95f6e57134
Accepting request 1297962 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1297962
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=178
2025-08-09 17:57:14 +00:00
bdcec2b9a6
Accepting request 1291168 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1291168
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=177
2025-07-09 15:25:31 +00:00
654bec9160
Accepting request 1291088 from home:lmulling:branches:security:tls
...
- Update to 3.5.1
OBS-URL: https://build.opensuse.org/request/show/1291088
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=73
2025-07-08 06:49:23 +00:00
6e876f3805
Accepting request 1270034 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1270034
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=176
2025-04-29 14:39:55 +00:00
277ec98e36
- Update to 3.5.0
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=71
2025-04-16 13:02:40 +00:00
b76b9decce
Accepting request 1245481 from security:tls
...
Fix typo in changelog
OBS-URL: https://build.opensuse.org/request/show/1245481
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=175
2025-02-13 17:39:26 +00:00
4bbb5dbc3e
fix changelog
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=69
2025-02-12 21:17:45 +00:00
e725f30170
Accepting request 1245369 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1245369
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=174
2025-02-12 20:30:30 +00:00
4ec2233929
- Update to 3.2.4:
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=67
2025-02-12 12:11:17 +00:00
ab951e5a8c
Accepting request 1221595 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1221595
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=173
2024-11-06 15:49:15 +00:00
d1265fb1a0
- Update to 3.2.3
...
- Update to 3.2.1
- Update to 3.2.0
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=65
2024-11-05 19:07:55 +00:00
4593f4d9af
Accepting request 1217014 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1217014
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=172
2024-10-29 13:32:25 +00:00
80b12015bd
- Update to 3.1.7
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=63
2024-10-22 12:02:42 +00:00
0ea2c1fd50
Accepting request 1153156 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1153156
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=171
2024-03-01 22:33:57 +00:00
Otto Hollmann
2110a90a42
Accepting request 1150000 from home:pmonrealgonzalez:branches:security:tls
...
- Build the 32bit flavor of libopenssl-fips-provider [bsc#1220232]
* Update baselibs.conf
OBS-URL: https://build.opensuse.org/request/show/1150000
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=61
2024-02-29 10:13:34 +00:00
d5bc73df79
Accepting request 1142585 from security:tls
...
- New libopenssl-fips-provider package.
- Remove a hack for bsc#936563
bsc936563_hack.patch (bsc#936563)
- Build with no-ssl3, for details on why this is needed read
require us to patch dependant packages as the relevant
functions are still available (SSLv3_(client|server)_method)
- openssl.keyring: use Matt Caswells current key.
- openSSL 1.0.1j
- openssl.keyring: the 1.0.1i release was done by
- 012-Fix-eckey_priv_encode.patch eckey_priv_encode should
- 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch
it is already in RPM_OPT_FLAGS and is replaced by
- Remove the "gmp" and "capi" shared engines, nobody noticed
but they are just dummies that do nothing.
- Use enable-rfc3779 to allow projects such as rpki.net
- openssl-buffreelistbug-aka-CVE-2010-5298.patch fix
- openssl-gcc-attributes.patch: fix thinko, CRYPTO_realloc_clean does
- openssl-gcc-attributes.patch
- additional changes required for FIPS validation( from Fedora repo)
- Remove GCC option "-O3" for compiliation issue of ARM version
Modify files: README-FIPS.txt openssl.spec
Add file: CVE-2013-6450.patch
- Fixed bnc#856687, openssl: crash when using TLS 1.2
Add file: CVE-2013-6449.patch
- 0001-libcrypto-Hide-library-private-symbols.patch
This patch is however not 100% complete, as some private library
symbols are declared in public headers that shall not be touched
- openssl-1.0.1c-ipv6-apps.patch:
- Fix armv6l arch (armv7 was previously used to build armv6 which
OBS-URL: https://build.opensuse.org/request/show/1142585
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=170
2024-01-30 17:25:03 +00:00
5fe9d172ce
Accepting request 1142575 from home:pmonrealgonzalez:branches:security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1142575
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=59
2024-01-29 15:53:58 +00:00
Otto Hollmann
156e7a1569
Accepting request 1129507 from home:ohollmann:branches:security:tls
...
- Update to 3.2.0
- Remove a hack for bsc#936563
bsc936563_hack.patch (bsc#936563)
- Build with no-ssl3, for details on why this is needed read
require us to patch dependant packages as the relevant
functions are still available (SSLv3_(client|server)_method)
- openssl.keyring: use Matt Caswells current key.
- openSSL 1.0.1j
- openssl.keyring: the 1.0.1i release was done by
- 012-Fix-eckey_priv_encode.patch eckey_priv_encode should
- 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch
it is already in RPM_OPT_FLAGS and is replaced by
- Remove the "gmp" and "capi" shared engines, nobody noticed
but they are just dummies that do nothing.
- Use enable-rfc3779 to allow projects such as rpki.net
- openssl-buffreelistbug-aka-CVE-2010-5298.patch fix
- openssl-gcc-attributes.patch: fix thinko, CRYPTO_realloc_clean does
- openssl-gcc-attributes.patch
- additional changes required for FIPS validation( from Fedora repo)
- Remove GCC option "-O3" for compiliation issue of ARM version
Modify files: README-FIPS.txt openssl.spec
Add file: CVE-2013-6450.patch
- Fixed bnc#856687, openssl: crash when using TLS 1.2
Add file: CVE-2013-6449.patch
- 0001-libcrypto-Hide-library-private-symbols.patch
This patch is however not 100% complete, as some private library
symbols are declared in public headers that shall not be touched
- openssl-1.0.1c-ipv6-apps.patch:
- Fix armv6l arch (armv7 was previously used to build armv6 which
OBS-URL: https://build.opensuse.org/request/show/1129507
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=58
2023-11-28 11:04:46 +00:00
5eb5e9350c
Accepting request 1120188 from security:tls
...
- Update to 3.1.4
OBS-URL: https://build.opensuse.org/request/show/1120188
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=169
2023-10-27 20:26:58 +00:00
Otto Hollmann
fd17b786f6
Accepting request 1120050 from security:tls:unstable
...
OBS-URL: https://build.opensuse.org/request/show/1120050
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=56
2023-10-24 16:02:17 +00:00
6a1ba46ad1
Accepting request 1113789 from security:tls
...
- Update to 3.1.3
OBS-URL: https://build.opensuse.org/request/show/1113789
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=168
2023-09-29 19:12:22 +00:00
Otto Hollmann
369b608dcd
Accepting request 1112482 from home:ohollmann:branches:security:tls
...
- Update to 3.1.3
OBS-URL: https://build.opensuse.org/request/show/1112482
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=54
2023-09-20 08:08:36 +00:00
61e0b108e5
Accepting request 1101935 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1101935
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=167
2023-08-04 13:02:48 +00:00
f37b81a3b9
Accepting request 1101931 from home:pmonrealgonzalez:branches:security:tls
...
- Update to 3.1.2
OBS-URL: https://build.opensuse.org/request/show/1101931
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=52
2023-08-02 10:04:36 +00:00
9a2b64aee3
Accepting request 1095606 from security:tls
...
- Improve cross-package provides/conflicts [boo#1210313]
* Add Conflicts: openssl(cli) for mutual exclusion between
openssl, openssl-1_0_0 and libressl.
OBS-URL: https://build.opensuse.org/request/show/1095606
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=166
2023-06-29 15:27:48 +00:00
Otto Hollmann
933d4f991f
Accepting request 1094354 from security:tls:unstable
...
- Improve cross-package provides/conflicts [boo#1210313]
* Add Conflicts: openssl(cli) for mutual exclusion between
openssl, openssl-1_0_0 and libressl.
OBS-URL: https://build.opensuse.org/request/show/1094354
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=50
2023-06-21 13:12:38 +00:00
15c6c27134
Accepting request 1089934 from security:tls
...
- Update to 3.1.1
- Update to 3.1.0
OBS-URL: https://build.opensuse.org/request/show/1089934
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=165
2023-06-01 15:18:45 +00:00
Otto Hollmann
33e78aed93
Accepting request 1089849 from home:ohollmann:branches:security:tls
...
- Update to 3.1.1
OBS-URL: https://build.opensuse.org/request/show/1089849
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=48
2023-05-30 16:00:41 +00:00
Otto Hollmann
0d4475652c
Accepting request 1071823 from home:ohollmann:branches:security:tls
...
- Update to 3.1.0
OBS-URL: https://build.opensuse.org/request/show/1071823
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=47
2023-03-14 16:01:53 +00:00
69b47f12bd
Accepting request 1063739 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1063739
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=164
2023-02-20 16:45:02 +00:00
Martin Pluskal
dda6eff298
Accepting request 1063661 from home:ohollmann:branches:security:tls
...
- Update to 3.0.8
OBS-URL: https://build.opensuse.org/request/show/1063661
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=46
2023-02-08 08:07:35 +00:00
88a897c1e2
Accepting request 1062223 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1062223
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=163
2023-02-02 17:08:02 +00:00
42b4266fec
Accepting request 1062221 from security:tls:unstable
...
- Update to 3.0.7
- Update to 3.0.6
- Update to 3.0.5
- Update to 3.0.4
- Update to 3.0.3
- Update to 3.0.2
- Update to 3.0.1
- Update to 3.0.0
- Update to 3.0.0 Beta 2
- Update to 3.0.0 Beta 1
- Update to 3.0.0 Alpha 17
- Update to 3.0.0 Alpha 16
- Update to 3.0.0 Alpha 15
- Update to 3.0.0 Alpha 14
- Update to 3.0.0 Alpha 13
- Update to 3.0.0 Alpha 12
- Update to 3.0.0 Alpha 11
- Update to 3.0.0 Alpha 10
- Update to 3.0.0 Alpha 9
OBS-URL: https://build.opensuse.org/request/show/1062221
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=45
2023-01-31 12:14:59 +00:00
54b7b83c91
Accepting request 1032896 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/1032896
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=162
2022-11-03 18:13:00 +00:00
941923fd38
Accepting request 1032888 from home:ohollmann:branches:security:tls
...
- updated to 1.1.s release
OBS-URL: https://build.opensuse.org/request/show/1032888
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=44
2022-11-02 13:56:42 +00:00
d9c933df11
Accepting request 987362 from security:tls
...
- updated to 1.1.q release
OBS-URL: https://build.opensuse.org/request/show/987362
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=161
2022-07-08 12:01:25 +00:00
98ac383496
Accepting request 987342 from home:msmeissn:branches:security:tls
...
- updated to 1.1.q release
OBS-URL: https://build.opensuse.org/request/show/987342
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=43
2022-07-07 07:35:38 +00:00
71a3aba26b
Accepting request 985242 from security:tls
...
- Update to 1.1.1p release
OBS-URL: https://build.opensuse.org/request/show/985242
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=160
2022-06-28 13:21:09 +00:00
59b58b2546
Accepting request 985241 from home:msmeissn:branches:security:tls
...
- Update to 1.1.1p release
OBS-URL: https://build.opensuse.org/request/show/985241
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=42
2022-06-27 07:48:29 +00:00
e7e6e1f303
Accepting request 981143 from security:tls
...
- Update to 1.1.1o release (forwarded request 981125 from msmeissn)
OBS-URL: https://build.opensuse.org/request/show/981143
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=159
2022-06-09 12:09:48 +00:00
21dec5ccdf
Accepting request 981125 from home:msmeissn:branches:security:tls
...
- Update to 1.1.1o release
OBS-URL: https://build.opensuse.org/request/show/981125
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=41
2022-06-07 12:01:44 +00:00
c9888ff6d2
Accepting request 975775 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/975775
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=158
2022-05-13 21:03:01 +00:00
c70cc7d040
Accepting request 975096 from home:jengelh:branches:security:tls
...
- Use same %description as openssl-3 (describe the software, not the project).
OBS-URL: https://build.opensuse.org/request/show/975096
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=40
2022-05-09 10:35:25 +00:00
b7d4914087
Accepting request 961993 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/961993
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=157
2022-03-17 16:01:26 +00:00
0313fcccb9
Accepting request 961991 from home:pmonrealgonzalez:branches:security:tls
...
- Update to 1.1.1n release
OBS-URL: https://build.opensuse.org/request/show/961991
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=39
2022-03-15 18:24:42 +00:00
d158e524ba
Accepting request 943541 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/943541
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=156
2022-01-07 11:44:22 +00:00
700aeb30e6
Accepting request 942953 from home:pmonrealgonzalez:branches:security:tls
...
- Update to 1.1.1m release
OBS-URL: https://build.opensuse.org/request/show/942953
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=38
2022-01-03 08:42:05 +00:00
4e62601b79
Accepting request 914577 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/914577
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=155
2021-08-28 20:28:37 +00:00
ae4363981e
Accepting request 914576 from home:pmonrealgonzalez:branches:security:tls
...
- Update to 1.1.1l release
OBS-URL: https://build.opensuse.org/request/show/914576
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=37
2021-08-27 11:05:13 +00:00
2c300a4137
Accepting request 897177 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/897177
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=154
2021-06-05 21:31:20 +00:00
61375c96e5
Accepting request 897175 from home:dimstar:Factory
...
Do not provide ssl - it's the symbol used to conflict the various ssl implementations; fixup history, as this package could never exist like this
OBS-URL: https://build.opensuse.org/request/show/897175
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=36
2021-06-03 11:06:47 +00:00
03ad9b5de8
Accepting request 896339 from home:dimstar:Factory
...
- Provide openssl(cli) and ssl by the meta package: Together with
the suggests openssl in the base patterns, any consumer of these
symbols should get the openssl meta package as candidate, which
allows us to easier change the recommended default version.
OBS-URL: https://build.opensuse.org/request/show/896339
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=35
2021-05-31 11:13:16 +00:00
Richard Brown
b14297c8ba
Accepting request 882119 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/882119
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=153
2021-04-08 19:01:23 +00:00
8c69be8980
Accepting request 881425 from home:jsikes:branches:security:tls
...
Version update
OBS-URL: https://build.opensuse.org/request/show/881425
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=34
2021-03-30 08:17:53 +00:00
Richard Brown
c512d4ed06
Accepting request 874307 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/874307
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=152
2021-03-03 17:33:27 +00:00
afb8eed7f6
Accepting request 873680 from home:pmonrealgonzalez:branches:security:tls
...
- Update to 1.1.1j release
OBS-URL: https://build.opensuse.org/request/show/873680
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=33
2021-02-22 12:20:11 +00:00
de3e0f894d
Accepting request 854069 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1i release
OBS-URL: https://build.opensuse.org/request/show/854069
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=32
2020-12-14 11:22:10 +00:00
58a376ab42
Accepting request 836221 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/836221
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=151
2020-10-18 14:17:46 +00:00
ced74d8631
Accepting request 836173 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1h release
OBS-URL: https://build.opensuse.org/request/show/836173
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=31
2020-09-23 06:41:04 +00:00
ca7dd1b39c
Accepting request 796089 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/796089
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=150
2020-04-27 21:27:41 +00:00
Martin Pluskal
76a7de0b98
Accepting request 796076 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1g release
OBS-URL: https://build.opensuse.org/request/show/796076
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=30
2020-04-21 15:13:11 +00:00
0d5f2ebd9e
Accepting request 790185 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/790185
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=149
2020-04-02 15:42:28 +00:00
90ef91ed19
Accepting request 790181 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1f release
OBS-URL: https://build.opensuse.org/request/show/790181
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=29
2020-03-31 14:27:25 +00:00
Vítězslav Čížek
9956f6eae8
Accepting request 787238 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1e release
OBS-URL: https://build.opensuse.org/request/show/787238
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=28
2020-03-22 11:19:18 +00:00
7890860f65
Accepting request 753239 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/753239
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=148
2019-12-07 14:13:41 +00:00
Tomáš Chvátal
5605777932
Accepting request 753234 from home:dimstar:Factory
...
Fix build in Staging:N with RPM 4.15
OBS-URL: https://build.opensuse.org/request/show/753234
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=27
2019-12-03 13:04:43 +00:00
e5c610f06b
Accepting request 730207 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/730207
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=147
2019-11-20 12:42:24 +00:00
101b1f684e
Accepting request 730186 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1d release
OBS-URL: https://build.opensuse.org/request/show/730186
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=26
2019-09-11 15:32:19 +00:00
4cdb995447
Accepting request 706515 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/706515
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=146
2019-06-18 12:44:27 +00:00
Tomáš Chvátal
a4b427864c
Accepting request 706514 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1c release
OBS-URL: https://build.opensuse.org/request/show/706514
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=25
2019-05-30 13:21:00 +00:00
95a422834c
Accepting request 681715 from security:tls
...
- Update to 1.1.1b release
OBS-URL: https://build.opensuse.org/request/show/681715
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=145
2019-05-16 19:54:50 +00:00
Tomáš Chvátal
010eeaff31
Accepting request 680155 from home:pmonrealgonzalez:branches:security:tls
...
- Update to 1.1.1b release
OBS-URL: https://build.opensuse.org/request/show/680155
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=24
2019-02-28 15:36:08 +00:00
Tomáš Chvátal
f89f52bf78
Accepting request 650514 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1a release
OBS-URL: https://build.opensuse.org/request/show/650514
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=23
2018-11-20 14:58:06 +00:00
Vítězslav Čížek
ed50f7c230
Accepting request 635008 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1 release
OBS-URL: https://build.opensuse.org/request/show/635008
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=22
2018-09-11 15:12:30 +00:00
Vítězslav Čížek
4455ff4fb3
Accepting request 631305 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.1~pre9 (Beta 7)
OBS-URL: https://build.opensuse.org/request/show/631305
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=21
2018-08-24 10:39:43 +00:00
Tomáš Chvátal
dcffbd897d
Accepting request 629238 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.0i release
OBS-URL: https://build.opensuse.org/request/show/629238
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=20
2018-08-14 16:24:37 +00:00
bd189bb34e
Accepting request 591688 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/591688
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=144
2018-03-30 10:00:06 +00:00
Tomáš Chvátal
1ab3b9a360
Accepting request 591685 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.0h release
OBS-URL: https://build.opensuse.org/request/show/591685
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=19
2018-03-27 15:19:47 +00:00
5ab1c4f0aa
Accepting request 578326 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/578326
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=143
2018-03-01 11:04:40 +00:00
Vítězslav Čížek
357c68ceaa
Accepting request 578317 from home:vitezslav_cizek:branches:security:tls
...
- update baselibs.conf
OBS-URL: https://build.opensuse.org/request/show/578317
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=18
2018-02-20 11:18:04 +00:00
Vítězslav Čížek
450bc8968e
Accepting request 577235 from home:vitezslav_cizek:branches:security:tls
...
- change the sonum to 1.1, as all the minor versions keep ABI
compatibility (bsc#1081335)
OBS-URL: https://build.opensuse.org/request/show/577235
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=17
2018-02-16 12:13:39 +00:00
e03e941b38
Accepting request 541546 from security:tls
...
Automatic submission by obs-autosubmit
OBS-URL: https://build.opensuse.org/request/show/541546
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=142
2017-11-26 09:34:40 +00:00
3b4f48bae5
Accepting request 538750 from security:tls
...
OBS-URL: https://build.opensuse.org/request/show/538750
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=141
2017-11-10 13:37:17 +00:00
Vítězslav Čížek
3e27fb1ef2
Accepting request 539342 from home:vitezslav_cizek:branches:security:tls
...
- Update to 1.1.0g release
OBS-URL: https://build.opensuse.org/request/show/539342
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=16
2017-11-06 15:49:22 +00:00
Tomáš Chvátal
3a7d8fec85
Accepting request 538520 from home:vitezslav_cizek:branches:security:tls
...
- Revert version back to 1.0.2m to get security fixes quickly to
Tumbleweed
* OpenSSL Security Advisory [02 Nov 2017] (bsc#1066242,bsc#1056058)
OBS-URL: https://build.opensuse.org/request/show/538520
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=15
2017-11-03 12:35:59 +00:00
Tomáš Chvátal
fdaa161c0b
- Switch to 1.1.0f release as default again
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=14
2017-07-31 11:16:13 +00:00
5725cb2f12
Accepting request 509431 from security:tls
...
1
OBS-URL: https://build.opensuse.org/request/show/509431
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=140
2017-07-17 07:01:38 +00:00
Tomáš Chvátal
b52242687e
Accepting request 509430 from home:vitezslav_cizek:branches:security:tls
...
- Obsolete openssl-debuginfo
* the package doesn't exist any more, has been replaced by
openssl-{so_version}-debuginfo (bsc#1040172)
OBS-URL: https://build.opensuse.org/request/show/509430
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=13
2017-07-11 12:03:16 +00:00
e3b20e69a2
Accepting request 506205 from security:tls
...
- Revert back to 1.0.2l for now so we get new fixes of 1.0 openssl
to tumbleweed
- Update to 1.1.0f release
- Switch default to openssl-1.1.0
OBS-URL: https://build.opensuse.org/request/show/506205
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=139
2017-06-27 08:19:50 +00:00
Tomáš Chvátal
d6bd27301a
- Revert back to 1.0.2l for now so we get new fixes of 1.0 openssl
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=12
2017-06-26 09:13:37 +00:00
Tomáš Chvátal
0083957a62
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=11
2017-06-26 09:13:25 +00:00
Tomáš Chvátal
1329b4c8df
- Revert back to 1.0.0l for now so we get new fixes of 1.0 openssl
...
to tumbleweed
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=10
2017-06-23 15:24:24 +00:00
Tomáš Chvátal
2ce6cf08f7
- Update to 1.1.0f release
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=9
2017-05-29 10:17:01 +00:00
Tomáš Chvátal
1c3f141485
- Switch default to openssl-1.1.0
...
OBS-URL: https://build.opensuse.org/package/show/security:tls/openssl?expand=0&rev=8
2017-05-24 08:06:09 +00:00
9d1003ce7d
Accepting request 492985 from security:tls
...
- Provide pkgconfig(openssl)
- Provide basic baselibs.conf for 32bit subpackages
- Specify this package as noarch (as we just provide README files)
- Fix typo in openssl requires
- Add dependency on the branched devel package
- Provide all pkgconfig symbols to hide them in versioned subpkgs
- This allows us to propagate only the preffered version of openssl
while allowing us to add extra openssl only as additional dependency
- Remove the ssl provides as it is applicable for only those that
really provide it
- Prepare to split to various subpackages converting main one to
dummy package
- Reduce to only provide main pkg and devel and depend on proper
soversioned package
- Version in this package needs to be synced with the one provided
by the split package
- Remove all the patches, now in the proper versioned namespace:
* merge_from_0.9.8k.patch
* openssl-1.0.0-c_rehash-compat.diff
* bug610223.patch
* openssl-ocloexec.patch
* openssl-1.0.2a-padlock64.patch
* openssl-fix-pod-syntax.diff
* openssl-truststore.patch
* compression_methods_switch.patch
* 0005-libssl-Hide-library-private-symbols.patch
OBS-URL: https://build.opensuse.org/request/show/492985
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=138
2017-05-18 18:46:33 +00:00
491c541700
Accepting request 485219 from Base:System
...
- Remove O3 from optflags, no need to not rely on distro wide settings
- Remove conditions for sle10 and sle11, we care only about sle12+
- USE SUSE instead of SuSE in readme
- Pass over with spec-cleaner (forwarded request 485192 from scarabeus_iv)
OBS-URL: https://build.opensuse.org/request/show/485219
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=137
2017-04-11 07:29:32 +00:00
de4d1be4ab
Accepting request 454260 from Base:System
...
- fix X509_CERT_FILE path (bsc#1022271) and rename
updated openssl-1.0.1e-truststore.diff to openssl-truststore.patch (forwarded request 454258 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/454260
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=136
2017-02-07 10:57:29 +00:00
f7574150c5
Accepting request 452919 from Base:System
...
- Updated to openssl 1.0.2k
- bsc#1009528 / CVE-2016-7055: openssl: Montgomery multiplication may produce incorrect results
- bsc#1019334 / CVE-2016-7056: openssl: ECSDA P-256 timing attack key recovery
- bsc#1022085 / CVE-2017-3731: openssl: Truncated packet could crash via OOB read
- bsc#1022086 / CVE-2017-3732: openssl: BN_mod_exp may produce incorrect results on x86_64
OBS-URL: https://build.opensuse.org/request/show/452919
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=135
2017-01-31 11:37:40 +00:00
021091d55f
Accepting request 433063 from Base:System
...
- resume reading from /dev/urandom when interrupted by a signal
(bsc#995075)
* add openssl-randfile_fread_interrupt.patch
- add FIPS changes from SP2:
- fix problems with locking in FIPS mode (bsc#992120)
* duplicates: bsc#991877, bsc#991193, bsc#990392, bsc#990428
and bsc#990207
* bring back openssl-fipslocking.patch
- drop openssl-fips_RSA_compute_d_with_lcm.patch (upstream)
(bsc#984323)
- don't check for /etc/system-fips (bsc#982268)
* add openssl-fips-dont_run_FIPS_module_installed.patch
- refresh openssl-fips-rsagen-d-bits.patch (forwarded request 431508 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/433063
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=134
2016-10-10 14:17:30 +00:00
6a01eea162
Accepting request 430498 from Base:System
...
- update to openssl-1.0.2j
* Missing CRL sanity check (CVE-2016-7052 bsc#1001148)
- OpenSSL Security Advisory [22 Sep 2016] (bsc#999665)
Severity: High
* OCSP Status Request extension unbounded memory growth
(CVE-2016-6304) (bsc#999666)
Severity: Low
* Pointer arithmetic undefined behaviour (CVE-2016-2177) (bsc#982575)
* Constant time flag not preserved in DSA signing (CVE-2016-2178) (bsc#983249)
* DTLS buffered message DoS (CVE-2016-2179) (bsc#994844)
* OOB read in TS_OBJ_print_bio() (CVE-2016-2180) (bsc#990419)
* DTLS replay protection DoS (CVE-2016-2181) (bsc#994749)
* OOB write in BN_bn2dec() (CVE-2016-2182) (bsc#993819)
* Birthday attack against 64-bit block ciphers (SWEET32)
(CVE-2016-2183) (bsc#995359)
* Malformed SHA512 ticket DoS (CVE-2016-6302) (bsc#995324)
* OOB write in MDC2_Update() (CVE-2016-6303) (bsc#995377)
* Certificate message OOB reads (CVE-2016-6306) (bsc#999668)
- update to openssl-1.0.2i
* remove patches:
openssl-1.0.2a-new-fips-reqs.patch
openssl-1.0.2e-fips.patch
* add patches:
openssl-1.0.2i-fips.patch
openssl-1.0.2i-new-fips-reqs.patch
- fix crash in print_notice (bsc#998190)
* add openssl-print_notice-NULL_crash.patch
OBS-URL: https://build.opensuse.org/request/show/430498
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=133
2016-09-28 13:03:33 +00:00
fa61203f41
Accepting request 393456 from Base:System
...
- OpenSSL Security Advisory [3rd May 2016]
- update to 1.0.2h (boo#977584, boo#977663)
* Prevent padding oracle in AES-NI CBC MAC check
A MITM attacker can use a padding oracle attack to decrypt traffic
when the connection uses an AES CBC cipher and the server support
AES-NI.
(CVE-2016-2107, boo#977616)
* Fix EVP_EncodeUpdate overflow
An overflow can occur in the EVP_EncodeUpdate() function which is used for
Base64 encoding of binary data. If an attacker is able to supply very large
amounts of input data then a length check can overflow resulting in a heap
corruption.
(CVE-2016-2105, boo#977614)
* Fix EVP_EncryptUpdate overflow
An overflow can occur in the EVP_EncryptUpdate() function. If an attacker
is able to supply very large amounts of input data after a previous call to
EVP_EncryptUpdate() with a partial block then a length check can overflow
resulting in a heap corruption.
(CVE-2016-2106, boo#977615)
* Prevent ASN.1 BIO excessive memory allocation
When ASN.1 data is read from a BIO using functions such as d2i_CMS_bio()
a short invalid encoding can casuse allocation of large amounts of memory
potentially consuming excessive resources or exhausting memory.
(CVE-2016-2109, boo#976942)
* EBCDIC overread
ASN1 Strings that are over 1024 bytes can cause an overread in applications
using the X509_NAME_oneline() function on EBCDIC systems. This could result
in arbitrary stack data being returned in the buffer.
(CVE-2016-2176, boo#978224)
* Modify behavior of ALPN to invoke callback after SNI/servername (forwarded request 393446 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/393456
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=132
2016-05-08 08:38:49 +00:00
fa96b8cfdd
Accepting request 390473 from Base:System
...
1
OBS-URL: https://build.opensuse.org/request/show/390473
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=131
2016-04-22 14:17:16 +00:00
2ebd052507
Accepting request 363602 from Base:System
...
- update to 1.0.2g (bsc#968044)
* Disable weak ciphers in SSLv3 and up in default builds of OpenSSL.
Builds that are not configured with "enable-weak-ssl-ciphers" will not
provide any "EXPORT" or "LOW" strength ciphers.
* Disable SSLv2 default build, default negotiation and weak ciphers. SSLv2
is by default disabled at build-time. Builds that are not configured with
"enable-ssl2" will not support SSLv2. Even if "enable-ssl2" is used,
users who want to negotiate SSLv2 via the version-flexible SSLv23_method()
will need to explicitly call either of:
SSL_CTX_clear_options(ctx, SSL_OP_NO_SSLv2);
or
SSL_clear_options(ssl, SSL_OP_NO_SSLv2);
(CVE-2016-0800)
* Fix a double-free in DSA code
(CVE-2016-0705)
* Disable SRP fake user seed to address a server memory leak.
Add a new method SRP_VBASE_get1_by_user that handles the seed properly.
(CVE-2016-0798)
* Fix BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption
(CVE-2016-0797)
*) Side channel attack on modular exponentiation
http://cachebleed.info .
(CVE-2016-0702)
*) Change the req app to generate a 2048-bit RSA/DSA key by default,
if no keysize is specified with default_bits. This fixes an
omission in an earlier change that changed all RSA/DSA key generation
apps to use 2048 bits by default. (forwarded request 363599 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/363602
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=130
2016-03-05 10:21:18 +00:00
Stephan Kulow
ed81eb44e1
Accepting request 347504 from Base:System
...
- update to 1.0.2e
* fixes five security vulnerabilities
* Anon DH ServerKeyExchange with 0 p parameter
(CVE-2015-1794) (bsc#957984)
* BN_mod_exp may produce incorrect results on x86_64
(CVE-2015-3193) (bsc#957814)
* Certificate verify crash with missing PSS parameter
(CVE-2015-3194) (bsc#957815)
* X509_ATTRIBUTE memory leak
(CVE-2015-3195) (bsc#957812)
* Race condition handling PSK identify hint
(CVE-2015-3196) (bsc#957813)
- pulled a refreshed fips patch from Fedora
* openssl-1.0.2a-fips.patch was replaced by
openssl-1.0.2e-fips.patch
- refresh openssl-ocloexec.patch
OBS-URL: https://build.opensuse.org/request/show/347504
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=129
2015-12-13 08:36:18 +00:00
Stephan Kulow
7f772876ff
Accepting request 315685 from Base:System
...
- update to 1.0.2d
* fixes CVE-2015-1793 (bsc#936746)
Alternate chains certificate forgery
During certificate verfification, OpenSSL will attempt to find an
alternative certificate chain if the first attempt to build such a chain
fails. An error in the implementation of this logic can mean that an
attacker could cause certain checks on untrusted certificates to be
bypassed, such as the CA flag, enabling them to use a valid leaf
certificate to act as a CA and "issue" an invalid certificate.
- drop openssl-fix_invalid_manpage_name.patch (upstream) (forwarded request 315682 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/315685
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=128
2015-07-12 20:51:54 +00:00
bdf3209e96
Accepting request 310849 from Base:System
...
- update to 1.0.2a
* Major changes since 1.0.1:
- Suite B support for TLS 1.2 and DTLS 1.2
- Support for DTLS 1.2
- TLS automatic EC curve selection.
- API to set TLS supported signature algorithms and curves
- SSL_CONF configuration API.
- TLS Brainpool support.
- ALPN support.
- CMS support for RSA-PSS, RSA-OAEP, ECDH and X9.42 DH.
- packaging changes:
* merged patches modifying CIPHER_LIST into one, dropping:
- openssl-1.0.1e-add-suse-default-cipher-header.patch
- openssl-libssl-noweakciphers.patch
* fix a manpage with invalid name
- added openssl-fix_invalid_manpage_name.patch
* remove a missing fips function
- openssl-missing_FIPS_ec_group_new_by_curve_name.patch
* reimported patches from Fedora
dropped patches:
- openssl-1.0.1c-default-paths.patch
- openssl-1.0.1c-ipv6-apps.patch
- openssl-1.0.1e-fips-ctor.patch
- openssl-1.0.1e-fips-ec.patch
- openssl-1.0.1e-fips.patch
- openssl-1.0.1e-new-fips-reqs.patch
- VIA_padlock_support_on_64systems.patch
added patches:
- openssl-1.0.2a-default-paths.patch
- openssl-1.0.2a-fips-ctor.patch (forwarded request 309611 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/310849
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=127
2015-06-08 06:25:56 +00:00
42aa3a9eb7
Accepting request 291607 from Base:System
...
- security update:
* CVE-2015-0209 (bnc#919648)
- Fix a failure to NULL a pointer freed on error
* CVE-2015-0286 (bnc#922496)
- Segmentation fault in ASN1_TYPE_cmp
* CVE-2015-0287 (bnc#922499)
- ASN.1 structure reuse memory corruption
* CVE-2015-0288 x509: (bnc#920236)
- added missing public key is not NULL check
* CVE-2015-0289 (bnc#922500)
- PKCS7 NULL pointer dereferences
* CVE-2015-0293 (bnc#922488)
- Fix reachable assert in SSLv2 servers
* added patches:
openssl-CVE-2015-0209.patch
openssl-CVE-2015-0286.patch
openssl-CVE-2015-0287.patch
openssl-CVE-2015-0288.patch
openssl-CVE-2015-0289.patch
openssl-CVE-2015-0293.patch (forwarded request 291606 from vitezslav_cizek)
OBS-URL: https://build.opensuse.org/request/show/291607
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=126
2015-03-23 11:16:06 +00:00
840c62159b
Accepting request 284003 from Base:System
...
- The DATE stamp moved from crypto/Makefile to crypto/buildinf.h,
replace it there (bsc#915947)
OBS-URL: https://build.opensuse.org/request/show/284003
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=125
2015-02-06 09:50:56 +00:00
9f18cdd3d8
Accepting request 280570 from Base:System
...
- openssl 1.0.1k release
bsc#912294 CVE-2014-3571: Fix DTLS segmentation fault in dtls1_get_record.
bsc#912292 CVE-2015-0206: Fix DTLS memory leak in dtls1_buffer_record.
bsc#911399 CVE-2014-3569: Fix issue where no-ssl3 configuration sets method to NULL.
bsc#912015 CVE-2014-3572: Abort handshake if server key exchange
message is omitted for ephemeral ECDH ciphersuites.
bsc#912014 CVE-2015-0204: Remove non-export ephemeral RSA code on client and server.
bsc#912293 CVE-2015-0205: Fixed issue where DH client certificates are accepted without verification.
bsc#912018 CVE-2014-8275: Fix various certificate fingerprint issues.
bsc#912296 CVE-2014-3570: Correct Bignum squaring.
and other bugfixes.
- openssl.keyring: use Matt Caswells current key.
pub 2048R/0E604491 2013-04-30
uid Matt Caswell <frodo@baggins.org >
uid Matt Caswell <matt@openssl.org >
sub 2048R/E3C21B70 2013-04-30
- openssl-1.0.1e-fips.patch: rediffed
- openssl-1.0.1i-noec2m-fix.patch: removed (upstream)
- openssl-ocloexec.patch: rediffed
OBS-URL: https://build.opensuse.org/request/show/280570
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=124
2015-01-20 20:53:46 +00:00
984610bf7f
Accepting request 264696 from Base:System
...
I also submitted libcamgm that matches this submit
- suse_version 10.1 & 10.2 x86_64 can not enable-ec_nistp_64_gcc_128
- openssl-1.0.1i-noec2m-fix.patch: only report the Elliptic Curves
we actually support (not the binary ones) (bnc#905037)
- openSUSE < 11.2 doesn't have accept4()
- openSSL 1.0.1j
* Fix SRTP Memory Leak (CVE-2014-3513)
* Session Ticket Memory Leak (CVE-2014-3567)
* Add SSL 3.0 Fallback protection (TLS_FALLBACK_SCSV)
* Build option no-ssl3 is incomplete (CVE-2014-3568)
OBS-URL: https://build.opensuse.org/request/show/264696
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=123
2014-12-17 18:18:04 +00:00
Stephan Kulow
0985bc43b2
Accepting request 245642 from Base:System
...
- openssl.keyring: the 1.0.1i release was done by
Matt Caswell <matt@openssl.org > UK 0E604491
- rename README.SuSE (old spelling) to README.SUSE (bnc#889013)
- update to 1.0.1i
* Fix SRP buffer overrun vulnerability. Invalid parameters passed to the
SRP code can be overrun an internal buffer. Add sanity check that
g, A, B < N to SRP code.
(CVE-2014-3512)
* A flaw in the OpenSSL SSL/TLS server code causes the server to negotiate
TLS 1.0 instead of higher protocol versions when the ClientHello message
is badly fragmented. This allows a man-in-the-middle attacker to force a
downgrade to TLS 1.0 even if both the server and the client support a
higher protocol version, by modifying the client's TLS records.
(CVE-2014-3511)
* OpenSSL DTLS clients enabling anonymous (EC)DH ciphersuites are subject
to a denial of service attack. A malicious server can crash the client
with a null pointer dereference (read) by specifying an anonymous (EC)DH
ciphersuite and sending carefully crafted handshake messages.
(CVE-2014-3510)
* By sending carefully crafted DTLS packets an attacker could cause openssl
to leak memory. This can be exploited through a Denial of Service attack.
(CVE-2014-3507)
* An attacker can force openssl to consume large amounts of memory whilst
processing DTLS handshake messages. This can be exploited through a
Denial of Service attack.
(CVE-2014-3506)
* An attacker can force an error condition which causes openssl to crash
whilst processing DTLS packets due to memory being freed twice. This
OBS-URL: https://build.opensuse.org/request/show/245642
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=121
2014-08-25 09:03:07 +00:00
Stephan Kulow
0dd078bb95
Accepting request 241763 from Base:System
...
- Move manpages around such that .3 is in openssl-doc
and .1 in openssl (forwarded request 241758 from jengelh)
OBS-URL: https://build.opensuse.org/request/show/241763
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=120
2014-07-27 06:25:44 +00:00
Stephan Kulow
a57bd6b997
Accepting request 238467 from Base:System
...
- recommend: ca-certificates-mozilla instead of openssl-certs
OBS-URL: https://build.opensuse.org/request/show/238467
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=119
2014-06-25 13:24:16 +00:00
Stephan Kulow
66d6e48709
Accepting request 236989 from Base:System
...
NOTE:
I submitted perl-Net-SSLeay 1.64 update to devel:languages:perl which
fixes its regression.
- updated openssl to 1.0.1h (bnc#880891):
- CVE-2014-0224: Fix for SSL/TLS MITM flaw. An attacker using a carefully crafted
handshake can force the use of weak keying material in OpenSSL
SSL/TLS clients and servers.
- CVE-2014-0221: Fix DTLS recursion flaw. By sending an invalid DTLS handshake to an
OpenSSL DTLS client the code can be made to recurse eventually crashing
in a DoS attack.
- CVE-2014-0195: Fix DTLS invalid fragment vulnerability. A buffer
overrun attack can be triggered by sending invalid DTLS fragments to
an OpenSSL DTLS client or server. This is potentially exploitable to
run arbitrary code on a vulnerable client or server.
- CVE-2014-3470: Fix bug in TLS code where clients enable anonymous
ECDH ciphersuites are subject to a denial of service attack.
- openssl-buffreelistbug-aka-CVE-2010-5298.patch: removed, upstream
- CVE-2014-0198.patch: removed, upstream
- 0009-Fix-double-frees.patch: removed, upstream
- 0012-Fix-eckey_priv_encode.patch: removed, upstream
- 0017-Double-free-in-i2o_ECPublicKey.patch: removed, upstream
- 0018-fix-coverity-issues-966593-966596.patch: removed, upstream
- 0020-Initialize-num-properly.patch: removed, upstream
- 0022-bignum-allow-concurrent-BN_MONT_CTX_set_locked.patch: removed, upstream
- 0023-evp-prevent-underflow-in-base64-decoding.patch: removed, upstream
- 0024-Fixed-NULL-pointer-dereference-in-PKCS7_dataDecode-r.patch: removed, upstream
- 0025-fix-coverity-issue-966597-error-line-is-not-always-i.patch: removed, upstream
- 0001-libcrypto-Hide-library-private-symbols.patch: disabled heartbeat testcase
- openssl-1.0.1c-ipv6-apps.patch: refreshed
- openssl-fix-pod-syntax.diff: some stuff merged upstream, refreshed
- Added new SUSE default cipher suite
openssl-1.0.1e-add-suse-default-cipher.patch
OBS-URL: https://build.opensuse.org/request/show/236989
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=118
2014-06-18 05:47:41 +00:00
Stephan Kulow
6a3418284a
Accepting request 233553 from Base:System
...
- Add upstream patches fixing coverity scan issues:
* 0018-fix-coverity-issues-966593-966596.patch
* 0020-Initialize-num-properly.patch
* 0022-bignum-allow-concurrent-BN_MONT_CTX_set_locked.patch
* 0023-evp-prevent-underflow-in-base64-decoding.patch
* 0024-Fixed-NULL-pointer-dereference-in-PKCS7_dataDecode-r.patch
* 0025-fix-coverity-issue-966597-error-line-is-not-always-i.patch
- Update 0001-libcrypto-Hide-library-private-symbols.patch
to cover more private symbols, now 98% complete and probably
not much more can be done to fix the rest of the ill-defined API.
- openssl-fips-hidden.patch new, hides private symbols added by the
FIPS patches.
- openssl-no-egd.patch disable the EGD (entropy gathering daemon)
interface, we have no EGD in the distro and obtaining entropy from
a place other than /dev/*random, the hardware rng or the openSSL
internal PRNG is an extremely bad & dangerous idea.
- use secure_getenv instead of getenv everywhere. (forwarded request 233217 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/233553
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=117
2014-05-14 08:26:07 +00:00
Stephan Kulow
94fbf434c7
Accepting request 232889 from Base:System
...
- 0005-libssl-Hide-library-private-symbols.patch
Update to hide more symbols that are not part of
the public API
- openssl-gcc-attributes.patch BUF_memdup also
needs attribute alloc_size as it returns memory
of size of the second parameter.
- openssl-ocloexec.patch Update, accept()
also needs O_CLOEXEC.
- 0009-Fix-double-frees.patch, 0017-Double-free-in-i2o_ECPublicKey.patch
fix various double frees (from upstream)
- 012-Fix-eckey_priv_encode.patch eckey_priv_encode should
return an error inmediately on failure of i2d_ECPrivateKey (from upstream)
- 0001-Axe-builtin-printf-implementation-use-glibc-instead.patch
From libressl, modified to work on linux systems that do not have
funopen() but fopencookie() instead.
Once upon a time, OS didn't have snprintf, which caused openssl to
bundle a *printf implementation. We know better nowadays, the glibc
implementation has buffer overflow checking, has sane failure modes
deal properly with threads, signals..etc..
- build with -fno-common as well. (forwarded request 232752 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/232889
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=116
2014-05-09 04:57:35 +00:00
Stephan Kulow
191f308eaf
Accepting request 232653 from Base:System
...
Fixed bug[ bnc#876282], CVE-2014-0198 openssl: OpenSSL NULL pointer dereference in do_ssl3_write; Add file: CVE-2014-0198.patch (forwarded request 232650 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/232653
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=115
2014-05-06 11:39:32 +00:00
Stephan Kulow
0bb9b0ad33
Accepting request 231108 from Base:System
...
- Build everything with full RELRO (-Wl,-z,relro,-z,now)
- Remove -fstack-protector from the hardcoded build options
it is already in RPM_OPT_FLAGS and is replaced by
-fstack-protector-strong with gcc 4.9
- Remove the "gmp" and "capi" shared engines, nobody noticed
but they are just dummies that do nothing.
- Use enable-rfc3779 to allow projects such as rpki.net
to work in openSUSE and match the functionality
available in Debian/Fedora/etc
- openssl-buffreelistbug-aka-CVE-2010-5298.patch fix
CVE-2010-5298 and disable the internal BUF_FREELISTS
functionality. it hides bugs like heartbleed and is
there only for systems on which malloc() free() are slow.
- ensure we export MALLOC_CHECK and PERTURB during the test
suite, now that the freelist functionality is disabled it
will help to catch bugs before they hit users.
- openssl-libssl-noweakciphers.patch do not offer "export"
or "low" quality ciphers by default. using such ciphers
is not forbidden but requires an explicit request
- openssl-gcc-attributes.patch: fix thinko, CRYPTO_realloc_clean does
not return memory of "num * old_num" but only "num" size
fortunately this function is currently unused. (forwarded request 230868 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/231108
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=114
2014-04-26 15:01:45 +00:00
Tomáš Chvátal
44a951fc87
osc copypac from project:openSUSE:Factory package:openssl revision:111
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=113
2014-04-18 09:07:25 +00:00
Tomáš Chvátal
c32f963846
osc copypac from project:openSUSE:Factory package:openssl revision:110
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=112
2014-04-17 12:35:56 +00:00
Stephan Kulow
165c77cea8
Accepting request 229715 from Base:System
...
- openssl-gcc-attributes.patch
* annotate memory allocation wrappers with attribute(alloc_size)
so the compiler can tell us if it knows they are being misused
* OPENSSL_showfatal is annotated with attribute printf to detect
format string problems.
- It is time to try to disable SSLv2 again, it was tried a while
ago but broke too many things, nowadays Debian, Ubuntu, the BSDs
all have disabled it, most components are already fixed.
I will fix the remaining fallout if any. (email me) (forwarded request 229674 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/229715
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=111
2014-04-15 05:34:09 +00:00
Stephan Kulow
d5a92c035d
Accepting request 229370 from Base:System
...
- update to 1.0.1g:
* fix for critical TLS heartbeat read overrun (CVE-2014-0160) (bnc#872299)
* Fix for Recovering OpenSSL ECDSA Nonces (CVE-2014-0076) (bnc#869945)
* Workaround for the "TLS hang bug" (see FAQ and PR#2771)
- remove CVE-2014-0076.patch
- openssl.keyring: upstream changed to:
pub 4096R/FA40E9E2 2005-03-19 Dr Stephen N Henson <steve@openssl.org >
uid Dr Stephen Henson <shenson@drh-consultancy.co.uk >
uid Dr Stephen Henson <shenson@opensslfoundation.com >
OBS-URL: https://build.opensuse.org/request/show/229370
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=110
2014-04-09 16:17:23 +00:00
Stephan Kulow
9a6d63222e
Accepting request 227508 from Base:System
...
Fix bug[ bnc#869945] CVE-2014-0076: openssl: Recovering OpenSSL ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack; Add file: CVE-2014-0076.patch (forwarded request 227417 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/227508
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=109
2014-04-03 14:38:28 +00:00
Stephan Kulow
ccb7f79a32
Accepting request 224423 from Base:System
...
additional changes required for FIPS validation( from Fedora repo); Add patch file: openssl-1.0.1e-new-fips-reqs.patch (forwarded request 224375 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/224423
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=108
2014-03-06 18:29:26 +00:00
Stephan Kulow
bcd15fd76a
Accepting request 213629 from Base:System
...
Remove GCC option -O3 for compiliation issue of ARM version; Modify: openssl.spec (forwarded request 213627 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/213629
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=107
2014-01-17 10:05:16 +00:00
Stephan Kulow
d3d7dacdf7
Accepting request 213132 from Base:System
...
Fixed bnc#857850, openssl doesn't load engine; Modify file: openssl.spec (forwarded request 213131 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/213132
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=106
2014-01-09 16:25:37 +00:00
Tomáš Chvátal
db3e410d01
Accepting request 212714 from Base:System
...
Fixed bnc#857203, openssl: crash in DTLS renegotiation after packet loss; Add file: CVE-2013-6450.patch (forwarded request 212653 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/212714
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=105
2014-01-03 13:57:36 +00:00
Stephan Kulow
4a0df891cc
Accepting request 212087 from Base:System
...
Fixed bnc#856687, openssl: crash when using TLS 1.2; Add file: CVE-2013-6449.patch (forwarded request 212077 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/212087
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=104
2013-12-23 21:16:55 +00:00
Stephan Kulow
17914da9d0
Accepting request 211421 from Base:System
...
- compression_methods_switch.patch: setenv might not be successful
if a surrounding library or application filters it, like e.g. sudo.
As setenv() does not seem to be useful anyway, remove it.
bnc#849377 (forwarded request 211400 from msmeissn)
OBS-URL: https://build.opensuse.org/request/show/211421
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=103
2013-12-19 12:34:52 +00:00
Stephan Kulow
a4f9e5aa25
Accepting request 210985 from Base:System
...
Adjust the installation path; Modify files: README-FIPS.txt openssl.spec (forwarded request 210984 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/210985
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=102
2013-12-17 09:02:17 +00:00
Stephan Kulow
4ed020414f
osc copypac from project:openSUSE:Factory package:openssl revision:99
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=101
2013-11-30 16:59:30 +00:00
Stephan Kulow
179c3b2765
Accepting request 208487 from Base:System
...
Patches for OpenSSL FIPS-140-2/3 certification; Add patch files: openssl-1.0.1e-fips.patch, openssl-1.0.1e-fips-ec.patch,openssl-1.0.1e-fips-ctor.patch (forwarded request 208378 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/208487
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=100
2013-11-29 06:03:09 +00:00
Tomáš Chvátal
9633d36713
Accepting request 204475 from Base:System
...
(forwarded request 204370 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/204475
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=99
2013-10-24 12:10:45 +00:00
Tomáš Chvátal
5d8dc7c34b
Accepting request 203428 from Base:System
...
- openssl-1.0.1c-ipv6-apps.patch:
Support ipv6 in the openssl s_client / s_server commandline app. (forwarded request 203361 from msmeissn)
OBS-URL: https://build.opensuse.org/request/show/203428
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=98
2013-10-17 12:24:04 +00:00
Stephan Kulow
3f2f2de8bf
Accepting request 201094 from Base:System
...
- VPN openconnect problem (DTLS handshake failed)
(git 9fe4603b8, bnc#822642, openssl ticket#2984) (forwarded request 201079 from dmacvicar)
OBS-URL: https://build.opensuse.org/request/show/201094
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=97
2013-09-27 17:48:21 +00:00
Stephan Kulow
dbd1e42ea5
Accepting request 197451 from Base:System
...
Fix armv6l arch (armv7 was previously used to build armv6 which lead to illegal instruction when used) (forwarded request 197443 from Guillaume_G)
OBS-URL: https://build.opensuse.org/request/show/197451
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=95
2013-09-05 21:22:31 +00:00
Tomáš Chvátal
a79c9d166c
Accepting request 186710 from Base:System
...
Fix bug[ bnc#832833] openssl ssl_set_cert_masks() is broken; Add patch file: SSL_get_certificate-broken.patch (forwarded request 186693 from shawn2012)
OBS-URL: https://build.opensuse.org/request/show/186710
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=94
2013-08-13 09:00:53 +00:00
Stephan Kulow
11127842fa
Accepting request 185827 from Base:System
...
- 0005-libssl-Hide-library-private-symbols.patch: hide
private symbols, this *only* applies to libssl where
it is straightforward to do so as applications should
not be using any of the symbols declared/defined in headers
that the library does not install.
A separate patch MAY be provided in the future for libcrypto
where things are much more complicated and threfore requires
careful testing. (forwarded request 185819 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/185827
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=93
2013-08-04 14:59:21 +00:00
Stephan Kulow
483bcc84c1
Accepting request 184582 from Base:System
...
- compression_methods_switch.patch: Disable compression by default to
avoid the CRIME attack (CVE-2012-4929 bnc#793420)
Can be override by setting environment variable
OPENSSL_NO_DEFAULT_ZLIB=no
OBS-URL: https://build.opensuse.org/request/show/184582
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=92
2013-07-30 16:42:57 +00:00
Stephan Kulow
bb5cf13064
Accepting request 182147 from Base:System
...
- Don't use the legacy /etc/ssl/certs directory anymore but rather
the p11-kit generated /var/lib/ca-certificates/openssl one
(fate#314991, openssl-1.0.1e-truststore.diff)
OBS-URL: https://build.opensuse.org/request/show/182147
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=91
2013-07-04 16:04:58 +00:00
Stephan Kulow
dd9592a972
Accepting request 181537 from Base:System
...
- Build enable-ec_nistp_64_gcc_128, ecdh is many times faster
but only works in x86_64.
According to the openSSL team
"it is superior to the default in multiple regards (speed, and also
security as the new implementations are secure against timing
attacks)"
It is not enabled by default due to the build system being unable
to detect if the compiler supports __uint128_t. (forwarded request 181467 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/181537
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=90
2013-07-02 05:40:12 +00:00
Stephan Kulow
24a6c5b091
Accepting request 180215 from Base:System
...
- pick openssl-fix-pod-syntax.diff out of the upstream RT to fix
build with perl 5.18 (forwarded request 180092 from coolo)
OBS-URL: https://build.opensuse.org/request/show/180215
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=89
2013-06-25 05:43:23 +00:00
Stephan Kulow
13cf635235
Accepting request 176587 from Base:System
...
add %if tag for BuildArch. someone may need to fork it to SLE (forwarded request 176549 from MargueriteSu)
OBS-URL: https://build.opensuse.org/request/show/176587
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=88
2013-06-05 11:05:48 +00:00
Stephan Kulow
c594036828
Accepting request 156167 from Base:System
...
- disable fstack-protector on aarch64 (forwarded request 156130 from dirkmueller)
OBS-URL: https://build.opensuse.org/request/show/156167
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=87
2013-02-23 15:39:08 +00:00
Stephan Kulow
03c573920f
Accepting request 155179 from Base:System
...
- Update to 1.0.1e
o Bugfix release (bnc#803004)
- Drop openssl-1.0.1d-s3-packet.patch, included upstream
OBS-URL: https://build.opensuse.org/request/show/155179
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=86
2013-02-12 15:41:40 +00:00
Stephan Kulow
f3f9661f10
Accepting request 155059 from Base:System
...
Fix nasty 1.0.1d regression (forwarded request 155056 from sumski)
OBS-URL: https://build.opensuse.org/request/show/155059
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=85
2013-02-11 10:07:26 +00:00
Stephan Kulow
e77612338e
Accepting request 151305 from Base:System
...
- update to version 1.0.1d, fixing security issues
o Fix renegotiation in TLS 1.1, 1.2 by using the correct TLS version.
o Include the fips configuration module.
o Fix OCSP bad key DoS attack CVE-2013-0166
o Fix for SSL/TLS/DTLS CBC plaintext recovery attack CVE-2013-0169
bnc#802184
o Fix for TLS AESNI record handling flaw CVE-2012-2686
OBS-URL: https://build.opensuse.org/request/show/151305
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=84
2013-02-07 09:44:00 +00:00
Stephan Kulow
f64483c532
Accepting request 141990 from Base:System
...
Automatic submission by obs-autosubmit
OBS-URL: https://build.opensuse.org/request/show/141990
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=82
2012-11-22 15:51:34 +00:00
Ismail Dönmez
df44f45fc9
Accepting request 131690 from Base:System
...
- Open Internal file descriptors with O_CLOEXEC, leaving
those open across fork()..execve() makes a perfect
vector for a side-channel attack... (forwarded request 131190 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/131690
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=81
2012-08-26 12:22:07 +00:00
Stephan Kulow
e5e7ad330f
Accepting request 130358 from Base:System
...
- fix build on armv5 (bnc#774710) (forwarded request 130344 from dirkmueller)
OBS-URL: https://build.opensuse.org/request/show/130358
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=80
2012-08-08 09:18:03 +00:00
Stephan Kulow
05940ba9a1
Accepting request 121256 from Base:System
...
- Update to version 1.0.1c for the complete list of changes see
NEWS, this only list packaging changes.
- Drop aes-ni patch, no longer needed as it is builtin in openssl
now.
- Define GNU_SOURCE and use -std=gnu99 to build the package.
- Use LFS_CFLAGS in platforms where it matters. (forwarded request 120643 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/121256
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=78
2012-05-21 08:00:42 +00:00
Stephan Kulow
036b19de96
Accepting request 116433 from Base:System
...
- don't install any demo or expired certs at all
OBS-URL: https://build.opensuse.org/request/show/116433
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=77
2012-05-08 10:28:22 +00:00
Stephan Kulow
1b922295b2
Accepting request 115109 from Base:System
...
update to 1.0.0i
OBS-URL: https://build.opensuse.org/request/show/115109
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=76
2012-04-23 15:40:09 +00:00
Stephan Kulow
5fcf0408aa
Accepting request 113739 from Base:System
...
Automatic submission by obs-autosubmit
OBS-URL: https://build.opensuse.org/request/show/113739
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=75
2012-04-17 20:00:24 +00:00
Stephan Kulow
350402e556
Accepting request 110176 from Base:System
...
license update: OpenSSL
(forwarded request 110174 from babelworx)
OBS-URL: https://build.opensuse.org/request/show/110176
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=74
2012-03-20 16:49:15 +00:00
Stephan Kulow
d08abccec7
Accepting request 107790 from Base:System
...
Automatic submission by obs-autosubmit
OBS-URL: https://build.opensuse.org/request/show/107790
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=73
2012-03-07 19:09:51 +00:00
Stephan Kulow
c5f2d42ba8
Accepting request 102443 from Base:System
...
update to 1.0.0g
OBS-URL: https://build.opensuse.org/request/show/102443
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=72
2012-02-03 09:24:53 +00:00
Stephan Kulow
1d93e26aad
replace license with spdx.org variant
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=71
2011-12-06 17:34:43 +00:00
Stephan Kulow
abc16f3f92
Accepting request 88591 from Base:System
...
- AES-NI: Check the return value of Engine_add()
if the ENGINE_add() call fails: it ends up adding a reference
to a freed up ENGINE which is likely to subsequently contain garbage
This will happen if an ENGINE with the same name is added multiple
times,for example different libraries. [bnc#720601] (forwarded request 88590 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/88591
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=69
2011-10-19 11:40:21 +00:00
Sascha Peilicke
8eaf71fb35
Autobuild autoformatter for 81348
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=68
2011-09-09 09:49:21 +00:00
Sascha Peilicke
712cc1be28
Accepting request 81348 from Base:System
...
- Update to openssl 1.0.0e fixes CVE-2011-3207 and CVE-2011-3210
see http://openssl.org/news/secadv_20110906.txt for details. (forwarded request 81347 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/81348
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=67
2011-09-09 09:49:14 +00:00
Sascha Peilicke
6793d223c7
Autobuild autoformatter for 78686
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=66
2011-08-15 07:42:00 +00:00
Sascha Peilicke
f071498cb4
Accepting request 78686 from Base:System
...
- Add upstream patch that calls ENGINE_register_all_complete()
in ENGINE_load_builtin_engines() saving us from adding dozens
of calls to such function to calling applications. (forwarded request 78169 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/78686
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=65
2011-08-15 07:41:52 +00:00
Sascha Peilicke
4843e122d8
Autobuild autoformatter for 78150
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=64
2011-08-06 17:08:59 +00:00
Sascha Peilicke
f2e7b32247
Accepting request 78150 from Base:System
...
- remove -fno-strict-aliasing from CFLAGS no longer needed
and is likely to slow down stuff. (forwarded request 78147 from elvigia)
OBS-URL: https://build.opensuse.org/request/show/78150
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=63
2011-08-06 17:08:49 +00:00
Sascha Peilicke
18daff1b9a
Autobuild autoformatter for 77054
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=62
2011-07-26 11:47:42 +00:00
Sascha Peilicke
c6216dbc49
Accepting request 77054 from Base:System
...
- Edit baselibs.conf to provide libopenssl-devel-32bit too (forwarded request 77000 from jengelh)
OBS-URL: https://build.opensuse.org/request/show/77054
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=61
2011-07-26 11:47:28 +00:00
Sascha Peilicke
39b11f4174
Autobuild autoformatter for 74715
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=60
2011-06-28 08:06:43 +00:00
Sascha Peilicke
afb2b76da7
Accepting request 74715 from Base:System
...
update to latest stable version 1.0.0d.
OBS-URL: https://build.opensuse.org/request/show/74715
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=59
2011-06-28 08:06:25 +00:00
Sascha Peilicke
ca270b4d26
Autobuild autoformatter for 71772
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=58
2011-05-30 07:05:53 +00:00
Sascha Peilicke
d425c7ed3c
Accepting request 71772 from Base:System
...
added openssl as dependency in the devel package, or for packages linking to libopenssl there can be failures like : undefined reference to 'get_dh1024' because openssl binary is used during code generation (forwarded request 70339 from anubisg1)
OBS-URL: https://build.opensuse.org/request/show/71772
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=57
2011-05-30 07:05:44 +00:00
Ruediger Oertel
b32661c9cd
Autobuild autoformatter for 68054
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=56
2011-04-21 11:51:15 +00:00
Stephan Kulow
6cfdd4b39b
revert to #51 to make factory a usable system again
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=54
2011-04-18 08:39:50 +00:00
Sascha Peilicke
1940ee9ff3
Autobuild autoformatter for 67324
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=53
2011-04-15 07:20:28 +00:00
Sascha Peilicke
555d1d3ad9
Accepting request 67324 from Base:System
...
Accepted submit request 67324 from user coolo
OBS-URL: https://build.opensuse.org/request/show/67324
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=52
2011-04-15 07:20:15 +00:00
Sascha Peilicke
feaf39ed5b
Autobuild autoformatter for 63797
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=51
2011-03-15 08:28:57 +00:00
Sascha Peilicke
84e854a513
Accepting request 63797 from Base:System
...
Accepted submit request 63797 from user coolo
OBS-URL: https://build.opensuse.org/request/show/63797
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=50
2011-03-15 08:28:50 +00:00
78d80e3bc3
Autobuild autoformatter for 58423
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=48
2011-01-17 16:47:31 +00:00
0f03a76ce8
Accepting request 58423 from Base:System
...
Accepted submit request 58423 from user elvigia
OBS-URL: https://build.opensuse.org/request/show/58423
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=47
2011-01-17 16:47:19 +00:00
361ca2c7b1
Autobuild autoformatter for 57693
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=46
2011-01-10 15:42:32 +00:00
267ff371fa
Accepting request 57693 from Base:System
...
Accepted submit request 57693 from user msmeissn
OBS-URL: https://build.opensuse.org/request/show/57693
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=45
2011-01-10 15:41:42 +00:00
b9b61b5f50
Autobuild autoformatter for 55363
...
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=44
2010-12-10 14:41:12 +00:00
26d03f47ca
Accepting request 55363 from Base:System
...
Accepted submit request 55363 from user a_jaeger
OBS-URL: https://build.opensuse.org/request/show/55363
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=43
2010-12-10 14:41:07 +00:00
OBS User autobuild
3b41ce1450
Accepting request 49880 from Base:System
...
Copy from Base:System/openssl based on submit request 49880 from user coolo
OBS-URL: https://build.opensuse.org/request/show/49880
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=42
2010-10-07 19:53:10 +00:00
OBS User autobuild
ae817a00dd
Accepting request 44144 from Base:System
...
Copy from Base:System/openssl based on submit request 44144 from user elvigia
OBS-URL: https://build.opensuse.org/request/show/44144
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=41
2010-07-30 10:35:13 +00:00
OBS User autobuild
5899018aa2
Accepting request 43713 from Base:System
...
Copy from Base:System/openssl based on submit request 43713 from user coolo
OBS-URL: https://build.opensuse.org/request/show/43713
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=40
2010-07-23 15:05:28 +00:00
OBS User autobuild
19cbe2fba1
Accepting request 41504 from Base:System
...
Copy from Base:System/openssl based on submit request 41504 from user prusnak
OBS-URL: https://build.opensuse.org/request/show/41504
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=37
2010-06-18 03:17:30 +00:00
OBS User autobuild
8b3a3dc1bb
Accepting request 40913 from Base:System
...
Copy from Base:System/openssl based on submit request 40913 from user msmeissn
OBS-URL: https://build.opensuse.org/request/show/40913
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=36
2010-06-02 16:07:27 +00:00
OBS User autobuild
c5cd5769ed
Accepting request 40076 from Base:System
...
Copy from Base:System/openssl based on submit request 40076 from user msmeissn
OBS-URL: https://build.opensuse.org/request/show/40076
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=35
2010-05-25 08:32:24 +00:00
OBS User autobuild
642fe9a80e
Accepting request 38656 from Base:System
...
Copy from Base:System/openssl based on submit request 38656 from user coolo
OBS-URL: https://build.opensuse.org/request/show/38656
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=34
2010-04-24 09:58:04 +00:00
OBS User autobuild
c7d7ac9b58
Accepting request 37809 from Base:System
...
Copy from Base:System/openssl based on submit request 37809 from user msmeissn
OBS-URL: https://build.opensuse.org/request/show/37809
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=33
2010-04-14 13:14:18 +00:00
OBS User autobuild
9586798e06
Accepting request 36001 from Base:System
...
Copy from Base:System/openssl based on submit request 36001 from user msmeissn
OBS-URL: https://build.opensuse.org/request/show/36001
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=32
2010-03-31 17:35:44 +00:00
OBS User autobuild
3be4b95390
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=31
2010-03-18 15:13:50 +00:00
OBS User autobuild
823face082
Accepting request 32358 from Base:System
...
Copy from Base:System/openssl based on submit request 32358 from user coolo
OBS-URL: https://build.opensuse.org/request/show/32358
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=30
2010-02-18 15:49:00 +00:00
OBS User autobuild
7227fc370f
Accepting request 28053 from Base:System
...
Copy from Base:System/openssl based on submit request 28053 from user msmeissn
OBS-URL: https://build.opensuse.org/request/show/28053
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=29
2010-01-08 16:31:48 +00:00
OBS User autobuild
da29a2e6df
Accepting request 24437 from Base:System
...
Copy from Base:System/openssl based on submit request 24437 from user msmeissn
OBS-URL: https://build.opensuse.org/request/show/24437
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=28
2009-11-16 09:08:26 +00:00
OBS User autobuild
61dcd4d00d
Accepting request 19418 from Base:System
...
Copy from Base:System/openssl based on submit request 19418 from user coolo
OBS-URL: https://build.opensuse.org/request/show/19418
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=26
2009-09-02 16:18:18 +00:00
OBS User unknown
412a5012b8
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=25
2009-07-09 08:42:49 +00:00
OBS User unknown
fc7e76a88f
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=24
2009-04-23 17:17:27 +00:00
OBS User unknown
fd14d1dfb2
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=23
2009-01-09 13:45:25 +00:00
OBS User unknown
d6d00ec713
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=22
2008-12-08 14:44:37 +00:00
OBS User unknown
447814bf43
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=21
2008-11-17 16:41:06 +00:00
OBS User unknown
24c7aba2bf
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=20
2008-10-22 16:31:03 +00:00
OBS User unknown
b060716978
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=19
2008-07-18 19:56:31 +00:00
OBS User unknown
41f54b98bd
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=18
2008-07-11 18:44:41 +00:00
OBS User unknown
2292bcfe4e
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=17
2008-07-08 14:15:18 +00:00
OBS User unknown
8941772209
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=16
2008-06-05 15:54:34 +00:00
OBS User unknown
0d0b9e04b1
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=15
2008-05-26 16:51:41 +00:00
OBS User unknown
1d6ac8be60
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=14
2008-04-22 23:47:55 +00:00
OBS User unknown
6b8de97dba
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=13
2008-04-10 13:20:27 +00:00
OBS User unknown
a8f402bd34
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=12
2007-11-05 22:50:53 +00:00
OBS User unknown
d737dbc710
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=11
2007-10-22 14:23:56 +00:00
OBS User unknown
d033455313
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=10
2007-10-16 16:23:27 +00:00
OBS User unknown
d2f19ec93b
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=9
2007-10-13 16:03:24 +00:00
OBS User unknown
6f38c49570
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=8
2007-09-13 16:53:37 +00:00
OBS User unknown
4b865a26e1
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=7
2007-08-03 13:49:48 +00:00
OBS User unknown
3495fdf026
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=6
2007-06-14 22:27:50 +00:00
OBS User unknown
2cc9b83c51
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=5
2007-05-06 15:17:31 +00:00
OBS User unknown
f379b7e46f
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=4
2007-04-23 21:20:28 +00:00
OBS User unknown
5c38772ce8
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=3
2007-03-06 10:18:17 +00:00
OBS User unknown
00a1bde5db
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=2
2007-01-10 16:54:25 +00:00
OBS User unknown
181a9b12af
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openssl?expand=0&rev=1
2006-12-18 23:17:18 +00:00