Revisions of openssl-3
buildservice-autocommit
accepted
request 990536
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 43)
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 43)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 990534
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 42)
buildservice-autocommit
accepted
request 964296
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 41)
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 41)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 963758
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 40)
- Enable zlib compression support [bsc#1195149]
- Add crypto-policies support.
* Fix some tests that couldn't find the openssl3.cnf location
* Rebase patch:
openssl-Add-support-for-PROFILE-SYSTEM-system-default-cipher.patch
buildservice-autocommit
accepted
request 962004
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 39)
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 39)
baserev update by copy to link target
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 962003
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 38)
- Update to 3.0.2: [bsc#1196877, CVE-2022-0778]
* Security fix [CVE-2022-0778]: Infinite loop for non-prime moduli
in BN_mod_sqrt() reachable when parsing certificates.
* Add ciphersuites based on DHE_PSK (RFC 4279) and ECDHE_PSK
(RFC 5489) to the list of ciphersuites providing Perfect Forward
Secrecy as required by SECLEVEL >= 3.
* Made the AES constant time code for no-asm configurations
optional due to the resulting 95% performance degradation.
The AES constant time code can be enabled, for no assembly
builds, with: ./config no-asm -DOPENSSL_AES_CONST_TIME
* Fixed PEM_write_bio_PKCS8PrivateKey() to make it possible to
use empty passphrase strings.
* The negative return value handling of the certificate
verification callback was reverted. The replacement is to set
the verification retry state with the SSL_set_retry_verify()
function.
* Rebase openssl-use-versioned-config.patch
- Keep CA_default and tsa_config1 default paths in openssl3.cnf
- Rebase patches:
* openssl-Override-default-paths-for-the-CA-directory-tree.patch
* openssl-use-versioned-config.patch
Dominique Leuenberger (dimstar_suse)
accepted
request 950776
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 37)
initialized devel package after accepting 950776
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 950770
from
Danilo Spinella (dspinella)
(revision 36)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 950769
from
Danilo Spinella (dspinella)
(revision 35)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 950451
from
Danilo Spinella (dspinella)
(revision 34)
- Fix conflict with openssl and libressl
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 949760
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 33)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 947645
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 32)
- Update to 3.0.1: [bsc#1193740, CVE-2021-4044]
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 946113
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 31)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 917522
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 30)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 909235
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 29)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 908852
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 28)
Pedro Monreal Gonzalez (pmonrealgonzalez)
accepted
request 906781
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 27)
Pedro Monreal Gonzalez (pmonrealgonzalez)
committed
(revision 26)
Dominique Leuenberger (dimstar_suse)
accepted
request 856653
from
Pedro Monreal Gonzalez (pmonrealgonzalez)
(revision 25)
initialized devel package after accepting 856653
Displaying revisions 61 - 80 of 103
