17f2bfaebd
Fixes the following security issues: * In some situations the X.509 verifier would discard an error on an unverified certificate chain, resulting in an authentication bypass. Thanks to Ilya Shipitsin and Timo Steinlein for reporting. Signed-off-by: Francois Perrad <francois.perrad@gadz.org> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
23 lines
688 B
Makefile
23 lines
688 B
Makefile
################################################################################
|
|
#
|
|
# libressl
|
|
#
|
|
################################################################################
|
|
|
|
LIBRESSL_VERSION = 3.4.2
|
|
LIBRESSL_SITE = https://ftp.openbsd.org/pub/OpenBSD/LibreSSL
|
|
LIBRESSL_LICENSE = ISC (new additions), OpenSSL or SSLeay (original OpenSSL code)
|
|
LIBRESSL_LICENSE_FILES = COPYING
|
|
LIBRESSL_CPE_ID_VENDOR = openbsd
|
|
LIBRESSL_INSTALL_STAGING = YES
|
|
LIBRESSL_CONF_OPTS = -DOPENSSLDIR="/etc/ssl"
|
|
|
|
ifeq ($(BR2_PACKAGE_LIBRESSL_BIN),)
|
|
define LIBRESSL_REMOVE_BIN
|
|
$(RM) -f $(TARGET_DIR)/usr/bin/openssl
|
|
endef
|
|
LIBRESSL_POST_INSTALL_TARGET_HOOKS += LIBRESSL_REMOVE_BIN
|
|
endif
|
|
|
|
$(eval $(cmake-package))
|