SHA256
1
0
forked from pool/Botan

Accepting request 844383 from home:pmonrealgonzalez:branches:devel:libraries:c_c++

- Update to 2.16.0:
  * Now userspace PRNG objects (such as AutoSeeded_RNG and HMAC_DRBG)
    use an internal lock, which allows safe concurrent use. This
    however is purely a precaution in case of accidental sharing of
    such RNG objects; for performance reasons it is always preferable
    to use a RNG per thread if a userspace RNG is needed.
  * DL_Group and EC_Group objects now track if they were created
    from a known trusted group (such as P-256 or an IPsec DH
    parameter). If so, then verification tests can be relaxed, as
    compared to parameters which may have been maliciously
    constructed in order to pass primality checks.
  * RandomNumberGenerator::add_entropy_T assumed its input was a POD
    type but did not verify this.
  * Support OCSP responders that live on a non-standard port.
  * Add support for Solaris sandbox.
  * Support suffixes on release numbers for alpha/beta releases.
  * Fix a bug in EAX which allowed requesting a 0 length tag, which
    had the effect of using a full length tag. Instead omit the
    length field, or request the full tag length explicitly.
  * Fix a memory leak in GCM where if passed an unsuitable block
    cipher (eg not 128 bit) it would throw an exception and leak
    the cipher object.

OBS-URL: https://build.opensuse.org/request/show/844383
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=96
This commit is contained in:
Marcus Meissner 2020-11-03 08:16:18 +00:00 committed by Git OBS Bridge
parent 5960f3cfdc
commit 9214051a3f
7 changed files with 44 additions and 18 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:d88af1307f1fefac79aa4f2f524699478d69ce15a857cf2d0a90ac6bf2a50009
size 5920688

View File

@ -1,11 +0,0 @@
-----BEGIN PGP SIGNATURE-----
iQEzBAABCAAdFiEEYh2vZBHhhRxM+aLhYhHr8e+637wFAl8EZW8ACgkQYhHr8e+6
37ziJQf/WyGSyiSOT97oF2vfYZKzEIbSauIjAZX8EsLzFp0tW0fTA+WOeBixio1B
i7nT3o/ntOyJTjDuavUfzam9PTNfluklsNjX/xQH/+G3dgz7Vit6Bzam3h9yFOJI
UHw0AsUSpnVesWwEEiUPz9EFD40ExafH+jkE8xxTItWUGz3qEqTdUJGATQAcUsaq
jCw+Lxy0TSNkdbLTOUcU38Ds9paysSxKI9GSzlBR0etZNrXHT97HT1iwneGn64qu
NMjt+XmHP/7nYw6+vmM2FWvrOYViV60UaMfDqPtyDwd22XHkkw6YpkVscIkfc9ZE
0cSn1bY/+tLAkpK885cxA3DtYd+IWg==
=kUJO
-----END PGP SIGNATURE-----

3
Botan-2.16.0.tar.xz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:92ed6ebc918d86bd1b04221ca518af4cf29cc326c4760740bd2d22e61cea2628
size 5938644

11
Botan-2.16.0.tar.xz.asc Normal file
View File

@ -0,0 +1,11 @@
-----BEGIN PGP SIGNATURE-----
iQEzBAABCAAdFiEEYh2vZBHhhRxM+aLhYhHr8e+637wFAl98Y5EACgkQYhHr8e+6
37wkvgf/Q5sSh/2jIRryU2RbD227e7verPR44d7J3OXk0IErBzcbOSP7z9LmSVFu
BKQOskzQW3FDo1BNNl7R/+hs3ifXv4gX8ycOHxaY4CJi9Fbmr+SNJ5RdAy48s+rO
0qzIR06aTuWe7mqKetx+qzn9+CmpVosKRWQiA80Pn5L+LdfTlzGNhCqVsZvKsNzu
zqtFnsMEv3LLP/4jxFCeymkZjsGYMF7jV+Mh91Ic5wj5RWMGF/qCNgfsL40V/izd
d0LjZQz0UVmKc93VumK/PFp9ExVbqThuzwtBYq9UOdehDKyyX9y7kg6n3rSqEvKq
CgoFShTKQMNhJK83ql6KtSxz20T0uA==
=7bRN
-----END PGP SIGNATURE-----

View File

@ -1,3 +1,29 @@
-------------------------------------------------------------------
Tue Oct 27 15:53:08 UTC 2020 - Pedro Monreal <pmonreal@suse.com>
- Update to 2.16.0:
* Now userspace PRNG objects (such as AutoSeeded_RNG and HMAC_DRBG)
use an internal lock, which allows safe concurrent use. This
however is purely a precaution in case of accidental sharing of
such RNG objects; for performance reasons it is always preferable
to use a RNG per thread if a userspace RNG is needed.
* DL_Group and EC_Group objects now track if they were created
from a known trusted group (such as P-256 or an IPsec DH
parameter). If so, then verification tests can be relaxed, as
compared to parameters which may have been maliciously
constructed in order to pass primality checks.
* RandomNumberGenerator::add_entropy_T assumed its input was a POD
type but did not verify this.
* Support OCSP responders that live on a non-standard port.
* Add support for Solaris sandbox.
* Support suffixes on release numbers for alpha/beta releases.
* Fix a bug in EAX which allowed requesting a 0 length tag, which
had the effect of using a full length tag. Instead omit the
length field, or request the full tag length explicitly.
* Fix a memory leak in GCM where if passed an unsuitable block
cipher (eg not 128 bit) it would throw an exception and leak
the cipher object.
------------------------------------------------------------------- -------------------------------------------------------------------
Sun Aug 16 01:57:13 UTC 2020 - Dirk Mueller <dmueller@suse.com> Sun Aug 16 01:57:13 UTC 2020 - Dirk Mueller <dmueller@suse.com>

View File

@ -16,10 +16,10 @@
# #
%define version_suffix 2-15 %define version_suffix 2-16
%define short_version 2 %define short_version 2
Name: Botan Name: Botan
Version: 2.15.0 Version: 2.16.0
Release: 0 Release: 0
Summary: A C++ Crypto Library Summary: A C++ Crypto Library
License: BSD-2-Clause License: BSD-2-Clause

View File

@ -1,4 +1,4 @@
libbotan-2-15 libbotan-2-16
libbotan-devel libbotan-devel
requires -libbotan-<targettype> = <version> requires -libbotan-<targettype> = <version>
requires "libbotan-2-15-<targettype> = <version>" requires "libbotan-2-16-<targettype> = <version>"