Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update mbedtls from 3.4.1 to 3.5.0 #84

Merged
merged 2 commits into from
Oct 16, 2023
Merged

Update mbedtls from 3.4.1 to 3.5.0 #84

merged 2 commits into from
Oct 16, 2023

Conversation

DL6ER
Copy link
Member

@DL6ER DL6ER commented Oct 16, 2023

What does this implement/fix?

This release of Mbed TLS provides new features, bug fixes and minor enhancements. This release includes fixes for security issues.

Most important of the long list of improved/new features is:

This will allow us to define SAN for the automatically generated self-signed certificate.

Related issue or feature (if applicable): N/A

Pull request in docs with documentation (if applicable): N/A

By submitting this pull request, I confirm the following:

  1. I have read and understood the contributors guide, as well as this entire template. I understand which branch to base my commits and Pull Requests against.
  2. I have commented my proposed changes within the code.
  3. I am willing to help maintain this change if there are issues with it later.
  4. It is compatible with the EUPL 1.2 license
  5. I have squashed any insignificant commits. (git rebase)

Checklist:

  • The code change is tested and works locally.
  • I based my code and PRs against the repositories developmental branch.
  • I signed off all commits. Pi-hole enforces the DCO for all contributions
  • I signed all my commits. Pi-hole requires signatures to verify authorship
  • I have read the above and my PR is ready for review.

@DL6ER DL6ER requested a review from a team October 16, 2023 18:51
@yubiuser
Copy link
Member

Happy to approve once this compiles successfully.

@DL6ER
Copy link
Member Author

DL6ER commented Oct 16, 2023

There is trouble ahead with at least architectures lacking AESNI support. Seems it is the new default to use it and they missed to add appropriate detection into their configure script (or it doesn't work).

@DL6ER
The linux/386 build needs special logic to prevent AESNI from being u…
fc209a7 
…sed, possibly resulting in a binary not supported on every 386 processor

Signed-off-by: DL6ER <[email protected]>
@DL6ER DL6ER merged commit 7948c29 into master Oct 16, 2023
9 checks passed
@DL6ER DL6ER deleted the ftl-build/update_mbedtls branch October 16, 2023 20:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dschaper dschaper dschaper approved these changes

@yubiuser yubiuser yubiuser approved these changes

Assignees
No one assigned
Labels
ftl-build
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@DL6ER @yubiuser @dschaper