# to ease stable backports application
add-missing-files.patch
# stable backports + s390x backports
0001-Prepare-for-1.1.1e-dev.patch
0002-crypto-threads_none.c-fix-syntax-error-in-openssl_ge.patch
0003-crypto-threads_win.c-fix-preprocessor-indentation.patch
0004-BIO_f_zlib-Properly-handle-BIO_CTRL_PENDING-and-BIO_.patch
0005-Fix-potential-memory-leaks-with-BN_to_ASN1_INTEGER.patch
0006-Add-a-minimal-windows-build-config-for-AppVeyor.patch
0007-Add-a-minimal-linux-build-target-for-Travis.patch
0008-Do-no-mention-private-headers-in-public-headers.patch
0009-Fix-small-typo-in-doc-for-X509_STORE_CTX_new.patch
0010-clearing-the-ecx-private-key-memory.patch
0011-Fix-building-statically-without-any-dso-support.patch
0012-apps-pkcs12-print-multiple-PKCS-12-safeBag-attribute.patch
0013-Use-the-correct-maximum-indent.patch
0014-DOC-fix-documentation-of-som-EVP_MD_CTX-functions.patch
0015-Reorganize-private-crypto-header-files.patch
0016-Reorganize-local-header-files.patch
0017-Fix-header-file-include-guard-names.patch
0018-Add-util-fix-includes-script.patch
0019-Fix-a-return-value-bug-in-apps-speed.c.patch
0020-Fix-a-bundle-of-mischecks-of-return-values.patch
0021-Correct-the-function-names-in-SSL_CTX_set_stateless_.patch
0022-Add-defines-for-__NR_getrandom-for-all-Linux-archite.patch
0023-Fix-long-name-of-some-Microsoft-objects.patch
0024-Do-not-print-extensions-in-Certificate-message-for-T.patch
0025-doc-EVP_DigestInit-clears-all-flags.patch
0026-Add-arm64-in-test-matrix-on-TravisCI.patch
0027-Fix-iOS-simulator-build.patch
0028-rsa-replace-magic-number-11-by-RSA_PKCS1_PADDING_SIZ.patch
0029-Define-AESNI_ASM-if-AESNI-assembler-is-included-and-.patch
0030-init_buf-memory-can-be-freed-when-DTLS-is-used-over-.patch
0031-Fix-typo-in-comment.patch
0032-Send-bad_record_mac-instead-of-decryption_failed.patch
0033-Add-documentation-for-PEM_-read-write-_bio_Parameter.patch
0034-Fix-reference-to-PEM-docs.patch
0035-ssl-statem-statem_lib.c-make-servercontext-clientcon.patch
0036-Fix-unused-goto-label-gcc-warning.patch
0037-Ignore-empty-ALPN-elements-in-CLI-args.patch
0038-Configure-accept-Windows-style-compiler-options.patch
0039-ec_asn1.c-Avoid-injecting-seed-when-built-in-matches.patch
0040-Ignore-duplicated-undocumented-things.patch
0041-Add-missing-EVP_MD-documentation.patch
0042-Document-and-add-macros-for-additional-DSA-options.patch
0043-Add-documentation-for-the-sigopt-option.patch
0044-issue-8493-Fix-for-filenames-with-newlines-using-ope.patch
0045-i2d_PublicKey-was-listed-in-2-different-man-pages.patch
0046-Fix-an-incorrect-macro.patch
0047-crypto-asn1-x_bignum.c-Explicit-test-against-NULL.patch
0048-Unify-BN_rshift-design.patch
0049-Constant-time-GCD-function.patch
0050-Add-GCD-testing-infrastructure.patch
0051-rand_unix.c-correct-include-guard-comments.patch
0052-Move-random-related-defines-from-e_os.h-to-rand_unix.patch
0053-fixed-the-RETURN-VALUES-section-in-the-EC_GROUP-docu.patch
0054-Update-dgst.c-to-show-a-list-of-message-digests.patch
0055-Improve-formatting-for-man3-EC_GROUP_new.pod.patch
0056-Fix-doc-for-EC_GROUP_set_curve.patch
0057-Update-control-logic-for-BN_gcd.patch
0058-Enable-runtime-testing-of-no-deprecated-builds-in-Tr.patch
0059-Cleanup-hardcoded-cipher-suite-codepoints-in-s_serve.patch
0060-Allow-EVP_PKEY_get0_RSA-for-RSA-PSS-keys.patch
0061-Fix-a-copy-paste-error-in-the-TLSv1.3-server-side-PS.patch
0062-Fix-an-s_server-arbitrary-file-read-issue-on-Windows.patch
0063-Suppress-an-error-when-doing-SM2-sign-verify-ops.patch
0064-apps-dgst.c-allocate-a-new-signature-buffer.patch
0065-Fix-find-rm-command-in-Unix-clean-recipe.patch
0066-crypto-bn-fix-a-few-small-timing-leaks-in-BN_lshift1.patch
0067-Fix-SYNOPSIS-for-ASN1_ENUMERATED_get_int64-and-ASN1_.patch
0068-Fix-potential-memory-leak-in-dh_ameth.c.patch
0069-md4-md5-macros-should-not-include-the-line-following.patch
0070-Add-test-cases-for-min-max-protocol-API.patch
0071-VMS-Added-new-method-to-gather-entropy-on-VMS-based-.patch
0072-s390x-assembly-pack-enable-clang-build.patch
0073-Don-t-leak-memory-in-the-event-of-a-failure-in-i2v_G.patch
0074-BIO_s_connect-add-an-error-state-and-use-it.patch
0075-Configure-Make-strict-warnings-meaningful-with-MSVC-.patch
0076-conf_def.c-Avoid-calling-strlen-in-a-loop.patch
0077-Fix-a-Warray-bounds-gcc-warning-in-OPENSSL_DIR_read.patch
0078-Fix-strict-warnings-build.patch
0079-Workaround-for-Windows-based-GOST-implementations.patch
0080-Fix-misspelled-resumption_label-for-CHARSET_EBCDIC.patch
0081-SSL-Document-SSL_add_-file-dir-_cert_subjects_to_sta.patch
0082-Add-more-tests-for-apps-req.patch
0083-Fix-EC_POINT_bn2point-for-BN_zero.patch
0084-Add-self-test-for-EC_POINT_hex2point.patch
0085-Extend-docs-for-EC_POINT-conversion-functions.patch
0086-chacha_enc.c-fix-for-EBCDIC-platforms.patch
0087-testutil-init.c-rename-to-testutil-testutil_init.c.patch
0088-travis.yml-add-arch-s390x-target.patch
#0089-Add-missing-EVP_PKEY_METHOD-accessors-for-digestsign.patch
0090-s390x-assembly-pack-fix-bn_mul_comba4.patch
0091-Allow-specifying-the-tag-after-AAD-in-CCM-mode-2.patch
0092-Fix-sha512_block_data_order_avx2-backtrace-info.patch
0093-ECDSA-don-t-clear-free-memory-after-verify.patch
0094-Engine-Add-NULL-check.patch
0095-EVP-p_lib-Add-NULL-check-to-EVP_PKEY_missing_paramet.patch
0096-Fix-a-race-condition-in-SNI-handling.patch
0097-main-avoid-a-NULL-dereference-on-initialisation.patch
0098-UI_UTIL_wrap_read_pem_callback-when-cb-is-NULL-use-P.patch
0099-doc-man7-proxy-certificates.pod-New-guide-for-proxy-.patch
0100-i2b_PVK-Use-Encrypt-not-Decrypt.patch
0101-Fix-L-EVP_MD_CTX_set_pkey_ctx-links.patch
0102-apps-ocsp.c-sock_timeout-socket_timeout.patch
0103-EVP_-Update-ensure-that-input-NULL-with-length-0-isn.patch
0104-Add-a-test-for-NULL-chunks-in-encrypt-decrypt.patch
0105-Update-NOTES.ANDROID-for-newer-NDK-versions-small-fi.patch
0106-Remove-spurious-space-from-file.patch
0107-Fix-exit-issue-in-travisci.patch
0108-Fix-an-overflow-bug-in-rsaz_512_sqr.patch
0109-Improve-the-overflow-handling-in-rsaz_512_sqr.patch
0110-Add-a-test-case-for-rsaz_512_sqr-overflow-handling.patch
0111-Add-a-CHANGES-entry-for-CVE-2019-1551.patch
0112-Difference-between-EVP_CipherInit-and-EVP_CipherInit.patch
0113-Fix-some-typos.patch
0114-Fix-docs-for-CRYPTO_secure_allocated.patch
0115-Enrich-arm64-tests-in-Travis-matrix.patch
0116-Check-return-value-after-loading-config-file.patch
0117-Parse-large-GOST-ClientKeyExchange-messages.patch
0118-util-mkerr.pl-revert-accidental-change-of-header-gua.patch
0119-rand_lib.c-fix-null-pointer-dereferences-after-RAND_.patch
0120-Return-1-when-openssl-req-addext-kv-is-duplicated.patch
0121-Ensure-EVP_PKEY_set1_DH-detects-X9.42-keys.patch
0122-Test-that-EVP_PKEY_set1_DH-correctly-identifies-the-.patch
#0123-Backport-the-RSA_get0_pss_params-function-from-maste.patch
0124-Update-the-HISTORY-entry-for-RSA_get0_pss_params.patch
0125-apps-speed.c-Fix-eddsa-sign-and-verify-output-with-m.patch
0126-Fix-unwind-info-for-some-trivial-functions.patch
0127-Disable-devcryptoeng-on-newer-OpenBSD-versions.patch
0128-Configuration-compute-openssl_other_defines-and-rela.patch
0129-Fix-regression-on-x509-keyform-argument.patch
0130-Add-some-missing-cfi-frame-info-in-camellia-x86_64.p.patch
## good above
0131-Add-some-missing-cfi-frame-info-in-x86_64-mont5.pl.patch
0132-Add-some-missing-cfi-frame-info-in-rsaz-x86_64.patch
0133-Add-some-missing-cfi-frame-info-in-aesni-x86_64.pl.patch
0134-Add-some-missing-cfi-frame-info-in-keccak1600-x86_64.patch
0135-Add-some-missing-cfi-frame-info-in-aesni-sha-and-sha.patch
0136-Fix-evp_extra_test-with-no-dh.patch
0137-Add-some-missing-cfi-frame-info-in-ecp_nistz256-x86_.patch
0138-Fix-aesni_cbc_sha256_enc_avx2-backtrace-info.patch
0139-Add-some-missing-cfi-frame-info-in-x25519-x86_64.pl.patch
0140-Add-some-missing-cfi-frame-info-in-aesni-gcm-x86_64..patch
0141-Add-some-missing-cfi-frame-info-in-poly1305-x86_64.p.patch
0142-Add-some-missing-cfi-frame-info-in-rc4-md5-x86_64.pl.patch
0143-Fix-a-race-condition-in-the-speed-command.patch
#0144-Update-the-krb5-submodule.patch
0145-Temporarily-disable-external-pyca-tests.patch
0146-Update-tls13_enc.c.patch
0147-Run-make-update.patch
0148-Fix-potential-SCA-vulnerability-in-some-EC_METHODs.patch
0149-Avoid-leaking-intermediate-states-in-point-doubling-.patch
0150-Fix-side-channel-in-ecp_nistz256-x86.pl.patch
0151-Fix-side-channel-in-ecp_nistz256-armv4.pl.patch
0152-Improve-side-channel-fix-in-ecp_nistz256-x86_64.pl.patch
0153-Fix-side-channel-in-the-ecp_nistz256.c-reference-imp.patch
0154-Fix-side-channel-in-ecp_nistz256-armv8.pl.patch
0155-Fix-disabled-ecdsa-in-apps-speed.patch
0156-Fix-incorrect-return-code-on-ECDSA-key-verification.patch
0157-Don-t-store-an-HMAC-key-for-longer-than-we-need.patch
0158-Revert-Move-random-related-defines-from-e_os.h-to-ra.patch
0159-Fix-pkeyutl-verifyrecover.patch
0160-fix-a-glitch-in-the-documentation-of-OCSP_sendreq_bi.patch
0161-Configure-use-list_separator_re-only-for-defines-and.patch
0162-Avoid-leak-in-error-path-of-asn1_parse2.patch
0163-Fix-documentation-of-return-value-for-EVP_Digest-Sig.patch
0164-Update-SSL_CTX_sess_set_new_cb-3-docs-for-refcounts.patch
0165-For-all-assembler-scripts-where-it-matters-recognise.patch
0166-Fix-unwind-info-in-crypto-rc4-asm-rc4-x86_64.pl.patch
0167-Fix-TLS-not-using-aes_cbc_hmac_sha-ciphers.patch
0168-Remove-remaining-references-to-crypto-include.patch
0169-openssl-config-add-example-libssl-system-defaults.patch
0170-Replace-apps-server.pem-with-certificate-with-a-sha2.patch
0171-Check-that-the-default-signature-type-is-allowed.patch
0172-OpenSSL-Test-bring-back-the-relative-paths.patch
0173-Fix-type-name-typo-in-d2i-i2d-documentation.patch
0174-Fix-SSL_get_servername-and-SNI-behaviour.patch
0175-Test-that-SSL_get_servername-returns-what-we-expect.patch
0176-Provide-better-documentation-for-SSL_get_servername.patch
0177-Don-t-acknowledge-a-servername-following-warning-ale.patch
0178-config-ensure-the-perl-Configure-run-is-the-last-sta.patch
0179-Create-a-new-embeddedSCTs1-that-s-signed-using-SHA25.patch
0180-Stop-accepting-certificates-signed-using-SHA1-at-sec.patch
## good above
0181-Fix-small-misspelling-in-doc-for-OCSP_response_statu.patch
0182-doc-Fix-typo-in-EVP_DigestSignInit-manpage.patch
0183-Prevent-compiler-warning-for-unused-static-function.patch
0184-Fix-misspelling-errors-and-typos-reported-by-codespe.patch
0185-Coverity-CID-1444960-Error-handling-issues.patch
0186-Avoid-leak-in-error-path-of-PKCS5_PBE_keyivgen.patch
0187-Appveyor-update-to-Visual-Studio-2017.patch
0188-Fix-no-tls1_3.patch
0189-Forgotten-GOST2012-support-in-non-vital-places.patch
0190-Adjust-minimal-build-config-in-1.1.1-branch.patch
0191-VMS-Adapt-descrip.mms-template-to-the-changed-inclus.patch
0192-VMS-Correct-error-reporting-in-crypto-rand-rand_vms..patch
0193-DOC-document-in-more-detail-what-a-BIO_read_ex-via-B.patch
0194-Generate-new-Ed488-certificates.patch
0195-Check-that-ed25519-and-ed448-are-allowed-by-the-secu.patch
0196-Do-not-silently-truncate-files-on-perlasm-errors.patch
0197-Handle-max_fragment_length-overflow-for-DTLS.patch
0198-Add-.d.tmp-files-to-.gitignore.patch
## good above
### bad bad bad 0199-Detect-EOF-while-reading-in-libssl.patch
### cannot build without above? 0200-Teach-more-BIOs-how-to-handle-BIO_CTRL_EOF.patch
0201-config-Drop-linux-alpha-gcc-bwx.patch
0202-VMS-mitigate-for-the-C-compiler-that-doesn-t-underst.patch
0203-apps-x509-restrict-CAkeyform-option-to-OPT_FMT_PDE.patch
0204-Fix-comment-placement-in-ecp_nistp256.ci.patch
0205-s390x-assembly-pack-add-OPENSSL_s390xcap-environment.patch
0206-s390x-assembly-pack-add-OPENSSL_s390xcap-man-page.patch
0207-s390x-assembly-pack-perlasm-support.patch
0208-crypto-chacha-asm-chacha-s390x.pl-add-vx-code-path.patch
0209-crypto-poly1305-asm-poly1305-s390x.pl-add-vx-code-pa.patch
0210-s390x-assembly-pack-fix-formal-interface-bug-in-chac.patch
0211-s390x-assembly-pack-import-chacha-from-cryptogams-re.patch
0212-s390x-assembly-pack-import-poly-from-cryptogams-repo.patch
0213-s390x-assembly-pack-allow-alignment-hints-for-vector.patch
0214-s390x-assembly-pack-update-perlasm-module.patch
0215-s390x-assembly-pack-remove-chacha20-dependency-on-no.patch
0216-s390x-assembly-pack-remove-poly1305-dependency-on-no.patch
0217-fix-strict-warnings-build.patch
0218-s390x-assembly-pack-add-support-for-pcc-and-kma-inst.patch
0219-Following-the-license-change-modify-the-boilerplates.patch
0220-Place-return-values-after-examples-in-doc.patch
0221-s390x-assembly-pack-update-OPENSSL_s390xcap-3.patch
0222-s390xcpuid.pl-fix-comment.patch
0223-s390x-assembly-pack-accelerate-scalar-multiplication.patch
0224-Enable-curve-spefific-ECDSA-implementations-via-EC_M.patch
0225-s390x-assembly-pack-accelerate-ECDSA.patch
0226-OPENSSL_s390xcap.pod-list-msa9-facility-bit-155.patch
0227-s390x-assembly-pack-fix-msa3-stfle-bit-detection.patch
0228-s390x-assembly-pack-fix-OPENSSL_s390xcap-z15-cpu-mas.patch
0229-s390x-assembly-pack-accelerate-X25519-X448-Ed25519-a.patch
0230-Add-self-generated-test-vector-for-x448-non-canonica.patch

# 1.1.1e is not final, despite all of the above patches
# thus do not call ourselves 1.1.1e-dev
revert-version-back-to-4f.patch

# Debian patches
debian-targets.patch
man-section.patch
no-symbolic.patch
pic.patch
c_rehash-compat.patch
# Remove Define-AESNI_ASM-if-AESNI-assembler-is-included-and-use-i.patch, applied alredy
# Remove Set-systemwide-default-settings-for-libssl-users.patch, this is done differently

# Ubuntu patches
tests-use-seclevel-1.patch
tls1.2-min-seclevel2.patch
