catspeed-cc/openwrt
1
1
Fork 0
Code
0f381e2fc5
openwrt/package/libs/mbedtls
History
Magnus Kroken e65001e3e7 mbedtls: backport upstream patches to fix TLS 1.2 client issues 
Fix a TLS 1.2 regression that caused clients to reject valid
ServerKeyExchange signatures using RSA-PSS signature algorithms.

The TLS 1.2 regression resulted in errors like:
$ curl https://api.domeneshop.no/v0/
curl: (35) ssl_handshake returned: (-0x6600) SSL - A field in a message was incorrect or inconsistent with other fields

Fixes: https://github.com/openwrt/openwrt/issues/22874
Fixes: https://github.com/openwrt/openwrt/issues/23116
Fixes: f48ef0040b ("mbedtls: update to 3.6.6")
Signed-off-by: Magnus Kroken <mkroken@gmail.com>
Link: https://github.com/openwrt/openwrt/pull/23066
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
2026-05-05 00:27:58 +02:00
..
patches mbedtls: backport upstream patches to fix TLS 1.2 client issues 2026-05-05 00:27:58 +02:00
Config.in mbedtls: Expose MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED config option 2025-07-27 17:59:34 +02:00
Makefile mbedtls: backport upstream patches to fix TLS 1.2 client issues 2026-05-05 00:27:58 +02:00