Hello community,
here is the log from the commit of package mbedtls for openSUSE:Factory checked
in at 2015-06-24 20:24:54
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/mbedtls (Old)
and /work/SRC/openSUSE:Factory/.mbedtls.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mbedtls"
Changes:
--------
--- /work/SRC/openSUSE:Factory/mbedtls/mbedtls.changes 2015-04-02
16:04:22.000000000 +0200
+++ /work/SRC/openSUSE:Factory/.mbedtls.new/mbedtls.changes 2015-06-24
20:24:55.000000000 +0200
@@ -1,0 +2,51 @@
+Mon Jun 15 22:19:07 UTC 2015 - fi...@opensuse.org
+
+- Update to 1.3.11:
+ * Remove bias in mpi_gen_prime (contributed by Pascal Junod).
+ * Remove potential sources of timing variations (some contributed by Pascal
+ Junod).
+ * Options POLARSSL_HAVE_INT8 and POLARSSL_HAVE_INT16 are deprecated.
+ * Enabling POLARSSL_NET_C without POLARSSL_HAVE_IPV6 is deprecated.
+ * compat-1.2.h and openssl.h are deprecated.
+ * ssl_set_own_cert() no longer calls pk_check_pair() since the performance
+ impact was bad for some users (this was introduced in 1.3.10).
+ * Move from SHA-1 to SHA-256 in example programs using signatures (suggested
+ by Thorsten Mühlfelder).
+ * Remove dependency on sscanf() in X.509 parsing modules.
+ * Fix compile errors with PLATFORM_NO_STD_FUNCTIONS.
+ * Fix bug in entropy.c when THREADING_C is also enabled that caused
+ entropy_free() to crash (thanks to Rafał Przywara).
+ * Fix memory leak when gcm_setkey() and ccm_setkey() are used more than once
+ on the same context.
+ * Fix bug in ssl_mail_client when password is longer that username (found by
+ Bruno Pape).
+ * Fix undefined behaviour (memcmp( NULL, NULL, 0 );) in X.509 modules
+ (detected by Clang's 3.6 UBSan).
+ * mpi_size() and mpi_msb() would segfault when called on an mpi that is
+ initialized but not set (found by pravic).
+ * Fix detection of support for getrandom() on Linux (reported by syzzer) by
+ doing it at runtime (using uname) rather that compile time.
+ * Fix handling of symlinks by "make install" (found by Gaël PORTAY).
+ * Fix potential NULL pointer dereference (not trigerrable remotely) when
+ ssl_write() is called before the handshake is finished (introduced in
+ 1.3.10) (first reported by Martin Blumenstingl).
+ * Fix bug in pk_parse_key() that caused some valid private EC keys to be
+ rejected.
+ * Fix bug in Via Padlock support (found by Nikos Mavrogiannopoulos).
+ * Fix thread safety bug in RSA operations (found by Fredrik Axelsson).
+ * Fix hardclock() (only used in the benchmarking program) with some versions
+ of mingw64 (found by kxjhlele).
+ * Fix potential unintended sign extension in asn1_get_len() on 64-bit
+ platforms.
+ * Fix potential memory leak in ssl_set_psk() (found by Mansour Moufid).
+ * Fix compile error when POLARSSL_SSL_DISABLE_RENEGOTATION and
+ POLARSSL_SSL_SSESSION_TICKETS where both enabled in config.h (introduced in
+ 1.3.10).
+ * Add missing extern "C" guard in aesni.h (reported by amir zamani).
+ * Add missing dependency on SHA-256 in some x509 programs (reported by
+ Gergely Budai).
+ * Fix bug related to ssl_set_curves(): the client didn't check that the curve
+ picked by the server was actually allowed.
+- Drop getrandom-syscall-fallback.patch: fixed upstream.
+
+-------------------------------------------------------------------
Old:
----
getrandom-syscall-fallback.patch
mbedtls-1.3.10-gpl.tgz
New:
----
mbedtls-1.3.11-gpl.tgz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ mbedtls.spec ++++++
--- /var/tmp/diff_new_pack.AuQqan/_old 2015-06-24 20:24:56.000000000 +0200
+++ /var/tmp/diff_new_pack.AuQqan/_new 2015-06-24 20:24:56.000000000 +0200
@@ -16,16 +16,15 @@
#
-%define lib_name lib%{name}8
+%define lib_name lib%{name}9
Name: mbedtls
-Version: 1.3.10
+Version: 1.3.11
Release: 0
Summary: Open Source embedded SSL/TLS cryptographic library
License: GPL-2.0+
Group: Development/Libraries/C and C++
Url: https://tls.mbed.org
Source: https://tls.mbed.org/download/%{name}-%{version}-gpl.tgz
-Patch: getrandom-syscall-fallback.patch
BuildRequires: cmake
BuildRequires: pkg-config
BuildRequires: zlib-devel
@@ -55,7 +54,6 @@
%prep
%setup -q
-%patch -p1
sed -i 's|//\(#define POLARSSL_THREADING_C\)|\1|' include/polarssl/config.h
sed -i 's|//\(#define POLARSSL_THREADING_PTHREAD\)|\1|'
include/polarssl/config.h
++++++ mbedtls-1.3.10-gpl.tgz -> mbedtls-1.3.11-gpl.tgz ++++++
++++ 18580 lines of diff (skipped)
