* [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14
@ 2020-06-11 5:31 stefan at astylos.dk
2020-06-21 21:33 ` Yann E. MORIN
` (2 more replies)
0 siblings, 3 replies; 5+ messages in thread
From: stefan at astylos.dk @ 2020-06-11 5:31 UTC (permalink / raw)
To: buildroot
From: Stefan S?rensen <stefan.sorensen@spectralink.com>
Fixes the following security issue:
* CVE-2020-13777: It was found that GnuTLS 3.6.4 introduced a
regression in the TLS protocol implementation. This caused the TLS
server to not securely construct a session ticket encryption key
considering the application supplied secret, allowing a MitM
attacker to bypass authentication in TLS 1.3 and recover previous
conversations in TLS 1.2
Release announcement:
https://lists.gnupg.org/pipermail/gnutls-help/2020-June/004648.html
Signed-off-by: Stefan S?rensen <stefan.sorensen@spectralink.com>
---
package/gnutls/gnutls.hash | 4 ++--
package/gnutls/gnutls.mk | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/package/gnutls/gnutls.hash b/package/gnutls/gnutls.hash
index 99279bfb6b..75f64281bc 100644
--- a/package/gnutls/gnutls.hash
+++ b/package/gnutls/gnutls.hash
@@ -1,6 +1,6 @@
# Locally calculated after checking pgp signature
-# https://www.gnupg.org/ftp/gcrypt/gnutls/v3.6/gnutls-3.6.13.tar.xz.sig
-sha256 32041df447d9f4644570cf573c9f60358e865637d69b7e59d1159b7240b52f38 gnutls-3.6.13.tar.xz
+# https://www.gnupg.org/ftp/gcrypt/gnutls/v3.6/gnutls-3.6.14.tar.xz.sig
+sha256 5630751adec7025b8ef955af4d141d00d252a985769f51b4059e5affa3d39d63 gnutls-3.6.14.tar.xz
# Locally calculated
sha256 e79e9c8a0c85d735ff98185918ec94ed7d175efc377012787aebcf3b80f0d90b doc/COPYING
sha256 6095e9ffa777dd22839f7801aa845b31c9ed07f3d6bf8a26dc5d2dec8ccc0ef3 doc/COPYING.LESSER
diff --git a/package/gnutls/gnutls.mk b/package/gnutls/gnutls.mk
index a1dfce62a2..34878e97b4 100644
--- a/package/gnutls/gnutls.mk
+++ b/package/gnutls/gnutls.mk
@@ -5,7 +5,7 @@
################################################################################
GNUTLS_VERSION_MAJOR = 3.6
-GNUTLS_VERSION = $(GNUTLS_VERSION_MAJOR).13
+GNUTLS_VERSION = $(GNUTLS_VERSION_MAJOR).14
GNUTLS_SOURCE = gnutls-$(GNUTLS_VERSION).tar.xz
GNUTLS_SITE = https://www.gnupg.org/ftp/gcrypt/gnutls/v$(GNUTLS_VERSION_MAJOR)
GNUTLS_LICENSE = LGPL-2.1+ (core library)
--
2.25.4
^ permalink raw reply related [flat|nested] 5+ messages in thread
* [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14
2020-06-11 5:31 [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14 stefan at astylos.dk
@ 2020-06-21 21:33 ` Yann E. MORIN
2020-06-21 21:58 ` Peter Korsgaard
2020-07-16 15:01 ` Peter Korsgaard
2 siblings, 0 replies; 5+ messages in thread
From: Yann E. MORIN @ 2020-06-21 21:33 UTC (permalink / raw)
To: buildroot
Stefan, All,
On 2020-06-11 07:31 +0200, stefan at astylos.dk spake thusly:
> From: Stefan S?rensen <stefan.sorensen@spectralink.com>
>
> Fixes the following security issue:
>
> * CVE-2020-13777: It was found that GnuTLS 3.6.4 introduced a
> regression in the TLS protocol implementation. This caused the TLS
> server to not securely construct a session ticket encryption key
> considering the application supplied secret, allowing a MitM
> attacker to bypass authentication in TLS 1.3 and recover previous
> conversations in TLS 1.2
>
> Release announcement:
> https://lists.gnupg.org/pipermail/gnutls-help/2020-June/004648.html
>
> Signed-off-by: Stefan S?rensen <stefan.sorensen@spectralink.com>
Applied to master, thanks.
Regards,
Yann E. MORIN.
> ---
> package/gnutls/gnutls.hash | 4 ++--
> package/gnutls/gnutls.mk | 2 +-
> 2 files changed, 3 insertions(+), 3 deletions(-)
>
> diff --git a/package/gnutls/gnutls.hash b/package/gnutls/gnutls.hash
> index 99279bfb6b..75f64281bc 100644
> --- a/package/gnutls/gnutls.hash
> +++ b/package/gnutls/gnutls.hash
> @@ -1,6 +1,6 @@
> # Locally calculated after checking pgp signature
> -# https://www.gnupg.org/ftp/gcrypt/gnutls/v3.6/gnutls-3.6.13.tar.xz.sig
> -sha256 32041df447d9f4644570cf573c9f60358e865637d69b7e59d1159b7240b52f38 gnutls-3.6.13.tar.xz
> +# https://www.gnupg.org/ftp/gcrypt/gnutls/v3.6/gnutls-3.6.14.tar.xz.sig
> +sha256 5630751adec7025b8ef955af4d141d00d252a985769f51b4059e5affa3d39d63 gnutls-3.6.14.tar.xz
> # Locally calculated
> sha256 e79e9c8a0c85d735ff98185918ec94ed7d175efc377012787aebcf3b80f0d90b doc/COPYING
> sha256 6095e9ffa777dd22839f7801aa845b31c9ed07f3d6bf8a26dc5d2dec8ccc0ef3 doc/COPYING.LESSER
> diff --git a/package/gnutls/gnutls.mk b/package/gnutls/gnutls.mk
> index a1dfce62a2..34878e97b4 100644
> --- a/package/gnutls/gnutls.mk
> +++ b/package/gnutls/gnutls.mk
> @@ -5,7 +5,7 @@
> ################################################################################
>
> GNUTLS_VERSION_MAJOR = 3.6
> -GNUTLS_VERSION = $(GNUTLS_VERSION_MAJOR).13
> +GNUTLS_VERSION = $(GNUTLS_VERSION_MAJOR).14
> GNUTLS_SOURCE = gnutls-$(GNUTLS_VERSION).tar.xz
> GNUTLS_SITE = https://www.gnupg.org/ftp/gcrypt/gnutls/v$(GNUTLS_VERSION_MAJOR)
> GNUTLS_LICENSE = LGPL-2.1+ (core library)
> --
> 2.25.4
>
> _______________________________________________
> buildroot mailing list
> buildroot at busybox.net
> http://lists.busybox.net/mailman/listinfo/buildroot
--
.-----------------.--------------------.------------------.--------------------.
| Yann E. MORIN | Real-Time Embedded | /"\ ASCII RIBBON | Erics' conspiracy: |
| +33 662 376 056 | Software Designer | \ / CAMPAIGN | ___ |
| +33 561 099 427 `------------.-------: X AGAINST | \e/ There is no |
| http://ymorin.is-a-geek.org/ | _/*\_ | / \ HTML MAIL | v conspiracy. |
'------------------------------^-------^------------------^--------------------'
^ permalink raw reply [flat|nested] 5+ messages in thread
* [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14
2020-06-11 5:31 [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14 stefan at astylos.dk
2020-06-21 21:33 ` Yann E. MORIN
@ 2020-06-21 21:58 ` Peter Korsgaard
2020-06-23 9:50 ` Sørensen, Stefan
2020-07-16 15:01 ` Peter Korsgaard
2 siblings, 1 reply; 5+ messages in thread
From: Peter Korsgaard @ 2020-06-21 21:58 UTC (permalink / raw)
To: buildroot
>>>>> "stefan" == stefan <stefan@astylos.dk> writes:
> From: Stefan S?rensen <stefan.sorensen@spectralink.com>
> Fixes the following security issue:
> * CVE-2020-13777: It was found that GnuTLS 3.6.4 introduced a
> regression in the TLS protocol implementation. This caused the TLS
> server to not securely construct a session ticket encryption key
> considering the application supplied secret, allowing a MitM
> attacker to bypass authentication in TLS 1.3 and recover previous
> conversations in TLS 1.2
> Release announcement:
> https://lists.gnupg.org/pipermail/gnutls-help/2020-June/004648.html
> Signed-off-by: Stefan S?rensen <stefan.sorensen@spectralink.com>
Did you test this on uClibc? I had a look at bumping the version earlier
this month and ended up with build issues because of a gnulib update:
CC getline.lo
CC localtime-buffer.lo
In file included from ./stdio.h:33:0,
from fopen.c:26:
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:45:1: error: expected '=', ',', ';', 'asm' or '__a ttribute__' before 'typedef'
typedef struct __STDIO_FILE_STRUCT FILE;
^
fopen.c:29:1: error: expected '=', ',', ';', 'asm' or '__attribute__' before 'static'
static FILE *
^
fopen.c:29:8: error: unknown type name 'FILE'
static FILE *
^
In file included from /home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:71:0,
from ./stdio.h:33,
from stdio.h:43,
from fopen.c:38:
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/bits/uClibc_stdio.h:227:29: error: unknown type name 'FIL '
extern int __fgetc_unlocked(FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/bits/uClibc_stdio.h:228:38: error: unknown type name 'FIL '
extern int __fputc_unlocked(int __c, FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/bits/uClibc_stdio.h:247:8: error: unknown type name 'FILE'
extern FILE *__stdin; /* For getchar() macro. */
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/bits/uClibc_stdio.h:295:8: error: unknown type name 'FILE'
extern FILE *__stdout; /* For putchar() macro. */
^
In file included from ./stdio.h:33:0,
from stdio.h:43,
from fopen.c:38:
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:134:8: error: unknown type name 'FILE'
extern FILE *stdin; /* Standard input stream. */
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:135:8: error: unknown type name 'FILE'
extern FILE *stdout; /* Standard output stream. */
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:136:8: error: unknown type name 'FILE'
extern FILE *stderr; /* Standard error output stream. */
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:164:8: error: unknown type name 'FILE'
extern FILE *__REDIRECT (tmpfile, (void), tmpfile64) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:171:8: error: unknown type name 'FILE'
extern FILE *tmpfile64 (void) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:203:20: error: unknown type name 'FILE'
extern int fclose (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:208:20: error: unknown type name 'FILE'
extern int fflush (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:218:29: error: unknown type name 'FILE'
extern int fflush_unlocked (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:249:8: error: unknown type name 'FILE'
extern FILE *__REDIRECT (fopen, (const char *__restrict __filename,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:252:8: error: unknown type name 'FILE'
extern FILE *__REDIRECT (freopen, (const char *__restrict __filename,
^
In file included from /home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/features.h:395:0,
from /home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:27,
from ./stdio.h:33,
from stdio.h:43,
from fopen.c:38:
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:252:14: error: unknown type name 'FILE'
extern FILE *__REDIRECT (freopen, (const char *__restrict __filename,
^
In file included from ./stdio.h:33:0,
from stdio.h:43,
from fopen.c:38:
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:263:8: error: unknown type name 'FILE'
extern FILE *fopen64 (const char *__restrict __filename,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:265:8: error: unknown type name 'FILE'
extern FILE *freopen64 (const char *__restrict __filename,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:267:4: error: unknown type name 'FILE'
FILE *__restrict __stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:272:8: error: unknown type name 'FILE'
extern FILE *fdopen (int __fd, const char *__modes) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:278:8: error: unknown type name 'FILE'
extern FILE *fopencookie (void *__restrict __magic_cookie,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:285:8: error: unknown type name 'FILE'
extern FILE *fmemopen (void *__s, size_t __len, const char *__modes)
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:291:8: error: unknown type name 'FILE'
extern FILE *open_memstream (char **__bufloc, size_t *__sizeloc) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:298:21: error: unknown type name 'FILE'
extern void setbuf (FILE *__restrict __stream, char *__restrict __buf) __THROW;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:302:21: error: unknown type name 'FILE'
extern int setvbuf (FILE *__restrict __stream, char *__restrict __buf,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:309:24: error: unknown type name 'FILE'
extern void setbuffer (FILE *__restrict __stream, char *__restrict __buf,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:313:25: error: unknown type name 'FILE'
extern void setlinebuf (FILE *__stream) __THROW;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:322:21: error: unknown type name 'FILE'
extern int fprintf (FILE *__restrict __stream,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:338:22: error: unknown type name 'FILE'
extern int vfprintf (FILE *__restrict __s, const char *__restrict __format,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:398:20: error: unknown type name 'FILE'
extern int fscanf (FILE *__restrict __stream,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:419:21: error: unknown type name 'FILE'
extern int vfscanf (FILE *__restrict __s, const char *__restrict __format,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:443:19: error: unknown type name 'FILE'
extern int fgetc (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:444:18: error: unknown type name 'FILE'
extern int getc (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:462:27: error: unknown type name 'FILE'
extern int getc_unlocked (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:473:28: error: unknown type name 'FILE'
extern int fgetc_unlocked (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:485:28: error: unknown type name 'FILE'
extern int fputc (int __c, FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:486:27: error: unknown type name 'FILE'
extern int putc (int __c, FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:506:37: error: unknown type name 'FILE'
extern int fputc_unlocked (int __c, FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:514:36: error: unknown type name 'FILE'
extern int putc_unlocked (int __c, FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:522:18: error: unknown type name 'FILE'
extern int getw (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:525:27: error: unknown type name 'FILE'
extern int putw (int __w, FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:534:52: error: unknown type name 'FILE'
extern char *fgets (char *__restrict __s, int __n, FILE *__restrict __stream)
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:562:9: error: unknown type name 'FILE'
FILE *__restrict __stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:584:9: error: unknown type name 'FILE'
FILE *__restrict __stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:594:8: error: unknown type name 'FILE'
FILE *__restrict __stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:603:47: error: unknown type name 'FILE'
extern int fputs (const char *__restrict __s, FILE *__restrict __stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:616:29: error: unknown type name 'FILE'
extern int ungetc (int __c, FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:624:20: error: unknown type name 'FILE'
size_t __n, FILE *__restrict __stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:630:21: error: unknown type name 'FILE'
size_t __n, FILE *__restrict __s) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:641:7: error: unknown type name 'FILE'
FILE *__restrict __stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:652:22: error: unknown type name 'FILE'
size_t __n, FILE *__restrict __stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:654:23: error: unknown type name 'FILE'
size_t __n, FILE *__restrict __stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:663:19: error: unknown type name 'FILE'
extern int fseek (FILE *__stream, long int __off, int __whence);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:668:24: error: unknown type name 'FILE'
extern long int ftell (FILE *__stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:673:21: error: unknown type name 'FILE'
extern void rewind (FILE *__stream);
^
In file included from /home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/features.h:395:0,
from /home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:27,
from ./stdio.h:33,
from stdio.h:43,
from fopen.c:38:
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:695:12: error: unknown type name 'FILE'
extern int __REDIRECT (fseeko,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:698:18: error: unknown type name 'FILE'
extern __off64_t __REDIRECT (ftello, (FILE *__stream), ftello64);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:720:12: error: unknown type name 'FILE'
extern int __REDIRECT (fgetpos, (FILE *__restrict __stream,
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:722:12: error: unknown type name 'FILE'
extern int __REDIRECT (fsetpos,
^
In file included from ./stdio.h:33:0,
from stdio.h:43,
from fopen.c:38:
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:732:22: error: unknown type name 'FILE'
extern int fseeko64 (FILE *__stream, __off64_t __off, int __whence);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:733:28: error: unknown type name 'FILE'
extern __off64_t ftello64 (FILE *__stream) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:734:23: error: unknown type name 'FILE'
extern int fgetpos64 (FILE *__restrict __stream, fpos64_t *__restrict __pos);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:735:23: error: unknown type name 'FILE'
extern int fsetpos64 (FILE *__stream, const fpos64_t *__pos);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:740:23: error: unknown type name 'FILE'
extern void clearerr (FILE *__stream) __THROW;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:742:18: error: unknown type name 'FILE'
extern int feof (FILE *__stream) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:744:20: error: unknown type name 'FILE'
extern int ferror (FILE *__stream) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:749:32: error: unknown type name 'FILE'
extern void clearerr_unlocked (FILE *__stream) __THROW;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:750:27: error: unknown type name 'FILE'
extern int feof_unlocked (FILE *__stream) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:751:29: error: unknown type name 'FILE'
extern int ferror_unlocked (FILE *__stream) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:766:20: error: unknown type name 'FILE'
extern int fileno (FILE *__stream) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:771:29: error: unknown type name 'FILE'
extern int fileno_unlocked (FILE *__stream) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:781:8: error: unknown type name 'FILE'
extern FILE *popen (const char *__command, const char *__modes) __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:787:20: error: unknown type name 'FILE'
extern int pclose (FILE *__stream);
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:806:24: error: unknown type name 'FILE'
extern void flockfile (FILE *__stream) __THROW;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:810:26: error: unknown type name 'FILE'
extern int ftrylockfile (FILE *__stream) __THROW __wur;
^
/home/peko/source/buildroot/output-gnutls/host/arm-buildroot-linux-uclibcgnueabi/sysroot/usr/include/stdio.h:813:26: error: unknown type name 'FILE'
extern void funlockfile (FILE *__stream) __THROW;
^
In file included from fopen.c:38:0:
stdio.h:782:1: error: unknown type name 'FILE'
_GL_FUNCDECL_RPL (fopen, FILE *,
^
stdio.h:1223:1: error: unknown type name 'FILE'
_GL_FUNCDECL_RPL (getdelim, ssize_t,
^
stdio.h:1266:1: error: unknown type name 'FILE'
_GL_FUNCDECL_RPL (getline, ssize_t,
^
CC memchr.lo
fopen.c:47:1: error: unknown type name 'FILE'
FILE *
^
fopen.c: In function 'rpl_fopen':
fopen.c:213:7: error: unknown type name 'FILE'
FILE *fp;
^
fopen.c:230:10: warning: implicit declaration of function 'orig_fopen' [-Wimplicit-function-declaration]
return orig_fopen (filename, mode);
^
fopen.c:230:10: warning: return makes pointer from integer without a cast [-Wint-conversion]
make[6]: *** [Makefile:1981: fopen.lo] Error 1
make[6]: *** Waiting for unfinished jobs....
make[5]: *** [Makefile:1996: all-recursive] Error 1
make[4]: *** [Makefile:1835: all] Error 2
make[3]: *** [Makefile:1757: all-recursive] Error 1
make[2]: *** [Makefile:1682: all] Error 2
make[1]: *** [package/pkg-generic.mk:269: /home/peko/source/buildroot/output-gnutls/build/gnutls-3.6.14/.stamp_built] Error 2
Care to take a look?
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 5+ messages in thread
* [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14
2020-06-21 21:58 ` Peter Korsgaard
@ 2020-06-23 9:50 ` Sørensen, Stefan
0 siblings, 0 replies; 5+ messages in thread
From: Sørensen, Stefan @ 2020-06-23 9:50 UTC (permalink / raw)
To: buildroot
On Sun, 2020-06-21 at 23:58 +0200, Peter Korsgaard wrote:
> > > > > > "stefan" == stefan <stefan@astylos.dk> writes:
>
> > From: Stefan S?rensen <stefan.sorensen@spectralink.com>
> > Fixes the following security issue:
>
> > * CVE-2020-13777: It was found that GnuTLS 3.6.4 introduced a
> > regression in the TLS protocol implementation. This caused the
> TLS
> > server to not securely construct a session ticket encryption key
> > considering the application supplied secret, allowing a MitM
> > attacker to bypass authentication in TLS 1.3 and recover
> previous
> > conversations in TLS 1.2
>
> > Release announcement:
> >
> https://lists.gnupg.org/pipermail/gnutls-help/2020-June/004648.html
>
> > Signed-off-by: Stefan S?rensen <stefan.sorensen@spectralink.com>
>
> Did you test this on uClibc? I had a look at bumping the version
> earlier
> this month and ended up with build issues because of a gnulib update:
I thought I did, but somehow I managed to mess it up an get a successful
build.
I will look into it.
Stefan
Spectralink Disclaimer:
"The information transmitted by this email is intended only for the person or entity to which it is addressed. This email may contain proprietary, confidential and/or privileged material. If you are not the intended recipient of this message, please notify the sender by reply email immediately and delete this message without reading further or forwarding to others. The contents of this email may be protected by copyright law. This email is not intended to be a contract or other legally binding obligation".
^ permalink raw reply [flat|nested] 5+ messages in thread
* [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14
2020-06-11 5:31 [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14 stefan at astylos.dk
2020-06-21 21:33 ` Yann E. MORIN
2020-06-21 21:58 ` Peter Korsgaard
@ 2020-07-16 15:01 ` Peter Korsgaard
2 siblings, 0 replies; 5+ messages in thread
From: Peter Korsgaard @ 2020-07-16 15:01 UTC (permalink / raw)
To: buildroot
>>>>> "stefan" == stefan <stefan@astylos.dk> writes:
> From: Stefan S?rensen <stefan.sorensen@spectralink.com>
> Fixes the following security issue:
> * CVE-2020-13777: It was found that GnuTLS 3.6.4 introduced a
> regression in the TLS protocol implementation. This caused the TLS
> server to not securely construct a session ticket encryption key
> considering the application supplied secret, allowing a MitM
> attacker to bypass authentication in TLS 1.3 and recover previous
> conversations in TLS 1.2
> Release announcement:
> https://lists.gnupg.org/pipermail/gnutls-help/2020-June/004648.html
> Signed-off-by: Stefan S?rensen <stefan.sorensen@spectralink.com>
Committed to 2020.02.x and 2020.05.x, thanks.
--
Bye, Peter Korsgaard
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2020-07-16 15:01 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-06-11 5:31 [Buildroot] [PATCH] package/gnutls: security bump to 3.6.14 stefan at astylos.dk
2020-06-21 21:33 ` Yann E. MORIN
2020-06-21 21:58 ` Peter Korsgaard
2020-06-23 9:50 ` Sørensen, Stefan
2020-07-16 15:01 ` Peter Korsgaard
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.