[openssl] OpenSSL_1_1_1i create

Matt Caswell matt at openssl.org
Tue Dec 8 14:42:55 UTC 2020 

The annotated tag OpenSSL_1_1_1i has been created
        at  b20ed74af60bd279c3584d1478b1c2870b54ec71 (tag)
   tagging  90cebd1b216e0a160fcfd8e0eddca47dad47c183 (commit)
  replaces  OpenSSL_1_1_1h
 tagged by  Matt Caswell
        on  Tue Dec 8 13:20:59 2020 +0000

- Log -----------------------------------------------------------------
OpenSSL 1.1.1i release tag
-----BEGIN PGP SIGNATURE-----

iQFFBAABCAAvFiEEhlersmDwVrHlGQg52cTSbQ5gRJEFAl/PfbsRHG1hdHRAb3Bl
bnNzbC5vcmcACgkQ2cTSbQ5gRJH15Qf9EQizVoKS9cJcd63a0mMnSOdPkNZt4r7l
gCBgxODMiix/8teooeTTBTFQlqPVEkXkBNWh2xs/Uq2lgfkZE2Da7iCGr0TeyiYH
VynnWDOB4/QA7w3lilG/YkqqG/H6HkM/P5l9WIeYjd5THy56HiEHKE1di7kNO8T6
9DXj2mA56UroRiqpKq118lNRxksBH9FxpqtpiWzOMaxYOSRjXcyhlYX94JySwb4Y
VcPCr7XBu+yKNhK0fZKT/bjDHLjIYPaykcLcNAWqNAl4ivKTDt94WGQ5DSB90umS
h2RcocC3TFsyA0oTZlG/qSUsMB2NjJru4i8R9oLlNPo3a5aD5hntcw==
=Rcf9
-----END PGP SIGNATURE-----

Akshit Akhoury (1):
      Changing X509at_get0_data_by_OBJ to expect const stack of X509_ATTRIBUTE

André Klitzing (1):
      Allow to continue on UNABLE_TO_VERIFY_LEAF_SIGNATURE

Ard Biesheuvel (2):
      crypto/poly1305/asm: fix armv8 pointer authentication
      aes/asm/aesv8-armx.pl: avoid 32-bit lane assignment in CTR mode

Benjamin Kaduk (2):
      Unify ssl3_get_cipher_by_std_name() implementation
      Fix comment in do_dtls1_write()

Benny Baumann (2):
      Use size of target buffer for allocation
      Avoid memory leak of parent on allocation failure for child structure

Dmitry Belyavskiy (1):
      Verification zero-length content in S/MIME format

Dr. David von Oheimb (2):
      Turn on Github CI - backport improved ci.yml to 1.1.1
      x509_vfy.c: Restore rejection of expired trusted (root) certificate

Ikko Ashimine (1):
      Fixed typo in ssl_lib.c

Matt Caswell (13):
      Prepare for 1.1.1i-dev
      Pass an EVP_PKEY for SSL_SECOP_TMP_DH in the security callback
      Add a CHANGES entry for the SSL_SECOP_TMP_DH change
      Ensure we raise SSLfatal on error
      DirectoryString is a CHOICE type and therefore uses explicit tagging
      Correctly compare EdiPartyName in GENERAL_NAME_cmp()
      Check that multi-strings/CHOICE types don't use implicit tagging
      Complain if we are attempting to encode with an invalid ASN.1 template
      Add a test for GENERAL_NAME_cmp
      Add a test for encoding/decoding using an invalid ASN.1 Template
      Update CHANGES and NEWS for new release
      Update copyright year
      Prepare for 1.1.1i release

Pauli (1):
      rsa_test: add return value check

Richard Levitte (1):
      CHANGES: Move misplaced change item

Romain Geissler (1):
      Fix aarch64 static linking into shared libraries (see issue #10842 and pull request #11464)

Stuart Carnie (1):
      Configuration: darwin64-arm64-cc for Apple silicon

T.Yanagisawa (1):
      Correct description of BN_mask_bits

Tomas Mraz (1):
      Avoid potential doublefree on dh object assigned to EVP_PKEY

Yury Is (1):
      syscall_random(): don't fail if the getentropy() function is a dummy

drgler (1):
      Ensure that _GNU_SOURCE is defined for NI_MAXHOST and NI_MAXSERV

hklaas (1):
      optimise ssl3_get_cipher_by_std_name()

ihsinme (1):
      Update bio_ok.c

simplelins (1):
      Fix AES-GCM bug on aarch64 BigEndian

xuyunjia (1):
      resolve defects: reverse_inull; row[DB_exp_date] referenced before checking

-----------------------------------------------------------------------

More information about the openssl-commits mailing list