* [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a @ 2019-01-08 13:45 Oliver Graute 2019-01-09 12:31 ` Denis OSTERLAND 0 siblings, 1 reply; 6+ messages in thread From: Oliver Graute @ 2019-01-08 13:45 UTC (permalink / raw) To: ptxdist, oliver.graute; +Cc: Oliver Graute this patch bump openssl to LTS version 1.1.1a Signed-off-by: Oliver Graute <oliver.graute@neuhaus.de> --- first try to get LTS openssl into ptxdist - added debian-armel to Configurations/10-main.conf for compiling on arm - dropped the other patches, are these still necessary? .../openssl-1.1.1a/0001-added-debian-armel.patch | 41 ++++++++++++++++++++++ patches/openssl-1.1.1a/series | 1 + rules/openssl.make | 10 +++--- 3 files changed, 47 insertions(+), 5 deletions(-) create mode 100644 patches/openssl-1.1.1a/0001-added-debian-armel.patch create mode 100644 patches/openssl-1.1.1a/series diff --git a/patches/openssl-1.1.1a/0001-added-debian-armel.patch b/patches/openssl-1.1.1a/0001-added-debian-armel.patch new file mode 100644 index 0000000..567a405 --- /dev/null +++ b/patches/openssl-1.1.1a/0001-added-debian-armel.patch @@ -0,0 +1,41 @@ +From 3144929533150f6c5cb1d3e4e915fd3e9556af5d Mon Sep 17 00:00:00 2001 +From: Oliver Graute <oliver.graute@neuhaus.de> +Date: Tue, 8 Jan 2019 13:17:55 +0100 +Subject: [PATCH] openssl: added debian-armel to Configuration + +added target debian-armel to 10-main.conf + +--- + Configurations/10-main.conf | 16 ++++++++++++++++ + 1 file changed, 16 insertions(+) + +diff --git a/Configurations/10-main.conf b/Configurations/10-main.conf +index 5cf345d..5f1bdfe 100644 +--- a/Configurations/10-main.conf ++++ b/Configurations/10-main.conf +@@ -627,6 +627,22 @@ my %targets = ( + shared_extension => ".so", + }, + ++ "debian-armel" => { ++ inherit_from => [ "linux-generic32", asm("armv4_asm") ], ++ CC => "gcc", ++ CFLAGS => "", ++ cflags => "-g -O2 -Wformat -Werror=format-security " . "-Wa,--noexecstack -Wall", ++ cppflags => threads("-D_REENTRANT"), ++ lib_cppflags => "-DL_ENDIAN", ++ ex_libs => add("-ldl"), ++ bn_ops => "BN_LLONG RC4_CHAR ++ RC4_CHUNK DES_INT DES_UNROLL BF_PTR", ++ dso_scheme => "dlfcn", ++ shared_target => "linux-shared", ++ shared_cflag => "-fPIC", ++ shared_extension => ".so", ++ }, ++ + #### + #### Variety of LINUX:-) + #### +-- +1.9.1 + diff --git a/patches/openssl-1.1.1a/series b/patches/openssl-1.1.1a/series new file mode 100644 index 0000000..d11a458 --- /dev/null +++ b/patches/openssl-1.1.1a/series @@ -0,0 +1 @@ +0001-added-debian-armel.patch diff --git a/rules/openssl.make b/rules/openssl.make index d514077..0ace6c3 100644 --- a/rules/openssl.make +++ b/rules/openssl.make @@ -18,10 +18,10 @@ PACKAGES-$(PTXCONF_OPENSSL) += openssl # # Paths and names # -OPENSSL_BASE := 1.0.2 -OPENSSL_BUGFIX := q +OPENSSL_BASE := 1.1.1 +OPENSSL_BUGFIX := a OPENSSL_VERSION := $(OPENSSL_BASE)$(OPENSSL_BUGFIX) -OPENSSL_MD5 := 7563e1ce046cb21948eeb6ba1a0eb71c +OPENSSL_MD5 := 963deb2272d6be7d4c2458afd2517b73 OPENSSL := openssl-$(OPENSSL_VERSION) OPENSSL_SUFFIX := tar.gz OPENSSL_URL := \ @@ -74,7 +74,7 @@ endif OPENSSL_CONF_OPT := \ --prefix=/usr \ --openssldir=/usr/lib/ssl \ - --install_prefix=$(OPENSSL_PKGDIR) \ + DESTDIR=$(OPENSSL_PKGDIR) \ shared OPENSSL_INSTALL_OPT := \ @@ -106,7 +106,7 @@ ifdef PTXCONF_OPENSSL_BIN endif @$(call install_alternative, openssl, 0, 0, 0644, \ - /usr/lib/ssl/openssl.cnf) + /apps/openssl.cnf) @$(call install_lib, openssl, 0, 0, 0644, libssl) @$(call install_lib, openssl, 0, 0, 0644, libcrypto) -- 1.9.1 _______________________________________________ ptxdist mailing list ptxdist@pengutronix.de ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a 2019-01-08 13:45 [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a Oliver Graute @ 2019-01-09 12:31 ` Denis OSTERLAND 2019-01-09 13:23 ` Ladislav Michl ` (2 more replies) 0 siblings, 3 replies; 6+ messages in thread From: Denis OSTERLAND @ 2019-01-09 12:31 UTC (permalink / raw) To: ptxdist Hi Oliver, AFAIK OpenSSL 1.0 -> 1.1 is a bigger step. On which architectures have you tried it? Do you compiled ALL_YES? Am Dienstag, den 08.01.2019, 14:45 +0100 schrieb Oliver Graute: > this patch bump openssl to LTS version 1.1.1a > > Signed-off-by: Oliver Graute <oliver.graute@neuhaus.de> > --- > > first try to get LTS openssl into ptxdist > > - added debian-armel to Configurations/10-main.conf for compiling on arm I would use the patches from http://deb.debian.org/debian/pool/main/o/openssl/openssl_1.1.1a-1.debian.tar.xz to replace the patches imported from openssl1.0_1.0.2o-1.debian.tar.xz. The patches 0100 and 0101 can be dropped, if it builds in parallel, I guess. > - dropped the other patches, are these still necessary? You should delete this patches. Actually your patches does not delete them. > > .../openssl-1.1.1a/0001-added-debian-armel.patch | 41 ++++++++++++++++++++++ > patches/openssl-1.1.1a/series | 1 + > rules/openssl.make | 10 +++--- > 3 files changed, 47 insertions(+), 5 deletions(-) > create mode 100644 patches/openssl-1.1.1a/0001-added-debian-armel.patch > create mode 100644 patches/openssl-1.1.1a/series > > diff --git a/patches/openssl-1.1.1a/0001-added-debian-armel.patch b/patches/openssl-1.1.1a/0001-added-debian-armel.patch > new file mode 100644 > index 0000000..567a405 > --- /dev/null > +++ b/patches/openssl-1.1.1a/0001-added-debian-armel.patch > @@ -0,0 +1,41 @@ > +From 3144929533150f6c5cb1d3e4e915fd3e9556af5d Mon Sep 17 00:00:00 2001 > +From: Oliver Graute <oliver.graute@neuhaus.de> > +Date: Tue, 8 Jan 2019 13:17:55 +0100 > +Subject: [PATCH] openssl: added debian-armel to Configuration > + > +added target debian-armel to 10-main.conf > + > +--- > + Configurations/10-main.conf | 16 ++++++++++++++++ > + 1 file changed, 16 insertions(+) > + > +diff --git a/Configurations/10-main.conf b/Configurations/10-main.conf > +index 5cf345d..5f1bdfe 100644 > +--- a/Configurations/10-main.conf > ++++ b/Configurations/10-main.conf > +@@ -627,6 +627,22 @@ my %targets = ( > + shared_extension => ".so", > + }, > + > ++ "debian-armel" => { > ++ inherit_from => [ "linux-generic32", asm("armv4_asm") ], > ++ CC => "gcc", > ++ CFLAGS => "", > ++ cflags => "-g -O2 -Wformat -Werror=format-security " . "-Wa,--noexecstack -Wall", > ++ cppflags => threads("-D_REENTRANT"), > ++ lib_cppflags => "-DL_ENDIAN", > ++ ex_libs => add("-ldl"), > ++ bn_ops => "BN_LLONG RC4_CHAR > ++ RC4_CHUNK DES_INT DES_UNROLL BF_PTR", > ++ dso_scheme => "dlfcn", > ++ shared_target => "linux-shared", > ++ shared_cflag => "-fPIC", > ++ shared_extension => ".so", > ++ }, > ++ > + #### > + #### Variety of LINUX:-) > + #### > +-- > +1.9.1 > + > diff --git a/patches/openssl-1.1.1a/series b/patches/openssl-1.1.1a/series > new file mode 100644 > index 0000000..d11a458 > --- /dev/null > +++ b/patches/openssl-1.1.1a/series > @@ -0,0 +1 @@ > +0001-added-debian-armel.patch > diff --git a/rules/openssl.make b/rules/openssl.make > index d514077..0ace6c3 100644 > --- a/rules/openssl.make > +++ b/rules/openssl.make > @@ -18,10 +18,10 @@ PACKAGES-$(PTXCONF_OPENSSL) += openssl > # > # Paths and names > # > -OPENSSL_BASE := 1.0.2 > -OPENSSL_BUGFIX := q > +OPENSSL_BASE := 1.1.1 > +OPENSSL_BUGFIX := a > OPENSSL_VERSION := $(OPENSSL_BASE)$(OPENSSL_BUGFIX) > -OPENSSL_MD5 := 7563e1ce046cb21948eeb6ba1a0eb71c > +OPENSSL_MD5 := 963deb2272d6be7d4c2458afd2517b73 > OPENSSL := openssl-$(OPENSSL_VERSION) > OPENSSL_SUFFIX := tar.gz > OPENSSL_URL := \ > @@ -74,7 +74,7 @@ endif > OPENSSL_CONF_OPT := \ > --prefix=/usr \ > --openssldir=/usr/lib/ssl \ > - --install_prefix=$(OPENSSL_PKGDIR) \ > + DESTDIR=$(OPENSSL_PKGDIR) \ > shared > > OPENSSL_INSTALL_OPT := \ > @@ -106,7 +106,7 @@ ifdef PTXCONF_OPENSSL_BIN > endif > > @$(call install_alternative, openssl, 0, 0, 0644, \ > - /usr/lib/ssl/openssl.cnf) > + /apps/openssl.cnf) > > @$(call install_lib, openssl, 0, 0, 0644, libssl) > @$(call install_lib, openssl, 0, 0, 0644, libcrypto) Diehl Connectivity Solutions GmbH Geschäftsführung: Horst Leonberger Sitz der Gesellschaft: Nürnberg - Registergericht: Amtsgericht Nürnberg: HRB 32315 ___________________________________________________________________________________________________ Der Inhalt der vorstehenden E-Mail ist nicht rechtlich bindend. Diese E-Mail enthaelt vertrauliche und/oder rechtlich geschuetzte Informationen. Informieren Sie uns bitte, wenn Sie diese E-Mail faelschlicherweise erhalten haben. Bitte loeschen Sie in diesem Fall die Nachricht. Jede unerlaubte Form der Reproduktion, Bekanntgabe, Aenderung, Verteilung und/oder Publikation dieser E-Mail ist strengstens untersagt. The contents of the above mentioned e-mail is not legally binding. This e-mail contains confidential and/or legally protected information. Please inform us if you have received this e-mail by mistake and delete it in such a case. Each unauthorized reproduction, disclosure, alteration, distribution and/or publication of this e-mail is strictly prohibited. _______________________________________________ ptxdist mailing list ptxdist@pengutronix.de ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a 2019-01-09 12:31 ` Denis OSTERLAND @ 2019-01-09 13:23 ` Ladislav Michl 2019-01-09 13:27 ` Oliver Graute 2019-01-09 14:14 ` Michael Olbrich 2 siblings, 0 replies; 6+ messages in thread From: Ladislav Michl @ 2019-01-09 13:23 UTC (permalink / raw) To: ptxdist On Wed, Jan 09, 2019 at 12:31:12PM +0000, Denis OSTERLAND wrote: > Hi Oliver, > > AFAIK OpenSSL 1.0 -> 1.1 is a bigger step. But it is worth doing as I could then finally drop local patches to enable crypodev ;-) > On which architectures have you tried it? Just tried on OMAP3 board only. Compiles and runs fine (even with /dev/crypto) > Do you compiled ALL_YES? > > Am Dienstag, den 08.01.2019, 14:45 +0100 schrieb Oliver Graute: > > this patch bump openssl to LTS version 1.1.1a > > > > Signed-off-by: Oliver Graute <oliver.graute@neuhaus.de> > > --- > > > > first try to get LTS openssl into ptxdist > > > > - added debian-armel to Configurations/10-main.conf for compiling on arm > I would use the patches from http://deb.debian.org/debian/pool/main/o/openssl/openssl_1.1.1a-1.debian.tar.xz > to replace the patches imported from openssl1.0_1.0.2o-1.debian.tar.xz. > > The patches 0100 and 0101 can be dropped, if it builds in parallel, I guess. > > > - dropped the other patches, are these still necessary? > You should delete this patches. > Actually your patches does not delete them. > > > > > .../openssl-1.1.1a/0001-added-debian-armel.patch | 41 ++++++++++++++++++++++ > > patches/openssl-1.1.1a/series | 1 + > > rules/openssl.make | 10 +++--- > > 3 files changed, 47 insertions(+), 5 deletions(-) > > create mode 100644 patches/openssl-1.1.1a/0001-added-debian-armel.patch > > create mode 100644 patches/openssl-1.1.1a/series > > > > diff --git a/patches/openssl-1.1.1a/0001-added-debian-armel.patch b/patches/openssl-1.1.1a/0001-added-debian-armel.patch > > new file mode 100644 > > index 0000000..567a405 > > --- /dev/null > > +++ b/patches/openssl-1.1.1a/0001-added-debian-armel.patch > > @@ -0,0 +1,41 @@ > > +From 3144929533150f6c5cb1d3e4e915fd3e9556af5d Mon Sep 17 00:00:00 2001 > > +From: Oliver Graute <oliver.graute@neuhaus.de> > > +Date: Tue, 8 Jan 2019 13:17:55 +0100 > > +Subject: [PATCH] openssl: added debian-armel to Configuration > > + > > +added target debian-armel to 10-main.conf > > + > > +--- > > + Configurations/10-main.conf | 16 ++++++++++++++++ > > + 1 file changed, 16 insertions(+) > > + > > +diff --git a/Configurations/10-main.conf b/Configurations/10-main.conf > > +index 5cf345d..5f1bdfe 100644 > > +--- a/Configurations/10-main.conf > > ++++ b/Configurations/10-main.conf > > +@@ -627,6 +627,22 @@ my %targets = ( > > + shared_extension => ".so", > > + }, > > + > > ++ "debian-armel" => { > > ++ inherit_from => [ "linux-generic32", asm("armv4_asm") ], > > ++ CC => "gcc", > > ++ CFLAGS => "", > > ++ cflags => "-g -O2 -Wformat -Werror=format-security " . "-Wa,--noexecstack -Wall", > > ++ cppflags => threads("-D_REENTRANT"), > > ++ lib_cppflags => "-DL_ENDIAN", > > ++ ex_libs => add("-ldl"), > > ++ bn_ops => "BN_LLONG RC4_CHAR > > ++ RC4_CHUNK DES_INT DES_UNROLL BF_PTR", > > ++ dso_scheme => "dlfcn", > > ++ shared_target => "linux-shared", > > ++ shared_cflag => "-fPIC", > > ++ shared_extension => ".so", > > ++ }, > > ++ > > + #### > > + #### Variety of LINUX:-) > > + #### > > +-- > > +1.9.1 > > + > > diff --git a/patches/openssl-1.1.1a/series b/patches/openssl-1.1.1a/series > > new file mode 100644 > > index 0000000..d11a458 > > --- /dev/null > > +++ b/patches/openssl-1.1.1a/series > > @@ -0,0 +1 @@ > > +0001-added-debian-armel.patch > > diff --git a/rules/openssl.make b/rules/openssl.make > > index d514077..0ace6c3 100644 > > --- a/rules/openssl.make > > +++ b/rules/openssl.make > > @@ -18,10 +18,10 @@ PACKAGES-$(PTXCONF_OPENSSL) += openssl > > # > > # Paths and names > > # > > -OPENSSL_BASE := 1.0.2 > > -OPENSSL_BUGFIX := q > > +OPENSSL_BASE := 1.1.1 > > +OPENSSL_BUGFIX := a > > OPENSSL_VERSION := $(OPENSSL_BASE)$(OPENSSL_BUGFIX) > > -OPENSSL_MD5 := 7563e1ce046cb21948eeb6ba1a0eb71c > > +OPENSSL_MD5 := 963deb2272d6be7d4c2458afd2517b73 > > OPENSSL := openssl-$(OPENSSL_VERSION) > > OPENSSL_SUFFIX := tar.gz > > OPENSSL_URL := \ > > @@ -74,7 +74,7 @@ endif > > OPENSSL_CONF_OPT := \ > > --prefix=/usr \ > > --openssldir=/usr/lib/ssl \ > > - --install_prefix=$(OPENSSL_PKGDIR) \ > > + DESTDIR=$(OPENSSL_PKGDIR) \ > > shared > > > > OPENSSL_INSTALL_OPT := \ > > @@ -106,7 +106,7 @@ ifdef PTXCONF_OPENSSL_BIN > > endif > > > > @$(call install_alternative, openssl, 0, 0, 0644, \ > > - /usr/lib/ssl/openssl.cnf) > > + /apps/openssl.cnf) > > > > @$(call install_lib, openssl, 0, 0, 0644, libssl) > > @$(call install_lib, openssl, 0, 0, 0644, libcrypto) > > Diehl Connectivity Solutions GmbH > Geschäftsführung: Horst Leonberger > Sitz der Gesellschaft: Nürnberg - Registergericht: Amtsgericht > Nürnberg: HRB 32315 > ___________________________________________________________________________________________________ > > Der Inhalt der vorstehenden E-Mail ist nicht rechtlich bindend. Diese E-Mail enthaelt vertrauliche und/oder rechtlich geschuetzte Informationen. > Informieren Sie uns bitte, wenn Sie diese E-Mail faelschlicherweise erhalten haben. Bitte loeschen Sie in diesem Fall die Nachricht. > Jede unerlaubte Form der Reproduktion, Bekanntgabe, Aenderung, Verteilung und/oder Publikation dieser E-Mail ist strengstens untersagt. > The contents of the above mentioned e-mail is not legally binding. This e-mail contains confidential and/or legally protected information. Please inform us if you have received this e-mail by > mistake and delete it in such a case. Each unauthorized reproduction, disclosure, alteration, distribution and/or publication of this e-mail is strictly prohibited. > _______________________________________________ > ptxdist mailing list > ptxdist@pengutronix.de _______________________________________________ ptxdist mailing list ptxdist@pengutronix.de ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a 2019-01-09 12:31 ` Denis OSTERLAND 2019-01-09 13:23 ` Ladislav Michl @ 2019-01-09 13:27 ` Oliver Graute 2019-01-09 14:14 ` Michael Olbrich 2 siblings, 0 replies; 6+ messages in thread From: Oliver Graute @ 2019-01-09 13:27 UTC (permalink / raw) To: ptxdist On 09/01/19, Denis OSTERLAND wrote: > Hi Oliver, > > AFAIK OpenSSL 1.0 -> 1.1 is a bigger step. I know, so I started with this little changes to get feedback as early as possible. > On which architectures have you tried it? > Do you compiled ALL_YES? no, I just compiled for debian-armel, for the other architectures we need to patch 10-main.conf accordingly. > > Am Dienstag, den 08.01.2019, 14:45 +0100 schrieb Oliver Graute: > > this patch bump openssl to LTS version 1.1.1a > > > > - added debian-armel to Configurations/10-main.conf for compiling on arm > I would use the patches from http://deb.debian.org/debian/pool/main/o/openssl/openssl_1.1.1a-1.debian.tar.xz > to replace the patches imported from openssl1.0_1.0.2o-1.debian.tar.xz. > > The patches 0100 and 0101 can be dropped, if it builds in parallel, I guess. I'll look into it > > > - dropped the other patches, are these still necessary? > You should delete this patches. > Actually your patches does not delete them. yes you a right. Best regards, Oliver _______________________________________________ ptxdist mailing list ptxdist@pengutronix.de ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a 2019-01-09 12:31 ` Denis OSTERLAND 2019-01-09 13:23 ` Ladislav Michl 2019-01-09 13:27 ` Oliver Graute @ 2019-01-09 14:14 ` Michael Olbrich 2019-01-09 14:23 ` Oliver Graute 2 siblings, 1 reply; 6+ messages in thread From: Michael Olbrich @ 2019-01-09 14:14 UTC (permalink / raw) To: ptxdist Hi, On Wed, Jan 09, 2019 at 12:31:12PM +0000, Denis OSTERLAND wrote: > AFAIK OpenSSL 1.0 -> 1.1 is a bigger step. > On which architectures have you tried it? > Do you compiled ALL_YES? > > Am Dienstag, den 08.01.2019, 14:45 +0100 schrieb Oliver Graute: > > this patch bump openssl to LTS version 1.1.1a I've spent some time to this, including all packages in PTXdist. Some of the changes are already mainline, but not everything works yet. Please be patient. We will get there in the next few months. Michael -- Pengutronix e.K. | | Industrial Linux Solutions | http://www.pengutronix.de/ | Peiner Str. 6-8, 31137 Hildesheim, Germany | Phone: +49-5121-206917-0 | Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 | _______________________________________________ ptxdist mailing list ptxdist@pengutronix.de ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a 2019-01-09 14:14 ` Michael Olbrich @ 2019-01-09 14:23 ` Oliver Graute 0 siblings, 0 replies; 6+ messages in thread From: Oliver Graute @ 2019-01-09 14:23 UTC (permalink / raw) To: ptxdist On 09/01/19, Michael Olbrich wrote: > Hi, > > On Wed, Jan 09, 2019 at 12:31:12PM +0000, Denis OSTERLAND wrote: > > AFAIK OpenSSL 1.0 -> 1.1 is a bigger step. > > On which architectures have you tried it? > > Do you compiled ALL_YES? > > > > Am Dienstag, den 08.01.2019, 14:45 +0100 schrieb Oliver Graute: > > > this patch bump openssl to LTS version 1.1.1a > > I've spent some time to this, including all packages in PTXdist. Some of > the changes are already mainline, but not everything works yet. Please be > patient. We will get there in the next few months. ok, fine. I'll wait then and use locally my patches until yours arrive. Best Regards, Oliver _______________________________________________ ptxdist mailing list ptxdist@pengutronix.de ^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2019-01-09 14:24 UTC | newest] Thread overview: 6+ messages (download: mbox.gz / follow: Atom feed) -- links below jump to the message on this page -- 2019-01-08 13:45 [ptxdist] [PATCHv1] openssl: version bump to 1.1.1a Oliver Graute 2019-01-09 12:31 ` Denis OSTERLAND 2019-01-09 13:23 ` Ladislav Michl 2019-01-09 13:27 ` Oliver Graute 2019-01-09 14:14 ` Michael Olbrich 2019-01-09 14:23 ` Oliver Graute
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox