-
Notifications
You must be signed in to change notification settings - Fork 30k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
v17.9.1 proposal #43256
Merged
Merged
v17.9.1 proposal #43256
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This updates all sources in deps/openssl/openssl by: $ git clone git@github.com:quictls/openssl.git $ cd openssl $ git checkout openssl-3.0.3+quic $ cd ../node/deps/openssl $ rm -rf openssl $ cp -R ../../../openssl openssl $ rm -rf openssl/.git* openssl/.travis* $ git add --all openssl $ git commit openssl PR-URL: #43025 Refs: https://mta.openssl.org/pipermail/openssl-announce/2022-May/000223.html Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Beth Griggs <bgriggs@redhat.com>
After an OpenSSL source update, all the config files need to be regenerated and committed by: $ make -C deps/openssl/config $ git add deps/openssl/config/archs $ git add deps/openssl/openssl $ git commit PR-URL: #43025 Refs: https://mta.openssl.org/pipermail/openssl-announce/2022-May/000223.html Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Beth Griggs <bgriggs@redhat.com>
PR-URL: #42550 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Mestery <mestery@protonmail.com> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com> Reviewed-By: Tierney Cyren <hello@bnb.im> Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Darshan Sen <raisinten@gmail.com>
PR-URL: #42744 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com> Reviewed-By: Trivikram Kamat <trivikr.dev@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de>
PR-URL: #42886 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com> Reviewed-By: Mestery <mestery@protonmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de>
PR-URL: #42968 Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Myles Borins <myles.borins@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com> Reviewed-By: Trivikram Kamat <trivikr.dev@gmail.com>
PR-URL: #43061 Reviewed-By: Ruy Adorno <ruyadorno@github.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com>
PR-URL: #43210 Reviewed-By: Ruy Adorno <ruyadorno@github.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Juan José Arboleda <soyjuanarbol@gmail.com> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com> Reviewed-By: Beth Griggs <bgriggs@redhat.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com>
nodejs-github-bot
added
dont-land-on-v14.x
fast-track
PRs that do not need to wait for 48 hours to land.
meta
Issues and PRs related to the general management of the project.
needs-ci
PRs that need a full CI run.
npm
Issues and PRs related to the npm client dependency or the npm registry.
labels
May 30, 2022
This comment was marked as off-topic.
This comment was marked as off-topic.
ruyadorno
added
release
Issues and PRs related to Node.js releases.
openssl
Issues and PRs related to the OpenSSL dependency.
dependencies
Pull requests that update a dependency file.
and removed
fast-track
PRs that do not need to wait for 48 hours to land.
dont-land-on-v14.x
labels
May 30, 2022
ruyadorno
added a commit
that referenced
this pull request
May 30, 2022
Notable changes: * Upgrade npm to 8.11.0 * Update to OpenSSL 3.0.3 PR-URL: #43256
ruyadorno
force-pushed
the
v17.9.1-proposal
branch
from
May 30, 2022 20:44
3b24d9f
to
58f338b
Compare
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
richardlau
reviewed
May 31, 2022
BethGriggs
reviewed
May 31, 2022
BethGriggs
reviewed
May 31, 2022
ruyadorno
added a commit
that referenced
this pull request
May 31, 2022
Notable changes: * Upgrade npm to 8.11.0 * Update to OpenSSL 3.0.3 PR-URL: #43256
ruyadorno
added a commit
that referenced
this pull request
May 31, 2022
Notable changes: * Upgrade npm to 8.11.0 * Update to OpenSSL 3.0.3 PR-URL: #43256
ruyadorno
force-pushed
the
v17.9.1-proposal
branch
from
May 31, 2022 15:42
c8c44fa
to
f0aba06
Compare
richardlau
approved these changes
May 31, 2022
PR-URL: #43143 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com>
ruyadorno
added a commit
that referenced
this pull request
May 31, 2022
Notable changes: * Upgrade npm to 8.11.0 * Update to OpenSSL 3.0.3 PR-URL: #43256
ruyadorno
force-pushed
the
v17.9.1-proposal
branch
from
May 31, 2022 17:14
f0aba06
to
df8bf89
Compare
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
aduh95
reviewed
May 31, 2022
This comment was marked as outdated.
This comment was marked as outdated.
17 tasks
Notable changes: * Upgrade npm to 8.11.0 * Update to OpenSSL 3.0.3 PR-URL: #43256
ruyadorno
force-pushed
the
v17.9.1-proposal
branch
from
June 1, 2022 05:18
df8bf89
to
cd98cfb
Compare
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
This comment was marked as outdated.
bengl
approved these changes
Jun 1, 2022
BethGriggs
approved these changes
Jun 1, 2022
19 tasks
ruyadorno
added a commit
that referenced
this pull request
Jun 2, 2022
Notable changes: * Upgrade npm to 8.11.0 * Update to OpenSSL 3.0.3 PR-URL: #43256
ruyadorno
added a commit
to ruyadorno/nodejs.org
that referenced
this pull request
Jun 2, 2022
ruyadorno
added a commit
to nodejs/nodejs.org
that referenced
this pull request
Jun 2, 2022
This was referenced Jun 3, 2022
italojs
pushed a commit
to italojs/node
that referenced
this pull request
Jun 6, 2022
Notable changes: * Upgrade npm to 8.11.0 * Update to OpenSSL 3.0.3 PR-URL: nodejs#43256
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
dependencies
Pull requests that update a dependency file.
meta
Issues and PRs related to the general management of the project.
npm
Issues and PRs related to the npm client dependency or the npm registry.
openssl
Issues and PRs related to the OpenSSL dependency.
release
Issues and PRs related to Node.js releases.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
2022-06-01, Version 17.9.1 (Current), @ruyadorno
Notable Changes
Update to OpenSSL 3.0.3
This update can be treated as a security release as the issues addressed in OpenSSL 3.0.3 slightly affect Node.js 17.
See https://nodejs.org/en/blog/vulnerability/openssl-fixes-in-regular-releases-may2022/ for more information on how the May 2022 OpenSSL releases affect other Node.js release lines.
Commits