Secure Sockets and Transport Layer Security
The OpenSSL Project is a collaborative effort to develop a robust,
commercial-grade, full-featured, and open source toolkit implementing
the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS
v1) protocols with full-strength cryptography. The project is managed
by a worldwide community of volunteers that use the Internet to
communicate, plan, and develop the OpenSSL toolkit and its related
documentation.
Derivation and License
OpenSSL is based on the excellent SSLeay library developed by Eric A.
Young and Tim J. Hudson. The OpenSSL toolkit is licensed under an
Apache-style license, which basically means that you are free to get it
and to use it for commercial and noncommercial purposes.
- Developed at security:tls
- Sources inherited from project openSUSE:Factory
-
7
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout devel:ARM:Factory:Contrib:ILP32/openssl && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| README.SuSE | 0000000370 370 Bytes | |
| VIA_padlock_support_on_64systems.patch | 0000007419 7.25 KB | |
| baselibs.conf | 0000000171 171 Bytes | |
| bug610223.patch | 0000000428 428 Bytes | |
| merge_from_0.9.8k.patch | 0000002458 2.4 KB | |
| openssl-1.0.0-c_rehash-compat.diff | 0000001241 1.21 KB | |
| openssl-1.0.1e.tar.gz | 0004459777 4.25 MB | |
| openssl-1.0.1e.tar.gz.asc | 0000000482 482 Bytes | |
| openssl-fix-pod-syntax.diff | 0000016821 16.4 KB | |
| openssl-ocloexec.patch | 0000005039 4.92 KB | |
| openssl.changes | 0000055364 54.1 KB | |
| openssl.spec | 0000012980 12.7 KB | |
| openssl.test | 0000000063 63 Bytes |
Revision 90 (latest revision is 171)
Stephan Kulow (coolo)
accepted
request 181537
from
Dr. Werner Fink (WernerFink)
(revision 90)
- Build enable-ec_nistp_64_gcc_128, ecdh is many times faster but only works in x86_64. According to the openSSL team "it is superior to the default in multiple regards (speed, and also security as the new implementations are secure against timing attacks)" It is not enabled by default due to the build system being unable to detect if the compiler supports __uint128_t. (forwarded request 181467 from elvigia)
Comments 10
Can anyone explain, openssl-1.0.2i-new-fips-reqs.patch is for what and which code based ? I'm unable to map to any code base either openssl-1.0.2i nor openssl-fips which found in https://www.openssl.org/
It is from a seperate FIPS patchset which we used for FIPS certification of openssl in SLES 12 and SLES 12 SP2.
Can i get the source copy of it ?
check out these sources: SUSE:SLE-12-SP2:Update openssl
I'm sorry, couldn't able to locate the exact link. If you don't mind can you help me to point the link ?
https://build.opensuse.org/package/show/SUSE:SLE-12:Update/openssl
Thanks a lot. anyway i can't find openssl-1.0.2i-new-fips-reqs.patch in this path of any updation. I think it's been deleted, prior to this can find openssl-1.0.1i-new-fips-reqs.patch.
make that https://build.opensuse.org/package/show/SUSE:SLE-12-SP2:Update/openssl
Thank you, got it. Basically the New requirements of FIPS 140-2 RSA/DSA were adopted from Red Hat Inc right ?
The patchset is largely from Redhat, we did some small adaptions to even stricter FIPS requirements but I do not recall the details.