[3/8] nettle: update to 3.4.1

Submitted by Armin Kuster on Jan. 2, 2019, 4:36 p.m. | Patch ID: 157510

Details

Message ID 1546446977-27510-3-git-send-email-akuster808@gmail.com
State Master Next
Commit 85090a69296a9cbde1c6ad17d891c325678eadd0
Headers show

Commit Message

Armin Kuster Jan. 2, 2019, 4:36 p.m.
Bug fix only release

Include:

  CVE-2018-16868 gnutls: Bleichenbacher-like side channel leakage in
  PKCS#1 1.5 verification and padding oracle verification

  CVE-2018-16869 nettle: Leaky data conversion exposing a manager oracle

For full details see:
http://lists.lysator.liu.se/pipermail/nettle-bugs/2018/007369.html

Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 .../Add-target-to-only-build-tests-not-run-them.patch                 | 0
 .../check-header-files-of-openssl-only-if-enable_.patch               | 0
 .../nettle/{nettle-3.4 => nettle-3.4.1}/dlopen-test.patch             | 0
 meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/run-ptest    | 0
 meta/recipes-support/nettle/{nettle_3.4.bb => nettle_3.4.1.bb}        | 4 ++--
 5 files changed, 2 insertions(+), 2 deletions(-)
 rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/Add-target-to-only-build-tests-not-run-them.patch (100%)
 rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/check-header-files-of-openssl-only-if-enable_.patch (100%)
 rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/dlopen-test.patch (100%)
 rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/run-ptest (100%)
 rename meta/recipes-support/nettle/{nettle_3.4.bb => nettle_3.4.1.bb} (91%)

Patch hide | download patch | download mbox

diff --git a/meta/recipes-support/nettle/nettle-3.4/Add-target-to-only-build-tests-not-run-them.patch b/meta/recipes-support/nettle/nettle-3.4.1/Add-target-to-only-build-tests-not-run-them.patch
similarity index 100%
rename from meta/recipes-support/nettle/nettle-3.4/Add-target-to-only-build-tests-not-run-them.patch
rename to meta/recipes-support/nettle/nettle-3.4.1/Add-target-to-only-build-tests-not-run-them.patch
diff --git a/meta/recipes-support/nettle/nettle-3.4/check-header-files-of-openssl-only-if-enable_.patch b/meta/recipes-support/nettle/nettle-3.4.1/check-header-files-of-openssl-only-if-enable_.patch
similarity index 100%
rename from meta/recipes-support/nettle/nettle-3.4/check-header-files-of-openssl-only-if-enable_.patch
rename to meta/recipes-support/nettle/nettle-3.4.1/check-header-files-of-openssl-only-if-enable_.patch
diff --git a/meta/recipes-support/nettle/nettle-3.4/dlopen-test.patch b/meta/recipes-support/nettle/nettle-3.4.1/dlopen-test.patch
similarity index 100%
rename from meta/recipes-support/nettle/nettle-3.4/dlopen-test.patch
rename to meta/recipes-support/nettle/nettle-3.4.1/dlopen-test.patch
diff --git a/meta/recipes-support/nettle/nettle-3.4/run-ptest b/meta/recipes-support/nettle/nettle-3.4.1/run-ptest
similarity index 100%
rename from meta/recipes-support/nettle/nettle-3.4/run-ptest
rename to meta/recipes-support/nettle/nettle-3.4.1/run-ptest
diff --git a/meta/recipes-support/nettle/nettle_3.4.bb b/meta/recipes-support/nettle/nettle_3.4.1.bb
similarity index 91%
rename from meta/recipes-support/nettle/nettle_3.4.bb
rename to meta/recipes-support/nettle/nettle_3.4.1.bb
index ca8450e..33de928 100644
--- a/meta/recipes-support/nettle/nettle_3.4.bb
+++ b/meta/recipes-support/nettle/nettle_3.4.1.bb
@@ -20,8 +20,8 @@  SRC_URI_append_class-target = "\
             file://dlopen-test.patch \
             "
 
-SRC_URI[md5sum] = "dc0f13028264992f58e67b4e8915f53d"
-SRC_URI[sha256sum] = "ae7a42df026550b85daca8389b6a60ba6313b0567f374392e54918588a411e94"
+SRC_URI[md5sum] = "9bdebb0e2f638d3b9d91f7fc264b70c1"
+SRC_URI[sha256sum] = "f941cf1535cd5d1819be5ccae5babef01f6db611f9b5a777bae9c7604b8a92ad"
 
 UPSTREAM_CHECK_REGEX = "nettle-(?P<pver>\d+(\.\d+)+)\.tar"
 

Comments

Khem Raj Jan. 3, 2019, 6:35 a.m.
native version fails on ubuntu 14.04, seems like we need to pass
-std=c99 explicitly via cflags see

http://errors.yoctoproject.org/Errors/Details/214590/

On Wed, Jan 2, 2019 at 8:36 AM Armin Kuster <akuster808@gmail.com> wrote:
>
> Bug fix only release
>
> Include:
>
>   CVE-2018-16868 gnutls: Bleichenbacher-like side channel leakage in
>   PKCS#1 1.5 verification and padding oracle verification
>
>   CVE-2018-16869 nettle: Leaky data conversion exposing a manager oracle
>
> For full details see:
> http://lists.lysator.liu.se/pipermail/nettle-bugs/2018/007369.html
>
> Signed-off-by: Armin Kuster <akuster808@gmail.com>
> ---
>  .../Add-target-to-only-build-tests-not-run-them.patch                 | 0
>  .../check-header-files-of-openssl-only-if-enable_.patch               | 0
>  .../nettle/{nettle-3.4 => nettle-3.4.1}/dlopen-test.patch             | 0
>  meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/run-ptest    | 0
>  meta/recipes-support/nettle/{nettle_3.4.bb => nettle_3.4.1.bb}        | 4 ++--
>  5 files changed, 2 insertions(+), 2 deletions(-)
>  rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/Add-target-to-only-build-tests-not-run-them.patch (100%)
>  rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/check-header-files-of-openssl-only-if-enable_.patch (100%)
>  rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/dlopen-test.patch (100%)
>  rename meta/recipes-support/nettle/{nettle-3.4 => nettle-3.4.1}/run-ptest (100%)
>  rename meta/recipes-support/nettle/{nettle_3.4.bb => nettle_3.4.1.bb} (91%)
>
> diff --git a/meta/recipes-support/nettle/nettle-3.4/Add-target-to-only-build-tests-not-run-them.patch b/meta/recipes-support/nettle/nettle-3.4.1/Add-target-to-only-build-tests-not-run-them.patch
> similarity index 100%
> rename from meta/recipes-support/nettle/nettle-3.4/Add-target-to-only-build-tests-not-run-them.patch
> rename to meta/recipes-support/nettle/nettle-3.4.1/Add-target-to-only-build-tests-not-run-them.patch
> diff --git a/meta/recipes-support/nettle/nettle-3.4/check-header-files-of-openssl-only-if-enable_.patch b/meta/recipes-support/nettle/nettle-3.4.1/check-header-files-of-openssl-only-if-enable_.patch
> similarity index 100%
> rename from meta/recipes-support/nettle/nettle-3.4/check-header-files-of-openssl-only-if-enable_.patch
> rename to meta/recipes-support/nettle/nettle-3.4.1/check-header-files-of-openssl-only-if-enable_.patch
> diff --git a/meta/recipes-support/nettle/nettle-3.4/dlopen-test.patch b/meta/recipes-support/nettle/nettle-3.4.1/dlopen-test.patch
> similarity index 100%
> rename from meta/recipes-support/nettle/nettle-3.4/dlopen-test.patch
> rename to meta/recipes-support/nettle/nettle-3.4.1/dlopen-test.patch
> diff --git a/meta/recipes-support/nettle/nettle-3.4/run-ptest b/meta/recipes-support/nettle/nettle-3.4.1/run-ptest
> similarity index 100%
> rename from meta/recipes-support/nettle/nettle-3.4/run-ptest
> rename to meta/recipes-support/nettle/nettle-3.4.1/run-ptest
> diff --git a/meta/recipes-support/nettle/nettle_3.4.bb b/meta/recipes-support/nettle/nettle_3.4.1.bb
> similarity index 91%
> rename from meta/recipes-support/nettle/nettle_3.4.bb
> rename to meta/recipes-support/nettle/nettle_3.4.1.bb
> index ca8450e..33de928 100644
> --- a/meta/recipes-support/nettle/nettle_3.4.bb
> +++ b/meta/recipes-support/nettle/nettle_3.4.1.bb
> @@ -20,8 +20,8 @@ SRC_URI_append_class-target = "\
>              file://dlopen-test.patch \
>              "
>
> -SRC_URI[md5sum] = "dc0f13028264992f58e67b4e8915f53d"
> -SRC_URI[sha256sum] = "ae7a42df026550b85daca8389b6a60ba6313b0567f374392e54918588a411e94"
> +SRC_URI[md5sum] = "9bdebb0e2f638d3b9d91f7fc264b70c1"
> +SRC_URI[sha256sum] = "f941cf1535cd5d1819be5ccae5babef01f6db611f9b5a777bae9c7604b8a92ad"
>
>  UPSTREAM_CHECK_REGEX = "nettle-(?P<pver>\d+(\.\d+)+)\.tar"
>
> --
> 2.7.4
>
> --
> _______________________________________________
> Openembedded-core mailing list
> Openembedded-core@lists.openembedded.org
> http://lists.openembedded.org/mailman/listinfo/openembedded-core
Richard Purdie Jan. 3, 2019, 12:33 p.m.
On Wed, 2019-01-02 at 22:35 -0800, Khem Raj wrote:
> native version fails on ubuntu 14.04, seems like we need to pass
> -std=c99 explicitly via cflags see
> 
> http://errors.yoctoproject.org/Errors/Details/214590/

and 
https://autobuilder.yoctoproject.org/typhoon/#/builders/56/builds/86

Cheers,

Richard
Armin Kuster Jan. 3, 2019, 4:12 p.m.
On 1/3/19 4:33 AM, Richard Purdie wrote:
> On Wed, 2019-01-02 at 22:35 -0800, Khem Raj wrote:
>> native version fails on ubuntu 14.04, seems like we need to pass
>> -std=c99 explicitly via cflags see
>>
>> http://errors.yoctoproject.org/Errors/Details/214590/

Ok. thanks. v2 is in order

- armin
> and 
> https://autobuilder.yoctoproject.org/typhoon/#/builders/56/builds/86
>
> Cheers,
>
> Richard
>