https://bugzilla.redhat.com/show_bug.cgi?id=2234867 --- Comment #4 from Enric Balletbo i Serra <eballetbo@xxxxxxxxxx> --- The version of mbedtls library inside optee_os is a trimmed down version of the upstream 2.28.1 release plus 4 patches that seems fixes: e5353ad98910f0cfc5cb867a51e6d6814b8a2e05 libmbedtls: Fix cipher_wrap.c for nist_kw 06de6080fba5890357f9075b37caf940cc8eb93f libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pkcs1_v15_verify() a846630f4435a7127bdee968781e6d6eb296f5fa libmbedtls: add fault mitigation in mbedtls_rsa_rsassa_pss_verify_ext() 23ef3871cb5814f45010171373add4d339285616 libmbedtls: fix cipher_wrap.c for chacha20 and chachapoly As Marcin Juszkiewicz said Fedora ships 2.28.4 which is slightly newer than the one used in optee_os package. A quick report about the differences is as follows: $ git diff --shortstat v2.28.1..v2.28.4 702 files changed, 91476 insertions(+), 86418 deletions(-) Note that mbedtls library is **is not used as shared library** but linked statically to build the firmware binaries. Here is another version of the spec for review. Changes since the first version are: - Collect and list the licenses as Javier and Marcin suggested - Update the date of the changelog Spec URL: https://download.copr.fedorainfracloud.org/results/eballetbo/fedora/fedora-rawhide-aarch64/06417210-optee_os/optee_os.spec SRPM URL: https://download.copr.fedorainfracloud.org/results/eballetbo/fedora/fedora-rawhide-aarch64/06417210-optee_os/optee_os-3.22.0-1.fc40.src.rpm Description: OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. OP-TEE implements TEE Internal Core API v1.1.x which is the API exposed to Trusted Applications. Note: the contents of this package are generally just consumed by bootloaders such as u-boot. As such the binaries aren't of general interest to users. Fedora Account System Username: eballetbo -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component https://bugzilla.redhat.com/show_bug.cgi?id=2234867 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202234867%23c4 _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
