Buildroot Archive on lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [patch] openssl-0.9.7l (security)
@ 2007-08-05 20:28 Brad House
  2007-08-11 13:22 ` Brad House
  0 siblings, 1 reply; 2+ messages in thread
From: Brad House @ 2007-08-05 20:28 UTC (permalink / raw)
  To: buildroot

0.9.7e has a few advisories against it.
Here's a patch to bring it up to a more 'secure' version,
should maintain binary compatibility as well.

I've also switched the option 'no-threads' to 'threads'.  It
doesn't actually add any link dependencies to openssl,
it simply enables some callbacks where a programmer can
'register' thread-safe callbacks for mutexes, etc.  If the
programmer doesn't implement them, the library behaves the
same as a no-threads build, so there is no impact here.
Programs which use threads and OpenSSL _will_ crash randomly
if openssl is not compiled with thread support.

Please apply the attached patch, and also remove the
openssl-0.9.7e-no-fips.patch

-Brad

-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: openssl-0.9.7m.patch
Url: http://busybox.net/lists/buildroot/attachments/20070805/1c73b2f1/attachment.diff 

^ permalink raw reply	[flat|nested] 2+ messages in thread
* [Buildroot] [patch] openssl-0.9.7l (security)
  2007-08-05 20:28 [Buildroot] [patch] openssl-0.9.7l (security) Brad House
@ 2007-08-11 13:22 ` Brad House
  0 siblings, 0 replies; 2+ messages in thread
From: Brad House @ 2007-08-11 13:22 UTC (permalink / raw)
  To: buildroot

Any word on getting this committed?
Thanks.
-Brad

Brad House wrote:
> 0.9.7e has a few advisories against it.
> Here's a patch to bring it up to a more 'secure' version,
> should maintain binary compatibility as well.
> 
> I've also switched the option 'no-threads' to 'threads'.  It
> doesn't actually add any link dependencies to openssl,
> it simply enables some callbacks where a programmer can
> 'register' thread-safe callbacks for mutexes, etc.  If the
> programmer doesn't implement them, the library behaves the
> same as a no-threads build, so there is no impact here.
> Programs which use threads and OpenSSL _will_ crash randomly
> if openssl is not compiled with thread support.
> 
> Please apply the attached patch, and also remove the
> openssl-0.9.7e-no-fips.patch
> 
> -Brad
> 
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> buildroot mailing list
> buildroot at uclibc.org
> http://busybox.net/mailman/listinfo/buildroot

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2007-08-11 13:22 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-08-05 20:28 [Buildroot] [patch] openssl-0.9.7l (security) Brad House
2007-08-11 13:22 ` Brad House

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox