Hello community, here is the log from the commit of package libressl for openSUSE:Factory checked in at 2016-02-09 16:49:58 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libressl (Old) and /work/SRC/openSUSE:Factory/.libressl.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libressl" Changes: -------- --- /work/SRC/openSUSE:Factory/libressl/libressl.changes 2015-12-14 10:15:25.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.libressl.new/libressl.changes 2016-02-09 16:50:21.000000000 +0100 @@ -1,0 +2,12 @@ +Tue Feb 2 11:24:16 UTC 2016 - [email protected] + +- Update to new upstream release 2.3.2 +* Added EVP_aead_chacha20_poly1305_ietf() which matches the AEAD + construction introduced in RFC 7539, which is different than + that already used in TLS with EVP_aead_chacha20_poly1305(). +* Avoid a potential undefined C99+ behavior due to shift overflow + in AES_decrypt. +- Remove 0001-Fix-for-OpenSSL-CVE-2015-3194.patch, + 0001-Fix-for-OpenSSL-CVE-2015-3195.patch (included) + +------------------------------------------------------------------- Old: ---- 0001-Fix-for-OpenSSL-CVE-2015-3194.patch 0001-Fix-for-OpenSSL-CVE-2015-3195.patch libressl-2.3.1.tar.gz libressl-2.3.1.tar.gz.asc New: ---- libressl-2.3.2.tar.gz libressl-2.3.2.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libressl.spec ++++++ --- /var/tmp/diff_new_pack.cLQ9mZ/_old 2016-02-09 16:50:22.000000000 +0100 +++ /var/tmp/diff_new_pack.cLQ9mZ/_new 2016-02-09 16:50:22.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package libressl # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: libressl -Version: 2.3.1 +Version: 2.3.2 Release: 0 Summary: An SSL/TLS protocol implementation License: OpenSSL @@ -31,8 +31,6 @@ Source2: http://ftp.openbsd.org/pub/OpenBSD/LibreSSL/%name-%version.tar.gz.asc Source3: %name.keyring Source4: baselibs.conf -Patch1: 0001-Fix-for-OpenSSL-CVE-2015-3194.patch -Patch2: 0001-Fix-for-OpenSSL-CVE-2015-3195.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: fdupes BuildRequires: pkg-config @@ -44,31 +42,31 @@ OpenSSL, with the aim of refactoring the OpenSSL code so as to provide a more secure implementation. -%package -n libcrypto36 +%package -n libcrypto37 Summary: An SSL/TLS protocol implementation Group: System/Libraries -%description -n libcrypto36 +%description -n libcrypto37 The "crypto" library implements a wide range of cryptographic algorithms used in various Internet standards. The services provided by this library are used by the LibreSSL implementations of SSL, TLS and S/MIME, and they have also been used to implement SSH, OpenPGP, and other cryptographic standards. -%package -n libssl37 +%package -n libssl38 Summary: An SSL/TLS protocol implementation Group: System/Libraries -%description -n libssl37 +%description -n libssl38 LibreSSL is an open-source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It derives from OpenSSL and intends to provide a more secure implementation. -%package -n libtls9 +%package -n libtls10 Summary: A simplified interface for the OpenSSL/LibreSSL TLS protocol implementation Group: System/Libraries -%description -n libtls9 +%description -n libtls10 LibreSSL is an open-source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It derives from OpenSSL and intends to provide a more secure implementation. @@ -79,9 +77,9 @@ %package devel Summary: Development files for LibreSSL, an SSL/TLS protocol implementation Group: Development/Libraries/C and C++ -Requires: libcrypto36 = %version -Requires: libssl37 = %version -Requires: libtls9 = %version +Requires: libcrypto37 = %version +Requires: libssl38 = %version +Requires: libtls10 = %version Conflicts: libopenssl-devel %description devel @@ -109,7 +107,6 @@ %prep %setup -q -%patch -P 1 -P 2 -p5 %build %configure --disable-static --enable-libtls @@ -134,12 +131,12 @@ exit 1 fi -%post -n libcrypto36 -p /sbin/ldconfig -%postun -n libcrypto36 -p /sbin/ldconfig -%post -n libssl37 -p /sbin/ldconfig -%postun -n libssl37 -p /sbin/ldconfig -%post -n libtls9 -p /sbin/ldconfig -%postun -n libtls9 -p /sbin/ldconfig +%post -n libcrypto37 -p /sbin/ldconfig +%postun -n libcrypto37 -p /sbin/ldconfig +%post -n libssl38 -p /sbin/ldconfig +%postun -n libssl38 -p /sbin/ldconfig +%post -n libtls10 -p /sbin/ldconfig +%postun -n libtls10 -p /sbin/ldconfig %files %defattr(-,root,root) @@ -150,15 +147,15 @@ %_mandir/man1/*.1* %doc COPYING -%files -n libcrypto36 +%files -n libcrypto37 %defattr(-,root,root) %_libdir/libcrypto.so.* -%files -n libssl37 +%files -n libssl38 %defattr(-,root,root) %_libdir/libssl.so.* -%files -n libtls9 +%files -n libtls10 %defattr(-,root,root) %_libdir/libtls.so.* ++++++ baselibs.conf ++++++ --- /var/tmp/diff_new_pack.cLQ9mZ/_old 2016-02-09 16:50:22.000000000 +0100 +++ /var/tmp/diff_new_pack.cLQ9mZ/_new 2016-02-09 16:50:22.000000000 +0100 @@ -1,9 +1,9 @@ -libcrypto36 -libssl37 -libtls9 +libcrypto37 +libssl38 +libtls10 libressl-devel requires -libressl-<targettype> - requires "libcrypto36-<targettype> = <version>" - requires "libssl37-<targettype> = <version>" - requires "libtls9-<targettype> = <version>" + requires "libcrypto37-<targettype> = <version>" + requires "libssl38-<targettype> = <version>" + requires "libtls10-<targettype> = <version>" conflicts "libopenssl-devel-<targettype>" ++++++ libressl-2.3.1.tar.gz -> libressl-2.3.2.tar.gz ++++++ ++++ 21838 lines of diff (skipped)
