rpms/krb5/devel krb5-1.7-openssl-1.0.patch, NONE, 1.1 krb5.spec, 1.209, 1.210

Nalin Dahyabhai nalin at fedoraproject.org
Mon Aug 24 15:51:36 UTC 2009 

Author: nalin

Update of /cvs/extras/rpms/krb5/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv26937

Modified Files:
	krb5.spec 
Added Files:
	krb5-1.7-openssl-1.0.patch 
Log Message:
- work around a compile problem with new openssl


krb5-1.7-openssl-1.0.patch:
 pkinit_crypto_openssl.c |    4 ++++
 1 file changed, 4 insertions(+)

--- NEW FILE krb5-1.7-openssl-1.0.patch ---
This isn't a proper fix (it doesn't actually switch to using the new API),
but it'll do for now.
diff -up src/plugins/preauth/pkinit/pkinit_crypto_openssl.c src/plugins/preauth/pkinit/pkinit_crypto_openssl.c
--- src/plugins/preauth/pkinit/pkinit_crypto_openssl.c.openssl-1.0	2009-01-23 01:51:03.000000000 -0500
+++ src/plugins/preauth/pkinit/pkinit_crypto_openssl.c	2009-08-24 11:19:35.000000000 -0400
@@ -3652,7 +3652,11 @@ decode_data(unsigned char **out_data, un
     if (buf == NULL)
 	goto cleanup;
 
+#if OPENSSL_VERSION_NUMBER < 0x10000000L
     retval = EVP_PKEY_decrypt(buf, data, (int)data_len, pkey);
+#else
+    retval = EVP_PKEY_decrypt_old(buf, data, (int)data_len, pkey);
+#endif
     if (retval <= 0) {
 	pkiDebug("unable to decrypt received data (len=%d)\n", data_len);
 	goto cleanup;


Index: krb5.spec
===================================================================
RCS file: /cvs/extras/rpms/krb5/devel/krb5.spec,v
retrieving revision 1.209
retrieving revision 1.210
diff -u -p -r1.209 -r1.210
--- krb5.spec	21 Aug 2009 14:11:01 -0000	1.209
+++ krb5.spec	24 Aug 2009 15:51:36 -0000	1.210
@@ -10,7 +10,7 @@
 Summary: The Kerberos network authentication system
 Name: krb5
 Version: 1.7
-Release: 6%{?dist}
+Release: 7%{?dist}
 # Maybe we should explode from the now-available-to-everybody tarball instead?
 # http://web.mit.edu/kerberos/dist/krb5/1.7/krb5-1.7-signed.tar
 Source0: krb5-%{version}.tar.gz
@@ -78,6 +78,7 @@ Patch86: krb5-1.7-time_t_size.patch
 Patch87: krb5-1.7-errs.patch
 Patch88: krb5-1.7-sizeof.patch
 Patch89: krb5-1.7-largefile.patch
+Patch90: krb5-1.7-openssl-1.0.patch
 
 License: MIT
 URL: http://web.mit.edu/kerberos/www/
@@ -207,12 +208,18 @@ to obtain initial credentials from a KDC
 certificate.
 
 %changelog
+* Mon Aug 24 2009 Nalin Dahyabhai <nalin at redhat.com> - 1.7-7
+- work around a compile problem with new openssl
+
 * Fri Aug 21 2009 Tomas Mraz <tmraz at redhat.com> - 1.7-6
 - rebuilt with new openssl
 
 * Fri Jul 24 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.7-5
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
 
+* Tue Jul  7 2009 Nalin Dahyabhai <nalin at redhat.com> 1.7-5
+- rebuild to pick up the current forms of various patches
+
 * Mon Jul  6 2009 Nalin Dahyabhai <nalin at redhat.com>
 - simplify the man pages patch by only preprocessing the files we care about
   and moving shared configure.in logic into a shared function
@@ -1456,6 +1463,7 @@ popd
 %patch87 -p1 -b .errs
 %patch88 -p1 -b .sizeof
 %patch89 -p1 -b .largefile
+%patch90 -p0 -b .openssl-1.0
 gzip doc/*.ps
 
 sed -i -e '1s!\[twoside\]!!;s!%\(\\usepackage{hyperref}\)!\1!' doc/api/library.tex

More information about the scm-commits mailing list