chore(deps): bump the validation-deps group in /validation/local_ping_pong_openssl with 12 updates by dependabot[bot] · Pull Request #194 · RustCrypto/rustls-rustcrypto

dependabot · 2026-04-20T21:53:29Z

Bumps the validation-deps group in /validation/local_ping_pong_openssl with 12 updates:

Package	From	To
openssl	`0.10.77`	`0.10.78`
bitflags	`2.11.0`	`2.11.1`
ecdsa	`0.17.0-rc.16`	`0.17.0-rc.17`
elliptic-curve	`0.14.0-rc.30`	`0.14.0-rc.31`
openssl-sys	`0.9.113`	`0.9.114`
p256	`0.14.0-rc.8`	`0.14.0-rc.9`
p384	`0.14.0-rc.8`	`0.14.0-rc.9`
primefield	`0.14.0-rc.8`	`0.14.0-rc.9`
primeorder	`0.14.0-rc.8`	`0.14.0-rc.9`
rustls-webpki	`0.103.11`	`0.103.12`
typenum	`1.19.0`	`1.20.0`
wasip2	`1.0.2+wasi-0.2.9`	`1.0.3+wasi-0.2.9`

Updates openssl from 0.10.77 to 0.10.78

Release notes

Sourced from openssl's releases.

openssl-v0.10.78

What's Changed

Fix Suite B flag assignments in verify.rs by @alex in rust-openssl/rust-openssl#2592

Use cvt_p for OPENSSL_malloc error handling by @alex in rust-openssl/rust-openssl#2593

Mark BIO_get_mem_data on AWS-LC to be unsafe by @alex in rust-openssl/rust-openssl#2594

Set timeout for package installation step by @alex in rust-openssl/rust-openssl#2595

Panic in Crypter::new when IV is required but not provided by @alex in rust-openssl/rust-openssl#2596

openssl 4 support by @reaperhulk in rust-openssl/rust-openssl#2591

Avoid panic for overlong OIDs by @botovq in rust-openssl/rust-openssl#2598

Fix dangling stack pointer in custom extension add callback by @alex in rust-openssl/rust-openssl#2599

Add support for LibreSSL 4.3.x by @botovq in rust-openssl/rust-openssl#2603

fix inverted bounds assertion in AES key unwrap by @reaperhulk in rust-openssl/rust-openssl#2604

Reject oversized length returns from password callback trampoline by @alex in rust-openssl/rust-openssl#2605

Validate callback-returned lengths in PSK and cookie trampolines by @alex in rust-openssl/rust-openssl#2607

Error for short out in MdCtxRef::digest_final() by @botovq in rust-openssl/rust-openssl#2608

Check derive output buffer length on OpenSSL 1.1.x by @alex in rust-openssl/rust-openssl#2606

Release openssl v0.10.78 and openssl-sys v0.9.114 by @alex in rust-openssl/rust-openssl#2609

Full Changelog: rust-openssl/rust-openssl@openssl-v0.10.77...openssl-v0.10.78

Commits

a6debf5 Release openssl v0.10.78 and openssl-sys v0.9.114 (#2609)
09b425e Check derive output buffer length on OpenSSL 1.1.x (#2606)
826c388 Error for short out in MdCtxRef::digest_final() (#2608)
1d10902 Validate callback-returned lengths in PSK and cookie trampolines (#2607)
5af6895 Reject oversized length returns from password callback trampoline (#2605)
718d07f fix inverted bounds assertion in AES key unwrap (#2604)
53cc69d Add support for LibreSSL 4.3.x (#2603)
0b41e79 Fix dangling stack pointer in custom extension add callback (#2599)
cbdedf8 Avoid panic for overlong OIDs (#2598)
1fc51ef openssl 4 support (#2591)
Additional commits viewable in compare view

Updates bitflags from 2.11.0 to 2.11.1

Release notes

Sourced from bitflags's releases.

2.11.1

What's Changed

Bless compile-fail tests for current beta by @DanielEScherzer in bitflags/bitflags#478

example_generated.rs: add missing third slash for doc comment by @DanielEScherzer in bitflags/bitflags#477

Clarify self and other in method docs by @KodrAus in bitflags/bitflags#481

Prepare for 2.11.1 release by @KodrAus in bitflags/bitflags#482

New Contributors

@DanielEScherzer made their first contribution in bitflags/bitflags#478

Full Changelog: bitflags/bitflags@2.11.0...2.11.1

Changelog

Sourced from bitflags's changelog.

2.11.1

What's Changed

Bless compile-fail tests for current beta by @DanielEScherzer in bitflags/bitflags#478

example_generated.rs: add missing third slash for doc comment by @DanielEScherzer in bitflags/bitflags#477

Clarify self and other in method docs by @KodrAus in bitflags/bitflags#481

New Contributors

@DanielEScherzer made their first contribution in bitflags/bitflags#478

Full Changelog: bitflags/bitflags@2.11.0...2.11.1

Commits

4ed9ffa Merge pull request #482 from KodrAus/cargo/2.11.1
c53cd57 prepare for 2.11.1 release
a44410a Merge pull request #481 from KodrAus/docs/clarifications
3d671b9 update more compile error messages
5f3adad fix up compile error messages
780765d fix up contains and intersection docs
97b7607 clarify self and other in method docs
88a7a18 Merge pull request #477 from DanielEScherzer/patch-1
f0e4646 example_generated.rs: add missing third slash for doc comment
a31c96f Merge pull request #478 from DanielEScherzer/beta-bless
Additional commits viewable in compare view

Updates ecdsa from 0.17.0-rc.16 to 0.17.0-rc.17

Commits

f467f70 ecdsa v0.17.0-rc.17 (#1304)
a39b93d ecdsa: bump spki to v0.8 (#1303)
6752ba4 ecdsa: use mul_by_generator_and_mul_add_vartime for verification (#1302)
ecaf359 ml-dsa: zeroize NTT-domain derived values in ExpandedSigningKey Drop (#1300)
66de36e xmss: delete Cargo.lock (#1301)
a9b8056 Cargo.lock: bump deps (#1299)
8cb1795 build(deps): bump elliptic-curve from 0.14.0-rc.29 to 0.14.0-rc.30 (#1292)
66473ec xmss: bump format dependencies (#1290)
37f9be5 build(deps): bump actions/checkout from 5.0.1 to 6.0.2 (#1289)
a031db9 build(deps): bump crate-ci/typos from 1.44.0 to 1.45.0 (#1288)
Additional commits viewable in compare view

Updates elliptic-curve from 0.14.0-rc.30 to 0.14.0-rc.31

Commits

b397bd3 elliptic-curve v0.14.0-rc.31 (#2386)
4aa20fa elliptic-curve: shorten name of mul_by_generator_and_mul_add_vartime (#2385)
ac069b2 elliptic-curve: add MulByGeneratorVartime to bounds (#2384)
403d4d1 build(deps): bump the all-deps group with 3 updates (#2383)
45489da elliptic-curve: add MulByGeneratorVartime trait (#2381)
b48dd1e elliptic-curve: MulVartime fixups (#2380)
d4c0d46 elliptic-curve: add ops::MulVartime trait and bound Scalar (#2379)
4f084d3 elliptic-curve: use *Vartime as a suffix (#2378)
caa9638 elliptic-curve: add VartimeBasepointTable (#2374)
ac67970 elliptic-curve: add PointWithBasepointTable trait (#2376)
See full diff in compare view

Updates openssl-sys from 0.9.113 to 0.9.114

Release notes

Sourced from openssl-sys's releases.

openssl-sys-v0.9.114

What's Changed

Fix Suite B flag assignments in verify.rs by @alex in rust-openssl/rust-openssl#2592

Use cvt_p for OPENSSL_malloc error handling by @alex in rust-openssl/rust-openssl#2593

Mark BIO_get_mem_data on AWS-LC to be unsafe by @alex in rust-openssl/rust-openssl#2594

Set timeout for package installation step by @alex in rust-openssl/rust-openssl#2595

Panic in Crypter::new when IV is required but not provided by @alex in rust-openssl/rust-openssl#2596

openssl 4 support by @reaperhulk in rust-openssl/rust-openssl#2591

Avoid panic for overlong OIDs by @botovq in rust-openssl/rust-openssl#2598

Fix dangling stack pointer in custom extension add callback by @alex in rust-openssl/rust-openssl#2599

Add support for LibreSSL 4.3.x by @botovq in rust-openssl/rust-openssl#2603

fix inverted bounds assertion in AES key unwrap by @reaperhulk in rust-openssl/rust-openssl#2604

Reject oversized length returns from password callback trampoline by @alex in rust-openssl/rust-openssl#2605

Validate callback-returned lengths in PSK and cookie trampolines by @alex in rust-openssl/rust-openssl#2607

Error for short out in MdCtxRef::digest_final() by @botovq in rust-openssl/rust-openssl#2608

Check derive output buffer length on OpenSSL 1.1.x by @alex in rust-openssl/rust-openssl#2606

Release openssl v0.10.78 and openssl-sys v0.9.114 by @alex in rust-openssl/rust-openssl#2609

Full Changelog: rust-openssl/rust-openssl@openssl-sys-v0.9.113...openssl-sys-v0.9.114

Commits

a6debf5 Release openssl v0.10.78 and openssl-sys v0.9.114 (#2609)
09b425e Check derive output buffer length on OpenSSL 1.1.x (#2606)
826c388 Error for short out in MdCtxRef::digest_final() (#2608)
1d10902 Validate callback-returned lengths in PSK and cookie trampolines (#2607)
5af6895 Reject oversized length returns from password callback trampoline (#2605)
718d07f fix inverted bounds assertion in AES key unwrap (#2604)
53cc69d Add support for LibreSSL 4.3.x (#2603)
0b41e79 Fix dangling stack pointer in custom extension add callback (#2599)
cbdedf8 Avoid panic for overlong OIDs (#2598)
1fc51ef openssl 4 support (#2591)
Additional commits viewable in compare view

Updates p256 from 0.14.0-rc.8 to 0.14.0-rc.9

Commits

42bda6f Cut new prereleases (#1742)
881fdbe Adopt Trusted Publishing (#1741)
87604ff sm2: add precomputed-tables feature (#1740)
27ae4c2 bignp256+sm2: benchmark updates (#1739)
c861445 p521: add precomputed-tables feature (#1738)
9bf2311 p384: add precomputed-tables feature (#1737)
94c8189 k256+p256: refactor basepoint tables (#1736)
f576117 primeorder: add PrimeCurveWithBasepointTableVartime trait (#1735)
55164d6 primeorder: mul_by_generator(_vartime) overrides (#1732)
7ae4138 Bump elliptic-curve and ecdsa (#1731)
Additional commits viewable in compare view

Updates p384 from 0.14.0-rc.8 to 0.14.0-rc.9

Commits

42bda6f Cut new prereleases (#1742)
881fdbe Adopt Trusted Publishing (#1741)
87604ff sm2: add precomputed-tables feature (#1740)
27ae4c2 bignp256+sm2: benchmark updates (#1739)
c861445 p521: add precomputed-tables feature (#1738)
9bf2311 p384: add precomputed-tables feature (#1737)
94c8189 k256+p256: refactor basepoint tables (#1736)
f576117 primeorder: add PrimeCurveWithBasepointTableVartime trait (#1735)
55164d6 primeorder: mul_by_generator(_vartime) overrides (#1732)
7ae4138 Bump elliptic-curve and ecdsa (#1731)
Additional commits viewable in compare view

Updates primefield from 0.14.0-rc.8 to 0.14.0-rc.9

Commits

42bda6f Cut new prereleases (#1742)
881fdbe Adopt Trusted Publishing (#1741)
87604ff sm2: add precomputed-tables feature (#1740)
27ae4c2 bignp256+sm2: benchmark updates (#1739)
c861445 p521: add precomputed-tables feature (#1738)
9bf2311 p384: add precomputed-tables feature (#1737)
94c8189 k256+p256: refactor basepoint tables (#1736)
f576117 primeorder: add PrimeCurveWithBasepointTableVartime trait (#1735)
55164d6 primeorder: mul_by_generator(_vartime) overrides (#1732)
7ae4138 Bump elliptic-curve and ecdsa (#1731)
Additional commits viewable in compare view

Updates primeorder from 0.14.0-rc.8 to 0.14.0-rc.9

Commits

42bda6f Cut new prereleases (#1742)
881fdbe Adopt Trusted Publishing (#1741)
87604ff sm2: add precomputed-tables feature (#1740)
27ae4c2 bignp256+sm2: benchmark updates (#1739)
c861445 p521: add precomputed-tables feature (#1738)
9bf2311 p384: add precomputed-tables feature (#1737)
94c8189 k256+p256: refactor basepoint tables (#1736)
f576117 primeorder: add PrimeCurveWithBasepointTableVartime trait (#1735)
55164d6 primeorder: mul_by_generator(_vartime) overrides (#1732)
7ae4138 Bump elliptic-curve and ecdsa (#1731)
Additional commits viewable in compare view

Updates rustls-webpki from 0.103.11 to 0.103.12

Release notes

Sourced from rustls-webpki's releases.

0.103.12

This release fixes two bugs in name constraint enforcement:

GHSA-965h-392x-2mh5: name constraints for URI names were ignored and therefore accepted. URI name constraints are now rejected unconditionally. Note this library does not provide an API for asserting URI names, and URI name constraints are otherwise not implemented.

GHSA-xgp8-3hg3-c2mh: permitted subtree name constraints for DNS names were accepted for certificates asserting a wildcard name. This was incorrect because, given a name constraint of accept.example.com, *.example.com could feasibly allow a name of reject.example.com which is outside the constraint. This is very similar to CVE-2025-61727.

Since name constraints are restrictions on otherwise properly-issued certificates, these bugs are reachable only after signature verification and require misissuance to exploit.

What's Changed

Prepare 0.103.12 by @djc in rustls/webpki#470

Full Changelog: rustls/webpki@v/0.103.11...v/0.103.12

Commits

27131d4 Bump version to 0.103.12
6ecb876 Clean up stuttery enum variant names
318b3e6 Ignore wildcard labels when matching name constraints
1219622 Rewrite constraint matching to avoid permissive catch-all branch
See full diff in compare view

Updates typenum from 1.19.0 to 1.20.0

Release notes

Sourced from typenum's releases.

v1.20.0

Commits

77b877d: remove deprecated features, replace build script with pre-generated tests (#237) (Cathal) #237

4d5f26b: Add tuple operations (#242) (grenewode) #242

c755e2f: Version 1.20.0 (Paho Lurie-Gregg)

Changelog

Sourced from typenum's changelog.

1.20.0 (2026-04-18)

[removed] Removed no_std feature flag (deprecated since 1.3.0)

[removed] Removed force_unix_path_separator feature flag (deprecated since 1.17.0)

[changed] Replaced build.rs script with pre-generated test files

[added] Indexing into tuples

[changed] MSRV now 1.41.0

Commits

c755e2f Version 1.20.0
4d5f26b Add tuple operations (#242)
77b877d remove deprecated features, replace build script with pre-generated tests (#237)
See full diff in compare view

Updates wasip2 from 1.0.2+wasi-0.2.9 to 1.0.3+wasi-0.2.9

Commits

660ee06 Bump version numbers of wasip2/wasip3 (#155)
ad7e8f6 Update wit-bindgen to 0.57.1 (#154)
a6fa3f1 Update wit-bindgen, make wasip3 no_std compatible (#153)
9d39023 Implement the missing debug functionality (#152)
c09f642 Allow activating wit-bindgen/macros (#151)
ad3c5cc Re-export spawn from wit-bindgen (#150)
277c0a6 ci: wasmtime v43 and latest wasm-tools (#149)
3a8f1b2 Include license files in packages (#148)
2700044 Update to 0.3.0-rc-2026-03-15 (#146)
26a820c Update wasip3 snapshot (#144)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the validation-deps group in /validation/local_ping_pong_openssl with 12 updates: | Package | From | To | | --- | --- | --- | | [openssl](https://github.com/rust-openssl/rust-openssl) | `0.10.77` | `0.10.78` | | [bitflags](https://github.com/bitflags/bitflags) | `2.11.0` | `2.11.1` | | [ecdsa](https://github.com/RustCrypto/signatures) | `0.17.0-rc.16` | `0.17.0-rc.17` | | [elliptic-curve](https://github.com/RustCrypto/traits) | `0.14.0-rc.30` | `0.14.0-rc.31` | | [openssl-sys](https://github.com/rust-openssl/rust-openssl) | `0.9.113` | `0.9.114` | | [p256](https://github.com/RustCrypto/elliptic-curves) | `0.14.0-rc.8` | `0.14.0-rc.9` | | [p384](https://github.com/RustCrypto/elliptic-curves) | `0.14.0-rc.8` | `0.14.0-rc.9` | | [primefield](https://github.com/RustCrypto/elliptic-curves) | `0.14.0-rc.8` | `0.14.0-rc.9` | | [primeorder](https://github.com/RustCrypto/elliptic-curves) | `0.14.0-rc.8` | `0.14.0-rc.9` | | [rustls-webpki](https://github.com/rustls/webpki) | `0.103.11` | `0.103.12` | | [typenum](https://github.com/paholg/typenum) | `1.19.0` | `1.20.0` | | [wasip2](https://github.com/bytecodealliance/wasi-rs) | `1.0.2+wasi-0.2.9` | `1.0.3+wasi-0.2.9` | Updates `openssl` from 0.10.77 to 0.10.78 - [Release notes](https://github.com/rust-openssl/rust-openssl/releases) - [Commits](rust-openssl/rust-openssl@openssl-v0.10.77...openssl-v0.10.78) Updates `bitflags` from 2.11.0 to 2.11.1 - [Release notes](https://github.com/bitflags/bitflags/releases) - [Changelog](https://github.com/bitflags/bitflags/blob/main/CHANGELOG.md) - [Commits](bitflags/bitflags@2.11.0...2.11.1) Updates `ecdsa` from 0.17.0-rc.16 to 0.17.0-rc.17 - [Commits](RustCrypto/signatures@ecdsa/v0.17.0-rc.16...ecdsa/v0.17.0-rc.17) Updates `elliptic-curve` from 0.14.0-rc.30 to 0.14.0-rc.31 - [Commits](RustCrypto/traits@elliptic-curve-v0.14.0-rc.30...elliptic-curve-v0.14.0-rc.31) Updates `openssl-sys` from 0.9.113 to 0.9.114 - [Release notes](https://github.com/rust-openssl/rust-openssl/releases) - [Commits](rust-openssl/rust-openssl@openssl-sys-v0.9.113...openssl-sys-v0.9.114) Updates `p256` from 0.14.0-rc.8 to 0.14.0-rc.9 - [Commits](RustCrypto/elliptic-curves@p256/v0.14.0-rc.8...p256/v0.14.0-rc.9) Updates `p384` from 0.14.0-rc.8 to 0.14.0-rc.9 - [Commits](RustCrypto/elliptic-curves@p384/v0.14.0-rc.8...p384/v0.14.0-rc.9) Updates `primefield` from 0.14.0-rc.8 to 0.14.0-rc.9 - [Commits](RustCrypto/elliptic-curves@primefield/v0.14.0-rc.8...primefield/v0.14.0-rc.9) Updates `primeorder` from 0.14.0-rc.8 to 0.14.0-rc.9 - [Commits](RustCrypto/elliptic-curves@primeorder/v0.14.0-rc.8...primeorder/v0.14.0-rc.9) Updates `rustls-webpki` from 0.103.11 to 0.103.12 - [Release notes](https://github.com/rustls/webpki/releases) - [Commits](rustls/webpki@v/0.103.11...v/0.103.12) Updates `typenum` from 1.19.0 to 1.20.0 - [Release notes](https://github.com/paholg/typenum/releases) - [Changelog](https://github.com/paholg/typenum/blob/main/CHANGELOG.md) - [Commits](paholg/typenum@v1.19.0...v1.20.0) Updates `wasip2` from 1.0.2+wasi-0.2.9 to 1.0.3+wasi-0.2.9 - [Commits](bytecodealliance/wasi-rs@wasip2-1.0.2...wasip2-1.0.3) --- updated-dependencies: - dependency-name: openssl dependency-version: 0.10.78 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: bitflags dependency-version: 2.11.1 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: ecdsa dependency-version: 0.17.0-rc.17 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: elliptic-curve dependency-version: 0.14.0-rc.31 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: openssl-sys dependency-version: 0.9.114 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: p256 dependency-version: 0.14.0-rc.9 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: p384 dependency-version: 0.14.0-rc.9 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: primefield dependency-version: 0.14.0-rc.9 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: primeorder dependency-version: 0.14.0-rc.9 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: rustls-webpki dependency-version: 0.103.12 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps - dependency-name: typenum dependency-version: 1.20.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: validation-deps - dependency-name: wasip2 dependency-version: 1.0.3+wasi-0.2.9 dependency-type: indirect update-type: version-update:semver-patch dependency-group: validation-deps ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Apr 20, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the validation-deps group in /validation/local_ping_pong_openssl with 12 updates#194

chore(deps): bump the validation-deps group in /validation/local_ping_pong_openssl with 12 updates#194
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/cargo/validation/local_ping_pong_openssl/validation-deps-a12a3c1eeb

dependabot bot commented on behalf of github Apr 20, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Apr 20, 2026

openssl-v0.10.78

What's Changed

2.11.1

What's Changed

New Contributors

2.11.1

What's Changed

New Contributors

openssl-sys-v0.9.114

What's Changed

0.103.12

What's Changed

v1.20.0

Commits

1.20.0 (2026-04-18)

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants