UPDATE security/polarssl

Fri, 09 Jul 2021 14:28:25 -0700 

mbedtls-2.16.11 has been made available, which provides bug fixes and
minor enhancements. This release includes fixes for security issues:
- Local side channel attack on RSA
- Local side channel attack on static Diffie-Hellman with Montgomery
  curves

Release notes can be found at
https://github.com/ARMmbed/mbedtls/releases/tag/v2.16.11.

Build- and run tested on amd64. 'make test' runs successfully.

I thinks it makes sense to backport this update to 6.9.

Comments/OK?


diff --git Makefile Makefile
index eeb84e15b68..3b9bf903dd7 100644
--- Makefile
+++ Makefile
@@ -6,7 +6,7 @@ COMMENT=        SSL library with an intuitive API and readable 
source code
 
 GH_ACCOUNT=    ARMmbed
 GH_PROJECT=    mbedtls
-GH_TAGNAME=    mbedtls-2.16.10
+GH_TAGNAME=    mbedtls-2.16.11
 DISTNAME=      ${GH_TAGNAME}
 
 # check SOVERSION
diff --git distinfo distinfo
index 47b26aa678d..68b52d9c070 100644
--- distinfo
+++ distinfo
@@ -1,2 +1,2 @@
-SHA256 (mbedtls-2.16.10.tar.gz) = eMAuLSd6MCRUrakCdNFtgPiNdhvdQkNSjkIGz3kgvng=
-SIZE (mbedtls-2.16.10.tar.gz) = 2677333
+SHA256 (mbedtls-2.16.11.tar.gz) = UbuWhcT0/5JV2lZZ/zRridyvEp47oPOysMSKGnSV5wE=
+SIZE (mbedtls-2.16.11.tar.gz) = 2692209
diff --git patches/patch-tests_suites_host_test_function 
patches/patch-tests_suites_host_test_function
index 1b67c1b3fee..f12b54c350f 100644
--- patches/patch-tests_suites_host_test_function
+++ patches/patch-tests_suites_host_test_function
@@ -7,7 +7,7 @@ Index: tests/suites/host_test.function
 +++ tests/suites/host_test.function
 @@ -402,9 +402,6 @@ int execute_tests( int argc , const char ** argv )
      /* Store for proccessed integer params. */
-     int int_params[50];
+     int32_t int_params[50];
      void *pointer;
 -#if defined(__unix__) || (defined(__APPLE__) && defined(__MACH__))
 -    int stdout_fd = -1;
diff --git pkg/PLIST pkg/PLIST
index 91545f7627c..2ed158f459f 100644
--- pkg/PLIST
+++ pkg/PLIST
@@ -90,7 +90,6 @@ share/doc/mbedtls/ChangeLog
 share/doc/mbedtls/README.md
 share/examples/mbedtls/
 share/examples/mbedtls/README
-@bin share/examples/mbedtls/aescrypt2
 @bin share/examples/mbedtls/benchmark
 @bin share/examples/mbedtls/cert_app
 @bin share/examples/mbedtls/cert_req

Reply via email to