From 672845b9d0841de58b6a954d25fe6ee1ab7c333d Mon Sep 17 00:00:00 2001 From: Andre McCurdy Date: Wed, 8 Nov 2017 19:45:36 -0800 Subject: gnutls: update 3.3.27 -> 3.3.28 * Version 3.3.28 (released 2017-07-04) ** libgnutls: Fixed issue when rehandshaking without a client certificate in a session which initially used one. Reported by Frantisek Sumsal. ** libgnutls: fix issue in RSA-PSK client callback which resulted in no username being sent to the peer. Patch by Nicolas Dufresne. ** libgnutls: no longer parse the ResponseID field of the status response TLS extension. The field is not used by GnuTLS nor is made available to calling applications. That addresses a null pointer dereference on server side caused by packets containing the ResponseID field. Reported by Hubert Kario. [GNUTLS-SA-2017-4] ** libgnutls: Handle specially HSMs which request explicit authentication. There are HSMs which return CKR_USER_NOT_LOGGED_IN on the first private key operation. Detect that state and try to login. ** libgnutls: the GNUTLS_PKCS11_OBJ_FLAG_LOGIN will force a login on HSMs. That is, even in tokens which do not have a CKF_LOGIN_REQUIRED flag a login will be forced. This improves operation on certain Safenet HSMs. ** libgnutls: do not set leading zeros when copying integers on HSMs. PKCS#11 defines integers as unsigned having most significant byte first, e.g., 32768 = 0x80 0x00. This is interpreted literraly by some HSMs which do not accept an integer with a leading zero. This improves operation with certain Atos HSMs. ** libgnutls: Backported PKCS#11 key generation functionality for DSA keys. ** libgnutls: Improve check for /dev/urandom uniqueness. Ensure that when gnutls_global_init() is called for a second time that /dev/urandom is re-opened when the inode or device ID has changed. ** API and ABI modifications: No changes since last version. Signed-off-by: Andre McCurdy Signed-off-by: Ross Burton --- recipes-support/gnutls/gnutls_3.3.28.bb | 8 ++++++++ 1 file changed, 8 insertions(+) create mode 100644 recipes-support/gnutls/gnutls_3.3.28.bb (limited to 'recipes-support/gnutls/gnutls_3.3.28.bb') diff --git a/recipes-support/gnutls/gnutls_3.3.28.bb b/recipes-support/gnutls/gnutls_3.3.28.bb new file mode 100644 index 0000000..1b23369 --- /dev/null +++ b/recipes-support/gnutls/gnutls_3.3.28.bb @@ -0,0 +1,8 @@ +require gnutls.inc + +SRC_URI += " \ + file://configure.ac-fix-sed-command.patch \ + file://use-pkg-config-to-locate-zlib.patch \ +" +SRC_URI[md5sum] = "e19718d97cee5279edf3f3b9318f926c" +SRC_URI[sha256sum] = "608f63441abc209c5bd5f61e35f2b6128c22e06fa2ad6248a08d8a643feeb807" -- cgit v1.2.3-54-g00ecf