This website requires JavaScript.
c600b7d07d
Update for riscv64
main-riscv64
David Abdurachmanov
2023-12-20 13:40:01 +0200
a5176fa215
Merge remote-tracking branch 'up/main' into main-riscv64
David Abdurachmanov
2023-12-20 13:38:00 +0200
e331fc1326
Rebase to upstream version 3.1.4
Sahana Prasad
2023-10-26 12:29:21 +0200
5c67b5adc3
Slightly rearranged the patches we have
Dmitry Belyavskiy
2023-08-31 17:23:53 +0200
e52367af47
Synchronize patches from CentOS stream
Dmitry Belyavskiy
2023-08-22 16:39:12 +0200
c73a6ab930
migrated to SPDX license
Dmitry Belyavskiy
2023-08-04 13:55:50 +0200
1eb7adc383
Adding changes to patch files from source-git sync
Sahana Prasad
2023-07-31 10:04:55 +0200
9409bc7044
Rebase to upstream release 3.1.1
Sahana Prasad
2023-07-27 18:50:18 +0200
2b0eda88de
Forbid custom EC more completely
Dmitry Belyavskiy
2023-07-27 11:56:52 +0200
7e9699e170
Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
Fedora Release Engineering
2023-07-20 18:12:28 +0000
979cb8a57b
Add TMT interoperability tests & rewrite python STI test to TMT
Peter Leitmann
2023-04-14 23:04:07 +0200
3f7f289efc
Bring back --libdir for riscv64
f38-riscv64
David Abdurachmanov
2023-04-28 15:51:37 +0300
4469e82f95
Switch riscv64 from linux-generic64 to linux64-riscv64
David Abdurachmanov
2023-04-28 10:05:33 +0300
bb08e73b73
Merge remote-tracking branch 'up/f38' into f38-riscv64
David Abdurachmanov
2023-04-28 10:04:09 +0300
7e5d9e45b1
- Upload new upstream sources without manually hobbling them. - Remove the hobbling script as it is redundant. It is now allowed to ship the sources of patented EC curves, however it is still made unavailable to use by compiling with the 'no-ec2m' Configure option. The additional forbidden curves such as P-160, P-192, wap-tls curves are manually removed by updating 0011-Remove-EC-curves.patch. - Apply the changes to ec_curve.c and ectest.c as a new patch 0010-Add-changes-to-ectest-and-eccurve.patch instead of replacing them. - Modify 0011-Remove-EC-curves.patch to allow Brainpool curves. - Modify 0011-Remove-EC-curves.patch to allow code under macro OPENSSL_NO_EC2M. ┊ Resolves: rhbz#2130618, rhbz#2141672
Sahana Prasad
2023-03-14 17:07:58 +0100
477bb5e652
- Upload new upstream sources without manually hobbling them. - Remove the hobbling script as it is redundant. It is now allowed to ship the sources of patented EC curves, however it is still made unavailable to use by compiling with the 'no-ec2m' Configure option. The additional forbidden curves such as P-160, P-192, wap-tls curves are manually removed by updating 0011-Remove-EC-curves.patch. - Apply the changes to ec_curve.c and ectest.c as a new patch 0010-Add-changes-to-ectest-and-eccurve.patch instead of replacing them. - Modify 0011-Remove-EC-curves.patch to allow Brainpool curves. - Modify 0011-Remove-EC-curves.patch to allow code under macro OPENSSL_NO_EC2M. ┊ Resolves: rhbz#2130618, rhbz#2141672
Sahana Prasad
2023-03-14 17:07:58 +0100
8c9e425031
Add --libdir=%{_lib} for riscv64
David Abdurachmanov
2023-03-01 09:35:32 +0200
e198b69ab5
Rebase ELN/RHEL patch for OpenSSL 3.0.8
Stephen Gallagher
2023-02-13 13:36:19 -0500
167e0dd694
ELN: fix SHA1 signature patch again
rawhide
main
Stephen Gallagher
2023-02-13 10:53:54 -0500
194ef7464a
Rebase to upstream version 3.0.8
Dmitry Belyavskiy
2023-02-09 16:01:17 +0100
e994f999e2
Rebase to upstream version 3.0.8
f38
Dmitry Belyavskiy
2023-02-09 16:01:17 +0100
4f1033e859
Rebase to upstream version 3.0.8
f37
Dmitry Belyavskiy
2023-02-09 16:01:17 +0100
db9cb8819f
Rebase to upstream version 3.0.8
f36
Dmitry Belyavskiy
2023-02-09 16:01:17 +0100
02d85d00af
Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
Fedora Release Engineering
2023-01-19 22:58:20 +0000
9ce9458604
Backport implicit rejection for RSA PKCS#1 v1.5 encryption
Dmitry Belyavskiy
2023-01-05 18:17:28 +0100
500ad3d300
Refactor embedded mac verification in FIPS module
Dmitry Belyavskiy
2023-01-05 11:30:00 +0100
106fe8964c
- Rebase to upstream version 3.0.7
Dmitry Belyavskiy
2022-12-23 11:53:21 +0100
e9a0511933
Backport patches to fix external providers compatibility issues
Simo Sorce
2022-11-16 13:57:40 -0500
f7a2c68257
CVE-2022-3602, CVE-2022-3786: X.509 Email Address Buffer Overflow
Dmitry Belyavskiy
2022-11-01 15:32:31 +0100
2a7c14c5f4
CVE-2022-3602, CVE-2022-3786: X.509 Email Address Buffer Overflow
Dmitry Belyavskiy
2022-11-01 15:32:31 +0100
1b5eb41a89
CVE-2022-3602, CVE-2022-3786: X.509 Email Address Buffer Overflow
Dmitry Belyavskiy
2022-11-01 15:32:31 +0100
b5f6fd8216
Update patches to make ELN build happy
Dmitry Belyavskiy
2022-09-12 11:39:39 +0200
d54aeb5a0f
Fix AES-GCM on Power 8 CPUs
Clemens Lang
2022-09-09 10:19:19 +0200
510d152776
Add --libdir=%{_lib} for riscv64
David Abdurachmanov
2022-09-09 17:06:17 +0300
4855397272
openssl.spec is synced with RHEL
Dmitry Belyavskiy
2022-09-02 14:57:07 +0200
89541c6ea4
We don't support explicit curves, commenting out the test
Dmitry Belyavskiy
2022-09-02 15:28:40 +0200
080143cbc1
Sync with RHEL - applying patches
Dmitry Belyavskiy
2022-09-01 12:42:16 +0200
43e576feab
ELN: fix SHA1 signature patch
Stephen Gallagher
2022-08-17 13:17:58 -0400
566546250b
ELN: fix SHA1 signature patch
Stephen Gallagher
2022-08-17 13:00:02 -0400
d1b1996624
Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
Fedora Release Engineering
2022-07-22 02:15:17 +0000
18420b31a5
Upgrade to 1.1.1q
f35
Clemens Lang
2022-07-05 14:22:55 +0200
20c7738146
Rebase to upstream version 3.0.5
Clemens Lang
2022-07-05 14:01:19 +0200
32908974c2
Rebase to upstream version 3.0.5
Clemens Lang
2022-07-05 14:01:19 +0200
de1929a7a0
Upgrade to 1.1.1p
Clemens Lang
2022-06-30 17:25:36 +0200
2cc8d179f1
Upgrade to 1.1.1o
Clemens Lang
2022-06-13 12:04:37 +0200
8a03afa13c
Rebasing to OpenSSL 3.0.3
Dmitry Belyavskiy
2022-06-01 13:08:26 +0200
cf621228d5
Rebasing to OpenSSL 3.0.3
Dmitry Belyavskiy
2022-06-01 13:08:26 +0200
c22fd8c87d
Instrument with USDT probes related to SHA-1 deprecation
Alexander Sosedkin
2022-04-21 19:51:47 +0200
bb28a358c8
Allow MD5-SHA1 in LEGACY c-p to fix TLS 1.0
Clemens Lang
2022-04-27 12:43:20 +0200
efdb8c60a3
Allow MD5-SHA1 in LEGACY c-p to fix TLS 1.0
Clemens Lang
2022-04-27 12:24:38 +0200
8f08128432
Instrument with USDT probes related to SHA-1 deprecation
Alexander Sosedkin
2022-04-21 19:51:47 +0200
ef4b6b1e25
Spec changes
Dmitry Belyavskiy
2022-04-21 11:02:58 +0200
7d641d11c9
Fixing Turkish locale issues
Dmitry Belyavskiy
2022-04-21 10:57:45 +0200
0eaa0014c9
Fix a FIXME in the openssl.cnf(5) manpage
Clemens Lang
2022-04-20 15:47:37 +0200
0967bb5953
ELN: Disable SHA-1 by default using CentOS patches
Clemens Lang
2022-04-20 15:12:30 +0200
fb4c39d764
Silence rpmlint false positives
Clemens Lang
2022-04-06 17:45:04 +0200
2fdd24a724
Allow disabling of SHA1 signatures
Clemens Lang
2022-04-01 16:17:28 +0200
82a6212c47
Silence rpmlint false positives
Clemens Lang
2022-04-06 17:45:04 +0200
432cfa2baa
Allow disabling of SHA1 signatures
Clemens Lang
2022-04-01 16:17:28 +0200
46eb8fcc17
Upgrade to OpenSSL 1.1.1n
Dmitry Belyavskiy
2022-03-18 17:42:01 +0100
e251b765e5
Restore Python CI tests removed when OpenSSL was updated to 3.0
Miro Hrončok
2022-03-18 10:58:59 +0100
a0bd929a42
Update to openssl 3.0.2
Dmitry Belyavskiy
2022-03-18 10:41:13 +0100
b9f33d724e
- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
Fedora Release Engineering
2022-01-20 22:29:33 +0000
02b3b28c04
Merge remote-tracking branch 'up/f33' into f33-riscv64
f33-riscv64
David Abdurachmanov
2021-10-07 09:49:55 +0300
2fc4e025c7
Provide and obsolete openssl1.1 to allow using openssl1.1-devel on Fedora < 36
f33
Miro Hrončok
2021-09-15 14:13:27 +0200
347681c6b2
Rebase to upstream version 3.0.0
Sahana Prasad
2021-09-09 15:20:55 +0200
2002767b71
Upgrade to version 1.1.1.l
Sahana Prasad
2021-08-25 18:10:10 +0200
5de10d4810
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
Fedora Release Engineering
2021-07-22 17:20:55 +0000
278731bcc5
Merge remote-tracking branch 'up/f33' into f33-riscv64
David Abdurachmanov
2021-05-06 09:44:13 +0300
0f5f931f9a
update to version 1.1.1k
Sahana Prasad
2021-03-26 07:37:03 +0100
b023ffe39f
Upgrade to version 1.1.1.j
Sahana Prasad
2021-02-24 08:46:01 +0100
fb8e66a58f
Fix regression in X509_verify_cert() #bz1916594
Sahana Prasad
2021-02-10 14:56:08 +0100
d34c6392bf
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
Fedora Release Engineering
2021-01-26 22:36:18 +0000
c89aeae26c
Add BuildRequires: make
Tom Stellard
2021-01-07 06:39:07 +0000
a07706cf0e
Update to the 1.1.1i release fixing CVE-2020-1971
Tomas Mraz
2020-12-09 10:48:08 +0100
d4908a5fbf
Add --libdir=%{_lib} for riscv64
David Abdurachmanov
2020-12-01 15:27:49 +0200
3413ff9700
Upgrade to version 1.1.1h
master
Sahana Prasad
2020-11-02 12:45:07 +0100
261f10a200
Do not ship in main package manuals (or aliases) to tools from perl subpackage
Jakub Jelen
2020-10-16 12:45:03 +0200
7ae2c9cd85
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
Fedora Release Engineering
2020-07-28 12:48:57 +0000
e164013a0f
Merge remote-tracking branch 'up/master' into master-riscv64
master-riscv64
David Abdurachmanov
2020-07-23 17:14:55 +0300
a75e581407
Use make macros
Tom Stellard
2020-07-21 20:31:48 +0000
067d5800f2
Additional FIPS mode check for EC key generation
Tomas Mraz
2020-07-20 14:51:05 +0200
04d5ef4d72
Further changes for SP 800-56A rev3 requirements
Tomas Mraz
2020-07-17 12:41:39 +0200
7f27ca925c
Drop long ago obsolete part of the FIPS patch
Tomas Mraz
2020-06-23 15:55:16 +0200
f023424321
Rewire FIPS_drbg API to use the RAND_DRBG
Tomas Mraz
2020-06-22 13:43:12 +0200
ef93cf994d
SHA1 is allowed in @SECLEVEL=2 only if allowed by TLS SigAlgs configuration
Tomas Mraz
2020-06-05 17:39:16 +0200
b9c80ecf85
Add FIPS selftest for PBKDF2 and KBKDF
Tomas Mraz
2020-06-03 16:07:39 +0200
9833eff277
Use the well known DH groups in TLS
Tomas Mraz
2020-05-26 09:28:42 +0200
8746bcba4c
Allow only well known DH groups in the FIPS mode
Tomas Mraz
2020-05-25 18:52:45 +0200
7396eb055e
Re-apply change from -2 now we have fixed nosync to work with it
Adam Williamson
2020-05-21 13:04:18 -0700
6e23655506
Re-apply "FIPS module installed state definition is modified"
Adam Williamson
2020-05-21 13:01:54 -0700
87eaf879ac
Revert the change from -2 as it seems to cause segfaults
Adam Williamson
2020-05-19 18:35:16 -0700
1bc9545b38
Revert "FIPS module installed state definition is modified"
Adam Williamson
2020-05-19 18:33:30 -0700
1e6a98d9e9
pull some fixes and improvements from RHEL-8
Tomas Mraz
2020-05-18 13:26:53 +0200
d902645d90
Unused patch dropped
Tomas Mraz
2020-05-18 13:13:56 +0200
89a24d69fc
FIPS module installed state definition is modified
Tomas Mraz
2020-05-15 17:45:44 +0200
0f4ce87941
Fedora CI: Test with the "main" Python version
Miro Hrončok
2020-04-21 13:02:26 +0200
5888d1863e
update to the 1.1.1g release
Tomas Mraz
2020-04-23 13:47:52 +0200
5ea777e397
Merge remote-tracking branch 'up/master' into master-riscv64
David Abdurachmanov
2020-04-12 11:47:52 +0300
5004ccfb25
update to the 1.1.1f release
Tomas Mraz
2020-04-07 16:50:53 +0200