Startsida Utforska Hjälp
Logga in
OpenWrt
/
openwrt
spegling av https://github.com/openwrt/openwrt.git
2
0
Fork 0
Filer Ärenden 0 Wiki
Bläddra i källkod

mbedtls: Deactivate ARIA block cipher by default

The ARIA block cipher is pretty uncommon in TLS, deactivate it for now.
This saves some space and reduces the possible variations and attack
vectors of mbedtls.

ARIA support was deactivated in OpenWrt 23.05 by default.

Link: https://github.com/openwrt/openwrt/pull/17342
Signed-off-by: Hauke Mehrtens <[email protected]>
Hauke Mehrtens 1 år sedan
förälder
4e68103c4e
incheckning
3c0ef48bc8
2 ändrade filer med 5 tillägg och 0 borttagningar
Delad Vy Visa Diff Statistik
  1. 4 0
      package/libs/mbedtls/Config.in
  2. 1 0
      package/libs/mbedtls/Makefile

+ 4 - 0
package/libs/mbedtls/Config.in
Visa fil 

@@ -8,6 +8,10 @@ config MBEDTLS_AES_C
 
 	bool "MBEDTLS_AES_C"
 
 	default y
 
 
+config MBEDTLS_ARIA_C
 
+	bool "MBEDTLS_ARIA_C"
 
+	default n
 
+
 
 config MBEDTLS_CAMELLIA_C
 
 	bool "MBEDTLS_CAMELLIA_C"
 
 	default n

+ 1 - 0
package/libs/mbedtls/Makefile
Visa fil 

@@ -37,6 +37,7 @@ MBEDTLS_BUILD_OPTS_CURVES= \
 
 
 MBEDTLS_BUILD_OPTS_CIPHERS= \
 
   CONFIG_MBEDTLS_AES_C \
 
+  CONFIG_MBEDTLS_ARIA_C \
 
   CONFIG_MBEDTLS_CAMELLIA_C \
 
   CONFIG_MBEDTLS_CCM_C \
 
   CONFIG_MBEDTLS_CMAC_C \