This website works better with JavaScript.
Explore
Help
Sign In
rpms
/
openssl3
Watch
20
Star
0
Fork
You've already forked openssl3
0
Code
Issues
Pull Requests
Packages
Projects
Releases
Wiki
Activity
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
93
Commits
3
Branches
9
Tags
2.0 MiB
C
97.6%
Shell
2.4%
b5de6bd830
i8ce
epel8
i8e
changed/i8e/openssl3-3.0.7-5.el8.1
changed/i8ce/openssl3-3.0.7-5.el8.1
changed/i8ce/openssl3-3.2.1-1.1.el8
changed/i8ce/openssl3-3.2.1-1.2.el8
changed/i8ce/openssl3-3.2.2-2.1.el8
imports/epel8/openssl3-3.0.7-5.el8.1
imports/epel8/openssl3-3.2.1-1.1.el8
imports/epel8/openssl3-3.2.1-1.2.el8
imports/epel8/openssl3-3.2.2-2.1.el8
Branches
Tags
${ item.name }
Create tag
${ searchTerm }
Create branch
${ searchTerm }
from 'b5de6bd830'
${ noResults }
Go to file
HTTPS
Download ZIP
Download TAR.GZ
Download BUNDLE
Clone in VS Code
Dmitry Belyavskiy
b5de6bd830
In FIPS mode limit key sizes for signature verification
...
Resolves: rhbz#2077884
2 years ago
.gitignore
Rebase to upstream version 3.0.1
3 years ago
0001-Aarch64-and-ppc64le-use-lib64.patch
Rebase to OpenSSL version 3.0.0
3 years ago
0002-Use-more-general-default-values-in-openssl.cnf.patch
Rebase to OpenSSL version 3.0.0
3 years ago
0003-Do-not-install-html-docs.patch
Rebase to OpenSSL version 3.0.0
3 years ago
0004-Override-default-paths-for-the-CA-directory-tree.patch
Fixes override of openssl_conf in openssl.cnf
3 years ago
0005-apps-ca-fix-md-option-help-text.patch
Rebase to OpenSSL version 3.0.0
3 years ago
0006-Disable-signature-verification-with-totally-unsafe-h.patch
Update to Beta1 version
3 years ago
0007-Add-support-for-PROFILE-SYSTEM-system-default-cipher.patch
Rebase to upstream version 3.0.1
3 years ago
0008-Add-FIPS_mode-compatibility-macro.patch
Update to Beta1 version
3 years ago
0009-Add-Kernel-FIPS-mode-flag-support.patch
Rebase to upstream version 3.0.1
3 years ago
0011-Remove-EC-curves.patch
Update to Beta1 version
3 years ago
0012-Disable-explicit-ec.patch
Reworked patch forbidding explicit EC parameters
2 years ago
0013-FIPS-provider-explicit-ec.patch
Adaptation of upstream patches disabling explicit EC parameters in FIPS mode
2 years ago
0014-FIPS-disable-explicit-ec.patch
Adaptation of upstream patches disabling explicit EC parameters in FIPS mode
2 years ago
0024-load-legacy-prov.patch
Always activate default provider via config
3 years ago
0025-for-tests.patch
Always activate default provider via config
3 years ago
0031-tmp-Fix-test-names.patch
KTLS and FIPS may interfere, so tests need to be tuned
3 years ago
0032-Force-fips.patch
-config argument of openssl app should work properly
2 years ago
0033-FIPS-embed-hmac.patch
Remove volatile attribute from HMAC to make annocheck happy
3 years ago
0034.fipsinstall_disable.patch
Rebase to upstream version 3.0.1
3 years ago
0035-speed-skip-unavailable-dgst.patch
openssl speed should run in FIPS mode
3 years ago
0045-FIPS-services-minimize.patch
In FIPS mode limit key sizes for signature verification
2 years ago
0046-FIPS-s390x-hardening.patch
On the s390x, zeroize all the copies of TLS premaster secret
3 years ago
0047-FIPS-early-KATS.patch
KATS self-tests should run before HMAC verifcation
3 years ago
0048-correctly-handle-records.patch
s_server: correctly handle 2^14 byte long records
3 years ago
0049-Selectively-disallow-SHA1-signatures.patch
Fix RSA PSS padding with SHA-1 disabled
3 years ago
0050-FIPS-enable-pkcs12-mac.patch
OpenSSL will generate keys with prime192v1 curve if it is provided using explicit parameters
3 years ago
0051-Support-different-R_BITS-lengths-for-KBKDF.patch
OpenSSL FIPS module should not build in non-approved algorithms
2 years ago
0052-Allow-SHA1-in-seclevel-2-if-rh-allow-sha1-signatures.patch
Fix SHA1 certs in LEGACY without openssl lib ctxt
3 years ago
0053-CVE-2022-0778.patch
CVE-2022-0778 fix
3 years ago
0054-Replace-size-check-with-more-meaningful-pubkey-check.patch
Fix occasional internal error in TLS when DHE is used
3 years ago
0055-nonlegacy-fetch-null-deref.patch
Fix openssl curl error with LANG=tr_TR.utf8
2 years ago
0056-strcasecmp.patch
OpenSSL FIPS module should not build in non-approved algorithms
2 years ago
0057-strcasecmp-fix.patch
Fix regression in evp_pkey_name2type caused by tr_TR locale fix
2 years ago
0058-FIPS-limit-rsa-encrypt.patch
When FIPS provider is in use, we forbid only some padding modes
2 years ago
0060-FIPS-KAT-signature-tests.patch
Use KAT for ECDSA signature tests
2 years ago
0061-Deny-SHA-1-signature-verification-in-FIPS-provider.patch
FIPS: Disable SHA1 signs and EVP_PKEY_{sign,verify}
2 years ago
0062-Disable-EVP_PKEY_-sign-verify-in-FIPS-provider.patch
FIPS: Disable SHA1 signs and EVP_PKEY_{sign,verify}
2 years ago
Makefile.certificate
RHEL 9.0.0 Alpha bootstrap
4 years ago
configuration-prefix.h
Rebase to OpenSSL version 3.0.0
3 years ago
configuration-switch.h
Rebase to OpenSSL version 3.0.0
3 years ago
ec_curve.c
Rebase to OpenSSL version 3.0.0
3 years ago
ectest.c
Reworked patch forbidding explicit EC parameters
2 years ago
gating.yaml
Temporary manual test
2 years ago
genpatches
Rebase to OpenSSL version 3.0.0
3 years ago
hobble-openssl
RHEL 9.0.0 Alpha bootstrap
4 years ago
make-dummy-cert
RHEL 9.0.0 Alpha bootstrap
4 years ago
openssl.spec
In FIPS mode limit key sizes for signature verification
2 years ago
renew-dummy-cert
RHEL 9.0.0 Alpha bootstrap
4 years ago
rpminspect.yaml
Make rpminspect happy
3 years ago
sources
Rebase to upstream version 3.0.1
3 years ago
Dmitry Belyavskiy