Received: by mail.netbsd.org (Postfix, from userid 605)
	id 53DB184D50; Tue, 21 Jun 2022 18:46:44 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by mail.netbsd.org (Postfix) with ESMTP id 8C97C84CFF
	for <pkgsrc-changes@NetBSD.org>; Tue, 21 Jun 2022 18:46:43 +0000 (UTC)
X-Virus-Scanned: amavisd-new at netbsd.org
Received: from mail.netbsd.org ([IPv6:::1])
	by localhost (mail.netbsd.org [IPv6:::1]) (amavisd-new, port 10025)
	with ESMTP id gcSN0aY_uHj4 for <pkgsrc-changes@netbsd.org>;
	Tue, 21 Jun 2022 18:46:42 +0000 (UTC)
Received: from cvs.NetBSD.org (ivanova.NetBSD.org [IPv6:2001:470:a085:999:28c:faff:fe03:5984])
	by mail.netbsd.org (Postfix) with ESMTP id DC1D684CED
	for <pkgsrc-changes@NetBSD.org>; Tue, 21 Jun 2022 18:46:42 +0000 (UTC)
Received: by cvs.NetBSD.org (Postfix, from userid 500)
	id C76D6FB1A; Tue, 21 Jun 2022 18:48:39 +0000 (UTC)
Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_1655837319228780"
MIME-Version: 1.0
Date: Tue, 21 Jun 2022 18:48:39 +0000
From: "Jonathan Perkin" <jperkin@netbsd.org>
Subject: CVS commit: pkgsrc/security/openssl
To: pkgsrc-changes@NetBSD.org
Reply-To: jperkin@netbsd.org
X-Mailer: log_accum
Message-Id: <20220621184839.C76D6FB1A@cvs.NetBSD.org>
Sender: pkgsrc-changes-owner@NetBSD.org
List-Id: <pkgsrc-changes.NetBSD.org>
Precedence: bulk
List-Unsubscribe: <mailto:majordomo@NetBSD.org?subject=Unsubscribe%20pkgsrc-changes&body=unsubscribe%20pkgsrc-changes>

This is a multi-part message in MIME format.

--_----------=_1655837319228780
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	jperkin
Date:		Tue Jun 21 18:48:39 UTC 2022

Modified Files:
	pkgsrc/security/openssl: Makefile PLIST distinfo

Log Message:
openssl: Update to 1.1.1p.

Approved during freeze by gdt@, tested on SmartOS and macOS.

Major changes between OpenSSL 1.1.1o and OpenSSL 1.1.1p [21 Jun 2022]

    o Fixed additional bugs in the c_rehash script which was not properly
      sanitising shell metacharacters to prevent command injection
      (CVE-2022-2068)


To generate a diff of this commit:
cvs rdiff -u -r1.280 -r1.281 pkgsrc/security/openssl/Makefile
cvs rdiff -u -r1.11 -r1.12 pkgsrc/security/openssl/PLIST
cvs rdiff -u -r1.159 -r1.160 pkgsrc/security/openssl/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_1655837319228780
Content-Disposition: inline
Content-Length: 3421
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/security/openssl/Makefile
diff -u pkgsrc/security/openssl/Makefile:1.280 pkgsrc/security/openssl/Makefile:1.281
--- pkgsrc/security/openssl/Makefile:1.280	Tue May 10 05:43:50 2022
+++ pkgsrc/security/openssl/Makefile	Tue Jun 21 18:48:39 2022
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile,v 1.280 2022/05/10 05:43:50 wiz Exp $
+# $NetBSD: Makefile,v 1.281 2022/06/21 18:48:39 jperkin Exp $
 
 # Remember to upload-distfiles when updating OpenSSL -- otherwise it
 # is not possible for users who have bootstrapped without OpenSSL
 # to install it and enable HTTPS fetching.
-DISTNAME=	openssl-1.1.1o
+DISTNAME=	openssl-1.1.1p
 CATEGORIES=	security
 MASTER_SITES=	https://www.openssl.org/source/
 

Index: pkgsrc/security/openssl/PLIST
diff -u pkgsrc/security/openssl/PLIST:1.11 pkgsrc/security/openssl/PLIST:1.12
--- pkgsrc/security/openssl/PLIST:1.11	Tue Mar 15 18:20:02 2022
+++ pkgsrc/security/openssl/PLIST	Tue Jun 21 18:48:39 2022
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.11 2022/03/15 18:20:02 wiz Exp $
+@comment $NetBSD: PLIST,v 1.12 2022/06/21 18:48:39 jperkin Exp $
 bin/c_rehash
 bin/openssl
 include/openssl/aes.h
@@ -2576,9 +2576,11 @@ man/man3/SSL_CTX_flush_sessions.3
 man/man3/SSL_CTX_free.3
 man/man3/SSL_CTX_generate_session_ticket_fn.3
 man/man3/SSL_CTX_get0_CA_list.3
+man/man3/SSL_CTX_get0_chain_cert_store.3
 man/man3/SSL_CTX_get0_chain_certs.3
 man/man3/SSL_CTX_get0_param.3
 man/man3/SSL_CTX_get0_security_ex_data.3
+man/man3/SSL_CTX_get0_verify_cert_store.3
 man/man3/SSL_CTX_get_cert_store.3
 man/man3/SSL_CTX_get_ciphers.3
 man/man3/SSL_CTX_get_client_CA_list.3
@@ -2834,6 +2836,7 @@ man/man3/SSL_free.3
 man/man3/SSL_free_buffers.3
 man/man3/SSL_get0_CA_list.3
 man/man3/SSL_get0_alpn_selected.3
+man/man3/SSL_get0_chain_cert_store.3
 man/man3/SSL_get0_chain_certs.3
 man/man3/SSL_get0_dane_authority.3
 man/man3/SSL_get0_dane_tlsa.3
@@ -2845,6 +2848,7 @@ man/man3/SSL_get0_peername.3
 man/man3/SSL_get0_security_ex_data.3
 man/man3/SSL_get0_session.3
 man/man3/SSL_get0_verified_chain.3
+man/man3/SSL_get0_verify_cert_store.3
 man/man3/SSL_get1_curves.3
 man/man3/SSL_get1_groups.3
 man/man3/SSL_get1_session.3

Index: pkgsrc/security/openssl/distinfo
diff -u pkgsrc/security/openssl/distinfo:1.159 pkgsrc/security/openssl/distinfo:1.160
--- pkgsrc/security/openssl/distinfo:1.159	Tue May 10 05:43:50 2022
+++ pkgsrc/security/openssl/distinfo	Tue Jun 21 18:48:39 2022
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.159 2022/05/10 05:43:50 wiz Exp $
+$NetBSD: distinfo,v 1.160 2022/06/21 18:48:39 jperkin Exp $
 
-BLAKE2s (openssl-1.1.1o.tar.gz) = 1cce7975b7c39641707fa142214c6b22255b42151ef6e4da49eeacf1dc9466cc
-SHA512 (openssl-1.1.1o.tar.gz) = 75b2f1499cb4640229eb6cd35d85cbff2e19db17b959ac4d04b60f1b395b73567f9003521452a0fcfeea9b31b26de0a7bccf476ecf9caae02298f3647cfb7e23
-Size (openssl-1.1.1o.tar.gz) = 9856386 bytes
+BLAKE2s (openssl-1.1.1p.tar.gz) = 9fe91a85ba0ee64d8225c80fa6fd5bf6294a3aae051a9681798aeb1520c6d1f8
+SHA512 (openssl-1.1.1p.tar.gz) = 203470b1cd37bdbfabfec5ef37fc97c991d9943f070c988316f6396b09dae7cea16ac884bd8646dbf7dd1ed40ebde6bdfa5700beee2d714d07c97cc70b4e48d9
+Size (openssl-1.1.1p.tar.gz) = 9860217 bytes
 SHA1 (patch-Configurations_shared-info.pl) = 0e835f6e343b5d05ef9a0e6ef2a195201262d15c
 SHA1 (patch-Configurations_unix-Makefile.tmpl) = 3f47dd453381485aeb6c37dc53f932428fdcef50
 SHA1 (patch-Configure) = 479f1bc826f7721f6b44d6b5a6cf460432924bf2


--_----------=_1655837319228780--