aboutsummaryrefslogtreecommitdiff
path: root/Config.in.legacy
diff options
context:
space:
mode:
authorGravatar Gustavo Zacarias <gustavo@zacarias.com.ar>2016-05-14 10:33:47 -0300
committerGravatar Thomas Petazzoni <thomas.petazzoni@free-electrons.com>2016-05-15 22:41:24 +0200
commit3380da69c5ab490e5c51dca0c4389b0da91743d0 (patch)
tree502f494684f9618d44262f309fe16528400cb18f /Config.in.legacy
parent9194be9f3acfda7eb32a1ede9918f913bb59b2c9 (diff)
downloadbuildroot-3380da69c5ab490e5c51dca0c4389b0da91743d0.tar.gz
buildroot-3380da69c5ab490e5c51dca0c4389b0da91743d0.tar.bz2
openvpn: remove polarssl crypto backend option
Now that we need to bump openvpn to version 2.3.11 for security fixes the time has come to remove the polarssl option. Add legacy handling explaining the situation: PolarSSL 1.2.x can coexist with mbedTLS 2.x+, but OpenVPN requires PolarSSL/mbedTLS 1.3.x (the transition branch) >= 1.3.8 but doesn't build/work with the 2.x series. And PolarSSL/mbedTLS 1.3.x can't coexist with mbedTLS 2.x on the same target. So, unfortunately, openssl is now the only option (until libressl arrives) which means no more backend options in general. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Diffstat (limited to 'Config.in.legacy')
-rw-r--r--Config.in.legacy11
1 files changed, 11 insertions, 0 deletions
diff --git a/Config.in.legacy b/Config.in.legacy
index 824a220f72..b9c2f004f9 100644
--- a/Config.in.legacy
+++ b/Config.in.legacy
@@ -145,6 +145,17 @@ endif
###############################################################################
comment "Legacy options removed in 2016.05"
+config BR2_PACKAGE_OPENVPN_CRYPTO_POLARSSL
+ bool "openvpn polarssl crypto backend removed"
+ select BR2_LEGACY
+ help
+ The OpenVPN polarssl crypto backend option has been removed.
+ Version from 2.3.10 onwards need polarssl >= 1.3.8 but aren't
+ compatible with mbedtls (polarssl) series 2.x which is the
+ version provided in buildroot. And both can't coexist.
+ It now uses OpenSSL as the only option.
+
+
config BR2_PACKAGE_NGINX_HTTP_SPDY_MODULE
bool "nginx http spdy module removed"
select BR2_LEGACY