| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | gnutls: update 3.3.28 -> 3.3.29 | Andre McCurdy | 2018-02-28 | 1 | -8/+0 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Version 3.3.29 (released 2018-02-16) ** libgnutls: Fixed issue which caused 1-byte handshake fragments to be refused. Reported by Balázs Kéri. ** libgnutls: Fixed interoperability issue with openssl when safe renegotiation was used. Resolves gitlab issue #259. ** libgnutls: Use readdir() instead of readdir_r internally. The latter is deprecated and on our use we don't need readdir() to be thread safe (which it is in most common platforms). ** libgnutls: require strict DER encoding for certificates, OCSP requests, private keys, CRLs and certificate requests. This backports the already default behavior from the 3.5.x branch, in order to reduce issues due to the complexity of BER rules. ** libgnutls: Addressed issue in the AES-CBC acceleration under ssse3 (patch by Vitezslav Cizek). ** libgnutls: Addressed issue in the accelerated code which may affect interoperability with versions of nettle > 3.4. ** p11tool: Fixed issue preventing the deletion of objects in batch mode. ** p11tool: Mark all generated objects as sensitive by default. ** API and ABI modifications: No changes since last version. Signed-off-by: Andre McCurdy <armccurdy@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> | ||||
| * | gnutls: update 3.3.27 -> 3.3.28 | Andre McCurdy | 2017-11-09 | 1 | -0/+8 |
| * Version 3.3.28 (released 2017-07-04) ** libgnutls: Fixed issue when rehandshaking without a client certificate in a session which initially used one. Reported by Frantisek Sumsal. ** libgnutls: fix issue in RSA-PSK client callback which resulted in no username being sent to the peer. Patch by Nicolas Dufresne. ** libgnutls: no longer parse the ResponseID field of the status response TLS extension. The field is not used by GnuTLS nor is made available to calling applications. That addresses a null pointer dereference on server side caused by packets containing the ResponseID field. Reported by Hubert Kario. [GNUTLS-SA-2017-4] ** libgnutls: Handle specially HSMs which request explicit authentication. There are HSMs which return CKR_USER_NOT_LOGGED_IN on the first private key operation. Detect that state and try to login. ** libgnutls: the GNUTLS_PKCS11_OBJ_FLAG_LOGIN will force a login on HSMs. That is, even in tokens which do not have a CKF_LOGIN_REQUIRED flag a login will be forced. This improves operation on certain Safenet HSMs. ** libgnutls: do not set leading zeros when copying integers on HSMs. PKCS#11 defines integers as unsigned having most significant byte first, e.g., 32768 = 0x80 0x00. This is interpreted literraly by some HSMs which do not accept an integer with a leading zero. This improves operation with certain Atos HSMs. ** libgnutls: Backported PKCS#11 key generation functionality for DSA keys. ** libgnutls: Improve check for /dev/urandom uniqueness. Ensure that when gnutls_global_init() is called for a second time that /dev/urandom is re-opened when the inode or device ID has changed. ** API and ABI modifications: No changes since last version. Signed-off-by: Andre McCurdy <armccurdy@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> | |||||
 |
index : linux/meta-gplv2.git | |
| Mirror of git.yoctoproject.org/meta-gplv2.git | N/A |
| summaryrefslogtreecommitdiffstats |