[OE-core] [PATCH 1/5] openssl_1.0: drop obsolete ca.patch
Andre McCurdy
armccurdy at gmail.com
Sat Jul 28 21:01:00 UTC 2018
On Sat, Jul 28, 2018 at 10:33 AM, Alexander Kanavin
<alex.kanavin at gmail.com> wrote:
> Andre, do take a look at 1.1 as well. As soon as the final openssl
> 1.1.1 is released (and I get the powerful build box my new employer
> promised), I'll send a patchset that makes 1.1 the default - I'm not
> sure you should put all this effort into a soon obsolete version.
I will certainly look at the 1.1 recipe too, but any work on cleaning
up the 1.0 recipe won't go to waste. I work with a silicon supplier
who's current SDK is based on daisy (they are in the process of
updating to morty). Their silicon and daisy based firmware images ship
in literally millions of products (all of them with a high speed
internet connection). Having a more robust openssl 1.0 recipe in
master gives me something I can more easily backport to the older OE
releases used in these SDKs.
> 2018-07-28 1:27 GMT+02:00 Andre McCurdy <armccurdy at gmail.com>:
>> This patch adds a second line to the -help output of the CA.pl script
>> (which lists almost the same command line options as the line above
>> it but in a slightly different order). Although it's tagged as a
>> Debian backport, there's no patch like it in recent Debian patch sets
>> for openssl 1.0.2.
>>
>> Signed-off-by: Andre McCurdy <armccurdy at gmail.com>
>> ---
>> .../openssl/openssl-1.0.2o/debian/ca.patch | 22 ----------------------
>> .../recipes-connectivity/openssl/openssl_1.0.2o.bb | 1 -
>> 2 files changed, 23 deletions(-)
>> delete mode 100644 meta/recipes-connectivity/openssl/openssl-1.0.2o/debian/ca.patch
>>
>> diff --git a/meta/recipes-connectivity/openssl/openssl-1.0.2o/debian/ca.patch b/meta/recipes-connectivity/openssl/openssl-1.0.2o/debian/ca.patch
>> deleted file mode 100644
>> index fb745e4..0000000
>> --- a/meta/recipes-connectivity/openssl/openssl-1.0.2o/debian/ca.patch
>> +++ /dev/null
>> @@ -1,22 +0,0 @@
>> -Upstream-Status: Backport [debian]
>> -
>> -Index: openssl-0.9.8m/apps/CA.pl.in
>> -===================================================================
>> ---- openssl-0.9.8m.orig/apps/CA.pl.in 2006-04-28 00:28:51.000000000 +0000
>> -+++ openssl-0.9.8m/apps/CA.pl.in 2010-02-27 00:36:51.000000000 +0000
>> -@@ -65,6 +65,7 @@
>> - foreach (@ARGV) {
>> - if ( /^(-\?|-h|-help)$/ ) {
>> - print STDERR "usage: CA -newcert|-newreq|-newreq-nodes|-newca|-sign|-signcert|-verify\n";
>> -+ print STDERR "usage: CA -signcert certfile keyfile|-newcert|-newreq|-newca|-sign|-verify\n";
>> - exit 0;
>> - } elsif (/^-newcert$/) {
>> - # create a certificate
>> -@@ -165,6 +166,7 @@
>> - } else {
>> - print STDERR "Unknown arg $_\n";
>> - print STDERR "usage: CA -newcert|-newreq|-newreq-nodes|-newca|-sign|-verify\n";
>> -+ print STDERR "usage: CA -signcert certfile keyfile|-newcert|-newreq|-newca|-sign|-verify\n";
>> - exit 1;
>> - }
>> - }
>> diff --git a/meta/recipes-connectivity/openssl/openssl_1.0.2o.bb b/meta/recipes-connectivity/openssl/openssl_1.0.2o.bb
>> index 9e5e7ec..ee1c1f7 100644
>> --- a/meta/recipes-connectivity/openssl/openssl_1.0.2o.bb
>> +++ b/meta/recipes-connectivity/openssl/openssl_1.0.2o.bb
>> @@ -23,7 +23,6 @@ SRC_URI = "http://www.openssl.org/source/openssl-${PV}.tar.gz \
>> file://engines-install-in-libdir-ssl.patch \
>> file://debian1.0.2/block_diginotar.patch \
>> file://debian1.0.2/block_digicert_malaysia.patch \
>> - file://debian/ca.patch \
>> file://debian/c_rehash-compat.patch \
>> file://debian/debian-targets.patch \
>> file://debian/man-dir.patch \
>> --
>> 1.9.1
>>
>> --
>> _______________________________________________
>> Openembedded-core mailing list
>> Openembedded-core at lists.openembedded.org
>> http://lists.openembedded.org/mailman/listinfo/openembedded-core
More information about the Openembedded-core
mailing list