* [meta-oe][RFC][PATCH] Remove openssl10
@ 2019-03-08 18:49 Adrian Bunk
2019-03-08 19:15 ` Alexander Kanavin
0 siblings, 1 reply; 13+ messages in thread
From: Adrian Bunk @ 2019-03-08 18:49 UTC (permalink / raw)
To: openembedded-core
OpenSSL 1.0 has been replaced by 1.1, and it would be harder
to security-support after the upstream EOL at the end of 2019.
Signed-off-by: Adrian Bunk <bunk@stusta.de>
---
meta/conf/distro/include/maintainers.inc | 1 -
meta/conf/distro/include/no-static-libs.inc | 3 -
.../0001-Fix-BN_LLONG-breakage.patch | 33 -
.../0001-Fix-DES_LONG-breakage.patch | 35 -
...-with-clang-using-external-assembler.patch | 45 -
.../0001-allow-manpages-to-be-disabled.patch | 31 -
...l-force-soft-link-to-avoid-rare-race.patch | 46 -
.../openssl/openssl10/Makefiles-ptest.patch | 89 -
...Use-SHA256-not-MD5-as-default-digest.patch | 69 -
.../openssl10/configure-musl-target.patch | 25 -
.../openssl/openssl10/configure-targets.patch | 35 -
.../openssl10/debian/c_rehash-compat.patch | 71 -
.../openssl10/debian/debian-targets.patch | 73 -
.../openssl/openssl10/debian/man-dir.patch | 15 -
.../openssl10/debian/man-section.patch | 34 -
.../openssl/openssl10/debian/no-rpath.patch | 15 -
.../openssl10/debian/no-symbolic.patch | 15 -
.../openssl/openssl10/debian/pic.patch | 177 -
.../debian1.0.2/block_digicert_malaysia.patch | 29 -
.../debian1.0.2/block_diginotar.patch | 68 -
.../openssl10/debian1.0.2/soname.patch | 15 -
.../debian1.0.2/version-script.patch | 4658 -----------------
.../engines-install-in-libdir-ssl.patch | 64 -
.../openssl/openssl10/oe-ldflags.patch | 24 -
.../openssl/openssl10/openssl-c_rehash.sh | 222 -
.../openssl10/openssl-fix-des.pod-error.patch | 19 -
.../openssl10/openssl_fix_for_x32.patch | 39 -
.../openssl/openssl10/parallel.patch | 368 --
.../openssl/openssl10/ptest-deps.patch | 34 -
.../openssl10/ptest_makefile_deps.patch | 248 -
.../openssl10/reproducible-cflags.patch | 20 -
.../openssl10/reproducible-mkbuildinf.patch | 21 -
.../openssl/openssl10/run-ptest | 2 -
.../openssl/openssl10/shared-libs.patch | 41 -
.../openssl/openssl10_1.0.2q.bb | 360 --
.../openssl/openssl_1.1.1a.bb | 4 -
36 files changed, 7048 deletions(-)
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/configure-targets.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/pic.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/parallel.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch
delete mode 100755 meta/recipes-connectivity/openssl/openssl10/run-ptest
delete mode 100644 meta/recipes-connectivity/openssl/openssl10/shared-libs.patch
delete mode 100644 meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb
diff --git a/meta/conf/distro/include/maintainers.inc b/meta/conf/distro/include/maintainers.inc
index 950b8e8951..ee98c93b73 100644
--- a/meta/conf/distro/include/maintainers.inc
+++ b/meta/conf/distro/include/maintainers.inc
@@ -536,7 +536,6 @@ RECIPE_MAINTAINER_pn-nss-myhostname = "Anuj Mittal <anuj.mittal@intel.com>"
RECIPE_MAINTAINER_pn-ofono = "Ross Burton <ross.burton@intel.com>"
RECIPE_MAINTAINER_pn-openssh = "Armin Kuster <akuster808@gmail.com>"
RECIPE_MAINTAINER_pn-openssl = "Alexander Kanavin <alex.kanavin@gmail.com>"
-RECIPE_MAINTAINER_pn-openssl10 = "Alexander Kanavin <alex.kanavin@gmail.com>"
RECIPE_MAINTAINER_pn-opkg = "Alejandro del Castillo <alejandro.delcastillo@ni.com>"
RECIPE_MAINTAINER_pn-opkg-arch-config = "Alejandro del Castillo <alejandro.delcastillo@ni.com>"
RECIPE_MAINTAINER_pn-opkg-keyrings = "Alejandro del Castillo <alejandro.delcastillo@ni.com>"
diff --git a/meta/conf/distro/include/no-static-libs.inc b/meta/conf/distro/include/no-static-libs.inc
index 712d858dc0..4141ecb765 100644
--- a/meta/conf/distro/include/no-static-libs.inc
+++ b/meta/conf/distro/include/no-static-libs.inc
@@ -26,9 +26,6 @@ DISABLE_STATIC_pn-openjade-native = ""
DISABLE_STATIC_pn-openssl = ""
DISABLE_STATIC_pn-openssl-native = ""
DISABLE_STATIC_pn-nativesdk-openssl = ""
-DISABLE_STATIC_pn-openssl10 = ""
-DISABLE_STATIC_pn-openssl10-native = ""
-DISABLE_STATIC_pn-nativesdk-openssl10 = ""
# libssp-static-dev included in build-appliance
DISABLE_STATIC_pn-gcc-runtime = ""
# libusb1-native is used to build static dfu-util-native
diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch b/meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch
deleted file mode 100644
index 13d39c918c..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch
+++ /dev/null
@@ -1,33 +0,0 @@
-From 247b3188cde5f3347091cd54271127386d3aece0 Mon Sep 17 00:00:00 2001
-From: Khem Raj <raj.khem@gmail.com>
-Date: Wed, 6 Feb 2019 22:10:33 -0800
-Subject: [PATCH] Fix BN_LLONG breakage
-
-opensslconf.h is un-defining BN_LLONG only when included from bn.h which
-is not robust at all, especially when include guards are used and
-multiple inclusions of a given header is not allowed. so lets take out
-the nesting constraint and add OPENSSL_SYS_UEFI constraint instead
-
-Upstream-Status: Inappropriate [ fixed differently with OpenSSL 1.1+ ]
-
-Signed-off-by: Khem Raj <raj.khem@gmail.com>
----
- crypto/opensslconf.h.in | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
-diff --git a/crypto/opensslconf.h.in b/crypto/opensslconf.h.in
-index 7a1c85d..a10c10f 100644
---- a/crypto/opensslconf.h.in
-+++ b/crypto/opensslconf.h.in
-@@ -56,7 +56,7 @@
- #endif
- #endif
-
--#if defined(HEADER_BN_H) && !defined(CONFIG_HEADER_BN_H)
-+#if !defined(OPENSSL_SYS_UEFI) && !defined(CONFIG_HEADER_BN_H)
- #define CONFIG_HEADER_BN_H
- #undef BN_LLONG
-
---
-2.20.1
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch b/meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch
deleted file mode 100644
index 7243fb417b..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch
+++ /dev/null
@@ -1,35 +0,0 @@
-From 1aec49cc45e7cf5ebc059a77081ac3ea2a5aff7b Mon Sep 17 00:00:00 2001
-From: Denys Dmytriyenko <denys@ti.com>
-Date: Fri, 1 Mar 2019 13:14:56 -0500
-Subject: [PATCH] Fix DES_LONG breakage
-
-Mimic previous BN_LLONG fix by Khem Raj here. Re-use its description:
-
-opensslconf.h is defining DES_LONG only when included from des.h which
-is not robust at all, especially when include guards are used and
-multiple inclusions of a given header is not allowed. so lets take out
-the nesting constraint and add OPENSSL_SYS_UEFI constraint instead
-
-Upstream-Status: Inappropriate [ fixed differently with OpenSSL 1.1+ ]
-
-Signed-off-by: Denys Dmytriyenko <denys@ti.com>
----
- crypto/opensslconf.h.in | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
-diff --git a/crypto/opensslconf.h.in b/crypto/opensslconf.h.in
-index a10c10f..0147a4d 100644
---- a/crypto/opensslconf.h.in
-+++ b/crypto/opensslconf.h.in
-@@ -48,7 +48,7 @@
- #endif
- #endif
-
--#if (defined(HEADER_NEW_DES_H) || defined(HEADER_DES_H)) && !defined(DES_LONG)
-+#if !defined(OPENSSL_SYS_UEFI) && !defined(DES_LONG)
- /* If this is set to 'unsigned int' on a DEC Alpha, this gives about a
- * %20 speed up (longs are 8 bytes, int's are 4). */
- #ifndef DES_LONG
---
-2.7.4
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch b/meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch
deleted file mode 100644
index 2270962a6f..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch
+++ /dev/null
@@ -1,45 +0,0 @@
-From 2f6026cb8b16cf00726e3c5625c023f196680f07 Mon Sep 17 00:00:00 2001
-From: Khem Raj <raj.khem@gmail.com>
-Date: Fri, 17 Mar 2017 12:52:08 -0700
-Subject: [PATCH] Fix build with clang using external assembler
-
-Cherry-picked from
-https://github.com/openssl/openssl/commit/11208dcfb9105e8afa37233185decefd45e89e17
-https://github.com/openssl/openssl/commit/fbab8baddef8d3346ae40ff068871e2ddaf10270
-https://github.com/openssl/openssl/commit/6cf412c473d8145562b76219ce3da73b201b3255
-
-Fixes
-
-| ghash-armv4.S: Assembler messages:
-| ghash-armv4.S:81: Error: bad instruction `ldrbpl r12,[r2,r3]'
-| ghash-armv4.S:91: Error: bad instruction `ldrbpl r8,[r0,r3]'
-| ghash-armv4.S:137: Error: bad instruction `ldrbne r12,[r2,#15]'
-| ghash-armv4.S:224: Error: bad instruction `ldrbpl r12,[r0,r3]'
-| clang-4.0: error: assembler command failed with exit code 1 (use -v to see invocation)
-| make[2]: *** [<builtin>: ghash-armv4.o] Error 1
-
-Upstream-Status: Backport
-
-Signed-off-by: Khem Raj <raj.khem@gmail.com>
----
- crypto/modes/asm/ghash-armv4.pl | 7 +++++++
- 1 file changed, 7 insertions(+)
-
-diff --git a/crypto/modes/asm/ghash-armv4.pl b/crypto/modes/asm/ghash-armv4.pl
-index 8ccc963ef..442fed4da 100644
---- a/crypto/modes/asm/ghash-armv4.pl
-+++ b/crypto/modes/asm/ghash-armv4.pl
-@@ -124,7 +124,10 @@ $code=<<___;
- #include "arm_arch.h"
-
- .text
-+#if defined(__thumb2__) || defined(__clang__)
-+.syntax unified
-+#endif
- .code 32
-
- #ifdef __clang__
- #define ldrplb ldrbpl
---
-2.12.0
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch b/meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch
deleted file mode 100644
index 3f7d649955..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch
+++ /dev/null
@@ -1,31 +0,0 @@
-From e1c39b80b01d4d18feeadfdc6e45a3e1dd110634 Mon Sep 17 00:00:00 2001
-From: Andre McCurdy <armccurdy@gmail.com>
-Date: Fri, 27 Jul 2018 21:41:06 +0000
-Subject: [PATCH] allow manpages to be disabled
-
-Define OE_DISABLE_MANPAGES (via environment or the make command line)
-to skip creation and installation of manpages.
-
-Upstream-Status: Inappropriate [configuration]
-
-Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
----
- Makefile.org | 2 +-
- 1 file changed, 1 insertion(+), 1 deletion(-)
-
-diff --git a/Makefile.org b/Makefile.org
-index ed98d2a..747d8cb 100644
---- a/Makefile.org
-+++ b/Makefile.org
-@@ -549,7 +549,7 @@ dist:
- @$(MAKE) SDIRS='$(SDIRS)' clean
- @$(MAKE) TAR='$(TAR)' TARFLAGS='$(TARFLAGS)' $(DISTTARVARS) tar
-
--install: all install_docs install_sw
-+install: all $(if $(OE_DISABLE_MANPAGES),,install_docs) install_sw
-
- install_sw:
- @$(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/bin \
---
-1.9.1
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch b/meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch
deleted file mode 100644
index dd1a9b1dd2..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch
+++ /dev/null
@@ -1,46 +0,0 @@
-From 3d9199423d48766649a2b2ebb3924e892ed16fa4 Mon Sep 17 00:00:00 2001
-From: Randy MacLeod <Randy.MacLeod@windriver.com>
-Date: Tue, 20 Jun 2017 15:32:08 -0400
-Subject: [PATCH] openssl: Force soft link to avoid rare race
-
-This patch works around a rare parallel build race condition.
-The error seen is:
-
-ln: failed to create symbolic link 'libssl.so': File exists
-make[4]: *** [Makefile.shared:171: link_a.gnu] Error 1
-make[4]: Leaving directory
-'/.../build/tmp-glibc/work/x86_64-linux/openssl-native/1.0.2k-r0/openssl-1.0.2k'
-
-The openssl team is rewriting their build files so it's not
-appropriate for openssl upstream and fixing the root cause of
-the Makefile race condition was also not pursued.
-
-Upstream-Status: Inappropriate [build rules rewrite in progress]
-Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
----
- Makefile.shared | 4 ++--
- 1 file changed, 2 insertions(+), 2 deletions(-)
-
-diff --git a/Makefile.shared b/Makefile.shared
-index e8d222a..1bff92f 100644
---- a/Makefile.shared
-+++ b/Makefile.shared
-@@ -118,14 +118,14 @@
- if [ -n "$$SHLIB_COMPAT" ]; then \
- for x in $$SHLIB_COMPAT; do \
- ( $(SET_X); rm -f $$SHLIB$$x$$SHLIB_SUFFIX; \
-- ln -s $$prev $$SHLIB$$x$$SHLIB_SUFFIX ); \
-+ ln -sf $$prev $$SHLIB$$x$$SHLIB_SUFFIX ); \
- prev=$$SHLIB$$x$$SHLIB_SUFFIX; \
- done; \
- fi; \
- if [ -n "$$SHLIB_SOVER" ]; then \
- [ -e "$$SHLIB$$SHLIB_SUFFIX" ] || \
- ( $(SET_X); rm -f $$SHLIB$$SHLIB_SUFFIX; \
-- ln -s $$prev $$SHLIB$$SHLIB_SUFFIX ); \
-+ ln -sf $$prev $$SHLIB$$SHLIB_SUFFIX ); \
- fi; \
- fi
-
---
-2.9.3
diff --git a/meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch b/meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch
deleted file mode 100644
index 1b8402af97..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch
+++ /dev/null
@@ -1,89 +0,0 @@
-From a176c69f4fdfbfa7e4ccb79d91c3b6602da7e69a Mon Sep 17 00:00:00 2001
-From: Anders Roxell <anders.roxell@enea.com>
-Date: Thu, 24 Apr 2014 19:28:25 +0200
-Subject: [PATCH 19/28] openssl: enable ptest support
-
-Add 'buildtest' and 'runtest' targets to Makefile, to build and run tests
-cross-compiled.
-
-Signed-off-by: Anders Roxell <anders.roxell@enea.com>
-Signed-off-by: Maxin B. John <maxin.john@enea.com>
-Upstream-Status: Pending
-
----
- Makefile.org | 10 +++++++++-
- test/Makefile | 13 +++++++++----
- 2 files changed, 18 insertions(+), 5 deletions(-)
-
-diff --git a/Makefile.org b/Makefile.org
-index 111fbba..8e7936c 100644
---- a/Makefile.org
-+++ b/Makefile.org
-@@ -467,8 +467,16 @@ rehash.time: certs apps
- test: tests
-
- tests: rehash
-+ $(MAKE) buildtest
-+ $(MAKE) runtest
-+
-+buildtest:
-+ @(cd test && \
-+ $(CLEARENV) && $(MAKE) -e $(BUILDENV) TOP=.. TESTS='$(TESTS)' OPENSSL_DEBUG_MEMORY=on OPENSSL_CONF=../apps/openssl.cnf exe apps);
-+
-+runtest:
- @(cd test && echo "testing..." && \
-- $(CLEARENV) && $(MAKE) -e $(BUILDENV) TOP=.. TESTS='$(TESTS)' OPENSSL_DEBUG_MEMORY=on OPENSSL_CONF=../apps/openssl.cnf tests );
-+ $(CLEARENV) && $(MAKE) -e $(BUILDENV) TOP=.. TESTS='$(TESTS)' OPENSSL_DEBUG_MEMORY=on OPENSSL_CONF=../apps/openssl.cnf alltests );
- OPENSSL_CONF=apps/openssl.cnf util/opensslwrap.sh version -a
-
- report:
-diff --git a/test/Makefile b/test/Makefile
-index 55a6b50..d46b4d1 100644
---- a/test/Makefile
-+++ b/test/Makefile
-@@ -150,7 +150,7 @@ tests: exe apps $(TESTS)
- apps:
- @(cd ..; $(MAKE) DIRS=apps all)
-
--alltests: \
-+all-tests= \
- test_des test_idea test_sha test_md4 test_md5 test_hmac \
- test_md2 test_mdc2 test_wp \
- test_rmd test_rc2 test_rc4 test_rc5 test_bf test_cast test_aes \
-@@ -162,6 +162,11 @@ alltests: \
- test_constant_time test_verify_extra test_clienthello test_sslv2conftest \
- test_dtls test_bad_dtls test_fatalerr test_x509_time
-
-+alltests:
-+ @(for i in $(all-tests); do \
-+ ( $(MAKE) $$i && echo "PASS: $$i" ) || echo "FAIL: $$i"; \
-+ done)
-+
- test_evp: $(EVPTEST)$(EXE_EXT) evptests.txt
- ../util/shlib_wrap.sh ./$(EVPTEST) evptests.txt
-
-@@ -230,7 +235,7 @@ test_x509: ../apps/openssl$(EXE_EXT) tx509 testx509.pem v3-cert1.pem v3-cert2.pe
- echo test second x509v3 certificate
- sh ./tx509 v3-cert2.pem 2>/dev/null
-
--test_rsa: $(RSATEST)$(EXE_EXT) ../apps/openssl$(EXE_EXT) trsa testrsa.pem
-+test_rsa: ../apps/openssl$(EXE_EXT) trsa testrsa.pem
- @sh ./trsa 2>/dev/null
- ../util/shlib_wrap.sh ./$(RSATEST)
-
-@@ -331,11 +336,11 @@ test_tsa: ../apps/openssl$(EXE_EXT) testtsa CAtsa.cnf ../util/shlib_wrap.sh
- sh ./testtsa; \
- fi
-
--test_ige: $(IGETEST)$(EXE_EXT)
-+test_ige:
- @echo "Test IGE mode"
- ../util/shlib_wrap.sh ./$(IGETEST)
-
--test_jpake: $(JPAKETEST)$(EXE_EXT)
-+test_jpake:
- @echo "Test JPAKE"
- ../util/shlib_wrap.sh ./$(JPAKETEST)
-
---
-2.15.1
diff --git a/meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch b/meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch
deleted file mode 100644
index 58c9ee7844..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch
+++ /dev/null
@@ -1,69 +0,0 @@
-From d795f5f20a29adecf92c09459a3ee07ffac01a99 Mon Sep 17 00:00:00 2001
-From: Rich Salz <rsalz@akamai.com>
-Date: Sat, 13 Jun 2015 17:03:39 -0400
-Subject: [PATCH] Use SHA256 not MD5 as default digest.
-
-Commit f8547f62c212837dbf44fb7e2755e5774a59a57b upstream.
-
-Upstream-Status: Backport
-Backport from OpenSSL 2.0 to OpenSSL 1.0.2
-Commit f8547f62c212837dbf44fb7e2755e5774a59a57b
-
-CVE: CVE-2004-2761
-
- The MD5 Message-Digest Algorithm is not collision resistant,
- which makes it easier for context-dependent attackers to
- conduct spoofing attacks, as demonstrated by attacks on the
- use of MD5 in the signature algorithm of an X.509 certificate.
-
-Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
-Signed-off-by: Zhang Xiao <xiao.zhang@windriver.com>
-Signed-off-by: T.O. Radzy Radzykewycz <radzy@windriver.com>
----
- apps/ca.c | 2 +-
- apps/dgst.c | 2 +-
- apps/enc.c | 2 +-
- 3 files changed, 3 insertions(+), 3 deletions(-)
-
-diff --git a/apps/ca.c b/apps/ca.c
-index 3b7336c..8f3a84b 100644
---- a/apps/ca.c
-+++ b/apps/ca.c
-@@ -1612,7 +1612,7 @@ static int certify_cert(X509 **xret, char *infile, EVP_PKEY *pkey, X509 *x509,
- } else
- BIO_printf(bio_err, "Signature ok\n");
-
-- if ((rreq = X509_to_X509_REQ(req, NULL, EVP_md5())) == NULL)
-+ if ((rreq = X509_to_X509_REQ(req, NULL, NULL)) == NULL)
- goto err;
-
- ok = do_body(xret, pkey, x509, dgst, sigopts, policy, db, serial, subj,
-diff --git a/apps/dgst.c b/apps/dgst.c
-index 95e5fa3..0d1529f 100644
---- a/apps/dgst.c
-+++ b/apps/dgst.c
-@@ -442,7 +442,7 @@ int MAIN(int argc, char **argv)
- goto end;
- }
- if (md == NULL)
-- md = EVP_md5();
-+ md = EVP_sha256();
- if (!EVP_DigestInit_ex(mctx, md, impl)) {
- BIO_printf(bio_err, "Error setting digest %s\n", pname);
- ERR_print_errors(bio_err);
-diff --git a/apps/enc.c b/apps/enc.c
-index 7b7c70b..a7d944c 100644
---- a/apps/enc.c
-+++ b/apps/enc.c
-@@ -344,7 +344,7 @@ int MAIN(int argc, char **argv)
- }
-
- if (dgst == NULL) {
-- dgst = EVP_md5();
-+ dgst = EVP_sha256();
- }
-
- if (bufsize != NULL) {
---
-1.9.1
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch b/meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch
deleted file mode 100644
index f357b3f59f..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch
+++ /dev/null
@@ -1,25 +0,0 @@
-Add musl triplet support
-
-Upstream-Status: Pending
-Signed-off-by: Khem Raj <raj.khem@gmail.com>
-
-Index: openssl-1.0.2a/Configure
-===================================================================
---- openssl-1.0.2a.orig/Configure
-+++ openssl-1.0.2a/Configure
-@@ -431,7 +431,7 @@ my %table=(
- #
- # ./Configure linux-armv4 -march=armv6 -D__ARM_MAX_ARCH__=8
- #
--"linux-armv4", "gcc: -O3 -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-armv4", "gcc: -O3 -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
- "linux-aarch64","gcc: -O3 -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${aarch64_asm}:linux64:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
- # Configure script adds minimally required -march for assembly support,
- # if no -march was specified at command line. mips32 and mips64 below
-@@ -504,4 +504,6 @@ my %table=(
- "linux-gnueabi-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-musleabi-arm","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-musleabi-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-
- "linux-avr32","$ENV{'CC'}:-O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).",
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/configure-targets.patch b/meta/recipes-connectivity/openssl/openssl10/configure-targets.patch
deleted file mode 100644
index 1e01589722..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/configure-targets.patch
+++ /dev/null
@@ -1,35 +0,0 @@
-Upstream-Status: Inappropriate [embedded specific]
-
-The number of colons are important :)
-
-
----
- Configure | 16 ++++++++++++++++
- 1 file changed, 16 insertions(+)
-
-Index: openssl-1.0.2a/Configure
-===================================================================
---- openssl-1.0.2a.orig/Configure
-+++ openssl-1.0.2a/Configure
-@@ -443,6 +443,21 @@ my %table=(
- "linux-alpha-ccc","ccc:-fast -readonly_strings -DL_ENDIAN::-D_REENTRANT:::SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_PTR DES_RISC1 DES_UNROLL:${alpha_asm}",
- "linux-alpha+bwx-ccc","ccc:-fast -readonly_strings -DL_ENDIAN::-D_REENTRANT:::SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_PTR DES_RISC1 DES_UNROLL:${alpha_asm}",
-
-+
-+# Linux on ARM
-+"linux-elf-arm","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-elf-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-gnueabi-arm","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-gnueabi-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+
-+"linux-avr32","$ENV{'CC'}:-O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).",
-+
-+#### Linux on MIPS/MIPS64
-+"linux-mips","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-mips64","$ENV{'CC'}:-DB_ENDIAN -mabi=64 -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-mips64el","$ENV{'CC'}:-DL_ENDIAN -mabi=64 -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"linux-mipsel","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+
- # Android: linux-* but without pointers to headers and libs.
- "android","gcc:-mandroid -I\$(ANDROID_DEV)/include -B\$(ANDROID_DEV)/lib -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
- "android-x86","gcc:-mandroid -I\$(ANDROID_DEV)/include -B\$(ANDROID_DEV)/lib -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:".eval{my $asm=${x86_elf_asm};$asm=~s/:elf/:android/;$asm}.":dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch b/meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch
deleted file mode 100644
index 3820e3e306..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch
+++ /dev/null
@@ -1,71 +0,0 @@
-From 83f318d68bbdab1ca898c94576a838cc97df4700 Mon Sep 17 00:00:00 2001
-From: Ludwig Nussel <ludwig.nussel@suse.de>
-Date: Wed, 21 Apr 2010 15:52:10 +0200
-Subject: [PATCH] also create old hash for compatibility
-
-Upstream-Status: Backport [debian]
-
-Index: openssl-1.0.2n/tools/c_rehash.in
-===================================================================
---- openssl-1.0.2n.orig/tools/c_rehash.in
-+++ openssl-1.0.2n/tools/c_rehash.in
-@@ -8,8 +8,6 @@ my $prefix;
-
- my $openssl = $ENV{OPENSSL} || "openssl";
- my $pwd;
--my $x509hash = "-subject_hash";
--my $crlhash = "-hash";
- my $verbose = 0;
- my $symlink_exists=eval {symlink("",""); 1};
- my $removelinks = 1;
-@@ -18,10 +16,7 @@ my $removelinks = 1;
- while ( $ARGV[0] =~ /^-/ ) {
- my $flag = shift @ARGV;
- last if ( $flag eq '--');
-- if ( $flag eq '-old') {
-- $x509hash = "-subject_hash_old";
-- $crlhash = "-hash_old";
-- } elsif ( $flag eq '-h') {
-+ if ( $flag eq '-h') {
- help();
- } elsif ( $flag eq '-n' ) {
- $removelinks = 0;
-@@ -113,7 +108,9 @@ sub hash_dir {
- next;
- }
- link_hash_cert($fname) if($cert);
-+ link_hash_cert_old($fname) if($cert);
- link_hash_crl($fname) if($crl);
-+ link_hash_crl_old($fname) if($crl);
- }
- }
-
-@@ -146,6 +143,7 @@ sub check_file {
-
- sub link_hash_cert {
- my $fname = $_[0];
-+ my $x509hash = $_[1] || '-subject_hash';
- $fname =~ s/'/'\\''/g;
- my ($hash, $fprint) = `"$openssl" x509 $x509hash -fingerprint -noout -in "$fname"`;
- chomp $hash;
-@@ -177,10 +175,20 @@ sub link_hash_cert {
- $hashlist{$hash} = $fprint;
- }
-
-+sub link_hash_cert_old {
-+ link_hash_cert($_[0], '-subject_hash_old');
-+}
-+
-+sub link_hash_crl_old {
-+ link_hash_crl($_[0], '-hash_old');
-+}
-+
-+
- # Same as above except for a CRL. CRL links are of the form <hash>.r<n>
-
- sub link_hash_crl {
- my $fname = $_[0];
-+ my $crlhash = $_[1] || "-hash";
- $fname =~ s/'/'\\''/g;
- my ($hash, $fprint) = `"$openssl" crl $crlhash -fingerprint -noout -in '$fname'`;
- chomp $hash;
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch b/meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch
deleted file mode 100644
index 24709f4f06..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch
+++ /dev/null
@@ -1,73 +0,0 @@
-Upstream-Status: Backport [debian]
-
-Index: openssl-1.0.2n/Configure
-===================================================================
---- openssl-1.0.2n.orig/Configure
-+++ openssl-1.0.2n/Configure
-@@ -133,6 +133,10 @@ my $clang_devteam_warn = "-Wno-unused-pa
- # Warn that "make depend" should be run?
- my $warn_make_depend = 0;
-
-+# There are no separate CFLAGS/CPPFLAGS/LDFLAGS, set everything in CFLAGS
-+my $debian_cflags = `dpkg-buildflags --get CFLAGS` . `dpkg-buildflags --get CPPFLAGS` . `dpkg-buildflags --get LDFLAGS` . "-Wa,--noexecstack -Wall";
-+$debian_cflags =~ s/\n/ /g;
-+
- my $strict_warnings = 0;
-
- my $x86_gcc_des="DES_PTR DES_RISC1 DES_UNROLL";
-@@ -369,6 +373,55 @@ my %table=(
- "osf1-alpha-cc", "cc:-std1 -tune host -O4 -readonly_strings::(unknown):::SIXTY_FOUR_BIT_LONG RC4_CHUNK:${alpha_asm}:dlfcn:alpha-osf1-shared:::.so",
- "tru64-alpha-cc", "cc:-std1 -tune host -fast -readonly_strings::-pthread:::SIXTY_FOUR_BIT_LONG RC4_CHUNK:${alpha_asm}:dlfcn:alpha-osf1-shared::-msym:.so",
-
-+# Debian GNU/* (various architectures)
-+"debian-alpha","gcc:-DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-alpha-ev4","gcc:-DTERMIO ${debian_cflags} -mcpu=ev4::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-alpha-ev5","gcc:-DTERMIO ${debian_cflags} -mcpu=ev5::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-arm64","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-armel","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-armhf","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-amd64", "gcc:-m64 -DL_ENDIAN -DTERMIO ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR):::",
-+"debian-avr32", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags} -fomit-frame-pointer::-D_REENTRANT::-ldl:BN_LLONG_BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-kfreebsd-amd64","gcc:-m64 -DL_ENDIAN -DTERMIOS ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-kfreebsd-i386","gcc:-DL_ENDIAN -DTERMIOS ${debian_cflags} -march=i486::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-hppa","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-hurd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -Wa,--noexecstack -g -mtune=i486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-ia64","gcc:-DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_UNROLL DES_INT:${ia64_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-i386","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-i386-i486","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags} -march=i486::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-i386-i586","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags} -march=i586::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-i386-i686/cmov","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags} -march=i686::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-m68k","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-mips", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-mipsel", "gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-mipsn32", "mips64-linux-gnuabin32-gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-mipsn32el", "mips64el-linux-gnuabin32-gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-mips64", "mips64-linux-gnuabi64-gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-mips64el", "mips64el-linux-gnuabi64-gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-netbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS ${debian_cflags} -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-netbsd-m68k", "gcc:-DB_ENDIAN -DTERMIOS ${debian_cflags}::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-netbsd-sparc", "gcc:-DB_ENDIAN -DTERMIOS ${debian_cflags} -mv8::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-openbsd-alpha","gcc:-DTERMIOS ${debian_cflags}::(unknown):::SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-openbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS ${debian_cflags} -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_asm}:a.out:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-openbsd-mips","gcc:-DL_ENDIAN ${debian_cflags}::(unknown)::BN_LLONG MD2_CHAR RC4_INDEX RC4_CHAR DES_UNROLL DES_RISC2 DES_PTR BF_PTR:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-or1k", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-powerpc","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc32_asm}:linux32:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-powerpcspe","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc32_asm}:linux32:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-ppc64","gcc:-m64 -DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-ppc64el","gcc:-m64 -DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64le:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-s390","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-s390x","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sh3", "gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sh4", "gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sh3eb", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sh4eb", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-m32r","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sparc","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sparc-v8","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags} -mcpu=v8 -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv8_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sparc-v9","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags} -mcpu=v9 -Wa,-Av8plus -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-sparc64","gcc:-m64 -DB_ENDIAN -DTERMIO ${debian_cflags} -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_PTR DES_RISC1 DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
-+"debian-x32","gcc:-mx32 -DL_ENDIAN -DTERMIO ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-mx32:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR):::x32",
-+
- ####
- #### Variety of LINUX:-)
- ####
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch b/meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch
deleted file mode 100644
index 4085e3b1d7..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch
+++ /dev/null
@@ -1,15 +0,0 @@
-Upstream-Status: Backport [debian]
-
-Index: openssl-1.0.0c/Makefile.org
-===================================================================
---- openssl-1.0.0c.orig/Makefile.org 2010-12-12 16:11:27.000000000 +0100
-+++ openssl-1.0.0c/Makefile.org 2010-12-12 16:11:37.000000000 +0100
-@@ -131,7 +131,7 @@
-
- MAKEFILE= Makefile
-
--MANDIR=$(OPENSSLDIR)/man
-+MANDIR=/usr/share/man
- MAN1=1
- MAN3=3
- MANSUFFIX=
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch b/meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch
deleted file mode 100644
index 21c1d1a4eb..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch
+++ /dev/null
@@ -1,34 +0,0 @@
-Upstream-Status: Backport [debian]
-
-Index: openssl-1.0.0c/Makefile.org
-===================================================================
---- openssl-1.0.0c.orig/Makefile.org 2010-12-12 16:11:37.000000000 +0100
-+++ openssl-1.0.0c/Makefile.org 2010-12-12 16:13:28.000000000 +0100
-@@ -160,7 +160,8 @@
- MANDIR=/usr/share/man
- MAN1=1
- MAN3=3
--MANSUFFIX=
-+MANSUFFIX=ssl
-+MANSECTION=SSL
- HTMLSUFFIX=html
- HTMLDIR=$(OPENSSLDIR)/html
- SHELL=/bin/sh
-@@ -651,7 +652,7 @@
- echo "installing man$$sec/$$fn.$${sec}$(MANSUFFIX)"; \
- (cd `$(PERL) util/dirname.pl $$i`; \
- sh -c "$$pod2man \
-- --section=$$sec --center=OpenSSL \
-+ --section=$${sec}$(MANSECTION) --center=OpenSSL \
- --release=$(VERSION) `basename $$i`") \
- > $(INSTALL_PREFIX)$(MANDIR)/man$$sec/$$fn.$${sec}$(MANSUFFIX); \
- $(PERL) util/extract-names.pl < $$i | \
-@@ -668,7 +669,7 @@
- echo "installing man$$sec/$$fn.$${sec}$(MANSUFFIX)"; \
- (cd `$(PERL) util/dirname.pl $$i`; \
- sh -c "$$pod2man \
-- --section=$$sec --center=OpenSSL \
-+ --section=$${sec}$(MANSECTION) --center=OpenSSL \
- --release=$(VERSION) `basename $$i`") \
- > $(INSTALL_PREFIX)$(MANDIR)/man$$sec/$$fn.$${sec}$(MANSUFFIX); \
- $(PERL) util/extract-names.pl < $$i | \
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch b/meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch
deleted file mode 100644
index 1ccb3b86ee..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch
+++ /dev/null
@@ -1,15 +0,0 @@
-Upstream-Status: Backport [debian]
-
-Index: openssl-1.0.0c/Makefile.shared
-===================================================================
---- openssl-1.0.0c.orig/Makefile.shared 2010-08-21 13:36:49.000000000 +0200
-+++ openssl-1.0.0c/Makefile.shared 2010-12-12 16:13:36.000000000 +0100
-@@ -153,7 +153,7 @@
- NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \
- SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
-
--DO_GNU_APP=LDFLAGS="$(CFLAGS) -Wl,-rpath,$(LIBRPATH)"
-+DO_GNU_APP=LDFLAGS="$(CFLAGS)"
-
- #This is rather special. It's a special target with which one can link
- #applications without bothering with any features that have anything to
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch b/meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch
deleted file mode 100644
index cc4408ab7d..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch
+++ /dev/null
@@ -1,15 +0,0 @@
-Upstream-Status: Backport [debian]
-
-Index: openssl-1.0.0c/Makefile.shared
-===================================================================
---- openssl-1.0.0c.orig/Makefile.shared 2010-12-12 16:13:36.000000000 +0100
-+++ openssl-1.0.0c/Makefile.shared 2010-12-12 16:13:44.000000000 +0100
-@@ -151,7 +151,7 @@
- SHLIB_SUFFIX=; \
- ALLSYMSFLAGS='-Wl,--whole-archive'; \
- NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \
-- SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
-+ SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
-
- DO_GNU_APP=LDFLAGS="$(CFLAGS)"
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/pic.patch b/meta/recipes-connectivity/openssl/openssl10/debian/pic.patch
deleted file mode 100644
index bfda3888bf..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian/pic.patch
+++ /dev/null
@@ -1,177 +0,0 @@
-Upstream-Status: Backport [debian]
-
-Index: openssl-1.0.1c/crypto/des/asm/desboth.pl
-===================================================================
---- openssl-1.0.1c.orig/crypto/des/asm/desboth.pl 2001-10-24 23:20:56.000000000 +0200
-+++ openssl-1.0.1c/crypto/des/asm/desboth.pl 2012-07-29 14:15:26.000000000 +0200
-@@ -16,6 +16,11 @@
-
- &push("edi");
-
-+ &call (&label("pic_point0"));
-+ &set_label("pic_point0");
-+ &blindpop("ebp");
-+ &add ("ebp", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point0") . "]");
-+
- &comment("");
- &comment("Load the data words");
- &mov($L,&DWP(0,"ebx","",0));
-@@ -47,15 +52,21 @@
- &mov(&swtmp(2), (DWC(($enc)?"1":"0")));
- &mov(&swtmp(1), "eax");
- &mov(&swtmp(0), "ebx");
-- &call("DES_encrypt2");
-+ &exch("ebx", "ebp");
-+ &call("DES_encrypt2\@PLT");
-+ &exch("ebx", "ebp");
- &mov(&swtmp(2), (DWC(($enc)?"0":"1")));
- &mov(&swtmp(1), "edi");
- &mov(&swtmp(0), "ebx");
-- &call("DES_encrypt2");
-+ &exch("ebx", "ebp");
-+ &call("DES_encrypt2\@PLT");
-+ &exch("ebx", "ebp");
- &mov(&swtmp(2), (DWC(($enc)?"1":"0")));
- &mov(&swtmp(1), "esi");
- &mov(&swtmp(0), "ebx");
-- &call("DES_encrypt2");
-+ &exch("ebx", "ebp");
-+ &call("DES_encrypt2\@PLT");
-+ &exch("ebx", "ebp");
-
- &stack_pop(3);
- &mov($L,&DWP(0,"ebx","",0));
-Index: openssl-1.0.1c/crypto/perlasm/cbc.pl
-===================================================================
---- openssl-1.0.1c.orig/crypto/perlasm/cbc.pl 2011-07-13 08:22:46.000000000 +0200
-+++ openssl-1.0.1c/crypto/perlasm/cbc.pl 2012-07-29 14:15:26.000000000 +0200
-@@ -122,7 +122,11 @@
- &mov(&DWP($data_off,"esp","",0), "eax"); # put in array for call
- &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
-
-- &call($enc_func);
-+ &call (&label("pic_point0"));
-+ &set_label("pic_point0");
-+ &blindpop("ebx");
-+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point0") . "]");
-+ &call("$enc_func\@PLT");
-
- &mov("eax", &DWP($data_off,"esp","",0));
- &mov("ebx", &DWP($data_off+4,"esp","",0));
-@@ -185,7 +189,11 @@
- &mov(&DWP($data_off,"esp","",0), "eax"); # put in array for call
- &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
-
-- &call($enc_func);
-+ &call (&label("pic_point1"));
-+ &set_label("pic_point1");
-+ &blindpop("ebx");
-+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point1") . "]");
-+ &call("$enc_func\@PLT");
-
- &mov("eax", &DWP($data_off,"esp","",0));
- &mov("ebx", &DWP($data_off+4,"esp","",0));
-@@ -218,7 +226,11 @@
- &mov(&DWP($data_off,"esp","",0), "eax"); # put back
- &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
-
-- &call($dec_func);
-+ &call (&label("pic_point2"));
-+ &set_label("pic_point2");
-+ &blindpop("ebx");
-+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point2") . "]");
-+ &call("$dec_func\@PLT");
-
- &mov("eax", &DWP($data_off,"esp","",0)); # get return
- &mov("ebx", &DWP($data_off+4,"esp","",0)); #
-@@ -261,7 +273,11 @@
- &mov(&DWP($data_off,"esp","",0), "eax"); # put back
- &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
-
-- &call($dec_func);
-+ &call (&label("pic_point3"));
-+ &set_label("pic_point3");
-+ &blindpop("ebx");
-+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point3") . "]");
-+ &call("$dec_func\@PLT");
-
- &mov("eax", &DWP($data_off,"esp","",0)); # get return
- &mov("ebx", &DWP($data_off+4,"esp","",0)); #
-Index: openssl-1.0.1c/crypto/perlasm/x86gas.pl
-===================================================================
---- openssl-1.0.1c.orig/crypto/perlasm/x86gas.pl 2011-12-09 20:16:35.000000000 +0100
-+++ openssl-1.0.1c/crypto/perlasm/x86gas.pl 2012-07-29 14:15:26.000000000 +0200
-@@ -161,6 +161,7 @@
- if ($::macosx) { push (@out,"$tmp,2\n"); }
- elsif ($::elf) { push (@out,"$tmp,4\n"); }
- else { push (@out,"$tmp\n"); }
-+ if ($::elf) { push (@out,".hidden\tOPENSSL_ia32cap_P\n"); }
- }
- push(@out,$initseg) if ($initseg);
- }
-@@ -218,8 +219,23 @@
- elsif ($::elf)
- { $initseg.=<<___;
- .section .init
-+___
-+ if ($::pic)
-+ { $initseg.=<<___;
-+ pushl %ebx
-+ call .pic_point0
-+.pic_point0:
-+ popl %ebx
-+ addl \$_GLOBAL_OFFSET_TABLE_+[.-.pic_point0],%ebx
-+ call $f\@PLT
-+ popl %ebx
-+___
-+ }
-+ else
-+ { $initseg.=<<___;
- call $f
- ___
-+ }
- }
- elsif ($::coff)
- { $initseg.=<<___; # applies to both Cygwin and Mingw
-Index: openssl-1.0.1c/crypto/x86cpuid.pl
-===================================================================
---- openssl-1.0.1c.orig/crypto/x86cpuid.pl 2012-02-28 15:20:34.000000000 +0100
-+++ openssl-1.0.1c/crypto/x86cpuid.pl 2012-07-29 14:15:26.000000000 +0200
-@@ -8,6 +8,8 @@
-
- for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); }
-
-+push(@out, ".hidden OPENSSL_ia32cap_P\n");
-+
- &function_begin("OPENSSL_ia32_cpuid");
- &xor ("edx","edx");
- &pushf ();
-@@ -139,9 +141,7 @@
- &set_label("nocpuid");
- &function_end("OPENSSL_ia32_cpuid");
-
--&external_label("OPENSSL_ia32cap_P");
--
--&function_begin_B("OPENSSL_rdtsc","EXTRN\t_OPENSSL_ia32cap_P:DWORD");
-+&function_begin_B("OPENSSL_rdtsc");
- &xor ("eax","eax");
- &xor ("edx","edx");
- &picmeup("ecx","OPENSSL_ia32cap_P");
-@@ -155,7 +155,7 @@
- # This works in Ring 0 only [read DJGPP+MS-DOS+privileged DPMI host],
- # but it's safe to call it on any [supported] 32-bit platform...
- # Just check for [non-]zero return value...
--&function_begin_B("OPENSSL_instrument_halt","EXTRN\t_OPENSSL_ia32cap_P:DWORD");
-+&function_begin_B("OPENSSL_instrument_halt");
- &picmeup("ecx","OPENSSL_ia32cap_P");
- &bt (&DWP(0,"ecx"),4);
- &jnc (&label("nohalt")); # no TSC
-@@ -222,7 +222,7 @@
- &ret ();
- &function_end_B("OPENSSL_far_spin");
-
--&function_begin_B("OPENSSL_wipe_cpu","EXTRN\t_OPENSSL_ia32cap_P:DWORD");
-+&function_begin_B("OPENSSL_wipe_cpu");
- &xor ("eax","eax");
- &xor ("edx","edx");
- &picmeup("ecx","OPENSSL_ia32cap_P");
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch
deleted file mode 100644
index c43bcd1c77..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch
+++ /dev/null
@@ -1,29 +0,0 @@
-From: Raphael Geissert <geissert@debian.org>
-Description: make X509_verify_cert indicate that any certificate whose
- name contains "Digicert Sdn. Bhd." (from Malaysia) is revoked.
-Forwarded: not-needed
-Origin: vendor
-Last-Update: 2011-11-05
-
-Upstream-Status: Backport [debian]
-
-
-Index: openssl-1.0.2~beta1/crypto/x509/x509_vfy.c
-===================================================================
---- openssl-1.0.2~beta1.orig/crypto/x509/x509_vfy.c 2014-02-25 00:16:12.488028844 +0100
-+++ openssl-1.0.2~beta1/crypto/x509/x509_vfy.c 2014-02-25 00:16:12.484028929 +0100
-@@ -964,10 +964,11 @@
- for (i = sk_X509_num(ctx->chain) - 1; i >= 0; i--)
- {
- x = sk_X509_value(ctx->chain, i);
-- /* Mark DigiNotar certificates as revoked, no matter
-- * where in the chain they are.
-+ /* Mark certificates containing the following names as
-+ * revoked, no matter where in the chain they are.
- */
-- if (x->name && strstr(x->name, "DigiNotar"))
-+ if (x->name && (strstr(x->name, "DigiNotar") ||
-+ strstr(x->name, "Digicert Sdn. Bhd.")))
- {
- ctx->error = X509_V_ERR_CERT_REVOKED;
- ctx->error_depth = i;
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch
deleted file mode 100644
index d81e22cd8d..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch
+++ /dev/null
@@ -1,68 +0,0 @@
-From: Raphael Geissert <geissert@debian.org>
-Description: make X509_verify_cert indicate that any certificate whose
- name contains "DigiNotar" is revoked.
-Forwarded: not-needed
-Origin: vendor
-Last-Update: 2011-09-08
-Bug: http://bugs.debian.org/639744
-Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
-Reviewed-by: Dr Stephen N Henson <shenson@drh-consultancy.co.uk>
-
-This is not meant as final patch.
-
-Upstream-Status: Backport [debian]
-
-Signed-off-by: Armin Kuster <akuster@mvista.com>
-
-Index: openssl-1.0.2g/crypto/x509/x509_vfy.c
-===================================================================
---- openssl-1.0.2g.orig/crypto/x509/x509_vfy.c
-+++ openssl-1.0.2g/crypto/x509/x509_vfy.c
-@@ -119,6 +119,7 @@ static int check_trust(X509_STORE_CTX *c
- static int check_revocation(X509_STORE_CTX *ctx);
- static int check_cert(X509_STORE_CTX *ctx);
- static int check_policy(X509_STORE_CTX *ctx);
-+static int check_ca_blacklist(X509_STORE_CTX *ctx);
-
- static int get_crl_score(X509_STORE_CTX *ctx, X509 **pissuer,
- unsigned int *preasons, X509_CRL *crl, X509 *x);
-@@ -489,6 +490,9 @@ int X509_verify_cert(X509_STORE_CTX *ctx
- if (!ok)
- goto err;
-
-+ ok = check_ca_blacklist(ctx);
-+ if(!ok) goto err;
-+
- #ifndef OPENSSL_NO_RFC3779
- /* RFC 3779 path validation, now that CRL check has been done */
- ok = v3_asid_validate_path(ctx);
-@@ -996,6 +1000,29 @@ static int check_crl_time(X509_STORE_CTX
- return 1;
- }
-
-+static int check_ca_blacklist(X509_STORE_CTX *ctx)
-+ {
-+ X509 *x;
-+ int i;
-+ /* Check all certificates against the blacklist */
-+ for (i = sk_X509_num(ctx->chain) - 1; i >= 0; i--)
-+ {
-+ x = sk_X509_value(ctx->chain, i);
-+ /* Mark DigiNotar certificates as revoked, no matter
-+ * where in the chain they are.
-+ */
-+ if (x->name && strstr(x->name, "DigiNotar"))
-+ {
-+ ctx->error = X509_V_ERR_CERT_REVOKED;
-+ ctx->error_depth = i;
-+ ctx->current_cert = x;
-+ if (!ctx->verify_cb(0,ctx))
-+ return 0;
-+ }
-+ }
-+ return 1;
-+ }
-+
- static int get_crl_sk(X509_STORE_CTX *ctx, X509_CRL **pcrl, X509_CRL **pdcrl,
- X509 **pissuer, int *pscore, unsigned int *preasons,
- STACK_OF(X509_CRL) *crls)
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch
deleted file mode 100644
index 09dd9eaf86..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch
+++ /dev/null
@@ -1,15 +0,0 @@
-Upstream-Status: Inappropriate
-
-Index: openssl-1.0.2d/crypto/opensslv.h
-===================================================================
---- openssl-1.0.2d.orig/crypto/opensslv.h
-+++ openssl-1.0.2d/crypto/opensslv.h
-@@ -88,7 +88,7 @@ extern "C" {
- * should only keep the versions that are binary compatible with the current.
- */
- # define SHLIB_VERSION_HISTORY ""
--# define SHLIB_VERSION_NUMBER "1.0.0"
-+# define SHLIB_VERSION_NUMBER "1.0.2"
-
-
- #ifdef __cplusplus
diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch
deleted file mode 100644
index e404ee3312..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch
+++ /dev/null
@@ -1,4658 +0,0 @@
-Upstream-Status: Inappropriate
-
-Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/Configure
-===================================================================
---- openssl-1.0.2~beta1.obsolete.0.0498436515490575.orig/Configure 2014-02-24 21:02:30.000000000 +0100
-+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/Configure 2014-02-24 21:02:30.000000000 +0100
-@@ -1651,6 +1651,8 @@
- }
- }
-
-+$shared_ldflag .= " -Wl,--version-script=openssl.ld";
-+
- open(IN,'<Makefile.org') || die "unable to read Makefile.org:$!\n";
- unlink("$Makefile.new") || die "unable to remove old $Makefile.new:$!\n" if -e "$Makefile.new";
- open(OUT,">$Makefile.new") || die "unable to create $Makefile.new:$!\n";
-Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/openssl.ld
-===================================================================
---- /dev/null 1970-01-01 00:00:00.000000000 +0000
-+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/openssl.ld 2014-02-24 22:19:08.601827266 +0100
-@@ -0,0 +1,4608 @@
-+OPENSSL_1.0.2d {
-+ global:
-+ BIO_f_ssl;
-+ BIO_new_buffer_ssl_connect;
-+ BIO_new_ssl;
-+ BIO_new_ssl_connect;
-+ BIO_proxy_ssl_copy_session_id;
-+ BIO_ssl_copy_session_id;
-+ BIO_ssl_shutdown;
-+ d2i_SSL_SESSION;
-+ DTLSv1_client_method;
-+ DTLSv1_method;
-+ DTLSv1_server_method;
-+ ERR_load_SSL_strings;
-+ i2d_SSL_SESSION;
-+ kssl_build_principal_2;
-+ kssl_cget_tkt;
-+ kssl_check_authent;
-+ kssl_ctx_free;
-+ kssl_ctx_new;
-+ kssl_ctx_setkey;
-+ kssl_ctx_setprinc;
-+ kssl_ctx_setstring;
-+ kssl_ctx_show;
-+ kssl_err_set;
-+ kssl_krb5_free_data_contents;
-+ kssl_sget_tkt;
-+ kssl_skip_confound;
-+ kssl_validate_times;
-+ PEM_read_bio_SSL_SESSION;
-+ PEM_read_SSL_SESSION;
-+ PEM_write_bio_SSL_SESSION;
-+ PEM_write_SSL_SESSION;
-+ SSL_accept;
-+ SSL_add_client_CA;
-+ SSL_add_dir_cert_subjects_to_stack;
-+ SSL_add_dir_cert_subjs_to_stk;
-+ SSL_add_file_cert_subjects_to_stack;
-+ SSL_add_file_cert_subjs_to_stk;
-+ SSL_alert_desc_string;
-+ SSL_alert_desc_string_long;
-+ SSL_alert_type_string;
-+ SSL_alert_type_string_long;
-+ SSL_callback_ctrl;
-+ SSL_check_private_key;
-+ SSL_CIPHER_description;
-+ SSL_CIPHER_get_bits;
-+ SSL_CIPHER_get_name;
-+ SSL_CIPHER_get_version;
-+ SSL_clear;
-+ SSL_COMP_add_compression_method;
-+ SSL_COMP_get_compression_methods;
-+ SSL_COMP_get_compress_methods;
-+ SSL_COMP_get_name;
-+ SSL_connect;
-+ SSL_copy_session_id;
-+ SSL_ctrl;
-+ SSL_CTX_add_client_CA;
-+ SSL_CTX_add_session;
-+ SSL_CTX_callback_ctrl;
-+ SSL_CTX_check_private_key;
-+ SSL_CTX_ctrl;
-+ SSL_CTX_flush_sessions;
-+ SSL_CTX_free;
-+ SSL_CTX_get_cert_store;
-+ SSL_CTX_get_client_CA_list;
-+ SSL_CTX_get_client_cert_cb;
-+ SSL_CTX_get_ex_data;
-+ SSL_CTX_get_ex_new_index;
-+ SSL_CTX_get_info_callback;
-+ SSL_CTX_get_quiet_shutdown;
-+ SSL_CTX_get_timeout;
-+ SSL_CTX_get_verify_callback;
-+ SSL_CTX_get_verify_depth;
-+ SSL_CTX_get_verify_mode;
-+ SSL_CTX_load_verify_locations;
-+ SSL_CTX_new;
-+ SSL_CTX_remove_session;
-+ SSL_CTX_sess_get_get_cb;
-+ SSL_CTX_sess_get_new_cb;
-+ SSL_CTX_sess_get_remove_cb;
-+ SSL_CTX_sessions;
-+ SSL_CTX_sess_set_get_cb;
-+ SSL_CTX_sess_set_new_cb;
-+ SSL_CTX_sess_set_remove_cb;
-+ SSL_CTX_set1_param;
-+ SSL_CTX_set_cert_store;
-+ SSL_CTX_set_cert_verify_callback;
-+ SSL_CTX_set_cert_verify_cb;
-+ SSL_CTX_set_cipher_list;
-+ SSL_CTX_set_client_CA_list;
-+ SSL_CTX_set_client_cert_cb;
-+ SSL_CTX_set_client_cert_engine;
-+ SSL_CTX_set_cookie_generate_cb;
-+ SSL_CTX_set_cookie_verify_cb;
-+ SSL_CTX_set_default_passwd_cb;
-+ SSL_CTX_set_default_passwd_cb_userdata;
-+ SSL_CTX_set_default_verify_paths;
-+ SSL_CTX_set_def_passwd_cb_ud;
-+ SSL_CTX_set_def_verify_paths;
-+ SSL_CTX_set_ex_data;
-+ SSL_CTX_set_generate_session_id;
-+ SSL_CTX_set_info_callback;
-+ SSL_CTX_set_msg_callback;
-+ SSL_CTX_set_psk_client_callback;
-+ SSL_CTX_set_psk_server_callback;
-+ SSL_CTX_set_purpose;
-+ SSL_CTX_set_quiet_shutdown;
-+ SSL_CTX_set_session_id_context;
-+ SSL_CTX_set_ssl_version;
-+ SSL_CTX_set_timeout;
-+ SSL_CTX_set_tmp_dh_callback;
-+ SSL_CTX_set_tmp_ecdh_callback;
-+ SSL_CTX_set_tmp_rsa_callback;
-+ SSL_CTX_set_trust;
-+ SSL_CTX_set_verify;
-+ SSL_CTX_set_verify_depth;
-+ SSL_CTX_use_cert_chain_file;
-+ SSL_CTX_use_certificate;
-+ SSL_CTX_use_certificate_ASN1;
-+ SSL_CTX_use_certificate_chain_file;
-+ SSL_CTX_use_certificate_file;
-+ SSL_CTX_use_PrivateKey;
-+ SSL_CTX_use_PrivateKey_ASN1;
-+ SSL_CTX_use_PrivateKey_file;
-+ SSL_CTX_use_psk_identity_hint;
-+ SSL_CTX_use_RSAPrivateKey;
-+ SSL_CTX_use_RSAPrivateKey_ASN1;
-+ SSL_CTX_use_RSAPrivateKey_file;
-+ SSL_do_handshake;
-+ SSL_dup;
-+ SSL_dup_CA_list;
-+ SSLeay_add_ssl_algorithms;
-+ SSL_free;
-+ SSL_get1_session;
-+ SSL_get_certificate;
-+ SSL_get_cipher_list;
-+ SSL_get_ciphers;
-+ SSL_get_client_CA_list;
-+ SSL_get_current_cipher;
-+ SSL_get_current_compression;
-+ SSL_get_current_expansion;
-+ SSL_get_default_timeout;
-+ SSL_get_error;
-+ SSL_get_ex_data;
-+ SSL_get_ex_data_X509_STORE_CTX_idx;
-+ SSL_get_ex_d_X509_STORE_CTX_idx;
-+ SSL_get_ex_new_index;
-+ SSL_get_fd;
-+ SSL_get_finished;
-+ SSL_get_info_callback;
-+ SSL_get_peer_cert_chain;
-+ SSL_get_peer_certificate;
-+ SSL_get_peer_finished;
-+ SSL_get_privatekey;
-+ SSL_get_psk_identity;
-+ SSL_get_psk_identity_hint;
-+ SSL_get_quiet_shutdown;
-+ SSL_get_rbio;
-+ SSL_get_read_ahead;
-+ SSL_get_rfd;
-+ SSL_get_servername;
-+ SSL_get_servername_type;
-+ SSL_get_session;
-+ SSL_get_shared_ciphers;
-+ SSL_get_shutdown;
-+ SSL_get_SSL_CTX;
-+ SSL_get_ssl_method;
-+ SSL_get_verify_callback;
-+ SSL_get_verify_depth;
-+ SSL_get_verify_mode;
-+ SSL_get_verify_result;
-+ SSL_get_version;
-+ SSL_get_wbio;
-+ SSL_get_wfd;
-+ SSL_has_matching_session_id;
-+ SSL_library_init;
-+ SSL_load_client_CA_file;
-+ SSL_load_error_strings;
-+ SSL_new;
-+ SSL_peek;
-+ SSL_pending;
-+ SSL_read;
-+ SSL_renegotiate;
-+ SSL_renegotiate_pending;
-+ SSL_rstate_string;
-+ SSL_rstate_string_long;
-+ SSL_SESSION_cmp;
-+ SSL_SESSION_free;
-+ SSL_SESSION_get_ex_data;
-+ SSL_SESSION_get_ex_new_index;
-+ SSL_SESSION_get_id;
-+ SSL_SESSION_get_time;
-+ SSL_SESSION_get_timeout;
-+ SSL_SESSION_hash;
-+ SSL_SESSION_new;
-+ SSL_SESSION_print;
-+ SSL_SESSION_print_fp;
-+ SSL_SESSION_set_ex_data;
-+ SSL_SESSION_set_time;
-+ SSL_SESSION_set_timeout;
-+ SSL_set1_param;
-+ SSL_set_accept_state;
-+ SSL_set_bio;
-+ SSL_set_cipher_list;
-+ SSL_set_client_CA_list;
-+ SSL_set_connect_state;
-+ SSL_set_ex_data;
-+ SSL_set_fd;
-+ SSL_set_generate_session_id;
-+ SSL_set_info_callback;
-+ SSL_set_msg_callback;
-+ SSL_set_psk_client_callback;
-+ SSL_set_psk_server_callback;
-+ SSL_set_purpose;
-+ SSL_set_quiet_shutdown;
-+ SSL_set_read_ahead;
-+ SSL_set_rfd;
-+ SSL_set_session;
-+ SSL_set_session_id_context;
-+ SSL_set_session_secret_cb;
-+ SSL_set_session_ticket_ext;
-+ SSL_set_session_ticket_ext_cb;
-+ SSL_set_shutdown;
-+ SSL_set_SSL_CTX;
-+ SSL_set_ssl_method;
-+ SSL_set_tmp_dh_callback;
-+ SSL_set_tmp_ecdh_callback;
-+ SSL_set_tmp_rsa_callback;
-+ SSL_set_trust;
-+ SSL_set_verify;
-+ SSL_set_verify_depth;
-+ SSL_set_verify_result;
-+ SSL_set_wfd;
-+ SSL_shutdown;
-+ SSL_state;
-+ SSL_state_string;
-+ SSL_state_string_long;
-+ SSL_use_certificate;
-+ SSL_use_certificate_ASN1;
-+ SSL_use_certificate_file;
-+ SSL_use_PrivateKey;
-+ SSL_use_PrivateKey_ASN1;
-+ SSL_use_PrivateKey_file;
-+ SSL_use_psk_identity_hint;
-+ SSL_use_RSAPrivateKey;
-+ SSL_use_RSAPrivateKey_ASN1;
-+ SSL_use_RSAPrivateKey_file;
-+ SSLv23_client_method;
-+ SSLv23_method;
-+ SSLv23_server_method;
-+ SSLv2_client_method;
-+ SSLv2_method;
-+ SSLv2_server_method;
-+ SSLv3_client_method;
-+ SSLv3_method;
-+ SSLv3_server_method;
-+ SSL_version;
-+ SSL_want;
-+ SSL_write;
-+ TLSv1_client_method;
-+ TLSv1_method;
-+ TLSv1_server_method;
-+
-+
-+ SSLeay;
-+ SSLeay_version;
-+ ASN1_BIT_STRING_asn1_meth;
-+ ASN1_HEADER_free;
-+ ASN1_HEADER_new;
-+ ASN1_IA5STRING_asn1_meth;
-+ ASN1_INTEGER_get;
-+ ASN1_INTEGER_set;
-+ ASN1_INTEGER_to_BN;
-+ ASN1_OBJECT_create;
-+ ASN1_OBJECT_free;
-+ ASN1_OBJECT_new;
-+ ASN1_PRINTABLE_type;
-+ ASN1_STRING_cmp;
-+ ASN1_STRING_dup;
-+ ASN1_STRING_free;
-+ ASN1_STRING_new;
-+ ASN1_STRING_print;
-+ ASN1_STRING_set;
-+ ASN1_STRING_type_new;
-+ ASN1_TYPE_free;
-+ ASN1_TYPE_new;
-+ ASN1_UNIVERSALSTRING_to_string;
-+ ASN1_UTCTIME_check;
-+ ASN1_UTCTIME_print;
-+ ASN1_UTCTIME_set;
-+ ASN1_check_infinite_end;
-+ ASN1_d2i_bio;
-+ ASN1_d2i_fp;
-+ ASN1_digest;
-+ ASN1_dup;
-+ ASN1_get_object;
-+ ASN1_i2d_bio;
-+ ASN1_i2d_fp;
-+ ASN1_object_size;
-+ ASN1_parse;
-+ ASN1_put_object;
-+ ASN1_sign;
-+ ASN1_verify;
-+ BF_cbc_encrypt;
-+ BF_cfb64_encrypt;
-+ BF_ecb_encrypt;
-+ BF_encrypt;
-+ BF_ofb64_encrypt;
-+ BF_options;
-+ BF_set_key;
-+ BIO_CONNECT_free;
-+ BIO_CONNECT_new;
-+ BIO_accept;
-+ BIO_ctrl;
-+ BIO_int_ctrl;
-+ BIO_debug_callback;
-+ BIO_dump;
-+ BIO_dup_chain;
-+ BIO_f_base64;
-+ BIO_f_buffer;
-+ BIO_f_cipher;
-+ BIO_f_md;
-+ BIO_f_null;
-+ BIO_f_proxy_server;
-+ BIO_fd_non_fatal_error;
-+ BIO_fd_should_retry;
-+ BIO_find_type;
-+ BIO_free;
-+ BIO_free_all;
-+ BIO_get_accept_socket;
-+ BIO_get_filter_bio;
-+ BIO_get_host_ip;
-+ BIO_get_port;
-+ BIO_get_retry_BIO;
-+ BIO_get_retry_reason;
-+ BIO_gethostbyname;
-+ BIO_gets;
-+ BIO_new;
-+ BIO_new_accept;
-+ BIO_new_connect;
-+ BIO_new_fd;
-+ BIO_new_file;
-+ BIO_new_fp;
-+ BIO_new_socket;
-+ BIO_pop;
-+ BIO_printf;
-+ BIO_push;
-+ BIO_puts;
-+ BIO_read;
-+ BIO_s_accept;
-+ BIO_s_connect;
-+ BIO_s_fd;
-+ BIO_s_file;
-+ BIO_s_mem;
-+ BIO_s_null;
-+ BIO_s_proxy_client;
-+ BIO_s_socket;
-+ BIO_set;
-+ BIO_set_cipher;
-+ BIO_set_tcp_ndelay;
-+ BIO_sock_cleanup;
-+ BIO_sock_error;
-+ BIO_sock_init;
-+ BIO_sock_non_fatal_error;
-+ BIO_sock_should_retry;
-+ BIO_socket_ioctl;
-+ BIO_write;
-+ BN_CTX_free;
-+ BN_CTX_new;
-+ BN_MONT_CTX_free;
-+ BN_MONT_CTX_new;
-+ BN_MONT_CTX_set;
-+ BN_add;
-+ BN_add_word;
-+ BN_hex2bn;
-+ BN_bin2bn;
-+ BN_bn2hex;
-+ BN_bn2bin;
-+ BN_clear;
-+ BN_clear_bit;
-+ BN_clear_free;
-+ BN_cmp;
-+ BN_copy;
-+ BN_div;
-+ BN_div_word;
-+ BN_dup;
-+ BN_free;
-+ BN_from_montgomery;
-+ BN_gcd;
-+ BN_generate_prime;
-+ BN_get_word;
-+ BN_is_bit_set;
-+ BN_is_prime;
-+ BN_lshift;
-+ BN_lshift1;
-+ BN_mask_bits;
-+ BN_mod;
-+ BN_mod_exp;
-+ BN_mod_exp_mont;
-+ BN_mod_exp_simple;
-+ BN_mod_inverse;
-+ BN_mod_mul;
-+ BN_mod_mul_montgomery;
-+ BN_mod_word;
-+ BN_mul;
-+ BN_new;
-+ BN_num_bits;
-+ BN_num_bits_word;
-+ BN_options;
-+ BN_print;
-+ BN_print_fp;
-+ BN_rand;
-+ BN_reciprocal;
-+ BN_rshift;
-+ BN_rshift1;
-+ BN_set_bit;
-+ BN_set_word;
-+ BN_sqr;
-+ BN_sub;
-+ BN_to_ASN1_INTEGER;
-+ BN_ucmp;
-+ BN_value_one;
-+ BUF_MEM_free;
-+ BUF_MEM_grow;
-+ BUF_MEM_new;
-+ BUF_strdup;
-+ CONF_free;
-+ CONF_get_number;
-+ CONF_get_section;
-+ CONF_get_string;
-+ CONF_load;
-+ CRYPTO_add_lock;
-+ CRYPTO_dbg_free;
-+ CRYPTO_dbg_malloc;
-+ CRYPTO_dbg_realloc;
-+ CRYPTO_dbg_remalloc;
-+ CRYPTO_free;
-+ CRYPTO_get_add_lock_callback;
-+ CRYPTO_get_id_callback;
-+ CRYPTO_get_lock_name;
-+ CRYPTO_get_locking_callback;
-+ CRYPTO_get_mem_functions;
-+ CRYPTO_lock;
-+ CRYPTO_malloc;
-+ CRYPTO_mem_ctrl;
-+ CRYPTO_mem_leaks;
-+ CRYPTO_mem_leaks_cb;
-+ CRYPTO_mem_leaks_fp;
-+ CRYPTO_realloc;
-+ CRYPTO_remalloc;
-+ CRYPTO_set_add_lock_callback;
-+ CRYPTO_set_id_callback;
-+ CRYPTO_set_locking_callback;
-+ CRYPTO_set_mem_functions;
-+ CRYPTO_thread_id;
-+ DH_check;
-+ DH_compute_key;
-+ DH_free;
-+ DH_generate_key;
-+ DH_generate_parameters;
-+ DH_new;
-+ DH_size;
-+ DHparams_print;
-+ DHparams_print_fp;
-+ DSA_free;
-+ DSA_generate_key;
-+ DSA_generate_parameters;
-+ DSA_is_prime;
-+ DSA_new;
-+ DSA_print;
-+ DSA_print_fp;
-+ DSA_sign;
-+ DSA_sign_setup;
-+ DSA_size;
-+ DSA_verify;
-+ DSAparams_print;
-+ DSAparams_print_fp;
-+ ERR_clear_error;
-+ ERR_error_string;
-+ ERR_free_strings;
-+ ERR_func_error_string;
-+ ERR_get_err_state_table;
-+ ERR_get_error;
-+ ERR_get_error_line;
-+ ERR_get_state;
-+ ERR_get_string_table;
-+ ERR_lib_error_string;
-+ ERR_load_ASN1_strings;
-+ ERR_load_BIO_strings;
-+ ERR_load_BN_strings;
-+ ERR_load_BUF_strings;
-+ ERR_load_CONF_strings;
-+ ERR_load_DH_strings;
-+ ERR_load_DSA_strings;
-+ ERR_load_ERR_strings;
-+ ERR_load_EVP_strings;
-+ ERR_load_OBJ_strings;
-+ ERR_load_PEM_strings;
-+ ERR_load_PROXY_strings;
-+ ERR_load_RSA_strings;
-+ ERR_load_X509_strings;
-+ ERR_load_crypto_strings;
-+ ERR_load_strings;
-+ ERR_peek_error;
-+ ERR_peek_error_line;
-+ ERR_print_errors;
-+ ERR_print_errors_fp;
-+ ERR_put_error;
-+ ERR_reason_error_string;
-+ ERR_remove_state;
-+ EVP_BytesToKey;
-+ EVP_CIPHER_CTX_cleanup;
-+ EVP_CipherFinal;
-+ EVP_CipherInit;
-+ EVP_CipherUpdate;
-+ EVP_DecodeBlock;
-+ EVP_DecodeFinal;
-+ EVP_DecodeInit;
-+ EVP_DecodeUpdate;
-+ EVP_DecryptFinal;
-+ EVP_DecryptInit;
-+ EVP_DecryptUpdate;
-+ EVP_DigestFinal;
-+ EVP_DigestInit;
-+ EVP_DigestUpdate;
-+ EVP_EncodeBlock;
-+ EVP_EncodeFinal;
-+ EVP_EncodeInit;
-+ EVP_EncodeUpdate;
-+ EVP_EncryptFinal;
-+ EVP_EncryptInit;
-+ EVP_EncryptUpdate;
-+ EVP_OpenFinal;
-+ EVP_OpenInit;
-+ EVP_PKEY_assign;
-+ EVP_PKEY_copy_parameters;
-+ EVP_PKEY_free;
-+ EVP_PKEY_missing_parameters;
-+ EVP_PKEY_new;
-+ EVP_PKEY_save_parameters;
-+ EVP_PKEY_size;
-+ EVP_PKEY_type;
-+ EVP_SealFinal;
-+ EVP_SealInit;
-+ EVP_SignFinal;
-+ EVP_VerifyFinal;
-+ EVP_add_alias;
-+ EVP_add_cipher;
-+ EVP_add_digest;
-+ EVP_bf_cbc;
-+ EVP_bf_cfb64;
-+ EVP_bf_ecb;
-+ EVP_bf_ofb;
-+ EVP_cleanup;
-+ EVP_des_cbc;
-+ EVP_des_cfb64;
-+ EVP_des_ecb;
-+ EVP_des_ede;
-+ EVP_des_ede3;
-+ EVP_des_ede3_cbc;
-+ EVP_des_ede3_cfb64;
-+ EVP_des_ede3_ofb;
-+ EVP_des_ede_cbc;
-+ EVP_des_ede_cfb64;
-+ EVP_des_ede_ofb;
-+ EVP_des_ofb;
-+ EVP_desx_cbc;
-+ EVP_dss;
-+ EVP_dss1;
-+ EVP_enc_null;
-+ EVP_get_cipherbyname;
-+ EVP_get_digestbyname;
-+ EVP_get_pw_prompt;
-+ EVP_idea_cbc;
-+ EVP_idea_cfb64;
-+ EVP_idea_ecb;
-+ EVP_idea_ofb;
-+ EVP_md2;
-+ EVP_md5;
-+ EVP_md_null;
-+ EVP_rc2_cbc;
-+ EVP_rc2_cfb64;
-+ EVP_rc2_ecb;
-+ EVP_rc2_ofb;
-+ EVP_rc4;
-+ EVP_read_pw_string;
-+ EVP_set_pw_prompt;
-+ EVP_sha;
-+ EVP_sha1;
-+ MD2;
-+ MD2_Final;
-+ MD2_Init;
-+ MD2_Update;
-+ MD2_options;
-+ MD5;
-+ MD5_Final;
-+ MD5_Init;
-+ MD5_Update;
-+ MDC2;
-+ MDC2_Final;
-+ MDC2_Init;
-+ MDC2_Update;
-+ NETSCAPE_SPKAC_free;
-+ NETSCAPE_SPKAC_new;
-+ NETSCAPE_SPKI_free;
-+ NETSCAPE_SPKI_new;
-+ NETSCAPE_SPKI_sign;
-+ NETSCAPE_SPKI_verify;
-+ OBJ_add_object;
-+ OBJ_bsearch;
-+ OBJ_cleanup;
-+ OBJ_cmp;
-+ OBJ_create;
-+ OBJ_dup;
-+ OBJ_ln2nid;
-+ OBJ_new_nid;
-+ OBJ_nid2ln;
-+ OBJ_nid2obj;
-+ OBJ_nid2sn;
-+ OBJ_obj2nid;
-+ OBJ_sn2nid;
-+ OBJ_txt2nid;
-+ PEM_ASN1_read;
-+ PEM_ASN1_read_bio;
-+ PEM_ASN1_write;
-+ PEM_ASN1_write_bio;
-+ PEM_SealFinal;
-+ PEM_SealInit;
-+ PEM_SealUpdate;
-+ PEM_SignFinal;
-+ PEM_SignInit;
-+ PEM_SignUpdate;
-+ PEM_X509_INFO_read;
-+ PEM_X509_INFO_read_bio;
-+ PEM_X509_INFO_write_bio;
-+ PEM_dek_info;
-+ PEM_do_header;
-+ PEM_get_EVP_CIPHER_INFO;
-+ PEM_proc_type;
-+ PEM_read;
-+ PEM_read_DHparams;
-+ PEM_read_DSAPrivateKey;
-+ PEM_read_DSAparams;
-+ PEM_read_PKCS7;
-+ PEM_read_PrivateKey;
-+ PEM_read_RSAPrivateKey;
-+ PEM_read_X509;
-+ PEM_read_X509_CRL;
-+ PEM_read_X509_REQ;
-+ PEM_read_bio;
-+ PEM_read_bio_DHparams;
-+ PEM_read_bio_DSAPrivateKey;
-+ PEM_read_bio_DSAparams;
-+ PEM_read_bio_PKCS7;
-+ PEM_read_bio_PrivateKey;
-+ PEM_read_bio_RSAPrivateKey;
-+ PEM_read_bio_X509;
-+ PEM_read_bio_X509_CRL;
-+ PEM_read_bio_X509_REQ;
-+ PEM_write;
-+ PEM_write_DHparams;
-+ PEM_write_DSAPrivateKey;
-+ PEM_write_DSAparams;
-+ PEM_write_PKCS7;
-+ PEM_write_PrivateKey;
-+ PEM_write_RSAPrivateKey;
-+ PEM_write_X509;
-+ PEM_write_X509_CRL;
-+ PEM_write_X509_REQ;
-+ PEM_write_bio;
-+ PEM_write_bio_DHparams;
-+ PEM_write_bio_DSAPrivateKey;
-+ PEM_write_bio_DSAparams;
-+ PEM_write_bio_PKCS7;
-+ PEM_write_bio_PrivateKey;
-+ PEM_write_bio_RSAPrivateKey;
-+ PEM_write_bio_X509;
-+ PEM_write_bio_X509_CRL;
-+ PEM_write_bio_X509_REQ;
-+ PKCS7_DIGEST_free;
-+ PKCS7_DIGEST_new;
-+ PKCS7_ENCRYPT_free;
-+ PKCS7_ENCRYPT_new;
-+ PKCS7_ENC_CONTENT_free;
-+ PKCS7_ENC_CONTENT_new;
-+ PKCS7_ENVELOPE_free;
-+ PKCS7_ENVELOPE_new;
-+ PKCS7_ISSUER_AND_SERIAL_digest;
-+ PKCS7_ISSUER_AND_SERIAL_free;
-+ PKCS7_ISSUER_AND_SERIAL_new;
-+ PKCS7_RECIP_INFO_free;
-+ PKCS7_RECIP_INFO_new;
-+ PKCS7_SIGNED_free;
-+ PKCS7_SIGNED_new;
-+ PKCS7_SIGNER_INFO_free;
-+ PKCS7_SIGNER_INFO_new;
-+ PKCS7_SIGN_ENVELOPE_free;
-+ PKCS7_SIGN_ENVELOPE_new;
-+ PKCS7_dup;
-+ PKCS7_free;
-+ PKCS7_new;
-+ PROXY_ENTRY_add_noproxy;
-+ PROXY_ENTRY_clear_noproxy;
-+ PROXY_ENTRY_free;
-+ PROXY_ENTRY_get_noproxy;
-+ PROXY_ENTRY_new;
-+ PROXY_ENTRY_set_server;
-+ PROXY_add_noproxy;
-+ PROXY_add_server;
-+ PROXY_check_by_host;
-+ PROXY_check_url;
-+ PROXY_clear_noproxy;
-+ PROXY_free;
-+ PROXY_get_noproxy;
-+ PROXY_get_proxies;
-+ PROXY_get_proxy_entry;
-+ PROXY_load_conf;
-+ PROXY_new;
-+ PROXY_print;
-+ RAND_bytes;
-+ RAND_cleanup;
-+ RAND_file_name;
-+ RAND_load_file;
-+ RAND_screen;
-+ RAND_seed;
-+ RAND_write_file;
-+ RC2_cbc_encrypt;
-+ RC2_cfb64_encrypt;
-+ RC2_ecb_encrypt;
-+ RC2_encrypt;
-+ RC2_ofb64_encrypt;
-+ RC2_set_key;
-+ RC4;
-+ RC4_options;
-+ RC4_set_key;
-+ RSAPrivateKey_asn1_meth;
-+ RSAPrivateKey_dup;
-+ RSAPublicKey_dup;
-+ RSA_PKCS1_SSLeay;
-+ RSA_free;
-+ RSA_generate_key;
-+ RSA_new;
-+ RSA_new_method;
-+ RSA_print;
-+ RSA_print_fp;
-+ RSA_private_decrypt;
-+ RSA_private_encrypt;
-+ RSA_public_decrypt;
-+ RSA_public_encrypt;
-+ RSA_set_default_method;
-+ RSA_sign;
-+ RSA_sign_ASN1_OCTET_STRING;
-+ RSA_size;
-+ RSA_verify;
-+ RSA_verify_ASN1_OCTET_STRING;
-+ SHA;
-+ SHA1;
-+ SHA1_Final;
-+ SHA1_Init;
-+ SHA1_Update;
-+ SHA_Final;
-+ SHA_Init;
-+ SHA_Update;
-+ OpenSSL_add_all_algorithms;
-+ OpenSSL_add_all_ciphers;
-+ OpenSSL_add_all_digests;
-+ TXT_DB_create_index;
-+ TXT_DB_free;
-+ TXT_DB_get_by_index;
-+ TXT_DB_insert;
-+ TXT_DB_read;
-+ TXT_DB_write;
-+ X509_ALGOR_free;
-+ X509_ALGOR_new;
-+ X509_ATTRIBUTE_free;
-+ X509_ATTRIBUTE_new;
-+ X509_CINF_free;
-+ X509_CINF_new;
-+ X509_CRL_INFO_free;
-+ X509_CRL_INFO_new;
-+ X509_CRL_add_ext;
-+ X509_CRL_cmp;
-+ X509_CRL_delete_ext;
-+ X509_CRL_dup;
-+ X509_CRL_free;
-+ X509_CRL_get_ext;
-+ X509_CRL_get_ext_by_NID;
-+ X509_CRL_get_ext_by_OBJ;
-+ X509_CRL_get_ext_by_critical;
-+ X509_CRL_get_ext_count;
-+ X509_CRL_new;
-+ X509_CRL_sign;
-+ X509_CRL_verify;
-+ X509_EXTENSION_create_by_NID;
-+ X509_EXTENSION_create_by_OBJ;
-+ X509_EXTENSION_dup;
-+ X509_EXTENSION_free;
-+ X509_EXTENSION_get_critical;
-+ X509_EXTENSION_get_data;
-+ X509_EXTENSION_get_object;
-+ X509_EXTENSION_new;
-+ X509_EXTENSION_set_critical;
-+ X509_EXTENSION_set_data;
-+ X509_EXTENSION_set_object;
-+ X509_INFO_free;
-+ X509_INFO_new;
-+ X509_LOOKUP_by_alias;
-+ X509_LOOKUP_by_fingerprint;
-+ X509_LOOKUP_by_issuer_serial;
-+ X509_LOOKUP_by_subject;
-+ X509_LOOKUP_ctrl;
-+ X509_LOOKUP_file;
-+ X509_LOOKUP_free;
-+ X509_LOOKUP_hash_dir;
-+ X509_LOOKUP_init;
-+ X509_LOOKUP_new;
-+ X509_LOOKUP_shutdown;
-+ X509_NAME_ENTRY_create_by_NID;
-+ X509_NAME_ENTRY_create_by_OBJ;
-+ X509_NAME_ENTRY_dup;
-+ X509_NAME_ENTRY_free;
-+ X509_NAME_ENTRY_get_data;
-+ X509_NAME_ENTRY_get_object;
-+ X509_NAME_ENTRY_new;
-+ X509_NAME_ENTRY_set_data;
-+ X509_NAME_ENTRY_set_object;
-+ X509_NAME_add_entry;
-+ X509_NAME_cmp;
-+ X509_NAME_delete_entry;
-+ X509_NAME_digest;
-+ X509_NAME_dup;
-+ X509_NAME_entry_count;
-+ X509_NAME_free;
-+ X509_NAME_get_entry;
-+ X509_NAME_get_index_by_NID;
-+ X509_NAME_get_index_by_OBJ;
-+ X509_NAME_get_text_by_NID;
-+ X509_NAME_get_text_by_OBJ;
-+ X509_NAME_hash;
-+ X509_NAME_new;
-+ X509_NAME_oneline;
-+ X509_NAME_print;
-+ X509_NAME_set;
-+ X509_OBJECT_free_contents;
-+ X509_OBJECT_retrieve_by_subject;
-+ X509_OBJECT_up_ref_count;
-+ X509_PKEY_free;
-+ X509_PKEY_new;
-+ X509_PUBKEY_free;
-+ X509_PUBKEY_get;
-+ X509_PUBKEY_new;
-+ X509_PUBKEY_set;
-+ X509_REQ_INFO_free;
-+ X509_REQ_INFO_new;
-+ X509_REQ_dup;
-+ X509_REQ_free;
-+ X509_REQ_get_pubkey;
-+ X509_REQ_new;
-+ X509_REQ_print;
-+ X509_REQ_print_fp;
-+ X509_REQ_set_pubkey;
-+ X509_REQ_set_subject_name;
-+ X509_REQ_set_version;
-+ X509_REQ_sign;
-+ X509_REQ_to_X509;
-+ X509_REQ_verify;
-+ X509_REVOKED_add_ext;
-+ X509_REVOKED_delete_ext;
-+ X509_REVOKED_free;
-+ X509_REVOKED_get_ext;
-+ X509_REVOKED_get_ext_by_NID;
-+ X509_REVOKED_get_ext_by_OBJ;
-+ X509_REVOKED_get_ext_by_critical;
-+ X509_REVOKED_get_ext_by_critic;
-+ X509_REVOKED_get_ext_count;
-+ X509_REVOKED_new;
-+ X509_SIG_free;
-+ X509_SIG_new;
-+ X509_STORE_CTX_cleanup;
-+ X509_STORE_CTX_init;
-+ X509_STORE_add_cert;
-+ X509_STORE_add_lookup;
-+ X509_STORE_free;
-+ X509_STORE_get_by_subject;
-+ X509_STORE_load_locations;
-+ X509_STORE_new;
-+ X509_STORE_set_default_paths;
-+ X509_VAL_free;
-+ X509_VAL_new;
-+ X509_add_ext;
-+ X509_asn1_meth;
-+ X509_certificate_type;
-+ X509_check_private_key;
-+ X509_cmp_current_time;
-+ X509_delete_ext;
-+ X509_digest;
-+ X509_dup;
-+ X509_free;
-+ X509_get_default_cert_area;
-+ X509_get_default_cert_dir;
-+ X509_get_default_cert_dir_env;
-+ X509_get_default_cert_file;
-+ X509_get_default_cert_file_env;
-+ X509_get_default_private_dir;
-+ X509_get_ext;
-+ X509_get_ext_by_NID;
-+ X509_get_ext_by_OBJ;
-+ X509_get_ext_by_critical;
-+ X509_get_ext_count;
-+ X509_get_issuer_name;
-+ X509_get_pubkey;
-+ X509_get_pubkey_parameters;
-+ X509_get_serialNumber;
-+ X509_get_subject_name;
-+ X509_gmtime_adj;
-+ X509_issuer_and_serial_cmp;
-+ X509_issuer_and_serial_hash;
-+ X509_issuer_name_cmp;
-+ X509_issuer_name_hash;
-+ X509_load_cert_file;
-+ X509_new;
-+ X509_print;
-+ X509_print_fp;
-+ X509_set_issuer_name;
-+ X509_set_notAfter;
-+ X509_set_notBefore;
-+ X509_set_pubkey;
-+ X509_set_serialNumber;
-+ X509_set_subject_name;
-+ X509_set_version;
-+ X509_sign;
-+ X509_subject_name_cmp;
-+ X509_subject_name_hash;
-+ X509_to_X509_REQ;
-+ X509_verify;
-+ X509_verify_cert;
-+ X509_verify_cert_error_string;
-+ X509v3_add_ext;
-+ X509v3_add_extension;
-+ X509v3_add_netscape_extensions;
-+ X509v3_add_standard_extensions;
-+ X509v3_cleanup_extensions;
-+ X509v3_data_type_by_NID;
-+ X509v3_data_type_by_OBJ;
-+ X509v3_delete_ext;
-+ X509v3_get_ext;
-+ X509v3_get_ext_by_NID;
-+ X509v3_get_ext_by_OBJ;
-+ X509v3_get_ext_by_critical;
-+ X509v3_get_ext_count;
-+ X509v3_pack_string;
-+ X509v3_pack_type_by_NID;
-+ X509v3_pack_type_by_OBJ;
-+ X509v3_unpack_string;
-+ _des_crypt;
-+ a2d_ASN1_OBJECT;
-+ a2i_ASN1_INTEGER;
-+ a2i_ASN1_STRING;
-+ asn1_Finish;
-+ asn1_GetSequence;
-+ bn_div_words;
-+ bn_expand2;
-+ bn_mul_add_words;
-+ bn_mul_words;
-+ BN_uadd;
-+ BN_usub;
-+ bn_sqr_words;
-+ _ossl_old_crypt;
-+ d2i_ASN1_BIT_STRING;
-+ d2i_ASN1_BOOLEAN;
-+ d2i_ASN1_HEADER;
-+ d2i_ASN1_IA5STRING;
-+ d2i_ASN1_INTEGER;
-+ d2i_ASN1_OBJECT;
-+ d2i_ASN1_OCTET_STRING;
-+ d2i_ASN1_PRINTABLE;
-+ d2i_ASN1_PRINTABLESTRING;
-+ d2i_ASN1_SET;
-+ d2i_ASN1_T61STRING;
-+ d2i_ASN1_TYPE;
-+ d2i_ASN1_UTCTIME;
-+ d2i_ASN1_bytes;
-+ d2i_ASN1_type_bytes;
-+ d2i_DHparams;
-+ d2i_DSAPrivateKey;
-+ d2i_DSAPrivateKey_bio;
-+ d2i_DSAPrivateKey_fp;
-+ d2i_DSAPublicKey;
-+ d2i_DSAparams;
-+ d2i_NETSCAPE_SPKAC;
-+ d2i_NETSCAPE_SPKI;
-+ d2i_Netscape_RSA;
-+ d2i_PKCS7;
-+ d2i_PKCS7_DIGEST;
-+ d2i_PKCS7_ENCRYPT;
-+ d2i_PKCS7_ENC_CONTENT;
-+ d2i_PKCS7_ENVELOPE;
-+ d2i_PKCS7_ISSUER_AND_SERIAL;
-+ d2i_PKCS7_RECIP_INFO;
-+ d2i_PKCS7_SIGNED;
-+ d2i_PKCS7_SIGNER_INFO;
-+ d2i_PKCS7_SIGN_ENVELOPE;
-+ d2i_PKCS7_bio;
-+ d2i_PKCS7_fp;
-+ d2i_PrivateKey;
-+ d2i_PublicKey;
-+ d2i_RSAPrivateKey;
-+ d2i_RSAPrivateKey_bio;
-+ d2i_RSAPrivateKey_fp;
-+ d2i_RSAPublicKey;
-+ d2i_X509;
-+ d2i_X509_ALGOR;
-+ d2i_X509_ATTRIBUTE;
-+ d2i_X509_CINF;
-+ d2i_X509_CRL;
-+ d2i_X509_CRL_INFO;
-+ d2i_X509_CRL_bio;
-+ d2i_X509_CRL_fp;
-+ d2i_X509_EXTENSION;
-+ d2i_X509_NAME;
-+ d2i_X509_NAME_ENTRY;
-+ d2i_X509_PKEY;
-+ d2i_X509_PUBKEY;
-+ d2i_X509_REQ;
-+ d2i_X509_REQ_INFO;
-+ d2i_X509_REQ_bio;
-+ d2i_X509_REQ_fp;
-+ d2i_X509_REVOKED;
-+ d2i_X509_SIG;
-+ d2i_X509_VAL;
-+ d2i_X509_bio;
-+ d2i_X509_fp;
-+ DES_cbc_cksum;
-+ DES_cbc_encrypt;
-+ DES_cblock_print_file;
-+ DES_cfb64_encrypt;
-+ DES_cfb_encrypt;
-+ DES_decrypt3;
-+ DES_ecb3_encrypt;
-+ DES_ecb_encrypt;
-+ DES_ede3_cbc_encrypt;
-+ DES_ede3_cfb64_encrypt;
-+ DES_ede3_ofb64_encrypt;
-+ DES_enc_read;
-+ DES_enc_write;
-+ DES_encrypt1;
-+ DES_encrypt2;
-+ DES_encrypt3;
-+ DES_fcrypt;
-+ DES_is_weak_key;
-+ DES_key_sched;
-+ DES_ncbc_encrypt;
-+ DES_ofb64_encrypt;
-+ DES_ofb_encrypt;
-+ DES_options;
-+ DES_pcbc_encrypt;
-+ DES_quad_cksum;
-+ DES_random_key;
-+ _ossl_old_des_random_seed;
-+ _ossl_old_des_read_2passwords;
-+ _ossl_old_des_read_password;
-+ _ossl_old_des_read_pw;
-+ _ossl_old_des_read_pw_string;
-+ DES_set_key;
-+ DES_set_odd_parity;
-+ DES_string_to_2keys;
-+ DES_string_to_key;
-+ DES_xcbc_encrypt;
-+ DES_xwhite_in2out;
-+ fcrypt_body;
-+ i2a_ASN1_INTEGER;
-+ i2a_ASN1_OBJECT;
-+ i2a_ASN1_STRING;
-+ i2d_ASN1_BIT_STRING;
-+ i2d_ASN1_BOOLEAN;
-+ i2d_ASN1_HEADER;
-+ i2d_ASN1_IA5STRING;
-+ i2d_ASN1_INTEGER;
-+ i2d_ASN1_OBJECT;
-+ i2d_ASN1_OCTET_STRING;
-+ i2d_ASN1_PRINTABLE;
-+ i2d_ASN1_SET;
-+ i2d_ASN1_TYPE;
-+ i2d_ASN1_UTCTIME;
-+ i2d_ASN1_bytes;
-+ i2d_DHparams;
-+ i2d_DSAPrivateKey;
-+ i2d_DSAPrivateKey_bio;
-+ i2d_DSAPrivateKey_fp;
-+ i2d_DSAPublicKey;
-+ i2d_DSAparams;
-+ i2d_NETSCAPE_SPKAC;
-+ i2d_NETSCAPE_SPKI;
-+ i2d_Netscape_RSA;
-+ i2d_PKCS7;
-+ i2d_PKCS7_DIGEST;
-+ i2d_PKCS7_ENCRYPT;
-+ i2d_PKCS7_ENC_CONTENT;
-+ i2d_PKCS7_ENVELOPE;
-+ i2d_PKCS7_ISSUER_AND_SERIAL;
-+ i2d_PKCS7_RECIP_INFO;
-+ i2d_PKCS7_SIGNED;
-+ i2d_PKCS7_SIGNER_INFO;
-+ i2d_PKCS7_SIGN_ENVELOPE;
-+ i2d_PKCS7_bio;
-+ i2d_PKCS7_fp;
-+ i2d_PrivateKey;
-+ i2d_PublicKey;
-+ i2d_RSAPrivateKey;
-+ i2d_RSAPrivateKey_bio;
-+ i2d_RSAPrivateKey_fp;
-+ i2d_RSAPublicKey;
-+ i2d_X509;
-+ i2d_X509_ALGOR;
-+ i2d_X509_ATTRIBUTE;
-+ i2d_X509_CINF;
-+ i2d_X509_CRL;
-+ i2d_X509_CRL_INFO;
-+ i2d_X509_CRL_bio;
-+ i2d_X509_CRL_fp;
-+ i2d_X509_EXTENSION;
-+ i2d_X509_NAME;
-+ i2d_X509_NAME_ENTRY;
-+ i2d_X509_PKEY;
-+ i2d_X509_PUBKEY;
-+ i2d_X509_REQ;
-+ i2d_X509_REQ_INFO;
-+ i2d_X509_REQ_bio;
-+ i2d_X509_REQ_fp;
-+ i2d_X509_REVOKED;
-+ i2d_X509_SIG;
-+ i2d_X509_VAL;
-+ i2d_X509_bio;
-+ i2d_X509_fp;
-+ idea_cbc_encrypt;
-+ idea_cfb64_encrypt;
-+ idea_ecb_encrypt;
-+ idea_encrypt;
-+ idea_ofb64_encrypt;
-+ idea_options;
-+ idea_set_decrypt_key;
-+ idea_set_encrypt_key;
-+ lh_delete;
-+ lh_doall;
-+ lh_doall_arg;
-+ lh_free;
-+ lh_insert;
-+ lh_new;
-+ lh_node_stats;
-+ lh_node_stats_bio;
-+ lh_node_usage_stats;
-+ lh_node_usage_stats_bio;
-+ lh_retrieve;
-+ lh_stats;
-+ lh_stats_bio;
-+ lh_strhash;
-+ sk_delete;
-+ sk_delete_ptr;
-+ sk_dup;
-+ sk_find;
-+ sk_free;
-+ sk_insert;
-+ sk_new;
-+ sk_pop;
-+ sk_pop_free;
-+ sk_push;
-+ sk_set_cmp_func;
-+ sk_shift;
-+ sk_unshift;
-+ sk_zero;
-+ BIO_f_nbio_test;
-+ ASN1_TYPE_get;
-+ ASN1_TYPE_set;
-+ PKCS7_content_free;
-+ ERR_load_PKCS7_strings;
-+ X509_find_by_issuer_and_serial;
-+ X509_find_by_subject;
-+ PKCS7_ctrl;
-+ PKCS7_set_type;
-+ PKCS7_set_content;
-+ PKCS7_SIGNER_INFO_set;
-+ PKCS7_add_signer;
-+ PKCS7_add_certificate;
-+ PKCS7_add_crl;
-+ PKCS7_content_new;
-+ PKCS7_dataSign;
-+ PKCS7_dataVerify;
-+ PKCS7_dataInit;
-+ PKCS7_add_signature;
-+ PKCS7_cert_from_signer_info;
-+ PKCS7_get_signer_info;
-+ EVP_delete_alias;
-+ EVP_mdc2;
-+ PEM_read_bio_RSAPublicKey;
-+ PEM_write_bio_RSAPublicKey;
-+ d2i_RSAPublicKey_bio;
-+ i2d_RSAPublicKey_bio;
-+ PEM_read_RSAPublicKey;
-+ PEM_write_RSAPublicKey;
-+ d2i_RSAPublicKey_fp;
-+ i2d_RSAPublicKey_fp;
-+ BIO_copy_next_retry;
-+ RSA_flags;
-+ X509_STORE_add_crl;
-+ X509_load_crl_file;
-+ EVP_rc2_40_cbc;
-+ EVP_rc4_40;
-+ EVP_CIPHER_CTX_init;
-+ HMAC;
-+ HMAC_Init;
-+ HMAC_Update;
-+ HMAC_Final;
-+ ERR_get_next_error_library;
-+ EVP_PKEY_cmp_parameters;
-+ HMAC_cleanup;
-+ BIO_ptr_ctrl;
-+ BIO_new_file_internal;
-+ BIO_new_fp_internal;
-+ BIO_s_file_internal;
-+ BN_BLINDING_convert;
-+ BN_BLINDING_invert;
-+ BN_BLINDING_update;
-+ RSA_blinding_on;
-+ RSA_blinding_off;
-+ i2t_ASN1_OBJECT;
-+ BN_BLINDING_new;
-+ BN_BLINDING_free;
-+ EVP_cast5_cbc;
-+ EVP_cast5_cfb64;
-+ EVP_cast5_ecb;
-+ EVP_cast5_ofb;
-+ BF_decrypt;
-+ CAST_set_key;
-+ CAST_encrypt;
-+ CAST_decrypt;
-+ CAST_ecb_encrypt;
-+ CAST_cbc_encrypt;
-+ CAST_cfb64_encrypt;
-+ CAST_ofb64_encrypt;
-+ RC2_decrypt;
-+ OBJ_create_objects;
-+ BN_exp;
-+ BN_mul_word;
-+ BN_sub_word;
-+ BN_dec2bn;
-+ BN_bn2dec;
-+ BIO_ghbn_ctrl;
-+ CRYPTO_free_ex_data;
-+ CRYPTO_get_ex_data;
-+ CRYPTO_set_ex_data;
-+ ERR_load_CRYPTO_strings;
-+ ERR_load_CRYPTOlib_strings;
-+ EVP_PKEY_bits;
-+ MD5_Transform;
-+ SHA1_Transform;
-+ SHA_Transform;
-+ X509_STORE_CTX_get_chain;
-+ X509_STORE_CTX_get_current_cert;
-+ X509_STORE_CTX_get_error;
-+ X509_STORE_CTX_get_error_depth;
-+ X509_STORE_CTX_get_ex_data;
-+ X509_STORE_CTX_set_cert;
-+ X509_STORE_CTX_set_chain;
-+ X509_STORE_CTX_set_error;
-+ X509_STORE_CTX_set_ex_data;
-+ CRYPTO_dup_ex_data;
-+ CRYPTO_get_new_lockid;
-+ CRYPTO_new_ex_data;
-+ RSA_set_ex_data;
-+ RSA_get_ex_data;
-+ RSA_get_ex_new_index;
-+ RSA_padding_add_PKCS1_type_1;
-+ RSA_padding_add_PKCS1_type_2;
-+ RSA_padding_add_SSLv23;
-+ RSA_padding_add_none;
-+ RSA_padding_check_PKCS1_type_1;
-+ RSA_padding_check_PKCS1_type_2;
-+ RSA_padding_check_SSLv23;
-+ RSA_padding_check_none;
-+ bn_add_words;
-+ d2i_Netscape_RSA_2;
-+ CRYPTO_get_ex_new_index;
-+ RIPEMD160_Init;
-+ RIPEMD160_Update;
-+ RIPEMD160_Final;
-+ RIPEMD160;
-+ RIPEMD160_Transform;
-+ RC5_32_set_key;
-+ RC5_32_ecb_encrypt;
-+ RC5_32_encrypt;
-+ RC5_32_decrypt;
-+ RC5_32_cbc_encrypt;
-+ RC5_32_cfb64_encrypt;
-+ RC5_32_ofb64_encrypt;
-+ BN_bn2mpi;
-+ BN_mpi2bn;
-+ ASN1_BIT_STRING_get_bit;
-+ ASN1_BIT_STRING_set_bit;
-+ BIO_get_ex_data;
-+ BIO_get_ex_new_index;
-+ BIO_set_ex_data;
-+ X509v3_get_key_usage;
-+ X509v3_set_key_usage;
-+ a2i_X509v3_key_usage;
-+ i2a_X509v3_key_usage;
-+ EVP_PKEY_decrypt;
-+ EVP_PKEY_encrypt;
-+ PKCS7_RECIP_INFO_set;
-+ PKCS7_add_recipient;
-+ PKCS7_add_recipient_info;
-+ PKCS7_set_cipher;
-+ ASN1_TYPE_get_int_octetstring;
-+ ASN1_TYPE_get_octetstring;
-+ ASN1_TYPE_set_int_octetstring;
-+ ASN1_TYPE_set_octetstring;
-+ ASN1_UTCTIME_set_string;
-+ ERR_add_error_data;
-+ ERR_set_error_data;
-+ EVP_CIPHER_asn1_to_param;
-+ EVP_CIPHER_param_to_asn1;
-+ EVP_CIPHER_get_asn1_iv;
-+ EVP_CIPHER_set_asn1_iv;
-+ EVP_rc5_32_12_16_cbc;
-+ EVP_rc5_32_12_16_cfb64;
-+ EVP_rc5_32_12_16_ecb;
-+ EVP_rc5_32_12_16_ofb;
-+ asn1_add_error;
-+ d2i_ASN1_BMPSTRING;
-+ i2d_ASN1_BMPSTRING;
-+ BIO_f_ber;
-+ BN_init;
-+ COMP_CTX_new;
-+ COMP_CTX_free;
-+ COMP_CTX_compress_block;
-+ COMP_CTX_expand_block;
-+ X509_STORE_CTX_get_ex_new_index;
-+ OBJ_NAME_add;
-+ BIO_socket_nbio;
-+ EVP_rc2_64_cbc;
-+ OBJ_NAME_cleanup;
-+ OBJ_NAME_get;
-+ OBJ_NAME_init;
-+ OBJ_NAME_new_index;
-+ OBJ_NAME_remove;
-+ BN_MONT_CTX_copy;
-+ BIO_new_socks4a_connect;
-+ BIO_s_socks4a_connect;
-+ PROXY_set_connect_mode;
-+ RAND_SSLeay;
-+ RAND_set_rand_method;
-+ RSA_memory_lock;
-+ bn_sub_words;
-+ bn_mul_normal;
-+ bn_mul_comba8;
-+ bn_mul_comba4;
-+ bn_sqr_normal;
-+ bn_sqr_comba8;
-+ bn_sqr_comba4;
-+ bn_cmp_words;
-+ bn_mul_recursive;
-+ bn_mul_part_recursive;
-+ bn_sqr_recursive;
-+ bn_mul_low_normal;
-+ BN_RECP_CTX_init;
-+ BN_RECP_CTX_new;
-+ BN_RECP_CTX_free;
-+ BN_RECP_CTX_set;
-+ BN_mod_mul_reciprocal;
-+ BN_mod_exp_recp;
-+ BN_div_recp;
-+ BN_CTX_init;
-+ BN_MONT_CTX_init;
-+ RAND_get_rand_method;
-+ PKCS7_add_attribute;
-+ PKCS7_add_signed_attribute;
-+ PKCS7_digest_from_attributes;
-+ PKCS7_get_attribute;
-+ PKCS7_get_issuer_and_serial;
-+ PKCS7_get_signed_attribute;
-+ COMP_compress_block;
-+ COMP_expand_block;
-+ COMP_rle;
-+ COMP_zlib;
-+ ms_time_diff;
-+ ms_time_new;
-+ ms_time_free;
-+ ms_time_cmp;
-+ ms_time_get;
-+ PKCS7_set_attributes;
-+ PKCS7_set_signed_attributes;
-+ X509_ATTRIBUTE_create;
-+ X509_ATTRIBUTE_dup;
-+ ASN1_GENERALIZEDTIME_check;
-+ ASN1_GENERALIZEDTIME_print;
-+ ASN1_GENERALIZEDTIME_set;
-+ ASN1_GENERALIZEDTIME_set_string;
-+ ASN1_TIME_print;
-+ BASIC_CONSTRAINTS_free;
-+ BASIC_CONSTRAINTS_new;
-+ ERR_load_X509V3_strings;
-+ NETSCAPE_CERT_SEQUENCE_free;
-+ NETSCAPE_CERT_SEQUENCE_new;
-+ OBJ_txt2obj;
-+ PEM_read_NETSCAPE_CERT_SEQUENCE;
-+ PEM_read_NS_CERT_SEQ;
-+ PEM_read_bio_NETSCAPE_CERT_SEQUENCE;
-+ PEM_read_bio_NS_CERT_SEQ;
-+ PEM_write_NETSCAPE_CERT_SEQUENCE;
-+ PEM_write_NS_CERT_SEQ;
-+ PEM_write_bio_NETSCAPE_CERT_SEQUENCE;
-+ PEM_write_bio_NS_CERT_SEQ;
-+ X509V3_EXT_add;
-+ X509V3_EXT_add_alias;
-+ X509V3_EXT_add_conf;
-+ X509V3_EXT_cleanup;
-+ X509V3_EXT_conf;
-+ X509V3_EXT_conf_nid;
-+ X509V3_EXT_get;
-+ X509V3_EXT_get_nid;
-+ X509V3_EXT_print;
-+ X509V3_EXT_print_fp;
-+ X509V3_add_standard_extensions;
-+ X509V3_add_value;
-+ X509V3_add_value_bool;
-+ X509V3_add_value_int;
-+ X509V3_conf_free;
-+ X509V3_get_value_bool;
-+ X509V3_get_value_int;
-+ X509V3_parse_list;
-+ d2i_ASN1_GENERALIZEDTIME;
-+ d2i_ASN1_TIME;
-+ d2i_BASIC_CONSTRAINTS;
-+ d2i_NETSCAPE_CERT_SEQUENCE;
-+ d2i_ext_ku;
-+ ext_ku_free;
-+ ext_ku_new;
-+ i2d_ASN1_GENERALIZEDTIME;
-+ i2d_ASN1_TIME;
-+ i2d_BASIC_CONSTRAINTS;
-+ i2d_NETSCAPE_CERT_SEQUENCE;
-+ i2d_ext_ku;
-+ EVP_MD_CTX_copy;
-+ i2d_ASN1_ENUMERATED;
-+ d2i_ASN1_ENUMERATED;
-+ ASN1_ENUMERATED_set;
-+ ASN1_ENUMERATED_get;
-+ BN_to_ASN1_ENUMERATED;
-+ ASN1_ENUMERATED_to_BN;
-+ i2a_ASN1_ENUMERATED;
-+ a2i_ASN1_ENUMERATED;
-+ i2d_GENERAL_NAME;
-+ d2i_GENERAL_NAME;
-+ GENERAL_NAME_new;
-+ GENERAL_NAME_free;
-+ GENERAL_NAMES_new;
-+ GENERAL_NAMES_free;
-+ d2i_GENERAL_NAMES;
-+ i2d_GENERAL_NAMES;
-+ i2v_GENERAL_NAMES;
-+ i2s_ASN1_OCTET_STRING;
-+ s2i_ASN1_OCTET_STRING;
-+ X509V3_EXT_check_conf;
-+ hex_to_string;
-+ string_to_hex;
-+ DES_ede3_cbcm_encrypt;
-+ RSA_padding_add_PKCS1_OAEP;
-+ RSA_padding_check_PKCS1_OAEP;
-+ X509_CRL_print_fp;
-+ X509_CRL_print;
-+ i2v_GENERAL_NAME;
-+ v2i_GENERAL_NAME;
-+ i2d_PKEY_USAGE_PERIOD;
-+ d2i_PKEY_USAGE_PERIOD;
-+ PKEY_USAGE_PERIOD_new;
-+ PKEY_USAGE_PERIOD_free;
-+ v2i_GENERAL_NAMES;
-+ i2s_ASN1_INTEGER;
-+ X509V3_EXT_d2i;
-+ name_cmp;
-+ str_dup;
-+ i2s_ASN1_ENUMERATED;
-+ i2s_ASN1_ENUMERATED_TABLE;
-+ BIO_s_log;
-+ BIO_f_reliable;
-+ PKCS7_dataFinal;
-+ PKCS7_dataDecode;
-+ X509V3_EXT_CRL_add_conf;
-+ BN_set_params;
-+ BN_get_params;
-+ BIO_get_ex_num;
-+ BIO_set_ex_free_func;
-+ EVP_ripemd160;
-+ ASN1_TIME_set;
-+ i2d_AUTHORITY_KEYID;
-+ d2i_AUTHORITY_KEYID;
-+ AUTHORITY_KEYID_new;
-+ AUTHORITY_KEYID_free;
-+ ASN1_seq_unpack;
-+ ASN1_seq_pack;
-+ ASN1_unpack_string;
-+ ASN1_pack_string;
-+ PKCS12_pack_safebag;
-+ PKCS12_MAKE_KEYBAG;
-+ PKCS8_encrypt;
-+ PKCS12_MAKE_SHKEYBAG;
-+ PKCS12_pack_p7data;
-+ PKCS12_pack_p7encdata;
-+ PKCS12_add_localkeyid;
-+ PKCS12_add_friendlyname_asc;
-+ PKCS12_add_friendlyname_uni;
-+ PKCS12_get_friendlyname;
-+ PKCS12_pbe_crypt;
-+ PKCS12_decrypt_d2i;
-+ PKCS12_i2d_encrypt;
-+ PKCS12_init;
-+ PKCS12_key_gen_asc;
-+ PKCS12_key_gen_uni;
-+ PKCS12_gen_mac;
-+ PKCS12_verify_mac;
-+ PKCS12_set_mac;
-+ PKCS12_setup_mac;
-+ OPENSSL_asc2uni;
-+ OPENSSL_uni2asc;
-+ i2d_PKCS12_BAGS;
-+ PKCS12_BAGS_new;
-+ d2i_PKCS12_BAGS;
-+ PKCS12_BAGS_free;
-+ i2d_PKCS12;
-+ d2i_PKCS12;
-+ PKCS12_new;
-+ PKCS12_free;
-+ i2d_PKCS12_MAC_DATA;
-+ PKCS12_MAC_DATA_new;
-+ d2i_PKCS12_MAC_DATA;
-+ PKCS12_MAC_DATA_free;
-+ i2d_PKCS12_SAFEBAG;
-+ PKCS12_SAFEBAG_new;
-+ d2i_PKCS12_SAFEBAG;
-+ PKCS12_SAFEBAG_free;
-+ ERR_load_PKCS12_strings;
-+ PKCS12_PBE_add;
-+ PKCS8_add_keyusage;
-+ PKCS12_get_attr_gen;
-+ PKCS12_parse;
-+ PKCS12_create;
-+ i2d_PKCS12_bio;
-+ i2d_PKCS12_fp;
-+ d2i_PKCS12_bio;
-+ d2i_PKCS12_fp;
-+ i2d_PBEPARAM;
-+ PBEPARAM_new;
-+ d2i_PBEPARAM;
-+ PBEPARAM_free;
-+ i2d_PKCS8_PRIV_KEY_INFO;
-+ PKCS8_PRIV_KEY_INFO_new;
-+ d2i_PKCS8_PRIV_KEY_INFO;
-+ PKCS8_PRIV_KEY_INFO_free;
-+ EVP_PKCS82PKEY;
-+ EVP_PKEY2PKCS8;
-+ PKCS8_set_broken;
-+ EVP_PBE_ALGOR_CipherInit;
-+ EVP_PBE_alg_add;
-+ PKCS5_pbe_set;
-+ EVP_PBE_cleanup;
-+ i2d_SXNET;
-+ d2i_SXNET;
-+ SXNET_new;
-+ SXNET_free;
-+ i2d_SXNETID;
-+ d2i_SXNETID;
-+ SXNETID_new;
-+ SXNETID_free;
-+ DSA_SIG_new;
-+ DSA_SIG_free;
-+ DSA_do_sign;
-+ DSA_do_verify;
-+ d2i_DSA_SIG;
-+ i2d_DSA_SIG;
-+ i2d_ASN1_VISIBLESTRING;
-+ d2i_ASN1_VISIBLESTRING;
-+ i2d_ASN1_UTF8STRING;
-+ d2i_ASN1_UTF8STRING;
-+ i2d_DIRECTORYSTRING;
-+ d2i_DIRECTORYSTRING;
-+ i2d_DISPLAYTEXT;
-+ d2i_DISPLAYTEXT;
-+ d2i_ASN1_SET_OF_X509;
-+ i2d_ASN1_SET_OF_X509;
-+ i2d_PBKDF2PARAM;
-+ PBKDF2PARAM_new;
-+ d2i_PBKDF2PARAM;
-+ PBKDF2PARAM_free;
-+ i2d_PBE2PARAM;
-+ PBE2PARAM_new;
-+ d2i_PBE2PARAM;
-+ PBE2PARAM_free;
-+ d2i_ASN1_SET_OF_GENERAL_NAME;
-+ i2d_ASN1_SET_OF_GENERAL_NAME;
-+ d2i_ASN1_SET_OF_SXNETID;
-+ i2d_ASN1_SET_OF_SXNETID;
-+ d2i_ASN1_SET_OF_POLICYQUALINFO;
-+ i2d_ASN1_SET_OF_POLICYQUALINFO;
-+ d2i_ASN1_SET_OF_POLICYINFO;
-+ i2d_ASN1_SET_OF_POLICYINFO;
-+ SXNET_add_id_asc;
-+ SXNET_add_id_ulong;
-+ SXNET_add_id_INTEGER;
-+ SXNET_get_id_asc;
-+ SXNET_get_id_ulong;
-+ SXNET_get_id_INTEGER;
-+ X509V3_set_conf_lhash;
-+ i2d_CERTIFICATEPOLICIES;
-+ CERTIFICATEPOLICIES_new;
-+ CERTIFICATEPOLICIES_free;
-+ d2i_CERTIFICATEPOLICIES;
-+ i2d_POLICYINFO;
-+ POLICYINFO_new;
-+ d2i_POLICYINFO;
-+ POLICYINFO_free;
-+ i2d_POLICYQUALINFO;
-+ POLICYQUALINFO_new;
-+ d2i_POLICYQUALINFO;
-+ POLICYQUALINFO_free;
-+ i2d_USERNOTICE;
-+ USERNOTICE_new;
-+ d2i_USERNOTICE;
-+ USERNOTICE_free;
-+ i2d_NOTICEREF;
-+ NOTICEREF_new;
-+ d2i_NOTICEREF;
-+ NOTICEREF_free;
-+ X509V3_get_string;
-+ X509V3_get_section;
-+ X509V3_string_free;
-+ X509V3_section_free;
-+ X509V3_set_ctx;
-+ s2i_ASN1_INTEGER;
-+ CRYPTO_set_locked_mem_functions;
-+ CRYPTO_get_locked_mem_functions;
-+ CRYPTO_malloc_locked;
-+ CRYPTO_free_locked;
-+ BN_mod_exp2_mont;
-+ ERR_get_error_line_data;
-+ ERR_peek_error_line_data;
-+ PKCS12_PBE_keyivgen;
-+ X509_ALGOR_dup;
-+ d2i_ASN1_SET_OF_DIST_POINT;
-+ i2d_ASN1_SET_OF_DIST_POINT;
-+ i2d_CRL_DIST_POINTS;
-+ CRL_DIST_POINTS_new;
-+ CRL_DIST_POINTS_free;
-+ d2i_CRL_DIST_POINTS;
-+ i2d_DIST_POINT;
-+ DIST_POINT_new;
-+ d2i_DIST_POINT;
-+ DIST_POINT_free;
-+ i2d_DIST_POINT_NAME;
-+ DIST_POINT_NAME_new;
-+ DIST_POINT_NAME_free;
-+ d2i_DIST_POINT_NAME;
-+ X509V3_add_value_uchar;
-+ d2i_ASN1_SET_OF_X509_ATTRIBUTE;
-+ i2d_ASN1_SET_OF_ASN1_TYPE;
-+ d2i_ASN1_SET_OF_X509_EXTENSION;
-+ d2i_ASN1_SET_OF_X509_NAME_ENTRY;
-+ d2i_ASN1_SET_OF_ASN1_TYPE;
-+ i2d_ASN1_SET_OF_X509_ATTRIBUTE;
-+ i2d_ASN1_SET_OF_X509_EXTENSION;
-+ i2d_ASN1_SET_OF_X509_NAME_ENTRY;
-+ X509V3_EXT_i2d;
-+ X509V3_EXT_val_prn;
-+ X509V3_EXT_add_list;
-+ EVP_CIPHER_type;
-+ EVP_PBE_CipherInit;
-+ X509V3_add_value_bool_nf;
-+ d2i_ASN1_UINTEGER;
-+ sk_value;
-+ sk_num;
-+ sk_set;
-+ i2d_ASN1_SET_OF_X509_REVOKED;
-+ sk_sort;
-+ d2i_ASN1_SET_OF_X509_REVOKED;
-+ i2d_ASN1_SET_OF_X509_ALGOR;
-+ i2d_ASN1_SET_OF_X509_CRL;
-+ d2i_ASN1_SET_OF_X509_ALGOR;
-+ d2i_ASN1_SET_OF_X509_CRL;
-+ i2d_ASN1_SET_OF_PKCS7_SIGNER_INFO;
-+ i2d_ASN1_SET_OF_PKCS7_RECIP_INFO;
-+ d2i_ASN1_SET_OF_PKCS7_SIGNER_INFO;
-+ d2i_ASN1_SET_OF_PKCS7_RECIP_INFO;
-+ PKCS5_PBE_add;
-+ PEM_write_bio_PKCS8;
-+ i2d_PKCS8_fp;
-+ PEM_read_bio_PKCS8_PRIV_KEY_INFO;
-+ PEM_read_bio_P8_PRIV_KEY_INFO;
-+ d2i_PKCS8_bio;
-+ d2i_PKCS8_PRIV_KEY_INFO_fp;
-+ PEM_write_bio_PKCS8_PRIV_KEY_INFO;
-+ PEM_write_bio_P8_PRIV_KEY_INFO;
-+ PEM_read_PKCS8;
-+ d2i_PKCS8_PRIV_KEY_INFO_bio;
-+ d2i_PKCS8_fp;
-+ PEM_write_PKCS8;
-+ PEM_read_PKCS8_PRIV_KEY_INFO;
-+ PEM_read_P8_PRIV_KEY_INFO;
-+ PEM_read_bio_PKCS8;
-+ PEM_write_PKCS8_PRIV_KEY_INFO;
-+ PEM_write_P8_PRIV_KEY_INFO;
-+ PKCS5_PBE_keyivgen;
-+ i2d_PKCS8_bio;
-+ i2d_PKCS8_PRIV_KEY_INFO_fp;
-+ i2d_PKCS8_PRIV_KEY_INFO_bio;
-+ BIO_s_bio;
-+ PKCS5_pbe2_set;
-+ PKCS5_PBKDF2_HMAC_SHA1;
-+ PKCS5_v2_PBE_keyivgen;
-+ PEM_write_bio_PKCS8PrivateKey;
-+ PEM_write_PKCS8PrivateKey;
-+ BIO_ctrl_get_read_request;
-+ BIO_ctrl_pending;
-+ BIO_ctrl_wpending;
-+ BIO_new_bio_pair;
-+ BIO_ctrl_get_write_guarantee;
-+ CRYPTO_num_locks;
-+ CONF_load_bio;
-+ CONF_load_fp;
-+ i2d_ASN1_SET_OF_ASN1_OBJECT;
-+ d2i_ASN1_SET_OF_ASN1_OBJECT;
-+ PKCS7_signatureVerify;
-+ RSA_set_method;
-+ RSA_get_method;
-+ RSA_get_default_method;
-+ RSA_check_key;
-+ OBJ_obj2txt;
-+ DSA_dup_DH;
-+ X509_REQ_get_extensions;
-+ X509_REQ_set_extension_nids;
-+ BIO_nwrite;
-+ X509_REQ_extension_nid;
-+ BIO_nread;
-+ X509_REQ_get_extension_nids;
-+ BIO_nwrite0;
-+ X509_REQ_add_extensions_nid;
-+ BIO_nread0;
-+ X509_REQ_add_extensions;
-+ BIO_new_mem_buf;
-+ DH_set_ex_data;
-+ DH_set_method;
-+ DSA_OpenSSL;
-+ DH_get_ex_data;
-+ DH_get_ex_new_index;
-+ DSA_new_method;
-+ DH_new_method;
-+ DH_OpenSSL;
-+ DSA_get_ex_new_index;
-+ DH_get_default_method;
-+ DSA_set_ex_data;
-+ DH_set_default_method;
-+ DSA_get_ex_data;
-+ X509V3_EXT_REQ_add_conf;
-+ NETSCAPE_SPKI_print;
-+ NETSCAPE_SPKI_set_pubkey;
-+ NETSCAPE_SPKI_b64_encode;
-+ NETSCAPE_SPKI_get_pubkey;
-+ NETSCAPE_SPKI_b64_decode;
-+ UTF8_putc;
-+ UTF8_getc;
-+ RSA_null_method;
-+ ASN1_tag2str;
-+ BIO_ctrl_reset_read_request;
-+ DISPLAYTEXT_new;
-+ ASN1_GENERALIZEDTIME_free;
-+ X509_REVOKED_get_ext_d2i;
-+ X509_set_ex_data;
-+ X509_reject_set_bit_asc;
-+ X509_NAME_add_entry_by_txt;
-+ X509_NAME_add_entry_by_NID;
-+ X509_PURPOSE_get0;
-+ PEM_read_X509_AUX;
-+ d2i_AUTHORITY_INFO_ACCESS;
-+ PEM_write_PUBKEY;
-+ ACCESS_DESCRIPTION_new;
-+ X509_CERT_AUX_free;
-+ d2i_ACCESS_DESCRIPTION;
-+ X509_trust_clear;
-+ X509_TRUST_add;
-+ ASN1_VISIBLESTRING_new;
-+ X509_alias_set1;
-+ ASN1_PRINTABLESTRING_free;
-+ EVP_PKEY_get1_DSA;
-+ ASN1_BMPSTRING_new;
-+ ASN1_mbstring_copy;
-+ ASN1_UTF8STRING_new;
-+ DSA_get_default_method;
-+ i2d_ASN1_SET_OF_ACCESS_DESCRIPTION;
-+ ASN1_T61STRING_free;
-+ DSA_set_method;
-+ X509_get_ex_data;
-+ ASN1_STRING_type;
-+ X509_PURPOSE_get_by_sname;
-+ ASN1_TIME_free;
-+ ASN1_OCTET_STRING_cmp;
-+ ASN1_BIT_STRING_new;
-+ X509_get_ext_d2i;
-+ PEM_read_bio_X509_AUX;
-+ ASN1_STRING_set_default_mask_asc;
-+ ASN1_STRING_set_def_mask_asc;
-+ PEM_write_bio_RSA_PUBKEY;
-+ ASN1_INTEGER_cmp;
-+ d2i_RSA_PUBKEY_fp;
-+ X509_trust_set_bit_asc;
-+ PEM_write_bio_DSA_PUBKEY;
-+ X509_STORE_CTX_free;
-+ EVP_PKEY_set1_DSA;
-+ i2d_DSA_PUBKEY_fp;
-+ X509_load_cert_crl_file;
-+ ASN1_TIME_new;
-+ i2d_RSA_PUBKEY;
-+ X509_STORE_CTX_purpose_inherit;
-+ PEM_read_RSA_PUBKEY;
-+ d2i_X509_AUX;
-+ i2d_DSA_PUBKEY;
-+ X509_CERT_AUX_print;
-+ PEM_read_DSA_PUBKEY;
-+ i2d_RSA_PUBKEY_bio;
-+ ASN1_BIT_STRING_num_asc;
-+ i2d_PUBKEY;
-+ ASN1_UTCTIME_free;
-+ DSA_set_default_method;
-+ X509_PURPOSE_get_by_id;
-+ ACCESS_DESCRIPTION_free;
-+ PEM_read_bio_PUBKEY;
-+ ASN1_STRING_set_by_NID;
-+ X509_PURPOSE_get_id;
-+ DISPLAYTEXT_free;
-+ OTHERNAME_new;
-+ X509_CERT_AUX_new;
-+ X509_TRUST_cleanup;
-+ X509_NAME_add_entry_by_OBJ;
-+ X509_CRL_get_ext_d2i;
-+ X509_PURPOSE_get0_name;
-+ PEM_read_PUBKEY;
-+ i2d_DSA_PUBKEY_bio;
-+ i2d_OTHERNAME;
-+ ASN1_OCTET_STRING_free;
-+ ASN1_BIT_STRING_set_asc;
-+ X509_get_ex_new_index;
-+ ASN1_STRING_TABLE_cleanup;
-+ X509_TRUST_get_by_id;
-+ X509_PURPOSE_get_trust;
-+ ASN1_STRING_length;
-+ d2i_ASN1_SET_OF_ACCESS_DESCRIPTION;
-+ ASN1_PRINTABLESTRING_new;
-+ X509V3_get_d2i;
-+ ASN1_ENUMERATED_free;
-+ i2d_X509_CERT_AUX;
-+ X509_STORE_CTX_set_trust;
-+ ASN1_STRING_set_default_mask;
-+ X509_STORE_CTX_new;
-+ EVP_PKEY_get1_RSA;
-+ DIRECTORYSTRING_free;
-+ PEM_write_X509_AUX;
-+ ASN1_OCTET_STRING_set;
-+ d2i_DSA_PUBKEY_fp;
-+ d2i_RSA_PUBKEY;
-+ X509_TRUST_get0_name;
-+ X509_TRUST_get0;
-+ AUTHORITY_INFO_ACCESS_free;
-+ ASN1_IA5STRING_new;
-+ d2i_DSA_PUBKEY;
-+ X509_check_purpose;
-+ ASN1_ENUMERATED_new;
-+ d2i_RSA_PUBKEY_bio;
-+ d2i_PUBKEY;
-+ X509_TRUST_get_trust;
-+ X509_TRUST_get_flags;
-+ ASN1_BMPSTRING_free;
-+ ASN1_T61STRING_new;
-+ ASN1_UTCTIME_new;
-+ i2d_AUTHORITY_INFO_ACCESS;
-+ EVP_PKEY_set1_RSA;
-+ X509_STORE_CTX_set_purpose;
-+ ASN1_IA5STRING_free;
-+ PEM_write_bio_X509_AUX;
-+ X509_PURPOSE_get_count;
-+ CRYPTO_add_info;
-+ X509_NAME_ENTRY_create_by_txt;
-+ ASN1_STRING_get_default_mask;
-+ X509_alias_get0;
-+ ASN1_STRING_data;
-+ i2d_ACCESS_DESCRIPTION;
-+ X509_trust_set_bit;
-+ ASN1_BIT_STRING_free;
-+ PEM_read_bio_RSA_PUBKEY;
-+ X509_add1_reject_object;
-+ X509_check_trust;
-+ PEM_read_bio_DSA_PUBKEY;
-+ X509_PURPOSE_add;
-+ ASN1_STRING_TABLE_get;
-+ ASN1_UTF8STRING_free;
-+ d2i_DSA_PUBKEY_bio;
-+ PEM_write_RSA_PUBKEY;
-+ d2i_OTHERNAME;
-+ X509_reject_set_bit;
-+ PEM_write_DSA_PUBKEY;
-+ X509_PURPOSE_get0_sname;
-+ EVP_PKEY_set1_DH;
-+ ASN1_OCTET_STRING_dup;
-+ ASN1_BIT_STRING_set;
-+ X509_TRUST_get_count;
-+ ASN1_INTEGER_free;
-+ OTHERNAME_free;
-+ i2d_RSA_PUBKEY_fp;
-+ ASN1_INTEGER_dup;
-+ d2i_X509_CERT_AUX;
-+ PEM_write_bio_PUBKEY;
-+ ASN1_VISIBLESTRING_free;
-+ X509_PURPOSE_cleanup;
-+ ASN1_mbstring_ncopy;
-+ ASN1_GENERALIZEDTIME_new;
-+ EVP_PKEY_get1_DH;
-+ ASN1_OCTET_STRING_new;
-+ ASN1_INTEGER_new;
-+ i2d_X509_AUX;
-+ ASN1_BIT_STRING_name_print;
-+ X509_cmp;
-+ ASN1_STRING_length_set;
-+ DIRECTORYSTRING_new;
-+ X509_add1_trust_object;
-+ PKCS12_newpass;
-+ SMIME_write_PKCS7;
-+ SMIME_read_PKCS7;
-+ DES_set_key_checked;
-+ PKCS7_verify;
-+ PKCS7_encrypt;
-+ DES_set_key_unchecked;
-+ SMIME_crlf_copy;
-+ i2d_ASN1_PRINTABLESTRING;
-+ PKCS7_get0_signers;
-+ PKCS7_decrypt;
-+ SMIME_text;
-+ PKCS7_simple_smimecap;
-+ PKCS7_get_smimecap;
-+ PKCS7_sign;
-+ PKCS7_add_attrib_smimecap;
-+ CRYPTO_dbg_set_options;
-+ CRYPTO_remove_all_info;
-+ CRYPTO_get_mem_debug_functions;
-+ CRYPTO_is_mem_check_on;
-+ CRYPTO_set_mem_debug_functions;
-+ CRYPTO_pop_info;
-+ CRYPTO_push_info_;
-+ CRYPTO_set_mem_debug_options;
-+ PEM_write_PKCS8PrivateKey_nid;
-+ PEM_write_bio_PKCS8PrivateKey_nid;
-+ PEM_write_bio_PKCS8PrivKey_nid;
-+ d2i_PKCS8PrivateKey_bio;
-+ ASN1_NULL_free;
-+ d2i_ASN1_NULL;
-+ ASN1_NULL_new;
-+ i2d_PKCS8PrivateKey_bio;
-+ i2d_PKCS8PrivateKey_fp;
-+ i2d_ASN1_NULL;
-+ i2d_PKCS8PrivateKey_nid_fp;
-+ d2i_PKCS8PrivateKey_fp;
-+ i2d_PKCS8PrivateKey_nid_bio;
-+ i2d_PKCS8PrivateKeyInfo_fp;
-+ i2d_PKCS8PrivateKeyInfo_bio;
-+ PEM_cb;
-+ i2d_PrivateKey_fp;
-+ d2i_PrivateKey_bio;
-+ d2i_PrivateKey_fp;
-+ i2d_PrivateKey_bio;
-+ X509_reject_clear;
-+ X509_TRUST_set_default;
-+ d2i_AutoPrivateKey;
-+ X509_ATTRIBUTE_get0_type;
-+ X509_ATTRIBUTE_set1_data;
-+ X509at_get_attr;
-+ X509at_get_attr_count;
-+ X509_ATTRIBUTE_create_by_NID;
-+ X509_ATTRIBUTE_set1_object;
-+ X509_ATTRIBUTE_count;
-+ X509_ATTRIBUTE_create_by_OBJ;
-+ X509_ATTRIBUTE_get0_object;
-+ X509at_get_attr_by_NID;
-+ X509at_add1_attr;
-+ X509_ATTRIBUTE_get0_data;
-+ X509at_delete_attr;
-+ X509at_get_attr_by_OBJ;
-+ RAND_add;
-+ BIO_number_written;
-+ BIO_number_read;
-+ X509_STORE_CTX_get1_chain;
-+ ERR_load_RAND_strings;
-+ RAND_pseudo_bytes;
-+ X509_REQ_get_attr_by_NID;
-+ X509_REQ_get_attr;
-+ X509_REQ_add1_attr_by_NID;
-+ X509_REQ_get_attr_by_OBJ;
-+ X509at_add1_attr_by_NID;
-+ X509_REQ_add1_attr_by_OBJ;
-+ X509_REQ_get_attr_count;
-+ X509_REQ_add1_attr;
-+ X509_REQ_delete_attr;
-+ X509at_add1_attr_by_OBJ;
-+ X509_REQ_add1_attr_by_txt;
-+ X509_ATTRIBUTE_create_by_txt;
-+ X509at_add1_attr_by_txt;
-+ BN_pseudo_rand;
-+ BN_is_prime_fasttest;
-+ BN_CTX_end;
-+ BN_CTX_start;
-+ BN_CTX_get;
-+ EVP_PKEY2PKCS8_broken;
-+ ASN1_STRING_TABLE_add;
-+ CRYPTO_dbg_get_options;
-+ AUTHORITY_INFO_ACCESS_new;
-+ CRYPTO_get_mem_debug_options;
-+ DES_crypt;
-+ PEM_write_bio_X509_REQ_NEW;
-+ PEM_write_X509_REQ_NEW;
-+ BIO_callback_ctrl;
-+ RAND_egd;
-+ RAND_status;
-+ bn_dump1;
-+ DES_check_key_parity;
-+ lh_num_items;
-+ RAND_event;
-+ DSO_new;
-+ DSO_new_method;
-+ DSO_free;
-+ DSO_flags;
-+ DSO_up;
-+ DSO_set_default_method;
-+ DSO_get_default_method;
-+ DSO_get_method;
-+ DSO_set_method;
-+ DSO_load;
-+ DSO_bind_var;
-+ DSO_METHOD_null;
-+ DSO_METHOD_openssl;
-+ DSO_METHOD_dlfcn;
-+ DSO_METHOD_win32;
-+ ERR_load_DSO_strings;
-+ DSO_METHOD_dl;
-+ NCONF_load;
-+ NCONF_load_fp;
-+ NCONF_new;
-+ NCONF_get_string;
-+ NCONF_free;
-+ NCONF_get_number;
-+ CONF_dump_fp;
-+ NCONF_load_bio;
-+ NCONF_dump_fp;
-+ NCONF_get_section;
-+ NCONF_dump_bio;
-+ CONF_dump_bio;
-+ NCONF_free_data;
-+ CONF_set_default_method;
-+ ERR_error_string_n;
-+ BIO_snprintf;
-+ DSO_ctrl;
-+ i2d_ASN1_SET_OF_ASN1_INTEGER;
-+ i2d_ASN1_SET_OF_PKCS12_SAFEBAG;
-+ i2d_ASN1_SET_OF_PKCS7;
-+ BIO_vfree;
-+ d2i_ASN1_SET_OF_ASN1_INTEGER;
-+ d2i_ASN1_SET_OF_PKCS12_SAFEBAG;
-+ ASN1_UTCTIME_get;
-+ X509_REQ_digest;
-+ X509_CRL_digest;
-+ d2i_ASN1_SET_OF_PKCS7;
-+ EVP_CIPHER_CTX_set_key_length;
-+ EVP_CIPHER_CTX_ctrl;
-+ BN_mod_exp_mont_word;
-+ RAND_egd_bytes;
-+ X509_REQ_get1_email;
-+ X509_get1_email;
-+ X509_email_free;
-+ i2d_RSA_NET;
-+ d2i_RSA_NET_2;
-+ d2i_RSA_NET;
-+ DSO_bind_func;
-+ CRYPTO_get_new_dynlockid;
-+ sk_new_null;
-+ CRYPTO_set_dynlock_destroy_callback;
-+ CRYPTO_set_dynlock_destroy_cb;
-+ CRYPTO_destroy_dynlockid;
-+ CRYPTO_set_dynlock_size;
-+ CRYPTO_set_dynlock_create_callback;
-+ CRYPTO_set_dynlock_create_cb;
-+ CRYPTO_set_dynlock_lock_callback;
-+ CRYPTO_set_dynlock_lock_cb;
-+ CRYPTO_get_dynlock_lock_callback;
-+ CRYPTO_get_dynlock_lock_cb;
-+ CRYPTO_get_dynlock_destroy_callback;
-+ CRYPTO_get_dynlock_destroy_cb;
-+ CRYPTO_get_dynlock_value;
-+ CRYPTO_get_dynlock_create_callback;
-+ CRYPTO_get_dynlock_create_cb;
-+ c2i_ASN1_BIT_STRING;
-+ i2c_ASN1_BIT_STRING;
-+ RAND_poll;
-+ c2i_ASN1_INTEGER;
-+ i2c_ASN1_INTEGER;
-+ BIO_dump_indent;
-+ ASN1_parse_dump;
-+ c2i_ASN1_OBJECT;
-+ X509_NAME_print_ex_fp;
-+ ASN1_STRING_print_ex_fp;
-+ X509_NAME_print_ex;
-+ ASN1_STRING_print_ex;
-+ MD4;
-+ MD4_Transform;
-+ MD4_Final;
-+ MD4_Update;
-+ MD4_Init;
-+ EVP_md4;
-+ i2d_PUBKEY_bio;
-+ i2d_PUBKEY_fp;
-+ d2i_PUBKEY_bio;
-+ ASN1_STRING_to_UTF8;
-+ BIO_vprintf;
-+ BIO_vsnprintf;
-+ d2i_PUBKEY_fp;
-+ X509_cmp_time;
-+ X509_STORE_CTX_set_time;
-+ X509_STORE_CTX_get1_issuer;
-+ X509_OBJECT_retrieve_match;
-+ X509_OBJECT_idx_by_subject;
-+ X509_STORE_CTX_set_flags;
-+ X509_STORE_CTX_trusted_stack;
-+ X509_time_adj;
-+ X509_check_issued;
-+ ASN1_UTCTIME_cmp_time_t;
-+ DES_set_weak_key_flag;
-+ DES_check_key;
-+ DES_rw_mode;
-+ RSA_PKCS1_RSAref;
-+ X509_keyid_set1;
-+ BIO_next;
-+ DSO_METHOD_vms;
-+ BIO_f_linebuffer;
-+ BN_bntest_rand;
-+ OPENSSL_issetugid;
-+ BN_rand_range;
-+ ERR_load_ENGINE_strings;
-+ ENGINE_set_DSA;
-+ ENGINE_get_finish_function;
-+ ENGINE_get_default_RSA;
-+ ENGINE_get_BN_mod_exp;
-+ DSA_get_default_openssl_method;
-+ ENGINE_set_DH;
-+ ENGINE_set_def_BN_mod_exp_crt;
-+ ENGINE_set_default_BN_mod_exp_crt;
-+ ENGINE_init;
-+ DH_get_default_openssl_method;
-+ RSA_set_default_openssl_method;
-+ ENGINE_finish;
-+ ENGINE_load_public_key;
-+ ENGINE_get_DH;
-+ ENGINE_ctrl;
-+ ENGINE_get_init_function;
-+ ENGINE_set_init_function;
-+ ENGINE_set_default_DSA;
-+ ENGINE_get_name;
-+ ENGINE_get_last;
-+ ENGINE_get_prev;
-+ ENGINE_get_default_DH;
-+ ENGINE_get_RSA;
-+ ENGINE_set_default;
-+ ENGINE_get_RAND;
-+ ENGINE_get_first;
-+ ENGINE_by_id;
-+ ENGINE_set_finish_function;
-+ ENGINE_get_def_BN_mod_exp_crt;
-+ ENGINE_get_default_BN_mod_exp_crt;
-+ RSA_get_default_openssl_method;
-+ ENGINE_set_RSA;
-+ ENGINE_load_private_key;
-+ ENGINE_set_default_RAND;
-+ ENGINE_set_BN_mod_exp;
-+ ENGINE_remove;
-+ ENGINE_free;
-+ ENGINE_get_BN_mod_exp_crt;
-+ ENGINE_get_next;
-+ ENGINE_set_name;
-+ ENGINE_get_default_DSA;
-+ ENGINE_set_default_BN_mod_exp;
-+ ENGINE_set_default_RSA;
-+ ENGINE_get_default_RAND;
-+ ENGINE_get_default_BN_mod_exp;
-+ ENGINE_set_RAND;
-+ ENGINE_set_id;
-+ ENGINE_set_BN_mod_exp_crt;
-+ ENGINE_set_default_DH;
-+ ENGINE_new;
-+ ENGINE_get_id;
-+ DSA_set_default_openssl_method;
-+ ENGINE_add;
-+ DH_set_default_openssl_method;
-+ ENGINE_get_DSA;
-+ ENGINE_get_ctrl_function;
-+ ENGINE_set_ctrl_function;
-+ BN_pseudo_rand_range;
-+ X509_STORE_CTX_set_verify_cb;
-+ ERR_load_COMP_strings;
-+ PKCS12_item_decrypt_d2i;
-+ ASN1_UTF8STRING_it;
-+ ENGINE_unregister_ciphers;
-+ ENGINE_get_ciphers;
-+ d2i_OCSP_BASICRESP;
-+ KRB5_CHECKSUM_it;
-+ EC_POINT_add;
-+ ASN1_item_ex_i2d;
-+ OCSP_CERTID_it;
-+ d2i_OCSP_RESPBYTES;
-+ X509V3_add1_i2d;
-+ PKCS7_ENVELOPE_it;
-+ UI_add_input_boolean;
-+ ENGINE_unregister_RSA;
-+ X509V3_EXT_nconf;
-+ ASN1_GENERALSTRING_free;
-+ d2i_OCSP_CERTSTATUS;
-+ X509_REVOKED_set_serialNumber;
-+ X509_print_ex;
-+ OCSP_ONEREQ_get1_ext_d2i;
-+ ENGINE_register_all_RAND;
-+ ENGINE_load_dynamic;
-+ PBKDF2PARAM_it;
-+ EXTENDED_KEY_USAGE_new;
-+ EC_GROUP_clear_free;
-+ OCSP_sendreq_bio;
-+ ASN1_item_digest;
-+ OCSP_BASICRESP_delete_ext;
-+ OCSP_SIGNATURE_it;
-+ X509_CRL_it;
-+ OCSP_BASICRESP_add_ext;
-+ KRB5_ENCKEY_it;
-+ UI_method_set_closer;
-+ X509_STORE_set_purpose;
-+ i2d_ASN1_GENERALSTRING;
-+ OCSP_response_status;
-+ i2d_OCSP_SERVICELOC;
-+ ENGINE_get_digest_engine;
-+ EC_GROUP_set_curve_GFp;
-+ OCSP_REQUEST_get_ext_by_OBJ;
-+ _ossl_old_des_random_key;
-+ ASN1_T61STRING_it;
-+ EC_GROUP_method_of;
-+ i2d_KRB5_APREQ;
-+ _ossl_old_des_encrypt;
-+ ASN1_PRINTABLE_new;
-+ HMAC_Init_ex;
-+ d2i_KRB5_AUTHENT;
-+ OCSP_archive_cutoff_new;
-+ EC_POINT_set_Jprojective_coordinates_GFp;
-+ EC_POINT_set_Jproj_coords_GFp;
-+ _ossl_old_des_is_weak_key;
-+ OCSP_BASICRESP_get_ext_by_OBJ;
-+ EC_POINT_oct2point;
-+ OCSP_SINGLERESP_get_ext_count;
-+ UI_ctrl;
-+ _shadow_DES_rw_mode;
-+ asn1_do_adb;
-+ ASN1_template_i2d;
-+ ENGINE_register_DH;
-+ UI_construct_prompt;
-+ X509_STORE_set_trust;
-+ UI_dup_input_string;
-+ d2i_KRB5_APREQ;
-+ EVP_MD_CTX_copy_ex;
-+ OCSP_request_is_signed;
-+ i2d_OCSP_REQINFO;
-+ KRB5_ENCKEY_free;
-+ OCSP_resp_get0;
-+ GENERAL_NAME_it;
-+ ASN1_GENERALIZEDTIME_it;
-+ X509_STORE_set_flags;
-+ EC_POINT_set_compressed_coordinates_GFp;
-+ EC_POINT_set_compr_coords_GFp;
-+ OCSP_response_status_str;
-+ d2i_OCSP_REVOKEDINFO;
-+ OCSP_basic_add1_cert;
-+ ERR_get_implementation;
-+ EVP_CipherFinal_ex;
-+ OCSP_CERTSTATUS_new;
-+ CRYPTO_cleanup_all_ex_data;
-+ OCSP_resp_find;
-+ BN_nnmod;
-+ X509_CRL_sort;
-+ X509_REVOKED_set_revocationDate;
-+ ENGINE_register_RAND;
-+ OCSP_SERVICELOC_new;
-+ EC_POINT_set_affine_coordinates_GFp;
-+ EC_POINT_set_affine_coords_GFp;
-+ _ossl_old_des_options;
-+ SXNET_it;
-+ UI_dup_input_boolean;
-+ PKCS12_add_CSPName_asc;
-+ EC_POINT_is_at_infinity;
-+ ENGINE_load_cryptodev;
-+ DSO_convert_filename;
-+ POLICYQUALINFO_it;
-+ ENGINE_register_ciphers;
-+ BN_mod_lshift_quick;
-+ DSO_set_filename;
-+ ASN1_item_free;
-+ KRB5_TKTBODY_free;
-+ AUTHORITY_KEYID_it;
-+ KRB5_APREQBODY_new;
-+ X509V3_EXT_REQ_add_nconf;
-+ ENGINE_ctrl_cmd_string;
-+ i2d_OCSP_RESPDATA;
-+ EVP_MD_CTX_init;
-+ EXTENDED_KEY_USAGE_free;
-+ PKCS7_ATTR_SIGN_it;
-+ UI_add_error_string;
-+ KRB5_CHECKSUM_free;
-+ OCSP_REQUEST_get_ext;
-+ ENGINE_load_ubsec;
-+ ENGINE_register_all_digests;
-+ PKEY_USAGE_PERIOD_it;
-+ PKCS12_unpack_authsafes;
-+ ASN1_item_unpack;
-+ NETSCAPE_SPKAC_it;
-+ X509_REVOKED_it;
-+ ASN1_STRING_encode;
-+ EVP_aes_128_ecb;
-+ KRB5_AUTHENT_free;
-+ OCSP_BASICRESP_get_ext_by_critical;
-+ OCSP_BASICRESP_get_ext_by_crit;
-+ OCSP_cert_status_str;
-+ d2i_OCSP_REQUEST;
-+ UI_dup_info_string;
-+ _ossl_old_des_xwhite_in2out;
-+ PKCS12_it;
-+ OCSP_SINGLERESP_get_ext_by_critical;
-+ OCSP_SINGLERESP_get_ext_by_crit;
-+ OCSP_CERTSTATUS_free;
-+ _ossl_old_des_crypt;
-+ ASN1_item_i2d;
-+ EVP_DecryptFinal_ex;
-+ ENGINE_load_openssl;
-+ ENGINE_get_cmd_defns;
-+ ENGINE_set_load_privkey_function;
-+ ENGINE_set_load_privkey_fn;
-+ EVP_EncryptFinal_ex;
-+ ENGINE_set_default_digests;
-+ X509_get0_pubkey_bitstr;
-+ asn1_ex_i2c;
-+ ENGINE_register_RSA;
-+ ENGINE_unregister_DSA;
-+ _ossl_old_des_key_sched;
-+ X509_EXTENSION_it;
-+ i2d_KRB5_AUTHENT;
-+ SXNETID_it;
-+ d2i_OCSP_SINGLERESP;
-+ EDIPARTYNAME_new;
-+ PKCS12_certbag2x509;
-+ _ossl_old_des_ofb64_encrypt;
-+ d2i_EXTENDED_KEY_USAGE;
-+ ERR_print_errors_cb;
-+ ENGINE_set_ciphers;
-+ d2i_KRB5_APREQBODY;
-+ UI_method_get_flusher;
-+ X509_PUBKEY_it;
-+ _ossl_old_des_enc_read;
-+ PKCS7_ENCRYPT_it;
-+ i2d_OCSP_RESPONSE;
-+ EC_GROUP_get_cofactor;
-+ PKCS12_unpack_p7data;
-+ d2i_KRB5_AUTHDATA;
-+ OCSP_copy_nonce;
-+ KRB5_AUTHDATA_new;
-+ OCSP_RESPDATA_new;
-+ EC_GFp_mont_method;
-+ OCSP_REVOKEDINFO_free;
-+ UI_get_ex_data;
-+ KRB5_APREQBODY_free;
-+ EC_GROUP_get0_generator;
-+ UI_get_default_method;
-+ X509V3_set_nconf;
-+ PKCS12_item_i2d_encrypt;
-+ X509_add1_ext_i2d;
-+ PKCS7_SIGNER_INFO_it;
-+ KRB5_PRINCNAME_new;
-+ PKCS12_SAFEBAG_it;
-+ EC_GROUP_get_order;
-+ d2i_OCSP_RESPID;
-+ OCSP_request_verify;
-+ NCONF_get_number_e;
-+ _ossl_old_des_decrypt3;
-+ X509_signature_print;
-+ OCSP_SINGLERESP_free;
-+ ENGINE_load_builtin_engines;
-+ i2d_OCSP_ONEREQ;
-+ OCSP_REQUEST_add_ext;
-+ OCSP_RESPBYTES_new;
-+ EVP_MD_CTX_create;
-+ OCSP_resp_find_status;
-+ X509_ALGOR_it;
-+ ASN1_TIME_it;
-+ OCSP_request_set1_name;
-+ OCSP_ONEREQ_get_ext_count;
-+ UI_get0_result;
-+ PKCS12_AUTHSAFES_it;
-+ EVP_aes_256_ecb;
-+ PKCS12_pack_authsafes;
-+ ASN1_IA5STRING_it;
-+ UI_get_input_flags;
-+ EC_GROUP_set_generator;
-+ _ossl_old_des_string_to_2keys;
-+ OCSP_CERTID_free;
-+ X509_CERT_AUX_it;
-+ CERTIFICATEPOLICIES_it;
-+ _ossl_old_des_ede3_cbc_encrypt;
-+ RAND_set_rand_engine;
-+ DSO_get_loaded_filename;
-+ X509_ATTRIBUTE_it;
-+ OCSP_ONEREQ_get_ext_by_NID;
-+ PKCS12_decrypt_skey;
-+ KRB5_AUTHENT_it;
-+ UI_dup_error_string;
-+ RSAPublicKey_it;
-+ i2d_OCSP_REQUEST;
-+ PKCS12_x509crl2certbag;
-+ OCSP_SERVICELOC_it;
-+ ASN1_item_sign;
-+ X509_CRL_set_issuer_name;
-+ OBJ_NAME_do_all_sorted;
-+ i2d_OCSP_BASICRESP;
-+ i2d_OCSP_RESPBYTES;
-+ PKCS12_unpack_p7encdata;
-+ HMAC_CTX_init;
-+ ENGINE_get_digest;
-+ OCSP_RESPONSE_print;
-+ KRB5_TKTBODY_it;
-+ ACCESS_DESCRIPTION_it;
-+ PKCS7_ISSUER_AND_SERIAL_it;
-+ PBE2PARAM_it;
-+ PKCS12_certbag2x509crl;
-+ PKCS7_SIGNED_it;
-+ ENGINE_get_cipher;
-+ i2d_OCSP_CRLID;
-+ OCSP_SINGLERESP_new;
-+ ENGINE_cmd_is_executable;
-+ RSA_up_ref;
-+ ASN1_GENERALSTRING_it;
-+ ENGINE_register_DSA;
-+ X509V3_EXT_add_nconf_sk;
-+ ENGINE_set_load_pubkey_function;
-+ PKCS8_decrypt;
-+ PEM_bytes_read_bio;
-+ DIRECTORYSTRING_it;
-+ d2i_OCSP_CRLID;
-+ EC_POINT_is_on_curve;
-+ CRYPTO_set_locked_mem_ex_functions;
-+ CRYPTO_set_locked_mem_ex_funcs;
-+ d2i_KRB5_CHECKSUM;
-+ ASN1_item_dup;
-+ X509_it;
-+ BN_mod_add;
-+ KRB5_AUTHDATA_free;
-+ _ossl_old_des_cbc_cksum;
-+ ASN1_item_verify;
-+ CRYPTO_set_mem_ex_functions;
-+ EC_POINT_get_Jprojective_coordinates_GFp;
-+ EC_POINT_get_Jproj_coords_GFp;
-+ ZLONG_it;
-+ CRYPTO_get_locked_mem_ex_functions;
-+ CRYPTO_get_locked_mem_ex_funcs;
-+ ASN1_TIME_check;
-+ UI_get0_user_data;
-+ HMAC_CTX_cleanup;
-+ DSA_up_ref;
-+ _ossl_old_des_ede3_cfb64_encrypt;
-+ _ossl_odes_ede3_cfb64_encrypt;
-+ ASN1_BMPSTRING_it;
-+ ASN1_tag2bit;
-+ UI_method_set_flusher;
-+ X509_ocspid_print;
-+ KRB5_ENCDATA_it;
-+ ENGINE_get_load_pubkey_function;
-+ UI_add_user_data;
-+ OCSP_REQUEST_delete_ext;
-+ UI_get_method;
-+ OCSP_ONEREQ_free;
-+ ASN1_PRINTABLESTRING_it;
-+ X509_CRL_set_nextUpdate;
-+ OCSP_REQUEST_it;
-+ OCSP_BASICRESP_it;
-+ AES_ecb_encrypt;
-+ BN_mod_sqr;
-+ NETSCAPE_CERT_SEQUENCE_it;
-+ GENERAL_NAMES_it;
-+ AUTHORITY_INFO_ACCESS_it;
-+ ASN1_FBOOLEAN_it;
-+ UI_set_ex_data;
-+ _ossl_old_des_string_to_key;
-+ ENGINE_register_all_RSA;
-+ d2i_KRB5_PRINCNAME;
-+ OCSP_RESPBYTES_it;
-+ X509_CINF_it;
-+ ENGINE_unregister_digests;
-+ d2i_EDIPARTYNAME;
-+ d2i_OCSP_SERVICELOC;
-+ ENGINE_get_digests;
-+ _ossl_old_des_set_odd_parity;
-+ OCSP_RESPDATA_free;
-+ d2i_KRB5_TICKET;
-+ OTHERNAME_it;
-+ EVP_MD_CTX_cleanup;
-+ d2i_ASN1_GENERALSTRING;
-+ X509_CRL_set_version;
-+ BN_mod_sub;
-+ OCSP_SINGLERESP_get_ext_by_NID;
-+ ENGINE_get_ex_new_index;
-+ OCSP_REQUEST_free;
-+ OCSP_REQUEST_add1_ext_i2d;
-+ X509_VAL_it;
-+ EC_POINTs_make_affine;
-+ EC_POINT_mul;
-+ X509V3_EXT_add_nconf;
-+ X509_TRUST_set;
-+ X509_CRL_add1_ext_i2d;
-+ _ossl_old_des_fcrypt;
-+ DISPLAYTEXT_it;
-+ X509_CRL_set_lastUpdate;
-+ OCSP_BASICRESP_free;
-+ OCSP_BASICRESP_add1_ext_i2d;
-+ d2i_KRB5_AUTHENTBODY;
-+ CRYPTO_set_ex_data_implementation;
-+ CRYPTO_set_ex_data_impl;
-+ KRB5_ENCDATA_new;
-+ DSO_up_ref;
-+ OCSP_crl_reason_str;
-+ UI_get0_result_string;
-+ ASN1_GENERALSTRING_new;
-+ X509_SIG_it;
-+ ERR_set_implementation;
-+ ERR_load_EC_strings;
-+ UI_get0_action_string;
-+ OCSP_ONEREQ_get_ext;
-+ EC_POINT_method_of;
-+ i2d_KRB5_APREQBODY;
-+ _ossl_old_des_ecb3_encrypt;
-+ CRYPTO_get_mem_ex_functions;
-+ ENGINE_get_ex_data;
-+ UI_destroy_method;
-+ ASN1_item_i2d_bio;
-+ OCSP_ONEREQ_get_ext_by_OBJ;
-+ ASN1_primitive_new;
-+ ASN1_PRINTABLE_it;
-+ EVP_aes_192_ecb;
-+ OCSP_SIGNATURE_new;
-+ LONG_it;
-+ ASN1_VISIBLESTRING_it;
-+ OCSP_SINGLERESP_add1_ext_i2d;
-+ d2i_OCSP_CERTID;
-+ ASN1_item_d2i_fp;
-+ CRL_DIST_POINTS_it;
-+ GENERAL_NAME_print;
-+ OCSP_SINGLERESP_delete_ext;
-+ PKCS12_SAFEBAGS_it;
-+ d2i_OCSP_SIGNATURE;
-+ OCSP_request_add1_nonce;
-+ ENGINE_set_cmd_defns;
-+ OCSP_SERVICELOC_free;
-+ EC_GROUP_free;
-+ ASN1_BIT_STRING_it;
-+ X509_REQ_it;
-+ _ossl_old_des_cbc_encrypt;
-+ ERR_unload_strings;
-+ PKCS7_SIGN_ENVELOPE_it;
-+ EDIPARTYNAME_free;
-+ OCSP_REQINFO_free;
-+ EC_GROUP_new_curve_GFp;
-+ OCSP_REQUEST_get1_ext_d2i;
-+ PKCS12_item_pack_safebag;
-+ asn1_ex_c2i;
-+ ENGINE_register_digests;
-+ i2d_OCSP_REVOKEDINFO;
-+ asn1_enc_restore;
-+ UI_free;
-+ UI_new_method;
-+ EVP_EncryptInit_ex;
-+ X509_pubkey_digest;
-+ EC_POINT_invert;
-+ OCSP_basic_sign;
-+ i2d_OCSP_RESPID;
-+ OCSP_check_nonce;
-+ ENGINE_ctrl_cmd;
-+ d2i_KRB5_ENCKEY;
-+ OCSP_parse_url;
-+ OCSP_SINGLERESP_get_ext;
-+ OCSP_CRLID_free;
-+ OCSP_BASICRESP_get1_ext_d2i;
-+ RSAPrivateKey_it;
-+ ENGINE_register_all_DH;
-+ i2d_EDIPARTYNAME;
-+ EC_POINT_get_affine_coordinates_GFp;
-+ EC_POINT_get_affine_coords_GFp;
-+ OCSP_CRLID_new;
-+ ENGINE_get_flags;
-+ OCSP_ONEREQ_it;
-+ UI_process;
-+ ASN1_INTEGER_it;
-+ EVP_CipherInit_ex;
-+ UI_get_string_type;
-+ ENGINE_unregister_DH;
-+ ENGINE_register_all_DSA;
-+ OCSP_ONEREQ_get_ext_by_critical;
-+ bn_dup_expand;
-+ OCSP_cert_id_new;
-+ BASIC_CONSTRAINTS_it;
-+ BN_mod_add_quick;
-+ EC_POINT_new;
-+ EVP_MD_CTX_destroy;
-+ OCSP_RESPBYTES_free;
-+ EVP_aes_128_cbc;
-+ OCSP_SINGLERESP_get1_ext_d2i;
-+ EC_POINT_free;
-+ DH_up_ref;
-+ X509_NAME_ENTRY_it;
-+ UI_get_ex_new_index;
-+ BN_mod_sub_quick;
-+ OCSP_ONEREQ_add_ext;
-+ OCSP_request_sign;
-+ EVP_DigestFinal_ex;
-+ ENGINE_set_digests;
-+ OCSP_id_issuer_cmp;
-+ OBJ_NAME_do_all;
-+ EC_POINTs_mul;
-+ ENGINE_register_complete;
-+ X509V3_EXT_nconf_nid;
-+ ASN1_SEQUENCE_it;
-+ UI_set_default_method;
-+ RAND_query_egd_bytes;
-+ UI_method_get_writer;
-+ UI_OpenSSL;
-+ PEM_def_callback;
-+ ENGINE_cleanup;
-+ DIST_POINT_it;
-+ OCSP_SINGLERESP_it;
-+ d2i_KRB5_TKTBODY;
-+ EC_POINT_cmp;
-+ OCSP_REVOKEDINFO_new;
-+ i2d_OCSP_CERTSTATUS;
-+ OCSP_basic_add1_nonce;
-+ ASN1_item_ex_d2i;
-+ BN_mod_lshift1_quick;
-+ UI_set_method;
-+ OCSP_id_get0_info;
-+ BN_mod_sqrt;
-+ EC_GROUP_copy;
-+ KRB5_ENCDATA_free;
-+ _ossl_old_des_cfb_encrypt;
-+ OCSP_SINGLERESP_get_ext_by_OBJ;
-+ OCSP_cert_to_id;
-+ OCSP_RESPID_new;
-+ OCSP_RESPDATA_it;
-+ d2i_OCSP_RESPDATA;
-+ ENGINE_register_all_complete;
-+ OCSP_check_validity;
-+ PKCS12_BAGS_it;
-+ OCSP_url_svcloc_new;
-+ ASN1_template_free;
-+ OCSP_SINGLERESP_add_ext;
-+ KRB5_AUTHENTBODY_it;
-+ X509_supported_extension;
-+ i2d_KRB5_AUTHDATA;
-+ UI_method_get_opener;
-+ ENGINE_set_ex_data;
-+ OCSP_REQUEST_print;
-+ CBIGNUM_it;
-+ KRB5_TICKET_new;
-+ KRB5_APREQ_new;
-+ EC_GROUP_get_curve_GFp;
-+ KRB5_ENCKEY_new;
-+ ASN1_template_d2i;
-+ _ossl_old_des_quad_cksum;
-+ OCSP_single_get0_status;
-+ BN_swap;
-+ POLICYINFO_it;
-+ ENGINE_set_destroy_function;
-+ asn1_enc_free;
-+ OCSP_RESPID_it;
-+ EC_GROUP_new;
-+ EVP_aes_256_cbc;
-+ i2d_KRB5_PRINCNAME;
-+ _ossl_old_des_encrypt2;
-+ _ossl_old_des_encrypt3;
-+ PKCS8_PRIV_KEY_INFO_it;
-+ OCSP_REQINFO_it;
-+ PBEPARAM_it;
-+ KRB5_AUTHENTBODY_new;
-+ X509_CRL_add0_revoked;
-+ EDIPARTYNAME_it;
-+ NETSCAPE_SPKI_it;
-+ UI_get0_test_string;
-+ ENGINE_get_cipher_engine;
-+ ENGINE_register_all_ciphers;
-+ EC_POINT_copy;
-+ BN_kronecker;
-+ _ossl_old_des_ede3_ofb64_encrypt;
-+ _ossl_odes_ede3_ofb64_encrypt;
-+ UI_method_get_reader;
-+ OCSP_BASICRESP_get_ext_count;
-+ ASN1_ENUMERATED_it;
-+ UI_set_result;
-+ i2d_KRB5_TICKET;
-+ X509_print_ex_fp;
-+ EVP_CIPHER_CTX_set_padding;
-+ d2i_OCSP_RESPONSE;
-+ ASN1_UTCTIME_it;
-+ _ossl_old_des_enc_write;
-+ OCSP_RESPONSE_new;
-+ AES_set_encrypt_key;
-+ OCSP_resp_count;
-+ KRB5_CHECKSUM_new;
-+ ENGINE_load_cswift;
-+ OCSP_onereq_get0_id;
-+ ENGINE_set_default_ciphers;
-+ NOTICEREF_it;
-+ X509V3_EXT_CRL_add_nconf;
-+ OCSP_REVOKEDINFO_it;
-+ AES_encrypt;
-+ OCSP_REQUEST_new;
-+ ASN1_ANY_it;
-+ CRYPTO_ex_data_new_class;
-+ _ossl_old_des_ncbc_encrypt;
-+ i2d_KRB5_TKTBODY;
-+ EC_POINT_clear_free;
-+ AES_decrypt;
-+ asn1_enc_init;
-+ UI_get_result_maxsize;
-+ OCSP_CERTID_new;
-+ ENGINE_unregister_RAND;
-+ UI_method_get_closer;
-+ d2i_KRB5_ENCDATA;
-+ OCSP_request_onereq_count;
-+ OCSP_basic_verify;
-+ KRB5_AUTHENTBODY_free;
-+ ASN1_item_d2i;
-+ ASN1_primitive_free;
-+ i2d_EXTENDED_KEY_USAGE;
-+ i2d_OCSP_SIGNATURE;
-+ asn1_enc_save;
-+ ENGINE_load_nuron;
-+ _ossl_old_des_pcbc_encrypt;
-+ PKCS12_MAC_DATA_it;
-+ OCSP_accept_responses_new;
-+ asn1_do_lock;
-+ PKCS7_ATTR_VERIFY_it;
-+ KRB5_APREQBODY_it;
-+ i2d_OCSP_SINGLERESP;
-+ ASN1_item_ex_new;
-+ UI_add_verify_string;
-+ _ossl_old_des_set_key;
-+ KRB5_PRINCNAME_it;
-+ EVP_DecryptInit_ex;
-+ i2d_OCSP_CERTID;
-+ ASN1_item_d2i_bio;
-+ EC_POINT_dbl;
-+ asn1_get_choice_selector;
-+ i2d_KRB5_CHECKSUM;
-+ ENGINE_set_table_flags;
-+ AES_options;
-+ ENGINE_load_chil;
-+ OCSP_id_cmp;
-+ OCSP_BASICRESP_new;
-+ OCSP_REQUEST_get_ext_by_NID;
-+ KRB5_APREQ_it;
-+ ENGINE_get_destroy_function;
-+ CONF_set_nconf;
-+ ASN1_PRINTABLE_free;
-+ OCSP_BASICRESP_get_ext_by_NID;
-+ DIST_POINT_NAME_it;
-+ X509V3_extensions_print;
-+ _ossl_old_des_cfb64_encrypt;
-+ X509_REVOKED_add1_ext_i2d;
-+ _ossl_old_des_ofb_encrypt;
-+ KRB5_TKTBODY_new;
-+ ASN1_OCTET_STRING_it;
-+ ERR_load_UI_strings;
-+ i2d_KRB5_ENCKEY;
-+ ASN1_template_new;
-+ OCSP_SIGNATURE_free;
-+ ASN1_item_i2d_fp;
-+ KRB5_PRINCNAME_free;
-+ PKCS7_RECIP_INFO_it;
-+ EXTENDED_KEY_USAGE_it;
-+ EC_GFp_simple_method;
-+ EC_GROUP_precompute_mult;
-+ OCSP_request_onereq_get0;
-+ UI_method_set_writer;
-+ KRB5_AUTHENT_new;
-+ X509_CRL_INFO_it;
-+ DSO_set_name_converter;
-+ AES_set_decrypt_key;
-+ PKCS7_DIGEST_it;
-+ PKCS12_x5092certbag;
-+ EVP_DigestInit_ex;
-+ i2a_ACCESS_DESCRIPTION;
-+ OCSP_RESPONSE_it;
-+ PKCS7_ENC_CONTENT_it;
-+ OCSP_request_add0_id;
-+ EC_POINT_make_affine;
-+ DSO_get_filename;
-+ OCSP_CERTSTATUS_it;
-+ OCSP_request_add1_cert;
-+ UI_get0_output_string;
-+ UI_dup_verify_string;
-+ BN_mod_lshift;
-+ KRB5_AUTHDATA_it;
-+ asn1_set_choice_selector;
-+ OCSP_basic_add1_status;
-+ OCSP_RESPID_free;
-+ asn1_get_field_ptr;
-+ UI_add_input_string;
-+ OCSP_CRLID_it;
-+ i2d_KRB5_AUTHENTBODY;
-+ OCSP_REQUEST_get_ext_count;
-+ ENGINE_load_atalla;
-+ X509_NAME_it;
-+ USERNOTICE_it;
-+ OCSP_REQINFO_new;
-+ OCSP_BASICRESP_get_ext;
-+ CRYPTO_get_ex_data_implementation;
-+ CRYPTO_get_ex_data_impl;
-+ ASN1_item_pack;
-+ i2d_KRB5_ENCDATA;
-+ X509_PURPOSE_set;
-+ X509_REQ_INFO_it;
-+ UI_method_set_opener;
-+ ASN1_item_ex_free;
-+ ASN1_BOOLEAN_it;
-+ ENGINE_get_table_flags;
-+ UI_create_method;
-+ OCSP_ONEREQ_add1_ext_i2d;
-+ _shadow_DES_check_key;
-+ d2i_OCSP_REQINFO;
-+ UI_add_info_string;
-+ UI_get_result_minsize;
-+ ASN1_NULL_it;
-+ BN_mod_lshift1;
-+ d2i_OCSP_ONEREQ;
-+ OCSP_ONEREQ_new;
-+ KRB5_TICKET_it;
-+ EVP_aes_192_cbc;
-+ KRB5_TICKET_free;
-+ UI_new;
-+ OCSP_response_create;
-+ _ossl_old_des_xcbc_encrypt;
-+ PKCS7_it;
-+ OCSP_REQUEST_get_ext_by_critical;
-+ OCSP_REQUEST_get_ext_by_crit;
-+ ENGINE_set_flags;
-+ _ossl_old_des_ecb_encrypt;
-+ OCSP_response_get1_basic;
-+ EVP_Digest;
-+ OCSP_ONEREQ_delete_ext;
-+ ASN1_TBOOLEAN_it;
-+ ASN1_item_new;
-+ ASN1_TIME_to_generalizedtime;
-+ BIGNUM_it;
-+ AES_cbc_encrypt;
-+ ENGINE_get_load_privkey_function;
-+ ENGINE_get_load_privkey_fn;
-+ OCSP_RESPONSE_free;
-+ UI_method_set_reader;
-+ i2d_ASN1_T61STRING;
-+ EC_POINT_set_to_infinity;
-+ ERR_load_OCSP_strings;
-+ EC_POINT_point2oct;
-+ KRB5_APREQ_free;
-+ ASN1_OBJECT_it;
-+ OCSP_crlID_new;
-+ OCSP_crlID2_new;
-+ CONF_modules_load_file;
-+ CONF_imodule_set_usr_data;
-+ ENGINE_set_default_string;
-+ CONF_module_get_usr_data;
-+ ASN1_add_oid_module;
-+ CONF_modules_finish;
-+ OPENSSL_config;
-+ CONF_modules_unload;
-+ CONF_imodule_get_value;
-+ CONF_module_set_usr_data;
-+ CONF_parse_list;
-+ CONF_module_add;
-+ CONF_get1_default_config_file;
-+ CONF_imodule_get_flags;
-+ CONF_imodule_get_module;
-+ CONF_modules_load;
-+ CONF_imodule_get_name;
-+ ERR_peek_top_error;
-+ CONF_imodule_get_usr_data;
-+ CONF_imodule_set_flags;
-+ ENGINE_add_conf_module;
-+ ERR_peek_last_error_line;
-+ ERR_peek_last_error_line_data;
-+ ERR_peek_last_error;
-+ DES_read_2passwords;
-+ DES_read_password;
-+ UI_UTIL_read_pw;
-+ UI_UTIL_read_pw_string;
-+ ENGINE_load_aep;
-+ ENGINE_load_sureware;
-+ OPENSSL_add_all_algorithms_noconf;
-+ OPENSSL_add_all_algo_noconf;
-+ OPENSSL_add_all_algorithms_conf;
-+ OPENSSL_add_all_algo_conf;
-+ OPENSSL_load_builtin_modules;
-+ AES_ofb128_encrypt;
-+ AES_ctr128_encrypt;
-+ AES_cfb128_encrypt;
-+ ENGINE_load_4758cca;
-+ _ossl_096_des_random_seed;
-+ EVP_aes_256_ofb;
-+ EVP_aes_192_ofb;
-+ EVP_aes_128_cfb128;
-+ EVP_aes_256_cfb128;
-+ EVP_aes_128_ofb;
-+ EVP_aes_192_cfb128;
-+ CONF_modules_free;
-+ NCONF_default;
-+ OPENSSL_no_config;
-+ NCONF_WIN32;
-+ ASN1_UNIVERSALSTRING_new;
-+ EVP_des_ede_ecb;
-+ i2d_ASN1_UNIVERSALSTRING;
-+ ASN1_UNIVERSALSTRING_free;
-+ ASN1_UNIVERSALSTRING_it;
-+ d2i_ASN1_UNIVERSALSTRING;
-+ EVP_des_ede3_ecb;
-+ X509_REQ_print_ex;
-+ ENGINE_up_ref;
-+ BUF_MEM_grow_clean;
-+ CRYPTO_realloc_clean;
-+ BUF_strlcat;
-+ BIO_indent;
-+ BUF_strlcpy;
-+ OpenSSLDie;
-+ OPENSSL_cleanse;
-+ ENGINE_setup_bsd_cryptodev;
-+ ERR_release_err_state_table;
-+ EVP_aes_128_cfb8;
-+ FIPS_corrupt_rsa;
-+ FIPS_selftest_des;
-+ EVP_aes_128_cfb1;
-+ EVP_aes_192_cfb8;
-+ FIPS_mode_set;
-+ FIPS_selftest_dsa;
-+ EVP_aes_256_cfb8;
-+ FIPS_allow_md5;
-+ DES_ede3_cfb_encrypt;
-+ EVP_des_ede3_cfb8;
-+ FIPS_rand_seeded;
-+ AES_cfbr_encrypt_block;
-+ AES_cfb8_encrypt;
-+ FIPS_rand_seed;
-+ FIPS_corrupt_des;
-+ EVP_aes_192_cfb1;
-+ FIPS_selftest_aes;
-+ FIPS_set_prng_key;
-+ EVP_des_cfb8;
-+ FIPS_corrupt_dsa;
-+ FIPS_test_mode;
-+ FIPS_rand_method;
-+ EVP_aes_256_cfb1;
-+ ERR_load_FIPS_strings;
-+ FIPS_corrupt_aes;
-+ FIPS_selftest_sha1;
-+ FIPS_selftest_rsa;
-+ FIPS_corrupt_sha1;
-+ EVP_des_cfb1;
-+ FIPS_dsa_check;
-+ AES_cfb1_encrypt;
-+ EVP_des_ede3_cfb1;
-+ FIPS_rand_check;
-+ FIPS_md5_allowed;
-+ FIPS_mode;
-+ FIPS_selftest_failed;
-+ sk_is_sorted;
-+ X509_check_ca;
-+ HMAC_CTX_set_flags;
-+ d2i_PROXY_CERT_INFO_EXTENSION;
-+ PROXY_POLICY_it;
-+ i2d_PROXY_POLICY;
-+ i2d_PROXY_CERT_INFO_EXTENSION;
-+ d2i_PROXY_POLICY;
-+ PROXY_CERT_INFO_EXTENSION_new;
-+ PROXY_CERT_INFO_EXTENSION_free;
-+ PROXY_CERT_INFO_EXTENSION_it;
-+ PROXY_POLICY_free;
-+ PROXY_POLICY_new;
-+ BN_MONT_CTX_set_locked;
-+ FIPS_selftest_rng;
-+ EVP_sha384;
-+ EVP_sha512;
-+ EVP_sha224;
-+ EVP_sha256;
-+ FIPS_selftest_hmac;
-+ FIPS_corrupt_rng;
-+ BN_mod_exp_mont_consttime;
-+ RSA_X931_hash_id;
-+ RSA_padding_check_X931;
-+ RSA_verify_PKCS1_PSS;
-+ RSA_padding_add_X931;
-+ RSA_padding_add_PKCS1_PSS;
-+ PKCS1_MGF1;
-+ BN_X931_generate_Xpq;
-+ RSA_X931_generate_key;
-+ BN_X931_derive_prime;
-+ BN_X931_generate_prime;
-+ RSA_X931_derive;
-+ BIO_new_dgram;
-+ BN_get0_nist_prime_384;
-+ ERR_set_mark;
-+ X509_STORE_CTX_set0_crls;
-+ ENGINE_set_STORE;
-+ ENGINE_register_ECDSA;
-+ STORE_meth_set_list_start_fn;
-+ STORE_method_set_list_start_function;
-+ BN_BLINDING_invert_ex;
-+ NAME_CONSTRAINTS_free;
-+ STORE_ATTR_INFO_set_number;
-+ BN_BLINDING_get_thread_id;
-+ X509_STORE_CTX_set0_param;
-+ POLICY_MAPPING_it;
-+ STORE_parse_attrs_start;
-+ POLICY_CONSTRAINTS_free;
-+ EVP_PKEY_add1_attr_by_NID;
-+ BN_nist_mod_192;
-+ EC_GROUP_get_trinomial_basis;
-+ STORE_set_method;
-+ GENERAL_SUBTREE_free;
-+ NAME_CONSTRAINTS_it;
-+ ECDH_get_default_method;
-+ PKCS12_add_safe;
-+ EC_KEY_new_by_curve_name;
-+ STORE_meth_get_update_store_fn;
-+ STORE_method_get_update_store_function;
-+ ENGINE_register_ECDH;
-+ SHA512_Update;
-+ i2d_ECPrivateKey;
-+ BN_get0_nist_prime_192;
-+ STORE_modify_certificate;
-+ EC_POINT_set_affine_coordinates_GF2m;
-+ EC_POINT_set_affine_coords_GF2m;
-+ BN_GF2m_mod_exp_arr;
-+ STORE_ATTR_INFO_modify_number;
-+ X509_keyid_get0;
-+ ENGINE_load_gmp;
-+ pitem_new;
-+ BN_GF2m_mod_mul_arr;
-+ STORE_list_public_key_endp;
-+ o2i_ECPublicKey;
-+ EC_KEY_copy;
-+ BIO_dump_fp;
-+ X509_policy_node_get0_parent;
-+ EC_GROUP_check_discriminant;
-+ i2o_ECPublicKey;
-+ EC_KEY_precompute_mult;
-+ a2i_IPADDRESS;
-+ STORE_meth_set_initialise_fn;
-+ STORE_method_set_initialise_function;
-+ X509_STORE_CTX_set_depth;
-+ X509_VERIFY_PARAM_inherit;
-+ EC_POINT_point2bn;
-+ STORE_ATTR_INFO_set_dn;
-+ X509_policy_tree_get0_policies;
-+ EC_GROUP_new_curve_GF2m;
-+ STORE_destroy_method;
-+ ENGINE_unregister_STORE;
-+ EVP_PKEY_get1_EC_KEY;
-+ STORE_ATTR_INFO_get0_number;
-+ ENGINE_get_default_ECDH;
-+ EC_KEY_get_conv_form;
-+ ASN1_OCTET_STRING_NDEF_it;
-+ STORE_delete_public_key;
-+ STORE_get_public_key;
-+ STORE_modify_arbitrary;
-+ ENGINE_get_static_state;
-+ pqueue_iterator;
-+ ECDSA_SIG_new;
-+ OPENSSL_DIR_end;
-+ BN_GF2m_mod_sqr;
-+ EC_POINT_bn2point;
-+ X509_VERIFY_PARAM_set_depth;
-+ EC_KEY_set_asn1_flag;
-+ STORE_get_method;
-+ EC_KEY_get_key_method_data;
-+ ECDSA_sign_ex;
-+ STORE_parse_attrs_end;
-+ EC_GROUP_get_point_conversion_form;
-+ EC_GROUP_get_point_conv_form;
-+ STORE_method_set_store_function;
-+ STORE_ATTR_INFO_in;
-+ PEM_read_bio_ECPKParameters;
-+ EC_GROUP_get_pentanomial_basis;
-+ EVP_PKEY_add1_attr_by_txt;
-+ BN_BLINDING_set_flags;
-+ X509_VERIFY_PARAM_set1_policies;
-+ X509_VERIFY_PARAM_set1_name;
-+ X509_VERIFY_PARAM_set_purpose;
-+ STORE_get_number;
-+ ECDSA_sign_setup;
-+ BN_GF2m_mod_solve_quad_arr;
-+ EC_KEY_up_ref;
-+ POLICY_MAPPING_free;
-+ BN_GF2m_mod_div;
-+ X509_VERIFY_PARAM_set_flags;
-+ EC_KEY_free;
-+ STORE_meth_set_list_next_fn;
-+ STORE_method_set_list_next_function;
-+ PEM_write_bio_ECPrivateKey;
-+ d2i_EC_PUBKEY;
-+ STORE_meth_get_generate_fn;
-+ STORE_method_get_generate_function;
-+ STORE_meth_set_list_end_fn;
-+ STORE_method_set_list_end_function;
-+ pqueue_print;
-+ EC_GROUP_have_precompute_mult;
-+ EC_KEY_print_fp;
-+ BN_GF2m_mod_arr;
-+ PEM_write_bio_X509_CERT_PAIR;
-+ EVP_PKEY_cmp;
-+ X509_policy_level_node_count;
-+ STORE_new_engine;
-+ STORE_list_public_key_start;
-+ X509_VERIFY_PARAM_new;
-+ ECDH_get_ex_data;
-+ EVP_PKEY_get_attr;
-+ ECDSA_do_sign;
-+ ENGINE_unregister_ECDH;
-+ ECDH_OpenSSL;
-+ EC_KEY_set_conv_form;
-+ EC_POINT_dup;
-+ GENERAL_SUBTREE_new;
-+ STORE_list_crl_endp;
-+ EC_get_builtin_curves;
-+ X509_policy_node_get0_qualifiers;
-+ X509_pcy_node_get0_qualifiers;
-+ STORE_list_crl_end;
-+ EVP_PKEY_set1_EC_KEY;
-+ BN_GF2m_mod_sqrt_arr;
-+ i2d_ECPrivateKey_bio;
-+ ECPKParameters_print_fp;
-+ pqueue_find;
-+ ECDSA_SIG_free;
-+ PEM_write_bio_ECPKParameters;
-+ STORE_method_set_ctrl_function;
-+ STORE_list_public_key_end;
-+ EC_KEY_set_private_key;
-+ pqueue_peek;
-+ STORE_get_arbitrary;
-+ STORE_store_crl;
-+ X509_policy_node_get0_policy;
-+ PKCS12_add_safes;
-+ BN_BLINDING_convert_ex;
-+ X509_policy_tree_free;
-+ OPENSSL_ia32cap_loc;
-+ BN_GF2m_poly2arr;
-+ STORE_ctrl;
-+ STORE_ATTR_INFO_compare;
-+ BN_get0_nist_prime_224;
-+ i2d_ECParameters;
-+ i2d_ECPKParameters;
-+ BN_GENCB_call;
-+ d2i_ECPKParameters;
-+ STORE_meth_set_generate_fn;
-+ STORE_method_set_generate_function;
-+ ENGINE_set_ECDH;
-+ NAME_CONSTRAINTS_new;
-+ SHA256_Init;
-+ EC_KEY_get0_public_key;
-+ PEM_write_bio_EC_PUBKEY;
-+ STORE_ATTR_INFO_set_cstr;
-+ STORE_list_crl_next;
-+ STORE_ATTR_INFO_in_range;
-+ ECParameters_print;
-+ STORE_meth_set_delete_fn;
-+ STORE_method_set_delete_function;
-+ STORE_list_certificate_next;
-+ ASN1_generate_nconf;
-+ BUF_memdup;
-+ BN_GF2m_mod_mul;
-+ STORE_meth_get_list_next_fn;
-+ STORE_method_get_list_next_function;
-+ STORE_ATTR_INFO_get0_dn;
-+ STORE_list_private_key_next;
-+ EC_GROUP_set_seed;
-+ X509_VERIFY_PARAM_set_trust;
-+ STORE_ATTR_INFO_free;
-+ STORE_get_private_key;
-+ EVP_PKEY_get_attr_count;
-+ STORE_ATTR_INFO_new;
-+ EC_GROUP_get_curve_GF2m;
-+ STORE_meth_set_revoke_fn;
-+ STORE_method_set_revoke_function;
-+ STORE_store_number;
-+ BN_is_prime_ex;
-+ STORE_revoke_public_key;
-+ X509_STORE_CTX_get0_param;
-+ STORE_delete_arbitrary;
-+ PEM_read_X509_CERT_PAIR;
-+ X509_STORE_set_depth;
-+ ECDSA_get_ex_data;
-+ SHA224;
-+ BIO_dump_indent_fp;
-+ EC_KEY_set_group;
-+ BUF_strndup;
-+ STORE_list_certificate_start;
-+ BN_GF2m_mod;
-+ X509_REQ_check_private_key;
-+ EC_GROUP_get_seed_len;
-+ ERR_load_STORE_strings;
-+ PEM_read_bio_EC_PUBKEY;
-+ STORE_list_private_key_end;
-+ i2d_EC_PUBKEY;
-+ ECDSA_get_default_method;
-+ ASN1_put_eoc;
-+ X509_STORE_CTX_get_explicit_policy;
-+ X509_STORE_CTX_get_expl_policy;
-+ X509_VERIFY_PARAM_table_cleanup;
-+ STORE_modify_private_key;
-+ X509_VERIFY_PARAM_free;
-+ EC_METHOD_get_field_type;
-+ EC_GFp_nist_method;
-+ STORE_meth_set_modify_fn;
-+ STORE_method_set_modify_function;
-+ STORE_parse_attrs_next;
-+ ENGINE_load_padlock;
-+ EC_GROUP_set_curve_name;
-+ X509_CERT_PAIR_it;
-+ STORE_meth_get_revoke_fn;
-+ STORE_method_get_revoke_function;
-+ STORE_method_set_get_function;
-+ STORE_modify_number;
-+ STORE_method_get_store_function;
-+ STORE_store_private_key;
-+ BN_GF2m_mod_sqr_arr;
-+ RSA_setup_blinding;
-+ BIO_s_datagram;
-+ STORE_Memory;
-+ sk_find_ex;
-+ EC_GROUP_set_curve_GF2m;
-+ ENGINE_set_default_ECDSA;
-+ POLICY_CONSTRAINTS_new;
-+ BN_GF2m_mod_sqrt;
-+ ECDH_set_default_method;
-+ EC_KEY_generate_key;
-+ SHA384_Update;
-+ BN_GF2m_arr2poly;
-+ STORE_method_get_get_function;
-+ STORE_meth_set_cleanup_fn;
-+ STORE_method_set_cleanup_function;
-+ EC_GROUP_check;
-+ d2i_ECPrivateKey_bio;
-+ EC_KEY_insert_key_method_data;
-+ STORE_meth_get_lock_store_fn;
-+ STORE_method_get_lock_store_function;
-+ X509_VERIFY_PARAM_get_depth;
-+ SHA224_Final;
-+ STORE_meth_set_update_store_fn;
-+ STORE_method_set_update_store_function;
-+ SHA224_Update;
-+ d2i_ECPrivateKey;
-+ ASN1_item_ndef_i2d;
-+ STORE_delete_private_key;
-+ ERR_pop_to_mark;
-+ ENGINE_register_all_STORE;
-+ X509_policy_level_get0_node;
-+ i2d_PKCS7_NDEF;
-+ EC_GROUP_get_degree;
-+ ASN1_generate_v3;
-+ STORE_ATTR_INFO_modify_cstr;
-+ X509_policy_tree_level_count;
-+ BN_GF2m_add;
-+ EC_KEY_get0_group;
-+ STORE_generate_crl;
-+ STORE_store_public_key;
-+ X509_CERT_PAIR_free;
-+ STORE_revoke_private_key;
-+ BN_nist_mod_224;
-+ SHA512_Final;
-+ STORE_ATTR_INFO_modify_dn;
-+ STORE_meth_get_initialise_fn;
-+ STORE_method_get_initialise_function;
-+ STORE_delete_number;
-+ i2d_EC_PUBKEY_bio;
-+ BIO_dgram_non_fatal_error;
-+ EC_GROUP_get_asn1_flag;
-+ STORE_ATTR_INFO_in_ex;
-+ STORE_list_crl_start;
-+ ECDH_get_ex_new_index;
-+ STORE_meth_get_modify_fn;
-+ STORE_method_get_modify_function;
-+ v2i_ASN1_BIT_STRING;
-+ STORE_store_certificate;
-+ OBJ_bsearch_ex;
-+ X509_STORE_CTX_set_default;
-+ STORE_ATTR_INFO_set_sha1str;
-+ BN_GF2m_mod_inv;
-+ BN_GF2m_mod_exp;
-+ STORE_modify_public_key;
-+ STORE_meth_get_list_start_fn;
-+ STORE_method_get_list_start_function;
-+ EC_GROUP_get0_seed;
-+ STORE_store_arbitrary;
-+ STORE_meth_set_unlock_store_fn;
-+ STORE_method_set_unlock_store_function;
-+ BN_GF2m_mod_div_arr;
-+ ENGINE_set_ECDSA;
-+ STORE_create_method;
-+ ECPKParameters_print;
-+ EC_KEY_get0_private_key;
-+ PEM_write_EC_PUBKEY;
-+ X509_VERIFY_PARAM_set1;
-+ ECDH_set_method;
-+ v2i_GENERAL_NAME_ex;
-+ ECDH_set_ex_data;
-+ STORE_generate_key;
-+ BN_nist_mod_521;
-+ X509_policy_tree_get0_level;
-+ EC_GROUP_set_point_conversion_form;
-+ EC_GROUP_set_point_conv_form;
-+ PEM_read_EC_PUBKEY;
-+ i2d_ECDSA_SIG;
-+ ECDSA_OpenSSL;
-+ STORE_delete_crl;
-+ EC_KEY_get_enc_flags;
-+ ASN1_const_check_infinite_end;
-+ EVP_PKEY_delete_attr;
-+ ECDSA_set_default_method;
-+ EC_POINT_set_compressed_coordinates_GF2m;
-+ EC_POINT_set_compr_coords_GF2m;
-+ EC_GROUP_cmp;
-+ STORE_revoke_certificate;
-+ BN_get0_nist_prime_256;
-+ STORE_meth_get_delete_fn;
-+ STORE_method_get_delete_function;
-+ SHA224_Init;
-+ PEM_read_ECPrivateKey;
-+ SHA512_Init;
-+ STORE_parse_attrs_endp;
-+ BN_set_negative;
-+ ERR_load_ECDSA_strings;
-+ EC_GROUP_get_basis_type;
-+ STORE_list_public_key_next;
-+ i2v_ASN1_BIT_STRING;
-+ STORE_OBJECT_free;
-+ BN_nist_mod_384;
-+ i2d_X509_CERT_PAIR;
-+ PEM_write_ECPKParameters;
-+ ECDH_compute_key;
-+ STORE_ATTR_INFO_get0_sha1str;
-+ ENGINE_register_all_ECDH;
-+ pqueue_pop;
-+ STORE_ATTR_INFO_get0_cstr;
-+ POLICY_CONSTRAINTS_it;
-+ STORE_get_ex_new_index;
-+ EVP_PKEY_get_attr_by_OBJ;
-+ X509_VERIFY_PARAM_add0_policy;
-+ BN_GF2m_mod_solve_quad;
-+ SHA256;
-+ i2d_ECPrivateKey_fp;
-+ X509_policy_tree_get0_user_policies;
-+ X509_pcy_tree_get0_usr_policies;
-+ OPENSSL_DIR_read;
-+ ENGINE_register_all_ECDSA;
-+ X509_VERIFY_PARAM_lookup;
-+ EC_POINT_get_affine_coordinates_GF2m;
-+ EC_POINT_get_affine_coords_GF2m;
-+ EC_GROUP_dup;
-+ ENGINE_get_default_ECDSA;
-+ EC_KEY_new;
-+ SHA256_Transform;
-+ EC_KEY_set_enc_flags;
-+ ECDSA_verify;
-+ EC_POINT_point2hex;
-+ ENGINE_get_STORE;
-+ SHA512;
-+ STORE_get_certificate;
-+ ECDSA_do_sign_ex;
-+ ECDSA_do_verify;
-+ d2i_ECPrivateKey_fp;
-+ STORE_delete_certificate;
-+ SHA512_Transform;
-+ X509_STORE_set1_param;
-+ STORE_method_get_ctrl_function;
-+ STORE_free;
-+ PEM_write_ECPrivateKey;
-+ STORE_meth_get_unlock_store_fn;
-+ STORE_method_get_unlock_store_function;
-+ STORE_get_ex_data;
-+ EC_KEY_set_public_key;
-+ PEM_read_ECPKParameters;
-+ X509_CERT_PAIR_new;
-+ ENGINE_register_STORE;
-+ RSA_generate_key_ex;
-+ DSA_generate_parameters_ex;
-+ ECParameters_print_fp;
-+ X509V3_NAME_from_section;
-+ EVP_PKEY_add1_attr;
-+ STORE_modify_crl;
-+ STORE_list_private_key_start;
-+ POLICY_MAPPINGS_it;
-+ GENERAL_SUBTREE_it;
-+ EC_GROUP_get_curve_name;
-+ PEM_write_X509_CERT_PAIR;
-+ BIO_dump_indent_cb;
-+ d2i_X509_CERT_PAIR;
-+ STORE_list_private_key_endp;
-+ asn1_const_Finish;
-+ i2d_EC_PUBKEY_fp;
-+ BN_nist_mod_256;
-+ X509_VERIFY_PARAM_add0_table;
-+ pqueue_free;
-+ BN_BLINDING_create_param;
-+ ECDSA_size;
-+ d2i_EC_PUBKEY_bio;
-+ BN_get0_nist_prime_521;
-+ STORE_ATTR_INFO_modify_sha1str;
-+ BN_generate_prime_ex;
-+ EC_GROUP_new_by_curve_name;
-+ SHA256_Final;
-+ DH_generate_parameters_ex;
-+ PEM_read_bio_ECPrivateKey;
-+ STORE_meth_get_cleanup_fn;
-+ STORE_method_get_cleanup_function;
-+ ENGINE_get_ECDH;
-+ d2i_ECDSA_SIG;
-+ BN_is_prime_fasttest_ex;
-+ ECDSA_sign;
-+ X509_policy_check;
-+ EVP_PKEY_get_attr_by_NID;
-+ STORE_set_ex_data;
-+ ENGINE_get_ECDSA;
-+ EVP_ecdsa;
-+ BN_BLINDING_get_flags;
-+ PKCS12_add_cert;
-+ STORE_OBJECT_new;
-+ ERR_load_ECDH_strings;
-+ EC_KEY_dup;
-+ EVP_CIPHER_CTX_rand_key;
-+ ECDSA_set_method;
-+ a2i_IPADDRESS_NC;
-+ d2i_ECParameters;
-+ STORE_list_certificate_end;
-+ STORE_get_crl;
-+ X509_POLICY_NODE_print;
-+ SHA384_Init;
-+ EC_GF2m_simple_method;
-+ ECDSA_set_ex_data;
-+ SHA384_Final;
-+ PKCS7_set_digest;
-+ EC_KEY_print;
-+ STORE_meth_set_lock_store_fn;
-+ STORE_method_set_lock_store_function;
-+ ECDSA_get_ex_new_index;
-+ SHA384;
-+ POLICY_MAPPING_new;
-+ STORE_list_certificate_endp;
-+ X509_STORE_CTX_get0_policy_tree;
-+ EC_GROUP_set_asn1_flag;
-+ EC_KEY_check_key;
-+ d2i_EC_PUBKEY_fp;
-+ PKCS7_set0_type_other;
-+ PEM_read_bio_X509_CERT_PAIR;
-+ pqueue_next;
-+ STORE_meth_get_list_end_fn;
-+ STORE_method_get_list_end_function;
-+ EVP_PKEY_add1_attr_by_OBJ;
-+ X509_VERIFY_PARAM_set_time;
-+ pqueue_new;
-+ ENGINE_set_default_ECDH;
-+ STORE_new_method;
-+ PKCS12_add_key;
-+ DSO_merge;
-+ EC_POINT_hex2point;
-+ BIO_dump_cb;
-+ SHA256_Update;
-+ pqueue_insert;
-+ pitem_free;
-+ BN_GF2m_mod_inv_arr;
-+ ENGINE_unregister_ECDSA;
-+ BN_BLINDING_set_thread_id;
-+ get_rfc3526_prime_8192;
-+ X509_VERIFY_PARAM_clear_flags;
-+ get_rfc2409_prime_1024;
-+ DH_check_pub_key;
-+ get_rfc3526_prime_2048;
-+ get_rfc3526_prime_6144;
-+ get_rfc3526_prime_1536;
-+ get_rfc3526_prime_3072;
-+ get_rfc3526_prime_4096;
-+ get_rfc2409_prime_768;
-+ X509_VERIFY_PARAM_get_flags;
-+ EVP_CIPHER_CTX_new;
-+ EVP_CIPHER_CTX_free;
-+ Camellia_cbc_encrypt;
-+ Camellia_cfb128_encrypt;
-+ Camellia_cfb1_encrypt;
-+ Camellia_cfb8_encrypt;
-+ Camellia_ctr128_encrypt;
-+ Camellia_cfbr_encrypt_block;
-+ Camellia_decrypt;
-+ Camellia_ecb_encrypt;
-+ Camellia_encrypt;
-+ Camellia_ofb128_encrypt;
-+ Camellia_set_key;
-+ EVP_camellia_128_cbc;
-+ EVP_camellia_128_cfb128;
-+ EVP_camellia_128_cfb1;
-+ EVP_camellia_128_cfb8;
-+ EVP_camellia_128_ecb;
-+ EVP_camellia_128_ofb;
-+ EVP_camellia_192_cbc;
-+ EVP_camellia_192_cfb128;
-+ EVP_camellia_192_cfb1;
-+ EVP_camellia_192_cfb8;
-+ EVP_camellia_192_ecb;
-+ EVP_camellia_192_ofb;
-+ EVP_camellia_256_cbc;
-+ EVP_camellia_256_cfb128;
-+ EVP_camellia_256_cfb1;
-+ EVP_camellia_256_cfb8;
-+ EVP_camellia_256_ecb;
-+ EVP_camellia_256_ofb;
-+ a2i_ipadd;
-+ ASIdentifiers_free;
-+ i2d_ASIdOrRange;
-+ EVP_CIPHER_block_size;
-+ v3_asid_is_canonical;
-+ IPAddressChoice_free;
-+ EVP_CIPHER_CTX_set_app_data;
-+ BIO_set_callback_arg;
-+ v3_addr_add_prefix;
-+ IPAddressOrRange_it;
-+ BIO_set_flags;
-+ ASIdentifiers_it;
-+ v3_addr_get_range;
-+ BIO_method_type;
-+ v3_addr_inherits;
-+ IPAddressChoice_it;
-+ AES_ige_encrypt;
-+ v3_addr_add_range;
-+ EVP_CIPHER_CTX_nid;
-+ d2i_ASRange;
-+ v3_addr_add_inherit;
-+ v3_asid_add_id_or_range;
-+ v3_addr_validate_resource_set;
-+ EVP_CIPHER_iv_length;
-+ EVP_MD_type;
-+ v3_asid_canonize;
-+ IPAddressRange_free;
-+ v3_asid_add_inherit;
-+ EVP_CIPHER_CTX_key_length;
-+ IPAddressRange_new;
-+ ASIdOrRange_new;
-+ EVP_MD_size;
-+ EVP_MD_CTX_test_flags;
-+ BIO_clear_flags;
-+ i2d_ASRange;
-+ IPAddressRange_it;
-+ IPAddressChoice_new;
-+ ASIdentifierChoice_new;
-+ ASRange_free;
-+ EVP_MD_pkey_type;
-+ EVP_MD_CTX_clear_flags;
-+ IPAddressFamily_free;
-+ i2d_IPAddressFamily;
-+ IPAddressOrRange_new;
-+ EVP_CIPHER_flags;
-+ v3_asid_validate_resource_set;
-+ d2i_IPAddressRange;
-+ AES_bi_ige_encrypt;
-+ BIO_get_callback;
-+ IPAddressOrRange_free;
-+ v3_addr_subset;
-+ d2i_IPAddressFamily;
-+ v3_asid_subset;
-+ BIO_test_flags;
-+ i2d_ASIdentifierChoice;
-+ ASRange_it;
-+ d2i_ASIdentifiers;
-+ ASRange_new;
-+ d2i_IPAddressChoice;
-+ v3_addr_get_afi;
-+ EVP_CIPHER_key_length;
-+ EVP_Cipher;
-+ i2d_IPAddressOrRange;
-+ ASIdOrRange_it;
-+ EVP_CIPHER_nid;
-+ i2d_IPAddressChoice;
-+ EVP_CIPHER_CTX_block_size;
-+ ASIdentifiers_new;
-+ v3_addr_validate_path;
-+ IPAddressFamily_new;
-+ EVP_MD_CTX_set_flags;
-+ v3_addr_is_canonical;
-+ i2d_IPAddressRange;
-+ IPAddressFamily_it;
-+ v3_asid_inherits;
-+ EVP_CIPHER_CTX_cipher;
-+ EVP_CIPHER_CTX_get_app_data;
-+ EVP_MD_block_size;
-+ EVP_CIPHER_CTX_flags;
-+ v3_asid_validate_path;
-+ d2i_IPAddressOrRange;
-+ v3_addr_canonize;
-+ ASIdentifierChoice_it;
-+ EVP_MD_CTX_md;
-+ d2i_ASIdentifierChoice;
-+ BIO_method_name;
-+ EVP_CIPHER_CTX_iv_length;
-+ ASIdOrRange_free;
-+ ASIdentifierChoice_free;
-+ BIO_get_callback_arg;
-+ BIO_set_callback;
-+ d2i_ASIdOrRange;
-+ i2d_ASIdentifiers;
-+ SEED_decrypt;
-+ SEED_encrypt;
-+ SEED_cbc_encrypt;
-+ EVP_seed_ofb;
-+ SEED_cfb128_encrypt;
-+ SEED_ofb128_encrypt;
-+ EVP_seed_cbc;
-+ SEED_ecb_encrypt;
-+ EVP_seed_ecb;
-+ SEED_set_key;
-+ EVP_seed_cfb128;
-+ X509_EXTENSIONS_it;
-+ X509_get1_ocsp;
-+ OCSP_REQ_CTX_free;
-+ i2d_X509_EXTENSIONS;
-+ OCSP_sendreq_nbio;
-+ OCSP_sendreq_new;
-+ d2i_X509_EXTENSIONS;
-+ X509_ALGORS_it;
-+ X509_ALGOR_get0;
-+ X509_ALGOR_set0;
-+ AES_unwrap_key;
-+ AES_wrap_key;
-+ X509at_get0_data_by_OBJ;
-+ ASN1_TYPE_set1;
-+ ASN1_STRING_set0;
-+ i2d_X509_ALGORS;
-+ BIO_f_zlib;
-+ COMP_zlib_cleanup;
-+ d2i_X509_ALGORS;
-+ CMS_ReceiptRequest_free;
-+ PEM_write_CMS;
-+ CMS_add0_CertificateChoices;
-+ CMS_unsigned_add1_attr_by_OBJ;
-+ ERR_load_CMS_strings;
-+ CMS_sign_receipt;
-+ i2d_CMS_ContentInfo;
-+ CMS_signed_delete_attr;
-+ d2i_CMS_bio;
-+ CMS_unsigned_get_attr_by_NID;
-+ CMS_verify;
-+ SMIME_read_CMS;
-+ CMS_decrypt_set1_key;
-+ CMS_SignerInfo_get0_algs;
-+ CMS_add1_cert;
-+ CMS_set_detached;
-+ CMS_encrypt;
-+ CMS_EnvelopedData_create;
-+ CMS_uncompress;
-+ CMS_add0_crl;
-+ CMS_SignerInfo_verify_content;
-+ CMS_unsigned_get0_data_by_OBJ;
-+ PEM_write_bio_CMS;
-+ CMS_unsigned_get_attr;
-+ CMS_RecipientInfo_ktri_cert_cmp;
-+ CMS_RecipientInfo_ktri_get0_algs;
-+ CMS_RecipInfo_ktri_get0_algs;
-+ CMS_ContentInfo_free;
-+ CMS_final;
-+ CMS_add_simple_smimecap;
-+ CMS_SignerInfo_verify;
-+ CMS_data;
-+ CMS_ContentInfo_it;
-+ d2i_CMS_ReceiptRequest;
-+ CMS_compress;
-+ CMS_digest_create;
-+ CMS_SignerInfo_cert_cmp;
-+ CMS_SignerInfo_sign;
-+ CMS_data_create;
-+ i2d_CMS_bio;
-+ CMS_EncryptedData_set1_key;
-+ CMS_decrypt;
-+ int_smime_write_ASN1;
-+ CMS_unsigned_delete_attr;
-+ CMS_unsigned_get_attr_count;
-+ CMS_add_smimecap;
-+ PEM_read_CMS;
-+ CMS_signed_get_attr_by_OBJ;
-+ d2i_CMS_ContentInfo;
-+ CMS_add_standard_smimecap;
-+ CMS_ContentInfo_new;
-+ CMS_RecipientInfo_type;
-+ CMS_get0_type;
-+ CMS_is_detached;
-+ CMS_sign;
-+ CMS_signed_add1_attr;
-+ CMS_unsigned_get_attr_by_OBJ;
-+ SMIME_write_CMS;
-+ CMS_EncryptedData_decrypt;
-+ CMS_get0_RecipientInfos;
-+ CMS_add0_RevocationInfoChoice;
-+ CMS_decrypt_set1_pkey;
-+ CMS_SignerInfo_set1_signer_cert;
-+ CMS_get0_signers;
-+ CMS_ReceiptRequest_get0_values;
-+ CMS_signed_get0_data_by_OBJ;
-+ CMS_get0_SignerInfos;
-+ CMS_add0_cert;
-+ CMS_EncryptedData_encrypt;
-+ CMS_digest_verify;
-+ CMS_set1_signers_certs;
-+ CMS_signed_get_attr;
-+ CMS_RecipientInfo_set0_key;
-+ CMS_SignedData_init;
-+ CMS_RecipientInfo_kekri_get0_id;
-+ CMS_verify_receipt;
-+ CMS_ReceiptRequest_it;
-+ PEM_read_bio_CMS;
-+ CMS_get1_crls;
-+ CMS_add0_recipient_key;
-+ SMIME_read_ASN1;
-+ CMS_ReceiptRequest_new;
-+ CMS_get0_content;
-+ CMS_get1_ReceiptRequest;
-+ CMS_signed_add1_attr_by_OBJ;
-+ CMS_RecipientInfo_kekri_id_cmp;
-+ CMS_add1_ReceiptRequest;
-+ CMS_SignerInfo_get0_signer_id;
-+ CMS_unsigned_add1_attr_by_NID;
-+ CMS_unsigned_add1_attr;
-+ CMS_signed_get_attr_by_NID;
-+ CMS_get1_certs;
-+ CMS_signed_add1_attr_by_NID;
-+ CMS_unsigned_add1_attr_by_txt;
-+ CMS_dataFinal;
-+ CMS_RecipientInfo_ktri_get0_signer_id;
-+ CMS_RecipInfo_ktri_get0_sigr_id;
-+ i2d_CMS_ReceiptRequest;
-+ CMS_add1_recipient_cert;
-+ CMS_dataInit;
-+ CMS_signed_add1_attr_by_txt;
-+ CMS_RecipientInfo_decrypt;
-+ CMS_signed_get_attr_count;
-+ CMS_get0_eContentType;
-+ CMS_set1_eContentType;
-+ CMS_ReceiptRequest_create0;
-+ CMS_add1_signer;
-+ CMS_RecipientInfo_set0_pkey;
-+ ENGINE_set_load_ssl_client_cert_function;
-+ ENGINE_set_ld_ssl_clnt_cert_fn;
-+ ENGINE_get_ssl_client_cert_function;
-+ ENGINE_get_ssl_client_cert_fn;
-+ ENGINE_load_ssl_client_cert;
-+ ENGINE_load_capi;
-+ OPENSSL_isservice;
-+ FIPS_dsa_sig_decode;
-+ EVP_CIPHER_CTX_clear_flags;
-+ FIPS_rand_status;
-+ FIPS_rand_set_key;
-+ CRYPTO_set_mem_info_functions;
-+ RSA_X931_generate_key_ex;
-+ int_ERR_set_state_func;
-+ int_EVP_MD_set_engine_callbacks;
-+ int_CRYPTO_set_do_dynlock_callback;
-+ FIPS_rng_stick;
-+ EVP_CIPHER_CTX_set_flags;
-+ BN_X931_generate_prime_ex;
-+ FIPS_selftest_check;
-+ FIPS_rand_set_dt;
-+ CRYPTO_dbg_pop_info;
-+ FIPS_dsa_free;
-+ RSA_X931_derive_ex;
-+ FIPS_rsa_new;
-+ FIPS_rand_bytes;
-+ fips_cipher_test;
-+ EVP_CIPHER_CTX_test_flags;
-+ CRYPTO_malloc_debug_init;
-+ CRYPTO_dbg_push_info;
-+ FIPS_corrupt_rsa_keygen;
-+ FIPS_dh_new;
-+ FIPS_corrupt_dsa_keygen;
-+ FIPS_dh_free;
-+ fips_pkey_signature_test;
-+ EVP_add_alg_module;
-+ int_RAND_init_engine_callbacks;
-+ int_EVP_CIPHER_set_engine_callbacks;
-+ int_EVP_MD_init_engine_callbacks;
-+ FIPS_rand_test_mode;
-+ FIPS_rand_reset;
-+ FIPS_dsa_new;
-+ int_RAND_set_callbacks;
-+ BN_X931_derive_prime_ex;
-+ int_ERR_lib_init;
-+ int_EVP_CIPHER_init_engine_callbacks;
-+ FIPS_rsa_free;
-+ FIPS_dsa_sig_encode;
-+ CRYPTO_dbg_remove_all_info;
-+ OPENSSL_init;
-+ CRYPTO_strdup;
-+ JPAKE_STEP3A_process;
-+ JPAKE_STEP1_release;
-+ JPAKE_get_shared_key;
-+ JPAKE_STEP3B_init;
-+ JPAKE_STEP1_generate;
-+ JPAKE_STEP1_init;
-+ JPAKE_STEP3B_process;
-+ JPAKE_STEP2_generate;
-+ JPAKE_CTX_new;
-+ JPAKE_CTX_free;
-+ JPAKE_STEP3B_release;
-+ JPAKE_STEP3A_release;
-+ JPAKE_STEP2_process;
-+ JPAKE_STEP3B_generate;
-+ JPAKE_STEP1_process;
-+ JPAKE_STEP3A_generate;
-+ JPAKE_STEP2_release;
-+ JPAKE_STEP3A_init;
-+ ERR_load_JPAKE_strings;
-+ JPAKE_STEP2_init;
-+ pqueue_size;
-+ i2d_TS_ACCURACY;
-+ i2d_TS_MSG_IMPRINT_fp;
-+ i2d_TS_MSG_IMPRINT;
-+ EVP_PKEY_print_public;
-+ EVP_PKEY_CTX_new;
-+ i2d_TS_TST_INFO;
-+ EVP_PKEY_asn1_find;
-+ DSO_METHOD_beos;
-+ TS_CONF_load_cert;
-+ TS_REQ_get_ext;
-+ EVP_PKEY_sign_init;
-+ ASN1_item_print;
-+ TS_TST_INFO_set_nonce;
-+ TS_RESP_dup;
-+ ENGINE_register_pkey_meths;
-+ EVP_PKEY_asn1_add0;
-+ PKCS7_add0_attrib_signing_time;
-+ i2d_TS_TST_INFO_fp;
-+ BIO_asn1_get_prefix;
-+ TS_TST_INFO_set_time;
-+ EVP_PKEY_meth_set_decrypt;
-+ EVP_PKEY_set_type_str;
-+ EVP_PKEY_CTX_get_keygen_info;
-+ TS_REQ_set_policy_id;
-+ d2i_TS_RESP_fp;
-+ ENGINE_get_pkey_asn1_meth_engine;
-+ ENGINE_get_pkey_asn1_meth_eng;
-+ WHIRLPOOL_Init;
-+ TS_RESP_set_status_info;
-+ EVP_PKEY_keygen;
-+ EVP_DigestSignInit;
-+ TS_ACCURACY_set_millis;
-+ TS_REQ_dup;
-+ GENERAL_NAME_dup;
-+ ASN1_SEQUENCE_ANY_it;
-+ WHIRLPOOL;
-+ X509_STORE_get1_crls;
-+ ENGINE_get_pkey_asn1_meth;
-+ EVP_PKEY_asn1_new;
-+ BIO_new_NDEF;
-+ ENGINE_get_pkey_meth;
-+ TS_MSG_IMPRINT_set_algo;
-+ i2d_TS_TST_INFO_bio;
-+ TS_TST_INFO_set_ordering;
-+ TS_TST_INFO_get_ext_by_OBJ;
-+ CRYPTO_THREADID_set_pointer;
-+ TS_CONF_get_tsa_section;
-+ SMIME_write_ASN1;
-+ TS_RESP_CTX_set_signer_key;
-+ EVP_PKEY_encrypt_old;
-+ EVP_PKEY_encrypt_init;
-+ CRYPTO_THREADID_cpy;
-+ ASN1_PCTX_get_cert_flags;
-+ i2d_ESS_SIGNING_CERT;
-+ TS_CONF_load_key;
-+ i2d_ASN1_SEQUENCE_ANY;
-+ d2i_TS_MSG_IMPRINT_bio;
-+ EVP_PKEY_asn1_set_public;
-+ b2i_PublicKey_bio;
-+ BIO_asn1_set_prefix;
-+ EVP_PKEY_new_mac_key;
-+ BIO_new_CMS;
-+ CRYPTO_THREADID_cmp;
-+ TS_REQ_ext_free;
-+ EVP_PKEY_asn1_set_free;
-+ EVP_PKEY_get0_asn1;
-+ d2i_NETSCAPE_X509;
-+ EVP_PKEY_verify_recover_init;
-+ EVP_PKEY_CTX_set_data;
-+ EVP_PKEY_keygen_init;
-+ TS_RESP_CTX_set_status_info;
-+ TS_MSG_IMPRINT_get_algo;
-+ TS_REQ_print_bio;
-+ EVP_PKEY_CTX_ctrl_str;
-+ EVP_PKEY_get_default_digest_nid;
-+ PEM_write_bio_PKCS7_stream;
-+ TS_MSG_IMPRINT_print_bio;
-+ BN_asc2bn;
-+ TS_REQ_get_policy_id;
-+ ENGINE_set_default_pkey_asn1_meths;
-+ ENGINE_set_def_pkey_asn1_meths;
-+ d2i_TS_ACCURACY;
-+ DSO_global_lookup;
-+ TS_CONF_set_tsa_name;
-+ i2d_ASN1_SET_ANY;
-+ ENGINE_load_gost;
-+ WHIRLPOOL_BitUpdate;
-+ ASN1_PCTX_get_flags;
-+ TS_TST_INFO_get_ext_by_NID;
-+ TS_RESP_new;
-+ ESS_CERT_ID_dup;
-+ TS_STATUS_INFO_dup;
-+ TS_REQ_delete_ext;
-+ EVP_DigestVerifyFinal;
-+ EVP_PKEY_print_params;
-+ i2d_CMS_bio_stream;
-+ TS_REQ_get_msg_imprint;
-+ OBJ_find_sigid_by_algs;
-+ TS_TST_INFO_get_serial;
-+ TS_REQ_get_nonce;
-+ X509_PUBKEY_set0_param;
-+ EVP_PKEY_CTX_set0_keygen_info;
-+ DIST_POINT_set_dpname;
-+ i2d_ISSUING_DIST_POINT;
-+ ASN1_SET_ANY_it;
-+ EVP_PKEY_CTX_get_data;
-+ TS_STATUS_INFO_print_bio;
-+ EVP_PKEY_derive_init;
-+ d2i_TS_TST_INFO;
-+ EVP_PKEY_asn1_add_alias;
-+ d2i_TS_RESP_bio;
-+ OTHERNAME_cmp;
-+ GENERAL_NAME_set0_value;
-+ PKCS7_RECIP_INFO_get0_alg;
-+ TS_RESP_CTX_new;
-+ TS_RESP_set_tst_info;
-+ PKCS7_final;
-+ EVP_PKEY_base_id;
-+ TS_RESP_CTX_set_signer_cert;
-+ TS_REQ_set_msg_imprint;
-+ EVP_PKEY_CTX_ctrl;
-+ TS_CONF_set_digests;
-+ d2i_TS_MSG_IMPRINT;
-+ EVP_PKEY_meth_set_ctrl;
-+ TS_REQ_get_ext_by_NID;
-+ PKCS5_pbe_set0_algor;
-+ BN_BLINDING_thread_id;
-+ TS_ACCURACY_new;
-+ X509_CRL_METHOD_free;
-+ ASN1_PCTX_get_nm_flags;
-+ EVP_PKEY_meth_set_sign;
-+ CRYPTO_THREADID_current;
-+ EVP_PKEY_decrypt_init;
-+ NETSCAPE_X509_free;
-+ i2b_PVK_bio;
-+ EVP_PKEY_print_private;
-+ GENERAL_NAME_get0_value;
-+ b2i_PVK_bio;
-+ ASN1_UTCTIME_adj;
-+ TS_TST_INFO_new;
-+ EVP_MD_do_all_sorted;
-+ TS_CONF_set_default_engine;
-+ TS_ACCURACY_set_seconds;
-+ TS_TST_INFO_get_time;
-+ PKCS8_pkey_get0;
-+ EVP_PKEY_asn1_get0;
-+ OBJ_add_sigid;
-+ PKCS7_SIGNER_INFO_sign;
-+ EVP_PKEY_paramgen_init;
-+ EVP_PKEY_sign;
-+ OBJ_sigid_free;
-+ EVP_PKEY_meth_set_init;
-+ d2i_ESS_ISSUER_SERIAL;
-+ ISSUING_DIST_POINT_new;
-+ ASN1_TIME_adj;
-+ TS_OBJ_print_bio;
-+ EVP_PKEY_meth_set_verify_recover;
-+ EVP_PKEY_meth_set_vrfy_recover;
-+ TS_RESP_get_status_info;
-+ CMS_stream;
-+ EVP_PKEY_CTX_set_cb;
-+ PKCS7_to_TS_TST_INFO;
-+ ASN1_PCTX_get_oid_flags;
-+ TS_TST_INFO_add_ext;
-+ EVP_PKEY_meth_set_derive;
-+ i2d_TS_RESP_fp;
-+ i2d_TS_MSG_IMPRINT_bio;
-+ TS_RESP_CTX_set_accuracy;
-+ TS_REQ_set_nonce;
-+ ESS_CERT_ID_new;
-+ ENGINE_pkey_asn1_find_str;
-+ TS_REQ_get_ext_count;
-+ BUF_reverse;
-+ TS_TST_INFO_print_bio;
-+ d2i_ISSUING_DIST_POINT;
-+ ENGINE_get_pkey_meths;
-+ i2b_PrivateKey_bio;
-+ i2d_TS_RESP;
-+ b2i_PublicKey;
-+ TS_VERIFY_CTX_cleanup;
-+ TS_STATUS_INFO_free;
-+ TS_RESP_verify_token;
-+ OBJ_bsearch_ex_;
-+ ASN1_bn_print;
-+ EVP_PKEY_asn1_get_count;
-+ ENGINE_register_pkey_asn1_meths;
-+ ASN1_PCTX_set_nm_flags;
-+ EVP_DigestVerifyInit;
-+ ENGINE_set_default_pkey_meths;
-+ TS_TST_INFO_get_policy_id;
-+ TS_REQ_get_cert_req;
-+ X509_CRL_set_meth_data;
-+ PKCS8_pkey_set0;
-+ ASN1_STRING_copy;
-+ d2i_TS_TST_INFO_fp;
-+ X509_CRL_match;
-+ EVP_PKEY_asn1_set_private;
-+ TS_TST_INFO_get_ext_d2i;
-+ TS_RESP_CTX_add_policy;
-+ d2i_TS_RESP;
-+ TS_CONF_load_certs;
-+ TS_TST_INFO_get_msg_imprint;
-+ ERR_load_TS_strings;
-+ TS_TST_INFO_get_version;
-+ EVP_PKEY_CTX_dup;
-+ EVP_PKEY_meth_set_verify;
-+ i2b_PublicKey_bio;
-+ TS_CONF_set_certs;
-+ EVP_PKEY_asn1_get0_info;
-+ TS_VERIFY_CTX_free;
-+ TS_REQ_get_ext_by_critical;
-+ TS_RESP_CTX_set_serial_cb;
-+ X509_CRL_get_meth_data;
-+ TS_RESP_CTX_set_time_cb;
-+ TS_MSG_IMPRINT_get_msg;
-+ TS_TST_INFO_ext_free;
-+ TS_REQ_get_version;
-+ TS_REQ_add_ext;
-+ EVP_PKEY_CTX_set_app_data;
-+ OBJ_bsearch_;
-+ EVP_PKEY_meth_set_verifyctx;
-+ i2d_PKCS7_bio_stream;
-+ CRYPTO_THREADID_set_numeric;
-+ PKCS7_sign_add_signer;
-+ d2i_TS_TST_INFO_bio;
-+ TS_TST_INFO_get_ordering;
-+ TS_RESP_print_bio;
-+ TS_TST_INFO_get_exts;
-+ HMAC_CTX_copy;
-+ PKCS5_pbe2_set_iv;
-+ ENGINE_get_pkey_asn1_meths;
-+ b2i_PrivateKey;
-+ EVP_PKEY_CTX_get_app_data;
-+ TS_REQ_set_cert_req;
-+ CRYPTO_THREADID_set_callback;
-+ TS_CONF_set_serial;
-+ TS_TST_INFO_free;
-+ d2i_TS_REQ_fp;
-+ TS_RESP_verify_response;
-+ i2d_ESS_ISSUER_SERIAL;
-+ TS_ACCURACY_get_seconds;
-+ EVP_CIPHER_do_all;
-+ b2i_PrivateKey_bio;
-+ OCSP_CERTID_dup;
-+ X509_PUBKEY_get0_param;
-+ TS_MSG_IMPRINT_dup;
-+ PKCS7_print_ctx;
-+ i2d_TS_REQ_bio;
-+ EVP_whirlpool;
-+ EVP_PKEY_asn1_set_param;
-+ EVP_PKEY_meth_set_encrypt;
-+ ASN1_PCTX_set_flags;
-+ i2d_ESS_CERT_ID;
-+ TS_VERIFY_CTX_new;
-+ TS_RESP_CTX_set_extension_cb;
-+ ENGINE_register_all_pkey_meths;
-+ TS_RESP_CTX_set_status_info_cond;
-+ TS_RESP_CTX_set_stat_info_cond;
-+ EVP_PKEY_verify;
-+ WHIRLPOOL_Final;
-+ X509_CRL_METHOD_new;
-+ EVP_DigestSignFinal;
-+ TS_RESP_CTX_set_def_policy;
-+ NETSCAPE_X509_it;
-+ TS_RESP_create_response;
-+ PKCS7_SIGNER_INFO_get0_algs;
-+ TS_TST_INFO_get_nonce;
-+ EVP_PKEY_decrypt_old;
-+ TS_TST_INFO_set_policy_id;
-+ TS_CONF_set_ess_cert_id_chain;
-+ EVP_PKEY_CTX_get0_pkey;
-+ d2i_TS_REQ;
-+ EVP_PKEY_asn1_find_str;
-+ BIO_f_asn1;
-+ ESS_SIGNING_CERT_new;
-+ EVP_PBE_find;
-+ X509_CRL_get0_by_cert;
-+ EVP_PKEY_derive;
-+ i2d_TS_REQ;
-+ TS_TST_INFO_delete_ext;
-+ ESS_ISSUER_SERIAL_free;
-+ ASN1_PCTX_set_str_flags;
-+ ENGINE_get_pkey_asn1_meth_str;
-+ TS_CONF_set_signer_key;
-+ TS_ACCURACY_get_millis;
-+ TS_RESP_get_token;
-+ TS_ACCURACY_dup;
-+ ENGINE_register_all_pkey_asn1_meths;
-+ ENGINE_reg_all_pkey_asn1_meths;
-+ X509_CRL_set_default_method;
-+ CRYPTO_THREADID_hash;
-+ CMS_ContentInfo_print_ctx;
-+ TS_RESP_free;
-+ ISSUING_DIST_POINT_free;
-+ ESS_ISSUER_SERIAL_new;
-+ CMS_add1_crl;
-+ PKCS7_add1_attrib_digest;
-+ TS_RESP_CTX_add_md;
-+ TS_TST_INFO_dup;
-+ ENGINE_set_pkey_asn1_meths;
-+ PEM_write_bio_Parameters;
-+ TS_TST_INFO_get_accuracy;
-+ X509_CRL_get0_by_serial;
-+ TS_TST_INFO_set_version;
-+ TS_RESP_CTX_get_tst_info;
-+ TS_RESP_verify_signature;
-+ CRYPTO_THREADID_get_callback;
-+ TS_TST_INFO_get_tsa;
-+ TS_STATUS_INFO_new;
-+ EVP_PKEY_CTX_get_cb;
-+ TS_REQ_get_ext_d2i;
-+ GENERAL_NAME_set0_othername;
-+ TS_TST_INFO_get_ext_count;
-+ TS_RESP_CTX_get_request;
-+ i2d_NETSCAPE_X509;
-+ ENGINE_get_pkey_meth_engine;
-+ EVP_PKEY_meth_set_signctx;
-+ EVP_PKEY_asn1_copy;
-+ ASN1_TYPE_cmp;
-+ EVP_CIPHER_do_all_sorted;
-+ EVP_PKEY_CTX_free;
-+ ISSUING_DIST_POINT_it;
-+ d2i_TS_MSG_IMPRINT_fp;
-+ X509_STORE_get1_certs;
-+ EVP_PKEY_CTX_get_operation;
-+ d2i_ESS_SIGNING_CERT;
-+ TS_CONF_set_ordering;
-+ EVP_PBE_alg_add_type;
-+ TS_REQ_set_version;
-+ EVP_PKEY_get0;
-+ BIO_asn1_set_suffix;
-+ i2d_TS_STATUS_INFO;
-+ EVP_MD_do_all;
-+ TS_TST_INFO_set_accuracy;
-+ PKCS7_add_attrib_content_type;
-+ ERR_remove_thread_state;
-+ EVP_PKEY_meth_add0;
-+ TS_TST_INFO_set_tsa;
-+ EVP_PKEY_meth_new;
-+ WHIRLPOOL_Update;
-+ TS_CONF_set_accuracy;
-+ ASN1_PCTX_set_oid_flags;
-+ ESS_SIGNING_CERT_dup;
-+ d2i_TS_REQ_bio;
-+ X509_time_adj_ex;
-+ TS_RESP_CTX_add_flags;
-+ d2i_TS_STATUS_INFO;
-+ TS_MSG_IMPRINT_set_msg;
-+ BIO_asn1_get_suffix;
-+ TS_REQ_free;
-+ EVP_PKEY_meth_free;
-+ TS_REQ_get_exts;
-+ TS_RESP_CTX_set_clock_precision_digits;
-+ TS_RESP_CTX_set_clk_prec_digits;
-+ TS_RESP_CTX_add_failure_info;
-+ i2d_TS_RESP_bio;
-+ EVP_PKEY_CTX_get0_peerkey;
-+ PEM_write_bio_CMS_stream;
-+ TS_REQ_new;
-+ TS_MSG_IMPRINT_new;
-+ EVP_PKEY_meth_find;
-+ EVP_PKEY_id;
-+ TS_TST_INFO_set_serial;
-+ a2i_GENERAL_NAME;
-+ TS_CONF_set_crypto_device;
-+ EVP_PKEY_verify_init;
-+ TS_CONF_set_policies;
-+ ASN1_PCTX_new;
-+ ESS_CERT_ID_free;
-+ ENGINE_unregister_pkey_meths;
-+ TS_MSG_IMPRINT_free;
-+ TS_VERIFY_CTX_init;
-+ PKCS7_stream;
-+ TS_RESP_CTX_set_certs;
-+ TS_CONF_set_def_policy;
-+ ASN1_GENERALIZEDTIME_adj;
-+ NETSCAPE_X509_new;
-+ TS_ACCURACY_free;
-+ TS_RESP_get_tst_info;
-+ EVP_PKEY_derive_set_peer;
-+ PEM_read_bio_Parameters;
-+ TS_CONF_set_clock_precision_digits;
-+ TS_CONF_set_clk_prec_digits;
-+ ESS_ISSUER_SERIAL_dup;
-+ TS_ACCURACY_get_micros;
-+ ASN1_PCTX_get_str_flags;
-+ NAME_CONSTRAINTS_check;
-+ ASN1_BIT_STRING_check;
-+ X509_check_akid;
-+ ENGINE_unregister_pkey_asn1_meths;
-+ ENGINE_unreg_pkey_asn1_meths;
-+ ASN1_PCTX_free;
-+ PEM_write_bio_ASN1_stream;
-+ i2d_ASN1_bio_stream;
-+ TS_X509_ALGOR_print_bio;
-+ EVP_PKEY_meth_set_cleanup;
-+ EVP_PKEY_asn1_free;
-+ ESS_SIGNING_CERT_free;
-+ TS_TST_INFO_set_msg_imprint;
-+ GENERAL_NAME_cmp;
-+ d2i_ASN1_SET_ANY;
-+ ENGINE_set_pkey_meths;
-+ i2d_TS_REQ_fp;
-+ d2i_ASN1_SEQUENCE_ANY;
-+ GENERAL_NAME_get0_otherName;
-+ d2i_ESS_CERT_ID;
-+ OBJ_find_sigid_algs;
-+ EVP_PKEY_meth_set_keygen;
-+ PKCS5_PBKDF2_HMAC;
-+ EVP_PKEY_paramgen;
-+ EVP_PKEY_meth_set_paramgen;
-+ BIO_new_PKCS7;
-+ EVP_PKEY_verify_recover;
-+ TS_ext_print_bio;
-+ TS_ASN1_INTEGER_print_bio;
-+ check_defer;
-+ DSO_pathbyaddr;
-+ EVP_PKEY_set_type;
-+ TS_ACCURACY_set_micros;
-+ TS_REQ_to_TS_VERIFY_CTX;
-+ EVP_PKEY_meth_set_copy;
-+ ASN1_PCTX_set_cert_flags;
-+ TS_TST_INFO_get_ext;
-+ EVP_PKEY_asn1_set_ctrl;
-+ TS_TST_INFO_get_ext_by_critical;
-+ EVP_PKEY_CTX_new_id;
-+ TS_REQ_get_ext_by_OBJ;
-+ TS_CONF_set_signer_cert;
-+ X509_NAME_hash_old;
-+ ASN1_TIME_set_string;
-+ EVP_MD_flags;
-+ TS_RESP_CTX_free;
-+ DSAparams_dup;
-+ DHparams_dup;
-+ OCSP_REQ_CTX_add1_header;
-+ OCSP_REQ_CTX_set1_req;
-+ X509_STORE_set_verify_cb;
-+ X509_STORE_CTX_get0_current_crl;
-+ X509_STORE_CTX_get0_parent_ctx;
-+ X509_STORE_CTX_get0_current_issuer;
-+ X509_STORE_CTX_get0_cur_issuer;
-+ X509_issuer_name_hash_old;
-+ X509_subject_name_hash_old;
-+ EVP_CIPHER_CTX_copy;
-+ UI_method_get_prompt_constructor;
-+ UI_method_get_prompt_constructr;
-+ UI_method_set_prompt_constructor;
-+ UI_method_set_prompt_constructr;
-+ EVP_read_pw_string_min;
-+ CRYPTO_cts128_encrypt;
-+ CRYPTO_cts128_decrypt_block;
-+ CRYPTO_cfb128_1_encrypt;
-+ CRYPTO_cbc128_encrypt;
-+ CRYPTO_ctr128_encrypt;
-+ CRYPTO_ofb128_encrypt;
-+ CRYPTO_cts128_decrypt;
-+ CRYPTO_cts128_encrypt_block;
-+ CRYPTO_cbc128_decrypt;
-+ CRYPTO_cfb128_encrypt;
-+ CRYPTO_cfb128_8_encrypt;
-+ SSL_renegotiate_abbreviated;
-+ TLSv1_1_method;
-+ TLSv1_1_client_method;
-+ TLSv1_1_server_method;
-+ SSL_CTX_set_srp_client_pwd_callback;
-+ SSL_CTX_set_srp_client_pwd_cb;
-+ SSL_get_srp_g;
-+ SSL_CTX_set_srp_username_callback;
-+ SSL_CTX_set_srp_un_cb;
-+ SSL_get_srp_userinfo;
-+ SSL_set_srp_server_param;
-+ SSL_set_srp_server_param_pw;
-+ SSL_get_srp_N;
-+ SSL_get_srp_username;
-+ SSL_CTX_set_srp_password;
-+ SSL_CTX_set_srp_strength;
-+ SSL_CTX_set_srp_verify_param_callback;
-+ SSL_CTX_set_srp_vfy_param_cb;
-+ SSL_CTX_set_srp_cb_arg;
-+ SSL_CTX_set_srp_username;
-+ SSL_CTX_SRP_CTX_init;
-+ SSL_SRP_CTX_init;
-+ SRP_Calc_A_param;
-+ SRP_generate_server_master_secret;
-+ SRP_gen_server_master_secret;
-+ SSL_CTX_SRP_CTX_free;
-+ SRP_generate_client_master_secret;
-+ SRP_gen_client_master_secret;
-+ SSL_srp_server_param_with_username;
-+ SSL_srp_server_param_with_un;
-+ SSL_SRP_CTX_free;
-+ SSL_set_debug;
-+ SSL_SESSION_get0_peer;
-+ TLSv1_2_client_method;
-+ SSL_SESSION_set1_id_context;
-+ TLSv1_2_server_method;
-+ SSL_cache_hit;
-+ SSL_get0_kssl_ctx;
-+ SSL_set0_kssl_ctx;
-+ SSL_set_state;
-+ SSL_CIPHER_get_id;
-+ TLSv1_2_method;
-+ kssl_ctx_get0_client_princ;
-+ SSL_export_keying_material;
-+ SSL_set_tlsext_use_srtp;
-+ SSL_CTX_set_next_protos_advertised_cb;
-+ SSL_CTX_set_next_protos_adv_cb;
-+ SSL_get0_next_proto_negotiated;
-+ SSL_get_selected_srtp_profile;
-+ SSL_CTX_set_tlsext_use_srtp;
-+ SSL_select_next_proto;
-+ SSL_get_srtp_profiles;
-+ SSL_CTX_set_next_proto_select_cb;
-+ SSL_CTX_set_next_proto_sel_cb;
-+ SSL_SESSION_get_compress_id;
-+
-+ SRP_VBASE_get_by_user;
-+ SRP_Calc_server_key;
-+ SRP_create_verifier;
-+ SRP_create_verifier_BN;
-+ SRP_Calc_u;
-+ SRP_VBASE_free;
-+ SRP_Calc_client_key;
-+ SRP_get_default_gN;
-+ SRP_Calc_x;
-+ SRP_Calc_B;
-+ SRP_VBASE_new;
-+ SRP_check_known_gN_param;
-+ SRP_Calc_A;
-+ SRP_Verify_A_mod_N;
-+ SRP_VBASE_init;
-+ SRP_Verify_B_mod_N;
-+ EC_KEY_set_public_key_affine_coordinates;
-+ EC_KEY_set_pub_key_aff_coords;
-+ EVP_aes_192_ctr;
-+ EVP_PKEY_meth_get0_info;
-+ EVP_PKEY_meth_copy;
-+ ERR_add_error_vdata;
-+ EVP_aes_128_ctr;
-+ EVP_aes_256_ctr;
-+ EC_GFp_nistp224_method;
-+ EC_KEY_get_flags;
-+ RSA_padding_add_PKCS1_PSS_mgf1;
-+ EVP_aes_128_xts;
-+ EVP_aes_256_xts;
-+ EVP_aes_128_gcm;
-+ EC_KEY_clear_flags;
-+ EC_KEY_set_flags;
-+ EVP_aes_256_ccm;
-+ RSA_verify_PKCS1_PSS_mgf1;
-+ EVP_aes_128_ccm;
-+ EVP_aes_192_gcm;
-+ X509_ALGOR_set_md;
-+ RAND_init_fips;
-+ EVP_aes_256_gcm;
-+ EVP_aes_192_ccm;
-+ CMAC_CTX_copy;
-+ CMAC_CTX_free;
-+ CMAC_CTX_get0_cipher_ctx;
-+ CMAC_CTX_cleanup;
-+ CMAC_Init;
-+ CMAC_Update;
-+ CMAC_resume;
-+ CMAC_CTX_new;
-+ CMAC_Final;
-+ CRYPTO_ctr128_encrypt_ctr32;
-+ CRYPTO_gcm128_release;
-+ CRYPTO_ccm128_decrypt_ccm64;
-+ CRYPTO_ccm128_encrypt;
-+ CRYPTO_gcm128_encrypt;
-+ CRYPTO_xts128_encrypt;
-+ EVP_rc4_hmac_md5;
-+ CRYPTO_nistcts128_decrypt_block;
-+ CRYPTO_gcm128_setiv;
-+ CRYPTO_nistcts128_encrypt;
-+ EVP_aes_128_cbc_hmac_sha1;
-+ CRYPTO_gcm128_tag;
-+ CRYPTO_ccm128_encrypt_ccm64;
-+ ENGINE_load_rdrand;
-+ CRYPTO_ccm128_setiv;
-+ CRYPTO_nistcts128_encrypt_block;
-+ CRYPTO_gcm128_aad;
-+ CRYPTO_ccm128_init;
-+ CRYPTO_nistcts128_decrypt;
-+ CRYPTO_gcm128_new;
-+ CRYPTO_ccm128_tag;
-+ CRYPTO_ccm128_decrypt;
-+ CRYPTO_ccm128_aad;
-+ CRYPTO_gcm128_init;
-+ CRYPTO_gcm128_decrypt;
-+ ENGINE_load_rsax;
-+ CRYPTO_gcm128_decrypt_ctr32;
-+ CRYPTO_gcm128_encrypt_ctr32;
-+ CRYPTO_gcm128_finish;
-+ EVP_aes_256_cbc_hmac_sha1;
-+ PKCS5_pbkdf2_set;
-+ CMS_add0_recipient_password;
-+ CMS_decrypt_set1_password;
-+ CMS_RecipientInfo_set0_password;
-+ RAND_set_fips_drbg_type;
-+ X509_REQ_sign_ctx;
-+ RSA_PSS_PARAMS_new;
-+ X509_CRL_sign_ctx;
-+ X509_signature_dump;
-+ d2i_RSA_PSS_PARAMS;
-+ RSA_PSS_PARAMS_it;
-+ RSA_PSS_PARAMS_free;
-+ X509_sign_ctx;
-+ i2d_RSA_PSS_PARAMS;
-+ ASN1_item_sign_ctx;
-+ EC_GFp_nistp521_method;
-+ EC_GFp_nistp256_method;
-+ OPENSSL_stderr;
-+ OPENSSL_cpuid_setup;
-+ OPENSSL_showfatal;
-+ BIO_new_dgram_sctp;
-+ BIO_dgram_sctp_msg_waiting;
-+ BIO_dgram_sctp_wait_for_dry;
-+ BIO_s_datagram_sctp;
-+ BIO_dgram_is_sctp;
-+ BIO_dgram_sctp_notification_cb;
-+ CRYPTO_memcmp;
-+ SSL_CTX_set_alpn_protos;
-+ SSL_set_alpn_protos;
-+ SSL_CTX_set_alpn_select_cb;
-+ SSL_get0_alpn_selected;
-+ SSL_CTX_set_custom_cli_ext;
-+ SSL_CTX_set_custom_srv_ext;
-+ SSL_CTX_set_srv_supp_data;
-+ SSL_CTX_set_cli_supp_data;
-+ SSL_set_cert_cb;
-+ SSL_CTX_use_serverinfo;
-+ SSL_CTX_use_serverinfo_file;
-+ SSL_CTX_set_cert_cb;
-+ SSL_CTX_get0_param;
-+ SSL_get0_param;
-+ SSL_certs_clear;
-+ DTLSv1_2_method;
-+ DTLSv1_2_server_method;
-+ DTLSv1_2_client_method;
-+ DTLS_method;
-+ DTLS_server_method;
-+ DTLS_client_method;
-+ SSL_CTX_get_ssl_method;
-+ SSL_CTX_get0_certificate;
-+ SSL_CTX_get0_privatekey;
-+ SSL_COMP_set0_compression_methods;
-+ SSL_COMP_free_compression_methods;
-+ SSL_CIPHER_find;
-+ SSL_is_server;
-+ SSL_CONF_CTX_new;
-+ SSL_CONF_CTX_finish;
-+ SSL_CONF_CTX_free;
-+ SSL_CONF_CTX_set_flags;
-+ SSL_CONF_CTX_clear_flags;
-+ SSL_CONF_CTX_set1_prefix;
-+ SSL_CONF_CTX_set_ssl;
-+ SSL_CONF_CTX_set_ssl_ctx;
-+ SSL_CONF_cmd;
-+ SSL_CONF_cmd_argv;
-+ SSL_CONF_cmd_value_type;
-+ SSL_trace;
-+ SSL_CIPHER_standard_name;
-+ SSL_get_tlsa_record_byname;
-+ ASN1_TIME_diff;
-+ BIO_hex_string;
-+ CMS_RecipientInfo_get0_pkey_ctx;
-+ CMS_RecipientInfo_encrypt;
-+ CMS_SignerInfo_get0_pkey_ctx;
-+ CMS_SignerInfo_get0_md_ctx;
-+ CMS_SignerInfo_get0_signature;
-+ CMS_RecipientInfo_kari_get0_alg;
-+ CMS_RecipientInfo_kari_get0_reks;
-+ CMS_RecipientInfo_kari_get0_orig_id;
-+ CMS_RecipientInfo_kari_orig_id_cmp;
-+ CMS_RecipientEncryptedKey_get0_id;
-+ CMS_RecipientEncryptedKey_cert_cmp;
-+ CMS_RecipientInfo_kari_set0_pkey;
-+ CMS_RecipientInfo_kari_get0_ctx;
-+ CMS_RecipientInfo_kari_decrypt;
-+ CMS_SharedInfo_encode;
-+ DH_compute_key_padded;
-+ d2i_DHxparams;
-+ i2d_DHxparams;
-+ DH_get_1024_160;
-+ DH_get_2048_224;
-+ DH_get_2048_256;
-+ DH_KDF_X9_42;
-+ ECDH_KDF_X9_62;
-+ ECDSA_METHOD_new;
-+ ECDSA_METHOD_free;
-+ ECDSA_METHOD_set_app_data;
-+ ECDSA_METHOD_get_app_data;
-+ ECDSA_METHOD_set_sign;
-+ ECDSA_METHOD_set_sign_setup;
-+ ECDSA_METHOD_set_verify;
-+ ECDSA_METHOD_set_flags;
-+ ECDSA_METHOD_set_name;
-+ EVP_des_ede3_wrap;
-+ EVP_aes_128_wrap;
-+ EVP_aes_192_wrap;
-+ EVP_aes_256_wrap;
-+ EVP_aes_128_cbc_hmac_sha256;
-+ EVP_aes_256_cbc_hmac_sha256;
-+ CRYPTO_128_wrap;
-+ CRYPTO_128_unwrap;
-+ OCSP_REQ_CTX_nbio;
-+ OCSP_REQ_CTX_new;
-+ OCSP_set_max_response_length;
-+ OCSP_REQ_CTX_i2d;
-+ OCSP_REQ_CTX_nbio_d2i;
-+ OCSP_REQ_CTX_get0_mem_bio;
-+ OCSP_REQ_CTX_http;
-+ RSA_padding_add_PKCS1_OAEP_mgf1;
-+ RSA_padding_check_PKCS1_OAEP_mgf1;
-+ RSA_OAEP_PARAMS_free;
-+ RSA_OAEP_PARAMS_it;
-+ RSA_OAEP_PARAMS_new;
-+ SSL_get_sigalgs;
-+ SSL_get_shared_sigalgs;
-+ SSL_check_chain;
-+ X509_chain_up_ref;
-+ X509_http_nbio;
-+ X509_CRL_http_nbio;
-+ X509_REVOKED_dup;
-+ i2d_re_X509_tbs;
-+ X509_get0_signature;
-+ X509_get_signature_nid;
-+ X509_CRL_diff;
-+ X509_chain_check_suiteb;
-+ X509_CRL_check_suiteb;
-+ X509_check_host;
-+ X509_check_email;
-+ X509_check_ip;
-+ X509_check_ip_asc;
-+ X509_STORE_set_lookup_crls_cb;
-+ X509_STORE_CTX_get0_store;
-+ X509_VERIFY_PARAM_set1_host;
-+ X509_VERIFY_PARAM_add1_host;
-+ X509_VERIFY_PARAM_set_hostflags;
-+ X509_VERIFY_PARAM_get0_peername;
-+ X509_VERIFY_PARAM_set1_email;
-+ X509_VERIFY_PARAM_set1_ip;
-+ X509_VERIFY_PARAM_set1_ip_asc;
-+ X509_VERIFY_PARAM_get0_name;
-+ X509_VERIFY_PARAM_get_count;
-+ X509_VERIFY_PARAM_get0;
-+ X509V3_EXT_free;
-+ EC_GROUP_get_mont_data;
-+ EC_curve_nid2nist;
-+ EC_curve_nist2nid;
-+ PEM_write_bio_DHxparams;
-+ PEM_write_DHxparams;
-+ SSL_CTX_add_client_custom_ext;
-+ SSL_CTX_add_server_custom_ext;
-+ SSL_extension_supported;
-+ BUF_strnlen;
-+ sk_deep_copy;
-+ SSL_test_functions;
-+
-+ local:
-+ *;
-+};
-+
-+OPENSSL_1.0.2g {
-+ global:
-+ SRP_VBASE_get1_by_user;
-+ SRP_user_pwd_free;
-+} OPENSSL_1.0.2d;
-+
-Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/openssl.ld
-===================================================================
---- /dev/null 1970-01-01 00:00:00.000000000 +0000
-+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/openssl.ld 2014-02-24 21:02:30.000000000 +0100
-@@ -0,0 +1,10 @@
-+OPENSSL_1.0.2 {
-+ global:
-+ bind_engine;
-+ v_check;
-+ OPENSSL_init;
-+ OPENSSL_finish;
-+ local:
-+ *;
-+};
-+
-Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/ccgost/openssl.ld
-===================================================================
---- /dev/null 1970-01-01 00:00:00.000000000 +0000
-+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/ccgost/openssl.ld 2014-02-24 21:02:30.000000000 +0100
-@@ -0,0 +1,10 @@
-+OPENSSL_1.0.2 {
-+ global:
-+ bind_engine;
-+ v_check;
-+ OPENSSL_init;
-+ OPENSSL_finish;
-+ local:
-+ *;
-+};
-+
diff --git a/meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch b/meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch
deleted file mode 100644
index a5746483e6..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch
+++ /dev/null
@@ -1,64 +0,0 @@
-Upstream-Status: Inappropriate [configuration]
-
-
-Index: openssl-1.0.2/engines/Makefile
-===================================================================
---- openssl-1.0.2.orig/engines/Makefile
-+++ openssl-1.0.2/engines/Makefile
-@@ -107,13 +107,13 @@ install:
- @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile...
- @if [ -n "$(SHARED_LIBS)" ]; then \
- set -e; \
-- $(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines; \
-+ $(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines; \
- for l in $(LIBNAMES); do \
- ( echo installing $$l; \
- pfx=lib; \
- if expr "$(PLATFORM)" : "Cygwin" >/dev/null; then \
- sfx=".so"; \
-- cp cyg$$l.dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \
-+ cp cyg$$l.dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new; \
- else \
- case "$(CFLAGS)" in \
- *DSO_BEOS*) sfx=".so";; \
-@@ -122,10 +122,10 @@ install:
- *DSO_WIN32*) sfx="eay32.dll"; pfx=;; \
- *) sfx=".bad";; \
- esac; \
-- cp $$pfx$$l$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \
-+ cp $$pfx$$l$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new; \
- fi; \
-- chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \
-- mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx ); \
-+ chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new; \
-+ mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx ); \
- done; \
- fi
- @target=install; $(RECURSIVE_MAKE)
-Index: openssl-1.0.2/engines/ccgost/Makefile
-===================================================================
---- openssl-1.0.2.orig/engines/ccgost/Makefile
-+++ openssl-1.0.2/engines/ccgost/Makefile
-@@ -47,7 +47,7 @@ install:
- pfx=lib; \
- if expr "$(PLATFORM)" : "Cygwin" >/dev/null; then \
- sfx=".so"; \
-- cp cyg$(LIBNAME).dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \
-+ cp cyg$(LIBNAME).dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new; \
- else \
- case "$(CFLAGS)" in \
- *DSO_BEOS*) sfx=".so";; \
-@@ -56,10 +56,10 @@ install:
- *DSO_WIN32*) sfx="eay32.dll"; pfx=;; \
- *) sfx=".bad";; \
- esac; \
-- cp $${pfx}$(LIBNAME)$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \
-+ cp $${pfx}$(LIBNAME)$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new; \
- fi; \
-- chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \
-- mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx; \
-+ chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new; \
-+ mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx; \
- fi
-
- links:
diff --git a/meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch b/meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch
deleted file mode 100644
index 292e13dc5f..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch
+++ /dev/null
@@ -1,24 +0,0 @@
-Upstream-Status: Inappropriate [open-embedded]
-
-Index: openssl-1.0.0/Makefile.shared
-===================================================================
---- openssl-1.0.0.orig/Makefile.shared
-+++ openssl-1.0.0/Makefile.shared
-@@ -92,7 +92,7 @@
- LINK_APP= \
- ( $(SET_X); \
- LIBDEPS="$${LIBDEPS:-$(LIBDEPS)}"; \
-- LDCMD="$${LDCMD:-$(CC)}"; LDFLAGS="$${LDFLAGS:-$(CFLAGS)}"; \
-+ LDCMD="$${LDCMD:-$(CC)}"; LDFLAGS="$(OE_LDFLAGS) $${LDFLAGS:-$(CFLAGS)}"; \
- LIBPATH=`for x in $$LIBDEPS; do echo $$x; done | sed -e 's/^ *-L//;t' -e d | uniq`; \
- LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \
- LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \
-@@ -102,7 +102,7 @@
- ( $(SET_X); \
- LIBDEPS="$${LIBDEPS:-$(LIBDEPS)}"; \
- SHAREDCMD="$${SHAREDCMD:-$(CC)}"; \
-- SHAREDFLAGS="$${SHAREDFLAGS:-$(CFLAGS) $(SHARED_LDFLAGS)}"; \
-+ SHAREDFLAGS="$(OE_LDFLAGS) $${SHAREDFLAGS:-$(CFLAGS) $(SHARED_LDFLAGS)}"; \
- LIBPATH=`for x in $$LIBDEPS; do echo $$x; done | sed -e 's/^ *-L//;t' -e d | uniq`; \
- LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \
- LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \
diff --git a/meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh b/meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh
deleted file mode 100644
index 6620fdcb53..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh
+++ /dev/null
@@ -1,222 +0,0 @@
-#!/bin/sh
-#
-# Ben Secrest <blsecres@gmail.com>
-#
-# sh c_rehash script, scan all files in a directory
-# and add symbolic links to their hash values.
-#
-# based on the c_rehash perl script distributed with openssl
-#
-# LICENSE: See OpenSSL license
-# ^^acceptable?^^
-#
-
-# default certificate location
-DIR=/etc/openssl
-
-# for filetype bitfield
-IS_CERT=$(( 1 << 0 ))
-IS_CRL=$(( 1 << 1 ))
-
-
-# check to see if a file is a certificate file or a CRL file
-# arguments:
-# 1. the filename to be scanned
-# returns:
-# bitfield of file type; uses ${IS_CERT} and ${IS_CRL}
-#
-check_file()
-{
- local IS_TYPE=0
-
- # make IFS a newline so we can process grep output line by line
- local OLDIFS=${IFS}
- IFS=$( printf "\n" )
-
- # XXX: could be more efficient to have two 'grep -m' but is -m portable?
- for LINE in $( grep '^-----BEGIN .*-----' ${1} )
- do
- if echo ${LINE} \
- | grep -q -E '^-----BEGIN (X509 |TRUSTED )?CERTIFICATE-----'
- then
- IS_TYPE=$(( ${IS_TYPE} | ${IS_CERT} ))
-
- if [ $(( ${IS_TYPE} & ${IS_CRL} )) -ne 0 ]
- then
- break
- fi
- elif echo ${LINE} | grep -q '^-----BEGIN X509 CRL-----'
- then
- IS_TYPE=$(( ${IS_TYPE} | ${IS_CRL} ))
-
- if [ $(( ${IS_TYPE} & ${IS_CERT} )) -ne 0 ]
- then
- break
- fi
- fi
- done
-
- # restore IFS
- IFS=${OLDIFS}
-
- return ${IS_TYPE}
-}
-
-
-#
-# use openssl to fingerprint a file
-# arguments:
-# 1. the filename to fingerprint
-# 2. the method to use (x509, crl)
-# returns:
-# none
-# assumptions:
-# user will capture output from last stage of pipeline
-#
-fingerprint()
-{
- ${SSL_CMD} ${2} -fingerprint -noout -in ${1} | sed 's/^.*=//' | tr -d ':'
-}
-
-
-#
-# link_hash - create links to certificate files
-# arguments:
-# 1. the filename to create a link for
-# 2. the type of certificate being linked (x509, crl)
-# returns:
-# 0 on success, 1 otherwise
-#
-link_hash()
-{
- local FINGERPRINT=$( fingerprint ${1} ${2} )
- local HASH=$( ${SSL_CMD} ${2} -hash -noout -in ${1} )
- local SUFFIX=0
- local LINKFILE=''
- local TAG=''
-
- if [ ${2} = "crl" ]
- then
- TAG='r'
- fi
-
- LINKFILE=${HASH}.${TAG}${SUFFIX}
-
- while [ -f ${LINKFILE} ]
- do
- if [ ${FINGERPRINT} = $( fingerprint ${LINKFILE} ${2} ) ]
- then
- echo "NOTE: Skipping duplicate file ${1}" >&2
- return 1
- fi
-
- SUFFIX=$(( ${SUFFIX} + 1 ))
- LINKFILE=${HASH}.${TAG}${SUFFIX}
- done
-
- echo "${3} => ${LINKFILE}"
-
- # assume any system with a POSIX shell will either support symlinks or
- # do something to handle this gracefully
- ln -s ${3} ${LINKFILE}
-
- return 0
-}
-
-
-# hash_dir create hash links in a given directory
-hash_dir()
-{
- echo "Doing ${1}"
-
- cd ${1}
-
- ls -1 * 2>/dev/null | while read FILE
- do
- if echo ${FILE} | grep -q -E '^[[:xdigit:]]{8}\.r?[[:digit:]]+$' \
- && [ -h "${FILE}" ]
- then
- rm ${FILE}
- fi
- done
-
- ls -1 *.pem *.cer *.crt *.crl 2>/dev/null | while read FILE
- do
- REAL_FILE=${FILE}
- # if we run on build host then get to the real files in rootfs
- if [ -n "${SYSROOT}" -a -h ${FILE} ]
- then
- FILE=$( readlink ${FILE} )
- # check the symlink is absolute (or dangling in other word)
- if [ "x/" = "x$( echo ${FILE} | cut -c1 -)" ]
- then
- REAL_FILE=${SYSROOT}/${FILE}
- fi
- fi
-
- check_file ${REAL_FILE}
- local FILE_TYPE=${?}
- local TYPE_STR=''
-
- if [ $(( ${FILE_TYPE} & ${IS_CERT} )) -ne 0 ]
- then
- TYPE_STR='x509'
- elif [ $(( ${FILE_TYPE} & ${IS_CRL} )) -ne 0 ]
- then
- TYPE_STR='crl'
- else
- echo "NOTE: ${FILE} does not contain a certificate or CRL: skipping" >&2
- continue
- fi
-
- link_hash ${REAL_FILE} ${TYPE_STR} ${FILE}
- done
-}
-
-
-# choose the name of an ssl application
-if [ -n "${OPENSSL}" ]
-then
- SSL_CMD=$(which ${OPENSSL} 2>/dev/null)
-else
- SSL_CMD=/usr/bin/openssl
- OPENSSL=${SSL_CMD}
- export OPENSSL
-fi
-
-# fix paths
-PATH=${PATH}:${DIR}/bin
-export PATH
-
-# confirm existance/executability of ssl command
-if ! [ -x ${SSL_CMD} ]
-then
- echo "${0}: rehashing skipped ('openssl' program not available)" >&2
- exit 0
-fi
-
-# determine which directories to process
-old_IFS=$IFS
-if [ ${#} -gt 0 ]
-then
- IFS=':'
- DIRLIST=${*}
-elif [ -n "${SSL_CERT_DIR}" ]
-then
- DIRLIST=$SSL_CERT_DIR
-else
- DIRLIST=${DIR}/certs
-fi
-
-IFS=':'
-
-# process directories
-for CERT_DIR in ${DIRLIST}
-do
- if [ -d ${CERT_DIR} -a -w ${CERT_DIR} ]
- then
- IFS=$old_IFS
- hash_dir ${CERT_DIR}
- IFS=':'
- fi
-done
diff --git a/meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch b/meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch
deleted file mode 100644
index de49729e5e..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch
+++ /dev/null
@@ -1,19 +0,0 @@
-openssl: Fix pod2man des.pod error on Ubuntu 12.04
-
-This is a formatting fix, '=back' is required before
-'=head1' on Ubuntu 12.04.
-
-Upstream-Status: Pending
-Signed-off-by: Baogen Shang <baogen.shang@windriver.com>
-diff -urpN a_origin/des.pod b_modify/des.pod
---- a_origin/crypto/des/des.pod 2013-08-15 15:02:56.211674589 +0800
-+++ b_modify/crypto/des/des.pod 2013-08-15 15:04:14.439674580 +0800
-@@ -181,6 +181,8 @@ the uuencoded file to embed in the begin
- output. If there is no name specified after the B<-u>, the name text.des
- will be embedded in the header.
-
-+=back
-+
- =head1 SEE ALSO
-
- ps(1),
diff --git a/meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch b/meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch
deleted file mode 100644
index 0f08a642f6..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch
+++ /dev/null
@@ -1,39 +0,0 @@
-Upstream-Status: Pending
-
-Received from H J Liu @ Intel
-Make the assembly syntax compatible with x32 gcc. Othewise x32 gcc throws errors.
-Signed-off-by: Nitin A Kamble <nitin.a.kamble@intel.com> 2011/07/13
-
-ported the patch to the 1.0.0e version
-Signed-off-by: Nitin A Kamble <nitin.a.kamble@intel.com> 2011/12/01
-Index: openssl-1.0.2/crypto/bn/bn.h
-===================================================================
---- openssl-1.0.2.orig/crypto/bn/bn.h
-+++ openssl-1.0.2/crypto/bn/bn.h
-@@ -173,6 +173,13 @@ extern "C" {
- # endif
- # endif
-
-+/* Address type. */
-+#ifdef _WIN64
-+#define BN_ADDR unsigned long long
-+#else
-+#define BN_ADDR unsigned long
-+#endif
-+
- /*
- * assuming long is 64bit - this is the DEC Alpha unsigned long long is only
- * 64 bits :-(, don't define BN_LLONG for the DEC Alpha
-Index: openssl-1.0.2/crypto/bn/bn_exp.c
-===================================================================
---- openssl-1.0.2.orig/crypto/bn/bn_exp.c
-+++ openssl-1.0.2/crypto/bn/bn_exp.c
-@@ -638,7 +638,7 @@ static int MOD_EXP_CTIME_COPY_FROM_PREBU
- * multiple.
- */
- #define MOD_EXP_CTIME_ALIGN(x_) \
-- ((unsigned char*)(x_) + (MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH - (((size_t)(x_)) & (MOD_EXP_CTIME_MIN_CACHE_LINE_MASK))))
-+ ((unsigned char*)(x_) + (MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH - (((BN_ADDR)(x_)) & (MOD_EXP_CTIME_MIN_CACHE_LINE_MASK))))
-
- /*
- * This variant of BN_mod_exp_mont() uses fixed windows and the special
diff --git a/meta/recipes-connectivity/openssl/openssl10/parallel.patch b/meta/recipes-connectivity/openssl/openssl10/parallel.patch
deleted file mode 100644
index 41abf3d6bd..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/parallel.patch
+++ /dev/null
@@ -1,368 +0,0 @@
-From 7fb1192f112c1920bfd39f4185f34e9afff3cff2 Mon Sep 17 00:00:00 2001
-From: Ross Burton <ross.burton@intel.com>
-Date: Sat, 5 Mar 2016 00:12:02 +0000
-Subject: [PATCH 24/28] Fix the parallel races in the Makefiles.
-
-This patch was taken from the Gentoo packaging:
-https://gitweb.gentoo.org/repo/gentoo.git/plain/dev-libs/openssl/files/openssl-1.0.2g-parallel-build.patch
-
-Upstream-Status: Pending
-Signed-off-by: Ross Burton <ross.burton@intel.com>
-
-Refreshed for 1.0.2i
-Signed-off-by: Patrick Ohly <patrick.ohly@intel.com>
-
----
- Makefile.org | 14 ++--
- Makefile.shared | 2 +
- crypto/Makefile | 10 +--
- engines/Makefile | 6 +-
- test/Makefile | 94 +++++++++++-----------
- 5 files changed, 64 insertions(+), 62 deletions(-)
-
-diff --git a/Makefile.org b/Makefile.org
-index efcfafb..82eab91 100644
---- a/Makefile.org
-+++ b/Makefile.org
-@@ -282,17 +282,17 @@ build_libcrypto: build_crypto build_engines libcrypto.pc
- build_libssl: build_ssl libssl.pc
-
- build_crypto:
-- @dir=crypto; target=all; $(BUILD_ONE_CMD)
-+ +@dir=crypto; target=all; $(BUILD_ONE_CMD)
- build_ssl: build_crypto
-- @dir=ssl; target=all; $(BUILD_ONE_CMD)
-+ +@dir=ssl; target=all; $(BUILD_ONE_CMD)
- build_engines: build_crypto
-- @dir=engines; target=all; $(BUILD_ONE_CMD)
-+ +@dir=engines; target=all; $(BUILD_ONE_CMD)
- build_apps: build_libs
-- @dir=apps; target=all; $(BUILD_ONE_CMD)
-+ +@dir=apps; target=all; $(BUILD_ONE_CMD)
- build_tests: build_libs
-- @dir=test; target=all; $(BUILD_ONE_CMD)
-+ +@dir=test; target=all; $(BUILD_ONE_CMD)
- build_tools: build_libs
-- @dir=tools; target=all; $(BUILD_ONE_CMD)
-+ +@dir=tools; target=all; $(BUILD_ONE_CMD)
-
- all_testapps: build_libs build_testapps
- build_testapps:
-@@ -564,7 +564,7 @@ install_sw:
- (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \
- chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \
- done;
-- @set -e; target=install; $(RECURSIVE_BUILD_CMD)
-+ +@set -e; target=install; $(RECURSIVE_BUILD_CMD)
- @set -e; liblist="$(LIBS)"; for i in $$liblist ;\
- do \
- if [ -f "$$i" ]; then \
-diff --git a/Makefile.shared b/Makefile.shared
-index bbefb2b..18013a9 100644
---- a/Makefile.shared
-+++ b/Makefile.shared
-@@ -105,6 +105,7 @@ LINK_SO= \
- SHAREDFLAGS="$(OE_LDFLAGS) $${SHAREDFLAGS:-$(CFLAGS) $(SHARED_LDFLAGS)}"; \
- LIBPATH=`for x in $$LIBDEPS; do echo $$x; done | sed -e 's/^ *-L//;t' -e d | uniq`; \
- LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \
-+ [ -e $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX ] && exit 0; \
- LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \
- $${SHAREDCMD} $${SHAREDFLAGS} \
- -o $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX \
-@@ -122,6 +123,7 @@ SYMLINK_SO= \
- done; \
- fi; \
- if [ -n "$$SHLIB_SOVER" ]; then \
-+ [ -e "$$SHLIB$$SHLIB_SUFFIX" ] || \
- ( $(SET_X); rm -f $$SHLIB$$SHLIB_SUFFIX; \
- ln -s $$prev $$SHLIB$$SHLIB_SUFFIX ); \
- fi; \
-diff --git a/crypto/Makefile b/crypto/Makefile
-index 875ea1a..c22b683 100644
---- a/crypto/Makefile
-+++ b/crypto/Makefile
-@@ -85,11 +85,11 @@ testapps:
- @if [ -z "$(THIS)" ]; then $(MAKE) -f $(TOP)/Makefile reflect THIS=$@; fi
-
- subdirs:
-- @target=all; $(RECURSIVE_MAKE)
-+ +@target=all; $(RECURSIVE_MAKE)
-
- files:
- $(PERL) $(TOP)/util/files.pl "CPUID_OBJ=$(CPUID_OBJ)" Makefile >> $(TOP)/MINFO
-- @target=files; $(RECURSIVE_MAKE)
-+ +@target=files; $(RECURSIVE_MAKE)
-
- links:
- @$(PERL) $(TOP)/util/mklink.pl ../include/openssl $(EXHEADER)
-@@ -100,7 +100,7 @@ links:
- # lib: $(LIB): are splitted to avoid end-less loop
- lib: $(LIB)
- @touch lib
--$(LIB): $(LIBOBJ)
-+$(LIB): $(LIBOBJ) | subdirs
- $(AR) $(LIB) $(LIBOBJ)
- test -z "$(FIPSLIBDIR)" || $(AR) $(LIB) $(FIPSLIBDIR)fipscanister.o
- $(RANLIB) $(LIB) || echo Never mind.
-@@ -111,7 +111,7 @@ shared: buildinf.h lib subdirs
- fi
-
- libs:
-- @target=lib; $(RECURSIVE_MAKE)
-+ +@target=lib; $(RECURSIVE_MAKE)
-
- install:
- @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile...
-@@ -120,7 +120,7 @@ install:
- (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \
- chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \
- done;
-- @target=install; $(RECURSIVE_MAKE)
-+ +@target=install; $(RECURSIVE_MAKE)
-
- lint:
- @target=lint; $(RECURSIVE_MAKE)
-diff --git a/engines/Makefile b/engines/Makefile
-index fe8e9ca..a43d21b 100644
---- a/engines/Makefile
-+++ b/engines/Makefile
-@@ -72,7 +72,7 @@ top:
-
- all: lib subdirs
-
--lib: $(LIBOBJ)
-+lib: $(LIBOBJ) | subdirs
- @if [ -n "$(SHARED_LIBS)" ]; then \
- set -e; \
- for l in $(LIBNAMES); do \
-@@ -89,7 +89,7 @@ lib: $(LIBOBJ)
-
- subdirs:
- echo $(EDIRS)
-- @target=all; $(RECURSIVE_MAKE)
-+ +@target=all; $(RECURSIVE_MAKE)
-
- files:
- $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO
-@@ -128,7 +128,7 @@ install:
- mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx ); \
- done; \
- fi
-- @target=install; $(RECURSIVE_MAKE)
-+ +@target=install; $(RECURSIVE_MAKE)
-
- tags:
- ctags $(SRC)
-diff --git a/test/Makefile b/test/Makefile
-index 36506cf..c69af8b 100644
---- a/test/Makefile
-+++ b/test/Makefile
-@@ -145,7 +145,7 @@ install:
- tags:
- ctags $(SRC)
-
--tests: exe apps $(TESTS)
-+tests: exe $(TESTS)
-
- apps:
- @(cd ..; $(MAKE) DIRS=apps all)
-@@ -448,142 +448,142 @@ BUILD_CMD_STATIC=shlib_target=; \
- link_app.$${shlib_target}
-
- $(RSATEST)$(EXE_EXT): $(RSATEST).o $(DLIBCRYPTO)
-- @target=$(RSATEST); $(BUILD_CMD)
-+ +@target=$(RSATEST); $(BUILD_CMD)
-
- $(BNTEST)$(EXE_EXT): $(BNTEST).o $(DLIBCRYPTO)
-- @target=$(BNTEST); $(BUILD_CMD)
-+ +@target=$(BNTEST); $(BUILD_CMD)
-
- $(ECTEST)$(EXE_EXT): $(ECTEST).o $(DLIBCRYPTO)
-- @target=$(ECTEST); $(BUILD_CMD)
-+ +@target=$(ECTEST); $(BUILD_CMD)
-
- $(EXPTEST)$(EXE_EXT): $(EXPTEST).o $(DLIBCRYPTO)
-- @target=$(EXPTEST); $(BUILD_CMD)
-+ +@target=$(EXPTEST); $(BUILD_CMD)
-
- $(IDEATEST)$(EXE_EXT): $(IDEATEST).o $(DLIBCRYPTO)
-- @target=$(IDEATEST); $(BUILD_CMD)
-+ +@target=$(IDEATEST); $(BUILD_CMD)
-
- $(MD2TEST)$(EXE_EXT): $(MD2TEST).o $(DLIBCRYPTO)
-- @target=$(MD2TEST); $(BUILD_CMD)
-+ +@target=$(MD2TEST); $(BUILD_CMD)
-
- $(SHATEST)$(EXE_EXT): $(SHATEST).o $(DLIBCRYPTO)
-- @target=$(SHATEST); $(BUILD_CMD)
-+ +@target=$(SHATEST); $(BUILD_CMD)
-
- $(SHA1TEST)$(EXE_EXT): $(SHA1TEST).o $(DLIBCRYPTO)
-- @target=$(SHA1TEST); $(BUILD_CMD)
-+ +@target=$(SHA1TEST); $(BUILD_CMD)
-
- $(SHA256TEST)$(EXE_EXT): $(SHA256TEST).o $(DLIBCRYPTO)
-- @target=$(SHA256TEST); $(BUILD_CMD)
-+ +@target=$(SHA256TEST); $(BUILD_CMD)
-
- $(SHA512TEST)$(EXE_EXT): $(SHA512TEST).o $(DLIBCRYPTO)
-- @target=$(SHA512TEST); $(BUILD_CMD)
-+ +@target=$(SHA512TEST); $(BUILD_CMD)
-
- $(RMDTEST)$(EXE_EXT): $(RMDTEST).o $(DLIBCRYPTO)
-- @target=$(RMDTEST); $(BUILD_CMD)
-+ +@target=$(RMDTEST); $(BUILD_CMD)
-
- $(MDC2TEST)$(EXE_EXT): $(MDC2TEST).o $(DLIBCRYPTO)
-- @target=$(MDC2TEST); $(BUILD_CMD)
-+ +@target=$(MDC2TEST); $(BUILD_CMD)
-
- $(MD4TEST)$(EXE_EXT): $(MD4TEST).o $(DLIBCRYPTO)
-- @target=$(MD4TEST); $(BUILD_CMD)
-+ +@target=$(MD4TEST); $(BUILD_CMD)
-
- $(MD5TEST)$(EXE_EXT): $(MD5TEST).o $(DLIBCRYPTO)
-- @target=$(MD5TEST); $(BUILD_CMD)
-+ +@target=$(MD5TEST); $(BUILD_CMD)
-
- $(HMACTEST)$(EXE_EXT): $(HMACTEST).o $(DLIBCRYPTO)
-- @target=$(HMACTEST); $(BUILD_CMD)
-+ +@target=$(HMACTEST); $(BUILD_CMD)
-
- $(WPTEST)$(EXE_EXT): $(WPTEST).o $(DLIBCRYPTO)
-- @target=$(WPTEST); $(BUILD_CMD)
-+ +@target=$(WPTEST); $(BUILD_CMD)
-
- $(RC2TEST)$(EXE_EXT): $(RC2TEST).o $(DLIBCRYPTO)
-- @target=$(RC2TEST); $(BUILD_CMD)
-+ +@target=$(RC2TEST); $(BUILD_CMD)
-
- $(BFTEST)$(EXE_EXT): $(BFTEST).o $(DLIBCRYPTO)
-- @target=$(BFTEST); $(BUILD_CMD)
-+ +@target=$(BFTEST); $(BUILD_CMD)
-
- $(CASTTEST)$(EXE_EXT): $(CASTTEST).o $(DLIBCRYPTO)
-- @target=$(CASTTEST); $(BUILD_CMD)
-+ +@target=$(CASTTEST); $(BUILD_CMD)
-
- $(RC4TEST)$(EXE_EXT): $(RC4TEST).o $(DLIBCRYPTO)
-- @target=$(RC4TEST); $(BUILD_CMD)
-+ +@target=$(RC4TEST); $(BUILD_CMD)
-
- $(RC5TEST)$(EXE_EXT): $(RC5TEST).o $(DLIBCRYPTO)
-- @target=$(RC5TEST); $(BUILD_CMD)
-+ +@target=$(RC5TEST); $(BUILD_CMD)
-
- $(DESTEST)$(EXE_EXT): $(DESTEST).o $(DLIBCRYPTO)
-- @target=$(DESTEST); $(BUILD_CMD)
-+ +@target=$(DESTEST); $(BUILD_CMD)
-
- $(RANDTEST)$(EXE_EXT): $(RANDTEST).o $(DLIBCRYPTO)
-- @target=$(RANDTEST); $(BUILD_CMD)
-+ +@target=$(RANDTEST); $(BUILD_CMD)
-
- $(DHTEST)$(EXE_EXT): $(DHTEST).o $(DLIBCRYPTO)
-- @target=$(DHTEST); $(BUILD_CMD)
-+ +@target=$(DHTEST); $(BUILD_CMD)
-
- $(DSATEST)$(EXE_EXT): $(DSATEST).o $(DLIBCRYPTO)
-- @target=$(DSATEST); $(BUILD_CMD)
-+ +@target=$(DSATEST); $(BUILD_CMD)
-
- $(METHTEST)$(EXE_EXT): $(METHTEST).o $(DLIBCRYPTO)
-- @target=$(METHTEST); $(BUILD_CMD)
-+ +@target=$(METHTEST); $(BUILD_CMD)
-
- $(SSLTEST)$(EXE_EXT): $(SSLTEST).o $(DLIBSSL) $(DLIBCRYPTO)
-- @target=$(SSLTEST); $(FIPS_BUILD_CMD)
-+ +@target=$(SSLTEST); $(FIPS_BUILD_CMD)
-
- $(ENGINETEST)$(EXE_EXT): $(ENGINETEST).o $(DLIBCRYPTO)
-- @target=$(ENGINETEST); $(BUILD_CMD)
-+ +@target=$(ENGINETEST); $(BUILD_CMD)
-
- $(EVPTEST)$(EXE_EXT): $(EVPTEST).o $(DLIBCRYPTO)
-- @target=$(EVPTEST); $(BUILD_CMD)
-+ +@target=$(EVPTEST); $(BUILD_CMD)
-
- $(EVPEXTRATEST)$(EXE_EXT): $(EVPEXTRATEST).o $(DLIBCRYPTO)
-- @target=$(EVPEXTRATEST); $(BUILD_CMD)
-+ +@target=$(EVPEXTRATEST); $(BUILD_CMD)
-
- $(ECDSATEST)$(EXE_EXT): $(ECDSATEST).o $(DLIBCRYPTO)
-- @target=$(ECDSATEST); $(BUILD_CMD)
-+ +@target=$(ECDSATEST); $(BUILD_CMD)
-
- $(ECDHTEST)$(EXE_EXT): $(ECDHTEST).o $(DLIBCRYPTO)
-- @target=$(ECDHTEST); $(BUILD_CMD)
-+ +@target=$(ECDHTEST); $(BUILD_CMD)
-
- $(IGETEST)$(EXE_EXT): $(IGETEST).o $(DLIBCRYPTO)
-- @target=$(IGETEST); $(BUILD_CMD)
-+ +@target=$(IGETEST); $(BUILD_CMD)
-
- $(JPAKETEST)$(EXE_EXT): $(JPAKETEST).o $(DLIBCRYPTO)
-- @target=$(JPAKETEST); $(BUILD_CMD)
-+ +@target=$(JPAKETEST); $(BUILD_CMD)
-
- $(ASN1TEST)$(EXE_EXT): $(ASN1TEST).o $(DLIBCRYPTO)
-- @target=$(ASN1TEST); $(BUILD_CMD)
-+ +@target=$(ASN1TEST); $(BUILD_CMD)
-
- $(SRPTEST)$(EXE_EXT): $(SRPTEST).o $(DLIBCRYPTO)
-- @target=$(SRPTEST); $(BUILD_CMD)
-+ +@target=$(SRPTEST); $(BUILD_CMD)
-
- $(V3NAMETEST)$(EXE_EXT): $(V3NAMETEST).o $(DLIBCRYPTO)
-- @target=$(V3NAMETEST); $(BUILD_CMD)
-+ +@target=$(V3NAMETEST); $(BUILD_CMD)
-
- $(HEARTBEATTEST)$(EXE_EXT): $(HEARTBEATTEST).o $(DLIBCRYPTO)
-- @target=$(HEARTBEATTEST); $(BUILD_CMD_STATIC)
-+ +@target=$(HEARTBEATTEST); $(BUILD_CMD_STATIC)
-
- $(CONSTTIMETEST)$(EXE_EXT): $(CONSTTIMETEST).o
-- @target=$(CONSTTIMETEST) $(BUILD_CMD)
-+ +@target=$(CONSTTIMETEST) $(BUILD_CMD)
-
- $(VERIFYEXTRATEST)$(EXE_EXT): $(VERIFYEXTRATEST).o
-- @target=$(VERIFYEXTRATEST) $(BUILD_CMD)
-+ +@target=$(VERIFYEXTRATEST) $(BUILD_CMD)
-
- $(CLIENTHELLOTEST)$(EXE_EXT): $(CLIENTHELLOTEST).o
-- @target=$(CLIENTHELLOTEST) $(BUILD_CMD)
-+ +@target=$(CLIENTHELLOTEST) $(BUILD_CMD)
-
- $(BADDTLSTEST)$(EXE_EXT): $(BADDTLSTEST).o
-- @target=$(BADDTLSTEST) $(BUILD_CMD)
-+ +@target=$(BADDTLSTEST) $(BUILD_CMD)
-
- $(FATALERRTEST)$(EXE_EXT): $(FATALERRTEST).o ssltestlib.o $(DLIBSSL) $(DLIBCRYPTO)
- @target=$(FATALERRTEST); exobj=ssltestlib.o; $(BUILD_CMD)
-
- $(X509TIMETEST)$(EXE_EXT): $(X509TIMETEST).o
-- @target=$(X509TIMETEST) $(BUILD_CMD)
-+ +@target=$(X509TIMETEST) $(BUILD_CMD)
-
- $(SSLV2CONFTEST)$(EXE_EXT): $(SSLV2CONFTEST).o
-- @target=$(SSLV2CONFTEST) $(BUILD_CMD)
-+ +@target=$(SSLV2CONFTEST) $(BUILD_CMD)
-
- $(DTLSTEST)$(EXE_EXT): $(DTLSTEST).o ssltestlib.o $(DLIBSSL) $(DLIBCRYPTO)
-- @target=$(DTLSTEST); exobj=ssltestlib.o; $(BUILD_CMD)
-+ +@target=$(DTLSTEST); exobj=ssltestlib.o; $(BUILD_CMD)
-
- #$(AESTEST).o: $(AESTEST).c
- # $(CC) -c $(CFLAGS) -DINTERMEDIATE_VALUE_KAT -DTRACE_KAT_MCT $(AESTEST).c
-@@ -596,7 +596,7 @@ $(DTLSTEST)$(EXE_EXT): $(DTLSTEST).o ssltestlib.o $(DLIBSSL) $(DLIBCRYPTO)
- # fi
-
- dummytest$(EXE_EXT): dummytest.o $(DLIBCRYPTO)
-- @target=dummytest; $(BUILD_CMD)
-+ +@target=dummytest; $(BUILD_CMD)
-
- # DO NOT DELETE THIS LINE -- make depend depends on it.
-
---
-2.15.1
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch b/meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch
deleted file mode 100644
index ef6d17934d..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch
+++ /dev/null
@@ -1,34 +0,0 @@
-Remove Makefile dependencies for test targets
-
-These are probably here because the executables aren't always built for
-other platforms (e.g. Windows); however we can safely assume they'll
-always be there. None of the other test targets have such dependencies
-and if we don't remove them, make tries to rebuild the executables and
-fails during run-ptest.
-
-Upstream-Status: Inappropriate [config]
-
-Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>
-
-Index: openssl-1.0.2/test/Makefile
-===================================================================
---- openssl-1.0.2.orig/test/Makefile
-+++ openssl-1.0.2/test/Makefile
-@@ -330,7 +330,7 @@ test_cms: ../apps/openssl$(EXE_EXT) cms-
- @echo "CMS consistency test"
- $(PERL) cms-test.pl
-
--test_srp: $(SRPTEST)$(EXE_EXT)
-+test_srp:
- @echo "Test SRP"
- ../util/shlib_wrap.sh ./srptest
-
-@@ -342,7 +342,7 @@ test_v3name: $(V3NAMETEST)$(EXE_EXT)
- @echo "Test X509v3_check_*"
- ../util/shlib_wrap.sh ./$(V3NAMETEST)
-
--test_heartbeat: $(HEARTBEATTEST)$(EXE_EXT)
-+test_heartbeat:
- ../util/shlib_wrap.sh ./$(HEARTBEATTEST)
-
- test_constant_time: $(CONSTTIMETEST)$(EXE_EXT)
diff --git a/meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch b/meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch
deleted file mode 100644
index 4202e61d1e..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch
+++ /dev/null
@@ -1,248 +0,0 @@
-Additional Makefile dependencies removal for test targets
-
-Removing the dependency check for test targets as these tests are
-causing a number of failures and "noise" during ptest execution.
-
-Upstream-Status: Inappropriate [config]
-
-Signed-off-by: Maxin B. John <maxin.john@intel.com>
-
-diff -Naur openssl-1.0.2d-orig/test/Makefile openssl-1.0.2d/test/Makefile
---- openssl-1.0.2d-orig/test/Makefile 2015-09-28 12:50:41.530022979 +0300
-+++ openssl-1.0.2d/test/Makefile 2015-09-28 12:57:45.930717240 +0300
-@@ -155,67 +155,67 @@
- ( $(MAKE) $$i && echo "PASS: $$i" ) || echo "FAIL: $$i"; \
- done)
-
--test_evp: $(EVPTEST)$(EXE_EXT) evptests.txt
-+test_evp:
- ../util/shlib_wrap.sh ./$(EVPTEST) evptests.txt
-
--test_evp_extra: $(EVPEXTRATEST)$(EXE_EXT)
-+test_evp_extra:
- ../util/shlib_wrap.sh ./$(EVPEXTRATEST)
-
--test_des: $(DESTEST)$(EXE_EXT)
-+test_des:
- ../util/shlib_wrap.sh ./$(DESTEST)
-
--test_idea: $(IDEATEST)$(EXE_EXT)
-+test_idea:
- ../util/shlib_wrap.sh ./$(IDEATEST)
-
--test_sha: $(SHATEST)$(EXE_EXT) $(SHA1TEST)$(EXE_EXT) $(SHA256TEST)$(EXE_EXT) $(SHA512TEST)$(EXE_EXT)
-+test_sha:
- ../util/shlib_wrap.sh ./$(SHATEST)
- ../util/shlib_wrap.sh ./$(SHA1TEST)
- ../util/shlib_wrap.sh ./$(SHA256TEST)
- ../util/shlib_wrap.sh ./$(SHA512TEST)
-
--test_mdc2: $(MDC2TEST)$(EXE_EXT)
-+test_mdc2:
- ../util/shlib_wrap.sh ./$(MDC2TEST)
-
--test_md5: $(MD5TEST)$(EXE_EXT)
-+test_md5:
- ../util/shlib_wrap.sh ./$(MD5TEST)
-
--test_md4: $(MD4TEST)$(EXE_EXT)
-+test_md4:
- ../util/shlib_wrap.sh ./$(MD4TEST)
-
--test_hmac: $(HMACTEST)$(EXE_EXT)
-+test_hmac:
- ../util/shlib_wrap.sh ./$(HMACTEST)
-
--test_wp: $(WPTEST)$(EXE_EXT)
-+test_wp:
- ../util/shlib_wrap.sh ./$(WPTEST)
-
--test_md2: $(MD2TEST)$(EXE_EXT)
-+test_md2:
- ../util/shlib_wrap.sh ./$(MD2TEST)
-
--test_rmd: $(RMDTEST)$(EXE_EXT)
-+test_rmd:
- ../util/shlib_wrap.sh ./$(RMDTEST)
-
--test_bf: $(BFTEST)$(EXE_EXT)
-+test_bf:
- ../util/shlib_wrap.sh ./$(BFTEST)
-
--test_cast: $(CASTTEST)$(EXE_EXT)
-+test_cast:
- ../util/shlib_wrap.sh ./$(CASTTEST)
-
--test_rc2: $(RC2TEST)$(EXE_EXT)
-+test_rc2:
- ../util/shlib_wrap.sh ./$(RC2TEST)
-
--test_rc4: $(RC4TEST)$(EXE_EXT)
-+test_rc4:
- ../util/shlib_wrap.sh ./$(RC4TEST)
-
--test_rc5: $(RC5TEST)$(EXE_EXT)
-+test_rc5:
- ../util/shlib_wrap.sh ./$(RC5TEST)
-
--test_rand: $(RANDTEST)$(EXE_EXT)
-+test_rand:
- ../util/shlib_wrap.sh ./$(RANDTEST)
-
--test_enc: ../apps/openssl$(EXE_EXT) testenc
-+test_enc:
- @sh ./testenc
-
--test_x509: ../apps/openssl$(EXE_EXT) tx509 testx509.pem v3-cert1.pem v3-cert2.pem
-+test_x509:
- echo test normal x509v1 certificate
- sh ./tx509 2>/dev/null
- echo test first x509v3 certificate
-@@ -223,25 +223,25 @@
- echo test second x509v3 certificate
- sh ./tx509 v3-cert2.pem 2>/dev/null
-
--test_rsa: ../apps/openssl$(EXE_EXT) trsa testrsa.pem
-+test_rsa:
- @sh ./trsa 2>/dev/null
- ../util/shlib_wrap.sh ./$(RSATEST)
-
--test_crl: ../apps/openssl$(EXE_EXT) tcrl testcrl.pem
-+test_crl:
- @sh ./tcrl 2>/dev/null
-
--test_sid: ../apps/openssl$(EXE_EXT) tsid testsid.pem
-+test_sid:
- @sh ./tsid 2>/dev/null
-
--test_req: ../apps/openssl$(EXE_EXT) treq testreq.pem testreq2.pem
-+test_req:
- @sh ./treq 2>/dev/null
- @sh ./treq testreq2.pem 2>/dev/null
-
--test_pkcs7: ../apps/openssl$(EXE_EXT) tpkcs7 tpkcs7d testp7.pem pkcs7-1.pem
-+test_pkcs7:
- @sh ./tpkcs7 2>/dev/null
- @sh ./tpkcs7d 2>/dev/null
-
--test_bn: $(BNTEST)$(EXE_EXT) $(EXPTEST)$(EXE_EXT) bctest
-+test_bn:
- @echo starting big number library test, could take a while...
- @../util/shlib_wrap.sh ./$(BNTEST) >tmp.bntest
- @echo quit >>tmp.bntest
-@@ -250,33 +250,33 @@
- @echo 'test a^b%c implementations'
- ../util/shlib_wrap.sh ./$(EXPTEST)
-
--test_ec: $(ECTEST)$(EXE_EXT)
-+test_ec:
- @echo 'test elliptic curves'
- ../util/shlib_wrap.sh ./$(ECTEST)
-
--test_ecdsa: $(ECDSATEST)$(EXE_EXT)
-+test_ecdsa:
- @echo 'test ecdsa'
- ../util/shlib_wrap.sh ./$(ECDSATEST)
-
--test_ecdh: $(ECDHTEST)$(EXE_EXT)
-+test_ecdh:
- @echo 'test ecdh'
- ../util/shlib_wrap.sh ./$(ECDHTEST)
-
--test_verify: ../apps/openssl$(EXE_EXT)
-+test_verify:
- @echo "The following command should have some OK's and some failures"
- @echo "There are definitly a few expired certificates"
- ../util/shlib_wrap.sh ../apps/openssl verify -CApath ../certs/demo ../certs/demo/*.pem
-
--test_dh: $(DHTEST)$(EXE_EXT)
-+test_dh:
- @echo "Generate a set of DH parameters"
- ../util/shlib_wrap.sh ./$(DHTEST)
-
--test_dsa: $(DSATEST)$(EXE_EXT)
-+test_dsa:
- @echo "Generate a set of DSA parameters"
- ../util/shlib_wrap.sh ./$(DSATEST)
- ../util/shlib_wrap.sh ./$(DSATEST) -app2_1
-
--test_gen testreq.pem: ../apps/openssl$(EXE_EXT) testgen test.cnf
-+test_gen testreq.pem:
- @echo "Generate and verify a certificate request"
- @sh ./testgen
-
-@@ -288,13 +288,11 @@
- @cat certCA.ss certU.ss > intP1.ss
- @cat certCA.ss certU.ss certP1.ss > intP2.ss
-
--test_engine: $(ENGINETEST)$(EXE_EXT)
-+test_engine:
- @echo "Manipulate the ENGINE structures"
- ../util/shlib_wrap.sh ./$(ENGINETEST)
-
--test_ssl: keyU.ss certU.ss certCA.ss certP1.ss keyP1.ss certP2.ss keyP2.ss \
-- intP1.ss intP2.ss $(SSLTEST)$(EXE_EXT) testssl testsslproxy \
-- ../apps/server2.pem serverinfo.pem
-+test_ssl:
- @echo "test SSL protocol"
- @if [ -n "$(FIPSCANLIB)" ]; then \
- sh ./testfipsssl keyU.ss certU.ss certCA.ss; \
-@@ -304,7 +302,7 @@
- @sh ./testsslproxy keyP1.ss certP1.ss intP1.ss
- @sh ./testsslproxy keyP2.ss certP2.ss intP2.ss
-
--test_ca: ../apps/openssl$(EXE_EXT) testca CAss.cnf Uss.cnf
-+test_ca:
- @if ../util/shlib_wrap.sh ../apps/openssl no-rsa; then \
- echo "skipping CA.sh test -- requires RSA"; \
- else \
-@@ -312,11 +310,11 @@
- sh ./testca; \
- fi
-
--test_aes: #$(AESTEST)
-+test_aes:
- # @echo "test Rijndael"
- # ../util/shlib_wrap.sh ./$(AESTEST)
-
--test_tsa: ../apps/openssl$(EXE_EXT) testtsa CAtsa.cnf ../util/shlib_wrap.sh
-+test_tsa:
- @if ../util/shlib_wrap.sh ../apps/openssl no-rsa; then \
- echo "skipping testtsa test -- requires RSA"; \
- else \
-@@ -331,7 +329,7 @@
- @echo "Test JPAKE"
- ../util/shlib_wrap.sh ./$(JPAKETEST)
-
--test_cms: ../apps/openssl$(EXE_EXT) cms-test.pl smcont.txt
-+test_cms:
- @echo "CMS consistency test"
- $(PERL) cms-test.pl
-
-@@ -339,22 +337,22 @@
- @echo "Test SRP"
- ../util/shlib_wrap.sh ./srptest
-
--test_ocsp: ../apps/openssl$(EXE_EXT) tocsp
-+test_ocsp:
- @echo "Test OCSP"
- @sh ./tocsp
-
--test_v3name: $(V3NAMETEST)$(EXE_EXT)
-+test_v3name:
- @echo "Test X509v3_check_*"
- ../util/shlib_wrap.sh ./$(V3NAMETEST)
-
- test_heartbeat:
- ../util/shlib_wrap.sh ./$(HEARTBEATTEST)
-
--test_constant_time: $(CONSTTIMETEST)$(EXE_EXT)
-+test_constant_time:
- @echo "Test constant time utilites"
- ../util/shlib_wrap.sh ./$(CONSTTIMETEST)
-
--test_verify_extra: $(VERIFYEXTRATEST)$(EXE_EXT)
-+test_verify_extra:
- @echo $(START) $@
- ../util/shlib_wrap.sh ./$(VERIFYEXTRATEST)
-
diff --git a/meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch b/meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch
deleted file mode 100644
index 2803cb0393..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch
+++ /dev/null
@@ -1,20 +0,0 @@
-Allow passing custom c-flags to mkbuildinf.pl in order to pass
-flags without any build host references
-
-Upstream-Status: Inappropriate [OE specific]
-
-Signed-off-by: Juro Bystricky <juro.bystricky@intel.com>
-
---- Makefile 2018-03-06 14:50:18.342138147 -0800
-+++ Makefile 2018-03-06 15:24:04.794239071 -0800
---- a/crypto/Makefile
-+++ b/crypto/Makefile
-@@ -55,7 +55,7 @@
- all: shared
-
- buildinf.h: ../Makefile
-- $(PERL) $(TOP)/util/mkbuildinf.pl "$(CC) $(CFLAGS)" "$(PLATFORM)" >buildinf.h
-+ $(PERL) $(TOP)/util/mkbuildinf.pl "$(CC_INFO)" "$(PLATFORM)" >buildinf.h
-
- x86cpuid.s: x86cpuid.pl perlasm/x86asm.pl
- $(PERL) x86cpuid.pl $(PERLASM_SCHEME) $(CFLAGS) $(PROCESSOR) > $@
diff --git a/meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch b/meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch
deleted file mode 100644
index b556731219..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch
+++ /dev/null
@@ -1,21 +0,0 @@
-If SOURCE_DATE_EPOCH is present in the environment, use it as build date.
-Also make sure to use UTC time.
-
-Upstream-Status: Backport [ https://github.com/openssl/openssl/blob/master/util/mkbuildinf.pl ]
-
-Signed-off-by: Juro Bystricky <juro.bystricky@intel.com>
-
---- mkbuildinf.pl 2018-03-06 14:20:09.438048058 -0800
-+++ mkbuildinf.pl 2018-03-06 14:19:20.722045632 -0800
---- a/util/mkbuildinf.pl
-+++ b/util/mkbuildinf.pl
-@@ -3,7 +3,8 @@
- my ($cflags, $platform) = @ARGV;
-
- $cflags = "compiler: $cflags";
--$date = localtime();
-+my $date = gmtime($ENV{'SOURCE_DATE_EPOCH'} || time()) . " UTC";
-+
- print <<"END_OUTPUT";
- #ifndef MK1MF_BUILD
- /* auto-generated by util/mkbuildinf.pl for crypto/cversion.c */
diff --git a/meta/recipes-connectivity/openssl/openssl10/run-ptest b/meta/recipes-connectivity/openssl/openssl10/run-ptest
deleted file mode 100755
index 3b20fce1ee..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/run-ptest
+++ /dev/null
@@ -1,2 +0,0 @@
-#!/bin/sh
-make -k runtest
diff --git a/meta/recipes-connectivity/openssl/openssl10/shared-libs.patch b/meta/recipes-connectivity/openssl/openssl10/shared-libs.patch
deleted file mode 100644
index a7ca0a3078..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10/shared-libs.patch
+++ /dev/null
@@ -1,41 +0,0 @@
-Upstream-Status: Inappropriate [configuration]
-
-Index: openssl-1.0.1e/crypto/Makefile
-===================================================================
---- openssl-1.0.1e.orig/crypto/Makefile
-+++ openssl-1.0.1e/crypto/Makefile
-@@ -108,7 +108,7 @@ $(LIB): $(LIBOBJ)
-
- shared: buildinf.h lib subdirs
- if [ -n "$(SHARED_LIBS)" ]; then \
-- (cd ..; $(MAKE) $(SHARED_LIB)); \
-+ (cd ..; $(MAKE) -e $(SHARED_LIB)); \
- fi
-
- libs:
-Index: openssl-1.0.1e/Makefile.org
-===================================================================
---- openssl-1.0.1e.orig/Makefile.org
-+++ openssl-1.0.1e/Makefile.org
-@@ -310,7 +310,7 @@ libcrypto$(SHLIB_EXT): libcrypto.a fips_
-
- libssl$(SHLIB_EXT): libcrypto$(SHLIB_EXT) libssl.a
- @if [ "$(SHLIB_TARGET)" != "" ]; then \
-- $(MAKE) SHLIBDIRS=ssl SHLIBDEPS='-lcrypto' build-shared; \
-+ $(MAKE) -e SHLIBDIRS=ssl SHLIBDEPS='-lcrypto' build-shared; \
- else \
- echo "There's no support for shared libraries on this platform" >&2; \
- exit 1; \
-Index: openssl-1.0.1e/ssl/Makefile
-===================================================================
---- openssl-1.0.1e.orig/ssl/Makefile
-+++ openssl-1.0.1e/ssl/Makefile
-@@ -62,7 +62,7 @@ lib: $(LIBOBJ)
-
- shared: lib
- if [ -n "$(SHARED_LIBS)" ]; then \
-- (cd ..; $(MAKE) $(SHARED_LIB)); \
-+ (cd ..; $(MAKE) -e $(SHARED_LIB)); \
- fi
-
- files:
diff --git a/meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb b/meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb
deleted file mode 100644
index eacdf8b86e..0000000000
--- a/meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb
+++ /dev/null
@@ -1,360 +0,0 @@
-SUMMARY = "Secure Socket Layer"
-DESCRIPTION = "Secure Socket Layer (SSL) binary and related cryptographic tools."
-HOMEPAGE = "http://www.openssl.org/"
-BUGTRACKER = "http://www.openssl.org/news/vulnerabilities.html"
-SECTION = "libs/network"
-
-# "openssl | SSLeay" dual license
-LICENSE = "openssl"
-LIC_FILES_CHKSUM = "file://LICENSE;md5=f475368924827d06d4b416111c8bdb77"
-
-DEPENDS = "hostperl-runtime-native"
-DEPENDS_append_class-target = " openssl-native"
-
-SRC_URI = "http://www.openssl.org/source/openssl-${PV}.tar.gz \
- file://run-ptest \
- file://openssl-c_rehash.sh \
- file://configure-targets.patch \
- file://shared-libs.patch \
- file://oe-ldflags.patch \
- file://engines-install-in-libdir-ssl.patch \
- file://debian1.0.2/block_diginotar.patch \
- file://debian1.0.2/block_digicert_malaysia.patch \
- file://debian/c_rehash-compat.patch \
- file://debian/debian-targets.patch \
- file://debian/man-dir.patch \
- file://debian/man-section.patch \
- file://debian/no-rpath.patch \
- file://debian/no-symbolic.patch \
- file://debian/pic.patch \
- file://debian1.0.2/version-script.patch \
- file://debian1.0.2/soname.patch \
- file://openssl_fix_for_x32.patch \
- file://openssl-fix-des.pod-error.patch \
- file://Makefiles-ptest.patch \
- file://ptest-deps.patch \
- file://ptest_makefile_deps.patch \
- file://configure-musl-target.patch \
- file://parallel.patch \
- file://Use-SHA256-not-MD5-as-default-digest.patch \
- file://0001-Fix-build-with-clang-using-external-assembler.patch \
- file://0001-openssl-force-soft-link-to-avoid-rare-race.patch \
- file://0001-allow-manpages-to-be-disabled.patch \
- file://0001-Fix-BN_LLONG-breakage.patch \
- file://0001-Fix-DES_LONG-breakage.patch \
- "
-
-SRC_URI_append_class-target = " \
- file://reproducible-cflags.patch \
- file://reproducible-mkbuildinf.patch \
- "
-
-SRC_URI_append_class-nativesdk = " \
- file://environment.d-openssl.sh \
- "
-
-SRC_URI[md5sum] = "7563e1ce046cb21948eeb6ba1a0eb71c"
-SRC_URI[sha256sum] = "5744cfcbcec2b1b48629f7354203bc1e5e9b5466998bbccc5b5fcde3b18eb684"
-
-S = "${WORKDIR}/openssl-${PV}"
-
-UPSTREAM_CHECK_REGEX = "openssl-(?P<pver>1\.0.+)\.tar"
-
-inherit pkgconfig siteinfo multilib_header ptest manpages
-
-PACKAGECONFIG ?= "cryptodev-linux"
-PACKAGECONFIG_class-native = ""
-PACKAGECONFIG_class-nativesdk = ""
-
-PACKAGECONFIG[cryptodev-linux] = "-DHAVE_CRYPTODEV -DUSE_CRYPTODEV_DIGESTS,,cryptodev-linux"
-PACKAGECONFIG[manpages] = ",,,"
-PACKAGECONFIG[perl] = ",,,"
-
-# Remove this to enable SSLv3. SSLv3 is defaulted to disabled due to the POODLE
-# vulnerability
-EXTRA_OECONF = "no-ssl3"
-
-EXTRA_OEMAKE = "${@bb.utils.contains('PACKAGECONFIG', 'manpages', '', 'OE_DISABLE_MANPAGES=1', d)}"
-
-export OE_LDFLAGS = "${LDFLAGS}"
-
-TERMIO ?= "-DTERMIO"
-TERMIO_libc-musl = "-DTERMIOS"
-EXTRA_OECONF_append_libc-musl_powerpc64 = " no-asm"
-
-CFLAG = "${@oe.utils.conditional('SITEINFO_ENDIANNESS', 'le', '-DL_ENDIAN', '-DB_ENDIAN', d)} \
- ${TERMIO} ${CFLAGS} -Wall"
-
-# Avoid binaries being marked as requiring an executable stack since they don't
-# (and it causes issues with SELinux)
-CFLAG += "-Wa,--noexecstack"
-
-CFLAG_append_class-native = " -fPIC"
-
-do_configure () {
- # The crypto_use_bigint patch means that perl's bignum module needs to be
- # installed, but some distributions (for example Fedora 23) don't ship it by
- # default. As the resulting error is very misleading check for bignum before
- # building.
- if ! perl -Mbigint -e true; then
- bbfatal "The perl module 'bignum' was not found but this is required to build openssl. Please install this module (often packaged as perl-bignum) and re-run bitbake."
- fi
-
- ln -sf apps/openssl.pod crypto/crypto.pod ssl/ssl.pod doc/
-
- os=${HOST_OS}
- case $os in
- linux-gnueabi |\
- linux-gnuspe |\
- linux-musleabi |\
- linux-muslspe |\
- linux-musl )
- os=linux
- ;;
- *)
- ;;
- esac
- target="$os-${HOST_ARCH}"
- case $target in
- linux-arm)
- target=linux-armv4
- ;;
- linux-armeb)
- target=linux-elf-armeb
- ;;
- linux-aarch64*)
- target=linux-aarch64
- ;;
- linux-sh3)
- target=debian-sh3
- ;;
- linux-sh4)
- target=debian-sh4
- ;;
- linux-i486)
- target=debian-i386-i486
- ;;
- linux-i586 | linux-viac3)
- target=debian-i386-i586
- ;;
- linux-i686)
- target=debian-i386-i686/cmov
- ;;
- linux-gnux32-x86_64 | linux-muslx32-x86_64 )
- target=linux-x32
- ;;
- linux-gnu64-x86_64)
- target=linux-x86_64
- ;;
- linux-gnun32-mips*el)
- target=debian-mipsn32el
- ;;
- linux-gnun32-mips*)
- target=debian-mipsn32
- ;;
- linux-mips*64*el)
- target=debian-mips64el
- ;;
- linux-mips*64*)
- target=debian-mips64
- ;;
- linux-mips*el)
- target=debian-mipsel
- ;;
- linux-mips*)
- target=debian-mips
- ;;
- linux-microblaze* | linux-nios2* | linux-gnu*ilp32** | linux-arc*)
- target=linux-generic32
- ;;
- linux-powerpc)
- target=linux-ppc
- ;;
- linux-powerpc64)
- target=linux-ppc64
- ;;
- linux-riscv32)
- target=linux-generic32
- ;;
- linux-riscv64)
- target=linux-generic64
- ;;
- linux-sparc | linux-supersparc)
- target=linux-sparcv8
- ;;
- esac
-
- # inject machine-specific flags
- sed -i -e "s|^\(\"$target\",\s*\"[^:]\+\):\([^:]\+\)|\1:${CFLAG}|g" Configure
-
- useprefix=${prefix}
- if [ "x$useprefix" = "x" ]; then
- useprefix=/
- fi
- libdirleaf="$( echo "${libdir}" | sed "s:^$useprefix/*::" )"
- perl ./Configure ${EXTRA_OECONF} ${PACKAGECONFIG_CONFARGS} shared --prefix=$useprefix --openssldir=${libdir}/ssl --libdir=$libdirleaf $target
-}
-
-do_compile () {
- oe_runmake depend
- oe_runmake
-}
-
-do_compile_class-target () {
- sed -i 's/\((OPENSSL=\)".*"/\1"openssl"/' Makefile
- oe_runmake depend
- cc_sanitized=$(echo "${CC} ${CFLAG}" | sed -e 's,--sysroot=${STAGING_DIR_TARGET},,g' -e 's|${DEBUG_PREFIX_MAP}||g' -e 's/[ \t]\+/ /g')
- oe_runmake CC_INFO="$cc_sanitized"
-}
-
-do_compile_ptest () {
- oe_runmake buildtest
-}
-
-do_install () {
- # Create ${D}/${prefix} to fix parallel issues
- mkdir -p ${D}/${prefix}/
-
- oe_runmake INSTALL_PREFIX="${D}" MANDIR="${mandir}" install
-
- oe_libinstall -so libcrypto ${D}${libdir}
- oe_libinstall -so libssl ${D}${libdir}
-
- install -d ${D}${includedir}
- cp --dereference -R include/openssl ${D}${includedir}
-
- oe_multilib_header openssl/opensslconf.h
-
- install -Dm 0755 ${WORKDIR}/openssl-c_rehash.sh ${D}${bindir}/c_rehash
- sed -i -e 's,/etc/openssl,${sysconfdir}/ssl,g' ${D}${bindir}/c_rehash
-
- if [ "${@bb.utils.filter('PACKAGECONFIG', 'perl', d)}" ]; then
- sed -i -e '1s,.*,#!${bindir}/env perl,' ${D}${libdir}/ssl/misc/CA.pl
- sed -i -e '1s,.*,#!${bindir}/env perl,' ${D}${libdir}/ssl/misc/tsget
- else
- rm -f ${D}${libdir}/ssl/misc/CA.pl ${D}${libdir}/ssl/misc/tsget
- fi
-
- # Create SSL structure for packages such as ca-certificates which
- # contain hard-coded paths to /etc/ssl. Debian does the same.
- install -d ${D}${sysconfdir}/ssl
- mv ${D}${libdir}/ssl/certs \
- ${D}${libdir}/ssl/private \
- ${D}${libdir}/ssl/openssl.cnf \
- ${D}${sysconfdir}/ssl/
-
- # Although absolute symlinks would be OK for the target, they become
- # invalid if native or nativesdk are relocated from sstate.
- ln -sf ${@oe.path.relative('${libdir}/ssl', '${sysconfdir}/ssl/certs')} ${D}${libdir}/ssl/certs
- ln -sf ${@oe.path.relative('${libdir}/ssl', '${sysconfdir}/ssl/private')} ${D}${libdir}/ssl/private
- ln -sf ${@oe.path.relative('${libdir}/ssl', '${sysconfdir}/ssl/openssl.cnf')} ${D}${libdir}/ssl/openssl.cnf
-
- # Rename man pages to prefix openssl10-*
- for f in `find ${D}${mandir} -type f`; do
- mv $f $(dirname $f)/openssl10-$(basename $f)
- done
- for f in `find ${D}${mandir} -type l`; do
- ln_f=`readlink $f`
- rm -f $f
- ln -s openssl10-$ln_f $(dirname $f)/openssl10-$(basename $f)
- done
-}
-
-do_install_append_class-native () {
- create_wrapper ${D}${bindir}/openssl \
- OPENSSL_CONF=${libdir}/ssl/openssl.cnf \
- SSL_CERT_DIR=${libdir}/ssl/certs \
- SSL_CERT_FILE=${libdir}/ssl/cert.pem \
- OPENSSL_ENGINES=${libdir}/ssl/engines
-}
-
-do_install_append_class-nativesdk () {
- mkdir -p ${D}${SDKPATHNATIVE}/environment-setup.d
- install -m 644 ${WORKDIR}/environment.d-openssl.sh ${D}${SDKPATHNATIVE}/environment-setup.d/openssl.sh
-}
-
-do_install_ptest () {
- cp -r -L Makefile.org Makefile test ${D}${PTEST_PATH}
-
- # Replace the path to native perl with the path to target perl
- sed -i 's,^PERL=.*,PERL=${bindir}/perl,' ${D}${PTEST_PATH}/Makefile
-
- cp Configure config e_os.h ${D}${PTEST_PATH}
- cp -r -L include ${D}${PTEST_PATH}
- ln -sf ${libdir}/libcrypto.a ${D}${PTEST_PATH}
- ln -sf ${libdir}/libssl.a ${D}${PTEST_PATH}
- mkdir -p ${D}${PTEST_PATH}/crypto
- cp crypto/constant_time_locl.h ${D}${PTEST_PATH}/crypto
- cp -r certs ${D}${PTEST_PATH}
- mkdir -p ${D}${PTEST_PATH}/apps
- ln -sf ${libdir}/ssl/misc/CA.sh ${D}${PTEST_PATH}/apps
- ln -sf ${sysconfdir}/ssl/openssl.cnf ${D}${PTEST_PATH}/apps
- ln -sf ${bindir}/openssl ${D}${PTEST_PATH}/apps
- cp apps/server.pem ${D}${PTEST_PATH}/apps
- cp apps/server2.pem ${D}${PTEST_PATH}/apps
- mkdir -p ${D}${PTEST_PATH}/util
- install util/opensslwrap.sh ${D}${PTEST_PATH}/util
- install util/shlib_wrap.sh ${D}${PTEST_PATH}/util
- # Time stamps are relevant for "make alltests", otherwise
- # make may try to recompile binaries. Not only must the
- # binary files be newer than the sources, they also must
- # be more recent than the header files in /usr/include.
- #
- # Using "cp -a" is not sufficient, because do_install
- # does not preserve the original time stamps.
- #
- # So instead of using the original file stamps, we set
- # the current time for all files. Binaries will get
- # modified again later when stripping them, but that's okay.
- touch ${D}${PTEST_PATH}
- find ${D}${PTEST_PATH} -type f -print0 | xargs --verbose -0 touch -r ${D}${PTEST_PATH}
-
- # exclude binary files or the package won't install
- for d in ssltest_old v3ext x509aux; do
- rm -rf ${D}${libdir}/${BPN}/ptest/test/$d
- done
-
- # Remove build host references
- sed -i \
- -e 's,--sysroot=${STAGING_DIR_TARGET},,g' \
- -e 's|${DEBUG_PREFIX_MAP}||g' \
- ${D}${PTEST_PATH}/Makefile ${D}${PTEST_PATH}/Configure
-}
-
-# Add the openssl.cnf file to the openssl-conf package. Make the libcrypto
-# package RRECOMMENDS on this package. This will enable the configuration
-# file to be installed for both the base openssl package and the libcrypto
-# package since the base openssl package depends on the libcrypto package.
-
-PACKAGES =+ "libcrypto10 libssl10 openssl10-conf ${PN}-engines ${PN}-misc"
-
-FILES_libcrypto10 = "${libdir}/libcrypto${SOLIBS}"
-FILES_libssl10 = "${libdir}/libssl${SOLIBS}"
-FILES_openssl10-conf = "${sysconfdir}/ssl/openssl.cnf"
-FILES_${PN}-engines = "${libdir}/ssl/engines/*.so ${libdir}/engines"
-FILES_${PN}-misc = "${libdir}/ssl/misc"
-FILES_${PN} =+ "${libdir}/ssl/*"
-FILES_${PN}_append_class-nativesdk = " ${SDKPATHNATIVE}/environment-setup.d/openssl.sh"
-
-CONFFILES_openssl10-conf = "${sysconfdir}/ssl/openssl.cnf"
-
-RRECOMMENDS_libcrypto10 += "openssl10-conf"
-RDEPENDS_${PN}-misc = "${@bb.utils.filter('PACKAGECONFIG', 'perl', d)}"
-RDEPENDS_${PN}-ptest += "${PN}-misc make perl perl-module-filehandle bc"
-
-BBCLASSEXTEND = "native nativesdk"
-PACKAGE_PREPROCESS_FUNCS += "openssl_package_preprocess"
-
-# openssl 1.0 development files and executable binaries clash with openssl 1.1
-# files when installed into target rootfs. So we don't put them into
-# packages, but they continue to be provided via target sysroot for
-# cross-compilation on the host, if some software still depends on openssl 1.0.
-openssl_package_preprocess () {
- for file in `find ${PKGD} -name *.h -o -name *.pc -o -name *.so`; do
- rm $file
- done
- rm ${PKGD}${bindir}/openssl
- rm ${PKGD}${bindir}/c_rehash
- rmdir ${PKGD}${bindir}
-
-}
diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb b/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb
index 4a626a4fcd..d01eec2ded 100644
--- a/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb
+++ b/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb
@@ -206,10 +206,6 @@ RRECOMMENDS_libcrypto += "openssl-conf"
RDEPENDS_${PN}-misc = "perl"
RDEPENDS_${PN}-ptest += "openssl-bin perl perl-modules bash"
-RPROVIDES_openssl-conf = "openssl10-conf"
-RREPLACES_openssl-conf = "openssl10-conf"
-RCONFLICTS_openssl-conf = "openssl10-conf"
-
BBCLASSEXTEND = "native nativesdk"
inherit multilib_script
--
2.17.1
^ permalink raw reply related [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-03-08 18:49 [meta-oe][RFC][PATCH] Remove openssl10 Adrian Bunk
@ 2019-03-08 19:15 ` Alexander Kanavin
2019-03-08 19:38 ` Adrian Bunk
0 siblings, 1 reply; 13+ messages in thread
From: Alexander Kanavin @ 2019-03-08 19:15 UTC (permalink / raw)
To: Adrian Bunk; +Cc: OE-core
This is premature. Plenty of recipes outside of oe-core still rely on
openssl10, it remains fully supported for security fixes by upstream
until the end of the year, and beyond that we might cherry-pick work
done by LTS enterprise distros.
Normally I *love* removing obsolete stuff from oe-core, but not in this case :)
Alex
On Fri, 8 Mar 2019 at 21:49, Adrian Bunk <bunk@stusta.de> wrote:
>
> OpenSSL 1.0 has been replaced by 1.1, and it would be harder
> to security-support after the upstream EOL at the end of 2019.
>
> Signed-off-by: Adrian Bunk <bunk@stusta.de>
> ---
> meta/conf/distro/include/maintainers.inc | 1 -
> meta/conf/distro/include/no-static-libs.inc | 3 -
> .../0001-Fix-BN_LLONG-breakage.patch | 33 -
> .../0001-Fix-DES_LONG-breakage.patch | 35 -
> ...-with-clang-using-external-assembler.patch | 45 -
> .../0001-allow-manpages-to-be-disabled.patch | 31 -
> ...l-force-soft-link-to-avoid-rare-race.patch | 46 -
> .../openssl/openssl10/Makefiles-ptest.patch | 89 -
> ...Use-SHA256-not-MD5-as-default-digest.patch | 69 -
> .../openssl10/configure-musl-target.patch | 25 -
> .../openssl/openssl10/configure-targets.patch | 35 -
> .../openssl10/debian/c_rehash-compat.patch | 71 -
> .../openssl10/debian/debian-targets.patch | 73 -
> .../openssl/openssl10/debian/man-dir.patch | 15 -
> .../openssl10/debian/man-section.patch | 34 -
> .../openssl/openssl10/debian/no-rpath.patch | 15 -
> .../openssl10/debian/no-symbolic.patch | 15 -
> .../openssl/openssl10/debian/pic.patch | 177 -
> .../debian1.0.2/block_digicert_malaysia.patch | 29 -
> .../debian1.0.2/block_diginotar.patch | 68 -
> .../openssl10/debian1.0.2/soname.patch | 15 -
> .../debian1.0.2/version-script.patch | 4658 -----------------
> .../engines-install-in-libdir-ssl.patch | 64 -
> .../openssl/openssl10/oe-ldflags.patch | 24 -
> .../openssl/openssl10/openssl-c_rehash.sh | 222 -
> .../openssl10/openssl-fix-des.pod-error.patch | 19 -
> .../openssl10/openssl_fix_for_x32.patch | 39 -
> .../openssl/openssl10/parallel.patch | 368 --
> .../openssl/openssl10/ptest-deps.patch | 34 -
> .../openssl10/ptest_makefile_deps.patch | 248 -
> .../openssl10/reproducible-cflags.patch | 20 -
> .../openssl10/reproducible-mkbuildinf.patch | 21 -
> .../openssl/openssl10/run-ptest | 2 -
> .../openssl/openssl10/shared-libs.patch | 41 -
> .../openssl/openssl10_1.0.2q.bb | 360 --
> .../openssl/openssl_1.1.1a.bb | 4 -
> 36 files changed, 7048 deletions(-)
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/configure-targets.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian/pic.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/parallel.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch
> delete mode 100755 meta/recipes-connectivity/openssl/openssl10/run-ptest
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10/shared-libs.patch
> delete mode 100644 meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb
>
> diff --git a/meta/conf/distro/include/maintainers.inc b/meta/conf/distro/include/maintainers.inc
> index 950b8e8951..ee98c93b73 100644
> --- a/meta/conf/distro/include/maintainers.inc
> +++ b/meta/conf/distro/include/maintainers.inc
> @@ -536,7 +536,6 @@ RECIPE_MAINTAINER_pn-nss-myhostname = "Anuj Mittal <anuj.mittal@intel.com>"
> RECIPE_MAINTAINER_pn-ofono = "Ross Burton <ross.burton@intel.com>"
> RECIPE_MAINTAINER_pn-openssh = "Armin Kuster <akuster808@gmail.com>"
> RECIPE_MAINTAINER_pn-openssl = "Alexander Kanavin <alex.kanavin@gmail.com>"
> -RECIPE_MAINTAINER_pn-openssl10 = "Alexander Kanavin <alex.kanavin@gmail.com>"
> RECIPE_MAINTAINER_pn-opkg = "Alejandro del Castillo <alejandro.delcastillo@ni.com>"
> RECIPE_MAINTAINER_pn-opkg-arch-config = "Alejandro del Castillo <alejandro.delcastillo@ni.com>"
> RECIPE_MAINTAINER_pn-opkg-keyrings = "Alejandro del Castillo <alejandro.delcastillo@ni.com>"
> diff --git a/meta/conf/distro/include/no-static-libs.inc b/meta/conf/distro/include/no-static-libs.inc
> index 712d858dc0..4141ecb765 100644
> --- a/meta/conf/distro/include/no-static-libs.inc
> +++ b/meta/conf/distro/include/no-static-libs.inc
> @@ -26,9 +26,6 @@ DISABLE_STATIC_pn-openjade-native = ""
> DISABLE_STATIC_pn-openssl = ""
> DISABLE_STATIC_pn-openssl-native = ""
> DISABLE_STATIC_pn-nativesdk-openssl = ""
> -DISABLE_STATIC_pn-openssl10 = ""
> -DISABLE_STATIC_pn-openssl10-native = ""
> -DISABLE_STATIC_pn-nativesdk-openssl10 = ""
> # libssp-static-dev included in build-appliance
> DISABLE_STATIC_pn-gcc-runtime = ""
> # libusb1-native is used to build static dfu-util-native
> diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch b/meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch
> deleted file mode 100644
> index 13d39c918c..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-BN_LLONG-breakage.patch
> +++ /dev/null
> @@ -1,33 +0,0 @@
> -From 247b3188cde5f3347091cd54271127386d3aece0 Mon Sep 17 00:00:00 2001
> -From: Khem Raj <raj.khem@gmail.com>
> -Date: Wed, 6 Feb 2019 22:10:33 -0800
> -Subject: [PATCH] Fix BN_LLONG breakage
> -
> -opensslconf.h is un-defining BN_LLONG only when included from bn.h which
> -is not robust at all, especially when include guards are used and
> -multiple inclusions of a given header is not allowed. so lets take out
> -the nesting constraint and add OPENSSL_SYS_UEFI constraint instead
> -
> -Upstream-Status: Inappropriate [ fixed differently with OpenSSL 1.1+ ]
> -
> -Signed-off-by: Khem Raj <raj.khem@gmail.com>
> ----
> - crypto/opensslconf.h.in | 2 +-
> - 1 file changed, 1 insertion(+), 1 deletion(-)
> -
> -diff --git a/crypto/opensslconf.h.in b/crypto/opensslconf.h.in
> -index 7a1c85d..a10c10f 100644
> ---- a/crypto/opensslconf.h.in
> -+++ b/crypto/opensslconf.h.in
> -@@ -56,7 +56,7 @@
> - #endif
> - #endif
> -
> --#if defined(HEADER_BN_H) && !defined(CONFIG_HEADER_BN_H)
> -+#if !defined(OPENSSL_SYS_UEFI) && !defined(CONFIG_HEADER_BN_H)
> - #define CONFIG_HEADER_BN_H
> - #undef BN_LLONG
> -
> ---
> -2.20.1
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch b/meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch
> deleted file mode 100644
> index 7243fb417b..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-DES_LONG-breakage.patch
> +++ /dev/null
> @@ -1,35 +0,0 @@
> -From 1aec49cc45e7cf5ebc059a77081ac3ea2a5aff7b Mon Sep 17 00:00:00 2001
> -From: Denys Dmytriyenko <denys@ti.com>
> -Date: Fri, 1 Mar 2019 13:14:56 -0500
> -Subject: [PATCH] Fix DES_LONG breakage
> -
> -Mimic previous BN_LLONG fix by Khem Raj here. Re-use its description:
> -
> -opensslconf.h is defining DES_LONG only when included from des.h which
> -is not robust at all, especially when include guards are used and
> -multiple inclusions of a given header is not allowed. so lets take out
> -the nesting constraint and add OPENSSL_SYS_UEFI constraint instead
> -
> -Upstream-Status: Inappropriate [ fixed differently with OpenSSL 1.1+ ]
> -
> -Signed-off-by: Denys Dmytriyenko <denys@ti.com>
> ----
> - crypto/opensslconf.h.in | 2 +-
> - 1 file changed, 1 insertion(+), 1 deletion(-)
> -
> -diff --git a/crypto/opensslconf.h.in b/crypto/opensslconf.h.in
> -index a10c10f..0147a4d 100644
> ---- a/crypto/opensslconf.h.in
> -+++ b/crypto/opensslconf.h.in
> -@@ -48,7 +48,7 @@
> - #endif
> - #endif
> -
> --#if (defined(HEADER_NEW_DES_H) || defined(HEADER_DES_H)) && !defined(DES_LONG)
> -+#if !defined(OPENSSL_SYS_UEFI) && !defined(DES_LONG)
> - /* If this is set to 'unsigned int' on a DEC Alpha, this gives about a
> - * %20 speed up (longs are 8 bytes, int's are 4). */
> - #ifndef DES_LONG
> ---
> -2.7.4
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch b/meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch
> deleted file mode 100644
> index 2270962a6f..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/0001-Fix-build-with-clang-using-external-assembler.patch
> +++ /dev/null
> @@ -1,45 +0,0 @@
> -From 2f6026cb8b16cf00726e3c5625c023f196680f07 Mon Sep 17 00:00:00 2001
> -From: Khem Raj <raj.khem@gmail.com>
> -Date: Fri, 17 Mar 2017 12:52:08 -0700
> -Subject: [PATCH] Fix build with clang using external assembler
> -
> -Cherry-picked from
> -https://github.com/openssl/openssl/commit/11208dcfb9105e8afa37233185decefd45e89e17
> -https://github.com/openssl/openssl/commit/fbab8baddef8d3346ae40ff068871e2ddaf10270
> -https://github.com/openssl/openssl/commit/6cf412c473d8145562b76219ce3da73b201b3255
> -
> -Fixes
> -
> -| ghash-armv4.S: Assembler messages:
> -| ghash-armv4.S:81: Error: bad instruction `ldrbpl r12,[r2,r3]'
> -| ghash-armv4.S:91: Error: bad instruction `ldrbpl r8,[r0,r3]'
> -| ghash-armv4.S:137: Error: bad instruction `ldrbne r12,[r2,#15]'
> -| ghash-armv4.S:224: Error: bad instruction `ldrbpl r12,[r0,r3]'
> -| clang-4.0: error: assembler command failed with exit code 1 (use -v to see invocation)
> -| make[2]: *** [<builtin>: ghash-armv4.o] Error 1
> -
> -Upstream-Status: Backport
> -
> -Signed-off-by: Khem Raj <raj.khem@gmail.com>
> ----
> - crypto/modes/asm/ghash-armv4.pl | 7 +++++++
> - 1 file changed, 7 insertions(+)
> -
> -diff --git a/crypto/modes/asm/ghash-armv4.pl b/crypto/modes/asm/ghash-armv4.pl
> -index 8ccc963ef..442fed4da 100644
> ---- a/crypto/modes/asm/ghash-armv4.pl
> -+++ b/crypto/modes/asm/ghash-armv4.pl
> -@@ -124,7 +124,10 @@ $code=<<___;
> - #include "arm_arch.h"
> -
> - .text
> -+#if defined(__thumb2__) || defined(__clang__)
> -+.syntax unified
> -+#endif
> - .code 32
> -
> - #ifdef __clang__
> - #define ldrplb ldrbpl
> ---
> -2.12.0
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch b/meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch
> deleted file mode 100644
> index 3f7d649955..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/0001-allow-manpages-to-be-disabled.patch
> +++ /dev/null
> @@ -1,31 +0,0 @@
> -From e1c39b80b01d4d18feeadfdc6e45a3e1dd110634 Mon Sep 17 00:00:00 2001
> -From: Andre McCurdy <armccurdy@gmail.com>
> -Date: Fri, 27 Jul 2018 21:41:06 +0000
> -Subject: [PATCH] allow manpages to be disabled
> -
> -Define OE_DISABLE_MANPAGES (via environment or the make command line)
> -to skip creation and installation of manpages.
> -
> -Upstream-Status: Inappropriate [configuration]
> -
> -Signed-off-by: Andre McCurdy <armccurdy@gmail.com>
> ----
> - Makefile.org | 2 +-
> - 1 file changed, 1 insertion(+), 1 deletion(-)
> -
> -diff --git a/Makefile.org b/Makefile.org
> -index ed98d2a..747d8cb 100644
> ---- a/Makefile.org
> -+++ b/Makefile.org
> -@@ -549,7 +549,7 @@ dist:
> - @$(MAKE) SDIRS='$(SDIRS)' clean
> - @$(MAKE) TAR='$(TAR)' TARFLAGS='$(TARFLAGS)' $(DISTTARVARS) tar
> -
> --install: all install_docs install_sw
> -+install: all $(if $(OE_DISABLE_MANPAGES),,install_docs) install_sw
> -
> - install_sw:
> - @$(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/bin \
> ---
> -1.9.1
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch b/meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch
> deleted file mode 100644
> index dd1a9b1dd2..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/0001-openssl-force-soft-link-to-avoid-rare-race.patch
> +++ /dev/null
> @@ -1,46 +0,0 @@
> -From 3d9199423d48766649a2b2ebb3924e892ed16fa4 Mon Sep 17 00:00:00 2001
> -From: Randy MacLeod <Randy.MacLeod@windriver.com>
> -Date: Tue, 20 Jun 2017 15:32:08 -0400
> -Subject: [PATCH] openssl: Force soft link to avoid rare race
> -
> -This patch works around a rare parallel build race condition.
> -The error seen is:
> -
> -ln: failed to create symbolic link 'libssl.so': File exists
> -make[4]: *** [Makefile.shared:171: link_a.gnu] Error 1
> -make[4]: Leaving directory
> -'/.../build/tmp-glibc/work/x86_64-linux/openssl-native/1.0.2k-r0/openssl-1.0.2k'
> -
> -The openssl team is rewriting their build files so it's not
> -appropriate for openssl upstream and fixing the root cause of
> -the Makefile race condition was also not pursued.
> -
> -Upstream-Status: Inappropriate [build rules rewrite in progress]
> -Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com>
> ----
> - Makefile.shared | 4 ++--
> - 1 file changed, 2 insertions(+), 2 deletions(-)
> -
> -diff --git a/Makefile.shared b/Makefile.shared
> -index e8d222a..1bff92f 100644
> ---- a/Makefile.shared
> -+++ b/Makefile.shared
> -@@ -118,14 +118,14 @@
> - if [ -n "$$SHLIB_COMPAT" ]; then \
> - for x in $$SHLIB_COMPAT; do \
> - ( $(SET_X); rm -f $$SHLIB$$x$$SHLIB_SUFFIX; \
> -- ln -s $$prev $$SHLIB$$x$$SHLIB_SUFFIX ); \
> -+ ln -sf $$prev $$SHLIB$$x$$SHLIB_SUFFIX ); \
> - prev=$$SHLIB$$x$$SHLIB_SUFFIX; \
> - done; \
> - fi; \
> - if [ -n "$$SHLIB_SOVER" ]; then \
> - [ -e "$$SHLIB$$SHLIB_SUFFIX" ] || \
> - ( $(SET_X); rm -f $$SHLIB$$SHLIB_SUFFIX; \
> -- ln -s $$prev $$SHLIB$$SHLIB_SUFFIX ); \
> -+ ln -sf $$prev $$SHLIB$$SHLIB_SUFFIX ); \
> - fi; \
> - fi
> -
> ---
> -2.9.3
> diff --git a/meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch b/meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch
> deleted file mode 100644
> index 1b8402af97..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/Makefiles-ptest.patch
> +++ /dev/null
> @@ -1,89 +0,0 @@
> -From a176c69f4fdfbfa7e4ccb79d91c3b6602da7e69a Mon Sep 17 00:00:00 2001
> -From: Anders Roxell <anders.roxell@enea.com>
> -Date: Thu, 24 Apr 2014 19:28:25 +0200
> -Subject: [PATCH 19/28] openssl: enable ptest support
> -
> -Add 'buildtest' and 'runtest' targets to Makefile, to build and run tests
> -cross-compiled.
> -
> -Signed-off-by: Anders Roxell <anders.roxell@enea.com>
> -Signed-off-by: Maxin B. John <maxin.john@enea.com>
> -Upstream-Status: Pending
> -
> ----
> - Makefile.org | 10 +++++++++-
> - test/Makefile | 13 +++++++++----
> - 2 files changed, 18 insertions(+), 5 deletions(-)
> -
> -diff --git a/Makefile.org b/Makefile.org
> -index 111fbba..8e7936c 100644
> ---- a/Makefile.org
> -+++ b/Makefile.org
> -@@ -467,8 +467,16 @@ rehash.time: certs apps
> - test: tests
> -
> - tests: rehash
> -+ $(MAKE) buildtest
> -+ $(MAKE) runtest
> -+
> -+buildtest:
> -+ @(cd test && \
> -+ $(CLEARENV) && $(MAKE) -e $(BUILDENV) TOP=.. TESTS='$(TESTS)' OPENSSL_DEBUG_MEMORY=on OPENSSL_CONF=../apps/openssl.cnf exe apps);
> -+
> -+runtest:
> - @(cd test && echo "testing..." && \
> -- $(CLEARENV) && $(MAKE) -e $(BUILDENV) TOP=.. TESTS='$(TESTS)' OPENSSL_DEBUG_MEMORY=on OPENSSL_CONF=../apps/openssl.cnf tests );
> -+ $(CLEARENV) && $(MAKE) -e $(BUILDENV) TOP=.. TESTS='$(TESTS)' OPENSSL_DEBUG_MEMORY=on OPENSSL_CONF=../apps/openssl.cnf alltests );
> - OPENSSL_CONF=apps/openssl.cnf util/opensslwrap.sh version -a
> -
> - report:
> -diff --git a/test/Makefile b/test/Makefile
> -index 55a6b50..d46b4d1 100644
> ---- a/test/Makefile
> -+++ b/test/Makefile
> -@@ -150,7 +150,7 @@ tests: exe apps $(TESTS)
> - apps:
> - @(cd ..; $(MAKE) DIRS=apps all)
> -
> --alltests: \
> -+all-tests= \
> - test_des test_idea test_sha test_md4 test_md5 test_hmac \
> - test_md2 test_mdc2 test_wp \
> - test_rmd test_rc2 test_rc4 test_rc5 test_bf test_cast test_aes \
> -@@ -162,6 +162,11 @@ alltests: \
> - test_constant_time test_verify_extra test_clienthello test_sslv2conftest \
> - test_dtls test_bad_dtls test_fatalerr test_x509_time
> -
> -+alltests:
> -+ @(for i in $(all-tests); do \
> -+ ( $(MAKE) $$i && echo "PASS: $$i" ) || echo "FAIL: $$i"; \
> -+ done)
> -+
> - test_evp: $(EVPTEST)$(EXE_EXT) evptests.txt
> - ../util/shlib_wrap.sh ./$(EVPTEST) evptests.txt
> -
> -@@ -230,7 +235,7 @@ test_x509: ../apps/openssl$(EXE_EXT) tx509 testx509.pem v3-cert1.pem v3-cert2.pe
> - echo test second x509v3 certificate
> - sh ./tx509 v3-cert2.pem 2>/dev/null
> -
> --test_rsa: $(RSATEST)$(EXE_EXT) ../apps/openssl$(EXE_EXT) trsa testrsa.pem
> -+test_rsa: ../apps/openssl$(EXE_EXT) trsa testrsa.pem
> - @sh ./trsa 2>/dev/null
> - ../util/shlib_wrap.sh ./$(RSATEST)
> -
> -@@ -331,11 +336,11 @@ test_tsa: ../apps/openssl$(EXE_EXT) testtsa CAtsa.cnf ../util/shlib_wrap.sh
> - sh ./testtsa; \
> - fi
> -
> --test_ige: $(IGETEST)$(EXE_EXT)
> -+test_ige:
> - @echo "Test IGE mode"
> - ../util/shlib_wrap.sh ./$(IGETEST)
> -
> --test_jpake: $(JPAKETEST)$(EXE_EXT)
> -+test_jpake:
> - @echo "Test JPAKE"
> - ../util/shlib_wrap.sh ./$(JPAKETEST)
> -
> ---
> -2.15.1
> diff --git a/meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch b/meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch
> deleted file mode 100644
> index 58c9ee7844..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/Use-SHA256-not-MD5-as-default-digest.patch
> +++ /dev/null
> @@ -1,69 +0,0 @@
> -From d795f5f20a29adecf92c09459a3ee07ffac01a99 Mon Sep 17 00:00:00 2001
> -From: Rich Salz <rsalz@akamai.com>
> -Date: Sat, 13 Jun 2015 17:03:39 -0400
> -Subject: [PATCH] Use SHA256 not MD5 as default digest.
> -
> -Commit f8547f62c212837dbf44fb7e2755e5774a59a57b upstream.
> -
> -Upstream-Status: Backport
> -Backport from OpenSSL 2.0 to OpenSSL 1.0.2
> -Commit f8547f62c212837dbf44fb7e2755e5774a59a57b
> -
> -CVE: CVE-2004-2761
> -
> - The MD5 Message-Digest Algorithm is not collision resistant,
> - which makes it easier for context-dependent attackers to
> - conduct spoofing attacks, as demonstrated by attacks on the
> - use of MD5 in the signature algorithm of an X.509 certificate.
> -
> -Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
> -Signed-off-by: Zhang Xiao <xiao.zhang@windriver.com>
> -Signed-off-by: T.O. Radzy Radzykewycz <radzy@windriver.com>
> ----
> - apps/ca.c | 2 +-
> - apps/dgst.c | 2 +-
> - apps/enc.c | 2 +-
> - 3 files changed, 3 insertions(+), 3 deletions(-)
> -
> -diff --git a/apps/ca.c b/apps/ca.c
> -index 3b7336c..8f3a84b 100644
> ---- a/apps/ca.c
> -+++ b/apps/ca.c
> -@@ -1612,7 +1612,7 @@ static int certify_cert(X509 **xret, char *infile, EVP_PKEY *pkey, X509 *x509,
> - } else
> - BIO_printf(bio_err, "Signature ok\n");
> -
> -- if ((rreq = X509_to_X509_REQ(req, NULL, EVP_md5())) == NULL)
> -+ if ((rreq = X509_to_X509_REQ(req, NULL, NULL)) == NULL)
> - goto err;
> -
> - ok = do_body(xret, pkey, x509, dgst, sigopts, policy, db, serial, subj,
> -diff --git a/apps/dgst.c b/apps/dgst.c
> -index 95e5fa3..0d1529f 100644
> ---- a/apps/dgst.c
> -+++ b/apps/dgst.c
> -@@ -442,7 +442,7 @@ int MAIN(int argc, char **argv)
> - goto end;
> - }
> - if (md == NULL)
> -- md = EVP_md5();
> -+ md = EVP_sha256();
> - if (!EVP_DigestInit_ex(mctx, md, impl)) {
> - BIO_printf(bio_err, "Error setting digest %s\n", pname);
> - ERR_print_errors(bio_err);
> -diff --git a/apps/enc.c b/apps/enc.c
> -index 7b7c70b..a7d944c 100644
> ---- a/apps/enc.c
> -+++ b/apps/enc.c
> -@@ -344,7 +344,7 @@ int MAIN(int argc, char **argv)
> - }
> -
> - if (dgst == NULL) {
> -- dgst = EVP_md5();
> -+ dgst = EVP_sha256();
> - }
> -
> - if (bufsize != NULL) {
> ---
> -1.9.1
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch b/meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch
> deleted file mode 100644
> index f357b3f59f..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/configure-musl-target.patch
> +++ /dev/null
> @@ -1,25 +0,0 @@
> -Add musl triplet support
> -
> -Upstream-Status: Pending
> -Signed-off-by: Khem Raj <raj.khem@gmail.com>
> -
> -Index: openssl-1.0.2a/Configure
> -===================================================================
> ---- openssl-1.0.2a.orig/Configure
> -+++ openssl-1.0.2a/Configure
> -@@ -431,7 +431,7 @@ my %table=(
> - #
> - # ./Configure linux-armv4 -march=armv6 -D__ARM_MAX_ARCH__=8
> - #
> --"linux-armv4", "gcc: -O3 -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-armv4", "gcc: -O3 -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> - "linux-aarch64","gcc: -O3 -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${aarch64_asm}:linux64:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> - # Configure script adds minimally required -march for assembly support,
> - # if no -march was specified at command line. mips32 and mips64 below
> -@@ -504,4 +504,6 @@ my %table=(
> - "linux-gnueabi-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-musleabi-arm","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-musleabi-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -
> - "linux-avr32","$ENV{'CC'}:-O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).",
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/configure-targets.patch b/meta/recipes-connectivity/openssl/openssl10/configure-targets.patch
> deleted file mode 100644
> index 1e01589722..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/configure-targets.patch
> +++ /dev/null
> @@ -1,35 +0,0 @@
> -Upstream-Status: Inappropriate [embedded specific]
> -
> -The number of colons are important :)
> -
> -
> ----
> - Configure | 16 ++++++++++++++++
> - 1 file changed, 16 insertions(+)
> -
> -Index: openssl-1.0.2a/Configure
> -===================================================================
> ---- openssl-1.0.2a.orig/Configure
> -+++ openssl-1.0.2a/Configure
> -@@ -443,6 +443,21 @@ my %table=(
> - "linux-alpha-ccc","ccc:-fast -readonly_strings -DL_ENDIAN::-D_REENTRANT:::SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_PTR DES_RISC1 DES_UNROLL:${alpha_asm}",
> - "linux-alpha+bwx-ccc","ccc:-fast -readonly_strings -DL_ENDIAN::-D_REENTRANT:::SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_PTR DES_RISC1 DES_UNROLL:${alpha_asm}",
> -
> -+
> -+# Linux on ARM
> -+"linux-elf-arm","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-elf-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-gnueabi-arm","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-gnueabi-armeb","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+
> -+"linux-avr32","$ENV{'CC'}:-O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).",
> -+
> -+#### Linux on MIPS/MIPS64
> -+"linux-mips","$ENV{'CC'}:-DB_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-mips64","$ENV{'CC'}:-DB_ENDIAN -mabi=64 -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-mips64el","$ENV{'CC'}:-DL_ENDIAN -mabi=64 -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"linux-mipsel","$ENV{'CC'}:-DL_ENDIAN -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+
> - # Android: linux-* but without pointers to headers and libs.
> - "android","gcc:-mandroid -I\$(ANDROID_DEV)/include -B\$(ANDROID_DEV)/lib -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> - "android-x86","gcc:-mandroid -I\$(ANDROID_DEV)/include -B\$(ANDROID_DEV)/lib -O3 -fomit-frame-pointer -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:".eval{my $asm=${x86_elf_asm};$asm=~s/:elf/:android/;$asm}.":dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch b/meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch
> deleted file mode 100644
> index 3820e3e306..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian/c_rehash-compat.patch
> +++ /dev/null
> @@ -1,71 +0,0 @@
> -From 83f318d68bbdab1ca898c94576a838cc97df4700 Mon Sep 17 00:00:00 2001
> -From: Ludwig Nussel <ludwig.nussel@suse.de>
> -Date: Wed, 21 Apr 2010 15:52:10 +0200
> -Subject: [PATCH] also create old hash for compatibility
> -
> -Upstream-Status: Backport [debian]
> -
> -Index: openssl-1.0.2n/tools/c_rehash.in
> -===================================================================
> ---- openssl-1.0.2n.orig/tools/c_rehash.in
> -+++ openssl-1.0.2n/tools/c_rehash.in
> -@@ -8,8 +8,6 @@ my $prefix;
> -
> - my $openssl = $ENV{OPENSSL} || "openssl";
> - my $pwd;
> --my $x509hash = "-subject_hash";
> --my $crlhash = "-hash";
> - my $verbose = 0;
> - my $symlink_exists=eval {symlink("",""); 1};
> - my $removelinks = 1;
> -@@ -18,10 +16,7 @@ my $removelinks = 1;
> - while ( $ARGV[0] =~ /^-/ ) {
> - my $flag = shift @ARGV;
> - last if ( $flag eq '--');
> -- if ( $flag eq '-old') {
> -- $x509hash = "-subject_hash_old";
> -- $crlhash = "-hash_old";
> -- } elsif ( $flag eq '-h') {
> -+ if ( $flag eq '-h') {
> - help();
> - } elsif ( $flag eq '-n' ) {
> - $removelinks = 0;
> -@@ -113,7 +108,9 @@ sub hash_dir {
> - next;
> - }
> - link_hash_cert($fname) if($cert);
> -+ link_hash_cert_old($fname) if($cert);
> - link_hash_crl($fname) if($crl);
> -+ link_hash_crl_old($fname) if($crl);
> - }
> - }
> -
> -@@ -146,6 +143,7 @@ sub check_file {
> -
> - sub link_hash_cert {
> - my $fname = $_[0];
> -+ my $x509hash = $_[1] || '-subject_hash';
> - $fname =~ s/'/'\\''/g;
> - my ($hash, $fprint) = `"$openssl" x509 $x509hash -fingerprint -noout -in "$fname"`;
> - chomp $hash;
> -@@ -177,10 +175,20 @@ sub link_hash_cert {
> - $hashlist{$hash} = $fprint;
> - }
> -
> -+sub link_hash_cert_old {
> -+ link_hash_cert($_[0], '-subject_hash_old');
> -+}
> -+
> -+sub link_hash_crl_old {
> -+ link_hash_crl($_[0], '-hash_old');
> -+}
> -+
> -+
> - # Same as above except for a CRL. CRL links are of the form <hash>.r<n>
> -
> - sub link_hash_crl {
> - my $fname = $_[0];
> -+ my $crlhash = $_[1] || "-hash";
> - $fname =~ s/'/'\\''/g;
> - my ($hash, $fprint) = `"$openssl" crl $crlhash -fingerprint -noout -in '$fname'`;
> - chomp $hash;
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch b/meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch
> deleted file mode 100644
> index 24709f4f06..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian/debian-targets.patch
> +++ /dev/null
> @@ -1,73 +0,0 @@
> -Upstream-Status: Backport [debian]
> -
> -Index: openssl-1.0.2n/Configure
> -===================================================================
> ---- openssl-1.0.2n.orig/Configure
> -+++ openssl-1.0.2n/Configure
> -@@ -133,6 +133,10 @@ my $clang_devteam_warn = "-Wno-unused-pa
> - # Warn that "make depend" should be run?
> - my $warn_make_depend = 0;
> -
> -+# There are no separate CFLAGS/CPPFLAGS/LDFLAGS, set everything in CFLAGS
> -+my $debian_cflags = `dpkg-buildflags --get CFLAGS` . `dpkg-buildflags --get CPPFLAGS` . `dpkg-buildflags --get LDFLAGS` . "-Wa,--noexecstack -Wall";
> -+$debian_cflags =~ s/\n/ /g;
> -+
> - my $strict_warnings = 0;
> -
> - my $x86_gcc_des="DES_PTR DES_RISC1 DES_UNROLL";
> -@@ -369,6 +373,55 @@ my %table=(
> - "osf1-alpha-cc", "cc:-std1 -tune host -O4 -readonly_strings::(unknown):::SIXTY_FOUR_BIT_LONG RC4_CHUNK:${alpha_asm}:dlfcn:alpha-osf1-shared:::.so",
> - "tru64-alpha-cc", "cc:-std1 -tune host -fast -readonly_strings::-pthread:::SIXTY_FOUR_BIT_LONG RC4_CHUNK:${alpha_asm}:dlfcn:alpha-osf1-shared::-msym:.so",
> -
> -+# Debian GNU/* (various architectures)
> -+"debian-alpha","gcc:-DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-alpha-ev4","gcc:-DTERMIO ${debian_cflags} -mcpu=ev4::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-alpha-ev5","gcc:-DTERMIO ${debian_cflags} -mcpu=ev5::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_RISC1 DES_UNROLL:${alpha_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-arm64","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-armel","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-armhf","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL BF_PTR:${armv4_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-amd64", "gcc:-m64 -DL_ENDIAN -DTERMIO ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR):::",
> -+"debian-avr32", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags} -fomit-frame-pointer::-D_REENTRANT::-ldl:BN_LLONG_BF_PTR:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-kfreebsd-amd64","gcc:-m64 -DL_ENDIAN -DTERMIOS ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-kfreebsd-i386","gcc:-DL_ENDIAN -DTERMIOS ${debian_cflags} -march=i486::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-hppa","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-hurd-i386","gcc:-DL_ENDIAN -DTERMIOS -O3 -Wa,--noexecstack -g -mtune=i486 -Wall::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-ia64","gcc:-DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHUNK DES_UNROLL DES_INT:${ia64_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-i386","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-i386-i486","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags} -march=i486::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-i386-i586","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags} -march=i586::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-i386-i686/cmov","gcc:-DL_ENDIAN -DTERMIO ${debian_cflags} -march=i686::-D_REENTRANT::-ldl:BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_elf_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-m68k","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG MD2_CHAR RC4_INDEX:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-mips", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-mipsel", "gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-mipsn32", "mips64-linux-gnuabin32-gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-mipsn32el", "mips64el-linux-gnuabin32-gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-mips64", "mips64-linux-gnuabi64-gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-mips64el", "mips64el-linux-gnuabi64-gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC2_CHAR RC4_INDEX DES_INT DES_UNROLL DES_RISC2:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-netbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS ${debian_cflags} -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-netbsd-m68k", "gcc:-DB_ENDIAN -DTERMIOS ${debian_cflags}::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-netbsd-sparc", "gcc:-DB_ENDIAN -DTERMIOS ${debian_cflags} -mv8::(unknown):::BN_LLONG MD2_CHAR RC4_INDEX DES_UNROLL:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-openbsd-alpha","gcc:-DTERMIOS ${debian_cflags}::(unknown):::SIXTY_FOUR_BIT_LONG DES_INT DES_PTR DES_RISC2:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-openbsd-i386", "gcc:-DL_ENDIAN -DTERMIOS ${debian_cflags} -m486::(unknown):::BN_LLONG ${x86_gcc_des} ${x86_gcc_opts}:${x86_asm}:a.out:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-openbsd-mips","gcc:-DL_ENDIAN ${debian_cflags}::(unknown)::BN_LLONG MD2_CHAR RC4_INDEX RC4_CHAR DES_UNROLL DES_RISC2 DES_PTR BF_PTR:${no_asm}:dlfcn:bsd-gcc-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-or1k", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG DES_RISC1:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-powerpc","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc32_asm}:linux32:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-powerpcspe","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc32_asm}:linux32:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-ppc64","gcc:-m64 -DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-ppc64el","gcc:-m64 -DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_RISC1 DES_UNROLL:${ppc64_asm}:linux64le:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-s390","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-s390x","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT_LONG RC4_CHAR RC4_CHUNK DES_INT DES_UNROLL:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sh3", "gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sh4", "gcc:-DL_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sh3eb", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sh4eb", "gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-m32r","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG:${no_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sparc","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags}::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sparc-v8","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags} -mcpu=v8 -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv8_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sparc-v9","gcc:-DB_ENDIAN -DTERMIO ${debian_cflags} -mcpu=v9 -Wa,-Av8plus -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC::.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-sparc64","gcc:-m64 -DB_ENDIAN -DTERMIO ${debian_cflags} -DULTRASPARC -DBN_DIV2W::-D_REENTRANT::-ldl:BN_LLONG RC4_CHAR RC4_CHUNK DES_INT DES_PTR DES_RISC1 DES_UNROLL BF_PTR:${sparcv9_asm}:dlfcn:linux-shared:-fPIC:-m64:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR)",
> -+"debian-x32","gcc:-mx32 -DL_ENDIAN -DTERMIO ${debian_cflags} -DMD32_REG_T=int::-D_REENTRANT::-ldl:SIXTY_FOUR_BIT RC4_CHUNK DES_INT DES_UNROLL:${x86_64_asm}:elf:dlfcn:linux-shared:-fPIC:-mx32:.so.\$(SHLIB_MAJOR).\$(SHLIB_MINOR):::x32",
> -+
> - ####
> - #### Variety of LINUX:-)
> - ####
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch b/meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch
> deleted file mode 100644
> index 4085e3b1d7..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian/man-dir.patch
> +++ /dev/null
> @@ -1,15 +0,0 @@
> -Upstream-Status: Backport [debian]
> -
> -Index: openssl-1.0.0c/Makefile.org
> -===================================================================
> ---- openssl-1.0.0c.orig/Makefile.org 2010-12-12 16:11:27.000000000 +0100
> -+++ openssl-1.0.0c/Makefile.org 2010-12-12 16:11:37.000000000 +0100
> -@@ -131,7 +131,7 @@
> -
> - MAKEFILE= Makefile
> -
> --MANDIR=$(OPENSSLDIR)/man
> -+MANDIR=/usr/share/man
> - MAN1=1
> - MAN3=3
> - MANSUFFIX=
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch b/meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch
> deleted file mode 100644
> index 21c1d1a4eb..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian/man-section.patch
> +++ /dev/null
> @@ -1,34 +0,0 @@
> -Upstream-Status: Backport [debian]
> -
> -Index: openssl-1.0.0c/Makefile.org
> -===================================================================
> ---- openssl-1.0.0c.orig/Makefile.org 2010-12-12 16:11:37.000000000 +0100
> -+++ openssl-1.0.0c/Makefile.org 2010-12-12 16:13:28.000000000 +0100
> -@@ -160,7 +160,8 @@
> - MANDIR=/usr/share/man
> - MAN1=1
> - MAN3=3
> --MANSUFFIX=
> -+MANSUFFIX=ssl
> -+MANSECTION=SSL
> - HTMLSUFFIX=html
> - HTMLDIR=$(OPENSSLDIR)/html
> - SHELL=/bin/sh
> -@@ -651,7 +652,7 @@
> - echo "installing man$$sec/$$fn.$${sec}$(MANSUFFIX)"; \
> - (cd `$(PERL) util/dirname.pl $$i`; \
> - sh -c "$$pod2man \
> -- --section=$$sec --center=OpenSSL \
> -+ --section=$${sec}$(MANSECTION) --center=OpenSSL \
> - --release=$(VERSION) `basename $$i`") \
> - > $(INSTALL_PREFIX)$(MANDIR)/man$$sec/$$fn.$${sec}$(MANSUFFIX); \
> - $(PERL) util/extract-names.pl < $$i | \
> -@@ -668,7 +669,7 @@
> - echo "installing man$$sec/$$fn.$${sec}$(MANSUFFIX)"; \
> - (cd `$(PERL) util/dirname.pl $$i`; \
> - sh -c "$$pod2man \
> -- --section=$$sec --center=OpenSSL \
> -+ --section=$${sec}$(MANSECTION) --center=OpenSSL \
> - --release=$(VERSION) `basename $$i`") \
> - > $(INSTALL_PREFIX)$(MANDIR)/man$$sec/$$fn.$${sec}$(MANSUFFIX); \
> - $(PERL) util/extract-names.pl < $$i | \
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch b/meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch
> deleted file mode 100644
> index 1ccb3b86ee..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian/no-rpath.patch
> +++ /dev/null
> @@ -1,15 +0,0 @@
> -Upstream-Status: Backport [debian]
> -
> -Index: openssl-1.0.0c/Makefile.shared
> -===================================================================
> ---- openssl-1.0.0c.orig/Makefile.shared 2010-08-21 13:36:49.000000000 +0200
> -+++ openssl-1.0.0c/Makefile.shared 2010-12-12 16:13:36.000000000 +0100
> -@@ -153,7 +153,7 @@
> - NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \
> - SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
> -
> --DO_GNU_APP=LDFLAGS="$(CFLAGS) -Wl,-rpath,$(LIBRPATH)"
> -+DO_GNU_APP=LDFLAGS="$(CFLAGS)"
> -
> - #This is rather special. It's a special target with which one can link
> - #applications without bothering with any features that have anything to
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch b/meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch
> deleted file mode 100644
> index cc4408ab7d..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian/no-symbolic.patch
> +++ /dev/null
> @@ -1,15 +0,0 @@
> -Upstream-Status: Backport [debian]
> -
> -Index: openssl-1.0.0c/Makefile.shared
> -===================================================================
> ---- openssl-1.0.0c.orig/Makefile.shared 2010-12-12 16:13:36.000000000 +0100
> -+++ openssl-1.0.0c/Makefile.shared 2010-12-12 16:13:44.000000000 +0100
> -@@ -151,7 +151,7 @@
> - SHLIB_SUFFIX=; \
> - ALLSYMSFLAGS='-Wl,--whole-archive'; \
> - NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \
> -- SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
> -+ SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"
> -
> - DO_GNU_APP=LDFLAGS="$(CFLAGS)"
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian/pic.patch b/meta/recipes-connectivity/openssl/openssl10/debian/pic.patch
> deleted file mode 100644
> index bfda3888bf..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian/pic.patch
> +++ /dev/null
> @@ -1,177 +0,0 @@
> -Upstream-Status: Backport [debian]
> -
> -Index: openssl-1.0.1c/crypto/des/asm/desboth.pl
> -===================================================================
> ---- openssl-1.0.1c.orig/crypto/des/asm/desboth.pl 2001-10-24 23:20:56.000000000 +0200
> -+++ openssl-1.0.1c/crypto/des/asm/desboth.pl 2012-07-29 14:15:26.000000000 +0200
> -@@ -16,6 +16,11 @@
> -
> - &push("edi");
> -
> -+ &call (&label("pic_point0"));
> -+ &set_label("pic_point0");
> -+ &blindpop("ebp");
> -+ &add ("ebp", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point0") . "]");
> -+
> - &comment("");
> - &comment("Load the data words");
> - &mov($L,&DWP(0,"ebx","",0));
> -@@ -47,15 +52,21 @@
> - &mov(&swtmp(2), (DWC(($enc)?"1":"0")));
> - &mov(&swtmp(1), "eax");
> - &mov(&swtmp(0), "ebx");
> -- &call("DES_encrypt2");
> -+ &exch("ebx", "ebp");
> -+ &call("DES_encrypt2\@PLT");
> -+ &exch("ebx", "ebp");
> - &mov(&swtmp(2), (DWC(($enc)?"0":"1")));
> - &mov(&swtmp(1), "edi");
> - &mov(&swtmp(0), "ebx");
> -- &call("DES_encrypt2");
> -+ &exch("ebx", "ebp");
> -+ &call("DES_encrypt2\@PLT");
> -+ &exch("ebx", "ebp");
> - &mov(&swtmp(2), (DWC(($enc)?"1":"0")));
> - &mov(&swtmp(1), "esi");
> - &mov(&swtmp(0), "ebx");
> -- &call("DES_encrypt2");
> -+ &exch("ebx", "ebp");
> -+ &call("DES_encrypt2\@PLT");
> -+ &exch("ebx", "ebp");
> -
> - &stack_pop(3);
> - &mov($L,&DWP(0,"ebx","",0));
> -Index: openssl-1.0.1c/crypto/perlasm/cbc.pl
> -===================================================================
> ---- openssl-1.0.1c.orig/crypto/perlasm/cbc.pl 2011-07-13 08:22:46.000000000 +0200
> -+++ openssl-1.0.1c/crypto/perlasm/cbc.pl 2012-07-29 14:15:26.000000000 +0200
> -@@ -122,7 +122,11 @@
> - &mov(&DWP($data_off,"esp","",0), "eax"); # put in array for call
> - &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
> -
> -- &call($enc_func);
> -+ &call (&label("pic_point0"));
> -+ &set_label("pic_point0");
> -+ &blindpop("ebx");
> -+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point0") . "]");
> -+ &call("$enc_func\@PLT");
> -
> - &mov("eax", &DWP($data_off,"esp","",0));
> - &mov("ebx", &DWP($data_off+4,"esp","",0));
> -@@ -185,7 +189,11 @@
> - &mov(&DWP($data_off,"esp","",0), "eax"); # put in array for call
> - &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
> -
> -- &call($enc_func);
> -+ &call (&label("pic_point1"));
> -+ &set_label("pic_point1");
> -+ &blindpop("ebx");
> -+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point1") . "]");
> -+ &call("$enc_func\@PLT");
> -
> - &mov("eax", &DWP($data_off,"esp","",0));
> - &mov("ebx", &DWP($data_off+4,"esp","",0));
> -@@ -218,7 +226,11 @@
> - &mov(&DWP($data_off,"esp","",0), "eax"); # put back
> - &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
> -
> -- &call($dec_func);
> -+ &call (&label("pic_point2"));
> -+ &set_label("pic_point2");
> -+ &blindpop("ebx");
> -+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point2") . "]");
> -+ &call("$dec_func\@PLT");
> -
> - &mov("eax", &DWP($data_off,"esp","",0)); # get return
> - &mov("ebx", &DWP($data_off+4,"esp","",0)); #
> -@@ -261,7 +273,11 @@
> - &mov(&DWP($data_off,"esp","",0), "eax"); # put back
> - &mov(&DWP($data_off+4,"esp","",0), "ebx"); #
> -
> -- &call($dec_func);
> -+ &call (&label("pic_point3"));
> -+ &set_label("pic_point3");
> -+ &blindpop("ebx");
> -+ &add ("ebx", "\$_GLOBAL_OFFSET_TABLE_+[.-" . &label("pic_point3") . "]");
> -+ &call("$dec_func\@PLT");
> -
> - &mov("eax", &DWP($data_off,"esp","",0)); # get return
> - &mov("ebx", &DWP($data_off+4,"esp","",0)); #
> -Index: openssl-1.0.1c/crypto/perlasm/x86gas.pl
> -===================================================================
> ---- openssl-1.0.1c.orig/crypto/perlasm/x86gas.pl 2011-12-09 20:16:35.000000000 +0100
> -+++ openssl-1.0.1c/crypto/perlasm/x86gas.pl 2012-07-29 14:15:26.000000000 +0200
> -@@ -161,6 +161,7 @@
> - if ($::macosx) { push (@out,"$tmp,2\n"); }
> - elsif ($::elf) { push (@out,"$tmp,4\n"); }
> - else { push (@out,"$tmp\n"); }
> -+ if ($::elf) { push (@out,".hidden\tOPENSSL_ia32cap_P\n"); }
> - }
> - push(@out,$initseg) if ($initseg);
> - }
> -@@ -218,8 +219,23 @@
> - elsif ($::elf)
> - { $initseg.=<<___;
> - .section .init
> -+___
> -+ if ($::pic)
> -+ { $initseg.=<<___;
> -+ pushl %ebx
> -+ call .pic_point0
> -+.pic_point0:
> -+ popl %ebx
> -+ addl \$_GLOBAL_OFFSET_TABLE_+[.-.pic_point0],%ebx
> -+ call $f\@PLT
> -+ popl %ebx
> -+___
> -+ }
> -+ else
> -+ { $initseg.=<<___;
> - call $f
> - ___
> -+ }
> - }
> - elsif ($::coff)
> - { $initseg.=<<___; # applies to both Cygwin and Mingw
> -Index: openssl-1.0.1c/crypto/x86cpuid.pl
> -===================================================================
> ---- openssl-1.0.1c.orig/crypto/x86cpuid.pl 2012-02-28 15:20:34.000000000 +0100
> -+++ openssl-1.0.1c/crypto/x86cpuid.pl 2012-07-29 14:15:26.000000000 +0200
> -@@ -8,6 +8,8 @@
> -
> - for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); }
> -
> -+push(@out, ".hidden OPENSSL_ia32cap_P\n");
> -+
> - &function_begin("OPENSSL_ia32_cpuid");
> - &xor ("edx","edx");
> - &pushf ();
> -@@ -139,9 +141,7 @@
> - &set_label("nocpuid");
> - &function_end("OPENSSL_ia32_cpuid");
> -
> --&external_label("OPENSSL_ia32cap_P");
> --
> --&function_begin_B("OPENSSL_rdtsc","EXTRN\t_OPENSSL_ia32cap_P:DWORD");
> -+&function_begin_B("OPENSSL_rdtsc");
> - &xor ("eax","eax");
> - &xor ("edx","edx");
> - &picmeup("ecx","OPENSSL_ia32cap_P");
> -@@ -155,7 +155,7 @@
> - # This works in Ring 0 only [read DJGPP+MS-DOS+privileged DPMI host],
> - # but it's safe to call it on any [supported] 32-bit platform...
> - # Just check for [non-]zero return value...
> --&function_begin_B("OPENSSL_instrument_halt","EXTRN\t_OPENSSL_ia32cap_P:DWORD");
> -+&function_begin_B("OPENSSL_instrument_halt");
> - &picmeup("ecx","OPENSSL_ia32cap_P");
> - &bt (&DWP(0,"ecx"),4);
> - &jnc (&label("nohalt")); # no TSC
> -@@ -222,7 +222,7 @@
> - &ret ();
> - &function_end_B("OPENSSL_far_spin");
> -
> --&function_begin_B("OPENSSL_wipe_cpu","EXTRN\t_OPENSSL_ia32cap_P:DWORD");
> -+&function_begin_B("OPENSSL_wipe_cpu");
> - &xor ("eax","eax");
> - &xor ("edx","edx");
> - &picmeup("ecx","OPENSSL_ia32cap_P");
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch
> deleted file mode 100644
> index c43bcd1c77..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_digicert_malaysia.patch
> +++ /dev/null
> @@ -1,29 +0,0 @@
> -From: Raphael Geissert <geissert@debian.org>
> -Description: make X509_verify_cert indicate that any certificate whose
> - name contains "Digicert Sdn. Bhd." (from Malaysia) is revoked.
> -Forwarded: not-needed
> -Origin: vendor
> -Last-Update: 2011-11-05
> -
> -Upstream-Status: Backport [debian]
> -
> -
> -Index: openssl-1.0.2~beta1/crypto/x509/x509_vfy.c
> -===================================================================
> ---- openssl-1.0.2~beta1.orig/crypto/x509/x509_vfy.c 2014-02-25 00:16:12.488028844 +0100
> -+++ openssl-1.0.2~beta1/crypto/x509/x509_vfy.c 2014-02-25 00:16:12.484028929 +0100
> -@@ -964,10 +964,11 @@
> - for (i = sk_X509_num(ctx->chain) - 1; i >= 0; i--)
> - {
> - x = sk_X509_value(ctx->chain, i);
> -- /* Mark DigiNotar certificates as revoked, no matter
> -- * where in the chain they are.
> -+ /* Mark certificates containing the following names as
> -+ * revoked, no matter where in the chain they are.
> - */
> -- if (x->name && strstr(x->name, "DigiNotar"))
> -+ if (x->name && (strstr(x->name, "DigiNotar") ||
> -+ strstr(x->name, "Digicert Sdn. Bhd.")))
> - {
> - ctx->error = X509_V_ERR_CERT_REVOKED;
> - ctx->error_depth = i;
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch
> deleted file mode 100644
> index d81e22cd8d..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/block_diginotar.patch
> +++ /dev/null
> @@ -1,68 +0,0 @@
> -From: Raphael Geissert <geissert@debian.org>
> -Description: make X509_verify_cert indicate that any certificate whose
> - name contains "DigiNotar" is revoked.
> -Forwarded: not-needed
> -Origin: vendor
> -Last-Update: 2011-09-08
> -Bug: http://bugs.debian.org/639744
> -Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
> -Reviewed-by: Dr Stephen N Henson <shenson@drh-consultancy.co.uk>
> -
> -This is not meant as final patch.
> -
> -Upstream-Status: Backport [debian]
> -
> -Signed-off-by: Armin Kuster <akuster@mvista.com>
> -
> -Index: openssl-1.0.2g/crypto/x509/x509_vfy.c
> -===================================================================
> ---- openssl-1.0.2g.orig/crypto/x509/x509_vfy.c
> -+++ openssl-1.0.2g/crypto/x509/x509_vfy.c
> -@@ -119,6 +119,7 @@ static int check_trust(X509_STORE_CTX *c
> - static int check_revocation(X509_STORE_CTX *ctx);
> - static int check_cert(X509_STORE_CTX *ctx);
> - static int check_policy(X509_STORE_CTX *ctx);
> -+static int check_ca_blacklist(X509_STORE_CTX *ctx);
> -
> - static int get_crl_score(X509_STORE_CTX *ctx, X509 **pissuer,
> - unsigned int *preasons, X509_CRL *crl, X509 *x);
> -@@ -489,6 +490,9 @@ int X509_verify_cert(X509_STORE_CTX *ctx
> - if (!ok)
> - goto err;
> -
> -+ ok = check_ca_blacklist(ctx);
> -+ if(!ok) goto err;
> -+
> - #ifndef OPENSSL_NO_RFC3779
> - /* RFC 3779 path validation, now that CRL check has been done */
> - ok = v3_asid_validate_path(ctx);
> -@@ -996,6 +1000,29 @@ static int check_crl_time(X509_STORE_CTX
> - return 1;
> - }
> -
> -+static int check_ca_blacklist(X509_STORE_CTX *ctx)
> -+ {
> -+ X509 *x;
> -+ int i;
> -+ /* Check all certificates against the blacklist */
> -+ for (i = sk_X509_num(ctx->chain) - 1; i >= 0; i--)
> -+ {
> -+ x = sk_X509_value(ctx->chain, i);
> -+ /* Mark DigiNotar certificates as revoked, no matter
> -+ * where in the chain they are.
> -+ */
> -+ if (x->name && strstr(x->name, "DigiNotar"))
> -+ {
> -+ ctx->error = X509_V_ERR_CERT_REVOKED;
> -+ ctx->error_depth = i;
> -+ ctx->current_cert = x;
> -+ if (!ctx->verify_cb(0,ctx))
> -+ return 0;
> -+ }
> -+ }
> -+ return 1;
> -+ }
> -+
> - static int get_crl_sk(X509_STORE_CTX *ctx, X509_CRL **pcrl, X509_CRL **pdcrl,
> - X509 **pissuer, int *pscore, unsigned int *preasons,
> - STACK_OF(X509_CRL) *crls)
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch
> deleted file mode 100644
> index 09dd9eaf86..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/soname.patch
> +++ /dev/null
> @@ -1,15 +0,0 @@
> -Upstream-Status: Inappropriate
> -
> -Index: openssl-1.0.2d/crypto/opensslv.h
> -===================================================================
> ---- openssl-1.0.2d.orig/crypto/opensslv.h
> -+++ openssl-1.0.2d/crypto/opensslv.h
> -@@ -88,7 +88,7 @@ extern "C" {
> - * should only keep the versions that are binary compatible with the current.
> - */
> - # define SHLIB_VERSION_HISTORY ""
> --# define SHLIB_VERSION_NUMBER "1.0.0"
> -+# define SHLIB_VERSION_NUMBER "1.0.2"
> -
> -
> - #ifdef __cplusplus
> diff --git a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch b/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch
> deleted file mode 100644
> index e404ee3312..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/debian1.0.2/version-script.patch
> +++ /dev/null
> @@ -1,4658 +0,0 @@
> -Upstream-Status: Inappropriate
> -
> -Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/Configure
> -===================================================================
> ---- openssl-1.0.2~beta1.obsolete.0.0498436515490575.orig/Configure 2014-02-24 21:02:30.000000000 +0100
> -+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/Configure 2014-02-24 21:02:30.000000000 +0100
> -@@ -1651,6 +1651,8 @@
> - }
> - }
> -
> -+$shared_ldflag .= " -Wl,--version-script=openssl.ld";
> -+
> - open(IN,'<Makefile.org') || die "unable to read Makefile.org:$!\n";
> - unlink("$Makefile.new") || die "unable to remove old $Makefile.new:$!\n" if -e "$Makefile.new";
> - open(OUT,">$Makefile.new") || die "unable to create $Makefile.new:$!\n";
> -Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/openssl.ld
> -===================================================================
> ---- /dev/null 1970-01-01 00:00:00.000000000 +0000
> -+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/openssl.ld 2014-02-24 22:19:08.601827266 +0100
> -@@ -0,0 +1,4608 @@
> -+OPENSSL_1.0.2d {
> -+ global:
> -+ BIO_f_ssl;
> -+ BIO_new_buffer_ssl_connect;
> -+ BIO_new_ssl;
> -+ BIO_new_ssl_connect;
> -+ BIO_proxy_ssl_copy_session_id;
> -+ BIO_ssl_copy_session_id;
> -+ BIO_ssl_shutdown;
> -+ d2i_SSL_SESSION;
> -+ DTLSv1_client_method;
> -+ DTLSv1_method;
> -+ DTLSv1_server_method;
> -+ ERR_load_SSL_strings;
> -+ i2d_SSL_SESSION;
> -+ kssl_build_principal_2;
> -+ kssl_cget_tkt;
> -+ kssl_check_authent;
> -+ kssl_ctx_free;
> -+ kssl_ctx_new;
> -+ kssl_ctx_setkey;
> -+ kssl_ctx_setprinc;
> -+ kssl_ctx_setstring;
> -+ kssl_ctx_show;
> -+ kssl_err_set;
> -+ kssl_krb5_free_data_contents;
> -+ kssl_sget_tkt;
> -+ kssl_skip_confound;
> -+ kssl_validate_times;
> -+ PEM_read_bio_SSL_SESSION;
> -+ PEM_read_SSL_SESSION;
> -+ PEM_write_bio_SSL_SESSION;
> -+ PEM_write_SSL_SESSION;
> -+ SSL_accept;
> -+ SSL_add_client_CA;
> -+ SSL_add_dir_cert_subjects_to_stack;
> -+ SSL_add_dir_cert_subjs_to_stk;
> -+ SSL_add_file_cert_subjects_to_stack;
> -+ SSL_add_file_cert_subjs_to_stk;
> -+ SSL_alert_desc_string;
> -+ SSL_alert_desc_string_long;
> -+ SSL_alert_type_string;
> -+ SSL_alert_type_string_long;
> -+ SSL_callback_ctrl;
> -+ SSL_check_private_key;
> -+ SSL_CIPHER_description;
> -+ SSL_CIPHER_get_bits;
> -+ SSL_CIPHER_get_name;
> -+ SSL_CIPHER_get_version;
> -+ SSL_clear;
> -+ SSL_COMP_add_compression_method;
> -+ SSL_COMP_get_compression_methods;
> -+ SSL_COMP_get_compress_methods;
> -+ SSL_COMP_get_name;
> -+ SSL_connect;
> -+ SSL_copy_session_id;
> -+ SSL_ctrl;
> -+ SSL_CTX_add_client_CA;
> -+ SSL_CTX_add_session;
> -+ SSL_CTX_callback_ctrl;
> -+ SSL_CTX_check_private_key;
> -+ SSL_CTX_ctrl;
> -+ SSL_CTX_flush_sessions;
> -+ SSL_CTX_free;
> -+ SSL_CTX_get_cert_store;
> -+ SSL_CTX_get_client_CA_list;
> -+ SSL_CTX_get_client_cert_cb;
> -+ SSL_CTX_get_ex_data;
> -+ SSL_CTX_get_ex_new_index;
> -+ SSL_CTX_get_info_callback;
> -+ SSL_CTX_get_quiet_shutdown;
> -+ SSL_CTX_get_timeout;
> -+ SSL_CTX_get_verify_callback;
> -+ SSL_CTX_get_verify_depth;
> -+ SSL_CTX_get_verify_mode;
> -+ SSL_CTX_load_verify_locations;
> -+ SSL_CTX_new;
> -+ SSL_CTX_remove_session;
> -+ SSL_CTX_sess_get_get_cb;
> -+ SSL_CTX_sess_get_new_cb;
> -+ SSL_CTX_sess_get_remove_cb;
> -+ SSL_CTX_sessions;
> -+ SSL_CTX_sess_set_get_cb;
> -+ SSL_CTX_sess_set_new_cb;
> -+ SSL_CTX_sess_set_remove_cb;
> -+ SSL_CTX_set1_param;
> -+ SSL_CTX_set_cert_store;
> -+ SSL_CTX_set_cert_verify_callback;
> -+ SSL_CTX_set_cert_verify_cb;
> -+ SSL_CTX_set_cipher_list;
> -+ SSL_CTX_set_client_CA_list;
> -+ SSL_CTX_set_client_cert_cb;
> -+ SSL_CTX_set_client_cert_engine;
> -+ SSL_CTX_set_cookie_generate_cb;
> -+ SSL_CTX_set_cookie_verify_cb;
> -+ SSL_CTX_set_default_passwd_cb;
> -+ SSL_CTX_set_default_passwd_cb_userdata;
> -+ SSL_CTX_set_default_verify_paths;
> -+ SSL_CTX_set_def_passwd_cb_ud;
> -+ SSL_CTX_set_def_verify_paths;
> -+ SSL_CTX_set_ex_data;
> -+ SSL_CTX_set_generate_session_id;
> -+ SSL_CTX_set_info_callback;
> -+ SSL_CTX_set_msg_callback;
> -+ SSL_CTX_set_psk_client_callback;
> -+ SSL_CTX_set_psk_server_callback;
> -+ SSL_CTX_set_purpose;
> -+ SSL_CTX_set_quiet_shutdown;
> -+ SSL_CTX_set_session_id_context;
> -+ SSL_CTX_set_ssl_version;
> -+ SSL_CTX_set_timeout;
> -+ SSL_CTX_set_tmp_dh_callback;
> -+ SSL_CTX_set_tmp_ecdh_callback;
> -+ SSL_CTX_set_tmp_rsa_callback;
> -+ SSL_CTX_set_trust;
> -+ SSL_CTX_set_verify;
> -+ SSL_CTX_set_verify_depth;
> -+ SSL_CTX_use_cert_chain_file;
> -+ SSL_CTX_use_certificate;
> -+ SSL_CTX_use_certificate_ASN1;
> -+ SSL_CTX_use_certificate_chain_file;
> -+ SSL_CTX_use_certificate_file;
> -+ SSL_CTX_use_PrivateKey;
> -+ SSL_CTX_use_PrivateKey_ASN1;
> -+ SSL_CTX_use_PrivateKey_file;
> -+ SSL_CTX_use_psk_identity_hint;
> -+ SSL_CTX_use_RSAPrivateKey;
> -+ SSL_CTX_use_RSAPrivateKey_ASN1;
> -+ SSL_CTX_use_RSAPrivateKey_file;
> -+ SSL_do_handshake;
> -+ SSL_dup;
> -+ SSL_dup_CA_list;
> -+ SSLeay_add_ssl_algorithms;
> -+ SSL_free;
> -+ SSL_get1_session;
> -+ SSL_get_certificate;
> -+ SSL_get_cipher_list;
> -+ SSL_get_ciphers;
> -+ SSL_get_client_CA_list;
> -+ SSL_get_current_cipher;
> -+ SSL_get_current_compression;
> -+ SSL_get_current_expansion;
> -+ SSL_get_default_timeout;
> -+ SSL_get_error;
> -+ SSL_get_ex_data;
> -+ SSL_get_ex_data_X509_STORE_CTX_idx;
> -+ SSL_get_ex_d_X509_STORE_CTX_idx;
> -+ SSL_get_ex_new_index;
> -+ SSL_get_fd;
> -+ SSL_get_finished;
> -+ SSL_get_info_callback;
> -+ SSL_get_peer_cert_chain;
> -+ SSL_get_peer_certificate;
> -+ SSL_get_peer_finished;
> -+ SSL_get_privatekey;
> -+ SSL_get_psk_identity;
> -+ SSL_get_psk_identity_hint;
> -+ SSL_get_quiet_shutdown;
> -+ SSL_get_rbio;
> -+ SSL_get_read_ahead;
> -+ SSL_get_rfd;
> -+ SSL_get_servername;
> -+ SSL_get_servername_type;
> -+ SSL_get_session;
> -+ SSL_get_shared_ciphers;
> -+ SSL_get_shutdown;
> -+ SSL_get_SSL_CTX;
> -+ SSL_get_ssl_method;
> -+ SSL_get_verify_callback;
> -+ SSL_get_verify_depth;
> -+ SSL_get_verify_mode;
> -+ SSL_get_verify_result;
> -+ SSL_get_version;
> -+ SSL_get_wbio;
> -+ SSL_get_wfd;
> -+ SSL_has_matching_session_id;
> -+ SSL_library_init;
> -+ SSL_load_client_CA_file;
> -+ SSL_load_error_strings;
> -+ SSL_new;
> -+ SSL_peek;
> -+ SSL_pending;
> -+ SSL_read;
> -+ SSL_renegotiate;
> -+ SSL_renegotiate_pending;
> -+ SSL_rstate_string;
> -+ SSL_rstate_string_long;
> -+ SSL_SESSION_cmp;
> -+ SSL_SESSION_free;
> -+ SSL_SESSION_get_ex_data;
> -+ SSL_SESSION_get_ex_new_index;
> -+ SSL_SESSION_get_id;
> -+ SSL_SESSION_get_time;
> -+ SSL_SESSION_get_timeout;
> -+ SSL_SESSION_hash;
> -+ SSL_SESSION_new;
> -+ SSL_SESSION_print;
> -+ SSL_SESSION_print_fp;
> -+ SSL_SESSION_set_ex_data;
> -+ SSL_SESSION_set_time;
> -+ SSL_SESSION_set_timeout;
> -+ SSL_set1_param;
> -+ SSL_set_accept_state;
> -+ SSL_set_bio;
> -+ SSL_set_cipher_list;
> -+ SSL_set_client_CA_list;
> -+ SSL_set_connect_state;
> -+ SSL_set_ex_data;
> -+ SSL_set_fd;
> -+ SSL_set_generate_session_id;
> -+ SSL_set_info_callback;
> -+ SSL_set_msg_callback;
> -+ SSL_set_psk_client_callback;
> -+ SSL_set_psk_server_callback;
> -+ SSL_set_purpose;
> -+ SSL_set_quiet_shutdown;
> -+ SSL_set_read_ahead;
> -+ SSL_set_rfd;
> -+ SSL_set_session;
> -+ SSL_set_session_id_context;
> -+ SSL_set_session_secret_cb;
> -+ SSL_set_session_ticket_ext;
> -+ SSL_set_session_ticket_ext_cb;
> -+ SSL_set_shutdown;
> -+ SSL_set_SSL_CTX;
> -+ SSL_set_ssl_method;
> -+ SSL_set_tmp_dh_callback;
> -+ SSL_set_tmp_ecdh_callback;
> -+ SSL_set_tmp_rsa_callback;
> -+ SSL_set_trust;
> -+ SSL_set_verify;
> -+ SSL_set_verify_depth;
> -+ SSL_set_verify_result;
> -+ SSL_set_wfd;
> -+ SSL_shutdown;
> -+ SSL_state;
> -+ SSL_state_string;
> -+ SSL_state_string_long;
> -+ SSL_use_certificate;
> -+ SSL_use_certificate_ASN1;
> -+ SSL_use_certificate_file;
> -+ SSL_use_PrivateKey;
> -+ SSL_use_PrivateKey_ASN1;
> -+ SSL_use_PrivateKey_file;
> -+ SSL_use_psk_identity_hint;
> -+ SSL_use_RSAPrivateKey;
> -+ SSL_use_RSAPrivateKey_ASN1;
> -+ SSL_use_RSAPrivateKey_file;
> -+ SSLv23_client_method;
> -+ SSLv23_method;
> -+ SSLv23_server_method;
> -+ SSLv2_client_method;
> -+ SSLv2_method;
> -+ SSLv2_server_method;
> -+ SSLv3_client_method;
> -+ SSLv3_method;
> -+ SSLv3_server_method;
> -+ SSL_version;
> -+ SSL_want;
> -+ SSL_write;
> -+ TLSv1_client_method;
> -+ TLSv1_method;
> -+ TLSv1_server_method;
> -+
> -+
> -+ SSLeay;
> -+ SSLeay_version;
> -+ ASN1_BIT_STRING_asn1_meth;
> -+ ASN1_HEADER_free;
> -+ ASN1_HEADER_new;
> -+ ASN1_IA5STRING_asn1_meth;
> -+ ASN1_INTEGER_get;
> -+ ASN1_INTEGER_set;
> -+ ASN1_INTEGER_to_BN;
> -+ ASN1_OBJECT_create;
> -+ ASN1_OBJECT_free;
> -+ ASN1_OBJECT_new;
> -+ ASN1_PRINTABLE_type;
> -+ ASN1_STRING_cmp;
> -+ ASN1_STRING_dup;
> -+ ASN1_STRING_free;
> -+ ASN1_STRING_new;
> -+ ASN1_STRING_print;
> -+ ASN1_STRING_set;
> -+ ASN1_STRING_type_new;
> -+ ASN1_TYPE_free;
> -+ ASN1_TYPE_new;
> -+ ASN1_UNIVERSALSTRING_to_string;
> -+ ASN1_UTCTIME_check;
> -+ ASN1_UTCTIME_print;
> -+ ASN1_UTCTIME_set;
> -+ ASN1_check_infinite_end;
> -+ ASN1_d2i_bio;
> -+ ASN1_d2i_fp;
> -+ ASN1_digest;
> -+ ASN1_dup;
> -+ ASN1_get_object;
> -+ ASN1_i2d_bio;
> -+ ASN1_i2d_fp;
> -+ ASN1_object_size;
> -+ ASN1_parse;
> -+ ASN1_put_object;
> -+ ASN1_sign;
> -+ ASN1_verify;
> -+ BF_cbc_encrypt;
> -+ BF_cfb64_encrypt;
> -+ BF_ecb_encrypt;
> -+ BF_encrypt;
> -+ BF_ofb64_encrypt;
> -+ BF_options;
> -+ BF_set_key;
> -+ BIO_CONNECT_free;
> -+ BIO_CONNECT_new;
> -+ BIO_accept;
> -+ BIO_ctrl;
> -+ BIO_int_ctrl;
> -+ BIO_debug_callback;
> -+ BIO_dump;
> -+ BIO_dup_chain;
> -+ BIO_f_base64;
> -+ BIO_f_buffer;
> -+ BIO_f_cipher;
> -+ BIO_f_md;
> -+ BIO_f_null;
> -+ BIO_f_proxy_server;
> -+ BIO_fd_non_fatal_error;
> -+ BIO_fd_should_retry;
> -+ BIO_find_type;
> -+ BIO_free;
> -+ BIO_free_all;
> -+ BIO_get_accept_socket;
> -+ BIO_get_filter_bio;
> -+ BIO_get_host_ip;
> -+ BIO_get_port;
> -+ BIO_get_retry_BIO;
> -+ BIO_get_retry_reason;
> -+ BIO_gethostbyname;
> -+ BIO_gets;
> -+ BIO_new;
> -+ BIO_new_accept;
> -+ BIO_new_connect;
> -+ BIO_new_fd;
> -+ BIO_new_file;
> -+ BIO_new_fp;
> -+ BIO_new_socket;
> -+ BIO_pop;
> -+ BIO_printf;
> -+ BIO_push;
> -+ BIO_puts;
> -+ BIO_read;
> -+ BIO_s_accept;
> -+ BIO_s_connect;
> -+ BIO_s_fd;
> -+ BIO_s_file;
> -+ BIO_s_mem;
> -+ BIO_s_null;
> -+ BIO_s_proxy_client;
> -+ BIO_s_socket;
> -+ BIO_set;
> -+ BIO_set_cipher;
> -+ BIO_set_tcp_ndelay;
> -+ BIO_sock_cleanup;
> -+ BIO_sock_error;
> -+ BIO_sock_init;
> -+ BIO_sock_non_fatal_error;
> -+ BIO_sock_should_retry;
> -+ BIO_socket_ioctl;
> -+ BIO_write;
> -+ BN_CTX_free;
> -+ BN_CTX_new;
> -+ BN_MONT_CTX_free;
> -+ BN_MONT_CTX_new;
> -+ BN_MONT_CTX_set;
> -+ BN_add;
> -+ BN_add_word;
> -+ BN_hex2bn;
> -+ BN_bin2bn;
> -+ BN_bn2hex;
> -+ BN_bn2bin;
> -+ BN_clear;
> -+ BN_clear_bit;
> -+ BN_clear_free;
> -+ BN_cmp;
> -+ BN_copy;
> -+ BN_div;
> -+ BN_div_word;
> -+ BN_dup;
> -+ BN_free;
> -+ BN_from_montgomery;
> -+ BN_gcd;
> -+ BN_generate_prime;
> -+ BN_get_word;
> -+ BN_is_bit_set;
> -+ BN_is_prime;
> -+ BN_lshift;
> -+ BN_lshift1;
> -+ BN_mask_bits;
> -+ BN_mod;
> -+ BN_mod_exp;
> -+ BN_mod_exp_mont;
> -+ BN_mod_exp_simple;
> -+ BN_mod_inverse;
> -+ BN_mod_mul;
> -+ BN_mod_mul_montgomery;
> -+ BN_mod_word;
> -+ BN_mul;
> -+ BN_new;
> -+ BN_num_bits;
> -+ BN_num_bits_word;
> -+ BN_options;
> -+ BN_print;
> -+ BN_print_fp;
> -+ BN_rand;
> -+ BN_reciprocal;
> -+ BN_rshift;
> -+ BN_rshift1;
> -+ BN_set_bit;
> -+ BN_set_word;
> -+ BN_sqr;
> -+ BN_sub;
> -+ BN_to_ASN1_INTEGER;
> -+ BN_ucmp;
> -+ BN_value_one;
> -+ BUF_MEM_free;
> -+ BUF_MEM_grow;
> -+ BUF_MEM_new;
> -+ BUF_strdup;
> -+ CONF_free;
> -+ CONF_get_number;
> -+ CONF_get_section;
> -+ CONF_get_string;
> -+ CONF_load;
> -+ CRYPTO_add_lock;
> -+ CRYPTO_dbg_free;
> -+ CRYPTO_dbg_malloc;
> -+ CRYPTO_dbg_realloc;
> -+ CRYPTO_dbg_remalloc;
> -+ CRYPTO_free;
> -+ CRYPTO_get_add_lock_callback;
> -+ CRYPTO_get_id_callback;
> -+ CRYPTO_get_lock_name;
> -+ CRYPTO_get_locking_callback;
> -+ CRYPTO_get_mem_functions;
> -+ CRYPTO_lock;
> -+ CRYPTO_malloc;
> -+ CRYPTO_mem_ctrl;
> -+ CRYPTO_mem_leaks;
> -+ CRYPTO_mem_leaks_cb;
> -+ CRYPTO_mem_leaks_fp;
> -+ CRYPTO_realloc;
> -+ CRYPTO_remalloc;
> -+ CRYPTO_set_add_lock_callback;
> -+ CRYPTO_set_id_callback;
> -+ CRYPTO_set_locking_callback;
> -+ CRYPTO_set_mem_functions;
> -+ CRYPTO_thread_id;
> -+ DH_check;
> -+ DH_compute_key;
> -+ DH_free;
> -+ DH_generate_key;
> -+ DH_generate_parameters;
> -+ DH_new;
> -+ DH_size;
> -+ DHparams_print;
> -+ DHparams_print_fp;
> -+ DSA_free;
> -+ DSA_generate_key;
> -+ DSA_generate_parameters;
> -+ DSA_is_prime;
> -+ DSA_new;
> -+ DSA_print;
> -+ DSA_print_fp;
> -+ DSA_sign;
> -+ DSA_sign_setup;
> -+ DSA_size;
> -+ DSA_verify;
> -+ DSAparams_print;
> -+ DSAparams_print_fp;
> -+ ERR_clear_error;
> -+ ERR_error_string;
> -+ ERR_free_strings;
> -+ ERR_func_error_string;
> -+ ERR_get_err_state_table;
> -+ ERR_get_error;
> -+ ERR_get_error_line;
> -+ ERR_get_state;
> -+ ERR_get_string_table;
> -+ ERR_lib_error_string;
> -+ ERR_load_ASN1_strings;
> -+ ERR_load_BIO_strings;
> -+ ERR_load_BN_strings;
> -+ ERR_load_BUF_strings;
> -+ ERR_load_CONF_strings;
> -+ ERR_load_DH_strings;
> -+ ERR_load_DSA_strings;
> -+ ERR_load_ERR_strings;
> -+ ERR_load_EVP_strings;
> -+ ERR_load_OBJ_strings;
> -+ ERR_load_PEM_strings;
> -+ ERR_load_PROXY_strings;
> -+ ERR_load_RSA_strings;
> -+ ERR_load_X509_strings;
> -+ ERR_load_crypto_strings;
> -+ ERR_load_strings;
> -+ ERR_peek_error;
> -+ ERR_peek_error_line;
> -+ ERR_print_errors;
> -+ ERR_print_errors_fp;
> -+ ERR_put_error;
> -+ ERR_reason_error_string;
> -+ ERR_remove_state;
> -+ EVP_BytesToKey;
> -+ EVP_CIPHER_CTX_cleanup;
> -+ EVP_CipherFinal;
> -+ EVP_CipherInit;
> -+ EVP_CipherUpdate;
> -+ EVP_DecodeBlock;
> -+ EVP_DecodeFinal;
> -+ EVP_DecodeInit;
> -+ EVP_DecodeUpdate;
> -+ EVP_DecryptFinal;
> -+ EVP_DecryptInit;
> -+ EVP_DecryptUpdate;
> -+ EVP_DigestFinal;
> -+ EVP_DigestInit;
> -+ EVP_DigestUpdate;
> -+ EVP_EncodeBlock;
> -+ EVP_EncodeFinal;
> -+ EVP_EncodeInit;
> -+ EVP_EncodeUpdate;
> -+ EVP_EncryptFinal;
> -+ EVP_EncryptInit;
> -+ EVP_EncryptUpdate;
> -+ EVP_OpenFinal;
> -+ EVP_OpenInit;
> -+ EVP_PKEY_assign;
> -+ EVP_PKEY_copy_parameters;
> -+ EVP_PKEY_free;
> -+ EVP_PKEY_missing_parameters;
> -+ EVP_PKEY_new;
> -+ EVP_PKEY_save_parameters;
> -+ EVP_PKEY_size;
> -+ EVP_PKEY_type;
> -+ EVP_SealFinal;
> -+ EVP_SealInit;
> -+ EVP_SignFinal;
> -+ EVP_VerifyFinal;
> -+ EVP_add_alias;
> -+ EVP_add_cipher;
> -+ EVP_add_digest;
> -+ EVP_bf_cbc;
> -+ EVP_bf_cfb64;
> -+ EVP_bf_ecb;
> -+ EVP_bf_ofb;
> -+ EVP_cleanup;
> -+ EVP_des_cbc;
> -+ EVP_des_cfb64;
> -+ EVP_des_ecb;
> -+ EVP_des_ede;
> -+ EVP_des_ede3;
> -+ EVP_des_ede3_cbc;
> -+ EVP_des_ede3_cfb64;
> -+ EVP_des_ede3_ofb;
> -+ EVP_des_ede_cbc;
> -+ EVP_des_ede_cfb64;
> -+ EVP_des_ede_ofb;
> -+ EVP_des_ofb;
> -+ EVP_desx_cbc;
> -+ EVP_dss;
> -+ EVP_dss1;
> -+ EVP_enc_null;
> -+ EVP_get_cipherbyname;
> -+ EVP_get_digestbyname;
> -+ EVP_get_pw_prompt;
> -+ EVP_idea_cbc;
> -+ EVP_idea_cfb64;
> -+ EVP_idea_ecb;
> -+ EVP_idea_ofb;
> -+ EVP_md2;
> -+ EVP_md5;
> -+ EVP_md_null;
> -+ EVP_rc2_cbc;
> -+ EVP_rc2_cfb64;
> -+ EVP_rc2_ecb;
> -+ EVP_rc2_ofb;
> -+ EVP_rc4;
> -+ EVP_read_pw_string;
> -+ EVP_set_pw_prompt;
> -+ EVP_sha;
> -+ EVP_sha1;
> -+ MD2;
> -+ MD2_Final;
> -+ MD2_Init;
> -+ MD2_Update;
> -+ MD2_options;
> -+ MD5;
> -+ MD5_Final;
> -+ MD5_Init;
> -+ MD5_Update;
> -+ MDC2;
> -+ MDC2_Final;
> -+ MDC2_Init;
> -+ MDC2_Update;
> -+ NETSCAPE_SPKAC_free;
> -+ NETSCAPE_SPKAC_new;
> -+ NETSCAPE_SPKI_free;
> -+ NETSCAPE_SPKI_new;
> -+ NETSCAPE_SPKI_sign;
> -+ NETSCAPE_SPKI_verify;
> -+ OBJ_add_object;
> -+ OBJ_bsearch;
> -+ OBJ_cleanup;
> -+ OBJ_cmp;
> -+ OBJ_create;
> -+ OBJ_dup;
> -+ OBJ_ln2nid;
> -+ OBJ_new_nid;
> -+ OBJ_nid2ln;
> -+ OBJ_nid2obj;
> -+ OBJ_nid2sn;
> -+ OBJ_obj2nid;
> -+ OBJ_sn2nid;
> -+ OBJ_txt2nid;
> -+ PEM_ASN1_read;
> -+ PEM_ASN1_read_bio;
> -+ PEM_ASN1_write;
> -+ PEM_ASN1_write_bio;
> -+ PEM_SealFinal;
> -+ PEM_SealInit;
> -+ PEM_SealUpdate;
> -+ PEM_SignFinal;
> -+ PEM_SignInit;
> -+ PEM_SignUpdate;
> -+ PEM_X509_INFO_read;
> -+ PEM_X509_INFO_read_bio;
> -+ PEM_X509_INFO_write_bio;
> -+ PEM_dek_info;
> -+ PEM_do_header;
> -+ PEM_get_EVP_CIPHER_INFO;
> -+ PEM_proc_type;
> -+ PEM_read;
> -+ PEM_read_DHparams;
> -+ PEM_read_DSAPrivateKey;
> -+ PEM_read_DSAparams;
> -+ PEM_read_PKCS7;
> -+ PEM_read_PrivateKey;
> -+ PEM_read_RSAPrivateKey;
> -+ PEM_read_X509;
> -+ PEM_read_X509_CRL;
> -+ PEM_read_X509_REQ;
> -+ PEM_read_bio;
> -+ PEM_read_bio_DHparams;
> -+ PEM_read_bio_DSAPrivateKey;
> -+ PEM_read_bio_DSAparams;
> -+ PEM_read_bio_PKCS7;
> -+ PEM_read_bio_PrivateKey;
> -+ PEM_read_bio_RSAPrivateKey;
> -+ PEM_read_bio_X509;
> -+ PEM_read_bio_X509_CRL;
> -+ PEM_read_bio_X509_REQ;
> -+ PEM_write;
> -+ PEM_write_DHparams;
> -+ PEM_write_DSAPrivateKey;
> -+ PEM_write_DSAparams;
> -+ PEM_write_PKCS7;
> -+ PEM_write_PrivateKey;
> -+ PEM_write_RSAPrivateKey;
> -+ PEM_write_X509;
> -+ PEM_write_X509_CRL;
> -+ PEM_write_X509_REQ;
> -+ PEM_write_bio;
> -+ PEM_write_bio_DHparams;
> -+ PEM_write_bio_DSAPrivateKey;
> -+ PEM_write_bio_DSAparams;
> -+ PEM_write_bio_PKCS7;
> -+ PEM_write_bio_PrivateKey;
> -+ PEM_write_bio_RSAPrivateKey;
> -+ PEM_write_bio_X509;
> -+ PEM_write_bio_X509_CRL;
> -+ PEM_write_bio_X509_REQ;
> -+ PKCS7_DIGEST_free;
> -+ PKCS7_DIGEST_new;
> -+ PKCS7_ENCRYPT_free;
> -+ PKCS7_ENCRYPT_new;
> -+ PKCS7_ENC_CONTENT_free;
> -+ PKCS7_ENC_CONTENT_new;
> -+ PKCS7_ENVELOPE_free;
> -+ PKCS7_ENVELOPE_new;
> -+ PKCS7_ISSUER_AND_SERIAL_digest;
> -+ PKCS7_ISSUER_AND_SERIAL_free;
> -+ PKCS7_ISSUER_AND_SERIAL_new;
> -+ PKCS7_RECIP_INFO_free;
> -+ PKCS7_RECIP_INFO_new;
> -+ PKCS7_SIGNED_free;
> -+ PKCS7_SIGNED_new;
> -+ PKCS7_SIGNER_INFO_free;
> -+ PKCS7_SIGNER_INFO_new;
> -+ PKCS7_SIGN_ENVELOPE_free;
> -+ PKCS7_SIGN_ENVELOPE_new;
> -+ PKCS7_dup;
> -+ PKCS7_free;
> -+ PKCS7_new;
> -+ PROXY_ENTRY_add_noproxy;
> -+ PROXY_ENTRY_clear_noproxy;
> -+ PROXY_ENTRY_free;
> -+ PROXY_ENTRY_get_noproxy;
> -+ PROXY_ENTRY_new;
> -+ PROXY_ENTRY_set_server;
> -+ PROXY_add_noproxy;
> -+ PROXY_add_server;
> -+ PROXY_check_by_host;
> -+ PROXY_check_url;
> -+ PROXY_clear_noproxy;
> -+ PROXY_free;
> -+ PROXY_get_noproxy;
> -+ PROXY_get_proxies;
> -+ PROXY_get_proxy_entry;
> -+ PROXY_load_conf;
> -+ PROXY_new;
> -+ PROXY_print;
> -+ RAND_bytes;
> -+ RAND_cleanup;
> -+ RAND_file_name;
> -+ RAND_load_file;
> -+ RAND_screen;
> -+ RAND_seed;
> -+ RAND_write_file;
> -+ RC2_cbc_encrypt;
> -+ RC2_cfb64_encrypt;
> -+ RC2_ecb_encrypt;
> -+ RC2_encrypt;
> -+ RC2_ofb64_encrypt;
> -+ RC2_set_key;
> -+ RC4;
> -+ RC4_options;
> -+ RC4_set_key;
> -+ RSAPrivateKey_asn1_meth;
> -+ RSAPrivateKey_dup;
> -+ RSAPublicKey_dup;
> -+ RSA_PKCS1_SSLeay;
> -+ RSA_free;
> -+ RSA_generate_key;
> -+ RSA_new;
> -+ RSA_new_method;
> -+ RSA_print;
> -+ RSA_print_fp;
> -+ RSA_private_decrypt;
> -+ RSA_private_encrypt;
> -+ RSA_public_decrypt;
> -+ RSA_public_encrypt;
> -+ RSA_set_default_method;
> -+ RSA_sign;
> -+ RSA_sign_ASN1_OCTET_STRING;
> -+ RSA_size;
> -+ RSA_verify;
> -+ RSA_verify_ASN1_OCTET_STRING;
> -+ SHA;
> -+ SHA1;
> -+ SHA1_Final;
> -+ SHA1_Init;
> -+ SHA1_Update;
> -+ SHA_Final;
> -+ SHA_Init;
> -+ SHA_Update;
> -+ OpenSSL_add_all_algorithms;
> -+ OpenSSL_add_all_ciphers;
> -+ OpenSSL_add_all_digests;
> -+ TXT_DB_create_index;
> -+ TXT_DB_free;
> -+ TXT_DB_get_by_index;
> -+ TXT_DB_insert;
> -+ TXT_DB_read;
> -+ TXT_DB_write;
> -+ X509_ALGOR_free;
> -+ X509_ALGOR_new;
> -+ X509_ATTRIBUTE_free;
> -+ X509_ATTRIBUTE_new;
> -+ X509_CINF_free;
> -+ X509_CINF_new;
> -+ X509_CRL_INFO_free;
> -+ X509_CRL_INFO_new;
> -+ X509_CRL_add_ext;
> -+ X509_CRL_cmp;
> -+ X509_CRL_delete_ext;
> -+ X509_CRL_dup;
> -+ X509_CRL_free;
> -+ X509_CRL_get_ext;
> -+ X509_CRL_get_ext_by_NID;
> -+ X509_CRL_get_ext_by_OBJ;
> -+ X509_CRL_get_ext_by_critical;
> -+ X509_CRL_get_ext_count;
> -+ X509_CRL_new;
> -+ X509_CRL_sign;
> -+ X509_CRL_verify;
> -+ X509_EXTENSION_create_by_NID;
> -+ X509_EXTENSION_create_by_OBJ;
> -+ X509_EXTENSION_dup;
> -+ X509_EXTENSION_free;
> -+ X509_EXTENSION_get_critical;
> -+ X509_EXTENSION_get_data;
> -+ X509_EXTENSION_get_object;
> -+ X509_EXTENSION_new;
> -+ X509_EXTENSION_set_critical;
> -+ X509_EXTENSION_set_data;
> -+ X509_EXTENSION_set_object;
> -+ X509_INFO_free;
> -+ X509_INFO_new;
> -+ X509_LOOKUP_by_alias;
> -+ X509_LOOKUP_by_fingerprint;
> -+ X509_LOOKUP_by_issuer_serial;
> -+ X509_LOOKUP_by_subject;
> -+ X509_LOOKUP_ctrl;
> -+ X509_LOOKUP_file;
> -+ X509_LOOKUP_free;
> -+ X509_LOOKUP_hash_dir;
> -+ X509_LOOKUP_init;
> -+ X509_LOOKUP_new;
> -+ X509_LOOKUP_shutdown;
> -+ X509_NAME_ENTRY_create_by_NID;
> -+ X509_NAME_ENTRY_create_by_OBJ;
> -+ X509_NAME_ENTRY_dup;
> -+ X509_NAME_ENTRY_free;
> -+ X509_NAME_ENTRY_get_data;
> -+ X509_NAME_ENTRY_get_object;
> -+ X509_NAME_ENTRY_new;
> -+ X509_NAME_ENTRY_set_data;
> -+ X509_NAME_ENTRY_set_object;
> -+ X509_NAME_add_entry;
> -+ X509_NAME_cmp;
> -+ X509_NAME_delete_entry;
> -+ X509_NAME_digest;
> -+ X509_NAME_dup;
> -+ X509_NAME_entry_count;
> -+ X509_NAME_free;
> -+ X509_NAME_get_entry;
> -+ X509_NAME_get_index_by_NID;
> -+ X509_NAME_get_index_by_OBJ;
> -+ X509_NAME_get_text_by_NID;
> -+ X509_NAME_get_text_by_OBJ;
> -+ X509_NAME_hash;
> -+ X509_NAME_new;
> -+ X509_NAME_oneline;
> -+ X509_NAME_print;
> -+ X509_NAME_set;
> -+ X509_OBJECT_free_contents;
> -+ X509_OBJECT_retrieve_by_subject;
> -+ X509_OBJECT_up_ref_count;
> -+ X509_PKEY_free;
> -+ X509_PKEY_new;
> -+ X509_PUBKEY_free;
> -+ X509_PUBKEY_get;
> -+ X509_PUBKEY_new;
> -+ X509_PUBKEY_set;
> -+ X509_REQ_INFO_free;
> -+ X509_REQ_INFO_new;
> -+ X509_REQ_dup;
> -+ X509_REQ_free;
> -+ X509_REQ_get_pubkey;
> -+ X509_REQ_new;
> -+ X509_REQ_print;
> -+ X509_REQ_print_fp;
> -+ X509_REQ_set_pubkey;
> -+ X509_REQ_set_subject_name;
> -+ X509_REQ_set_version;
> -+ X509_REQ_sign;
> -+ X509_REQ_to_X509;
> -+ X509_REQ_verify;
> -+ X509_REVOKED_add_ext;
> -+ X509_REVOKED_delete_ext;
> -+ X509_REVOKED_free;
> -+ X509_REVOKED_get_ext;
> -+ X509_REVOKED_get_ext_by_NID;
> -+ X509_REVOKED_get_ext_by_OBJ;
> -+ X509_REVOKED_get_ext_by_critical;
> -+ X509_REVOKED_get_ext_by_critic;
> -+ X509_REVOKED_get_ext_count;
> -+ X509_REVOKED_new;
> -+ X509_SIG_free;
> -+ X509_SIG_new;
> -+ X509_STORE_CTX_cleanup;
> -+ X509_STORE_CTX_init;
> -+ X509_STORE_add_cert;
> -+ X509_STORE_add_lookup;
> -+ X509_STORE_free;
> -+ X509_STORE_get_by_subject;
> -+ X509_STORE_load_locations;
> -+ X509_STORE_new;
> -+ X509_STORE_set_default_paths;
> -+ X509_VAL_free;
> -+ X509_VAL_new;
> -+ X509_add_ext;
> -+ X509_asn1_meth;
> -+ X509_certificate_type;
> -+ X509_check_private_key;
> -+ X509_cmp_current_time;
> -+ X509_delete_ext;
> -+ X509_digest;
> -+ X509_dup;
> -+ X509_free;
> -+ X509_get_default_cert_area;
> -+ X509_get_default_cert_dir;
> -+ X509_get_default_cert_dir_env;
> -+ X509_get_default_cert_file;
> -+ X509_get_default_cert_file_env;
> -+ X509_get_default_private_dir;
> -+ X509_get_ext;
> -+ X509_get_ext_by_NID;
> -+ X509_get_ext_by_OBJ;
> -+ X509_get_ext_by_critical;
> -+ X509_get_ext_count;
> -+ X509_get_issuer_name;
> -+ X509_get_pubkey;
> -+ X509_get_pubkey_parameters;
> -+ X509_get_serialNumber;
> -+ X509_get_subject_name;
> -+ X509_gmtime_adj;
> -+ X509_issuer_and_serial_cmp;
> -+ X509_issuer_and_serial_hash;
> -+ X509_issuer_name_cmp;
> -+ X509_issuer_name_hash;
> -+ X509_load_cert_file;
> -+ X509_new;
> -+ X509_print;
> -+ X509_print_fp;
> -+ X509_set_issuer_name;
> -+ X509_set_notAfter;
> -+ X509_set_notBefore;
> -+ X509_set_pubkey;
> -+ X509_set_serialNumber;
> -+ X509_set_subject_name;
> -+ X509_set_version;
> -+ X509_sign;
> -+ X509_subject_name_cmp;
> -+ X509_subject_name_hash;
> -+ X509_to_X509_REQ;
> -+ X509_verify;
> -+ X509_verify_cert;
> -+ X509_verify_cert_error_string;
> -+ X509v3_add_ext;
> -+ X509v3_add_extension;
> -+ X509v3_add_netscape_extensions;
> -+ X509v3_add_standard_extensions;
> -+ X509v3_cleanup_extensions;
> -+ X509v3_data_type_by_NID;
> -+ X509v3_data_type_by_OBJ;
> -+ X509v3_delete_ext;
> -+ X509v3_get_ext;
> -+ X509v3_get_ext_by_NID;
> -+ X509v3_get_ext_by_OBJ;
> -+ X509v3_get_ext_by_critical;
> -+ X509v3_get_ext_count;
> -+ X509v3_pack_string;
> -+ X509v3_pack_type_by_NID;
> -+ X509v3_pack_type_by_OBJ;
> -+ X509v3_unpack_string;
> -+ _des_crypt;
> -+ a2d_ASN1_OBJECT;
> -+ a2i_ASN1_INTEGER;
> -+ a2i_ASN1_STRING;
> -+ asn1_Finish;
> -+ asn1_GetSequence;
> -+ bn_div_words;
> -+ bn_expand2;
> -+ bn_mul_add_words;
> -+ bn_mul_words;
> -+ BN_uadd;
> -+ BN_usub;
> -+ bn_sqr_words;
> -+ _ossl_old_crypt;
> -+ d2i_ASN1_BIT_STRING;
> -+ d2i_ASN1_BOOLEAN;
> -+ d2i_ASN1_HEADER;
> -+ d2i_ASN1_IA5STRING;
> -+ d2i_ASN1_INTEGER;
> -+ d2i_ASN1_OBJECT;
> -+ d2i_ASN1_OCTET_STRING;
> -+ d2i_ASN1_PRINTABLE;
> -+ d2i_ASN1_PRINTABLESTRING;
> -+ d2i_ASN1_SET;
> -+ d2i_ASN1_T61STRING;
> -+ d2i_ASN1_TYPE;
> -+ d2i_ASN1_UTCTIME;
> -+ d2i_ASN1_bytes;
> -+ d2i_ASN1_type_bytes;
> -+ d2i_DHparams;
> -+ d2i_DSAPrivateKey;
> -+ d2i_DSAPrivateKey_bio;
> -+ d2i_DSAPrivateKey_fp;
> -+ d2i_DSAPublicKey;
> -+ d2i_DSAparams;
> -+ d2i_NETSCAPE_SPKAC;
> -+ d2i_NETSCAPE_SPKI;
> -+ d2i_Netscape_RSA;
> -+ d2i_PKCS7;
> -+ d2i_PKCS7_DIGEST;
> -+ d2i_PKCS7_ENCRYPT;
> -+ d2i_PKCS7_ENC_CONTENT;
> -+ d2i_PKCS7_ENVELOPE;
> -+ d2i_PKCS7_ISSUER_AND_SERIAL;
> -+ d2i_PKCS7_RECIP_INFO;
> -+ d2i_PKCS7_SIGNED;
> -+ d2i_PKCS7_SIGNER_INFO;
> -+ d2i_PKCS7_SIGN_ENVELOPE;
> -+ d2i_PKCS7_bio;
> -+ d2i_PKCS7_fp;
> -+ d2i_PrivateKey;
> -+ d2i_PublicKey;
> -+ d2i_RSAPrivateKey;
> -+ d2i_RSAPrivateKey_bio;
> -+ d2i_RSAPrivateKey_fp;
> -+ d2i_RSAPublicKey;
> -+ d2i_X509;
> -+ d2i_X509_ALGOR;
> -+ d2i_X509_ATTRIBUTE;
> -+ d2i_X509_CINF;
> -+ d2i_X509_CRL;
> -+ d2i_X509_CRL_INFO;
> -+ d2i_X509_CRL_bio;
> -+ d2i_X509_CRL_fp;
> -+ d2i_X509_EXTENSION;
> -+ d2i_X509_NAME;
> -+ d2i_X509_NAME_ENTRY;
> -+ d2i_X509_PKEY;
> -+ d2i_X509_PUBKEY;
> -+ d2i_X509_REQ;
> -+ d2i_X509_REQ_INFO;
> -+ d2i_X509_REQ_bio;
> -+ d2i_X509_REQ_fp;
> -+ d2i_X509_REVOKED;
> -+ d2i_X509_SIG;
> -+ d2i_X509_VAL;
> -+ d2i_X509_bio;
> -+ d2i_X509_fp;
> -+ DES_cbc_cksum;
> -+ DES_cbc_encrypt;
> -+ DES_cblock_print_file;
> -+ DES_cfb64_encrypt;
> -+ DES_cfb_encrypt;
> -+ DES_decrypt3;
> -+ DES_ecb3_encrypt;
> -+ DES_ecb_encrypt;
> -+ DES_ede3_cbc_encrypt;
> -+ DES_ede3_cfb64_encrypt;
> -+ DES_ede3_ofb64_encrypt;
> -+ DES_enc_read;
> -+ DES_enc_write;
> -+ DES_encrypt1;
> -+ DES_encrypt2;
> -+ DES_encrypt3;
> -+ DES_fcrypt;
> -+ DES_is_weak_key;
> -+ DES_key_sched;
> -+ DES_ncbc_encrypt;
> -+ DES_ofb64_encrypt;
> -+ DES_ofb_encrypt;
> -+ DES_options;
> -+ DES_pcbc_encrypt;
> -+ DES_quad_cksum;
> -+ DES_random_key;
> -+ _ossl_old_des_random_seed;
> -+ _ossl_old_des_read_2passwords;
> -+ _ossl_old_des_read_password;
> -+ _ossl_old_des_read_pw;
> -+ _ossl_old_des_read_pw_string;
> -+ DES_set_key;
> -+ DES_set_odd_parity;
> -+ DES_string_to_2keys;
> -+ DES_string_to_key;
> -+ DES_xcbc_encrypt;
> -+ DES_xwhite_in2out;
> -+ fcrypt_body;
> -+ i2a_ASN1_INTEGER;
> -+ i2a_ASN1_OBJECT;
> -+ i2a_ASN1_STRING;
> -+ i2d_ASN1_BIT_STRING;
> -+ i2d_ASN1_BOOLEAN;
> -+ i2d_ASN1_HEADER;
> -+ i2d_ASN1_IA5STRING;
> -+ i2d_ASN1_INTEGER;
> -+ i2d_ASN1_OBJECT;
> -+ i2d_ASN1_OCTET_STRING;
> -+ i2d_ASN1_PRINTABLE;
> -+ i2d_ASN1_SET;
> -+ i2d_ASN1_TYPE;
> -+ i2d_ASN1_UTCTIME;
> -+ i2d_ASN1_bytes;
> -+ i2d_DHparams;
> -+ i2d_DSAPrivateKey;
> -+ i2d_DSAPrivateKey_bio;
> -+ i2d_DSAPrivateKey_fp;
> -+ i2d_DSAPublicKey;
> -+ i2d_DSAparams;
> -+ i2d_NETSCAPE_SPKAC;
> -+ i2d_NETSCAPE_SPKI;
> -+ i2d_Netscape_RSA;
> -+ i2d_PKCS7;
> -+ i2d_PKCS7_DIGEST;
> -+ i2d_PKCS7_ENCRYPT;
> -+ i2d_PKCS7_ENC_CONTENT;
> -+ i2d_PKCS7_ENVELOPE;
> -+ i2d_PKCS7_ISSUER_AND_SERIAL;
> -+ i2d_PKCS7_RECIP_INFO;
> -+ i2d_PKCS7_SIGNED;
> -+ i2d_PKCS7_SIGNER_INFO;
> -+ i2d_PKCS7_SIGN_ENVELOPE;
> -+ i2d_PKCS7_bio;
> -+ i2d_PKCS7_fp;
> -+ i2d_PrivateKey;
> -+ i2d_PublicKey;
> -+ i2d_RSAPrivateKey;
> -+ i2d_RSAPrivateKey_bio;
> -+ i2d_RSAPrivateKey_fp;
> -+ i2d_RSAPublicKey;
> -+ i2d_X509;
> -+ i2d_X509_ALGOR;
> -+ i2d_X509_ATTRIBUTE;
> -+ i2d_X509_CINF;
> -+ i2d_X509_CRL;
> -+ i2d_X509_CRL_INFO;
> -+ i2d_X509_CRL_bio;
> -+ i2d_X509_CRL_fp;
> -+ i2d_X509_EXTENSION;
> -+ i2d_X509_NAME;
> -+ i2d_X509_NAME_ENTRY;
> -+ i2d_X509_PKEY;
> -+ i2d_X509_PUBKEY;
> -+ i2d_X509_REQ;
> -+ i2d_X509_REQ_INFO;
> -+ i2d_X509_REQ_bio;
> -+ i2d_X509_REQ_fp;
> -+ i2d_X509_REVOKED;
> -+ i2d_X509_SIG;
> -+ i2d_X509_VAL;
> -+ i2d_X509_bio;
> -+ i2d_X509_fp;
> -+ idea_cbc_encrypt;
> -+ idea_cfb64_encrypt;
> -+ idea_ecb_encrypt;
> -+ idea_encrypt;
> -+ idea_ofb64_encrypt;
> -+ idea_options;
> -+ idea_set_decrypt_key;
> -+ idea_set_encrypt_key;
> -+ lh_delete;
> -+ lh_doall;
> -+ lh_doall_arg;
> -+ lh_free;
> -+ lh_insert;
> -+ lh_new;
> -+ lh_node_stats;
> -+ lh_node_stats_bio;
> -+ lh_node_usage_stats;
> -+ lh_node_usage_stats_bio;
> -+ lh_retrieve;
> -+ lh_stats;
> -+ lh_stats_bio;
> -+ lh_strhash;
> -+ sk_delete;
> -+ sk_delete_ptr;
> -+ sk_dup;
> -+ sk_find;
> -+ sk_free;
> -+ sk_insert;
> -+ sk_new;
> -+ sk_pop;
> -+ sk_pop_free;
> -+ sk_push;
> -+ sk_set_cmp_func;
> -+ sk_shift;
> -+ sk_unshift;
> -+ sk_zero;
> -+ BIO_f_nbio_test;
> -+ ASN1_TYPE_get;
> -+ ASN1_TYPE_set;
> -+ PKCS7_content_free;
> -+ ERR_load_PKCS7_strings;
> -+ X509_find_by_issuer_and_serial;
> -+ X509_find_by_subject;
> -+ PKCS7_ctrl;
> -+ PKCS7_set_type;
> -+ PKCS7_set_content;
> -+ PKCS7_SIGNER_INFO_set;
> -+ PKCS7_add_signer;
> -+ PKCS7_add_certificate;
> -+ PKCS7_add_crl;
> -+ PKCS7_content_new;
> -+ PKCS7_dataSign;
> -+ PKCS7_dataVerify;
> -+ PKCS7_dataInit;
> -+ PKCS7_add_signature;
> -+ PKCS7_cert_from_signer_info;
> -+ PKCS7_get_signer_info;
> -+ EVP_delete_alias;
> -+ EVP_mdc2;
> -+ PEM_read_bio_RSAPublicKey;
> -+ PEM_write_bio_RSAPublicKey;
> -+ d2i_RSAPublicKey_bio;
> -+ i2d_RSAPublicKey_bio;
> -+ PEM_read_RSAPublicKey;
> -+ PEM_write_RSAPublicKey;
> -+ d2i_RSAPublicKey_fp;
> -+ i2d_RSAPublicKey_fp;
> -+ BIO_copy_next_retry;
> -+ RSA_flags;
> -+ X509_STORE_add_crl;
> -+ X509_load_crl_file;
> -+ EVP_rc2_40_cbc;
> -+ EVP_rc4_40;
> -+ EVP_CIPHER_CTX_init;
> -+ HMAC;
> -+ HMAC_Init;
> -+ HMAC_Update;
> -+ HMAC_Final;
> -+ ERR_get_next_error_library;
> -+ EVP_PKEY_cmp_parameters;
> -+ HMAC_cleanup;
> -+ BIO_ptr_ctrl;
> -+ BIO_new_file_internal;
> -+ BIO_new_fp_internal;
> -+ BIO_s_file_internal;
> -+ BN_BLINDING_convert;
> -+ BN_BLINDING_invert;
> -+ BN_BLINDING_update;
> -+ RSA_blinding_on;
> -+ RSA_blinding_off;
> -+ i2t_ASN1_OBJECT;
> -+ BN_BLINDING_new;
> -+ BN_BLINDING_free;
> -+ EVP_cast5_cbc;
> -+ EVP_cast5_cfb64;
> -+ EVP_cast5_ecb;
> -+ EVP_cast5_ofb;
> -+ BF_decrypt;
> -+ CAST_set_key;
> -+ CAST_encrypt;
> -+ CAST_decrypt;
> -+ CAST_ecb_encrypt;
> -+ CAST_cbc_encrypt;
> -+ CAST_cfb64_encrypt;
> -+ CAST_ofb64_encrypt;
> -+ RC2_decrypt;
> -+ OBJ_create_objects;
> -+ BN_exp;
> -+ BN_mul_word;
> -+ BN_sub_word;
> -+ BN_dec2bn;
> -+ BN_bn2dec;
> -+ BIO_ghbn_ctrl;
> -+ CRYPTO_free_ex_data;
> -+ CRYPTO_get_ex_data;
> -+ CRYPTO_set_ex_data;
> -+ ERR_load_CRYPTO_strings;
> -+ ERR_load_CRYPTOlib_strings;
> -+ EVP_PKEY_bits;
> -+ MD5_Transform;
> -+ SHA1_Transform;
> -+ SHA_Transform;
> -+ X509_STORE_CTX_get_chain;
> -+ X509_STORE_CTX_get_current_cert;
> -+ X509_STORE_CTX_get_error;
> -+ X509_STORE_CTX_get_error_depth;
> -+ X509_STORE_CTX_get_ex_data;
> -+ X509_STORE_CTX_set_cert;
> -+ X509_STORE_CTX_set_chain;
> -+ X509_STORE_CTX_set_error;
> -+ X509_STORE_CTX_set_ex_data;
> -+ CRYPTO_dup_ex_data;
> -+ CRYPTO_get_new_lockid;
> -+ CRYPTO_new_ex_data;
> -+ RSA_set_ex_data;
> -+ RSA_get_ex_data;
> -+ RSA_get_ex_new_index;
> -+ RSA_padding_add_PKCS1_type_1;
> -+ RSA_padding_add_PKCS1_type_2;
> -+ RSA_padding_add_SSLv23;
> -+ RSA_padding_add_none;
> -+ RSA_padding_check_PKCS1_type_1;
> -+ RSA_padding_check_PKCS1_type_2;
> -+ RSA_padding_check_SSLv23;
> -+ RSA_padding_check_none;
> -+ bn_add_words;
> -+ d2i_Netscape_RSA_2;
> -+ CRYPTO_get_ex_new_index;
> -+ RIPEMD160_Init;
> -+ RIPEMD160_Update;
> -+ RIPEMD160_Final;
> -+ RIPEMD160;
> -+ RIPEMD160_Transform;
> -+ RC5_32_set_key;
> -+ RC5_32_ecb_encrypt;
> -+ RC5_32_encrypt;
> -+ RC5_32_decrypt;
> -+ RC5_32_cbc_encrypt;
> -+ RC5_32_cfb64_encrypt;
> -+ RC5_32_ofb64_encrypt;
> -+ BN_bn2mpi;
> -+ BN_mpi2bn;
> -+ ASN1_BIT_STRING_get_bit;
> -+ ASN1_BIT_STRING_set_bit;
> -+ BIO_get_ex_data;
> -+ BIO_get_ex_new_index;
> -+ BIO_set_ex_data;
> -+ X509v3_get_key_usage;
> -+ X509v3_set_key_usage;
> -+ a2i_X509v3_key_usage;
> -+ i2a_X509v3_key_usage;
> -+ EVP_PKEY_decrypt;
> -+ EVP_PKEY_encrypt;
> -+ PKCS7_RECIP_INFO_set;
> -+ PKCS7_add_recipient;
> -+ PKCS7_add_recipient_info;
> -+ PKCS7_set_cipher;
> -+ ASN1_TYPE_get_int_octetstring;
> -+ ASN1_TYPE_get_octetstring;
> -+ ASN1_TYPE_set_int_octetstring;
> -+ ASN1_TYPE_set_octetstring;
> -+ ASN1_UTCTIME_set_string;
> -+ ERR_add_error_data;
> -+ ERR_set_error_data;
> -+ EVP_CIPHER_asn1_to_param;
> -+ EVP_CIPHER_param_to_asn1;
> -+ EVP_CIPHER_get_asn1_iv;
> -+ EVP_CIPHER_set_asn1_iv;
> -+ EVP_rc5_32_12_16_cbc;
> -+ EVP_rc5_32_12_16_cfb64;
> -+ EVP_rc5_32_12_16_ecb;
> -+ EVP_rc5_32_12_16_ofb;
> -+ asn1_add_error;
> -+ d2i_ASN1_BMPSTRING;
> -+ i2d_ASN1_BMPSTRING;
> -+ BIO_f_ber;
> -+ BN_init;
> -+ COMP_CTX_new;
> -+ COMP_CTX_free;
> -+ COMP_CTX_compress_block;
> -+ COMP_CTX_expand_block;
> -+ X509_STORE_CTX_get_ex_new_index;
> -+ OBJ_NAME_add;
> -+ BIO_socket_nbio;
> -+ EVP_rc2_64_cbc;
> -+ OBJ_NAME_cleanup;
> -+ OBJ_NAME_get;
> -+ OBJ_NAME_init;
> -+ OBJ_NAME_new_index;
> -+ OBJ_NAME_remove;
> -+ BN_MONT_CTX_copy;
> -+ BIO_new_socks4a_connect;
> -+ BIO_s_socks4a_connect;
> -+ PROXY_set_connect_mode;
> -+ RAND_SSLeay;
> -+ RAND_set_rand_method;
> -+ RSA_memory_lock;
> -+ bn_sub_words;
> -+ bn_mul_normal;
> -+ bn_mul_comba8;
> -+ bn_mul_comba4;
> -+ bn_sqr_normal;
> -+ bn_sqr_comba8;
> -+ bn_sqr_comba4;
> -+ bn_cmp_words;
> -+ bn_mul_recursive;
> -+ bn_mul_part_recursive;
> -+ bn_sqr_recursive;
> -+ bn_mul_low_normal;
> -+ BN_RECP_CTX_init;
> -+ BN_RECP_CTX_new;
> -+ BN_RECP_CTX_free;
> -+ BN_RECP_CTX_set;
> -+ BN_mod_mul_reciprocal;
> -+ BN_mod_exp_recp;
> -+ BN_div_recp;
> -+ BN_CTX_init;
> -+ BN_MONT_CTX_init;
> -+ RAND_get_rand_method;
> -+ PKCS7_add_attribute;
> -+ PKCS7_add_signed_attribute;
> -+ PKCS7_digest_from_attributes;
> -+ PKCS7_get_attribute;
> -+ PKCS7_get_issuer_and_serial;
> -+ PKCS7_get_signed_attribute;
> -+ COMP_compress_block;
> -+ COMP_expand_block;
> -+ COMP_rle;
> -+ COMP_zlib;
> -+ ms_time_diff;
> -+ ms_time_new;
> -+ ms_time_free;
> -+ ms_time_cmp;
> -+ ms_time_get;
> -+ PKCS7_set_attributes;
> -+ PKCS7_set_signed_attributes;
> -+ X509_ATTRIBUTE_create;
> -+ X509_ATTRIBUTE_dup;
> -+ ASN1_GENERALIZEDTIME_check;
> -+ ASN1_GENERALIZEDTIME_print;
> -+ ASN1_GENERALIZEDTIME_set;
> -+ ASN1_GENERALIZEDTIME_set_string;
> -+ ASN1_TIME_print;
> -+ BASIC_CONSTRAINTS_free;
> -+ BASIC_CONSTRAINTS_new;
> -+ ERR_load_X509V3_strings;
> -+ NETSCAPE_CERT_SEQUENCE_free;
> -+ NETSCAPE_CERT_SEQUENCE_new;
> -+ OBJ_txt2obj;
> -+ PEM_read_NETSCAPE_CERT_SEQUENCE;
> -+ PEM_read_NS_CERT_SEQ;
> -+ PEM_read_bio_NETSCAPE_CERT_SEQUENCE;
> -+ PEM_read_bio_NS_CERT_SEQ;
> -+ PEM_write_NETSCAPE_CERT_SEQUENCE;
> -+ PEM_write_NS_CERT_SEQ;
> -+ PEM_write_bio_NETSCAPE_CERT_SEQUENCE;
> -+ PEM_write_bio_NS_CERT_SEQ;
> -+ X509V3_EXT_add;
> -+ X509V3_EXT_add_alias;
> -+ X509V3_EXT_add_conf;
> -+ X509V3_EXT_cleanup;
> -+ X509V3_EXT_conf;
> -+ X509V3_EXT_conf_nid;
> -+ X509V3_EXT_get;
> -+ X509V3_EXT_get_nid;
> -+ X509V3_EXT_print;
> -+ X509V3_EXT_print_fp;
> -+ X509V3_add_standard_extensions;
> -+ X509V3_add_value;
> -+ X509V3_add_value_bool;
> -+ X509V3_add_value_int;
> -+ X509V3_conf_free;
> -+ X509V3_get_value_bool;
> -+ X509V3_get_value_int;
> -+ X509V3_parse_list;
> -+ d2i_ASN1_GENERALIZEDTIME;
> -+ d2i_ASN1_TIME;
> -+ d2i_BASIC_CONSTRAINTS;
> -+ d2i_NETSCAPE_CERT_SEQUENCE;
> -+ d2i_ext_ku;
> -+ ext_ku_free;
> -+ ext_ku_new;
> -+ i2d_ASN1_GENERALIZEDTIME;
> -+ i2d_ASN1_TIME;
> -+ i2d_BASIC_CONSTRAINTS;
> -+ i2d_NETSCAPE_CERT_SEQUENCE;
> -+ i2d_ext_ku;
> -+ EVP_MD_CTX_copy;
> -+ i2d_ASN1_ENUMERATED;
> -+ d2i_ASN1_ENUMERATED;
> -+ ASN1_ENUMERATED_set;
> -+ ASN1_ENUMERATED_get;
> -+ BN_to_ASN1_ENUMERATED;
> -+ ASN1_ENUMERATED_to_BN;
> -+ i2a_ASN1_ENUMERATED;
> -+ a2i_ASN1_ENUMERATED;
> -+ i2d_GENERAL_NAME;
> -+ d2i_GENERAL_NAME;
> -+ GENERAL_NAME_new;
> -+ GENERAL_NAME_free;
> -+ GENERAL_NAMES_new;
> -+ GENERAL_NAMES_free;
> -+ d2i_GENERAL_NAMES;
> -+ i2d_GENERAL_NAMES;
> -+ i2v_GENERAL_NAMES;
> -+ i2s_ASN1_OCTET_STRING;
> -+ s2i_ASN1_OCTET_STRING;
> -+ X509V3_EXT_check_conf;
> -+ hex_to_string;
> -+ string_to_hex;
> -+ DES_ede3_cbcm_encrypt;
> -+ RSA_padding_add_PKCS1_OAEP;
> -+ RSA_padding_check_PKCS1_OAEP;
> -+ X509_CRL_print_fp;
> -+ X509_CRL_print;
> -+ i2v_GENERAL_NAME;
> -+ v2i_GENERAL_NAME;
> -+ i2d_PKEY_USAGE_PERIOD;
> -+ d2i_PKEY_USAGE_PERIOD;
> -+ PKEY_USAGE_PERIOD_new;
> -+ PKEY_USAGE_PERIOD_free;
> -+ v2i_GENERAL_NAMES;
> -+ i2s_ASN1_INTEGER;
> -+ X509V3_EXT_d2i;
> -+ name_cmp;
> -+ str_dup;
> -+ i2s_ASN1_ENUMERATED;
> -+ i2s_ASN1_ENUMERATED_TABLE;
> -+ BIO_s_log;
> -+ BIO_f_reliable;
> -+ PKCS7_dataFinal;
> -+ PKCS7_dataDecode;
> -+ X509V3_EXT_CRL_add_conf;
> -+ BN_set_params;
> -+ BN_get_params;
> -+ BIO_get_ex_num;
> -+ BIO_set_ex_free_func;
> -+ EVP_ripemd160;
> -+ ASN1_TIME_set;
> -+ i2d_AUTHORITY_KEYID;
> -+ d2i_AUTHORITY_KEYID;
> -+ AUTHORITY_KEYID_new;
> -+ AUTHORITY_KEYID_free;
> -+ ASN1_seq_unpack;
> -+ ASN1_seq_pack;
> -+ ASN1_unpack_string;
> -+ ASN1_pack_string;
> -+ PKCS12_pack_safebag;
> -+ PKCS12_MAKE_KEYBAG;
> -+ PKCS8_encrypt;
> -+ PKCS12_MAKE_SHKEYBAG;
> -+ PKCS12_pack_p7data;
> -+ PKCS12_pack_p7encdata;
> -+ PKCS12_add_localkeyid;
> -+ PKCS12_add_friendlyname_asc;
> -+ PKCS12_add_friendlyname_uni;
> -+ PKCS12_get_friendlyname;
> -+ PKCS12_pbe_crypt;
> -+ PKCS12_decrypt_d2i;
> -+ PKCS12_i2d_encrypt;
> -+ PKCS12_init;
> -+ PKCS12_key_gen_asc;
> -+ PKCS12_key_gen_uni;
> -+ PKCS12_gen_mac;
> -+ PKCS12_verify_mac;
> -+ PKCS12_set_mac;
> -+ PKCS12_setup_mac;
> -+ OPENSSL_asc2uni;
> -+ OPENSSL_uni2asc;
> -+ i2d_PKCS12_BAGS;
> -+ PKCS12_BAGS_new;
> -+ d2i_PKCS12_BAGS;
> -+ PKCS12_BAGS_free;
> -+ i2d_PKCS12;
> -+ d2i_PKCS12;
> -+ PKCS12_new;
> -+ PKCS12_free;
> -+ i2d_PKCS12_MAC_DATA;
> -+ PKCS12_MAC_DATA_new;
> -+ d2i_PKCS12_MAC_DATA;
> -+ PKCS12_MAC_DATA_free;
> -+ i2d_PKCS12_SAFEBAG;
> -+ PKCS12_SAFEBAG_new;
> -+ d2i_PKCS12_SAFEBAG;
> -+ PKCS12_SAFEBAG_free;
> -+ ERR_load_PKCS12_strings;
> -+ PKCS12_PBE_add;
> -+ PKCS8_add_keyusage;
> -+ PKCS12_get_attr_gen;
> -+ PKCS12_parse;
> -+ PKCS12_create;
> -+ i2d_PKCS12_bio;
> -+ i2d_PKCS12_fp;
> -+ d2i_PKCS12_bio;
> -+ d2i_PKCS12_fp;
> -+ i2d_PBEPARAM;
> -+ PBEPARAM_new;
> -+ d2i_PBEPARAM;
> -+ PBEPARAM_free;
> -+ i2d_PKCS8_PRIV_KEY_INFO;
> -+ PKCS8_PRIV_KEY_INFO_new;
> -+ d2i_PKCS8_PRIV_KEY_INFO;
> -+ PKCS8_PRIV_KEY_INFO_free;
> -+ EVP_PKCS82PKEY;
> -+ EVP_PKEY2PKCS8;
> -+ PKCS8_set_broken;
> -+ EVP_PBE_ALGOR_CipherInit;
> -+ EVP_PBE_alg_add;
> -+ PKCS5_pbe_set;
> -+ EVP_PBE_cleanup;
> -+ i2d_SXNET;
> -+ d2i_SXNET;
> -+ SXNET_new;
> -+ SXNET_free;
> -+ i2d_SXNETID;
> -+ d2i_SXNETID;
> -+ SXNETID_new;
> -+ SXNETID_free;
> -+ DSA_SIG_new;
> -+ DSA_SIG_free;
> -+ DSA_do_sign;
> -+ DSA_do_verify;
> -+ d2i_DSA_SIG;
> -+ i2d_DSA_SIG;
> -+ i2d_ASN1_VISIBLESTRING;
> -+ d2i_ASN1_VISIBLESTRING;
> -+ i2d_ASN1_UTF8STRING;
> -+ d2i_ASN1_UTF8STRING;
> -+ i2d_DIRECTORYSTRING;
> -+ d2i_DIRECTORYSTRING;
> -+ i2d_DISPLAYTEXT;
> -+ d2i_DISPLAYTEXT;
> -+ d2i_ASN1_SET_OF_X509;
> -+ i2d_ASN1_SET_OF_X509;
> -+ i2d_PBKDF2PARAM;
> -+ PBKDF2PARAM_new;
> -+ d2i_PBKDF2PARAM;
> -+ PBKDF2PARAM_free;
> -+ i2d_PBE2PARAM;
> -+ PBE2PARAM_new;
> -+ d2i_PBE2PARAM;
> -+ PBE2PARAM_free;
> -+ d2i_ASN1_SET_OF_GENERAL_NAME;
> -+ i2d_ASN1_SET_OF_GENERAL_NAME;
> -+ d2i_ASN1_SET_OF_SXNETID;
> -+ i2d_ASN1_SET_OF_SXNETID;
> -+ d2i_ASN1_SET_OF_POLICYQUALINFO;
> -+ i2d_ASN1_SET_OF_POLICYQUALINFO;
> -+ d2i_ASN1_SET_OF_POLICYINFO;
> -+ i2d_ASN1_SET_OF_POLICYINFO;
> -+ SXNET_add_id_asc;
> -+ SXNET_add_id_ulong;
> -+ SXNET_add_id_INTEGER;
> -+ SXNET_get_id_asc;
> -+ SXNET_get_id_ulong;
> -+ SXNET_get_id_INTEGER;
> -+ X509V3_set_conf_lhash;
> -+ i2d_CERTIFICATEPOLICIES;
> -+ CERTIFICATEPOLICIES_new;
> -+ CERTIFICATEPOLICIES_free;
> -+ d2i_CERTIFICATEPOLICIES;
> -+ i2d_POLICYINFO;
> -+ POLICYINFO_new;
> -+ d2i_POLICYINFO;
> -+ POLICYINFO_free;
> -+ i2d_POLICYQUALINFO;
> -+ POLICYQUALINFO_new;
> -+ d2i_POLICYQUALINFO;
> -+ POLICYQUALINFO_free;
> -+ i2d_USERNOTICE;
> -+ USERNOTICE_new;
> -+ d2i_USERNOTICE;
> -+ USERNOTICE_free;
> -+ i2d_NOTICEREF;
> -+ NOTICEREF_new;
> -+ d2i_NOTICEREF;
> -+ NOTICEREF_free;
> -+ X509V3_get_string;
> -+ X509V3_get_section;
> -+ X509V3_string_free;
> -+ X509V3_section_free;
> -+ X509V3_set_ctx;
> -+ s2i_ASN1_INTEGER;
> -+ CRYPTO_set_locked_mem_functions;
> -+ CRYPTO_get_locked_mem_functions;
> -+ CRYPTO_malloc_locked;
> -+ CRYPTO_free_locked;
> -+ BN_mod_exp2_mont;
> -+ ERR_get_error_line_data;
> -+ ERR_peek_error_line_data;
> -+ PKCS12_PBE_keyivgen;
> -+ X509_ALGOR_dup;
> -+ d2i_ASN1_SET_OF_DIST_POINT;
> -+ i2d_ASN1_SET_OF_DIST_POINT;
> -+ i2d_CRL_DIST_POINTS;
> -+ CRL_DIST_POINTS_new;
> -+ CRL_DIST_POINTS_free;
> -+ d2i_CRL_DIST_POINTS;
> -+ i2d_DIST_POINT;
> -+ DIST_POINT_new;
> -+ d2i_DIST_POINT;
> -+ DIST_POINT_free;
> -+ i2d_DIST_POINT_NAME;
> -+ DIST_POINT_NAME_new;
> -+ DIST_POINT_NAME_free;
> -+ d2i_DIST_POINT_NAME;
> -+ X509V3_add_value_uchar;
> -+ d2i_ASN1_SET_OF_X509_ATTRIBUTE;
> -+ i2d_ASN1_SET_OF_ASN1_TYPE;
> -+ d2i_ASN1_SET_OF_X509_EXTENSION;
> -+ d2i_ASN1_SET_OF_X509_NAME_ENTRY;
> -+ d2i_ASN1_SET_OF_ASN1_TYPE;
> -+ i2d_ASN1_SET_OF_X509_ATTRIBUTE;
> -+ i2d_ASN1_SET_OF_X509_EXTENSION;
> -+ i2d_ASN1_SET_OF_X509_NAME_ENTRY;
> -+ X509V3_EXT_i2d;
> -+ X509V3_EXT_val_prn;
> -+ X509V3_EXT_add_list;
> -+ EVP_CIPHER_type;
> -+ EVP_PBE_CipherInit;
> -+ X509V3_add_value_bool_nf;
> -+ d2i_ASN1_UINTEGER;
> -+ sk_value;
> -+ sk_num;
> -+ sk_set;
> -+ i2d_ASN1_SET_OF_X509_REVOKED;
> -+ sk_sort;
> -+ d2i_ASN1_SET_OF_X509_REVOKED;
> -+ i2d_ASN1_SET_OF_X509_ALGOR;
> -+ i2d_ASN1_SET_OF_X509_CRL;
> -+ d2i_ASN1_SET_OF_X509_ALGOR;
> -+ d2i_ASN1_SET_OF_X509_CRL;
> -+ i2d_ASN1_SET_OF_PKCS7_SIGNER_INFO;
> -+ i2d_ASN1_SET_OF_PKCS7_RECIP_INFO;
> -+ d2i_ASN1_SET_OF_PKCS7_SIGNER_INFO;
> -+ d2i_ASN1_SET_OF_PKCS7_RECIP_INFO;
> -+ PKCS5_PBE_add;
> -+ PEM_write_bio_PKCS8;
> -+ i2d_PKCS8_fp;
> -+ PEM_read_bio_PKCS8_PRIV_KEY_INFO;
> -+ PEM_read_bio_P8_PRIV_KEY_INFO;
> -+ d2i_PKCS8_bio;
> -+ d2i_PKCS8_PRIV_KEY_INFO_fp;
> -+ PEM_write_bio_PKCS8_PRIV_KEY_INFO;
> -+ PEM_write_bio_P8_PRIV_KEY_INFO;
> -+ PEM_read_PKCS8;
> -+ d2i_PKCS8_PRIV_KEY_INFO_bio;
> -+ d2i_PKCS8_fp;
> -+ PEM_write_PKCS8;
> -+ PEM_read_PKCS8_PRIV_KEY_INFO;
> -+ PEM_read_P8_PRIV_KEY_INFO;
> -+ PEM_read_bio_PKCS8;
> -+ PEM_write_PKCS8_PRIV_KEY_INFO;
> -+ PEM_write_P8_PRIV_KEY_INFO;
> -+ PKCS5_PBE_keyivgen;
> -+ i2d_PKCS8_bio;
> -+ i2d_PKCS8_PRIV_KEY_INFO_fp;
> -+ i2d_PKCS8_PRIV_KEY_INFO_bio;
> -+ BIO_s_bio;
> -+ PKCS5_pbe2_set;
> -+ PKCS5_PBKDF2_HMAC_SHA1;
> -+ PKCS5_v2_PBE_keyivgen;
> -+ PEM_write_bio_PKCS8PrivateKey;
> -+ PEM_write_PKCS8PrivateKey;
> -+ BIO_ctrl_get_read_request;
> -+ BIO_ctrl_pending;
> -+ BIO_ctrl_wpending;
> -+ BIO_new_bio_pair;
> -+ BIO_ctrl_get_write_guarantee;
> -+ CRYPTO_num_locks;
> -+ CONF_load_bio;
> -+ CONF_load_fp;
> -+ i2d_ASN1_SET_OF_ASN1_OBJECT;
> -+ d2i_ASN1_SET_OF_ASN1_OBJECT;
> -+ PKCS7_signatureVerify;
> -+ RSA_set_method;
> -+ RSA_get_method;
> -+ RSA_get_default_method;
> -+ RSA_check_key;
> -+ OBJ_obj2txt;
> -+ DSA_dup_DH;
> -+ X509_REQ_get_extensions;
> -+ X509_REQ_set_extension_nids;
> -+ BIO_nwrite;
> -+ X509_REQ_extension_nid;
> -+ BIO_nread;
> -+ X509_REQ_get_extension_nids;
> -+ BIO_nwrite0;
> -+ X509_REQ_add_extensions_nid;
> -+ BIO_nread0;
> -+ X509_REQ_add_extensions;
> -+ BIO_new_mem_buf;
> -+ DH_set_ex_data;
> -+ DH_set_method;
> -+ DSA_OpenSSL;
> -+ DH_get_ex_data;
> -+ DH_get_ex_new_index;
> -+ DSA_new_method;
> -+ DH_new_method;
> -+ DH_OpenSSL;
> -+ DSA_get_ex_new_index;
> -+ DH_get_default_method;
> -+ DSA_set_ex_data;
> -+ DH_set_default_method;
> -+ DSA_get_ex_data;
> -+ X509V3_EXT_REQ_add_conf;
> -+ NETSCAPE_SPKI_print;
> -+ NETSCAPE_SPKI_set_pubkey;
> -+ NETSCAPE_SPKI_b64_encode;
> -+ NETSCAPE_SPKI_get_pubkey;
> -+ NETSCAPE_SPKI_b64_decode;
> -+ UTF8_putc;
> -+ UTF8_getc;
> -+ RSA_null_method;
> -+ ASN1_tag2str;
> -+ BIO_ctrl_reset_read_request;
> -+ DISPLAYTEXT_new;
> -+ ASN1_GENERALIZEDTIME_free;
> -+ X509_REVOKED_get_ext_d2i;
> -+ X509_set_ex_data;
> -+ X509_reject_set_bit_asc;
> -+ X509_NAME_add_entry_by_txt;
> -+ X509_NAME_add_entry_by_NID;
> -+ X509_PURPOSE_get0;
> -+ PEM_read_X509_AUX;
> -+ d2i_AUTHORITY_INFO_ACCESS;
> -+ PEM_write_PUBKEY;
> -+ ACCESS_DESCRIPTION_new;
> -+ X509_CERT_AUX_free;
> -+ d2i_ACCESS_DESCRIPTION;
> -+ X509_trust_clear;
> -+ X509_TRUST_add;
> -+ ASN1_VISIBLESTRING_new;
> -+ X509_alias_set1;
> -+ ASN1_PRINTABLESTRING_free;
> -+ EVP_PKEY_get1_DSA;
> -+ ASN1_BMPSTRING_new;
> -+ ASN1_mbstring_copy;
> -+ ASN1_UTF8STRING_new;
> -+ DSA_get_default_method;
> -+ i2d_ASN1_SET_OF_ACCESS_DESCRIPTION;
> -+ ASN1_T61STRING_free;
> -+ DSA_set_method;
> -+ X509_get_ex_data;
> -+ ASN1_STRING_type;
> -+ X509_PURPOSE_get_by_sname;
> -+ ASN1_TIME_free;
> -+ ASN1_OCTET_STRING_cmp;
> -+ ASN1_BIT_STRING_new;
> -+ X509_get_ext_d2i;
> -+ PEM_read_bio_X509_AUX;
> -+ ASN1_STRING_set_default_mask_asc;
> -+ ASN1_STRING_set_def_mask_asc;
> -+ PEM_write_bio_RSA_PUBKEY;
> -+ ASN1_INTEGER_cmp;
> -+ d2i_RSA_PUBKEY_fp;
> -+ X509_trust_set_bit_asc;
> -+ PEM_write_bio_DSA_PUBKEY;
> -+ X509_STORE_CTX_free;
> -+ EVP_PKEY_set1_DSA;
> -+ i2d_DSA_PUBKEY_fp;
> -+ X509_load_cert_crl_file;
> -+ ASN1_TIME_new;
> -+ i2d_RSA_PUBKEY;
> -+ X509_STORE_CTX_purpose_inherit;
> -+ PEM_read_RSA_PUBKEY;
> -+ d2i_X509_AUX;
> -+ i2d_DSA_PUBKEY;
> -+ X509_CERT_AUX_print;
> -+ PEM_read_DSA_PUBKEY;
> -+ i2d_RSA_PUBKEY_bio;
> -+ ASN1_BIT_STRING_num_asc;
> -+ i2d_PUBKEY;
> -+ ASN1_UTCTIME_free;
> -+ DSA_set_default_method;
> -+ X509_PURPOSE_get_by_id;
> -+ ACCESS_DESCRIPTION_free;
> -+ PEM_read_bio_PUBKEY;
> -+ ASN1_STRING_set_by_NID;
> -+ X509_PURPOSE_get_id;
> -+ DISPLAYTEXT_free;
> -+ OTHERNAME_new;
> -+ X509_CERT_AUX_new;
> -+ X509_TRUST_cleanup;
> -+ X509_NAME_add_entry_by_OBJ;
> -+ X509_CRL_get_ext_d2i;
> -+ X509_PURPOSE_get0_name;
> -+ PEM_read_PUBKEY;
> -+ i2d_DSA_PUBKEY_bio;
> -+ i2d_OTHERNAME;
> -+ ASN1_OCTET_STRING_free;
> -+ ASN1_BIT_STRING_set_asc;
> -+ X509_get_ex_new_index;
> -+ ASN1_STRING_TABLE_cleanup;
> -+ X509_TRUST_get_by_id;
> -+ X509_PURPOSE_get_trust;
> -+ ASN1_STRING_length;
> -+ d2i_ASN1_SET_OF_ACCESS_DESCRIPTION;
> -+ ASN1_PRINTABLESTRING_new;
> -+ X509V3_get_d2i;
> -+ ASN1_ENUMERATED_free;
> -+ i2d_X509_CERT_AUX;
> -+ X509_STORE_CTX_set_trust;
> -+ ASN1_STRING_set_default_mask;
> -+ X509_STORE_CTX_new;
> -+ EVP_PKEY_get1_RSA;
> -+ DIRECTORYSTRING_free;
> -+ PEM_write_X509_AUX;
> -+ ASN1_OCTET_STRING_set;
> -+ d2i_DSA_PUBKEY_fp;
> -+ d2i_RSA_PUBKEY;
> -+ X509_TRUST_get0_name;
> -+ X509_TRUST_get0;
> -+ AUTHORITY_INFO_ACCESS_free;
> -+ ASN1_IA5STRING_new;
> -+ d2i_DSA_PUBKEY;
> -+ X509_check_purpose;
> -+ ASN1_ENUMERATED_new;
> -+ d2i_RSA_PUBKEY_bio;
> -+ d2i_PUBKEY;
> -+ X509_TRUST_get_trust;
> -+ X509_TRUST_get_flags;
> -+ ASN1_BMPSTRING_free;
> -+ ASN1_T61STRING_new;
> -+ ASN1_UTCTIME_new;
> -+ i2d_AUTHORITY_INFO_ACCESS;
> -+ EVP_PKEY_set1_RSA;
> -+ X509_STORE_CTX_set_purpose;
> -+ ASN1_IA5STRING_free;
> -+ PEM_write_bio_X509_AUX;
> -+ X509_PURPOSE_get_count;
> -+ CRYPTO_add_info;
> -+ X509_NAME_ENTRY_create_by_txt;
> -+ ASN1_STRING_get_default_mask;
> -+ X509_alias_get0;
> -+ ASN1_STRING_data;
> -+ i2d_ACCESS_DESCRIPTION;
> -+ X509_trust_set_bit;
> -+ ASN1_BIT_STRING_free;
> -+ PEM_read_bio_RSA_PUBKEY;
> -+ X509_add1_reject_object;
> -+ X509_check_trust;
> -+ PEM_read_bio_DSA_PUBKEY;
> -+ X509_PURPOSE_add;
> -+ ASN1_STRING_TABLE_get;
> -+ ASN1_UTF8STRING_free;
> -+ d2i_DSA_PUBKEY_bio;
> -+ PEM_write_RSA_PUBKEY;
> -+ d2i_OTHERNAME;
> -+ X509_reject_set_bit;
> -+ PEM_write_DSA_PUBKEY;
> -+ X509_PURPOSE_get0_sname;
> -+ EVP_PKEY_set1_DH;
> -+ ASN1_OCTET_STRING_dup;
> -+ ASN1_BIT_STRING_set;
> -+ X509_TRUST_get_count;
> -+ ASN1_INTEGER_free;
> -+ OTHERNAME_free;
> -+ i2d_RSA_PUBKEY_fp;
> -+ ASN1_INTEGER_dup;
> -+ d2i_X509_CERT_AUX;
> -+ PEM_write_bio_PUBKEY;
> -+ ASN1_VISIBLESTRING_free;
> -+ X509_PURPOSE_cleanup;
> -+ ASN1_mbstring_ncopy;
> -+ ASN1_GENERALIZEDTIME_new;
> -+ EVP_PKEY_get1_DH;
> -+ ASN1_OCTET_STRING_new;
> -+ ASN1_INTEGER_new;
> -+ i2d_X509_AUX;
> -+ ASN1_BIT_STRING_name_print;
> -+ X509_cmp;
> -+ ASN1_STRING_length_set;
> -+ DIRECTORYSTRING_new;
> -+ X509_add1_trust_object;
> -+ PKCS12_newpass;
> -+ SMIME_write_PKCS7;
> -+ SMIME_read_PKCS7;
> -+ DES_set_key_checked;
> -+ PKCS7_verify;
> -+ PKCS7_encrypt;
> -+ DES_set_key_unchecked;
> -+ SMIME_crlf_copy;
> -+ i2d_ASN1_PRINTABLESTRING;
> -+ PKCS7_get0_signers;
> -+ PKCS7_decrypt;
> -+ SMIME_text;
> -+ PKCS7_simple_smimecap;
> -+ PKCS7_get_smimecap;
> -+ PKCS7_sign;
> -+ PKCS7_add_attrib_smimecap;
> -+ CRYPTO_dbg_set_options;
> -+ CRYPTO_remove_all_info;
> -+ CRYPTO_get_mem_debug_functions;
> -+ CRYPTO_is_mem_check_on;
> -+ CRYPTO_set_mem_debug_functions;
> -+ CRYPTO_pop_info;
> -+ CRYPTO_push_info_;
> -+ CRYPTO_set_mem_debug_options;
> -+ PEM_write_PKCS8PrivateKey_nid;
> -+ PEM_write_bio_PKCS8PrivateKey_nid;
> -+ PEM_write_bio_PKCS8PrivKey_nid;
> -+ d2i_PKCS8PrivateKey_bio;
> -+ ASN1_NULL_free;
> -+ d2i_ASN1_NULL;
> -+ ASN1_NULL_new;
> -+ i2d_PKCS8PrivateKey_bio;
> -+ i2d_PKCS8PrivateKey_fp;
> -+ i2d_ASN1_NULL;
> -+ i2d_PKCS8PrivateKey_nid_fp;
> -+ d2i_PKCS8PrivateKey_fp;
> -+ i2d_PKCS8PrivateKey_nid_bio;
> -+ i2d_PKCS8PrivateKeyInfo_fp;
> -+ i2d_PKCS8PrivateKeyInfo_bio;
> -+ PEM_cb;
> -+ i2d_PrivateKey_fp;
> -+ d2i_PrivateKey_bio;
> -+ d2i_PrivateKey_fp;
> -+ i2d_PrivateKey_bio;
> -+ X509_reject_clear;
> -+ X509_TRUST_set_default;
> -+ d2i_AutoPrivateKey;
> -+ X509_ATTRIBUTE_get0_type;
> -+ X509_ATTRIBUTE_set1_data;
> -+ X509at_get_attr;
> -+ X509at_get_attr_count;
> -+ X509_ATTRIBUTE_create_by_NID;
> -+ X509_ATTRIBUTE_set1_object;
> -+ X509_ATTRIBUTE_count;
> -+ X509_ATTRIBUTE_create_by_OBJ;
> -+ X509_ATTRIBUTE_get0_object;
> -+ X509at_get_attr_by_NID;
> -+ X509at_add1_attr;
> -+ X509_ATTRIBUTE_get0_data;
> -+ X509at_delete_attr;
> -+ X509at_get_attr_by_OBJ;
> -+ RAND_add;
> -+ BIO_number_written;
> -+ BIO_number_read;
> -+ X509_STORE_CTX_get1_chain;
> -+ ERR_load_RAND_strings;
> -+ RAND_pseudo_bytes;
> -+ X509_REQ_get_attr_by_NID;
> -+ X509_REQ_get_attr;
> -+ X509_REQ_add1_attr_by_NID;
> -+ X509_REQ_get_attr_by_OBJ;
> -+ X509at_add1_attr_by_NID;
> -+ X509_REQ_add1_attr_by_OBJ;
> -+ X509_REQ_get_attr_count;
> -+ X509_REQ_add1_attr;
> -+ X509_REQ_delete_attr;
> -+ X509at_add1_attr_by_OBJ;
> -+ X509_REQ_add1_attr_by_txt;
> -+ X509_ATTRIBUTE_create_by_txt;
> -+ X509at_add1_attr_by_txt;
> -+ BN_pseudo_rand;
> -+ BN_is_prime_fasttest;
> -+ BN_CTX_end;
> -+ BN_CTX_start;
> -+ BN_CTX_get;
> -+ EVP_PKEY2PKCS8_broken;
> -+ ASN1_STRING_TABLE_add;
> -+ CRYPTO_dbg_get_options;
> -+ AUTHORITY_INFO_ACCESS_new;
> -+ CRYPTO_get_mem_debug_options;
> -+ DES_crypt;
> -+ PEM_write_bio_X509_REQ_NEW;
> -+ PEM_write_X509_REQ_NEW;
> -+ BIO_callback_ctrl;
> -+ RAND_egd;
> -+ RAND_status;
> -+ bn_dump1;
> -+ DES_check_key_parity;
> -+ lh_num_items;
> -+ RAND_event;
> -+ DSO_new;
> -+ DSO_new_method;
> -+ DSO_free;
> -+ DSO_flags;
> -+ DSO_up;
> -+ DSO_set_default_method;
> -+ DSO_get_default_method;
> -+ DSO_get_method;
> -+ DSO_set_method;
> -+ DSO_load;
> -+ DSO_bind_var;
> -+ DSO_METHOD_null;
> -+ DSO_METHOD_openssl;
> -+ DSO_METHOD_dlfcn;
> -+ DSO_METHOD_win32;
> -+ ERR_load_DSO_strings;
> -+ DSO_METHOD_dl;
> -+ NCONF_load;
> -+ NCONF_load_fp;
> -+ NCONF_new;
> -+ NCONF_get_string;
> -+ NCONF_free;
> -+ NCONF_get_number;
> -+ CONF_dump_fp;
> -+ NCONF_load_bio;
> -+ NCONF_dump_fp;
> -+ NCONF_get_section;
> -+ NCONF_dump_bio;
> -+ CONF_dump_bio;
> -+ NCONF_free_data;
> -+ CONF_set_default_method;
> -+ ERR_error_string_n;
> -+ BIO_snprintf;
> -+ DSO_ctrl;
> -+ i2d_ASN1_SET_OF_ASN1_INTEGER;
> -+ i2d_ASN1_SET_OF_PKCS12_SAFEBAG;
> -+ i2d_ASN1_SET_OF_PKCS7;
> -+ BIO_vfree;
> -+ d2i_ASN1_SET_OF_ASN1_INTEGER;
> -+ d2i_ASN1_SET_OF_PKCS12_SAFEBAG;
> -+ ASN1_UTCTIME_get;
> -+ X509_REQ_digest;
> -+ X509_CRL_digest;
> -+ d2i_ASN1_SET_OF_PKCS7;
> -+ EVP_CIPHER_CTX_set_key_length;
> -+ EVP_CIPHER_CTX_ctrl;
> -+ BN_mod_exp_mont_word;
> -+ RAND_egd_bytes;
> -+ X509_REQ_get1_email;
> -+ X509_get1_email;
> -+ X509_email_free;
> -+ i2d_RSA_NET;
> -+ d2i_RSA_NET_2;
> -+ d2i_RSA_NET;
> -+ DSO_bind_func;
> -+ CRYPTO_get_new_dynlockid;
> -+ sk_new_null;
> -+ CRYPTO_set_dynlock_destroy_callback;
> -+ CRYPTO_set_dynlock_destroy_cb;
> -+ CRYPTO_destroy_dynlockid;
> -+ CRYPTO_set_dynlock_size;
> -+ CRYPTO_set_dynlock_create_callback;
> -+ CRYPTO_set_dynlock_create_cb;
> -+ CRYPTO_set_dynlock_lock_callback;
> -+ CRYPTO_set_dynlock_lock_cb;
> -+ CRYPTO_get_dynlock_lock_callback;
> -+ CRYPTO_get_dynlock_lock_cb;
> -+ CRYPTO_get_dynlock_destroy_callback;
> -+ CRYPTO_get_dynlock_destroy_cb;
> -+ CRYPTO_get_dynlock_value;
> -+ CRYPTO_get_dynlock_create_callback;
> -+ CRYPTO_get_dynlock_create_cb;
> -+ c2i_ASN1_BIT_STRING;
> -+ i2c_ASN1_BIT_STRING;
> -+ RAND_poll;
> -+ c2i_ASN1_INTEGER;
> -+ i2c_ASN1_INTEGER;
> -+ BIO_dump_indent;
> -+ ASN1_parse_dump;
> -+ c2i_ASN1_OBJECT;
> -+ X509_NAME_print_ex_fp;
> -+ ASN1_STRING_print_ex_fp;
> -+ X509_NAME_print_ex;
> -+ ASN1_STRING_print_ex;
> -+ MD4;
> -+ MD4_Transform;
> -+ MD4_Final;
> -+ MD4_Update;
> -+ MD4_Init;
> -+ EVP_md4;
> -+ i2d_PUBKEY_bio;
> -+ i2d_PUBKEY_fp;
> -+ d2i_PUBKEY_bio;
> -+ ASN1_STRING_to_UTF8;
> -+ BIO_vprintf;
> -+ BIO_vsnprintf;
> -+ d2i_PUBKEY_fp;
> -+ X509_cmp_time;
> -+ X509_STORE_CTX_set_time;
> -+ X509_STORE_CTX_get1_issuer;
> -+ X509_OBJECT_retrieve_match;
> -+ X509_OBJECT_idx_by_subject;
> -+ X509_STORE_CTX_set_flags;
> -+ X509_STORE_CTX_trusted_stack;
> -+ X509_time_adj;
> -+ X509_check_issued;
> -+ ASN1_UTCTIME_cmp_time_t;
> -+ DES_set_weak_key_flag;
> -+ DES_check_key;
> -+ DES_rw_mode;
> -+ RSA_PKCS1_RSAref;
> -+ X509_keyid_set1;
> -+ BIO_next;
> -+ DSO_METHOD_vms;
> -+ BIO_f_linebuffer;
> -+ BN_bntest_rand;
> -+ OPENSSL_issetugid;
> -+ BN_rand_range;
> -+ ERR_load_ENGINE_strings;
> -+ ENGINE_set_DSA;
> -+ ENGINE_get_finish_function;
> -+ ENGINE_get_default_RSA;
> -+ ENGINE_get_BN_mod_exp;
> -+ DSA_get_default_openssl_method;
> -+ ENGINE_set_DH;
> -+ ENGINE_set_def_BN_mod_exp_crt;
> -+ ENGINE_set_default_BN_mod_exp_crt;
> -+ ENGINE_init;
> -+ DH_get_default_openssl_method;
> -+ RSA_set_default_openssl_method;
> -+ ENGINE_finish;
> -+ ENGINE_load_public_key;
> -+ ENGINE_get_DH;
> -+ ENGINE_ctrl;
> -+ ENGINE_get_init_function;
> -+ ENGINE_set_init_function;
> -+ ENGINE_set_default_DSA;
> -+ ENGINE_get_name;
> -+ ENGINE_get_last;
> -+ ENGINE_get_prev;
> -+ ENGINE_get_default_DH;
> -+ ENGINE_get_RSA;
> -+ ENGINE_set_default;
> -+ ENGINE_get_RAND;
> -+ ENGINE_get_first;
> -+ ENGINE_by_id;
> -+ ENGINE_set_finish_function;
> -+ ENGINE_get_def_BN_mod_exp_crt;
> -+ ENGINE_get_default_BN_mod_exp_crt;
> -+ RSA_get_default_openssl_method;
> -+ ENGINE_set_RSA;
> -+ ENGINE_load_private_key;
> -+ ENGINE_set_default_RAND;
> -+ ENGINE_set_BN_mod_exp;
> -+ ENGINE_remove;
> -+ ENGINE_free;
> -+ ENGINE_get_BN_mod_exp_crt;
> -+ ENGINE_get_next;
> -+ ENGINE_set_name;
> -+ ENGINE_get_default_DSA;
> -+ ENGINE_set_default_BN_mod_exp;
> -+ ENGINE_set_default_RSA;
> -+ ENGINE_get_default_RAND;
> -+ ENGINE_get_default_BN_mod_exp;
> -+ ENGINE_set_RAND;
> -+ ENGINE_set_id;
> -+ ENGINE_set_BN_mod_exp_crt;
> -+ ENGINE_set_default_DH;
> -+ ENGINE_new;
> -+ ENGINE_get_id;
> -+ DSA_set_default_openssl_method;
> -+ ENGINE_add;
> -+ DH_set_default_openssl_method;
> -+ ENGINE_get_DSA;
> -+ ENGINE_get_ctrl_function;
> -+ ENGINE_set_ctrl_function;
> -+ BN_pseudo_rand_range;
> -+ X509_STORE_CTX_set_verify_cb;
> -+ ERR_load_COMP_strings;
> -+ PKCS12_item_decrypt_d2i;
> -+ ASN1_UTF8STRING_it;
> -+ ENGINE_unregister_ciphers;
> -+ ENGINE_get_ciphers;
> -+ d2i_OCSP_BASICRESP;
> -+ KRB5_CHECKSUM_it;
> -+ EC_POINT_add;
> -+ ASN1_item_ex_i2d;
> -+ OCSP_CERTID_it;
> -+ d2i_OCSP_RESPBYTES;
> -+ X509V3_add1_i2d;
> -+ PKCS7_ENVELOPE_it;
> -+ UI_add_input_boolean;
> -+ ENGINE_unregister_RSA;
> -+ X509V3_EXT_nconf;
> -+ ASN1_GENERALSTRING_free;
> -+ d2i_OCSP_CERTSTATUS;
> -+ X509_REVOKED_set_serialNumber;
> -+ X509_print_ex;
> -+ OCSP_ONEREQ_get1_ext_d2i;
> -+ ENGINE_register_all_RAND;
> -+ ENGINE_load_dynamic;
> -+ PBKDF2PARAM_it;
> -+ EXTENDED_KEY_USAGE_new;
> -+ EC_GROUP_clear_free;
> -+ OCSP_sendreq_bio;
> -+ ASN1_item_digest;
> -+ OCSP_BASICRESP_delete_ext;
> -+ OCSP_SIGNATURE_it;
> -+ X509_CRL_it;
> -+ OCSP_BASICRESP_add_ext;
> -+ KRB5_ENCKEY_it;
> -+ UI_method_set_closer;
> -+ X509_STORE_set_purpose;
> -+ i2d_ASN1_GENERALSTRING;
> -+ OCSP_response_status;
> -+ i2d_OCSP_SERVICELOC;
> -+ ENGINE_get_digest_engine;
> -+ EC_GROUP_set_curve_GFp;
> -+ OCSP_REQUEST_get_ext_by_OBJ;
> -+ _ossl_old_des_random_key;
> -+ ASN1_T61STRING_it;
> -+ EC_GROUP_method_of;
> -+ i2d_KRB5_APREQ;
> -+ _ossl_old_des_encrypt;
> -+ ASN1_PRINTABLE_new;
> -+ HMAC_Init_ex;
> -+ d2i_KRB5_AUTHENT;
> -+ OCSP_archive_cutoff_new;
> -+ EC_POINT_set_Jprojective_coordinates_GFp;
> -+ EC_POINT_set_Jproj_coords_GFp;
> -+ _ossl_old_des_is_weak_key;
> -+ OCSP_BASICRESP_get_ext_by_OBJ;
> -+ EC_POINT_oct2point;
> -+ OCSP_SINGLERESP_get_ext_count;
> -+ UI_ctrl;
> -+ _shadow_DES_rw_mode;
> -+ asn1_do_adb;
> -+ ASN1_template_i2d;
> -+ ENGINE_register_DH;
> -+ UI_construct_prompt;
> -+ X509_STORE_set_trust;
> -+ UI_dup_input_string;
> -+ d2i_KRB5_APREQ;
> -+ EVP_MD_CTX_copy_ex;
> -+ OCSP_request_is_signed;
> -+ i2d_OCSP_REQINFO;
> -+ KRB5_ENCKEY_free;
> -+ OCSP_resp_get0;
> -+ GENERAL_NAME_it;
> -+ ASN1_GENERALIZEDTIME_it;
> -+ X509_STORE_set_flags;
> -+ EC_POINT_set_compressed_coordinates_GFp;
> -+ EC_POINT_set_compr_coords_GFp;
> -+ OCSP_response_status_str;
> -+ d2i_OCSP_REVOKEDINFO;
> -+ OCSP_basic_add1_cert;
> -+ ERR_get_implementation;
> -+ EVP_CipherFinal_ex;
> -+ OCSP_CERTSTATUS_new;
> -+ CRYPTO_cleanup_all_ex_data;
> -+ OCSP_resp_find;
> -+ BN_nnmod;
> -+ X509_CRL_sort;
> -+ X509_REVOKED_set_revocationDate;
> -+ ENGINE_register_RAND;
> -+ OCSP_SERVICELOC_new;
> -+ EC_POINT_set_affine_coordinates_GFp;
> -+ EC_POINT_set_affine_coords_GFp;
> -+ _ossl_old_des_options;
> -+ SXNET_it;
> -+ UI_dup_input_boolean;
> -+ PKCS12_add_CSPName_asc;
> -+ EC_POINT_is_at_infinity;
> -+ ENGINE_load_cryptodev;
> -+ DSO_convert_filename;
> -+ POLICYQUALINFO_it;
> -+ ENGINE_register_ciphers;
> -+ BN_mod_lshift_quick;
> -+ DSO_set_filename;
> -+ ASN1_item_free;
> -+ KRB5_TKTBODY_free;
> -+ AUTHORITY_KEYID_it;
> -+ KRB5_APREQBODY_new;
> -+ X509V3_EXT_REQ_add_nconf;
> -+ ENGINE_ctrl_cmd_string;
> -+ i2d_OCSP_RESPDATA;
> -+ EVP_MD_CTX_init;
> -+ EXTENDED_KEY_USAGE_free;
> -+ PKCS7_ATTR_SIGN_it;
> -+ UI_add_error_string;
> -+ KRB5_CHECKSUM_free;
> -+ OCSP_REQUEST_get_ext;
> -+ ENGINE_load_ubsec;
> -+ ENGINE_register_all_digests;
> -+ PKEY_USAGE_PERIOD_it;
> -+ PKCS12_unpack_authsafes;
> -+ ASN1_item_unpack;
> -+ NETSCAPE_SPKAC_it;
> -+ X509_REVOKED_it;
> -+ ASN1_STRING_encode;
> -+ EVP_aes_128_ecb;
> -+ KRB5_AUTHENT_free;
> -+ OCSP_BASICRESP_get_ext_by_critical;
> -+ OCSP_BASICRESP_get_ext_by_crit;
> -+ OCSP_cert_status_str;
> -+ d2i_OCSP_REQUEST;
> -+ UI_dup_info_string;
> -+ _ossl_old_des_xwhite_in2out;
> -+ PKCS12_it;
> -+ OCSP_SINGLERESP_get_ext_by_critical;
> -+ OCSP_SINGLERESP_get_ext_by_crit;
> -+ OCSP_CERTSTATUS_free;
> -+ _ossl_old_des_crypt;
> -+ ASN1_item_i2d;
> -+ EVP_DecryptFinal_ex;
> -+ ENGINE_load_openssl;
> -+ ENGINE_get_cmd_defns;
> -+ ENGINE_set_load_privkey_function;
> -+ ENGINE_set_load_privkey_fn;
> -+ EVP_EncryptFinal_ex;
> -+ ENGINE_set_default_digests;
> -+ X509_get0_pubkey_bitstr;
> -+ asn1_ex_i2c;
> -+ ENGINE_register_RSA;
> -+ ENGINE_unregister_DSA;
> -+ _ossl_old_des_key_sched;
> -+ X509_EXTENSION_it;
> -+ i2d_KRB5_AUTHENT;
> -+ SXNETID_it;
> -+ d2i_OCSP_SINGLERESP;
> -+ EDIPARTYNAME_new;
> -+ PKCS12_certbag2x509;
> -+ _ossl_old_des_ofb64_encrypt;
> -+ d2i_EXTENDED_KEY_USAGE;
> -+ ERR_print_errors_cb;
> -+ ENGINE_set_ciphers;
> -+ d2i_KRB5_APREQBODY;
> -+ UI_method_get_flusher;
> -+ X509_PUBKEY_it;
> -+ _ossl_old_des_enc_read;
> -+ PKCS7_ENCRYPT_it;
> -+ i2d_OCSP_RESPONSE;
> -+ EC_GROUP_get_cofactor;
> -+ PKCS12_unpack_p7data;
> -+ d2i_KRB5_AUTHDATA;
> -+ OCSP_copy_nonce;
> -+ KRB5_AUTHDATA_new;
> -+ OCSP_RESPDATA_new;
> -+ EC_GFp_mont_method;
> -+ OCSP_REVOKEDINFO_free;
> -+ UI_get_ex_data;
> -+ KRB5_APREQBODY_free;
> -+ EC_GROUP_get0_generator;
> -+ UI_get_default_method;
> -+ X509V3_set_nconf;
> -+ PKCS12_item_i2d_encrypt;
> -+ X509_add1_ext_i2d;
> -+ PKCS7_SIGNER_INFO_it;
> -+ KRB5_PRINCNAME_new;
> -+ PKCS12_SAFEBAG_it;
> -+ EC_GROUP_get_order;
> -+ d2i_OCSP_RESPID;
> -+ OCSP_request_verify;
> -+ NCONF_get_number_e;
> -+ _ossl_old_des_decrypt3;
> -+ X509_signature_print;
> -+ OCSP_SINGLERESP_free;
> -+ ENGINE_load_builtin_engines;
> -+ i2d_OCSP_ONEREQ;
> -+ OCSP_REQUEST_add_ext;
> -+ OCSP_RESPBYTES_new;
> -+ EVP_MD_CTX_create;
> -+ OCSP_resp_find_status;
> -+ X509_ALGOR_it;
> -+ ASN1_TIME_it;
> -+ OCSP_request_set1_name;
> -+ OCSP_ONEREQ_get_ext_count;
> -+ UI_get0_result;
> -+ PKCS12_AUTHSAFES_it;
> -+ EVP_aes_256_ecb;
> -+ PKCS12_pack_authsafes;
> -+ ASN1_IA5STRING_it;
> -+ UI_get_input_flags;
> -+ EC_GROUP_set_generator;
> -+ _ossl_old_des_string_to_2keys;
> -+ OCSP_CERTID_free;
> -+ X509_CERT_AUX_it;
> -+ CERTIFICATEPOLICIES_it;
> -+ _ossl_old_des_ede3_cbc_encrypt;
> -+ RAND_set_rand_engine;
> -+ DSO_get_loaded_filename;
> -+ X509_ATTRIBUTE_it;
> -+ OCSP_ONEREQ_get_ext_by_NID;
> -+ PKCS12_decrypt_skey;
> -+ KRB5_AUTHENT_it;
> -+ UI_dup_error_string;
> -+ RSAPublicKey_it;
> -+ i2d_OCSP_REQUEST;
> -+ PKCS12_x509crl2certbag;
> -+ OCSP_SERVICELOC_it;
> -+ ASN1_item_sign;
> -+ X509_CRL_set_issuer_name;
> -+ OBJ_NAME_do_all_sorted;
> -+ i2d_OCSP_BASICRESP;
> -+ i2d_OCSP_RESPBYTES;
> -+ PKCS12_unpack_p7encdata;
> -+ HMAC_CTX_init;
> -+ ENGINE_get_digest;
> -+ OCSP_RESPONSE_print;
> -+ KRB5_TKTBODY_it;
> -+ ACCESS_DESCRIPTION_it;
> -+ PKCS7_ISSUER_AND_SERIAL_it;
> -+ PBE2PARAM_it;
> -+ PKCS12_certbag2x509crl;
> -+ PKCS7_SIGNED_it;
> -+ ENGINE_get_cipher;
> -+ i2d_OCSP_CRLID;
> -+ OCSP_SINGLERESP_new;
> -+ ENGINE_cmd_is_executable;
> -+ RSA_up_ref;
> -+ ASN1_GENERALSTRING_it;
> -+ ENGINE_register_DSA;
> -+ X509V3_EXT_add_nconf_sk;
> -+ ENGINE_set_load_pubkey_function;
> -+ PKCS8_decrypt;
> -+ PEM_bytes_read_bio;
> -+ DIRECTORYSTRING_it;
> -+ d2i_OCSP_CRLID;
> -+ EC_POINT_is_on_curve;
> -+ CRYPTO_set_locked_mem_ex_functions;
> -+ CRYPTO_set_locked_mem_ex_funcs;
> -+ d2i_KRB5_CHECKSUM;
> -+ ASN1_item_dup;
> -+ X509_it;
> -+ BN_mod_add;
> -+ KRB5_AUTHDATA_free;
> -+ _ossl_old_des_cbc_cksum;
> -+ ASN1_item_verify;
> -+ CRYPTO_set_mem_ex_functions;
> -+ EC_POINT_get_Jprojective_coordinates_GFp;
> -+ EC_POINT_get_Jproj_coords_GFp;
> -+ ZLONG_it;
> -+ CRYPTO_get_locked_mem_ex_functions;
> -+ CRYPTO_get_locked_mem_ex_funcs;
> -+ ASN1_TIME_check;
> -+ UI_get0_user_data;
> -+ HMAC_CTX_cleanup;
> -+ DSA_up_ref;
> -+ _ossl_old_des_ede3_cfb64_encrypt;
> -+ _ossl_odes_ede3_cfb64_encrypt;
> -+ ASN1_BMPSTRING_it;
> -+ ASN1_tag2bit;
> -+ UI_method_set_flusher;
> -+ X509_ocspid_print;
> -+ KRB5_ENCDATA_it;
> -+ ENGINE_get_load_pubkey_function;
> -+ UI_add_user_data;
> -+ OCSP_REQUEST_delete_ext;
> -+ UI_get_method;
> -+ OCSP_ONEREQ_free;
> -+ ASN1_PRINTABLESTRING_it;
> -+ X509_CRL_set_nextUpdate;
> -+ OCSP_REQUEST_it;
> -+ OCSP_BASICRESP_it;
> -+ AES_ecb_encrypt;
> -+ BN_mod_sqr;
> -+ NETSCAPE_CERT_SEQUENCE_it;
> -+ GENERAL_NAMES_it;
> -+ AUTHORITY_INFO_ACCESS_it;
> -+ ASN1_FBOOLEAN_it;
> -+ UI_set_ex_data;
> -+ _ossl_old_des_string_to_key;
> -+ ENGINE_register_all_RSA;
> -+ d2i_KRB5_PRINCNAME;
> -+ OCSP_RESPBYTES_it;
> -+ X509_CINF_it;
> -+ ENGINE_unregister_digests;
> -+ d2i_EDIPARTYNAME;
> -+ d2i_OCSP_SERVICELOC;
> -+ ENGINE_get_digests;
> -+ _ossl_old_des_set_odd_parity;
> -+ OCSP_RESPDATA_free;
> -+ d2i_KRB5_TICKET;
> -+ OTHERNAME_it;
> -+ EVP_MD_CTX_cleanup;
> -+ d2i_ASN1_GENERALSTRING;
> -+ X509_CRL_set_version;
> -+ BN_mod_sub;
> -+ OCSP_SINGLERESP_get_ext_by_NID;
> -+ ENGINE_get_ex_new_index;
> -+ OCSP_REQUEST_free;
> -+ OCSP_REQUEST_add1_ext_i2d;
> -+ X509_VAL_it;
> -+ EC_POINTs_make_affine;
> -+ EC_POINT_mul;
> -+ X509V3_EXT_add_nconf;
> -+ X509_TRUST_set;
> -+ X509_CRL_add1_ext_i2d;
> -+ _ossl_old_des_fcrypt;
> -+ DISPLAYTEXT_it;
> -+ X509_CRL_set_lastUpdate;
> -+ OCSP_BASICRESP_free;
> -+ OCSP_BASICRESP_add1_ext_i2d;
> -+ d2i_KRB5_AUTHENTBODY;
> -+ CRYPTO_set_ex_data_implementation;
> -+ CRYPTO_set_ex_data_impl;
> -+ KRB5_ENCDATA_new;
> -+ DSO_up_ref;
> -+ OCSP_crl_reason_str;
> -+ UI_get0_result_string;
> -+ ASN1_GENERALSTRING_new;
> -+ X509_SIG_it;
> -+ ERR_set_implementation;
> -+ ERR_load_EC_strings;
> -+ UI_get0_action_string;
> -+ OCSP_ONEREQ_get_ext;
> -+ EC_POINT_method_of;
> -+ i2d_KRB5_APREQBODY;
> -+ _ossl_old_des_ecb3_encrypt;
> -+ CRYPTO_get_mem_ex_functions;
> -+ ENGINE_get_ex_data;
> -+ UI_destroy_method;
> -+ ASN1_item_i2d_bio;
> -+ OCSP_ONEREQ_get_ext_by_OBJ;
> -+ ASN1_primitive_new;
> -+ ASN1_PRINTABLE_it;
> -+ EVP_aes_192_ecb;
> -+ OCSP_SIGNATURE_new;
> -+ LONG_it;
> -+ ASN1_VISIBLESTRING_it;
> -+ OCSP_SINGLERESP_add1_ext_i2d;
> -+ d2i_OCSP_CERTID;
> -+ ASN1_item_d2i_fp;
> -+ CRL_DIST_POINTS_it;
> -+ GENERAL_NAME_print;
> -+ OCSP_SINGLERESP_delete_ext;
> -+ PKCS12_SAFEBAGS_it;
> -+ d2i_OCSP_SIGNATURE;
> -+ OCSP_request_add1_nonce;
> -+ ENGINE_set_cmd_defns;
> -+ OCSP_SERVICELOC_free;
> -+ EC_GROUP_free;
> -+ ASN1_BIT_STRING_it;
> -+ X509_REQ_it;
> -+ _ossl_old_des_cbc_encrypt;
> -+ ERR_unload_strings;
> -+ PKCS7_SIGN_ENVELOPE_it;
> -+ EDIPARTYNAME_free;
> -+ OCSP_REQINFO_free;
> -+ EC_GROUP_new_curve_GFp;
> -+ OCSP_REQUEST_get1_ext_d2i;
> -+ PKCS12_item_pack_safebag;
> -+ asn1_ex_c2i;
> -+ ENGINE_register_digests;
> -+ i2d_OCSP_REVOKEDINFO;
> -+ asn1_enc_restore;
> -+ UI_free;
> -+ UI_new_method;
> -+ EVP_EncryptInit_ex;
> -+ X509_pubkey_digest;
> -+ EC_POINT_invert;
> -+ OCSP_basic_sign;
> -+ i2d_OCSP_RESPID;
> -+ OCSP_check_nonce;
> -+ ENGINE_ctrl_cmd;
> -+ d2i_KRB5_ENCKEY;
> -+ OCSP_parse_url;
> -+ OCSP_SINGLERESP_get_ext;
> -+ OCSP_CRLID_free;
> -+ OCSP_BASICRESP_get1_ext_d2i;
> -+ RSAPrivateKey_it;
> -+ ENGINE_register_all_DH;
> -+ i2d_EDIPARTYNAME;
> -+ EC_POINT_get_affine_coordinates_GFp;
> -+ EC_POINT_get_affine_coords_GFp;
> -+ OCSP_CRLID_new;
> -+ ENGINE_get_flags;
> -+ OCSP_ONEREQ_it;
> -+ UI_process;
> -+ ASN1_INTEGER_it;
> -+ EVP_CipherInit_ex;
> -+ UI_get_string_type;
> -+ ENGINE_unregister_DH;
> -+ ENGINE_register_all_DSA;
> -+ OCSP_ONEREQ_get_ext_by_critical;
> -+ bn_dup_expand;
> -+ OCSP_cert_id_new;
> -+ BASIC_CONSTRAINTS_it;
> -+ BN_mod_add_quick;
> -+ EC_POINT_new;
> -+ EVP_MD_CTX_destroy;
> -+ OCSP_RESPBYTES_free;
> -+ EVP_aes_128_cbc;
> -+ OCSP_SINGLERESP_get1_ext_d2i;
> -+ EC_POINT_free;
> -+ DH_up_ref;
> -+ X509_NAME_ENTRY_it;
> -+ UI_get_ex_new_index;
> -+ BN_mod_sub_quick;
> -+ OCSP_ONEREQ_add_ext;
> -+ OCSP_request_sign;
> -+ EVP_DigestFinal_ex;
> -+ ENGINE_set_digests;
> -+ OCSP_id_issuer_cmp;
> -+ OBJ_NAME_do_all;
> -+ EC_POINTs_mul;
> -+ ENGINE_register_complete;
> -+ X509V3_EXT_nconf_nid;
> -+ ASN1_SEQUENCE_it;
> -+ UI_set_default_method;
> -+ RAND_query_egd_bytes;
> -+ UI_method_get_writer;
> -+ UI_OpenSSL;
> -+ PEM_def_callback;
> -+ ENGINE_cleanup;
> -+ DIST_POINT_it;
> -+ OCSP_SINGLERESP_it;
> -+ d2i_KRB5_TKTBODY;
> -+ EC_POINT_cmp;
> -+ OCSP_REVOKEDINFO_new;
> -+ i2d_OCSP_CERTSTATUS;
> -+ OCSP_basic_add1_nonce;
> -+ ASN1_item_ex_d2i;
> -+ BN_mod_lshift1_quick;
> -+ UI_set_method;
> -+ OCSP_id_get0_info;
> -+ BN_mod_sqrt;
> -+ EC_GROUP_copy;
> -+ KRB5_ENCDATA_free;
> -+ _ossl_old_des_cfb_encrypt;
> -+ OCSP_SINGLERESP_get_ext_by_OBJ;
> -+ OCSP_cert_to_id;
> -+ OCSP_RESPID_new;
> -+ OCSP_RESPDATA_it;
> -+ d2i_OCSP_RESPDATA;
> -+ ENGINE_register_all_complete;
> -+ OCSP_check_validity;
> -+ PKCS12_BAGS_it;
> -+ OCSP_url_svcloc_new;
> -+ ASN1_template_free;
> -+ OCSP_SINGLERESP_add_ext;
> -+ KRB5_AUTHENTBODY_it;
> -+ X509_supported_extension;
> -+ i2d_KRB5_AUTHDATA;
> -+ UI_method_get_opener;
> -+ ENGINE_set_ex_data;
> -+ OCSP_REQUEST_print;
> -+ CBIGNUM_it;
> -+ KRB5_TICKET_new;
> -+ KRB5_APREQ_new;
> -+ EC_GROUP_get_curve_GFp;
> -+ KRB5_ENCKEY_new;
> -+ ASN1_template_d2i;
> -+ _ossl_old_des_quad_cksum;
> -+ OCSP_single_get0_status;
> -+ BN_swap;
> -+ POLICYINFO_it;
> -+ ENGINE_set_destroy_function;
> -+ asn1_enc_free;
> -+ OCSP_RESPID_it;
> -+ EC_GROUP_new;
> -+ EVP_aes_256_cbc;
> -+ i2d_KRB5_PRINCNAME;
> -+ _ossl_old_des_encrypt2;
> -+ _ossl_old_des_encrypt3;
> -+ PKCS8_PRIV_KEY_INFO_it;
> -+ OCSP_REQINFO_it;
> -+ PBEPARAM_it;
> -+ KRB5_AUTHENTBODY_new;
> -+ X509_CRL_add0_revoked;
> -+ EDIPARTYNAME_it;
> -+ NETSCAPE_SPKI_it;
> -+ UI_get0_test_string;
> -+ ENGINE_get_cipher_engine;
> -+ ENGINE_register_all_ciphers;
> -+ EC_POINT_copy;
> -+ BN_kronecker;
> -+ _ossl_old_des_ede3_ofb64_encrypt;
> -+ _ossl_odes_ede3_ofb64_encrypt;
> -+ UI_method_get_reader;
> -+ OCSP_BASICRESP_get_ext_count;
> -+ ASN1_ENUMERATED_it;
> -+ UI_set_result;
> -+ i2d_KRB5_TICKET;
> -+ X509_print_ex_fp;
> -+ EVP_CIPHER_CTX_set_padding;
> -+ d2i_OCSP_RESPONSE;
> -+ ASN1_UTCTIME_it;
> -+ _ossl_old_des_enc_write;
> -+ OCSP_RESPONSE_new;
> -+ AES_set_encrypt_key;
> -+ OCSP_resp_count;
> -+ KRB5_CHECKSUM_new;
> -+ ENGINE_load_cswift;
> -+ OCSP_onereq_get0_id;
> -+ ENGINE_set_default_ciphers;
> -+ NOTICEREF_it;
> -+ X509V3_EXT_CRL_add_nconf;
> -+ OCSP_REVOKEDINFO_it;
> -+ AES_encrypt;
> -+ OCSP_REQUEST_new;
> -+ ASN1_ANY_it;
> -+ CRYPTO_ex_data_new_class;
> -+ _ossl_old_des_ncbc_encrypt;
> -+ i2d_KRB5_TKTBODY;
> -+ EC_POINT_clear_free;
> -+ AES_decrypt;
> -+ asn1_enc_init;
> -+ UI_get_result_maxsize;
> -+ OCSP_CERTID_new;
> -+ ENGINE_unregister_RAND;
> -+ UI_method_get_closer;
> -+ d2i_KRB5_ENCDATA;
> -+ OCSP_request_onereq_count;
> -+ OCSP_basic_verify;
> -+ KRB5_AUTHENTBODY_free;
> -+ ASN1_item_d2i;
> -+ ASN1_primitive_free;
> -+ i2d_EXTENDED_KEY_USAGE;
> -+ i2d_OCSP_SIGNATURE;
> -+ asn1_enc_save;
> -+ ENGINE_load_nuron;
> -+ _ossl_old_des_pcbc_encrypt;
> -+ PKCS12_MAC_DATA_it;
> -+ OCSP_accept_responses_new;
> -+ asn1_do_lock;
> -+ PKCS7_ATTR_VERIFY_it;
> -+ KRB5_APREQBODY_it;
> -+ i2d_OCSP_SINGLERESP;
> -+ ASN1_item_ex_new;
> -+ UI_add_verify_string;
> -+ _ossl_old_des_set_key;
> -+ KRB5_PRINCNAME_it;
> -+ EVP_DecryptInit_ex;
> -+ i2d_OCSP_CERTID;
> -+ ASN1_item_d2i_bio;
> -+ EC_POINT_dbl;
> -+ asn1_get_choice_selector;
> -+ i2d_KRB5_CHECKSUM;
> -+ ENGINE_set_table_flags;
> -+ AES_options;
> -+ ENGINE_load_chil;
> -+ OCSP_id_cmp;
> -+ OCSP_BASICRESP_new;
> -+ OCSP_REQUEST_get_ext_by_NID;
> -+ KRB5_APREQ_it;
> -+ ENGINE_get_destroy_function;
> -+ CONF_set_nconf;
> -+ ASN1_PRINTABLE_free;
> -+ OCSP_BASICRESP_get_ext_by_NID;
> -+ DIST_POINT_NAME_it;
> -+ X509V3_extensions_print;
> -+ _ossl_old_des_cfb64_encrypt;
> -+ X509_REVOKED_add1_ext_i2d;
> -+ _ossl_old_des_ofb_encrypt;
> -+ KRB5_TKTBODY_new;
> -+ ASN1_OCTET_STRING_it;
> -+ ERR_load_UI_strings;
> -+ i2d_KRB5_ENCKEY;
> -+ ASN1_template_new;
> -+ OCSP_SIGNATURE_free;
> -+ ASN1_item_i2d_fp;
> -+ KRB5_PRINCNAME_free;
> -+ PKCS7_RECIP_INFO_it;
> -+ EXTENDED_KEY_USAGE_it;
> -+ EC_GFp_simple_method;
> -+ EC_GROUP_precompute_mult;
> -+ OCSP_request_onereq_get0;
> -+ UI_method_set_writer;
> -+ KRB5_AUTHENT_new;
> -+ X509_CRL_INFO_it;
> -+ DSO_set_name_converter;
> -+ AES_set_decrypt_key;
> -+ PKCS7_DIGEST_it;
> -+ PKCS12_x5092certbag;
> -+ EVP_DigestInit_ex;
> -+ i2a_ACCESS_DESCRIPTION;
> -+ OCSP_RESPONSE_it;
> -+ PKCS7_ENC_CONTENT_it;
> -+ OCSP_request_add0_id;
> -+ EC_POINT_make_affine;
> -+ DSO_get_filename;
> -+ OCSP_CERTSTATUS_it;
> -+ OCSP_request_add1_cert;
> -+ UI_get0_output_string;
> -+ UI_dup_verify_string;
> -+ BN_mod_lshift;
> -+ KRB5_AUTHDATA_it;
> -+ asn1_set_choice_selector;
> -+ OCSP_basic_add1_status;
> -+ OCSP_RESPID_free;
> -+ asn1_get_field_ptr;
> -+ UI_add_input_string;
> -+ OCSP_CRLID_it;
> -+ i2d_KRB5_AUTHENTBODY;
> -+ OCSP_REQUEST_get_ext_count;
> -+ ENGINE_load_atalla;
> -+ X509_NAME_it;
> -+ USERNOTICE_it;
> -+ OCSP_REQINFO_new;
> -+ OCSP_BASICRESP_get_ext;
> -+ CRYPTO_get_ex_data_implementation;
> -+ CRYPTO_get_ex_data_impl;
> -+ ASN1_item_pack;
> -+ i2d_KRB5_ENCDATA;
> -+ X509_PURPOSE_set;
> -+ X509_REQ_INFO_it;
> -+ UI_method_set_opener;
> -+ ASN1_item_ex_free;
> -+ ASN1_BOOLEAN_it;
> -+ ENGINE_get_table_flags;
> -+ UI_create_method;
> -+ OCSP_ONEREQ_add1_ext_i2d;
> -+ _shadow_DES_check_key;
> -+ d2i_OCSP_REQINFO;
> -+ UI_add_info_string;
> -+ UI_get_result_minsize;
> -+ ASN1_NULL_it;
> -+ BN_mod_lshift1;
> -+ d2i_OCSP_ONEREQ;
> -+ OCSP_ONEREQ_new;
> -+ KRB5_TICKET_it;
> -+ EVP_aes_192_cbc;
> -+ KRB5_TICKET_free;
> -+ UI_new;
> -+ OCSP_response_create;
> -+ _ossl_old_des_xcbc_encrypt;
> -+ PKCS7_it;
> -+ OCSP_REQUEST_get_ext_by_critical;
> -+ OCSP_REQUEST_get_ext_by_crit;
> -+ ENGINE_set_flags;
> -+ _ossl_old_des_ecb_encrypt;
> -+ OCSP_response_get1_basic;
> -+ EVP_Digest;
> -+ OCSP_ONEREQ_delete_ext;
> -+ ASN1_TBOOLEAN_it;
> -+ ASN1_item_new;
> -+ ASN1_TIME_to_generalizedtime;
> -+ BIGNUM_it;
> -+ AES_cbc_encrypt;
> -+ ENGINE_get_load_privkey_function;
> -+ ENGINE_get_load_privkey_fn;
> -+ OCSP_RESPONSE_free;
> -+ UI_method_set_reader;
> -+ i2d_ASN1_T61STRING;
> -+ EC_POINT_set_to_infinity;
> -+ ERR_load_OCSP_strings;
> -+ EC_POINT_point2oct;
> -+ KRB5_APREQ_free;
> -+ ASN1_OBJECT_it;
> -+ OCSP_crlID_new;
> -+ OCSP_crlID2_new;
> -+ CONF_modules_load_file;
> -+ CONF_imodule_set_usr_data;
> -+ ENGINE_set_default_string;
> -+ CONF_module_get_usr_data;
> -+ ASN1_add_oid_module;
> -+ CONF_modules_finish;
> -+ OPENSSL_config;
> -+ CONF_modules_unload;
> -+ CONF_imodule_get_value;
> -+ CONF_module_set_usr_data;
> -+ CONF_parse_list;
> -+ CONF_module_add;
> -+ CONF_get1_default_config_file;
> -+ CONF_imodule_get_flags;
> -+ CONF_imodule_get_module;
> -+ CONF_modules_load;
> -+ CONF_imodule_get_name;
> -+ ERR_peek_top_error;
> -+ CONF_imodule_get_usr_data;
> -+ CONF_imodule_set_flags;
> -+ ENGINE_add_conf_module;
> -+ ERR_peek_last_error_line;
> -+ ERR_peek_last_error_line_data;
> -+ ERR_peek_last_error;
> -+ DES_read_2passwords;
> -+ DES_read_password;
> -+ UI_UTIL_read_pw;
> -+ UI_UTIL_read_pw_string;
> -+ ENGINE_load_aep;
> -+ ENGINE_load_sureware;
> -+ OPENSSL_add_all_algorithms_noconf;
> -+ OPENSSL_add_all_algo_noconf;
> -+ OPENSSL_add_all_algorithms_conf;
> -+ OPENSSL_add_all_algo_conf;
> -+ OPENSSL_load_builtin_modules;
> -+ AES_ofb128_encrypt;
> -+ AES_ctr128_encrypt;
> -+ AES_cfb128_encrypt;
> -+ ENGINE_load_4758cca;
> -+ _ossl_096_des_random_seed;
> -+ EVP_aes_256_ofb;
> -+ EVP_aes_192_ofb;
> -+ EVP_aes_128_cfb128;
> -+ EVP_aes_256_cfb128;
> -+ EVP_aes_128_ofb;
> -+ EVP_aes_192_cfb128;
> -+ CONF_modules_free;
> -+ NCONF_default;
> -+ OPENSSL_no_config;
> -+ NCONF_WIN32;
> -+ ASN1_UNIVERSALSTRING_new;
> -+ EVP_des_ede_ecb;
> -+ i2d_ASN1_UNIVERSALSTRING;
> -+ ASN1_UNIVERSALSTRING_free;
> -+ ASN1_UNIVERSALSTRING_it;
> -+ d2i_ASN1_UNIVERSALSTRING;
> -+ EVP_des_ede3_ecb;
> -+ X509_REQ_print_ex;
> -+ ENGINE_up_ref;
> -+ BUF_MEM_grow_clean;
> -+ CRYPTO_realloc_clean;
> -+ BUF_strlcat;
> -+ BIO_indent;
> -+ BUF_strlcpy;
> -+ OpenSSLDie;
> -+ OPENSSL_cleanse;
> -+ ENGINE_setup_bsd_cryptodev;
> -+ ERR_release_err_state_table;
> -+ EVP_aes_128_cfb8;
> -+ FIPS_corrupt_rsa;
> -+ FIPS_selftest_des;
> -+ EVP_aes_128_cfb1;
> -+ EVP_aes_192_cfb8;
> -+ FIPS_mode_set;
> -+ FIPS_selftest_dsa;
> -+ EVP_aes_256_cfb8;
> -+ FIPS_allow_md5;
> -+ DES_ede3_cfb_encrypt;
> -+ EVP_des_ede3_cfb8;
> -+ FIPS_rand_seeded;
> -+ AES_cfbr_encrypt_block;
> -+ AES_cfb8_encrypt;
> -+ FIPS_rand_seed;
> -+ FIPS_corrupt_des;
> -+ EVP_aes_192_cfb1;
> -+ FIPS_selftest_aes;
> -+ FIPS_set_prng_key;
> -+ EVP_des_cfb8;
> -+ FIPS_corrupt_dsa;
> -+ FIPS_test_mode;
> -+ FIPS_rand_method;
> -+ EVP_aes_256_cfb1;
> -+ ERR_load_FIPS_strings;
> -+ FIPS_corrupt_aes;
> -+ FIPS_selftest_sha1;
> -+ FIPS_selftest_rsa;
> -+ FIPS_corrupt_sha1;
> -+ EVP_des_cfb1;
> -+ FIPS_dsa_check;
> -+ AES_cfb1_encrypt;
> -+ EVP_des_ede3_cfb1;
> -+ FIPS_rand_check;
> -+ FIPS_md5_allowed;
> -+ FIPS_mode;
> -+ FIPS_selftest_failed;
> -+ sk_is_sorted;
> -+ X509_check_ca;
> -+ HMAC_CTX_set_flags;
> -+ d2i_PROXY_CERT_INFO_EXTENSION;
> -+ PROXY_POLICY_it;
> -+ i2d_PROXY_POLICY;
> -+ i2d_PROXY_CERT_INFO_EXTENSION;
> -+ d2i_PROXY_POLICY;
> -+ PROXY_CERT_INFO_EXTENSION_new;
> -+ PROXY_CERT_INFO_EXTENSION_free;
> -+ PROXY_CERT_INFO_EXTENSION_it;
> -+ PROXY_POLICY_free;
> -+ PROXY_POLICY_new;
> -+ BN_MONT_CTX_set_locked;
> -+ FIPS_selftest_rng;
> -+ EVP_sha384;
> -+ EVP_sha512;
> -+ EVP_sha224;
> -+ EVP_sha256;
> -+ FIPS_selftest_hmac;
> -+ FIPS_corrupt_rng;
> -+ BN_mod_exp_mont_consttime;
> -+ RSA_X931_hash_id;
> -+ RSA_padding_check_X931;
> -+ RSA_verify_PKCS1_PSS;
> -+ RSA_padding_add_X931;
> -+ RSA_padding_add_PKCS1_PSS;
> -+ PKCS1_MGF1;
> -+ BN_X931_generate_Xpq;
> -+ RSA_X931_generate_key;
> -+ BN_X931_derive_prime;
> -+ BN_X931_generate_prime;
> -+ RSA_X931_derive;
> -+ BIO_new_dgram;
> -+ BN_get0_nist_prime_384;
> -+ ERR_set_mark;
> -+ X509_STORE_CTX_set0_crls;
> -+ ENGINE_set_STORE;
> -+ ENGINE_register_ECDSA;
> -+ STORE_meth_set_list_start_fn;
> -+ STORE_method_set_list_start_function;
> -+ BN_BLINDING_invert_ex;
> -+ NAME_CONSTRAINTS_free;
> -+ STORE_ATTR_INFO_set_number;
> -+ BN_BLINDING_get_thread_id;
> -+ X509_STORE_CTX_set0_param;
> -+ POLICY_MAPPING_it;
> -+ STORE_parse_attrs_start;
> -+ POLICY_CONSTRAINTS_free;
> -+ EVP_PKEY_add1_attr_by_NID;
> -+ BN_nist_mod_192;
> -+ EC_GROUP_get_trinomial_basis;
> -+ STORE_set_method;
> -+ GENERAL_SUBTREE_free;
> -+ NAME_CONSTRAINTS_it;
> -+ ECDH_get_default_method;
> -+ PKCS12_add_safe;
> -+ EC_KEY_new_by_curve_name;
> -+ STORE_meth_get_update_store_fn;
> -+ STORE_method_get_update_store_function;
> -+ ENGINE_register_ECDH;
> -+ SHA512_Update;
> -+ i2d_ECPrivateKey;
> -+ BN_get0_nist_prime_192;
> -+ STORE_modify_certificate;
> -+ EC_POINT_set_affine_coordinates_GF2m;
> -+ EC_POINT_set_affine_coords_GF2m;
> -+ BN_GF2m_mod_exp_arr;
> -+ STORE_ATTR_INFO_modify_number;
> -+ X509_keyid_get0;
> -+ ENGINE_load_gmp;
> -+ pitem_new;
> -+ BN_GF2m_mod_mul_arr;
> -+ STORE_list_public_key_endp;
> -+ o2i_ECPublicKey;
> -+ EC_KEY_copy;
> -+ BIO_dump_fp;
> -+ X509_policy_node_get0_parent;
> -+ EC_GROUP_check_discriminant;
> -+ i2o_ECPublicKey;
> -+ EC_KEY_precompute_mult;
> -+ a2i_IPADDRESS;
> -+ STORE_meth_set_initialise_fn;
> -+ STORE_method_set_initialise_function;
> -+ X509_STORE_CTX_set_depth;
> -+ X509_VERIFY_PARAM_inherit;
> -+ EC_POINT_point2bn;
> -+ STORE_ATTR_INFO_set_dn;
> -+ X509_policy_tree_get0_policies;
> -+ EC_GROUP_new_curve_GF2m;
> -+ STORE_destroy_method;
> -+ ENGINE_unregister_STORE;
> -+ EVP_PKEY_get1_EC_KEY;
> -+ STORE_ATTR_INFO_get0_number;
> -+ ENGINE_get_default_ECDH;
> -+ EC_KEY_get_conv_form;
> -+ ASN1_OCTET_STRING_NDEF_it;
> -+ STORE_delete_public_key;
> -+ STORE_get_public_key;
> -+ STORE_modify_arbitrary;
> -+ ENGINE_get_static_state;
> -+ pqueue_iterator;
> -+ ECDSA_SIG_new;
> -+ OPENSSL_DIR_end;
> -+ BN_GF2m_mod_sqr;
> -+ EC_POINT_bn2point;
> -+ X509_VERIFY_PARAM_set_depth;
> -+ EC_KEY_set_asn1_flag;
> -+ STORE_get_method;
> -+ EC_KEY_get_key_method_data;
> -+ ECDSA_sign_ex;
> -+ STORE_parse_attrs_end;
> -+ EC_GROUP_get_point_conversion_form;
> -+ EC_GROUP_get_point_conv_form;
> -+ STORE_method_set_store_function;
> -+ STORE_ATTR_INFO_in;
> -+ PEM_read_bio_ECPKParameters;
> -+ EC_GROUP_get_pentanomial_basis;
> -+ EVP_PKEY_add1_attr_by_txt;
> -+ BN_BLINDING_set_flags;
> -+ X509_VERIFY_PARAM_set1_policies;
> -+ X509_VERIFY_PARAM_set1_name;
> -+ X509_VERIFY_PARAM_set_purpose;
> -+ STORE_get_number;
> -+ ECDSA_sign_setup;
> -+ BN_GF2m_mod_solve_quad_arr;
> -+ EC_KEY_up_ref;
> -+ POLICY_MAPPING_free;
> -+ BN_GF2m_mod_div;
> -+ X509_VERIFY_PARAM_set_flags;
> -+ EC_KEY_free;
> -+ STORE_meth_set_list_next_fn;
> -+ STORE_method_set_list_next_function;
> -+ PEM_write_bio_ECPrivateKey;
> -+ d2i_EC_PUBKEY;
> -+ STORE_meth_get_generate_fn;
> -+ STORE_method_get_generate_function;
> -+ STORE_meth_set_list_end_fn;
> -+ STORE_method_set_list_end_function;
> -+ pqueue_print;
> -+ EC_GROUP_have_precompute_mult;
> -+ EC_KEY_print_fp;
> -+ BN_GF2m_mod_arr;
> -+ PEM_write_bio_X509_CERT_PAIR;
> -+ EVP_PKEY_cmp;
> -+ X509_policy_level_node_count;
> -+ STORE_new_engine;
> -+ STORE_list_public_key_start;
> -+ X509_VERIFY_PARAM_new;
> -+ ECDH_get_ex_data;
> -+ EVP_PKEY_get_attr;
> -+ ECDSA_do_sign;
> -+ ENGINE_unregister_ECDH;
> -+ ECDH_OpenSSL;
> -+ EC_KEY_set_conv_form;
> -+ EC_POINT_dup;
> -+ GENERAL_SUBTREE_new;
> -+ STORE_list_crl_endp;
> -+ EC_get_builtin_curves;
> -+ X509_policy_node_get0_qualifiers;
> -+ X509_pcy_node_get0_qualifiers;
> -+ STORE_list_crl_end;
> -+ EVP_PKEY_set1_EC_KEY;
> -+ BN_GF2m_mod_sqrt_arr;
> -+ i2d_ECPrivateKey_bio;
> -+ ECPKParameters_print_fp;
> -+ pqueue_find;
> -+ ECDSA_SIG_free;
> -+ PEM_write_bio_ECPKParameters;
> -+ STORE_method_set_ctrl_function;
> -+ STORE_list_public_key_end;
> -+ EC_KEY_set_private_key;
> -+ pqueue_peek;
> -+ STORE_get_arbitrary;
> -+ STORE_store_crl;
> -+ X509_policy_node_get0_policy;
> -+ PKCS12_add_safes;
> -+ BN_BLINDING_convert_ex;
> -+ X509_policy_tree_free;
> -+ OPENSSL_ia32cap_loc;
> -+ BN_GF2m_poly2arr;
> -+ STORE_ctrl;
> -+ STORE_ATTR_INFO_compare;
> -+ BN_get0_nist_prime_224;
> -+ i2d_ECParameters;
> -+ i2d_ECPKParameters;
> -+ BN_GENCB_call;
> -+ d2i_ECPKParameters;
> -+ STORE_meth_set_generate_fn;
> -+ STORE_method_set_generate_function;
> -+ ENGINE_set_ECDH;
> -+ NAME_CONSTRAINTS_new;
> -+ SHA256_Init;
> -+ EC_KEY_get0_public_key;
> -+ PEM_write_bio_EC_PUBKEY;
> -+ STORE_ATTR_INFO_set_cstr;
> -+ STORE_list_crl_next;
> -+ STORE_ATTR_INFO_in_range;
> -+ ECParameters_print;
> -+ STORE_meth_set_delete_fn;
> -+ STORE_method_set_delete_function;
> -+ STORE_list_certificate_next;
> -+ ASN1_generate_nconf;
> -+ BUF_memdup;
> -+ BN_GF2m_mod_mul;
> -+ STORE_meth_get_list_next_fn;
> -+ STORE_method_get_list_next_function;
> -+ STORE_ATTR_INFO_get0_dn;
> -+ STORE_list_private_key_next;
> -+ EC_GROUP_set_seed;
> -+ X509_VERIFY_PARAM_set_trust;
> -+ STORE_ATTR_INFO_free;
> -+ STORE_get_private_key;
> -+ EVP_PKEY_get_attr_count;
> -+ STORE_ATTR_INFO_new;
> -+ EC_GROUP_get_curve_GF2m;
> -+ STORE_meth_set_revoke_fn;
> -+ STORE_method_set_revoke_function;
> -+ STORE_store_number;
> -+ BN_is_prime_ex;
> -+ STORE_revoke_public_key;
> -+ X509_STORE_CTX_get0_param;
> -+ STORE_delete_arbitrary;
> -+ PEM_read_X509_CERT_PAIR;
> -+ X509_STORE_set_depth;
> -+ ECDSA_get_ex_data;
> -+ SHA224;
> -+ BIO_dump_indent_fp;
> -+ EC_KEY_set_group;
> -+ BUF_strndup;
> -+ STORE_list_certificate_start;
> -+ BN_GF2m_mod;
> -+ X509_REQ_check_private_key;
> -+ EC_GROUP_get_seed_len;
> -+ ERR_load_STORE_strings;
> -+ PEM_read_bio_EC_PUBKEY;
> -+ STORE_list_private_key_end;
> -+ i2d_EC_PUBKEY;
> -+ ECDSA_get_default_method;
> -+ ASN1_put_eoc;
> -+ X509_STORE_CTX_get_explicit_policy;
> -+ X509_STORE_CTX_get_expl_policy;
> -+ X509_VERIFY_PARAM_table_cleanup;
> -+ STORE_modify_private_key;
> -+ X509_VERIFY_PARAM_free;
> -+ EC_METHOD_get_field_type;
> -+ EC_GFp_nist_method;
> -+ STORE_meth_set_modify_fn;
> -+ STORE_method_set_modify_function;
> -+ STORE_parse_attrs_next;
> -+ ENGINE_load_padlock;
> -+ EC_GROUP_set_curve_name;
> -+ X509_CERT_PAIR_it;
> -+ STORE_meth_get_revoke_fn;
> -+ STORE_method_get_revoke_function;
> -+ STORE_method_set_get_function;
> -+ STORE_modify_number;
> -+ STORE_method_get_store_function;
> -+ STORE_store_private_key;
> -+ BN_GF2m_mod_sqr_arr;
> -+ RSA_setup_blinding;
> -+ BIO_s_datagram;
> -+ STORE_Memory;
> -+ sk_find_ex;
> -+ EC_GROUP_set_curve_GF2m;
> -+ ENGINE_set_default_ECDSA;
> -+ POLICY_CONSTRAINTS_new;
> -+ BN_GF2m_mod_sqrt;
> -+ ECDH_set_default_method;
> -+ EC_KEY_generate_key;
> -+ SHA384_Update;
> -+ BN_GF2m_arr2poly;
> -+ STORE_method_get_get_function;
> -+ STORE_meth_set_cleanup_fn;
> -+ STORE_method_set_cleanup_function;
> -+ EC_GROUP_check;
> -+ d2i_ECPrivateKey_bio;
> -+ EC_KEY_insert_key_method_data;
> -+ STORE_meth_get_lock_store_fn;
> -+ STORE_method_get_lock_store_function;
> -+ X509_VERIFY_PARAM_get_depth;
> -+ SHA224_Final;
> -+ STORE_meth_set_update_store_fn;
> -+ STORE_method_set_update_store_function;
> -+ SHA224_Update;
> -+ d2i_ECPrivateKey;
> -+ ASN1_item_ndef_i2d;
> -+ STORE_delete_private_key;
> -+ ERR_pop_to_mark;
> -+ ENGINE_register_all_STORE;
> -+ X509_policy_level_get0_node;
> -+ i2d_PKCS7_NDEF;
> -+ EC_GROUP_get_degree;
> -+ ASN1_generate_v3;
> -+ STORE_ATTR_INFO_modify_cstr;
> -+ X509_policy_tree_level_count;
> -+ BN_GF2m_add;
> -+ EC_KEY_get0_group;
> -+ STORE_generate_crl;
> -+ STORE_store_public_key;
> -+ X509_CERT_PAIR_free;
> -+ STORE_revoke_private_key;
> -+ BN_nist_mod_224;
> -+ SHA512_Final;
> -+ STORE_ATTR_INFO_modify_dn;
> -+ STORE_meth_get_initialise_fn;
> -+ STORE_method_get_initialise_function;
> -+ STORE_delete_number;
> -+ i2d_EC_PUBKEY_bio;
> -+ BIO_dgram_non_fatal_error;
> -+ EC_GROUP_get_asn1_flag;
> -+ STORE_ATTR_INFO_in_ex;
> -+ STORE_list_crl_start;
> -+ ECDH_get_ex_new_index;
> -+ STORE_meth_get_modify_fn;
> -+ STORE_method_get_modify_function;
> -+ v2i_ASN1_BIT_STRING;
> -+ STORE_store_certificate;
> -+ OBJ_bsearch_ex;
> -+ X509_STORE_CTX_set_default;
> -+ STORE_ATTR_INFO_set_sha1str;
> -+ BN_GF2m_mod_inv;
> -+ BN_GF2m_mod_exp;
> -+ STORE_modify_public_key;
> -+ STORE_meth_get_list_start_fn;
> -+ STORE_method_get_list_start_function;
> -+ EC_GROUP_get0_seed;
> -+ STORE_store_arbitrary;
> -+ STORE_meth_set_unlock_store_fn;
> -+ STORE_method_set_unlock_store_function;
> -+ BN_GF2m_mod_div_arr;
> -+ ENGINE_set_ECDSA;
> -+ STORE_create_method;
> -+ ECPKParameters_print;
> -+ EC_KEY_get0_private_key;
> -+ PEM_write_EC_PUBKEY;
> -+ X509_VERIFY_PARAM_set1;
> -+ ECDH_set_method;
> -+ v2i_GENERAL_NAME_ex;
> -+ ECDH_set_ex_data;
> -+ STORE_generate_key;
> -+ BN_nist_mod_521;
> -+ X509_policy_tree_get0_level;
> -+ EC_GROUP_set_point_conversion_form;
> -+ EC_GROUP_set_point_conv_form;
> -+ PEM_read_EC_PUBKEY;
> -+ i2d_ECDSA_SIG;
> -+ ECDSA_OpenSSL;
> -+ STORE_delete_crl;
> -+ EC_KEY_get_enc_flags;
> -+ ASN1_const_check_infinite_end;
> -+ EVP_PKEY_delete_attr;
> -+ ECDSA_set_default_method;
> -+ EC_POINT_set_compressed_coordinates_GF2m;
> -+ EC_POINT_set_compr_coords_GF2m;
> -+ EC_GROUP_cmp;
> -+ STORE_revoke_certificate;
> -+ BN_get0_nist_prime_256;
> -+ STORE_meth_get_delete_fn;
> -+ STORE_method_get_delete_function;
> -+ SHA224_Init;
> -+ PEM_read_ECPrivateKey;
> -+ SHA512_Init;
> -+ STORE_parse_attrs_endp;
> -+ BN_set_negative;
> -+ ERR_load_ECDSA_strings;
> -+ EC_GROUP_get_basis_type;
> -+ STORE_list_public_key_next;
> -+ i2v_ASN1_BIT_STRING;
> -+ STORE_OBJECT_free;
> -+ BN_nist_mod_384;
> -+ i2d_X509_CERT_PAIR;
> -+ PEM_write_ECPKParameters;
> -+ ECDH_compute_key;
> -+ STORE_ATTR_INFO_get0_sha1str;
> -+ ENGINE_register_all_ECDH;
> -+ pqueue_pop;
> -+ STORE_ATTR_INFO_get0_cstr;
> -+ POLICY_CONSTRAINTS_it;
> -+ STORE_get_ex_new_index;
> -+ EVP_PKEY_get_attr_by_OBJ;
> -+ X509_VERIFY_PARAM_add0_policy;
> -+ BN_GF2m_mod_solve_quad;
> -+ SHA256;
> -+ i2d_ECPrivateKey_fp;
> -+ X509_policy_tree_get0_user_policies;
> -+ X509_pcy_tree_get0_usr_policies;
> -+ OPENSSL_DIR_read;
> -+ ENGINE_register_all_ECDSA;
> -+ X509_VERIFY_PARAM_lookup;
> -+ EC_POINT_get_affine_coordinates_GF2m;
> -+ EC_POINT_get_affine_coords_GF2m;
> -+ EC_GROUP_dup;
> -+ ENGINE_get_default_ECDSA;
> -+ EC_KEY_new;
> -+ SHA256_Transform;
> -+ EC_KEY_set_enc_flags;
> -+ ECDSA_verify;
> -+ EC_POINT_point2hex;
> -+ ENGINE_get_STORE;
> -+ SHA512;
> -+ STORE_get_certificate;
> -+ ECDSA_do_sign_ex;
> -+ ECDSA_do_verify;
> -+ d2i_ECPrivateKey_fp;
> -+ STORE_delete_certificate;
> -+ SHA512_Transform;
> -+ X509_STORE_set1_param;
> -+ STORE_method_get_ctrl_function;
> -+ STORE_free;
> -+ PEM_write_ECPrivateKey;
> -+ STORE_meth_get_unlock_store_fn;
> -+ STORE_method_get_unlock_store_function;
> -+ STORE_get_ex_data;
> -+ EC_KEY_set_public_key;
> -+ PEM_read_ECPKParameters;
> -+ X509_CERT_PAIR_new;
> -+ ENGINE_register_STORE;
> -+ RSA_generate_key_ex;
> -+ DSA_generate_parameters_ex;
> -+ ECParameters_print_fp;
> -+ X509V3_NAME_from_section;
> -+ EVP_PKEY_add1_attr;
> -+ STORE_modify_crl;
> -+ STORE_list_private_key_start;
> -+ POLICY_MAPPINGS_it;
> -+ GENERAL_SUBTREE_it;
> -+ EC_GROUP_get_curve_name;
> -+ PEM_write_X509_CERT_PAIR;
> -+ BIO_dump_indent_cb;
> -+ d2i_X509_CERT_PAIR;
> -+ STORE_list_private_key_endp;
> -+ asn1_const_Finish;
> -+ i2d_EC_PUBKEY_fp;
> -+ BN_nist_mod_256;
> -+ X509_VERIFY_PARAM_add0_table;
> -+ pqueue_free;
> -+ BN_BLINDING_create_param;
> -+ ECDSA_size;
> -+ d2i_EC_PUBKEY_bio;
> -+ BN_get0_nist_prime_521;
> -+ STORE_ATTR_INFO_modify_sha1str;
> -+ BN_generate_prime_ex;
> -+ EC_GROUP_new_by_curve_name;
> -+ SHA256_Final;
> -+ DH_generate_parameters_ex;
> -+ PEM_read_bio_ECPrivateKey;
> -+ STORE_meth_get_cleanup_fn;
> -+ STORE_method_get_cleanup_function;
> -+ ENGINE_get_ECDH;
> -+ d2i_ECDSA_SIG;
> -+ BN_is_prime_fasttest_ex;
> -+ ECDSA_sign;
> -+ X509_policy_check;
> -+ EVP_PKEY_get_attr_by_NID;
> -+ STORE_set_ex_data;
> -+ ENGINE_get_ECDSA;
> -+ EVP_ecdsa;
> -+ BN_BLINDING_get_flags;
> -+ PKCS12_add_cert;
> -+ STORE_OBJECT_new;
> -+ ERR_load_ECDH_strings;
> -+ EC_KEY_dup;
> -+ EVP_CIPHER_CTX_rand_key;
> -+ ECDSA_set_method;
> -+ a2i_IPADDRESS_NC;
> -+ d2i_ECParameters;
> -+ STORE_list_certificate_end;
> -+ STORE_get_crl;
> -+ X509_POLICY_NODE_print;
> -+ SHA384_Init;
> -+ EC_GF2m_simple_method;
> -+ ECDSA_set_ex_data;
> -+ SHA384_Final;
> -+ PKCS7_set_digest;
> -+ EC_KEY_print;
> -+ STORE_meth_set_lock_store_fn;
> -+ STORE_method_set_lock_store_function;
> -+ ECDSA_get_ex_new_index;
> -+ SHA384;
> -+ POLICY_MAPPING_new;
> -+ STORE_list_certificate_endp;
> -+ X509_STORE_CTX_get0_policy_tree;
> -+ EC_GROUP_set_asn1_flag;
> -+ EC_KEY_check_key;
> -+ d2i_EC_PUBKEY_fp;
> -+ PKCS7_set0_type_other;
> -+ PEM_read_bio_X509_CERT_PAIR;
> -+ pqueue_next;
> -+ STORE_meth_get_list_end_fn;
> -+ STORE_method_get_list_end_function;
> -+ EVP_PKEY_add1_attr_by_OBJ;
> -+ X509_VERIFY_PARAM_set_time;
> -+ pqueue_new;
> -+ ENGINE_set_default_ECDH;
> -+ STORE_new_method;
> -+ PKCS12_add_key;
> -+ DSO_merge;
> -+ EC_POINT_hex2point;
> -+ BIO_dump_cb;
> -+ SHA256_Update;
> -+ pqueue_insert;
> -+ pitem_free;
> -+ BN_GF2m_mod_inv_arr;
> -+ ENGINE_unregister_ECDSA;
> -+ BN_BLINDING_set_thread_id;
> -+ get_rfc3526_prime_8192;
> -+ X509_VERIFY_PARAM_clear_flags;
> -+ get_rfc2409_prime_1024;
> -+ DH_check_pub_key;
> -+ get_rfc3526_prime_2048;
> -+ get_rfc3526_prime_6144;
> -+ get_rfc3526_prime_1536;
> -+ get_rfc3526_prime_3072;
> -+ get_rfc3526_prime_4096;
> -+ get_rfc2409_prime_768;
> -+ X509_VERIFY_PARAM_get_flags;
> -+ EVP_CIPHER_CTX_new;
> -+ EVP_CIPHER_CTX_free;
> -+ Camellia_cbc_encrypt;
> -+ Camellia_cfb128_encrypt;
> -+ Camellia_cfb1_encrypt;
> -+ Camellia_cfb8_encrypt;
> -+ Camellia_ctr128_encrypt;
> -+ Camellia_cfbr_encrypt_block;
> -+ Camellia_decrypt;
> -+ Camellia_ecb_encrypt;
> -+ Camellia_encrypt;
> -+ Camellia_ofb128_encrypt;
> -+ Camellia_set_key;
> -+ EVP_camellia_128_cbc;
> -+ EVP_camellia_128_cfb128;
> -+ EVP_camellia_128_cfb1;
> -+ EVP_camellia_128_cfb8;
> -+ EVP_camellia_128_ecb;
> -+ EVP_camellia_128_ofb;
> -+ EVP_camellia_192_cbc;
> -+ EVP_camellia_192_cfb128;
> -+ EVP_camellia_192_cfb1;
> -+ EVP_camellia_192_cfb8;
> -+ EVP_camellia_192_ecb;
> -+ EVP_camellia_192_ofb;
> -+ EVP_camellia_256_cbc;
> -+ EVP_camellia_256_cfb128;
> -+ EVP_camellia_256_cfb1;
> -+ EVP_camellia_256_cfb8;
> -+ EVP_camellia_256_ecb;
> -+ EVP_camellia_256_ofb;
> -+ a2i_ipadd;
> -+ ASIdentifiers_free;
> -+ i2d_ASIdOrRange;
> -+ EVP_CIPHER_block_size;
> -+ v3_asid_is_canonical;
> -+ IPAddressChoice_free;
> -+ EVP_CIPHER_CTX_set_app_data;
> -+ BIO_set_callback_arg;
> -+ v3_addr_add_prefix;
> -+ IPAddressOrRange_it;
> -+ BIO_set_flags;
> -+ ASIdentifiers_it;
> -+ v3_addr_get_range;
> -+ BIO_method_type;
> -+ v3_addr_inherits;
> -+ IPAddressChoice_it;
> -+ AES_ige_encrypt;
> -+ v3_addr_add_range;
> -+ EVP_CIPHER_CTX_nid;
> -+ d2i_ASRange;
> -+ v3_addr_add_inherit;
> -+ v3_asid_add_id_or_range;
> -+ v3_addr_validate_resource_set;
> -+ EVP_CIPHER_iv_length;
> -+ EVP_MD_type;
> -+ v3_asid_canonize;
> -+ IPAddressRange_free;
> -+ v3_asid_add_inherit;
> -+ EVP_CIPHER_CTX_key_length;
> -+ IPAddressRange_new;
> -+ ASIdOrRange_new;
> -+ EVP_MD_size;
> -+ EVP_MD_CTX_test_flags;
> -+ BIO_clear_flags;
> -+ i2d_ASRange;
> -+ IPAddressRange_it;
> -+ IPAddressChoice_new;
> -+ ASIdentifierChoice_new;
> -+ ASRange_free;
> -+ EVP_MD_pkey_type;
> -+ EVP_MD_CTX_clear_flags;
> -+ IPAddressFamily_free;
> -+ i2d_IPAddressFamily;
> -+ IPAddressOrRange_new;
> -+ EVP_CIPHER_flags;
> -+ v3_asid_validate_resource_set;
> -+ d2i_IPAddressRange;
> -+ AES_bi_ige_encrypt;
> -+ BIO_get_callback;
> -+ IPAddressOrRange_free;
> -+ v3_addr_subset;
> -+ d2i_IPAddressFamily;
> -+ v3_asid_subset;
> -+ BIO_test_flags;
> -+ i2d_ASIdentifierChoice;
> -+ ASRange_it;
> -+ d2i_ASIdentifiers;
> -+ ASRange_new;
> -+ d2i_IPAddressChoice;
> -+ v3_addr_get_afi;
> -+ EVP_CIPHER_key_length;
> -+ EVP_Cipher;
> -+ i2d_IPAddressOrRange;
> -+ ASIdOrRange_it;
> -+ EVP_CIPHER_nid;
> -+ i2d_IPAddressChoice;
> -+ EVP_CIPHER_CTX_block_size;
> -+ ASIdentifiers_new;
> -+ v3_addr_validate_path;
> -+ IPAddressFamily_new;
> -+ EVP_MD_CTX_set_flags;
> -+ v3_addr_is_canonical;
> -+ i2d_IPAddressRange;
> -+ IPAddressFamily_it;
> -+ v3_asid_inherits;
> -+ EVP_CIPHER_CTX_cipher;
> -+ EVP_CIPHER_CTX_get_app_data;
> -+ EVP_MD_block_size;
> -+ EVP_CIPHER_CTX_flags;
> -+ v3_asid_validate_path;
> -+ d2i_IPAddressOrRange;
> -+ v3_addr_canonize;
> -+ ASIdentifierChoice_it;
> -+ EVP_MD_CTX_md;
> -+ d2i_ASIdentifierChoice;
> -+ BIO_method_name;
> -+ EVP_CIPHER_CTX_iv_length;
> -+ ASIdOrRange_free;
> -+ ASIdentifierChoice_free;
> -+ BIO_get_callback_arg;
> -+ BIO_set_callback;
> -+ d2i_ASIdOrRange;
> -+ i2d_ASIdentifiers;
> -+ SEED_decrypt;
> -+ SEED_encrypt;
> -+ SEED_cbc_encrypt;
> -+ EVP_seed_ofb;
> -+ SEED_cfb128_encrypt;
> -+ SEED_ofb128_encrypt;
> -+ EVP_seed_cbc;
> -+ SEED_ecb_encrypt;
> -+ EVP_seed_ecb;
> -+ SEED_set_key;
> -+ EVP_seed_cfb128;
> -+ X509_EXTENSIONS_it;
> -+ X509_get1_ocsp;
> -+ OCSP_REQ_CTX_free;
> -+ i2d_X509_EXTENSIONS;
> -+ OCSP_sendreq_nbio;
> -+ OCSP_sendreq_new;
> -+ d2i_X509_EXTENSIONS;
> -+ X509_ALGORS_it;
> -+ X509_ALGOR_get0;
> -+ X509_ALGOR_set0;
> -+ AES_unwrap_key;
> -+ AES_wrap_key;
> -+ X509at_get0_data_by_OBJ;
> -+ ASN1_TYPE_set1;
> -+ ASN1_STRING_set0;
> -+ i2d_X509_ALGORS;
> -+ BIO_f_zlib;
> -+ COMP_zlib_cleanup;
> -+ d2i_X509_ALGORS;
> -+ CMS_ReceiptRequest_free;
> -+ PEM_write_CMS;
> -+ CMS_add0_CertificateChoices;
> -+ CMS_unsigned_add1_attr_by_OBJ;
> -+ ERR_load_CMS_strings;
> -+ CMS_sign_receipt;
> -+ i2d_CMS_ContentInfo;
> -+ CMS_signed_delete_attr;
> -+ d2i_CMS_bio;
> -+ CMS_unsigned_get_attr_by_NID;
> -+ CMS_verify;
> -+ SMIME_read_CMS;
> -+ CMS_decrypt_set1_key;
> -+ CMS_SignerInfo_get0_algs;
> -+ CMS_add1_cert;
> -+ CMS_set_detached;
> -+ CMS_encrypt;
> -+ CMS_EnvelopedData_create;
> -+ CMS_uncompress;
> -+ CMS_add0_crl;
> -+ CMS_SignerInfo_verify_content;
> -+ CMS_unsigned_get0_data_by_OBJ;
> -+ PEM_write_bio_CMS;
> -+ CMS_unsigned_get_attr;
> -+ CMS_RecipientInfo_ktri_cert_cmp;
> -+ CMS_RecipientInfo_ktri_get0_algs;
> -+ CMS_RecipInfo_ktri_get0_algs;
> -+ CMS_ContentInfo_free;
> -+ CMS_final;
> -+ CMS_add_simple_smimecap;
> -+ CMS_SignerInfo_verify;
> -+ CMS_data;
> -+ CMS_ContentInfo_it;
> -+ d2i_CMS_ReceiptRequest;
> -+ CMS_compress;
> -+ CMS_digest_create;
> -+ CMS_SignerInfo_cert_cmp;
> -+ CMS_SignerInfo_sign;
> -+ CMS_data_create;
> -+ i2d_CMS_bio;
> -+ CMS_EncryptedData_set1_key;
> -+ CMS_decrypt;
> -+ int_smime_write_ASN1;
> -+ CMS_unsigned_delete_attr;
> -+ CMS_unsigned_get_attr_count;
> -+ CMS_add_smimecap;
> -+ PEM_read_CMS;
> -+ CMS_signed_get_attr_by_OBJ;
> -+ d2i_CMS_ContentInfo;
> -+ CMS_add_standard_smimecap;
> -+ CMS_ContentInfo_new;
> -+ CMS_RecipientInfo_type;
> -+ CMS_get0_type;
> -+ CMS_is_detached;
> -+ CMS_sign;
> -+ CMS_signed_add1_attr;
> -+ CMS_unsigned_get_attr_by_OBJ;
> -+ SMIME_write_CMS;
> -+ CMS_EncryptedData_decrypt;
> -+ CMS_get0_RecipientInfos;
> -+ CMS_add0_RevocationInfoChoice;
> -+ CMS_decrypt_set1_pkey;
> -+ CMS_SignerInfo_set1_signer_cert;
> -+ CMS_get0_signers;
> -+ CMS_ReceiptRequest_get0_values;
> -+ CMS_signed_get0_data_by_OBJ;
> -+ CMS_get0_SignerInfos;
> -+ CMS_add0_cert;
> -+ CMS_EncryptedData_encrypt;
> -+ CMS_digest_verify;
> -+ CMS_set1_signers_certs;
> -+ CMS_signed_get_attr;
> -+ CMS_RecipientInfo_set0_key;
> -+ CMS_SignedData_init;
> -+ CMS_RecipientInfo_kekri_get0_id;
> -+ CMS_verify_receipt;
> -+ CMS_ReceiptRequest_it;
> -+ PEM_read_bio_CMS;
> -+ CMS_get1_crls;
> -+ CMS_add0_recipient_key;
> -+ SMIME_read_ASN1;
> -+ CMS_ReceiptRequest_new;
> -+ CMS_get0_content;
> -+ CMS_get1_ReceiptRequest;
> -+ CMS_signed_add1_attr_by_OBJ;
> -+ CMS_RecipientInfo_kekri_id_cmp;
> -+ CMS_add1_ReceiptRequest;
> -+ CMS_SignerInfo_get0_signer_id;
> -+ CMS_unsigned_add1_attr_by_NID;
> -+ CMS_unsigned_add1_attr;
> -+ CMS_signed_get_attr_by_NID;
> -+ CMS_get1_certs;
> -+ CMS_signed_add1_attr_by_NID;
> -+ CMS_unsigned_add1_attr_by_txt;
> -+ CMS_dataFinal;
> -+ CMS_RecipientInfo_ktri_get0_signer_id;
> -+ CMS_RecipInfo_ktri_get0_sigr_id;
> -+ i2d_CMS_ReceiptRequest;
> -+ CMS_add1_recipient_cert;
> -+ CMS_dataInit;
> -+ CMS_signed_add1_attr_by_txt;
> -+ CMS_RecipientInfo_decrypt;
> -+ CMS_signed_get_attr_count;
> -+ CMS_get0_eContentType;
> -+ CMS_set1_eContentType;
> -+ CMS_ReceiptRequest_create0;
> -+ CMS_add1_signer;
> -+ CMS_RecipientInfo_set0_pkey;
> -+ ENGINE_set_load_ssl_client_cert_function;
> -+ ENGINE_set_ld_ssl_clnt_cert_fn;
> -+ ENGINE_get_ssl_client_cert_function;
> -+ ENGINE_get_ssl_client_cert_fn;
> -+ ENGINE_load_ssl_client_cert;
> -+ ENGINE_load_capi;
> -+ OPENSSL_isservice;
> -+ FIPS_dsa_sig_decode;
> -+ EVP_CIPHER_CTX_clear_flags;
> -+ FIPS_rand_status;
> -+ FIPS_rand_set_key;
> -+ CRYPTO_set_mem_info_functions;
> -+ RSA_X931_generate_key_ex;
> -+ int_ERR_set_state_func;
> -+ int_EVP_MD_set_engine_callbacks;
> -+ int_CRYPTO_set_do_dynlock_callback;
> -+ FIPS_rng_stick;
> -+ EVP_CIPHER_CTX_set_flags;
> -+ BN_X931_generate_prime_ex;
> -+ FIPS_selftest_check;
> -+ FIPS_rand_set_dt;
> -+ CRYPTO_dbg_pop_info;
> -+ FIPS_dsa_free;
> -+ RSA_X931_derive_ex;
> -+ FIPS_rsa_new;
> -+ FIPS_rand_bytes;
> -+ fips_cipher_test;
> -+ EVP_CIPHER_CTX_test_flags;
> -+ CRYPTO_malloc_debug_init;
> -+ CRYPTO_dbg_push_info;
> -+ FIPS_corrupt_rsa_keygen;
> -+ FIPS_dh_new;
> -+ FIPS_corrupt_dsa_keygen;
> -+ FIPS_dh_free;
> -+ fips_pkey_signature_test;
> -+ EVP_add_alg_module;
> -+ int_RAND_init_engine_callbacks;
> -+ int_EVP_CIPHER_set_engine_callbacks;
> -+ int_EVP_MD_init_engine_callbacks;
> -+ FIPS_rand_test_mode;
> -+ FIPS_rand_reset;
> -+ FIPS_dsa_new;
> -+ int_RAND_set_callbacks;
> -+ BN_X931_derive_prime_ex;
> -+ int_ERR_lib_init;
> -+ int_EVP_CIPHER_init_engine_callbacks;
> -+ FIPS_rsa_free;
> -+ FIPS_dsa_sig_encode;
> -+ CRYPTO_dbg_remove_all_info;
> -+ OPENSSL_init;
> -+ CRYPTO_strdup;
> -+ JPAKE_STEP3A_process;
> -+ JPAKE_STEP1_release;
> -+ JPAKE_get_shared_key;
> -+ JPAKE_STEP3B_init;
> -+ JPAKE_STEP1_generate;
> -+ JPAKE_STEP1_init;
> -+ JPAKE_STEP3B_process;
> -+ JPAKE_STEP2_generate;
> -+ JPAKE_CTX_new;
> -+ JPAKE_CTX_free;
> -+ JPAKE_STEP3B_release;
> -+ JPAKE_STEP3A_release;
> -+ JPAKE_STEP2_process;
> -+ JPAKE_STEP3B_generate;
> -+ JPAKE_STEP1_process;
> -+ JPAKE_STEP3A_generate;
> -+ JPAKE_STEP2_release;
> -+ JPAKE_STEP3A_init;
> -+ ERR_load_JPAKE_strings;
> -+ JPAKE_STEP2_init;
> -+ pqueue_size;
> -+ i2d_TS_ACCURACY;
> -+ i2d_TS_MSG_IMPRINT_fp;
> -+ i2d_TS_MSG_IMPRINT;
> -+ EVP_PKEY_print_public;
> -+ EVP_PKEY_CTX_new;
> -+ i2d_TS_TST_INFO;
> -+ EVP_PKEY_asn1_find;
> -+ DSO_METHOD_beos;
> -+ TS_CONF_load_cert;
> -+ TS_REQ_get_ext;
> -+ EVP_PKEY_sign_init;
> -+ ASN1_item_print;
> -+ TS_TST_INFO_set_nonce;
> -+ TS_RESP_dup;
> -+ ENGINE_register_pkey_meths;
> -+ EVP_PKEY_asn1_add0;
> -+ PKCS7_add0_attrib_signing_time;
> -+ i2d_TS_TST_INFO_fp;
> -+ BIO_asn1_get_prefix;
> -+ TS_TST_INFO_set_time;
> -+ EVP_PKEY_meth_set_decrypt;
> -+ EVP_PKEY_set_type_str;
> -+ EVP_PKEY_CTX_get_keygen_info;
> -+ TS_REQ_set_policy_id;
> -+ d2i_TS_RESP_fp;
> -+ ENGINE_get_pkey_asn1_meth_engine;
> -+ ENGINE_get_pkey_asn1_meth_eng;
> -+ WHIRLPOOL_Init;
> -+ TS_RESP_set_status_info;
> -+ EVP_PKEY_keygen;
> -+ EVP_DigestSignInit;
> -+ TS_ACCURACY_set_millis;
> -+ TS_REQ_dup;
> -+ GENERAL_NAME_dup;
> -+ ASN1_SEQUENCE_ANY_it;
> -+ WHIRLPOOL;
> -+ X509_STORE_get1_crls;
> -+ ENGINE_get_pkey_asn1_meth;
> -+ EVP_PKEY_asn1_new;
> -+ BIO_new_NDEF;
> -+ ENGINE_get_pkey_meth;
> -+ TS_MSG_IMPRINT_set_algo;
> -+ i2d_TS_TST_INFO_bio;
> -+ TS_TST_INFO_set_ordering;
> -+ TS_TST_INFO_get_ext_by_OBJ;
> -+ CRYPTO_THREADID_set_pointer;
> -+ TS_CONF_get_tsa_section;
> -+ SMIME_write_ASN1;
> -+ TS_RESP_CTX_set_signer_key;
> -+ EVP_PKEY_encrypt_old;
> -+ EVP_PKEY_encrypt_init;
> -+ CRYPTO_THREADID_cpy;
> -+ ASN1_PCTX_get_cert_flags;
> -+ i2d_ESS_SIGNING_CERT;
> -+ TS_CONF_load_key;
> -+ i2d_ASN1_SEQUENCE_ANY;
> -+ d2i_TS_MSG_IMPRINT_bio;
> -+ EVP_PKEY_asn1_set_public;
> -+ b2i_PublicKey_bio;
> -+ BIO_asn1_set_prefix;
> -+ EVP_PKEY_new_mac_key;
> -+ BIO_new_CMS;
> -+ CRYPTO_THREADID_cmp;
> -+ TS_REQ_ext_free;
> -+ EVP_PKEY_asn1_set_free;
> -+ EVP_PKEY_get0_asn1;
> -+ d2i_NETSCAPE_X509;
> -+ EVP_PKEY_verify_recover_init;
> -+ EVP_PKEY_CTX_set_data;
> -+ EVP_PKEY_keygen_init;
> -+ TS_RESP_CTX_set_status_info;
> -+ TS_MSG_IMPRINT_get_algo;
> -+ TS_REQ_print_bio;
> -+ EVP_PKEY_CTX_ctrl_str;
> -+ EVP_PKEY_get_default_digest_nid;
> -+ PEM_write_bio_PKCS7_stream;
> -+ TS_MSG_IMPRINT_print_bio;
> -+ BN_asc2bn;
> -+ TS_REQ_get_policy_id;
> -+ ENGINE_set_default_pkey_asn1_meths;
> -+ ENGINE_set_def_pkey_asn1_meths;
> -+ d2i_TS_ACCURACY;
> -+ DSO_global_lookup;
> -+ TS_CONF_set_tsa_name;
> -+ i2d_ASN1_SET_ANY;
> -+ ENGINE_load_gost;
> -+ WHIRLPOOL_BitUpdate;
> -+ ASN1_PCTX_get_flags;
> -+ TS_TST_INFO_get_ext_by_NID;
> -+ TS_RESP_new;
> -+ ESS_CERT_ID_dup;
> -+ TS_STATUS_INFO_dup;
> -+ TS_REQ_delete_ext;
> -+ EVP_DigestVerifyFinal;
> -+ EVP_PKEY_print_params;
> -+ i2d_CMS_bio_stream;
> -+ TS_REQ_get_msg_imprint;
> -+ OBJ_find_sigid_by_algs;
> -+ TS_TST_INFO_get_serial;
> -+ TS_REQ_get_nonce;
> -+ X509_PUBKEY_set0_param;
> -+ EVP_PKEY_CTX_set0_keygen_info;
> -+ DIST_POINT_set_dpname;
> -+ i2d_ISSUING_DIST_POINT;
> -+ ASN1_SET_ANY_it;
> -+ EVP_PKEY_CTX_get_data;
> -+ TS_STATUS_INFO_print_bio;
> -+ EVP_PKEY_derive_init;
> -+ d2i_TS_TST_INFO;
> -+ EVP_PKEY_asn1_add_alias;
> -+ d2i_TS_RESP_bio;
> -+ OTHERNAME_cmp;
> -+ GENERAL_NAME_set0_value;
> -+ PKCS7_RECIP_INFO_get0_alg;
> -+ TS_RESP_CTX_new;
> -+ TS_RESP_set_tst_info;
> -+ PKCS7_final;
> -+ EVP_PKEY_base_id;
> -+ TS_RESP_CTX_set_signer_cert;
> -+ TS_REQ_set_msg_imprint;
> -+ EVP_PKEY_CTX_ctrl;
> -+ TS_CONF_set_digests;
> -+ d2i_TS_MSG_IMPRINT;
> -+ EVP_PKEY_meth_set_ctrl;
> -+ TS_REQ_get_ext_by_NID;
> -+ PKCS5_pbe_set0_algor;
> -+ BN_BLINDING_thread_id;
> -+ TS_ACCURACY_new;
> -+ X509_CRL_METHOD_free;
> -+ ASN1_PCTX_get_nm_flags;
> -+ EVP_PKEY_meth_set_sign;
> -+ CRYPTO_THREADID_current;
> -+ EVP_PKEY_decrypt_init;
> -+ NETSCAPE_X509_free;
> -+ i2b_PVK_bio;
> -+ EVP_PKEY_print_private;
> -+ GENERAL_NAME_get0_value;
> -+ b2i_PVK_bio;
> -+ ASN1_UTCTIME_adj;
> -+ TS_TST_INFO_new;
> -+ EVP_MD_do_all_sorted;
> -+ TS_CONF_set_default_engine;
> -+ TS_ACCURACY_set_seconds;
> -+ TS_TST_INFO_get_time;
> -+ PKCS8_pkey_get0;
> -+ EVP_PKEY_asn1_get0;
> -+ OBJ_add_sigid;
> -+ PKCS7_SIGNER_INFO_sign;
> -+ EVP_PKEY_paramgen_init;
> -+ EVP_PKEY_sign;
> -+ OBJ_sigid_free;
> -+ EVP_PKEY_meth_set_init;
> -+ d2i_ESS_ISSUER_SERIAL;
> -+ ISSUING_DIST_POINT_new;
> -+ ASN1_TIME_adj;
> -+ TS_OBJ_print_bio;
> -+ EVP_PKEY_meth_set_verify_recover;
> -+ EVP_PKEY_meth_set_vrfy_recover;
> -+ TS_RESP_get_status_info;
> -+ CMS_stream;
> -+ EVP_PKEY_CTX_set_cb;
> -+ PKCS7_to_TS_TST_INFO;
> -+ ASN1_PCTX_get_oid_flags;
> -+ TS_TST_INFO_add_ext;
> -+ EVP_PKEY_meth_set_derive;
> -+ i2d_TS_RESP_fp;
> -+ i2d_TS_MSG_IMPRINT_bio;
> -+ TS_RESP_CTX_set_accuracy;
> -+ TS_REQ_set_nonce;
> -+ ESS_CERT_ID_new;
> -+ ENGINE_pkey_asn1_find_str;
> -+ TS_REQ_get_ext_count;
> -+ BUF_reverse;
> -+ TS_TST_INFO_print_bio;
> -+ d2i_ISSUING_DIST_POINT;
> -+ ENGINE_get_pkey_meths;
> -+ i2b_PrivateKey_bio;
> -+ i2d_TS_RESP;
> -+ b2i_PublicKey;
> -+ TS_VERIFY_CTX_cleanup;
> -+ TS_STATUS_INFO_free;
> -+ TS_RESP_verify_token;
> -+ OBJ_bsearch_ex_;
> -+ ASN1_bn_print;
> -+ EVP_PKEY_asn1_get_count;
> -+ ENGINE_register_pkey_asn1_meths;
> -+ ASN1_PCTX_set_nm_flags;
> -+ EVP_DigestVerifyInit;
> -+ ENGINE_set_default_pkey_meths;
> -+ TS_TST_INFO_get_policy_id;
> -+ TS_REQ_get_cert_req;
> -+ X509_CRL_set_meth_data;
> -+ PKCS8_pkey_set0;
> -+ ASN1_STRING_copy;
> -+ d2i_TS_TST_INFO_fp;
> -+ X509_CRL_match;
> -+ EVP_PKEY_asn1_set_private;
> -+ TS_TST_INFO_get_ext_d2i;
> -+ TS_RESP_CTX_add_policy;
> -+ d2i_TS_RESP;
> -+ TS_CONF_load_certs;
> -+ TS_TST_INFO_get_msg_imprint;
> -+ ERR_load_TS_strings;
> -+ TS_TST_INFO_get_version;
> -+ EVP_PKEY_CTX_dup;
> -+ EVP_PKEY_meth_set_verify;
> -+ i2b_PublicKey_bio;
> -+ TS_CONF_set_certs;
> -+ EVP_PKEY_asn1_get0_info;
> -+ TS_VERIFY_CTX_free;
> -+ TS_REQ_get_ext_by_critical;
> -+ TS_RESP_CTX_set_serial_cb;
> -+ X509_CRL_get_meth_data;
> -+ TS_RESP_CTX_set_time_cb;
> -+ TS_MSG_IMPRINT_get_msg;
> -+ TS_TST_INFO_ext_free;
> -+ TS_REQ_get_version;
> -+ TS_REQ_add_ext;
> -+ EVP_PKEY_CTX_set_app_data;
> -+ OBJ_bsearch_;
> -+ EVP_PKEY_meth_set_verifyctx;
> -+ i2d_PKCS7_bio_stream;
> -+ CRYPTO_THREADID_set_numeric;
> -+ PKCS7_sign_add_signer;
> -+ d2i_TS_TST_INFO_bio;
> -+ TS_TST_INFO_get_ordering;
> -+ TS_RESP_print_bio;
> -+ TS_TST_INFO_get_exts;
> -+ HMAC_CTX_copy;
> -+ PKCS5_pbe2_set_iv;
> -+ ENGINE_get_pkey_asn1_meths;
> -+ b2i_PrivateKey;
> -+ EVP_PKEY_CTX_get_app_data;
> -+ TS_REQ_set_cert_req;
> -+ CRYPTO_THREADID_set_callback;
> -+ TS_CONF_set_serial;
> -+ TS_TST_INFO_free;
> -+ d2i_TS_REQ_fp;
> -+ TS_RESP_verify_response;
> -+ i2d_ESS_ISSUER_SERIAL;
> -+ TS_ACCURACY_get_seconds;
> -+ EVP_CIPHER_do_all;
> -+ b2i_PrivateKey_bio;
> -+ OCSP_CERTID_dup;
> -+ X509_PUBKEY_get0_param;
> -+ TS_MSG_IMPRINT_dup;
> -+ PKCS7_print_ctx;
> -+ i2d_TS_REQ_bio;
> -+ EVP_whirlpool;
> -+ EVP_PKEY_asn1_set_param;
> -+ EVP_PKEY_meth_set_encrypt;
> -+ ASN1_PCTX_set_flags;
> -+ i2d_ESS_CERT_ID;
> -+ TS_VERIFY_CTX_new;
> -+ TS_RESP_CTX_set_extension_cb;
> -+ ENGINE_register_all_pkey_meths;
> -+ TS_RESP_CTX_set_status_info_cond;
> -+ TS_RESP_CTX_set_stat_info_cond;
> -+ EVP_PKEY_verify;
> -+ WHIRLPOOL_Final;
> -+ X509_CRL_METHOD_new;
> -+ EVP_DigestSignFinal;
> -+ TS_RESP_CTX_set_def_policy;
> -+ NETSCAPE_X509_it;
> -+ TS_RESP_create_response;
> -+ PKCS7_SIGNER_INFO_get0_algs;
> -+ TS_TST_INFO_get_nonce;
> -+ EVP_PKEY_decrypt_old;
> -+ TS_TST_INFO_set_policy_id;
> -+ TS_CONF_set_ess_cert_id_chain;
> -+ EVP_PKEY_CTX_get0_pkey;
> -+ d2i_TS_REQ;
> -+ EVP_PKEY_asn1_find_str;
> -+ BIO_f_asn1;
> -+ ESS_SIGNING_CERT_new;
> -+ EVP_PBE_find;
> -+ X509_CRL_get0_by_cert;
> -+ EVP_PKEY_derive;
> -+ i2d_TS_REQ;
> -+ TS_TST_INFO_delete_ext;
> -+ ESS_ISSUER_SERIAL_free;
> -+ ASN1_PCTX_set_str_flags;
> -+ ENGINE_get_pkey_asn1_meth_str;
> -+ TS_CONF_set_signer_key;
> -+ TS_ACCURACY_get_millis;
> -+ TS_RESP_get_token;
> -+ TS_ACCURACY_dup;
> -+ ENGINE_register_all_pkey_asn1_meths;
> -+ ENGINE_reg_all_pkey_asn1_meths;
> -+ X509_CRL_set_default_method;
> -+ CRYPTO_THREADID_hash;
> -+ CMS_ContentInfo_print_ctx;
> -+ TS_RESP_free;
> -+ ISSUING_DIST_POINT_free;
> -+ ESS_ISSUER_SERIAL_new;
> -+ CMS_add1_crl;
> -+ PKCS7_add1_attrib_digest;
> -+ TS_RESP_CTX_add_md;
> -+ TS_TST_INFO_dup;
> -+ ENGINE_set_pkey_asn1_meths;
> -+ PEM_write_bio_Parameters;
> -+ TS_TST_INFO_get_accuracy;
> -+ X509_CRL_get0_by_serial;
> -+ TS_TST_INFO_set_version;
> -+ TS_RESP_CTX_get_tst_info;
> -+ TS_RESP_verify_signature;
> -+ CRYPTO_THREADID_get_callback;
> -+ TS_TST_INFO_get_tsa;
> -+ TS_STATUS_INFO_new;
> -+ EVP_PKEY_CTX_get_cb;
> -+ TS_REQ_get_ext_d2i;
> -+ GENERAL_NAME_set0_othername;
> -+ TS_TST_INFO_get_ext_count;
> -+ TS_RESP_CTX_get_request;
> -+ i2d_NETSCAPE_X509;
> -+ ENGINE_get_pkey_meth_engine;
> -+ EVP_PKEY_meth_set_signctx;
> -+ EVP_PKEY_asn1_copy;
> -+ ASN1_TYPE_cmp;
> -+ EVP_CIPHER_do_all_sorted;
> -+ EVP_PKEY_CTX_free;
> -+ ISSUING_DIST_POINT_it;
> -+ d2i_TS_MSG_IMPRINT_fp;
> -+ X509_STORE_get1_certs;
> -+ EVP_PKEY_CTX_get_operation;
> -+ d2i_ESS_SIGNING_CERT;
> -+ TS_CONF_set_ordering;
> -+ EVP_PBE_alg_add_type;
> -+ TS_REQ_set_version;
> -+ EVP_PKEY_get0;
> -+ BIO_asn1_set_suffix;
> -+ i2d_TS_STATUS_INFO;
> -+ EVP_MD_do_all;
> -+ TS_TST_INFO_set_accuracy;
> -+ PKCS7_add_attrib_content_type;
> -+ ERR_remove_thread_state;
> -+ EVP_PKEY_meth_add0;
> -+ TS_TST_INFO_set_tsa;
> -+ EVP_PKEY_meth_new;
> -+ WHIRLPOOL_Update;
> -+ TS_CONF_set_accuracy;
> -+ ASN1_PCTX_set_oid_flags;
> -+ ESS_SIGNING_CERT_dup;
> -+ d2i_TS_REQ_bio;
> -+ X509_time_adj_ex;
> -+ TS_RESP_CTX_add_flags;
> -+ d2i_TS_STATUS_INFO;
> -+ TS_MSG_IMPRINT_set_msg;
> -+ BIO_asn1_get_suffix;
> -+ TS_REQ_free;
> -+ EVP_PKEY_meth_free;
> -+ TS_REQ_get_exts;
> -+ TS_RESP_CTX_set_clock_precision_digits;
> -+ TS_RESP_CTX_set_clk_prec_digits;
> -+ TS_RESP_CTX_add_failure_info;
> -+ i2d_TS_RESP_bio;
> -+ EVP_PKEY_CTX_get0_peerkey;
> -+ PEM_write_bio_CMS_stream;
> -+ TS_REQ_new;
> -+ TS_MSG_IMPRINT_new;
> -+ EVP_PKEY_meth_find;
> -+ EVP_PKEY_id;
> -+ TS_TST_INFO_set_serial;
> -+ a2i_GENERAL_NAME;
> -+ TS_CONF_set_crypto_device;
> -+ EVP_PKEY_verify_init;
> -+ TS_CONF_set_policies;
> -+ ASN1_PCTX_new;
> -+ ESS_CERT_ID_free;
> -+ ENGINE_unregister_pkey_meths;
> -+ TS_MSG_IMPRINT_free;
> -+ TS_VERIFY_CTX_init;
> -+ PKCS7_stream;
> -+ TS_RESP_CTX_set_certs;
> -+ TS_CONF_set_def_policy;
> -+ ASN1_GENERALIZEDTIME_adj;
> -+ NETSCAPE_X509_new;
> -+ TS_ACCURACY_free;
> -+ TS_RESP_get_tst_info;
> -+ EVP_PKEY_derive_set_peer;
> -+ PEM_read_bio_Parameters;
> -+ TS_CONF_set_clock_precision_digits;
> -+ TS_CONF_set_clk_prec_digits;
> -+ ESS_ISSUER_SERIAL_dup;
> -+ TS_ACCURACY_get_micros;
> -+ ASN1_PCTX_get_str_flags;
> -+ NAME_CONSTRAINTS_check;
> -+ ASN1_BIT_STRING_check;
> -+ X509_check_akid;
> -+ ENGINE_unregister_pkey_asn1_meths;
> -+ ENGINE_unreg_pkey_asn1_meths;
> -+ ASN1_PCTX_free;
> -+ PEM_write_bio_ASN1_stream;
> -+ i2d_ASN1_bio_stream;
> -+ TS_X509_ALGOR_print_bio;
> -+ EVP_PKEY_meth_set_cleanup;
> -+ EVP_PKEY_asn1_free;
> -+ ESS_SIGNING_CERT_free;
> -+ TS_TST_INFO_set_msg_imprint;
> -+ GENERAL_NAME_cmp;
> -+ d2i_ASN1_SET_ANY;
> -+ ENGINE_set_pkey_meths;
> -+ i2d_TS_REQ_fp;
> -+ d2i_ASN1_SEQUENCE_ANY;
> -+ GENERAL_NAME_get0_otherName;
> -+ d2i_ESS_CERT_ID;
> -+ OBJ_find_sigid_algs;
> -+ EVP_PKEY_meth_set_keygen;
> -+ PKCS5_PBKDF2_HMAC;
> -+ EVP_PKEY_paramgen;
> -+ EVP_PKEY_meth_set_paramgen;
> -+ BIO_new_PKCS7;
> -+ EVP_PKEY_verify_recover;
> -+ TS_ext_print_bio;
> -+ TS_ASN1_INTEGER_print_bio;
> -+ check_defer;
> -+ DSO_pathbyaddr;
> -+ EVP_PKEY_set_type;
> -+ TS_ACCURACY_set_micros;
> -+ TS_REQ_to_TS_VERIFY_CTX;
> -+ EVP_PKEY_meth_set_copy;
> -+ ASN1_PCTX_set_cert_flags;
> -+ TS_TST_INFO_get_ext;
> -+ EVP_PKEY_asn1_set_ctrl;
> -+ TS_TST_INFO_get_ext_by_critical;
> -+ EVP_PKEY_CTX_new_id;
> -+ TS_REQ_get_ext_by_OBJ;
> -+ TS_CONF_set_signer_cert;
> -+ X509_NAME_hash_old;
> -+ ASN1_TIME_set_string;
> -+ EVP_MD_flags;
> -+ TS_RESP_CTX_free;
> -+ DSAparams_dup;
> -+ DHparams_dup;
> -+ OCSP_REQ_CTX_add1_header;
> -+ OCSP_REQ_CTX_set1_req;
> -+ X509_STORE_set_verify_cb;
> -+ X509_STORE_CTX_get0_current_crl;
> -+ X509_STORE_CTX_get0_parent_ctx;
> -+ X509_STORE_CTX_get0_current_issuer;
> -+ X509_STORE_CTX_get0_cur_issuer;
> -+ X509_issuer_name_hash_old;
> -+ X509_subject_name_hash_old;
> -+ EVP_CIPHER_CTX_copy;
> -+ UI_method_get_prompt_constructor;
> -+ UI_method_get_prompt_constructr;
> -+ UI_method_set_prompt_constructor;
> -+ UI_method_set_prompt_constructr;
> -+ EVP_read_pw_string_min;
> -+ CRYPTO_cts128_encrypt;
> -+ CRYPTO_cts128_decrypt_block;
> -+ CRYPTO_cfb128_1_encrypt;
> -+ CRYPTO_cbc128_encrypt;
> -+ CRYPTO_ctr128_encrypt;
> -+ CRYPTO_ofb128_encrypt;
> -+ CRYPTO_cts128_decrypt;
> -+ CRYPTO_cts128_encrypt_block;
> -+ CRYPTO_cbc128_decrypt;
> -+ CRYPTO_cfb128_encrypt;
> -+ CRYPTO_cfb128_8_encrypt;
> -+ SSL_renegotiate_abbreviated;
> -+ TLSv1_1_method;
> -+ TLSv1_1_client_method;
> -+ TLSv1_1_server_method;
> -+ SSL_CTX_set_srp_client_pwd_callback;
> -+ SSL_CTX_set_srp_client_pwd_cb;
> -+ SSL_get_srp_g;
> -+ SSL_CTX_set_srp_username_callback;
> -+ SSL_CTX_set_srp_un_cb;
> -+ SSL_get_srp_userinfo;
> -+ SSL_set_srp_server_param;
> -+ SSL_set_srp_server_param_pw;
> -+ SSL_get_srp_N;
> -+ SSL_get_srp_username;
> -+ SSL_CTX_set_srp_password;
> -+ SSL_CTX_set_srp_strength;
> -+ SSL_CTX_set_srp_verify_param_callback;
> -+ SSL_CTX_set_srp_vfy_param_cb;
> -+ SSL_CTX_set_srp_cb_arg;
> -+ SSL_CTX_set_srp_username;
> -+ SSL_CTX_SRP_CTX_init;
> -+ SSL_SRP_CTX_init;
> -+ SRP_Calc_A_param;
> -+ SRP_generate_server_master_secret;
> -+ SRP_gen_server_master_secret;
> -+ SSL_CTX_SRP_CTX_free;
> -+ SRP_generate_client_master_secret;
> -+ SRP_gen_client_master_secret;
> -+ SSL_srp_server_param_with_username;
> -+ SSL_srp_server_param_with_un;
> -+ SSL_SRP_CTX_free;
> -+ SSL_set_debug;
> -+ SSL_SESSION_get0_peer;
> -+ TLSv1_2_client_method;
> -+ SSL_SESSION_set1_id_context;
> -+ TLSv1_2_server_method;
> -+ SSL_cache_hit;
> -+ SSL_get0_kssl_ctx;
> -+ SSL_set0_kssl_ctx;
> -+ SSL_set_state;
> -+ SSL_CIPHER_get_id;
> -+ TLSv1_2_method;
> -+ kssl_ctx_get0_client_princ;
> -+ SSL_export_keying_material;
> -+ SSL_set_tlsext_use_srtp;
> -+ SSL_CTX_set_next_protos_advertised_cb;
> -+ SSL_CTX_set_next_protos_adv_cb;
> -+ SSL_get0_next_proto_negotiated;
> -+ SSL_get_selected_srtp_profile;
> -+ SSL_CTX_set_tlsext_use_srtp;
> -+ SSL_select_next_proto;
> -+ SSL_get_srtp_profiles;
> -+ SSL_CTX_set_next_proto_select_cb;
> -+ SSL_CTX_set_next_proto_sel_cb;
> -+ SSL_SESSION_get_compress_id;
> -+
> -+ SRP_VBASE_get_by_user;
> -+ SRP_Calc_server_key;
> -+ SRP_create_verifier;
> -+ SRP_create_verifier_BN;
> -+ SRP_Calc_u;
> -+ SRP_VBASE_free;
> -+ SRP_Calc_client_key;
> -+ SRP_get_default_gN;
> -+ SRP_Calc_x;
> -+ SRP_Calc_B;
> -+ SRP_VBASE_new;
> -+ SRP_check_known_gN_param;
> -+ SRP_Calc_A;
> -+ SRP_Verify_A_mod_N;
> -+ SRP_VBASE_init;
> -+ SRP_Verify_B_mod_N;
> -+ EC_KEY_set_public_key_affine_coordinates;
> -+ EC_KEY_set_pub_key_aff_coords;
> -+ EVP_aes_192_ctr;
> -+ EVP_PKEY_meth_get0_info;
> -+ EVP_PKEY_meth_copy;
> -+ ERR_add_error_vdata;
> -+ EVP_aes_128_ctr;
> -+ EVP_aes_256_ctr;
> -+ EC_GFp_nistp224_method;
> -+ EC_KEY_get_flags;
> -+ RSA_padding_add_PKCS1_PSS_mgf1;
> -+ EVP_aes_128_xts;
> -+ EVP_aes_256_xts;
> -+ EVP_aes_128_gcm;
> -+ EC_KEY_clear_flags;
> -+ EC_KEY_set_flags;
> -+ EVP_aes_256_ccm;
> -+ RSA_verify_PKCS1_PSS_mgf1;
> -+ EVP_aes_128_ccm;
> -+ EVP_aes_192_gcm;
> -+ X509_ALGOR_set_md;
> -+ RAND_init_fips;
> -+ EVP_aes_256_gcm;
> -+ EVP_aes_192_ccm;
> -+ CMAC_CTX_copy;
> -+ CMAC_CTX_free;
> -+ CMAC_CTX_get0_cipher_ctx;
> -+ CMAC_CTX_cleanup;
> -+ CMAC_Init;
> -+ CMAC_Update;
> -+ CMAC_resume;
> -+ CMAC_CTX_new;
> -+ CMAC_Final;
> -+ CRYPTO_ctr128_encrypt_ctr32;
> -+ CRYPTO_gcm128_release;
> -+ CRYPTO_ccm128_decrypt_ccm64;
> -+ CRYPTO_ccm128_encrypt;
> -+ CRYPTO_gcm128_encrypt;
> -+ CRYPTO_xts128_encrypt;
> -+ EVP_rc4_hmac_md5;
> -+ CRYPTO_nistcts128_decrypt_block;
> -+ CRYPTO_gcm128_setiv;
> -+ CRYPTO_nistcts128_encrypt;
> -+ EVP_aes_128_cbc_hmac_sha1;
> -+ CRYPTO_gcm128_tag;
> -+ CRYPTO_ccm128_encrypt_ccm64;
> -+ ENGINE_load_rdrand;
> -+ CRYPTO_ccm128_setiv;
> -+ CRYPTO_nistcts128_encrypt_block;
> -+ CRYPTO_gcm128_aad;
> -+ CRYPTO_ccm128_init;
> -+ CRYPTO_nistcts128_decrypt;
> -+ CRYPTO_gcm128_new;
> -+ CRYPTO_ccm128_tag;
> -+ CRYPTO_ccm128_decrypt;
> -+ CRYPTO_ccm128_aad;
> -+ CRYPTO_gcm128_init;
> -+ CRYPTO_gcm128_decrypt;
> -+ ENGINE_load_rsax;
> -+ CRYPTO_gcm128_decrypt_ctr32;
> -+ CRYPTO_gcm128_encrypt_ctr32;
> -+ CRYPTO_gcm128_finish;
> -+ EVP_aes_256_cbc_hmac_sha1;
> -+ PKCS5_pbkdf2_set;
> -+ CMS_add0_recipient_password;
> -+ CMS_decrypt_set1_password;
> -+ CMS_RecipientInfo_set0_password;
> -+ RAND_set_fips_drbg_type;
> -+ X509_REQ_sign_ctx;
> -+ RSA_PSS_PARAMS_new;
> -+ X509_CRL_sign_ctx;
> -+ X509_signature_dump;
> -+ d2i_RSA_PSS_PARAMS;
> -+ RSA_PSS_PARAMS_it;
> -+ RSA_PSS_PARAMS_free;
> -+ X509_sign_ctx;
> -+ i2d_RSA_PSS_PARAMS;
> -+ ASN1_item_sign_ctx;
> -+ EC_GFp_nistp521_method;
> -+ EC_GFp_nistp256_method;
> -+ OPENSSL_stderr;
> -+ OPENSSL_cpuid_setup;
> -+ OPENSSL_showfatal;
> -+ BIO_new_dgram_sctp;
> -+ BIO_dgram_sctp_msg_waiting;
> -+ BIO_dgram_sctp_wait_for_dry;
> -+ BIO_s_datagram_sctp;
> -+ BIO_dgram_is_sctp;
> -+ BIO_dgram_sctp_notification_cb;
> -+ CRYPTO_memcmp;
> -+ SSL_CTX_set_alpn_protos;
> -+ SSL_set_alpn_protos;
> -+ SSL_CTX_set_alpn_select_cb;
> -+ SSL_get0_alpn_selected;
> -+ SSL_CTX_set_custom_cli_ext;
> -+ SSL_CTX_set_custom_srv_ext;
> -+ SSL_CTX_set_srv_supp_data;
> -+ SSL_CTX_set_cli_supp_data;
> -+ SSL_set_cert_cb;
> -+ SSL_CTX_use_serverinfo;
> -+ SSL_CTX_use_serverinfo_file;
> -+ SSL_CTX_set_cert_cb;
> -+ SSL_CTX_get0_param;
> -+ SSL_get0_param;
> -+ SSL_certs_clear;
> -+ DTLSv1_2_method;
> -+ DTLSv1_2_server_method;
> -+ DTLSv1_2_client_method;
> -+ DTLS_method;
> -+ DTLS_server_method;
> -+ DTLS_client_method;
> -+ SSL_CTX_get_ssl_method;
> -+ SSL_CTX_get0_certificate;
> -+ SSL_CTX_get0_privatekey;
> -+ SSL_COMP_set0_compression_methods;
> -+ SSL_COMP_free_compression_methods;
> -+ SSL_CIPHER_find;
> -+ SSL_is_server;
> -+ SSL_CONF_CTX_new;
> -+ SSL_CONF_CTX_finish;
> -+ SSL_CONF_CTX_free;
> -+ SSL_CONF_CTX_set_flags;
> -+ SSL_CONF_CTX_clear_flags;
> -+ SSL_CONF_CTX_set1_prefix;
> -+ SSL_CONF_CTX_set_ssl;
> -+ SSL_CONF_CTX_set_ssl_ctx;
> -+ SSL_CONF_cmd;
> -+ SSL_CONF_cmd_argv;
> -+ SSL_CONF_cmd_value_type;
> -+ SSL_trace;
> -+ SSL_CIPHER_standard_name;
> -+ SSL_get_tlsa_record_byname;
> -+ ASN1_TIME_diff;
> -+ BIO_hex_string;
> -+ CMS_RecipientInfo_get0_pkey_ctx;
> -+ CMS_RecipientInfo_encrypt;
> -+ CMS_SignerInfo_get0_pkey_ctx;
> -+ CMS_SignerInfo_get0_md_ctx;
> -+ CMS_SignerInfo_get0_signature;
> -+ CMS_RecipientInfo_kari_get0_alg;
> -+ CMS_RecipientInfo_kari_get0_reks;
> -+ CMS_RecipientInfo_kari_get0_orig_id;
> -+ CMS_RecipientInfo_kari_orig_id_cmp;
> -+ CMS_RecipientEncryptedKey_get0_id;
> -+ CMS_RecipientEncryptedKey_cert_cmp;
> -+ CMS_RecipientInfo_kari_set0_pkey;
> -+ CMS_RecipientInfo_kari_get0_ctx;
> -+ CMS_RecipientInfo_kari_decrypt;
> -+ CMS_SharedInfo_encode;
> -+ DH_compute_key_padded;
> -+ d2i_DHxparams;
> -+ i2d_DHxparams;
> -+ DH_get_1024_160;
> -+ DH_get_2048_224;
> -+ DH_get_2048_256;
> -+ DH_KDF_X9_42;
> -+ ECDH_KDF_X9_62;
> -+ ECDSA_METHOD_new;
> -+ ECDSA_METHOD_free;
> -+ ECDSA_METHOD_set_app_data;
> -+ ECDSA_METHOD_get_app_data;
> -+ ECDSA_METHOD_set_sign;
> -+ ECDSA_METHOD_set_sign_setup;
> -+ ECDSA_METHOD_set_verify;
> -+ ECDSA_METHOD_set_flags;
> -+ ECDSA_METHOD_set_name;
> -+ EVP_des_ede3_wrap;
> -+ EVP_aes_128_wrap;
> -+ EVP_aes_192_wrap;
> -+ EVP_aes_256_wrap;
> -+ EVP_aes_128_cbc_hmac_sha256;
> -+ EVP_aes_256_cbc_hmac_sha256;
> -+ CRYPTO_128_wrap;
> -+ CRYPTO_128_unwrap;
> -+ OCSP_REQ_CTX_nbio;
> -+ OCSP_REQ_CTX_new;
> -+ OCSP_set_max_response_length;
> -+ OCSP_REQ_CTX_i2d;
> -+ OCSP_REQ_CTX_nbio_d2i;
> -+ OCSP_REQ_CTX_get0_mem_bio;
> -+ OCSP_REQ_CTX_http;
> -+ RSA_padding_add_PKCS1_OAEP_mgf1;
> -+ RSA_padding_check_PKCS1_OAEP_mgf1;
> -+ RSA_OAEP_PARAMS_free;
> -+ RSA_OAEP_PARAMS_it;
> -+ RSA_OAEP_PARAMS_new;
> -+ SSL_get_sigalgs;
> -+ SSL_get_shared_sigalgs;
> -+ SSL_check_chain;
> -+ X509_chain_up_ref;
> -+ X509_http_nbio;
> -+ X509_CRL_http_nbio;
> -+ X509_REVOKED_dup;
> -+ i2d_re_X509_tbs;
> -+ X509_get0_signature;
> -+ X509_get_signature_nid;
> -+ X509_CRL_diff;
> -+ X509_chain_check_suiteb;
> -+ X509_CRL_check_suiteb;
> -+ X509_check_host;
> -+ X509_check_email;
> -+ X509_check_ip;
> -+ X509_check_ip_asc;
> -+ X509_STORE_set_lookup_crls_cb;
> -+ X509_STORE_CTX_get0_store;
> -+ X509_VERIFY_PARAM_set1_host;
> -+ X509_VERIFY_PARAM_add1_host;
> -+ X509_VERIFY_PARAM_set_hostflags;
> -+ X509_VERIFY_PARAM_get0_peername;
> -+ X509_VERIFY_PARAM_set1_email;
> -+ X509_VERIFY_PARAM_set1_ip;
> -+ X509_VERIFY_PARAM_set1_ip_asc;
> -+ X509_VERIFY_PARAM_get0_name;
> -+ X509_VERIFY_PARAM_get_count;
> -+ X509_VERIFY_PARAM_get0;
> -+ X509V3_EXT_free;
> -+ EC_GROUP_get_mont_data;
> -+ EC_curve_nid2nist;
> -+ EC_curve_nist2nid;
> -+ PEM_write_bio_DHxparams;
> -+ PEM_write_DHxparams;
> -+ SSL_CTX_add_client_custom_ext;
> -+ SSL_CTX_add_server_custom_ext;
> -+ SSL_extension_supported;
> -+ BUF_strnlen;
> -+ sk_deep_copy;
> -+ SSL_test_functions;
> -+
> -+ local:
> -+ *;
> -+};
> -+
> -+OPENSSL_1.0.2g {
> -+ global:
> -+ SRP_VBASE_get1_by_user;
> -+ SRP_user_pwd_free;
> -+} OPENSSL_1.0.2d;
> -+
> -Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/openssl.ld
> -===================================================================
> ---- /dev/null 1970-01-01 00:00:00.000000000 +0000
> -+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/openssl.ld 2014-02-24 21:02:30.000000000 +0100
> -@@ -0,0 +1,10 @@
> -+OPENSSL_1.0.2 {
> -+ global:
> -+ bind_engine;
> -+ v_check;
> -+ OPENSSL_init;
> -+ OPENSSL_finish;
> -+ local:
> -+ *;
> -+};
> -+
> -Index: openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/ccgost/openssl.ld
> -===================================================================
> ---- /dev/null 1970-01-01 00:00:00.000000000 +0000
> -+++ openssl-1.0.2~beta1.obsolete.0.0498436515490575/engines/ccgost/openssl.ld 2014-02-24 21:02:30.000000000 +0100
> -@@ -0,0 +1,10 @@
> -+OPENSSL_1.0.2 {
> -+ global:
> -+ bind_engine;
> -+ v_check;
> -+ OPENSSL_init;
> -+ OPENSSL_finish;
> -+ local:
> -+ *;
> -+};
> -+
> diff --git a/meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch b/meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch
> deleted file mode 100644
> index a5746483e6..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/engines-install-in-libdir-ssl.patch
> +++ /dev/null
> @@ -1,64 +0,0 @@
> -Upstream-Status: Inappropriate [configuration]
> -
> -
> -Index: openssl-1.0.2/engines/Makefile
> -===================================================================
> ---- openssl-1.0.2.orig/engines/Makefile
> -+++ openssl-1.0.2/engines/Makefile
> -@@ -107,13 +107,13 @@ install:
> - @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile...
> - @if [ -n "$(SHARED_LIBS)" ]; then \
> - set -e; \
> -- $(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines; \
> -+ $(PERL) $(TOP)/util/mkdir-p.pl $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines; \
> - for l in $(LIBNAMES); do \
> - ( echo installing $$l; \
> - pfx=lib; \
> - if expr "$(PLATFORM)" : "Cygwin" >/dev/null; then \
> - sfx=".so"; \
> -- cp cyg$$l.dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \
> -+ cp cyg$$l.dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new; \
> - else \
> - case "$(CFLAGS)" in \
> - *DSO_BEOS*) sfx=".so";; \
> -@@ -122,10 +122,10 @@ install:
> - *DSO_WIN32*) sfx="eay32.dll"; pfx=;; \
> - *) sfx=".bad";; \
> - esac; \
> -- cp $$pfx$$l$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \
> -+ cp $$pfx$$l$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new; \
> - fi; \
> -- chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new; \
> -- mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$$pfx$$l$$sfx ); \
> -+ chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new; \
> -+ mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx ); \
> - done; \
> - fi
> - @target=install; $(RECURSIVE_MAKE)
> -Index: openssl-1.0.2/engines/ccgost/Makefile
> -===================================================================
> ---- openssl-1.0.2.orig/engines/ccgost/Makefile
> -+++ openssl-1.0.2/engines/ccgost/Makefile
> -@@ -47,7 +47,7 @@ install:
> - pfx=lib; \
> - if expr "$(PLATFORM)" : "Cygwin" >/dev/null; then \
> - sfx=".so"; \
> -- cp cyg$(LIBNAME).dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \
> -+ cp cyg$(LIBNAME).dll $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new; \
> - else \
> - case "$(CFLAGS)" in \
> - *DSO_BEOS*) sfx=".so";; \
> -@@ -56,10 +56,10 @@ install:
> - *DSO_WIN32*) sfx="eay32.dll"; pfx=;; \
> - *) sfx=".bad";; \
> - esac; \
> -- cp $${pfx}$(LIBNAME)$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \
> -+ cp $${pfx}$(LIBNAME)$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new; \
> - fi; \
> -- chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new; \
> -- mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/engines/$${pfx}$(LIBNAME)$$sfx; \
> -+ chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new; \
> -+ mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$${pfx}$(LIBNAME)$$sfx; \
> - fi
> -
> - links:
> diff --git a/meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch b/meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch
> deleted file mode 100644
> index 292e13dc5f..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/oe-ldflags.patch
> +++ /dev/null
> @@ -1,24 +0,0 @@
> -Upstream-Status: Inappropriate [open-embedded]
> -
> -Index: openssl-1.0.0/Makefile.shared
> -===================================================================
> ---- openssl-1.0.0.orig/Makefile.shared
> -+++ openssl-1.0.0/Makefile.shared
> -@@ -92,7 +92,7 @@
> - LINK_APP= \
> - ( $(SET_X); \
> - LIBDEPS="$${LIBDEPS:-$(LIBDEPS)}"; \
> -- LDCMD="$${LDCMD:-$(CC)}"; LDFLAGS="$${LDFLAGS:-$(CFLAGS)}"; \
> -+ LDCMD="$${LDCMD:-$(CC)}"; LDFLAGS="$(OE_LDFLAGS) $${LDFLAGS:-$(CFLAGS)}"; \
> - LIBPATH=`for x in $$LIBDEPS; do echo $$x; done | sed -e 's/^ *-L//;t' -e d | uniq`; \
> - LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \
> - LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \
> -@@ -102,7 +102,7 @@
> - ( $(SET_X); \
> - LIBDEPS="$${LIBDEPS:-$(LIBDEPS)}"; \
> - SHAREDCMD="$${SHAREDCMD:-$(CC)}"; \
> -- SHAREDFLAGS="$${SHAREDFLAGS:-$(CFLAGS) $(SHARED_LDFLAGS)}"; \
> -+ SHAREDFLAGS="$(OE_LDFLAGS) $${SHAREDFLAGS:-$(CFLAGS) $(SHARED_LDFLAGS)}"; \
> - LIBPATH=`for x in $$LIBDEPS; do echo $$x; done | sed -e 's/^ *-L//;t' -e d | uniq`; \
> - LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \
> - LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \
> diff --git a/meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh b/meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh
> deleted file mode 100644
> index 6620fdcb53..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/openssl-c_rehash.sh
> +++ /dev/null
> @@ -1,222 +0,0 @@
> -#!/bin/sh
> -#
> -# Ben Secrest <blsecres@gmail.com>
> -#
> -# sh c_rehash script, scan all files in a directory
> -# and add symbolic links to their hash values.
> -#
> -# based on the c_rehash perl script distributed with openssl
> -#
> -# LICENSE: See OpenSSL license
> -# ^^acceptable?^^
> -#
> -
> -# default certificate location
> -DIR=/etc/openssl
> -
> -# for filetype bitfield
> -IS_CERT=$(( 1 << 0 ))
> -IS_CRL=$(( 1 << 1 ))
> -
> -
> -# check to see if a file is a certificate file or a CRL file
> -# arguments:
> -# 1. the filename to be scanned
> -# returns:
> -# bitfield of file type; uses ${IS_CERT} and ${IS_CRL}
> -#
> -check_file()
> -{
> - local IS_TYPE=0
> -
> - # make IFS a newline so we can process grep output line by line
> - local OLDIFS=${IFS}
> - IFS=$( printf "\n" )
> -
> - # XXX: could be more efficient to have two 'grep -m' but is -m portable?
> - for LINE in $( grep '^-----BEGIN .*-----' ${1} )
> - do
> - if echo ${LINE} \
> - | grep -q -E '^-----BEGIN (X509 |TRUSTED )?CERTIFICATE-----'
> - then
> - IS_TYPE=$(( ${IS_TYPE} | ${IS_CERT} ))
> -
> - if [ $(( ${IS_TYPE} & ${IS_CRL} )) -ne 0 ]
> - then
> - break
> - fi
> - elif echo ${LINE} | grep -q '^-----BEGIN X509 CRL-----'
> - then
> - IS_TYPE=$(( ${IS_TYPE} | ${IS_CRL} ))
> -
> - if [ $(( ${IS_TYPE} & ${IS_CERT} )) -ne 0 ]
> - then
> - break
> - fi
> - fi
> - done
> -
> - # restore IFS
> - IFS=${OLDIFS}
> -
> - return ${IS_TYPE}
> -}
> -
> -
> -#
> -# use openssl to fingerprint a file
> -# arguments:
> -# 1. the filename to fingerprint
> -# 2. the method to use (x509, crl)
> -# returns:
> -# none
> -# assumptions:
> -# user will capture output from last stage of pipeline
> -#
> -fingerprint()
> -{
> - ${SSL_CMD} ${2} -fingerprint -noout -in ${1} | sed 's/^.*=//' | tr -d ':'
> -}
> -
> -
> -#
> -# link_hash - create links to certificate files
> -# arguments:
> -# 1. the filename to create a link for
> -# 2. the type of certificate being linked (x509, crl)
> -# returns:
> -# 0 on success, 1 otherwise
> -#
> -link_hash()
> -{
> - local FINGERPRINT=$( fingerprint ${1} ${2} )
> - local HASH=$( ${SSL_CMD} ${2} -hash -noout -in ${1} )
> - local SUFFIX=0
> - local LINKFILE=''
> - local TAG=''
> -
> - if [ ${2} = "crl" ]
> - then
> - TAG='r'
> - fi
> -
> - LINKFILE=${HASH}.${TAG}${SUFFIX}
> -
> - while [ -f ${LINKFILE} ]
> - do
> - if [ ${FINGERPRINT} = $( fingerprint ${LINKFILE} ${2} ) ]
> - then
> - echo "NOTE: Skipping duplicate file ${1}" >&2
> - return 1
> - fi
> -
> - SUFFIX=$(( ${SUFFIX} + 1 ))
> - LINKFILE=${HASH}.${TAG}${SUFFIX}
> - done
> -
> - echo "${3} => ${LINKFILE}"
> -
> - # assume any system with a POSIX shell will either support symlinks or
> - # do something to handle this gracefully
> - ln -s ${3} ${LINKFILE}
> -
> - return 0
> -}
> -
> -
> -# hash_dir create hash links in a given directory
> -hash_dir()
> -{
> - echo "Doing ${1}"
> -
> - cd ${1}
> -
> - ls -1 * 2>/dev/null | while read FILE
> - do
> - if echo ${FILE} | grep -q -E '^[[:xdigit:]]{8}\.r?[[:digit:]]+$' \
> - && [ -h "${FILE}" ]
> - then
> - rm ${FILE}
> - fi
> - done
> -
> - ls -1 *.pem *.cer *.crt *.crl 2>/dev/null | while read FILE
> - do
> - REAL_FILE=${FILE}
> - # if we run on build host then get to the real files in rootfs
> - if [ -n "${SYSROOT}" -a -h ${FILE} ]
> - then
> - FILE=$( readlink ${FILE} )
> - # check the symlink is absolute (or dangling in other word)
> - if [ "x/" = "x$( echo ${FILE} | cut -c1 -)" ]
> - then
> - REAL_FILE=${SYSROOT}/${FILE}
> - fi
> - fi
> -
> - check_file ${REAL_FILE}
> - local FILE_TYPE=${?}
> - local TYPE_STR=''
> -
> - if [ $(( ${FILE_TYPE} & ${IS_CERT} )) -ne 0 ]
> - then
> - TYPE_STR='x509'
> - elif [ $(( ${FILE_TYPE} & ${IS_CRL} )) -ne 0 ]
> - then
> - TYPE_STR='crl'
> - else
> - echo "NOTE: ${FILE} does not contain a certificate or CRL: skipping" >&2
> - continue
> - fi
> -
> - link_hash ${REAL_FILE} ${TYPE_STR} ${FILE}
> - done
> -}
> -
> -
> -# choose the name of an ssl application
> -if [ -n "${OPENSSL}" ]
> -then
> - SSL_CMD=$(which ${OPENSSL} 2>/dev/null)
> -else
> - SSL_CMD=/usr/bin/openssl
> - OPENSSL=${SSL_CMD}
> - export OPENSSL
> -fi
> -
> -# fix paths
> -PATH=${PATH}:${DIR}/bin
> -export PATH
> -
> -# confirm existance/executability of ssl command
> -if ! [ -x ${SSL_CMD} ]
> -then
> - echo "${0}: rehashing skipped ('openssl' program not available)" >&2
> - exit 0
> -fi
> -
> -# determine which directories to process
> -old_IFS=$IFS
> -if [ ${#} -gt 0 ]
> -then
> - IFS=':'
> - DIRLIST=${*}
> -elif [ -n "${SSL_CERT_DIR}" ]
> -then
> - DIRLIST=$SSL_CERT_DIR
> -else
> - DIRLIST=${DIR}/certs
> -fi
> -
> -IFS=':'
> -
> -# process directories
> -for CERT_DIR in ${DIRLIST}
> -do
> - if [ -d ${CERT_DIR} -a -w ${CERT_DIR} ]
> - then
> - IFS=$old_IFS
> - hash_dir ${CERT_DIR}
> - IFS=':'
> - fi
> -done
> diff --git a/meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch b/meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch
> deleted file mode 100644
> index de49729e5e..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/openssl-fix-des.pod-error.patch
> +++ /dev/null
> @@ -1,19 +0,0 @@
> -openssl: Fix pod2man des.pod error on Ubuntu 12.04
> -
> -This is a formatting fix, '=back' is required before
> -'=head1' on Ubuntu 12.04.
> -
> -Upstream-Status: Pending
> -Signed-off-by: Baogen Shang <baogen.shang@windriver.com>
> -diff -urpN a_origin/des.pod b_modify/des.pod
> ---- a_origin/crypto/des/des.pod 2013-08-15 15:02:56.211674589 +0800
> -+++ b_modify/crypto/des/des.pod 2013-08-15 15:04:14.439674580 +0800
> -@@ -181,6 +181,8 @@ the uuencoded file to embed in the begin
> - output. If there is no name specified after the B<-u>, the name text.des
> - will be embedded in the header.
> -
> -+=back
> -+
> - =head1 SEE ALSO
> -
> - ps(1),
> diff --git a/meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch b/meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch
> deleted file mode 100644
> index 0f08a642f6..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/openssl_fix_for_x32.patch
> +++ /dev/null
> @@ -1,39 +0,0 @@
> -Upstream-Status: Pending
> -
> -Received from H J Liu @ Intel
> -Make the assembly syntax compatible with x32 gcc. Othewise x32 gcc throws errors.
> -Signed-off-by: Nitin A Kamble <nitin.a.kamble@intel.com> 2011/07/13
> -
> -ported the patch to the 1.0.0e version
> -Signed-off-by: Nitin A Kamble <nitin.a.kamble@intel.com> 2011/12/01
> -Index: openssl-1.0.2/crypto/bn/bn.h
> -===================================================================
> ---- openssl-1.0.2.orig/crypto/bn/bn.h
> -+++ openssl-1.0.2/crypto/bn/bn.h
> -@@ -173,6 +173,13 @@ extern "C" {
> - # endif
> - # endif
> -
> -+/* Address type. */
> -+#ifdef _WIN64
> -+#define BN_ADDR unsigned long long
> -+#else
> -+#define BN_ADDR unsigned long
> -+#endif
> -+
> - /*
> - * assuming long is 64bit - this is the DEC Alpha unsigned long long is only
> - * 64 bits :-(, don't define BN_LLONG for the DEC Alpha
> -Index: openssl-1.0.2/crypto/bn/bn_exp.c
> -===================================================================
> ---- openssl-1.0.2.orig/crypto/bn/bn_exp.c
> -+++ openssl-1.0.2/crypto/bn/bn_exp.c
> -@@ -638,7 +638,7 @@ static int MOD_EXP_CTIME_COPY_FROM_PREBU
> - * multiple.
> - */
> - #define MOD_EXP_CTIME_ALIGN(x_) \
> -- ((unsigned char*)(x_) + (MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH - (((size_t)(x_)) & (MOD_EXP_CTIME_MIN_CACHE_LINE_MASK))))
> -+ ((unsigned char*)(x_) + (MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH - (((BN_ADDR)(x_)) & (MOD_EXP_CTIME_MIN_CACHE_LINE_MASK))))
> -
> - /*
> - * This variant of BN_mod_exp_mont() uses fixed windows and the special
> diff --git a/meta/recipes-connectivity/openssl/openssl10/parallel.patch b/meta/recipes-connectivity/openssl/openssl10/parallel.patch
> deleted file mode 100644
> index 41abf3d6bd..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/parallel.patch
> +++ /dev/null
> @@ -1,368 +0,0 @@
> -From 7fb1192f112c1920bfd39f4185f34e9afff3cff2 Mon Sep 17 00:00:00 2001
> -From: Ross Burton <ross.burton@intel.com>
> -Date: Sat, 5 Mar 2016 00:12:02 +0000
> -Subject: [PATCH 24/28] Fix the parallel races in the Makefiles.
> -
> -This patch was taken from the Gentoo packaging:
> -https://gitweb.gentoo.org/repo/gentoo.git/plain/dev-libs/openssl/files/openssl-1.0.2g-parallel-build.patch
> -
> -Upstream-Status: Pending
> -Signed-off-by: Ross Burton <ross.burton@intel.com>
> -
> -Refreshed for 1.0.2i
> -Signed-off-by: Patrick Ohly <patrick.ohly@intel.com>
> -
> ----
> - Makefile.org | 14 ++--
> - Makefile.shared | 2 +
> - crypto/Makefile | 10 +--
> - engines/Makefile | 6 +-
> - test/Makefile | 94 +++++++++++-----------
> - 5 files changed, 64 insertions(+), 62 deletions(-)
> -
> -diff --git a/Makefile.org b/Makefile.org
> -index efcfafb..82eab91 100644
> ---- a/Makefile.org
> -+++ b/Makefile.org
> -@@ -282,17 +282,17 @@ build_libcrypto: build_crypto build_engines libcrypto.pc
> - build_libssl: build_ssl libssl.pc
> -
> - build_crypto:
> -- @dir=crypto; target=all; $(BUILD_ONE_CMD)
> -+ +@dir=crypto; target=all; $(BUILD_ONE_CMD)
> - build_ssl: build_crypto
> -- @dir=ssl; target=all; $(BUILD_ONE_CMD)
> -+ +@dir=ssl; target=all; $(BUILD_ONE_CMD)
> - build_engines: build_crypto
> -- @dir=engines; target=all; $(BUILD_ONE_CMD)
> -+ +@dir=engines; target=all; $(BUILD_ONE_CMD)
> - build_apps: build_libs
> -- @dir=apps; target=all; $(BUILD_ONE_CMD)
> -+ +@dir=apps; target=all; $(BUILD_ONE_CMD)
> - build_tests: build_libs
> -- @dir=test; target=all; $(BUILD_ONE_CMD)
> -+ +@dir=test; target=all; $(BUILD_ONE_CMD)
> - build_tools: build_libs
> -- @dir=tools; target=all; $(BUILD_ONE_CMD)
> -+ +@dir=tools; target=all; $(BUILD_ONE_CMD)
> -
> - all_testapps: build_libs build_testapps
> - build_testapps:
> -@@ -564,7 +564,7 @@ install_sw:
> - (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \
> - chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \
> - done;
> -- @set -e; target=install; $(RECURSIVE_BUILD_CMD)
> -+ +@set -e; target=install; $(RECURSIVE_BUILD_CMD)
> - @set -e; liblist="$(LIBS)"; for i in $$liblist ;\
> - do \
> - if [ -f "$$i" ]; then \
> -diff --git a/Makefile.shared b/Makefile.shared
> -index bbefb2b..18013a9 100644
> ---- a/Makefile.shared
> -+++ b/Makefile.shared
> -@@ -105,6 +105,7 @@ LINK_SO= \
> - SHAREDFLAGS="$(OE_LDFLAGS) $${SHAREDFLAGS:-$(CFLAGS) $(SHARED_LDFLAGS)}"; \
> - LIBPATH=`for x in $$LIBDEPS; do echo $$x; done | sed -e 's/^ *-L//;t' -e d | uniq`; \
> - LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \
> -+ [ -e $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX ] && exit 0; \
> - LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \
> - $${SHAREDCMD} $${SHAREDFLAGS} \
> - -o $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX \
> -@@ -122,6 +123,7 @@ SYMLINK_SO= \
> - done; \
> - fi; \
> - if [ -n "$$SHLIB_SOVER" ]; then \
> -+ [ -e "$$SHLIB$$SHLIB_SUFFIX" ] || \
> - ( $(SET_X); rm -f $$SHLIB$$SHLIB_SUFFIX; \
> - ln -s $$prev $$SHLIB$$SHLIB_SUFFIX ); \
> - fi; \
> -diff --git a/crypto/Makefile b/crypto/Makefile
> -index 875ea1a..c22b683 100644
> ---- a/crypto/Makefile
> -+++ b/crypto/Makefile
> -@@ -85,11 +85,11 @@ testapps:
> - @if [ -z "$(THIS)" ]; then $(MAKE) -f $(TOP)/Makefile reflect THIS=$@; fi
> -
> - subdirs:
> -- @target=all; $(RECURSIVE_MAKE)
> -+ +@target=all; $(RECURSIVE_MAKE)
> -
> - files:
> - $(PERL) $(TOP)/util/files.pl "CPUID_OBJ=$(CPUID_OBJ)" Makefile >> $(TOP)/MINFO
> -- @target=files; $(RECURSIVE_MAKE)
> -+ +@target=files; $(RECURSIVE_MAKE)
> -
> - links:
> - @$(PERL) $(TOP)/util/mklink.pl ../include/openssl $(EXHEADER)
> -@@ -100,7 +100,7 @@ links:
> - # lib: $(LIB): are splitted to avoid end-less loop
> - lib: $(LIB)
> - @touch lib
> --$(LIB): $(LIBOBJ)
> -+$(LIB): $(LIBOBJ) | subdirs
> - $(AR) $(LIB) $(LIBOBJ)
> - test -z "$(FIPSLIBDIR)" || $(AR) $(LIB) $(FIPSLIBDIR)fipscanister.o
> - $(RANLIB) $(LIB) || echo Never mind.
> -@@ -111,7 +111,7 @@ shared: buildinf.h lib subdirs
> - fi
> -
> - libs:
> -- @target=lib; $(RECURSIVE_MAKE)
> -+ +@target=lib; $(RECURSIVE_MAKE)
> -
> - install:
> - @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile...
> -@@ -120,7 +120,7 @@ install:
> - (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \
> - chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \
> - done;
> -- @target=install; $(RECURSIVE_MAKE)
> -+ +@target=install; $(RECURSIVE_MAKE)
> -
> - lint:
> - @target=lint; $(RECURSIVE_MAKE)
> -diff --git a/engines/Makefile b/engines/Makefile
> -index fe8e9ca..a43d21b 100644
> ---- a/engines/Makefile
> -+++ b/engines/Makefile
> -@@ -72,7 +72,7 @@ top:
> -
> - all: lib subdirs
> -
> --lib: $(LIBOBJ)
> -+lib: $(LIBOBJ) | subdirs
> - @if [ -n "$(SHARED_LIBS)" ]; then \
> - set -e; \
> - for l in $(LIBNAMES); do \
> -@@ -89,7 +89,7 @@ lib: $(LIBOBJ)
> -
> - subdirs:
> - echo $(EDIRS)
> -- @target=all; $(RECURSIVE_MAKE)
> -+ +@target=all; $(RECURSIVE_MAKE)
> -
> - files:
> - $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO
> -@@ -128,7 +128,7 @@ install:
> - mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/$(LIBDIR)/ssl/engines/$$pfx$$l$$sfx ); \
> - done; \
> - fi
> -- @target=install; $(RECURSIVE_MAKE)
> -+ +@target=install; $(RECURSIVE_MAKE)
> -
> - tags:
> - ctags $(SRC)
> -diff --git a/test/Makefile b/test/Makefile
> -index 36506cf..c69af8b 100644
> ---- a/test/Makefile
> -+++ b/test/Makefile
> -@@ -145,7 +145,7 @@ install:
> - tags:
> - ctags $(SRC)
> -
> --tests: exe apps $(TESTS)
> -+tests: exe $(TESTS)
> -
> - apps:
> - @(cd ..; $(MAKE) DIRS=apps all)
> -@@ -448,142 +448,142 @@ BUILD_CMD_STATIC=shlib_target=; \
> - link_app.$${shlib_target}
> -
> - $(RSATEST)$(EXE_EXT): $(RSATEST).o $(DLIBCRYPTO)
> -- @target=$(RSATEST); $(BUILD_CMD)
> -+ +@target=$(RSATEST); $(BUILD_CMD)
> -
> - $(BNTEST)$(EXE_EXT): $(BNTEST).o $(DLIBCRYPTO)
> -- @target=$(BNTEST); $(BUILD_CMD)
> -+ +@target=$(BNTEST); $(BUILD_CMD)
> -
> - $(ECTEST)$(EXE_EXT): $(ECTEST).o $(DLIBCRYPTO)
> -- @target=$(ECTEST); $(BUILD_CMD)
> -+ +@target=$(ECTEST); $(BUILD_CMD)
> -
> - $(EXPTEST)$(EXE_EXT): $(EXPTEST).o $(DLIBCRYPTO)
> -- @target=$(EXPTEST); $(BUILD_CMD)
> -+ +@target=$(EXPTEST); $(BUILD_CMD)
> -
> - $(IDEATEST)$(EXE_EXT): $(IDEATEST).o $(DLIBCRYPTO)
> -- @target=$(IDEATEST); $(BUILD_CMD)
> -+ +@target=$(IDEATEST); $(BUILD_CMD)
> -
> - $(MD2TEST)$(EXE_EXT): $(MD2TEST).o $(DLIBCRYPTO)
> -- @target=$(MD2TEST); $(BUILD_CMD)
> -+ +@target=$(MD2TEST); $(BUILD_CMD)
> -
> - $(SHATEST)$(EXE_EXT): $(SHATEST).o $(DLIBCRYPTO)
> -- @target=$(SHATEST); $(BUILD_CMD)
> -+ +@target=$(SHATEST); $(BUILD_CMD)
> -
> - $(SHA1TEST)$(EXE_EXT): $(SHA1TEST).o $(DLIBCRYPTO)
> -- @target=$(SHA1TEST); $(BUILD_CMD)
> -+ +@target=$(SHA1TEST); $(BUILD_CMD)
> -
> - $(SHA256TEST)$(EXE_EXT): $(SHA256TEST).o $(DLIBCRYPTO)
> -- @target=$(SHA256TEST); $(BUILD_CMD)
> -+ +@target=$(SHA256TEST); $(BUILD_CMD)
> -
> - $(SHA512TEST)$(EXE_EXT): $(SHA512TEST).o $(DLIBCRYPTO)
> -- @target=$(SHA512TEST); $(BUILD_CMD)
> -+ +@target=$(SHA512TEST); $(BUILD_CMD)
> -
> - $(RMDTEST)$(EXE_EXT): $(RMDTEST).o $(DLIBCRYPTO)
> -- @target=$(RMDTEST); $(BUILD_CMD)
> -+ +@target=$(RMDTEST); $(BUILD_CMD)
> -
> - $(MDC2TEST)$(EXE_EXT): $(MDC2TEST).o $(DLIBCRYPTO)
> -- @target=$(MDC2TEST); $(BUILD_CMD)
> -+ +@target=$(MDC2TEST); $(BUILD_CMD)
> -
> - $(MD4TEST)$(EXE_EXT): $(MD4TEST).o $(DLIBCRYPTO)
> -- @target=$(MD4TEST); $(BUILD_CMD)
> -+ +@target=$(MD4TEST); $(BUILD_CMD)
> -
> - $(MD5TEST)$(EXE_EXT): $(MD5TEST).o $(DLIBCRYPTO)
> -- @target=$(MD5TEST); $(BUILD_CMD)
> -+ +@target=$(MD5TEST); $(BUILD_CMD)
> -
> - $(HMACTEST)$(EXE_EXT): $(HMACTEST).o $(DLIBCRYPTO)
> -- @target=$(HMACTEST); $(BUILD_CMD)
> -+ +@target=$(HMACTEST); $(BUILD_CMD)
> -
> - $(WPTEST)$(EXE_EXT): $(WPTEST).o $(DLIBCRYPTO)
> -- @target=$(WPTEST); $(BUILD_CMD)
> -+ +@target=$(WPTEST); $(BUILD_CMD)
> -
> - $(RC2TEST)$(EXE_EXT): $(RC2TEST).o $(DLIBCRYPTO)
> -- @target=$(RC2TEST); $(BUILD_CMD)
> -+ +@target=$(RC2TEST); $(BUILD_CMD)
> -
> - $(BFTEST)$(EXE_EXT): $(BFTEST).o $(DLIBCRYPTO)
> -- @target=$(BFTEST); $(BUILD_CMD)
> -+ +@target=$(BFTEST); $(BUILD_CMD)
> -
> - $(CASTTEST)$(EXE_EXT): $(CASTTEST).o $(DLIBCRYPTO)
> -- @target=$(CASTTEST); $(BUILD_CMD)
> -+ +@target=$(CASTTEST); $(BUILD_CMD)
> -
> - $(RC4TEST)$(EXE_EXT): $(RC4TEST).o $(DLIBCRYPTO)
> -- @target=$(RC4TEST); $(BUILD_CMD)
> -+ +@target=$(RC4TEST); $(BUILD_CMD)
> -
> - $(RC5TEST)$(EXE_EXT): $(RC5TEST).o $(DLIBCRYPTO)
> -- @target=$(RC5TEST); $(BUILD_CMD)
> -+ +@target=$(RC5TEST); $(BUILD_CMD)
> -
> - $(DESTEST)$(EXE_EXT): $(DESTEST).o $(DLIBCRYPTO)
> -- @target=$(DESTEST); $(BUILD_CMD)
> -+ +@target=$(DESTEST); $(BUILD_CMD)
> -
> - $(RANDTEST)$(EXE_EXT): $(RANDTEST).o $(DLIBCRYPTO)
> -- @target=$(RANDTEST); $(BUILD_CMD)
> -+ +@target=$(RANDTEST); $(BUILD_CMD)
> -
> - $(DHTEST)$(EXE_EXT): $(DHTEST).o $(DLIBCRYPTO)
> -- @target=$(DHTEST); $(BUILD_CMD)
> -+ +@target=$(DHTEST); $(BUILD_CMD)
> -
> - $(DSATEST)$(EXE_EXT): $(DSATEST).o $(DLIBCRYPTO)
> -- @target=$(DSATEST); $(BUILD_CMD)
> -+ +@target=$(DSATEST); $(BUILD_CMD)
> -
> - $(METHTEST)$(EXE_EXT): $(METHTEST).o $(DLIBCRYPTO)
> -- @target=$(METHTEST); $(BUILD_CMD)
> -+ +@target=$(METHTEST); $(BUILD_CMD)
> -
> - $(SSLTEST)$(EXE_EXT): $(SSLTEST).o $(DLIBSSL) $(DLIBCRYPTO)
> -- @target=$(SSLTEST); $(FIPS_BUILD_CMD)
> -+ +@target=$(SSLTEST); $(FIPS_BUILD_CMD)
> -
> - $(ENGINETEST)$(EXE_EXT): $(ENGINETEST).o $(DLIBCRYPTO)
> -- @target=$(ENGINETEST); $(BUILD_CMD)
> -+ +@target=$(ENGINETEST); $(BUILD_CMD)
> -
> - $(EVPTEST)$(EXE_EXT): $(EVPTEST).o $(DLIBCRYPTO)
> -- @target=$(EVPTEST); $(BUILD_CMD)
> -+ +@target=$(EVPTEST); $(BUILD_CMD)
> -
> - $(EVPEXTRATEST)$(EXE_EXT): $(EVPEXTRATEST).o $(DLIBCRYPTO)
> -- @target=$(EVPEXTRATEST); $(BUILD_CMD)
> -+ +@target=$(EVPEXTRATEST); $(BUILD_CMD)
> -
> - $(ECDSATEST)$(EXE_EXT): $(ECDSATEST).o $(DLIBCRYPTO)
> -- @target=$(ECDSATEST); $(BUILD_CMD)
> -+ +@target=$(ECDSATEST); $(BUILD_CMD)
> -
> - $(ECDHTEST)$(EXE_EXT): $(ECDHTEST).o $(DLIBCRYPTO)
> -- @target=$(ECDHTEST); $(BUILD_CMD)
> -+ +@target=$(ECDHTEST); $(BUILD_CMD)
> -
> - $(IGETEST)$(EXE_EXT): $(IGETEST).o $(DLIBCRYPTO)
> -- @target=$(IGETEST); $(BUILD_CMD)
> -+ +@target=$(IGETEST); $(BUILD_CMD)
> -
> - $(JPAKETEST)$(EXE_EXT): $(JPAKETEST).o $(DLIBCRYPTO)
> -- @target=$(JPAKETEST); $(BUILD_CMD)
> -+ +@target=$(JPAKETEST); $(BUILD_CMD)
> -
> - $(ASN1TEST)$(EXE_EXT): $(ASN1TEST).o $(DLIBCRYPTO)
> -- @target=$(ASN1TEST); $(BUILD_CMD)
> -+ +@target=$(ASN1TEST); $(BUILD_CMD)
> -
> - $(SRPTEST)$(EXE_EXT): $(SRPTEST).o $(DLIBCRYPTO)
> -- @target=$(SRPTEST); $(BUILD_CMD)
> -+ +@target=$(SRPTEST); $(BUILD_CMD)
> -
> - $(V3NAMETEST)$(EXE_EXT): $(V3NAMETEST).o $(DLIBCRYPTO)
> -- @target=$(V3NAMETEST); $(BUILD_CMD)
> -+ +@target=$(V3NAMETEST); $(BUILD_CMD)
> -
> - $(HEARTBEATTEST)$(EXE_EXT): $(HEARTBEATTEST).o $(DLIBCRYPTO)
> -- @target=$(HEARTBEATTEST); $(BUILD_CMD_STATIC)
> -+ +@target=$(HEARTBEATTEST); $(BUILD_CMD_STATIC)
> -
> - $(CONSTTIMETEST)$(EXE_EXT): $(CONSTTIMETEST).o
> -- @target=$(CONSTTIMETEST) $(BUILD_CMD)
> -+ +@target=$(CONSTTIMETEST) $(BUILD_CMD)
> -
> - $(VERIFYEXTRATEST)$(EXE_EXT): $(VERIFYEXTRATEST).o
> -- @target=$(VERIFYEXTRATEST) $(BUILD_CMD)
> -+ +@target=$(VERIFYEXTRATEST) $(BUILD_CMD)
> -
> - $(CLIENTHELLOTEST)$(EXE_EXT): $(CLIENTHELLOTEST).o
> -- @target=$(CLIENTHELLOTEST) $(BUILD_CMD)
> -+ +@target=$(CLIENTHELLOTEST) $(BUILD_CMD)
> -
> - $(BADDTLSTEST)$(EXE_EXT): $(BADDTLSTEST).o
> -- @target=$(BADDTLSTEST) $(BUILD_CMD)
> -+ +@target=$(BADDTLSTEST) $(BUILD_CMD)
> -
> - $(FATALERRTEST)$(EXE_EXT): $(FATALERRTEST).o ssltestlib.o $(DLIBSSL) $(DLIBCRYPTO)
> - @target=$(FATALERRTEST); exobj=ssltestlib.o; $(BUILD_CMD)
> -
> - $(X509TIMETEST)$(EXE_EXT): $(X509TIMETEST).o
> -- @target=$(X509TIMETEST) $(BUILD_CMD)
> -+ +@target=$(X509TIMETEST) $(BUILD_CMD)
> -
> - $(SSLV2CONFTEST)$(EXE_EXT): $(SSLV2CONFTEST).o
> -- @target=$(SSLV2CONFTEST) $(BUILD_CMD)
> -+ +@target=$(SSLV2CONFTEST) $(BUILD_CMD)
> -
> - $(DTLSTEST)$(EXE_EXT): $(DTLSTEST).o ssltestlib.o $(DLIBSSL) $(DLIBCRYPTO)
> -- @target=$(DTLSTEST); exobj=ssltestlib.o; $(BUILD_CMD)
> -+ +@target=$(DTLSTEST); exobj=ssltestlib.o; $(BUILD_CMD)
> -
> - #$(AESTEST).o: $(AESTEST).c
> - # $(CC) -c $(CFLAGS) -DINTERMEDIATE_VALUE_KAT -DTRACE_KAT_MCT $(AESTEST).c
> -@@ -596,7 +596,7 @@ $(DTLSTEST)$(EXE_EXT): $(DTLSTEST).o ssltestlib.o $(DLIBSSL) $(DLIBCRYPTO)
> - # fi
> -
> - dummytest$(EXE_EXT): dummytest.o $(DLIBCRYPTO)
> -- @target=dummytest; $(BUILD_CMD)
> -+ +@target=dummytest; $(BUILD_CMD)
> -
> - # DO NOT DELETE THIS LINE -- make depend depends on it.
> -
> ---
> -2.15.1
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch b/meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch
> deleted file mode 100644
> index ef6d17934d..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/ptest-deps.patch
> +++ /dev/null
> @@ -1,34 +0,0 @@
> -Remove Makefile dependencies for test targets
> -
> -These are probably here because the executables aren't always built for
> -other platforms (e.g. Windows); however we can safely assume they'll
> -always be there. None of the other test targets have such dependencies
> -and if we don't remove them, make tries to rebuild the executables and
> -fails during run-ptest.
> -
> -Upstream-Status: Inappropriate [config]
> -
> -Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>
> -
> -Index: openssl-1.0.2/test/Makefile
> -===================================================================
> ---- openssl-1.0.2.orig/test/Makefile
> -+++ openssl-1.0.2/test/Makefile
> -@@ -330,7 +330,7 @@ test_cms: ../apps/openssl$(EXE_EXT) cms-
> - @echo "CMS consistency test"
> - $(PERL) cms-test.pl
> -
> --test_srp: $(SRPTEST)$(EXE_EXT)
> -+test_srp:
> - @echo "Test SRP"
> - ../util/shlib_wrap.sh ./srptest
> -
> -@@ -342,7 +342,7 @@ test_v3name: $(V3NAMETEST)$(EXE_EXT)
> - @echo "Test X509v3_check_*"
> - ../util/shlib_wrap.sh ./$(V3NAMETEST)
> -
> --test_heartbeat: $(HEARTBEATTEST)$(EXE_EXT)
> -+test_heartbeat:
> - ../util/shlib_wrap.sh ./$(HEARTBEATTEST)
> -
> - test_constant_time: $(CONSTTIMETEST)$(EXE_EXT)
> diff --git a/meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch b/meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch
> deleted file mode 100644
> index 4202e61d1e..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/ptest_makefile_deps.patch
> +++ /dev/null
> @@ -1,248 +0,0 @@
> -Additional Makefile dependencies removal for test targets
> -
> -Removing the dependency check for test targets as these tests are
> -causing a number of failures and "noise" during ptest execution.
> -
> -Upstream-Status: Inappropriate [config]
> -
> -Signed-off-by: Maxin B. John <maxin.john@intel.com>
> -
> -diff -Naur openssl-1.0.2d-orig/test/Makefile openssl-1.0.2d/test/Makefile
> ---- openssl-1.0.2d-orig/test/Makefile 2015-09-28 12:50:41.530022979 +0300
> -+++ openssl-1.0.2d/test/Makefile 2015-09-28 12:57:45.930717240 +0300
> -@@ -155,67 +155,67 @@
> - ( $(MAKE) $$i && echo "PASS: $$i" ) || echo "FAIL: $$i"; \
> - done)
> -
> --test_evp: $(EVPTEST)$(EXE_EXT) evptests.txt
> -+test_evp:
> - ../util/shlib_wrap.sh ./$(EVPTEST) evptests.txt
> -
> --test_evp_extra: $(EVPEXTRATEST)$(EXE_EXT)
> -+test_evp_extra:
> - ../util/shlib_wrap.sh ./$(EVPEXTRATEST)
> -
> --test_des: $(DESTEST)$(EXE_EXT)
> -+test_des:
> - ../util/shlib_wrap.sh ./$(DESTEST)
> -
> --test_idea: $(IDEATEST)$(EXE_EXT)
> -+test_idea:
> - ../util/shlib_wrap.sh ./$(IDEATEST)
> -
> --test_sha: $(SHATEST)$(EXE_EXT) $(SHA1TEST)$(EXE_EXT) $(SHA256TEST)$(EXE_EXT) $(SHA512TEST)$(EXE_EXT)
> -+test_sha:
> - ../util/shlib_wrap.sh ./$(SHATEST)
> - ../util/shlib_wrap.sh ./$(SHA1TEST)
> - ../util/shlib_wrap.sh ./$(SHA256TEST)
> - ../util/shlib_wrap.sh ./$(SHA512TEST)
> -
> --test_mdc2: $(MDC2TEST)$(EXE_EXT)
> -+test_mdc2:
> - ../util/shlib_wrap.sh ./$(MDC2TEST)
> -
> --test_md5: $(MD5TEST)$(EXE_EXT)
> -+test_md5:
> - ../util/shlib_wrap.sh ./$(MD5TEST)
> -
> --test_md4: $(MD4TEST)$(EXE_EXT)
> -+test_md4:
> - ../util/shlib_wrap.sh ./$(MD4TEST)
> -
> --test_hmac: $(HMACTEST)$(EXE_EXT)
> -+test_hmac:
> - ../util/shlib_wrap.sh ./$(HMACTEST)
> -
> --test_wp: $(WPTEST)$(EXE_EXT)
> -+test_wp:
> - ../util/shlib_wrap.sh ./$(WPTEST)
> -
> --test_md2: $(MD2TEST)$(EXE_EXT)
> -+test_md2:
> - ../util/shlib_wrap.sh ./$(MD2TEST)
> -
> --test_rmd: $(RMDTEST)$(EXE_EXT)
> -+test_rmd:
> - ../util/shlib_wrap.sh ./$(RMDTEST)
> -
> --test_bf: $(BFTEST)$(EXE_EXT)
> -+test_bf:
> - ../util/shlib_wrap.sh ./$(BFTEST)
> -
> --test_cast: $(CASTTEST)$(EXE_EXT)
> -+test_cast:
> - ../util/shlib_wrap.sh ./$(CASTTEST)
> -
> --test_rc2: $(RC2TEST)$(EXE_EXT)
> -+test_rc2:
> - ../util/shlib_wrap.sh ./$(RC2TEST)
> -
> --test_rc4: $(RC4TEST)$(EXE_EXT)
> -+test_rc4:
> - ../util/shlib_wrap.sh ./$(RC4TEST)
> -
> --test_rc5: $(RC5TEST)$(EXE_EXT)
> -+test_rc5:
> - ../util/shlib_wrap.sh ./$(RC5TEST)
> -
> --test_rand: $(RANDTEST)$(EXE_EXT)
> -+test_rand:
> - ../util/shlib_wrap.sh ./$(RANDTEST)
> -
> --test_enc: ../apps/openssl$(EXE_EXT) testenc
> -+test_enc:
> - @sh ./testenc
> -
> --test_x509: ../apps/openssl$(EXE_EXT) tx509 testx509.pem v3-cert1.pem v3-cert2.pem
> -+test_x509:
> - echo test normal x509v1 certificate
> - sh ./tx509 2>/dev/null
> - echo test first x509v3 certificate
> -@@ -223,25 +223,25 @@
> - echo test second x509v3 certificate
> - sh ./tx509 v3-cert2.pem 2>/dev/null
> -
> --test_rsa: ../apps/openssl$(EXE_EXT) trsa testrsa.pem
> -+test_rsa:
> - @sh ./trsa 2>/dev/null
> - ../util/shlib_wrap.sh ./$(RSATEST)
> -
> --test_crl: ../apps/openssl$(EXE_EXT) tcrl testcrl.pem
> -+test_crl:
> - @sh ./tcrl 2>/dev/null
> -
> --test_sid: ../apps/openssl$(EXE_EXT) tsid testsid.pem
> -+test_sid:
> - @sh ./tsid 2>/dev/null
> -
> --test_req: ../apps/openssl$(EXE_EXT) treq testreq.pem testreq2.pem
> -+test_req:
> - @sh ./treq 2>/dev/null
> - @sh ./treq testreq2.pem 2>/dev/null
> -
> --test_pkcs7: ../apps/openssl$(EXE_EXT) tpkcs7 tpkcs7d testp7.pem pkcs7-1.pem
> -+test_pkcs7:
> - @sh ./tpkcs7 2>/dev/null
> - @sh ./tpkcs7d 2>/dev/null
> -
> --test_bn: $(BNTEST)$(EXE_EXT) $(EXPTEST)$(EXE_EXT) bctest
> -+test_bn:
> - @echo starting big number library test, could take a while...
> - @../util/shlib_wrap.sh ./$(BNTEST) >tmp.bntest
> - @echo quit >>tmp.bntest
> -@@ -250,33 +250,33 @@
> - @echo 'test a^b%c implementations'
> - ../util/shlib_wrap.sh ./$(EXPTEST)
> -
> --test_ec: $(ECTEST)$(EXE_EXT)
> -+test_ec:
> - @echo 'test elliptic curves'
> - ../util/shlib_wrap.sh ./$(ECTEST)
> -
> --test_ecdsa: $(ECDSATEST)$(EXE_EXT)
> -+test_ecdsa:
> - @echo 'test ecdsa'
> - ../util/shlib_wrap.sh ./$(ECDSATEST)
> -
> --test_ecdh: $(ECDHTEST)$(EXE_EXT)
> -+test_ecdh:
> - @echo 'test ecdh'
> - ../util/shlib_wrap.sh ./$(ECDHTEST)
> -
> --test_verify: ../apps/openssl$(EXE_EXT)
> -+test_verify:
> - @echo "The following command should have some OK's and some failures"
> - @echo "There are definitly a few expired certificates"
> - ../util/shlib_wrap.sh ../apps/openssl verify -CApath ../certs/demo ../certs/demo/*.pem
> -
> --test_dh: $(DHTEST)$(EXE_EXT)
> -+test_dh:
> - @echo "Generate a set of DH parameters"
> - ../util/shlib_wrap.sh ./$(DHTEST)
> -
> --test_dsa: $(DSATEST)$(EXE_EXT)
> -+test_dsa:
> - @echo "Generate a set of DSA parameters"
> - ../util/shlib_wrap.sh ./$(DSATEST)
> - ../util/shlib_wrap.sh ./$(DSATEST) -app2_1
> -
> --test_gen testreq.pem: ../apps/openssl$(EXE_EXT) testgen test.cnf
> -+test_gen testreq.pem:
> - @echo "Generate and verify a certificate request"
> - @sh ./testgen
> -
> -@@ -288,13 +288,11 @@
> - @cat certCA.ss certU.ss > intP1.ss
> - @cat certCA.ss certU.ss certP1.ss > intP2.ss
> -
> --test_engine: $(ENGINETEST)$(EXE_EXT)
> -+test_engine:
> - @echo "Manipulate the ENGINE structures"
> - ../util/shlib_wrap.sh ./$(ENGINETEST)
> -
> --test_ssl: keyU.ss certU.ss certCA.ss certP1.ss keyP1.ss certP2.ss keyP2.ss \
> -- intP1.ss intP2.ss $(SSLTEST)$(EXE_EXT) testssl testsslproxy \
> -- ../apps/server2.pem serverinfo.pem
> -+test_ssl:
> - @echo "test SSL protocol"
> - @if [ -n "$(FIPSCANLIB)" ]; then \
> - sh ./testfipsssl keyU.ss certU.ss certCA.ss; \
> -@@ -304,7 +302,7 @@
> - @sh ./testsslproxy keyP1.ss certP1.ss intP1.ss
> - @sh ./testsslproxy keyP2.ss certP2.ss intP2.ss
> -
> --test_ca: ../apps/openssl$(EXE_EXT) testca CAss.cnf Uss.cnf
> -+test_ca:
> - @if ../util/shlib_wrap.sh ../apps/openssl no-rsa; then \
> - echo "skipping CA.sh test -- requires RSA"; \
> - else \
> -@@ -312,11 +310,11 @@
> - sh ./testca; \
> - fi
> -
> --test_aes: #$(AESTEST)
> -+test_aes:
> - # @echo "test Rijndael"
> - # ../util/shlib_wrap.sh ./$(AESTEST)
> -
> --test_tsa: ../apps/openssl$(EXE_EXT) testtsa CAtsa.cnf ../util/shlib_wrap.sh
> -+test_tsa:
> - @if ../util/shlib_wrap.sh ../apps/openssl no-rsa; then \
> - echo "skipping testtsa test -- requires RSA"; \
> - else \
> -@@ -331,7 +329,7 @@
> - @echo "Test JPAKE"
> - ../util/shlib_wrap.sh ./$(JPAKETEST)
> -
> --test_cms: ../apps/openssl$(EXE_EXT) cms-test.pl smcont.txt
> -+test_cms:
> - @echo "CMS consistency test"
> - $(PERL) cms-test.pl
> -
> -@@ -339,22 +337,22 @@
> - @echo "Test SRP"
> - ../util/shlib_wrap.sh ./srptest
> -
> --test_ocsp: ../apps/openssl$(EXE_EXT) tocsp
> -+test_ocsp:
> - @echo "Test OCSP"
> - @sh ./tocsp
> -
> --test_v3name: $(V3NAMETEST)$(EXE_EXT)
> -+test_v3name:
> - @echo "Test X509v3_check_*"
> - ../util/shlib_wrap.sh ./$(V3NAMETEST)
> -
> - test_heartbeat:
> - ../util/shlib_wrap.sh ./$(HEARTBEATTEST)
> -
> --test_constant_time: $(CONSTTIMETEST)$(EXE_EXT)
> -+test_constant_time:
> - @echo "Test constant time utilites"
> - ../util/shlib_wrap.sh ./$(CONSTTIMETEST)
> -
> --test_verify_extra: $(VERIFYEXTRATEST)$(EXE_EXT)
> -+test_verify_extra:
> - @echo $(START) $@
> - ../util/shlib_wrap.sh ./$(VERIFYEXTRATEST)
> -
> diff --git a/meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch b/meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch
> deleted file mode 100644
> index 2803cb0393..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/reproducible-cflags.patch
> +++ /dev/null
> @@ -1,20 +0,0 @@
> -Allow passing custom c-flags to mkbuildinf.pl in order to pass
> -flags without any build host references
> -
> -Upstream-Status: Inappropriate [OE specific]
> -
> -Signed-off-by: Juro Bystricky <juro.bystricky@intel.com>
> -
> ---- Makefile 2018-03-06 14:50:18.342138147 -0800
> -+++ Makefile 2018-03-06 15:24:04.794239071 -0800
> ---- a/crypto/Makefile
> -+++ b/crypto/Makefile
> -@@ -55,7 +55,7 @@
> - all: shared
> -
> - buildinf.h: ../Makefile
> -- $(PERL) $(TOP)/util/mkbuildinf.pl "$(CC) $(CFLAGS)" "$(PLATFORM)" >buildinf.h
> -+ $(PERL) $(TOP)/util/mkbuildinf.pl "$(CC_INFO)" "$(PLATFORM)" >buildinf.h
> -
> - x86cpuid.s: x86cpuid.pl perlasm/x86asm.pl
> - $(PERL) x86cpuid.pl $(PERLASM_SCHEME) $(CFLAGS) $(PROCESSOR) > $@
> diff --git a/meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch b/meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch
> deleted file mode 100644
> index b556731219..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/reproducible-mkbuildinf.patch
> +++ /dev/null
> @@ -1,21 +0,0 @@
> -If SOURCE_DATE_EPOCH is present in the environment, use it as build date.
> -Also make sure to use UTC time.
> -
> -Upstream-Status: Backport [ https://github.com/openssl/openssl/blob/master/util/mkbuildinf.pl ]
> -
> -Signed-off-by: Juro Bystricky <juro.bystricky@intel.com>
> -
> ---- mkbuildinf.pl 2018-03-06 14:20:09.438048058 -0800
> -+++ mkbuildinf.pl 2018-03-06 14:19:20.722045632 -0800
> ---- a/util/mkbuildinf.pl
> -+++ b/util/mkbuildinf.pl
> -@@ -3,7 +3,8 @@
> - my ($cflags, $platform) = @ARGV;
> -
> - $cflags = "compiler: $cflags";
> --$date = localtime();
> -+my $date = gmtime($ENV{'SOURCE_DATE_EPOCH'} || time()) . " UTC";
> -+
> - print <<"END_OUTPUT";
> - #ifndef MK1MF_BUILD
> - /* auto-generated by util/mkbuildinf.pl for crypto/cversion.c */
> diff --git a/meta/recipes-connectivity/openssl/openssl10/run-ptest b/meta/recipes-connectivity/openssl/openssl10/run-ptest
> deleted file mode 100755
> index 3b20fce1ee..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/run-ptest
> +++ /dev/null
> @@ -1,2 +0,0 @@
> -#!/bin/sh
> -make -k runtest
> diff --git a/meta/recipes-connectivity/openssl/openssl10/shared-libs.patch b/meta/recipes-connectivity/openssl/openssl10/shared-libs.patch
> deleted file mode 100644
> index a7ca0a3078..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10/shared-libs.patch
> +++ /dev/null
> @@ -1,41 +0,0 @@
> -Upstream-Status: Inappropriate [configuration]
> -
> -Index: openssl-1.0.1e/crypto/Makefile
> -===================================================================
> ---- openssl-1.0.1e.orig/crypto/Makefile
> -+++ openssl-1.0.1e/crypto/Makefile
> -@@ -108,7 +108,7 @@ $(LIB): $(LIBOBJ)
> -
> - shared: buildinf.h lib subdirs
> - if [ -n "$(SHARED_LIBS)" ]; then \
> -- (cd ..; $(MAKE) $(SHARED_LIB)); \
> -+ (cd ..; $(MAKE) -e $(SHARED_LIB)); \
> - fi
> -
> - libs:
> -Index: openssl-1.0.1e/Makefile.org
> -===================================================================
> ---- openssl-1.0.1e.orig/Makefile.org
> -+++ openssl-1.0.1e/Makefile.org
> -@@ -310,7 +310,7 @@ libcrypto$(SHLIB_EXT): libcrypto.a fips_
> -
> - libssl$(SHLIB_EXT): libcrypto$(SHLIB_EXT) libssl.a
> - @if [ "$(SHLIB_TARGET)" != "" ]; then \
> -- $(MAKE) SHLIBDIRS=ssl SHLIBDEPS='-lcrypto' build-shared; \
> -+ $(MAKE) -e SHLIBDIRS=ssl SHLIBDEPS='-lcrypto' build-shared; \
> - else \
> - echo "There's no support for shared libraries on this platform" >&2; \
> - exit 1; \
> -Index: openssl-1.0.1e/ssl/Makefile
> -===================================================================
> ---- openssl-1.0.1e.orig/ssl/Makefile
> -+++ openssl-1.0.1e/ssl/Makefile
> -@@ -62,7 +62,7 @@ lib: $(LIBOBJ)
> -
> - shared: lib
> - if [ -n "$(SHARED_LIBS)" ]; then \
> -- (cd ..; $(MAKE) $(SHARED_LIB)); \
> -+ (cd ..; $(MAKE) -e $(SHARED_LIB)); \
> - fi
> -
> - files:
> diff --git a/meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb b/meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb
> deleted file mode 100644
> index eacdf8b86e..0000000000
> --- a/meta/recipes-connectivity/openssl/openssl10_1.0.2q.bb
> +++ /dev/null
> @@ -1,360 +0,0 @@
> -SUMMARY = "Secure Socket Layer"
> -DESCRIPTION = "Secure Socket Layer (SSL) binary and related cryptographic tools."
> -HOMEPAGE = "http://www.openssl.org/"
> -BUGTRACKER = "http://www.openssl.org/news/vulnerabilities.html"
> -SECTION = "libs/network"
> -
> -# "openssl | SSLeay" dual license
> -LICENSE = "openssl"
> -LIC_FILES_CHKSUM = "file://LICENSE;md5=f475368924827d06d4b416111c8bdb77"
> -
> -DEPENDS = "hostperl-runtime-native"
> -DEPENDS_append_class-target = " openssl-native"
> -
> -SRC_URI = "http://www.openssl.org/source/openssl-${PV}.tar.gz \
> - file://run-ptest \
> - file://openssl-c_rehash.sh \
> - file://configure-targets.patch \
> - file://shared-libs.patch \
> - file://oe-ldflags.patch \
> - file://engines-install-in-libdir-ssl.patch \
> - file://debian1.0.2/block_diginotar.patch \
> - file://debian1.0.2/block_digicert_malaysia.patch \
> - file://debian/c_rehash-compat.patch \
> - file://debian/debian-targets.patch \
> - file://debian/man-dir.patch \
> - file://debian/man-section.patch \
> - file://debian/no-rpath.patch \
> - file://debian/no-symbolic.patch \
> - file://debian/pic.patch \
> - file://debian1.0.2/version-script.patch \
> - file://debian1.0.2/soname.patch \
> - file://openssl_fix_for_x32.patch \
> - file://openssl-fix-des.pod-error.patch \
> - file://Makefiles-ptest.patch \
> - file://ptest-deps.patch \
> - file://ptest_makefile_deps.patch \
> - file://configure-musl-target.patch \
> - file://parallel.patch \
> - file://Use-SHA256-not-MD5-as-default-digest.patch \
> - file://0001-Fix-build-with-clang-using-external-assembler.patch \
> - file://0001-openssl-force-soft-link-to-avoid-rare-race.patch \
> - file://0001-allow-manpages-to-be-disabled.patch \
> - file://0001-Fix-BN_LLONG-breakage.patch \
> - file://0001-Fix-DES_LONG-breakage.patch \
> - "
> -
> -SRC_URI_append_class-target = " \
> - file://reproducible-cflags.patch \
> - file://reproducible-mkbuildinf.patch \
> - "
> -
> -SRC_URI_append_class-nativesdk = " \
> - file://environment.d-openssl.sh \
> - "
> -
> -SRC_URI[md5sum] = "7563e1ce046cb21948eeb6ba1a0eb71c"
> -SRC_URI[sha256sum] = "5744cfcbcec2b1b48629f7354203bc1e5e9b5466998bbccc5b5fcde3b18eb684"
> -
> -S = "${WORKDIR}/openssl-${PV}"
> -
> -UPSTREAM_CHECK_REGEX = "openssl-(?P<pver>1\.0.+)\.tar"
> -
> -inherit pkgconfig siteinfo multilib_header ptest manpages
> -
> -PACKAGECONFIG ?= "cryptodev-linux"
> -PACKAGECONFIG_class-native = ""
> -PACKAGECONFIG_class-nativesdk = ""
> -
> -PACKAGECONFIG[cryptodev-linux] = "-DHAVE_CRYPTODEV -DUSE_CRYPTODEV_DIGESTS,,cryptodev-linux"
> -PACKAGECONFIG[manpages] = ",,,"
> -PACKAGECONFIG[perl] = ",,,"
> -
> -# Remove this to enable SSLv3. SSLv3 is defaulted to disabled due to the POODLE
> -# vulnerability
> -EXTRA_OECONF = "no-ssl3"
> -
> -EXTRA_OEMAKE = "${@bb.utils.contains('PACKAGECONFIG', 'manpages', '', 'OE_DISABLE_MANPAGES=1', d)}"
> -
> -export OE_LDFLAGS = "${LDFLAGS}"
> -
> -TERMIO ?= "-DTERMIO"
> -TERMIO_libc-musl = "-DTERMIOS"
> -EXTRA_OECONF_append_libc-musl_powerpc64 = " no-asm"
> -
> -CFLAG = "${@oe.utils.conditional('SITEINFO_ENDIANNESS', 'le', '-DL_ENDIAN', '-DB_ENDIAN', d)} \
> - ${TERMIO} ${CFLAGS} -Wall"
> -
> -# Avoid binaries being marked as requiring an executable stack since they don't
> -# (and it causes issues with SELinux)
> -CFLAG += "-Wa,--noexecstack"
> -
> -CFLAG_append_class-native = " -fPIC"
> -
> -do_configure () {
> - # The crypto_use_bigint patch means that perl's bignum module needs to be
> - # installed, but some distributions (for example Fedora 23) don't ship it by
> - # default. As the resulting error is very misleading check for bignum before
> - # building.
> - if ! perl -Mbigint -e true; then
> - bbfatal "The perl module 'bignum' was not found but this is required to build openssl. Please install this module (often packaged as perl-bignum) and re-run bitbake."
> - fi
> -
> - ln -sf apps/openssl.pod crypto/crypto.pod ssl/ssl.pod doc/
> -
> - os=${HOST_OS}
> - case $os in
> - linux-gnueabi |\
> - linux-gnuspe |\
> - linux-musleabi |\
> - linux-muslspe |\
> - linux-musl )
> - os=linux
> - ;;
> - *)
> - ;;
> - esac
> - target="$os-${HOST_ARCH}"
> - case $target in
> - linux-arm)
> - target=linux-armv4
> - ;;
> - linux-armeb)
> - target=linux-elf-armeb
> - ;;
> - linux-aarch64*)
> - target=linux-aarch64
> - ;;
> - linux-sh3)
> - target=debian-sh3
> - ;;
> - linux-sh4)
> - target=debian-sh4
> - ;;
> - linux-i486)
> - target=debian-i386-i486
> - ;;
> - linux-i586 | linux-viac3)
> - target=debian-i386-i586
> - ;;
> - linux-i686)
> - target=debian-i386-i686/cmov
> - ;;
> - linux-gnux32-x86_64 | linux-muslx32-x86_64 )
> - target=linux-x32
> - ;;
> - linux-gnu64-x86_64)
> - target=linux-x86_64
> - ;;
> - linux-gnun32-mips*el)
> - target=debian-mipsn32el
> - ;;
> - linux-gnun32-mips*)
> - target=debian-mipsn32
> - ;;
> - linux-mips*64*el)
> - target=debian-mips64el
> - ;;
> - linux-mips*64*)
> - target=debian-mips64
> - ;;
> - linux-mips*el)
> - target=debian-mipsel
> - ;;
> - linux-mips*)
> - target=debian-mips
> - ;;
> - linux-microblaze* | linux-nios2* | linux-gnu*ilp32** | linux-arc*)
> - target=linux-generic32
> - ;;
> - linux-powerpc)
> - target=linux-ppc
> - ;;
> - linux-powerpc64)
> - target=linux-ppc64
> - ;;
> - linux-riscv32)
> - target=linux-generic32
> - ;;
> - linux-riscv64)
> - target=linux-generic64
> - ;;
> - linux-sparc | linux-supersparc)
> - target=linux-sparcv8
> - ;;
> - esac
> -
> - # inject machine-specific flags
> - sed -i -e "s|^\(\"$target\",\s*\"[^:]\+\):\([^:]\+\)|\1:${CFLAG}|g" Configure
> -
> - useprefix=${prefix}
> - if [ "x$useprefix" = "x" ]; then
> - useprefix=/
> - fi
> - libdirleaf="$( echo "${libdir}" | sed "s:^$useprefix/*::" )"
> - perl ./Configure ${EXTRA_OECONF} ${PACKAGECONFIG_CONFARGS} shared --prefix=$useprefix --openssldir=${libdir}/ssl --libdir=$libdirleaf $target
> -}
> -
> -do_compile () {
> - oe_runmake depend
> - oe_runmake
> -}
> -
> -do_compile_class-target () {
> - sed -i 's/\((OPENSSL=\)".*"/\1"openssl"/' Makefile
> - oe_runmake depend
> - cc_sanitized=$(echo "${CC} ${CFLAG}" | sed -e 's,--sysroot=${STAGING_DIR_TARGET},,g' -e 's|${DEBUG_PREFIX_MAP}||g' -e 's/[ \t]\+/ /g')
> - oe_runmake CC_INFO="$cc_sanitized"
> -}
> -
> -do_compile_ptest () {
> - oe_runmake buildtest
> -}
> -
> -do_install () {
> - # Create ${D}/${prefix} to fix parallel issues
> - mkdir -p ${D}/${prefix}/
> -
> - oe_runmake INSTALL_PREFIX="${D}" MANDIR="${mandir}" install
> -
> - oe_libinstall -so libcrypto ${D}${libdir}
> - oe_libinstall -so libssl ${D}${libdir}
> -
> - install -d ${D}${includedir}
> - cp --dereference -R include/openssl ${D}${includedir}
> -
> - oe_multilib_header openssl/opensslconf.h
> -
> - install -Dm 0755 ${WORKDIR}/openssl-c_rehash.sh ${D}${bindir}/c_rehash
> - sed -i -e 's,/etc/openssl,${sysconfdir}/ssl,g' ${D}${bindir}/c_rehash
> -
> - if [ "${@bb.utils.filter('PACKAGECONFIG', 'perl', d)}" ]; then
> - sed -i -e '1s,.*,#!${bindir}/env perl,' ${D}${libdir}/ssl/misc/CA.pl
> - sed -i -e '1s,.*,#!${bindir}/env perl,' ${D}${libdir}/ssl/misc/tsget
> - else
> - rm -f ${D}${libdir}/ssl/misc/CA.pl ${D}${libdir}/ssl/misc/tsget
> - fi
> -
> - # Create SSL structure for packages such as ca-certificates which
> - # contain hard-coded paths to /etc/ssl. Debian does the same.
> - install -d ${D}${sysconfdir}/ssl
> - mv ${D}${libdir}/ssl/certs \
> - ${D}${libdir}/ssl/private \
> - ${D}${libdir}/ssl/openssl.cnf \
> - ${D}${sysconfdir}/ssl/
> -
> - # Although absolute symlinks would be OK for the target, they become
> - # invalid if native or nativesdk are relocated from sstate.
> - ln -sf ${@oe.path.relative('${libdir}/ssl', '${sysconfdir}/ssl/certs')} ${D}${libdir}/ssl/certs
> - ln -sf ${@oe.path.relative('${libdir}/ssl', '${sysconfdir}/ssl/private')} ${D}${libdir}/ssl/private
> - ln -sf ${@oe.path.relative('${libdir}/ssl', '${sysconfdir}/ssl/openssl.cnf')} ${D}${libdir}/ssl/openssl.cnf
> -
> - # Rename man pages to prefix openssl10-*
> - for f in `find ${D}${mandir} -type f`; do
> - mv $f $(dirname $f)/openssl10-$(basename $f)
> - done
> - for f in `find ${D}${mandir} -type l`; do
> - ln_f=`readlink $f`
> - rm -f $f
> - ln -s openssl10-$ln_f $(dirname $f)/openssl10-$(basename $f)
> - done
> -}
> -
> -do_install_append_class-native () {
> - create_wrapper ${D}${bindir}/openssl \
> - OPENSSL_CONF=${libdir}/ssl/openssl.cnf \
> - SSL_CERT_DIR=${libdir}/ssl/certs \
> - SSL_CERT_FILE=${libdir}/ssl/cert.pem \
> - OPENSSL_ENGINES=${libdir}/ssl/engines
> -}
> -
> -do_install_append_class-nativesdk () {
> - mkdir -p ${D}${SDKPATHNATIVE}/environment-setup.d
> - install -m 644 ${WORKDIR}/environment.d-openssl.sh ${D}${SDKPATHNATIVE}/environment-setup.d/openssl.sh
> -}
> -
> -do_install_ptest () {
> - cp -r -L Makefile.org Makefile test ${D}${PTEST_PATH}
> -
> - # Replace the path to native perl with the path to target perl
> - sed -i 's,^PERL=.*,PERL=${bindir}/perl,' ${D}${PTEST_PATH}/Makefile
> -
> - cp Configure config e_os.h ${D}${PTEST_PATH}
> - cp -r -L include ${D}${PTEST_PATH}
> - ln -sf ${libdir}/libcrypto.a ${D}${PTEST_PATH}
> - ln -sf ${libdir}/libssl.a ${D}${PTEST_PATH}
> - mkdir -p ${D}${PTEST_PATH}/crypto
> - cp crypto/constant_time_locl.h ${D}${PTEST_PATH}/crypto
> - cp -r certs ${D}${PTEST_PATH}
> - mkdir -p ${D}${PTEST_PATH}/apps
> - ln -sf ${libdir}/ssl/misc/CA.sh ${D}${PTEST_PATH}/apps
> - ln -sf ${sysconfdir}/ssl/openssl.cnf ${D}${PTEST_PATH}/apps
> - ln -sf ${bindir}/openssl ${D}${PTEST_PATH}/apps
> - cp apps/server.pem ${D}${PTEST_PATH}/apps
> - cp apps/server2.pem ${D}${PTEST_PATH}/apps
> - mkdir -p ${D}${PTEST_PATH}/util
> - install util/opensslwrap.sh ${D}${PTEST_PATH}/util
> - install util/shlib_wrap.sh ${D}${PTEST_PATH}/util
> - # Time stamps are relevant for "make alltests", otherwise
> - # make may try to recompile binaries. Not only must the
> - # binary files be newer than the sources, they also must
> - # be more recent than the header files in /usr/include.
> - #
> - # Using "cp -a" is not sufficient, because do_install
> - # does not preserve the original time stamps.
> - #
> - # So instead of using the original file stamps, we set
> - # the current time for all files. Binaries will get
> - # modified again later when stripping them, but that's okay.
> - touch ${D}${PTEST_PATH}
> - find ${D}${PTEST_PATH} -type f -print0 | xargs --verbose -0 touch -r ${D}${PTEST_PATH}
> -
> - # exclude binary files or the package won't install
> - for d in ssltest_old v3ext x509aux; do
> - rm -rf ${D}${libdir}/${BPN}/ptest/test/$d
> - done
> -
> - # Remove build host references
> - sed -i \
> - -e 's,--sysroot=${STAGING_DIR_TARGET},,g' \
> - -e 's|${DEBUG_PREFIX_MAP}||g' \
> - ${D}${PTEST_PATH}/Makefile ${D}${PTEST_PATH}/Configure
> -}
> -
> -# Add the openssl.cnf file to the openssl-conf package. Make the libcrypto
> -# package RRECOMMENDS on this package. This will enable the configuration
> -# file to be installed for both the base openssl package and the libcrypto
> -# package since the base openssl package depends on the libcrypto package.
> -
> -PACKAGES =+ "libcrypto10 libssl10 openssl10-conf ${PN}-engines ${PN}-misc"
> -
> -FILES_libcrypto10 = "${libdir}/libcrypto${SOLIBS}"
> -FILES_libssl10 = "${libdir}/libssl${SOLIBS}"
> -FILES_openssl10-conf = "${sysconfdir}/ssl/openssl.cnf"
> -FILES_${PN}-engines = "${libdir}/ssl/engines/*.so ${libdir}/engines"
> -FILES_${PN}-misc = "${libdir}/ssl/misc"
> -FILES_${PN} =+ "${libdir}/ssl/*"
> -FILES_${PN}_append_class-nativesdk = " ${SDKPATHNATIVE}/environment-setup.d/openssl.sh"
> -
> -CONFFILES_openssl10-conf = "${sysconfdir}/ssl/openssl.cnf"
> -
> -RRECOMMENDS_libcrypto10 += "openssl10-conf"
> -RDEPENDS_${PN}-misc = "${@bb.utils.filter('PACKAGECONFIG', 'perl', d)}"
> -RDEPENDS_${PN}-ptest += "${PN}-misc make perl perl-module-filehandle bc"
> -
> -BBCLASSEXTEND = "native nativesdk"
> -PACKAGE_PREPROCESS_FUNCS += "openssl_package_preprocess"
> -
> -# openssl 1.0 development files and executable binaries clash with openssl 1.1
> -# files when installed into target rootfs. So we don't put them into
> -# packages, but they continue to be provided via target sysroot for
> -# cross-compilation on the host, if some software still depends on openssl 1.0.
> -openssl_package_preprocess () {
> - for file in `find ${PKGD} -name *.h -o -name *.pc -o -name *.so`; do
> - rm $file
> - done
> - rm ${PKGD}${bindir}/openssl
> - rm ${PKGD}${bindir}/c_rehash
> - rmdir ${PKGD}${bindir}
> -
> -}
> diff --git a/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb b/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb
> index 4a626a4fcd..d01eec2ded 100644
> --- a/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb
> +++ b/meta/recipes-connectivity/openssl/openssl_1.1.1a.bb
> @@ -206,10 +206,6 @@ RRECOMMENDS_libcrypto += "openssl-conf"
> RDEPENDS_${PN}-misc = "perl"
> RDEPENDS_${PN}-ptest += "openssl-bin perl perl-modules bash"
>
> -RPROVIDES_openssl-conf = "openssl10-conf"
> -RREPLACES_openssl-conf = "openssl10-conf"
> -RCONFLICTS_openssl-conf = "openssl10-conf"
> -
> BBCLASSEXTEND = "native nativesdk"
>
> inherit multilib_script
> --
> 2.17.1
>
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-03-08 19:15 ` Alexander Kanavin
@ 2019-03-08 19:38 ` Adrian Bunk
2019-03-08 20:21 ` Alexander Kanavin
2019-03-09 21:30 ` akuster808
0 siblings, 2 replies; 13+ messages in thread
From: Adrian Bunk @ 2019-03-08 19:38 UTC (permalink / raw)
To: Alexander Kanavin; +Cc: OE-core
On Fri, Mar 08, 2019 at 10:15:42PM +0300, Alexander Kanavin wrote:
> This is premature. Plenty of recipes outside of oe-core still rely on
> openssl10,
>...
How many and which recipes actually?
The upcoming releases of Debian and Ubuntu ship without OpenSSL 1.0.
> Alex
cu
Adrian
--
"Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
"Only a promise," Lao Er said.
Pearl S. Buck - Dragon Seed
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-03-08 19:38 ` Adrian Bunk
@ 2019-03-08 20:21 ` Alexander Kanavin
2019-03-08 20:39 ` Adrian Bunk
2019-03-09 21:30 ` akuster808
1 sibling, 1 reply; 13+ messages in thread
From: Alexander Kanavin @ 2019-03-08 20:21 UTC (permalink / raw)
To: Adrian Bunk; +Cc: OE-core
Perhaps you could grep meta-openembedded for openssl10? I do not have access to a Linux machine for the next two weeks to check that, but I think there’s a few items there. Once meta-oe layers are free of openssl10 deps, there is a better case for removing it.
Poky distro images have shipped without openssl10 for the past couple of releases as nothing pulls it in anymore, that doesn’t mean the recipe can be dropped from oe-core.
Alex
> On 8 Mar 2019, at 22.38, Adrian Bunk <bunk@stusta.de> wrote:
>
>> On Fri, Mar 08, 2019 at 10:15:42PM +0300, Alexander Kanavin wrote:
>> This is premature. Plenty of recipes outside of oe-core still rely on
>> openssl10,
>> ...
>
> How many and which recipes actually?
>
> The upcoming releases of Debian and Ubuntu ship without OpenSSL 1.0.
>
>> Alex
>
> cu
> Adrian
>
> --
>
> "Is there not promise of rain?" Ling Tan asked suddenly out
> of the darkness. There had been need of rain for many days.
> "Only a promise," Lao Er said.
> Pearl S. Buck - Dragon Seed
>
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-03-08 20:21 ` Alexander Kanavin
@ 2019-03-08 20:39 ` Adrian Bunk
2019-04-25 19:28 ` Adrian Bunk
0 siblings, 1 reply; 13+ messages in thread
From: Adrian Bunk @ 2019-03-08 20:39 UTC (permalink / raw)
To: Alexander Kanavin; +Cc: OE-core
On Fri, Mar 08, 2019 at 11:21:26PM +0300, Alexander Kanavin wrote:
> Perhaps you could grep meta-openembedded for openssl10? I do not have access to a Linux machine for the next two weeks to check that, but I think there’s a few items there. Once meta-oe layers are free of openssl10 deps, there is a better case for removing it.
>...
My patches to remove the last uses of openssl10 in meta-openembedded
are already in meta-openembedded master.
> Alex
cu
Adrian
--
"Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
"Only a promise," Lao Er said.
Pearl S. Buck - Dragon Seed
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-03-08 19:38 ` Adrian Bunk
2019-03-08 20:21 ` Alexander Kanavin
@ 2019-03-09 21:30 ` akuster808
1 sibling, 0 replies; 13+ messages in thread
From: akuster808 @ 2019-03-09 21:30 UTC (permalink / raw)
To: Adrian Bunk, Alexander Kanavin; +Cc: OE-core
On 3/8/19 11:38 AM, Adrian Bunk wrote:
> On Fri, Mar 08, 2019 at 10:15:42PM +0300, Alexander Kanavin wrote:
>> This is premature. Plenty of recipes outside of oe-core still rely on
>> openssl10,
>> ...
> How many and which recipes actually?
>
> The upcoming releases of Debian and Ubuntu ship without OpenSSL 1.0.
I do agree having only one openssl to support moving forward is a goal.
The issue as I see it is we hit feature freeze for 2.7 so this may be a
better candidate for 2.8.
This will give the other layer maintainers time to clean things up.
- Armin
>
>> Alex
> cu
> Adrian
>
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-03-08 20:39 ` Adrian Bunk
@ 2019-04-25 19:28 ` Adrian Bunk
2019-04-25 20:18 ` Mark Hatle
0 siblings, 1 reply; 13+ messages in thread
From: Adrian Bunk @ 2019-04-25 19:28 UTC (permalink / raw)
To: Alexander Kanavin; +Cc: OE-core
Would you consider this patch appropriate now that warrior has branched?
Adrian
On Fri, Mar 08, 2019 at 10:39:04PM +0200, Adrian Bunk wrote:
> On Fri, Mar 08, 2019 at 11:21:26PM +0300, Alexander Kanavin wrote:
> > Perhaps you could grep meta-openembedded for openssl10? I do not have access to a Linux machine for the next two weeks to check that, but I think there’s a few items there. Once meta-oe layers are free of openssl10 deps, there is a better case for removing it.
> >...
>
> My patches to remove the last uses of openssl10 in meta-openembedded
> are already in meta-openembedded master.
>
> > Alex
>
> cu
> Adrian
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-04-25 19:28 ` Adrian Bunk
@ 2019-04-25 20:18 ` Mark Hatle
2019-04-26 5:12 ` Adrian Bunk
0 siblings, 1 reply; 13+ messages in thread
From: Mark Hatle @ 2019-04-25 20:18 UTC (permalink / raw)
To: Adrian Bunk, Alexander Kanavin; +Cc: OE-core
On 4/25/19 2:28 PM, Adrian Bunk wrote:
> Would you consider this patch appropriate now that warrior has branched?
The use of OpenSSL10 as a 'second library' is likely no longer needed. But
OpenSSL 1.0 (as an alternative version) to OpenSSL 1.1 is still needed in some
cases.. (FIPS-140-2)
So removal of openssl10 is fine, but if there are patches for support of both
versions (old/new) of OpenSSL they will be needed at least through the end of
this year for many users.
--Mark
> Adrian
>
> On Fri, Mar 08, 2019 at 10:39:04PM +0200, Adrian Bunk wrote:
>> On Fri, Mar 08, 2019 at 11:21:26PM +0300, Alexander Kanavin wrote:
>>> Perhaps you could grep meta-openembedded for openssl10? I do not have access to a Linux machine for the next two weeks to check that, but I think there’s a few items there. Once meta-oe layers are free of openssl10 deps, there is a better case for removing it.
>>> ...
>>
>> My patches to remove the last uses of openssl10 in meta-openembedded
>> are already in meta-openembedded master.
>>
>>> Alex
>>
>> cu
>> Adrian
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-04-25 20:18 ` Mark Hatle
@ 2019-04-26 5:12 ` Adrian Bunk
2019-04-26 15:31 ` Mark Hatle
0 siblings, 1 reply; 13+ messages in thread
From: Adrian Bunk @ 2019-04-26 5:12 UTC (permalink / raw)
To: Mark Hatle; +Cc: OE-core
On Thu, Apr 25, 2019 at 03:18:47PM -0500, Mark Hatle wrote:
> On 4/25/19 2:28 PM, Adrian Bunk wrote:
> > Would you consider this patch appropriate now that warrior has branched?
>
> The use of OpenSSL10 as a 'second library' is likely no longer needed. But
> OpenSSL 1.0 (as an alternative version) to OpenSSL 1.1 is still needed in some
> cases.. (FIPS-140-2)
Is anyone actually security-maintaining OpenSSL in OE?
The just released sumo has both versions of OpenSSL not touched since
August, despite just upgrading to the latest versions would fix CVEs.
> So removal of openssl10 is fine, but if there are patches for support of both
> versions (old/new) of OpenSSL they will be needed at least through the end of
> this year for many users.
This is now for Yocto 2.8, which will be released October/November
this year.
> --Mark
cu
Adrian
--
"Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
"Only a promise," Lao Er said.
Pearl S. Buck - Dragon Seed
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-04-26 5:12 ` Adrian Bunk
@ 2019-04-26 15:31 ` Mark Hatle
2019-04-26 15:50 ` Adrian Bunk
0 siblings, 1 reply; 13+ messages in thread
From: Mark Hatle @ 2019-04-26 15:31 UTC (permalink / raw)
To: Adrian Bunk; +Cc: OE-core
On 4/26/19 12:12 AM, Adrian Bunk wrote:
> On Thu, Apr 25, 2019 at 03:18:47PM -0500, Mark Hatle wrote:
>> On 4/25/19 2:28 PM, Adrian Bunk wrote:
>>> Would you consider this patch appropriate now that warrior has branched?
>>
>> The use of OpenSSL10 as a 'second library' is likely no longer needed. But
>> OpenSSL 1.0 (as an alternative version) to OpenSSL 1.1 is still needed in some
>> cases.. (FIPS-140-2)
>
> Is anyone actually security-maintaining OpenSSL in OE?
-In- OE? I have no idea.
Outside of OE to meet the OpenSSL-FIPS 'you must not modify the sources and
follow these exact steps', yes people are.
> The just released sumo has both versions of OpenSSL not touched since
> August, despite just upgrading to the latest versions would fix CVEs.
>
>> So removal of openssl10 is fine, but if there are patches for support of both
>> versions (old/new) of OpenSSL they will be needed at least through the end of
>> this year for many users.
>
> This is now for Yocto 2.8, which will be released October/November
> this year.
Yes, and thats the problem. OpenSSL 1.1 will not have FIPS support before the
end of the year (based on the last blog post..)
So unless the OpenSSL community is able to get it certified and released before
YP 2.8, I believe we still need OpenSSL 10 support through the end of this year.
We should evaluate where the community is after that.
Again, I'm not talking about the 'OpenSSL10' recipe, but support in the
applications for the older APIs. I don't care if the OpenSSL10 recipe goes
away. Anyone using FIPS-140-2 support is going to want to use a single OpenSSL
library on their system, not both 1.1 and 1.0.
--Mark
>> --Mark
>
> cu
> Adrian
>
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-04-26 15:31 ` Mark Hatle
@ 2019-04-26 15:50 ` Adrian Bunk
2019-04-26 17:56 ` Mark Hatle
0 siblings, 1 reply; 13+ messages in thread
From: Adrian Bunk @ 2019-04-26 15:50 UTC (permalink / raw)
To: Mark Hatle; +Cc: OE-core
On Fri, Apr 26, 2019 at 10:31:03AM -0500, Mark Hatle wrote:
> On 4/26/19 12:12 AM, Adrian Bunk wrote:
> > On Thu, Apr 25, 2019 at 03:18:47PM -0500, Mark Hatle wrote:
> >> On 4/25/19 2:28 PM, Adrian Bunk wrote:
> >>> Would you consider this patch appropriate now that warrior has branched?
> >>
> >> The use of OpenSSL10 as a 'second library' is likely no longer needed. But
> >> OpenSSL 1.0 (as an alternative version) to OpenSSL 1.1 is still needed in some
> >> cases.. (FIPS-140-2)
> >
> > Is anyone actually security-maintaining OpenSSL in OE?
>
> -In- OE? I have no idea.
>
> Outside of OE to meet the OpenSSL-FIPS 'you must not modify the sources and
> follow these exact steps', yes people are.
>...
Why does this need OpenSSL 1.0 in Yocto?
How does this look as OE recipe?
I would say that an OpenSSL-FIPS recipe might now perhaps need an
openssl_1.1.1%.bbappend re-adding the three openssl-conf lines my
patch removes.
Do I miss anything more complicated here?
> --Mark
cu
Adrian
--
"Is there not promise of rain?" Ling Tan asked suddenly out
of the darkness. There had been need of rain for many days.
"Only a promise," Lao Er said.
Pearl S. Buck - Dragon Seed
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-04-26 15:50 ` Adrian Bunk
@ 2019-04-26 17:56 ` Mark Hatle
2019-04-29 11:39 ` Alexander Kanavin
0 siblings, 1 reply; 13+ messages in thread
From: Mark Hatle @ 2019-04-26 17:56 UTC (permalink / raw)
To: Adrian Bunk; +Cc: OE-core
On 4/26/19 10:50 AM, Adrian Bunk wrote:
> On Fri, Apr 26, 2019 at 10:31:03AM -0500, Mark Hatle wrote:
>> On 4/26/19 12:12 AM, Adrian Bunk wrote:
>>> On Thu, Apr 25, 2019 at 03:18:47PM -0500, Mark Hatle wrote:
>>>> On 4/25/19 2:28 PM, Adrian Bunk wrote:
>>>>> Would you consider this patch appropriate now that warrior has branched?
>>>>
>>>> The use of OpenSSL10 as a 'second library' is likely no longer needed. But
>>>> OpenSSL 1.0 (as an alternative version) to OpenSSL 1.1 is still needed in some
>>>> cases.. (FIPS-140-2)
>>>
>>> Is anyone actually security-maintaining OpenSSL in OE?
>>
>> -In- OE? I have no idea.
>>
>> Outside of OE to meet the OpenSSL-FIPS 'you must not modify the sources and
>> follow these exact steps', yes people are.
>> ...
>
> Why does this need OpenSSL 1.0 in Yocto?
I think you are misunderstanding what I am saying.
For the recipes that -use- OpenSSL, we still need support for the legacy API
through at least the end of the year.
In the past we had added pkgconfigs for a few things to switch them between the
old and new OpenSSL API.
The OpenSSL10 recipe I don't care about, I have no use for it.
> How does this look as OE recipe?
>
> I would say that an OpenSSL-FIPS recipe might now perhaps need an
> openssl_1.1.1%.bbappend re-adding the three openssl-conf lines my
> patch removes.
You can't.. There is no such thing as OpenSSL-FIPS for 1.1.x. Doesn't exist,
never will.
OpenSSL 1.0.2* has an OpenSSL-FIPS module.. They have to be compiled -exactly-
as stated in the documentation or they are not functionally equivalent..
(reality doesn't matter here -- it's the rules that matter.)
So after it's built (usually via an SDK), then it's packaged in a recipe that
uses the precompiled binary.
OpenSSL 3 (there won't be a 2 from my understanding) is supposed to be
compatible with the 1.1.x API (for the most part), but will include FIPS-140-2
support. However, OpenSSL 3 doesn't exist yet. The last blog from the OpenSSL
developers indicated end of 2019... but as we all know release dates change.
So for users who have an OpenSSL FIPS requirement, the ONLY answer is that their
applications (including system) HAVE to use the OpenSSL 1.0.2* + FIPS module.
--Mark
> Do I miss anything more complicated here?
>
>> --Mark
>
> cu
> Adrian
>
^ permalink raw reply [flat|nested] 13+ messages in thread
* Re: [meta-oe][RFC][PATCH] Remove openssl10
2019-04-26 17:56 ` Mark Hatle
@ 2019-04-29 11:39 ` Alexander Kanavin
0 siblings, 0 replies; 13+ messages in thread
From: Alexander Kanavin @ 2019-04-29 11:39 UTC (permalink / raw)
To: Mark Hatle; +Cc: OE-core, Adrian Bunk
For what it's worth, I don't have a strong opinion on this. Anyone who
still needs 1.0 as the primary openssl version can add the openssl10
recipe as 'openssl' to their private layers, and set PREFERRED_VERSION
accordingly.
Alex
On Fri, 26 Apr 2019 at 19:56, Mark Hatle <mark.hatle@windriver.com> wrote:
>
> On 4/26/19 10:50 AM, Adrian Bunk wrote:
> > On Fri, Apr 26, 2019 at 10:31:03AM -0500, Mark Hatle wrote:
> >> On 4/26/19 12:12 AM, Adrian Bunk wrote:
> >>> On Thu, Apr 25, 2019 at 03:18:47PM -0500, Mark Hatle wrote:
> >>>> On 4/25/19 2:28 PM, Adrian Bunk wrote:
> >>>>> Would you consider this patch appropriate now that warrior has branched?
> >>>>
> >>>> The use of OpenSSL10 as a 'second library' is likely no longer needed. But
> >>>> OpenSSL 1.0 (as an alternative version) to OpenSSL 1.1 is still needed in some
> >>>> cases.. (FIPS-140-2)
> >>>
> >>> Is anyone actually security-maintaining OpenSSL in OE?
> >>
> >> -In- OE? I have no idea.
> >>
> >> Outside of OE to meet the OpenSSL-FIPS 'you must not modify the sources and
> >> follow these exact steps', yes people are.
> >> ...
> >
> > Why does this need OpenSSL 1.0 in Yocto?
>
> I think you are misunderstanding what I am saying.
>
> For the recipes that -use- OpenSSL, we still need support for the legacy API
> through at least the end of the year.
>
> In the past we had added pkgconfigs for a few things to switch them between the
> old and new OpenSSL API.
>
> The OpenSSL10 recipe I don't care about, I have no use for it.
>
> > How does this look as OE recipe?
> >
> > I would say that an OpenSSL-FIPS recipe might now perhaps need an
> > openssl_1.1.1%.bbappend re-adding the three openssl-conf lines my
> > patch removes.
>
> You can't.. There is no such thing as OpenSSL-FIPS for 1.1.x. Doesn't exist,
> never will.
>
> OpenSSL 1.0.2* has an OpenSSL-FIPS module.. They have to be compiled -exactly-
> as stated in the documentation or they are not functionally equivalent..
> (reality doesn't matter here -- it's the rules that matter.)
>
> So after it's built (usually via an SDK), then it's packaged in a recipe that
> uses the precompiled binary.
>
> OpenSSL 3 (there won't be a 2 from my understanding) is supposed to be
> compatible with the 1.1.x API (for the most part), but will include FIPS-140-2
> support. However, OpenSSL 3 doesn't exist yet. The last blog from the OpenSSL
> developers indicated end of 2019... but as we all know release dates change.
>
> So for users who have an OpenSSL FIPS requirement, the ONLY answer is that their
> applications (including system) HAVE to use the OpenSSL 1.0.2* + FIPS module.
>
> --Mark
>
> > Do I miss anything more complicated here?
> >
> >> --Mark
> >
> > cu
> > Adrian
> >
>
> --
> _______________________________________________
> Openembedded-core mailing list
> Openembedded-core@lists.openembedded.org
> http://lists.openembedded.org/mailman/listinfo/openembedded-core
^ permalink raw reply [flat|nested] 13+ messages in thread
end of thread, other threads:[~2019-04-29 11:39 UTC | newest]
Thread overview: 13+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2019-03-08 18:49 [meta-oe][RFC][PATCH] Remove openssl10 Adrian Bunk
2019-03-08 19:15 ` Alexander Kanavin
2019-03-08 19:38 ` Adrian Bunk
2019-03-08 20:21 ` Alexander Kanavin
2019-03-08 20:39 ` Adrian Bunk
2019-04-25 19:28 ` Adrian Bunk
2019-04-25 20:18 ` Mark Hatle
2019-04-26 5:12 ` Adrian Bunk
2019-04-26 15:31 ` Mark Hatle
2019-04-26 15:50 ` Adrian Bunk
2019-04-26 17:56 ` Mark Hatle
2019-04-29 11:39 ` Alexander Kanavin
2019-03-09 21:30 ` akuster808
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.