openSUSE Build Service

Ana Guerrero (anag+factory) accepted request 1164972 from

Martin Pluskal (pluskalm) 24 days ago (revision 45)

- Update baselibs.conf

- Update to version 3.6.0 (new LTS):
  * Fix typo in psa_key_production_parameters_t doc: 65535 should be 65537
  * Record size limit support is released, so remove warning about only for testing
  * Autogenerated files for 3.6.0
  * Fix some Changelog typos
  * Version Bump for 3.6.0
  * Assemble Changelog
  * Fix #ifdef guard in driver wrapper template
  * test_suite_pk: fix guards in pk_psa_sign()
  * add changelog
  * pkwrite: add new internal symbol for the max supported public key DER length
  * test_suite_pk: uniformly generate RSA and EC keys in pk_psa_sign()
  * test_suite_pk: fix guards in pk_psa_sign()
  * test_suite_pk: test also RSA OAEP in pk_wrap_rsa_decrypt_test_vec()
  * pk_wrap: fix algorithm selection in rsa_opaque_decrypt()
  * test_suite_pk: fix guards in pk_psa_sign()
  * test_suite_pk: properly size buffers for public keys in pk_psa_sign()
  * test_suite_pk: test also RSA keys with PKCS1 v2.1 padding mode in pk_psa_sign()
  * pk_wrap: fix algorithm selection in rsa_opaque_sign_wrap()
  * test_suite_pk: fix RSA issue in pk_psa_sign() when !PK_[PARSE|WRITE]_C are defined
  * test_suite_pk: rename some variables in pk_psa_sign()
  * test_suite_pk: reshape pk_psa_sign()
  * tls13: srv: Fix potential stack buffer overread
  * test_suite_pk: always test verify_ext with opaque keys in pk_psa_wrap_sign_ext()
  * add changelog
  * Mention MBEDTLS_PSA_ASSUME_EXCLUSIVE_BUFFERS
  * Remove 'Question' line around testing
  * Replace reference to master

Ana Guerrero (anag+factory) accepted request 1142919 from

Martin Pluskal (pluskalm) 3 months ago (revision 44)

- Update to version 3.5.2:
  * Update BRANCHES.md
  * Bump version
  * Assemble Changelog
  * Update Marvin fix Changelog entry
  * Add warning for PKCS 1.5 decryption
  * Fix typo
  * RSA: improve readability
  * RSA: remove unneeded temporaries
  * RSA: document Montgomery trick in unblind
  * Fix style
  * Make local function static
  * Add Changelog for the Marvin attack fix
  * Extend blinding to RSA result check
  * Make RSA unblinding constant flow
  * Add Changelog for #8687
  * Add required dependency to the testcase
  * Remove unneeded testcase
  * Update test-data to use SIZE_MAX
  * Add missing newline at the end of test_suite_x509write.data
  * Update fix to be more platform-independent
  * Fix Issue #8687
  * Add tests for Issue #8687
- Resolves CVE-2024-23170 boo#1219336

Ana Guerrero (anag+factory) accepted request 1140887 from

Martin Pluskal (pluskalm) 3 months ago (revision 43)

Ana Guerrero (anag+factory) accepted request 1125871 from

Martin Pluskal (pluskalm) 6 months ago (revision 42)

- Update to version 3.5.1:
  * Add docs re Everest license
  * Update Changelog with bugfix entry
  * Update BRANCHES
  * Bump version
  * Fix typos in changelog
  * Fix 3rdparty target names for custom config
  * assemble Changelog
  * README improvements to 3rdparty section
  * Update license for p256-m
  * Add Changelog for license
  * Update documentation
  * Fix some non-standard headers
  * Header updates

Ana Guerrero (anag+factory) accepted request 1116911 from

Martin Pluskal (pluskalm) 7 months ago (revision 41)

- Update to version 3.5.0 (resolves bsc#1216078 CVE-2023-45199 and bsc#1216076 CVE-2023-43615):
  * Updated BRANCHES.MD
  * Re-assemble changelog to add missing item, plus a couple of typo fixes.
  * Bump library so-crypto, so-x509, so-tls versions.
  * Ignore tests of built-in interfaces for driver-only testing parity
  * Renaming all MBEDTLS_HAVE for curves to MBEDTLS_ECP_HAVE
  * Auto-generated files for v3.5.0
  * ChangeLog: Set release date
  * Prepare ChangeLog for 3.5.0 release
  * Bump version to 3.5.0
  * check-generated-files: Added psa_crypto_driver_wrappers_no_static.c file
  * Changelog: Added entry for psa_crypto_driver_wrappers rename
  * Remove leftover local debug line
  * ChangeLog: Added .txt extension to log entries.
  * Avoid compiler warning about size comparison
  * Improve some debug messages and error codes
  * In TLS 1.2, only servers are affected
  * Changelog entry for xxdh_psa_peerkey size validation
  * Improve robustness of ECDH public key length validation
  * Fix buffer overflow in TLS 1.2 ClientKeyExchange parsing
  * Fix buffer overflow in TLS 1.3 ECDH public key parsing
  * Add custom config logic to 3rdparty modules
  * CMake: fix build with 3rdparty module enabled through a custom config
  * Changelog entry for #7298
  * Fix ChangeLog entry for FFDH in PSA
  * Undo not-needed change
  * Remove redundant code
  * Assume get_num_ops cannot fail
  * Always call get_num_ops
  * Add MBEDTLS_TARGET_PREFIX to 3rdparty CMake

Dominique Leuenberger (dimstar_suse) accepted request 1102828 from

Martin Pluskal (pluskalm) 9 months ago (revision 40)

Dominique Leuenberger (dimstar_suse) accepted request 1089972 from

Martin Pluskal (pluskalm) 11 months ago (revision 39)

Dominique Leuenberger (dimstar_suse) accepted request 1085425 from

Martin Pluskal (pluskalm) 12 months ago (revision 38)

Dominique Leuenberger (dimstar_suse) accepted request 1083494 from

Martin Pluskal (pluskalm) about 1 year ago (revision 37)

- Update to version 3.4.0:
  * psa_util: fix for correctly computing elements in array
  * Add generated files
  * Update BRANCHES.md
  * Bump library, libcrypto and libx509 versions
  * Assemble Changelog for 3.4.0 release
  * Add security entry to ChangeLog for AES-NI
  * Add security entry to ChangeLog for AES-CE
  * Add TLS1.2 Opaque ECJPAKE changelog entry
- Switch to scm service

Dominique Leuenberger (dimstar_suse) accepted request 1070164 from

Martin Pluskal (pluskalm) about 1 year ago (revision 36)

- Build AVX2 enabled hwcaps library for x86_64-v3

Dominique Leuenberger (dimstar_suse) accepted request 1044169 from

Martin Pluskal (pluskalm) over 1 year ago (revision 35)

Dominique Leuenberger (dimstar_suse) accepted request 1033622 from

Pedro Monreal Gonzalez (pmonrealgonzalez) over 1 year ago (revision 34)

Dominique Leuenberger (dimstar_suse) accepted request 947118 from

Martin Pluskal (pluskalm) over 2 years ago (revision 33)

Dominique Leuenberger (dimstar_suse) accepted request 922415 from

Martin Pluskal (pluskalm) over 2 years ago (revision 32)

- Update to 2.26.0: [bsc#1189589, CVE-2021-24119]

Dominique Leuenberger (dimstar_suse) accepted request 909961 from

Martin Pluskal (pluskalm) over 2 years ago (revision 31)

Dominique Leuenberger (dimstar_suse) accepted request 885737 from

Martin Pluskal (pluskalm) about 3 years ago (revision 30)

-  Workaround for building with gcc-11 boo#1181876

Richard Brown (RBrownSUSE) accepted request 880715 from

Martin Pluskal (pluskalm) about 3 years ago (revision 29)

- Update to 2.26.0:
  * * This release of Mbed TLS provides bug fixes, minor enhancements and new
  features. This release includes fixes for security issues.
  * see https://github.com/ARMmbed/mbedtls/releases/tag/v2.26.0
- Fix build with patch from https://github.com/ARMmbed/mbedtls/pull/4237
  mbedtls-4237.patch

Dominique Leuenberger (dimstar_suse) accepted request 864545 from

Martin Pluskal (pluskalm) over 3 years ago (revision 28)

Dominique Leuenberger (dimstar_suse) accepted request 858120 from

Martin Pluskal (pluskalm) over 3 years ago (revision 27)

Dominique Leuenberger (dimstar_suse) accepted request 838417 from

Martin Pluskal (pluskalm) over 3 years ago (revision 26)

Places

Revisions of mbedtls

Places