From c539117be944e2f234f016d5562e133715719d3d Mon Sep 17 00:00:00 2001 From: Brent Cook Date: Wed, 1 Nov 2023 21:16:44 -0500 Subject: update 3.8.2 changelog --- ChangeLog | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) diff --git a/ChangeLog b/ChangeLog index b4dd2d0..b8b1270 100644 --- a/ChangeLog +++ b/ChangeLog @@ -37,13 +37,18 @@ LibreSSL Portable Release Notes: * Bug fixes - Fixed aliasing issues in BN_mod_exp_simple() and BN_mod_exp_recp() -3.8.2 - In development +3.8.2 - Stable release * Portable changes - * Internal improvements + - Fixed processor detection for CMake targets. Thanks to jiegec. + - Enabled building oscpcheck with MSVC. Thanks to FtZPetruska + - Improve CMake package detection and installation. + Thanks to mark-groundctl + - Fixed assembly optimizations on x64 Windows targets + - Allow disabling warnings about + - Use system arc4random on FreeBSD 12 and newer. * Documentation improvements - Documented the RFC 3779 API - * Testing and Proactive Security * Compatibility changes - Restrict the RFC 3779 code to IPv4 and IPv6. It was not written to be able to deal with anything else. -- cgit v1.2.3-55-g6feb From ef426bf06bdad2148bea54cab5d6a74179ec38eb Mon Sep 17 00:00:00 2001 From: Brent Cook Date: Thu, 2 Nov 2023 04:40:43 -0500 Subject: changelog revisions --- ChangeLog | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) diff --git a/ChangeLog b/ChangeLog index b8b1270..2233529 100644 --- a/ChangeLog +++ b/ChangeLog @@ -40,15 +40,17 @@ LibreSSL Portable Release Notes: 3.8.2 - Stable release * Portable changes - - Fixed processor detection for CMake targets. Thanks to jiegec. - - Enabled building oscpcheck with MSVC. Thanks to FtZPetruska + - Fixed processor detection for CMake targets. + Thanks to @jiegec from github. + - Enabled building oscpcheck with MSVC. + Thanks to @FtZPetruska from github. - Improve CMake package detection and installation. - Thanks to mark-groundctl - - Fixed assembly optimizations on x64 Windows targets - - Allow disabling warnings about + Thanks to @mark-groundctl from github. + - Fixed assembly optimizations on x64 Windows targets. + - Allow disabling warnings about WINCRYPT overrides. - Use system arc4random on FreeBSD 12 and newer. * Documentation improvements - - Documented the RFC 3779 API + - Documented the RFC 3779 API. * Compatibility changes - Restrict the RFC 3779 code to IPv4 and IPv6. It was not written to be able to deal with anything else. -- cgit v1.2.3-55-g6feb From 2fcf5b096470bfc987b90129122d4f8495e94aa0 Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Thu, 2 Nov 2023 23:36:16 -0600 Subject: Update ChangeLog --- ChangeLog | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/ChangeLog b/ChangeLog index 2233529..7e986f0 100644 --- a/ChangeLog +++ b/ChangeLog @@ -34,8 +34,12 @@ LibreSSL Portable Release Notes: * Internal improvements * Documentation improvements * Testing and proactive security + * Compatibility changes + - Added ChaCha20 and chacha20 aliases for ChaCha. * Bug fixes - Fixed aliasing issues in BN_mod_exp_simple() and BN_mod_exp_recp() + - Fixed numerous misuses of X509_ALGOR_set0() resulting in leaks and + potentially incorrect encodings. 3.8.2 - Stable release -- cgit v1.2.3-55-g6feb From 287e0a285eb38bfd37f4e537d17847868aeff521 Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Fri, 3 Nov 2023 08:32:08 -0600 Subject: ChangeLog: missing period --- ChangeLog | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ChangeLog b/ChangeLog index 7e986f0..2acb8ca 100644 --- a/ChangeLog +++ b/ChangeLog @@ -37,7 +37,7 @@ LibreSSL Portable Release Notes: * Compatibility changes - Added ChaCha20 and chacha20 aliases for ChaCha. * Bug fixes - - Fixed aliasing issues in BN_mod_exp_simple() and BN_mod_exp_recp() + - Fixed aliasing issues in BN_mod_exp_simple() and BN_mod_exp_recp(). - Fixed numerous misuses of X509_ALGOR_set0() resulting in leaks and potentially incorrect encodings. -- cgit v1.2.3-55-g6feb From b19acf362996ea4404c3df03a243571c13fd47a3 Mon Sep 17 00:00:00 2001 From: Theo Buehler Date: Fri, 3 Nov 2023 08:32:59 -0600 Subject: Update rust-openssl patch --- .github/rust-openssl.patch | 11 +++++------ 1 file changed, 5 insertions(+), 6 deletions(-) diff --git a/.github/rust-openssl.patch b/.github/rust-openssl.patch index e9586dd..4a8dd3f 100644 --- a/.github/rust-openssl.patch +++ b/.github/rust-openssl.patch @@ -1,13 +1,12 @@ diff --git a/openssl-sys/build/main.rs b/openssl-sys/build/main.rs -index 82013b6c..2974abed 100644 +index bbee7c5c..57033b2d 100644 --- a/openssl-sys/build/main.rs +++ b/openssl-sys/build/main.rs -@@ -273,7 +273,7 @@ See rust-openssl documentation for more information: - (3, 7, 1) => ('3', '7', '1'), - (3, 7, _) => ('3', '7', 'x'), +@@ -293,6 +293,7 @@ See rust-openssl documentation for more information: (3, 8, 0) => ('3', '8', '0'), -- (3, 8, 1) => ('3', '8', '1'), -+ (3, 8, _) => ('3', '8', 'x'), + (3, 8, 1) => ('3', '8', '1'), + (3, 8, _) => ('3', '8', 'x'), ++ (3, 9, _) => ('3', '8', 'x'), _ => version_error(), }; -- cgit v1.2.3-55-g6feb From e1217db87d2ff37ab6a41048d16327212f670bb4 Mon Sep 17 00:00:00 2001 From: Viktor Szakats Date: Fri, 3 Nov 2023 17:56:32 +0000 Subject: delete unused `savsig` variable Follow-up to dd1d96f643b01a5edbe7e0db8399f3c88f5f0c8b Fixes #925 --- crypto/compat/ui_openssl_win.c | 3 --- 1 file changed, 3 deletions(-) diff --git a/crypto/compat/ui_openssl_win.c b/crypto/compat/ui_openssl_win.c index b6a621f..a8c92f2 100644 --- a/crypto/compat/ui_openssl_win.c +++ b/crypto/compat/ui_openssl_win.c @@ -130,9 +130,6 @@ #define NX509_SIG 32 #endif -/* Define globals. They are protected by a lock */ -static void (*savsig[NX509_SIG])(int ); - DWORD console_mode; static FILE *tty_in, *tty_out; static int is_a_tty; -- cgit v1.2.3-55-g6feb From d193f43f8b90cbed65ffeec93543d8a3d17bdedc Mon Sep 17 00:00:00 2001 From: Viktor Szakats Date: Sat, 4 Nov 2023 01:24:23 +0000 Subject: slim down `libtls` By dropping copies of `libcrypto` and `libssl` lib objects from it. This brings back its size to the normal ~100KB from ~4MB. autotools already worked like this. --- tls/CMakeLists.txt | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/tls/CMakeLists.txt b/tls/CMakeLists.txt index 4beef36..240dbf8 100644 --- a/tls/CMakeLists.txt +++ b/tls/CMakeLists.txt @@ -50,11 +50,10 @@ target_include_directories(tls_obj ../include ${CMAKE_BINARY_DIR}/include) -add_library(tls $ $ - $ empty.c) +add_library(tls $ empty.c) export_symbol(tls ${CMAKE_CURRENT_BINARY_DIR}/tls.sym) -target_link_libraries(tls ${PLATFORM_LIBS}) +target_link_libraries(tls ${OPENSSL_LIBS}) if (WIN32) set(TLS_POSTFIX -${TLS_MAJOR_VERSION} PARENT_SCOPE) endif() -- cgit v1.2.3-55-g6feb