-
e328605 build: fix osx determinism for OSX (Cory Fields)
-
Backport of 90c7154 Linux/Windows wrapped 'date' rather than patching the OpenSSL build.
-
Translations for the 0.9 branch have been closed. Make sure that all the translation work done up to now ends up in the branch.
-
Normally bitcoin core does not display any network originated strings without sanitizing or hex encoding. This wasn't done for strcommand in many places. This could be used to play havoc with a terminal displaying the logs, especially with printtoconsole in use. Thanks to Evil-Knievel for reporting this issue. Conflicts: src/main.cpp src/net.cpp src/rpcserver.cpp Rebased-From: 28d4cff Github-Pull: #5770
-
-
-
-
-
-
Add some defensive programming on top of #5634. This copies the respective OpenSSL code in ECDSA_verify in OpenSSL pre-1.0.1k (e.g. https://github.com/openssl/openssl/blob/OpenSSL_1_0_1j/crypto/ecdsa/ecs_vrf.c#L89) more closely. As reported by @sergiodemianlerner. Github-Pull: #5640 Rebased-From: c6b7b29
-
Not necessary for windows or linux, as the intermedate build result doesn't change. However for OSX on 0.9 the builds for the intermediates are not deterministic, so this cannot be assessed. Bump the dep version just in case.
-
-
-
-
-
TLS is subject to downgrade attacks when SSLv3 is available, and SSLv3 has vulnerabilities. The popular solution is to disable SSLv3. On the web this breaks some tiny number of very old clients. While Bitcoin RPC shouldn't be exposed to the open Internet, it also shouldn't be exposed to really old SSL implementations, so it shouldn't be a major issue for us to disable SSLv3. There is more information on the downgrade attacks and disabling SSLv3 at https://disablessl3.com/ . Rebased-From: 683dc40
-
Rebased-From: 12a49ca
-
Previously -proxy was not setting the proxy for IsLimited networks, so if you set your configuration to be onlynet=tor you wouldn't get an IPv4 proxy set. The payment protocol gets its proxy configuration from the IPv4 proxy, and so it would experience a connection leak. This addresses issue #5355 and also clears up a cosmetic bug where getinfo proxy output shows nothing when onlynet=tor is set. Conflicts: src/init.cpp Rebased-From: 3c77714 Github-Issue: #5358
-
Refactor common -alertnotify code into static CAlert::Notify method.
-
Qt5 is bottled, so configure won't find it without some help. Use brew to find out its prefix. Also, qt5 added the host_bins variable to pkg-config, use it.
-
Rebased-From: 0dcb0a5
-
Code signing failed for me on OSX 10.9.5 because the Versions/Current symbolic links were being replaced with a duplicate copy of the frameworks' code. Releases were bigger than they needed to be, for the same reason. Rebased-From: 965c306
-
The approach from 65f3fa8 worked for signing on 10.9.4, but not newer versions. 10.9.5 (and up) want each framework to stand alone. Now in addition to copying the plist's from Qt for each framework, we put them in per-version dirs and only symlink to the latest, rather than using symlinks for any contents. Rebased-From: af0bd5e
-
When building from a distdir as gitian does, checking for the .git dir is not reliable. Instead, ask git if we're in a repo. Rebase this into 0.9.3 branch after final to make sure that 0.9.4 will have correct version strings in rcs. Rebased-From: c65cc8c
-
The cdrkit.org domain expired. Thanks to gdm85 on IRC for reporting this. Rebased-From: 27fc527