Commit message (Expand)AuthorAgeFilesLines
* Multiple security issues fixed.HEADmasterf22Tomas Mraz12 days7-1/+383
* fix bug in the CRYPTO_128_unwrap()Tomas Mraz2015-03-162-6/+9
* fix bug in the RFC 5649 support (#1185878)Tomas Mraz2015-02-272-4/+7
* Rebuilt for Fedora 23 ChangeTill Maas2015-02-211-1/+5
* test in the non-FIPS RSA keygen for minimal distance of p and qTomas Mraz2015-01-162-3/+34
* new upstream release fixing multiple security issuesTomas Mraz2015-01-0910-488/+505
* Fix date in changelog.Tomas Mraz2014-11-201-1/+1
* disable SSLv3 by default againTomas Mraz2014-11-202-3/+8
* update the FIPS RSA keygen to be FIPS 186-4 compliantTomas Mraz2014-10-212-5/+58
* new upstream release fixing multiple security issuesTomas Mraz2014-10-162-1/+2
* new upstream release fixing multiple security issuesTomas Mraz2014-10-166-548/+511
* copy negotiated digests when switching certs by SNI (#1150032)Tomas Mraz2014-10-102-1/+39
* add support for RFC 5649Tomas Mraz2014-09-082-1/+1245
* - Rebuilt for Robinson2014-08-171-1/+4
* Make the fips_standalone_sha build on PPC.Tomas Mraz2014-08-141-4/+61
* drop RSA X9.31 from RSA FIPS selftestsTomas Mraz2014-08-136-178/+13405
* Merge branch 'master' into f21Tomas Mraz2014-08-0714-848/+240
| * new upstream release fixing multiple moderate security issuesTomas Mraz2014-08-0714-848/+240
| * fix license handlingTom Callaway2014-07-181-3/+9
* | fix license handlingTom Callaway2014-07-181-3/+9
* Sign the test string in the pairwise check instead of empty data.Tomas Mraz2014-07-042-2/+2
* disable SSLv2 and SSLv3 protocols by defaultTomas Mraz2014-06-302-1/+20
* And never call fclose with NULL parameter.Tomas Mraz2014-06-111-10/+11
* Cannot use malloc with OPENSSL_free.Tomas Mraz2014-06-111-2/+2
* use system profile for default cipher listTomas Mraz2014-06-112-1/+296
* fix CVE-2014-0224 fix that broke EAP-FAST session resumption supportTomas Mraz2014-06-103-11/+30
* - Rebuilt for Gilmore2014-06-071-1/+4
* new upstream release 1.0.1hTomas Mraz2014-06-057-606/+180
* Drop obsolete and irrelevant docs, Move devel docs to appropriate package, th...Peter Robinson2014-05-311-6/+7
* new upstream release 1.0.1gTomas Mraz2014-05-0715-1253/+482
* pull in upstream patch for CVE-2014-0160Dennis Gilmore2014-04-082-1/+116
* add support for ppc64le architecture (#1072633)Tomas Mraz2014-04-033-2/+25
* properly detect encryption failure in BIOTomas Mraz2014-03-173-7/+713
* use the key length from configuration file if req -newkey rsa is invokedTomas Mraz2014-02-142-2/+45
* Avoid unnecessary reseeding in BN_rand in FIPS mode.Tomas Mraz2014-02-131-0/+19
* Remove obsolete sentence.Tomas Mraz2014-02-131-2/+0
* Add macro for performance build on certain arches.Tomas Mraz2014-02-121-0/+2
* print ephemeral key size negotiated in TLS handshake (#1057715)Tomas Mraz2014-02-123-8/+179
* make expiration and key length changeable by DAYS and KEYLENTomas Mraz2014-02-063-11/+38
* make 3des strength to be 128 bits instead of 168 (#1056616)Tomas Mraz2014-01-222-1/+177
* Two security fixesTomas Mraz2014-01-074-1/+138
* dh->q might be NULL.Tomas Mraz2014-01-071-1/+1
* fix CVE-2013-6449 - crash when version in SSL structure is incorrectTomas Mraz2013-12-202-1/+95
* Additional FIPS requirements changes.Tomas Mraz2013-12-191-72/+544
* drop weak ciphers from the default TLS ciphersuite listTomas Mraz2013-12-184-17/+264
* fix locking and reseeding problems with FIPS drbgTomas Mraz2013-11-192-18/+293
* Fix typos.Tomas Mraz2013-11-151-10/+10
* additional changes required for FIPS validationTomas Mraz2013-11-152-1/+152
* disable verification of certificate, CRL, and OCSP signatures using MD5Tomas Mraz2013-11-131-0/+25
* disable verification of certificate, CRL, and OCSP signatures using MD5Tomas Mraz2013-11-131-1/+10