From mboxrd@z Thu Jan 1 00:00:00 1970 From: Peter =?utf-8?q?M=C3=BCller?= To: development@lists.ipfire.org Subject: Re: [PATCH] delete obsolete patch for OpenSSL 1.0.x Date: Mon, 26 Mar 2018 20:47:20 +0200 Message-ID: <20180326204720.380c5a95.peter.mueller@link38.eu> In-Reply-To: <1522071318.556038.30.camel@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============3816115134807442565==" List-Id: --===============3816115134807442565== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Hello, thanks, I was missing that. Please drop this patch. Best regards, Peter M=C3=BCller > Hello, >=20 > this patch is actually used in lfs/openssl-compat. >=20 > We still ship the old version since some add-ons and some old (self-compile= d) > binaries might still be linked against this. It is to be determined for how= long > we will continue to ship both versions. >=20 > Best, > -Michael >=20 > On Sat, 2018-03-24 at 15:59 +0100, Peter M=C3=BCller wrote: > > This patch became obsolete since we use OpenSSL 1.1.x in Core Update > > 120 and onward, where a similar patch already exists. > >=20 > > Signed-off-by: Peter M=C3=BCller > > --- > > src/patches/openssl-1.0.2h-weak-ciphers.patch | 12 ------------ > > 1 file changed, 12 deletions(-) > > delete mode 100644 src/patches/openssl-1.0.2h-weak-ciphers.patch > >=20 > > diff --git a/src/patches/openssl-1.0.2h-weak-ciphers.patch > > b/src/patches/openssl-1.0.2h-weak-ciphers.patch > > deleted file mode 100644 > > index d1ec6a2af..000000000 > > --- a/src/patches/openssl-1.0.2h-weak-ciphers.patch > > +++ /dev/null > > @@ -1,12 +0,0 @@ > > -diff -Naur openssl-1.0.2h.org/ssl/ssl.h openssl-1.0.2h/ssl/ssl.h > > ---- openssl-1.0.2h.org/ssl/ssl.h 2016-05-03 15:44:42.000000000 +0200 > > -+++ openssl-1.0.2h/ssl/ssl.h 2016-05-03 18:49:10.393302264 +0200 > > -@@ -338,7 +338,7 @@ > > - * The following cipher list is used by default. It also is substituted= when > > - * an application-defined cipher list string starts with 'DEFAULT'. > > - */ > > --# define SSL_DEFAULT_CIPHER_LIST "ALL:!EXPORT:!LOW:!aNULL:!eNULL:!SSLv2" > > -+# define SSL_DEFAULT_CIPHER_LIST > > "ALL:!EXPORT:!LOW:!aNULL:!eNULL:!SSLv2:!RC2:!DES" > > - /* > > - * As of OpenSSL 1.0.0, ssl_create_cipher_list() in ssl/ssl_ciph.c alwa= ys > > - * starts with a reasonable order, and all we have to do for DEFAULT is= =20 --===============3816115134807442565==--