ExternalVendorCode/openwrt
1
0
Fork 0
mirror of https://github.com/openwrt/openwrt.git synced 2024-12-19 05:38:00 +00:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity
b9251e3b40
openwrt/package/libs/wolfssl
History
Petr Štetiar b9251e3b40 wolfssl: fix API breakage of SSL_get_verify_result 
Backport fix for API breakage of SSL_get_verify_result() introduced in
v5.1.1-stable.  In v4.8.1-stable SSL_get_verify_result() used to return
X509_V_OK when used on LE powered sites or other sites utilizing
relaxed/alternative cert chain validation feature. After an update to
v5.1.1-stable that API calls started returning X509_V_ERR_INVALID_CA
error and thus rendered all such connection attempts imposible:

 $ docker run -it openwrt/rootfs:x86_64-21.02.2 sh -c "wget https://letsencrypt.org"
 Downloading 'https://letsencrypt.org'
 Connecting to 18.159.128.50:443
 Connection error: Invalid SSL certificate

Fixes: #9283
References: https://github.com/wolfSSL/wolfssl/issues/4879
Signed-off-by: Petr Štetiar <ynezz@true.cz>
2022-02-22 20:27:15 +01:00
..
patches wolfssl: fix API breakage of SSL_get_verify_result 2022-02-22 20:27:15 +01:00
Config.in libs/wolfssl: add SAN (Subject Alternative Name) support 2021-12-29 22:55:16 +01:00
Makefile wolfssl: update to 5.1.1-stable 2022-02-01 23:18:01 +01:00