Home Explore Help
Sign In
OpenWrt
/
openwrt
mirror of https://github.com/openwrt/openwrt.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

wolfssl: Update to version 5.8.2

This version fixes multiple security problems:
CVE-2025-7395: Problem in certificate verification on Apple devices
CVE-2025-7394: Predictable results from RAND_bytes() after fork call in OpenSSL compatibility layer
CVE-2025-7396: Activate Curve25519 blinding support

See Release notes:
https://github.com/wolfSSL/wolfssl/releases/tag/v5.8.0-stable
https://github.com/wolfSSL/wolfssl/releases/tag/v5.8.2-stable

wolfSSL is now GPLv3 instead of GPLv2, see:
https://github.com/wolfSSL/wolfssl/commit/629c5b4cf61ac717d40678b5cd65974b42077af6

The file size increased a bit:
```
546060 bin/packages/mipsel_24kc/base/libwolfssl5.7.6.e624513f-5.7.6-r1.apk
560684 bin/packages/mipsel_24kc/base/libwolfssl5.8.2.e624513f-5.8.2-r1.apk
```

Link: https://github.com/openwrt/openwrt/pull/20547
Signed-off-by: Hauke Mehrtens <[email protected]>
Hauke Mehrtens 2 months ago
parent
6ad9daf99a
commit
92f07864c1
2 changed files with 4 additions and 4 deletions
Unified View Show Diff Stats
  1. 3 3
      package/libs/wolfssl/Makefile
  2. 1 1
      package/libs/wolfssl/patches/100-disable-hardening-check.patch

+ 3 - 3
package/libs/wolfssl/Makefile
View File 

@@ -8,13 +8,13 @@
 
 include $(TOPDIR)/rules.mk
 
 include $(TOPDIR)/rules.mk
 
 
 
 PKG_NAME:=wolfssl
 
 PKG_NAME:=wolfssl
 
-PKG_VERSION:=5.7.6
 
+PKG_VERSION:=5.8.2
 
 PKG_REAL_VERSION:=$(PKG_VERSION)-stable
 
 PKG_REAL_VERSION:=$(PKG_VERSION)-stable
 
 PKG_RELEASE:=1
 
 PKG_RELEASE:=1
 
 
 
 PKG_SOURCE:=$(PKG_NAME)-$(PKG_REAL_VERSION).tar.gz
 
 PKG_SOURCE:=$(PKG_NAME)-$(PKG_REAL_VERSION).tar.gz
 
 PKG_SOURCE_URL:=https://github.com/wolfSSL/wolfssl/archive/v$(PKG_REAL_VERSION)
 
 PKG_SOURCE_URL:=https://github.com/wolfSSL/wolfssl/archive/v$(PKG_REAL_VERSION)
 
-PKG_HASH:=52b1e439e30d1ed8162a16308a8525a862183b67aa30373b11166ecbab000d63
 
+PKG_HASH:=3ef126e3466e2f8f6ebb62b916a7f8fb26c6709dbdf2b63a167759f2fdb53068
 
 
 
 PKG_BUILD_DIR:=$(BUILD_DIR)/$(PKG_NAME)-$(BUILD_VARIANT)/$(PKG_NAME)-$(PKG_REAL_VERSION)
 
 PKG_BUILD_DIR:=$(BUILD_DIR)/$(PKG_NAME)-$(BUILD_VARIANT)/$(PKG_NAME)-$(PKG_REAL_VERSION)
 
 
 
@@ -22,7 +22,7 @@ PKG_FIXUP:=libtool libtool-abiver
 
 PKG_INSTALL:=1
 
 PKG_INSTALL:=1
 
 PKG_BUILD_FLAGS:=no-mips16 lto
 
 PKG_BUILD_FLAGS:=no-mips16 lto
 
 PKG_BUILD_PARALLEL:=1
 
 PKG_BUILD_PARALLEL:=1
 
-PKG_LICENSE:=GPL-2.0-or-later
 
+PKG_LICENSE:=GPL-3.0-or-later
 
 PKG_LICENSE_FILES:=LICENSING COPYING
 
 PKG_LICENSE_FILES:=LICENSING COPYING
 
 PKG_MAINTAINER:=Eneas U de Queiroz <[email protected]>
 
 PKG_MAINTAINER:=Eneas U de Queiroz <[email protected]>
 
 PKG_CPE_ID:=cpe:/a:wolfssl:wolfssl
 
 PKG_CPE_ID:=cpe:/a:wolfssl:wolfssl

+ 1 - 1
package/libs/wolfssl/patches/100-disable-hardening-check.patch
View File 

@@ -1,6 +1,6 @@
 
 --- a/wolfssl/wolfcrypt/settings.h
 
 --- a/wolfssl/wolfcrypt/settings.h
 
 +++ b/wolfssl/wolfcrypt/settings.h
 
 +++ b/wolfssl/wolfcrypt/settings.h
 
-@@ -3722,7 +3722,7 @@ extern void uITRON4_free(void *p) ;
 
+@@ -3842,7 +3842,7 @@ extern void uITRON4_free(void *p) ;
 
  
  
  /* warning for not using harden build options (default with ./configure) */
 
  /* warning for not using harden build options (default with ./configure) */
 
  /* do not warn if big integer support is disabled */
 
  /* do not warn if big integer support is disabled */