File rubygem-openssl.changes of Package rubygem-openssl

Overview Repositories Revisions Requests Users Attributes Meta

File rubygem-openssl.changes of Package rubygem-openssl

-------------------------------------------------------------------
Mon Jan 29 14:18:19 UTC 2024 - Dan Čermák <dan.cermak@posteo.net>

- New upstream release 3.2.0, see bundled History.md

-------------------------------------------------------------------
Mon Oct 10 13:13:25 UTC 2022 - Stephan Kulow <coolo@suse.com>

updated to version 3.0.1
 see installed History.md

Version 3.0.1
  =============
  
  Merged changes in 2.1.4 and 2.2.2. Additionally, the following issues are fixed
  by this release.
  
  Bug fixes
  ---------
  
  * Add missing type check in OpenSSL::PKey::PKey#sign's optional parameters.
    [[GitHub #531]](https://github.com/ruby/openssl/pull/531)
  * Work around OpenSSL 3.0's HMAC issues with a zero-length key.
    [[GitHub #538]](https://github.com/ruby/openssl/pull/538)
  * Fix a regression in OpenSSL::PKey::DSA.generate's default of 'q' size.
    [[GitHub #483]](https://github.com/ruby/openssl/issues/483)
    [[GitHub #539]](https://github.com/ruby/openssl/pull/539)
  * Restore OpenSSL::PKey.read's ability to decode "openssl ecparam -genkey"
    output when linked against OpenSSL 3.0.
    [[GitHub #535]](https://github.com/ruby/openssl/pull/535)
    [[GitHub #540]](https://github.com/ruby/openssl/pull/540)
  * Restore error checks in OpenSSL::PKey::EC#{to_der,to_pem}.
    [[GitHub #541]](https://github.com/ruby/openssl/pull/541)

-------------------------------------------------------------------
Tue Jan 25 07:16:48 UTC 2022 - Stephan Kulow <coolo@suse.com>

updated to version 3.0.0
 see installed History.md

Version 3.0.0
  =============
  
  Compatibility notes
  -------------------
  
  * OpenSSL 1.0.1 and Ruby 2.3-2.5 are no longer supported.
    [[GitHub #396]](https://github.com/ruby/openssl/pull/396)
    [[GitHub #466]](https://github.com/ruby/openssl/pull/466)
  
  * OpenSSL 3.0 support is added. It is the first major version bump from OpenSSL
    1.1 and contains incompatible changes that affect Ruby/OpenSSL.
    Note that OpenSSL 3.0 support is preliminary and not all features are
    currently available:
    [[GitHub #369]](https://github.com/ruby/openssl/issues/369)
  
    - Deprecate the ability to modify `OpenSSL::PKey::PKey` instances. OpenSSL 3.0
      made EVP_PKEY structure immutable, and hence the following methods are not
      available when Ruby/OpenSSL is linked against OpenSSL 3.0.
      [[GitHub #480]](https://github.com/ruby/openssl/pull/480)
  
      - `OpenSSL::PKey::RSA#set_key`, `#set_factors`, `#set_crt_params`
      - `OpenSSL::PKey::DSA#set_pqg`, `#set_key`
      - `OpenSSL::PKey::DH#set_pqg`, `#set_key`, `#generate_key!`
      - `OpenSSL::PKey::EC#private_key=`, `#public_key=`, `#group=`, `#generate_key!`
  
    - Deprecate `OpenSSL::Engine`. The ENGINE API has been deprecated in OpenSSL 3.0
      in favor of the new "provider" concept and will be removed in a future
      version.
      [[GitHub #481]](https://github.com/ruby/openssl/pull/481)
  
  * `OpenSSL::SSL::SSLContext#tmp_ecdh_callback` has been removed. It has been
    deprecated since v2.0.0 because it is incompatible with modern OpenSSL
    versions.
    [[GitHub #394]](https://github.com/ruby/openssl/pull/394)
  
  * `OpenSSL::SSL::SSLSocket#read` and `#write` now raise `OpenSSL::SSL::SSLError`
    if called before a TLS connection is established. Historically, they
    read/wrote unencrypted data to the underlying socket directly in that case.
    [[GitHub #9]](https://github.com/ruby/openssl/issues/9)
    [[GitHub #469]](https://github.com/ruby/openssl/pull/469)
  
  
  Notable changes
  ---------------
  
  * Enhance OpenSSL::PKey's common interface.
    [[GitHub #370]](https://github.com/ruby/openssl/issues/370)
  
    - Key deserialization: Enhance `OpenSSL::PKey.read` to handle PEM encoding of
      DH parameters, which used to be only deserialized by `OpenSSL::PKey::DH.new`.
      [[GitHub #328]](https://github.com/ruby/openssl/issues/328)
    - Key generation: Add `OpenSSL::PKey.generate_parameters` and
      `OpenSSL::PKey.generate_key`.
      [[GitHub #329]](https://github.com/ruby/openssl/issues/329)
    - Public key signing: Enhance `OpenSSL::PKey::PKey#sign` and `#verify` to use
      the new EVP_DigestSign() family to enable PureEdDSA support on OpenSSL 1.1.1
      or later. They also now take optional algorithm-specific parameters for more
      control.
      [[GitHub #329]](https://github.com/ruby/openssl/issues/329)
    - Low-level public key signing and verification: Add
      `OpenSSL::PKey::PKey#sign_raw`, `#verify_raw`, and `#verify_recover`.
      [[GitHub #382]](https://github.com/ruby/openssl/issues/382)
    - Public key encryption: Add `OpenSSL::PKey::PKey#encrypt` and `#decrypt`.
      [[GitHub #382]](https://github.com/ruby/openssl/issues/382)
    - Key agreement: Add `OpenSSL::PKey::PKey#derive`.
      [[GitHub #329]](https://github.com/ruby/openssl/issues/329)
    - Key comparison: Add `OpenSSL::PKey::PKey#compare?` to conveniently check
      that two keys have common parameters and a public key.
      [[GitHub #383]](https://github.com/ruby/openssl/issues/383)
  
  * Add `OpenSSL::BN#set_flags` and `#get_flags`. This can be used in combination
    with `OpenSSL::BN::CONSTTIME` to force constant-time computation.
    [[GitHub #417]](https://github.com/ruby/openssl/issues/417)
  
  * Add `OpenSSL::BN#abs` to get the absolute value of the BIGNUM.
    [[GitHub #430]](https://github.com/ruby/openssl/issues/430)
  
  * Add `OpenSSL::SSL::SSLSocket#getbyte`.
    [[GitHub #438]](https://github.com/ruby/openssl/issues/438)
  
  * Add `OpenSSL::SSL::SSLContext#tmp_dh=`.
    [[GitHub #459]](https://github.com/ruby/openssl/pull/459)
  
  * Add `OpenSSL::X509::Certificate.load` to load a PEM-encoded and concatenated
    list of X.509 certificates at once.
    [[GitHub #441]](https://github.com/ruby/openssl/pull/441)
  
  * Change `OpenSSL::X509::Certificate.new` to attempt to deserialize the given
    string first as DER encoding first and then as PEM encoding to ensure the
    round-trip consistency.
    [[GitHub #442]](https://github.com/ruby/openssl/pull/442)
  
  * Update various part of the code base to use the modern API. No breaking
    changes are intended with this. This includes:
  
    - `OpenSSL::HMAC` uses the EVP API.
      [[GitHub #371]](https://github.com/ruby/openssl/issues/371)
    - `OpenSSL::Config` uses native OpenSSL API to parse config files.
      [[GitHub #342]](https://github.com/ruby/openssl/issues/342)
  
  
  Version 2.2.1
  =============
  
  Merged changes in 2.1.3. Additionally, the following issues are fixed by this
  release.
  
  Bug fixes
  ---------
  
  * Fix crash in `OpenSSL::Timestamp::{Request,Response,TokenInfo}.new` when
    invalid arguments are given.
    [[GitHub #407]](https://github.com/ruby/openssl/pull/407)
  * Fix `OpenSSL::Timestamp::Factory#create_timestamp` with LibreSSL on platforms
    where `time_t` has a different size from `long`.
    [[GitHub #454]](https://github.com/ruby/openssl/pull/454)

-------------------------------------------------------------------
Fri Sep 25 14:30:34 UTC 2020 - Stephan Kulow <coolo@suse.com>

updated to version 2.2.0
 see installed History.md

Version 2.2.0
  =============
  
  Compatibility notes
  -------------------
  
  * Remove unsupported MDC2, DSS, DSS1, and SHA algorithms.
  * Remove `OpenSSL::PKCS7::SignerInfo#name` alias for `#issuer`.
    [[GitHub #266]](https://github.com/ruby/openssl/pull/266)
  * Deprecate `OpenSSL::Config#add_value` and `#[]=` for future removal.
    [[GitHub #322]](https://github.com/ruby/openssl/pull/322)
  
  
  Notable changes
  ---------------
  
  * Change default `OpenSSL::SSL::SSLServer#listen` backlog argument from
    5 to `Socket::SOMAXCONN`.
    [[GitHub #286]](https://github.com/ruby/openssl/issues/286)
  * Make `OpenSSL::HMAC#==` use a timing safe string comparison.
    [[GitHub #284]](https://github.com/ruby/openssl/pull/284)
  * Add support for SHA3 and BLAKE digests.
    [[GitHub #282]](https://github.com/ruby/openssl/pull/282)
  * Add `OpenSSL::SSL::SSLSocket.open` for opening a `TCPSocket` and
    returning an `OpenSSL::SSL::SSLSocket` for it.
    [[GitHub #225]](https://github.com/ruby/openssl/issues/225)
  * Support marshalling of `OpenSSL::X509` and `OpenSSL::PKey` objects.
    [[GitHub #281]](https://github.com/ruby/openssl/pull/281)
    [[GitHub #363]](https://github.com/ruby/openssl/pull/363)
  * Add `OpenSSL.secure_compare` for timing safe string comparison for
    strings of possibly unequal length.
    [[GitHub #280]](https://github.com/ruby/openssl/pull/280)
  * Add `OpenSSL.fixed_length_secure_compare` for timing safe string
    comparison for strings of equal length.
    [[GitHub #269]](https://github.com/ruby/openssl/pull/269)
  * Add `OpenSSL::SSL::SSLSocket#{finished_message,peer_finished_message}`
    for last finished message sent and received.
    [[GitHub #250]](https://github.com/ruby/openssl/pull/250)
  * Add `OpenSSL::Timestamp` module for handing timestamp requests and
    responses.
    [[GitHub #204]](https://github.com/ruby/openssl/pull/204)
  * Add helper methods for `OpenSSL::X509::Certificate`:
    `find_extension`, `subject_key_identifier`,
    `authority_key_identifier`, `crl_uris`, `ca_issuer_uris` and
    `ocsp_uris`, and for `OpenSSL::X509::CRL`:
    `find_extension` and `subject_key_identifier`.
    [[GitHub #260]](https://github.com/ruby/openssl/pull/260)
    [[GitHub #275]](https://github.com/ruby/openssl/pull/275)
    [[GitHub #293]](https://github.com/ruby/openssl/pull/293)
  * Add `OpenSSL::ECPoint#add` for performing elliptic curve point addition.
    [[GitHub #261]](https://github.com/ruby/openssl/pull/261)
  * Make `OpenSSL::PKey::RSA#{export,to_der}` check `key`, `factors`, and
    `crt_params` to do proper private key serialization.
    [[GitHub #258]](https://github.com/ruby/openssl/pull/258)
  * Add `OpenSSL::SSL::{SSLSocket,SSLServer}#fileno`, returning the
    underlying socket file descriptor number.
    [[GitHub #247]](https://github.com/ruby/openssl/pull/247)
  * Support client certificates with TLS 1.3, and support post-handshake
    authentication with OpenSSL 1.1.1+.
    [[GitHub #239]](https://github.com/ruby/openssl/pull/239)
  * Add `OpenSSL::ASN1::ObjectId#==` for equality testing.
  * Add `OpenSSL::X509::Extension#value_der` for the raw value of
    the extension.
    [[GitHub #234]](https://github.com/ruby/openssl/pull/234)
  * Significantly reduce allocated memory in `OpenSSL::Buffering#do_write`.
    [[GitHub #212]](https://github.com/ruby/openssl/pull/212)
  * Ensure all valid IPv6 addresses are considered valid as elements
    of subjectAlternativeName in certificates.
    [[GitHub #185]](https://github.com/ruby/openssl/pull/185)
  * Allow recipient's certificate to be omitted in PCKS7#decrypt.
    [[GitHub #183]](https://github.com/ruby/openssl/pull/183)
  * Add support for reading keys in PKCS #8 format and export via instance methods
    added to `OpenSSL::PKey` classes: `private_to_der`, `private_to_pem`,
    `public_to_der` and `public_to_pem`.
    [[GitHub #297]](https://github.com/ruby/openssl/pull/297)

-------------------------------------------------------------------
Sat Apr  6 20:04:05 UTC 2019 - manuel <mschnitzer@suse.com>

- initialize package

Places

File rubygem-openssl.changes of Package rubygem-openssl

Places