<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/poky.git/meta/recipes-connectivity/openssl, branch python3</title>
<subtitle>Mirror of git.yoctoproject.org/poky</subtitle>
<id>https://git.enea.com/cgit/linux/poky.git/atom?h=python3</id>
<link rel='self' href='https://git.enea.com/cgit/linux/poky.git/atom?h=python3'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/'/>
<updated>2016-05-11T09:33:39+00:00</updated>
<entry>
<title>openssl: Security fix via update to 1.0.2h</title>
<updated>2016-05-11T09:33:39+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster@mvista.com</email>
</author>
<published>2016-05-03T23:46:05+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=5ae5fc7e7b632717be02d1db2fbb9a7cf6ba4f12'/>
<id>urn:sha1:5ae5fc7e7b632717be02d1db2fbb9a7cf6ba4f12</id>
<content type='text'>
CVE-2016-2105
CVE-2016-2106
CVE-2016-2109
CVE-2016-2176

https://www.openssl.org/news/secadv/20160503.txt

fixup openssl-avoid-NULL-pointer-dereference-in-EVP_DigestInit_ex.patch

drop crypto_use_bigint_in_x86-64_perl.patch as that fix is in latest.

(From OE-Core rev: c693f34f54257a8eca9fe8c5a9eee5647b7eeb0c)

Signed-off-by: Armin Kuster &lt;akuster@mvista.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>openssl.inc: minor packaging cleanup</title>
<updated>2016-04-09T22:00:45+00:00</updated>
<author>
<name>Andre McCurdy</name>
<email>armccurdy@gmail.com</email>
</author>
<published>2016-04-07T00:42:05+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=66ecbd3405b94ff051f9a69936f4387e9a973a86'/>
<id>urn:sha1:66ecbd3405b94ff051f9a69936f4387e9a973a86</id>
<content type='text'>
libcrypto.so was explicitly added to FILES_${PN}-dev as part of moving
libcrypto from libdir -&gt; base_libdir to support dhclient [1].

However, the line has been unnecessary since ${base_libdir}/lib*.so
files started to be included in FILES_${PN}-dev by default [2] (and
it's still unnecessary now, after moving libcrypto from back to libdir
to support ntp [3]).

 [1] http://git.openembedded.org/openembedded-core/commit/?id=01ea85f7f6c53c66c76d6f832518b28bf06ec072
 [2] http://git.openembedded.org/openembedded-core/commit/?id=66c36bcb7d9368718453265e58bd5e3c854c786a
 [3] http://git.openembedded.org/openembedded-core/commit/?id=0be2ab32f690a2fcba0e821abe11460958bbc6dc

Also define FILES_libssl using SOLIBS instead of a hardcoded pattern.

(From OE-Core rev: 3f81b516e2f23683ce6129bb79bcc08263cb7fe1)

Signed-off-by: Andre McCurdy &lt;armccurdy@gmail.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>openssl: don't move libcrypto to base_libdir</title>
<updated>2016-03-20T23:12:26+00:00</updated>
<author>
<name>Chen Qi</name>
<email>Qi.Chen@windriver.com</email>
</author>
<published>2016-03-15T07:13:46+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=9aa27fe001d34e491235273f454c38b9ba1c60a4'/>
<id>urn:sha1:9aa27fe001d34e491235273f454c38b9ba1c60a4</id>
<content type='text'>
For now, if 'openssl' is enabled for ntp, ntp would still be built
without openssl &amp; libcrypto. This is because that ntp thinks openssl
and libcrypto locates under the same directory.

This patch removes the codes of moving libcrypto to base_libdir.

(From OE-Core rev: 0be2ab32f690a2fcba0e821abe11460958bbc6dc)

Signed-off-by: Chen Qi &lt;Qi.Chen@windriver.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>openssl: add a patch to fix parallel builds</title>
<updated>2016-03-07T00:11:39+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross.burton@intel.com</email>
</author>
<published>2016-03-05T00:12:02+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=70b4f36fc241679923808f231cf50fa0e2479399'/>
<id>urn:sha1:70b4f36fc241679923808f231cf50fa0e2479399</id>
<content type='text'>
Apply a patch taken from Gentoo to hopefully fix the remaining parallel make
races.

(From OE-Core rev: 3d806d59a4c5e8ff35c7e7c5a3a6ef85e2b4b259)

Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>openssl: Security fix Drown via 1.0.2g update</title>
<updated>2016-03-03T10:49:00+00:00</updated>
<author>
<name>Armin Kuster</name>
<email>akuster@mvista.com</email>
</author>
<published>2016-03-02T07:38:41+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=73a43fc15e0463c39baaadecab78fb3ef51b8cd0'/>
<id>urn:sha1:73a43fc15e0463c39baaadecab78fb3ef51b8cd0</id>
<content type='text'>
CVE-2016-0800
CVE-2016-0705
CVE-2016-0798
CVE-2016-0797
CVE-2016-0799
CVE-2016-0702
CVE-2016-0703
CVE-2016-0704

https://www.openssl.org/news/secadv/20160301.txt

Updated 2 debian patches to match changes in 1.0.2g

(From OE-Core rev: 7933fbbc6372ec8edaec82dd5c7b44fa2d15a4d5)

Signed-off-by: Armin Kuster &lt;akuster@mvista.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>openssl.inc: drop obsolete mtx-1 and mtx-2 over-rides</title>
<updated>2016-02-06T23:10:44+00:00</updated>
<author>
<name>Andre McCurdy</name>
<email>armccurdy@gmail.com</email>
</author>
<published>2016-02-05T23:00:21+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=659d75567361442c4d4ea6709fbf7009ddb10eb8'/>
<id>urn:sha1:659d75567361442c4d4ea6709fbf7009ddb10eb8</id>
<content type='text'>
Machine specific over-rides for mtx-1 (aka MeshCube) and
mtx-2 (aka SurfBox 2nd generation) don't belong in oe-core.

(From OE-Core rev: cf0b94629d135b2fa211fae89f48e00469974279)

Signed-off-by: Andre McCurdy &lt;armccurdy@gmail.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>openssl: Explicitly set EXTRA_OEMAKE as required</title>
<updated>2016-02-04T13:09:56+00:00</updated>
<author>
<name>Mike Crowe</name>
<email>mac@mcrowe.com</email>
</author>
<published>2016-02-02T14:49:45+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=2d3e6f303b561b46cbec187af1afc0fa0a2561d8'/>
<id>urn:sha1:2d3e6f303b561b46cbec187af1afc0fa0a2561d8</id>
<content type='text'>
The openssl recipe currently relies on EXTRA_OEMAKE having been set to
"-e MAKEFLAGS=" in bitbake.conf to operate. It is necessary to make this
explicit so that the default in bitbake.conf can be changed.

(From OE-Core rev: a384ab5cb4701fd1c1475bca4449def66b42c799)

Signed-off-by: Mike Crowe &lt;mac@mcrowe.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>openssl: update 1.0.2e -&gt; 1.0.2f ( CVE-2016-0701 CVE-2015-3197 )</title>
<updated>2016-01-30T11:37:04+00:00</updated>
<author>
<name>Andre McCurdy</name>
<email>armccurdy@gmail.com</email>
</author>
<published>2016-01-28T20:55:45+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=adbe63d5eeeeb9c793c719b937be45d8418c4758'/>
<id>urn:sha1:adbe63d5eeeeb9c793c719b937be45d8418c4758</id>
<content type='text'>
Major changes between OpenSSL 1.0.2e and OpenSSL 1.0.2f [28 Jan 2016]

  o DH small subgroups (CVE-2016-0701)
  o SSLv2 doesn't block disabled ciphers (CVE-2015-3197)

Updated LICENSE hash due to change in copyright year.

(From OE-Core rev: b451e3efc79d29c39c85f7da2dc75becf3fdf5a2)

Signed-off-by: Andre McCurdy &lt;armccurdy@gmail.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>meta: rename perl-native-runtime</title>
<updated>2016-01-11T23:26:31+00:00</updated>
<author>
<name>Ed Bartosh</name>
<email>ed.bartosh@linux.intel.com</email>
</author>
<published>2016-01-07T11:39:39+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=675ff42c6030b33ff49dd2ec5ff9d157f23b48dc'/>
<id>urn:sha1:675ff42c6030b33ff49dd2ec5ff9d157f23b48dc</id>
<content type='text'>
The code in native.bbclass adds -native suffix to the package
names that don't have it. perl-native-runtime becomes
perl-native-runtime-native because of this.

Renamed perl-native-runtime -&gt; hostperl-runtime-native to avoid
mangling it and to conform with the naming convetion for native
packages.

(From OE-Core rev: f4dade8e765a8c7bfd131728b9e0a34631e24950)

Signed-off-by: Ed Bartosh &lt;ed.bartosh@linux.intel.com&gt;
Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>meta: more removals of redunant FILES_${PN}-dbg</title>
<updated>2015-12-16T11:56:30+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross.burton@intel.com</email>
</author>
<published>2015-12-15T16:32:43+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=455ff3242627f6e3178e44b5d43468a9ae81584c'/>
<id>urn:sha1:455ff3242627f6e3178e44b5d43468a9ae81584c</id>
<content type='text'>
In some recipes overly-split -dbg packages were merged into PN-dbg.  Unless
there's a very good reason, recipes should have a single -dev and -dbg package.

(From OE-Core rev: a3b000643898d7402b9e57c02e8d10e677cc9722)

Signed-off-by: Ross Burton &lt;ross.burton@intel.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
</feed>
