Mirror of git.openembedded.org/meta-openembedded https://git.enea.com/cgit/linux/meta-openembedded.git/atom?h=stable%2Fkirkstone-nut 2023-06-03T11:55:37+00:00 2023-06-03T11:55:37+00:00 Narpat Mali narpat.mali@windriver.com 2023-06-01T17:52:55+00:00 urn:sha1:f95484417e3d3e65ca15b460ba71dfd35773f0e4 A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption API via the timed processing of valid PKCS#1 v1.5 Ciphertext. The highest threat from this vulnerability is to confidentiality. Signed-off-by: Narpat Mali <narpat.mali@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> 2021-10-14T14:15:36+00:00 Alexander Kanavin alex.kanavin@gmail.com 2021-10-11T18:41:40+00:00 urn:sha1:d5b6841bf8c7623ae8d7b0031c2de711b04cdc08 Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> 2021-07-06T16:40:42+00:00 zangrc zangrc.fnst@fujitsu.com 2021-07-05T01:55:53+00:00 urn:sha1:eb7030939983dc4fc5dfb29e4f0ef4e4b4d3f505 0.38.0 - 2021-06-14 ------------------- - Remove the last use of setup.py test idiom. - Use m2_PyObject_AsReadBuffer instead of PyObject_AsReadBuffer. - Add support for arm64 big endian <Steev Klimaszewski> - Make support of RSA_SSLV23_PADDING optional (it has been deprecated). - Move project to src/ layout - Allow verify_cb_* to be called with ok=True <Casey Deccio> - Be prepared if any of constants in x509_vfy.h is not available. - But we do support 3.8 - We DO NOT support Python 2.6. Refresh the following patch: cross-compile-platform.patch 0001-Allow-verify_cb_-to-be-called-with-ok-True.patch 0001-Use-of-RSA_SSLV23_PADDING-has-been-deprecated.patch Removed since these are included in 0.38.0 Signed-off-by: Zang Ruochen <zangrc.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> 2021-06-28T16:02:47+00:00 Kai Kang kai.kang@windriver.com 2021-06-24T08:32:04+00:00 urn:sha1:cff3116f665c2d17f6a6ae9bbe61025c88da99c0 If the version of libssl-dev is not match the version of libssl on the build machine, it fails to compile SWIG/_m2crypto_wrap.c which is created by swig for python3-m2crypto-native: | SWIG/_m2crypto_wrap.c:9757:19: error: dereferencing pointer to incomplete type 'struct stack_st' | if (arg1) (arg1)->num = arg2; | ^~ But it works if no libssl-dev installed on the build machine. Export STAGING_DIR to make existing patch 0001-setup.py-link-in-sysroot-not-in-host-directories.patch work. And filter out '/usr/inlucde' from include pathes of swig. Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> 2021-05-03T15:05:21+00:00 Khem Raj raj.khem@gmail.com 2021-05-01T19:04:27+00:00 urn:sha1:b8bbcd4dea422be57123d75fbf77db6d33542b06 Unifiy .inc into .bb Add patches to fix issues with openssl 1.1.x Remove m2crypto-0.26.4-gcc_macros patch, its no longer needed Refresh existing patches Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>