Hello community, here is the log from the commit of package mbedtls for openSUSE:Factory checked in at 2015-06-24 20:24:54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mbedtls (Old) and /work/SRC/openSUSE:Factory/.mbedtls.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mbedtls" Changes: -------- --- /work/SRC/openSUSE:Factory/mbedtls/mbedtls.changes 2015-04-02 16:04:22.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.mbedtls.new/mbedtls.changes 2015-06-24 20:24:55.000000000 +0200 @@ -1,0 +2,51 @@ +Mon Jun 15 22:19:07 UTC 2015 - fi...@opensuse.org + +- Update to 1.3.11: + * Remove bias in mpi_gen_prime (contributed by Pascal Junod). + * Remove potential sources of timing variations (some contributed by Pascal + Junod). + * Options POLARSSL_HAVE_INT8 and POLARSSL_HAVE_INT16 are deprecated. + * Enabling POLARSSL_NET_C without POLARSSL_HAVE_IPV6 is deprecated. + * compat-1.2.h and openssl.h are deprecated. + * ssl_set_own_cert() no longer calls pk_check_pair() since the performance + impact was bad for some users (this was introduced in 1.3.10). + * Move from SHA-1 to SHA-256 in example programs using signatures (suggested + by Thorsten Mühlfelder). + * Remove dependency on sscanf() in X.509 parsing modules. + * Fix compile errors with PLATFORM_NO_STD_FUNCTIONS. + * Fix bug in entropy.c when THREADING_C is also enabled that caused + entropy_free() to crash (thanks to Rafał Przywara). + * Fix memory leak when gcm_setkey() and ccm_setkey() are used more than once + on the same context. + * Fix bug in ssl_mail_client when password is longer that username (found by + Bruno Pape). + * Fix undefined behaviour (memcmp( NULL, NULL, 0 );) in X.509 modules + (detected by Clang's 3.6 UBSan). + * mpi_size() and mpi_msb() would segfault when called on an mpi that is + initialized but not set (found by pravic). + * Fix detection of support for getrandom() on Linux (reported by syzzer) by + doing it at runtime (using uname) rather that compile time. + * Fix handling of symlinks by "make install" (found by Gaël PORTAY). + * Fix potential NULL pointer dereference (not trigerrable remotely) when + ssl_write() is called before the handshake is finished (introduced in + 1.3.10) (first reported by Martin Blumenstingl). + * Fix bug in pk_parse_key() that caused some valid private EC keys to be + rejected. + * Fix bug in Via Padlock support (found by Nikos Mavrogiannopoulos). + * Fix thread safety bug in RSA operations (found by Fredrik Axelsson). + * Fix hardclock() (only used in the benchmarking program) with some versions + of mingw64 (found by kxjhlele). + * Fix potential unintended sign extension in asn1_get_len() on 64-bit + platforms. + * Fix potential memory leak in ssl_set_psk() (found by Mansour Moufid). + * Fix compile error when POLARSSL_SSL_DISABLE_RENEGOTATION and + POLARSSL_SSL_SSESSION_TICKETS where both enabled in config.h (introduced in + 1.3.10). + * Add missing extern "C" guard in aesni.h (reported by amir zamani). + * Add missing dependency on SHA-256 in some x509 programs (reported by + Gergely Budai). + * Fix bug related to ssl_set_curves(): the client didn't check that the curve + picked by the server was actually allowed. +- Drop getrandom-syscall-fallback.patch: fixed upstream. + +------------------------------------------------------------------- Old: ---- getrandom-syscall-fallback.patch mbedtls-1.3.10-gpl.tgz New: ---- mbedtls-1.3.11-gpl.tgz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mbedtls.spec ++++++ --- /var/tmp/diff_new_pack.AuQqan/_old 2015-06-24 20:24:56.000000000 +0200 +++ /var/tmp/diff_new_pack.AuQqan/_new 2015-06-24 20:24:56.000000000 +0200 @@ -16,16 +16,15 @@ # -%define lib_name lib%{name}8 +%define lib_name lib%{name}9 Name: mbedtls -Version: 1.3.10 +Version: 1.3.11 Release: 0 Summary: Open Source embedded SSL/TLS cryptographic library License: GPL-2.0+ Group: Development/Libraries/C and C++ Url: https://tls.mbed.org Source: https://tls.mbed.org/download/%{name}-%{version}-gpl.tgz -Patch: getrandom-syscall-fallback.patch BuildRequires: cmake BuildRequires: pkg-config BuildRequires: zlib-devel @@ -55,7 +54,6 @@ %prep %setup -q -%patch -p1 sed -i 's|//\(#define POLARSSL_THREADING_C\)|\1|' include/polarssl/config.h sed -i 's|//\(#define POLARSSL_THREADING_PTHREAD\)|\1|' include/polarssl/config.h ++++++ mbedtls-1.3.10-gpl.tgz -> mbedtls-1.3.11-gpl.tgz ++++++ ++++ 18580 lines of diff (skipped)