Secure Sockets and Transport Layer Security

Edit Package mingw64-openssl-1_1
http://www.openssl.org/

The OpenSSL Project is a collaborative effort to develop a robust,
commercial-grade, full-featured, and open source toolkit implementing
the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS
v1) protocols with full-strength cryptography. The project is managed
by a worldwide community of volunteers that use the Internet to
communicate, plan, and develop the OpenSSL toolkit and its related
documentation.

Derivation and License

OpenSSL is based on the excellent SSLeay library developed by Eric A.
Young and Tim J. Hudson. The OpenSSL toolkit is licensed under an
pache-style license, which basically means that you are free to get it
and to use it for commercial and noncommercial purposes.

Refresh
Refresh
Source Files
Filename Size Changed
0001-s390x-assembly-pack-perlasm-support.patch 0000053048 51.8 KB
0002-crypto-chacha-asm-chacha-s390x.pl-add-vx-code-path.patch 0000023358 22.8 KB
0003-crypto-poly1305-asm-poly1305-s390x.pl-add-vx-code-pa.patch 0000025331 24.7 KB
0004-s390x-assembly-pack-fix-formal-interface-bug-in-chac.patch 0000000996 996 Bytes
0005-s390x-assembly-pack-import-chacha-from-cryptogams-re.patch 0000028544 27.9 KB
0006-s390x-assembly-pack-import-poly-from-cryptogams-repo.patch 0000043848 42.8 KB
mingw64-openssl-1_1.changes 0000144068 141 KB
mingw64-openssl-1_1.spec 0000016860 16.5 KB
openssl-1.1-fix-mingw-compile.patch 0000004968 4.85 KB
openssl-1.1.0-issuer-hash.patch 0000000465 465 Bytes
openssl-1.1.0-no-html.patch 0000000609 609 Bytes
openssl-1.1.1-evp-kdf.patch 0000173680 170 KB
openssl-1.1.1-fips-crng-test.patch 0000014212 13.9 KB
openssl-1.1.1-fips-post-rand.patch 0000006693 6.54 KB
openssl-1.1.1-fips.patch 0000453787 443 KB
openssl-1.1.1-ssh-kdf.patch 0000479903 469 KB
openssl-1.1.1-system-cipherlist.patch 0000011596 11.3 KB
openssl-1.1.1n.tar.gz 0009850712 9.39 MB
openssl-1.1.1n.tar.gz.asc 0000000488 488 Bytes
openssl-1_1-FIPS-fix-error-reason-codes.patch 0000001409 1.38 KB
openssl-1_1-Optimize-AES-GCM-uarchs.patch 0000343066 335 KB
openssl-1_1-Optimize-AES-XTS-aarch64.patch 0000045605 44.5 KB
openssl-1_1-Optimize-RSA-armv8.patch 0000016781 16.4 KB
openssl-1_1-Optimize-ppc64.patch 0000060496 59.1 KB
openssl-1_1-disable-test_srp-sslapi.patch 0000000571 571 Bytes
openssl-1_1-seclevel.patch 0000006665 6.51 KB
openssl-1_1-use-include-directive.patch 0000000770 770 Bytes
openssl-1_1-use-seclevel2-in-tests.patch 0000001973 1.93 KB
openssl-DEFAULT_SUSE_cipher.patch 0000003030 2.96 KB
openssl-Enable-curve-spefific-ECDSA-implementations-via-EC_M.patch 0000023889 23.3 KB
openssl-Fix-9bf682f-which-broke-nistp224_method.patch 0000002762 2.7 KB
openssl-OPENSSL_s390xcap.pod-list-msa9-facility-bit-155.patch 0000001083 1.06 KB
openssl-add_rfc3526_rfc7919.patch 0000038563 37.7 KB
openssl-assembly-pack-accelerate-scalar-multiplication.patch 0000014599 14.3 KB
openssl-fips-add-SHA3-selftest.patch 0000015808 15.4 KB
openssl-fips-clearerror.patch 0000000545 545 Bytes
openssl-fips-dont_run_FIPS_module_installed.patch 0000000454 454 Bytes
openssl-fips-ignore_broken_atexit_test.patch 0000000987 987 Bytes
openssl-fips-run_selftests_only_when_module_is_complete.patch 0000000877 877 Bytes
openssl-fips-selftests_in_nonfips_mode.patch 0000003010 2.94 KB
openssl-fips_fix_selftests_return_value.patch 0000001018 1018 Bytes
openssl-fips_mode.patch 0000000644 644 Bytes
openssl-fips_selftest_upstream_drbg.patch 0000065247 63.7 KB
openssl-fix-mingw64-compile.patch 0000000873 873 Bytes
openssl-keep_EVP_KDF_functions_version.patch 0000001639 1.6 KB
openssl-no-date.patch 0000000492 492 Bytes
openssl-pkgconfig.patch 0000000987 987 Bytes
openssl-ppc64-config.patch 0000000695 695 Bytes
openssl-s390x-assembly-pack-accelerate-ECDSA.patch 0000012208 11.9 KB
openssl-s390x-assembly-pack-accelerate-X25519-X448-Ed25519-and-Ed448.patch 0000047574 46.5 KB
openssl-s390x-assembly-pack-add-OPENSSL_s390xcap-environment.patch 0000025718 25.1 KB
openssl-s390x-assembly-pack-add-OPENSSL_s390xcap-man-page.patch 0000006375 6.23 KB
openssl-s390x-assembly-pack-add-support-for-pcc-and-kma-inst.patch 0000013336 13 KB
openssl-s390x-assembly-pack-cleanse-only-sensitive-fields.patch 0000001325 1.29 KB
openssl-s390x-assembly-pack-fix-OPENSSL_s390xcap-z15-cpu-mas.patch 0000002021 1.97 KB
openssl-s390x-assembly-pack-fix-msa3-stfle-bit-detection.patch 0000001045 1.02 KB
openssl-s390x-assembly-pack-update-OPENSSL_s390xcap-3.patch 0000002398 2.34 KB
openssl-s390x-fix-x448-and-x448-test-vector-ctime-for-x25519-and-x448.patch 0000004287 4.19 KB
openssl-s390xcpuid.pl-fix-comment.patch 0000001238 1.21 KB
openssl-ship_fips_standalone_hmac.patch 0000000551 551 Bytes
openssl-truststore.patch 0000000942 942 Bytes
openssl-unknown_dgst.patch 0000000653 653 Bytes
openssl-update_expired_certificates.patch 0000009411 9.19 KB
openssl.keyring 0000045982 44.9 KB
rpmlintrc 0000000160 160 Bytes
showciphers.c 0000000625 625 Bytes
Revision 5 (latest revision is 8)
Fridrich Strba's avatar Fridrich Strba (fstrba) accepted request 985527 from Ralf Habacker's avatar Ralf Habacker (rhabacker) (revision 5)
- Add openssl-update_expired_certificates.patch
- Rebase openssl-1.1-fix-mingw-compile.patch
- Update to 1.1.1n: [bsc#1196877, CVE-2022-0778]
  * Security fix [CVE-2022-0778]: Infinite loop for non-prime moduli
    in BN_mod_sqrt() reachable when parsing certificates.
  * Add ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK
    (RFC 5489) to the list of ciphersuites providing Perfect Forward
    Secrecy as required by SECLEVEL >= 3.
  * Rebase openssl-1.1.1-fips.patch openssl-1.1.1-evp-kdf.patch
- Security fix: [bsc#1192820, CVE-2002-20001]
  * Fix DHEATER: The Diffie-Hellman Key Agreement Protocol allows
    remote attackers (from the client side) to send arbitrary
    numbers that are actually not public keys, and trigger
    expensive server-side DHE calculation.
  * Stop recommending the DHE in SSL_DEFAULT_SUSE_CIPHER_LIST
  * Rebase openssl-DEFAULT_SUSE_cipher.patch
- Fix the engines section in <prefix>/etc/ssl/openssl.cnf [bsc#1194187]
  * In an INI-type file, the sections begin with a [section_name]
    and they run until the next section begins.
  * Rebase openssl-1_1-use-include-directive.patch
- FIPS: Fix function and reason error codes [bsc#1182959]
  * Add openssl-1_1-FIPS-fix-error-reason-codes.patch
- Enable zlib compression support [bsc#1195149]
- Backport cryptographic improvements from OpenSSL 3 [jsc#SLE-19742]
  * Optimize RSA on armv8: openssl-1_1-Optimize-RSA-armv8.patch
  * Optimize AES-XTS mode for aarch64:
    openssl-1_1-Optimize-AES-XTS-aarch64.patch
  * Optimize AES-GCM for uarchs with unroll and new instructions:
    openssl-1_1-Optimize-AES-GCM-uarchs.patch
- POWER10 performance enhancements for cryptography [jsc#SLE-18136]
  * openssl-1_1-Optimize-ppc64.patch
Comments 2

Perry Werneck's avatar

Is the openssl-1.1.1-fips patch right? I'm looking on it and seens like it's searching for a *.so.VERSION library (linux format). Wondering if this can be the reason for que fips selftest erros I'm getting in windows.


Ralf Habacker's avatar

I do not think that this could be the reason as those filenames are fixed by openssl-1.1-fix-mingw-compile.patch. If the issue persists, feel free to open a bug report, see https://en.opensuse.org/Build:projects:windows:mingw for details.

openSUSE Build Service is sponsored by