openssl3: preserve configuration file compatibility with openssl 1.1

So that the two versions can be installed side by side.
2026-04-23 12:10:06 +02:00 · 2024-07-07 11:01:32 +02:00
parent 402a29aa21
commit b28828a576
1 changed files with 42 additions and 0 deletions
--- a/dev-libs/openssl/patches/openssl3-3.0.13.patchset
+++ b/dev-libs/openssl/patches/openssl3-3.0.13.patchset
@@ -252,3 +252,45 @@ index 675d99a..5d9b667 100755
 -- 
 2.42.1

+
+From 24e67943a7f06f104721de01934f042159bed42f Mon Sep 17 00:00:00 2001
+From: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
+Date: Wed, 8 Jun 2022 20:45:32 +0200
+Subject: Remove the provider section.
+
+The provider section breaks libssl1.1 users. Remove it for now.
+
+Link: https://bugs.debian.org/1011051
+Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc>
+
+diff --git a/apps/openssl.cnf b/apps/openssl.cnf
+index 12bc408..c58ef29 100644
+--- a/apps/openssl.cnf
+++ b/apps/openssl.cnf
+@@ -51,11 +51,11 @@ tsa_policy3 = 1.2.3.4.5.7
+ # .include fipsmodule.cnf
+ 
+ [openssl_init]
+-providers = provider_sect
+# providers = provider_sect
+ 
+ # List of providers to load
+-[provider_sect]
+-default = default_sect
+# [provider_sect]
+# default = default_sect
+ # The fips section name should match the section name inside the
+ # included fipsmodule.cnf.
+ # fips = fips_sect
+@@ -68,7 +68,7 @@ default = default_sect
+ # becomes unavailable in openssl.  As a consequence applications depending on
+ # OpenSSL may not work correctly which could lead to significant system
+ # problems including inability to remotely access the system.
+-[default_sect]
+# [default_sect]
+ # activate = 1
+ 
+ 
+-- 
+2.43.2
+