OpenSSL 3.5

-----------

### Changes between 3.5.2 and 3.5.3 [16 Sep 2025]

* Avoided a potential race condition introduced in 3.5.1, where

`OSSL_STORE_CTX` kept open during lookup while potentially being used

by multiple threads simultaneously, that could lead to potential crashes

when multiple concurrent TLS connections are served.

*Matt Caswell*

* The FIPS provider no longer performs a PCT on key import for RSA, DH,

and EC keys (that was introduced in 3.5.2), following the latest update

on that requirement in FIPS 140-3 IG 10.3.A additional comment 1.

*Dr Paul Dale*

* Secure memory allocation calls are no longer used for HMAC keys.

*Dr Paul Dale*

* `openssl req` no longer generates certificates with an empty extension list

when SKID/AKID are set to `none` during generation.

*David Benjamin*

* The man page date is now derived from the release date provided

in `VERSION.dat` and not the current date for the released builds.

*Enji Cooper*

* Hardened the provider implementation of the RSA public key "encrypt"

operation to add a missing check that the caller-indicated output buffer

size is at least as large as the byte count of the RSA modulus. The issue

was reported by Arash Ale Ebrahim from SYSPWN.

This operation is typically invoked via `EVP_PKEY_encrypt(3)`. Callers that

in fact provide a sufficiently large buffer, but fail to correctly indicate

its size may now encounter unexpected errors. In applications that attempt

RSA public encryption into a buffer that is too small, an out-of-bounds

write is now avoided and an error is reported instead.

*Viktor Dukhovni*

* Added FIPS 140-3 PCT on DH key generation.

*Nikola Pajkovsky*

* Fixed the synthesised `OPENSSL_VERSION_NUMBER`.

*Richard Levitte*

### Changes between 3.5.1 and 3.5.2 [5 Aug 2025]

* The FIPS provider now performs a PCT on key import for RSA, EC and ECX.

##

## {- join("\n## ", @autowarntext) -}

{-

use Time::Piece;

use OpenSSL::Util;

our $makedep_scheme = $config{makedep_scheme};

VERSION={- "$config{full_version}" -}

VERSION_NUMBER={- "$config{version}" -}

RELEASE_DATE={- my $t = localtime;

if ($config{"release_date"}) {

# Provide the user with a more meaningful error message

# than the default internal parsing error from

# `Time::Piece->strptime(..)`.

eval { $t = Time::Piece->strptime($config{"release_date"}, "%d %b %Y"); } ||

die "Parsing \$config{release_date} ('$config{release_date}') failed: $@";

}

$t->strftime("%Y-%m-%d") -}

MAJOR={- $config{major} -}

MINOR={- $config{minor} -}

SHLIB_VERSION_NUMBER={- $config{shlib_version} -}

return <<"EOF";

$args{src}: $pod

pod2man --name=$name --section=$section\$(MANSUFFIX) --center=OpenSSL \\

--release=\$(VERSION) $pod >\$\@

--date=\$(RELEASE_DATE) --release=\$(VERSION) \\

$pod >\$\@

EOF

} elsif (platform->isdef($args{src})) {

#

OpenSSL 3.5

-----------

### Major changes between OpenSSL 3.5.2 and OpenSSL 3.5.3 [16 Sep 2025]

* Added FIPS 140-3 PCT on DH key generation.

*Nikola Pajkovsky*

* Fixed the synthesised `OPENSSL_VERSION_NUMBER`.

*Richard Levitte*

### Major changes between OpenSSL 3.5.1 and OpenSSL 3.5.2 [5 Aug 2025]

* none

`\\HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432node\OpenSSL-<version>-<ctx>`

Where `<version>` is the major.minor version of the library being

built, and `<ctx>` is the value specified by `-DOPENSSL_WINCTX`. This allows

built, and `<ctx>` is the value specified by `-DOSSL_WINCTX`. This allows

for multiple openssl builds to be created and installed on a single system, in

which each library can use its own set of registry keys.

MAJOR=3

MINOR=5

PATCH=2

PATCH=3

PRE_RELEASE_TAG=

BUILD_METADATA=

RELEASE_DATE="5 Aug 2025"

RELEASE_DATE="16 Sep 2025"

SHLIB_VERSION=3

goto end;

}

if (ret <= 0) {

BIO_printf(bio_err, "Error writing CMS output\n");

ret = 6;

goto end;

}

goto opthelp;

if (k)

n *= 1024;

if (n > INT_MAX)

goto opthelp;

bsize = (int)n;

break;

case OPT_K:

/* progress callback for dsaparam, dhparam, req, genpkey, etc. */

int progress_cb(EVP_PKEY_CTX *ctx);

int chopup_args(ARGS *arg, char *buf);

void dump_cert_text(BIO *out, X509 *x);

void print_name(BIO *out, const char *title, const X509_NAME *nm);

void print_bignum_var(BIO *, const BIGNUM *, const char *,

const NAME_EX_TBL *in_tbl);

int app_init(long mesgwin);

int chopup_args(ARGS *arg, char *buf)

{

int quoted;

char c = '\0', *p = NULL;

arg->argc = 0;

if (arg->size == 0) {

arg->size = 20;

arg->argv = app_malloc(sizeof(*arg->argv) * arg->size, "argv space");

}

for (p = buf;;) {

/* Skip whitespace. */

while (*p && isspace(_UC(*p)))

p++;

if (*p == '\0')

break;

/* The start of something good :-) */

if (arg->argc >= arg->size) {

char **tmp;

arg->size += 20;

tmp = OPENSSL_realloc(arg->argv, sizeof(*arg->argv) * arg->size);

if (tmp == NULL)

return 0;

arg->argv = tmp;

}

quoted = *p == '\'' || *p == '"';

if (quoted)

c = *p++;

arg->argv[arg->argc++] = p;

/* now look for the end of this */

if (quoted) {

while (*p && *p != c)

p++;

*p++ = '\0';

} else {

while (*p && !isspace(_UC(*p)))

p++;

if (*p)

*p++ = '\0';

}

}

arg->argv[arg->argc] = NULL;

return 1;

}

#ifndef APP_INIT

int app_init(long mesgwin)

{

resp =

OCSP_response_create(OCSP_RESPONSE_STATUS_MALFORMEDREQUEST,

NULL);

send_ocsp_response(cbio, resp);

if (resp != NULL)

send_ocsp_response(cbio, resp);

}

goto done_resp;

}

BIO_free(derbio);

}

i = OCSP_response_status(resp);

if (i != OCSP_RESPONSE_STATUS_SUCCESSFUL) {

BIO_printf(out, "Responder Error: %s (%d)\n",

OCSP_response_status_str(i), i);

if (!ignore_err)

if (resp != NULL) {

i = OCSP_response_status(resp);

if (i != OCSP_RESPONSE_STATUS_SUCCESSFUL) {

BIO_printf(out, "Responder Error: %s (%d)\n",

OCSP_response_status_str(i), i);

if (!ignore_err)

goto end;

}

}

if (resp_text)

OCSP_RESPONSE_print(out, resp, 0);

if (resp_text)

OCSP_RESPONSE_print(out, resp, 0);

}

/* If running as responder don't verify our own response */

if (cbio != NULL) {