OpenPOWER buildroot sources https://git.raptorcs.com/git/buildroot/atom?h=2018.02 2018-02-05T13:57:47+00:00 2018-02-05T13:57:47+00:00 Eric Le Bihan eric.le.bihan.dev@free.fr 2018-02-04T18:07:44+00:00 urn:sha1:93a911fd5b14536e5c32298f0aa264c285015bcd Allow build of host variant of libssh2, which depends on host-openssl. Signed-off-by: Eric Le Bihan <eric.le.bihan.dev@free.fr> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2017-11-04T21:50:12+00:00 Sam Voss sam.voss@rockwellcollins.com 2017-11-01T16:22:56+00:00 urn:sha1:04a1031d3429ff8e5a2ae4d820702c50519243a8 Currently, the selection of the backend is based on a priority order, which is not always desirable: not all features are available for all backends, as reported upstream: https://github.com/libssh2/libssh2/issues/213 In that particular case, the problem is that libgcrypt is unable to read encrypted certificates created with openssl, but it is likely that other incompatibilities exist as well. As such, allow a user to select the backend most appropriate to their use-case. Note that this changes the defaults: previously, if openssl was already selected and we additionally select libssh2, openssl would be used as a backend. Now, mbedtls is the default so if the user doesn't change it, mbedtls will be used. Signed-off-by: Sam Voss <sam.voss@rockwellcollins.com> [Arnout: remove now-unneeded comment in .mk file] Signed-off-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> 2017-11-01T09:56:14+00:00 Sam Voss sam.voss@rockwellcollins.com 2017-10-31T17:56:30+00:00 urn:sha1:a660d1fc7447601ed153685c58f2db5e7b99422d Update libssh2 to use the newest version from git. This caused a transition from released version number to hash as it has not been version rev'd in over a year (see issue https://github.com/libssh2/libssh2/issues/220 for bump request). This brings in changes to the autoconf to correctly pick the crypto library. Signed-off-by: Sam Voss <sam.voss@rockwellcollins.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2017-07-29T13:52:19+00:00 Baruch Siach baruch@tkos.co.il 2017-07-28T04:28:13+00:00 urn:sha1:908960d98ff0c88b93a916b857daf84e39182581 The --without-libgcrypt configure parameter is not enough to disable the libgcrypt back-end. This breaks the build when mbedtls (default backend) is enabled, and libgcrypt builds before libssh2. Seed ac_cv_libgcrypt to really disable libgcrypt when it is not the selected crypto back-end. Fixes: http://autobuild.buildroot.net/results/b4e/b4e39890e003e9e590a5bf17c9300c653020d88c/ http://autobuild.buildroot.net/results/45a/45a9b3559ceea4e1399794f9612f717f7c57a4a3/ http://autobuild.buildroot.net/results/ae4/ae4afec62ca297df1cd02350601f1d62fc3cd1b7/ Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2017-07-11T19:34:56+00:00 Baruch Siach baruch@tkos.co.il 2017-07-10T17:35:54+00:00 urn:sha1:714df4cfed026cee2949131062e499b6c0fadd5d libssh2 support mbedtls as crypto back-end library since version 1.8.0. Default to mbedtls since it's smaller than either libgcrypt or openssl. Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2017-07-09T21:10:22+00:00 Baruch Siach baruch@tkos.co.il 2017-07-09T19:05:24+00:00 urn:sha1:816ba1cee50e9808702304f137de688ce2908d62 libssh2 uses the implicit 'yes' argument of the --with-libgcrypt parameter as a library path prefix, which breaks the build. Pass the library path as --with-libgcrypt argument to fix that. Drop the unneeded --with-libgcrypt-prefix. Fixes: http://autobuild.buildroot.net/results/ac3/ac3a3f5871a6c20f5407a468809682ce491b9cb3/ http://autobuild.buildroot.net/results/ba3/ba31fa11b2ce2875649414dd9093e039dfc129e8/ http://autobuild.buildroot.net/results/b07/b07bbbf7fe164ba6dc435de6d8b41fadff7a3b08/ Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2017-07-09T09:12:22+00:00 Baruch Siach baruch@tkos.co.il 2017-07-09T01:35:51+00:00 urn:sha1:0dcf75eb7dfc545ddf47a156b76bedb2a2d86526 Signed-off-by: Baruch Siach <baruch@tkos.co.il> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2016-09-11T20:49:04+00:00 Yann E. MORIN yann.morin.1998@free.fr 2016-09-08T21:11:48+00:00 urn:sha1:d8a2955a2b82d75f3684e846b0c2411294233eea Since 2f89476 (package/libgpg-error: bump to version 1.23), libssh2 has inherited the dependency from libgcrypt (propagated from libgpg-error). However, since libssh2 can use either openssl or libgcrypt as a backend, the dependency should be relaxed when openssl is available. But the test is broken and inverted: it will make libssh unavailable as soon as openssl is enabled. Fix this dependenc byt doing what other similar packages do: select openssl if the other crypto backend (here libgcrypt) is not enabled. This also allows us to drop the propagated dependency on the arch condition. Signed-off-by: "Yann E. MORIN" <yann.morin.1998@free.fr> Cc: Arnout Vandecappelle <arnout@mind.be> Cc: Vicente Olivert Riera <Vincent.Riera@imgtec.com> Cc: Jörg Krause <joerg.krause@embedded.rocks> Cc: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> Cc: Maxime Hadjinlian <maxime.hadjinlian@gmail.com> Cc: Romain Naour <romain.naour@openwide.fr> Reviewed-by: Arnout Vandecappelle (Essensium/Mind) <arnout@mind.be> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2016-02-24T16:36:35+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2016-02-24T12:01:44+00:00 urn:sha1:229ea8a18cf0f57e24fb13783a2fdf2e3ae7af13 Fixes: CVE-2016-0787 - diffie_hellman_sha256: convert bytes to bits. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2016-01-08T17:46:24+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2016-01-07T20:33:20+00:00 urn:sha1:18df1fd08813093402daf854dfbb9219d762efbf Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>