LibreSSL 2.9.1 to be Available

The LibreSSL project is focused on high-quality support for the SSL / TLS protocols with the removal of unnecessary functionality
22 April 2019   982

The OpenBSD project developers presented a release of the portable edition of the LibreSSL 2.9.1 package, within which the OpenSSL fork is being developed, aimed at providing a higher level of security. The LibreSSL project is focused on high-quality support for the SSL / TLS protocols with the removal of unnecessary functionality, additional security features sy and the extensive cleaning and processing of the code base. The release of LibreSSL 2.9.1 is considered experimental, in which the capabilities that will be included in OpenBSD 6.5 are being developed.

These are some of the updates and new features:

  • Added SM3 hash function (Chinese standard GB / T 32905-2016);
  • Added block cipher SM4 (Chinese standard GB / T 32907-2016);
  • Added OPENSSL_NO_ * macros to improve compatibility with OpenSSL;
  • The EC_KEY_METHOD method is partially ported from OpenSSL;
  • Implemented missing OpenSSL 1.1 API calls;
  • Added support for XChaCha20 and XChaCha20-Poly1305;

Get more info at email copy.

Oracle to Release Unbreakable Kernel R5U3

The update for the kernel, that can be used as alternative for Red Hat Enterprise Linux used in the Oracle Linux is based on the Linux 4.14 
25 March 2020   182

Oracle has released the third functional update for the Unbreakable Enterprise Kernel R5 kernel, positioned for use in the Oracle Linux distribution as an alternative to the regular kernel package from Red Hat Enterprise Linux. The kernel is available for x86_64 and ARM64 architectures (aarch64). Kernel sources, including breakdowns into individual patches, are published in the public Oracle Git repository.

The Unbreakable Enterprise Kernel 5 package is based on the Linux 4.14 kernel (UEK R4 was based on the 4.1 kernel), which is supplemented with new features, optimizations and fixes, as well as tested for compatibility with most applications running in RHEL and specially optimized for working with industrial software and Oracle hardware. Installation and src packages with the UEK R5U1 kernel are prepared for Oracle Linux 7 (there are no obstacles to using this kernel in similar versions of RHEL, CentOS and Scientific Linux).

Key improvements:

  • Improved support for 64-bit systems based on the ARM architecture. Updated drivers for ARM.
  • InfiniBand includes on-demand paging support, which allows you to reflect memory through a processor for accessing unallocated pages of memory (page faults), i.e. consume memory when it is actually being used.
  • In XFS, a deadlock was eliminated, which caused the locks to freeze and not free.
  • CIFS resolved an issue that could lead to POSIX lock leaks and crashes.
  • Bug fixes resolving issues with incompatibility of certain equipment with QEMU / KVM.
  • Device drivers are synchronized with the Linux kernel 4.14.35. The driver for Broadcom Emulex LightPulse Fiber Channel SCSI has been updated to version 12.2.0.13.

Get more at the official blog