Accepting request 792362 from home:polslinux:branches:devel:libraries:c_c++

- Update to Botan 2.14:
  * Add support for using POWER8+ VPSUMD instruction to accelerate GCM (GH #2247)
  * Optimize the vector permute AES implementation, especially improving
    performance on ARMv7, Aarch64, and POWER. (GH #2243)
  * Use a new algorithm for modular inversions which is both faster
    and more resistant to side channel attacks. (GH #2287 #2296 #2301)
  * Address an issue in CBC padding which would leak the length of the plaintext
    which was being padded. Unpadding during decryption was not affected.
  * Optimize NIST prime field reductions, improving ECDSA by 3-9% (GH #2295)
  * Increase the size of the ECC blinding mask and scale it based on the
    size of the group order. (GH #880 #893 #2308)
  * Add server side support for the TLS asio wrapper. (GH #2229)
  * Add support for using Windows certificate store on MinGW (GH #2280)
  * Add a CLI utility cpu_clock which estimates the speed of the processor cycle counter.
  * Add Roughtime client (GH #2143 #1842)
  * Add support for XMSS X.509 certificates (GH #2172)
  * Add support for X.509 CRLs in FFI layer and Python wrapper (GH #2213)
  * Add AVX2 implementation of SHACAL2 (GH #2196)
  * Support more functionality for X.509 in the Python API (GH #2165)
  * Add generic CPU target useful when building for some new or unusual platform.
  * Disable MD5 in BSI or NIST modes (GH #2188)
  * Many currently public headers are being deprecated. If any such header is included by
    an application, a warning is issued at compile time.
    Headers issuing this warning will be made internal in a future major release.
  * RSA signature performance improvements (GH #2068 #2070)
  * Performance improvements for GCM (GH #2024 #2099 #2119), OCB (#2122), XTS (#2123) and
    ChaCha20Poly1305 (GH #2117), especially for small messages.
  * Add support for constant time AES using NEON and AltiVec (GH #2093 #2095 #2100)
  * Improve performance of POWER8 AES instructions (GH #2096)
  * Add support for the POWER9 hardware random number generator (GH #2026)
  * Add support for 64-bit version of RDRAND, doubling performance on x86-64 (GH #934 #2022)
  * In DTLS server, support a client crashing and then reconnecting from the same
    source port, as described in RFC 6347 sec 4.2.8 (GH #2029)
  * Optimize DTLS MTU splitting to split precisely to the set MTU (GH #2042)
  * Add support for the TLS v1.3 downgrade indicator. (GH #2027)
  * Add Argon2 PBKDF and password hash (GH #459 #1981 #1987)
  * Add Bcrypt-PBKDF (GH #1990)
  * Add server side support for issuing DTLS HelloVerifyRequest messages (GH #1999)
  * Add support for the TLS v1.3 supported_versions extension. (GH #1976)
  * Add Ed25519ph compatible with RFC 8032 (GH #1699 #2000)
  * Add support for OCSP stapling on server side. (GH #1703 #1967)
  * Add a boost::asio TLS stream compatible with boost::asio::ssl. (GH #1839 #1927 #1992)
  * Add a certificate store for Linux/Unix systems. (GH #1885 #1936)
  * Various Fixes

OBS-URL: https://build.opensuse.org/request/show/792362
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=92

Botan-2.10.0.tgz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:88481997578c27924724fea76610d43d9f59c99edfe561d41803bbc98871ad31
-size 7240021

Botan-2.10.0.tgz.asc

@@ -1,11 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQEzBAABCAAdFiEEYh2vZBHhhRxM+aLhYhHr8e+637wFAlyfY5gACgkQYhHr8e+6
-37zznAgAslYskgijfn0oGg43GtaPga3qq04iUxLH+MYLCOaBiIPz5AFDHULAVg1P
-CVRpYvkglxDYgZVNbWRgbHUrnFju01KU9DwbTD96mcjvKq0dYbpAIn5Sp80iQ8Sr
-0ApydPU0sdsrwKAz3vu7NG14rlz935uH05AiRw1WtnAG+42Y0qEbqjcCSvkhFhcn
-iSzqBZwMIlyaIH0HTSiZTNLp/WFx5c9bIVpqSb1USBuJ+KM55HgvNGhaesGupkkQ
-Nm2ZYNHw3hG8O194Q9HXOlwWtl2OWVsPYofei14ld99ToUvlX4sJzL722zRGzDHY
-q2x1pquYuuhbVZBpSTnNHh2xo61oaA==
-=YxW6
------END PGP SIGNATURE-----

Botan-2.14.0.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0c10f12b424a40ee19bde00292098e201d7498535c062d8d5b586d07861a54b5
+size 5958948

Botan-2.14.0.tar.xz.asc

@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEYh2vZBHhhRxM+aLhYhHr8e+637wFAl6LEUEACgkQYhHr8e+6
+37zeyAf/XR0IcWdTE5mW7yRmkYMm+1kDkmiTk4Zow+kTZhRegX691PX3jAMNCi0A
+Gxp7waf0bYT0Qu6LvncqXINCPaSTsjilO6WCDcfIe4FOJzCLRc+TCVNwGxImCxzr
+Zhs4d3YtaQk7Qh4+eu9nwJ1K9N0AC9QfdCMY2DPVEBMYm2PxrXl19WhLzCJQi+tP
++Rju2N3SQPCeGkgY3PCQfIX2N8GqVRa4MhacUD3hcUhTPngI+z5Fchbm/BdKo1qW
+YDFh1Se8SvdxGzaCB6iIHayGTueyzUzCzc5fIElbo4vZ+VMKinxY8I/Ly5VOdZNy
+IHlGHk+vKJkklnW/Wf1WQgrYfqETOQ==
+=Okhl
+-----END PGP SIGNATURE-----

Botan.changes

@@ -1,3 +1,51 @@
+-------------------------------------------------------------------
+Wed Apr  8 08:19:50 UTC 2020 - Paolo Stivanin <info@paolostivanin.com>
+
+- Update to Botan 2.14:
+  * Add support for using POWER8+ VPSUMD instruction to accelerate GCM (GH #2247)
+  * Optimize the vector permute AES implementation, especially improving
+    performance on ARMv7, Aarch64, and POWER. (GH #2243)
+  * Use a new algorithm for modular inversions which is both faster
+    and more resistant to side channel attacks. (GH #2287 #2296 #2301)
+  * Address an issue in CBC padding which would leak the length of the plaintext
+    which was being padded. Unpadding during decryption was not affected.
+  * Optimize NIST prime field reductions, improving ECDSA by 3-9% (GH #2295)
+  * Increase the size of the ECC blinding mask and scale it based on the
+    size of the group order. (GH #880 #893 #2308)
+  * Add server side support for the TLS asio wrapper. (GH #2229)
+  * Add support for using Windows certificate store on MinGW (GH #2280)
+  * Add a CLI utility cpu_clock which estimates the speed of the processor cycle counter.
+  * Add Roughtime client (GH #2143 #1842)
+  * Add support for XMSS X.509 certificates (GH #2172)
+  * Add support for X.509 CRLs in FFI layer and Python wrapper (GH #2213)
+  * Add AVX2 implementation of SHACAL2 (GH #2196)
+  * Support more functionality for X.509 in the Python API (GH #2165)
+  * Add generic CPU target useful when building for some new or unusual platform.
+  * Disable MD5 in BSI or NIST modes (GH #2188)
+  * Many currently public headers are being deprecated. If any such header is included by
+    an application, a warning is issued at compile time.
+    Headers issuing this warning will be made internal in a future major release.
+  * RSA signature performance improvements (GH #2068 #2070)
+  * Performance improvements for GCM (GH #2024 #2099 #2119), OCB (#2122), XTS (#2123) and
+    ChaCha20Poly1305 (GH #2117), especially for small messages.
+  * Add support for constant time AES using NEON and AltiVec (GH #2093 #2095 #2100)
+  * Improve performance of POWER8 AES instructions (GH #2096)
+  * Add support for the POWER9 hardware random number generator (GH #2026)
+  * Add support for 64-bit version of RDRAND, doubling performance on x86-64 (GH #934 #2022)
+  * In DTLS server, support a client crashing and then reconnecting from the same
+    source port, as described in RFC 6347 sec 4.2.8 (GH #2029)
+  * Optimize DTLS MTU splitting to split precisely to the set MTU (GH #2042)
+  * Add support for the TLS v1.3 downgrade indicator. (GH #2027)
+  * Add Argon2 PBKDF and password hash (GH #459 #1981 #1987)
+  * Add Bcrypt-PBKDF (GH #1990)
+  * Add server side support for issuing DTLS HelloVerifyRequest messages (GH #1999)
+  * Add support for the TLS v1.3 supported_versions extension. (GH #1976)
+  * Add Ed25519ph compatible with RFC 8032 (GH #1699 #2000)
+  * Add support for OCSP stapling on server side. (GH #1703 #1967)
+  * Add a boost::asio TLS stream compatible with boost::asio::ssl. (GH #1839 #1927 #1992)
+  * Add a certificate store for Linux/Unix systems. (GH #1885 #1936)
+  * Various Fixes
+
 -------------------------------------------------------------------
 Tue Apr  2 12:54:40 UTC 2019 - Daniel Molkentin <daniel.molkentin@suse.com>
 

Botan.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package Botan
 #
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -16,17 +16,17 @@
 #
 
 
-%define version_suffix 2-10
+%define version_suffix 2-13
 %define short_version 2
 Name:           Botan
-Version:        2.10.0
+Version:        2.14.0
 Release:        0
 Summary:        A C++ Crypto Library
 License:        BSD-2-Clause
 Group:          Development/Libraries/C and C++
-Url:            http://botan.randombit.net
-Source0:        http://botan.randombit.net/releases/Botan-%{version}.tgz
-Source1:        http://botan.randombit.net/releases/Botan-%{version}.tgz.asc
+URL:            http://botan.randombit.net
+Source0:        http://botan.randombit.net/releases/Botan-%{version}.tar.xz
+Source1:        http://botan.randombit.net/releases/Botan-%{version}.tar.xz.asc
 Source2:        %{name}.keyring
 Source3:        baselibs.conf
 BuildRequires:  bzip2 >= 1.0.2
@@ -89,6 +89,7 @@ Documentation of Botan package.
 %setup -q -n Botan-%{version}
 
 %build
+%define _lto_cflags %{nil}
 export RPM_OPT_FLAGS
 python3 ./configure.py \
   --prefix=%{_prefix} \

baselibs.conf

@@ -1,4 +1,4 @@
-libbotan-2-10
+libbotan-2-13
 libbotan-devel
 	requires -libbotan-<targettype> = <version>
-	requires "libbotan-2-10-<targettype> = <version>"
+	requires "libbotan-2-13-<targettype> = <version>"