Tomas Mraz
c11b71fd2f
update to the 1.1.1e release
...
add selftest of the RAND_DRBG implementation
fix incorrect error return value from FIPS_selftest_dsa
2020-03-19 17:44:25 +01:00
Tomas Mraz
d742997a1e
Fix incorrect error return value from FIPS_selftest_dsa()
2020-02-12 17:03:11 +01:00
Tomas Mraz
f1c4ba61a3
Multiple fixes
...
re-enable the stitched AES-CBC-SHA implementations
make AES-GCM work in FIPS mode again
enable TLS-1.2 AES-CCM ciphers in FIPS mode
fix openssl speed errors in FIPS mode
2019-10-03 17:43:23 +02:00
Tomas Mraz
10c30b2322
Re-add one hunk of the fips patch accidentally dropped in the rebase.
2019-09-27 08:36:50 +02:00
Tomas Mraz
f6a62c4c2c
update to the 1.1.1d release
2019-09-13 17:25:44 +02:00
Tomas Mraz
8419f769c7
Do not try to use EC groups disallowed in FIPS mode in TLS
...
Also fix Valgrind regression with constant-time code
2019-06-24 15:13:12 +02:00
Tomas Mraz
31d61b19d5
update to the 1.1.1c release
2019-05-29 17:23:31 +02:00
Tomas Mraz
22a821356e
Fix two small regressions
...
Change the ts application default hash to SHA256
2019-05-10 14:35:26 +02:00
Tomas Mraz
e18dcc63f4
FIPS compliance fixes
2019-05-07 10:30:26 +02:00
Tomas Mraz
5cda1ca091
update to the 1.1.1b release
...
EVP_KDF API backport from master
SSH KDF implementation for EVP_KDF API backport from master
2019-02-28 17:01:40 +01:00
Tomas Mraz
757524ec00
Use SHA256 in the RSA pairwise key consistency check
2019-02-06 12:56:35 +01:00
Tomas Mraz
301c642c7f
update to the 1.1.1a release
2019-01-15 15:07:49 +01:00
Tomas Mraz
68f387b1c4
fix SECLEVEL 3 support
...
fix some issues found in Coverity scan
2018-10-12 17:35:34 +02:00
Tomas Mraz
a4bf4e1b65
update to the final 1.1.1 version
2018-09-13 09:43:22 +02:00
Tomas Mraz
62ec0f1fa9
update to the latest 1.1.1 beta version
2018-08-22 12:41:26 +02:00
Tomas Mraz
9189f03055
update to the latest 1.1.1 beta version
2018-07-25 18:15:19 +02:00