diff --git a/libnettle.changes b/libnettle.changes index 6f806b1..df7849a 100644 --- a/libnettle.changes +++ b/libnettle.changes @@ -1,3 +1,37 @@ +------------------------------------------------------------------- +Sun Nov 19 18:22:58 UTC 2017 - astieger@suse.com + +- libnettle 3.4: + * Fixed an improper use of GMP mpn_mul, breaking curve2559 and + eddsa on certain platforms + * Fixed memory leak when handling invalid signatures in + ecdsa_verify. Fix contributed by Nikos Mavrogiannopoulos. + * Reorganized the way certain data items are made available: + Nettle header files now define the symbols + nettle_hashes, nettle_ciphers, and nettle_aeads, as + preprocessor macros invoking a corresponding accessor + function. For backwards ABI compatibility, the symbols are + still present in the compiled libraries, and with the same + sizes as in nettle-3.3. + * Support for RSA-PSS signatures + * Support for the HKDF key derivation function, defined by RFC + 5869 + * Support for the Cipher Feedback Mode (CFB) + * New accessor functions: nettle_get_hashes, + nettle_get_ciphers, nettle_get_aeads, nettle_get_secp_192r1, + nettle_get_secp_224r1, nettle_get_secp_256r1, + nettle_get_secp_384r1, nettle_get_secp_521r1. + Direct access to data items is deprecated going forward. + * The base16 and base64 functions now use the type char * for + ascii data, rather than uint8_t *. This eliminates the last + pointer-signedness warnings when building Nettle + * The contents of the header file nettle/version.h is now + architecture independent, except in --enable-mini-gmp + * Prevent data sizes from leaking into the ABI +- Fixes previously carried as patches: + * Fix compilation error with --enable-fat om ARM + Drop nettle-3.3-fix-fat-arm.patch + ------------------------------------------------------------------- Mon Sep 4 08:10:25 UTC 2017 - asn@cryptomilk.org diff --git a/libnettle.spec b/libnettle.spec index 1bb04cb..1c35f62 100644 --- a/libnettle.spec +++ b/libnettle.spec @@ -19,7 +19,7 @@ %define soname 6 %define hogweed_soname 4 Name: libnettle -Version: 3.3 +Version: 3.4 Release: 0 Summary: Cryptographic Library License: LGPL-2.1+ AND GPL-2.0+ @@ -31,8 +31,6 @@ Source2: %{name}.keyring Source3: baselibs.conf # PATCH-FIX-UPSTREAM respect cflags while building Patch0: nettle-respect-cflags.patch -# PATCH-FIX-UPSTREAM Fix define to access secure_getenv() prototype -Patch1: nettle-3.3-fix-fat-arm.patch BuildRequires: gmp-devel BuildRequires: m4 BuildRequires: makeinfo @@ -96,7 +94,6 @@ operations using the nettle library. %prep %setup -q -n nettle-%{version} %patch0 -p1 -%patch1 -p1 %build %configure \ @@ -112,7 +109,6 @@ make %{?_smp_mflags} %postun -n libnettle%{soname} -p /sbin/ldconfig %post -n libhogweed%{hogweed_soname} -p /sbin/ldconfig %postun -n libhogweed%{hogweed_soname} -p /sbin/ldconfig - %post -n libnettle-devel %install_info --info-dir="%{_infodir}" "%{_infodir}"/nettle.info%{ext_info} diff --git a/nettle-3.3-fix-fat-arm.patch b/nettle-3.3-fix-fat-arm.patch deleted file mode 100644 index a8195b1..0000000 --- a/nettle-3.3-fix-fat-arm.patch +++ /dev/null @@ -1,29 +0,0 @@ -From ed25c358bab4cb57554a619e61e34b04a085d434 Mon Sep 17 00:00:00 2001 -From: Andreas Schneider -Date: Mon, 4 Sep 2017 10:01:19 +0200 -Subject: [PATCH] fat-arm: Add missing define for _GNU_SOURCE - -If configure finds secure_getenv it wants to use it. However it fails to -find the prototype because it is a GNU extension. - -Signed-off-by: Andreas Schneider ---- - fat-arm.c | 2 ++ - 1 file changed, 2 insertions(+) - -diff --git a/fat-arm.c b/fat-arm.c -index 1156499d..d52b1439 100644 ---- a/fat-arm.c -+++ b/fat-arm.c -@@ -29,6 +29,8 @@ - not, see http://www.gnu.org/licenses/. - */ - -+#define _GNU_SOURCE -+ - #if HAVE_CONFIG_H - # include "config.h" - #endif --- -2.14.1 - diff --git a/nettle-3.3.tar.gz b/nettle-3.3.tar.gz deleted file mode 100644 index 6d8a020..0000000 --- a/nettle-3.3.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:46942627d5d0ca11720fec18d81fc38f7ef837ea4197c1f630e71ce0d470b11e -size 1887927 diff --git a/nettle-3.3.tar.gz.sig b/nettle-3.3.tar.gz.sig deleted file mode 100644 index e4be35b..0000000 Binary files a/nettle-3.3.tar.gz.sig and /dev/null differ diff --git a/nettle-3.4.tar.gz b/nettle-3.4.tar.gz new file mode 100644 index 0000000..47beec3 --- /dev/null +++ b/nettle-3.4.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:ae7a42df026550b85daca8389b6a60ba6313b0567f374392e54918588a411e94 +size 1935069 diff --git a/nettle-3.4.tar.gz.sig b/nettle-3.4.tar.gz.sig new file mode 100644 index 0000000..481bf98 Binary files /dev/null and b/nettle-3.4.tar.gz.sig differ