Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

dev-libs/openssl: update to 3.0.9 #938

Merged
merged 3 commits into from
Jun 29, 2023
Merged

dev-libs/openssl: update to 3.0.9 #938

merged 3 commits into from
Jun 29, 2023

Conversation

dongsupark
Copy link
Member

@dongsupark dongsupark commented Jun 20, 2023
edited
Loading

Update dev-libs/openssl to 3.0.9, mainly to address CVE-2023-2650.

Based on Gentoo commit 36b7028bd1e9.

Flatcar changes are based on cdfbbc5.

Fixes flatcar/Flatcar#1050

/update-sdk

Testing done

CI: http://jenkins.infra.kinvolk.io:8080/job/container/job/sdk/884/cldsv/

  • Changelog entries added in the respective changelog/ directory (user-facing change, bug fix, security fix, update)
  • Inspected CI output for image differences: /boot and /usr size, packages, list files for any missing binaries, kernel modules, config files, kernel modules, etc.

@dongsupark dongsupark temporarily deployed to development June 20, 2023 15:37 — with GitHub Actions Inactive
@github-actions
Copy link

github-actions bot commented Jun 20, 2023
edited
Loading

Build action triggered: https://github.com/flatcar/scripts/actions/runs/5409729343

@dongsupark
Copy link
Member Author

Just a moment, cl.sysext.fallbackdownload fails only in case of arm64. Looking.

dongsupark and others added 3 commits June 28, 2023 12:33
@dongsupark
dev-libs/openssl: update to 3.0.9
a6c3da8 
Update dev-libs/openssl to 3.0.9, mainly to address CVE-2023-2650.

Gentoo ref: 36b7028bd1e91f33166a5794451f051a56d50d62
@tormath1 @dongsupark
dev-libs/openssl: Apply Flatcar modifications
67f331a 
- remove unecessary files
- drop `pkg_postint`
- create `/etc/ssl` with tmpfiles
- mark openssl as stable for arm64 and amd64
- continue shipping app-misc/c_rehash

Signed-off-by: Mathieu Tortuyaux <mtortuyaux@microsoft.com>
Signed-off-by: Dongsu Park <dpark@linux.microsoft.com>
@dongsupark
changelog: add changelog for openssl 3.0.9
a3dfd93
@dongsupark
Copy link
Member Author

Finally Jenkins CI passed.
Thanks for the review.

@dongsupark dongsupark merged commit a9f25e3 into main Jun 29, 2023
1 check failed
@dongsupark dongsupark deleted the dongsu/openssl-3.0.9 branch June 29, 2023 07:45
@github-actions github-actions bot mentioned this pull request Nov 10, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tormath1 tormath1 tormath1 approved these changes

Assignees
No one assigned
Labels
main
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

update: openssl
2 participants
@dongsupark @tormath1