kumquat-buildroot/package/libressl/libressl.mk
Francois Perrad 17f2bfaebd package/libressl: security bump to version 3.4.2
Fixes the following security issues:

 * In some situations the X.509 verifier would discard an error on an
    unverified certificate chain, resulting in an authentication bypass.
    Thanks to Ilya Shipitsin and Timo Steinlein for reporting.

Signed-off-by: Francois Perrad <francois.perrad@gadz.org>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2021-11-28 14:30:56 +01:00

23 lines
688 B
Makefile

################################################################################
#
# libressl
#
################################################################################
LIBRESSL_VERSION = 3.4.2
LIBRESSL_SITE = https://ftp.openbsd.org/pub/OpenBSD/LibreSSL
LIBRESSL_LICENSE = ISC (new additions), OpenSSL or SSLeay (original OpenSSL code)
LIBRESSL_LICENSE_FILES = COPYING
LIBRESSL_CPE_ID_VENDOR = openbsd
LIBRESSL_INSTALL_STAGING = YES
LIBRESSL_CONF_OPTS = -DOPENSSLDIR="/etc/ssl"
ifeq ($(BR2_PACKAGE_LIBRESSL_BIN),)
define LIBRESSL_REMOVE_BIN
$(RM) -f $(TARGET_DIR)/usr/bin/openssl
endef
LIBRESSL_POST_INSTALL_TARGET_HOOKS += LIBRESSL_REMOVE_BIN
endif
$(eval $(cmake-package))