9b347c4acd
The 3.5.x has been promoted to stable, hence 3.4.x is deprecated and 3.3.x kept as old-stable. libdane now specifies LGPLv2.1+ so drop the README kludge (which is also gone regarding licensing). libunistring is a new dependency, even though gnutls ships a builtin version we prefer to use unbundled to avoid duplication with other users and target size growth. Fixes: GNUTLS-SA-2017-01 - It was found using the OSS-FUZZ fuzzer infrastructure that decoding a specially crafted X.509 certificate with Proxy Certificate Information extension present could lead to a double free. GNUTLS-SA-2017-02 - It was found using the OSS-FUZZ fuzzer infrastructure that decoding a specially crafted OpenPGP certificate could lead to heap and stack overflows. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
27 lines
659 B
Plaintext
27 lines
659 B
Plaintext
config BR2_PACKAGE_GNUTLS
|
|
bool "gnutls"
|
|
select BR2_PACKAGE_LIBTASN1
|
|
select BR2_PACKAGE_LIBUNISTRING
|
|
select BR2_PACKAGE_NETTLE
|
|
select BR2_PACKAGE_PCRE
|
|
depends on BR2_USE_WCHAR
|
|
help
|
|
GnuTLS is a secure communications library implementing the SSL
|
|
and TLS protocols and technologies around them.
|
|
|
|
http://www.gnutls.org
|
|
|
|
if BR2_PACKAGE_GNUTLS
|
|
|
|
config BR2_PACKAGE_GNUTLS_TOOLS
|
|
bool "install tools"
|
|
select BR2_PACKAGE_ARGP_STANDALONE \
|
|
if BR2_TOOLCHAIN_USES_UCLIBC || BR2_TOOLCHAIN_USES_MUSL
|
|
help
|
|
Install GnuTLS command line tools for various cryptographic tasks.
|
|
|
|
endif
|
|
|
|
comment "gnutls needs a toolchain w/ wchar"
|
|
depends on !BR2_USE_WCHAR
|