Skip to content

1.10: Bump MbedTLS from 2.28.2 to 2.28.1010 (2.28.10 plus patches)#60744

Merged
DilumAluthge merged 15 commits intobackports-release-1.10from
dpa/1.10-update-mbedtls
Feb 2, 2026
Merged

1.10: Bump MbedTLS from 2.28.2 to 2.28.1010 (2.28.10 plus patches)#60744
DilumAluthge merged 15 commits intobackports-release-1.10from
dpa/1.10-update-mbedtls

Conversation

@DilumAluthge
Copy link
Copy Markdown
Member

@DilumAluthge DilumAluthge commented Jan 19, 2026
edited
Loading

This PR bumps MbedTLS on Julia 1.10 to 2.28.1010, which is upstream 2.28.10 plus Debian's (2.16.9) security patches.

Check list (from the devdocs)

Version numbers:

  • deps/$(libname).version: LIBNAME_VER, LIBNAME_BRANCH, LIBNAME_SHA1 and LIBNAME_JLL_VER
  • stdlib/$(LIBNAME_JLL_NAME)_jll/Project.toml: version

Checksum:

  • deps/checksums/$(libname)
  • deps/checksums/$(LIBNAME_JLL_NAME)-*/: md5 and sha512
    • I don't think this file exists anymore. It looks like the checksums have been combined into deps/checksums/mbedtls.

Patches:

  • deps/$(libname).mk
  • deps/patches/$(libname)-*.patch

@DilumAluthge DilumAluthge mentioned this pull request Jan 19, 2026
Merged
71 tasks
adienes and others added 9 commits January 19, 2026 20:11
@adienes @DilumAluthge
[NFC] add tests for typemin power of float (#59745)
d7a3b1d 
with backports, as suggested in
#57463 (comment).
closes #57463

(cherry picked from commit 30c34ef)
@IanButterworth @DilumAluthge
Add note about @threads threadpool (#59802)
bab96e1 
(cherry picked from commit a817940)
@IanButterworth @DilumAluthge
Don't trigger full rebuild if git is dirty (#60023)
90459b7 
(cherry picked from commit 6f2f7f5)
@KristofferC @fingolfin @DilumAluthge
allow finding stdlibs that are normal packages in the manifest but ar…
80e63fb 
…e now stdlibs (#60061)

This helps handling manifest from earlier julia versions. This is kind
of the `locate` version of the `identify` fallback in
#56148.

Need to write a test when this happens (and verify that this fix works).

Noted in a slack #gripes comment.

---------

Co-authored-by: KristofferC <kristoffer.carlsson@juliacomputing.com>
Co-authored-by: Max Horn <max@quendi.de>
(cherry picked from commit 6fddac8)
@nalimilan @DilumAluthge
Fix removal of GPL libs (#60100)
43c5837 
`$(build_datarootdir)/lib/julia` doesn't exist, libraries are in
`$(build_private_libdir)`.

See https://github.com/JuliaLang/julia/pull/59627/files#r2510807584.

(cherry picked from commit bf7e52b)
@EdsterG @DilumAluthge
Logging: define isless between Integer and LogLevel (#60330)
c5453f2 
(cherry picked from commit 5ee0816)
@vtjnash @vchuravy
@JeffBezanson @DilumAluthge
add wb_back on all task switch paths (#60617)
069dce4 
Since this task's stack or scope field could have been modified after it
was marked by an incremental collection (and not just for copy stacks),
move the barrier back unconditionally here.

---------

Co-authored-by: Valentin Churavy <v.churavy@gmail.com>
Co-authored-by: Jeff Bezanson <jeff.bezanson@gmail.com>
(cherry picked from commit 14ca1ab)
@giordano @DilumAluthge
Correct version in which at-lock was exported (#60279)
5a91355 
It was exported in v1.7, not v1.10: #39588

(cherry picked from commit 1067db8)
@JeffBezanson @DilumAluthge
fix #45494, error in ssa conversion with complex type decl (#55744)
fc27642 
We were missing a call to `renumber-assigned-ssavalues` in the case
where the declared type is used to assert the type of a value taken from
a closure box.

(cherry picked from commit 2616634)
@DilumAluthge DilumAluthge force-pushed the backports-release-1.10 branch from 58d2341 to dad8fca Compare January 20, 2026 01:12
@DilumAluthge DilumAluthge force-pushed the dpa/1.10-update-mbedtls branch 2 times, most recently from 0b6ad7a to cdc71dd Compare January 20, 2026 01:16
DilumAluthge and others added 3 commits January 19, 2026 20:39
@DilumAluthge
CI: Pin external actions to full-length commit hashes
b16036a
@mlechu @dralletje @DilumAluthge
Fix hygienic-scopes in inner macro expansions (#58965)
eddadcf 
Changes from #43151, github just
didn't want me to re-open it.

As discussed on slack, any `hygienic-scope` within an outer
`hygienic-scope` can read and write variables in the outer one, so it's
not particularly hygienic. The result is that we can't safely nest macro
calls unless they know the contents of all inner macro calls.

Should fix #48910.

Co-authored-by: Michiel Dral <m.c.dral@gmail.com>
(cherry picked from commit ff33305)
@eschnett @DilumAluthge
1.10: Update cacert to 2025-12-02 (#60745)
cf1f71a
@DilumAluthge DilumAluthge force-pushed the backports-release-1.10 branch from dad8fca to cf1f71a Compare January 20, 2026 01:39
@DilumAluthge DilumAluthge force-pushed the dpa/1.10-update-mbedtls branch from cdc71dd to 6eeec55 Compare January 20, 2026 01:47
@DilumAluthge DilumAluthge changed the title 1.10: Bump MbedTLS to 2.28.1010 1.10: Bump MbedTLS from 2.28.2 to 2.28.1010 Jan 20, 2026
@DilumAluthge DilumAluthge changed the title 1.10: Bump MbedTLS from 2.28.2 to 2.28.1010 1.10: Bump MbedTLS from 2.28.2 to 2.28.1010 (2.28.10 plus patches) Jan 20, 2026
@DilumAluthge DilumAluthge force-pushed the dpa/1.10-update-mbedtls branch from 6eeec55 to e608551 Compare January 20, 2026 02:50
@DilumAluthge
Copy link
Copy Markdown
Member Author

DilumAluthge commented Jan 23, 2026

The math test failures are from something else on the backports branch, not this PR.

@DilumAluthge DilumAluthge marked this pull request as ready for review January 27, 2026 22:39
@DilumAluthge DilumAluthge force-pushed the backports-release-1.10 branch from 5982ccd to ec3ef8b Compare January 29, 2026 23:59
@DilumAluthge DilumAluthge requested a review from a team as a code owner January 29, 2026 23:59
@DilumAluthge DilumAluthge merged commit 3c13ebe into backports-release-1.10 Feb 2, 2026
4 of 6 checks passed
@DilumAluthge DilumAluthge deleted the dpa/1.10-update-mbedtls branch February 2, 2026 00:50
@KristofferC
Copy link
Copy Markdown
Member

KristofferC commented Feb 2, 2026
edited
Loading

What happened with this PR? It looks like it has a lot of unrelated changes?

The math test failures are from something else on the backports branch, not this PR.

The math test failures on the 1.12 branch (https://buildkite.com/julialang/julia-release-1-dot-10/builds/600#019c1be9-7e29-4393-82ed-621a557e3e66) are said to come from this PR?

KristofferC added a commit that referenced this pull request Feb 2, 2026
@DilumAluthge @adienes
@IanButterworth @KristofferC @fingolfin @nalimilan @EdsterG @vtjnash @vchuravy @JeffBezanson @giordano @mlechu @dralletje @eschnett
1.10: Bump MbedTLS from 2.28.2 to 2.28.1010 (2.28.10 plus patches) (#…
c8be17d 
…60744)

This PR bumps MbedTLS on Julia 1.10 to
[2.28.1010](JuliaPackaging/Yggdrasil#12380),
which is upstream 2.28.10 plus Debian's (2.16.9) security patches.

[devdocs](https://docs.julialang.org/en/v1.12/devdocs/build/build/#Update-the-version-number-of-a-dependency))

Version numbers:
- [x] `deps/$(libname).version`: `LIBNAME_VER`, `LIBNAME_BRANCH`,
`LIBNAME_SHA1` and `LIBNAME_JLL_VER`
- [x] `stdlib/$(LIBNAME_JLL_NAME)_jll/Project.toml`: `version`

Checksum:
- [x] `deps/checksums/$(libname)`
- [ ] `deps/checksums/$(LIBNAME_JLL_NAME)-*/`: `md5` and `sha512`
- I don't think this file exists anymore. It looks like the checksums
have been combined into `deps/checksums/mbedtls`.

Patches:
- [x] `deps/$(libname).mk`
- [x] `deps/patches/$(libname)-*.patch`

---------

Co-authored-by: Andy Dienes <51664769+adienes@users.noreply.github.com>
Co-authored-by: Ian Butterworth <i.r.butterworth@gmail.com>
Co-authored-by: Kristoffer Carlsson <kcarlsson89@gmail.com>
Co-authored-by: KristofferC <kristoffer.carlsson@juliacomputing.com>
Co-authored-by: Max Horn <max@quendi.de>
Co-authored-by: Milan Bouchet-Valat <nalimilan@club.fr>
Co-authored-by: Eddie Groshev <eddie_g_89@hotmail.com>
Co-authored-by: Jameson Nash <vtjnash@gmail.com>
Co-authored-by: Valentin Churavy <v.churavy@gmail.com>
Co-authored-by: Jeff Bezanson <jeff.bezanson@gmail.com>
Co-authored-by: Mosè Giordano <765740+giordano@users.noreply.github.com>
Co-authored-by: Em Chu <61633163+mlechu@users.noreply.github.com>
Co-authored-by: Michiel Dral <m.c.dral@gmail.com>
Co-authored-by: Erik Schnetter <schnetter@gmail.com>
@giordano giordano mentioned this pull request Feb 2, 2026
Merged
@DilumAluthge DilumAluthge mentioned this pull request Feb 9, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@giordano giordano giordano approved these changes

@mbauman mbauman Awaiting requested review from mbauman

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.