What's Changed

• Fix Suite B flag assignments in verify.rs by @alex in #2592
• Use cvt_p for OPENSSL_malloc error handling by @alex in #2593
• Mark BIO_get_mem_data on AWS-LC to be unsafe by @alex in #2594
• Set timeout for package installation step by @alex in #2595
• Panic in Crypter::new when IV is required but not provided by @alex in #2596
• openssl 4 support by @reaperhulk in #2591
• Avoid panic for overlong OIDs by @botovq in #2598
• Fix dangling stack pointer in custom extension add callback by @alex in #2599
• Add support for LibreSSL 4.3.x by @botovq in #2603
• fix inverted bounds assertion in AES key unwrap by @reaperhulk in #2604
• Reject oversized length returns from password callback trampoline by @alex in #2605
• Validate callback-returned lengths in PSK and cookie trampolines by @alex in #2607
• Error for short out in MdCtxRef::digest_final() by @botovq in #2608
• Check derive output buffer length on OpenSSL 1.1.x by @alex in #2606
• Release openssl v0.10.78 and openssl-sys v0.9.114 by @alex in #2609

Full Changelog: openssl-v0.10.77...openssl-v0.10.78