[ol7_developer_EPEL] openssl11-static-1:1.1.1c-2.el7.x86_64

Name:	openssl11-static
Epoch:	1
Version:	1.1.1c
Release:	2.el7
Architecture:	x86_64
Group:	Development/Libraries
Size:	6913748
License:	OpenSSL
RPM:	openssl11-static-1.1.1c-2.el7.x86_64.rpm
Source RPM:	openssl11-1.1.1c-2.el7.src.rpm
Build Date:	Mon Jun 01 2020
Build Host:	x86-ol7-builder-02.us.oracle.com
Vendor:	Oracle America
URL:	http://www.openssl.org/
Summary:	Libraries for static linking of applications which will use OpenSSL
Description:	OpenSSL is a toolkit for supporting cryptography. The openssl11-static package contains static libraries needed for static linking of applications which support various cryptographic algorithms and protocols.

Changelog (Show File list) (Show related packages)

Wed May 13 2020 Robert Scheck <robert@fedoraproject.org> 1.1.1c-2

- backport from 1.1.1c-15: add selftest of the RAND_DRBG implementation
- backport from 1.1.1c-14: fix incorrect error return value from FIPS_selftest_dsa
- backport from 1.1.1c-14: S390x: properly restore SIGILL signal handler
- backport from 1.1.1c-12: additional fix for the edk2 build
- backport from 1.1.1c-9: disallow use of SHA-1 signatures in TLS in FIPS mode
- backport from 1.1.1c-8: fix CVE-2019-1547 - side-channel weak encryption vulnerability
- backport from 1.1.1c-8: fix CVE-2019-1563 - padding oracle in CMS API
- backport from 1.1.1c-8: fix CVE-2019-1549 - ensure fork safety of the DRBG
- backport from 1.1.1c-8: fix handling of non-FIPS allowed EC curves in FIPS mode
- backport from 1.1.1c-8: fix TLS compliance issues
- backport from 1.1.1c-7: backported ARM performance fixes from master
- backport from 1.1.1c-6: backport of S390x ECC CPACF enhancements from master
- backport from 1.1.1c-6: FIPS mode: properly disable 1024 bit DSA key generation
- backport from 1.1.1c-6: FIPS mode: skip ED25519 and ED448 algorithms in openssl speed
- backport from 1.1.1c-6: FIPS mode: allow AES-CCM ciphersuites
- backport from 1.1.1c-5: make the code suitable for edk2 build
- backport from 1.1.1c-4: backport of SSKDF from master
- backport from 1.1.1c-3: backport of KBKDF and KRB5KDF from master

Sun Jan 19 2020 Robert Scheck <robert@fedoraproject.org> 1.1.1c-1
```
- transformed openssl-1.1.1c-2.el8 into openssl11 (#1792741)
```

Mon Jun 24 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-2

- do not try to use EC groups disallowed in FIPS mode
  in TLS
- fix Valgrind regression with constant-time code

Mon Jun 03 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1c-1
```
- update to the 1.1.1c release
```

Fri May 24 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1b-6

- adjust the default cert pbe algorithm for pkcs12 -export
  in the FIPS mode

Fri May 10 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1b-5
```
- Fix small regressions related to the rebase
```
Tue May 07 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1b-3
```
- FIPS compliance fixes
```

Tue May 07 2019 Tomáš Mráz <tmraz@redhat.com> 1.1.1b-1

- update to the 1.1.1b release
- EVP_KDF API backport from master
- SSH KDF implementation for EVP_KDF API backport from master
- add S390x chacha20-poly1305 assembler support from master branch

Fri Dec 14 2018 Tomáš Mráz <tmraz@redhat.com> 1.1.1-8
```
- make openssl ts default to using SHA256 digest
```
Wed Nov 14 2018 Tomáš Mráz <tmraz@redhat.com> 1.1.1-7
```
- use /dev/urandom for seeding the RNG in FIPS POST
```