Sync from SUSE:ALP:Source:Standard:1.0 go1.24-openssl revision 4c4dc949740ea0d01f856166ca93ecb8

2025-06-11 06:54:33 +02:00
parent e1f9e4a42b
commit a3907c4cf0
2 changed files with 25 additions and 2 deletions
--- a/go1.24-openssl.changes
+++ b/go1.24-openssl.changes
@@ -1,3 +1,26 @@
+-------------------------------------------------------------------
+Mon Jun  2 15:10:50 UTC 2025 - Jeff Kowalczyk <jkowalczyk@suse.com>
+
+- Update to version 1.24.3 cut from the go1.24-fips-release
+  branch at the revision tagged go1.24.3-3-openssl-fips.
+  Refs jsc#SLE-18320
+  * Fix GOLANG_FIPS=0 and enable CGO for bin/go
+
+-------------------------------------------------------------------
+Tue May 27 20:22:44 UTC 2025 - Jeff Kowalczyk <jkowalczyk@suse.com>
+
+- Update to version 1.24.3 cut from the go1.24-fips-release
+  branch at the revision tagged go1.24.3-2-openssl-fips.
+  Refs jsc#SLE-18320 bsc#1243960
+  * Force fips140tls in boring mode and run http tests
+  * Implement HKDF for TLS (#297) bsc#1243960. This was previously
+    left unimplemented and would panic if invoked. This was not
+    caught because we only run a subset of the TLS tests in FIPS
+    mode. This patch adds the test case which would have caught
+    this into our test script and fixes the panic with an
+    implementation of HKDF label expanding.
+  * Improve documentation (#294)
+
 -------------------------------------------------------------------
 Wed May  7 21:05:19 UTC 2025 - Jeff Kowalczyk <jkowalczyk@suse.com>

--- a/go1.24.3-openssl.src.tar.gz
+++ b/go1.24.3-openssl.src.tar.gz