gitian: upgrade OpenSSL to 1.0.1h

Upgrade for https://www.openssl.org/news/secadv_20140605.txt Just in case - there is no vulnerability that affects ecdsa signing or verification. The MITM attack vulnerability (CVE-2014-0224) may have some effect on our usage of SSL/TLS. As long as payment requests are signed (which is the common case), usage of the payment protocol should also not be affected. The TLS usage in RPC may be at risk for MITM attacks. If you have `-rpcssl` enabled, be sure to update OpenSSL as soon as possible. Rebased-By: Wladimir J. van der Laan <laanwj@gmail.com> Rebased-From: 6e7c4d1
author: Wladimir J. van der Laan <laanwj@gmail.com> 2014-06-05 15:44:35 +0200
committer: Wladimir J. van der Laan <laanwj@gmail.com> 2014-06-06 18:59:56 +0200
commit: 3ae41a64dd79aa20bbb53a53ae8a2b654305b07e (patch)
tree: c31c0afe82832cec0c518fae0fcd1f9e6a5243e5 /contrib/gitian-descriptors/deps-linux.yml
parent: eac2cdcab2f9d5cda2cebb38fe434ef2ae35f0a5 (diff)
download: bitcoin-3ae41a64dd79aa20bbb53a53ae8a2b654305b07e.tar.xz
1 files changed, 5 insertions, 5 deletions
diff --git a/contrib/gitian-descriptors/deps-linux.yml b/contrib/gitian-descriptors/deps-linux.yml
index af10461b83..8221222133 100644
--- a/contrib/gitian-descriptors/deps-linux.yml
+++ b/contrib/gitian-descriptors/deps-linux.yml
@@ -16,7 +16,7 @@ packages:
 reference_datetime: "2013-06-01 00:00:00"
 remotes: []
 files:
-- "openssl-1.0.1g.tar.gz"
+- "openssl-1.0.1h.tar.gz"
 - "miniupnpc-1.9.tar.gz"
 - "qrencode-3.4.3.tar.bz2"
 - "protobuf-2.5.0.tar.bz2"
@@ -30,15 +30,15 @@ script: |
   export TZ=UTC
   export LIBRARY_PATH="$STAGING/lib"
   # Integrity Check
-  echo "53cb818c3b90e507a8348f4f5eaedb05d8bfe5358aabb508b7263cc670c3e028  openssl-1.0.1g.tar.gz"  | sha256sum -c
+  echo "9d1c8a9836aa63e2c6adb684186cbd4371c9e9dcc01d6e3bb447abf2d4d3d093  openssl-1.0.1h.tar.gz"  | sha256sum -c
   echo "2923e453e880bb949e3d4da9f83dd3cb6f08946d35de0b864d0339cf70934464  miniupnpc-1.9.tar.gz"   | sha256sum -c
   echo "dfd71487513c871bad485806bfd1fdb304dedc84d2b01a8fb8e0940b50597a98  qrencode-3.4.3.tar.bz2" | sha256sum -c
   echo "13bfc5ae543cf3aa180ac2485c0bc89495e3ae711fc6fab4f8ffe90dfb4bb677  protobuf-2.5.0.tar.bz2" | sha256sum -c
   echo "12edc0df75bf9abd7f82f821795bcee50f42cb2e5f76a6a281b85732798364ef  db-4.8.30.NC.tar.gz"    | sha256sum -c
 
   #
-  tar xzf openssl-1.0.1g.tar.gz
-  cd openssl-1.0.1g
+  tar xzf openssl-1.0.1h.tar.gz
+  cd openssl-1.0.1h
   #   need -fPIC to avoid relocation error in 64 bit builds
   ./config no-shared no-zlib no-dso no-krb5 --openssldir=$STAGING -fPIC
   #   need to build OpenSSL with faketime because a timestamp is embedded into cversion.o
@@ -95,4 +95,4 @@ script: |
   done
   #
   cd $STAGING
-  find include lib bin host | sort | zip -X@ $OUTDIR/bitcoin-deps-linux${GBUILD_BITS}-gitian-r5.zip
+  find include lib bin host | sort | zip -X@ $OUTDIR/bitcoin-deps-linux${GBUILD_BITS}-gitian-r6.zip
author	Wladimir J. van der Laan <laanwj@gmail.com>	2014-06-05 15:44:35 +0200
committer	Wladimir J. van der Laan <laanwj@gmail.com>	2014-06-06 18:59:56 +0200
commit	3ae41a64dd79aa20bbb53a53ae8a2b654305b07e (patch)
tree	c31c0afe82832cec0c518fae0fcd1f9e6a5243e5 /contrib/gitian-descriptors/deps-linux.yml
parent	eac2cdcab2f9d5cda2cebb38fe434ef2ae35f0a5 (diff)
download	bitcoin-3ae41a64dd79aa20bbb53a53ae8a2b654305b07e.tar.xz