Bump openssl from 3.1.0 to 3.2.0

[dependabot[bot]]

Bumps openssl from 3.1.0 to 3.2.0.

Release notes

Sourced from openssl's releases.

v3.2.0

What's Changed

• pkey/ec: constify by @​nobu in ruby/openssl#584
• [DOC] Remove repeated example from Digest by @​Maumagnaguagno in ruby/openssl#587
• Do not require a test file in a separately run test case by @​andrykonchin in ruby/openssl#591
• Update the latest version of EnvUtil by @​hsbt in ruby/openssl#593
• Improve GH Actions by @​hsbt in ruby/openssl#599
• Forward-port https://bugs.ruby-lang.org/issues/19386 by @​hsbt in ruby/openssl#596
• Skip failing test with truffleruby and ubuntu-22.04 by @​hsbt in ruby/openssl#600
• Stub gemspec for JRuby by @​headius in ruby/openssl#598
• .github/workflows/test.yml: Update OpenSSL versions by @​junaruga in ruby/openssl#602
• Relax error message for OpenSSL 3.1 by @​nobu in ruby/openssl#607
• Register global variables before assignment by @​nobu in ruby/openssl#613
• Add rdoc as a development dependency. by @​junaruga in ruby/openssl#616
• Implement FIPS functions, adding OpenSSL FIPS mode case on CI. by @​junaruga in ruby/openssl#608
• Fix warnings about the OPENSSL_FIPS macro in OpenSSL 1.1. by @​junaruga in ruby/openssl#621
• Revert "Skip OpenSSL::TestHMAC#test_dup when running with RHEL9" by @​hsbt in ruby/openssl#622
• CI: Enable the verbose mode in the mkmf.rb. by @​junaruga in ruby/openssl#623
• CI: Enable the verbose mode in the mkmf.rb by env MAKEFLAGS. by @​junaruga in ruby/openssl#624
• Remove usage of IO internals. by @​ioquatix in ruby/openssl#627
• Append flags from environment variables. by @​junaruga in ruby/openssl#629
• Print the Ruby and compiler info or the command itself before compiling. by @​junaruga in ruby/openssl#630
• Rakefile: Print the message with Rake.rake_output_message. by @​junaruga in ruby/openssl#632
• Fix OpenSSL::PKey.read that cannot parse PKey in the FIPS mode. by @​junaruga in ruby/openssl#615
• Implement Write Barrier for all OpenSSL types by @​byroot in ruby/openssl#604
• CI: Rename the key name "foo_bar" (underscore) to "foo-bar" (hyphen). by @​junaruga in ruby/openssl#634
• CI: Upgrade OpenSSL and LibreSSL versions. by @​junaruga in ruby/openssl#636
• extconf.rb: apply RUBY_OPENSSL_EXT{C,LD}FLAGS after checking features by @​rhenium in ruby/openssl#633
• pkey: use unsigned type for bit fields by @​rhenium in ruby/openssl#638
• Drop support for Ruby 2.6 by @​rhenium in ruby/openssl#639
• CI: Check compiler warnings. by @​junaruga in ruby/openssl#631
• CI: Fix a typo in the comment. [ci skip] by @​junaruga in ruby/openssl#641
• add OpenSSL Provider support by @​QWYNG in ruby/openssl#635
• Add support for raw private/public keys by @​sylph01 in ruby/openssl#646
• [DOC] remove top-level example for OpenSSL::Cipher#pkcs5_keyivgen by @​rhenium in ruby/openssl#647
• Always respect the openssl prefix chosen by truffle/openssl-prefix on TruffleRuby by @​eregon in ruby/openssl#653
• CI: Add OpenSSL 3.1 FIPS case. by @​junaruga in ruby/openssl#655
• CI: Upgrade OpenSSL versions. by @​junaruga in ruby/openssl#657
• Raise an error when the specified OpenSSL library directory doesn't exist. by @​junaruga in ruby/openssl#618
• CI: Add OpenSSL master branch head non-FIPS and FIPS cases. by @​junaruga in ruby/openssl#658
• Enhance printing OpenSSL versions. by @​junaruga in ruby/openssl#662
• Use openssl? instead of OpenSSL::OPENSSL_VERSION_NUMBER. by @​junaruga in ruby/openssl#663
• test/openssl/test_pkey.rb: Fix pending tests in FIPS case. by @​junaruga in ruby/openssl#664
• Include "additional data" message in OpenSSL errors by @​rhenium in ruby/openssl#648
• ssl: raise SSLError if loading ca_file or ca_path fails by @​rhenium in ruby/openssl#659
• [DOC] enhance RDoc for exporting pkeys by @​rhenium in ruby/openssl#645
• ssl: adjust "certificate verify failed" error on SSL_ERROR_SYSCALL by @​rhenium in ruby/openssl#640
• Fix LIBRESSL_VERSION_NUMBER document mistake. by @​junaruga in ruby/openssl#667
• Rakefile: Print FIPS information in the rake debug. by @​junaruga in ruby/openssl#666
• CI: Replace "mode" in "FIPS mode" with "module". by @​junaruga in ruby/openssl#670

... (truncated)

Changelog

Sourced from openssl's changelog.

Version 3.2.0

Compatibility

• Ruby >= 2.7
  • Support for Ruby 2.6 has been removed. Note that Ruby 2.6 reached the end-of-life in 2022-04. [[GitHub #639]](ruby/openssl#639)
• OpenSSL >= 1.0.2 or LibreSSL >= 3.1

Notable changes

• Add a stub gemspec for JRuby, which depends on the jruby-openssl gem. [[GitHub #598]](ruby/openssl#598)
• Add support for the FIPS module in OpenSSL 3.0/3.1. [[GitHub #608]](ruby/openssl#608)
• Rework OpenSSL::PKey routines for loading DER or PEM encoded keys for better compatibility with OpenSSL 3.0/3.1 with the FIPS module. [[GitHub #615]](ruby/openssl#615) [[GitHub #669]](ruby/openssl#669)
• Add OpenSSL::Provider module for loading and unloading OpenSSL 3 providers. [[GitHub #635]](ruby/openssl#635)
• Add OpenSSL::PKey.new_raw_private_key, .new_raw_public_key, OpenSSL::PKey::PKey#raw_private_key, and #raw_public_key for public key algorithms that use "raw private/public key", such as X25519 and Ed25519. [[GitHub #646]](ruby/openssl#646)
• Improve OpenSSL error messages to include additional information when it is available in OpenSSL's error queue. [[GitHub #648]](ruby/openssl#648)
• Change OpenSSL::SSL::SSLContext#ca_file= and #ca_path= to raise OpenSSL::SSL::SSLError instead of printing a warning message. [[GitHub #659]](ruby/openssl#659)
• Allow OpenSSL::X509::ExtensionFactory#create_extension to take OIDs in the dotted-decimal notation. [[GitHub #141]](ruby/openssl#141)

Commits

• 6b3dd6a Ruby/OpenSSL 3.2.0
• 7691034 Update README and gemspec description
• 0dda88d Merge pull request #682 from ruby/dependabot/github_actions/actions/checkout-4
• 250b74b Merge pull request #681 from junaruga/wip/fix-test-pkey-ec
• d07183f Fix test_pkey_ec.rb on FIPS.
• 4d64c38 test_pkey.rb: Refactor the test_ed25519 on FIPS.
• 2fe3438 test_fips.rb: Fix the OpenSSL.fips_mode affecting other tests.
• 0b83eed Rakefile: Add test_fips task for convenience.
• b94314f Bump actions/checkout from 3 to 4
• bdf060f Merge pull request #677 from rhenium/ky/remove-mdebug
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[marvinscham]

@dependabot ignore this minor version

[dependabot[bot]]

OK, I won't notify you about version 3.2.x again, unless you re-open this PR.