests ca-certificates (closes: #217180) + * change debconf template to gettext format (closes: #219013) + * include french debconf template (closes: #219014) + + -- Christoph Martin Thu, 18 Mar 2004 16:18:43 +0100 + +openssl (0.9.7c-5) unstable; urgency=low + + * include openssl.pc into libssl-dev (closes: #212545) + + -- Christoph Martin Thu, 16 Oct 2003 16:31:32 +0200 + +openssl (0.9.7c-4) unstable; urgency=low + + * change question to restart services to debconf (closes: #214840) + * stop using dh_undocumented (closes: #214831) + + -- Christoph Martin Fri, 10 Oct 2003 15:40:48 +0200 + +openssl (0.9.7c-3) unstable; urgency=low + + * fix POSIX conformance for head in libssl0.9.7.postinst (closes: + #214700) + + -- Christoph Martin Wed, 8 Oct 2003 14:02:38 +0200 + +openssl (0.9.7c-2) unstable; urgency=low + + * add filerc macro to libssl0.9.7.postinst (closes: #213906) + * restart spamassassins spamd on upgrade (closes: #214106) + * restart more services on upgrade + * fix EVP_BytesToKey manpage (closes: #213715) + + -- Christoph Martin Tue, 7 Oct 2003 15:01:32 +0200 + +openssl (0.9.7c-1) unstable; urgency=high + + * upstream security fix (closes: #213451) + - Fix various bugs revealed by running the NISCC test suite: + Stop out of bounds reads in the ASN1 code when presented with + invalid tags (CAN-2003-0543 and CAN-2003-0544). + Free up ASN1_TYPE correctly if ANY type is invalid (CAN-2003-0545). + If verify callback ignores invalid public key errors don't try to check + certificate signature with the NULL public key. + - In ssl3_accept() (ssl/s3_srvr.c) only accept a client certificate + if the server requested one: as stated in TLS 1.0 and SSL 3.0 + specifications. + * more minor upstream bugfixes + * fix formatting in c_issuer (closes: #190026) + * fix Debian-FreeBSD support (closes: #200381) + * restart some services in postinst to make them use the new libraries + * remove duplicated openssl.1, crypto.3 and ssl.3 (closes: #198594) + + -- Christoph Martin Wed, 1 Oct 2003 08:54:27 +0200 + +openssl (0.9.7b-2) unstable; urgency=high + + * fix permission of /etc/ssl/private to 700 again + * change section of libssl-dev to libdevel + + -- Christoph Martin Wed, 23 Apr 2003 11:13:24 +0200 + +openssl (0.9.7b-1) unstable; urgency=high + + * upstream security fix + - Countermeasure against the Klima-Pokorny-Rosa extension of + Bleichbacher's attack on PKCS #1 v1.5 padding: treat + a protocol version number mismatch like a decryption error + in ssl3_get_client_key_exchange (ssl/s3_srvr.c). (CAN-2003-0131) + (closes: #189087) + - Turn on RSA blinding by default in the default implementation + to avoid a timing attack. Applications that don't want it can call + RSA_blinding_off() or use the new flag RSA_FLAG_NO_BLINDING. + They would be ill-advised to do so in most cases. (CAN-2003-0147) + - Change RSA blinding code so that it works when the PRNG is not + seeded (in this case, the secret RSA exponent is abused as + an unpredictable seed -- if it is not unpredictable, there + is no point in blinding anyway). Make RSA blinding thread-safe + by remembering the creator's thread ID in rsa->blinding and + having all other threads use local one-time blinding factors + (this requires more computation than sharing rsa->blinding, but + avoids excessive locking; and if an RSA object is not shared + between threads, blinding will still be very fast). + for more details see the CHANGES file + + -- Christoph Martin Wed, 16 Apr 2003 10:32:57 +0200 + +openssl (0.9.7a-1) unstable; urgency=high + + * upstream Security fix + - In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked + via timing by performing a MAC computation even if incorrrect + block cipher padding has been found. This is a countermeasure + against active attacks where the attacker has to distinguish + between bad padding and a MAC verification error. (CAN-2003-0078) + for more details see the CHANGES file + + -- Christoph Martin Fri, 21 Feb 2003 22:39:40 +0100 + +openssl (0.9.7-4) unstable; urgency=low + + * use DH_COMPAT=3 to build + * move i686 to i686/cmov to fix problems on Via C3. For that to work we + have to depend on the newest libc6 on i386 (closes: #177891) + * fix bug in ui_util.c (closes: #177615) + * fix typo in md5.h (closes: #178112) + + -- Christoph Martin Fri, 24 Jan 2003 10:22:56 +0100 + +openssl (0.9.7-3) unstable; urgency=low + + * enable build of ultrasparc code on non ultrasparc machines (closes: + #177024) + + -- Christoph Martin Fri, 17 Jan 2003 08:22:13 +0100 + +openssl (0.9.7-2) unstable; urgency=low + + * include changes between 0.9.6g-9 and -10 + * fix problem in build-process on i386 with libc6 version number + + -- Christoph Martin Mon, 13 Jan 2003 14:26:56 +0100 + +openssl (0.9.7-1) unstable; urgency=low + + * new upstream + * includes engine support + * a lot of bugfixes and enhancements, see the CHANGES file + * include AES encryption + * makes preview of certificate configurable (closes: #176059) + * fix x509 manpage (closes: #168070) + * fix declaration of ERR_load_PEM_string in pem.h (closes: #141360) + + -- Christoph Martin Sat, 11 Jan 2003 09:12:16 +0100 + +openssl (0.9.6g-10) unstable; urgency=low + + * fix problem in build-process on i386 with libc6 version number + (closes: #167096) + + -- Christoph Martin Mon, 4 Nov 2002 12:27:21 +0100 + +openssl (0.9.6g-9) unstable; urgency=low + + * fix typo in i386 libc6 depend (sigh) (closes: #163848) + + -- Christoph Martin Tue, 8 Oct 2002 23:29:20 +0200 + +openssl (0.9.6g-8) unstable; urgency=low + + * fix libc6 depends. Only needed for i386 (closes: #163701) + * remove SHLIB section for bsds from Configure (closes: #163585) + + -- Christoph Martin Tue, 8 Oct 2002 10:57:35 +0200 + +openssl (0.9.6g-7) unstable; urgency=low + + * enable i686 optimisation and depend on fixed glibc (closes: #163500) + * remove transition package ssleay + * include optimisation vor sparcv8 (closes: #139996) + * improve optimisation vor sparcv9 + + -- Christoph Martin Sun, 6 Oct 2002 14:07:12 +0200 + +openssl (0.9.6g-6) unstable; urgency=low + + * temporarily disable i686 optimisation (See bug in glibc #161788) + + -- Christoph Martin Sat, 21 Sep 2002 18:56:49 +0200 + +openssl (0.9.6g-5) unstable; urgency=low + + * i486 can use i586 assembler + * include set -xe in the for loops in the rules files to make it abort + on error (closes: #161768) + + -- Christoph Martin Sat, 21 Sep 2002 16:23:11 +0200 + +openssl (0.9.6g-4) unstable; urgency=low + + * fix optimization for alpha and sparc + * add optimization for i486 + + -- Christoph Martin Fri, 20 Sep 2002 22:36:19 +0200 + +openssl (0.9.6g-3) unstable; urgency=low + + * add optimized libraries for i586, i686, ev4, ev5 and v9 (closes: #139783) + + -- Christoph Martin Thu, 19 Sep 2002 18:33:04 +0200 + +openssl (0.9.6g-2) unstable; urgency=low + + * fix manpage names (closes: #156717, #156718, #156719, #156721) + + -- Christoph Martin Thu, 15 Aug 2002 11:26:37 +0200 + +openssl (0.9.6g-1) unstable; urgency=low + + * new upstream version + * Use proper error handling instead of 'assertions' in buffer + overflow checks added in 0.9.6e. This prevents DoS (the + assertions could call abort()). (closes: #155985, #156495) + * Fix ASN1 checks. Check for overflow by comparing with LONG_MAX + and get fix the header length calculation. + * include support for new sh* architectures (closes: #155117) + + -- Christoph Martin Wed, 14 Aug 2002 13:59:22 +0200 + +openssl (0.9.6e-1) unstable; urgency=high + + * fixes remote exploits (see DSA-136-1) + + -- Christoph Martin Tue, 30 Jul 2002 18:32:28 +0200 + +openssl (0.9.6d-1) unstable; urgency=low + + * new upstream (minor) version + * includes Configure lines for debian-*bsd-* (closes: #130413) + * fix wrong prototype for BN_pseudo_rand_range in BN_rand(3ssl) (closes: + #144586) + * fix typos in package description (closes: #141469) + * fix typo in SSL_CTX_set_cert_store manpage (closes: #135297) + + -- Christoph Martin Mon, 3 Jun 2002 19:42:10 +0200 + +openssl (0.9.6c-2) unstable; urgency=low + + * moved from non-US to main + + -- Christoph Martin Tue, 19 Mar 2002 14:48:39 +0100 + +openssl (0.9.6c-1) unstable; urgency=low + + * new upstream version with a lot of bugfixes + * remove directory /usr/include/openssl from openssl package (closes: + bug #121226) + * remove selfdepends from libssl0.9.6 + * link openssl binary shared again + + -- Christoph Martin Sat, 5 Jan 2002 19:04:31 +0100 + +openssl (0.9.6b-4) unstable; urgency=low + + * build with -D_REENTRANT for threads support on all architectures + (closes: #112329, #119239) + + -- Christoph Martin Sat, 24 Nov 2001 12:17:51 +0100 + +openssl (0.9.6b-3) unstable; urgency=low + + * disable idea, mdc2 and rc5 because they are not free (closes: #65368) + * ready to be moved from nonus to main + + -- Christoph Martin Wed, 21 Nov 2001 17:51:41 +0100 + +openssl (0.9.6b-2) unstable; urgency=high + + * fix definition of crypt in des.h (closes: #107533) + * fix descriptions (closes: #109503) + + -- Christoph Martin Mon, 17 Sep 2001 15:38:27 +0200 + +openssl (0.9.6b-1) unstable; urgency=medium + + * new upstream fixes some security issues (closes: #105835, #100146) + * added support for s390 (closes: #105681) + * added support for sh (closes: #100003) + * change priority of libssl096 to standard as ssh depends on it (closes: + #105440) + * don't optimize for i486 to support i386. (closes: #104127, #82194) + + -- Christoph Martin Fri, 20 Jul 2001 15:52:42 +0200 + +openssl (0.9.6a-3) unstable; urgency=medium + + * add perl-base to builddeps + * include static libraries in libssl-dev (closes: #93688) + + -- Christoph Martin Mon, 14 May 2001 20:16:06 +0200 + +openssl (0.9.6a-2) unstable; urgency=medium + + * change Architecture of ssleay from any to all (closes: #92913) + * depend libssl-dev on the exact same version of libssl0.9.6 (closes: + #88939) + * remove lib{crypto,ssl}.a from openssl (closes: #93666) + * rebuild with newer gcc to fix atexit problem (closes: #94036) + + -- Christoph Martin Wed, 2 May 2001 12:28:39 +0200 + +openssl (0.9.6a-1) unstable; urgency=medium + + * new upstream, fixes some security bugs (closes: #90584) + * fix typo in s_server manpage (closes: #89756) + + -- Christoph Martin Tue, 10 Apr 2001 12:13:11 +0200 + +openssl (0.9.6-2) unstable; urgency=low + + * policy: reorganisation of package names: libssl096 -> libssl0.9.6, + libssl096-dev -> libssl-dev (closes: #83426) + * libssl0.9.6 drops replaces libssl09 (Closes: #83425) + * install upstream CHANGES files (Closes: #83430) + * added support for hppa and ia64 (Closes: #88790) + * move man3 manpages to libssl-dev (Closes: #87546) + * fix formating problem in rand_add(1) (Closes: #87547) + * remove manpage duplicates (Closes: #87545, #74986) + * make package descriptions clearer (Closes: #83518, #83444) + * increase default emailAddress_max from 40 to 60 (Closes: #67238) + * removed RSAREF warning (Closes: #84122) + + -- Christoph Martin Thu, 8 Mar 2001 14:24:00 +0100 + +openssl (0.9.6-1) unstable; urgency=low + + * New upstream version (Thanks to Enrique Zanardi ) + (closes: #72388) + * Add support for debian-hurd (closes: #76032) + + -- Christoph Martin Mon, 13 Nov 2000 22:30:46 +0100 + +openssl (0.9.5a-5) unstable; urgency=low + + * move manpages in standard directories with section ssl (closes: + #72152, #69809) + + -- Christoph Martin Thu, 5 Oct 2000 19:56:20 +0200 + +openssl (0.9.5a-4) unstable; urgency=low + + * include edg_rand_bytes patch from and for apache-ssl + + -- Christoph Martin Sat, 23 Sep 2000 16:48:06 +0200 + +openssl (0.9.5a-3) unstable; urgency=low + + * fix call to dh_makeshlibs to create correct shlibs file and make + dependend programs link correctly (closes: Bug#61658) + * include a note in README.debian concerning the location of the + subcommand manpages (closes: Bug#69809) + + -- Christoph Martin Sat, 16 Sep 2000 19:10:50 +0200 + +openssl (0.9.5a-2) unstable; urgency=low + + * try to fix the sharedlib problem. change soname of library + (closes: Bug#4622, #66102, #66538, #66123) + + -- Christoph Martin Wed, 12 Jul 2000 03:26:30 +0200 + +openssl (0.9.5a-1) unstable; urgency=low + + * new upstream version (major changes see file NEWS) (closes: Bug#63976, + #65239, #65358) + * new library package libssl095a because of probably changed library + interface (closes: Bug#46222) + * added architecture mips and mipsel (closes: Bug#62437, #60366) + * provide shlibs.local file in build to help build if libraries are not + yet installed (closes: Bug#63984) + + -- Christoph Martin Sun, 11 Jun 2000 15:17:35 +0200 + +openssl (0.9.4-5) frozen unstable; urgency=medium + + * cleanup of move of doc directories to /usr/share/doc (closes: + Bug#56430) + * lintian issues (closes: Bug#49358) + * move demos from openssl to libssl09-dev (closes: Bug#59201) + * move to debhelpers + + -- Christoph Martin Sat, 11 Mar 2000 10:38:04 +0100 + +openssl (0.9.4-4) unstable; urgency=medium + + * Added 'debian-arm' in 'Configure'. (closes: Bug#54251, #54766) + * Fixed Configure for 'debian-m68k' (closes: Bug#53636) + + -- Christoph Martin Sat, 15 Jan 2000 13:16:18 +0100 + +openssl (0.9.4-3) unstable; urgency=low + + * define symbol SSLeay_add_ssl_algorithms for backward compatibility + (closes: Bug#46882) + * remove manpages from /usr/doc/openssl (closes: Bug#46791) + + -- Christoph Martin Thu, 14 Oct 1999 16:51:08 +0200 + +openssl (0.9.4-2) unstable; urgency=low + + * include some more docu in pod format (Bug #43933) + * removed -mv8 from sparc flags (Bug #44769) + + -- Christoph Martin Tue, 14 Sep 1999 22:04:06 +0200 + +openssl (0.9.4-1) unstable; urgency=low + + * new upstream version (Closes: #42926) + + -- Christoph Martin Sat, 28 Aug 1999 17:04:23 +0200 + +openssl (0.9.3a-1) unstable; urgency=low + + * new upstream version (Bug #38345, #38627) + * sparc is big-endian (Bug #39973) + + -- Christoph Martin Wed, 7 Jul 1999 16:03:37 +0200 + +openssl (0.9.2b-3) unstable; urgency=low + + * correct move conffiles to /etc/ssl (Bug #38570) + + -- Christoph Martin Mon, 31 May 1999 21:08:07 +0200 + +openssl (0.9.2b-2) unstable; urgency=low + + * added convenience package ssleay to help upgrade to openssl (Bug + #37185, #37623, #36326) + * added some missing dependencies from libssl09 (Bug #36681, #35867, + #36326) + * move lib*.so to libssl09-dev (Bug #36761) + * corrected version numbers of library files + * introduce link from /usr/lib/ssl to /etc/ssl (Bug #36710) + + -- Christoph Martin Sun, 23 May 1999 14:57:48 +0200 + +openssl (0.9.2b-1) unstable; urgency=medium + + * First openssl version + + -- Christoph Martin Wed, 31 Mar 1999 15:54:26 +0200 + +ssleay (0.9.0b-2) unstable; urgency=low + + * Include message about the (not)usage of RSAREF (#24409) + * Move configfiles from /usr/lib/ssl to /etc/ssl (#26406) + * Change definitions for sparc (#26487) + * Added missing dependency (#28591) + * Make debian/libtool executable (#29708) + * /etc/ssl/lib/ssleay.cnf is now a confile (#32624) + + -- Christoph Martin Sun, 21 Mar 1999 19:41:04 +0100 + +ssleay (0.9.0b-1) unstable; urgency=low + + * new upstream version (Bug #21227, #25971) + * build shared libraries with -fPIC (Bug #20027) + * support sparc architecture (Bug #28467) + + -- Christoph Martin Tue, 13 Oct 1998 10:20:13 +0200 + +ssleay (0.8.1-7) frozen unstable; urgency=high + + * security fix patch to 0.8.1b (bug #24022) + + -- Christoph Martin Mon, 6 Jul 1998 15:42:15 +0200 + +ssleay (0.8.1-6) frozen unstable; urgency=low + + * second try to fix bug #15235 (copyright was still missing) + + -- Christoph Martin Mon, 22 Jun 1998 08:56:27 +0200 + +ssleay (0.8.1-5) frozen unstable; urgency=high + + * changed /dev/random to /dev/urandom (Bug #23169, #17817) + * copyright contains now the full licence (Bug #15235) + * fixed bug #19410 (md5sums-lists-nonexisting-file) + * added demos to /usr/doc (Bug #17372) + * fixed type in package description (Bug #18969) + * fixed bug in adding documentation (Bug #21463) + * added patch for support of debian-powerpc (Bug #21579) + + -- Christoph Martin Thu, 18 Jun 1998 23:09:13 +0200 + +ssleay (0.8.1-4) unstable; urgency=low + + * purged dependency from libc5 + + -- Christoph Martin Tue, 11 Nov 1997 15:31:50 +0100 + +ssleay (0.8.1-3) unstable; urgency=low + + * changed packagename libssl to libssl08 to get better dependancies + + -- Christoph Martin Fri, 7 Nov 1997 14:23:17 +0100 + +ssleay (0.8.1-2) unstable; urgency=low + + * linked shared libraries against libc6 + * use /dev/random for randomseed + + -- Christoph Martin Wed, 5 Nov 1997 11:21:40 +0100 + +ssleay (0.8.1-1) unstable; urgency=low + + * new upstream version + + -- Christoph Martin Thu, 16 Oct 1997 16:15:43 +0200 + +ssleay (0.6.6-2) unstable; urgency=low + + * cleanup in diffs + * removed INSTALL from docs (bug #13205) + * split libssl and libssl-dev (but #13735) + + -- Christoph Martin Wed, 15 Oct 1997 17:38:38 +0200 + +ssleay (0.6.6-1) unstable; urgency=low + + * New upstream version + * added shared libraries for libcrypto and libssl + + -- Christoph Martin Thu, 26 Jun 1997 19:26:14 +0200 + +ssleay (0.6.4-2) unstable; urgency=low + + * changed doc filenames from .doc to .txt to be able to read them + over with webbrowser + + -- Christoph Martin Tue, 25 Feb 1997 14:02:53 +0100 + +ssleay (0.6.4-1) unstable; urgency=low + + * Initial Release. + + -- Christoph Martin Fri, 22 Nov 1996 21:29:51 +0100 diff --git a/debian/compat b/debian/compat new file mode 100644 index 0000000..f599e28 --- /dev/null +++ b/debian/compat @@ -0,0 +1 @@ +10 diff --git a/debian/control b/debian/control new file mode 100644 index 0000000..60aa52f --- /dev/null +++ b/debian/control @@ -0,0 +1,68 @@ +Source: openssl1.0 +Build-Depends: debhelper (>= 10), m4, bc, dpkg-dev (>= 1.15.7) +Section: utils +Priority: optional +Maintainer: Debian OpenSSL Team +Uploaders: Christoph Martin , Kurt Roeckx , Sebastian Andrzej Siewior +Standards-Version: 3.9.8 +Vcs-Browser: http://anonscm.debian.org/viewvc/pkg-openssl/openssl +Vcs-Svn: svn://anonscm.debian.org/pkg-openssl/openssl/ +Homepage: https://www.openssl.org + +Package: libssl1.0.2 +Section: libs +Priority: important +Architecture: any +Multi-Arch: same +Pre-Depends: ${misc:Pre-Depends} +Depends: ${shlibs:Depends}, ${misc:Depends} +Description: Secure Sockets Layer toolkit - shared libraries + This package is part of the OpenSSL project's implementation of the SSL + and TLS cryptographic protocols for secure communication over the + Internet. + . + It provides the libssl and libcrypto shared libraries. + +Package: libssl1.0-dev +Section: libdevel +Priority: optional +Architecture: any +Multi-Arch: same +Conflicts: libssl-dev +Depends: libssl1.0.2 (= ${binary:Version}), ${misc:Depends} +Description: Secure Sockets Layer toolkit - development files + This package is part of the OpenSSL project's implementation of the SSL + and TLS cryptographic protocols for secure communication over the + Internet. + . + It contains development libraries, header files, and manpages for libssl + and libcrypto. + . + This is a transition package that will go away after the stretch release + to provide the 1.0.X APIs for those packages that are not ready for the + 1.1 version yet. + +Package: libcrypto1.0.2-udeb +XC-Package-Type: udeb +Section: debian-installer +Priority: optional +Architecture: any +Depends: ${shlibs:Depends}, ${misc:Depends} +Description: Secure Sockets Layer toolkit - libcrypto udeb + This package is part of the OpenSSL project's implementation of the SSL + and TLS cryptographic protocols for secure communication over the + Internet. + . + It contains a version of the libcrypto shared library for use with the + Debian Installer. Do not install it on a normal system. + +Package: libssl1.0.2-udeb +XC-Package-Type: udeb +Section: debian-installer +Priority: optional +Architecture: any +Depends: ${shlibs:Depends}, ${misc:Depends} +Description: ssl shared library - udeb + libssl shared library. + . + Do not install it on a normal system. diff --git a/debian/copyright b/debian/copyright new file mode 100644 index 0000000..92a8bbd --- /dev/null +++ b/debian/copyright @@ -0,0 +1,135 @@ +This package was debianized by Christoph Martin martin@uni-mainz.de on +Fri, 22 Nov 1996 21:29:51 +0100. + +Copyright (c) 1998-2004 The OpenSSL Project +Copyright (c) 1995-1998 Eric A. Young, Tim J. Hudson + +The upstream sources were obtained from http://www.openssl.org/ + + + LICENSE ISSUES + ============== + + The OpenSSL toolkit stays under a dual license, i.e. both the conditions of + the OpenSSL License and the original SSLeay license apply to the toolkit. + See below for the actual license texts. Actually both licenses are BSD-style + Open Source licenses. In case of any license issues related to OpenSSL + please contact openssl-core@openssl.org. + + OpenSSL License + --------------- + +/* ==================================================================== + * Copyright (c) 1998-2004 The OpenSSL Project. All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in + * the documentation and/or other materials provided with the + * distribution. + * + * 3. All advertising materials mentioning features or use of this + * software must display the following acknowledgment: + * "This product includes software developed by the OpenSSL Project + * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" + * + * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to + * endorse or promote products derived from this software without + * prior written permission. For written permission, please contact + * openssl-core@openssl.org. + * + * 5. Products derived from this software may not be called "OpenSSL" + * nor may "OpenSSL" appear in their names without prior written + * permission of the OpenSSL Project. + * + * 6. Redistributions of any form whatsoever must retain the following + * acknowledgment: + * "This product includes software developed by the OpenSSL Project + * for use in the OpenSSL Toolkit (http://www.openssl.org/)" + * + * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY + * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR + * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR + * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT + * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; + * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, + * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) + * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED + * OF THE POSSIBILITY OF SUCH DAMAGE. + * ==================================================================== + * + * This product includes cryptographic software written by Eric Young + * (eay@cryptsoft.com). This product includes software written by Tim + * Hudson (tjh@cryptsoft.com). + * + */ + + Original SSLeay License + ----------------------- + +/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) + * All rights reserved. + * + * This package is an SSL implementation written + * by Eric Young (eay@cryptsoft.com). + * The implementation was written so as to conform with Netscapes SSL. + * + * This library is free for commercial and non-commercial use as long as + * the following conditions are aheared to. The following conditions + * apply to all code found in this distribution, be it the RC4, RSA, + * lhash, DES, etc., code; not just the SSL code. The SSL documentation + * included with this distribution is covered by the same copyright terms + * except that the holder is Tim Hudson (tjh@cryptsoft.com). + * + * Copyright remains Eric Young's, and as such any Copyright notices in + * the code are not to be removed. + * If this package is used in a product, Eric Young should be given attribution + * as the author of the parts of the library used. + * This can be in the form of a textual message at program startup or + * in documentation (online or textual) provided with the package. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * 3. All advertising materials mentioning features or use of this software + * must display the following acknowledgement: + * "This product includes cryptographic software written by + * Eric Young (eay@cryptsoft.com)" + * The word 'cryptographic' can be left out if the rouines from the library + * being used are not cryptographic related :-). + * 4. If you include any Windows specific code (or a derivative thereof) from + * the apps directory (application code) you must include an acknowledgement: + * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" + * + * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE + * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF + * SUCH DAMAGE. + * + * The licence and distribution terms for any publically available version or + * derivative of this code cannot be changed. i.e. this code cannot simply be + * copied and put under another distribution licence + * [including the GNU Public Licence.] + */ + diff --git a/debian/gbp.conf b/debian/gbp.conf new file mode 100644 index 0000000..812c979 --- /dev/null +++ b/debian/gbp.conf @@ -0,0 +1,17 @@ +[DEFAULT] +upstream-vcs-tag = OpenSSL_%(version%.%_)s +#sign-tags = false +dist = DEP14 +upstream-branch = upstream/OpenSSL_1_0_2-stable +debian-branch = debian/stretch_openssl1.0-pu +debian-tag = debian/openssl-%(version)s +id-length = 12 +abbrev = 12 + +[import-orig] +import-msg = New upstream version %(version)s +interactive = False +merge-mode=replace + +[pq] +patch-numbers = False diff --git a/debian/libcrypto1.0.2-udeb.dirs b/debian/libcrypto1.0.2-udeb.dirs new file mode 100644 index 0000000..6845771 --- /dev/null +++ b/debian/libcrypto1.0.2-udeb.dirs @@ -0,0 +1 @@ +usr/lib diff --git a/debian/libcrypto1.0.2-udeb.lintian-overrides b/debian/libcrypto1.0.2-udeb.lintian-overrides new file mode 100644 index 0000000..a4b0f6d --- /dev/null +++ b/debian/libcrypto1.0.2-udeb.lintian-overrides @@ -0,0 +1 @@ +libcrypto1.0.2-udeb udeb: embedded-library diff --git a/debian/libssl1.0-dev.dirs b/debian/libssl1.0-dev.dirs new file mode 100644 index 0000000..a041ba3 --- /dev/null +++ b/debian/libssl1.0-dev.dirs @@ -0,0 +1,2 @@ +usr/lib +usr/share/doc/libssl1.0-dev diff --git a/debian/libssl1.0-dev.install b/debian/libssl1.0-dev.install new file mode 100644 index 0000000..d7e31a9 --- /dev/null +++ b/debian/libssl1.0-dev.install @@ -0,0 +1,7 @@ +usr/lib/*/libssl.so +usr/lib/*/libcrypto.so +usr/lib/*/libssl.a +usr/lib/*/libcrypto.a +usr/lib/*/pkgconfig +usr/include/openssl/* +usr/include/*/openssl diff --git a/debian/libssl1.0.2-udeb.dirs b/debian/libssl1.0.2-udeb.dirs new file mode 100644 index 0000000..6845771 --- /dev/null +++ b/debian/libssl1.0.2-udeb.dirs @@ -0,0 +1 @@ +usr/lib diff --git a/debian/libssl1.0.2-udeb.lintian-overrides b/debian/libssl1.0.2-udeb.lintian-overrides new file mode 100644 index 0000000..c5134ae --- /dev/null +++ b/debian/libssl1.0.2-udeb.lintian-overrides @@ -0,0 +1 @@ +libssl1.0.2-udeb udeb: embedded-library diff --git a/debian/libssl1.0.2.dirs b/debian/libssl1.0.2.dirs new file mode 100644 index 0000000..f731d9e --- /dev/null +++ b/debian/libssl1.0.2.dirs @@ -0,0 +1 @@ +usr/share/doc/libssl1.0.2 diff --git a/debian/libssl1.0.2.install b/debian/libssl1.0.2.install new file mode 100644 index 0000000..293dd8f --- /dev/null +++ b/debian/libssl1.0.2.install @@ -0,0 +1,2 @@ +usr/lib/*/*.so.*.*.* +usr/lib/*/openssl-1.0.2/engines/*.so diff --git a/debian/libssl1.0.2.lintian-overrides b/debian/libssl1.0.2.lintian-overrides new file mode 100644 index 0000000..be936f5 --- /dev/null +++ b/debian/libssl1.0.2.lintian-overrides @@ -0,0 +1 @@ +libssl1.0.2 binary: embedded-library diff --git a/debian/libssl1.0.2.postinst b/debian/libssl1.0.2.postinst new file mode 100644 index 0000000..cdf70fe --- /dev/null +++ b/debian/libssl1.0.2.postinst @@ -0,0 +1,207 @@ +#!/bin/sh + +. /usr/share/debconf/confmodule + +set -e + +package_name() +{ + echo $(basename $0 .postinst) +} + +# element() is a helper function for file-rc: +element() { + local element list IFS + + element="$1" + + [ "$2" = "in" ] && shift + list="$2" + [ "$list" = "-" ] && return 1 + [ "$list" = "*" ] && return 0 + + IFS="," + set -- $list + case $element in + "$1"|"$2"|"$3"|"$4"|"$5"|"$6"|"$7"|"$8"|"$9") + return 0 + esac + return 1 +} + +# filerc (runlevel, service) returns /etc/init.d/service, if service is +# running in $runlevel: +filerc() { + local runlevel basename + runlevel=$1 + basename=$2 + while read LINE + do + case $LINE in + \#*|"") continue + esac + + set -- $LINE + SORT_NO="$1"; STOP="$2"; START="$3"; CMD="$4" + [ "$CMD" = "/etc/init.d/$basename" ] || continue + + if element "$runlevel" in "$START" || element "S" in "$START" + then + echo "/etc/init.d/$basename" + return 0 + fi + done < /etc/runlevel.conf + echo "" +} + +if [ "$1" = "configure" ] +then + if [ ! -z "$2" ]; then + if dpkg --compare-versions "$2" lt 1.0.1g-2; then + echo -n "Checking for services that may need to be restarted..." + check="amanda-server anon-proxy apache2 apache-ssl" + check="$check apf-firewall asterisk bacula-director-common" + check="$check bacula-fd bacula-sd bind9 bip boinc-client" + check="$check boxbackup-client boxbackup-server bozo cfengine2" + check="$check cfengine3 citadel-server clamav-daemon clamav-freshclam" + check="$check clamcour collectd-core conserver-server courier-imap-ssl" + check="$check courier-mta-ssl courier-pop-ssl cyrus21-imapd" + check="$check cyrus21-pop3d cyrus-common cyrus-imspd dovecot-core" + check="$check ejabberd exim4 fetchmail freeradius ftpd-ssl gatling" + check="$check globus-gatekeeper inn inn2 libapache-mod-ssl lighttpd lldpd" + check="$check lwresd monit myproxy-server nagios-nrpe-server nginx-common" + check="$check ntp openntpd openssh-server openvpn partimage-server" + check="$check postfix postgresql-7.4 postgresql-8.0 postgresql-8.1" + check="$check postgresql-8.2 postgresql-9.1 postgresql-9.2 postgresql-9.3" + check="$check proftpd proftpd-ldap proftpd-basic" + check="$check proftpd-mysql proftpd-pgsql racoon sendmail slapd" + check="$check spamassassin ssh-nonfree stunnel4 syslog-ng tor unbound" + check="$check vsftpd" + # Only get the ones that are installed, and configured + check=$(dpkg -s $check 2> /dev/null | egrep '^Package:|^Status:' | awk '{if ($1 ~ /^Package:/) { package=$2 } else if ($0 ~ /^Status: .* installed$/) { print package }}') + # init script rewrites + check=$(echo $check | sed " + # The name of proftpd-{ldap,mysql,pgsql,basic} init script is + # same as "proftpd". + s/proftpd-.*/proftpd/g; + # dovecot-core ships its init script, but the + # script name is dovecot for dovecot-{imapd,pop3d}. + s/dovecot-core/dovecot/g; + # openssh-server's init script it called ssh + s/openssh-server/ssh/g; + # bacula-director-common's init is bacula-director + s/bacula-director-common/bacula-director/g; + # citadel server + s/citadel-server/citadel/g; + # collectd + s/collectd-core/collectd/g; + # cyrus + s/cyrus-common/cyrus-imapd/g; + # nginx + s/nginx-common/nginx/g; + ") + echo "done." + fi + if dpkg --compare-versions "$2" lt 1.0.1g-3; then + echo -n "Checking for services that may need to be restarted..." + check2="chef chef-expander chef-server-api" + check2="$check2 chef-solr pound postgresql-common" + check2="$check2 prosody puppet puppetmaster snmpd" + + # Only get the ones that are installed, and configured + check2=$(dpkg -s $check2 2> /dev/null | egrep '^Package:|^Status:' | awk '{if ($1 ~ /^Package:/) { package=$2 } else if ($0 ~ /^Status: .* installed$/) { print package }}') + # init script rewrites + check2=$(echo $check2 | sed -r " + s/chef\s/chef-client/g; + s/chef-server-api/chef-server/g; + s/postgresql-common/postgresql/g; + ") + echo "done." + if [ -n "$check2" ]; then + check="$check $check2" + fi + fi + + if [ -n "$check" ]; then + db_version 2.0 + echo "Checking init scripts..." + for service in $check; do + if [ -x "`which invoke-rc.d 2>/dev/null`" ]; then + idl=$(ls /etc/init.d/${service} 2> /dev/null | head -n 1) + if [ -n "$idl" ] && [ -x $idl ]; then + services="$service $services" + else + echo "WARNING: init script for $service not found." + fi + else + if [ -f /usr/share/file-rc/rc ] || [ -f /usr/lib/file-rc/rc ] && [ -f /etc/runlevel.conf ]; then + + idl=$(filerc $rl $service) + else + idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1) + fi + if [ -n "$idl" ] && [ -x $idl ]; then + services="$service $services" + fi + fi + done + if [ -n "$services" ]; then + db_input critical libraries/restart-without-asking || true + db_go || true + db_get libraries/restart-without-asking + if [ "x$RET" != xtrue ]; then + db_reset libssl1.0.2/restart-services + db_set libssl1.0.2/restart-services "$services" + db_input critical libssl1.0.2/restart-services || true + db_go || true + db_get libssl1.0.2/restart-services + + if [ "x$RET" != "x" ] + then + services=$RET + answer=yes + else + answer=no + fi + else + answer=yes + fi + echo + if [ "$answer" = yes ] && [ "$services" != "" ]; then + echo "Restarting services possibly affected by the upgrade:" + failed="" + rl=$(runlevel | sed 's/.*\ //') + for service in $services; do + if [ -x "`which invoke-rc.d 2>/dev/null`" ]; then + idl="invoke-rc.d ${service}" + elif [ -f /usr/share/file-rc/rc ] || [ -f /usr/lib/file-rc/rc ] && [ -f /etc/runlevel.conf ]; then + idl=$(filerc $rl $service) + else + idl=$(ls /etc/rc${rl}.d/S??${service} 2> /dev/null | head -n 1) + fi + + if ! $idl restart; then + failed="$service $failed" + fi + done + echo + if [ -n "$failed" ]; then + db_subst libssl1.0.2/restart-failed services "$failed" + db_input critical libssl1.0.2/restart-failed || true + db_go || true + else + echo "Services restarted successfully." + fi + echo + fi + else + echo "Nothing to restart." + fi + # Shut down the frontend, to make sure none of the + # restarted services keep a connection open to it + db_stop + fi # end upgrading and $2 lt 0.9.8c-2 + fi # Upgrading +fi + +#DEBHELPER# diff --git a/debian/libssl1.0.2.symbols b/debian/libssl1.0.2.symbols new file mode 100644 index 0000000..fda1b5d --- /dev/null +++ b/debian/libssl1.0.2.symbols @@ -0,0 +1,6 @@ +libcrypto.so.1.0.2 libssl1.0.2 #MINVER# + *@OPENSSL_1.0.2d 1.0.2d + *@OPENSSL_1.0.2g 1.0.2g +libssl.so.1.0.2 libssl1.0.2 #MINVER# + *@OPENSSL_1.0.2d 1.0.2d + *@OPENSSL_1.0.2g 1.0.2g diff --git a/debian/libssl1.0.2.templates b/debian/libssl1.0.2.templates new file mode 100644 index 0000000..168678c --- /dev/null +++ b/debian/libssl1.0.2.templates @@ -0,0 +1,30 @@ +Template: libssl1.0.2/restart-services +Type: string +_Description: Services to restart to make them use the new libraries: + This release of OpenSSL fixes some security issues. Services will not + use these fixes until they are restarted. Please note that restarting + the SSH server (sshd) should not affect any existing connections. + . + Please check the list of detected services that need to be restarted + and correct it, if needed. The services names must be identical to the + initialization script names in /etc/init.d and separated by + spaces. No services will be restarted if the list is empty. + . + Any service that later fails unexpectedly after this upgrade should + be restarted. It is recommended to reboot this host to avoid any + SSL-related trouble. + +Template: libssl1.0.2/restart-failed +Type: error +#flag:translate!:3 +#flag:comment:2 +# This paragraph is followed by a (non translatable) paragraph containing +# a list of services that could not be restarted +_Description: Failure restarting some services for OpenSSL upgrade + The following services could not be restarted for the OpenSSL library upgrade: + . + ${services} + . + You will need to start these manually by running + '/etc/init.d/ start'. + diff --git a/debian/patches/Mark-3DES-and-RC4-ciphers-as-weak.patch b/debian/patches/Mark-3DES-and-RC4-ciphers-as-weak.patch new file mode 100644 index 0000000..0155fa3 --- /dev/null +++ b/debian/patches/Mark-3DES-and-RC4-ciphers-as-weak.patch @@ -0,0 +1,425 @@ +From: Sebastian Andrzej Siewior +Date: Sun, 18 Dec 2016 15:37:52 +0100 +Subject: [PATCH] Mark 3DES and RC4 ciphers as weak + +This disables RC4 and 3DES in our build + +Signed-off-by: Sebastian Andrzej Siewior +--- + ssl/s3_lib.c | 59 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++- + 1 file changed, 58 insertions(+), 1 deletion(-) + +diff --git a/ssl/s3_lib.c b/ssl/s3_lib.c +index 10c6db683b6e..4b4032ba397a 100644 +--- a/ssl/s3_lib.c ++++ b/ssl/s3_lib.c +@@ -216,6 +216,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 04 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_RSA_RC4_128_MD5, +@@ -230,8 +231,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher 05 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_RSA_RC4_128_SHA, +@@ -246,7 +249,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, +- ++#endif + /* Cipher 06 */ + #ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { +@@ -320,6 +323,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 0A */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_RSA_DES_192_CBC3_SHA, +@@ -334,6 +338,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* The DH ciphers */ + /* Cipher 0B */ +@@ -373,6 +378,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 0D */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_DH_DSS_DES_192_CBC3_SHA, +@@ -387,6 +393,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher 0E */ + #ifndef OPENSSL_NO_WEAK_SSL_CIPHERS +@@ -425,6 +432,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 10 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_DH_RSA_DES_192_CBC3_SHA, +@@ -439,6 +447,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* The Ephemeral DH ciphers */ + /* Cipher 11 */ +@@ -478,6 +487,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 13 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_EDH_DSS_DES_192_CBC3_SHA, +@@ -492,6 +502,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher 14 */ + #ifndef OPENSSL_NO_WEAK_SSL_CIPHERS +@@ -530,6 +541,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 16 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_EDH_RSA_DES_192_CBC3_SHA, +@@ -544,6 +556,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher 17 */ + #ifndef OPENSSL_NO_WEAK_SSL_CIPHERS +@@ -564,6 +577,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 18 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_ADH_RC4_128_MD5, +@@ -578,6 +592,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher 19 */ + #ifndef OPENSSL_NO_WEAK_SSL_CIPHERS +@@ -616,6 +631,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + #endif + + /* Cipher 1B */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_ADH_DES_192_CBC_SHA, +@@ -630,6 +646,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Fortezza ciphersuite from SSL 3.0 spec */ + #if 0 +@@ -703,6 +720,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + # endif + + /* Cipher 1F */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_KRB5_DES_192_CBC3_SHA, +@@ -717,8 +735,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher 20 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_KRB5_RC4_128_SHA, +@@ -733,6 +753,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher 21 */ + { +@@ -769,6 +790,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + # endif + + /* Cipher 23 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_KRB5_DES_192_CBC3_MD5, +@@ -783,8 +805,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher 24 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + SSL3_TXT_KRB5_RC4_128_MD5, +@@ -799,6 +823,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher 25 */ + { +@@ -1418,6 +1443,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + # endif + + /* Cipher 66 */ ++# ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_DHE_DSS_WITH_RC4_128_SHA, +@@ -1432,6 +1458,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + #endif + + /* TLS v1.2 ciphersuites */ +@@ -1703,6 +1730,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + + #ifndef OPENSSL_NO_PSK + /* Cipher 8A */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_PSK_WITH_RC4_128_SHA, +@@ -1717,8 +1745,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher 8B */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_PSK_WITH_3DES_EDE_CBC_SHA, +@@ -1733,6 +1763,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher 8C */ + { +@@ -2095,6 +2126,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + }, + + /* Cipher C002 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDH_ECDSA_WITH_RC4_128_SHA, +@@ -2109,8 +2141,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher C003 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDH_ECDSA_WITH_DES_192_CBC3_SHA, +@@ -2125,6 +2159,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C004 */ + { +@@ -2175,6 +2210,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + }, + + /* Cipher C007 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDHE_ECDSA_WITH_RC4_128_SHA, +@@ -2189,8 +2225,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher C008 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDHE_ECDSA_WITH_DES_192_CBC3_SHA, +@@ -2205,6 +2243,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C009 */ + { +@@ -2255,6 +2294,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + }, + + /* Cipher C00C */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDH_RSA_WITH_RC4_128_SHA, +@@ -2269,8 +2309,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher C00D */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDH_RSA_WITH_DES_192_CBC3_SHA, +@@ -2285,6 +2327,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C00E */ + { +@@ -2335,6 +2378,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + }, + + /* Cipher C011 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDHE_RSA_WITH_RC4_128_SHA, +@@ -2349,8 +2393,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher C012 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDHE_RSA_WITH_DES_192_CBC3_SHA, +@@ -2365,6 +2411,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C013 */ + { +@@ -2415,6 +2462,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + }, + + /* Cipher C016 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDH_anon_WITH_RC4_128_SHA, +@@ -2429,8 +2477,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 128, + 128, + }, ++#endif + + /* Cipher C017 */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_ECDH_anon_WITH_DES_192_CBC3_SHA, +@@ -2445,6 +2495,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C018 */ + { +@@ -2481,6 +2532,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + + #ifndef OPENSSL_NO_SRP + /* Cipher C01A */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_SRP_SHA_WITH_3DES_EDE_CBC_SHA, +@@ -2495,8 +2547,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C01B */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_SRP_SHA_RSA_WITH_3DES_EDE_CBC_SHA, +@@ -2511,8 +2565,10 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C01C */ ++#ifndef OPENSSL_NO_WEAK_SSL_CIPHERS + { + 1, + TLS1_TXT_SRP_SHA_DSS_WITH_3DES_EDE_CBC_SHA, +@@ -2527,6 +2583,7 @@ OPENSSL_GLOBAL SSL_CIPHER ssl3_ciphers[] = { + 112, + 168, + }, ++#endif + + /* Cipher C01D */ + { diff --git a/debian/patches/block_digicert_malaysia.patch b/debian/patches/block_digicert_malaysia.patch new file mode 100644 index 0000000..37ce540 --- /dev/null +++ b/debian/patches/block_digicert_malaysia.patch @@ -0,0 +1,32 @@ +From: Raphael Geissert +Date: Thu, 13 Dec 2018 23:27:47 +0100 +Subject: make X509_verify_cert indicate that any certificate whose + +Forwarded: not-needed +Origin: vendor +Last-Update: 2011-11-05 + +name contains "Digicert Sdn. Bhd." (from Malaysia) is revoked. +--- + crypto/x509/x509_vfy.c | 7 ++++--- + 1 file changed, 4 insertions(+), 3 deletions(-) + +diff --git a/crypto/x509/x509_vfy.c b/crypto/x509/x509_vfy.c +index 77bdb18882ce..f7f8ed76e05b 100644 +--- a/crypto/x509/x509_vfy.c ++++ b/crypto/x509/x509_vfy.c +@@ -1122,10 +1122,11 @@ static int check_ca_blacklist(X509_STORE_CTX *ctx) + for (i = sk_X509_num(ctx->chain) - 1; i >= 0; i--) + { + x = sk_X509_value(ctx->chain, i); +- /* Mark DigiNotar certificates as revoked, no matter +- * where in the chain they are. ++ /* Mark certificates containing the following names as ++ * revoked, no matter where in the chain they are. + */ +- if (x->name && strstr(x->name, "DigiNotar")) ++ if (x->name && (strstr(x->name, "DigiNotar") || ++ strstr(x->name, "Digicert Sdn. Bhd."))) + { + ctx->error = X509_V_ERR_CERT_REVOKED; + ctx->error_depth = i; diff --git a/debian/patches/block_diginotar.patch b/debian/patches/block_diginotar.patch new file mode 100644 index 0000000..14ec933 --- /dev/null +++ b/debian/patches/block_diginotar.patch @@ -0,0 +1,69 @@ +From: Raphael Geissert +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: make X509_verify_cert indicate that any certificate whose + +Forwarded: not-needed +Origin: vendor +Last-Update: 2011-09-08 +Bug: http://bugs.debian.org/639744 +Reviewed-by: Kurt Roeckx +Reviewed-by: Dr Stephen N Henson + +name contains "DigiNotar" is revoked. +This is not meant as final patch. +--- + crypto/x509/x509_vfy.c | 27 +++++++++++++++++++++++++++ + 1 file changed, 27 insertions(+) + +diff --git a/crypto/x509/x509_vfy.c b/crypto/x509/x509_vfy.c +index da778d47b1cc..77bdb18882ce 100644 +--- a/crypto/x509/x509_vfy.c ++++ b/crypto/x509/x509_vfy.c +@@ -120,6 +120,7 @@ static int check_trust(X509_STORE_CTX *ctx); + static int check_revocation(X509_STORE_CTX *ctx); + static int check_cert(X509_STORE_CTX *ctx); + static int check_policy(X509_STORE_CTX *ctx); ++static int check_ca_blacklist(X509_STORE_CTX *ctx); + + static int get_crl_score(X509_STORE_CTX *ctx, X509 **pissuer, + unsigned int *preasons, X509_CRL *crl, X509 *x); +@@ -502,6 +503,9 @@ int X509_verify_cert(X509_STORE_CTX *ctx) + if (!ok) + goto err; + ++ ok = check_ca_blacklist(ctx); ++ if(!ok) goto err; ++ + #ifndef OPENSSL_NO_RFC3779 + /* RFC 3779 path validation, now that CRL check has been done */ + ok = v3_asid_validate_path(ctx); +@@ -1110,6 +1114,29 @@ static int check_crl_time(X509_STORE_CTX *ctx, X509_CRL *crl, int notify) + return 1; + } + ++static int check_ca_blacklist(X509_STORE_CTX *ctx) ++ { ++ X509 *x; ++ int i; ++ /* Check all certificates against the blacklist */ ++ for (i = sk_X509_num(ctx->chain) - 1; i >= 0; i--) ++ { ++ x = sk_X509_value(ctx->chain, i); ++ /* Mark DigiNotar certificates as revoked, no matter ++ * where in the chain they are. ++ */ ++ if (x->name && strstr(x->name, "DigiNotar")) ++ { ++ ctx->error = X509_V_ERR_CERT_REVOKED; ++ ctx->error_depth = i; ++ ctx->current_cert = x; ++ if (!ctx->verify_cb(0,ctx)) ++ return 0; ++ } ++ } ++ return 1; ++ } ++ + static int get_crl_sk(X509_STORE_CTX *ctx, X509_CRL **pcrl, X509_CRL **pdcrl, + X509 **pissuer, int *pscore, unsigned int *preasons, + STACK_OF(X509_CRL) *crls) diff --git a/debian/patches/c_rehash-compat.patch b/debian/patches/c_rehash-compat.patch new file mode 100644 index 0000000..303431f --- /dev/null +++ b/debian/patches/c_rehash-compat.patch @@ -0,0 +1,72 @@ +From: Ludwig Nussel +Date: Wed, 21 Apr 2010 15:52:10 +0200 +Subject: [PATCH] also create old hash for compatibility + +--- + tools/c_rehash.in | 20 ++++++++++++++------ + 1 file changed, 14 insertions(+), 6 deletions(-) + +diff --git a/tools/c_rehash.in b/tools/c_rehash.in +index b086ff9cf0d9..92cb50383c72 100644 +--- a/tools/c_rehash.in ++++ b/tools/c_rehash.in +@@ -8,8 +8,6 @@ my $prefix; + + my $openssl = $ENV{OPENSSL} || "openssl"; + my $pwd; +-my $x509hash = "-subject_hash"; +-my $crlhash = "-hash"; + my $verbose = 0; + my $symlink_exists=eval {symlink("",""); 1}; + my $removelinks = 1; +@@ -18,10 +16,7 @@ my $removelinks = 1; + while ( $ARGV[0] =~ /^-/ ) { + my $flag = shift @ARGV; + last if ( $flag eq '--'); +- if ( $flag eq '-old') { +- $x509hash = "-subject_hash_old"; +- $crlhash = "-hash_old"; +- } elsif ( $flag eq '-h') { ++ if ( $flag eq '-h') { + help(); + } elsif ( $flag eq '-n' ) { + $removelinks = 0; +@@ -113,7 +108,9 @@ sub hash_dir { + next; + } + link_hash_cert($fname) if($cert); ++ link_hash_cert_old($fname) if($cert); + link_hash_crl($fname) if($crl); ++ link_hash_crl_old($fname) if($crl); + } + } + +@@ -146,6 +143,7 @@ sub check_file { + + sub link_hash_cert { + my $fname = $_[0]; ++ my $x509hash = $_[1] || '-subject_hash'; + $fname =~ s/'/'\\''/g; + my ($hash, $fprint) = `"$openssl" x509 $x509hash -fingerprint -noout -in "$fname"`; + chomp $hash; +@@ -177,10 +175,20 @@ sub link_hash_cert { + $hashlist{$hash} = $fprint; + } + ++sub link_hash_cert_old { ++ link_hash_cert($_[0], '-subject_hash_old'); ++} ++ ++sub link_hash_crl_old { ++ link_hash_crl($_[0], '-hash_old'); ++} ++ ++ + # Same as above except for a CRL. CRL links are of the form .r + + sub link_hash_crl { + my $fname = $_[0]; ++ my $crlhash = $_[1] || "-hash"; + $fname =~ s/'/'\\''/g; + my ($hash, $fprint) = `"$openssl" crl $crlhash -fingerprint -noout -in '$fname'`; + chomp $hash; diff --git a/debian/patches/config-hurd.patch b/debian/patches/config-hurd.patch new file mode 100644 index 0000000..85e3390 --- /dev/null +++ b/debian/patches/config-hurd.patch @@ -0,0 +1,24 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:45 +0100 +Subject: config-hurd + +=================================================================== +--- + config | 4 ++-- + 1 file changed, 2 insertions(+), 2 deletions(-) + +diff --git a/config b/config +index c8a3b5897d26..cd9d328dd470 100755 +--- a/config ++++ b/config +@@ -170,8 +170,8 @@ case "${SYSTEM}:${RELEASE}:${VERSION}:${MACHINE}" in + echo "${MACHINE}-whatever-linux1"; exit 0 + ;; + +- GNU*) +- echo "hurd-x86"; exit 0; ++ GNU:*|GNU/*:*) ++ echo "${MACHINE}-gnuish"; exit 0; + ;; + + LynxOS:*) diff --git a/debian/patches/debian-targets.patch b/debian/patches/debian-targets.patch new file mode 100644 index 0000000..da4e23f --- /dev/null +++ b/debian/patches/debian-targets.patch @@ -0,0 +1,80 @@ +From: Debian OpenSSL Team +Date: Sat, 1 Sep 2018 22:20:24 +0200 +Subject: debian-targets + +--- + Configure | 54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ + 1 file changed, 54 insertions(+) + +diff --git a/Configure b/Configure +index 3846c9133a2b..2840266ae9c3 100755 +--- a/Configure ++++ b/Configure +@@ -133,6 +133,10 @@ my $clang_devteam_warn = "-Wno-unused-parameter -Wno-missing-field-initializers + # Warn that "make depend" should be run? + my $warn_make_depend = 0; + ++# There are no separate CFLAGS/CPPFLAGS/LDFLAGS, set everything in CFLAGS ++my $debian_cflags = `dpkg-buildflags --get CFLAGS` . `dpkg-buildflags --get CPPFLAGS` . `dpkg-buildflags --get LDFLAGS` . "-Wa,--noexecstack -Wall"; ++$debian_cflags =~ s/\n/ /g; ++ + my $strict_warnings = 0; + + my $x86_gcc_des="DES_PTR DES_RISC1 DES_UNROLL"; +@@ -369,6 +373,56 @@ my %table=( + "osf1-alpha-cc", "cc:-std1 -tune host -O4 -readonly_strings::(unknown):::SIXTY_FOUR_BIT_LONG RC4_CHUNK:${alpha_asm}:dlfcn:alpha-osf1-shared:::.so", + "tru64-alpha-cc", "cc:-std1 -tune host -fast -readonly_strings::-pthread:::SIXTY_FOUR_BIT_LONG RC4_CHUNK:${alpha_asm}:dlfcn:alpha-osf1-shared::-msym:.so", + ++# Debian GNU/* (various architectures) ++"debian-alpha","gcc:${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-alpha-ev4","gcc:${debian_cflags} -mcpu=ev4::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-alpha-ev5","gcc:${debian_cflags} -mcpu=ev5::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-arm64","gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${aarch64_asm}:linux64:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-armel","gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-armhf","gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-amd64", "gcc:-m64 -DL_ENDIAN ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR):::", ++"debian-avr32", "gcc:-DB_ENDIAN ${debian_cflags} -fomit-frame-pointer::-D_REENTRANT::-ldl:BN_LLONG_BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-kfreebsd-amd64","gcc:-m64 -DL_ENDIAN ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-kfreebsd-i386","gcc:-DL_ENDIAN ${debian_cflags} -march=i486::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-hppa","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-hurd-i386","gcc:-DL_ENDIAN -O3 -Wa,--noexecstack -g -mtune=i486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-ia64","gcc:${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_UNROLL DES_INT:${ia64_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-i386","gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-i386-i486","gcc:-DL_ENDIAN ${debian_cflags} -march=i486::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-i386-i586","gcc:-DL_ENDIAN ${debian_cflags} -march=i586::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-i386-i686/cmov","gcc:-DL_ENDIAN ${debian_cflags} -march=i686::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-m68k","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-mips", "gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-mipsel", "gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-mipsn32", "gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-mipsn32el", "gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-mips64", "gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-mips64el", "gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-netbsd-i386", "gcc:-DL_ENDIAN ${debian_cflags} -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-netbsd-m68k", "gcc:-DB_ENDIAN ${debian_cflags}::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-netbsd-sparc", "gcc:-DB_ENDIAN ${debian_cflags} -mv8::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-nios2", "gcc:-DB_ENDIAN ${debian_cflags}::(unknown)::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-openbsd-alpha","gcc:${debian_cflags}::(unknown):::SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-openbsd-i386", "gcc:-DL_ENDIAN ${debian_cflags} -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_asm}:a.out:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-openbsd-mips","gcc:-DL_ENDIAN ${debian_cflags}::(unknown)::BN_LLONG MD2_CHAR RC4_INDEX RC4_CHAR DES_UNROLL DES_RISC2 DES_PTR BF_PTR:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-or1k", "gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-powerpc","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc32_asm}:linux32:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-powerpcspe","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc32_asm}:linux32:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-ppc64","gcc:-m64 -DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-ppc64el","gcc:-m64 -DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64le:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-s390","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-s390x","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sh3", "gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sh4", "gcc:-DL_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sh3eb", "gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sh4eb", "gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-m32r","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sparc","gcc:-DB_ENDIAN ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sparc-v8","gcc:-DB_ENDIAN ${debian_cflags} -mcpu=v8 -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv8_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sparc-v9","gcc:-DB_ENDIAN ${debian_cflags} -mcpu=v9 -Wa,-Av8plus -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-sparc64","gcc:-m64 -DB_ENDIAN ${debian_cflags} -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_PTR DES_RISC1 DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)", ++"debian-x32","gcc:-mx32 -DL_ENDIAN ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC:-mx32:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR):::x32", ++ + #### + #### Variety of LINUX:-) + #### diff --git a/debian/patches/disable_freelist.patch b/debian/patches/disable_freelist.patch new file mode 100644 index 0000000..654a601 --- /dev/null +++ b/debian/patches/disable_freelist.patch @@ -0,0 +1,37 @@ +From: Kurt Roeckx +Date: Thu, 13 Dec 2018 23:27:47 +0100 +Subject: Disable the freelist + +We don't define OPENSSL_NO_BUF_FREELISTS globally sinc it changes structures and +would break the ABI. Instead we just do it in the .c files that try to do +something with it. +--- + ssl/s3_both.c | 1 + + ssl/ssl_lib.c | 2 ++ + 2 files changed, 3 insertions(+) + +diff --git a/ssl/s3_both.c b/ssl/s3_both.c +index 054ded1c9903..bb0085cf2ec0 100644 +--- a/ssl/s3_both.c ++++ b/ssl/s3_both.c +@@ -584,6 +584,7 @@ int ssl_verify_alarm_type(long type) + return (al); + } + ++#define OPENSSL_NO_BUF_FREELISTS + #ifndef OPENSSL_NO_BUF_FREELISTS + /*- + * On some platforms, malloc() performance is bad enough that you can't just +diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c +index cfcfe76b9ce1..5c108288b14b 100644 +--- a/ssl/ssl_lib.c ++++ b/ssl/ssl_lib.c +@@ -162,6 +162,8 @@ + + const char *SSL_version_str = OPENSSL_VERSION_TEXT; + ++#define OPENSSL_NO_BUF_FREELISTS ++ + SSL3_ENC_METHOD ssl3_undef_enc_method = { + /* + * evil casts, but these functions are only called if there's a library diff --git a/debian/patches/disable_sslv3_test.patch b/debian/patches/disable_sslv3_test.patch new file mode 100644 index 0000000..7291551 --- /dev/null +++ b/debian/patches/disable_sslv3_test.patch @@ -0,0 +1,26 @@ +From: Kurt Roeckx +Date: Sun, 6 Sep 2015 16:04:11 +0200 +Subject: Disable SSLv3 test in test suite + +When testing SSLv3 the test program returns 0 for skip. The test for weak DH +expects a failure, but gets success. + +It should probably be changed to return something other than 0 for a skipped +test. +--- + test/testssl | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/test/testssl b/test/testssl +index 8bea40a4ce9c..63c72620fd73 100644 +--- a/test/testssl ++++ b/test/testssl +@@ -160,7 +160,7 @@ test_cipher() { + } + + echo "Testing ciphersuites" +-for protocol in TLSv1.2 SSLv3; do ++for protocol in TLSv1.2; do + echo "Testing ciphersuites for $protocol" + for cipher in `../util/shlib_wrap.sh ../apps/openssl ciphers "RSA+$protocol" | tr ':' ' '`; do + test_cipher $cipher $protocol diff --git a/debian/patches/engines-path.patch b/debian/patches/engines-path.patch new file mode 100644 index 0000000..1c6eff9 --- /dev/null +++ b/debian/patches/engines-path.patch @@ -0,0 +1,108 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: engines-path + +=================================================================== +--- + Configure | 2 +- + Makefile.org | 4 ++-- + engines/Makefile | 10 +++++----- + engines/ccgost/Makefile | 8 ++++---- + 4 files changed, 12 insertions(+), 12 deletions(-) + +diff --git a/Configure b/Configure +index 2840266ae9c3..f41a479e6c13 100755 +--- a/Configure ++++ b/Configure +@@ -1994,7 +1994,7 @@ while () + } + elsif (/^#define\s+ENGINESDIR/) + { +- my $foo = "$prefix/$libdir/engines"; ++ my $foo = "$prefix/$libdir/openssl-1.0.2/engines"; + $foo =~ s/\\/\\\\/g; + print OUT "#define ENGINESDIR \"$foo\"\n"; + } +diff --git a/Makefile.org b/Makefile.org +index 8089d3fc2ead..d24ff26c8cab 100644 +--- a/Makefile.org ++++ b/Makefile.org +@@ -369,7 +369,7 @@ libcrypto.pc: Makefile + echo 'exec_prefix=$${prefix}'; \ + echo 'libdir=$${exec_prefix}/$(LIBDIR)'; \ + echo 'includedir=$${prefix}/include'; \ +- echo 'enginesdir=$${libdir}/engines'; \ ++ echo 'enginesdir=$${libdir}/openssl-1.0.2/engines'; \ + echo ''; \ + echo 'Name: OpenSSL-libcrypto'; \ + echo 'Description: OpenSSL cryptography library'; \ +@@ -545,7 +545,7 @@ install: all install_docs install_sw + install_sw: + @$(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/bin \ + $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR) \ +- $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines \ ++ $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines \ + $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/pkgconfig \ + $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl \ + $(INSTALL_PREFIX)$(OPENSSLDIR)/misc \ +diff --git a/engines/Makefile b/engines/Makefile +index 2058ff405afe..df7def6174fd 100644 +--- a/engines/Makefile ++++ b/engines/Makefile +@@ -107,13 +107,13 @@ lib: $(LIBOBJ) + @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... + @if [ -n "$(SHARED_LIBS)" ]; then \ + set -e; \ +- $(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines; \ ++ $(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines; \ + for l in $(LIBNAMES); do \ + ( echo installing $$l; \ + pfx=lib; \ + if expr "$(PLATFORM)" : "Cygwin" >/dev/null; then \ + sfx=".so"; \ +- cp cyg$$l.dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \ ++ cp cyg$$l.dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$$pfx$$l$$sfx.new; \ + else \ + case "$(CFLAGS)" in \ + *DSO_BEOS*) sfx=".so";; \ +@@ -122,10 +122,10 @@ lib: $(LIBOBJ) + *DSO_WIN32*) sfx="eay32.dll"; pfx=;; \ + *) sfx=".bad";; \ + esac; \ +- cp $$pfx$$l$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \ ++ cp $$pfx$$l$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$$pfx$$l$$sfx.new; \ + fi; \ +- chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \ +- mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx ); \ ++ chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$$pfx$$l$$sfx.new; \ ++ mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$$pfx$$l$$sfx ); \ + done; \ + fi + @target=install; $(RECURSIVE_MAKE) +diff --git a/engines/ccgost/Makefile b/engines/ccgost/Makefile +index f378530c8642..b42a64162730 100644 +--- a/engines/ccgost/Makefile ++++ b/engines/ccgost/Makefile +@@ -47,7 +47,7 @@ lib: $(LIBOBJ) + pfx=lib; \ + if expr "$(PLATFORM)" : "Cygwin" >/dev/null; then \ + sfx=".so"; \ +- cp cyg$(LIBNAME).dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \ ++ cp cyg$(LIBNAME).dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$${pfx}$(LIBNAME)$$sfx.new; \ + else \ + case "$(CFLAGS)" in \ + *DSO_BEOS*) sfx=".so";; \ +@@ -56,10 +56,10 @@ lib: $(LIBOBJ) + *DSO_WIN32*) sfx="eay32.dll"; pfx=;; \ + *) sfx=".bad";; \ + esac; \ +- cp $${pfx}$(LIBNAME)$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \ ++ cp $${pfx}$(LIBNAME)$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$${pfx}$(LIBNAME)$$sfx.new; \ + fi; \ +- chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \ +- mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx; \ ++ chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$${pfx}$(LIBNAME)$$sfx.new; \ ++ mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$${pfx}$(LIBNAME)$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/openssl-1.0.2/engines/$${pfx}$(LIBNAME)$$sfx; \ + fi + + links: diff --git a/debian/patches/libdoc-manpgs-pod-spell.patch b/debian/patches/libdoc-manpgs-pod-spell.patch new file mode 100644 index 0000000..2006e1f --- /dev/null +++ b/debian/patches/libdoc-manpgs-pod-spell.patch @@ -0,0 +1,22 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:47 +0100 +Subject: libdoc-manpgs-pod-spell + +=================================================================== +--- + doc/crypto/EVP_PKEY_cmp.pod | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/doc/crypto/EVP_PKEY_cmp.pod b/doc/crypto/EVP_PKEY_cmp.pod +index f8e7ff1039ee..2d2109c427b4 100644 +--- a/doc/crypto/EVP_PKEY_cmp.pod ++++ b/doc/crypto/EVP_PKEY_cmp.pod +@@ -28,7 +28,7 @@ in B and B are both present and match this function has no effect. + The function EVP_PKEY_cmp_parameters() compares the parameters of keys + B and B. + +-The function EVP_PKEY_cmp() compares the public key components and paramters ++The function EVP_PKEY_cmp() compares the public key components and parameters + (if present) of keys B and B. + + =head1 NOTES diff --git a/debian/patches/man-dir.patch b/debian/patches/man-dir.patch new file mode 100644 index 0000000..4d67616 --- /dev/null +++ b/debian/patches/man-dir.patch @@ -0,0 +1,22 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: man-dir + +=================================================================== +--- + Makefile.org | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/Makefile.org b/Makefile.org +index d24ff26c8cab..45afbe5cf65d 100644 +--- a/Makefile.org ++++ b/Makefile.org +@@ -159,7 +159,7 @@ TESTS = alltests + + MAKEFILE= Makefile + +-MANDIR=$(OPENSSLDIR)/man ++MANDIR=/usr/share/man + MAN1=1 + MAN3=3 + MANSUFFIX= diff --git a/debian/patches/man-section.patch b/debian/patches/man-section.patch new file mode 100644 index 0000000..3390659 --- /dev/null +++ b/debian/patches/man-section.patch @@ -0,0 +1,41 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: man-section + +=================================================================== +--- + Makefile.org | 7 ++++--- + 1 file changed, 4 insertions(+), 3 deletions(-) + +diff --git a/Makefile.org b/Makefile.org +index 45afbe5cf65d..0882c80cff68 100644 +--- a/Makefile.org ++++ b/Makefile.org +@@ -162,7 +162,8 @@ MAKEFILE= Makefile + MANDIR=/usr/share/man + MAN1=1 + MAN3=3 +-MANSUFFIX= ++MANSUFFIX=ssl ++MANSECTION=SSL + HTMLSUFFIX=html + HTMLDIR=$(OPENSSLDIR)/html + SHELL=/bin/sh +@@ -658,7 +659,7 @@ install: all install_docs install_sw + echo "installing man$$sec/$$fn.$${sec}$(MANSUFFIX)"; \ + (cd `$(PERL) util/dirname.pl $$i`; \ + sh -c "$$pod2man \ +- --section=$$sec --center=OpenSSL \ ++ --section=$${sec}$(MANSECTION) --center=OpenSSL \ + --release=$(VERSION) `basename $$i`") \ + > $(INSTALL_PREFIX)$(MANDIR)/man$$sec/$$fn.$${sec}$(MANSUFFIX); \ + $(PERL) util/extract-names.pl < $$i | \ +@@ -675,7 +676,7 @@ install: all install_docs install_sw + echo "installing man$$sec/$$fn.$${sec}$(MANSUFFIX)"; \ + (cd `$(PERL) util/dirname.pl $$i`; \ + sh -c "$$pod2man \ +- --section=$$sec --center=OpenSSL \ ++ --section=$${sec}$(MANSECTION) --center=OpenSSL \ + --release=$(VERSION) `basename $$i`") \ + > $(INSTALL_PREFIX)$(MANDIR)/man$$sec/$$fn.$${sec}$(MANSUFFIX); \ + $(PERL) util/extract-names.pl < $$i | \ diff --git a/debian/patches/no-rpath.patch b/debian/patches/no-rpath.patch new file mode 100644 index 0000000..b71e2b2 --- /dev/null +++ b/debian/patches/no-rpath.patch @@ -0,0 +1,22 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: no-rpath + +=================================================================== +--- + Makefile.shared | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/Makefile.shared b/Makefile.shared +index e8d222ac6a00..f68d6ff877ac 100644 +--- a/Makefile.shared ++++ b/Makefile.shared +@@ -153,7 +153,7 @@ DO_GNU_SO=$(CALC_VERSIONS); \ + NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \ + SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX" + +-DO_GNU_APP=LDFLAGS="$(CFLAGS) -Wl,-rpath,$(LIBRPATH)" ++DO_GNU_APP=LDFLAGS="$(CFLAGS)" + + #This is rather special. It's a special target with which one can link + #applications without bothering with any features that have anything to diff --git a/debian/patches/no-symbolic.patch b/debian/patches/no-symbolic.patch new file mode 100644 index 0000000..b7587b7 --- /dev/null +++ b/debian/patches/no-symbolic.patch @@ -0,0 +1,22 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: no-symbolic + +=================================================================== +--- + Makefile.shared | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/Makefile.shared b/Makefile.shared +index f68d6ff877ac..6e24adb0f323 100644 +--- a/Makefile.shared ++++ b/Makefile.shared +@@ -151,7 +151,7 @@ DO_GNU_SO=$(CALC_VERSIONS); \ + SHLIB_SUFFIX=; \ + ALLSYMSFLAGS='-Wl,--whole-archive'; \ + NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \ +- SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX" ++ SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX" + + DO_GNU_APP=LDFLAGS="$(CFLAGS)" + diff --git a/debian/patches/pic.patch b/debian/patches/pic.patch new file mode 100644 index 0000000..c129687 --- /dev/null +++ b/debian/patches/pic.patch @@ -0,0 +1,186 @@ +From: Debian OpenSSL Team +Date: Sat, 1 Sep 2018 22:20:24 +0200 +Subject: pic + +--- + crypto/des/asm/desboth.pl | 17 ++++++++++++++--- + crypto/perlasm/cbc.pl | 24 ++++++++++++++++++++---- + crypto/perlasm/x86gas.pl | 16 ++++++++++++++++ + crypto/x86cpuid.pl | 10 +++++----- + 4 files changed, 55 insertions(+), 12 deletions(-) + +diff --git a/crypto/des/asm/desboth.pl b/crypto/des/asm/desboth.pl +index eec00886e4c6..ab6f52452bf3 100644 +--- a/crypto/des/asm/desboth.pl ++++ b/crypto/des/asm/desboth.pl +@@ -16,6 +16,11 @@ sub DES_encrypt3 + + &push("edi"); + ++ &call (&label("pic_point0")); ++ &set_label("pic_point0"); ++ &blindpop("ebp"); ++ &add ("ebp", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point0") . "]"); ++ + &comment(""); + &comment("Load the data words"); + &mov($L,&DWP(0,"ebx","",0)); +@@ -47,15 +52,21 @@ sub DES_encrypt3 + &mov(&swtmp(2), (DWC(($enc)?"1":"0"))); + &mov(&swtmp(1), "eax"); + &mov(&swtmp(0), "ebx"); +- &call("DES_encrypt2"); ++ &exch("ebx", "ebp"); ++ &call("DES_encrypt2\@PLT"); ++ &exch("ebx", "ebp"); + &mov(&swtmp(2), (DWC(($enc)?"0":"1"))); + &mov(&swtmp(1), "edi"); + &mov(&swtmp(0), "ebx"); +- &call("DES_encrypt2"); ++ &exch("ebx", "ebp"); ++ &call("DES_encrypt2\@PLT"); ++ &exch("ebx", "ebp"); + &mov(&swtmp(2), (DWC(($enc)?"1":"0"))); + &mov(&swtmp(1), "esi"); + &mov(&swtmp(0), "ebx"); +- &call("DES_encrypt2"); ++ &exch("ebx", "ebp"); ++ &call("DES_encrypt2\@PLT"); ++ &exch("ebx", "ebp"); + + &stack_pop(3); + &mov($L,&DWP(0,"ebx","",0)); +diff --git a/crypto/perlasm/cbc.pl b/crypto/perlasm/cbc.pl +index 24561e759aba..269fb0b0c69f 100644 +--- a/crypto/perlasm/cbc.pl ++++ b/crypto/perlasm/cbc.pl +@@ -122,7 +122,11 @@ sub cbc + &mov(&DWP($data_off,"esp","",0), "eax"); # put in array for call + &mov(&DWP($data_off+4,"esp","",0), "ebx"); # + +- &call($enc_func); ++ &call (&label("pic_point0")); ++ &set_label("pic_point0"); ++ &blindpop("ebx"); ++ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point0") . "]"); ++ &call("$enc_func\@PLT"); + + &mov("eax", &DWP($data_off,"esp","",0)); + &mov("ebx", &DWP($data_off+4,"esp","",0)); +@@ -185,7 +189,11 @@ sub cbc + &mov(&DWP($data_off,"esp","",0), "eax"); # put in array for call + &mov(&DWP($data_off+4,"esp","",0), "ebx"); # + +- &call($enc_func); ++ &call (&label("pic_point1")); ++ &set_label("pic_point1"); ++ &blindpop("ebx"); ++ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point1") . "]"); ++ &call("$enc_func\@PLT"); + + &mov("eax", &DWP($data_off,"esp","",0)); + &mov("ebx", &DWP($data_off+4,"esp","",0)); +@@ -218,7 +226,11 @@ sub cbc + &mov(&DWP($data_off,"esp","",0), "eax"); # put back + &mov(&DWP($data_off+4,"esp","",0), "ebx"); # + +- &call($dec_func); ++ &call (&label("pic_point2")); ++ &set_label("pic_point2"); ++ &blindpop("ebx"); ++ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point2") . "]"); ++ &call("$dec_func\@PLT"); + + &mov("eax", &DWP($data_off,"esp","",0)); # get return + &mov("ebx", &DWP($data_off+4,"esp","",0)); # +@@ -261,7 +273,11 @@ sub cbc + &mov(&DWP($data_off,"esp","",0), "eax"); # put back + &mov(&DWP($data_off+4,"esp","",0), "ebx"); # + +- &call($dec_func); ++ &call (&label("pic_point3")); ++ &set_label("pic_point3"); ++ &blindpop("ebx"); ++ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point3") . "]"); ++ &call("$dec_func\@PLT"); + + &mov("eax", &DWP($data_off,"esp","",0)); # get return + &mov("ebx", &DWP($data_off+4,"esp","",0)); # +diff --git a/crypto/perlasm/x86gas.pl b/crypto/perlasm/x86gas.pl +index 63b2301fd1f0..176b04d24521 100644 +--- a/crypto/perlasm/x86gas.pl ++++ b/crypto/perlasm/x86gas.pl +@@ -163,6 +163,7 @@ sub ::file_end + if ($::macosx) { push (@out,"$tmp,2\n"); } + elsif ($::elf) { push (@out,"$tmp,4\n"); } + else { push (@out,"$tmp\n"); } ++ if ($::elf) { push (@out,".hidden\tOPENSSL_ia32cap_P\n"); } + } + push(@out,$initseg) if ($initseg); + } +@@ -221,8 +222,23 @@ ___ + elsif ($::elf) + { $initseg.=<<___; + .section .init ++___ ++ if ($::pic) ++ { $initseg.=<<___; ++ pushl %ebx ++ call .pic_point0 ++.pic_point0: ++ popl %ebx ++ addl \$_GLOBAL_OFFSET_TABLE_+[.-.pic_point0],%ebx ++ call $f\@PLT ++ popl %ebx ++___ ++ } ++ else ++ { $initseg.=<<___; + call $f + ___ ++ } + } + elsif ($::coff) + { $initseg.=<<___; # applies to both Cygwin and Mingw +diff --git a/crypto/x86cpuid.pl b/crypto/x86cpuid.pl +index 90ed196c09cd..b49d1be8c38c 100644 +--- a/crypto/x86cpuid.pl ++++ b/crypto/x86cpuid.pl +@@ -8,6 +8,8 @@ require "x86asm.pl"; + + for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); } + ++push(@out, ".hidden OPENSSL_ia32cap_P\n"); ++ + &function_begin("OPENSSL_ia32_cpuid"); + &xor ("edx","edx"); + &pushf (); +@@ -153,9 +155,7 @@ for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); } + &set_label("nocpuid"); + &function_end("OPENSSL_ia32_cpuid"); + +-&external_label("OPENSSL_ia32cap_P"); +- +-&function_begin_B("OPENSSL_rdtsc","EXTRN\t_OPENSSL_ia32cap_P:DWORD"); ++&function_begin_B("OPENSSL_rdtsc"); + &xor ("eax","eax"); + &xor ("edx","edx"); + &picmeup("ecx","OPENSSL_ia32cap_P"); +@@ -169,7 +169,7 @@ for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); } + # This works in Ring 0 only [read DJGPP+MS-DOS+privileged DPMI host], + # but it's safe to call it on any [supported] 32-bit platform... + # Just check for [non-]zero return value... +-&function_begin_B("OPENSSL_instrument_halt","EXTRN\t_OPENSSL_ia32cap_P:DWORD"); ++&function_begin_B("OPENSSL_instrument_halt"); + &picmeup("ecx","OPENSSL_ia32cap_P"); + &bt (&DWP(0,"ecx"),4); + &jnc (&label("nohalt")); # no TSC +@@ -236,7 +236,7 @@ for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); } + &ret (); + &function_end_B("OPENSSL_far_spin"); + +-&function_begin_B("OPENSSL_wipe_cpu","EXTRN\t_OPENSSL_ia32cap_P:DWORD"); ++&function_begin_B("OPENSSL_wipe_cpu"); + &xor ("eax","eax"); + &xor ("edx","edx"); + &picmeup("ecx","OPENSSL_ia32cap_P"); diff --git a/debian/patches/series b/debian/patches/series new file mode 100644 index 0000000..3d72617 --- /dev/null +++ b/debian/patches/series @@ -0,0 +1,19 @@ +config-hurd.patch +debian-targets.patch +engines-path.patch +man-dir.patch +man-section.patch +no-rpath.patch +no-symbolic.patch +pic.patch +valgrind.patch +shared-lib-ext.patch +version-script.patch +c_rehash-compat.patch +block_diginotar.patch +block_digicert_malaysia.patch +disable_freelist.patch +soname.patch +disable_sslv3_test.patch +libdoc-manpgs-pod-spell.patch +Mark-3DES-and-RC4-ciphers-as-weak.patch diff --git a/debian/patches/shared-lib-ext.patch b/debian/patches/shared-lib-ext.patch new file mode 100644 index 0000000..9dc16b7 --- /dev/null +++ b/debian/patches/shared-lib-ext.patch @@ -0,0 +1,23 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: shared-lib-ext + +=================================================================== +--- + Configure | 3 ++- + 1 file changed, 2 insertions(+), 1 deletion(-) + +diff --git a/Configure b/Configure +index f41a479e6c13..c68c700b6aed 100755 +--- a/Configure ++++ b/Configure +@@ -1852,7 +1852,8 @@ while () + elsif ($shared_extension ne "" && $shared_extension =~ /^\.s([ol])\.[^\.]*\.[^\.]*$/) + { + my $sotmp = $1; +- s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/; ++# s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp.\$(SHLIB_MAJOR) .s$sotmp/; ++ s/^SHARED_LIBS_LINK_EXTS=.*/SHARED_LIBS_LINK_EXTS=.s$sotmp/; + } + elsif ($shared_extension ne "" && $shared_extension =~ /^\.[^\.]*\.[^\.]*\.dylib$/) + { diff --git a/debian/patches/soname.patch b/debian/patches/soname.patch new file mode 100644 index 0000000..3fc2228 --- /dev/null +++ b/debian/patches/soname.patch @@ -0,0 +1,22 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:47 +0100 +Subject: soname + +=================================================================== +--- + crypto/opensslv.h | 2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +diff --git a/crypto/opensslv.h b/crypto/opensslv.h +index 8b4756989b1e..e863fc184f46 100644 +--- a/crypto/opensslv.h ++++ b/crypto/opensslv.h +@@ -88,7 +88,7 @@ extern "C" { + * should only keep the versions that are binary compatible with the current. + */ + # define SHLIB_VERSION_HISTORY "" +-# define SHLIB_VERSION_NUMBER "1.0.0" ++# define SHLIB_VERSION_NUMBER "1.0.2" + + + #ifdef __cplusplus diff --git a/debian/patches/valgrind.patch b/debian/patches/valgrind.patch new file mode 100644 index 0000000..d38b35c --- /dev/null +++ b/debian/patches/valgrind.patch @@ -0,0 +1,29 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: valgrind + +=================================================================== +--- + crypto/rand/md_rand.c | 2 ++ + 1 file changed, 2 insertions(+) + +diff --git a/crypto/rand/md_rand.c b/crypto/rand/md_rand.c +index 2983a3fda487..a16cc804cc56 100644 +--- a/crypto/rand/md_rand.c ++++ b/crypto/rand/md_rand.c +@@ -488,6 +488,7 @@ int ssleay_rand_bytes(unsigned char *buf, int num, int pseudo, int lock) + goto err; + + #ifndef PURIFY /* purify complains */ ++#if 0 + /* + * The following line uses the supplied buffer as a small source of + * entropy: since this buffer is often uninitialised it may cause +@@ -497,6 +498,7 @@ int ssleay_rand_bytes(unsigned char *buf, int num, int pseudo, int lock) + */ + if (!MD_Update(&m, buf, j)) + goto err; ++#endif + #endif + + k = (st_idx + MD_DIGEST_LENGTH / 2) - st_num; diff --git a/debian/patches/version-script.patch b/debian/patches/version-script.patch new file mode 100644 index 0000000..539b916 --- /dev/null +++ b/debian/patches/version-script.patch @@ -0,0 +1,4674 @@ +From: Debian OpenSSL Team +Date: Thu, 13 Dec 2018 23:27:46 +0100 +Subject: version-script + +=================================================================== +--- + Configure | 2 + + engines/ccgost/openssl.ld | 10 + + engines/openssl.ld | 10 + + openssl.ld | 4608 +++++++++++++++++++++++++++++++++++++++++++++ + 4 files changed, 4630 insertions(+) + create mode 100644 engines/ccgost/openssl.ld + create mode 100644 engines/openssl.ld + create mode 100644 openssl.ld + +diff --git a/Configure b/Configure +index c68c700b6aed..a23856df4124 100755 +--- a/Configure ++++ b/Configure +@@ -1751,6 +1751,8 @@ if ($strict_warnings) + } + } + ++$shared_ldflag .= " -Wl,--version-script=openssl.ld"; ++ + open(IN,'$Makefile.new") || die "unable to create $Makefile.new:$!\n"; +diff --git a/engines/ccgost/openssl.ld b/engines/ccgost/openssl.ld +new file mode 100644 +index 000000000000..42d02953a097 +--- /dev/null ++++ b/engines/ccgost/openssl.ld +@@ -0,0 +1,10 @@ ++OPENSSL_1.0.2 { ++ global: ++ bind_engine; ++ v_check; ++ OPENSSL_init; ++ OPENSSL_finish; ++ local: ++ *; ++}; ++ +diff --git a/engines/openssl.ld b/engines/openssl.ld +new file mode 100644 +index 000000000000..42d02953a097 +--- /dev/null ++++ b/engines/openssl.ld +@@ -0,0 +1,10 @@ ++OPENSSL_1.0.2 { ++ global: ++ bind_engine; ++ v_check; ++ OPENSSL_init; ++ OPENSSL_finish; ++ local: ++ *; ++}; ++ +diff --git a/openssl.ld b/openssl.ld +new file mode 100644 +index 000000000000..ff2f3c9e44c8 +--- /dev/null ++++ b/openssl.ld +@@ -0,0 +1,4608 @@ ++OPENSSL_1.0.2d { ++ global: ++ BIO_f_ssl; ++ BIO_new_buffer_ssl_connect; ++ BIO_new_ssl; ++ BIO_new_ssl_connect; ++ BIO_proxy_ssl_copy_session_id; ++ BIO_ssl_copy_session_id; ++ BIO_ssl_shutdown; ++ d2i_SSL_SESSION; ++ DTLSv1_client_method; ++ DTLSv1_method; ++ DTLSv1_server_method; ++ ERR_load_SSL_strings; ++ i2d_SSL_SESSION; ++ kssl_build_principal_2; ++ kssl_cget_tkt; ++ kssl_check_authent; ++ kssl_ctx_free; ++ kssl_ctx_new; ++ kssl_ctx_setkey; ++ kssl_ctx_setprinc; ++ kssl_ctx_setstring; ++ kssl_ctx_show; ++ kssl_err_set; ++ kssl_krb5_free_data_contents; ++ kssl_sget_tkt; ++ kssl_skip_confound; ++ kssl_validate_times; ++ PEM_read_bio_SSL_SESSION; ++ PEM_read_SSL_SESSION; ++ PEM_write_bio_SSL_SESSION; ++ PEM_write_SSL_SESSION; ++ SSL_accept; ++ SSL_add_client_CA; ++ SSL_add_dir_cert_subjects_to_stack; ++ SSL_add_dir_cert_subjs_to_stk; ++ SSL_add_file_cert_subjects_to_stack; ++ SSL_add_file_cert_subjs_to_stk; ++ SSL_alert_desc_string; ++ SSL_alert_desc_string_long; ++ SSL_alert_type_string; ++ SSL_alert_type_string_long; ++ SSL_callback_ctrl; ++ SSL_check_private_key; ++ SSL_CIPHER_description; ++ SSL_CIPHER_get_bits; ++ SSL_CIPHER_get_name; ++ SSL_CIPHER_get_version; ++ SSL_clear; ++ SSL_COMP_add_compression_method; ++ SSL_COMP_get_compression_methods; ++ SSL_COMP_get_compress_methods; ++ SSL_COMP_get_name; ++ SSL_connect; ++ SSL_copy_session_id; ++ SSL_ctrl; ++ SSL_CTX_add_client_CA; ++ SSL_CTX_add_session; ++ SSL_CTX_callback_ctrl; ++ SSL_CTX_check_private_key; ++ SSL_CTX_ctrl; ++ SSL_CTX_flush_sessions; ++ SSL_CTX_free; ++ SSL_CTX_get_cert_store; ++ SSL_CTX_get_client_CA_list; ++ SSL_CTX_get_client_cert_cb; ++ SSL_CTX_get_ex_data; ++ SSL_CTX_get_ex_new_index; ++ SSL_CTX_get_info_callback; ++ SSL_CTX_get_quiet_shutdown; ++ SSL_CTX_get_timeout; ++ SSL_CTX_get_verify_callback; ++ SSL_CTX_get_verify_depth; ++ SSL_CTX_get_verify_mode; ++ SSL_CTX_load_verify_locations; ++ SSL_CTX_new; ++ SSL_CTX_remove_session; ++ SSL_CTX_sess_get_get_cb; ++ SSL_CTX_sess_get_new_cb; ++ SSL_CTX_sess_get_remove_cb; ++ SSL_CTX_sessions; ++ SSL_CTX_sess_set_get_cb; ++ SSL_CTX_sess_set_new_cb; ++ SSL_CTX_sess_set_remove_cb; ++ SSL_CTX_set1_param; ++ SSL_CTX_set_cert_store; ++ SSL_CTX_set_cert_verify_callback; ++ SSL_CTX_set_cert_verify_cb; ++ SSL_CTX_set_cipher_list; ++ SSL_CTX_set_client_CA_list; ++ SSL_CTX_set_client_cert_cb; ++ SSL_CTX_set_client_cert_engine; ++ SSL_CTX_set_cookie_generate_cb; ++ SSL_CTX_set_cookie_verify_cb; ++ SSL_CTX_set_default_passwd_cb; ++ SSL_CTX_set_default_passwd_cb_userdata; ++ SSL_CTX_set_default_verify_paths; ++ SSL_CTX_set_def_passwd_cb_ud; ++ SSL_CTX_set_def_verify_paths; ++ SSL_CTX_set_ex_data; ++ SSL_CTX_set_generate_session_id; ++ SSL_CTX_set_info_callback; ++ SSL_CTX_set_msg_callback; ++ SSL_CTX_set_psk_client_callback; ++ SSL_CTX_set_psk_server_callback; ++ SSL_CTX_set_purpose; ++ SSL_CTX_set_quiet_shutdown; ++ SSL_CTX_set_session_id_context; ++ SSL_CTX_set_ssl_version; ++ SSL_CTX_set_timeout; ++ SSL_CTX_set_tmp_dh_callback; ++ SSL_CTX_set_tmp_ecdh_callback; ++ SSL_CTX_set_tmp_rsa_callback; ++ SSL_CTX_set_trust; ++ SSL_CTX_set_verify; ++ SSL_CTX_set_verify_depth; ++ SSL_CTX_use_cert_chain_file; ++ SSL_CTX_use_certificate; ++ SSL_CTX_use_certificate_ASN1; ++ SSL_CTX_use_certificate_chain_file; ++ SSL_CTX_use_certificate_file; ++ SSL_CTX_use_PrivateKey; ++ SSL_CTX_use_PrivateKey_ASN1; ++ SSL_CTX_use_PrivateKey_file; ++ SSL_CTX_use_psk_identity_hint; ++ SSL_CTX_use_RSAPrivateKey; ++ SSL_CTX_use_RSAPrivateKey_ASN1; ++ SSL_CTX_use_RSAPrivateKey_file; ++ SSL_do_handshake; ++ SSL_dup; ++ SSL_dup_CA_list; ++ SSLeay_add_ssl_algorithms; ++ SSL_free; ++ SSL_get1_session; ++ SSL_get_certificate; ++ SSL_get_cipher_list; ++ SSL_get_ciphers; ++ SSL_get_client_CA_list; ++ SSL_get_current_cipher; ++ SSL_get_current_compression; ++ SSL_get_current_expansion; ++ SSL_get_default_timeout; ++ SSL_get_error; ++ SSL_get_ex_data; ++ SSL_get_ex_data_X509_STORE_CTX_idx; ++ SSL_get_ex_d_X509_STORE_CTX_idx; ++ SSL_get_ex_new_index; ++ SSL_get_fd; ++ SSL_get_finished; ++ SSL_get_info_callback; ++ SSL_get_peer_cert_chain; ++ SSL_get_peer_certificate; ++ SSL_get_peer_finished; ++ SSL_get_privatekey; ++ SSL_get_psk_identity; ++ SSL_get_psk_identity_hint; ++ SSL_get_quiet_shutdown; ++ SSL_get_rbio; ++ SSL_get_read_ahead; ++ SSL_get_rfd; ++ SSL_get_servername; ++ SSL_get_servername_type; ++ SSL_get_session; ++ SSL_get_shared_ciphers; ++ SSL_get_shutdown; ++ SSL_get_SSL_CTX; ++ SSL_get_ssl_method; ++ SSL_get_verify_callback; ++ SSL_get_verify_depth; ++ SSL_get_verify_mode; ++ SSL_get_verify_result; ++ SSL_get_version; ++ SSL_get_wbio; ++ SSL_get_wfd; ++ SSL_has_matching_session_id; ++ SSL_library_init; ++ SSL_load_client_CA_file; ++ SSL_load_error_strings; ++ SSL_new; ++ SSL_peek; ++ SSL_pending; ++ SSL_read; ++ SSL_renegotiate; ++ SSL_renegotiate_pending; ++ SSL_rstate_string; ++ SSL_rstate_string_long; ++ SSL_SESSION_cmp; ++ SSL_SESSION_free; ++ SSL_SESSION_get_ex_data; ++ SSL_SESSION_get_ex_new_index; ++ SSL_SESSION_get_id; ++ SSL_SESSION_get_time; ++ SSL_SESSION_get_timeout; ++ SSL_SESSION_hash; ++ SSL_SESSION_new; ++ SSL_SESSION_print; ++ SSL_SESSION_print_fp; ++ SSL_SESSION_set_ex_data; ++ SSL_SESSION_set_time; ++ SSL_SESSION_set_timeout; ++ SSL_set1_param; ++ SSL_set_accept_state; ++ SSL_set_bio; ++ SSL_set_cipher_list; ++ SSL_set_client_CA_list; ++ SSL_set_connect_state; ++ SSL_set_ex_data; ++ SSL_set_fd; ++ SSL_set_generate_session_id; ++ SSL_set_info_callback; ++ SSL_set_msg_callback; ++ SSL_set_psk_client_callback; ++ SSL_set_psk_server_callback; ++ SSL_set_purpose; ++ SSL_set_quiet_shutdown; ++ SSL_set_read_ahead; ++ SSL_set_rfd; ++ SSL_set_session; ++ SSL_set_session_id_context; ++ SSL_set_session_secret_cb; ++ SSL_set_session_ticket_ext; ++ SSL_set_session_ticket_ext_cb; ++ SSL_set_shutdown; ++ SSL_set_SSL_CTX; ++ SSL_set_ssl_method; ++ SSL_set_tmp_dh_callback; ++ SSL_set_tmp_ecdh_callback; ++ SSL_set_tmp_rsa_callback; ++ SSL_set_trust; ++ SSL_set_verify; ++ SSL_set_verify_depth; ++ SSL_set_verify_result; ++ SSL_set_wfd; ++ SSL_shutdown; ++ SSL_state; ++ SSL_state_string; ++ SSL_state_string_long; ++ SSL_use_certificate; ++ SSL_use_certificate_ASN1; ++ SSL_use_certificate_file; ++ SSL_use_PrivateKey; ++ SSL_use_PrivateKey_ASN1; ++ SSL_use_PrivateKey_file; ++ SSL_use_psk_identity_hint; ++ SSL_use_RSAPrivateKey; ++ SSL_use_RSAPrivateKey_ASN1; ++ SSL_use_RSAPrivateKey_file; ++ SSLv23_client_method; ++ SSLv23_method; ++ SSLv23_server_method; ++ SSLv2_client_method; ++ SSLv2_method; ++ SSLv2_server_method; ++ SSLv3_client_method; ++ SSLv3_method; ++ SSLv3_server_method; ++ SSL_version; ++ SSL_want; ++ SSL_write; ++ TLSv1_client_method; ++ TLSv1_method; ++ TLSv1_server_method; ++ ++ ++ SSLeay; ++ SSLeay_version; ++ ASN1_BIT_STRING_asn1_meth; ++ ASN1_HEADER_free; ++ ASN1_HEADER_new; ++ ASN1_IA5STRING_asn1_meth; ++ ASN1_INTEGER_get; ++ ASN1_INTEGER_set; ++ ASN1_INTEGER_to_BN; ++ ASN1_OBJECT_create; ++ ASN1_OBJECT_free; ++ ASN1_OBJECT_new; ++ ASN1_PRINTABLE_type; ++ ASN1_STRING_cmp; ++ ASN1_STRING_dup; ++ ASN1_STRING_free; ++ ASN1_STRING_new; ++ ASN1_STRING_print; ++ ASN1_STRING_set; ++ ASN1_STRING_type_new; ++ ASN1_TYPE_free; ++ ASN1_TYPE_new; ++ ASN1_UNIVERSALSTRING_to_string; ++ ASN1_UTCTIME_check; ++ ASN1_UTCTIME_print; ++ ASN1_UTCTIME_set; ++ ASN1_check_infinite_end; ++ ASN1_d2i_bio; ++ ASN1_d2i_fp; ++ ASN1_digest; ++ ASN1_dup; ++ ASN1_get_object; ++ ASN1_i2d_bio; ++ ASN1_i2d_fp; ++ ASN1_object_size; ++ ASN1_parse; ++ ASN1_put_object; ++ ASN1_sign; ++ ASN1_verify; ++ BF_cbc_encrypt; ++ BF_cfb64_encrypt; ++ BF_ecb_encrypt; ++ BF_encrypt; ++ BF_ofb64_encrypt; ++ BF_options; ++ BF_set_key; ++ BIO_CONNECT_free; ++ BIO_CONNECT_new; ++ BIO_accept; ++ BIO_ctrl; ++ BIO_int_ctrl; ++ BIO_debug_callback; ++ BIO_dump; ++ BIO_dup_chain; ++ BIO_f_base64; ++ BIO_f_buffer; ++ BIO_f_cipher; ++ BIO_f_md; ++ BIO_f_null; ++ BIO_f_proxy_server; ++ BIO_fd_non_fatal_error; ++ BIO_fd_should_retry; ++ BIO_find_type; ++ BIO_free; ++ BIO_free_all; ++ BIO_get_accept_socket; ++ BIO_get_filter_bio; ++ BIO_get_host_ip; ++ BIO_get_port; ++ BIO_get_retry_BIO; ++ BIO_get_retry_reason; ++ BIO_gethostbyname; ++ BIO_gets; ++ BIO_new; ++ BIO_new_accept; ++ BIO_new_connect; ++ BIO_new_fd; ++ BIO_new_file; ++ BIO_new_fp; ++ BIO_new_socket; ++ BIO_pop; ++ BIO_printf; ++ BIO_push; ++ BIO_puts; ++ BIO_read; ++ BIO_s_accept; ++ BIO_s_connect; ++ BIO_s_fd; ++ BIO_s_file; ++ BIO_s_mem; ++ BIO_s_null; ++ BIO_s_proxy_client; ++ BIO_s_socket; ++ BIO_set; ++ BIO_set_cipher; ++ BIO_set_tcp_ndelay; ++ BIO_sock_cleanup; ++ BIO_sock_error; ++ BIO_sock_init; ++ BIO_sock_non_fatal_error; ++ BIO_sock_should_retry; ++ BIO_socket_ioctl; ++ BIO_write; ++ BN_CTX_free; ++ BN_CTX_new; ++ BN_MONT_CTX_free; ++ BN_MONT_CTX_new; ++ BN_MONT_CTX_set; ++ BN_add; ++ BN_add_word; ++ BN_hex2bn; ++ BN_bin2bn; ++ BN_bn2hex; ++ BN_bn2bin; ++ BN_clear; ++ BN_clear_bit; ++ BN_clear_free; ++ BN_cmp; ++ BN_copy; ++ BN_div; ++ BN_div_word; ++ BN_dup; ++ BN_free; ++ BN_from_montgomery; ++ BN_gcd; ++ BN_generate_prime; ++ BN_get_word; ++ BN_is_bit_set; ++ BN_is_prime; ++ BN_lshift; ++ BN_lshift1; ++ BN_mask_bits; ++ BN_mod; ++ BN_mod_exp; ++ BN_mod_exp_mont; ++ BN_mod_exp_simple; ++ BN_mod_inverse; ++ BN_mod_mul; ++ BN_mod_mul_montgomery; ++ BN_mod_word; ++ BN_mul; ++ BN_new; ++ BN_num_bits; ++ BN_num_bits_word; ++ BN_options; ++ BN_print; ++ BN_print_fp; ++ BN_rand; ++ BN_reciprocal; ++ BN_rshift; ++ BN_rshift1; ++ BN_set_bit; ++ BN_set_word; ++ BN_sqr; ++ BN_sub; ++ BN_to_ASN1_INTEGER; ++ BN_ucmp; ++ BN_value_one; ++ BUF_MEM_free; ++ BUF_MEM_grow; ++ BUF_MEM_new; ++ BUF_strdup; ++ CONF_free; ++ CONF_get_number; ++ CONF_get_section; ++ CONF_get_string; ++ CONF_load; ++ CRYPTO_add_lock; ++ CRYPTO_dbg_free; ++ CRYPTO_dbg_malloc; ++ CRYPTO_dbg_realloc; ++ CRYPTO_dbg_remalloc; ++ CRYPTO_free; ++ CRYPTO_get_add_lock_callback; ++ CRYPTO_get_id_callback; ++ CRYPTO_get_lock_name; ++ CRYPTO_get_locking_callback; ++ CRYPTO_get_mem_functions; ++ CRYPTO_lock; ++ CRYPTO_malloc; ++ CRYPTO_mem_ctrl; ++ CRYPTO_mem_leaks; ++ CRYPTO_mem_leaks_cb; ++ CRYPTO_mem_leaks_fp; ++ CRYPTO_realloc; ++ CRYPTO_remalloc; ++ CRYPTO_set_add_lock_callback; ++ CRYPTO_set_id_callback; ++ CRYPTO_set_locking_callback; ++ CRYPTO_set_mem_functions; ++ CRYPTO_thread_id; ++ DH_check; ++ DH_compute_key; ++ DH_free; ++ DH_generate_key; ++ DH_generate_parameters; ++ DH_new; ++ DH_size; ++ DHparams_print; ++ DHparams_print_fp; ++ DSA_free; ++ DSA_generate_key; ++ DSA_generate_parameters; ++ DSA_is_prime; ++ DSA_new; ++ DSA_print; ++ DSA_print_fp; ++ DSA_sign; ++ DSA_sign_setup; ++ DSA_size; ++ DSA_verify; ++ DSAparams_print; ++ DSAparams_print_fp; ++ ERR_clear_error; ++ ERR_error_string; ++ ERR_free_strings; ++ ERR_func_error_string; ++ ERR_get_err_state_table; ++ ERR_get_error; ++ ERR_get_error_line; ++ ERR_get_state; ++ ERR_get_string_table; ++ ERR_lib_error_string; ++ ERR_load_ASN1_strings; ++ ERR_load_BIO_strings; ++ ERR_load_BN_strings; ++ ERR_load_BUF_strings; ++ ERR_load_CONF_strings; ++ ERR_load_DH_strings; ++ ERR_load_DSA_strings; ++ ERR_load_ERR_strings; ++ ERR_load_EVP_strings; ++ ERR_load_OBJ_strings; ++ ERR_load_PEM_strings; ++ ERR_load_PROXY_strings; ++ ERR_load_RSA_strings; ++ ERR_load_X509_strings; ++ ERR_load_crypto_strings; ++ ERR_load_strings; ++ ERR_peek_error; ++ ERR_peek_error_line; ++ ERR_print_errors; ++ ERR_print_errors_fp; ++ ERR_put_error; ++ ERR_reason_error_string; ++ ERR_remove_state; ++ EVP_BytesToKey; ++ EVP_CIPHER_CTX_cleanup; ++ EVP_CipherFinal; ++ EVP_CipherInit; ++ EVP_CipherUpdate; ++ EVP_DecodeBlock; ++ EVP_DecodeFinal; ++ EVP_DecodeInit; ++ EVP_DecodeUpdate; ++ EVP_DecryptFinal; ++ EVP_DecryptInit; ++ EVP_DecryptUpdate; ++ EVP_DigestFinal; ++ EVP_DigestInit; ++ EVP_DigestUpdate; ++ EVP_EncodeBlock; ++ EVP_EncodeFinal; ++ EVP_EncodeInit; ++ EVP_EncodeUpdate; ++ EVP_EncryptFinal; ++ EVP_EncryptInit; ++ EVP_EncryptUpdate; ++ EVP_OpenFinal; ++ EVP_OpenInit; ++ EVP_PKEY_assign; ++ EVP_PKEY_copy_parameters; ++ EVP_PKEY_free; ++ EVP_PKEY_missing_parameters; ++ EVP_PKEY_new; ++ EVP_PKEY_save_parameters; ++ EVP_PKEY_size; ++ EVP_PKEY_type; ++ EVP_SealFinal; ++ EVP_SealInit; ++ EVP_SignFinal; ++ EVP_VerifyFinal; ++ EVP_add_alias; ++ EVP_add_cipher; ++ EVP_add_digest; ++ EVP_bf_cbc; ++ EVP_bf_cfb64; ++ EVP_bf_ecb; ++ EVP_bf_ofb; ++ EVP_cleanup; ++ EVP_des_cbc; ++ EVP_des_cfb64; ++ EVP_des_ecb; ++ EVP_des_ede; ++ EVP_des_ede3; ++ EVP_des_ede3_cbc; ++ EVP_des_ede3_cfb64; ++ EVP_des_ede3_ofb; ++ EVP_des_ede_cbc; ++ EVP_des_ede_cfb64; ++ EVP_des_ede_ofb; ++ EVP_des_ofb; ++ EVP_desx_cbc; ++ EVP_dss; ++ EVP_dss1; ++ EVP_enc_null; ++ EVP_get_cipherbyname; ++ EVP_get_digestbyname; ++ EVP_get_pw_prompt; ++ EVP_idea_cbc; ++ EVP_idea_cfb64; ++ EVP_idea_ecb; ++ EVP_idea_ofb; ++ EVP_md2; ++ EVP_md5; ++ EVP_md_null; ++ EVP_rc2_cbc; ++ EVP_rc2_cfb64; ++ EVP_rc2_ecb; ++ EVP_rc2_ofb; ++ EVP_rc4; ++ EVP_read_pw_string; ++ EVP_set_pw_prompt; ++ EVP_sha; ++ EVP_sha1; ++ MD2; ++ MD2_Final; ++ MD2_Init; ++ MD2_Update; ++ MD2_options; ++ MD5; ++ MD5_Final; ++ MD5_Init; ++ MD5_Update; ++ MDC2; ++ MDC2_Final; ++ MDC2_Init; ++ MDC2_Update; ++ NETSCAPE_SPKAC_free; ++ NETSCAPE_SPKAC_new; ++ NETSCAPE_SPKI_free; ++ NETSCAPE_SPKI_new; ++ NETSCAPE_SPKI_sign; ++ NETSCAPE_SPKI_verify; ++ OBJ_add_object; ++ OBJ_bsearch; ++ OBJ_cleanup; ++ OBJ_cmp; ++ OBJ_create; ++ OBJ_dup; ++ OBJ_ln2nid; ++ OBJ_new_nid; ++ OBJ_nid2ln; ++ OBJ_nid2obj; ++ OBJ_nid2sn; ++ OBJ_obj2nid; ++ OBJ_sn2nid; ++ OBJ_txt2nid; ++ PEM_ASN1_read; ++ PEM_ASN1_read_bio; ++ PEM_ASN1_write; ++ PEM_ASN1_write_bio; ++ PEM_SealFinal; ++ PEM_SealInit; ++ PEM_SealUpdate; ++ PEM_SignFinal; ++ PEM_SignInit; ++ PEM_SignUpdate; ++ PEM_X509_INFO_read; ++ PEM_X509_INFO_read_bio; ++ PEM_X509_INFO_write_bio; ++ PEM_dek_info; ++ PEM_do_header; ++ PEM_get_EVP_CIPHER_INFO; ++ PEM_proc_type; ++ PEM_read; ++ PEM_read_DHparams; ++ PEM_read_DSAPrivateKey; ++ PEM_read_DSAparams; ++ PEM_read_PKCS7; ++ PEM_read_PrivateKey; ++ PEM_read_RSAPrivateKey; ++ PEM_read_X509; ++ PEM_read_X509_CRL; ++ PEM_read_X509_REQ; ++ PEM_read_bio; ++ PEM_read_bio_DHparams; ++ PEM_read_bio_DSAPrivateKey; ++ PEM_read_bio_DSAparams; ++ PEM_read_bio_PKCS7; ++ PEM_read_bio_PrivateKey; ++ PEM_read_bio_RSAPrivateKey; ++ PEM_read_bio_X509; ++ PEM_read_bio_X509_CRL; ++ PEM_read_bio_X509_REQ; ++ PEM_write; ++ PEM_write_DHparams; ++ PEM_write_DSAPrivateKey; ++ PEM_write_DSAparams; ++ PEM_write_PKCS7; ++ PEM_write_PrivateKey; ++ PEM_write_RSAPrivateKey; ++ PEM_write_X509; ++ PEM_write_X509_CRL; ++ PEM_write_X509_REQ; ++ PEM_write_bio; ++ PEM_write_bio_DHparams; ++ PEM_write_bio_DSAPrivateKey; ++ PEM_write_bio_DSAparams; ++ PEM_write_bio_PKCS7; ++ PEM_write_bio_PrivateKey; ++ PEM_write_bio_RSAPrivateKey; ++ PEM_write_bio_X509; ++ PEM_write_bio_X509_CRL; ++ PEM_write_bio_X509_REQ; ++ PKCS7_DIGEST_free; ++ PKCS7_DIGEST_new; ++ PKCS7_ENCRYPT_free; ++ PKCS7_ENCRYPT_new; ++ PKCS7_ENC_CONTENT_free; ++ PKCS7_ENC_CONTENT_new; ++ PKCS7_ENVELOPE_free; ++ PKCS7_ENVELOPE_new; ++ PKCS7_ISSUER_AND_SERIAL_digest; ++ PKCS7_ISSUER_AND_SERIAL_free; ++ PKCS7_ISSUER_AND_SERIAL_new; ++ PKCS7_RECIP_INFO_free; ++ PKCS7_RECIP_INFO_new; ++ PKCS7_SIGNED_free; ++ PKCS7_SIGNED_new; ++ PKCS7_SIGNER_INFO_free; ++ PKCS7_SIGNER_INFO_new; ++ PKCS7_SIGN_ENVELOPE_free; ++ PKCS7_SIGN_ENVELOPE_new; ++ PKCS7_dup; ++ PKCS7_free; ++ PKCS7_new; ++ PROXY_ENTRY_add_noproxy; ++ PROXY_ENTRY_clear_noproxy; ++ PROXY_ENTRY_free; ++ PROXY_ENTRY_get_noproxy; ++ PROXY_ENTRY_new; ++ PROXY_ENTRY_set_server; ++ PROXY_add_noproxy; ++ PROXY_add_server; ++ PROXY_check_by_host; ++ PROXY_check_url; ++ PROXY_clear_noproxy; ++ PROXY_free; ++ PROXY_get_noproxy; ++ PROXY_get_proxies; ++ PROXY_get_proxy_entry; ++ PROXY_load_conf; ++ PROXY_new; ++ PROXY_print; ++ RAND_bytes; ++ RAND_cleanup; ++ RAND_file_name; ++ RAND_load_file; ++ RAND_screen; ++ RAND_seed; ++ RAND_write_file; ++ RC2_cbc_encrypt; ++ RC2_cfb64_encrypt; ++ RC2_ecb_encrypt; ++ RC2_encrypt; ++ RC2_ofb64_encrypt; ++ RC2_set_key; ++ RC4; ++ RC4_options; ++ RC4_set_key; ++ RSAPrivateKey_asn1_meth; ++ RSAPrivateKey_dup; ++ RSAPublicKey_dup; ++ RSA_PKCS1_SSLeay; ++ RSA_free; ++ RSA_generate_key; ++ RSA_new; ++ RSA_new_method; ++ RSA_print; ++ RSA_print_fp; ++ RSA_private_decrypt; ++ RSA_private_encrypt; ++ RSA_public_decrypt; ++ RSA_public_encrypt; ++ RSA_set_default_method; ++ RSA_sign; ++ RSA_sign_ASN1_OCTET_STRING; ++ RSA_size; ++ RSA_verify; ++ RSA_verify_ASN1_OCTET_STRING; ++ SHA; ++ SHA1; ++ SHA1_Final; ++ SHA1_Init; ++ SHA1_Update; ++ SHA_Final; ++ SHA_Init; ++ SHA_Update; ++ OpenSSL_add_all_algorithms; ++ OpenSSL_add_all_ciphers; ++ OpenSSL_add_all_digests; ++ TXT_DB_create_index; ++ TXT_DB_free; ++ TXT_DB_get_by_index; ++ TXT_DB_insert; ++ TXT_DB_read; ++ TXT_DB_write; ++ X509_ALGOR_free; ++ X509_ALGOR_new; ++ X509_ATTRIBUTE_free; ++ X509_ATTRIBUTE_new; ++ X509_CINF_free; ++ X509_CINF_new; ++ X509_CRL_INFO_free; ++ X509_CRL_INFO_new; ++ X509_CRL_add_ext; ++ X509_CRL_cmp; ++ X509_CRL_delete_ext; ++ X509_CRL_dup; ++ X509_CRL_free; ++ X509_CRL_get_ext; ++ X509_CRL_get_ext_by_NID; ++ X509_CRL_get_ext_by_OBJ; ++ X509_CRL_get_ext_by_critical; ++ X509_CRL_get_ext_count; ++ X509_CRL_new; ++ X509_CRL_sign; ++ X509_CRL_verify; ++ X509_EXTENSION_create_by_NID; ++ X509_EXTENSION_create_by_OBJ; ++ X509_EXTENSION_dup; ++ X509_EXTENSION_free; ++ X509_EXTENSION_get_critical; ++ X509_EXTENSION_get_data; ++ X509_EXTENSION_get_object; ++ X509_EXTENSION_new; ++ X509_EXTENSION_set_critical; ++ X509_EXTENSION_set_data; ++ X509_EXTENSION_set_object; ++ X509_INFO_free; ++ X509_INFO_new; ++ X509_LOOKUP_by_alias; ++ X509_LOOKUP_by_fingerprint; ++ X509_LOOKUP_by_issuer_serial; ++ X509_LOOKUP_by_subject; ++ X509_LOOKUP_ctrl; ++ X509_LOOKUP_file; ++ X509_LOOKUP_free; ++ X509_LOOKUP_hash_dir; ++ X509_LOOKUP_init; ++ X509_LOOKUP_new; ++ X509_LOOKUP_shutdown; ++ X509_NAME_ENTRY_create_by_NID; ++ X509_NAME_ENTRY_create_by_OBJ; ++ X509_NAME_ENTRY_dup; ++ X509_NAME_ENTRY_free; ++ X509_NAME_ENTRY_get_data; ++ X509_NAME_ENTRY_get_object; ++ X509_NAME_ENTRY_new; ++ X509_NAME_ENTRY_set_data; ++ X509_NAME_ENTRY_set_object; ++ X509_NAME_add_entry; ++ X509_NAME_cmp; ++ X509_NAME_delete_entry; ++ X509_NAME_digest; ++ X509_NAME_dup; ++ X509_NAME_entry_count; ++ X509_NAME_free; ++ X509_NAME_get_entry; ++ X509_NAME_get_index_by_NID; ++ X509_NAME_get_index_by_OBJ; ++ X509_NAME_get_text_by_NID; ++ X509_NAME_get_text_by_OBJ; ++ X509_NAME_hash; ++ X509_NAME_new; ++ X509_NAME_oneline; ++ X509_NAME_print; ++ X509_NAME_set; ++ X509_OBJECT_free_contents; ++ X509_OBJECT_retrieve_by_subject; ++ X509_OBJECT_up_ref_count; ++ X509_PKEY_free; ++ X509_PKEY_new; ++ X509_PUBKEY_free; ++ X509_PUBKEY_get; ++ X509_PUBKEY_new; ++ X509_PUBKEY_set; ++ X509_REQ_INFO_free; ++ X509_REQ_INFO_new; ++ X509_REQ_dup; ++ X509_REQ_free; ++ X509_REQ_get_pubkey; ++ X509_REQ_new; ++ X509_REQ_print; ++ X509_REQ_print_fp; ++ X509_REQ_set_pubkey; ++ X509_REQ_set_subject_name; ++ X509_REQ_set_version; ++ X509_REQ_sign; ++ X509_REQ_to_X509; ++ X509_REQ_verify; ++ X509_REVOKED_add_ext; ++ X509_REVOKED_delete_ext; ++ X509_REVOKED_free; ++ X509_REVOKED_get_ext; ++ X509_REVOKED_get_ext_by_NID; ++ X509_REVOKED_get_ext_by_OBJ; ++ X509_REVOKED_get_ext_by_critical; ++ X509_REVOKED_get_ext_by_critic; ++ X509_REVOKED_get_ext_count; ++ X509_REVOKED_new; ++ X509_SIG_free; ++ X509_SIG_new; ++ X509_STORE_CTX_cleanup; ++ X509_STORE_CTX_init; ++ X509_STORE_add_cert; ++ X509_STORE_add_lookup; ++ X509_STORE_free; ++ X509_STORE_get_by_subject; ++ X509_STORE_load_locations; ++ X509_STORE_new; ++ X509_STORE_set_default_paths; ++ X509_VAL_free; ++ X509_VAL_new; ++ X509_add_ext; ++ X509_asn1_meth; ++ X509_certificate_type; ++ X509_check_private_key; ++ X509_cmp_current_time; ++ X509_delete_ext; ++ X509_digest; ++ X509_dup; ++ X509_free; ++ X509_get_default_cert_area; ++ X509_get_default_cert_dir; ++ X509_get_default_cert_dir_env; ++ X509_get_default_cert_file; ++ X509_get_default_cert_file_env; ++ X509_get_default_private_dir; ++ X509_get_ext; ++ X509_get_ext_by_NID; ++ X509_get_ext_by_OBJ; ++ X509_get_ext_by_critical; ++ X509_get_ext_count; ++ X509_get_issuer_name; ++ X509_get_pubkey; ++ X509_get_pubkey_parameters; ++ X509_get_serialNumber; ++ X509_get_subject_name; ++ X509_gmtime_adj; ++ X509_issuer_and_serial_cmp; ++ X509_issuer_and_serial_hash; ++ X509_issuer_name_cmp; ++ X509_issuer_name_hash; ++ X509_load_cert_file; ++ X509_new; ++ X509_print; ++ X509_print_fp; ++ X509_set_issuer_name; ++ X509_set_notAfter; ++ X509_set_notBefore; ++ X509_set_pubkey; ++ X509_set_serialNumber; ++ X509_set_subject_name; ++ X509_set_version; ++ X509_sign; ++ X509_subject_name_cmp; ++ X509_subject_name_hash; ++ X509_to_X509_REQ; ++ X509_verify; ++ X509_verify_cert; ++ X509_verify_cert_error_string; ++ X509v3_add_ext; ++ X509v3_add_extension; ++ X509v3_add_netscape_extensions; ++ X509v3_add_standard_extensions; ++ X509v3_cleanup_extensions; ++ X509v3_data_type_by_NID; ++ X509v3_data_type_by_OBJ; ++ X509v3_delete_ext; ++ X509v3_get_ext; ++ X509v3_get_ext_by_NID; ++ X509v3_get_ext_by_OBJ; ++ X509v3_get_ext_by_critical; ++ X509v3_get_ext_count; ++ X509v3_pack_string; ++ X509v3_pack_type_by_NID; ++ X509v3_pack_type_by_OBJ; ++ X509v3_unpack_string; ++ _des_crypt; ++ a2d_ASN1_OBJECT; ++ a2i_ASN1_INTEGER; ++ a2i_ASN1_STRING; ++ asn1_Finish; ++ asn1_GetSequence; ++ bn_div_words; ++ bn_expand2; ++ bn_mul_add_words; ++ bn_mul_words; ++ BN_uadd; ++ BN_usub; ++ bn_sqr_words; ++ _ossl_old_crypt; ++ d2i_ASN1_BIT_STRING; ++ d2i_ASN1_BOOLEAN; ++ d2i_ASN1_HEADER; ++ d2i_ASN1_IA5STRING; ++ d2i_ASN1_INTEGER; ++ d2i_ASN1_OBJECT; ++ d2i_ASN1_OCTET_STRING; ++ d2i_ASN1_PRINTABLE; ++ d2i_ASN1_PRINTABLESTRING; ++ d2i_ASN1_SET; ++ d2i_ASN1_T61STRING; ++ d2i_ASN1_TYPE; ++ d2i_ASN1_UTCTIME; ++ d2i_ASN1_bytes; ++ d2i_ASN1_type_bytes; ++ d2i_DHparams; ++ d2i_DSAPrivateKey; ++ d2i_DSAPrivateKey_bio; ++ d2i_DSAPrivateKey_fp; ++ d2i_DSAPublicKey; ++ d2i_DSAparams; ++ d2i_NETSCAPE_SPKAC; ++ d2i_NETSCAPE_SPKI; ++ d2i_Netscape_RSA; ++ d2i_PKCS7; ++ d2i_PKCS7_DIGEST; ++ d2i_PKCS7_ENCRYPT; ++ d2i_PKCS7_ENC_CONTENT; ++ d2i_PKCS7_ENVELOPE; ++ d2i_PKCS7_ISSUER_AND_SERIAL; ++ d2i_PKCS7_RECIP_INFO; ++ d2i_PKCS7_SIGNED; ++ d2i_PKCS7_SIGNER_INFO; ++ d2i_PKCS7_SIGN_ENVELOPE; ++ d2i_PKCS7_bio; ++ d2i_PKCS7_fp; ++ d2i_PrivateKey; ++ d2i_PublicKey; ++ d2i_RSAPrivateKey; ++ d2i_RSAPrivateKey_bio; ++ d2i_RSAPrivateKey_fp; ++ d2i_RSAPublicKey; ++ d2i_X509; ++ d2i_X509_ALGOR; ++ d2i_X509_ATTRIBUTE; ++ d2i_X509_CINF; ++ d2i_X509_CRL; ++ d2i_X509_CRL_INFO; ++ d2i_X509_CRL_bio; ++ d2i_X509_CRL_fp; ++ d2i_X509_EXTENSION; ++ d2i_X509_NAME; ++ d2i_X509_NAME_ENTRY; ++ d2i_X509_PKEY; ++ d2i_X509_PUBKEY; ++ d2i_X509_REQ; ++ d2i_X509_REQ_INFO; ++ d2i_X509_REQ_bio; ++ d2i_X509_REQ_fp; ++ d2i_X509_REVOKED; ++ d2i_X509_SIG; ++ d2i_X509_VAL; ++ d2i_X509_bio; ++ d2i_X509_fp; ++ DES_cbc_cksum; ++ DES_cbc_encrypt; ++ DES_cblock_print_file; ++ DES_cfb64_encrypt; ++ DES_cfb_encrypt; ++ DES_decrypt3; ++ DES_ecb3_encrypt; ++ DES_ecb_encrypt; ++ DES_ede3_cbc_encrypt; ++ DES_ede3_cfb64_encrypt; ++ DES_ede3_ofb64_encrypt; ++ DES_enc_read; ++ DES_enc_write; ++ DES_encrypt1; ++ DES_encrypt2; ++ DES_encrypt3; ++ DES_fcrypt; ++ DES_is_weak_key; ++ DES_key_sched; ++ DES_ncbc_encrypt; ++ DES_ofb64_encrypt; ++ DES_ofb_encrypt; ++ DES_options; ++ DES_pcbc_encrypt; ++ DES_quad_cksum; ++ DES_random_key; ++ _ossl_old_des_random_seed; ++ _ossl_old_des_read_2passwords; ++ _ossl_old_des_read_password; ++ _ossl_old_des_read_pw; ++ _ossl_old_des_read_pw_string; ++ DES_set_key; ++ DES_set_odd_parity; ++ DES_string_to_2keys; ++ DES_string_to_key; ++ DES_xcbc_encrypt; ++ DES_xwhite_in2out; ++ fcrypt_body; ++ i2a_ASN1_INTEGER; ++ i2a_ASN1_OBJECT; ++ i2a_ASN1_STRING; ++ i2d_ASN1_BIT_STRING; ++ i2d_ASN1_BOOLEAN; ++ i2d_ASN1_HEADER; ++ i2d_ASN1_IA5STRING; ++ i2d_ASN1_INTEGER; ++ i2d_ASN1_OBJECT; ++ i2d_ASN1_OCTET_STRING; ++ i2d_ASN1_PRINTABLE; ++ i2d_ASN1_SET; ++ i2d_ASN1_TYPE; ++ i2d_ASN1_UTCTIME; ++ i2d_ASN1_bytes; ++ i2d_DHparams; ++ i2d_DSAPrivateKey; ++ i2d_DSAPrivateKey_bio; ++ i2d_DSAPrivateKey_fp; ++ i2d_DSAPublicKey; ++ i2d_DSAparams; ++ i2d_NETSCAPE_SPKAC; ++ i2d_NETSCAPE_SPKI; ++ i2d_Netscape_RSA; ++ i2d_PKCS7; ++ i2d_PKCS7_DIGEST; ++ i2d_PKCS7_ENCRYPT; ++ i2d_PKCS7_ENC_CONTENT; ++ i2d_PKCS7_ENVELOPE; ++ i2d_PKCS7_ISSUER_AND_SERIAL; ++ i2d_PKCS7_RECIP_INFO; ++ i2d_PKCS7_SIGNED; ++ i2d_PKCS7_SIGNER_INFO; ++ i2d_PKCS7_SIGN_ENVELOPE; ++ i2d_PKCS7_bio; ++ i2d_PKCS7_fp; ++ i2d_PrivateKey; ++ i2d_PublicKey; ++ i2d_RSAPrivateKey; ++ i2d_RSAPrivateKey_bio; ++ i2d_RSAPrivateKey_fp; ++ i2d_RSAPublicKey; ++ i2d_X509; ++ i2d_X509_ALGOR; ++ i2d_X509_ATTRIBUTE; ++ i2d_X509_CINF; ++ i2d_X509_CRL; ++ i2d_X509_CRL_INFO; ++ i2d_X509_CRL_bio; ++ i2d_X509_CRL_fp; ++ i2d_X509_EXTENSION; ++ i2d_X509_NAME; ++ i2d_X509_NAME_ENTRY; ++ i2d_X509_PKEY; ++ i2d_X509_PUBKEY; ++ i2d_X509_REQ; ++ i2d_X509_REQ_INFO; ++ i2d_X509_REQ_bio; ++ i2d_X509_REQ_fp; ++ i2d_X509_REVOKED; ++ i2d_X509_SIG; ++ i2d_X509_VAL; ++ i2d_X509_bio; ++ i2d_X509_fp; ++ idea_cbc_encrypt; ++ idea_cfb64_encrypt; ++ idea_ecb_encrypt; ++ idea_encrypt; ++ idea_ofb64_encrypt; ++ idea_options; ++ idea_set_decrypt_key; ++ idea_set_encrypt_key; ++ lh_delete; ++ lh_doall; ++ lh_doall_arg; ++ lh_free; ++ lh_insert; ++ lh_new; ++ lh_node_stats; ++ lh_node_stats_bio; ++ lh_node_usage_stats; ++ lh_node_usage_stats_bio; ++ lh_retrieve; ++ lh_stats; ++ lh_stats_bio; ++ lh_strhash; ++ sk_delete; ++ sk_delete_ptr; ++ sk_dup; ++ sk_find; ++ sk_free; ++ sk_insert; ++ sk_new; ++ sk_pop; ++ sk_pop_free; ++ sk_push; ++ sk_set_cmp_func; ++ sk_shift; ++ sk_unshift; ++ sk_zero; ++ BIO_f_nbio_test; ++ ASN1_TYPE_get; ++ ASN1_TYPE_set; ++ PKCS7_content_free; ++ ERR_load_PKCS7_strings; ++ X509_find_by_issuer_and_serial; ++ X509_find_by_subject; ++ PKCS7_ctrl; ++ PKCS7_set_type; ++ PKCS7_set_content; ++ PKCS7_SIGNER_INFO_set; ++ PKCS7_add_signer; ++ PKCS7_add_certificate; ++ PKCS7_add_crl; ++ PKCS7_content_new; ++ PKCS7_dataSign; ++ PKCS7_dataVerify; ++ PKCS7_dataInit; ++ PKCS7_add_signature; ++ PKCS7_cert_from_signer_info; ++ PKCS7_get_signer_info; ++ EVP_delete_alias; ++ EVP_mdc2; ++ PEM_read_bio_RSAPublicKey; ++ PEM_write_bio_RSAPublicKey; ++ d2i_RSAPublicKey_bio; ++ i2d_RSAPublicKey_bio; ++ PEM_read_RSAPublicKey; ++ PEM_write_RSAPublicKey; ++ d2i_RSAPublicKey_fp; ++ i2d_RSAPublicKey_fp; ++ BIO_copy_next_retry; ++ RSA_flags; ++ X509_STORE_add_crl; ++ X509_load_crl_file; ++ EVP_rc2_40_cbc; ++ EVP_rc4_40; ++ EVP_CIPHER_CTX_init; ++ HMAC; ++ HMAC_Init; ++ HMAC_Update; ++ HMAC_Final; ++ ERR_get_next_error_library; ++ EVP_PKEY_cmp_parameters; ++ HMAC_cleanup; ++ BIO_ptr_ctrl; ++ BIO_new_file_internal; ++ BIO_new_fp_internal; ++ BIO_s_file_internal; ++ BN_BLINDING_convert; ++ BN_BLINDING_invert; ++ BN_BLINDING_update; ++ RSA_blinding_on; ++ RSA_blinding_off; ++ i2t_ASN1_OBJECT; ++ BN_BLINDING_new; ++ BN_BLINDING_free; ++ EVP_cast5_cbc; ++ EVP_cast5_cfb64; ++ EVP_cast5_ecb; ++ EVP_cast5_ofb; ++ BF_decrypt; ++ CAST_set_key; ++ CAST_encrypt; ++ CAST_decrypt; ++ CAST_ecb_encrypt; ++ CAST_cbc_encrypt; ++ CAST_cfb64_encrypt; ++ CAST_ofb64_encrypt; ++ RC2_decrypt; ++ OBJ_create_objects; ++ BN_exp; ++ BN_mul_word; ++ BN_sub_word; ++ BN_dec2bn; ++ BN_bn2dec; ++ BIO_ghbn_ctrl; ++ CRYPTO_free_ex_data; ++ CRYPTO_get_ex_data; ++ CRYPTO_set_ex_data; ++ ERR_load_CRYPTO_strings; ++ ERR_load_CRYPTOlib_strings; ++ EVP_PKEY_bits; ++ MD5_Transform; ++ SHA1_Transform; ++ SHA_Transform; ++ X509_STORE_CTX_get_chain; ++ X509_STORE_CTX_get_current_cert; ++ X509_STORE_CTX_get_error; ++ X509_STORE_CTX_get_error_depth; ++ X509_STORE_CTX_get_ex_data; ++ X509_STORE_CTX_set_cert; ++ X509_STORE_CTX_set_chain; ++ X509_STORE_CTX_set_error; ++ X509_STORE_CTX_set_ex_data; ++ CRYPTO_dup_ex_data; ++ CRYPTO_get_new_lockid; ++ CRYPTO_new_ex_data; ++ RSA_set_ex_data; ++ RSA_get_ex_data; ++ RSA_get_ex_new_index; ++ RSA_padding_add_PKCS1_type_1; ++ RSA_padding_add_PKCS1_type_2; ++ RSA_padding_add_SSLv23; ++ RSA_padding_add_none; ++ RSA_padding_check_PKCS1_type_1; ++ RSA_padding_check_PKCS1_type_2; ++ RSA_padding_check_SSLv23; ++ RSA_padding_check_none; ++ bn_add_words; ++ d2i_Netscape_RSA_2; ++ CRYPTO_get_ex_new_index; ++ RIPEMD160_Init; ++ RIPEMD160_Update; ++ RIPEMD160_Final; ++ RIPEMD160; ++ RIPEMD160_Transform; ++ RC5_32_set_key; ++ RC5_32_ecb_encrypt; ++ RC5_32_encrypt; ++ RC5_32_decrypt; ++ RC5_32_cbc_encrypt; ++ RC5_32_cfb64_encrypt; ++ RC5_32_ofb64_encrypt; ++ BN_bn2mpi; ++ BN_mpi2bn; ++ ASN1_BIT_STRING_get_bit; ++ ASN1_BIT_STRING_set_bit; ++ BIO_get_ex_data; ++ BIO_get_ex_new_index; ++ BIO_set_ex_data; ++ X509v3_get_key_usage; ++ X509v3_set_key_usage; ++ a2i_X509v3_key_usage; ++ i2a_X509v3_key_usage; ++ EVP_PKEY_decrypt; ++ EVP_PKEY_encrypt; ++ PKCS7_RECIP_INFO_set; ++ PKCS7_add_recipient; ++ PKCS7_add_recipient_info; ++ PKCS7_set_cipher; ++ ASN1_TYPE_get_int_octetstring; ++ ASN1_TYPE_get_octetstring; ++ ASN1_TYPE_set_int_octetstring; ++ ASN1_TYPE_set_octetstring; ++ ASN1_UTCTIME_set_string; ++ ERR_add_error_data; ++ ERR_set_error_data; ++ EVP_CIPHER_asn1_to_param; ++ EVP_CIPHER_param_to_asn1; ++ EVP_CIPHER_get_asn1_iv; ++ EVP_CIPHER_set_asn1_iv; ++ EVP_rc5_32_12_16_cbc; ++ EVP_rc5_32_12_16_cfb64; ++ EVP_rc5_32_12_16_ecb; ++ EVP_rc5_32_12_16_ofb; ++ asn1_add_error; ++ d2i_ASN1_BMPSTRING; ++ i2d_ASN1_BMPSTRING; ++ BIO_f_ber; ++ BN_init; ++ COMP_CTX_new; ++ COMP_CTX_free; ++ COMP_CTX_compress_block; ++ COMP_CTX_expand_block; ++ X509_STORE_CTX_get_ex_new_index; ++ OBJ_NAME_add; ++ BIO_socket_nbio; ++ EVP_rc2_64_cbc; ++ OBJ_NAME_cleanup; ++ OBJ_NAME_get; ++ OBJ_NAME_init; ++ OBJ_NAME_new_index; ++ OBJ_NAME_remove; ++ BN_MONT_CTX_copy; ++ BIO_new_socks4a_connect; ++ BIO_s_socks4a_connect; ++ PROXY_set_connect_mode; ++ RAND_SSLeay; ++ RAND_set_rand_method; ++ RSA_memory_lock; ++ bn_sub_words; ++ bn_mul_normal; ++ bn_mul_comba8; ++ bn_mul_comba4; ++ bn_sqr_normal; ++ bn_sqr_comba8; ++ bn_sqr_comba4; ++ bn_cmp_words; ++ bn_mul_recursive; ++ bn_mul_part_recursive; ++ bn_sqr_recursive; ++ bn_mul_low_normal; ++ BN_RECP_CTX_init; ++ BN_RECP_CTX_new; ++ BN_RECP_CTX_free; ++ BN_RECP_CTX_set; ++ BN_mod_mul_reciprocal; ++ BN_mod_exp_recp; ++ BN_div_recp; ++ BN_CTX_init; ++ BN_MONT_CTX_init; ++ RAND_get_rand_method; ++ PKCS7_add_attribute; ++ PKCS7_add_signed_attribute; ++ PKCS7_digest_from_attributes; ++ PKCS7_get_attribute; ++ PKCS7_get_issuer_and_serial; ++ PKCS7_get_signed_attribute; ++ COMP_compress_block; ++ COMP_expand_block; ++ COMP_rle; ++ COMP_zlib; ++ ms_time_diff; ++ ms_time_new; ++ ms_time_free; ++ ms_time_cmp; ++ ms_time_get; ++ PKCS7_set_attributes; ++ PKCS7_set_signed_attributes; ++ X509_ATTRIBUTE_create; ++ X509_ATTRIBUTE_dup; ++ ASN1_GENERALIZEDTIME_check; ++ ASN1_GENERALIZEDTIME_print; ++ ASN1_GENERALIZEDTIME_set; ++ ASN1_GENERALIZEDTIME_set_string; ++ ASN1_TIME_print; ++ BASIC_CONSTRAINTS_free; ++ BASIC_CONSTRAINTS_new; ++ ERR_load_X509V3_strings; ++ NETSCAPE_CERT_SEQUENCE_free; ++ NETSCAPE_CERT_SEQUENCE_new; ++ OBJ_txt2obj; ++ PEM_read_NETSCAPE_CERT_SEQUENCE; ++ PEM_read_NS_CERT_SEQ; ++ PEM_read_bio_NETSCAPE_CERT_SEQUENCE; ++ PEM_read_bio_NS_CERT_SEQ; ++ PEM_write_NETSCAPE_CERT_SEQUENCE; ++ PEM_write_NS_CERT_SEQ; ++ PEM_write_bio_NETSCAPE_CERT_SEQUENCE; ++ PEM_write_bio_NS_CERT_SEQ; ++ X509V3_EXT_add; ++ X509V3_EXT_add_alias; ++ X509V3_EXT_add_conf; ++ X509V3_EXT_cleanup; ++ X509V3_EXT_conf; ++ X509V3_EXT_conf_nid; ++ X509V3_EXT_get; ++ X509V3_EXT_get_nid; ++ X509V3_EXT_print; ++ X509V3_EXT_print_fp; ++ X509V3_add_standard_extensions; ++ X509V3_add_value; ++ X509V3_add_value_bool; ++ X509V3_add_value_int; ++ X509V3_conf_free; ++ X509V3_get_value_bool; ++ X509V3_get_value_int; ++ X509V3_parse_list; ++ d2i_ASN1_GENERALIZEDTIME; ++ d2i_ASN1_TIME; ++ d2i_BASIC_CONSTRAINTS; ++ d2i_NETSCAPE_CERT_SEQUENCE; ++ d2i_ext_ku; ++ ext_ku_free; ++ ext_ku_new; ++ i2d_ASN1_GENERALIZEDTIME; ++ i2d_ASN1_TIME; ++ i2d_BASIC_CONSTRAINTS; ++ i2d_NETSCAPE_CERT_SEQUENCE; ++ i2d_ext_ku; ++ EVP_MD_CTX_copy; ++ i2d_ASN1_ENUMERATED; ++ d2i_ASN1_ENUMERATED; ++ ASN1_ENUMERATED_set; ++ ASN1_ENUMERATED_get; ++ BN_to_ASN1_ENUMERATED; ++ ASN1_ENUMERATED_to_BN; ++ i2a_ASN1_ENUMERATED; ++ a2i_ASN1_ENUMERATED; ++ i2d_GENERAL_NAME; ++ d2i_GENERAL_NAME; ++ GENERAL_NAME_new; ++ GENERAL_NAME_free; ++ GENERAL_NAMES_new; ++ GENERAL_NAMES_free; ++ d2i_GENERAL_NAMES; ++ i2d_GENERAL_NAMES; ++ i2v_GENERAL_NAMES; ++ i2s_ASN1_OCTET_STRING; ++ s2i_ASN1_OCTET_STRING; ++ X509V3_EXT_check_conf; ++ hex_to_string; ++ string_to_hex; ++ DES_ede3_cbcm_encrypt; ++ RSA_padding_add_PKCS1_OAEP; ++ RSA_padding_check_PKCS1_OAEP; ++ X509_CRL_print_fp; ++ X509_CRL_print; ++ i2v_GENERAL_NAME; ++ v2i_GENERAL_NAME; ++ i2d_PKEY_USAGE_PERIOD; ++ d2i_PKEY_USAGE_PERIOD; ++ PKEY_USAGE_PERIOD_new; ++ PKEY_USAGE_PERIOD_free; ++ v2i_GENERAL_NAMES; ++ i2s_ASN1_INTEGER; ++ X509V3_EXT_d2i; ++ name_cmp; ++ str_dup; ++ i2s_ASN1_ENUMERATED; ++ i2s_ASN1_ENUMERATED_TABLE; ++ BIO_s_log; ++ BIO_f_reliable; ++ PKCS7_dataFinal; ++ PKCS7_dataDecode; ++ X509V3_EXT_CRL_add_conf; ++ BN_set_params; ++ BN_get_params; ++ BIO_get_ex_num; ++ BIO_set_ex_free_func; ++ EVP_ripemd160; ++ ASN1_TIME_set; ++ i2d_AUTHORITY_KEYID; ++ d2i_AUTHORITY_KEYID; ++ AUTHORITY_KEYID_new; ++ AUTHORITY_KEYID_free; ++ ASN1_seq_unpack; ++ ASN1_seq_pack; ++ ASN1_unpack_string; ++ ASN1_pack_string; ++ PKCS12_pack_safebag; ++ PKCS12_MAKE_KEYBAG; ++ PKCS8_encrypt; ++ PKCS12_MAKE_SHKEYBAG; ++ PKCS12_pack_p7data; ++ PKCS12_pack_p7encdata; ++ PKCS12_add_localkeyid; ++ PKCS12_add_friendlyname_asc; ++ PKCS12_add_friendlyname_uni; ++ PKCS12_get_friendlyname; ++ PKCS12_pbe_crypt; ++ PKCS12_decrypt_d2i; ++ PKCS12_i2d_encrypt; ++ PKCS12_init; ++ PKCS12_key_gen_asc; ++ PKCS12_key_gen_uni; ++ PKCS12_gen_mac; ++ PKCS12_verify_mac; ++ PKCS12_set_mac; ++ PKCS12_setup_mac; ++ OPENSSL_asc2uni; ++ OPENSSL_uni2asc; ++ i2d_PKCS12_BAGS; ++ PKCS12_BAGS_new; ++ d2i_PKCS12_BAGS; ++ PKCS12_BAGS_free; ++ i2d_PKCS12; ++ d2i_PKCS12; ++ PKCS12_new; ++ PKCS12_free; ++ i2d_PKCS12_MAC_DATA; ++ PKCS12_MAC_DATA_new; ++ d2i_PKCS12_MAC_DATA; ++ PKCS12_MAC_DATA_free; ++ i2d_PKCS12_SAFEBAG; ++ PKCS12_SAFEBAG_new; ++ d2i_PKCS12_SAFEBAG; ++ PKCS12_SAFEBAG_free; ++ ERR_load_PKCS12_strings; ++ PKCS12_PBE_add; ++ PKCS8_add_keyusage; ++ PKCS12_get_attr_gen; ++ PKCS12_parse; ++ PKCS12_create; ++ i2d_PKCS12_bio; ++ i2d_PKCS12_fp; ++ d2i_PKCS12_bio; ++ d2i_PKCS12_fp; ++ i2d_PBEPARAM; ++ PBEPARAM_new; ++ d2i_PBEPARAM; ++ PBEPARAM_free; ++ i2d_PKCS8_PRIV_KEY_INFO; ++ PKCS8_PRIV_KEY_INFO_new; ++ d2i_PKCS8_PRIV_KEY_INFO; ++ PKCS8_PRIV_KEY_INFO_free; ++ EVP_PKCS82PKEY; ++ EVP_PKEY2PKCS8; ++ PKCS8_set_broken; ++ EVP_PBE_ALGOR_CipherInit; ++ EVP_PBE_alg_add; ++ PKCS5_pbe_set; ++ EVP_PBE_cleanup; ++ i2d_SXNET; ++ d2i_SXNET; ++ SXNET_new; ++ SXNET_free; ++ i2d_SXNETID; ++ d2i_SXNETID; ++ SXNETID_new; ++ SXNETID_free; ++ DSA_SIG_new; ++ DSA_SIG_free; ++ DSA_do_sign; ++ DSA_do_verify; ++ d2i_DSA_SIG; ++ i2d_DSA_SIG; ++ i2d_ASN1_VISIBLESTRING; ++ d2i_ASN1_VISIBLESTRING; ++ i2d_ASN1_UTF8STRING; ++ d2i_ASN1_UTF8STRING; ++ i2d_DIRECTORYSTRING; ++ d2i_DIRECTORYSTRING; ++ i2d_DISPLAYTEXT; ++ d2i_DISPLAYTEXT; ++ d2i_ASN1_SET_OF_X509; ++ i2d_ASN1_SET_OF_X509; ++ i2d_PBKDF2PARAM; ++ PBKDF2PARAM_new; ++ d2i_PBKDF2PARAM; ++ PBKDF2PARAM_free; ++ i2d_PBE2PARAM; ++ PBE2PARAM_new; ++ d2i_PBE2PARAM; ++ PBE2PARAM_free; ++ d2i_ASN1_SET_OF_GENERAL_NAME; ++ i2d_ASN1_SET_OF_GENERAL_NAME; ++ d2i_ASN1_SET_OF_SXNETID; ++ i2d_ASN1_SET_OF_SXNETID; ++ d2i_ASN1_SET_OF_POLICYQUALINFO; ++ i2d_ASN1_SET_OF_POLICYQUALINFO; ++ d2i_ASN1_SET_OF_POLICYINFO; ++ i2d_ASN1_SET_OF_POLICYINFO; ++ SXNET_add_id_asc; ++ SXNET_add_id_ulong; ++ SXNET_add_id_INTEGER; ++ SXNET_get_id_asc; ++ SXNET_get_id_ulong; ++ SXNET_get_id_INTEGER; ++ X509V3_set_conf_lhash; ++ i2d_CERTIFICATEPOLICIES; ++ CERTIFICATEPOLICIES_new; ++ CERTIFICATEPOLICIES_free; ++ d2i_CERTIFICATEPOLICIES; ++ i2d_POLICYINFO; ++ POLICYINFO_new; ++ d2i_POLICYINFO; ++ POLICYINFO_free; ++ i2d_POLICYQUALINFO; ++ POLICYQUALINFO_new; ++ d2i_POLICYQUALINFO; ++ POLICYQUALINFO_free; ++ i2d_USERNOTICE; ++ USERNOTICE_new; ++ d2i_USERNOTICE; ++ USERNOTICE_free; ++ i2d_NOTICEREF; ++ NOTICEREF_new; ++ d2i_NOTICEREF; ++ NOTICEREF_free; ++ X509V3_get_string; ++ X509V3_get_section; ++ X509V3_string_free; ++ X509V3_section_free; ++ X509V3_set_ctx; ++ s2i_ASN1_INTEGER; ++ CRYPTO_set_locked_mem_functions; ++ CRYPTO_get_locked_mem_functions; ++ CRYPTO_malloc_locked; ++ CRYPTO_free_locked; ++ BN_mod_exp2_mont; ++ ERR_get_error_line_data; ++ ERR_peek_error_line_data; ++ PKCS12_PBE_keyivgen; ++ X509_ALGOR_dup; ++ d2i_ASN1_SET_OF_DIST_POINT; ++ i2d_ASN1_SET_OF_DIST_POINT; ++ i2d_CRL_DIST_POINTS; ++ CRL_DIST_POINTS_new; ++ CRL_DIST_POINTS_free; ++ d2i_CRL_DIST_POINTS; ++ i2d_DIST_POINT; ++ DIST_POINT_new; ++ d2i_DIST_POINT; ++ DIST_POINT_free; ++ i2d_DIST_POINT_NAME; ++ DIST_POINT_NAME_new; ++ DIST_POINT_NAME_free; ++ d2i_DIST_POINT_NAME; ++ X509V3_add_value_uchar; ++ d2i_ASN1_SET_OF_X509_ATTRIBUTE; ++ i2d_ASN1_SET_OF_ASN1_TYPE; ++ d2i_ASN1_SET_OF_X509_EXTENSION; ++ d2i_ASN1_SET_OF_X509_NAME_ENTRY; ++ d2i_ASN1_SET_OF_ASN1_TYPE; ++ i2d_ASN1_SET_OF_X509_ATTRIBUTE; ++ i2d_ASN1_SET_OF_X509_EXTENSION; ++ i2d_ASN1_SET_OF_X509_NAME_ENTRY; ++ X509V3_EXT_i2d; ++ X509V3_EXT_val_prn; ++ X509V3_EXT_add_list; ++ EVP_CIPHER_type; ++ EVP_PBE_CipherInit; ++ X509V3_add_value_bool_nf; ++ d2i_ASN1_UINTEGER; ++ sk_value; ++ sk_num; ++ sk_set; ++ i2d_ASN1_SET_OF_X509_REVOKED; ++ sk_sort; ++ d2i_ASN1_SET_OF_X509_REVOKED; ++ i2d_ASN1_SET_OF_X509_ALGOR; ++ i2d_ASN1_SET_OF_X509_CRL; ++ d2i_ASN1_SET_OF_X509_ALGOR; ++ d2i_ASN1_SET_OF_X509_CRL; ++ i2d_ASN1_SET_OF_PKCS7_SIGNER_INFO; ++ i2d_ASN1_SET_OF_PKCS7_RECIP_INFO; ++ d2i_ASN1_SET_OF_PKCS7_SIGNER_INFO; ++ d2i_ASN1_SET_OF_PKCS7_RECIP_INFO; ++ PKCS5_PBE_add; ++ PEM_write_bio_PKCS8; ++ i2d_PKCS8_fp; ++ PEM_read_bio_PKCS8_PRIV_KEY_INFO; ++ PEM_read_bio_P8_PRIV_KEY_INFO; ++ d2i_PKCS8_bio; ++ d2i_PKCS8_PRIV_KEY_INFO_fp; ++ PEM_write_bio_PKCS8_PRIV_KEY_INFO; ++ PEM_write_bio_P8_PRIV_KEY_INFO; ++ PEM_read_PKCS8; ++ d2i_PKCS8_PRIV_KEY_INFO_bio; ++ d2i_PKCS8_fp; ++ PEM_write_PKCS8; ++ PEM_read_PKCS8_PRIV_KEY_INFO; ++ PEM_read_P8_PRIV_KEY_INFO; ++ PEM_read_bio_PKCS8; ++ PEM_write_PKCS8_PRIV_KEY_INFO; ++ PEM_write_P8_PRIV_KEY_INFO; ++ PKCS5_PBE_keyivgen; ++ i2d_PKCS8_bio; ++ i2d_PKCS8_PRIV_KEY_INFO_fp; ++ i2d_PKCS8_PRIV_KEY_INFO_bio; ++ BIO_s_bio; ++ PKCS5_pbe2_set; ++ PKCS5_PBKDF2_HMAC_SHA1; ++ PKCS5_v2_PBE_keyivgen; ++ PEM_write_bio_PKCS8PrivateKey; ++ PEM_write_PKCS8PrivateKey; ++ BIO_ctrl_get_read_request; ++ BIO_ctrl_pending; ++ BIO_ctrl_wpending; ++ BIO_new_bio_pair; ++ BIO_ctrl_get_write_guarantee; ++ CRYPTO_num_locks; ++ CONF_load_bio; ++ CONF_load_fp; ++ i2d_ASN1_SET_OF_ASN1_OBJECT; ++ d2i_ASN1_SET_OF_ASN1_OBJECT; ++ PKCS7_signatureVerify; ++ RSA_set_method; ++ RSA_get_method; ++ RSA_get_default_method; ++ RSA_check_key; ++ OBJ_obj2txt; ++ DSA_dup_DH; ++ X509_REQ_get_extensions; ++ X509_REQ_set_extension_nids; ++ BIO_nwrite; ++ X509_REQ_extension_nid; ++ BIO_nread; ++ X509_REQ_get_extension_nids; ++ BIO_nwrite0; ++ X509_REQ_add_extensions_nid; ++ BIO_nread0; ++ X509_REQ_add_extensions; ++ BIO_new_mem_buf; ++ DH_set_ex_data; ++ DH_set_method; ++ DSA_OpenSSL; ++ DH_get_ex_data; ++ DH_get_ex_new_index; ++ DSA_new_method; ++ DH_new_method; ++ DH_OpenSSL; ++ DSA_get_ex_new_index; ++ DH_get_default_method; ++ DSA_set_ex_data; ++ DH_set_default_method; ++ DSA_get_ex_data; ++ X509V3_EXT_REQ_add_conf; ++ NETSCAPE_SPKI_print; ++ NETSCAPE_SPKI_set_pubkey; ++ NETSCAPE_SPKI_b64_encode; ++ NETSCAPE_SPKI_get_pubkey; ++ NETSCAPE_SPKI_b64_decode; ++ UTF8_putc; ++ UTF8_getc; ++ RSA_null_method; ++ ASN1_tag2str; ++ BIO_ctrl_reset_read_request; ++ DISPLAYTEXT_new; ++ ASN1_GENERALIZEDTIME_free; ++ X509_REVOKED_get_ext_d2i; ++ X509_set_ex_data; ++ X509_reject_set_bit_asc; ++ X509_NAME_add_entry_by_txt; ++ X509_NAME_add_entry_by_NID; ++ X509_PURPOSE_get0; ++ PEM_read_X509_AUX; ++ d2i_AUTHORITY_INFO_ACCESS; ++ PEM_write_PUBKEY; ++ ACCESS_DESCRIPTION_new; ++ X509_CERT_AUX_free; ++ d2i_ACCESS_DESCRIPTION; ++ X509_trust_clear; ++ X509_TRUST_add; ++ ASN1_VISIBLESTRING_new; ++ X509_alias_set1; ++ ASN1_PRINTABLESTRING_free; ++ EVP_PKEY_get1_DSA; ++ ASN1_BMPSTRING_new; ++ ASN1_mbstring_copy; ++ ASN1_UTF8STRING_new; ++ DSA_get_default_method; ++ i2d_ASN1_SET_OF_ACCESS_DESCRIPTION; ++ ASN1_T61STRING_free; ++ DSA_set_method; ++ X509_get_ex_data; ++ ASN1_STRING_type; ++ X509_PURPOSE_get_by_sname; ++ ASN1_TIME_free; ++ ASN1_OCTET_STRING_cmp; ++ ASN1_BIT_STRING_new; ++ X509_get_ext_d2i; ++ PEM_read_bio_X509_AUX; ++ ASN1_STRING_set_default_mask_asc; ++ ASN1_STRING_set_def_mask_asc; ++ PEM_write_bio_RSA_PUBKEY; ++ ASN1_INTEGER_cmp; ++ d2i_RSA_PUBKEY_fp; ++ X509_trust_set_bit_asc; ++ PEM_write_bio_DSA_PUBKEY; ++ X509_STORE_CTX_free; ++ EVP_PKEY_set1_DSA; ++ i2d_DSA_PUBKEY_fp; ++ X509_load_cert_crl_file; ++ ASN1_TIME_new; ++ i2d_RSA_PUBKEY; ++ X509_STORE_CTX_purpose_inherit; ++ PEM_read_RSA_PUBKEY; ++ d2i_X509_AUX; ++ i2d_DSA_PUBKEY; ++ X509_CERT_AUX_print; ++ PEM_read_DSA_PUBKEY; ++ i2d_RSA_PUBKEY_bio; ++ ASN1_BIT_STRING_num_asc; ++ i2d_PUBKEY; ++ ASN1_UTCTIME_free; ++ DSA_set_default_method; ++ X509_PURPOSE_get_by_id; ++ ACCESS_DESCRIPTION_free; ++ PEM_read_bio_PUBKEY; ++ ASN1_STRING_set_by_NID; ++ X509_PURPOSE_get_id; ++ DISPLAYTEXT_free; ++ OTHERNAME_new; ++ X509_CERT_AUX_new; ++ X509_TRUST_cleanup; ++ X509_NAME_add_entry_by_OBJ; ++ X509_CRL_get_ext_d2i; ++ X509_PURPOSE_get0_name; ++ PEM_read_PUBKEY; ++ i2d_DSA_PUBKEY_bio; ++ i2d_OTHERNAME; ++ ASN1_OCTET_STRING_free; ++ ASN1_BIT_STRING_set_asc; ++ X509_get_ex_new_index; ++ ASN1_STRING_TABLE_cleanup; ++ X509_TRUST_get_by_id; ++ X509_PURPOSE_get_trust; ++ ASN1_STRING_length; ++ d2i_ASN1_SET_OF_ACCESS_DESCRIPTION; ++ ASN1_PRINTABLESTRING_new; ++ X509V3_get_d2i; ++ ASN1_ENUMERATED_free; ++ i2d_X509_CERT_AUX; ++ X509_STORE_CTX_set_trust; ++ ASN1_STRING_set_default_mask; ++ X509_STORE_CTX_new; ++ EVP_PKEY_get1_RSA; ++ DIRECTORYSTRING_free; ++ PEM_write_X509_AUX; ++ ASN1_OCTET_STRING_set; ++ d2i_DSA_PUBKEY_fp; ++ d2i_RSA_PUBKEY; ++ X509_TRUST_get0_name; ++ X509_TRUST_get0; ++ AUTHORITY_INFO_ACCESS_free; ++ ASN1_IA5STRING_new; ++ d2i_DSA_PUBKEY; ++ X509_check_purpose; ++ ASN1_ENUMERATED_new; ++ d2i_RSA_PUBKEY_bio; ++ d2i_PUBKEY; ++ X509_TRUST_get_trust; ++ X509_TRUST_get_flags; ++ ASN1_BMPSTRING_free; ++ ASN1_T61STRING_new; ++ ASN1_UTCTIME_new; ++ i2d_AUTHORITY_INFO_ACCESS; ++ EVP_PKEY_set1_RSA; ++ X509_STORE_CTX_set_purpose; ++ ASN1_IA5STRING_free; ++ PEM_write_bio_X509_AUX; ++ X509_PURPOSE_get_count; ++ CRYPTO_add_info; ++ X509_NAME_ENTRY_create_by_txt; ++ ASN1_STRING_get_default_mask; ++ X509_alias_get0; ++ ASN1_STRING_data; ++ i2d_ACCESS_DESCRIPTION; ++ X509_trust_set_bit; ++ ASN1_BIT_STRING_free; ++ PEM_read_bio_RSA_PUBKEY; ++ X509_add1_reject_object; ++ X509_check_trust; ++ PEM_read_bio_DSA_PUBKEY; ++ X509_PURPOSE_add; ++ ASN1_STRING_TABLE_get; ++ ASN1_UTF8STRING_free; ++ d2i_DSA_PUBKEY_bio; ++ PEM_write_RSA_PUBKEY; ++ d2i_OTHERNAME; ++ X509_reject_set_bit; ++ PEM_write_DSA_PUBKEY; ++ X509_PURPOSE_get0_sname; ++ EVP_PKEY_set1_DH; ++ ASN1_OCTET_STRING_dup; ++ ASN1_BIT_STRING_set; ++ X509_TRUST_get_count; ++ ASN1_INTEGER_free; ++ OTHERNAME_free; ++ i2d_RSA_PUBKEY_fp; ++ ASN1_INTEGER_dup; ++ d2i_X509_CERT_AUX; ++ PEM_write_bio_PUBKEY; ++ ASN1_VISIBLESTRING_free; ++ X509_PURPOSE_cleanup; ++ ASN1_mbstring_ncopy; ++ ASN1_GENERALIZEDTIME_new; ++ EVP_PKEY_get1_DH; ++ ASN1_OCTET_STRING_new; ++ ASN1_INTEGER_new; ++ i2d_X509_AUX; ++ ASN1_BIT_STRING_name_print; ++ X509_cmp; ++ ASN1_STRING_length_set; ++ DIRECTORYSTRING_new; ++ X509_add1_trust_object; ++ PKCS12_newpass; ++ SMIME_write_PKCS7; ++ SMIME_read_PKCS7; ++ DES_set_key_checked; ++ PKCS7_verify; ++ PKCS7_encrypt; ++ DES_set_key_unchecked; ++ SMIME_crlf_copy; ++ i2d_ASN1_PRINTABLESTRING; ++ PKCS7_get0_signers; ++ PKCS7_decrypt; ++ SMIME_text; ++ PKCS7_simple_smimecap; ++ PKCS7_get_smimecap; ++ PKCS7_sign; ++ PKCS7_add_attrib_smimecap; ++ CRYPTO_dbg_set_options; ++ CRYPTO_remove_all_info; ++ CRYPTO_get_mem_debug_functions; ++ CRYPTO_is_mem_check_on; ++ CRYPTO_set_mem_debug_functions; ++ CRYPTO_pop_info; ++ CRYPTO_push_info_; ++ CRYPTO_set_mem_debug_options; ++ PEM_write_PKCS8PrivateKey_nid; ++ PEM_write_bio_PKCS8PrivateKey_nid; ++ PEM_write_bio_PKCS8PrivKey_nid; ++ d2i_PKCS8PrivateKey_bio; ++ ASN1_NULL_free; ++ d2i_ASN1_NULL; ++ ASN1_NULL_new; ++ i2d_PKCS8PrivateKey_bio; ++ i2d_PKCS8PrivateKey_fp; ++ i2d_ASN1_NULL; ++ i2d_PKCS8PrivateKey_nid_fp; ++ d2i_PKCS8PrivateKey_fp; ++ i2d_PKCS8PrivateKey_nid_bio; ++ i2d_PKCS8PrivateKeyInfo_fp; ++ i2d_PKCS8PrivateKeyInfo_bio; ++ PEM_cb; ++ i2d_PrivateKey_fp; ++ d2i_PrivateKey_bio; ++ d2i_PrivateKey_fp; ++ i2d_PrivateKey_bio; ++ X509_reject_clear; ++ X509_TRUST_set_default; ++ d2i_AutoPrivateKey; ++ X509_ATTRIBUTE_get0_type; ++ X509_ATTRIBUTE_set1_data; ++ X509at_get_attr; ++ X509at_get_attr_count; ++ X509_ATTRIBUTE_create_by_NID; ++ X509_ATTRIBUTE_set1_object; ++ X509_ATTRIBUTE_count; ++ X509_ATTRIBUTE_create_by_OBJ; ++ X509_ATTRIBUTE_get0_object; ++ X509at_get_attr_by_NID; ++ X509at_add1_attr; ++ X509_ATTRIBUTE_get0_data; ++ X509at_delete_attr; ++ X509at_get_attr_by_OBJ; ++ RAND_add; ++ BIO_number_written; ++ BIO_number_read; ++ X509_STORE_CTX_get1_chain; ++ ERR_load_RAND_strings; ++ RAND_pseudo_bytes; ++ X509_REQ_get_attr_by_NID; ++ X509_REQ_get_attr; ++ X509_REQ_add1_attr_by_NID; ++ X509_REQ_get_attr_by_OBJ; ++ X509at_add1_attr_by_NID; ++ X509_REQ_add1_attr_by_OBJ; ++ X509_REQ_get_attr_count; ++ X509_REQ_add1_attr; ++ X509_REQ_delete_attr; ++ X509at_add1_attr_by_OBJ; ++ X509_REQ_add1_attr_by_txt; ++ X509_ATTRIBUTE_create_by_txt; ++ X509at_add1_attr_by_txt; ++ BN_pseudo_rand; ++ BN_is_prime_fasttest; ++ BN_CTX_end; ++ BN_CTX_start; ++ BN_CTX_get; ++ EVP_PKEY2PKCS8_broken; ++ ASN1_STRING_TABLE_add; ++ CRYPTO_dbg_get_options; ++ AUTHORITY_INFO_ACCESS_new; ++ CRYPTO_get_mem_debug_options; ++ DES_crypt; ++ PEM_write_bio_X509_REQ_NEW; ++ PEM_write_X509_REQ_NEW; ++ BIO_callback_ctrl; ++ RAND_egd; ++ RAND_status; ++ bn_dump1; ++ DES_check_key_parity; ++ lh_num_items; ++ RAND_event; ++ DSO_new; ++ DSO_new_method; ++ DSO_free; ++ DSO_flags; ++ DSO_up; ++ DSO_set_default_method; ++ DSO_get_default_method; ++ DSO_get_method; ++ DSO_set_method; ++ DSO_load; ++ DSO_bind_var; ++ DSO_METHOD_null; ++ DSO_METHOD_openssl; ++ DSO_METHOD_dlfcn; ++ DSO_METHOD_win32; ++ ERR_load_DSO_strings; ++ DSO_METHOD_dl; ++ NCONF_load; ++ NCONF_load_fp; ++ NCONF_new; ++ NCONF_get_string; ++ NCONF_free; ++ NCONF_get_number; ++ CONF_dump_fp; ++ NCONF_load_bio; ++ NCONF_dump_fp; ++ NCONF_get_section; ++ NCONF_dump_bio; ++ CONF_dump_bio; ++ NCONF_free_data; ++ CONF_set_default_method; ++ ERR_error_string_n; ++ BIO_snprintf; ++ DSO_ctrl; ++ i2d_ASN1_SET_OF_ASN1_INTEGER; ++ i2d_ASN1_SET_OF_PKCS12_SAFEBAG; ++ i2d_ASN1_SET_OF_PKCS7; ++ BIO_vfree; ++ d2i_ASN1_SET_OF_ASN1_INTEGER; ++ d2i_ASN1_SET_OF_PKCS12_SAFEBAG; ++ ASN1_UTCTIME_get; ++ X509_REQ_digest; ++ X509_CRL_digest; ++ d2i_ASN1_SET_OF_PKCS7; ++ EVP_CIPHER_CTX_set_key_length; ++ EVP_CIPHER_CTX_ctrl; ++ BN_mod_exp_mont_word; ++ RAND_egd_bytes; ++ X509_REQ_get1_email; ++ X509_get1_email; ++ X509_email_free; ++ i2d_RSA_NET; ++ d2i_RSA_NET_2; ++ d2i_RSA_NET; ++ DSO_bind_func; ++ CRYPTO_get_new_dynlockid; ++ sk_new_null; ++ CRYPTO_set_dynlock_destroy_callback; ++ CRYPTO_set_dynlock_destroy_cb; ++ CRYPTO_destroy_dynlockid; ++ CRYPTO_set_dynlock_size; ++ CRYPTO_set_dynlock_create_callback; ++ CRYPTO_set_dynlock_create_cb; ++ CRYPTO_set_dynlock_lock_callback; ++ CRYPTO_set_dynlock_lock_cb; ++ CRYPTO_get_dynlock_lock_callback; ++ CRYPTO_get_dynlock_lock_cb; ++ CRYPTO_get_dynlock_destroy_callback; ++ CRYPTO_get_dynlock_destroy_cb; ++ CRYPTO_get_dynlock_value; ++ CRYPTO_get_dynlock_create_callback; ++ CRYPTO_get_dynlock_create_cb; ++ c2i_ASN1_BIT_STRING; ++ i2c_ASN1_BIT_STRING; ++ RAND_poll; ++ c2i_ASN1_INTEGER; ++ i2c_ASN1_INTEGER; ++ BIO_dump_indent; ++ ASN1_parse_dump; ++ c2i_ASN1_OBJECT; ++ X509_NAME_print_ex_fp; ++ ASN1_STRING_print_ex_fp; ++ X509_NAME_print_ex; ++ ASN1_STRING_print_ex; ++ MD4; ++ MD4_Transform; ++ MD4_Final; ++ MD4_Update; ++ MD4_Init; ++ EVP_md4; ++ i2d_PUBKEY_bio; ++ i2d_PUBKEY_fp; ++ d2i_PUBKEY_bio; ++ ASN1_STRING_to_UTF8; ++ BIO_vprintf; ++ BIO_vsnprintf; ++ d2i_PUBKEY_fp; ++ X509_cmp_time; ++ X509_STORE_CTX_set_time; ++ X509_STORE_CTX_get1_issuer; ++ X509_OBJECT_retrieve_match; ++ X509_OBJECT_idx_by_subject; ++ X509_STORE_CTX_set_flags; ++ X509_STORE_CTX_trusted_stack; ++ X509_time_adj; ++ X509_check_issued; ++ ASN1_UTCTIME_cmp_time_t; ++ DES_set_weak_key_flag; ++ DES_check_key; ++ DES_rw_mode; ++ RSA_PKCS1_RSAref; ++ X509_keyid_set1; ++ BIO_next; ++ DSO_METHOD_vms; ++ BIO_f_linebuffer; ++ BN_bntest_rand; ++ OPENSSL_issetugid; ++ BN_rand_range; ++ ERR_load_ENGINE_strings; ++ ENGINE_set_DSA; ++ ENGINE_get_finish_function; ++ ENGINE_get_default_RSA; ++ ENGINE_get_BN_mod_exp; ++ DSA_get_default_openssl_method; ++ ENGINE_set_DH; ++ ENGINE_set_def_BN_mod_exp_crt; ++ ENGINE_set_default_BN_mod_exp_crt; ++ ENGINE_init; ++ DH_get_default_openssl_method; ++ RSA_set_default_openssl_method; ++ ENGINE_finish; ++ ENGINE_load_public_key; ++ ENGINE_get_DH; ++ ENGINE_ctrl; ++ ENGINE_get_init_function; ++ ENGINE_set_init_function; ++ ENGINE_set_default_DSA; ++ ENGINE_get_name; ++ ENGINE_get_last; ++ ENGINE_get_prev; ++ ENGINE_get_default_DH; ++ ENGINE_get_RSA; ++ ENGINE_set_default; ++ ENGINE_get_RAND; ++ ENGINE_get_first; ++ ENGINE_by_id; ++ ENGINE_set_finish_function; ++ ENGINE_get_def_BN_mod_exp_crt; ++ ENGINE_get_default_BN_mod_exp_crt; ++ RSA_get_default_openssl_method; ++ ENGINE_set_RSA; ++ ENGINE_load_private_key; ++ ENGINE_set_default_RAND; ++ ENGINE_set_BN_mod_exp; ++ ENGINE_remove; ++ ENGINE_free; ++ ENGINE_get_BN_mod_exp_crt; ++ ENGINE_get_next; ++ ENGINE_set_name; ++ ENGINE_get_default_DSA; ++ ENGINE_set_default_BN_mod_exp; ++ ENGINE_set_default_RSA; ++ ENGINE_get_default_RAND; ++ ENGINE_get_default_BN_mod_exp; ++ ENGINE_set_RAND; ++ ENGINE_set_id; ++ ENGINE_set_BN_mod_exp_crt; ++ ENGINE_set_default_DH; ++ ENGINE_new; ++ ENGINE_get_id; ++ DSA_set_default_openssl_method; ++ ENGINE_add; ++ DH_set_default_openssl_method; ++ ENGINE_get_DSA; ++ ENGINE_get_ctrl_function; ++ ENGINE_set_ctrl_function; ++ BN_pseudo_rand_range; ++ X509_STORE_CTX_set_verify_cb; ++ ERR_load_COMP_strings; ++ PKCS12_item_decrypt_d2i; ++ ASN1_UTF8STRING_it; ++ ENGINE_unregister_ciphers; ++ ENGINE_get_ciphers; ++ d2i_OCSP_BASICRESP; ++ KRB5_CHECKSUM_it; ++ EC_POINT_add; ++ ASN1_item_ex_i2d; ++ OCSP_CERTID_it; ++ d2i_OCSP_RESPBYTES; ++ X509V3_add1_i2d; ++ PKCS7_ENVELOPE_it; ++ UI_add_input_boolean; ++ ENGINE_unregister_RSA; ++ X509V3_EXT_nconf; ++ ASN1_GENERALSTRING_free; ++ d2i_OCSP_CERTSTATUS; ++ X509_REVOKED_set_serialNumber; ++ X509_print_ex; ++ OCSP_ONEREQ_get1_ext_d2i; ++ ENGINE_register_all_RAND; ++ ENGINE_load_dynamic; ++ PBKDF2PARAM_it; ++ EXTENDED_KEY_USAGE_new; ++ EC_GROUP_clear_free; ++ OCSP_sendreq_bio; ++ ASN1_item_digest; ++ OCSP_BASICRESP_delete_ext; ++ OCSP_SIGNATURE_it; ++ X509_CRL_it; ++ OCSP_BASICRESP_add_ext; ++ KRB5_ENCKEY_it; ++ UI_method_set_closer; ++ X509_STORE_set_purpose; ++ i2d_ASN1_GENERALSTRING; ++ OCSP_response_status; ++ i2d_OCSP_SERVICELOC; ++ ENGINE_get_digest_engine; ++ EC_GROUP_set_curve_GFp; ++ OCSP_REQUEST_get_ext_by_OBJ; ++ _ossl_old_des_random_key; ++ ASN1_T61STRING_it; ++ EC_GROUP_method_of; ++ i2d_KRB5_APREQ; ++ _ossl_old_des_encrypt; ++ ASN1_PRINTABLE_new; ++ HMAC_Init_ex; ++ d2i_KRB5_AUTHENT; ++ OCSP_archive_cutoff_new; ++ EC_POINT_set_Jprojective_coordinates_GFp; ++ EC_POINT_set_Jproj_coords_GFp; ++ _ossl_old_des_is_weak_key; ++ OCSP_BASICRESP_get_ext_by_OBJ; ++ EC_POINT_oct2point; ++ OCSP_SINGLERESP_get_ext_count; ++ UI_ctrl; ++ _shadow_DES_rw_mode; ++ asn1_do_adb; ++ ASN1_template_i2d; ++ ENGINE_register_DH; ++ UI_construct_prompt; ++ X509_STORE_set_trust; ++ UI_dup_input_string; ++ d2i_KRB5_APREQ; ++ EVP_MD_CTX_copy_ex; ++ OCSP_request_is_signed; ++ i2d_OCSP_REQINFO; ++ KRB5_ENCKEY_free; ++ OCSP_resp_get0; ++ GENERAL_NAME_it; ++ ASN1_GENERALIZEDTIME_it; ++ X509_STORE_set_flags; ++ EC_POINT_set_compressed_coordinates_GFp; ++ EC_POINT_set_compr_coords_GFp; ++ OCSP_response_status_str; ++ d2i_OCSP_REVOKEDINFO; ++ OCSP_basic_add1_cert; ++ ERR_get_implementation; ++ EVP_CipherFinal_ex; ++ OCSP_CERTSTATUS_new; ++ CRYPTO_cleanup_all_ex_data; ++ OCSP_resp_find; ++ BN_nnmod; ++ X509_CRL_sort; ++ X509_REVOKED_set_revocationDate; ++ ENGINE_register_RAND; ++ OCSP_SERVICELOC_new; ++ EC_POINT_set_affine_coordinates_GFp; ++ EC_POINT_set_affine_coords_GFp; ++ _ossl_old_des_options; ++ SXNET_it; ++ UI_dup_input_boolean; ++ PKCS12_add_CSPName_asc; ++ EC_POINT_is_at_infinity; ++ ENGINE_load_cryptodev; ++ DSO_convert_filename; ++ POLICYQUALINFO_it; ++ ENGINE_register_ciphers; ++ BN_mod_lshift_quick; ++ DSO_set_filename; ++ ASN1_item_free; ++ KRB5_TKTBODY_free; ++ AUTHORITY_KEYID_it; ++ KRB5_APREQBODY_new; ++ X509V3_EXT_REQ_add_nconf; ++ ENGINE_ctrl_cmd_string; ++ i2d_OCSP_RESPDATA; ++ EVP_MD_CTX_init; ++ EXTENDED_KEY_USAGE_free; ++ PKCS7_ATTR_SIGN_it; ++ UI_add_error_string; ++ KRB5_CHECKSUM_free; ++ OCSP_REQUEST_get_ext; ++ ENGINE_load_ubsec; ++ ENGINE_register_all_digests; ++ PKEY_USAGE_PERIOD_it; ++ PKCS12_unpack_authsafes; ++ ASN1_item_unpack; ++ NETSCAPE_SPKAC_it; ++ X509_REVOKED_it; ++ ASN1_STRING_encode; ++ EVP_aes_128_ecb; ++ KRB5_AUTHENT_free; ++ OCSP_BASICRESP_get_ext_by_critical; ++ OCSP_BASICRESP_get_ext_by_crit; ++ OCSP_cert_status_str; ++ d2i_OCSP_REQUEST; ++ UI_dup_info_string; ++ _ossl_old_des_xwhite_in2out; ++ PKCS12_it; ++ OCSP_SINGLERESP_get_ext_by_critical; ++ OCSP_SINGLERESP_get_ext_by_crit; ++ OCSP_CERTSTATUS_free; ++ _ossl_old_des_crypt; ++ ASN1_item_i2d; ++ EVP_DecryptFinal_ex; ++ ENGINE_load_openssl; ++ ENGINE_get_cmd_defns; ++ ENGINE_set_load_privkey_function; ++ ENGINE_set_load_privkey_fn; ++ EVP_EncryptFinal_ex; ++ ENGINE_set_default_digests; ++ X509_get0_pubkey_bitstr; ++ asn1_ex_i2c; ++ ENGINE_register_RSA; ++ ENGINE_unregister_DSA; ++ _ossl_old_des_key_sched; ++ X509_EXTENSION_it; ++ i2d_KRB5_AUTHENT; ++ SXNETID_it; ++ d2i_OCSP_SINGLERESP; ++ EDIPARTYNAME_new; ++ PKCS12_certbag2x509; ++ _ossl_old_des_ofb64_encrypt; ++ d2i_EXTENDED_KEY_USAGE; ++ ERR_print_errors_cb; ++ ENGINE_set_ciphers; ++ d2i_KRB5_APREQBODY; ++ UI_method_get_flusher; ++ X509_PUBKEY_it; ++ _ossl_old_des_enc_read; ++ PKCS7_ENCRYPT_it; ++ i2d_OCSP_RESPONSE; ++ EC_GROUP_get_cofactor; ++ PKCS12_unpack_p7data; ++ d2i_KRB5_AUTHDATA; ++ OCSP_copy_nonce; ++ KRB5_AUTHDATA_new; ++ OCSP_RESPDATA_new; ++ EC_GFp_mont_method; ++ OCSP_REVOKEDINFO_free; ++ UI_get_ex_data; ++ KRB5_APREQBODY_free; ++ EC_GROUP_get0_generator; ++ UI_get_default_method; ++ X509V3_set_nconf; ++ PKCS12_item_i2d_encrypt; ++ X509_add1_ext_i2d; ++ PKCS7_SIGNER_INFO_it; ++ KRB5_PRINCNAME_new; ++ PKCS12_SAFEBAG_it; ++ EC_GROUP_get_order; ++ d2i_OCSP_RESPID; ++ OCSP_request_verify; ++ NCONF_get_number_e; ++ _ossl_old_des_decrypt3; ++ X509_signature_print; ++ OCSP_SINGLERESP_free; ++ ENGINE_load_builtin_engines; ++ i2d_OCSP_ONEREQ; ++ OCSP_REQUEST_add_ext; ++ OCSP_RESPBYTES_new; ++ EVP_MD_CTX_create; ++ OCSP_resp_find_status; ++ X509_ALGOR_it; ++ ASN1_TIME_it; ++ OCSP_request_set1_name; ++ OCSP_ONEREQ_get_ext_count; ++ UI_get0_result; ++ PKCS12_AUTHSAFES_it; ++ EVP_aes_256_ecb; ++ PKCS12_pack_authsafes; ++ ASN1_IA5STRING_it; ++ UI_get_input_flags; ++ EC_GROUP_set_generator; ++ _ossl_old_des_string_to_2keys; ++ OCSP_CERTID_free; ++ X509_CERT_AUX_it; ++ CERTIFICATEPOLICIES_it; ++ _ossl_old_des_ede3_cbc_encrypt; ++ RAND_set_rand_engine; ++ DSO_get_loaded_filename; ++ X509_ATTRIBUTE_it; ++ OCSP_ONEREQ_get_ext_by_NID; ++ PKCS12_decrypt_skey; ++ KRB5_AUTHENT_it; ++ UI_dup_error_string; ++ RSAPublicKey_it; ++ i2d_OCSP_REQUEST; ++ PKCS12_x509crl2certbag; ++ OCSP_SERVICELOC_it; ++ ASN1_item_sign; ++ X509_CRL_set_issuer_name; ++ OBJ_NAME_do_all_sorted; ++ i2d_OCSP_BASICRESP; ++ i2d_OCSP_RESPBYTES; ++ PKCS12_unpack_p7encdata; ++ HMAC_CTX_init; ++ ENGINE_get_digest; ++ OCSP_RESPONSE_print; ++ KRB5_TKTBODY_it; ++ ACCESS_DESCRIPTION_it; ++ PKCS7_ISSUER_AND_SERIAL_it; ++ PBE2PARAM_it; ++ PKCS12_certbag2x509crl; ++ PKCS7_SIGNED_it; ++ ENGINE_get_cipher; ++ i2d_OCSP_CRLID; ++ OCSP_SINGLERESP_new; ++ ENGINE_cmd_is_executable; ++ RSA_up_ref; ++ ASN1_GENERALSTRING_it; ++ ENGINE_register_DSA; ++ X509V3_EXT_add_nconf_sk; ++ ENGINE_set_load_pubkey_function; ++ PKCS8_decrypt; ++ PEM_bytes_read_bio; ++ DIRECTORYSTRING_it; ++ d2i_OCSP_CRLID; ++ EC_POINT_is_on_curve; ++ CRYPTO_set_locked_mem_ex_functions; ++ CRYPTO_set_locked_mem_ex_funcs; ++ d2i_KRB5_CHECKSUM; ++ ASN1_item_dup; ++ X509_it; ++ BN_mod_add; ++ KRB5_AUTHDATA_free; ++ _ossl_old_des_cbc_cksum; ++ ASN1_item_verify; ++ CRYPTO_set_mem_ex_functions; ++ EC_POINT_get_Jprojective_coordinates_GFp; ++ EC_POINT_get_Jproj_coords_GFp; ++ ZLONG_it; ++ CRYPTO_get_locked_mem_ex_functions; ++ CRYPTO_get_locked_mem_ex_funcs; ++ ASN1_TIME_check; ++ UI_get0_user_data; ++ HMAC_CTX_cleanup; ++ DSA_up_ref; ++ _ossl_old_des_ede3_cfb64_encrypt; ++ _ossl_odes_ede3_cfb64_encrypt; ++ ASN1_BMPSTRING_it; ++ ASN1_tag2bit; ++ UI_method_set_flusher; ++ X509_ocspid_print; ++ KRB5_ENCDATA_it; ++ ENGINE_get_load_pubkey_function; ++ UI_add_user_data; ++ OCSP_REQUEST_delete_ext; ++ UI_get_method; ++ OCSP_ONEREQ_free; ++ ASN1_PRINTABLESTRING_it; ++ X509_CRL_set_nextUpdate; ++ OCSP_REQUEST_it; ++ OCSP_BASICRESP_it; ++ AES_ecb_encrypt; ++ BN_mod_sqr; ++ NETSCAPE_CERT_SEQUENCE_it; ++ GENERAL_NAMES_it; ++ AUTHORITY_INFO_ACCESS_it; ++ ASN1_FBOOLEAN_it; ++ UI_set_ex_data; ++ _ossl_old_des_string_to_key; ++ ENGINE_register_all_RSA; ++ d2i_KRB5_PRINCNAME; ++ OCSP_RESPBYTES_it; ++ X509_CINF_it; ++ ENGINE_unregister_digests; ++ d2i_EDIPARTYNAME; ++ d2i_OCSP_SERVICELOC; ++ ENGINE_get_digests; ++ _ossl_old_des_set_odd_parity; ++ OCSP_RESPDATA_free; ++ d2i_KRB5_TICKET; ++ OTHERNAME_it; ++ EVP_MD_CTX_cleanup; ++ d2i_ASN1_GENERALSTRING; ++ X509_CRL_set_version; ++ BN_mod_sub; ++ OCSP_SINGLERESP_get_ext_by_NID; ++ ENGINE_get_ex_new_index; ++ OCSP_REQUEST_free; ++ OCSP_REQUEST_add1_ext_i2d; ++ X509_VAL_it; ++ EC_POINTs_make_affine; ++ EC_POINT_mul; ++ X509V3_EXT_add_nconf; ++ X509_TRUST_set; ++ X509_CRL_add1_ext_i2d; ++ _ossl_old_des_fcrypt; ++ DISPLAYTEXT_it; ++ X509_CRL_set_lastUpdate; ++ OCSP_BASICRESP_free; ++ OCSP_BASICRESP_add1_ext_i2d; ++ d2i_KRB5_AUTHENTBODY; ++ CRYPTO_set_ex_data_implementation; ++ CRYPTO_set_ex_data_impl; ++ KRB5_ENCDATA_new; ++ DSO_up_ref; ++ OCSP_crl_reason_str; ++ UI_get0_result_string; ++ ASN1_GENERALSTRING_new; ++ X509_SIG_it; ++ ERR_set_implementation; ++ ERR_load_EC_strings; ++ UI_get0_action_string; ++ OCSP_ONEREQ_get_ext; ++ EC_POINT_method_of; ++ i2d_KRB5_APREQBODY; ++ _ossl_old_des_ecb3_encrypt; ++ CRYPTO_get_mem_ex_functions; ++ ENGINE_get_ex_data; ++ UI_destroy_method; ++ ASN1_item_i2d_bio; ++ OCSP_ONEREQ_get_ext_by_OBJ; ++ ASN1_primitive_new; ++ ASN1_PRINTABLE_it; ++ EVP_aes_192_ecb; ++ OCSP_SIGNATURE_new; ++ LONG_it; ++ ASN1_VISIBLESTRING_it; ++ OCSP_SINGLERESP_add1_ext_i2d; ++ d2i_OCSP_CERTID; ++ ASN1_item_d2i_fp; ++ CRL_DIST_POINTS_it; ++ GENERAL_NAME_print; ++ OCSP_SINGLERESP_delete_ext; ++ PKCS12_SAFEBAGS_it; ++ d2i_OCSP_SIGNATURE; ++ OCSP_request_add1_nonce; ++ ENGINE_set_cmd_defns; ++ OCSP_SERVICELOC_free; ++ EC_GROUP_free; ++ ASN1_BIT_STRING_it; ++ X509_REQ_it; ++ _ossl_old_des_cbc_encrypt; ++ ERR_unload_strings; ++ PKCS7_SIGN_ENVELOPE_it; ++ EDIPARTYNAME_free; ++ OCSP_REQINFO_free; ++ EC_GROUP_new_curve_GFp; ++ OCSP_REQUEST_get1_ext_d2i; ++ PKCS12_item_pack_safebag; ++ asn1_ex_c2i; ++ ENGINE_register_digests; ++ i2d_OCSP_REVOKEDINFO; ++ asn1_enc_restore; ++ UI_free; ++ UI_new_method; ++ EVP_EncryptInit_ex; ++ X509_pubkey_digest; ++ EC_POINT_invert; ++ OCSP_basic_sign; ++ i2d_OCSP_RESPID; ++ OCSP_check_nonce; ++ ENGINE_ctrl_cmd; ++ d2i_KRB5_ENCKEY; ++ OCSP_parse_url; ++ OCSP_SINGLERESP_get_ext; ++ OCSP_CRLID_free; ++ OCSP_BASICRESP_get1_ext_d2i; ++ RSAPrivateKey_it; ++ ENGINE_register_all_DH; ++ i2d_EDIPARTYNAME; ++ EC_POINT_get_affine_coordinates_GFp; ++ EC_POINT_get_affine_coords_GFp; ++ OCSP_CRLID_new; ++ ENGINE_get_flags; ++ OCSP_ONEREQ_it; ++ UI_process; ++ ASN1_INTEGER_it; ++ EVP_CipherInit_ex; ++ UI_get_string_type; ++ ENGINE_unregister_DH; ++ ENGINE_register_all_DSA; ++ OCSP_ONEREQ_get_ext_by_critical; ++ bn_dup_expand; ++ OCSP_cert_id_new; ++ BASIC_CONSTRAINTS_it; ++ BN_mod_add_quick; ++ EC_POINT_new; ++ EVP_MD_CTX_destroy; ++ OCSP_RESPBYTES_free; ++ EVP_aes_128_cbc; ++ OCSP_SINGLERESP_get1_ext_d2i; ++ EC_POINT_free; ++ DH_up_ref; ++ X509_NAME_ENTRY_it; ++ UI_get_ex_new_index; ++ BN_mod_sub_quick; ++ OCSP_ONEREQ_add_ext; ++ OCSP_request_sign; ++ EVP_DigestFinal_ex; ++ ENGINE_set_digests; ++ OCSP_id_issuer_cmp; ++ OBJ_NAME_do_all; ++ EC_POINTs_mul; ++ ENGINE_register_complete; ++ X509V3_EXT_nconf_nid; ++ ASN1_SEQUENCE_it; ++ UI_set_default_method; ++ RAND_query_egd_bytes; ++ UI_method_get_writer; ++ UI_OpenSSL; ++ PEM_def_callback; ++ ENGINE_cleanup; ++ DIST_POINT_it; ++ OCSP_SINGLERESP_it; ++ d2i_KRB5_TKTBODY; ++ EC_POINT_cmp; ++ OCSP_REVOKEDINFO_new; ++ i2d_OCSP_CERTSTATUS; ++ OCSP_basic_add1_nonce; ++ ASN1_item_ex_d2i; ++ BN_mod_lshift1_quick; ++ UI_set_method; ++ OCSP_id_get0_info; ++ BN_mod_sqrt; ++ EC_GROUP_copy; ++ KRB5_ENCDATA_free; ++ _ossl_old_des_cfb_encrypt; ++ OCSP_SINGLERESP_get_ext_by_OBJ; ++ OCSP_cert_to_id; ++ OCSP_RESPID_new; ++ OCSP_RESPDATA_it; ++ d2i_OCSP_RESPDATA; ++ ENGINE_register_all_complete; ++ OCSP_check_validity; ++ PKCS12_BAGS_it; ++ OCSP_url_svcloc_new; ++ ASN1_template_free; ++ OCSP_SINGLERESP_add_ext; ++ KRB5_AUTHENTBODY_it; ++ X509_supported_extension; ++ i2d_KRB5_AUTHDATA; ++ UI_method_get_opener; ++ ENGINE_set_ex_data; ++ OCSP_REQUEST_print; ++ CBIGNUM_it; ++ KRB5_TICKET_new; ++ KRB5_APREQ_new; ++ EC_GROUP_get_curve_GFp; ++ KRB5_ENCKEY_new; ++ ASN1_template_d2i; ++ _ossl_old_des_quad_cksum; ++ OCSP_single_get0_status; ++ BN_swap; ++ POLICYINFO_it; ++ ENGINE_set_destroy_function; ++ asn1_enc_free; ++ OCSP_RESPID_it; ++ EC_GROUP_new; ++ EVP_aes_256_cbc; ++ i2d_KRB5_PRINCNAME; ++ _ossl_old_des_encrypt2; ++ _ossl_old_des_encrypt3; ++ PKCS8_PRIV_KEY_INFO_it; ++ OCSP_REQINFO_it; ++ PBEPARAM_it; ++ KRB5_AUTHENTBODY_new; ++ X509_CRL_add0_revoked; ++ EDIPARTYNAME_it; ++ NETSCAPE_SPKI_it; ++ UI_get0_test_string; ++ ENGINE_get_cipher_engine; ++ ENGINE_register_all_ciphers; ++ EC_POINT_copy; ++ BN_kronecker; ++ _ossl_old_des_ede3_ofb64_encrypt; ++ _ossl_odes_ede3_ofb64_encrypt; ++ UI_method_get_reader; ++ OCSP_BASICRESP_get_ext_count; ++ ASN1_ENUMERATED_it; ++ UI_set_result; ++ i2d_KRB5_TICKET; ++ X509_print_ex_fp; ++ EVP_CIPHER_CTX_set_padding; ++ d2i_OCSP_RESPONSE; ++ ASN1_UTCTIME_it; ++ _ossl_old_des_enc_write; ++ OCSP_RESPONSE_new; ++ AES_set_encrypt_key; ++ OCSP_resp_count; ++ KRB5_CHECKSUM_new; ++ ENGINE_load_cswift; ++ OCSP_onereq_get0_id; ++ ENGINE_set_default_ciphers; ++ NOTICEREF_it; ++ X509V3_EXT_CRL_add_nconf; ++ OCSP_REVOKEDINFO_it; ++ AES_encrypt; ++ OCSP_REQUEST_new; ++ ASN1_ANY_it; ++ CRYPTO_ex_data_new_class; ++ _ossl_old_des_ncbc_encrypt; ++ i2d_KRB5_TKTBODY; ++ EC_POINT_clear_free; ++ AES_decrypt; ++ asn1_enc_init; ++ UI_get_result_maxsize; ++ OCSP_CERTID_new; ++ ENGINE_unregister_RAND; ++ UI_method_get_closer; ++ d2i_KRB5_ENCDATA; ++ OCSP_request_onereq_count; ++ OCSP_basic_verify; ++ KRB5_AUTHENTBODY_free; ++ ASN1_item_d2i; ++ ASN1_primitive_free; ++ i2d_EXTENDED_KEY_USAGE; ++ i2d_OCSP_SIGNATURE; ++ asn1_enc_save; ++ ENGINE_load_nuron; ++ _ossl_old_des_pcbc_encrypt; ++ PKCS12_MAC_DATA_it; ++ OCSP_accept_responses_new; ++ asn1_do_lock; ++ PKCS7_ATTR_VERIFY_it; ++ KRB5_APREQBODY_it; ++ i2d_OCSP_SINGLERESP; ++ ASN1_item_ex_new; ++ UI_add_verify_string; ++ _ossl_old_des_set_key; ++ KRB5_PRINCNAME_it; ++ EVP_DecryptInit_ex; ++ i2d_OCSP_CERTID; ++ ASN1_item_d2i_bio; ++ EC_POINT_dbl; ++ asn1_get_choice_selector; ++ i2d_KRB5_CHECKSUM; ++ ENGINE_set_table_flags; ++ AES_options; ++ ENGINE_load_chil; ++ OCSP_id_cmp; ++ OCSP_BASICRESP_new; ++ OCSP_REQUEST_get_ext_by_NID; ++ KRB5_APREQ_it; ++ ENGINE_get_destroy_function; ++ CONF_set_nconf; ++ ASN1_PRINTABLE_free; ++ OCSP_BASICRESP_get_ext_by_NID; ++ DIST_POINT_NAME_it; ++ X509V3_extensions_print; ++ _ossl_old_des_cfb64_encrypt; ++ X509_REVOKED_add1_ext_i2d; ++ _ossl_old_des_ofb_encrypt; ++ KRB5_TKTBODY_new; ++ ASN1_OCTET_STRING_it; ++ ERR_load_UI_strings; ++ i2d_KRB5_ENCKEY; ++ ASN1_template_new; ++ OCSP_SIGNATURE_free; ++ ASN1_item_i2d_fp; ++ KRB5_PRINCNAME_free; ++ PKCS7_RECIP_INFO_it; ++ EXTENDED_KEY_USAGE_it; ++ EC_GFp_simple_method; ++ EC_GROUP_precompute_mult; ++ OCSP_request_onereq_get0; ++ UI_method_set_writer; ++ KRB5_AUTHENT_new; ++ X509_CRL_INFO_it; ++ DSO_set_name_converter; ++ AES_set_decrypt_key; ++ PKCS7_DIGEST_it; ++ PKCS12_x5092certbag; ++ EVP_DigestInit_ex; ++ i2a_ACCESS_DESCRIPTION; ++ OCSP_RESPONSE_it; ++ PKCS7_ENC_CONTENT_it; ++ OCSP_request_add0_id; ++ EC_POINT_make_affine; ++ DSO_get_filename; ++ OCSP_CERTSTATUS_it; ++ OCSP_request_add1_cert; ++ UI_get0_output_string; ++ UI_dup_verify_string; ++ BN_mod_lshift; ++ KRB5_AUTHDATA_it; ++ asn1_set_choice_selector; ++ OCSP_basic_add1_status; ++ OCSP_RESPID_free; ++ asn1_get_field_ptr; ++ UI_add_input_string; ++ OCSP_CRLID_it; ++ i2d_KRB5_AUTHENTBODY; ++ OCSP_REQUEST_get_ext_count; ++ ENGINE_load_atalla; ++ X509_NAME_it; ++ USERNOTICE_it; ++ OCSP_REQINFO_new; ++ OCSP_BASICRESP_get_ext; ++ CRYPTO_get_ex_data_implementation; ++ CRYPTO_get_ex_data_impl; ++ ASN1_item_pack; ++ i2d_KRB5_ENCDATA; ++ X509_PURPOSE_set; ++ X509_REQ_INFO_it; ++ UI_method_set_opener; ++ ASN1_item_ex_free; ++ ASN1_BOOLEAN_it; ++ ENGINE_get_table_flags; ++ UI_create_method; ++ OCSP_ONEREQ_add1_ext_i2d; ++ _shadow_DES_check_key; ++ d2i_OCSP_REQINFO; ++ UI_add_info_string; ++ UI_get_result_minsize; ++ ASN1_NULL_it; ++ BN_mod_lshift1; ++ d2i_OCSP_ONEREQ; ++ OCSP_ONEREQ_new; ++ KRB5_TICKET_it; ++ EVP_aes_192_cbc; ++ KRB5_TICKET_free; ++ UI_new; ++ OCSP_response_create; ++ _ossl_old_des_xcbc_encrypt; ++ PKCS7_it; ++ OCSP_REQUEST_get_ext_by_critical; ++ OCSP_REQUEST_get_ext_by_crit; ++ ENGINE_set_flags; ++ _ossl_old_des_ecb_encrypt; ++ OCSP_response_get1_basic; ++ EVP_Digest; ++ OCSP_ONEREQ_delete_ext; ++ ASN1_TBOOLEAN_it; ++ ASN1_item_new; ++ ASN1_TIME_to_generalizedtime; ++ BIGNUM_it; ++ AES_cbc_encrypt; ++ ENGINE_get_load_privkey_function; ++ ENGINE_get_load_privkey_fn; ++ OCSP_RESPONSE_free; ++ UI_method_set_reader; ++ i2d_ASN1_T61STRING; ++ EC_POINT_set_to_infinity; ++ ERR_load_OCSP_strings; ++ EC_POINT_point2oct; ++ KRB5_APREQ_free; ++ ASN1_OBJECT_it; ++ OCSP_crlID_new; ++ OCSP_crlID2_new; ++ CONF_modules_load_file; ++ CONF_imodule_set_usr_data; ++ ENGINE_set_default_string; ++ CONF_module_get_usr_data; ++ ASN1_add_oid_module; ++ CONF_modules_finish; ++ OPENSSL_config; ++ CONF_modules_unload; ++ CONF_imodule_get_value; ++ CONF_module_set_usr_data; ++ CONF_parse_list; ++ CONF_module_add; ++ CONF_get1_default_config_file; ++ CONF_imodule_get_flags; ++ CONF_imodule_get_module; ++ CONF_modules_load; ++ CONF_imodule_get_name; ++ ERR_peek_top_error; ++ CONF_imodule_get_usr_data; ++ CONF_imodule_set_flags; ++ ENGINE_add_conf_module; ++ ERR_peek_last_error_line; ++ ERR_peek_last_error_line_data; ++ ERR_peek_last_error; ++ DES_read_2passwords; ++ DES_read_password; ++ UI_UTIL_read_pw; ++ UI_UTIL_read_pw_string; ++ ENGINE_load_aep; ++ ENGINE_load_sureware; ++ OPENSSL_add_all_algorithms_noconf; ++ OPENSSL_add_all_algo_noconf; ++ OPENSSL_add_all_algorithms_conf; ++ OPENSSL_add_all_algo_conf; ++ OPENSSL_load_builtin_modules; ++ AES_ofb128_encrypt; ++ AES_ctr128_encrypt; ++ AES_cfb128_encrypt; ++ ENGINE_load_4758cca; ++ _ossl_096_des_random_seed; ++ EVP_aes_256_ofb; ++ EVP_aes_192_ofb; ++ EVP_aes_128_cfb128; ++ EVP_aes_256_cfb128; ++ EVP_aes_128_ofb; ++ EVP_aes_192_cfb128; ++ CONF_modules_free; ++ NCONF_default; ++ OPENSSL_no_config; ++ NCONF_WIN32; ++ ASN1_UNIVERSALSTRING_new; ++ EVP_des_ede_ecb; ++ i2d_ASN1_UNIVERSALSTRING; ++ ASN1_UNIVERSALSTRING_free; ++ ASN1_UNIVERSALSTRING_it; ++ d2i_ASN1_UNIVERSALSTRING; ++ EVP_des_ede3_ecb; ++ X509_REQ_print_ex; ++ ENGINE_up_ref; ++ BUF_MEM_grow_clean; ++ CRYPTO_realloc_clean; ++ BUF_strlcat; ++ BIO_indent; ++ BUF_strlcpy; ++ OpenSSLDie; ++ OPENSSL_cleanse; ++ ENGINE_setup_bsd_cryptodev; ++ ERR_release_err_state_table; ++ EVP_aes_128_cfb8; ++ FIPS_corrupt_rsa; ++ FIPS_selftest_des; ++ EVP_aes_128_cfb1; ++ EVP_aes_192_cfb8; ++ FIPS_mode_set; ++ FIPS_selftest_dsa; ++ EVP_aes_256_cfb8; ++ FIPS_allow_md5; ++ DES_ede3_cfb_encrypt; ++ EVP_des_ede3_cfb8; ++ FIPS_rand_seeded; ++ AES_cfbr_encrypt_block; ++ AES_cfb8_encrypt; ++ FIPS_rand_seed; ++ FIPS_corrupt_des; ++ EVP_aes_192_cfb1; ++ FIPS_selftest_aes; ++ FIPS_set_prng_key; ++ EVP_des_cfb8; ++ FIPS_corrupt_dsa; ++ FIPS_test_mode; ++ FIPS_rand_method; ++ EVP_aes_256_cfb1; ++ ERR_load_FIPS_strings; ++ FIPS_corrupt_aes; ++ FIPS_selftest_sha1; ++ FIPS_selftest_rsa; ++ FIPS_corrupt_sha1; ++ EVP_des_cfb1; ++ FIPS_dsa_check; ++ AES_cfb1_encrypt; ++ EVP_des_ede3_cfb1; ++ FIPS_rand_check; ++ FIPS_md5_allowed; ++ FIPS_mode; ++ FIPS_selftest_failed; ++ sk_is_sorted; ++ X509_check_ca; ++ HMAC_CTX_set_flags; ++ d2i_PROXY_CERT_INFO_EXTENSION; ++ PROXY_POLICY_it; ++ i2d_PROXY_POLICY; ++ i2d_PROXY_CERT_INFO_EXTENSION; ++ d2i_PROXY_POLICY; ++ PROXY_CERT_INFO_EXTENSION_new; ++ PROXY_CERT_INFO_EXTENSION_free; ++ PROXY_CERT_INFO_EXTENSION_it; ++ PROXY_POLICY_free; ++ PROXY_POLICY_new; ++ BN_MONT_CTX_set_locked; ++ FIPS_selftest_rng; ++ EVP_sha384; ++ EVP_sha512; ++ EVP_sha224; ++ EVP_sha256; ++ FIPS_selftest_hmac; ++ FIPS_corrupt_rng; ++ BN_mod_exp_mont_consttime; ++ RSA_X931_hash_id; ++ RSA_padding_check_X931; ++ RSA_verify_PKCS1_PSS; ++ RSA_padding_add_X931; ++ RSA_padding_add_PKCS1_PSS; ++ PKCS1_MGF1; ++ BN_X931_generate_Xpq; ++ RSA_X931_generate_key; ++ BN_X931_derive_prime; ++ BN_X931_generate_prime; ++ RSA_X931_derive; ++ BIO_new_dgram; ++ BN_get0_nist_prime_384; ++ ERR_set_mark; ++ X509_STORE_CTX_set0_crls; ++ ENGINE_set_STORE; ++ ENGINE_register_ECDSA; ++ STORE_meth_set_list_start_fn; ++ STORE_method_set_list_start_function; ++ BN_BLINDING_invert_ex; ++ NAME_CONSTRAINTS_free; ++ STORE_ATTR_INFO_set_number; ++ BN_BLINDING_get_thread_id; ++ X509_STORE_CTX_set0_param; ++ POLICY_MAPPING_it; ++ STORE_parse_attrs_start; ++ POLICY_CONSTRAINTS_free; ++ EVP_PKEY_add1_attr_by_NID; ++ BN_nist_mod_192; ++ EC_GROUP_get_trinomial_basis; ++ STORE_set_method; ++ GENERAL_SUBTREE_free; ++ NAME_CONSTRAINTS_it; ++ ECDH_get_default_method; ++ PKCS12_add_safe; ++ EC_KEY_new_by_curve_name; ++ STORE_meth_get_update_store_fn; ++ STORE_method_get_update_store_function; ++ ENGINE_register_ECDH; ++ SHA512_Update; ++ i2d_ECPrivateKey; ++ BN_get0_nist_prime_192; ++ STORE_modify_certificate; ++ EC_POINT_set_affine_coordinates_GF2m; ++ EC_POINT_set_affine_coords_GF2m; ++ BN_GF2m_mod_exp_arr; ++ STORE_ATTR_INFO_modify_number; ++ X509_keyid_get0; ++ ENGINE_load_gmp; ++ pitem_new; ++ BN_GF2m_mod_mul_arr; ++ STORE_list_public_key_endp; ++ o2i_ECPublicKey; ++ EC_KEY_copy; ++ BIO_dump_fp; ++ X509_policy_node_get0_parent; ++ EC_GROUP_check_discriminant; ++ i2o_ECPublicKey; ++ EC_KEY_precompute_mult; ++ a2i_IPADDRESS; ++ STORE_meth_set_initialise_fn; ++ STORE_method_set_initialise_function; ++ X509_STORE_CTX_set_depth; ++ X509_VERIFY_PARAM_inherit; ++ EC_POINT_point2bn; ++ STORE_ATTR_INFO_set_dn; ++ X509_policy_tree_get0_policies; ++ EC_GROUP_new_curve_GF2m; ++ STORE_destroy_method; ++ ENGINE_unregister_STORE; ++ EVP_PKEY_get1_EC_KEY; ++ STORE_ATTR_INFO_get0_number; ++ ENGINE_get_default_ECDH; ++ EC_KEY_get_conv_form; ++ ASN1_OCTET_STRING_NDEF_it; ++ STORE_delete_public_key; ++ STORE_get_public_key; ++ STORE_modify_arbitrary; ++ ENGINE_get_static_state; ++ pqueue_iterator; ++ ECDSA_SIG_new; ++ OPENSSL_DIR_end; ++ BN_GF2m_mod_sqr; ++ EC_POINT_bn2point; ++ X509_VERIFY_PARAM_set_depth; ++ EC_KEY_set_asn1_flag; ++ STORE_get_method; ++ EC_KEY_get_key_method_data; ++ ECDSA_sign_ex; ++ STORE_parse_attrs_end; ++ EC_GROUP_get_point_conversion_form; ++ EC_GROUP_get_point_conv_form; ++ STORE_method_set_store_function; ++ STORE_ATTR_INFO_in; ++ PEM_read_bio_ECPKParameters; ++ EC_GROUP_get_pentanomial_basis; ++ EVP_PKEY_add1_attr_by_txt; ++ BN_BLINDING_set_flags; ++ X509_VERIFY_PARAM_set1_policies; ++ X509_VERIFY_PARAM_set1_name; ++ X509_VERIFY_PARAM_set_purpose; ++ STORE_get_number; ++ ECDSA_sign_setup; ++ BN_GF2m_mod_solve_quad_arr; ++ EC_KEY_up_ref; ++ POLICY_MAPPING_free; ++ BN_GF2m_mod_div; ++ X509_VERIFY_PARAM_set_flags; ++ EC_KEY_free; ++ STORE_meth_set_list_next_fn; ++ STORE_method_set_list_next_function; ++ PEM_write_bio_ECPrivateKey; ++ d2i_EC_PUBKEY; ++ STORE_meth_get_generate_fn; ++ STORE_method_get_generate_function; ++ STORE_meth_set_list_end_fn; ++ STORE_method_set_list_end_function; ++ pqueue_print; ++ EC_GROUP_have_precompute_mult; ++ EC_KEY_print_fp; ++ BN_GF2m_mod_arr; ++ PEM_write_bio_X509_CERT_PAIR; ++ EVP_PKEY_cmp; ++ X509_policy_level_node_count; ++ STORE_new_engine; ++ STORE_list_public_key_start; ++ X509_VERIFY_PARAM_new; ++ ECDH_get_ex_data; ++ EVP_PKEY_get_attr; ++ ECDSA_do_sign; ++ ENGINE_unregister_ECDH; ++ ECDH_OpenSSL; ++ EC_KEY_set_conv_form; ++ EC_POINT_dup; ++ GENERAL_SUBTREE_new; ++ STORE_list_crl_endp; ++ EC_get_builtin_curves; ++ X509_policy_node_get0_qualifiers; ++ X509_pcy_node_get0_qualifiers; ++ STORE_list_crl_end; ++ EVP_PKEY_set1_EC_KEY; ++ BN_GF2m_mod_sqrt_arr; ++ i2d_ECPrivateKey_bio; ++ ECPKParameters_print_fp; ++ pqueue_find; ++ ECDSA_SIG_free; ++ PEM_write_bio_ECPKParameters; ++ STORE_method_set_ctrl_function; ++ STORE_list_public_key_end; ++ EC_KEY_set_private_key; ++ pqueue_peek; ++ STORE_get_arbitrary; ++ STORE_store_crl; ++ X509_policy_node_get0_policy; ++ PKCS12_add_safes; ++ BN_BLINDING_convert_ex; ++ X509_policy_tree_free; ++ OPENSSL_ia32cap_loc; ++ BN_GF2m_poly2arr; ++ STORE_ctrl; ++ STORE_ATTR_INFO_compare; ++ BN_get0_nist_prime_224; ++ i2d_ECParameters; ++ i2d_ECPKParameters; ++ BN_GENCB_call; ++ d2i_ECPKParameters; ++ STORE_meth_set_generate_fn; ++ STORE_method_set_generate_function; ++ ENGINE_set_ECDH; ++ NAME_CONSTRAINTS_new; ++ SHA256_Init; ++ EC_KEY_get0_public_key; ++ PEM_write_bio_EC_PUBKEY; ++ STORE_ATTR_INFO_set_cstr; ++ STORE_list_crl_next; ++ STORE_ATTR_INFO_in_range; ++ ECParameters_print; ++ STORE_meth_set_delete_fn; ++ STORE_method_set_delete_function; ++ STORE_list_certificate_next; ++ ASN1_generate_nconf; ++ BUF_memdup; ++ BN_GF2m_mod_mul; ++ STORE_meth_get_list_next_fn; ++ STORE_method_get_list_next_function; ++ STORE_ATTR_INFO_get0_dn; ++ STORE_list_private_key_next; ++ EC_GROUP_set_seed; ++ X509_VERIFY_PARAM_set_trust; ++ STORE_ATTR_INFO_free; ++ STORE_get_private_key; ++ EVP_PKEY_get_attr_count; ++ STORE_ATTR_INFO_new; ++ EC_GROUP_get_curve_GF2m; ++ STORE_meth_set_revoke_fn; ++ STORE_method_set_revoke_function; ++ STORE_store_number; ++ BN_is_prime_ex; ++ STORE_revoke_public_key; ++ X509_STORE_CTX_get0_param; ++ STORE_delete_arbitrary; ++ PEM_read_X509_CERT_PAIR; ++ X509_STORE_set_depth; ++ ECDSA_get_ex_data; ++ SHA224; ++ BIO_dump_indent_fp; ++ EC_KEY_set_group; ++ BUF_strndup; ++ STORE_list_certificate_start; ++ BN_GF2m_mod; ++ X509_REQ_check_private_key; ++ EC_GROUP_get_seed_len; ++ ERR_load_STORE_strings; ++ PEM_read_bio_EC_PUBKEY; ++ STORE_list_private_key_end; ++ i2d_EC_PUBKEY; ++ ECDSA_get_default_method; ++ ASN1_put_eoc; ++ X509_STORE_CTX_get_explicit_policy; ++ X509_STORE_CTX_get_expl_policy; ++ X509_VERIFY_PARAM_table_cleanup; ++ STORE_modify_private_key; ++ X509_VERIFY_PARAM_free; ++ EC_METHOD_get_field_type; ++ EC_GFp_nist_method; ++ STORE_meth_set_modify_fn; ++ STORE_method_set_modify_function; ++ STORE_parse_attrs_next; ++ ENGINE_load_padlock; ++ EC_GROUP_set_curve_name; ++ X509_CERT_PAIR_it; ++ STORE_meth_get_revoke_fn; ++ STORE_method_get_revoke_function; ++ STORE_method_set_get_function; ++ STORE_modify_number; ++ STORE_method_get_store_function; ++ STORE_store_private_key; ++ BN_GF2m_mod_sqr_arr; ++ RSA_setup_blinding; ++ BIO_s_datagram; ++ STORE_Memory; ++ sk_find_ex; ++ EC_GROUP_set_curve_GF2m; ++ ENGINE_set_default_ECDSA; ++ POLICY_CONSTRAINTS_new; ++ BN_GF2m_mod_sqrt; ++ ECDH_set_default_method; ++ EC_KEY_generate_key; ++ SHA384_Update; ++ BN_GF2m_arr2poly; ++ STORE_method_get_get_function; ++ STORE_meth_set_cleanup_fn; ++ STORE_method_set_cleanup_function; ++ EC_GROUP_check; ++ d2i_ECPrivateKey_bio; ++ EC_KEY_insert_key_method_data; ++ STORE_meth_get_lock_store_fn; ++ STORE_method_get_lock_store_function; ++ X509_VERIFY_PARAM_get_depth; ++ SHA224_Final; ++ STORE_meth_set_update_store_fn; ++ STORE_method_set_update_store_function; ++ SHA224_Update; ++ d2i_ECPrivateKey; ++ ASN1_item_ndef_i2d; ++ STORE_delete_private_key; ++ ERR_pop_to_mark; ++ ENGINE_register_all_STORE; ++ X509_policy_level_get0_node; ++ i2d_PKCS7_NDEF; ++ EC_GROUP_get_degree; ++ ASN1_generate_v3; ++ STORE_ATTR_INFO_modify_cstr; ++ X509_policy_tree_level_count; ++ BN_GF2m_add; ++ EC_KEY_get0_group; ++ STORE_generate_crl; ++ STORE_store_public_key; ++ X509_CERT_PAIR_free; ++ STORE_revoke_private_key; ++ BN_nist_mod_224; ++ SHA512_Final; ++ STORE_ATTR_INFO_modify_dn; ++ STORE_meth_get_initialise_fn; ++ STORE_method_get_initialise_function; ++ STORE_delete_number; ++ i2d_EC_PUBKEY_bio; ++ BIO_dgram_non_fatal_error; ++ EC_GROUP_get_asn1_flag; ++ STORE_ATTR_INFO_in_ex; ++ STORE_list_crl_start; ++ ECDH_get_ex_new_index; ++ STORE_meth_get_modify_fn; ++ STORE_method_get_modify_function; ++ v2i_ASN1_BIT_STRING; ++ STORE_store_certificate; ++ OBJ_bsearch_ex; ++ X509_STORE_CTX_set_default; ++ STORE_ATTR_INFO_set_sha1str; ++ BN_GF2m_mod_inv; ++ BN_GF2m_mod_exp; ++ STORE_modify_public_key; ++ STORE_meth_get_list_start_fn; ++ STORE_method_get_list_start_function; ++ EC_GROUP_get0_seed; ++ STORE_store_arbitrary; ++ STORE_meth_set_unlock_store_fn; ++ STORE_method_set_unlock_store_function; ++ BN_GF2m_mod_div_arr; ++ ENGINE_set_ECDSA; ++ STORE_create_method; ++ ECPKParameters_print; ++ EC_KEY_get0_private_key; ++ PEM_write_EC_PUBKEY; ++ X509_VERIFY_PARAM_set1; ++ ECDH_set_method; ++ v2i_GENERAL_NAME_ex; ++ ECDH_set_ex_data; ++ STORE_generate_key; ++ BN_nist_mod_521; ++ X509_policy_tree_get0_level; ++ EC_GROUP_set_point_conversion_form; ++ EC_GROUP_set_point_conv_form; ++ PEM_read_EC_PUBKEY; ++ i2d_ECDSA_SIG; ++ ECDSA_OpenSSL; ++ STORE_delete_crl; ++ EC_KEY_get_enc_flags; ++ ASN1_const_check_infinite_end; ++ EVP_PKEY_delete_attr; ++ ECDSA_set_default_method; ++ EC_POINT_set_compressed_coordinates_GF2m; ++ EC_POINT_set_compr_coords_GF2m; ++ EC_GROUP_cmp; ++ STORE_revoke_certificate; ++ BN_get0_nist_prime_256; ++ STORE_meth_get_delete_fn; ++ STORE_method_get_delete_function; ++ SHA224_Init; ++ PEM_read_ECPrivateKey; ++ SHA512_Init; ++ STORE_parse_attrs_endp; ++ BN_set_negative; ++ ERR_load_ECDSA_strings; ++ EC_GROUP_get_basis_type; ++ STORE_list_public_key_next; ++ i2v_ASN1_BIT_STRING; ++ STORE_OBJECT_free; ++ BN_nist_mod_384; ++ i2d_X509_CERT_PAIR; ++ PEM_write_ECPKParameters; ++ ECDH_compute_key; ++ STORE_ATTR_INFO_get0_sha1str; ++ ENGINE_register_all_ECDH; ++ pqueue_pop; ++ STORE_ATTR_INFO_get0_cstr; ++ POLICY_CONSTRAINTS_it; ++ STORE_get_ex_new_index; ++ EVP_PKEY_get_attr_by_OBJ; ++ X509_VERIFY_PARAM_add0_policy; ++ BN_GF2m_mod_solve_quad; ++ SHA256; ++ i2d_ECPrivateKey_fp; ++ X509_policy_tree_get0_user_policies; ++ X509_pcy_tree_get0_usr_policies; ++ OPENSSL_DIR_read; ++ ENGINE_register_all_ECDSA; ++ X509_VERIFY_PARAM_lookup; ++ EC_POINT_get_affine_coordinates_GF2m; ++ EC_POINT_get_affine_coords_GF2m; ++ EC_GROUP_dup; ++ ENGINE_get_default_ECDSA; ++ EC_KEY_new; ++ SHA256_Transform; ++ EC_KEY_set_enc_flags; ++ ECDSA_verify; ++ EC_POINT_point2hex; ++ ENGINE_get_STORE; ++ SHA512; ++ STORE_get_certificate; ++ ECDSA_do_sign_ex; ++ ECDSA_do_verify; ++ d2i_ECPrivateKey_fp; ++ STORE_delete_certificate; ++ SHA512_Transform; ++ X509_STORE_set1_param; ++ STORE_method_get_ctrl_function; ++ STORE_free; ++ PEM_write_ECPrivateKey; ++ STORE_meth_get_unlock_store_fn; ++ STORE_method_get_unlock_store_function; ++ STORE_get_ex_data; ++ EC_KEY_set_public_key; ++ PEM_read_ECPKParameters; ++ X509_CERT_PAIR_new; ++ ENGINE_register_STORE; ++ RSA_generate_key_ex; ++ DSA_generate_parameters_ex; ++ ECParameters_print_fp; ++ X509V3_NAME_from_section; ++ EVP_PKEY_add1_attr; ++ STORE_modify_crl; ++ STORE_list_private_key_start; ++ POLICY_MAPPINGS_it; ++ GENERAL_SUBTREE_it; ++ EC_GROUP_get_curve_name; ++ PEM_write_X509_CERT_PAIR; ++ BIO_dump_indent_cb; ++ d2i_X509_CERT_PAIR; ++ STORE_list_private_key_endp; ++ asn1_const_Finish; ++ i2d_EC_PUBKEY_fp; ++ BN_nist_mod_256; ++ X509_VERIFY_PARAM_add0_table; ++ pqueue_free; ++ BN_BLINDING_create_param; ++ ECDSA_size; ++ d2i_EC_PUBKEY_bio; ++ BN_get0_nist_prime_521; ++ STORE_ATTR_INFO_modify_sha1str; ++ BN_generate_prime_ex; ++ EC_GROUP_new_by_curve_name; ++ SHA256_Final; ++ DH_generate_parameters_ex; ++ PEM_read_bio_ECPrivateKey; ++ STORE_meth_get_cleanup_fn; ++ STORE_method_get_cleanup_function; ++ ENGINE_get_ECDH; ++ d2i_ECDSA_SIG; ++ BN_is_prime_fasttest_ex; ++ ECDSA_sign; ++ X509_policy_check; ++ EVP_PKEY_get_attr_by_NID; ++ STORE_set_ex_data; ++ ENGINE_get_ECDSA; ++ EVP_ecdsa; ++ BN_BLINDING_get_flags; ++ PKCS12_add_cert; ++ STORE_OBJECT_new; ++ ERR_load_ECDH_strings; ++ EC_KEY_dup; ++ EVP_CIPHER_CTX_rand_key; ++ ECDSA_set_method; ++ a2i_IPADDRESS_NC; ++ d2i_ECParameters; ++ STORE_list_certificate_end; ++ STORE_get_crl; ++ X509_POLICY_NODE_print; ++ SHA384_Init; ++ EC_GF2m_simple_method; ++ ECDSA_set_ex_data; ++ SHA384_Final; ++ PKCS7_set_digest; ++ EC_KEY_print; ++ STORE_meth_set_lock_store_fn; ++ STORE_method_set_lock_store_function; ++ ECDSA_get_ex_new_index; ++ SHA384; ++ POLICY_MAPPING_new; ++ STORE_list_certificate_endp; ++ X509_STORE_CTX_get0_policy_tree; ++ EC_GROUP_set_asn1_flag; ++ EC_KEY_check_key; ++ d2i_EC_PUBKEY_fp; ++ PKCS7_set0_type_other; ++ PEM_read_bio_X509_CERT_PAIR; ++ pqueue_next; ++ STORE_meth_get_list_end_fn; ++ STORE_method_get_list_end_function; ++ EVP_PKEY_add1_attr_by_OBJ; ++ X509_VERIFY_PARAM_set_time; ++ pqueue_new; ++ ENGINE_set_default_ECDH; ++ STORE_new_method; ++ PKCS12_add_key; ++ DSO_merge; ++ EC_POINT_hex2point; ++ BIO_dump_cb; ++ SHA256_Update; ++ pqueue_insert; ++ pitem_free; ++ BN_GF2m_mod_inv_arr; ++ ENGINE_unregister_ECDSA; ++ BN_BLINDING_set_thread_id; ++ get_rfc3526_prime_8192; ++ X509_VERIFY_PARAM_clear_flags; ++ get_rfc2409_prime_1024; ++ DH_check_pub_key; ++ get_rfc3526_prime_2048; ++ get_rfc3526_prime_6144; ++ get_rfc3526_prime_1536; ++ get_rfc3526_prime_3072; ++ get_rfc3526_prime_4096; ++ get_rfc2409_prime_768; ++ X509_VERIFY_PARAM_get_flags; ++ EVP_CIPHER_CTX_new; ++ EVP_CIPHER_CTX_free; ++ Camellia_cbc_encrypt; ++ Camellia_cfb128_encrypt; ++ Camellia_cfb1_encrypt; ++ Camellia_cfb8_encrypt; ++ Camellia_ctr128_encrypt; ++ Camellia_cfbr_encrypt_block; ++ Camellia_decrypt; ++ Camellia_ecb_encrypt; ++ Camellia_encrypt; ++ Camellia_ofb128_encrypt; ++ Camellia_set_key; ++ EVP_camellia_128_cbc; ++ EVP_camellia_128_cfb128; ++ EVP_camellia_128_cfb1; ++ EVP_camellia_128_cfb8; ++ EVP_camellia_128_ecb; ++ EVP_camellia_128_ofb; ++ EVP_camellia_192_cbc; ++ EVP_camellia_192_cfb128; ++ EVP_camellia_192_cfb1; ++ EVP_camellia_192_cfb8; ++ EVP_camellia_192_ecb; ++ EVP_camellia_192_ofb; ++ EVP_camellia_256_cbc; ++ EVP_camellia_256_cfb128; ++ EVP_camellia_256_cfb1; ++ EVP_camellia_256_cfb8; ++ EVP_camellia_256_ecb; ++ EVP_camellia_256_ofb; ++ a2i_ipadd; ++ ASIdentifiers_free; ++ i2d_ASIdOrRange; ++ EVP_CIPHER_block_size; ++ v3_asid_is_canonical; ++ IPAddressChoice_free; ++ EVP_CIPHER_CTX_set_app_data; ++ BIO_set_callback_arg; ++ v3_addr_add_prefix; ++ IPAddressOrRange_it; ++ BIO_set_flags; ++ ASIdentifiers_it; ++ v3_addr_get_range; ++ BIO_method_type; ++ v3_addr_inherits; ++ IPAddressChoice_it; ++ AES_ige_encrypt; ++ v3_addr_add_range; ++ EVP_CIPHER_CTX_nid; ++ d2i_ASRange; ++ v3_addr_add_inherit; ++ v3_asid_add_id_or_range; ++ v3_addr_validate_resource_set; ++ EVP_CIPHER_iv_length; ++ EVP_MD_type; ++ v3_asid_canonize; ++ IPAddressRange_free; ++ v3_asid_add_inherit; ++ EVP_CIPHER_CTX_key_length; ++ IPAddressRange_new; ++ ASIdOrRange_new; ++ EVP_MD_size; ++ EVP_MD_CTX_test_flags; ++ BIO_clear_flags; ++ i2d_ASRange; ++ IPAddressRange_it; ++ IPAddressChoice_new; ++ ASIdentifierChoice_new; ++ ASRange_free; ++ EVP_MD_pkey_type; ++ EVP_MD_CTX_clear_flags; ++ IPAddressFamily_free; ++ i2d_IPAddressFamily; ++ IPAddressOrRange_new; ++ EVP_CIPHER_flags; ++ v3_asid_validate_resource_set; ++ d2i_IPAddressRange; ++ AES_bi_ige_encrypt; ++ BIO_get_callback; ++ IPAddressOrRange_free; ++ v3_addr_subset; ++ d2i_IPAddressFamily; ++ v3_asid_subset; ++ BIO_test_flags; ++ i2d_ASIdentifierChoice; ++ ASRange_it; ++ d2i_ASIdentifiers; ++ ASRange_new; ++ d2i_IPAddressChoice; ++ v3_addr_get_afi; ++ EVP_CIPHER_key_length; ++ EVP_Cipher; ++ i2d_IPAddressOrRange; ++ ASIdOrRange_it; ++ EVP_CIPHER_nid; ++ i2d_IPAddressChoice; ++ EVP_CIPHER_CTX_block_size; ++ ASIdentifiers_new; ++ v3_addr_validate_path; ++ IPAddressFamily_new; ++ EVP_MD_CTX_set_flags; ++ v3_addr_is_canonical; ++ i2d_IPAddressRange; ++ IPAddressFamily_it; ++ v3_asid_inherits; ++ EVP_CIPHER_CTX_cipher; ++ EVP_CIPHER_CTX_get_app_data; ++ EVP_MD_block_size; ++ EVP_CIPHER_CTX_flags; ++ v3_asid_validate_path; ++ d2i_IPAddressOrRange; ++ v3_addr_canonize; ++ ASIdentifierChoice_it; ++ EVP_MD_CTX_md; ++ d2i_ASIdentifierChoice; ++ BIO_method_name; ++ EVP_CIPHER_CTX_iv_length; ++ ASIdOrRange_free; ++ ASIdentifierChoice_free; ++ BIO_get_callback_arg; ++ BIO_set_callback; ++ d2i_ASIdOrRange; ++ i2d_ASIdentifiers; ++ SEED_decrypt; ++ SEED_encrypt; ++ SEED_cbc_encrypt; ++ EVP_seed_ofb; ++ SEED_cfb128_encrypt; ++ SEED_ofb128_encrypt; ++ EVP_seed_cbc; ++ SEED_ecb_encrypt; ++ EVP_seed_ecb; ++ SEED_set_key; ++ EVP_seed_cfb128; ++ X509_EXTENSIONS_it; ++ X509_get1_ocsp; ++ OCSP_REQ_CTX_free; ++ i2d_X509_EXTENSIONS; ++ OCSP_sendreq_nbio; ++ OCSP_sendreq_new; ++ d2i_X509_EXTENSIONS; ++ X509_ALGORS_it; ++ X509_ALGOR_get0; ++ X509_ALGOR_set0; ++ AES_unwrap_key; ++ AES_wrap_key; ++ X509at_get0_data_by_OBJ; ++ ASN1_TYPE_set1; ++ ASN1_STRING_set0; ++ i2d_X509_ALGORS; ++ BIO_f_zlib; ++ COMP_zlib_cleanup; ++ d2i_X509_ALGORS; ++ CMS_ReceiptRequest_free; ++ PEM_write_CMS; ++ CMS_add0_CertificateChoices; ++ CMS_unsigned_add1_attr_by_OBJ; ++ ERR_load_CMS_strings; ++ CMS_sign_receipt; ++ i2d_CMS_ContentInfo; ++ CMS_signed_delete_attr; ++ d2i_CMS_bio; ++ CMS_unsigned_get_attr_by_NID; ++ CMS_verify; ++ SMIME_read_CMS; ++ CMS_decrypt_set1_key; ++ CMS_SignerInfo_get0_algs; ++ CMS_add1_cert; ++ CMS_set_detached; ++ CMS_encrypt; ++ CMS_EnvelopedData_create; ++ CMS_uncompress; ++ CMS_add0_crl; ++ CMS_SignerInfo_verify_content; ++ CMS_unsigned_get0_data_by_OBJ; ++ PEM_write_bio_CMS; ++ CMS_unsigned_get_attr; ++ CMS_RecipientInfo_ktri_cert_cmp; ++ CMS_RecipientInfo_ktri_get0_algs; ++ CMS_RecipInfo_ktri_get0_algs; ++ CMS_ContentInfo_free; ++ CMS_final; ++ CMS_add_simple_smimecap; ++ CMS_SignerInfo_verify; ++ CMS_data; ++ CMS_ContentInfo_it; ++ d2i_CMS_ReceiptRequest; ++ CMS_compress; ++ CMS_digest_create; ++ CMS_SignerInfo_cert_cmp; ++ CMS_SignerInfo_sign; ++ CMS_data_create; ++ i2d_CMS_bio; ++ CMS_EncryptedData_set1_key; ++ CMS_decrypt; ++ int_smime_write_ASN1; ++ CMS_unsigned_delete_attr; ++ CMS_unsigned_get_attr_count; ++ CMS_add_smimecap; ++ PEM_read_CMS; ++ CMS_signed_get_attr_by_OBJ; ++ d2i_CMS_ContentInfo; ++ CMS_add_standard_smimecap; ++ CMS_ContentInfo_new; ++ CMS_RecipientInfo_type; ++ CMS_get0_type; ++ CMS_is_detached; ++ CMS_sign; ++ CMS_signed_add1_attr; ++ CMS_unsigned_get_attr_by_OBJ; ++ SMIME_write_CMS; ++ CMS_EncryptedData_decrypt; ++ CMS_get0_RecipientInfos; ++ CMS_add0_RevocationInfoChoice; ++ CMS_decrypt_set1_pkey; ++ CMS_SignerInfo_set1_signer_cert; ++ CMS_get0_signers; ++ CMS_ReceiptRequest_get0_values; ++ CMS_signed_get0_data_by_OBJ; ++ CMS_get0_SignerInfos; ++ CMS_add0_cert; ++ CMS_EncryptedData_encrypt; ++ CMS_digest_verify; ++ CMS_set1_signers_certs; ++ CMS_signed_get_attr; ++ CMS_RecipientInfo_set0_key; ++ CMS_SignedData_init; ++ CMS_RecipientInfo_kekri_get0_id; ++ CMS_verify_receipt; ++ CMS_ReceiptRequest_it; ++ PEM_read_bio_CMS; ++ CMS_get1_crls; ++ CMS_add0_recipient_key; ++ SMIME_read_ASN1; ++ CMS_ReceiptRequest_new; ++ CMS_get0_content; ++ CMS_get1_ReceiptRequest; ++ CMS_signed_add1_attr_by_OBJ; ++ CMS_RecipientInfo_kekri_id_cmp; ++ CMS_add1_ReceiptRequest; ++ CMS_SignerInfo_get0_signer_id; ++ CMS_unsigned_add1_attr_by_NID; ++ CMS_unsigned_add1_attr; ++ CMS_signed_get_attr_by_NID; ++ CMS_get1_certs; ++ CMS_signed_add1_attr_by_NID; ++ CMS_unsigned_add1_attr_by_txt; ++ CMS_dataFinal; ++ CMS_RecipientInfo_ktri_get0_signer_id; ++ CMS_RecipInfo_ktri_get0_sigr_id; ++ i2d_CMS_ReceiptRequest; ++ CMS_add1_recipient_cert; ++ CMS_dataInit; ++ CMS_signed_add1_attr_by_txt; ++ CMS_RecipientInfo_decrypt; ++ CMS_signed_get_attr_count; ++ CMS_get0_eContentType; ++ CMS_set1_eContentType; ++ CMS_ReceiptRequest_create0; ++ CMS_add1_signer; ++ CMS_RecipientInfo_set0_pkey; ++ ENGINE_set_load_ssl_client_cert_function; ++ ENGINE_set_ld_ssl_clnt_cert_fn; ++ ENGINE_get_ssl_client_cert_function; ++ ENGINE_get_ssl_client_cert_fn; ++ ENGINE_load_ssl_client_cert; ++ ENGINE_load_capi; ++ OPENSSL_isservice; ++ FIPS_dsa_sig_decode; ++ EVP_CIPHER_CTX_clear_flags; ++ FIPS_rand_status; ++ FIPS_rand_set_key; ++ CRYPTO_set_mem_info_functions; ++ RSA_X931_generate_key_ex; ++ int_ERR_set_state_func; ++ int_EVP_MD_set_engine_callbacks; ++ int_CRYPTO_set_do_dynlock_callback; ++ FIPS_rng_stick; ++ EVP_CIPHER_CTX_set_flags; ++ BN_X931_generate_prime_ex; ++ FIPS_selftest_check; ++ FIPS_rand_set_dt; ++ CRYPTO_dbg_pop_info; ++ FIPS_dsa_free; ++ RSA_X931_derive_ex; ++ FIPS_rsa_new; ++ FIPS_rand_bytes; ++ fips_cipher_test; ++ EVP_CIPHER_CTX_test_flags; ++ CRYPTO_malloc_debug_init; ++ CRYPTO_dbg_push_info; ++ FIPS_corrupt_rsa_keygen; ++ FIPS_dh_new; ++ FIPS_corrupt_dsa_keygen; ++ FIPS_dh_free; ++ fips_pkey_signature_test; ++ EVP_add_alg_module; ++ int_RAND_init_engine_callbacks; ++ int_EVP_CIPHER_set_engine_callbacks; ++ int_EVP_MD_init_engine_callbacks; ++ FIPS_rand_test_mode; ++ FIPS_rand_reset; ++ FIPS_dsa_new; ++ int_RAND_set_callbacks; ++ BN_X931_derive_prime_ex; ++ int_ERR_lib_init; ++ int_EVP_CIPHER_init_engine_callbacks; ++ FIPS_rsa_free; ++ FIPS_dsa_sig_encode; ++ CRYPTO_dbg_remove_all_info; ++ OPENSSL_init; ++ CRYPTO_strdup; ++ JPAKE_STEP3A_process; ++ JPAKE_STEP1_release; ++ JPAKE_get_shared_key; ++ JPAKE_STEP3B_init; ++ JPAKE_STEP1_generate; ++ JPAKE_STEP1_init; ++ JPAKE_STEP3B_process; ++ JPAKE_STEP2_generate; ++ JPAKE_CTX_new; ++ JPAKE_CTX_free; ++ JPAKE_STEP3B_release; ++ JPAKE_STEP3A_release; ++ JPAKE_STEP2_process; ++ JPAKE_STEP3B_generate; ++ JPAKE_STEP1_process; ++ JPAKE_STEP3A_generate; ++ JPAKE_STEP2_release; ++ JPAKE_STEP3A_init; ++ ERR_load_JPAKE_strings; ++ JPAKE_STEP2_init; ++ pqueue_size; ++ i2d_TS_ACCURACY; ++ i2d_TS_MSG_IMPRINT_fp; ++ i2d_TS_MSG_IMPRINT; ++ EVP_PKEY_print_public; ++ EVP_PKEY_CTX_new; ++ i2d_TS_TST_INFO; ++ EVP_PKEY_asn1_find; ++ DSO_METHOD_beos; ++ TS_CONF_load_cert; ++ TS_REQ_get_ext; ++ EVP_PKEY_sign_init; ++ ASN1_item_print; ++ TS_TST_INFO_set_nonce; ++ TS_RESP_dup; ++ ENGINE_register_pkey_meths; ++ EVP_PKEY_asn1_add0; ++ PKCS7_add0_attrib_signing_time; ++ i2d_TS_TST_INFO_fp; ++ BIO_asn1_get_prefix; ++ TS_TST_INFO_set_time; ++ EVP_PKEY_meth_set_decrypt; ++ EVP_PKEY_set_type_str; ++ EVP_PKEY_CTX_get_keygen_info; ++ TS_REQ_set_policy_id; ++ d2i_TS_RESP_fp; ++ ENGINE_get_pkey_asn1_meth_engine; ++ ENGINE_get_pkey_asn1_meth_eng; ++ WHIRLPOOL_Init; ++ TS_RESP_set_status_info; ++ EVP_PKEY_keygen; ++ EVP_DigestSignInit; ++ TS_ACCURACY_set_millis; ++ TS_REQ_dup; ++ GENERAL_NAME_dup; ++ ASN1_SEQUENCE_ANY_it; ++ WHIRLPOOL; ++ X509_STORE_get1_crls; ++ ENGINE_get_pkey_asn1_meth; ++ EVP_PKEY_asn1_new; ++ BIO_new_NDEF; ++ ENGINE_get_pkey_meth; ++ TS_MSG_IMPRINT_set_algo; ++ i2d_TS_TST_INFO_bio; ++ TS_TST_INFO_set_ordering; ++ TS_TST_INFO_get_ext_by_OBJ; ++ CRYPTO_THREADID_set_pointer; ++ TS_CONF_get_tsa_section; ++ SMIME_write_ASN1; ++ TS_RESP_CTX_set_signer_key; ++ EVP_PKEY_encrypt_old; ++ EVP_PKEY_encrypt_init; ++ CRYPTO_THREADID_cpy; ++ ASN1_PCTX_get_cert_flags; ++ i2d_ESS_SIGNING_CERT; ++ TS_CONF_load_key; ++ i2d_ASN1_SEQUENCE_ANY; ++ d2i_TS_MSG_IMPRINT_bio; ++ EVP_PKEY_asn1_set_public; ++ b2i_PublicKey_bio; ++ BIO_asn1_set_prefix; ++ EVP_PKEY_new_mac_key; ++ BIO_new_CMS; ++ CRYPTO_THREADID_cmp; ++ TS_REQ_ext_free; ++ EVP_PKEY_asn1_set_free; ++ EVP_PKEY_get0_asn1; ++ d2i_NETSCAPE_X509; ++ EVP_PKEY_verify_recover_init; ++ EVP_PKEY_CTX_set_data; ++ EVP_PKEY_keygen_init; ++ TS_RESP_CTX_set_status_info; ++ TS_MSG_IMPRINT_get_algo; ++ TS_REQ_print_bio; ++ EVP_PKEY_CTX_ctrl_str; ++ EVP_PKEY_get_default_digest_nid; ++ PEM_write_bio_PKCS7_stream; ++ TS_MSG_IMPRINT_print_bio; ++ BN_asc2bn; ++ TS_REQ_get_policy_id; ++ ENGINE_set_default_pkey_asn1_meths; ++ ENGINE_set_def_pkey_asn1_meths; ++ d2i_TS_ACCURACY; ++ DSO_global_lookup; ++ TS_CONF_set_tsa_name; ++ i2d_ASN1_SET_ANY; ++ ENGINE_load_gost; ++ WHIRLPOOL_BitUpdate; ++ ASN1_PCTX_get_flags; ++ TS_TST_INFO_get_ext_by_NID; ++ TS_RESP_new; ++ ESS_CERT_ID_dup; ++ TS_STATUS_INFO_dup; ++ TS_REQ_delete_ext; ++ EVP_DigestVerifyFinal; ++ EVP_PKEY_print_params; ++ i2d_CMS_bio_stream; ++ TS_REQ_get_msg_imprint; ++ OBJ_find_sigid_by_algs; ++ TS_TST_INFO_get_serial; ++ TS_REQ_get_nonce; ++ X509_PUBKEY_set0_param; ++ EVP_PKEY_CTX_set0_keygen_info; ++ DIST_POINT_set_dpname; ++ i2d_ISSUING_DIST_POINT; ++ ASN1_SET_ANY_it; ++ EVP_PKEY_CTX_get_data; ++ TS_STATUS_INFO_print_bio; ++ EVP_PKEY_derive_init; ++ d2i_TS_TST_INFO; ++ EVP_PKEY_asn1_add_alias; ++ d2i_TS_RESP_bio; ++ OTHERNAME_cmp; ++ GENERAL_NAME_set0_value; ++ PKCS7_RECIP_INFO_get0_alg; ++ TS_RESP_CTX_new; ++ TS_RESP_set_tst_info; ++ PKCS7_final; ++ EVP_PKEY_base_id; ++ TS_RESP_CTX_set_signer_cert; ++ TS_REQ_set_msg_imprint; ++ EVP_PKEY_CTX_ctrl; ++ TS_CONF_set_digests; ++ d2i_TS_MSG_IMPRINT; ++ EVP_PKEY_meth_set_ctrl; ++ TS_REQ_get_ext_by_NID; ++ PKCS5_pbe_set0_algor; ++ BN_BLINDING_thread_id; ++ TS_ACCURACY_new; ++ X509_CRL_METHOD_free; ++ ASN1_PCTX_get_nm_flags; ++ EVP_PKEY_meth_set_sign; ++ CRYPTO_THREADID_current; ++ EVP_PKEY_decrypt_init; ++ NETSCAPE_X509_free; ++ i2b_PVK_bio; ++ EVP_PKEY_print_private; ++ GENERAL_NAME_get0_value; ++ b2i_PVK_bio; ++ ASN1_UTCTIME_adj; ++ TS_TST_INFO_new; ++ EVP_MD_do_all_sorted; ++ TS_CONF_set_default_engine; ++ TS_ACCURACY_set_seconds; ++ TS_TST_INFO_get_time; ++ PKCS8_pkey_get0; ++ EVP_PKEY_asn1_get0; ++ OBJ_add_sigid; ++ PKCS7_SIGNER_INFO_sign; ++ EVP_PKEY_paramgen_init; ++ EVP_PKEY_sign; ++ OBJ_sigid_free; ++ EVP_PKEY_meth_set_init; ++ d2i_ESS_ISSUER_SERIAL; ++ ISSUING_DIST_POINT_new; ++ ASN1_TIME_adj; ++ TS_OBJ_print_bio; ++ EVP_PKEY_meth_set_verify_recover; ++ EVP_PKEY_meth_set_vrfy_recover; ++ TS_RESP_get_status_info; ++ CMS_stream; ++ EVP_PKEY_CTX_set_cb; ++ PKCS7_to_TS_TST_INFO; ++ ASN1_PCTX_get_oid_flags; ++ TS_TST_INFO_add_ext; ++ EVP_PKEY_meth_set_derive; ++ i2d_TS_RESP_fp; ++ i2d_TS_MSG_IMPRINT_bio; ++ TS_RESP_CTX_set_accuracy; ++ TS_REQ_set_nonce; ++ ESS_CERT_ID_new; ++ ENGINE_pkey_asn1_find_str; ++ TS_REQ_get_ext_count; ++ BUF_reverse; ++ TS_TST_INFO_print_bio; ++ d2i_ISSUING_DIST_POINT; ++ ENGINE_get_pkey_meths; ++ i2b_PrivateKey_bio; ++ i2d_TS_RESP; ++ b2i_PublicKey; ++ TS_VERIFY_CTX_cleanup; ++ TS_STATUS_INFO_free; ++ TS_RESP_verify_token; ++ OBJ_bsearch_ex_; ++ ASN1_bn_print; ++ EVP_PKEY_asn1_get_count; ++ ENGINE_register_pkey_asn1_meths; ++ ASN1_PCTX_set_nm_flags; ++ EVP_DigestVerifyInit; ++ ENGINE_set_default_pkey_meths; ++ TS_TST_INFO_get_policy_id; ++ TS_REQ_get_cert_req; ++ X509_CRL_set_meth_data; ++ PKCS8_pkey_set0; ++ ASN1_STRING_copy; ++ d2i_TS_TST_INFO_fp; ++ X509_CRL_match; ++ EVP_PKEY_asn1_set_private; ++ TS_TST_INFO_get_ext_d2i; ++ TS_RESP_CTX_add_policy; ++ d2i_TS_RESP; ++ TS_CONF_load_certs; ++ TS_TST_INFO_get_msg_imprint; ++ ERR_load_TS_strings; ++ TS_TST_INFO_get_version; ++ EVP_PKEY_CTX_dup; ++ EVP_PKEY_meth_set_verify; ++ i2b_PublicKey_bio; ++ TS_CONF_set_certs; ++ EVP_PKEY_asn1_get0_info; ++ TS_VERIFY_CTX_free; ++ TS_REQ_get_ext_by_critical; ++ TS_RESP_CTX_set_serial_cb; ++ X509_CRL_get_meth_data; ++ TS_RESP_CTX_set_time_cb; ++ TS_MSG_IMPRINT_get_msg; ++ TS_TST_INFO_ext_free; ++ TS_REQ_get_version; ++ TS_REQ_add_ext; ++ EVP_PKEY_CTX_set_app_data; ++ OBJ_bsearch_; ++ EVP_PKEY_meth_set_verifyctx; ++ i2d_PKCS7_bio_stream; ++ CRYPTO_THREADID_set_numeric; ++ PKCS7_sign_add_signer; ++ d2i_TS_TST_INFO_bio; ++ TS_TST_INFO_get_ordering; ++ TS_RESP_print_bio; ++ TS_TST_INFO_get_exts; ++ HMAC_CTX_copy; ++ PKCS5_pbe2_set_iv; ++ ENGINE_get_pkey_asn1_meths; ++ b2i_PrivateKey; ++ EVP_PKEY_CTX_get_app_data; ++ TS_REQ_set_cert_req; ++ CRYPTO_THREADID_set_callback; ++ TS_CONF_set_serial; ++ TS_TST_INFO_free; ++ d2i_TS_REQ_fp; ++ TS_RESP_verify_response; ++ i2d_ESS_ISSUER_SERIAL; ++ TS_ACCURACY_get_seconds; ++ EVP_CIPHER_do_all; ++ b2i_PrivateKey_bio; ++ OCSP_CERTID_dup; ++ X509_PUBKEY_get0_param; ++ TS_MSG_IMPRINT_dup; ++ PKCS7_print_ctx; ++ i2d_TS_REQ_bio; ++ EVP_whirlpool; ++ EVP_PKEY_asn1_set_param; ++ EVP_PKEY_meth_set_encrypt; ++ ASN1_PCTX_set_flags; ++ i2d_ESS_CERT_ID; ++ TS_VERIFY_CTX_new; ++ TS_RESP_CTX_set_extension_cb; ++ ENGINE_register_all_pkey_meths; ++ TS_RESP_CTX_set_status_info_cond; ++ TS_RESP_CTX_set_stat_info_cond; ++ EVP_PKEY_verify; ++ WHIRLPOOL_Final; ++ X509_CRL_METHOD_new; ++ EVP_DigestSignFinal; ++ TS_RESP_CTX_set_def_policy; ++ NETSCAPE_X509_it; ++ TS_RESP_create_response; ++ PKCS7_SIGNER_INFO_get0_algs; ++ TS_TST_INFO_get_nonce; ++ EVP_PKEY_decrypt_old; ++ TS_TST_INFO_set_policy_id; ++ TS_CONF_set_ess_cert_id_chain; ++ EVP_PKEY_CTX_get0_pkey; ++ d2i_TS_REQ; ++ EVP_PKEY_asn1_find_str; ++ BIO_f_asn1; ++ ESS_SIGNING_CERT_new; ++ EVP_PBE_find; ++ X509_CRL_get0_by_cert; ++ EVP_PKEY_derive; ++ i2d_TS_REQ; ++ TS_TST_INFO_delete_ext; ++ ESS_ISSUER_SERIAL_free; ++ ASN1_PCTX_set_str_flags; ++ ENGINE_get_pkey_asn1_meth_str; ++ TS_CONF_set_signer_key; ++ TS_ACCURACY_get_millis; ++ TS_RESP_get_token; ++ TS_ACCURACY_dup; ++ ENGINE_register_all_pkey_asn1_meths; ++ ENGINE_reg_all_pkey_asn1_meths; ++ X509_CRL_set_default_method; ++ CRYPTO_THREADID_hash; ++ CMS_ContentInfo_print_ctx; ++ TS_RESP_free; ++ ISSUING_DIST_POINT_free; ++ ESS_ISSUER_SERIAL_new; ++ CMS_add1_crl; ++ PKCS7_add1_attrib_digest; ++ TS_RESP_CTX_add_md; ++ TS_TST_INFO_dup; ++ ENGINE_set_pkey_asn1_meths; ++ PEM_write_bio_Parameters; ++ TS_TST_INFO_get_accuracy; ++ X509_CRL_get0_by_serial; ++ TS_TST_INFO_set_version; ++ TS_RESP_CTX_get_tst_info; ++ TS_RESP_verify_signature; ++ CRYPTO_THREADID_get_callback; ++ TS_TST_INFO_get_tsa; ++ TS_STATUS_INFO_new; ++ EVP_PKEY_CTX_get_cb; ++ TS_REQ_get_ext_d2i; ++ GENERAL_NAME_set0_othername; ++ TS_TST_INFO_get_ext_count; ++ TS_RESP_CTX_get_request; ++ i2d_NETSCAPE_X509; ++ ENGINE_get_pkey_meth_engine; ++ EVP_PKEY_meth_set_signctx; ++ EVP_PKEY_asn1_copy; ++ ASN1_TYPE_cmp; ++ EVP_CIPHER_do_all_sorted; ++ EVP_PKEY_CTX_free; ++ ISSUING_DIST_POINT_it; ++ d2i_TS_MSG_IMPRINT_fp; ++ X509_STORE_get1_certs; ++ EVP_PKEY_CTX_get_operation; ++ d2i_ESS_SIGNING_CERT; ++ TS_CONF_set_ordering; ++ EVP_PBE_alg_add_type; ++ TS_REQ_set_version; ++ EVP_PKEY_get0; ++ BIO_asn1_set_suffix; ++ i2d_TS_STATUS_INFO; ++ EVP_MD_do_all; ++ TS_TST_INFO_set_accuracy; ++ PKCS7_add_attrib_content_type; ++ ERR_remove_thread_state; ++ EVP_PKEY_meth_add0; ++ TS_TST_INFO_set_tsa; ++ EVP_PKEY_meth_new; ++ WHIRLPOOL_Update; ++ TS_CONF_set_accuracy; ++ ASN1_PCTX_set_oid_flags; ++ ESS_SIGNING_CERT_dup; ++ d2i_TS_REQ_bio; ++ X509_time_adj_ex; ++ TS_RESP_CTX_add_flags; ++ d2i_TS_STATUS_INFO; ++ TS_MSG_IMPRINT_set_msg; ++ BIO_asn1_get_suffix; ++ TS_REQ_free; ++ EVP_PKEY_meth_free; ++ TS_REQ_get_exts; ++ TS_RESP_CTX_set_clock_precision_digits; ++ TS_RESP_CTX_set_clk_prec_digits; ++ TS_RESP_CTX_add_failure_info; ++ i2d_TS_RESP_bio; ++ EVP_PKEY_CTX_get0_peerkey; ++ PEM_write_bio_CMS_stream; ++ TS_REQ_new; ++ TS_MSG_IMPRINT_new; ++ EVP_PKEY_meth_find; ++ EVP_PKEY_id; ++ TS_TST_INFO_set_serial; ++ a2i_GENERAL_NAME; ++ TS_CONF_set_crypto_device; ++ EVP_PKEY_verify_init; ++ TS_CONF_set_policies; ++ ASN1_PCTX_new; ++ ESS_CERT_ID_free; ++ ENGINE_unregister_pkey_meths; ++ TS_MSG_IMPRINT_free; ++ TS_VERIFY_CTX_init; ++ PKCS7_stream; ++ TS_RESP_CTX_set_certs; ++ TS_CONF_set_def_policy; ++ ASN1_GENERALIZEDTIME_adj; ++ NETSCAPE_X509_new; ++ TS_ACCURACY_free; ++ TS_RESP_get_tst_info; ++ EVP_PKEY_derive_set_peer; ++ PEM_read_bio_Parameters; ++ TS_CONF_set_clock_precision_digits; ++ TS_CONF_set_clk_prec_digits; ++ ESS_ISSUER_SERIAL_dup; ++ TS_ACCURACY_get_micros; ++ ASN1_PCTX_get_str_flags; ++ NAME_CONSTRAINTS_check; ++ ASN1_BIT_STRING_check; ++ X509_check_akid; ++ ENGINE_unregister_pkey_asn1_meths; ++ ENGINE_unreg_pkey_asn1_meths; ++ ASN1_PCTX_free; ++ PEM_write_bio_ASN1_stream; ++ i2d_ASN1_bio_stream; ++ TS_X509_ALGOR_print_bio; ++ EVP_PKEY_meth_set_cleanup; ++ EVP_PKEY_asn1_free; ++ ESS_SIGNING_CERT_free; ++ TS_TST_INFO_set_msg_imprint; ++ GENERAL_NAME_cmp; ++ d2i_ASN1_SET_ANY; ++ ENGINE_set_pkey_meths; ++ i2d_TS_REQ_fp; ++ d2i_ASN1_SEQUENCE_ANY; ++ GENERAL_NAME_get0_otherName; ++ d2i_ESS_CERT_ID; ++ OBJ_find_sigid_algs; ++ EVP_PKEY_meth_set_keygen; ++ PKCS5_PBKDF2_HMAC; ++ EVP_PKEY_paramgen; ++ EVP_PKEY_meth_set_paramgen; ++ BIO_new_PKCS7; ++ EVP_PKEY_verify_recover; ++ TS_ext_print_bio; ++ TS_ASN1_INTEGER_print_bio; ++ check_defer; ++ DSO_pathbyaddr; ++ EVP_PKEY_set_type; ++ TS_ACCURACY_set_micros; ++ TS_REQ_to_TS_VERIFY_CTX; ++ EVP_PKEY_meth_set_copy; ++ ASN1_PCTX_set_cert_flags; ++ TS_TST_INFO_get_ext; ++ EVP_PKEY_asn1_set_ctrl; ++ TS_TST_INFO_get_ext_by_critical; ++ EVP_PKEY_CTX_new_id; ++ TS_REQ_get_ext_by_OBJ; ++ TS_CONF_set_signer_cert; ++ X509_NAME_hash_old; ++ ASN1_TIME_set_string; ++ EVP_MD_flags; ++ TS_RESP_CTX_free; ++ DSAparams_dup; ++ DHparams_dup; ++ OCSP_REQ_CTX_add1_header; ++ OCSP_REQ_CTX_set1_req; ++ X509_STORE_set_verify_cb; ++ X509_STORE_CTX_get0_current_crl; ++ X509_STORE_CTX_get0_parent_ctx; ++ X509_STORE_CTX_get0_current_issuer; ++ X509_STORE_CTX_get0_cur_issuer; ++ X509_issuer_name_hash_old; ++ X509_subject_name_hash_old; ++ EVP_CIPHER_CTX_copy; ++ UI_method_get_prompt_constructor; ++ UI_method_get_prompt_constructr; ++ UI_method_set_prompt_constructor; ++ UI_method_set_prompt_constructr; ++ EVP_read_pw_string_min; ++ CRYPTO_cts128_encrypt; ++ CRYPTO_cts128_decrypt_block; ++ CRYPTO_cfb128_1_encrypt; ++ CRYPTO_cbc128_encrypt; ++ CRYPTO_ctr128_encrypt; ++ CRYPTO_ofb128_encrypt; ++ CRYPTO_cts128_decrypt; ++ CRYPTO_cts128_encrypt_block; ++ CRYPTO_cbc128_decrypt; ++ CRYPTO_cfb128_encrypt; ++ CRYPTO_cfb128_8_encrypt; ++ SSL_renegotiate_abbreviated; ++ TLSv1_1_method; ++ TLSv1_1_client_method; ++ TLSv1_1_server_method; ++ SSL_CTX_set_srp_client_pwd_callback; ++ SSL_CTX_set_srp_client_pwd_cb; ++ SSL_get_srp_g; ++ SSL_CTX_set_srp_username_callback; ++ SSL_CTX_set_srp_un_cb; ++ SSL_get_srp_userinfo; ++ SSL_set_srp_server_param; ++ SSL_set_srp_server_param_pw; ++ SSL_get_srp_N; ++ SSL_get_srp_username; ++ SSL_CTX_set_srp_password; ++ SSL_CTX_set_srp_strength; ++ SSL_CTX_set_srp_verify_param_callback; ++ SSL_CTX_set_srp_vfy_param_cb; ++ SSL_CTX_set_srp_cb_arg; ++ SSL_CTX_set_srp_username; ++ SSL_CTX_SRP_CTX_init; ++ SSL_SRP_CTX_init; ++ SRP_Calc_A_param; ++ SRP_generate_server_master_secret; ++ SRP_gen_server_master_secret; ++ SSL_CTX_SRP_CTX_free; ++ SRP_generate_client_master_secret; ++ SRP_gen_client_master_secret; ++ SSL_srp_server_param_with_username; ++ SSL_srp_server_param_with_un; ++ SSL_SRP_CTX_free; ++ SSL_set_debug; ++ SSL_SESSION_get0_peer; ++ TLSv1_2_client_method; ++ SSL_SESSION_set1_id_context; ++ TLSv1_2_server_method; ++ SSL_cache_hit; ++ SSL_get0_kssl_ctx; ++ SSL_set0_kssl_ctx; ++ SSL_set_state; ++ SSL_CIPHER_get_id; ++ TLSv1_2_method; ++ kssl_ctx_get0_client_princ; ++ SSL_export_keying_material; ++ SSL_set_tlsext_use_srtp; ++ SSL_CTX_set_next_protos_advertised_cb; ++ SSL_CTX_set_next_protos_adv_cb; ++ SSL_get0_next_proto_negotiated; ++ SSL_get_selected_srtp_profile; ++ SSL_CTX_set_tlsext_use_srtp; ++ SSL_select_next_proto; ++ SSL_get_srtp_profiles; ++ SSL_CTX_set_next_proto_select_cb; ++ SSL_CTX_set_next_proto_sel_cb; ++ SSL_SESSION_get_compress_id; ++ ++ SRP_VBASE_get_by_user; ++ SRP_Calc_server_key; ++ SRP_create_verifier; ++ SRP_create_verifier_BN; ++ SRP_Calc_u; ++ SRP_VBASE_free; ++ SRP_Calc_client_key; ++ SRP_get_default_gN; ++ SRP_Calc_x; ++ SRP_Calc_B; ++ SRP_VBASE_new; ++ SRP_check_known_gN_param; ++ SRP_Calc_A; ++ SRP_Verify_A_mod_N; ++ SRP_VBASE_init; ++ SRP_Verify_B_mod_N; ++ EC_KEY_set_public_key_affine_coordinates; ++ EC_KEY_set_pub_key_aff_coords; ++ EVP_aes_192_ctr; ++ EVP_PKEY_meth_get0_info; ++ EVP_PKEY_meth_copy; ++ ERR_add_error_vdata; ++ EVP_aes_128_ctr; ++ EVP_aes_256_ctr; ++ EC_GFp_nistp224_method; ++ EC_KEY_get_flags; ++ RSA_padding_add_PKCS1_PSS_mgf1; ++ EVP_aes_128_xts; ++ EVP_aes_256_xts; ++ EVP_aes_128_gcm; ++ EC_KEY_clear_flags; ++ EC_KEY_set_flags; ++ EVP_aes_256_ccm; ++ RSA_verify_PKCS1_PSS_mgf1; ++ EVP_aes_128_ccm; ++ EVP_aes_192_gcm; ++ X509_ALGOR_set_md; ++ RAND_init_fips; ++ EVP_aes_256_gcm; ++ EVP_aes_192_ccm; ++ CMAC_CTX_copy; ++ CMAC_CTX_free; ++ CMAC_CTX_get0_cipher_ctx; ++ CMAC_CTX_cleanup; ++ CMAC_Init; ++ CMAC_Update; ++ CMAC_resume; ++ CMAC_CTX_new; ++ CMAC_Final; ++ CRYPTO_ctr128_encrypt_ctr32; ++ CRYPTO_gcm128_release; ++ CRYPTO_ccm128_decrypt_ccm64; ++ CRYPTO_ccm128_encrypt; ++ CRYPTO_gcm128_encrypt; ++ CRYPTO_xts128_encrypt; ++ EVP_rc4_hmac_md5; ++ CRYPTO_nistcts128_decrypt_block; ++ CRYPTO_gcm128_setiv; ++ CRYPTO_nistcts128_encrypt; ++ EVP_aes_128_cbc_hmac_sha1; ++ CRYPTO_gcm128_tag; ++ CRYPTO_ccm128_encrypt_ccm64; ++ ENGINE_load_rdrand; ++ CRYPTO_ccm128_setiv; ++ CRYPTO_nistcts128_encrypt_block; ++ CRYPTO_gcm128_aad; ++ CRYPTO_ccm128_init; ++ CRYPTO_nistcts128_decrypt; ++ CRYPTO_gcm128_new; ++ CRYPTO_ccm128_tag; ++ CRYPTO_ccm128_decrypt; ++ CRYPTO_ccm128_aad; ++ CRYPTO_gcm128_init; ++ CRYPTO_gcm128_decrypt; ++ ENGINE_load_rsax; ++ CRYPTO_gcm128_decrypt_ctr32; ++ CRYPTO_gcm128_encrypt_ctr32; ++ CRYPTO_gcm128_finish; ++ EVP_aes_256_cbc_hmac_sha1; ++ PKCS5_pbkdf2_set; ++ CMS_add0_recipient_password; ++ CMS_decrypt_set1_password; ++ CMS_RecipientInfo_set0_password; ++ RAND_set_fips_drbg_type; ++ X509_REQ_sign_ctx; ++ RSA_PSS_PARAMS_new; ++ X509_CRL_sign_ctx; ++ X509_signature_dump; ++ d2i_RSA_PSS_PARAMS; ++ RSA_PSS_PARAMS_it; ++ RSA_PSS_PARAMS_free; ++ X509_sign_ctx; ++ i2d_RSA_PSS_PARAMS; ++ ASN1_item_sign_ctx; ++ EC_GFp_nistp521_method; ++ EC_GFp_nistp256_method; ++ OPENSSL_stderr; ++ OPENSSL_cpuid_setup; ++ OPENSSL_showfatal; ++ BIO_new_dgram_sctp; ++ BIO_dgram_sctp_msg_waiting; ++ BIO_dgram_sctp_wait_for_dry; ++ BIO_s_datagram_sctp; ++ BIO_dgram_is_sctp; ++ BIO_dgram_sctp_notification_cb; ++ CRYPTO_memcmp; ++ SSL_CTX_set_alpn_protos; ++ SSL_set_alpn_protos; ++ SSL_CTX_set_alpn_select_cb; ++ SSL_get0_alpn_selected; ++ SSL_CTX_set_custom_cli_ext; ++ SSL_CTX_set_custom_srv_ext; ++ SSL_CTX_set_srv_supp_data; ++ SSL_CTX_set_cli_supp_data; ++ SSL_set_cert_cb; ++ SSL_CTX_use_serverinfo; ++ SSL_CTX_use_serverinfo_file; ++ SSL_CTX_set_cert_cb; ++ SSL_CTX_get0_param; ++ SSL_get0_param; ++ SSL_certs_clear; ++ DTLSv1_2_method; ++ DTLSv1_2_server_method; ++ DTLSv1_2_client_method; ++ DTLS_method; ++ DTLS_server_method; ++ DTLS_client_method; ++ SSL_CTX_get_ssl_method; ++ SSL_CTX_get0_certificate; ++ SSL_CTX_get0_privatekey; ++ SSL_COMP_set0_compression_methods; ++ SSL_COMP_free_compression_methods; ++ SSL_CIPHER_find; ++ SSL_is_server; ++ SSL_CONF_CTX_new; ++ SSL_CONF_CTX_finish; ++ SSL_CONF_CTX_free; ++ SSL_CONF_CTX_set_flags; ++ SSL_CONF_CTX_clear_flags; ++ SSL_CONF_CTX_set1_prefix; ++ SSL_CONF_CTX_set_ssl; ++ SSL_CONF_CTX_set_ssl_ctx; ++ SSL_CONF_cmd; ++ SSL_CONF_cmd_argv; ++ SSL_CONF_cmd_value_type; ++ SSL_trace; ++ SSL_CIPHER_standard_name; ++ SSL_get_tlsa_record_byname; ++ ASN1_TIME_diff; ++ BIO_hex_string; ++ CMS_RecipientInfo_get0_pkey_ctx; ++ CMS_RecipientInfo_encrypt; ++ CMS_SignerInfo_get0_pkey_ctx; ++ CMS_SignerInfo_get0_md_ctx; ++ CMS_SignerInfo_get0_signature; ++ CMS_RecipientInfo_kari_get0_alg; ++ CMS_RecipientInfo_kari_get0_reks; ++ CMS_RecipientInfo_kari_get0_orig_id; ++ CMS_RecipientInfo_kari_orig_id_cmp; ++ CMS_RecipientEncryptedKey_get0_id; ++ CMS_RecipientEncryptedKey_cert_cmp; ++ CMS_RecipientInfo_kari_set0_pkey; ++ CMS_RecipientInfo_kari_get0_ctx; ++ CMS_RecipientInfo_kari_decrypt; ++ CMS_SharedInfo_encode; ++ DH_compute_key_padded; ++ d2i_DHxparams; ++ i2d_DHxparams; ++ DH_get_1024_160; ++ DH_get_2048_224; ++ DH_get_2048_256; ++ DH_KDF_X9_42; ++ ECDH_KDF_X9_62; ++ ECDSA_METHOD_new; ++ ECDSA_METHOD_free; ++ ECDSA_METHOD_set_app_data; ++ ECDSA_METHOD_get_app_data; ++ ECDSA_METHOD_set_sign; ++ ECDSA_METHOD_set_sign_setup; ++ ECDSA_METHOD_set_verify; ++ ECDSA_METHOD_set_flags; ++ ECDSA_METHOD_set_name; ++ EVP_des_ede3_wrap; ++ EVP_aes_128_wrap; ++ EVP_aes_192_wrap; ++ EVP_aes_256_wrap; ++ EVP_aes_128_cbc_hmac_sha256; ++ EVP_aes_256_cbc_hmac_sha256; ++ CRYPTO_128_wrap; ++ CRYPTO_128_unwrap; ++ OCSP_REQ_CTX_nbio; ++ OCSP_REQ_CTX_new; ++ OCSP_set_max_response_length; ++ OCSP_REQ_CTX_i2d; ++ OCSP_REQ_CTX_nbio_d2i; ++ OCSP_REQ_CTX_get0_mem_bio; ++ OCSP_REQ_CTX_http; ++ RSA_padding_add_PKCS1_OAEP_mgf1; ++ RSA_padding_check_PKCS1_OAEP_mgf1; ++ RSA_OAEP_PARAMS_free; ++ RSA_OAEP_PARAMS_it; ++ RSA_OAEP_PARAMS_new; ++ SSL_get_sigalgs; ++ SSL_get_shared_sigalgs; ++ SSL_check_chain; ++ X509_chain_up_ref; ++ X509_http_nbio; ++ X509_CRL_http_nbio; ++ X509_REVOKED_dup; ++ i2d_re_X509_tbs; ++ X509_get0_signature; ++ X509_get_signature_nid; ++ X509_CRL_diff; ++ X509_chain_check_suiteb; ++ X509_CRL_check_suiteb; ++ X509_check_host; ++ X509_check_email; ++ X509_check_ip; ++ X509_check_ip_asc; ++ X509_STORE_set_lookup_crls_cb; ++ X509_STORE_CTX_get0_store; ++ X509_VERIFY_PARAM_set1_host; ++ X509_VERIFY_PARAM_add1_host; ++ X509_VERIFY_PARAM_set_hostflags; ++ X509_VERIFY_PARAM_get0_peername; ++ X509_VERIFY_PARAM_set1_email; ++ X509_VERIFY_PARAM_set1_ip; ++ X509_VERIFY_PARAM_set1_ip_asc; ++ X509_VERIFY_PARAM_get0_name; ++ X509_VERIFY_PARAM_get_count; ++ X509_VERIFY_PARAM_get0; ++ X509V3_EXT_free; ++ EC_GROUP_get_mont_data; ++ EC_curve_nid2nist; ++ EC_curve_nist2nid; ++ PEM_write_bio_DHxparams; ++ PEM_write_DHxparams; ++ SSL_CTX_add_client_custom_ext; ++ SSL_CTX_add_server_custom_ext; ++ SSL_extension_supported; ++ BUF_strnlen; ++ sk_deep_copy; ++ SSL_test_functions; ++ ++ local: ++ *; ++}; ++ ++OPENSSL_1.0.2g { ++ global: ++ SRP_VBASE_get1_by_user; ++ SRP_user_pwd_free; ++} OPENSSL_1.0.2d; ++ diff --git a/debian/po/POTFILES.in b/debian/po/POTFILES.in new file mode 100644 index 0000000..d31c3cc --- /dev/null +++ b/debian/po/POTFILES.in @@ -0,0 +1 @@ +[type: gettext/rfc822deb] libssl1.0.2.templates diff --git a/debian/po/ar.po b/debian/po/ar.po new file mode 100644 index 0000000..9563606 --- /dev/null +++ b/debian/po/ar.po @@ -0,0 +1,89 @@ +# translation of openssl-ar.po to Arabic +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# +# Ossama M. Khayat , 2007, 2010. +msgid "" +msgstr "" +"Project-Id-Version: openssl-ar\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2010-09-09 01:29+0300\n" +"Last-Translator: Ossama M. Khayat \n" +"Language-Team: Arabic \n" +"Language: ar\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: Lokalize 1.0\n" +"Plural-Forms: nplurals=6; plural=n==1 ? 0 : n==0 ? 1 : n==2 ? 2: n%100>=3 && " +"n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "الخدمات المطلوب إعادة تشغيلها لجعلها تستخدم المكتبات الجديدة:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"هذا الإصدار من OpenSSL يحل بعض المشاكل الأمنية. ولن تستخدم الخدمات هذه " +"الحلول حتى يتم إعادة تشغيلها. الرجاء التنبه إلى أن إعادة تشغيل خادم SSH " +"(sshd) لا يؤثر على أية اتصالات حالية." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"الرجاء التحقق من قائمة الخدمات المكتشفة والتي يجب إعادة تشغيلها وقم بتصحيحها " +"إن كانت هناك حاجة لذلك. يجب أن تكون أسماء الخدمات مطابقة لأسماء ملفات شيفرات " +"التشغيل في /etc/init.d وتفصلها مسافات. لن تتم إعادة تشغيل أية خدمات إن كانت " +"القائمة فارغة." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"يجب إعادة تشغيل أية خدمة تفشل بشكل غير متوقع عقب عملية الترقية هذه. كما أنه " +"من المستحسن إعادة تشغيل هذا الجهاز لتجنب أية مشاكل متعلقة بخدمة SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "فشل إعادة تشغيل بعض الخدمات لترقية OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "تعذر إعادة تشغيل الخدمات التالية لترقية مكتبة OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"يجب أن تقوم بتشغيل هذه الخدمات يدوياً بتفيذ الأمر '/etc/init.d/ " +"start'." diff --git a/debian/po/ca.po b/debian/po/ca.po new file mode 100644 index 0000000..2a10de8 --- /dev/null +++ b/debian/po/ca.po @@ -0,0 +1,98 @@ +# +# Catalan translation for openssl package. +# Copyright (C) 2007 Debian OpenSSL Team. +# This file is distributed under the same license as the openssl package. +# +# Aleix Badia i Bosch , 2004 +# Jordà Polo , 2007. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl_0.9.8g-3\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-11-24 16:43+0100\n" +"Last-Translator: Jordà Polo \n" +"Language-Team: Català \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Serveis que cal reiniciar perquè utilitzin les noves biblioteques:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Aquesta versió d'OpenSSL resol alguns problemes de seguretat. Els serveis no " +"utilitzaran les correccions fins que no es tornin a iniciar. Fixeu-vos que " +"reiniciar el servidor SSH (sshd) no hauria d'afectar cap de les connexions " +"existents." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Si us plau, comproveu la llista de serveis detectats que caldria reiniciar, " +"i esmeneu-la si és necessari. Els noms dels serveis han de ser idèntics als " +"noms dels scripts que hi ha al directori /etc/init.d, i haurien d'estar " +"separats per espais. Si la llista és buida no es reiniciarà cap servei." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Si després de l'actualització fallen altres serveis de forma inesperada, és " +"possible que també calgui tornar a iniciar-los. Si els problemes relacionats " +"amb SSL persisteixen, podeu reiniciar l'ordinador." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" +"S'ha trobat un error mentre es reiniciaven alguns serveis per " +"l'actualització de l'OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"No s'han pogut reiniciar els següents serveis per l'actualització de la " +"biblioteca OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Aquests els haureu d'iniciar manualment executant «/etc/init.d/ " +"start»." + +#~ msgid "${services}" +#~ msgstr "${services}" diff --git a/debian/po/cs.po b/debian/po/cs.po new file mode 100644 index 0000000..5f2d759 --- /dev/null +++ b/debian/po/cs.po @@ -0,0 +1,94 @@ +# +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# Developers do not need to manually edit POT or PO files. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-05-12 19:14+0200\n" +"Last-Translator: Miroslav Kure \n" +"Language-Team: Czech \n" +"Language: cs\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Služby, které se mají restartovat, aby začaly využívat nové knihovny:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Toto vydání OpenSSL opravuje některé bezpečnostní problémy. Tyto opravy se v " +"programech projeví až po jejich restartu. Poznamenejme, že restart SSH " +"serveru (sshd) by neměl ovlivnit stávající spojení." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Zkontrolujte prosím seznam rozpoznaných služeb, které je třeba restartovat. " +"Jestliže se vám zdá, že je seznam chybný, můžete jej upravit. Názvy služeb " +"musí být shodné s názvy skriptů v adresáři /etc/init.d a musí být odděleny " +"mezerami. Pokud seznam vymažete, nebude restartována žádná služba." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Jestliže po této aktualizaci začnou neočekávaně selhávat některé služby, " +"měli byste je taktéž restartovat. Abyste se vyhnuli problémům spojeným se " +"SSL, doporučujeme restartovat celý počítač." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Chyba při restartu některých služeb po aktualizaci OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Následující služby se nepodařilo po aktualizaci knihovny OpenSSL restartovat:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "Budete je muset spustit ručně příkazem „/etc/init.d/ start“." diff --git a/debian/po/da.po b/debian/po/da.po new file mode 100644 index 0000000..6d5f8bd --- /dev/null +++ b/debian/po/da.po @@ -0,0 +1,93 @@ +# Danish translation openssl. +# Copyright (C) 2010 openssl & Joe Hansen. +# This file is distributed under the same license as the openssl package. +# Claus Hindsgaul , 2004. +# Claus Hindsgaul , 2007. +# Joe Hansen , 2010. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2010-10-07 05:26+0100\n" +"Last-Translator: Joe Hansen \n" +"Language-Team: Danish \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=2; plural=(n != 1);\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Tjenester der skal genstartes for at få dem til at benytte de nye " +"biblioteker:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Denne version af OpenSSL retter nogle sikkerhedsproblemer. Tjenester vil " +"ikke benytte disse rettelser, før de er blevet genstartet. Bemærk at det " +"ikke vil påvirke eksisterende forbindelser at genstarte SSH-serveren (sshd)." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Tjek listen over fundne tjenester, som skal genstartes, og ret den om " +"nødvendigt. Tjenestenavnene skal være identiske med " +"initialiseringsskriptenes navne i /etc/init.d, og være adskilt med " +"mellemrum. Hvis listen er tom, vil ingen tjenester blive genstartet." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Enhver tjeneste, der fejler uden grund efter denne opgradering, bør " +"genstartes. Det anbefales at genstarte denne maskine for at undgå SSL-" +"relaterede problemer." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Fejl ved genstart af nogle tjenester for OpenSSl-opgradering" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"De følgende tjenester kunne ikke genstartes for OpenSSL-" +"biblioteksopgraderingen:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Du skal genstarte disse manuelt ved at køre '/etc/init.d/ start'." diff --git a/debian/po/de.po b/debian/po/de.po new file mode 100644 index 0000000..d8f2216 --- /dev/null +++ b/debian/po/de.po @@ -0,0 +1,92 @@ +# German translation of openssl's debconf templates +# Copyright (C) 2006-2008 Johannes Starosta +# This file is distributed under the same license as the openssl package. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl 0.9.8e-4\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-03-24 22:48+0100\n" +"Last-Translator: Johannes Starosta \n" +"Language-Team: German \n" +"Language: de\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Welche Dienste sollen erneut gestartet werden, damit sie die neuen " +"Bibliotheken verwenden?" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"In dieser Version von OpenSSL wurden Sicherheitsprobleme behoben. Dienste " +"werden diese Aktualisierungen nicht nutzen, bis sie neugestartet werden. " +"Hinweis: Den SSH-Server (sshd) neu zu starten, dürfte keine bestehenden " +"Verbindungen beeinträchtigen." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Es folgt nun eine Liste der erkannten Dienste, die neu gestartet werden " +"sollten. Bitte berichtigen Sie die Liste, falls Sie glauben, dass sie Fehler " +"enthält. Die Namen der Dienste müssen den Namen der Skripte in /etc/init.d " +"entsprechen und werden durch Leerzeichen getrennt. Es wird kein Dienst neu " +"gestartet, falls die Liste leer bleibt." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Falls andere Dienste nach diesem Upgrade ein merkwürdiges Fehlverhalten " +"zeigen, könnte es nötig werden, sie ebenfalls neu zu starten. Es wird " +"empfohlen, den Rechner neu zu starten, um Probleme mit SSL zu vermeiden." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Neustarten einiger Dienste beim OpenSSL-Upgrade fehlgeschlagen" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Die folgenden Dienste konnten beim Upgrade der OpenSSL-Bibliothek nicht neu " +"gestartet werden:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Sie werden sie manuell durch Aufruf von »/etc/init.d/ start« starten " +"müssen." diff --git a/debian/po/es.po b/debian/po/es.po new file mode 100644 index 0000000..8aaa82b --- /dev/null +++ b/debian/po/es.po @@ -0,0 +1,124 @@ +# openssl translation to spanish +# Copyright (C) 2004 Software in the Public Interest +# This file is distributed under the same license as the openssl package. +# +# Changes: +# - Initial translation +# Lucas Wall , 2004 +# +# - Last revision +# Manuel Porras Peralta «Venturi», 2007 +# Maximiliano Marín, 2007 +# Manuel "Venturi" Porras Peralta , 2014. +# +# Traductores, si no conoce el formato PO, merece la pena leer la +# documentación de gettext, especialmente las secciones dedicadas a este +# formato, por ejemplo ejecutando: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Equipo de traducción al español, por favor lean antes de traducir +# los siguientes documentos: +# +# - El proyecto de traducción de Debian al español +# http://www.debian.org/intl/spanish/coordinacion +# especialmente las notas de traducción en +# http://www.debian.org/intl/spanish/notas +# +# - La guía de traducción de po's de debconf: +# /usr/share/doc/po-debconf/README-trans +# o http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# +msgid "" +msgstr "" +"Project-Id-Version: openssl 0.9.7d-3\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2014-12-02 18:29+0100\n" +"Last-Translator: Manuel «Venturi» Porras Peralta \n" +"Language-Team: es \n" +"Language: es\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=2; plural=(n != 1);\n" +"X-Generator: Poedit 1.6.10\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Servicios que tienen que reiniciarse para que usen las nuevas bibliotecas:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Esta versión de OpenSSL corrige algunos problemas de seguridad. Los " +"servicios no aplicarán estas correcciones hasta que se reinicien. Tenga en " +"cuenta que reiniciar el servicio SSH (sshd) no debería afectar a ninguna de " +"las conexiones existentes." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Compruebe la lista de los servicios detectados que necesitan reiniciarse y " +"corríjala si fuera necesario. Los nombres de los servicios deben ser " +"idénticos a los nombres de los programas de inicio en «/etc/init.d» y deben " +"estar separados por espacios. No se reiniciará ningún servicio si deja la " +"lista en blanco." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Debería reiniciar cualquier servicio que tras haber actualizado, falle " +"inesperadamente. Se recomienda reiniciar el sistema para evitar cualquier " +"problema relacionado con SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Fallo al reiniciar algunos servicios por la actualización de OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"No fue posible reiniciar los servicios indicados a continuación por la " +"actualización de la biblioteca de OpenSSL: " + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Tendrá que iniciarlos manualmente ejecutando « /etc/init.d/ start " +"»." + +#~ msgid "${services}" +#~ msgstr "${services}" diff --git a/debian/po/eu.po b/debian/po/eu.po new file mode 100644 index 0000000..285a975 --- /dev/null +++ b/debian/po/eu.po @@ -0,0 +1,95 @@ +# translation of eu.po to Euskara +# Openssl debconf template basque translation +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# +# Piarres Beobide , 2007. +msgid "" +msgstr "" +"Project-Id-Version: eu\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-12-21 10:56+0100\n" +"Last-Translator: Piarres Beobide \n" +"Language-Team: Euskara \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.11.4\n" +"Plural-Forms: nplurals=2; plural=(n != 1)\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Liburutegi berriak erabili ditzaten berrabiarazi behar diren zerbitzuak:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"OpenSSL bertsio honek zenbait segurtasun arazo konpontzen ditu. Zerbitzuak " +"ez dituzte konponketa hauek erabiliko berrabiarazi arte. Kontutan izan SSH " +"zerbitzua berrabiarazteak ez dituela sorturik dauden konexioei eragingo." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Mesedez egiaztatu antzemandako berrabiarazi beharra dute zerbitzuen zerrenda " +"eta zuzendu behar izanez gero. Zerbitzu izenak /etc/init.d-eko abiarazte " +"Script-en berdinak izan behar dira. Zerrenda hutsik utziaz ez da zerbitzurik " +"berrabiaraziko." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Bertsio berritze honen ondoren esperogabe huts egiten duen edozein zerbitzu " +"berrabiarazi egin beharko zenuke. Ostalari osoa berrabiaraztea gomendatzen " +"da SSL inguruko arazoak saihesteko." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Huts OpenSSL bertsio-berritzerako zerbitzu batzuek berrabiaraztean." + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Hurrengo zerbitzuak ezin izan dira berrabiarazi OpenSSL liburutegi bertsio-" +"berritzerako:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Eskuz berrabiarazi beharko dituzu '/etc/ init.d/ start' eginez." + +#~ msgid "${services}" +#~ msgstr "${services}" diff --git a/debian/po/fi.po b/debian/po/fi.po new file mode 100644 index 0000000..1755fd7 --- /dev/null +++ b/debian/po/fi.po @@ -0,0 +1,93 @@ +msgid "" +msgstr "" +"Project-Id-Version: openssl_0.9.8e-8\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-12-30 00:00+0200\n" +"Last-Translator: Esko Arajärvi \n" +"Language-Team: Finnish \n" +"Language: fi\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Poedit-Language: Finnish\n" +"X-Poedit-Country: FINLAND\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Palvelut, jotka käynnistetään uudelleen uusien kirjastojen käyttämiseksi:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Tämä OpenSSL:n julkaisu sisältää joitain turvapäivityksiä. Palvelut eivät " +"käytä näitä päivityksiä ennen kuin ne on käynnistetty uudelleen. Huomaa, " +"että SSH-palvelimen (sshd) uudelleenkäynnistyksen ei pitäisi vaikuttaa " +"olemassa oleviin yhteyksiin." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Tarkista alla oleva lista löydetyistä palveluista, jotka pitää käynnistää " +"uudelleen, ja korjaa sitä tarvittaessa. Palveluiden nimien pitää täsmätä " +"hakemistossa /etc/init.d olevien alustustiedostojen nimiin ja olla " +"välilyönnein eroteltuja. Jos lista on tyhjä, mitään palveluita ei " +"käynnistetä uudelleen." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Palvelut, joissa esiintyy odottamattomia häiriöitä päivityksen jälkeen " +"tulisi käynnistää uudelleen. On suositeltavaa käynnistää kone uudelleen SSL:" +"än liittyvien ongelmien välttämiseksi." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" +"Joidenkin palveluiden käynnistäminen uudelleen OpenSSL:n päivityksen " +"yhteydessä epäonnistui." + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Seuraavia palveluita ei voitu käynnistää uudelleen päivitettäessä OpenSSL-" +"kirjasto:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Nämä tarvitsee käynnistää käsin ajamalla ”/etc/init.d/ start”." + +#~ msgid "${services}" +#~ msgstr "${services}" diff --git a/debian/po/fr.po b/debian/po/fr.po new file mode 100644 index 0000000..0791a45 --- /dev/null +++ b/debian/po/fr.po @@ -0,0 +1,100 @@ +# +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans# +# Developers do not need to manually edit POT or PO files. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl_0.9.8e-4\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-11-11 18:47+0100\n" +"Last-Translator: Michel Grentzinger \n" +"Language-Team: French \n" +"Language: fr\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Services à redémarrer afin d'utiliser les nouvelles bibliothèques :" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Cette version d'OpenSSL corrige certaines failles de sécurité. Les services " +"n'utiliseront pas ces correctifs tant qu'ils n'auront pas été redémarrés. " +"Veuillez noter que le redémarrage du serveur SSH (sshd) n'affectera aucune " +"connexion existante." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Veuillez vérifier et corriger si nécessaire la liste des services devant " +"être redémarrés. Les noms des services doivent être identiques aux noms des " +"scripts présents dans /etc/init.d et doivent être séparés par des espaces. " +"Si la liste est vide, aucun service ne sera redémarré." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Si d'autres services ne fonctionnent plus correctement après cette mise à " +"jour, ils devront être redémarrés. Il est fortement recommandé de redémarrer " +"le système pour éviter les problèmes liés à SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" +"Impossible de redémarrer certains services lors de la mise à jour d'OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Les services suivants ne peuvent pas être redémarrés lors de la mise à jour " +"de la bibliothèque OpenSSL :" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Vous devrez les redémarrer vous-même avec la commande « /etc/init.d/" +" start »." + +#~ msgid "${services}" +#~ msgstr "${services}" diff --git a/debian/po/gl.po b/debian/po/gl.po new file mode 100644 index 0000000..ce334f2 --- /dev/null +++ b/debian/po/gl.po @@ -0,0 +1,89 @@ +# Galician translation of openssl's debconf templates. +# This file is distributed under the same license as the openssl package. +# Jacobo Tarrio , 2006, 2007, 2008. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-05-13 00:08+0100\n" +"Last-Translator: Jacobo Tarrio \n" +"Language-Team: Galician \n" +"Language: gl\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Servizos a reiniciar para facer que empreguen as novas bibliotecas:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Esta versión de OpenSSL arranxa algúns fallos de seguridade. Os servizos non " +"han ter eses fallos arranxados ata que se reinicien. Teña en conta que " +"reiniciar o servidor de SSH (sshd) non debería afectar a ningunha conexión " +"existente." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Verifique a lista de servizos detectados que hai que reiniciar e corríxaa se " +"é preciso. Os nomes dos servizos deben ser idénticos aos nomes dos scripts " +"de inicialización de /etc/init.d e deben ir separados por espazos. Non se ha " +"reiniciar ningún servizo se a lista está baleira." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Tamén se debería reiniciar calquera servizo que falle de xeito inesperado " +"trala actualización. Recoméndase reiniciar esta máquina para evitar " +"experimentar problemas relacionados con SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Problemas ao reiniciar algúns servizos para a actualización de OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Non se puido reiniciar os seguintes servizos para a actualización da " +"biblioteca OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Ha ter que reinicialos manualmente executando \"/etc/init.d/ start" +"\"." diff --git a/debian/po/it.po b/debian/po/it.po new file mode 100644 index 0000000..eb25c59 --- /dev/null +++ b/debian/po/it.po @@ -0,0 +1,90 @@ +# openssl po-debconf translation to Italian (it) +# Copyright (C) 2006 Software in the Public Interest +# This file is distributed under the same license as the openssl package. +# Luca Monducci , 2006-2008. +# Giuseppe Sacco , 2007 +# +msgid "" +msgstr "" +"Project-Id-Version: openssl 0.9.8g italian debconf templates\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-01-19 21:17+0100\n" +"Last-Translator: Luca Monducci \n" +"Language-Team: Italian \n" +"Language: it\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Servizi da riavviare per l'uso delle nuove librerie:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Questo rilascio di OpenSSL corregge alcuni problemi legati alla sicurezza, " +"ma i servizi non utilizzeranno queste correzioni finché non verranno " +"riavviati. Notare che il riavvio del server SSH (sshd) non ha effetti sulle " +"connessioni attive." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Controllare ed eventualmente correggere l'elenco dei servizi che devono " +"essere riavviati. Il nome dei servizi, separati da spazi, devono essere gli " +"stessi degli script di inizializzazione che si trovano in /etc/init.d. Se " +"l'elenco è vuoto non verrà riavviato nessun servizio." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Qualsiasi servizio che si bloccasse in maniera imprevista dopo questo " +"aggiornamento dovrà essere riavviato. Si consiglia di riavviare la macchina " +"per evitare qualsiasi problema legato a SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Errore nel riavvio di alcuni servizi per l'aggiornamento di OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Non è stato possibile riavviare i seguenti servizi per l'aggiornamento di " +"OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"È necessario avviarli manualmente con \"/etc/init.d/ start\"." diff --git a/debian/po/ja.po b/debian/po/ja.po new file mode 100644 index 0000000..d7b470c --- /dev/null +++ b/debian/po/ja.po @@ -0,0 +1,82 @@ +msgid "" +msgstr "" +"Project-Id-Version: openssl 0.9.8e-4\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-01-22 07:37+0900\n" +"Last-Translator: Hideki Yamane (Debian-JP) \n" +"Language-Team: Japanese \n" +"Language: ja\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "新しいライブラリを使うために再起動するサービス:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"OpenSSL は、今回のリリースでセキュリティホールが修正されました。各サービスは" +"再起動を行わないと、この修正されたライブラリを利用しません。注意: SSH サーバ " +"(sshd) を再起動しても、現状の接続には何ら影響しません。" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"再起動が必要だと判断されたサービスのリストを確認してください。必要であれば修" +"正してください。サービス名は /etc/init.d にあるスクリプトの名前を指し、空白で" +"区切る必要があります。リストが空の場合は、どのサービスも再起動されません。" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"他のサービスがここでのアップグレードの後に何故かエラーを起こし始めた場合、そ" +"れらも再起動する必要があります。SSL 関連のトラブルを避けるためには、マシンを" +"再起動するのをお勧めします。" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "OpenSSL のアップグレードによって再起動に失敗したサービス" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"以下のサービスは OpenSSL ライブラリのアップグレードに伴った再起動を行うことが" +"できませんでした。" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"開始するには '/etc/init.d/ start' を手動で実行する必要があります。" diff --git a/debian/po/ko.po b/debian/po/ko.po new file mode 100644 index 0000000..e6485e8 --- /dev/null +++ b/debian/po/ko.po @@ -0,0 +1,85 @@ +# Korean translations for openssl package +# openssl 패키지에 대한 한국어 번역문. +# Copyright (C) 2007 THE openssl'S COPYRIGHT HOLDER +# This file is distributed under the same license as the openssl package. +# Sunjae Park , 2007. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-04-11 13:43-0400\n" +"Last-Translator: Sunjae Park \n" +"Language-Team: Korean \n" +"Language: ko\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=1; plural=0;\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "새 라이브러리를 사용하도록 재시작할 서비스 목록:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"이번 OpenSSL 릴리즈는 보안 문제를 몇 개 해결합니다. 서비스들을 재시작시킬 때" +"까지는 이 문제들이 해결되지 않습니다. 참고로 SSH 서버(sshd)를 재시작시키더라" +"도 기존 연결에는 영향을 주지 않을 것입니다." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"재시작시킬 서비스의 목록을 확인하시고 필요할 경우 목록을 수정하십시오. 서비스" +"의 이름들은 /etc/init.d에 있는 초기화 스크립트의 이름과 같아야 하며 빈칸으로 " +"구분되어야 합니다. 목록이 비어있을 경우에는 서비스를 재시작시키지 않습니다." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"이 업그레이드를 적용한 후 갑자기 오동작을 하는 서비스는 재시작시키십시오. " +"SSL 관련된 문제가 없도록 이 호스트를 재부팅하시길 권장합니다." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" diff --git a/debian/po/lt.po b/debian/po/lt.po new file mode 100644 index 0000000..2031d31 --- /dev/null +++ b/debian/po/lt.po @@ -0,0 +1,105 @@ +# translation of openssl_0.9.8b-2_templates.po to Lithuanian +# opensll debconf translation templates. +# Copyright (C) 2003 Christoph Martin +# This file is distributed under the same license as the openssl package. +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry'# +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans# +# Developers do not need to manually edit POT or PO files. +# +# Gintautas Miliauskas , 2006. +msgid "" +msgstr "" +"Project-Id-Version: openssl_0.9.8b-2_templates\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2006-06-19 01:32+0300\n" +"Last-Translator: Gintautas Miliauskas \n" +"Language-Team: Lithuanian \n" +"Language: lt\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.11.2\n" +"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n" +"%100<10 || n%100>=20) ? 1 : 2);\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +#, fuzzy +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Kuriuos servisus norėtumėte paleisti iš naujo, kad jie naudotų naujas " +"bibliotekas?" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +#, fuzzy +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Šioje versijoje ištaisytos saugumo skylės. Servisai nenaudos šių pataisymų, " +"kol nebus iš naujo paleisti. Pastaba: sshd paleidimas iš naujo neturėtų " +"turėti įtakos esamiems prisijungimams." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +#, fuzzy +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Pateiktas servisų, kuriuos reikėtų paleisti iš naujo, sąrašas. Jei matote " +"klaidų, sąrašą pataisykite. Servisų vardai turi būti identiški atitinkamų " +"paleidžiamųjų failų /etc/init.d kataloge vardams ir turi būti atskirti " +"tarpais. Jei sąrašą paliksite tuščią, nė vienas servisas nebus iš naujo " +"paleistas." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +#, fuzzy +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Jei kiti servisai po šio atnaujinimo sutriks, gali reikėti ir juos paleisti " +"iš naujo. Rekomenduojame perkrauti sistemą, jei norite išvengti problemų, " +"susijusių su SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" diff --git a/debian/po/ml.po b/debian/po/ml.po new file mode 100644 index 0000000..6c07e47 --- /dev/null +++ b/debian/po/ml.po @@ -0,0 +1,87 @@ +# English translation of openssl. +# Copyright (C) 2007 THE openssl'S COPYRIGHT HOLDER +# This file is distributed under the same license as the openssl package. +# Praveen|പ്രവീണ്‍ A|എ , 2007. +# +# +msgid "" +msgstr "" +"Project-Id-Version: openssl 20070415\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-04-14 07:15+0530\n" +"Last-Translator: Praveen|പ്രവീണ്‍ A|എ \n" +"Language-Team: Swathanthra|സ്വതന്ത്ര Malayalam|മലയാളം Computing|കമ്പ്യൂട്ടിങ്ങ് \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "പുിതിയ ലൈബ്രറികള്‍ ഉപയോഗിയ്ക്കാന്‍ പുനരാരംഭിയ്ക്കേണ്ട സേവനങ്ങള്‍:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"OpenSSL ന്റെ ഈ പതിപ്പ് ചില സുരക്ഷാ പ്രശ്നങ്ങളെ പരിഹരിയ്ക്കുന്നുണ്ട്. പുനരാരംഭിയ്ക്കുന്നത് വരെ " +"സേവനങ്ങള്‍ ഈ പരിഹാരങ്ങള്‍ ഉപയോഗിയ്ക്കുന്നതല്ല. SSH സേവകന്‍ (sshd) പുനരാരംഭിയ്ക്കുന്നത് " +"നേരത്തെയുള്ള ബന്ധങ്ങളെ ബാധിയ്ക്കുകയില്ല." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"ദയവായി പുനരാരംഭിയ്ക്കേണ്ടതായി കണ്ടുപിടിയ്ക്കപ്പെട്ട സേവനങ്ങളുടെ പട്ടിക ദയവായി " +"പരിശോദിയ്ക്കുകയും ആവശ്യമെങ്കില്‍ തിരുത്തുകയും ചെയ്യുക. സേവന നാമങ്ങള്‍ /etc/init.d യിലെ ആരംഭ " +"സ്ക്രിപ്റ്റ് നാമങ്ങളുമായി സമാനമായിരിയ്ക്കുയും സ്പേയ്സുകള്‍ കൊണ്ട് " +"വേര്‍തിരിയ്ക്കപ്പെട്ടവയുമായിരിയ്ക്കണം. പട്ടിക ശൂന്യമാണെങ്കില്‍ സേവനങ്ങളൊന്നും പുനരാരംഭിയ്ക്കുന്നതല്ല." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"ഈ പുതുക്കലിന് ശേഷം പിന്നീട് അപ്രതീക്ഷിതമായി മുടങ്ങുന്ന ഏതൊരു സേവനങ്ങളേയും " +"പുനരാരംഭിയ്ക്കേണ്ടതുണ്ട്. SSL ലുമായി ബന്ധപ്പെട്ട പ്രശ്നം ഒഴിവാക്കാന്‍ ഈ ഹോസ്റ്റിനെ " +"പുനരാരംഭിയ്ക്കാന്‍ ശുപാര്‍ശ ചെയ്തിരിയ്ക്കുന്നു." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" diff --git a/debian/po/nb.po b/debian/po/nb.po new file mode 100644 index 0000000..ed08b31 --- /dev/null +++ b/debian/po/nb.po @@ -0,0 +1,93 @@ +# translation of openssl_0.9.8c-4_templates.po to Norwegian Bokmål +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# +# Bjørn Steensrud , 2007. +# Bjørn Steensrud , 2011. +msgid "" +msgstr "" +"Project-Id-Version: openssl_0.9.8c-4_templates\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2011-12-29 14:19+0100\n" +"Last-Translator: Bjørn Steensrud \n" +"Language-Team: Norwegian Bokmål \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: Lokalize 1.2\n" +"Plural-Forms: nplurals=2; plural=n != 1;\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Tjenester som skal startes på nytt slik at de bruker de nye bibliotekene." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Denne utgaven av OpenSSL retter noen sikkerhetsproblemer. Tjenester kan ikke " +"bruke disse rettelsene før de er startet på nytt. Merk: om sshd startes på " +"nytt blir antakelig ingen eksisterende tilkoblinger påvirket." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Kontroller lista over funne tjenester som trenger omstart. Rett på lista " +"om den er feil. Tjenestenavnene må være lik skript-navnene i /etc/init.d, og " +"være atskilt med mellomrom. Hvis du tømmer lista blir ingen tjenester " +"omstartet." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Hvis andre tjenester begynner å svikte på mystisk måte etter denne " +"oppgraderingen, så blir det anbefalt at maskinen stoppes og startes for å " +"unngå vansker i " +"forbindelse med SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Noen tjenester kunne ikke restartes for OpenSSL-oppgradering" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Følgende tjenester kunne ikke restartes for oppgradering av " +"OpenSSL-biblioteket:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "Du må starte disse manuelt ved å kjøre «/etc/init.d/ start»." + diff --git a/debian/po/nl.po b/debian/po/nl.po new file mode 100644 index 0000000..c14dc20 --- /dev/null +++ b/debian/po/nl.po @@ -0,0 +1,103 @@ +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# Developers do not need to manually edit POT or PO files. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-11-14 20:03+0100\n" +"Last-Translator: Bart Cornelis \n" +"Language-Team: debian-l10n-dutch \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Poedit-Language: Dutch\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Welke diensten moeten herstart worden (zodat ze de nieuwe bibliotheken " +"gebruiken)?" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Deze uitgave van OpenSSL dicht een aantal veiligheidslekken. Andere " +"achtergronddiensten maken pas gebruik van de nieuwe versie eens ze herstart " +"zijn. Herstarten van de SSH-server (sshd) heeft normaal geen gevolgen voor " +"bestande verbindingen." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Hierna volgt een lijst van gedetecteerde diensten die herstart moeten " +"worden. Verbeter de lijst, als u denkt dat ze incorrect is. De namen moeten " +"overeenkomen met de script-namen in /etc/init.d en moeten gescheiden worden " +"door spaties. Als de lijst leeg is worden er geen diensten herstart." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Als er andere diensten mysterieus beginnen te falen na deze opwaardering, " +"dient u deze te herstarten. Er wordt u ten zeerste aanbevolen uw machine te " +"herstarten om SSL-gerelateerde problemen te vermijden." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Herstarten van sommige diensten na de OpenSSL-opwaardering is mislukt." + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"De volgende diensten konden niet herstart worden na de opwaardering van de " +"OpenSSL-bibliotheek:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"U zult deze handmatig moeten herstarten via het commando '/etc/init.d/" +" start'." + +#~ msgid "${services}" +#~ msgstr "${services}" diff --git a/debian/po/pl.po b/debian/po/pl.po new file mode 100644 index 0000000..516cbb1 --- /dev/null +++ b/debian/po/pl.po @@ -0,0 +1,96 @@ +# Copyright (C) 2010 +# This file is distributed under the same license as the openssl package. +# +# Michał Kułach , 2012. +msgid "" +msgstr "" +"Project-Id-Version: \n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2012-01-31 18:52+0100\n" +"Last-Translator: Michał Kułach \n" +"Language-Team: Polish \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: Lokalize 1.2\n" +"Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 " +"|| n%100>=20) ? 1 : 2);\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Usługi które mają być zrestartowane, aby mogły używać nowych bibliotek:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"To wydanie OpenSSL naprawia kilka problemów bezpieczeństwa. Usługi nie będą " +"mogły skorzystać z tych poprawek, dopóki nie zostaną zrestartowane. Proszę " +"zauważyć, że zrestartowanie serwera SSH (sshd) nie powinno mieć wpływu na " +"istniejące połączenia." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Proszę sprawdzić listę wykrytych usług, które powinny zostać zrestartowane, i " +"poprawić ją, jeśli to konieczne. Nazwy usług muszą się zgadzać z nazwami " +"skryptów startowych w /etc/init.d i muszą być rozdzielone spacjami. Jeśli " +"lista będzie pusta, żadne usługi nie zostaną zrestartowane." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Każda usługa w której wystąpi nieoczekiwany błąd po tej aktualizacji, powinna " +"zostać zrestartowana. Zaleca się ponowne uruchomienie komputera, co umożliwi " +"uniknięcie wszystkich problemów związanych z SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" +"Zrestartowanie niektórych usług podczas aktualizacji OpenSSL nie powiodło się" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Następujące usługi nie mogły zostać zrestartowane w celu aktualizacji " +"biblioteki OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Należy zrestartować te usługi ręcznie, przez wykonanie \"/etc/init.d/ " +"start\"" + + diff --git a/debian/po/pt.po b/debian/po/pt.po new file mode 100644 index 0000000..06fc2f8 --- /dev/null +++ b/debian/po/pt.po @@ -0,0 +1,89 @@ +# Portuguese translation for openssl's debconf messages +# Copyright (C) 2007, Carlos Lisboa +# This file is distributed under the same license as the openssl package. +# Carlos Lisboa , 2007. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-04-10 20:36+0100\n" +"Last-Translator: Carlos Lisboa \n" +"Language-Team: Portuguese \n" +"Language: pt\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Serviços a reiniciar para que usem as novas bibliotecas:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Este lançamento do OpenSSL resolve alguns problemas de segurança. Os " +"serviços podem não usar as correcções até que sejam reiniciados. Note que " +"reiniciar o servidor SSH (sshd) não deve afectar quaisquer ligações " +"existentes." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Por favor verifique a lista de serviços detectados que necessitam de ser " +"reiniciados e corrija-a, se necessário. Os nomes dos serviços devem ser " +"idênticos aos nomes dos scripts de inicialização em /etc/init.d e separados " +"por espaços. Nennhum serviço será reiniciado se a lista estiver vazia." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Qualquer serviço que mais tarde falhe de forma inesperada após esta " +"actualização deverá ser reiniciado. É recomendado que reinicie este " +"computador para evitar qualquer problema relacionado como SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Falha ao reiniciar alguns serviços para a actualização do OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Os seguintes serviços não poderam ser reiniciados para a actualização da " +"biblioteca OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Terá que iniciá-los manualmente correndo '/etc/init.d/ start'." diff --git a/debian/po/pt_BR.po b/debian/po/pt_BR.po new file mode 100644 index 0000000..4df15d9 --- /dev/null +++ b/debian/po/pt_BR.po @@ -0,0 +1,104 @@ +# +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# Developers do not need to manually edit POT or PO files. +# Flamarion Jorge , 2010. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2010-07-18 15:03-0300\n" +"Last-Translator: Flamarion Jorge \n" +"Language-Team: Brazilian Portuguese \n" +"Language: pt_BR\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=2; plural=(n > 1);\n" +"pt_BR utf-8\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Serviços a serem reiniciados para que possam utilizar as novas bibliotecas:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Esta versão do OpenSSL corrige alguns problemas de segurança. Os serviços " +"não utilizarão essas correções até que sejam reiniciados. Por favor, note " +"que reiniciar o servidor SSH (sshd) não deve afetar nenhuma conexão " +"existente." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Por favor, confira a lista de serviços detectados que precisam ser " +"reiniciados e a corrija, caso necessário. Os nomes dos serviços devem ser " +"idênticos aos nomes dos scripts de inicialização em /etc/init.d e devem ser " +"separados por espaços. Nenhum serviço será reiniciado caso a lista esteja " +"vazia." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Qualquer serviço que falhar inesperadamente após esta atualização deverá ser " +"reiniciado. É recomendado reinicializar este host para evitar qualquer " +"problema relacionado a SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Falha ao reiniciar alguns serviços para a atualização do OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Os seguintes serviços não puderam ser reiniciados para a atualização da " +"biblioteca OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Você terá que iniciá-los manualmente executando '/etc/init.d/ " +"start'." diff --git a/debian/po/ro.po b/debian/po/ro.po new file mode 100644 index 0000000..7d9f909 --- /dev/null +++ b/debian/po/ro.po @@ -0,0 +1,96 @@ +# translation of ro.po to Romanian +# Romanian translation of openssl. +# Copyright (C) 2006 THE openssl'S COPYRIGHT HOLDER +# This file is distributed under the same license as the openssl package. +# +# Stan Ioan-Eugen , 2006. +# Eddy Petrișor , 2007, 2008. +msgid "" +msgstr "" +"Project-Id-Version: ro\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-06-30 02:26+0300\n" +"Last-Translator: Eddy Petrișor \n" +"Language-Team: Romanian \n" +"Language: ro\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.11.4\n" +"Plural-Forms: nplurals=3; plural=n==1 ? 0 : (n==0 || (n%100 > 0 && n%100 < " +"20)) ? 1 : 2;\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Serviciile repornite pentru a asigura folosirea noilor biblioteci:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Cu această nouă versiune s-au rezolvat probleme de securitate. Serviciile nu " +"vor folosi aceste îmbunătățiri dacă nu sunt repornite. A se reține că " +"repornirea serverului SSH (sshd) nu ar trebui să afecteze conexiunile deja " +"existente." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Verificați și corectați, dacă este nevoie, lista cu serviciile detectate " +"care ar trebui repornite. Numele serviciilor trebuie să fie identice cu " +"numele scripturilor de inițializare din /etc/init.d și trebuie să fie " +"separate prin spații. Dacă lista este goală, nu va fi repornit nici un " +"serviciu." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Orice alt serviciu care prezintă probleme neașteptate după această " +"actualizare, ar trebui repornit. Recomandăm să reporniți calculatorul pentru " +"a evita probleme legate de SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Eșec la repornirea unor servicii pentru actualizarea lui OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Următoarele servicii nu au putut fi repornite pentru actualizarea " +"bibliotecii OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Va trebui să le porniți manual cu o comandă de tipul „/etc/init.d/ " +"start'." diff --git a/debian/po/ru.po b/debian/po/ru.po new file mode 100644 index 0000000..394efe9 --- /dev/null +++ b/debian/po/ru.po @@ -0,0 +1,94 @@ +# translation of openssl_0.9.8g-10.1_ru.po to Russian +# This file is distributed under the same license as the PACKAGE package. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER. +# +# Yuriy Talakan' , 2006. +# Yuriy Talakan' , 2007. +# Yuri Kozlov , 2008. +msgid "" +msgstr "" +"Project-Id-Version: openssl 0.9.8g-10.1\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-06-03 21:21+0400\n" +"Last-Translator: Yuri Kozlov \n" +"Language-Team: Russian \n" +"Language: ru\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.11.4\n" +"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" +"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Перезапускаемые службы для использования новой библиотеки:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Этот выпуск OpenSSL исправляет некоторые проблемы безопасности. Службы не " +"могут использовать эти исправления, пока не будут перезапущены. Обратите " +"внимание, что перезапуск сервера SSH (sshd) не повлияет на существующие " +"соединения." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Проверьте список обнаруженных служб, которые надо перезапустить и поправьте " +"его, если необходимо. Имена служб должны соответствовать именам сценариев " +"запуска в /etc/init.d и должны быть разделены пробелами. Если список пустой, " +"службы не будут перезапущены." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Надо перезапустить любую службу, которая после этого обновления неожиданно " +"начнёт работать с ошибками. Рекомендуется перегрузить машину во избежание " +"проблем, связанных с SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Не удалось перезапустить некоторые службы при обновлении OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Следующие службы не удалось перезапустить при обновлении библиотеки OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Вам нужно будет перезапустить их вручную с помощью команд '/etc/init.d/" +"<служба> start'." diff --git a/debian/po/sk.po b/debian/po/sk.po new file mode 100644 index 0000000..f8d98c5 --- /dev/null +++ b/debian/po/sk.po @@ -0,0 +1,86 @@ +msgid "" +msgstr "" +"Project-Id-Version: openssl 0.9.8e-5\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-01-21 11:41+0100\n" +"Last-Translator: Ivan Masár \n" +"Language-Team: Slovak \n" +"Language: sk\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Služby, ktoré sa majú reštartovať, aby začali používať nové knižnice:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Táto verzia OpenSSL opravuje niektoré bezpečnostné problémy. Služby nezačnú " +"používať tieto opravy až pokým nebudú reštartované. Prosím, pamätajte, že " +"reštartovanie SSH servera (sshd) by nemalo mať vplyv na žiadne už nadviazané " +"spojenia." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Prosím, skontrolujte zoznam zistených služieb, ktoré sa majú reštartovať a " +"ak je to potrebné, opravte ho. Názvy služieb musia byť rovnaké ako názvy " +"inicializačných skriptov v /etc/init.d a oddelené medzerami. Ak tento zoznam " +"bude prázdny, žiadne služby sa nebudú reštartovať." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Každá služba, ktorá po vykonaní tejto aktualizácie zlyhá, by mala byť " +"reštartovaná. Odporúča sa reštartovať tento počítač, aby ste sa vyhli " +"akýmkoľvek problémom týkajúcim sa SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" +"Počas aktualizácie knižnice OpenSSL sa nepodarilo sa reštartovať niektoré " +"služby." + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Nasledovné služby nebolo možné reštartovať počas aktualizácie knižnice " +"OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Budete ich musieť reštartovať ručne spustením „/etc/init.d/ start“." diff --git a/debian/po/sv.po b/debian/po/sv.po new file mode 100644 index 0000000..675b0fa --- /dev/null +++ b/debian/po/sv.po @@ -0,0 +1,99 @@ +# translation of openssl_0.9.8g-10_sv.po to swedish +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# Developers do not need to manually edit POT or PO files. +# +# Martin Bagge , 2008. +msgid "" +msgstr "" +"Project-Id-Version: openssl_0.9.8g-10_sv\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2008-05-23 00:17+0200\n" +"Last-Translator: Martin Bagge \n" +"Language-Team: swedish \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=ISO-8859-1\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.11.4\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" +"Tjnster som ska startas om fr att f dem att anvnda de nya biblioteken:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Den hr utgvan av OpenSSL rttar till ett antal skerhetsproblem. " +"Tjnsterna kommer inte att anvnda dessa rttningar frrn de har startats " +"om. Observera att omstart av SSH-servern (sshd) inte kommer att pverka " +"befintliga anslutningar." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Undersk listan ver identifierade tjnster som behver startas om och gr " +"ndringar i den om det behvs. Tjnstenamnen mste vara identiska fr " +"initieringsskripten i /etc/init.d och mste separeras med blanksteg. Inga " +"tjnster kommer att startas om om listan r tom." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Om andra tjnster senare brjar att f underliga problem efter denna " +"uppgradering br de startas om. Vi rekommenderar att du startar om din " +"dator fr att undvika SSL-relaterade problem." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Misslyckades med att starta om tjnster fr uppgraderingen av OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Fljande tjnster kunde inte startas om vid uppgraderingen av OpenSSL " +"biblioteket:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Du mste starta om dessa tjnster manuellt genom att kra '/etc/init.d/" +" start'" diff --git a/debian/po/templates.pot b/debian/po/templates.pot new file mode 100644 index 0000000..98f4237 --- /dev/null +++ b/debian/po/templates.pot @@ -0,0 +1,76 @@ +# SOME DESCRIPTIVE TITLE. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# FIRST AUTHOR , YEAR. +# +#, fuzzy +msgid "" +msgstr "" +"Project-Id-Version: PACKAGE VERSION\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" +"Last-Translator: FULL NAME \n" +"Language-Team: LANGUAGE \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=CHARSET\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" diff --git a/debian/po/tr.po b/debian/po/tr.po new file mode 100644 index 0000000..8aa5d9a --- /dev/null +++ b/debian/po/tr.po @@ -0,0 +1,62 @@ +# SOME DESCRIPTIVE TITLE. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# Atila KOÇ , 2012. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2012-02-20 11:55+0200\n" +"Last-Translator: Atila KOÇ \n" +"Language-Team: Turkish \n" +"Language: tr\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Yeni kitaplıkları kullanmaları için yeniden başlatılacak hizmetler:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "This release of OpenSSL fixes some security issues. Services will not use these fixes until they are restarted. Please note that restarting the SSH server (sshd) should not affect any existing connections." +msgstr "OpenSSL paketinin bu sürümü bazı güvenlik sorunlarını düzeltmiştir. Hizmetler yeniden başlatılmadıkça bu düzeltmeleri kullanamayacaklar. SSH sunucusunun (sshd) yeniden başlatılması kurulu bağlantıları etkilemeyecektir." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Please check the list of detected services that need to be restarted and correct it, if needed. The services names must be identical to the initialization script names in /etc/init.d and separated by spaces. No services will be restarted if the list is empty." +msgstr "Yeniden başlatılması gerektiği algılanan hizmetleri gözden geçiriniz ve gerekirse düzeltiniz. Hizmetlerin adları boşluklarla ayrılmalı ve /etc/init.d dizinindeki başlatma betikleri ile özdeş olmalıdır. Bu liste boş ise hiçbir hizmetin yeniden başlatılmasına gerek yoktur." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Any service that later fails unexpectedly after this upgrade should be restarted. It is recommended to reboot this host to avoid any SSL-related trouble." +msgstr "Bu yükseltmeden sonra beklenmedik bir şekilde duran herhangi bir hizmet yeniden başlatılmalıdır. SSL ile bağlantılı bir sorun yaşamamak için en doğrusu bu sunucunun yeniden başlatılmasıdır." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "OpenSSL yükseltmesi sırasında bazı hizmetler yeniden başlatılamadı" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "The following services could not be restarted for the OpenSSL library upgrade:" +msgstr "Aşağıdaki hizmetler OpenSSL kitaplıkları yükseltilirken yeniden başlatılamadı:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "You will need to start these manually by running '/etc/init.d/ start'." +msgstr " '/etc/init.d/ start' komutunu çalıştırarak bu hizmetleri elle başlatmalısınız." + diff --git a/debian/po/vi.po b/debian/po/vi.po new file mode 100755 index 0000000..ef9eeca --- /dev/null +++ b/debian/po/vi.po @@ -0,0 +1,88 @@ +# Vietnamese translation for OpenSSL. +# Copyright © 2010 Free Software Foundation, Inc. +# Clytie Siddall , 2005-2010. +# +msgid "" +msgstr "" +"Project-Id-Version: openssl 0.9.8o-2\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2010-10-27 15:40+1030\n" +"Last-Translator: Clytie Siddall \n" +"Language-Team: Vietnamese \n" +"Language: vi\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=1; plural=0;\n" +"X-Generator: LocFactoryEditor 1.8\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "Dịch vụ cần khởi chạy lại để sử dụng thư viện mới:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"Phiên bản OpenSSL này sửa chữa một số vấn đề bảo mật. Dịch vụ sẽ chỉ sử dụng " +"những sự sửa này sau khi khởi chạy lại. Ghi chú rằng việc khởi chạy lại " +"trình phục vụ SSH (sshd) không nên ảnh hưởng đến kết nối đã có." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"Hãy kiểm tra danh sách các dịch vụ đã phát hiện cần khởi chạy lại, và sửa " +"chữa nếu cần thiết. Tên mỗi dịch vụ phải trùng với tên văn lệnh sơ khởi " +"trong « /etc/init.d », các tên dịch vụ cũng định giới bằng dấu cách. Bỏ " +"trống trường này thì không khời chạy dịch vụ nào." + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"Dịch vụ nào bị lỗi bất thường sau khi nâng cấp thì nên được khởi chạy lại. " +"Khuyên bạn khởi động lại máy này để tránh vấn đề liên quan đến SSL." + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "Lỗi khởi chạy lại một số dịch vụ để nâng cấp OpenSSL" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" +"Những dịch vụ theo đây không khởi chạy lại được để nâng cấp thư viện OpenSSL:" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" +"Vì thế bạn cần phải khởi chạy bằng tay, bằng cách chạy câu lệnh « /etc/init." +"d/ start »." diff --git a/debian/po/zh_TW.po b/debian/po/zh_TW.po new file mode 100644 index 0000000..0e1962e --- /dev/null +++ b/debian/po/zh_TW.po @@ -0,0 +1,79 @@ +msgid "" +msgstr "" +"Project-Id-Version: openssl\n" +"Report-Msgid-Bugs-To: openssl@packages.debian.org\n" +"POT-Creation-Date: 2010-12-13 20:31+0100\n" +"PO-Revision-Date: 2007-04-18 01:10+0800\n" +"Last-Translator: Tetralet \n" +"Language-Team: Debian-user in Chinese [Big5] \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "Services to restart to make them use the new libraries:" +msgstr "必須重新啟動才能使用新函式庫的服務程式:" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"This release of OpenSSL fixes some security issues. Services will not use " +"these fixes until they are restarted. Please note that restarting the SSH " +"server (sshd) should not affect any existing connections." +msgstr "" +"這個 OpenSSL 的釋出版修正了一些安全上的問題。這些服務程式必須重新啟動否則無法" +"套用這些修正。請注意到,重新啟動 SSH 服務程式 (sshd) 並不會影響到任何現有的連" +"線。" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Please check the list of detected services that need to be restarted and " +"correct it, if needed. The services names must be identical to the " +"initialization script names in /etc/init.d and separated by spaces. No " +"services will be restarted if the list is empty." +msgstr "" +"請檢視被偵測到需重新啟動的服務程式之列表,有必要時請加以修正。這些服務程式名" +"稱必須和 /etc/init.d 裡的初始化 Script 名稱一致,並以空白分隔。如果列表裡空無" +"一物,就表示沒有服務程式會被重新啟動。" + +#. Type: string +#. Description +#: ../libssl1.0.0.templates:1001 +msgid "" +"Any service that later fails unexpectedly after this upgrade should be " +"restarted. It is recommended to reboot this host to avoid any SSL-related " +"trouble." +msgstr "" +"在此更新之後,必須將任何預料之外無法成功運行的服務程式重新啟動。建議重新啟動" +"這台主機以避免發生任何 SSL 相關的問題。" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "Failure restarting some services for OpenSSL upgrade" +msgstr "" + +#. Type: error +#. Description +#. This paragraph is followed by a (non translatable) paragraph containing +#. a list of services that could not be restarted +#: ../libssl1.0.0.templates:2001 +msgid "" +"The following services could not be restarted for the OpenSSL library " +"upgrade:" +msgstr "" + +#. Type: error +#. Description +#: ../libssl1.0.0.templates:2001 +msgid "" +"You will need to start these manually by running '/etc/init.d/ " +"start'." +msgstr "" diff --git a/debian/rules b/debian/rules new file mode 100755 index 0000000..52e458c --- /dev/null +++ b/debian/rules @@ -0,0 +1,139 @@ +#!/usr/bin/make -f +# Sample debian.rules file - for GNU Hello (1.3). +# Copyright 1994,1995 by Ian Jackson. +# I hereby give you perpetual unlimited permission to copy, +# modify and relicense this file, provided that you do not remove +# my name from the file itself. (I assert my moral right of +# paternity under the Copyright, Designs and Patents Act 1988.) +# This file may have to be extensively modified +# +# Modified to be a prototype for debmake by Christoph Lameter +SHELL=/bin/bash + +package=openssl + +# For generating the manpages +export VERSION=$(shell dpkg-parsechangelog | grep '^Version:' | sed -e 's/^.*://' -e 's/-.*//') + +# The binary architeture +DEB_HOST_ARCH = $(shell dpkg-architecture -qDEB_HOST_ARCH) +DEB_HOST_MULTIARCH=$(shell dpkg-architecture -qDEB_HOST_MULTIARCH) +DEB_HOST_ARCH_CPU=$(shell dpkg-architecture -qDEB_HOST_ARCH_CPU) + +DEB_HOST_GNU_TYPE=$(shell dpkg-architecture -qDEB_HOST_GNU_TYPE) +DEB_BUILD_GNU_TYPE=$(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE) +ifneq ($(DEB_HOST_GNU_TYPE),$(DEB_BUILD_GNU_TYPE)) + export CROSS_COMPILE ?= $(DEB_HOST_GNU_TYPE)- +endif + +CONFARGS = --prefix=/usr --openssldir=/usr/lib/ssl --libdir=lib/$(DEB_HOST_MULTIARCH) no-idea no-mdc2 no-rc5 no-zlib enable-tlsext no-ssl2 no-ssl3 enable-unit-test no-ssl3-method enable-rfc3779 enable-cms +OPT_alpha = ev4 ev5 +ARCHOPTS = OPT_$(DEB_HOST_ARCH) +OPTS = $($(ARCHOPTS)) +WANTED_LIBC_VERSION = 2.3.1-10 + +ifeq ($(DEB_HOST_ARCH_CPU), amd64) + CONFARGS += enable-ec_nistp_64_gcc_128 +endif + +export OPENSSL_CONF=$(shell pwd)/apps/openssl.cnf +MAKE_TEST = make test +ifneq (,$(findstring nocheck,$(DEB_BUILD_OPTIONS))) + MAKE_TEST = : +endif + +%: + dh $@ --without autoreconf + +override_dh_auto_configure: + +override_dh_auto_build: +# perl util/ssldir.pl /usr/lib/ssl +# chmo +x debian/libtool + ./Configure no-shared $(CONFARGS) debian-$(DEB_HOST_ARCH) + make depend + make -f Makefile all + $(MAKE_TEST) + mv libcrypto.a libcrypto.static + mv libssl.a libssl.static + make -f Makefile clean + test -z "$(OPTS)" || for opt in $(OPTS); \ + do \ + set -xe; \ + ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH)-$$opt; \ + make -f Makefile all; \ + $(MAKE_TEST); \ + mkdir -p $$opt; \ + mv libcrypto.so* libssl.so* $$opt/; \ + make -f Makefile clean; \ + done + ./Configure shared $(CONFARGS) debian-$(DEB_HOST_ARCH) + #make -f Makefile depend + ln -sf apps/openssl.pod crypto/crypto.pod ssl/ssl.pod doc/ +# make -f Makefile linux-shared + make -f Makefile all + $(MAKE_TEST) +# strip apps/openssl +# make -f Makefile clean +# ./Configure --prefix=/usr --openssldir=/usr/lib/ssl no-idea no-mdc2 no-rc5 debian-$(DEB_HOST_ARCH) +# make -f Makefile all + +override_dh_auto_test: + +override_dh_auto_clean: + -./Configure $(CONFARGS) debian-$(DEB_HOST_ARCH) + [ ! -f Makefile ] || make -f Makefile clean clean-shared + #-make -f Makefile dclean +# perl util/ssldir.pl /usr/local/ssl + -rm -f test/.rnd test/testkey.pem test/testreq.pem test/certCA.srl + -rm -f util/mk1mf.bak Makefile.bak `find . -name Makefile.save` + -rm -f crypto/pem/ctx_size + -rm -f `find . -name "*~"` + -rm -f `find . -name "*.orig" -o -name "*.rej"` + -rm -f certs/*.0 certs/*.1 +# -rm -rf debian/tmp debian/files* core `find debian/* -type d` + -rm -rf core $(OPTS) + -rm doc/*.pod + -rm -f libcrypto.* libssl.* + -cd test && rm -f .rnd tmp.bntest tmp.bctest *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff bntest ectest ecdsatest ecdhtest ideatest md2test md4test md5test hmactest rc2test rc4test rc5test destest shatest sha1test sha256t sha512t mdc2test rmdtest randtest dhtest enginetest bftest casttest ssltest exptest dsatest rsa_test evp_test *.ss *.srl log dummytest newkey.pem igetest + -rm Makefile apps/CA.pl tools/c_rehash crypto/opensslconf.h crypto/x86_64cpuid.S + rm -f test/asn1test test/wp_test test/srptest test/jpaketest + rm -f certs/demo/*.0 + rm -rf crypto/aes/aes-armv4.S crypto/bn/armv4-gf2m.S crypto/modes/ghash-armv4.S crypto/sha/*.S + find . -type l -exec rm '{}' \; + +override_dh_auto_install: + make -f Makefile install INSTALL_PREFIX=`pwd`/debian/tmp + # pic static libraries, nobody should need them +# mv debian/tmp/usr/lib/libcrypto.a debian/tmp/usr/lib/libcrypto_pic.a +# mv debian/tmp/usr/lib/libssl.a debian/tmp/usr/lib/libssl_pic.a + cp -pf libcrypto.static debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/libcrypto.a + cp -pf libssl.static debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/libssl.a + cp -pf debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/libcrypto.so.* debian/libcrypto1.0.2-udeb/usr/lib/ + cp -pf debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/libssl.so.* debian/libssl1.0.2-udeb/usr/lib/ + cp -auv lib*.so* debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/ + for opt in $(OPTS); \ + do set -xe; \ + mkdir -p debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/$$opt; \ + cp -auv $$opt/lib*.so* debian/tmp/usr/lib/$(DEB_HOST_MULTIARCH)/$$opt/; \ + done + mkdir -p debian/tmp/usr/include/$(DEB_HOST_MULTIARCH)/openssl + mv debian/tmp/usr/include/openssl/opensslconf.h debian/tmp/usr/include/$(DEB_HOST_MULTIARCH)/openssl/ + + dh_lintian -a + # dh_lintian skips udebs, copy it manually + mkdir -p debian/libcrypto1.0.2-udeb/usr/share/lintian/overrides + mkdir -p debian/libssl1.0.2-udeb/usr/share/lintian/overrides + cp debian/libcrypto1.0.2-udeb.lintian-overrides debian/libcrypto1.0.2-udeb/usr/share/lintian/overrides/libcrypto1.0.2-udeb + cp debian/libssl1.0.2-udeb.lintian-overrides debian/libssl1.0.2-udeb/usr/share/lintian/overrides/libssl1.0.2-udeb + +override_dh_installchangelogs: + dh_installchangelogs -a CHANGES + +override_dh_makeshlibs: + #dpkg-gensymbols -Pdebian/libssl1.0.2/ -plibssl1.0.2 -c4 + dh_makeshlibs -a -V --add-udeb="libcrypto1.0.2-udeb" -Xengines + +override_dh_shlibdeps: + sed -i '/^udeb: libssl/s/libcrypto1.0.2-udeb/libssl1.0.2-udeb/' debian/libssl1.0.2/DEBIAN/shlibs + dh_shlibdeps -a -L libssl1.0.2 diff --git a/debian/source/format b/debian/source/format new file mode 100644 index 0000000..163aaf8 --- /dev/null +++ b/debian/source/format @@ -0,0 +1 @@ +3.0 (quilt) diff --git a/debian/upstream/signing-key.asc b/debian/upstream/signing-key.asc new file mode 100644 index 0000000..52787f5 --- /dev/null +++ b/debian/upstream/signing-key.asc @@ -0,0 +1,398 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- + +mQINBFAAbq4BEACzaRctf1/dafs2TQtOrMebzky4TGw1BrWFWn/xdc9HLm61+Y9c +GkEFquLwvDDds/cSt+J6U+6vqPpWVt0pqmvo7bXF5w62QGA88c5R/2owB6fw54rx +GvdJneRtHbsqPuBtW+/8EiAjpCvShw5/YB/VT/zbBguwH4JRzNY3yRrpFJ0cwRD7 +lo1wntACMFPG5eMu8flU/yXhP6Hp92pnNukBjxgayuvivYpCl3lmJrE2QBIvaIES +2W9XBq8Madx/JlN7TvnGhAz2Gn1Z4h8Y/EPtuy7OXV7mtQfW0ByPdv4FmXO+dfKv +hyrTJg+KQlpnoyIVcS6gOALUOLYlPIBEmwZTDpx5A5ZRsfUzxquwvsvvDVDBikuQ +Al261hO5P5Xxy5ZaLo8fi+xMA8j8HfVVgsgFPAvAy8iM/pNt3BFUulVxjZBxrq9p +d5PXdxLxtqpAEZ+Xnzw5QgjJe3MMWX85eE2nQTLyevzERKFWi6M9dBpCEM34uKF5 +9ZUQ/i6GSOkoxpokNVWnOnpiOgp6AAEOtC8G9+Z+pjQlPCf9LU5Xmb/1Kx/DRkmL +us4nHY9qtaiV1XUSAP1WZSrXUlVQMOwiJgvewWJqFivy82lM7n4Wkk1wfjI8bR8r +QAKBiHiwVDnpXgr9bDDWu3OSZ7CU5bizAoGgIliwgXcigZqrPUBNkjY2CwARAQAB +tBxLdXJ0IFJvZWNreCA8a3VydEByb2Vja3guYmU+iQI3BBMBCgAhBQJQAG6uAhsD +BQsJCAcDBRUKCQgLBRYCAwEAAh4BAheAAAoJECBkxTZBwl5dzCQP+gOSp8Xz63jE +ZGmsUPElufn6OLARL9pKZnCruzdcOOWsir1xRZhZunsrJ0qCMaqQZUxK4tXluMq6 +t7qdsIylpI67WoE39obc///eQhnRT7T1pHwR1Ehg5Um6j4/jnGtegtLzSugkCtFJ +xaQ8aDqaT3FbY654xWwtKV2HXMoMBv9TMWhks+l6QrzOfbs1XSReoUxXGNhGAp9y +g2PRTtnqrZ6OLUegjCX3UR23pOaNubAw7N6EuPnqS8U/WHXammKbf7LPmuvFejxn +W6erUanFdj+/QKIE1kAEdfWprTz2wmSKUSsunHkbhELxVAX4ofRPiTo/sQ//hIO7 +xYOXM2he09VZh3em2KpThSB6ApX8CyKCdR4fhTagx3KLV+7pbKXEYEmPqJRci27Z +WjXJzAID4Hyxz84iLLpvgbrsvRWCyKWk5sB8z5issawv4EvJ7khh6V5Efp/4UnIM +4yHHNyalDd7vtUx5Y8Sqp2sY3I5CoNZ1CIM8pem3CSdKs7KYV+FiqjCF2kDwKpEK +CewHvGNENCRbaDFs1463UP9+10rhmeED5u65eLtVXohITDLDrkLoJWOvxhFsMmC4 +dCUpOFWoBIrnOx7nIb5s3sccXGSoJitsXANG5tBMADe2z2Mq+yHL9fpG9hegmFFc +mbl+7GTJ6WfqQkc7SoqN1Zjc4qfU0oStuDMEVaub5RYJKwYBBAHaRw8BAQdAHp9Y +bPAXkR2TsdnPFLmhQf9C2mY0XO37TPS1IEMmeT6JAn8EGAEKAAkFAlWrm+UCGwIA +agkQIGTFNkHCXl1fIAQZFgoABgUCVaub5QAKCRAIbqUF3KLT8/MxAP9ISev0B/SM +Qv0UZJArqEDvpGlvxIQ7EijvPSDez/flQQEA3cw/RVGItC2FZIlX+WAguY3kwCh2 +fCfOpm+TGnfyCQgAIRAAhwwrwXR3Gaf1L7E0ttaYq1fnUUhp8SO86RXvJLXzm6d5 +CwjqR9eTind36F92Xvxc+h+CazSkAR0aLvOUxYEcFimO164bHaVN4BPH14xxqYyr +60DHi6kv95q5a/8xw9VFMc9tSaXgJxPRUHNMFM6MjlgFW+5SW4BuAq+c5wnLY2VD +YuMbM7wqB25xw4iKSWy4sYkm8G/NeltBjhDUjhhEpSInoTqnkgZMyPWnLH3XnI07 +6SQ+6nMeR9QHHrZn+32ZcGOLsfK9qcxoFa1gVQxvT6pit/jm9G45S+kGSn+Gb0h1 +PwyZ00b/Ay5ALsWAx0TnuX0MET5AFV7+bfngnwnzKAYs5ScMuSCMzxn1aVxfq+Og +mHdCO4tD2FUuOS2WCmtJ3H0bu1IMbYufp9A/0XY9ZrYgWtXBJlp7B9LYjJJ0HOEw +dH4+Ciss1zayI6eBGIDv/GwX6Bm7k5+lnaU2zb5xbIyaen+xCTJmC0sVQdb/CE0k +eo9LlC08S2HbHiEkCbz1VxVzlTpxhke7crpYptKnKsZ/pe35pdQK5BZHbb+WBrI+ +7pHI2Xpazv2oLhu2vhQsdntqTqBbI6CPD87pkMSk/PYXP+WMhG9Zqsc5jBDWIrgf +rU8/Cfx5zU3Dlz3wjsH+eCOrLOc/UD3nFnOCwLbgrdC3IZh3bznBCOluynlgaKy5 +Ag0EUABurgEQAPBbF7My7232h0PktP61YzyCJx8ZNDYARe5ugGXndfxOBFN4Oxnj +x7ZIKymFmQ6Gw8orJaROxvh2ggxzVkm3T05BHJuNBQpTFR3Ye3HFat5gPI6Cr3h5 +/U9lP5LNqRf9RX0DR/D7ske+0Tp0DepIi/aPIb2eS4tj4APUG1kQRdWfhg9EBPu9 +jhvYBN8ZGu74tU+ypFFwDAP+MsWdMMBWEp/OeEfBAQ6GK3UsUtmOw3ObG8JZ5qMZ +1kU8KwM3e3BiLdQbvYLg8VHYkK6noYsAaijX8udlyUe9dkQ8eoFX0mz8ZriOKurR +Tbsx6yYMNPiq+aO1J+jnKsnhM4nI8qgyJk/DKy530ITvgwhcCDdP9vtahzrWXGEt +QUrR/lm1ZmbN/TJUjyCS6SmF6BVnPPvezmiT1woaxp3Ucvn0KCOayuBfs2fGeGyo +WH14QHKYrDdn17uHIvu1+ZjftfiZZWmji/ibKBq7SzstunSkAeMLApV7x9do/nVX +wiXFVEVBFFRToHTL6902P/EPq7LitsmWPyA89EXPBn2t27BlqWW9GxXvfiVZEYqq +rn82nr+D/R9S5wVL3+bnfLmwEFDrLwcruRziaSCClcaD6aMzlPJgIUauKnyJFF5s +NCUFzlTnk5KfOYi2VRXUkN+teVLustJoesZO54HUjmo/1cZhW+zNlDxLABEBAAGJ +Ah8EGAEKAAkFAlAAbq4CGwwACgkQIGTFNkHCXl2HiA//Zo6g+mb7d716LnhWMyzr +TnB4wmCZZwSRlX77DY3aQ8oWibVwGtFbWEvJG+YT/iRAl2EzrDWGYTRSBDnbdPAx +Ev7gUtQA8sXuRuVUp9KuTjIXRyBp4oZH8HpTw+JInErliHNs9IPMMEu0HiDa/aVA +vnG5M8LvAy+ysE2759sm8YJ3j3/oQ0Tu2doCl2BSzU0t6NYQQ5nBXvXuVSufjng3 +LEk033Cy9LQw4Qp0NizRBYYcg0/Q/g5tWIb1gR+/inPj2Tzk9EvV4YaoqJR5zZHp ++J479oRU+GF8VxnjAGI+461tvpsQ6/Q5f8v8jgRuT6YzBzMVwaTnlq3w/DaFwOZk +BRcWYXZXlfyVIEwbbq+xa+YMM+R0uyxM2B2+jTbiX4aZAkG6ezfwMTCprSBPvm2G +Zupv/vcGyAgFpN6OGnp8DK2RErG0uvOPy49lI04nrel17h79JgKIWBnMh0ZxrWTc +Y9EFsxEbdOFACC/028FaW8c8GBE0CbbziRw1CCXJq6Tyz2cPXmZ8Lg5m9yo1Bco4 +laE0oqqdWIepzDaVp/bPlbwcmbBo7PVWqbAW0J3s3vPj1r7a7sjxILkqG5hXAWGS +77cv2tGfnG5I1r9Y7jxJsFzJVwjTWJ9dyQ0045RlD+4kbPFd6fLghjUQo7FrGxuQ +JMeog4NgWTChpQSDcCTgv4K5Ag0EUADi4gEQALnZQB3RhzQwM8SmVGvUzEBpGlQL +PbImzQhRUPIpat7cyLP78QpBY6TakiaQwKut82rIlApq1BnwzUFvyGEar//SQWQb +/OM9SPSH2I2pe7iomqi+cQAxSDUuX58SBLhYrSleI0oqJ8G1LpiVqFg6xWLQYUSA +AkmfySMWZe4QcE5Xx+iozr+531ihjEBfljocvqbG6YTTVpVMa6pg1emkb0kOBg5Y +XgxD/dw56sGC73yd0252xWn7qd1Q3dg9d7+mS06lzfA5pA7lNyPaB29pCm98ZE9r +UVBprt4NIVPy1n/eZvMlqf8iLqUkNW3PqvRv0MpzvfAuaePRPA5jkxwAD+8SuJ/R ++RGwJtlFX1PErYLMNwSfeqJYQRyPjCoYi6I+8iNX/WwKkXYphtDjp75nTa/KS6O0 +lak8H19ZvHgP97YMQyFvbTW/m3xeD8xGQuhjoAKUTHmAlqYzG31pnzcaqtrIgUp+ +u3OQaTMZdX/r4nm3+p1RHhZXKF2zQPbfVEy/RXhK2v0oQFOMpm46wwb3eXax9dhH +98/X5Up3R8xXg1n3vuPj1YonAsBLmIZtxb+9n0II6xDNhwu9/vVG/B5+Ufk0CJ7d +VHjxVnWGN7ghA6Pj0hshn/4qssi8a6idXaj2bxVCu6C3kU/fMiSr0aPpXWHfdL99 +TU0enPWoSr+kSw7hABEBAAGJBD4EGAEKAAkFAlAA4uICGwICKQkQIGTFNkHCXl3B +XSAEGQEKAAYFAlAA4uIACgkQoZ8sMBpVIt0CCw/9H2+XvbVfdJGO7g2xvy99Rpag +KgsQ+S9FcRbLb2ch//EUTGfMN8jID+92RhevH5nZgls7rQDUMWPU4MU4rL7ocF22 +lrHptGB9vUJPFwCADKoc7OfQxVkrtIqDAmMVYsoYcs1VX2dJtw78z45G7I13yVkj +xwK82u43OwWR8BKgNX4uGqiu77vgT/whpY110Fh1ceMhUQFV84XGjW0OnK9L6snn +KLXhiR5seVt40KhmuvHYIM89V5o0uCbl7r8PGOxs5xsMIPWdKLXBzaPpAbQ5tyoX +1zXk4yBwYPlOOTKr1xNL+ZoQkr5zymL/ClPJIbyMX9QLh6/dk4ndq0/TZoEEI783 +QisB5xqYftI2jFlcHE/79Ud0vY0NEI/zXKIu3d+qLuXzbXI11LPuw6g/uqTonHmk +EYPMoCYrjFWGFcwVopPqYQJUzXNU34D7MLyPTwUBJyYGV32o2fWFyU1TerBSC/7U +8lLJB2di4GUG5kg7kdx07CXb7Twm5GCvkSHFACHAS9JVtqiW7ZMJRk+zay2QyRWE +tB0jc7+tha+QjuWfRwyplNogfKZ3MYJQ3LI0+PD7oX1mtgk+qKEtCcrlpjwLzIeV +ZWLy9325g/s0x3cQuJiqSHTD1WkMlSnO7lOZ3VvNz0Wek4SMQLSwEc4ts9KivlPd +tyu9xOoJyPCdMhC4cdj+8BAAgNqdDtS+YLcgJ3wkxrZ9DSwg19qNEipUFRAXajAW +Io4n0duMUdvb/QjPcoNhlZs/sYi2kXWds3CXCUPx+R0ZVwkSwVNPq+KVrdZO3hr6 +7YeWPjIp6kR6hs/NwUA2B3/snGYZK+WQou5Mnh6WTcjw7gFeBoffuQge+SUq/oMQ +Xa4yg0dAbl1eGlVM4ZoQXRX4mYX88CWh/8gK532/P/viA3/1J2lYI+vtkGlHMHCI ++k0r3XMz84Lp74xAeWM7mYYcICRtiM1yoo1nCYcv3ZexsRTQioAKS11EhuW9eMDQ +jDLms1AaMLMfbS/YLT8JkfDOz0h49m+wfxvY4fqP5PDirnpU9tpkOOp3LlDK0zXr +f552sM3PTHGlvEpKqrl52LCMU/MJjaKx5DycR+fPQC3GZnzb++M10G3OHlQjhVW+ +NTSMKyp4vE3lRMOz4C2jM4zIo4dfHnxJxv3VQYHdNWf1+fbq3BHWbx+981dytwFV +zIUQ68GKhndn3QoZW4B6edsWIZ63EGOoBUh/wQ2k6ncMXBz13ou/vLhg+crwBXAC +31I3rvkZLC0FnFxsJVXzZf7TSSRaNE3VsUUA+nl8FYvxHdlTYHnU5NVWKCJSKL4x +CgnOpvonSXTDY3RRJk5uHZKmoYgrgx+eicIH/tM7f3FfbOXkAsx/lJXHjEqqwJ7T +BX25Ag0EVH8XxQEQALTvIQg6VEY5u49MCR8OxmfEllnypF0ZTLX/tXbRbF8Y1Rs8 +brf3H43cXSGJvsRvMrtJDl4iz6DaoF7Oy8gj+KrpB7wNBYuO4wlhR/sat9NfFUB+ +tMLO5SZU7CgBPjZ+4x7yfdb+h752g52BqkertVSG2YMqFSI8mie3W6elsdnx5ZxW +8ol2ZLGZKYQS7uK2eWomYKyYKdunuIXz3wEJZT9seeh8pNWmV0/n9kyoqZ+25EOd +oA//Wov3Q8nwCmuv9UhoHOetRDNrAVfS4tvaHIzleTc73BQz1anXjI7v1nDzbJti +umOJCW/ACJPDz7nCfkyR3Z4BI3ROFl2qp+TWqaX8XDirwvjoNYB5jSbqgK/Yve9e +dYVZfM0QNXoqmFPzUEBMs/czA/0Y66bWkS9JGRmiITWpQooujOpLY1pizb91iv+6 +dBsZRSvvsDMJjZ84AI1nSPhIusHijEvvezlFiObZL8/TreEzqIuO+sYvK8zFVx/a +vnqaOBXceyiLti3ZWjwHFyyfSLfmIlYtlt//pg7bFdyAGKepixPvnVe5eCPmsg50 +x3et2x6MPc1EEH1wbsJ7b4UgT88lrFMlaCYHJuKoHvI+l/lLUn0zUvLR5cZNwtLV +zyvDqTTwIbkKY5URQ2eL1yWb6NoaugigDPaQIecUQxD0POY31qs7vrMxSNghABEB +AAGJBD4EGAEKAAkFAlR/F8UCGwICKQkQIGTFNkHCXl3BXSAEGQEKAAYFAlR/F8UA +CgkQ48TdzR5MEkTHLA//fXUEdBCTH/9HXnrJgfpaSAJRwOEX1UxSoJlrRmRESxXN +FHPZd5a3Ff99VISd5BQJeT1EJoQGZToATbI6F6742Uv2mkeEz/iBbYEPTnJvcVux +E8zEGY4RdTiBYEUVunRTXizF7mh3kswIVZc3jya5JsBLe2NSDv6TLoBdjz/OsLmc +YD+eiE4vT47SfofDI2TMxq6JH7ezMBrVciibcXH3MSyacDbmgj2DzisrWnkdDvAP +Ry4+0dg5bo0KKo2e1cm0aOZZyE467ynO7+y+QrFRIZrvZozgvHtyAqstWVrM5gAV +xyJtPCpY4k3+UmwQ61wqGM2lPqlnskyCA+VeO7LyYiUop4GmEi/z99jg7RtiY0mQ +Tq19mAZd5dBwxjCRI7Zb7Pw8sMqzEpbmu9etmdmJvzODlSqi100EYCG44fPbUfss +/6Uj6k0YQ7NFEqLezUYQcZRT8l3REx8J7HQwcQ5vYZfP/OBxp94xPuBqpOLgWQb0 +WR5V4QzCNpRpn0AKt4NrFB4v1su0nuQlMdvjLL2T222tPpxDkFmlfI/TyzsIO4s/ +54gBbZkbF324OwFTNL4Gbbqf2Uun1cGgt16k7HvX/YtOiUidS6emhakVmxpZe11j +og7rwP1LInm95gPPZ/AhS2focWzXSbg9BxB1GxQaUxGiz1zHZ67WuzKtRXB1Rsn6 +ahAAmm1+BUUVmtf0+e5ITls9fff7Gc1Hhxfa99Eloz3J32YMXjusqZQyRoU1IRfx +F7wKbEM/I9S95KEcXIFT1HyRpUjd02+uJTakWg95S2Rw29hFe/q0qQrjH6sCK6Vt +unDg4bLjnw4wxiCeAUVzzGwiYsx9rbNDJVYepM/0kcX0elztgJbZhFfWwDdl+JN2 +ezWrDNJ64EV3nb5MMky990COFFXAOB4KhDY0Qtw7pRVODViz51w0PpFbzdmr2n9L +7noG+rzGjN64tLcLwB4ngqr3ypqv2GyoPg+t+iDWMv0e/7WOYRT0kmznk/Dc+0sN +2i2NQ9taNnjvZlH/WD9AYM0fMS5r0eTTEvFLZC3ilik5zGfGGf3EPfuB9GUzvNj+ +FvjgG8oBZwjUuXfSGli3l/iOFDY9UkzEXGUqm9lXE0U8f4hST7Med/ifum/GBEFP +rudn/i0xgmZi2wLqm7gBRwRSpGmQAmnk/Eap/quN6/7QnHfYJIwF9mJqGlEO2tq7 +XUTiC81d42Ys8tu9/zqQS6Y2wND4rbCJ4Z/yD7ercyDrL+9OKDmbOgLo09dJ0QQF +fKwjKnST3x2RZsuN1Be7fd+lUXHqF2IpV6UiFDLmsT0F0qouNnEj/2+HzPyVj+Qq +d/1OlzNpIX81R4Xm7XXyjuvIoAeJl/JLXqb88HAyikF06OeZAQ0EUYAuwgEIAMGS +HrN/Ft7BbYomNoxqKyFKunG6JVpTK9aCl7oyhp7sk0JbxrKElvAC2xDr1IYDiBST +KtHo8G8MxVgSJipnBcH/cgStK0RKNy76CRuaxrRdzAemQTeI3sjxpTrrIy3vXScY +SZytHkTi7g242ge2c4EoSH5EIsanmajqHBtRhTMbd5Qj/OLaEsCk+loBNecPdmSG +C0dXeWfdnXqdRZAB0hVOjFiG9WejYRCyp7xDeJ+XZR/Rilo3X0EMGvEzdY84Apsm +TQBvVuOARp1q+sUEI6X0KttOF7BEaaQ53ElZpWQRFcxKGXNTOMm8o5QRQY7EkKad +9CKY9CgJ1DJUUuAd9EUAEQEAAbQfTWF0dCBDYXN3ZWxsIDxtYXR0QG9wZW5zc2wu +b3JnPokBOAQTAQIAIgUCU96+vAIbAwYLCQgHAwIGFQgCCQoLBBYCAwECHgECF4AA +CgkQ2cTSbQ5gRJGgPQf/WUQld+vrqt2+yTI6LTNTQBG9RceNuaZiRnsROR1eHtVr +9OOfzVPenCavcXghwsY0sPPgSDrvFur9PyuuwQ87HmdX+ZGdRP3tSaxC4udHbAsZ +tEG7bgUozuhfcpC+Ah0lZ3EccmyOkYJWITWYgUBEDOU37qne09udDMA2NHLuL89h +T+eIZ2pVwyFydkJfkXtgfrDq3RmZgfebVB5ESdap/G7t7Iewi95syApMj9swbxns +qUtmFr0fCsVdAA8hJPqx9zVuUon0g1QMz2IroNH+6WTDt7SGYcuqNapizk/PJd6g +2ew9cm3r3CIANiqPgo0Mh02nVGgX2p9vWcT4MzquBrQgTWF0dCBDYXN3ZWxsIDxm +cm9kb0BiYWdnaW5zLm9yZz6JATgEEwECACIFAlGALsICGwMGCwkIBwMCBhUIAgkK +CwQWAgMBAh4BAheAAAoJENnE0m0OYESRY/4H/RKxZJ4saj6+Khvz3flSKt6LgW+f +MY5RXXD92AMtLNq+bKxXFvir2mynW+PUoS2bXy/Nk7v0B4BEbBZNBgaYWas1FZnY +OBuMbIngtLmQsGpD0VoXu9QW2aXpHTjLH5FOBBODrTVewCN5Ty5JquZ5mAZUwAie +x0ytRzviUl5YpKei+vggU52CJT96e/X20rfnlux9O9vSSwTlDvCeehFd0vI163QB +Z/h52dYMSdFvpwhUMXbxRGPEfrIh+oBV7tWe4MHhJ+5yThHiBgVL/EZ9OChw9QNn +itTPzCV4YvAMiJTsamKWa1lOXUVM+QVr+aptwmB1VMmotk7m8hImRm+oTlS5AQ0E +UYAuwgEIAM9nUJAEpsVBYwK92PP9Mlo1/etXp6JgBI68sOCJxTwzBrbTzIlevVQX +qW9zdODD6ObKcgGNuG+G6Nwn54P6McRpd2dxor9YA+yaI0yT6CVnhxsXjwc/vuQ4 +tBAL6tfuMAXRVIeEVk22cKk4HJB68ImXCCRdyRi9HIE5iTrZHsHC4sjAsirhlc0o +8hU3gqkKh2Ehwa6+U8lzNx06hoFEZxIVRteoz1jzCHImF7EXztEcDIamO8uckVKA +uKbJgFGkU3bkvNgWlc8Pgx4tRUNJGC1LE4nYqaSEwee1SpA/VewiDObj97PozCTF +zRCUBCnSvaAlTnpA90TnODH7ar+L5aEAEQEAAYkBHwQYAQIACQUCUYAuwgIbDAAK +CRDZxNJtDmBEkQs2B/96XB9hyFpX/bhu41YNr7nSA65dDi9d+PkMqvLppickG3VR +4xXWywzEJTw6W2DNMyFO6mOtdXWgNdgDF7HKZYvHBr6pyttLAMP7BfWBvU7YY59u +KmUSc5vl0NzsaSbx5PDSQEkSICLI+/hIwuEXOb6Z7gOrX7F1uy83TmHFOOjD2mLl +5isUzFhaLVk0fZSY+mCgg3/inbwb8g3191Ybk2LfXmndaEsdEzMLrT0g6wIgmybz +6UdVuVPfSPGly0VWVAG1sNPOCpAuJpNV6+VxrdViAx3vQPbx3XzqDFS1ISlnd0qS +/7RXwMuFDpVH/BDvzQcoikWnpRY/loPGkSg4TB7amQENBFIOPE4BCAC65kaDpN/H +2OawMMUjPE4OR0dq9o0/qf6ZEEX3NVFIRZR6FUI0f6LsobNB4gf5iC1aUMPSGky5 +BIY+AtTmVKM/3py8+pg2+lSvrHmuhkAFJlQfhjrvGz8dd9zO4Sfd7M6xEFJIYfaL +ia9tq4tNkGeoO5q7zJBJJKK1og+Is3pvJLELp4LGFDx8zbhRPgMU0vOFJMgyXuGX +fWVoqDtOKZlw073hasHiEGFhwU/9hS5yabbz29LHehCILryxtNQwOWmhJFVl1fui +AYRenKjezgYxRKSZM/npyNayTN+9dCdOacuT4y2kCSrzNQAuzytYiysnCIouBOE1 +u5icWbgxKi/7ABEBAAG0HFJpY2ggU2FseiA8cnNhbHpAYWthbWFpLmNvbT6JAVUE +EwECAD8CGwMGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAFiEE0JloTcfCHgLhSor+ +8jR5RVxRsnwFAlogQlsFCQvVvoUACgkQ8jR5RVxRsnxKcAf/arP6yZ8tin2yieuN +Ov2Hj2FGdzeFBbEVrlDRiXVnwGw6Yb6FNBZCjrXRTtVzmIeDZgiTN06WjBIQpYXZ +Ff8bbayxu2LQjhg3NZt66iqRrBYbMu4CLMQDK+XPHWqJLFjSjjThE8LWktYNWaTW +kkVrSQLcCdJgm04ZnpOUygU6+m93HKvbv3D8kUAUzivoRBU58lr2hox6W7kS46PU +tV31H7IKrihkLrodXeNnKCWB45LJ3NykwH2ldqxQmXRJksIOeMoRGrEWNtJCie9o +I+PJxIv0YoPmn2P8nPF9+JeC0uyfSZaMFW3B4ZLLyMDvh+3W6p4dpqDWV2oe3GJ/ +gSZzCLQdUmljaCBTYWx6IDxyc2FsekBvcGVuc3NsLm9yZz6JAVUEEwECAD8CGwMG +CwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAFiEE0JloTcfCHgLhSor+8jR5RVxRsnwF +AlogQlsFCQvVvoUACgkQ8jR5RVxRsnx70gf9Gw1vdnDihY/ZyW7L9mSr+bqnANpH +BKjJPSLyjMmBsW0ac3Es9Q+hsucE1QFNp9SJ9WXwy7bynGUE66PbeDaQd//4uDmi +uos358pAkGZVoNAMTNRbHSEIwPiiyB5/qNN14R4WorDhGdmOdz64vwnMBEKen+WR +iqrNiHLiUQG4AGSDapkBrki83Z4ZnZ5vQPgLAnUN/IEVVrTyZQaeDMBZztui0IuE +mmNlykoLPCv6h2ImjH3Ox76yTOt1BAzzMRMZZrOl5TLqRFulBtsqvtJ6nyDYtfTI +FTDvhMzKn4n5yUcWvbtutnAQG6JuX0EhwDta/UooEffDjsVCwqT6H+o/vbQfUmlj +aCBTYWx6IDxyaWNoLnNhbHpAZ21haWwuY29tPokBVQQTAQIAPwIbAwYLCQgHAwIG +FQgCCQoLBBYCAwECHgECF4AWIQTQmWhNx8IeAuFKiv7yNHlFXFGyfAUCWiBCUwUJ +C9W+hQAKCRDyNHlFXFGyfJsXB/9dJApKTorE1QHzy/G2+mHIBRkjnlfEB369Axaw +XwLPmBOlpnmmuv7mESiEmTj4oDVvslSpaEkmvzZiEw0qcwZ7ejbYbKY9q9qUDUKl +tNDWowW+nvPZ/XmySIxSxRhNvNYNwqld3x77Yjar7j08dzPbcxDblIL21wegvPz8 +gfePYPT14roK+FSm1RdJ5AmAzSnmzM/31le2/z1QcY+PYeNzO/uCiKNs9D5Qp6WA +Y2NYcoM/12/M+an2OZlVQxoQzoCxMbHB8Vm9GH86qKfHG+ZZSryADqENo41fdSnS +N0XLuozsE94T9q1NrGcZnMovISAYIT9XXZbxDxsCh/UGZVgtuQENBFIOPE4BCADE +H2XYHa+Hk8EisPQzpDuTNDHUw2lFOY3QiRFx1PKRVUyYCzNlWIWtOh3cYf8tamc/ +nfZ/tDXTKyXxe/pmPQO6gJWzl1Yvws6vc710vqNt/7KJDJfiWPdIlW0x3+8O3rtE +gFT6asywj+WuG7LHODByysbvVOVq2vYStz+Pn3tEdoTTCnJS/IFyJq5yeU7rUPHH +d2xgOMycPtYxAigesS3C3IPYbWPV5+3ELpemkJPHc3GlWwOGw9vt6tUmurcPVKtw +hh9lso217e+5Dhn8PLUO2Dm98KLTUZxEOTvfww3i5nphuEDTu15nGNF+QWra+jv6 +08AQBEv5GHfs9JUV32WvABEBAAGJATwEGAECACYCGwwWIQTQmWhNx8IeAuFKiv7y +NHlFXFGyfAUCWiBDlgUJC9W/yAAKCRDyNHlFXFGyfDUFB/4/pRvFCXse+GDcYa9c +G9nfB+hwL3OSQCHnmmHkKTQiV3JF+swZtmhkm/8l5gQQ2K/F3pNkj1Sr8DddX+w2 +aORGWtv6Xsq+6a9SrlMb25frVlkdcSqffqWbtUHcvxUUJC6IGe5WVlyxAsFhNegL +54bh6Ic4FotB++0Yfu5lQ71pzifEqBbvi5lBySErFcNrOpFxx8CBjc63btqwUPBp +DrKpvH+3pzMKJzybg/KJy6P6dd9g8R7dbv2zY9avO+IQkYRasL4pJKxUp+4tX/yo +a/aXP1vazrpAyCAYXNBtq3gPCw4VS2pDTCbxIwDWs6pW+NPy2Gng4IaF93QCY5gE +7tbXmQINBFQwazYBEAC01v949yFYzwbn0UkEkM3MHTrDqWbp+erhXqdVD5ymG/pX +vmqx5KlxL1TZMuWEFuaq9EVkW8Wm5glk4D14IalIVKARAMDwqgNrPnw0GCAmNIf+ +OmvlG7gdsSR93eALJp1vvKZpeEVZj0M0gQ1i4QIIR8PMqs+2jaYyed4HhRYzUbGK +ZMnr94Onby8FIAYq0B79VqBv5NfMc2KEKrLXwuDSjtZd2TGB7qeLF7sCczyFoi5X +Tj+BiVfdxCzoYEa1Rjp5hGllVj85w2DdfKED/BW7VCel4H+WTZGqTFQ1e3kPo1Kd +qlwDF+Ci2JFU6myPy0LpHrNhn6FsdQGOuRKgYPycol7VzJHKtcGNMDkUFGV2Dsgl +jQuWSj5TNNX5umFCIIN94eLvHtV9bXP98yKB/5pr2JhagL6kdU7OE0c/mugA05gG +QTUJDeLNsRq54YC+CLyM9dxMvH7yB43yMfUvgKcSRt0sHUo8g5aOYdFq0SXQUr8+ +t/iH3t5/JxhqBik8FBiu0aISsTDUbvbxQQQe/LhfR+FWDZRFwHOL0VELapfw1whi +tGG+y+F9fQIJfa5yzEiC9AWYZjHRaFB7q6LAvF0V8vP+pkT157fTK63W53mt1+VP +Mt2L732i+/Cqy/6HzwOdnNnNyfEdvm2Jojs8KXN20vChnfUGifvTjxuiFib9sQAR +AQABtB9SaWNoYXJkIExldml0dGUgPGxldml0dGVAbHAuc2U+iQI4BBMBAgAiBQJU +MGwdAhsDBgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAKCRDV6eQ/ffnujKu0D/4j +YQRAyWEU62HOiQJkSIOmMoio3jsfJF7VQnvfqgswvmPXocmQeQ8pdGG3o/YzSXRA +ycwxys1cFODa33n3E1qlDkAzW6QpRrV3EB5VLYY0RD1qcgBB9ToQ+TQ00jCOWGCm +QxH4jeqBKVpXO1itJl2bmOZhzqNAd8jQ31fOOfuwhjyvc7hOev3/Ui5gmhbApDTB +m71eMmy0aAX2XZwuTTzisiV0NExtAm8RjICDeXDqwaYVPmaz2GPqeIxKA+a7xboE +JePqEbL8coKSVebfKXtYoTTIZs7twqUbTI5kQHcyvtu2fKe5vATkbqAvjW11aXJo +yLnlw5GHcT/tPalMsPMRN/fLQLhF6WwlaEOvG+jQwgaaMIL1Lt+M8Q59MCnbdmBh +wes+ype2/EcnFht2PLvx7PpekHoRJosulCl5e81tzyIt9fdlsxJVIu07Rv27agum +D7NFN0kDJDVs8JI2yjPWwuIDxTCtOWvEBDXOujPlElozYNE4gJBj/Tw5aWMobY4n +Ak4C+dZQ5vCwV6/XG8712r+yXOjVYe2W8vPa9Q7Dxc3w5HHDl+p0p6mDCEpr0VBq +xn4K5HnjNDDbvd2j067PtH8avhySGRIV/2AskDeI6jPoUBofWzsDOwWnGj/Rfb56 +toQytliF5VgoV/UO9MQK1YiasyPP++j4dYpz242yXLQlUmljaGFyZCBMZXZpdHRl +IDxsZXZpdHRlQG9wZW5zc2wub3JnPokCOAQTAQIAIgUCVDBsCgIbAwYLCQgHAwIG +FQgCCQoLBBYCAwECHgECF4AACgkQ1enkP3357ozVsA//RvKgkyIyyzBqlsHKlAJP ++9CZqheNnM1xTioAqUHkQyUeTGXVPzK0RfGY0x397SW1X0cAt4GpfV5gdLuhMbes +xcq5hVhM7X14zbAuIJbrrgRS06wH3MCemnpf7xRYyg0SlaUQeCR2UANDTEiusfem +3b1IBt3HRCy/CRY9rASgoyhSIY+dVjiEC3tfH2AOZYRrZPq0TF32ygEFMi4ilMfc +xsAQey+cFt3Jqs2W0YX+ldgYyYZpiZTRa6OorOqkGnLfPB3RHHUqazl7RlzKlXOr +HdeBy55bx9sw9Nlsb5n3bYZQUMnXf1aMADYWwwn0RLtcgigmH/id8HCT49dyPb1O +J4OeXat3jHtjGeqnhXNq74gBHP1WvU4gVWVBtpJ1d+YMWL9+9V/0IlmdbBxLCSqn +imTnRnKcQD7xPMRCPTyN2PT7Ksk29tHGpshp/NKahTvtsA2ziBzRY51NOm+/iGid +RBE4BGkb8lPjuETsBNUY10XtuZY0TIRgW1kx0Y/TEP4rTESCyKvrlqu5WLFWs0rE +5f3CrHokbMdNJOC0BVgC8wixYlMu4JdlsxGaaaa5t/JVowCKzPlQhgP5MI+dy4nV +0xRb1Yi4s0UYtNEYeuLTURZ7Z6lodlYDRYHRxBlp4alzsL3zpayQOL1ID1nMIgZb +ihAgFBeVEmONjEgEKePG1Ra0JVJpY2hhcmQgTGV2aXR0ZSA8cmljaGFyZEBsZXZp +dHRlLm9yZz6JAjsEEwECACUCGwMGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheABQJU +MG0mAhkBAAoJENXp5D99+e6MmN0P/AmpB8DasBnjh9fAlBM8kEZ23MHVdEguPWX8 +KBML4L6eVlWRn7hdfpvOS90Ll5LTdtWPAQs8lDYh4V86hIYgLK9tisZyby+5NT4d +El6CXgHbRjdDbp0xKfGc5F9jWzPZpG8ZdDz6Zbvdooy/4ThXNS16HcsJRckan6oF +jCNAWSNpXDYcLtA7+9ncimrC/C+kGYlyPWJGYZu1C3I+oL3+qWwiqAG9hp/zedsI +sNP7o24wb0SgD0dTzphmOAPwTRfGS2DHhpbAH9P6MZPiFBRGsARRRFfTRGkzI9W1 +M4bv9l/L8s6STpjD8+40f+aUE8cyUcNj1ycyRGFAnwf5MeO3MqzvjocoUyoZNc4t +7/6rh6sceFjgMt/DFFZbi3kvz9cJBcaN6TWWktd4+1WmLxwcF0n3xaB04KCvXTaB +Z5f/Hz5D4O8HyYsS6GlW6yIUiuAOvav8WizaTMbYk81XfXBuBKv7Vxk0fRYf9+HJ +7fyWyIlIN9FqrSiiopA3JR+8gP8ueFcycmLnl2D9fyZn/sv+UCLrMR6fyD/5Etzg +zW0AJ8BDJw5n7ctmZ6UhuasDZZMPC2uB9LVhpQ8W3mDDxJoaYe5bE2p0ca+mwEHZ +QpbpjmtT/2x5rGFZYxBUOhuGn/94zEYSqLLDirlFIEUgucXLOLQHyEl+kEkCLEmS +bn71WsM8tCVSaWNoYXJkIExldml0dGUgPHJpY2hhcmRAb3BlbnNzbC5jb20+iQI4 +BBMBAgAiBQJUO42DAhsDBgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAKCRDV6eQ/ +ffnujLPhD/4n7Jl5/FIKKNPIDJDAYmq/Z36t1m+m0IvSL0yuZh2WSCDo+xurZWVL +PQIrP14ORvWJJzZTmRLUWTxQPDF0z3S4kkopMyqTeHl++to/4eTQPF0QkpLcDXVK +zRe5jzRUTYC8x7mtJHdgKjmWqbgqm63RJg2PphRSbFqoPkfoZ0/kNdzG3bkELlpW +8YphA4guQBlU3N7p52KOavVny03UDLN1jVE/QmD641g4E7iNNxyXNs15iRi884Ox +4+EjBZOQFygx7RtrWXVokOS4Ba4fp3yDnkAdqhN3DtjKGPv7oqMcJuJpuBP6F1Rm +d7eJPS6+nIfJac0EnhDu25k5m248mUAgvtX8PR9n6OB39G6UEKnBoBFpmDpUCJKe +OLwGjvkpB04gAVdIbWJVXVkYVUyX6i2VRQiVEEmEsTNRZKrjyWtHyAzfSg0oEKUT +xijtVbkHZk33SuCSATq+8qKMXDDJHhcpX8/K3zgVOMDTRexY5Zpe47IiL0/CbK3M +N+SnBfgZzsw/TNasJ0a/AUw+FDGIq71UNysVL7dKHeKQX3nRRvHp7blpdCf0bOlB +c4Ni5Rk/QYMAR1zVHgXHOrANzTim1dUHensnlquYGx3sdws2d7G3p0VX5Ke+Drea +l5NraRhMYk0hJTgOy34vf+z1UGejbViVkEgts1X2nRmBInJhZOSyP7QvUmljaGFy +ZCBMZXZpdHRlIDxyaWNoYXJkQG9wZW5zc2xmb3VuZGF0aW9uLmNvbT6JAjgEEwEC +ACIFAlQwa/UCGwMGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJENXp5D99+e6M +3KkP/izg32cHPYfDZaWDVbzV1V1EcyMM1hpsQm4C3bo2UY/06NtLescn/6kUwAlh +Bnn9jfqbhoPzqJXc/kbNxtVRc5JvZxhulBj+UdgoB3wiyrY8tM0+eYMWB4Tej483 +0s4c5rUenM2OrUNrpaLVL5pFm1M7k4m5xaMIkKUVQB0PaCms9NB4yplSIEcL9c3M +5UFm/ipQYML6qp07qknd/NTbNNPUfZreLYQiAr/kZxsjZR4mcCMaal8rcRZVhzkG +wX78aReu0xIdkPaNfJAvrO7NMCz7U3yntwbXmRi1jw4PAXvZjAfgRbOv7ug1xPcV +dbr7YbhL3miyYXH8H72muLvslOvba2CBAE4x6wZi7IEx3VNG9aklOx09PDZy29ty +Px4AhMLPj9GnGROUcMzC3+ZvOPmteaQjdA1MmR2PEAdm1OZLJ1Lb78FcGoWBXdWm +I0XFM09YxAAD1YNvVijPnS193jtTqesKtu57D4PEqLPUupHZZpic9X9T17veSjbI +6B1VCi46HHF4MEbQt7pTsGiNMKS2i/YVTap29Fj8x+cTxAmV2Fb8BWPjdLee5VGy +H8dwDYtMXK7fE6hQFZX3Vn7RXInv4onouolcyq7aPvxYPVnGdijNSMDtHdFx78vS +t9kMx75s8jyJ0ILojuAqB7C2G/ScybtQNYBXAIZtFZWLiPuEuQINBFQwazYBEADP +NcBdaXTUwkG81K9NRKsKGVZ1coVRxkOx2+VD2THTY45sBx9MGmQsmSpjU45kx/wO +5KiTVj+bM+scSzwNgERqLiyf/2hgOIDYaoyKSfAfIVCmm5pSa2Ad01RV9qT3i0eS +Spa1Kpx8eAHKcVsDsWb2ZCd8/MI9778cCjrCbPI4o9zEVK+fjtmYKtdkHsEoMSVU +6Jy86E908OLaJbOeo1a7bSKs4tU8zGWAX+ddY5Cb+w3cHQb4QheDWZHMel8ZcEgT +ah7huS6lUA4seQnTKXHmkIZ+uNtB3gFMKso/6GoOGZnUTk8dPY3POLY1nbMQ/dEv +MQpFxLCOBNQP0lhO4DGP0KuwLXzq2XAxrylX5tY0bNmZKLTjhi4CbKAtc/+iwMUk +QQXJRw7Vlp9Fp9ogOvzx/YlMaZQZZixg5uN2b4UD5cWliHn4Aq7DkTzQJe31m7se +zA3cLnFR86ol2X77y79n0GRjGsMa+b+e9NRWNKs28JiCPF3ya31Kk+3+sjauCZQW +3KYx31Il5bO3ulLHOtxhSkCUHx5sJ81NJIhZFr+7yAel/ECCiT9KbVbhddJBHsd7 +GNkwzb1QivcqnYiBW9QzXkQ+xAKHfS7YM5ooYcg6G7jw89/W0xznnGiz5JTjMkj1 +s9cppQ8tdqiV4Uemvx/96Nr5F7n++UJZ7Oval9/zswARAQABiQIfBBgBAgAJBQJU +MGs2AhsMAAoJENXp5D99+e6M69gP/2MzECejKPv0lN9vHTnqLHiP7BcqbivPNqT4 +V3yal/JfB9c8h2ylsuZSy4r9TKDTgv/KVm6b9kJVsjdzyqwerKwpZ6T8ohyDt+/5 +UAXKY7wH8vR1qZdtRQ8Z/UbsZ2vyDGMKutBIxOYfDcpzZ+e78nRd6k3E6pIbR1ut +S972wQHM/VTEmsvUFZtX+qszOVm2y8adbHzY0FikqN/NZI7NVY+8gkwaybpd6knl +9ArEQe1heVWDGpaTUxz0SKglqc0zHDtxOUkhiCcvgKsAGWbxYspRq0rLsek51RFS +dO7NJ59co96uyIu2r/sGhpk3+/QdAMmb9CGeI+DVFhTZxobBtWxLphS5EJeyHfzO +tZNMijrrB3cw3GWws3nMsMNcN1g/o+MLxpHwcuJkEai4so7rbDf3acUUZFCwEzBP +kx/SeXjatAObEUWmshIgNUw3AFnxdD7QOLJjctRsiGq6GwvsZ/ABDYuHnmGQW3w3 +4fKEYRLCAkOq7NPfMImM/I7Wf6Tq7s24g+2Sg8vr4yrWKoIxp4qB0GpSQmayk1J0 +RKR9dNqYNQsOr9jnI4l7KlOS+2K4b9Y0CJbiCNOdVSCf0AVnubk+2IiTrDCzEBlr +5Dmz1xGC5XdlBeoSujB+HqZMFf8Nbjap5byHhBYB0ypkh738JQBeuJVIgwlHVhMV +8mypBNjWmQENBE76Z9YBCAClJEJJTPrqEX9P84lgfWoeAz6MqIgDxxmIjFMeJZ+s +p47tHnPaam0t4+8v+63RpsIlepNZtsufUyeIVq104YB+2pLWlTLCG0vQRmA5D6Ri +D7PeadLnAZtBMzhTNRyx0gD2hLM9HN19KftTa9ar4SfIVd2e/N6vgSSJKsI12x9M +4G3Zd0poEnz897HGftxg5APVsJoBw7tSQKHmKxLgJWAmxFV7bMxquF8tGSgaEeV+ +AceRKQmVWFWBb2JIa2qihptuJOfIlSke6h09oVa1jZ6kI3ATWCbzAWUjcT9nHCmE +VzT/Fha7JNW5JT8tyO08B5b82HyL+83n+87FVbOkncULABEBAAG0HFRpbSBIdWRz +b24gPHRqaEBvcGVuc3NsLm9yZz6JATgEEwECACIFAlOctAQCGyMGCwkIBwMCBhUI +AgkKCwQWAgMBAh4BAheAAAoJEJGVxIJB+/fdlikH/RLnyBDNaQuyPkl09ZDKYiYq +g0uL/BtjEdzZzGzfV5uk9RctMd5UMU5Lh6phdc/Jei0d/VpQnSxhSoWmQHn6reYf +q9SabApzZzQcscBxL9g0P4mMj4PzYGmhYCkkh1GOTtDtm5wleTaoIKz8KTHzvc7b +LP5XIwrzwrtiRAiAfCCdmKz9hVqllM7yV9HZZzXnd5lAqoxV9wt6eiGfB4ORVJFa +sQsPAA0/+YoWhc8Zta819MRABKw+egfWoRm+DVAEVl+5hPBOJGzrFpZdPVPiGt16 +QgmHVKVh9z46OBup/CfhvXWHY7J7X28c0/zHgI1dFJBOlgGxAzvBGmXkYNLXXMG0 +JlRpbSBIdWRzb24gPHRqaEBvcGVuc3NsZm91bmRhdGlvbi5jb20+iQE4BBMBAgAi +BQJO+mfWAhsjBgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAKCRCRlcSCQfv33cdH +CACS9HhOWAyEAGNhCPjOhYsJRY0iQk57Ekxh2kWTO66NLfX6HwnmOv+6z2uMo6Xx +IDqLtCMFYoURkOUuoYNhZBhbLNNCqBY47382zuivs4X4RUNuewQGCmQd5ASzbCxt +Z6eqMG6qJpnn8lsAbI9yGQ8ofwqSs98CTbRsv4P1DVacwXFqGDeu4qKQ2liIdbQm +CP9mkl7dkwJ2BJrc5X8msu226WVeT7z3lPWlmEWnYtJLnjaLeGjP4wEcaUDm6Lub +RWxUAZ7gqRWqP8dX37Y9VSZvKHOmUINrvLAmhhYlZvt8z32PUA+hICJ7AMwB3V4H +oNy/qJfAtkWqODvnG2HT00BduQENBE76Z9YBCAC5xpa7smrlstM6q6gnBkjTs1Tb +68mtEXTGPpc8ds6T/79sApVbyIq3xXCinqtSwYeH/kkYnB3+kBQDgDsSFos8XpxB +Lqr9mrVk2Bu4Pz/c5/vF9L2uhf1p8nt/V+HlC9p7Q7ZCf/TRFQj+3WFafHbBjzDZ +w6kkJm7gBtzNj6FTHNUxv1t3NzbPSeW7tQbo6ptrclLk+S7rgEnG5t8VOYbo60I6 +bniGUvUVYMVVR49BsZ5tW7jrLToZf5wQEE2C6iud46poPpcDNiBiPi/LBFHCr71K +zGnAWsfHu8lt7v9MarEuXDPoC045DLQyWSKHGP9/uSuesEOpnb63J9gDlgaPABEB +AAGJAR8EGAECAAkFAk76Z9YCGwwACgkQkZXEgkH7990gaAf9FD6fsKERbpB5aSiy +CyXWm4vgIla4U2WE8ttGRNOVX646XHN/lA3W9r84HOsFgK4JvbLomiwZLQS+bvSj +9qplO+s5OqzfWyZpdpjZNhAeb4GsfaYThrT0mCngb6gVnAEpvtf/6+4KIQSxqvbe +GXJyaHtWhhXtqd8qzV6RbXDc5kCDJQMSZiwTxHUo7UmWR3fPJDTfhyyLlD+fjI/H +hHwR140q1xnP2L/4wWF8pNqxX3qcMkXm6uDfRgY0eCdT/BlrJAQ0lfa09h6fsMkH +soHd5Pvpz+TkGHUI7TNMj3oOSrSKSu+qI6kJnOUY9PFNwTq4ljvTdbNLymjJiugL +yosU15kBDQRVlEpGAQgAmdVZaxAD6wKTiQ/VUd6EIuOocLXUuU4v9yRooArbbpLN +lgTyzlDRcNYFpvW5gZ/KXt7sfE72pbDWV2HVFfcf8zyTMygz+2tzDL9ldWTAEqYe +is4NYIH9yQToZGoc1oEkgBYwKoEQUnpq2A4IMggRaD4KSc/7W98raf63IrBOK2u9 +tfg6CZDgKHRsv6d5AHSZTFrJR7vh9EIg33z/qzaebZ5lO7woV0q69yqUdzBsdFEc +20fUUIEv2PsWcfNKx+BzKmbddlfwSWVv6xua7KDFge6uDrg3ISWQWCwd8iz3jOUs +eeiaLYk5QOUJapWyKBqYJiOAbbQSTzkVuQMMB4QSmQARAQABtBdNYXJrIENveCA8 +bWFya0Bhd2UuY29tPokBOgQTAQIAJAIbLwIeAQIXgAULCQgHAwUVCgkICwUWAwIB +AAUCVZUDDgIZAQAKCRA2zuTesAz+MyFiB/99TL4ML2eevVmxbtcN3f70VZtteoKv +wIcZ6hDw3sG8DVAjFlyiwtXtDG/mNOBxuW78o9dCceCI/ngbH4qHbCuiKUXpkh6L +Bw3VnS6eORHWJOk4xPwktHHl9YPf4DO4sraq8OeJyooSqcRO++eCMR1JQiUcG59q +oL93c9zibpanh8K7aoHe5P3bsACJED4kqis4sEa5oDA6JVu4LPccic2LTpOF9LDd +Zxn92Ii6MHdyia3E8tkJiFOXurOw2JNHZHbFBHZaARLES4GLAP28VEfuEZirPECI +w9tJ+jecmxMIYj0SdvMp/bOEdlH1ot/JGMhWEsAlZUG4OEj9V9UDkHP5tBlNYXJr +IENveCA8bWpjQGFwYWNoZS5vcmc+iQE3BBMBAgAhAhsvAh4BAheABQJVlQLqBQsJ +CAcDBRUKCQgLBRYDAgEAAAoJEDbO5N6wDP4zohwH/jOC5HbMlwaMbPHRVkDz5wdV +9qivHXuV1PxNKjCPEv9dEdOq8CcyQqTBfZoc2mUFLrulvZAUxpl3ki6afSL3yjl3 +VlXD8VtFmaAmdBgtLQvQ/PvovW2xnc2alM2iY3e/MXdyRCEx1b6zHYUWJALtZXyQ +a20UE6g9oTePNzaValNnup24ymmPDHy8YWdeHuDTL8dh6ji6v58nwAQkZ3NlYJgp +bUBj4TJfk38fm0h1BRnKCMgOxYp69lwLmC7EbvbgauzYn0Elwl68t02njv0Yga+8 +cHvo84nRQHnn7aVWBaJWwwYKMzMlXndJWsj52gPKXyO51X2Su4jAvGxM59m2VcG0 +GU1hcmsgQ294IDxtamNAcmVkaGF0LmNvbT6JATcEEwECACECGy8CHgECF4AFAlWV +Au4FCwkIBwMFFQoJCAsFFgMCAQAACgkQNs7k3rAM/jODoQf7BTBbQ7v7nJ8CxSr4 +P3Yqsr4jXgaY2O3M0ilodmeo0EgxhK384O1JZ4NV86YVzsGI//+6quGcYGt4fcsk +Rf/9cE4LhhnbP6N2Z4XyyyXVlwJNR6oDyH1zqpZTCtQNmou8hxm1MvmpM67ue2sm +LVg/p1g+h1NWbfjoo4L0UyRUlDlELun6Y737pg6usNK2IOcv6G9gv+QVi3DVGpmU +2+z2SK6Rxh/5Dk5sDoT4oM0e5DL7KTt5Po+dWrUyo+nUtm/3L3ugNHl48vA/Fvy2 +HBH4zxs+Y5kCyiotePiTww49l5QQDYPdFylab8Jd44wpwiJEV93cqxVuzIABFM3R +eFqU5bQbTWFyayBDb3ggPG1hcmtAb3BlbnNzbC5vcmc+iQE3BBMBAgAhAhsvAh4B +AheABQJVlQLuBQsJCAcDBRUKCQgLBRYDAgEAAAoJEDbO5N6wDP4zu7UH/0Y42wgW +GcVzDJu9zFlMX/XPMXJYbSENOsSyq+LUhGKLK7xPjXAl4eWVrUWsGFQTO+syA4fi +pMw1XbTPpXDaNxacfjSwayeTV25H3KmgnQgKQXH3Kkfze9Zxe10vG+knssaOkf5E +YEVtthbBL/k6qKC2zIrixzfS5MOpSK3sAepn1mNBFjtPSikaNwHtxcBXdIbikhuT +pImu/PfGlOaeYwgUm7Sx9BmfGnZLvTz8MGDtqziXld0NxO0lXTh5Y2+Ojv0yWisU +oXA44blslYYWC8aRR3FCWCxMmKfkDb9ztM5KQbQXS/nyYra6/Nsh/Acvgg4GBPOI +enT+uE82YZfpPWG5AQ0EVZT51AEIAO91fZyiPkiioZURT8zZfUtpQxLJOHnovp0h +1yo1xfX7okpq2nM1hytWu3ICZ0CpZw2kv+bmbRdD11xbobFnl/QWb42KThqDL7T/ ++chZz/uMzrHNFgzRCRiTJlkTcI+Q4jK71eyVzMWoiv0xnLRNf46x66AxieXYTkn0 +e7KPC2sUppfIbpRA2BshXuJqCzjaHH/z4+QI7JTAoROayyApVcGgO7njWKVAk+JO +d3iThS+wjnzU0sBIg12yT6q4w/M6MSMOBsqcwOMtx/iXmEHCWCuYzubhOL6Bv3k1 +1pkkBgArD+wZGA5JuFYfTSAnKsCWbDxVmJzGTkqwY9DgIAOpQgUAEQEAAYkCPgQY +AQIACQUCVZT51AIbAgEpCRA2zuTesAz+M8BdIAQZAQIABgUCVZT51AAKCRABClBA +fEyMvSc6B/9tpCI1LeZx9TxpYo8PLw1QcZdwpxQU9hanlg55ZeyL2j104cz/7fzE +qHd4zNlzS5J1fs2xiuDl3pLP+tPz3uOBxiergyAOcprXMCZOjAksvUpwuX/Ek8NI +HjUAk6iCbFB0awUrrXMQq7WY+yYfCP7dUxVkXP6dHOQGs2B94TMUYkJs7/QVYYE0 +qGb4XkgwENH07Wywt/oejBn9UXFo80pv7Rz6jdELoPF60hMT14ZuDu7f9Jxn2of9 +4QJGNlA3OuueQR4W25iaJQe4P4alr3PCTmyuoaFI5K0yHByB489JO4eSPLOer4pf +tNESsDyBwc8A4Fx8ro88xLuufYnoPwrTAkcH/3d/MGABEEmqDwRDXzH/cLh0h9/O +inNEgilOCc+zK+6+7bi7x/jUw+aAIN+bmO/6+EEnl1GQuUj7F2ZxXU9tPRvbYF0u +Coyd+ZMayHbuMc8etThWqvMNlbNeZegLHbNO7NsoDxPmDb/rPlc7tvKdxUVGKfZS +WT78tQAb4JeJUR4G1Rm+3jlkCNoiaFCV02C9HGXu3Amqkz33FJKjCnEv61tmwYZv +kLc9bYQzqXt8rvb3nlZbvbFYlf3oNU7YFV43a4W0y07NtxiXzPhC+E4FIAdiaBbJ +mv9EEXzrMRyXuZFOUZx9wGAC77dHcJ8cw7+MUxpJ5ja8aoFS7ly7sk442gK5AQ0E +VZT5+AEIALH40GSCbgSuXVHjhUYYLeo0TNBevlZD7Po1OEyhi2eEhrWYg/3cAwr0 +/neLXXD6xiAlOXcN01H+OjY4ZAmKzm290LCRBuo9WPsRvHIECAY9XZBeL+tu69bi +SXv07vhvqmMG8yZ6Hi8Q5wUHJvISo6MC6fbq2RUVnkscgqp4jlBVjRNo97Ngi+WE +co+znvu7pio7uXYGPT9UorIPX7cQ2kpbiYM4UU4i/ezbAELc8Ttq4IXzz5zi/Rea +/r7HR7aSpapzVB56Wwg87F3c4zcwK9bdxxgdpRfHnBJ84mrBZlSGwKN6a1ksN/zk +s6R6eNVhO9UbozzVqgl1Riz/aXlv2tsAEQEAAYkBHwQYAQIACQUCVZT5+AIbDAAK +CRA2zuTesAz+M2u5B/997Q3sXvQo3J2ZB/gSXYVIjh76pzabO9NIlhW2fX3Z41Vs +gZKX6tpTGlqUn9Q14EkntzpGBtX/3PtoycH+Ta0E+IfpoINwSy/7SQfWmPhYxjMn +u3LH0ho1mkGMuxXf/dMoapovKY3d//ud6KcPruq+W+8ZXD8CT4zay6z/5JIgFAP1 +viRNtyVmFh6NfZTIsKGyS+jaHniAR9N3cRa1Y7gutwT6cNV1zpTOAOBx0L75xLxG +y6WuyBLaaZIhk0f3ONryFQslIsVGGs/d2QJm2xxywvaq4JrSor+TPJxXu3JrumME +E9U0zENea7N8dQxWQBmXnChX88eRPHOIAdXEWrOj +=YY/2 +-----END PGP PUBLIC KEY BLOCK----- diff --git a/debian/watch b/debian/watch new file mode 100644 index 0000000..4d5c611 --- /dev/null +++ b/debian/watch @@ -0,0 +1,2 @@ +version=3 +opts=pgpsigurlmangle=s/$/.asc/ https://www.openssl.org/source/ openssl-(1.0.2.).tar.gz