openSUSE Build Service

Overview Repositories Revisions Requests Users Attributes Meta

Revisions of mingw64-openssl-1_1

Ralf Habacker (rhabacker) accepted request 1088311 from

Ralf Habacker (rhabacker) about 1 year ago (revision 8)

- Update openssl-1.1.1-fips.patch
- Fix fips self test error in make_hmac_path() by adding support
  for windows file path separator (boo#1211562)

Ralf Habacker (rhabacker) accepted request 999406 from

Ralf Habacker (rhabacker) over 1 year ago (revision 7)

- update to 1.1.1q:
  * [CVE-2022-2097, bsc#1201099]
  * Addresses situations where AES OCB fails to encrypt some bytes
  * Rebased openssl-s390x-assembly-pack-add-OPENSSL_s390xcap-environment.patch
  * Rebased openssl-s390x-assembly-pack-add-support-for-pcc-and-kma-inst.patch
- openssl-riscv64-config.patch: backport of riscv64 config support
- Drop openssl-update_expired_certificates.patch

Ralf Habacker (rhabacker) accepted request 991492 from

Ralf Habacker (rhabacker) almost 2 years ago (revision 6)

- Fix building by activating rpmlint config (see boo#1201173)

Fridrich Strba (fstrba) accepted request 985527 from

Ralf Habacker (rhabacker) almost 2 years ago (revision 5)

- Add openssl-update_expired_certificates.patch
- Rebase openssl-1.1-fix-mingw-compile.patch
- Update to 1.1.1n: [bsc#1196877, CVE-2022-0778]
  * Security fix [CVE-2022-0778]: Infinite loop for non-prime moduli
    in BN_mod_sqrt() reachable when parsing certificates.
  * Add ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK
    (RFC 5489) to the list of ciphersuites providing Perfect Forward
    Secrecy as required by SECLEVEL >= 3.
  * Rebase openssl-1.1.1-fips.patch openssl-1.1.1-evp-kdf.patch
- Security fix: [bsc#1192820, CVE-2002-20001]
  * Fix DHEATER: The Diffie-Hellman Key Agreement Protocol allows
    remote attackers (from the client side) to send arbitrary
    numbers that are actually not public keys, and trigger
    expensive server-side DHE calculation.
  * Stop recommending the DHE in SSL_DEFAULT_SUSE_CIPHER_LIST
  * Rebase openssl-DEFAULT_SUSE_cipher.patch
- Fix the engines section in <prefix>/etc/ssl/openssl.cnf [bsc#1194187]
  * In an INI-type file, the sections begin with a [section_name]
    and they run until the next section begins.
  * Rebase openssl-1_1-use-include-directive.patch
- FIPS: Fix function and reason error codes [bsc#1182959]
  * Add openssl-1_1-FIPS-fix-error-reason-codes.patch
- Enable zlib compression support [bsc#1195149]
- Backport cryptographic improvements from OpenSSL 3 [jsc#SLE-19742]
  * Optimize RSA on armv8: openssl-1_1-Optimize-RSA-armv8.patch
  * Optimize AES-XTS mode for aarch64:
    openssl-1_1-Optimize-AES-XTS-aarch64.patch
  * Optimize AES-GCM for uarchs with unroll and new instructions:
    openssl-1_1-Optimize-AES-GCM-uarchs.patch
- POWER10 performance enhancements for cryptography [jsc#SLE-18136]
  * openssl-1_1-Optimize-ppc64.patch

Ralf Habacker (rhabacker) committed almost 2 years ago (revision 4)

Ralf Habacker (rhabacker) committed almost 2 years ago (revision 3)

Add patch

Ralf Habacker (rhabacker) committed almost 2 years ago (revision 2)

Ralf Habacker (rhabacker) accepted request 961591 from

Ralf Habacker (rhabacker) about 2 years ago (revision 1)

Initial package required by newer Qt packages

Browse Source

Displaying all 8 revisions

Places

Revisions of mingw64-openssl-1_1

Places