pool/openssl-1_1
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
102 Commits 1 Branch 0 Tags 34 MiB
C 100%
f8ec18178a
Go to file
Pedro Monreal Gonzalez f8ec18178a Accepting request 1101915 from home:pmonrealgonzalez:branches:security:tls 
- Update to 1.1.1v:
  * Fix excessive time spent checking DH q parameter value
    (bsc#1213853, CVE-2023-3817). The function DH_check() performs
    various checks on DH parameters. After fixing CVE-2023-3446 it
    was discovered that a large q parameter value can also trigger
    an overly long computation during some of these checks. A
    correct q value, if present, cannot be larger than the modulus
    p parameter, thus it is unnecessary to perform these checks if
    q is larger than p. If DH_check() is called with such q parameter
    value, DH_CHECK_INVALID_Q_VALUE return flag is set and the
    computationally intensive checks are skipped.
  * Fix DH_check() excessive time with over sized modulus
    (bsc#1213487, CVE-2023-3446). The function DH_check() performs
    various checks on DH parameters. One of those checks confirms
    that the modulus ("p" parameter) is not too large. Trying to use
    a very large modulus is slow and OpenSSL will not normally use
    a modulus which is over 10,000 bits in length. However the
    DH_check() function checks numerous aspects of the key or
    parameters that have been supplied. Some of those checks use the
    supplied modulus value even if it has already been found to be
    too large. A new limit has been added to DH_check of 32,768 bits.
    Supplying a key/parameters with a modulus over this size will
    simply cause DH_check() to fail.
  * Rebase openssl-1_1-openssl-config.patch
  * Remove security patches fixed upstream:
    - openssl-CVE-2023-3446.patch
    - openssl-CVE-2023-3446-test.patch

OBS-URL: https://build.opensuse.org/request/show/1101915
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl-1_1?expand=0&rev=141
2023-08-02 10:03:45 +00:00
.gitattributes - Renamed from openssl-1_1_0 (bsc#1081335) 2018-02-16 12:13:08 +00:00
.gitignore - Renamed from openssl-1_1_0 (bsc#1081335) 2018-02-16 12:13:08 +00:00
0001-s390x-assembly-pack-perlasm-support.patch Accepting request 708112 from home:vitezslav_cizek:branches:factory 2019-06-06 11:11:21 +00:00
0002-crypto-chacha-asm-chacha-s390x.pl-add-vx-code-path.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
0003-crypto-poly1305-asm-poly1305-s390x.pl-add-vx-code-pa.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
0004-s390x-assembly-pack-fix-formal-interface-bug-in-chac.patch Accepting request 708112 from home:vitezslav_cizek:branches:factory 2019-06-06 11:11:21 +00:00
0005-s390x-assembly-pack-import-chacha-from-cryptogams-re.patch Accepting request 708112 from home:vitezslav_cizek:branches:factory 2019-06-06 11:11:21 +00:00
0006-s390x-assembly-pack-import-poly-from-cryptogams-repo.patch Accepting request 708112 from home:vitezslav_cizek:branches:factory 2019-06-06 11:11:21 +00:00
baselibs.conf Accepting request 1089971 from security:tls:unstable 2023-05-31 09:13:51 +00:00
openssl-1_1-AES-GCM-performance-optimzation-with-stitched-method.patch Accepting request 1042846 from home:ohollmann:branches:security:tls 2022-12-14 09:46:30 +00:00
openssl-1_1-chacha20-performance-optimizations-for-ppc64le-with-.patch Accepting request 1042846 from home:ohollmann:branches:security:tls 2022-12-14 09:46:30 +00:00
openssl-1_1-disable-test_srp-sslapi.patch Accepting request 865443 from home:pmonrealgonzalez:branches:security:tls 2021-01-21 14:53:39 +00:00
openssl-1_1-FIPS-fix-error-reason-codes.patch Accepting request 954189 from home:pmonrealgonzalez:branches:security:tls 2022-02-14 12:37:47 +00:00
openssl-1_1-Fix-AES-GCM-on-Power-8-CPUs.patch Accepting request 1042984 from home:ohollmann:branches:security:tls 2022-12-14 20:20:45 +00:00
openssl-1_1-Fixed-conditional-statement-testing-64-and-256-bytes.patch Accepting request 1042846 from home:ohollmann:branches:security:tls 2022-12-14 09:46:30 +00:00
openssl-1_1-Fixed-counter-overflow.patch Accepting request 1042846 from home:ohollmann:branches:security:tls 2022-12-14 09:46:30 +00:00
openssl-1_1-openssl-config.patch Accepting request 1101915 from home:pmonrealgonzalez:branches:security:tls 2023-08-02 10:03:45 +00:00
openssl-1_1-Optimize-AES-GCM-uarchs.patch Accepting request 949750 from home:pmonrealgonzalez:branches:security:tls 2022-01-28 17:51:43 +00:00
openssl-1_1-Optimize-AES-XTS-aarch64.patch Accepting request 949750 from home:pmonrealgonzalez:branches:security:tls 2022-01-28 17:51:43 +00:00
openssl-1_1-Optimize-ppc64.patch Accepting request 949750 from home:pmonrealgonzalez:branches:security:tls 2022-01-28 17:51:43 +00:00
openssl-1_1-Optimize-RSA-armv8.patch Accepting request 949750 from home:pmonrealgonzalez:branches:security:tls 2022-01-28 17:51:43 +00:00
openssl-1_1-paramgen-default_to_rfc7919.patch Accepting request 1007029 from home:ohollmann:branches:home:jsikes:branches:security:tls 2022-09-30 10:26:12 +00:00
openssl-1_1-seclevel.patch Accepting request 865443 from home:pmonrealgonzalez:branches:security:tls 2021-01-21 14:53:39 +00:00
openssl-1_1-use-include-directive.patch Accepting request 960455 from home:pmonrealgonzalez:branches:security:tls 2022-03-09 11:25:28 +00:00
openssl-1_1-use-seclevel2-in-tests.patch Accepting request 865443 from home:pmonrealgonzalez:branches:security:tls 2021-01-21 14:53:39 +00:00
openssl-1_1.changes Accepting request 1101915 from home:pmonrealgonzalez:branches:security:tls 2023-08-02 10:03:45 +00:00
openssl-1_1.spec Accepting request 1101915 from home:pmonrealgonzalez:branches:security:tls 2023-08-02 10:03:45 +00:00
openssl-1.1.0-issuer-hash.patch Accepting request 873674 from home:pmonrealgonzalez:branches:security:tls 2021-02-22 12:20:01 +00:00
openssl-1.1.0-no-html.patch Accepting request 790182 from home:vitezslav_cizek:branches:security:tls 2020-03-31 14:27:13 +00:00
openssl-1.1.1-evp-kdf.patch Accepting request 961990 from home:pmonrealgonzalez:branches:security:tls 2022-03-15 18:24:32 +00:00
openssl-1.1.1-fips-crng-test.patch Accepting request 796077 from home:vitezslav_cizek:branches:security:tls 2020-04-21 15:13:15 +00:00
openssl-1.1.1-fips-post-rand.patch Accepting request 854071 from home:vitezslav_cizek:branches:security:tls 2020-12-14 11:20:34 +00:00
openssl-1.1.1-fips.patch Accepting request 961990 from home:pmonrealgonzalez:branches:security:tls 2022-03-15 18:24:32 +00:00
openssl-1.1.1-ssh-kdf.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
openssl-1.1.1-system-cipherlist.patch Accepting request 942952 from home:pmonrealgonzalez:branches:security:tls 2022-01-03 08:42:13 +00:00
openssl-1.1.1v.tar.gz Accepting request 1101915 from home:pmonrealgonzalez:branches:security:tls 2023-08-02 10:03:45 +00:00
openssl-1.1.1v.tar.gz.asc Accepting request 1101915 from home:pmonrealgonzalez:branches:security:tls 2023-08-02 10:03:45 +00:00
openssl-add_rfc3526_rfc7919.patch Accepting request 895194 from home:jsikes:branches:security:tls 2021-05-24 15:50:42 +00:00
openssl-assembly-pack-accelerate-scalar-multiplication.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
openssl-DEFAULT_SUSE_cipher.patch Accepting request 960455 from home:pmonrealgonzalez:branches:security:tls 2022-03-09 11:25:28 +00:00
openssl-dont-pass-zero-length-input-to-EVP_Cipher.patch Accepting request 1100559 from home:ohollmann:branches:security:tls 2023-07-25 08:04:18 +00:00
openssl-Enable-curve-spefific-ECDSA-implementations-via-EC_M.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
openssl-fips_fix_selftests_return_value.patch Accepting request 778004 from home:vitezslav_cizek:branches:security:tls 2020-02-21 15:33:18 +00:00
openssl-fips_mode.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-fips_selftest_upstream_drbg.patch Accepting request 836174 from home:vitezslav_cizek:branches:security:tls 2020-09-23 06:41:06 +00:00
openssl-fips-add-SHA3-selftest.patch Accepting request 776093 from home:jsikes:branches:security:tls 2020-02-19 08:42:05 +00:00
openssl-fips-clearerror.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-fips-dont_run_FIPS_module_installed.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-fips-ignore_broken_atexit_test.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-fips-run_selftests_only_when_module_is_complete.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-fips-selftests_in_nonfips_mode.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-Fix-9bf682f-which-broke-nistp224_method.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-keep_EVP_KDF_functions_version.patch Accepting request 767728 from home:vitezslav_cizek:branches:security:tls 2020-01-27 14:25:49 +00:00
openssl-OPENSSL_s390xcap.pod-list-msa9-facility-bit-155.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-pkgconfig.patch Accepting request 631304 from home:vitezslav_cizek:branches:security:tls 2018-08-24 10:39:49 +00:00
openssl-ppc64-config.patch Accepting request 631304 from home:vitezslav_cizek:branches:security:tls 2018-08-24 10:39:49 +00:00
openssl-riscv64-config.patch Accepting request 985766 from home:Andreas_Schwab:Factory 2022-07-07 02:47:54 +00:00
openssl-s390x-assembly-pack-accelerate-ECDSA.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
openssl-s390x-assembly-pack-accelerate-X25519-X448-Ed25519-and-Ed448.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
openssl-s390x-assembly-pack-add-OPENSSL_s390xcap-environment.patch Accepting request 980599 from home:jsikes:branches:security:tls 2022-06-07 06:28:40 +00:00
openssl-s390x-assembly-pack-add-OPENSSL_s390xcap-man-page.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-s390x-assembly-pack-add-support-for-pcc-and-kma-inst.patch Accepting request 980599 from home:jsikes:branches:security:tls 2022-06-07 06:28:40 +00:00
openssl-s390x-assembly-pack-cleanse-only-sensitive-fields.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-s390x-assembly-pack-fix-msa3-stfle-bit-detection.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-s390x-assembly-pack-fix-OPENSSL_s390xcap-z15-cpu-mas.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-s390x-assembly-pack-update-OPENSSL_s390xcap-3.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-s390x-fix-x448-and-x448-test-vector-ctime-for-x25519-and-x448.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
openssl-s390xcpuid.pl-fix-comment.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-ship_fips_standalone_hmac.patch Accepting request 766865 from home:vitezslav_cizek:branches:security:tls 2020-01-24 11:52:58 +00:00
openssl-truststore.patch Accepting request 631304 from home:vitezslav_cizek:branches:security:tls 2018-08-24 10:39:49 +00:00
openssl-unknown_dgst.patch Accepting request 786956 from home:vitezslav_cizek:branches:security:tls 2020-03-20 17:43:35 +00:00
openssl.keyring Accepting request 1089971 from security:tls:unstable 2023-05-31 09:13:51 +00:00
showciphers.c - Renamed from openssl-1_1_0 (bsc#1081335) 2018-02-16 12:13:08 +00:00