Le Tue, Feb 17, 2026 at 06:25:04PM +0100, Jeremie Courreges-Anglas a écrit :
> On Sat, Feb 14, 2026 at 03:24:56PM +0100, Jeremie Courreges-Anglas wrote:
> > PS: my current plan is to try to move -current to the 3.6 LTS branch.
> > openvpn-2.7.0 requires mbedtls-3.2.1 and landry@ apparently needs
> > mbedtls-3* for linphone. I'd also like to move the port to
> > security/mbedtls, IMO using the official name makes it easier to find
> > the port and we have tools to make renaming painless for users.
>
> So 2.28.10 is in, here's a tarball for security/mbedtls moving to
> 3.6.5 (latest LTS). I'll make a summary of the fixes in the commit
> message, please look at https://github.com/Mbed-TLS/mbedtls/releases
> for now.
>
> This also comes with a diff to tweak consumers. Two of them have been
> a bit of a pain:
>
> - the mbedtls v3 code in bctoolbox tries to use a non-default
> MBEDTLS_THREADING_ALT feature that is incompatible with
> MBEDTLS_THREADING_C - according to upstream anyway. Fix: IIUC no
> need to use that to get thread safety, according to the docs
> MBEDTLS_THREADING_C should be enough for the library to be usable in
> a multithreaded app. Untested. Landry, this one is for you.
i'll look but updating bctoolbox was stuck on recent versions requiring
mbedtls3 anyway, so whatever is needed to make it build with it is fine
with me, that might unblock updating the linphone stack...
importing as mbedtls makes much more sense than having it in 'polarssl'
:D
No comments:
Post a Comment