http://bugzilla.suse.com/show_bug.cgi?id=1022874
http://bugzilla.suse.com/show_bug.cgi?id=1022874#c6
--- Comment #6 from Holger Bruenjes ---
No, minim changes to the spec, I drop only the check for suse_version on top
and enable the security params always
[...
%if 0%{suse_version} > 1310
no-ssl2 \
no-ssl3 \
enable-rfc3779 \
%endif
...]
config_flags="threads shared no-rc5 no-idea \
fips \
no-ssl2 \
no-ssl3 \
enable-rfc3779 \
%ifarch x86_64 aarch64 ppc64le
%if 0%{?suse_version} < 1010 || 0%{?suse_version} > 1020
enable-ec_nistp_64_gcc_128 \
%endif
%endif
enable-camellia \
zlib \
no-ec2m \
--prefix=%{_prefix} \
--libdir=%{_lib} \
--openssldir=%{ssletcdir} \
$RPM_OPT_FLAGS -O3 -std=gnu99 \
-Wa,--noexecstack \
-Wl,-z,relro,-z,now \
-fno-common \
-DTERMIO \
-DPURIFY \
-D_GNU_SOURCE \
-DOPENSSL_NO_BUF_FREELISTS \
$(getconf LFS_CFLAGS) \
-Wall "
In the past, before I used the suse src.rpm I build OpenSSL vanilla with fips
support and I have a crash on boxes with older CPUs
https://rt.openssl.org/Ticket/Display.html?id=3048&pass=guest&user=guest
when I went to the suse build, the crash was gone away. The crash come now back
on boxes with older CPUs, I will have a look that I can trace it.
--
You are receiving this mail because:
You are on the CC list for the bug.