Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package libressl for openSUSE:Factory checked in at 2024-10-16 23:48:29 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libressl (Old) and /work/SRC/openSUSE:Factory/.libressl.new.19354 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "libressl" Wed Oct 16 23:48:29 2024 rev:70 rq:1208280 version:4.0.0 Changes: -------- --- /work/SRC/openSUSE:Factory/libressl/libressl.changes 2024-05-16 17:18:24.222942786 +0200 +++ /work/SRC/openSUSE:Factory/.libressl.new.19354/libressl.changes 2024-10-16 23:49:37.536171025 +0200 @@ -1,0 +2,27 @@ +Tue Oct 15 21:13:03 UTC 2024 - Jan Engelhardt <jengelh@inai.de> + +- Update to release 4.0.0 + * Added CRLfile option to the cms command of openssl(1) to + specify additional CRLs for use during verification. + * Protocol parsing in libtls was changed. The unsupported + TLSv1.1 and TLSv1.0 protocols are ignored and no longer + enable or disable TLSv1.2 in surprising ways. + * The dangerous EVP_PKEY*_check(3) family of functions was + removed. The openssl(1) pkey and pkeyparam commands no longer + support the -check and -pubcheck flags. + * Support for Whirlpool was removed. Applications still using + this should honor OPENSSL_NO_WHIRLPOOL. + * Removed X509_REQ_{get,set}_extension_nids(). + * Removed typdefs for COMP_CTX, COMP_METHOD, X509_CRL_METHOD, + STORE, STORE_METHOD, and SSL_AEAD_CTX. + * i2d_ASN1_OBJECT() now returns -1 on error like most other + i2d_*. + * SPKAC support was removed from openssl(1). + * Added TLS1-PRF support to the EVP interface. + * SSL_CTX_set1_cert_store() and + SSL_CIPHER_get_handshake_digest() were added to libssl. + * The OpenSSL pkcs12 command and PKCS12_create() no longer + support setting the Microsoft-specific Local Key Set and + Cryptographic Service Provider attributes. + +------------------------------------------------------------------- Old: ---- libressl-3.9.2.tar.gz libressl-3.9.2.tar.gz.asc New: ---- _scmsync.obsinfo build.specials.obscpio libressl-4.0.0.tar.gz libressl-4.0.0.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libressl.spec ++++++ --- /var/tmp/diff_new_pack.wlIslB/_old 2024-10-16 23:49:38.544213065 +0200 +++ /var/tmp/diff_new_pack.wlIslB/_new 2024-10-16 23:49:38.544213065 +0200 @@ -16,7 +16,7 @@ # Name: libressl -Version: 3.9.2 +Version: 4.0.0 Release: 0 Summary: An SSL/TLS protocol implementation License: OpenSSL @@ -45,31 +45,31 @@ OpenSSL, with the aim of refactoring the OpenSSL code so as to provide a more secure implementation. -%package -n libcrypto53 +%package -n libcrypto55 Summary: An SSL/TLS protocol implementation Group: System/Libraries -%description -n libcrypto53 +%description -n libcrypto55 The "crypto" library implements a wide range of cryptographic algorithms used in various Internet standards. The services provided by this library are used by the LibreSSL implementations of SSL, TLS and S/MIME, and they have also been used to implement SSH, OpenPGP, and other cryptographic standards. -%package -n libssl56 +%package -n libssl58 Summary: An SSL/TLS protocol implementation Group: System/Libraries -%description -n libssl56 +%description -n libssl58 LibreSSL is an open-source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It derives from OpenSSL and intends to provide a more secure implementation. -%package -n libtls29 +%package -n libtls31 Summary: A simplified interface for the OpenSSL/LibreSSL TLS protocol implementation Group: System/Libraries -%description -n libtls29 +%description -n libtls31 LibreSSL is an open-source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It derives from OpenSSL and intends to provide a more secure implementation. @@ -80,9 +80,9 @@ %package devel Summary: Development files for LibreSSL, an SSL/TLS protocol implementation Group: Development/Libraries/C and C++ -Requires: libcrypto53 = %version -Requires: libssl56 = %version -Requires: libtls29 = %version +Requires: libcrypto55 = %version +Requires: libssl58 = %version +Requires: libtls31 = %version Conflicts: ssl-devel Provides: ssl-devel @@ -142,9 +142,9 @@ exit 1 fi -%ldconfig_scriptlets -n libcrypto53 -%ldconfig_scriptlets -n libssl56 -%ldconfig_scriptlets -n libtls29 +%ldconfig_scriptlets -n libcrypto55 +%ldconfig_scriptlets -n libssl58 +%ldconfig_scriptlets -n libtls31 %files %dir %_sysconfdir/ssl/ @@ -157,13 +157,13 @@ %_mandir/man8/*.8* %doc COPYING -%files -n libcrypto53 +%files -n libcrypto55 %_libdir/libcrypto.so.* -%files -n libssl56 +%files -n libssl58 %_libdir/libssl.so.* -%files -n libtls29 +%files -n libtls31 %_libdir/libtls.so.* %files devel ++++++ _scmsync.obsinfo ++++++ mtime: 1729062446 commit: ed73a07c41b500f8a7c58149e7655aea5d58aec39c2b4debeccc3225cac37e92 url: https://src.opensuse.org/jengelh/libressl revision: master ++++++ baselibs.conf ++++++ --- /var/tmp/diff_new_pack.wlIslB/_old 2024-10-16 23:49:38.588214900 +0200 +++ /var/tmp/diff_new_pack.wlIslB/_new 2024-10-16 23:49:38.592215067 +0200 @@ -1,10 +1,10 @@ -libcrypto53 -libssl56 -libtls29 +libcrypto55 +libssl58 +libtls31 libressl-devel requires -libressl-<targettype> - requires "libcrypto53-<targettype> = <version>" - requires "libssl56-<targettype> = <version>" - requires "libtls29-<targettype> = <version>" + requires "libcrypto55-<targettype> = <version>" + requires "libssl58-<targettype> = <version>" + requires "libtls31-<targettype> = <version>" conflicts "libopenssl-devel-<targettype>" ++++++ des-fcrypt.diff ++++++ --- /var/tmp/diff_new_pack.wlIslB/_old 2024-10-16 23:49:38.604215567 +0200 +++ /var/tmp/diff_new_pack.wlIslB/_new 2024-10-16 23:49:38.608215735 +0200 @@ -5,14 +5,14 @@ out-of-bounds access. --- - crypto/des/fcrypt.c | 2 ++ + crypto/des/des_fcrypt.c | 2 ++ 1 file changed, 2 insertions(+) -Index: libressl-3.8.2/crypto/des/fcrypt.c +Index: libressl-4.0.0/crypto/des/des_fcrypt.c =================================================================== ---- libressl-3.8.2.orig/crypto/des/fcrypt.c -+++ libressl-3.8.2/crypto/des/fcrypt.c -@@ -79,6 +79,8 @@ DES_fcrypt(const char *buf, const char * +--- libressl-4.0.0.orig/crypto/des/des_fcrypt.c ++++ libressl-4.0.0/crypto/des/des_fcrypt.c +@@ -207,6 +207,8 @@ DES_fcrypt(const char *buf, const char * * crypt to "*". This was found when replacing the crypt in * our shared libraries. People found that the disabled * accounts effectively had no passwd :-(. */ ++++++ libressl-3.9.2.tar.gz -> libressl-4.0.0.tar.gz ++++++ ++++ 99565 lines of diff (skipped)