[openssl-commits] [openssl] OpenSSL_1_1_1-pre8 create
Matt Caswell
matt at openssl.org
Wed Jun 20 15:01:37 UTC 2018
The annotated tag OpenSSL_1_1_1-pre8 has been created
at 9e813c328275597e43b171da435d07af05160311 (tag)
tagging 3098c3bd12530b11d2944e0bc8115f6471e4d41c (commit)
replaces OpenSSL_1_1_1-pre7
tagged by Matt Caswell
on Wed Jun 20 15:48:08 2018 +0100
- Log -----------------------------------------------------------------
OpenSSL 1.1.1-pre8 release tag
-----BEGIN PGP SIGNATURE-----
iQFFBAABCgAvFiEEhlersmDwVrHlGQg52cTSbQ5gRJEFAlsqaSgRHG1hdHRAb3Bl
bnNzbC5vcmcACgkQ2cTSbQ5gRJHzqgf/QlmExYOUiE3f43Lk9XHX3fCwqHRjTqUK
m7lHl3oizBFHPIEhgRFUBFgBs6dG+1VxIHacDW1fQBivWWHeP3qOpd4DcqAm3A8I
2BF2qZDFQ2hnlvc0sbiscybNkZUv5jBZvBbX21uSBWADbi5OiFTZ39KnXQpklx4/
N7a1FGaLHO+Lmpxzd580lKsaTHISwZgoob7vBr0G6W6FvZx6xxmbkDvPUsPgyUuc
4ALRKAc/EkepJVDpJ59K8eTLda1w4niZ+bpbZlHQkFUPzMWwqo0K+WBndnzEWK/M
4wEPSqFDvGtmvqvNXPXeQUqTetUB75+ipYJcB0qC/vM0bOFG1myfcw==
=2eRu
-----END PGP SIGNATURE-----
Andy Polyakov (31):
apps/speed.c: clean up SIGARM handling.
apps/speed.c: add -aead flag.
apps/speed.c: address asan failure with small -bytes and large -misalign.
perlasm/ppc-xlate.pl: add new instructions and clean up.
chacha/asm/chacha-ppc.pl: optimize AltiVec/VMX code path.
evp/e_aes.c: replace calls to one-liners with references in GCM.
modes/gcm128.c: coalesce calls to GHASH.
{arm64|x86_64}cpuid.pl: add special 16-byte case to OPENSSL_memcmp.
PPC assembly pack: correct POWER9 results.
chacha/asm/chacha-ppc.pl: improve POWER8 performance by 15%.
sha/asm/sha512p8-ppc.pl: improve POWER9 performance by ~10%.
sha/asm/sha512p8-ppc.pl: fix build on Mac OS X.
perlasm/ppc-xlate.pl: add vmrg[eo]w instructions.
chacha/asm/chacha-ppc.pl: improve performance by 40/80% on POWER8/9.
crypto/ppccap.c: wire new ChaCha20_ctr32_vsx.
chacha/asm/chacha-ppc.pl: fix big-endian build.
Configurations/*.conf: ios targets face-lift.
rand/rand_unix.c: omit error from DSO_global_lookup.
rand/rand_unix.c: bypass DSO_global_lookup on ELF systems.
bn/asm/sparcv9-mont.pl: iron another glitch in squaring code path.
Configurations/10-main.conf: reinstate soname on Solaris.
Configure: add shared() to facilitate shared-specific flags.
Configurations/10-main.conf: AIX configs unification.
Configurations/10-main.conf: replace -bexpall with explicit list on AIX.
Configurations/10-main.conf: move hpux-shared flags to hpux-common.
Configurations/10-main.conf: improve Makefile readability on AIX and Solaris.
bn/bn_exp.c: harmonize all code paths with last commit.
bn/asm/rsaz-avx2.pl: harmonize clang version detection.
sha/asm/sha{1|256}-586.pl: harmonize clang version detection.
{chacha|poly1305}/asm/*-x64.pl: harmonize clang version detection.
ec/asm/ecp_nistz256-avx2.pl: harmonize clang version detection.
Bernd Edlinger (1):
Fix test sm2 test failure with ec blinding
David Cooper (1):
Update certificates in demos/bio, demos/cms, demos/smime
David von Oheimb (4):
export data_dir of Test.pm, which was forgotten in #5928
remove needless and misleading malloc failure error messages of PKCS12_SAFEBAG_create_pkcs8_encrypt
add 'unsupported cipher mode' diagnostics to evp_lib.c and genpkey.c
add cast in test/x509aux.c preventing compiler warning for VC-WIN64A architecture
Dmitry Belyavskiy (5):
Bugfix: GOST2012 certificates for GOST ciphersuites were broken.
Send GOST SignatureAlgorithms when TLS 1.2 in use
Text description of GOST signature algorithms
Documentation for missing s_client/s_server options
New GOST identificators
Dr. Matthias St. Pierre (2):
RAND_POOL: Add missing implementations for djgpp
Improve the output of `make doc-nits`
Eric S. Raymond (2):
Fix manpage problems
Repair broken C syntax (missing close parens) in a manual page.
Georg Schmidt (1):
Issue warnings for large DSA and RSA keys
Guido Vranken (1):
Reject excessively large primes in DH key generation.
Jack Lloyd (4):
Make SM2 functions private
Set SM2 error codes
Add EVP_PKEY_set_alias_type
Move SM2 algos to SM2 specific PKEY method
Ken Goldman (1):
Document failure return for ECDSA_SIG_new
Kurt Roeckx (4):
Add support for KERN_ARND to get random bytes on NetBSD
Look up availability of getentropy() at runtime.
Remove support for calling getrandom(), we now always call getentropy()
Fix checking the return value of getentropy()
Marcus Huewe (1):
Do not free a session before calling the remove_session_cb
Matt Caswell (38):
Prepare for 1.1.1-pre8-dev
Update the "Connected Commands" section of s_client/s_server docs
The result of a ^ 0 mod -1 is 0 not 1
Test that a ^ 0 mod -1 is always 0
Remove some logically dead code
Remove some logically dead code
EVP_MD_size() can return an error
Only set TCP_NODELAY if the protocol is TCP
Free a variable on an error path
Free a variable
Fix a memory leak in an error path
Don't call setsockopt with an invalid fd
Add test recipes for internal SM2 tests
Further work on SM2 error codes
Improve use of the test framework in the SM2 internal tests
More more on SM2 error codes and tidy up
Remove non-existant functions from libcrypto.num
Use lowercase for internal SM2 symbols
Rebuild error codes
Fix no-dsa
Fix EAP-FAST
Fix TLSv1.3 ticket nonces
Don't store the ticket nonce in the session
Reformulate the if condition in tls_process_new_session_ticket
Add support getting raw private/public keys
Document the raw key getter functions
Add function for setting the EVP_PKEY_ASN1_METHOD raw key getter functions
Add a test for the raw private/public key getters
Fix no-ec
Fix TLSv1.3 alert handling
Don't send a warning alert in TLSv1.3
Remodel the if sequence for handling alerts
Add blinding to an ECDSA signature
Fix error number clash
Fix enable-ssl3 enable-ssl3-method
Fix no-sm2
Update copyright year
Prepare for 1.1.1-pre8 release
Mingtao Yang (2):
Add APIs for custom X509_LOOKUP_METHOD creation
modes/ocb128.c: Reset nonce-dependent variables on setiv
Nicola Tuveri (2):
Deprecate DSA_sign_setup() in the documentation
Fix & update documentation about RAND_priv_bytes()
Paul Kehrer (1):
update pyca/cryptography submodule
Rich Salz (2):
Make OS/X more explicit, to avoid questions
Improve wording
Richard Levitte (15):
OSSL_STORE: don't test file: URIs on Mingw
apps: when the 'compat' nameopt has been set, leave it be
ENGINE_pkey_asn1_find_str(): don't assume an engine implements ASN1 method
STORE: split off the description of the 'file' scheme loader
crypto/sm2/sm2_za.c: include internal/numbers.h
Document UTF-8 expectation for pass phrases passed to OSSL_STORE
VMS: have mkdef.pl parse lettered versions properly
util/ck_errf.pl: add detection of unknown libcrypto and libssl libs
util/ck_errf.pl: add functionality that brings it closer to util/mkerr.pl
make errors: use the new util/ck_errf.pl options
.travis.yml: give make update exit code meaning again
Make ck_errf.pl ignore commented out error generation
doc/man7/passphrase-encoding.pod: Make consistent
Configure option 'no-deprecated' means '-DOPENSSL_API_COMPAT=0x10100000L'
Convert our own check of OPENSSL_NO_DEPRECATED
Sohaib ul Hassan (1):
Implement coordinate blinding for EC_POINT
Todd Short (3):
Fix no-sm2 with clang
Replace strdup() with OPENSSL_strdup()
Add support for RSA-PSS to X509_certificate_type()
User (1):
bn/bn_exp.c: mitigation of the One-and-Done side-channel attack.
Viktor Dukhovni (1):
Document return value of X509_add_ext
Yihong Wang (1):
Reduce minimal out length in CRYPTO_128_unwrap_pad
-----------------------------------------------------------------------
More information about the openssl-commits
mailing list