Overview Repositories Revisions Requests Users Attributes Meta

My mbedtls

Edit Package mbedtlsme
No description set
  • Download package
  • osc -A https://api.opensuse.org checkout home:plater/mbedtlsme && cd $_
  • Create Badge
Refresh
Refresh
Source Files
Filename Size Changed
baselibs.conf 0000000042 42 Bytes
mbedtls.changes 0000068208 66.6 KB
mbedtls.spec 0000005710 5.58 KB
v2.16.9.tar.gz 0002668292 2.54 MB
Latest Revision
Dave Plater's avatar Dave Plater (plater) committed (revision 1) 
- Change to v2.16.9 to match raspberry pi debian bullseye

- Update to v2.24.0 and add documentation package.

- Add workaround for failing builds (Python not found) due to
  https://gitlab.kitware.com/cmake/cmake/-/issues/21168

- Do not run testsuite in parallel - its not reliable

- update to 2.23.0:
  a lot of changes see https://github.com/ARMmbed/mbedtls/releases/tag/v2.23.0
  * Fix a side channel vulnerability in modular exponentiation that could reveal an RSA private key used in a secure enclave. Noticed by Sangho Lee, Ming-Wei Shih, Prasun Gera, Taesoo Kim and Hyesoon Kim (Georgia Institute of Technology); and Marcus Peinado (Microsoft Research). Reported by Raoul Strackx (Fortanix) in #3394.
  * Fix side channel in mbedtls_ecp_check_pub_priv() and mbedtls_pk_parse_key() / mbedtls_pk_parse_keyfile() (when loading a private key that didn't include the uncompressed public key), as well as mbedtls_ecp_mul() / mbedtls_ecp_mul_restartable() when called with a NULL f_rng argument. An attacker with access to precise enough timing and memory access information (typically an untrusted operating system attacking a secure enclave) could fully recover the ECC private key. Found and reported by Alejandro Cabrera Aldaya and Billy Brumley.
  * Fix issue in Lucky 13 counter-measure that could make it ineffective when hardware accelerators were used (using one of the MBEDTLS_SHAxxx_ALT macros). This would cause the original Lucky 13 attack to be possible in those configurations, allowing an active network attacker to recover plaintext after repeated timing measurements under some conditions. Reported and fix suggested by Luc Perneel in #3246.

- Update to version 2.16.5:
  * Security improvements and bugfixes

- Update to version 2.16.3:
  * Security improvements and bugfixes

- Update to version 2.16.2:
  * Security improvements and bugfixes
- Use ninja to for build 

- Update to version 2.16.0:
  Features
  * Add a new config.h option of MBEDTLS_CHECK_PARAMS that enables validation of parameters in the API. This allows detection of obvious misuses of the API, such as passing NULL pointers. The API of existing functions hasn't changed, but requirements on parameters have been made more explicit in the documentation. See the corresponding API documentation for each function to see for which parameter values it is defined. This feature is disabled by default. See its API documentation in config.h for additional steps you have to take when enabling it.
API Changes
  * The following functions in the random generator modules have been deprecated and replaced as shown below. The new functions change the return type from void to int to allow returning error codes when using MBEDTLS_<MODULE>_ALT for the underlying AES or message digest primitive. Fixes #1798. mbedtls_ctr_drbg_update() -> mbedtls_ctr_drbg_update_ret() mbedtls_hmac_drbg_update() -> mbedtls_hmac_drbg_update_ret()
Comments 0
openSUSE Build Service is sponsored by
Places