aboutsummaryrefslogtreecommitdiffstats
path: root/package/libs/ustream-ssl
Commit message (Collapse)AuthorAgeFilesLines
* ustream-ssl: update to latest git HEADJohn Crispin2018-06-051-4/+4
| | | | | | | | | Upstream commit: 346d4c75eaa7a1d9bc8fcddc5db10a6aca95c005 5322f9d mbedtls: Fix setting allowed cipher suites e8a1469 mbedtls: Add support for a session cache Signed-off-by: John Crispin <john@phrozen.org>
* ustream-ssl: update to latest git HEADJohn Crispin2018-06-051-3/+3
| | | | | | | | | | Upstream commit: 52ba5760b771d873fe21d260e3b53506663b6144 527e700 ustream-ssl: Remove RC4 from ciphersuite in server mode. 39a6ce2 ustream-ssl: Enable ECDHE with OpenSSL. 45ac930 remove polarssl support Signed-off-by: John Crispin <john@phrozen.org>
* mbedtls: change libmbedcrypto.so soversion back to 0Hauke Mehrtens2018-04-141-1/+1
| | | | | | | | | | | | | | | | | | mbedtls changed in version 2.7.0 and 2.7.2 the soversion of the libmbedcrypto.so library, use the old version again to be able to use the new library with binaries compiled against the old mbedtls library. Some binaries got rebuild to for the 2.7.0 release and are now using libmbedcrypto.so.1, the older ones are still using libmbedcrypto.so.0. Go back to libmbedcrypto.so.0 and make the system rebuild the binaries which were rebuild for 2.7.0 again. This should make the libmbedcrypto.so library be compatible with the old version shipped with 17.01. Fixes: 3ca1438ae0 ("mbedtls: update to version 2.7.2") Fixes: f609913b5c ("mbedtls: update to version 2.7.0") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mbedtls: update to version 2.7.0Hauke Mehrtens2018-03-101-1/+1
| | | | | | | | | | | | | | | | | | | This fixes the following security problems: * CVE-2018-0488: Risk of remote code execution when truncated HMAC is enabled * CVE-2018-0487: Risk of remote code execution when verifying RSASSA-PSS signatures This release is also ABI incompatible with the previous one, but it is API compatible. Some functions used by a lot of other software was renamed and the old function names are provided as a static inline now, but they are only active when deprecated functions are allowed, deactivate the removal of deprecated functions for now. Also increase the PKG_RELEASE version to force a rebuild and update of packages depending on mbedtls to handle the changed ABI. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* ustream-ssl: remove legacy polarssl supportFelix Fietkau2017-01-091-12/+0
| | | | | | | The old polarssl 1.3 branch is EOL since end of 2016, and the package for it will be removed soon. Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ustream-ssl: remove extra DEFAULT_VARIANT from libustream-polarsslHannu Nyman2016-12-301-2/+1
| | | | | | | | | Currently both libustream-polarssl and libustream-mbedtls variants define themselves as the DEFAULT_VARIANT Remove extra DEFAULT_VARIANT from libustream-polarssl. Signed-off-by: Hannu Nyman <hannu.nyman@iki.fi>
* treewide: clean up and unify PKG_VERSION for git based downloadsFelix Fietkau2016-12-221-6/+4
| | | | | | Also use default defintions for PKG_SOURCE_SUBDIR, PKG_SOURCE Signed-off-by: Felix Fietkau <nbd@nbd.name>
* treewide: clean up download hashesFelix Fietkau2016-12-161-1/+1
| | | | | | Replace *MD5SUM with *HASH, replace MD5 hashes with SHA256 Signed-off-by: Felix Fietkau <nbd@nbd.name>
* source: Switch to xz for packages and tools where possibleDaniel Engberg2016-10-061-1/+2
| | | | | | | | | | | * Change git packages to xz * Update mirror checksums in packages where they are used * Change a few source tarballs to xz if available upstream * Remove unused lines in packages we're touching, requested by jow- and blogic * We're relying more on xz-utils so add official mirror as primary source, master site as secondary. * Add SHA256 checksums to multiple git tarball packages Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
* Revert "ustream-ssl: Fix recursive dependency"Felix Fietkau2016-07-041-2/+2
| | | | | | | | This reverts commit abf0768131db659c6819de9e7149624dd044c345. The description is wrong, there is no recursive dependency here. The conditions were added intentionally to avoid bogus build dependencies. Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ustream-ssl: Fix recursive dependencyDaniel Dickinson2016-07-041-2/+2
| | | | | | | | Two variants incorrectly include themselves in conditional depends on ssl libraries, which results in a recursive dependency. Signed-off-by: Daniel Dickinson <lede@daniel.thecshore.com>
* ustream-ssl: update to latest git HEADJohn Crispin2016-07-021-2/+2
| | | | Signed-off-by: John Crispin <john@phrozen.org>
* package/*: update git urls for project reposJohn Crispin2016-06-131-1/+1
| | | | Signed-off-by: John Crispin <john@phrozen.org>
* ustream-ssl: update to the latest version, adds cyassl/wolfssl fixesFelix Fietkau2016-06-071-2/+2
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* treewide: replace nbd@openwrt.org with nbd@nbd.nameFelix Fietkau2016-06-071-1/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* ustream-ssl: update to the latest version, fixes openssl TLS version selectionFelix Fietkau2016-02-221-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48752
* ustream-ssl: update to the latest version, fixes hostname validation with ↵Felix Fietkau2016-01-261-2/+2
| | | | | | | | openssl Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48503
* ustream-ssl: update to the latest version, fixes handling SSL connection ↵Felix Fietkau2016-01-231-2/+2
| | | | | | | | close notification Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48462
* ustream-ssl: update to the latest version, fixes connection with servers ↵Felix Fietkau2016-01-191-2/+2
| | | | | | | | requiring DHE Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48380
* ustream-ssl: fix copy&paste mistake in mbedtls variant titleFelix Fietkau2016-01-161-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48258
* ustream-ssl: update to the latest version, adds mbedtls variantFelix Fietkau2016-01-161-2/+15
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48256
* ustream-ssl: move to git.openwrt.orgFelix Fietkau2016-01-041-1/+1
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 48126
* ustream-ssl: fix compilation against current PolarSSL/mbedTLS versionJo-Philipp Wich2015-06-091-2/+2
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 45934
* ustream-ssl: correct year in PKG_VERSION stringFelix Fietkau2015-05-081-1/+1
| | | | | | | | | | | | | | | ustream-ssl: correct the year in the PKG_VERSION string, as both r45157 and r45441 left the old year 2014 there. For a casual user it may seem that the current code is from April 2014, although a4ca61527236e89eb9efb782fd9bfd04796144e3 is from April 2015. http://nbd.name/gitweb.cgi?p=ustream-ssl.git;a=commit;h=a4ca61527236e89eb9efb782fd9bfd04796144e3 https://dev.openwrt.org/changeset/45441/ https://dev.openwrt.org/changeset/45157/ signed-off-by: Hannu Nyman <hannu.nyman@iki.fi> SVN-Revision: 45623
* ustream-ssl: update to latest git HEADJohn Crispin2015-04-141-2/+2
| | | | | | | | fixes long writes when using polarssl Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 45441
* ustream-ssl: fix SNI when building against cyasslNicolas Thill2015-04-011-2/+2
| | | | | | Signed-off-by: Nicolas Thill <nico@openwrt.org> SVN-Revision: 45224
* ustream-ssl: enable SNI when building for cyasslJohn Crispin2015-04-011-1/+1
| | | | | | Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 45216
* ustream-ssl: properly handle return codesJohn Crispin2015-03-301-2/+2
| | | | | | Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 45157
* ustream-ssl: select polarssl as default variant, skip openssl/cyassl ↵Felix Fietkau2014-09-231-2/+3
| | | | | | | | dependencies if unused Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 42655
* ustream-ssl: update to latest version, adds certificate validation supportFelix Fietkau2014-03-251-2/+3
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 40017
* ustream-ssl: update to the latest version, fixes cyassl buildFelix Fietkau2014-03-211-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 40004
* ustream-ssl: update to latest version, fixes writes before ssl handshake ↵Felix Fietkau2014-03-211-2/+2
| | | | | | | | completion Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 39985
* ustream-ssl: add support for polarssl 1.3Felix Fietkau2014-03-141-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 39929
* ustream-ssl: update to the latest version, adds support for the current ↵Felix Fietkau2013-10-301-2/+2
| | | | | | | | cyassl version (#14386) Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 38608
* ustream-ssl: update to latest version, add a package for the polarssl build ↵Felix Fietkau2013-07-241-2/+14
| | | | | | | | variant Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 37528
* ustream-ssl: update to latest version, fixes uhttpd infinite loop issuesFelix Fietkau2013-06-181-2/+2
| | | | | | Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 36955
* ustream-ssl: remove dependency conditional part to avoid build breakage when ↵Felix Fietkau2013-01-221-2/+2
| | | | | | no variant is selected SVN-Revision: 35294
* ustream-ssl: update to latest version, fixes handling large chunks of data ↵Felix Fietkau2013-01-221-2/+2
| | | | | | (fixes #12866) SVN-Revision: 35293
* add ustream-ssl, an ustream abstraction library for SSL stream socketsFelix Fietkau2013-01-131-0/+59
SVN-Revision: 35131