| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
This is a maintenance release (no secfixes) but includes critical MIPS asssembly bug fix.
|
| |
|
|
|
|
|
|
|
|
|
| |
This commit upgrades the mbedtls library to the recently released 2.16
LTS version.
https://tls.mbed.org/tech-updates/releases/mbedtls-2.16.0-2.7.9-and-2.1.18-released
The depending packages don't need to be rebuild as the soname
doesn't change (libmbedcrypto.so.3, libmbedtls.so.12 and
libmbedx509.so.0)
|
| |
|
|
|
|
|
|
|
|
|
|
| |
- set the license to Apache 2.0 only, one have to download another
tarball for the GPL version (2.12 was using Apache 2.0 tarball);
- use the download link from the main web site for easier checksum
cross-verification (github tarballs have different SHA sums);
- sort secfixes from newer-to-older;
- add python3 as now required for build.
Rebuild is needed for the dependent aports due to libmbedtls.so.12
version bump (was .11).
|
| |
|
|
|
|
| |
* includes fixes for CVE-2018-0497 and CVE-2018-0498
https://github.com/ARMmbed/mbedtls/blob/development/ChangeLog
|
| | |
|
| |
|
|
|
|
| |
CVE-2017-18187, CVE-2018-0487, CVE-2018-0488
Fixes #8835
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This commit updates $license variable in all APKBUILDs to comply with
short names specified by SPDX version 3.0 [1] where possible. It was
done using find-and-replace method on substrings inside $license
variables.
Only license names were updated, not "expressions" specifying relation
between the licenses (e.g. "X and Y", "X or Y", "X and (Y or Z)") or
exceptions (e.g. "X with exceptions").
Many licenses have a version or multiple variants, e.g. MPL-2.0,
BSD-2-Clause, BSD-3-Clause. However, $license in many aports do not
contain license version or variant. Since there's no way how to infer
this information just from abuild, it were left without the variant
suffix or version, i.e. non SPDX compliant.
GNU licenses (AGPL, GFDL, GPL, LGPL) are especially complicated. They
exist in two variants: -only (formerly e.g. GPL-2.0) and -or-later
(formerly e.g. GPL-2.0+). We did not systematically noted distinguish
between these variants, so GPL-2.0, GPL2, GPLv2 etc. may mean
GPL-2.0-only or GPL-2.0-or-later. Thus GNU licenses without "+" (e.g.
GPL2+) were left without the variant suffix, i.e. non SPDX compliant.
Note: This commit just fixes format of the license names, no
verification has been done if the specified license information is
actually correct!
[1]: https://spdx.org/licenses/
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
* Fixes CVE-2017-2784
* Add check() function
|
| |
|
|
| |
https://github.com/ARMmbed/mbedtls/blob/development/ChangeLog
|
| |
|
|
|
|
| |
With verbosity disabled (default), the testsuite attempts to redirect
stdout by assigning another FILE pointer to it. Enabling verbosity
seems to be the simplest workaround to avoid this code path.
|
| | |
|
| |
|
