Skip to content

(backport v3.7) modules: mbedtls: update to 3.6.3 #87946

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 13, 2025
Merged

(backport v3.7) modules: mbedtls: update to 3.6.3 #87946

merged 2 commits into from
Apr 13, 2025

Conversation

@tomi-font
Copy link
Contributor

@tomi-font tomi-font commented Apr 1, 2025
edited by aescolar
Loading

Backport the Mbed TLS 3.6.3 update to the v3.7 branch.

Fixes #88229

@zephyrbot
Copy link

zephyrbot commented Apr 1, 2025

The following west manifest projects have been modified in this Pull Request:

Name Old Revision New Revision Diff
mbedtls zephyrproject-rtos/mbedtls@a78176c zephyrproject-rtos/mbedtls@5f88993 (zephyr) zephyrproject-rtos/[email protected]

Note: This message is automatically posted and updated by the Manifest GitHub Action.

@tomi-font tomi-font added this to the v3.7.2 milestone Apr 1, 2025
@aescolar
Copy link
Member

aescolar commented Apr 1, 2025

Thanks @tomi-font . Note we need a GH issue for this. Would you be so kind as to describe "why" we want this update for the LTS. Thanks in advance :)

@tomi-font
Copy link
Contributor Author

tomi-font commented Apr 1, 2025

Thanks @tomi-font . Note we need a GH issue for this. Would you be so kind as to describe "why" we want this update for the LTS. Thanks in advance :)

Mbed TLS 3.6 is LTS, Zephyr 3.7 is LTS, Zephyr 3.7.1 had Mbed TLS 3.6.2 so Zephyr 3.7.2 should have Mbed TLS 3.6.3 (fix version + 1) :)
plus Mbed TLS 3.6.3 fixes two CVEs, see https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.3

@tomi-font
doc: releases: add release notes template for 3.7.2
1311cb0 
Add the boilerplate for 3.7.2.

Signed-off-by: Tomi Fontanilles <[email protected]>
@tomi-font tomi-font force-pushed the backport-87637-to-v3.7-branch branch from 8793d32 to ea4a37d Compare April 1, 2025 13:54
@github-actions github-actions bot added the Release Notes To be mentioned in the release notes label Apr 1, 2025
@aescolar
Copy link
Member

aescolar commented Apr 5, 2025

@tomi-font note we still need a github issue with the motivation for this update (like you did in #87946 (comment)) , linked from the first PR comment

@aescolar aescolar mentioned this pull request Apr 7, 2025
Open
aescolar
aescolar previously approved these changes Apr 7, 2025
View reviewed changes
@tomi-font tomi-font mentioned this pull request Apr 9, 2025
Merged
@tomi-font
Copy link
Contributor Author

tomi-font commented Apr 9, 2025

ping, anyone in here please review

wearyzen
wearyzen reviewed Apr 9, 2025
View reviewed changes
@tomi-font tomi-font force-pushed the backport-87637-to-v3.7-branch branch from ea4a37d to 4ce90bf Compare April 10, 2025 08:56
@tomi-font tomi-font requested review from aescolar and wearyzen April 10, 2025 08:57
aescolar
aescolar previously approved these changes Apr 10, 2025
View reviewed changes
wearyzen
wearyzen previously approved these changes Apr 10, 2025
View reviewed changes
@tomi-font
modules: mbedtls: update to 3.6.3
36cc7f5 
Update Mbed TLS to 3.6.3.

Signed-off-by: Tomi Fontanilles <[email protected]>
@tomi-font tomi-font dismissed stale reviews from wearyzen and aescolar via 36cc7f5 April 10, 2025 09:44
@tomi-font tomi-font force-pushed the backport-87637-to-v3.7-branch branch from 4ce90bf to 36cc7f5 Compare April 10, 2025 09:44
@tomi-font
Copy link
Contributor Author

tomi-font commented Apr 10, 2025

Had to make explicit links for the CVEs as the cve text role doesn't exist in 3.7.

@tomi-font tomi-font requested a review from wearyzen April 10, 2025 10:03
@nashif nashif merged commit 06cec72 into zephyrproject-rtos:v3.7-branch Apr 13, 2025
25 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aescolar aescolar aescolar approved these changes

@wearyzen wearyzen wearyzen approved these changes

@kartben kartben Awaiting requested review from kartben

@nashif nashif Awaiting requested review from nashif

@ceolin ceolin Awaiting requested review from ceolin

Assignees

@nashif nashif

@aescolar aescolar

Labels

manifest manifest-mbedtls Release Notes To be mentioned in the release notes

Projects

None yet

Milestone

v3.7.2

Development

Successfully merging this pull request may close these issues.

5 participants

@tomi-font @zephyrbot @aescolar @wearyzen @nashif