From mboxrd@z Thu Jan  1 00:00:00 1970
From: Adolf Belka <adolf.belka@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH 1/2] openssl: Fix for Bug#13117 - adds legacy option in for
 openssl extraction of cert & key
Date: Sun, 21 May 2023 14:45:43 +0200
Message-ID: <20230521124544.3457345-1-adolf.belka@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============8712533438537634079=="
List-Id: <development.lists.ipfire.org>

--===============8712533438537634079==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

- OpenSSL-3.x gives an error when trying to open insecure .p12 files to extra=
ct the cert
   and key for the insecure package download option.
- To make this work the -legacy option is needed in the openssl command, whic=
h requires
   the legacy.so library to be available.
- Successfully tested on a vm system.
- Patch set built on Master (CU175 Testing)

Tested-by: Adolf Belka <adolf.belka(a)ipfire.org>
Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
 config/rootfiles/common/openssl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/rootfiles/common/openssl b/config/rootfiles/common/openssl
index e29bc6dc1..44ae2cda9 100644
--- a/config/rootfiles/common/openssl
+++ b/config/rootfiles/common/openssl
@@ -160,7 +160,7 @@ usr/lib/libcrypto.so.3
 usr/lib/libssl.so
 usr/lib/libssl.so.3
 #usr/lib/ossl-modules
-#usr/lib/ossl-modules/legacy.so
+usr/lib/ossl-modules/legacy.so
 #usr/lib/pkgconfig/libcrypto.pc
 #usr/lib/pkgconfig/libssl.pc
 #usr/lib/pkgconfig/openssl.pc
--=20
2.40.1


--===============8712533438537634079==--