From 36183f83dc4dd26ddb8c060e2f2c5bef13039632 Mon Sep 17 00:00:00 2001 From: nbd Date: Wed, 30 Jan 2013 20:07:04 +0000 Subject: polarssl: add from /packages, update to 1.2.4, fix openssl compatibility git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35411 3c298f89-4303-0410-b956-a3cf2f4a3e73 --- .../libs/polarssl/patches/200-reduce_config.patch | 112 +++++++++++++++++++++ 1 file changed, 112 insertions(+) create mode 100644 package/libs/polarssl/patches/200-reduce_config.patch (limited to 'package/libs/polarssl/patches/200-reduce_config.patch') diff --git a/package/libs/polarssl/patches/200-reduce_config.patch b/package/libs/polarssl/patches/200-reduce_config.patch new file mode 100644 index 000000000..080fa944f --- /dev/null +++ b/package/libs/polarssl/patches/200-reduce_config.patch @@ -0,0 +1,112 @@ +--- a/include/polarssl/config.h ++++ b/include/polarssl/config.h +@@ -166,8 +166,8 @@ + * Requires: POLARSSL_BIGNUM_C, POLARSSL_RSA_C + * + * Enable the RSA prime-number generation code. +- */ + #define POLARSSL_GENPRIME ++ */ + + /** + * \def POLARSSL_FS_IO +@@ -224,8 +224,8 @@ + * \def POLARSSL_SELF_TEST + * + * Enable the checkup functions (*_self_test). +- */ + #define POLARSSL_SELF_TEST ++ */ + + /** + * \def POLARSSL_SSL_HW_RECORD_ACCEL +@@ -384,8 +384,8 @@ + * TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256 + * TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 + * TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 +- */ + #define POLARSSL_CAMELLIA_C ++ */ + + /** + * \def POLARSSL_CERTS_C +@@ -396,8 +396,8 @@ + * Caller: + * + * This module is used for testing (ssl_client/server). +- */ + #define POLARSSL_CERTS_C ++ */ + + /** + * \def POLARSSL_CIPHER_C +@@ -436,8 +436,8 @@ + * library/ssl_tls.c + * + * This module provides debugging functions. +- */ + #define POLARSSL_DEBUG_C ++ */ + + /** + * \def POLARSSL_DES_C +@@ -519,8 +519,8 @@ + * enabled as well): + * TLS_RSA_WITH_AES_128_GCM_SHA256 + * TLS_RSA_WITH_AES_256_GCM_SHA384 +- */ + #define POLARSSL_GCM_C ++ */ + + /** + * \def POLARSSL_HAVEGE_C +@@ -533,8 +533,8 @@ + * Requires: POLARSSL_TIMING_C + * + * This module enables the HAVEGE random number generator. +- */ + #define POLARSSL_HAVEGE_C ++ */ + + /** + * \def POLARSSL_MD_C +@@ -608,8 +608,8 @@ + * Caller: library/aes.c + * + * This modules adds support for the VIA PadLock on x86. +- */ + #define POLARSSL_PADLOCK_C ++ */ + + /** + * \def POLARSSL_PBKDF2_C +@@ -722,8 +722,8 @@ + * Caller: + * + * Requires: POLARSSL_SSL_CACHE_C +- */ + #define POLARSSL_SSL_CACHE_C ++ */ + + /** + * \def POLARSSL_SSL_CLI_C +@@ -777,8 +777,8 @@ + * Caller: library/havege.c + * + * This module is used by the HAVEGE random number generator. +- */ + #define POLARSSL_TIMING_C ++ */ + + /** + * \def POLARSSL_VERSION_C +@@ -827,8 +827,8 @@ + * + * Module: library/xtea.c + * Caller: +- */ + #define POLARSSL_XTEA_C ++ */ + /* \} name */ + + #endif /* config.h */ -- cgit v1.2.3 From 56ec2cc7e249bc3bb9b80d78e3068ac5f35d7e3b Mon Sep 17 00:00:00 2001 From: yardley Date: Fri, 8 Feb 2013 19:47:48 +0000 Subject: polarssl: security update (1.2.5) addressing CBC TLS issue Signed-off-by: Tim Yardley git-svn-id: svn://svn.openwrt.org/openwrt/trunk@35525 3c298f89-4303-0410-b956-a3cf2f4a3e73 --- .../libs/polarssl/patches/200-reduce_config.patch | 24 +++++++++++----------- 1 file changed, 12 insertions(+), 12 deletions(-) (limited to 'package/libs/polarssl/patches/200-reduce_config.patch') diff --git a/package/libs/polarssl/patches/200-reduce_config.patch b/package/libs/polarssl/patches/200-reduce_config.patch index 080fa944f..c66bb3fb8 100644 --- a/package/libs/polarssl/patches/200-reduce_config.patch +++ b/package/libs/polarssl/patches/200-reduce_config.patch @@ -1,6 +1,6 @@ --- a/include/polarssl/config.h +++ b/include/polarssl/config.h -@@ -166,8 +166,8 @@ +@@ -177,8 +177,8 @@ * Requires: POLARSSL_BIGNUM_C, POLARSSL_RSA_C * * Enable the RSA prime-number generation code. @@ -10,7 +10,7 @@ /** * \def POLARSSL_FS_IO -@@ -224,8 +224,8 @@ +@@ -235,8 +235,8 @@ * \def POLARSSL_SELF_TEST * * Enable the checkup functions (*_self_test). @@ -19,8 +19,8 @@ + */ /** - * \def POLARSSL_SSL_HW_RECORD_ACCEL -@@ -384,8 +384,8 @@ + * \def POLARSSL_SSL_ALL_ALERT_MESSAGES +@@ -425,8 +425,8 @@ * TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256 * TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 * TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 @@ -30,7 +30,7 @@ /** * \def POLARSSL_CERTS_C -@@ -396,8 +396,8 @@ +@@ -437,8 +437,8 @@ * Caller: * * This module is used for testing (ssl_client/server). @@ -40,7 +40,7 @@ /** * \def POLARSSL_CIPHER_C -@@ -436,8 +436,8 @@ +@@ -477,8 +477,8 @@ * library/ssl_tls.c * * This module provides debugging functions. @@ -50,7 +50,7 @@ /** * \def POLARSSL_DES_C -@@ -519,8 +519,8 @@ +@@ -560,8 +560,8 @@ * enabled as well): * TLS_RSA_WITH_AES_128_GCM_SHA256 * TLS_RSA_WITH_AES_256_GCM_SHA384 @@ -60,7 +60,7 @@ /** * \def POLARSSL_HAVEGE_C -@@ -533,8 +533,8 @@ +@@ -574,8 +574,8 @@ * Requires: POLARSSL_TIMING_C * * This module enables the HAVEGE random number generator. @@ -70,7 +70,7 @@ /** * \def POLARSSL_MD_C -@@ -608,8 +608,8 @@ +@@ -649,8 +649,8 @@ * Caller: library/aes.c * * This modules adds support for the VIA PadLock on x86. @@ -80,7 +80,7 @@ /** * \def POLARSSL_PBKDF2_C -@@ -722,8 +722,8 @@ +@@ -763,8 +763,8 @@ * Caller: * * Requires: POLARSSL_SSL_CACHE_C @@ -90,7 +90,7 @@ /** * \def POLARSSL_SSL_CLI_C -@@ -777,8 +777,8 @@ +@@ -818,8 +818,8 @@ * Caller: library/havege.c * * This module is used by the HAVEGE random number generator. @@ -100,7 +100,7 @@ /** * \def POLARSSL_VERSION_C -@@ -827,8 +827,8 @@ +@@ -868,8 +868,8 @@ * * Module: library/xtea.c * Caller: -- cgit v1.2.3