jonathan/openssl
1
0
Fork 0
forked from rpms/openssl
Code Pull Requests Activity
415 Commits 9 Branches 54 Tags 6.5 MiB
f852080c72
Commit Graph

63 Commits

Author SHA1 Message Date
Tomas Mraz
1ff978b22e update to upstream version 1.1.0f 
SRP and GOST is now allowed, note that GOST support requires
  adding GOST engine which is not part of openssl anymore
 2017-06-02 15:32:15 +02:00
Tomas Mraz
c676ac32d5 update to upstream version 1.1.0e 
add documentation of the PROFILE=SYSTEM special cipher string (#1420232)
 2017-02-16 16:59:27 +01:00
Tomas Mraz
c144665042 update to upstream version 1.1.0d 2017-01-26 16:24:24 +01:00
Tomas Mraz
e443a79334 Add back EC NIST P-224 and revert SSL_read() change 
- revert SSL_read() behavior change - patch from upstream (#1394677)
- EC curve NIST P-224 is now allowed, still kept disabled in TLS due
  to less than optimal security
 2016-11-22 10:39:55 +01:00
Tomas Mraz
be56ae067b update to upstream version 1.1.0c 2016-11-11 14:47:36 +01:00
Tomas Mraz
510bcc2e3a update to upstream version 1.1.0b 2016-10-11 10:31:54 +02:00
Tomas Mraz
e8261d1b72 minor upstream release 1.0.2j fixing regression from previous release 2016-09-26 12:56:04 +02:00
Tomas Mraz
6e67274c62 minor upstream release 1.0.2i fixing security issues 
- move man pages for perl based scripts to perl subpackage (#1377617)
 2016-09-22 14:16:05 +02:00
Tomas Mraz
eeb6ac1a65 minor upstream release 1.0.2h fixing security issues 2016-05-03 18:23:18 +02:00
Tom Callaway
589d3ee15b enable RC5 with permission from Legal 2016-03-07 21:56:55 -06:00
Tomas Mraz
e7a0ff581f minor upstream release 1.0.2g fixing security issues 2016-03-01 17:22:06 +01:00
Tomas Mraz
1004dabcc6 minor upstream release 1.0.2f fixing security issues 
- add support for MIPS secondary architecture
 2016-01-28 17:12:09 +01:00
Tomas Mraz
4240ecaa1b minor upstream release 1.0.2e fixing moderate severity security issues 
- enable fast assembler implementation for NIST P-256 and P-521
  elliptic curves (#1164210)
- filter out unwanted link options from the .pc files (#1257836)
 2015-12-04 14:13:59 +01:00
Tomas Mraz
5675d07a14 minor upstream release 1.0.2d fixing a high severity security issue 2015-07-09 17:25:58 +02:00
Tomas Mraz
837dd04882 minor upstream release 1.0.2c fixing multiple security issues 2015-06-15 18:23:46 +02:00
Tomas Mraz
a1fb602a95 rebase to 1.0.2 branch 2015-04-23 13:57:26 +02:00
Tomas Mraz
7e7e3f299f new upstream release fixing multiple security issues 2015-01-09 10:54:51 +01:00
Tomas Mraz
0a961bb5e3 new upstream release fixing multiple security issues 2014-10-16 14:02:00 +02:00
Tomas Mraz
a78828f786 new upstream release fixing multiple moderate security issues 
- for now disable only SSLv2 by default
 2014-08-07 16:00:47 +02:00
Tomas Mraz
360a4bb67c new upstream release 1.0.1h 2014-06-05 15:05:17 +02:00
Tomas Mraz
0376d8368c new upstream release 1.0.1g 
- do not include ECC ciphersuites in SSLv2 client hello (#1090952)
- fail on hmac integrity check if the .hmac file is empty
 2014-05-07 11:42:32 +02:00
Tomas Mraz
b3551463ca only ECC NIST Suite B curves support 
- drop -fips subpackage
 2013-10-16 14:37:51 +02:00
Tom Callaway
1f19ac14f9 resolve bugzilla 319901 (phew! only took 6 years & 9 days) 2013-10-15 02:08:35 +01:00
Tomas Mraz
dc696fdac4 new upstream version 2013-02-19 13:57:39 +01:00
Tomas Mraz
651215c12b new upstream version 2012-05-15 19:37:55 +02:00
Tomas Mraz
5eb4589d83 new upstream version 2012-04-26 18:10:52 +02:00
Tomas Mraz
e8c18345a4 new upstream version fixing CVE-2012-2110 2012-04-20 12:24:39 +02:00
Tomas Mraz
0f0ab24176 new upstream release 2012-03-14 21:38:58 +01:00
Tomas Mraz
00c4986d53 new upstream release from the 1.0.1 branch 
- epoch bumped to 1 due to revert to 1.0.0g on Fedora 17
- fix s390x build (#798411)
- versioning for the SSLeay symbol (#794950)
- add -DPURIFY to build flags (#797323)
- filter engine provides
- split the libraries to a separate -libs package
- add make to requires on the base package (#783446)
 2012-02-29 21:54:08 +01:00
Tomas Mraz
ad05b50537 New upstream release from the 1.0.1 branch, ABI compatible 
- also add documentation for the -no_ign_eof option
 2012-02-07 13:46:42 +01:00
Tomas Mraz
d91aea8890 new upstream release fixing CVE-2012-0050 - DoS regression in 
DTLS support introduced by the previous release (#782795)
 2012-01-19 16:48:48 +01:00
Tomas Mraz
ea51fee99f Add the new sources. 2012-01-05 16:57:03 +01:00
Tomas Mraz
3447c41c99 new upstream release fixing CVE-2011-3207 (#736088) 2011-09-07 18:27:06 +02:00
Tomas Mraz
4c970c62c5 drop the separate engine for Intel acceleration improvements 
and merge in the AES-NI, SHA1, and RC4 optimizations
add support for OPENSSL_DISABLE_AES_NI environment variable
that disables the AES-NI support
 2011-08-24 13:12:33 +02:00
Tomas Mraz
5c4fc08e4d add support for newest Intel acceleration improvements backported 
from upstream by Intel in form of a separate engine
 2011-07-20 14:56:21 +02:00
Tomas Mraz
1caf3ae072 - new upstream release fixing CVE-2011-0014 (OCSP stapling vulnerability) 2011-02-10 15:41:44 +01:00
Tomas Mraz
0a5657ab94 - replace the revert for the s390x bignum asm routines with 
fix from upstream
 2010-12-03 14:19:39 +01:00
Tomas Mraz
2b2423c26b - new upstream version fixing CVE-2010-3864 (#649304) 2010-11-16 18:25:23 +01:00
Tomáš Mráz
1b4b1eaf63 - new upstream patch release, fixes CVE-2010-0742 (#598738) and 
CVE-2010-1633 (#598732)
 2010-06-04 12:23:14 +00:00
Tomáš Mráz
fa66cf4b52 - update to final 1.0.0 upstream release 2010-03-30 09:37:41 +00:00
Tomáš Mráz
ae5568515b - new upstream release 2010-01-21 08:12:12 +00:00
Tomáš Mráz
aabbc9ad89 - update to new upstream version, no soname bump needed 
- fix CVE-2009-3555 - note that the fix is bypassed if SSL_OP_ALL is used
    so the compatibility with unfixed clients is not broken. The protocol
    extension is also not final.
 2009-11-12 15:51:40 +00:00
Tomáš Mráz
2ccfa6b48f - update to new major upstream release 2009-08-20 14:20:57 +00:00
Tomáš Mráz
a9e5f01ef5 - update to new upstream release (minor bug fixes, security fixes and 
machine code optimizations only)
 2009-03-25 21:12:41 +00:00
Tomáš Mráz
1d20b5f238 - new upstream version with necessary soname bump (#455753) 
- temporarily provide symlink to old soname to make it possible to rebuild
    the dependent packages in rawhide
- add eap-fast support (#428181)
- add possibility to disable zlib by setting
- add fips mode support for testing purposes
- do not null dereference on some invalid smime files
- add buildrequires pkgconfig (#479493)
 2009-01-15 09:10:25 +00:00
Tomáš Mráz
3849a1678a - update to latest upstream release, SONAME bumped to 7 2007-12-03 14:24:08 +00:00
Tomáš Mráz
6b8c7ea159 - dropped libica and ica engine from build 2006-06-21 21:14:05 +00:00
Tomáš Mráz
bf80fa7d8e - upgrade to new version, stays ABI compatible 2006-05-11 11:52:19 +00:00
Tomáš Mráz
feb192463e - fix build (-lcrypto was erroneusly dropped) of the updated libica 
- updated ICA engine to 1.3.6-rc3
 2005-11-29 11:52:11 +00:00
Tomáš Mráz
e96bebc853 - new upstream version 
- patches partially renumbered
 2005-11-08 13:52:29 +00:00