dnsmasq: Backport some security updates
[openwrt/openwrt.git] / package / network / services / dnsmasq / patches / 050-crypto-use-nettle-ecc_curve-access-functions.patch
1 From 1f55b09dd88bc65b3ee6e3a665bc844a5a9a9e8d Mon Sep 17 00:00:00 2001
2 From: Hans Dedecker <dedeckeh@gmail.com>
3 Date: Fri, 9 Aug 2019 21:08:17 +0200
4 Subject: [PATCH] crypto: use nettle ecc_curve access functions
5
6 Nettle 3.5.1 has made ecc_curve definitions (nettle_secp_192r1,
7 nettle_secp_224r1, nettle_secp_256r1, ...) private and forces
8 users to make use of the accessor functions (nettle_get_secp_192r1,
9 ...) to retrieve the specific ecc_curve structs.
10
11 Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
12 ---
13 src/crypto.c | 4 ++--
14 1 file changed, 2 insertions(+), 2 deletions(-)
15
16 --- a/src/crypto.c
17 +++ b/src/crypto.c
18 @@ -301,7 +301,7 @@ static int dnsmasq_ecdsa_verify(struct b
19 if (!(key_256 = whine_malloc(sizeof(struct ecc_point))))
20 return 0;
21
22 - nettle_ecc_point_init(key_256, &nettle_secp_256r1);
23 + nettle_ecc_point_init(key_256, nettle_get_secp_256r1());
24 }
25
26 key = key_256;
27 @@ -314,7 +314,7 @@ static int dnsmasq_ecdsa_verify(struct b
28 if (!(key_384 = whine_malloc(sizeof(struct ecc_point))))
29 return 0;
30
31 - nettle_ecc_point_init(key_384, &nettle_secp_384r1);
32 + nettle_ecc_point_init(key_384, nettle_get_secp_384r1());
33 }
34
35 key = key_384;