aboutsummaryrefslogtreecommitdiffstats
path: root/package/utils/px5g/Makefile
Commit message (Collapse)AuthorAgeFilesLines
* mbedtls: change libmbedcrypto.so soversion back to 0Hauke Mehrtens2018-04-141-1/+1
| | | | | | | | | | | | | | | | | | mbedtls changed in version 2.7.0 and 2.7.2 the soversion of the libmbedcrypto.so library, use the old version again to be able to use the new library with binaries compiled against the old mbedtls library. Some binaries got rebuild to for the 2.7.0 release and are now using libmbedcrypto.so.1, the older ones are still using libmbedcrypto.so.0. Go back to libmbedcrypto.so.0 and make the system rebuild the binaries which were rebuild for 2.7.0 again. This should make the libmbedcrypto.so library be compatible with the old version shipped with 17.01. Fixes: 3ca1438ae0 ("mbedtls: update to version 2.7.2") Fixes: f609913b5c ("mbedtls: update to version 2.7.0") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mbedtls: update to version 2.7.0Hauke Mehrtens2018-03-101-1/+1
| | | | | | | | | | | | | | | | | | | This fixes the following security problems: * CVE-2018-0488: Risk of remote code execution when truncated HMAC is enabled * CVE-2018-0487: Risk of remote code execution when verifying RSASSA-PSS signatures This release is also ABI incompatible with the previous one, but it is API compatible. Some functions used by a lot of other software was renamed and the old function names are provided as a static inline now, but they are only active when deprecated functions are allowed, deactivate the removal of deprecated functions for now. Also increase the PKG_RELEASE version to force a rebuild and update of packages depending on mbedtls to handle the changed ABI. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* px5g: Fix TARGET_LDFLAGS and add TARGET_CPPFLAGSFlorian Fainelli2017-12-131-2/+2
| | | | | | | | | Make sure we pass down TARGET_CPPFLAGS to let toolchains with no default search paths to find the mbdetls headers, and override TARGET_LDFLAGS to include libraries we are linking against. Signed-off-by: Florian Fainelli <f.fainelli@gmail.com> (cherry picked from commit 306ee6436170d4c3c0c677653e9a20a8ee116cf7)
* px5g: replace px5g-standalone with a statically linked variant of px5g-mbedtlsFelix Fietkau2017-03-011-2/+22
| | | | | | | | px5g-standalone only supports SHA1 for certificates, which is strongly deprecated. The new px5g-standalone is about 27k bigger (compressed), and has identical behavior to px5g-mbedtls (it uses SHA256). Signed-off-by: Felix Fietkau <nbd@nbd.name>
* px5g: remove obsolete reference to $(BUILD_VARIANT)Felix Fietkau2017-01-091-1/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* px5g: remove legacy polarssl supportFelix Fietkau2017-01-091-18/+5
| | | | | | | The old polarssl 1.3 branch is EOL since end of 2016, and the package for it will be removed soon. Signed-off-by: Felix Fietkau <nbd@nbd.name>
* px5g: move to Encryption submenuAlberto Bursi2016-10-261-0/+1
| | | | | | moved px5g to Encryption submenu of Utilities, in an effort to tidy up a bit the Utilities section of make menuconfig. Signed-off-by: Alberto Bursi <alberto.bursi@outlook.it>
* px5g: Create mbedtls variantDaniel Dickinson2016-07-051-7/+24
| | | | | | | | px5g has been listed as a blocker for switching to new mbedtls as the default, therefore make and mbedtls variant of px5g so that an new mbedtls-only image can be created. Signed-off-by: Daniel Dickinson <lede@daniel.thecshore.com>
* treewide: replace jow@openwrt.org with jo@mein.ioJo-Philipp Wich2016-06-071-2/+2
| | | | Signed-off-by: Jo-Philipp Wich <jo@mein.io>
* px5g: add license tagFlorian Eckert2016-05-311-1/+2
| | | | | | show the license for this package in opkg Signed-off-by: Florian Eckert <Eckert.Florian@googlemail.com>
* fix subject in generated certificatesJo-Philipp Wich2015-01-251-4/+3
| | | | | | Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 44149
* px5g: generate unique serial numbersJo-Philipp Wich2014-11-031-2/+2
| | | | | | | | | Generate a random serial from /dev/urandom when creating selfsigned certs. Fixes "sec_error_reused_issuer_and_serial" with Firefox. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 43168
* license info - revert r43155John Crispin2014-11-031-3/+0
| | | | | | | | turns out that r43155 adds duplicate info. Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 43167
* Add more license tags with SPDX identifiersJohn Crispin2014-11-031-0/+3
| | | | | | | | | | | | | | | | | | Note, that licensing stuff is a nightmare: many packages does not clearly state their licenses, and often multiple source files are simply copied together - each with different licensing information in the file headers. I tried hard to ensure, that the license information extracted into the OpenWRT's makefiles fit the "spirit" of the packages, e.g. such small packages which come without a dedicated source archive "inherites" the OpenWRT's own license in my opinion. However, I can not garantee that I always picked the correct information and/or did not miss license information. Signed-off-by: Michael Heimpold <mhei@heimpold.de> SVN-Revision: 43155
* px5g: rename the old package to px5g-standalone, add a new one that links ↵Felix Fietkau2014-03-211-3/+8
| | | | | | | | against polarssl Signed-off-by: Felix Fietkau <nbd@openwrt.org> SVN-Revision: 40000
* packages: clean up the package folderJohn Crispin2013-06-211-0/+40
Signed-off-by: John Crispin <blogic@openwrt.org> SVN-Revision: 37007
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-01 13:32:07 +0000