Changeset 47200


Ignore:
Timestamp:
2015-10-18T23:48:04+02:00 (2 years ago)
Author:
hauke
Message:

mbedtls: update to version 2.1.2

This fixes CVE-2015-5291 and some other smaller security issues.

Signed-off-by: Hauke Mehrtens <hauke@…>

Location:
trunk/package/libs/mbedtls
Files:
2 edited

Legend:

Unmodified
Added
Removed
  • trunk/package/libs/mbedtls/Makefile

    r47197 r47200  
    99 
    1010PKG_NAME:=mbedtls 
    11 PKG_VERSION:=2.0.0 
     11PKG_VERSION:=2.1.2 
    1212PKG_RELEASE:=1 
    1313PKG_USE_MIPS16:=0 
     
    1515PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION)-gpl.tgz 
    1616PKG_SOURCE_URL:=https://tls.mbed.org/download/ 
    17 PKG_MD5SUM:=6b8246a19a7a77737856e729cc8a0952 
     17PKG_MD5SUM:=38b7baae95d6b0826605a1edfffeebe4 
    1818 
    1919PKG_BUILD_PARALLEL:=1 
  • trunk/package/libs/mbedtls/patches/200-config.patch

    r46484 r47200  
    11--- a/include/mbedtls/config.h 
    22+++ b/include/mbedtls/config.h 
    3 @@ -181,7 +181,7 @@ 
     3@@ -184,7 +184,7 @@ 
    44  * 
    55  * Uncomment to get errors on using deprecated functions. 
     
    1010 /* \} name SECTION: System support */ 
    1111  
    12 @@ -320,7 +320,7 @@ 
     12@@ -323,7 +323,7 @@ 
    1313  * 
    1414  * Enable Cipher Feedback mode (CFB) for symmetric ciphers. 
     
    1919 /** 
    2020  * \def MBEDTLS_CIPHER_MODE_CTR 
    21 @@ -413,13 +413,13 @@ 
     21@@ -416,13 +416,13 @@ 
    2222  * 
    2323  * Comment macros to disable the curve and functions for it 
     
    3737 #define MBEDTLS_ECP_DP_BP256R1_ENABLED 
    3838 #define MBEDTLS_ECP_DP_BP384R1_ENABLED 
    39 @@ -435,7 +435,7 @@ 
     39@@ -438,7 +438,7 @@ 
    4040  * 
    4141  * Comment this macro to disable NIST curves optimisation. 
     
    4646 /** 
    4747  * \def MBEDTLS_ECDSA_DETERMINISTIC 
    48 @@ -443,7 +443,7 @@ 
    49   * Enable deterministic ECDSA (RFC 6979). 
    50   * Standard ECDSA is "fragile" in the sense that lack of entropy when signing 
    51   * may result in a compromise of the long-term signing key. This is avoided by 
    52 - * the deterministic variant. 
    53 +       DH      * the deterministic variant. 
    54   * 
    55   * Requires: MBEDTLS_HMAC_DRBG_C 
    56   * 
    57 @@ -495,7 +495,7 @@ 
     48@@ -498,7 +498,7 @@ 
    5849  *      MBEDTLS_TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA 
    5950  *      MBEDTLS_TLS_DHE_PSK_WITH_RC4_128_SHA 
     
    6455 /** 
    6556  * \def MBEDTLS_KEY_EXCHANGE_ECDHE_PSK_ENABLED 
    66 @@ -540,7 +540,7 @@ 
     57@@ -543,7 +543,7 @@ 
    6758  *      MBEDTLS_TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA 
    6859  *      MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA 
     
    7364 /** 
    7465  * \def MBEDTLS_KEY_EXCHANGE_RSA_ENABLED 
    75 @@ -594,7 +594,7 @@ 
     66@@ -597,7 +597,7 @@ 
    7667  *      MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA 
    7768  *      MBEDTLS_TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA 
     
    8273 /** 
    8374  * \def MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED 
    84 @@ -667,7 +667,7 @@ 
     75@@ -670,7 +670,7 @@ 
    8576  *      MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_128_GCM_SHA256 
    8677  *      MBEDTLS_TLS_ECDH_ECDSA_WITH_CAMELLIA_256_GCM_SHA384 
     
    9182 /** 
    9283  * \def MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED 
    93 @@ -691,7 +691,7 @@ 
     84@@ -694,7 +694,7 @@ 
    9485  *      MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_128_GCM_SHA256 
    9586  *      MBEDTLS_TLS_ECDH_RSA_WITH_CAMELLIA_256_GCM_SHA384 
     
    10091 /** 
    10192  * \def MBEDTLS_PK_PARSE_EC_EXTENDED 
    102 @@ -810,7 +810,7 @@ 
     93@@ -813,7 +813,7 @@ 
    10394  * 
    10495  * Comment this macro to disable support for external private RSA keys. 
     
    109100 /** 
    110101  * \def MBEDTLS_PKCS1_V15 
    111 @@ -842,14 +842,14 @@ 
     102@@ -845,14 +845,14 @@ 
    112103  * Uncomment this macro to disable the use of CRT in RSA. 
    113104  * 
     
    126117 /** 
    127118  * \def MBEDTLS_SHA256_SMALLER 
    128 @@ -865,7 +865,7 @@ 
     119@@ -868,7 +868,7 @@ 
    129120  * 
    130121  * Uncomment to enable the smaller implementation of SHA256. 
     
    135126 /** 
    136127  * \def MBEDTLS_SSL_AEAD_RANDOM_IV 
    137 @@ -1038,7 +1038,7 @@ 
     128@@ -1041,7 +1041,7 @@ 
    138129  * 
    139130  * Comment this macro to disable support for SSL 3.0 
     
    144135 /** 
    145136  * \def MBEDTLS_SSL_PROTO_TLS1 
    146 @@ -1176,7 +1176,7 @@ 
     137@@ -1195,7 +1195,7 @@ 
    147138  * 
    148139  * Comment this macro to disable support for truncated HMAC in SSL 
     
    153144 /** 
    154145  * \def MBEDTLS_THREADING_ALT 
    155 @@ -1410,7 +1410,7 @@ 
     146@@ -1431,7 +1431,7 @@ 
    156147  *      MBEDTLS_TLS_RSA_PSK_WITH_RC4_128_SHA 
    157148  *      MBEDTLS_TLS_PSK_WITH_RC4_128_SHA 
     
    162153 /** 
    163154  * \def MBEDTLS_ASN1_PARSE_C 
    164 @@ -1475,7 +1475,7 @@ 
     155@@ -1496,7 +1496,7 @@ 
    165156  * 
    166157  * Module:  library/blowfish.c 
     
    171162 /** 
    172163  * \def MBEDTLS_CAMELLIA_C 
    173 @@ -1530,7 +1530,7 @@ 
     164@@ -1551,7 +1551,7 @@ 
    174165  *      MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_GCM_SHA256 
    175166  *      MBEDTLS_TLS_PSK_WITH_CAMELLIA_128_CBC_SHA256 
     
    180171 /** 
    181172  * \def MBEDTLS_CCM_C 
    182 @@ -1544,7 +1544,7 @@ 
     173@@ -1565,7 +1565,7 @@ 
    183174  * This module enables the AES-CCM ciphersuites, if other requisites are 
    184175  * enabled as well. 
     
    189180 /** 
    190181  * \def MBEDTLS_CERTS_C 
    191 @@ -1556,7 +1556,7 @@ 
     182@@ -1577,7 +1577,7 @@ 
    192183  * 
    193184  * This module is used for testing (ssl_client/server). 
     
    198189 /** 
    199190  * \def MBEDTLS_CIPHER_C 
    200 @@ -1596,7 +1596,7 @@ 
     191@@ -1617,7 +1617,7 @@ 
    201192  * 
    202193  * This module provides debugging functions. 
     
    207198 /** 
    208199  * \def MBEDTLS_DES_C 
    209 @@ -1636,7 +1636,7 @@ 
     200@@ -1657,7 +1657,7 @@ 
    210201  * This module is used by the following key exchanges: 
    211202  *      DHE-RSA, DHE-PSK 
     
    216207 /** 
    217208  * \def MBEDTLS_ECDH_C 
    218 @@ -2026,7 +2026,7 @@ 
     209@@ -2047,7 +2047,7 @@ 
    219210  * Caller:  library/mbedtls_md.c 
    220211  * 
     
    225216 /** 
    226217  * \def MBEDTLS_RSA_C 
    227 @@ -2324,7 +2324,7 @@ 
     218@@ -2345,7 +2345,7 @@ 
    228219  * Module:  library/xtea.c 
    229220  * Caller: 
Note: See TracChangeset for help on using the changeset viewer.