From 7c4ab8ff8eff1c3717f7b86ee8bb8c31434d7118 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tom=C3=A1=C5=A1=20Mr=C3=A1z?= Date: Tue, 16 Feb 2010 23:21:07 +0000 Subject: [PATCH] - make TLS work in the FIPS mode --- openssl-1.0.0-beta5-fips.patch | 3 ++- openssl.spec | 5 ++++- 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/openssl-1.0.0-beta5-fips.patch b/openssl-1.0.0-beta5-fips.patch index bd7ae44..0a57f67 100644 --- a/openssl-1.0.0-beta5-fips.patch +++ b/openssl-1.0.0-beta5-fips.patch @@ -11932,10 +11932,11 @@ diff -up openssl-1.0.0-beta5/crypto/whrlpool/whrlpool.h.fips openssl-1.0.0-beta5 diff -up openssl-1.0.0-beta5/crypto/whrlpool/wp_dgst.c.fips openssl-1.0.0-beta5/crypto/whrlpool/wp_dgst.c --- openssl-1.0.0-beta5/crypto/whrlpool/wp_dgst.c.fips 2008-12-29 13:35:49.000000000 +0100 +++ openssl-1.0.0-beta5/crypto/whrlpool/wp_dgst.c 2010-02-16 23:42:49.000000000 +0100 -@@ -53,8 +53,11 @@ +@@ -53,8 +53,12 @@ #include "wp_locl.h" #include ++#include +#ifdef OPENSSL_FIPS +#include +#endif diff --git a/openssl.spec b/openssl.spec index d6eb67b..b2a780f 100644 --- a/openssl.spec +++ b/openssl.spec @@ -23,7 +23,7 @@ Summary: A general purpose cryptography library with TLS implementation Name: openssl Version: 1.0.0 -Release: 0.21.%{beta}%{?dist} +Release: 0.22.%{beta}%{?dist} # We remove certain patented algorithms from the openssl source tarball # with the hobble-openssl script which is included below. Source: openssl-%{version}-%{beta}-usa.tar.bz2 @@ -387,6 +387,9 @@ rm -rf $RPM_BUILD_ROOT/%{_libdir}/fipscanister.* %postun -p /sbin/ldconfig %changelog +* Tue Feb 16 2010 Tomas Mraz 1.0.0-0.22.beta5 +- make TLS work in the FIPS mode + * Fri Feb 12 2010 Tomas Mraz 1.0.0-0.21.beta5 - gracefully handle zero length in assembler implementations of OPENSSL_cleanse (#564029)