]> git.ipfire.org Git - ipfire-2.x.git/commitdiff
projects / ipfire-2.x.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 8f095fb)
drop orphaned OpenSSL patches
authorPeter Müller <peter.mueller@ipfire.org>
Mon, 5 Nov 2018 15:21:43 +0000 (16:21 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Thu, 17 Jan 2019 14:42:37 +0000 (14:42 +0000)
Signed-off-by: Peter Müller <peter.mueller@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
src/patches/openssl-1.0.2h-weak-ciphers.patch [deleted file] patch | blob | blame | history
src/patches/openssl-1.1.0g-weak-ciphers.patch [deleted file] patch | blob | blame | history

diff --git a/src/patches/openssl-1.0.2h-weak-ciphers.patch b/src/patches/openssl-1.0.2h-weak-ciphers.patch
deleted file mode 100644 (file)
index d1ec6a2..0000000
--- a/src/patches/openssl-1.0.2h-weak-ciphers.patch
+++ /dev/null
@@ -1,12 +0,0 @@
-diff -Naur openssl-1.0.2h.org/ssl/ssl.h openssl-1.0.2h/ssl/ssl.h
---- openssl-1.0.2h.org/ssl/ssl.h       2016-05-03 15:44:42.000000000 +0200
-+++ openssl-1.0.2h/ssl/ssl.h   2016-05-03 18:49:10.393302264 +0200
-@@ -338,7 +338,7 @@
-  * The following cipher list is used by default. It also is substituted when
-  * an application-defined cipher list string starts with 'DEFAULT'.
-  */
--# define SSL_DEFAULT_CIPHER_LIST "ALL:!EXPORT:!LOW:!aNULL:!eNULL:!SSLv2"
-+# define SSL_DEFAULT_CIPHER_LIST "ALL:!EXPORT:!LOW:!aNULL:!eNULL:!SSLv2:!RC2:!DES"
- /*
-  * As of OpenSSL 1.0.0, ssl_create_cipher_list() in ssl/ssl_ciph.c always
-  * starts with a reasonable order, and all we have to do for DEFAULT is
diff --git a/src/patches/openssl-1.1.0g-weak-ciphers.patch b/src/patches/openssl-1.1.0g-weak-ciphers.patch
deleted file mode 100644 (file)
index 66dad2b..0000000
--- a/src/patches/openssl-1.1.0g-weak-ciphers.patch
+++ /dev/null
@@ -1,11 +0,0 @@
---- openssl-1.1.0g-orig/include/openssl/ssl.h  2017-11-02 15:29:05.000000000 +0100
-+++ openssl-1.1.0g/include/openssl/ssl.h       2018-02-27 18:23:43.522649728 +0100
-@@ -194,7 +194,7 @@
-  * The following cipher list is used by default. It also is substituted when
-  * an application-defined cipher list string starts with 'DEFAULT'.
-  */
--# define SSL_DEFAULT_CIPHER_LIST "ALL:!COMPLEMENTOFDEFAULT:!eNULL"
-+# define SSL_DEFAULT_CIPHER_LIST "kEECDH+ECDSA:kEECDH:kEDH:HIGH:+SHA:+kRSA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!kECDH:!IDEA:!SEED:!RC4:!kDH:!DSS"
- /*
-  * As of OpenSSL 1.0.0, ssl_create_cipher_list() in ssl/ssl_ciph.c always
-  * starts with a reasonable order, and all we have to do for DEFAULT is
IPFire 2.x development tree