Back to openssl-blacklist PTS page

Accepted openssl-blacklist 0.4 (source all)

To: debian-devel-changes@lists.debian.org
Subject: Accepted openssl-blacklist 0.4 (source all)
From: Jamie Strandboge <jamie@ubuntu.com>
Date: Sat, 14 Jun 2008 18:04:01 +0000
Message-id: <E1K7a6b-0003y9-O6@ries.debian.org>
Sender: Joerg Jaspert <joerg@ries.debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 10 Jun 2008 09:09:48 -0400
Source: openssl-blacklist
Binary: openssl-blacklist openssl-blacklist-extra
Architecture: source all
Version: 0.4
Distribution: unstable
Urgency: low
Maintainer: Kees Cook <kees@outflux.net>
Changed-By: Jamie Strandboge <jamie@ubuntu.com>
Description: 
 openssl-blacklist - list of blacklisted OpenSSL RSA keys
 openssl-blacklist-extra - list of non-default blacklisted OpenSSL RSA keys
Closes: 483500
Changes: 
 openssl-blacklist (0.4) unstable; urgency=low
 .
   * allow checking of certificate requests
   * only check moduli with an exponent of 65537 (the default on Debian/Ubuntu)
   * update gen_certs.sh for when ~/.rnd does not exist when openssl is run
     which can happen with openssl 0.9.8g and higher
   * update gen_certs.sh to use '0' (in case of PID randomization)
   * added more examples
   * only prompt once for password (Closes: #483500)
   * properly cache database reads when bits are same
   * added '-m' and '-b' arguments. This is helpful for applications calling
     openssl-vulnkey when the modulus and bits are known, such as openvpn.
   * man page updates
   * added test.sh
   * added blacklists for when ~/.rnd does not exist when openssl is run
     (LP: #232104)
   * added 512 bit and partial 4096 blacklists (need le64) (LP: #231014)
   * reorganized source databases, and ship the new gen_certs.sh format
   * debian/rules: updated to use new blacklist format and organization
   * create openssl-blacklist-extra package (but don't ship 4096 yet)
Checksums-Sha1: 
 185ddc8aa22b01e8f6f38bc933c73070871f9499 1081 openssl-blacklist_0.4.dsc
 45792725b913a5e843fb0ae4fbf89e9efd1a0c6f 30175858 openssl-blacklist_0.4.tar.gz
 41855263cb41ad89739eb038f50a86614c5a486f 6333310 openssl-blacklist_0.4_all.deb
 1ff6b5fee914bfa3995f4de7eca1a703bc6c44b0 3160374 openssl-blacklist-extra_0.4_all.deb
Checksums-Sha256: 
 dbdbebb7319c4b4840de2c7b88128824148c6003a3b93019863a9395bca0acf3 1081 openssl-blacklist_0.4.dsc
 2a9491dc1d3e4511307342217d58fb553699e1bbe51364fbc729d1b61c5adecf 30175858 openssl-blacklist_0.4.tar.gz
 2880f46f22ad476d6f57c3599dd8abe35534cb1c4e9d1cf775b0e679fea444c1 6333310 openssl-blacklist_0.4_all.deb
 505fb23ef8cf1554984bff70b55bc7b295aa968407e7ee33931ccdf049e5dd80 3160374 openssl-blacklist-extra_0.4_all.deb
Files: 
 02f74893a2341c680ea8db1dc2b4a67c 1081 net optional openssl-blacklist_0.4.dsc
 ddaae8869033957fe1ae78214f846e2a 30175858 net optional openssl-blacklist_0.4.tar.gz
 92b0db2cd7e2171e23ea28cd546e3599 6333310 net optional openssl-blacklist_0.4_all.deb
 ee8d574037c937b481fa7bc55892d845 3160374 net optional openssl-blacklist-extra_0.4_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Kees Cook <kees@outflux.net>

iEYEARECAAYFAkhQK/EACgkQH/9LqRcGPm0lYQCcDWjy/JcWTudXzFqLhuaM8Dtt
xHgAnjwpzAxGAgbuv/9Lf90eHt1QJkcn
=BXWL
-----END PGP SIGNATURE-----


Accepted:
openssl-blacklist-extra_0.4_all.deb
  to pool/main/o/openssl-blacklist/openssl-blacklist-extra_0.4_all.deb
openssl-blacklist_0.4.dsc
  to pool/main/o/openssl-blacklist/openssl-blacklist_0.4.dsc
openssl-blacklist_0.4.tar.gz
  to pool/main/o/openssl-blacklist/openssl-blacklist_0.4.tar.gz
openssl-blacklist_0.4_all.deb
  to pool/main/o/openssl-blacklist/openssl-blacklist_0.4_all.deb