search

umts / incidents

Operator incident report tracking for the Springfield and Valley Area Transit Companies
MIT License
1 stars 1 forks source link

Bump openssl from 3.1.0 to 3.2.0 #393

Closed dependabot[bot] closed 8 months ago

dependabot[bot] commented 8 months ago

Bumps openssl from 3.1.0 to 3.2.0.

Release notes

Sourced from openssl's releases.

v3.2.0

What's Changed

... (truncated)

Changelog

Sourced from openssl's changelog.

Version 3.2.0

Compatibility

  • Ruby >= 2.7
    • Support for Ruby 2.6 has been removed. Note that Ruby 2.6 reached the end-of-life in 2022-04. [[GitHub #639]](ruby/openssl#639)
  • OpenSSL >= 1.0.2 or LibreSSL >= 3.1

Notable changes

  • Add a stub gemspec for JRuby, which depends on the jruby-openssl gem. [[GitHub #598]](ruby/openssl#598)
  • Add support for the FIPS module in OpenSSL 3.0/3.1. [[GitHub #608]](ruby/openssl#608)
  • Rework OpenSSL::PKey routines for loading DER or PEM encoded keys for better compatibility with OpenSSL 3.0/3.1 with the FIPS module. [[GitHub #615]](ruby/openssl#615) [[GitHub #669]](ruby/openssl#669)
  • Add OpenSSL::Provider module for loading and unloading OpenSSL 3 providers. [[GitHub #635]](ruby/openssl#635)
  • Add OpenSSL::PKey.new_raw_private_key, .new_raw_public_key, OpenSSL::PKey::PKey#raw_private_key, and #raw_public_key for public key algorithms that use "raw private/public key", such as X25519 and Ed25519. [[GitHub #646]](ruby/openssl#646)
  • Improve OpenSSL error messages to include additional information when it is available in OpenSSL's error queue. [[GitHub #648]](ruby/openssl#648)
  • Change OpenSSL::SSL::SSLContext#ca_file= and #ca_path= to raise OpenSSL::SSL::SSLError instead of printing a warning message. [[GitHub #659]](ruby/openssl#659)
  • Allow OpenSSL::X509::ExtensionFactory#create_extension to take OIDs in the dotted-decimal notation. [[GitHub #141]](ruby/openssl#141)
Commits
  • 6b3dd6a Ruby/OpenSSL 3.2.0
  • 7691034 Update README and gemspec description
  • 0dda88d Merge pull request #682 from ruby/dependabot/github_actions/actions/checkout-4
  • 250b74b Merge pull request #681 from junaruga/wip/fix-test-pkey-ec
  • d07183f Fix test_pkey_ec.rb on FIPS.
  • 4d64c38 test_pkey.rb: Refactor the test_ed25519 on FIPS.
  • 2fe3438 test_fips.rb: Fix the OpenSSL.fips_mode affecting other tests.
  • 0b83eed Rakefile: Add test_fips task for convenience.
  • b94314f Bump actions/checkout from 3 to 4
  • bdf060f Merge pull request #677 from rhenium/ky/remove-mdebug
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)