Commit Graph

  • 347681c6b2 Rebase to upstream version 3.0.0 Sahana Prasad 2021-09-09 15:20:55 +0200
  • 34d46544a5 Rebase to upstream version 3.0.0 Related: rhbz#1990814 Sahana Prasad 2021-09-09 13:07:02 +0200
  • 07de966235 - Removes the dual-abi build as it not required anymore. The mass rebuild was completed and all packages are rebuilt against Beta version. Resolves: rhbz#1984097 Sahana Prasad 2021-08-25 17:02:52 +0200
  • ddd1eb3708 Correctly processing CMS reading from /dev/stdin Dmitry Belyavskiy 2021-08-23 10:45:49 +0200
  • 49de59749c Add instruction for loading legacy provider in openssl.cnf Resolves: rhbz#1975836 Sahana Prasad 2021-08-16 12:49:09 +0200
  • 03899fca38 Adds support for IDEA encryption. Resolves: rhbz#1990602 Sahana Prasad 2021-08-16 11:44:00 +0200
  • 0c6f4a599c - Fixes core dump in openssl req -modulus - Fixes 'openssl req' to not ask for password when non-encrypted private key is used - cms: Do not try to check binary format on stdin and -rctform fix - Resolves: rhbz#1988137, rhbz#1988468, rhbz#1988137 Sahana Prasad 2021-08-10 16:52:53 +0200
  • 2862adca42 Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Mohan Boddu 2021-08-09 22:44:21 +0000
  • ecb6630fd3 When signature_algorithm extension is omitted, use more relevant alerts Dmitry Belyavskiy 2021-08-04 15:55:01 +0200
  • c5d8025ca8 Remove tier 0 functional test from gating.yaml. These tests are removed from dist-git and are executed as tier1 or higher tests already. Signed-off-by: Sahana Prasad <sahana@redhat.com> Sahana Prasad 2021-08-04 10:37:11 +0200
  • fe7445d93d Rebase to upstream version beta2 Related: rhbz#1903209 Sahana Prasad 2021-08-03 15:03:00 +0200
  • 5de10d4810 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild Fedora Release Engineering 2021-07-22 17:20:55 +0000
  • 0b6afca185 - Prevents creation of duplicate cert entries in PKCS #12 files Resolves: rhbz#1978670 Sahana Prasad 2021-07-22 15:38:17 +0200
  • b7c6b85c95 Add RHEL gating configuration Aleksandra Fedorova 2021-07-15 09:15:42 +0200
  • e3d0ba4f1e NVR Bump to Update to OpenSSL 3.0 Beta1 version Related: rhbz#1903209 Sahana Prasad 2021-07-21 14:37:35 +0200
  • 529b968a17 Update patch dual-abi.patch to add the #define macros in implementation files instead of public header files Sahana Prasad 2021-07-19 13:59:36 +0200
  • a3158ae4f7 Removes unused patch dual-abi.patch Sahana Prasad 2021-07-14 14:20:07 +0200
  • d4e97b3110 Update to Beta1 version Includes a patch to support dual-ABI, as Beta1 brekas ABI with alpha16 Sahana Prasad 2021-07-02 17:23:17 +0200
  • 90bf702df6 - Fixes override of openssl_conf in openssl.cnf - Use AI_ADDRCONFIG only when explicit host name is given - Temporarily remove fipsmodule.cnf for arch i686 - Fixes segmentation fault in BN_lebin2bn Sahana Prasad 2021-07-06 22:35:53 +0200
  • 4f728a9f3f Fixes override of openssl_conf in openssl.cnf Resolves: rhbz#1975847 Sahana Prasad 2021-07-06 13:56:08 +0200
  • 826e7990ea Adds FIPS mode compatibility patch Related: rhbz#1977318 Signed-off-by: Sahana Prasad <sahana@redhat.com> Sahana Prasad 2021-07-02 21:05:44 +0200
  • 240131b9eb - Fixes system hang issue when booted in FIPS mode - Temporarily disable downstream FIPS patches Related: rhbz#1977318 Sahana Prasad 2021-07-02 20:15:32 +0200
  • 220d8a96f5 Spec bump and changelog for Speeding up building openssl Mohan Boddu 2021-06-11 16:55:52 -0400
  • b0a763c723 Speeding up building openssl Dmitry Belyavskiy 2021-06-11 13:10:06 +0200
  • e863fff325 Fix reading SPKAC data from stdin Fix incorrect OSSL_PKEY_PARAM_MAX_SIZE for ed25519 and ed448 Return 0 after cleanup in OPENSSL_init_crypto() Cleanup the peer point formats on regotiation Fix default digest to SHA256 Sahana Prasad 2021-06-04 10:37:32 +0200
  • 5fa0564b3a Enable FIPS via config options Resolves: rhbz#1903209 Sahana Prasad 2021-05-27 15:53:25 +0200
  • ef962954ab Update to alpha 16 version Avoids sending alert after orderly connection close Resolves: rhbz#1952901, rhbz#1903209 Sahana Prasad 2021-05-17 11:30:32 +0200
  • eeabdb936d Merge gitlab.com:redhat/centos-stream/rpms/openssl into c9s Sahana Prasad 2021-04-26 21:39:03 +0200
  • 007b0e01a9 Update to alpha 15 version Resolves: openssl speed crashes rhbz#1952598 Resolves: rhbz#1903209 Sahana Prasad 2021-04-26 19:31:15 +0200
  • 620c697740 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 Mohan Boddu 2021-04-16 02:42:42 +0000
  • ec7ef62793 Rebase to OpenSSL version 3.0.0 Note: This is a W.I.P as this is a huge rebase. Resolves: rhbz#1903209 Sahana Prasad 2021-04-09 22:24:41 +0200
  • 098f88f008 Merged update from upstream sources DistroBaker 2021-03-31 15:25:23 +0000
  • 0f5f931f9a update to version 1.1.1k Sahana Prasad 2021-03-26 07:37:03 +0100
  • 5865f97b4f Merged update from upstream sources DistroBaker 2021-03-18 14:01:32 +0000
  • efa5f39ef0 Merged update from upstream sources DistroBaker 2021-03-11 19:58:41 +0000
  • b023ffe39f Upgrade to version 1.1.1.j Sahana Prasad 2021-02-24 08:46:01 +0100
  • f731f488ac Merged update from upstream sources DistroBaker 2021-02-11 17:09:01 +0000
  • fb8e66a58f Fix regression in X509_verify_cert() #bz1916594 Sahana Prasad 2021-02-10 14:56:08 +0100
  • 6cc21a3e02 Merged update from upstream sources DistroBaker 2021-02-03 20:19:33 +0000
  • d34c6392bf - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild Fedora Release Engineering 2021-01-26 22:36:18 +0000
  • c89aeae26c Add BuildRequires: make Tom Stellard 2021-01-07 06:39:07 +0000
  • e33651f416 Merged update from upstream sources DistroBaker 2020-12-10 01:32:28 +0100
  • a07706cf0e Update to the 1.1.1i release fixing CVE-2020-1971 Tomas Mraz 2020-12-09 10:48:08 +0100
  • a99ab8f40a Merged update from upstream sources DistroBaker 2020-11-09 15:40:36 +0000
  • 3413ff9700 Upgrade to version 1.1.1h Sahana Prasad 2020-11-02 12:45:07 +0100
  • 261f10a200 Do not ship in main package manuals (or aliases) to tools from perl subpackage Jakub Jelen 2020-10-16 12:45:03 +0200
  • 16459847f1 RHEL 9.0.0 Alpha bootstrap Petr Šabata 2020-10-15 22:27:53 +0200
  • 6ceafb6c53 New branch setup Release Configuration Management 2020-10-08 18:58:09 +0000
  • 7ae2c9cd85 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild Fedora Release Engineering 2020-07-28 12:48:57 +0000
  • a75e581407 Use make macros Tom Stellard 2020-07-21 20:31:48 +0000
  • 067d5800f2 Additional FIPS mode check for EC key generation Tomas Mraz 2020-07-20 14:51:05 +0200
  • 04d5ef4d72 Further changes for SP 800-56A rev3 requirements Tomas Mraz 2020-07-17 12:41:39 +0200
  • 7f27ca925c Drop long ago obsolete part of the FIPS patch Tomas Mraz 2020-06-23 15:55:16 +0200
  • f023424321 Rewire FIPS_drbg API to use the RAND_DRBG Tomas Mraz 2020-06-22 13:43:12 +0200
  • ef93cf994d SHA1 is allowed in @SECLEVEL=2 only if allowed by TLS SigAlgs configuration Tomas Mraz 2020-06-05 17:39:16 +0200
  • b9c80ecf85 Add FIPS selftest for PBKDF2 and KBKDF Tomas Mraz 2020-06-03 16:07:39 +0200
  • 9833eff277 Use the well known DH groups in TLS Tomas Mraz 2020-05-26 09:28:42 +0200
  • 8746bcba4c Allow only well known DH groups in the FIPS mode Tomas Mraz 2020-05-25 18:52:45 +0200
  • 7396eb055e Re-apply change from -2 now we have fixed nosync to work with it Adam Williamson 2020-05-21 13:04:18 -0700
  • 6e23655506 Re-apply "FIPS module installed state definition is modified" Adam Williamson 2020-05-21 13:01:54 -0700
  • 87eaf879ac Revert the change from -2 as it seems to cause segfaults Adam Williamson 2020-05-19 18:35:16 -0700
  • 1bc9545b38 Revert "FIPS module installed state definition is modified" Adam Williamson 2020-05-19 18:33:30 -0700
  • 1e6a98d9e9 pull some fixes and improvements from RHEL-8 Tomas Mraz 2020-05-18 13:26:53 +0200
  • d902645d90 Unused patch dropped Tomas Mraz 2020-05-18 13:13:56 +0200
  • 89a24d69fc FIPS module installed state definition is modified Tomas Mraz 2020-05-15 17:45:44 +0200
  • 0f4ce87941 Fedora CI: Test with the "main" Python version Miro Hrončok 2020-04-21 13:02:26 +0200
  • 5888d1863e update to the 1.1.1g release Tomas Mraz 2020-04-23 13:47:52 +0200
  • 5004ccfb25 update to the 1.1.1f release Tomas Mraz 2020-04-07 16:50:53 +0200
  • ea310218f3 revert the unexpected EOF error reporting change Tomas Mraz 2020-03-26 15:14:08 +0100
  • c9936c55c2 Additional perl module buildrequires Tomas Mraz 2020-03-20 13:30:41 +0100
  • 30d45eb047 Add BuildRequires perl(FindBin) Tomas Mraz 2020-03-20 12:44:34 +0100
  • c11b71fd2f update to the 1.1.1e release Tomas Mraz 2020-03-19 17:44:25 +0100
  • c77593a912 Intel CET patch - also add CFI fixes to sync with upstream Tomas Mraz 2020-02-17 12:05:57 +0100
  • b9b156fb97 apply Intel CET support patches by hjl (#1788699) Tomas Mraz 2020-02-17 11:54:47 +0100
  • d742997a1e Fix incorrect error return value from FIPS_selftest_dsa() Tomas Mraz 2020-02-12 17:03:11 +0100
  • 898af7893c - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild Fedora Release Engineering 2020-01-29 20:25:04 +0000
  • b8a97dc1d8 allow zero length parameters in KDF_CTX_ctrl() Tomas Mraz 2019-11-21 14:49:21 +0100
  • 0536b721ef backport of SSKDF from master Tomas Mraz 2019-11-14 16:13:49 +0100
  • 266efa3055 backport of KBKDF and KRB5KDF from master Tomas Mraz 2019-11-13 13:43:05 +0100
  • dc9d5caf5e KBKDF for Kerberos 5 Tomas Mraz 2019-11-12 16:38:11 +0100
  • f1c4ba61a3 Multiple fixes Tomas Mraz 2019-10-03 17:43:23 +0200
  • 10c30b2322 Re-add one hunk of the fips patch accidentally dropped in the rebase. Tomas Mraz 2019-09-27 08:36:50 +0200
  • f6a62c4c2c update to the 1.1.1d release Tomas Mraz 2019-09-13 17:25:44 +0200
  • c44b3f96fe Bump release correctly Tomas Mraz 2019-09-06 17:18:46 +0200
  • 45ebb7fdc2 upstream fix for status request extension non-compliance (#1737471) Tomas Mraz 2019-09-06 17:02:18 +0200
  • dba4c3b578 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild Fedora Release Engineering 2019-07-25 23:35:44 +0000
  • b395c9afd4 Fedora CI: Python: readd test_asyncio Miro Hrončok 2019-06-25 22:23:49 +0200
  • 8419f769c7 Do not try to use EC groups disallowed in FIPS mode in TLS Tomas Mraz 2019-06-24 15:13:12 +0200
  • a71f5ae7ab add upstream patch to defer sending KeyUpdate Tomas Mraz 2019-06-03 16:05:45 +0200
  • 4784e45765 fix use of uninitialized memory Tomas Mraz 2019-05-30 11:55:39 +0200
  • 31d61b19d5 update to the 1.1.1c release Tomas Mraz 2019-05-29 17:23:31 +0200
  • b3060e5f2d Another attempt at the AES-CCM regression fix Tomas Mraz 2019-05-10 16:27:24 +0200
  • 22a821356e Fix two small regressions Tomas Mraz 2019-05-10 14:35:26 +0200
  • e18dcc63f4 FIPS compliance fixes Tomas Mraz 2019-05-07 10:30:26 +0200
  • 65a11b2a90 Revert part of the s390x update Tomas Mraz 2019-05-06 11:58:45 +0200
  • 569a3cb917 add S390x chacha20-poly1305 assembler support from master branch Tomas Mraz 2019-05-06 11:07:12 +0200
  • f5bba4a2a3 Drop patch merged into the upstream-sync patch Tomas Mraz 2019-05-03 11:16:08 +0200
  • 5c7382cd79 apply new bugfixes from upstream 1.1.1 branch Tomas Mraz 2019-05-03 11:15:37 +0200
  • 648a3cb985 Add testing of the python interpreter for the ssl related tests Charalampos Stratakis 2019-03-18 16:11:13 +0100
  • 1aaf4073e3 fix for BIO_get_mem_ptr() regression in 1.1.1b (#1691853) Tomas Mraz 2019-04-16 12:13:00 +0200