Commit Graph

53 Commits

Author SHA256 Message Date
Daniel Molkentin
8befd34bbc Accepting request 689411 from home:dmolkentin:branches:devel:libraries:c_c++
- Update to Botan 2.9
  * Bump SONAME
  * CVE-2018-20187 Address a side channel during ECC key generation, which used an
    unblinded Montgomery ladder. As a result, a timing attack can reveal
    information about the high bits of the secret key.
    
  * Fix bugs in TLS which caused negotiation failures when the client used an
    unknown signature algorithm or version (GH #1711 #1709 #1708)
    
  * Fix bug affecting GCM, EAX and ChaCha20Poly1305 where if the associated data
    was set after starting a message, the new AD was not reflected in the produced
    tag. Now with these modes setting an AD after beginning a message throws an
    exception.
    
  * Use a smaller sieve which improves performance of prime generation.
    
  * Fixed a bug that caused ChaCha to produce incorrect output after encrypting 256
    GB. (GH #1728)
    
  * Add NEON and AltiVec implementations of ChaCha (GH #1719 #1728 #1729)
    
  * Optimize AVX2 ChaCha (GH #1730)
    
  * Many more operations in BigInt, ECC and RSA code paths are either fully const
    time or avoid problematic branches that could potentially be exploited in a
    side channel attack. (GH #1738 #1750 #1754 #1755 #1757 #1758 #1759 #1762 #1765
    #1770 #1773 #1774 #1779 #1780 #1794 #1795 #1796 #1797)
    
  * Several optimizations for BigInt and ECC, improving ECDSA performance by as
    much as 30%. (GH #1734 #1737 #1777 #1750 #1737 #1788)

OBS-URL: https://build.opensuse.org/request/show/689411
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=89
2019-03-29 08:09:19 +00:00
Daniel Molkentin
478b61a34f Accepting request 621856 from home:dmolkentin:branches:devel:libraries:c_c++
- Update to Botan 2.7
  * CVE-2018-12435 Avoid a side channel in ECDSA signature generation (GH
    #1604)
  * Avoid a side channel in RSA key generation due to use of a non-constant
    time gcd algorithm. (GH #1542 #1556)
  * Optimize prime generation, especially improving RSA key generation. (GH
    #1542)
  * Make Karatsuba multiplication, Montgomery field operations, Barrett
    reduction and Montgomery exponentiation const time (GH #1540 #1606 #1609
    #1610)
  * Optimizations for elliptic curve operations especially improving reductions
    and inversions modulo NIST primes (GH #1534 #1538 #1545 #1546 #1547 #1550)
  * Add 24 word wide Comba multiplication, improving 3072-bit RSA and DH by
    ~25%. (GH #1564)
  * Unroll Montgomery reduction for specific sizes (GH #1603)
  * Improved performance of signature verification in ECGDSA, ECKCDSA, SM2 and
    GOST by 10-15%.
  * XMSS optimizations (GH #1583 #1585)
  * Fix an error that meant XMSS would only sign half as many signatures as is
    allowed (GH #1582)
  * Add support for base32 encoding/decoding (GH #1541)
  * Add BMI2 optimized version of SHA-256, 40% faster on Skylake (GH #1584)
  * Allow the year to be up to 2200 in ASN.1 time objects. Previously this was
    limited to 2100. (GH #1536)
  * Add support for Scrypt password hashing (GH #1570)
  * Add support for using Scrypt for private key encryption (GH #1574)
  * Optimizations for DES/3DES, approx 50% faster when used in certain modes
    such as CBC decrypt or CTR.
  * XMSS signature verification did not check that the signature was of the
    expected length which could lead to a crash. (GH #1537)

OBS-URL: https://build.opensuse.org/request/show/621856
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=86
2018-07-10 09:45:11 +00:00
Daniel Molkentin
5ae9619815 Accepting request 596015 from home:kasimir:ToTest
- fixed to build on armv6 and armv7

OBS-URL: https://build.opensuse.org/request/show/596015
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=84
2018-04-13 08:38:59 +00:00
Daniel Molkentin
cb392e42e0 Accepting request 595519 from home:dmolkentin:branches:devel:libraries:c_c++
- Update to Botan 2.6
  * CVE-2018-9860 Fix a bug decrypting TLS CBC ciphertexts which could for a
    malformed ciphertext cause the decryptor to read and HMAC an additional 64K
    bytes of data which is not part of the record. This could cause a crash if
    the read went into unmapped memory. No information leak or out of bounds
    write occurs.
  * Add support for OAEP labels (GH #1508)
  * RSA signing is about 15% faster (GH #1523) and RSA verification is about 50% faster.
  * Add exponent blinding to RSA (GH #1523)
  * Add Cipher_Mode::create and AEAD_Mode::create (GH #1527)
  * Fix bug in TLS server introduced in 2.5 which caused connection to fail if
    the client offered any signature algorithm not known to the server (for
    example RSA/SHA-224).
  * Fix a bug in inline asm that would with GCC 7.3 cause incorrect
    computations and an infinite loop during the tests. (GH #1524 #1529)

OBS-URL: https://build.opensuse.org/request/show/595519
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=82
2018-04-11 08:07:34 +00:00
89a3b0e9cb OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=80 2018-04-05 10:02:41 +00:00
b1aadb78c2 Accepting request 593097 from home:dmolkentin:branches:devel:libraries:c_c++
- Update to Botan 2.5
  * Fix error in certificate wildcard matching (CVE-2018-9127), where a
    wildcard cert for b*.example.com would be accepted as a match for any host
    with name *b*.example.com (GH #1519)
  * Add support for RSA-PSS signatures in TLS (GH #1285)
  * Ed25519 certificates are now supported (GH #1501)
  * Many optimizations in ECC operations. ECDSA signatures are 8-10 times
    faster. ECDSA verification is about twice as fast. ECDH key agreement is
    3-4 times faster. (GH #1457 #1478)
  * Implement product scanning Montgomery reduction, which improves
    Diffie-Hellman and RSA performance by 10 to 20% on most platforms. (GH
    #1472)
  * DSA signing and verification performance has improved by 30-50%.
  * Add a new Credentials_Manager callback that specifies which CAs the server
    has indicated it trusts (GH #1395 fixing #1261)
  * Add new TLS::Callbacks methods that allow creating or removing extensions,
    as well as examining extensions sent by the peer (GH #1394 #1186)
  * Add new TLS::Callbacks methods that allow an application to negotiate use
    of custom elliptic curves. (GH #1448)
  * Add ability to create custom elliptic curves (GH #1441 #1444)
  * Add support for POWER8 AES instructions (GH #1459 #1393 #1206)
  * Fix DSA/ECDSA handling of hashes longer than the group order (GH #1502
    #986)
  * The default encoding of ECC public keys has changed from compressed to
    uncompressed point representation. This improves compatability with some
    common software packages including Golang’s standard library. (GH #1480
    #1483)
  * It is now possible to create DNs with custom components. (GH #1490 #1492)
  * It is now possible to specify the serial number of created certificates,
    instead of using the default 128-bit random integer. (GH #1489 #1491)

OBS-URL: https://build.opensuse.org/request/show/593097
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=79
2018-04-04 10:16:36 +00:00
5595db6a85 Accepting request 578283 from home:sleep_walker:branches:devel:libraries:c_c++
and make documentation package noarch

OBS-URL: https://build.opensuse.org/request/show/578283
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=77
2018-02-26 06:42:32 +00:00
Philipp Thomas
6607bcf30d Accepting request 578006 from home:sleep_walker:branches:devel:libraries:c_c++
- drop explicit package requirements
- split binary package and documentation from dynamic library package
- merge back Botan2 package to Botan with changelog history
- drop Botan patches
    aarch64-support.patch - doesn't seem to be required anymore
    Botan-fix_install_paths.patch - doesn't seem to be required
    no-cpuid-header.patch - SLE11 not target anymore
    Botan-fix_pkgconfig.patch - this seem to be wrong
    Botan-no-buildtime.patch - not needed anymore
    dont-set-mach-value.diff - doesn't apply, unclear and undocumented why it is there
    Botan-inttypes.patch - not required
    Botan-ull_constants.patch.bz2 - no reason anymore

- change group of libbotan-%{version_suffix} to 'System/Libraries' as
  requested on review

- Don't drop -fstack-clash-protection for openSUSE 42.3 - we just
  need the Update repository present.

- Rename libbotan-devel to libbotan2-devel. We can't have clashing
  packages in the archive because Botan1 and Botan2 provide the
  same -devel binary. Botan2 is also no API compatible with Botan.

- fix expected version after bump in baselibs.conf too

- fix unknown flag -fstack-clash-protection for openSUSE 42.3
- rename to Botan2
- drop Botan2-INT_MAX.patch as not needed anymore
- Bump to libbotan 2.4
  Changes and new features:

OBS-URL: https://build.opensuse.org/request/show/578006
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=75
2018-02-19 13:39:26 +00:00
Daniel Molkentin
09f378fbd5 Accepting request 538108 from home:mimi_vx:branches:devel:libraries:c_c++
- configure Botan explicitly with python3

OBS-URL: https://build.opensuse.org/request/show/538108
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=73
2017-11-01 14:42:17 +00:00
8b274fb891 Accepting request 531133 from home:dmolkentin:branches:devel:libraries:c_c++
- Update to 1.10.17
  - Address a side channel affecting modular exponentiation. An attacker
    capable of a local or cross-VM cache analysis attack may be able to recover
    bits of secret exponents as used in RSA, DH, etc. CVE-2017-14737 Workaround
    a miscompilation bug in GCC 7 on x86-32 affecting GOST-34.11 hash function.
    (GH #1192 #1148 #882, bsc#1060433)
  - Add SecureVector::data() function which returns the start of the buffer.
    This makes it slightly simpler to support both 1.10 and 2.x APIs in the
    same codebase.  When compiled by a C++11 (or later) compiler, a template
    typedef of SecureVector, secure_vector, is added. In 2.x this class is a
    std::vector with a custom allocator, so has a somewhat different interface
    than SecureVector in 1.10. But this makes it slightly simpler to support
    both 1.10 and 2.x APIs in the same codebase.
  - Fix a bug that prevented configure.py from running under Python3
  - Botan 1.10.x does not support the OpenSSL 1.1 API. Now the build will
    #error if OpenSSL 1.1 is detected. Avoid –with-openssl if compiling against
    1.1 or later. (GH #753)
  - Import patches from Debian adding basic support for
    building on aarch64, ppc64le, or1k, and mipsn32 platforms.
  * obsoletes CVE-2017-14737.patch
  * refreshes aarch64-support.patch
  * drop ppc64le-support.patch for upstream version
    (disables altivec support as per concerns by upstream)

- Fix for CVE-2017-14737: A cryptographic cache-based side channel in the RSA
  implementation allows local attacker to recover information about RSA secret
  keys.
  * add CVE-2017-14737.patch

OBS-URL: https://build.opensuse.org/request/show/531133
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=71
2017-10-04 12:14:40 +00:00
3903a8bec2 Accepting request 527707 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- Explicitly require libopenssl-1_0_0-devel (bsc#1055322)
  * Botan 1.x won't support OpenSSL 1.1
  (https://github.com/randombit/botan/issues/753)

OBS-URL: https://build.opensuse.org/request/show/527707
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=69
2017-09-25 09:11:45 +00:00
Daniel Molkentin
9ab8e8e450 Accepting request 487615 from home:dmolkentin:branches:devel:libraries:c_c++
- Add patch to build SLES11 (allows for simplified backporting, e.g. bsc#968030)
- Clean up spec file

- Update to 1.10.16 (bsc#1013209, bsc#974521, bsc#968030, bsc#968026,
    bsc#968025, bsc#965621, bsc#965620)

OBS-URL: https://build.opensuse.org/request/show/487615
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=65
2017-04-12 15:18:32 +00:00
Daniel Molkentin
e3c9096077 Accepting request 487344 from KDE:Qt
- Update to 1.10.16
    * Fix a bug in X509 DN string comparisons that could result in out of bound
      reads. This could result in information leakage, denial of service, or
      potentially incorrect certificate validation results. (CVE-2017-2801)
    * Avoid use of C++11 std::to_string in some code added in 1.10.14 (GH #747 #834)
- Changes from 1.10.15:
    * Change an unintended behavior of 2.0.0, which named the include directory
      botan-2.0. Since future release of Botan-2 should be compatible with code
      written against old versions, there does not seem to be any reason to
    * version the include directory with the minor number. (GH #830 #833)
    * Fix a bug which caused an error when building on Cygwin or other platforms
      where shared libraries are not supported. (GH #821)
    * Enable use of readdir on Cygwin, which allows the tests to run (GH #824)
    * Switch to readthedocs Sphinx theme by default (GH #822 #823)

OBS-URL: https://build.opensuse.org/request/show/487344
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=64
2017-04-12 14:18:22 +00:00
Philipp Thomas
775d045da9 - Update to 1.10.14
* Fix integer overflow during BER decoding, found by Falko Strenzke.
      This bug is not thought to be directly exploitable but upgrading ASAP
      is advised. (CVE-2016-9132)
    * Fix two cases where (in error situations) an exception would be
      thrown from a destructor, causing a call to std::terminate.
    * When RC4 is disabled in the build, also prevent it from being
      included in the OpenSSL provider. (GH #638)
  * Use constant time modular inverse algorithm to avoid possible side 
    channel attack against ECDSA (CVE-2016-2849)
  * Use constant time PKCS #1 unpadding to avoid possible side channel
    attack against RSA decryption (CVE-2015-7827)
  * Avoid a compilation problem in OpenSSL engine when ECDSA was
    disabled. Gentoo bug 542010

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=62
2016-12-28 12:34:03 +00:00
da9ea5b459 Accepting request 440097 from home:netsroth:branches:devel:libraries:c_c++
Update to 1.10.13

OBS-URL: https://build.opensuse.org/request/show/440097
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=60
2016-11-15 09:07:39 +00:00
Philipp Thomas
e6d452b4ab Accepting request 395112 from home:dfaure:branches:devel:libraries:c_c++
Fix paths in botan-config and .pc files, cleanup Qt dependency

OBS-URL: https://build.opensuse.org/request/show/395112
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=58
2016-05-13 09:33:07 +00:00
Ismail Dönmez
d9be67b223 Accepting request 357517 from home:stroeder:branches:devel:libraries:c_c++
update to 1.10.12 (somewhat a security update)

OBS-URL: https://build.opensuse.org/request/show/357517
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=56
2016-02-03 12:16:12 +00:00
Ismail Dönmez
47190eff56 Accepting request 350661 from home:pluskalm:branches:devel:libraries:c_c++
- Add gpg signature
- Cleanup spec file with spec-cleaner

OBS-URL: https://build.opensuse.org/request/show/350661
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=54
2015-12-24 13:34:07 +00:00
Michal Vyskocil
45099f3156 - Fix Source0 URL
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=52
2015-08-14 08:58:15 +00:00
Michal Vyskocil
ee861a620e Accepting request 322627 from home:netsroth:branches:devel:libraries:c_c++
- bump SONAME to libbotan-1_10-1
- Update to 1.10.10
  * SECURITY: The BER decoder would crash due to reading from offset 0
    of an empty vector if it encountered a BIT STRING which did not
    contain any data at all. As the type requires a 1 byte field this
    is not valid BER but could occur in malformed data. Found with
    afl. CVE-2015-5726
  * SECURITY: The BER decoder would allocate a fairly arbitrary amount
    of memory in a length field, even if there was no chance the read
    request would succeed. This might cause the process to run out of
    memory or invoke the OOM killer. Found with afl. CVE-2015-5727
  * Due to an ABI incompatible (though not API incompatible) change in
    this release, the version number of the shared object has been
    increased.
  * The default TLS policy no longer allows RC4.
  * Fix a signed integer overflow in Blue Midnight Wish that may cause
    incorrect computations or undefined behavior.
- Update to 1.10.9
  * Fixed EAX tag verification to run in constant time
  * The default TLS policy now disables SSLv3.
  * A crash could occur when reading from a blocking random device if
    the device initially indicated that entropy was available but a
    concurrent process drained the entropy pool before the read was
    initiated.
  * Fix decoding indefinite length BER constructs that contain a
    context sensitive tag of zero. Github pull 26 from Janusz Chorko.
  * The botan-config script previously tried to guess its prefix from
    the location of the binary. However this was error prone, and now
    the script assumes the final installation prefix matches the value
    set during the build. Github issue 29.

OBS-URL: https://build.opensuse.org/request/show/322627
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=51
2015-08-14 05:57:04 +00:00
3a6f9eff8a Accepting request 313592 from home:amazingfate
Some qt5 apps has "symbol lookup error", change the build dep to libqt5-qtbase-devel can solve it.

OBS-URL: https://build.opensuse.org/request/show/313592
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=49
2015-06-26 14:21:06 +00:00
Stephan Kulow
261d37f502 Accepting request 233310 from home:netsroth:branches:devel:libraries:c_c++
- Update to 1.10.8
  * Fix a bug in primality testing introduced in 1.8.3 which caused
    only a single random base, rather than a sequence of random bases,
    to be used in the Miller-Rabin test. This increased the
    probability that a non-prime would be accepted, for instance a
    1024 bit number would be incorrectly classed as prime with
    probability around 2^-40. Reported by Jeff Marrison.
  * The key length limit on HMAC has been raised to 512 bytes,
    allowing the use of very long passphrases with PBKDF2.
- Update to 1.10.7
  * OAEP had two bugs, one of which allowed it to be used even if the
    key was too small, and the other of which would cause a crash
    during decryption if the EME data was too large for the associated
    key.

OBS-URL: https://build.opensuse.org/request/show/233310
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=47
2014-05-10 21:01:59 +00:00
Thorsten Behrens
fd5acb04b7 Accepting request 224433 from home:oertel:branches:devel:libraries:c_c++
- change license to BSD-2-Clause as requested by legal

OBS-URL: https://build.opensuse.org/request/show/224433
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=45
2014-03-03 13:59:48 +00:00
Thorsten Behrens
89fb4566e2 Accepting request 209893 from openSUSE:Factory:PowerLE
- Add ppc64le architecture
- added patches:
  * ppc64le-support.patch

OBS-URL: https://build.opensuse.org/request/show/209893
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=43
2013-12-09 09:36:17 +00:00
Ismail Dönmez
e793bb0512 Accepting request 206590 from home:netsroth:branches:devel:libraries:c_c++
Update Botan to 1.10.6

OBS-URL: https://build.opensuse.org/request/show/206590
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=41
2013-11-12 09:09:16 +00:00
Ismail Dönmez
73ce913dff Accepting request 159650 from home:cgiboudeaux:branches:devel:libraries:c_c++
Update to 1.10.5

OBS-URL: https://build.opensuse.org/request/show/159650
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=39
2013-03-18 14:19:03 +00:00
1a851e4a23 - aarch64-support.patch: add support for aarch64
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=37
2013-03-11 16:01:35 +00:00
Stephan Kulow
20518965af Accepting request 134378 from home:posophe:branches:devel:libraries:c_c++
fix patch removing in .changes file

OBS-URL: https://build.opensuse.org/request/show/134378
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=35
2012-09-15 06:55:58 +00:00
Ismail Dönmez
f94b14708a Accepting request 131010 from openSUSE:Factory:ARM
- don't fiddle with march settings, we want the distro defaults
  (fixes build on ARM)

OBS-URL: https://build.opensuse.org/request/show/131010
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=33
2012-08-16 11:36:27 +00:00
Stephan Kulow
6be638a831 - little spec cleanup
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=30
2012-02-07 08:04:15 +00:00
0d353cf381 Resolve merge conflict in Botan.spec
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=29
2012-01-28 18:48:48 +00:00
Ismail Dönmez
d6aaff58da Accepting request 82560 from home:jengelh:bl
- Implement baselibs.conf for package
- Remove obsolete/redundant tags

OBS-URL: https://build.opensuse.org/request/show/82560
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=26
2011-09-16 21:19:04 +00:00
OBS User buildservice-autocommit
0309c58460 Updating link to change in openSUSE:Factory/Botan revision 18.0
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=c4f91e22a81ee05fad9ddcf248a2e469
2011-07-05 08:38:02 +00:00
Philipp Thomas
882de4a2a1 - Make package own its docdir.
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=24
2011-07-04 15:14:52 +00:00
0300c000ff merge
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=23
2011-06-23 13:42:03 +00:00
OBS User buildservice-autocommit
7a20d1e80a Updating link to change in openSUSE:Factory/Botan revision 16.0
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=2294fd0853537035ee2a6369cc07016d
2011-06-23 09:44:13 +00:00
Philipp Thomas
e9908b0d88 - Fix Requires for devel package.
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=19
2011-06-22 14:10:57 +00:00
Philipp Thomas
9cac7e1d7b - Devel package now is versioned so multiple devel packages may
be installed in parallel.
- Devel package renamed back to Botan-devel to keep rpmlint from
  thinking it is a library package ...

- Update to 1.10.0:
  New Features:
  * SSL (SSLv3, TLS 1.0, and TLS 1.1 are currently supported)
  * GOST 34.10-2001 signature scheme (a Russian ECC signature standard
    analogous to ECDSA)
  * The SHA-3 candidates Keccak and Blue Midnight Wish
  * Bcrypt password hashing
  * XSalsa20
  * AES key wrapping
  * Comb4P hash combinator.
  Other Changes:
  * The block cipher interface now exposes any possible parallelism
    available to the implementation, and XTS, CTR, and CBC modes have been
    changed to use them.
  * SIMD implementations of Serpent, XTEA, Noekeon, and IDEA have been
    added, as has an implementation of AES using SSSE3 which runs both in
    constant time and, on recent processors, significantly faster than the
    usual table based implementation.  There have also been numerous
    optimizations to elliptic curves.
  * The documentation, previously written in LaTeX, is now in
    reStructuredText, which is converted into HTML with Sphinx.  This new
    format is significantly easier to write, encouraging more documentation
    to be written and updated.  And, indeed, a number of features never
    before documented are now described in the manual.

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=18
2011-06-22 14:07:02 +00:00
OBS User autobuild
b06576eceb Accepting request 46980 from devel:libraries:c_c++
checked in (request 46980)

OBS-URL: https://build.opensuse.org/request/show/46980
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=17
2010-09-03 11:51:22 +00:00
Philipp Thomas
42e563e349 - Prefix last patch with Botan-.
- Enable building of the qt_mutex module. This means that from now
  on libbotan requires libQtCore.
- Fix test for thread/mutex support to also work for Qt4.
- Update to 1.8.10:
  * This release changes a number of aspects of how private keys are
    encrypted. The default encryption algorithm has changed from 3DES
    to AES-256
  * The default iteration count for PBES1 and PBES2 encryption schemes
    (which are used primarily to encrypt asymmetric keys like RSA or
    DSA) has increased from 2048 to 10000, which should make brute
    force key cracking substantially harder.
  * The first round of AES now uses a smaller set of lookup tables;
    this only reduces performance slightly but some timing and cache
    analysis attacks against AES are substantially harder when AES is
    implemented this way.
  * The class known as S2K was renamed PBKDF in 1.9, with a typedef
    for backwards compatibility. For providing an equivalent forward
    compatibility path, 1.8.10 includes a typedef for PBKDF and a new
    accessor function get_pbkdf. It also includes a new interface for
    deriving keys with a passphrase which takes both the passphrase
    and desired output length as well as the salt and iteration
    count; in many cases this call is actually significantly more
    convenient than the older API.

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=16
2010-09-02 10:07:50 +00:00
Philipp Thomas
cf3e0b143c Accepting request 46811 from home:a_jaeger:branches:build-compare-test
Copy from home:a_jaeger:branches:build-compare-test/Botan via accept of submit request 46811 revision 4.
Request was accepted with message:
OK

OBS-URL: https://build.opensuse.org/request/show/46811
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=15
2010-08-31 12:17:29 +00:00
OBS User autobuild
634972220b Accepting request 34490 from devel:libraries:c_c++
checked in (request 34490)

OBS-URL: https://build.opensuse.org/request/show/34490
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=14
2010-03-12 00:10:58 +00:00
Stephan Kulow
e93be97192 Accepting request 34467 from home:oertel:branches:devel:libraries:c_c++
Copy from home:oertel:branches:devel:libraries:c_c++/Botan via accept of submit request 34467 revision 2.
Request was accepted with message:
Reviewed ok

OBS-URL: https://build.opensuse.org/request/show/34467
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=13
2010-03-10 11:27:31 +00:00
OBS User buildservice-autocommit
125f96e9c8 Updating link to change in openSUSE:Factory/Botan revision 8.0
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=848ab62ffecda9a7decc4e52fc787477
2010-01-14 15:37:41 +00:00
OBS User autobuild
1f4ff4e68a checked in
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=11
2010-01-14 15:37:40 +00:00
Stephan Kulow
5c5576da8a Accepting request 28557 from home:jengelh:branches:devel:libraries:c_c++
Copy from home:jengelh:branches:devel:libraries:c_c++/Botan via accept of submit request 28557 revision 2.
Request was accepted with message:
Reviewed ok

OBS-URL: https://build.opensuse.org/request/show/28557
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=10
2010-01-10 17:19:04 +00:00
OBS User buildservice-autocommit
19fc59a8d4 Updating link to change in openSUSE:Factory/Botan revision 7.0
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=67878206045ab00763c37bcca10436cb
2009-12-21 22:35:45 +00:00
OBS User autobuild
c52f72db83 checked in
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=9
2009-12-21 22:35:44 +00:00
Stephan Kulow
9012284e10 - do not patch arch specific Makefiles, but simply pass WARN_FLAGS
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/Botan?expand=0&rev=8
2009-12-21 18:27:20 +00:00
OBS User autobuild
73224962fd Accepting request 27269 from devel:libraries:c_c++
Copy from devel:libraries:c_c++/Botan based on submit request 27269 from user oertel

OBS-URL: https://build.opensuse.org/request/show/27269
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/Botan?expand=0&rev=6
2009-12-20 23:37:40 +00:00