diff --git a/0.11.0.tar.gz b/0.11.0.tar.gz deleted file mode 100644 index 75f4dce..0000000 --- a/0.11.0.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:f77b3eff7dcd77c84a7cd4663ef9636c5c870f30fd0a5b432ad72f7b9516b199 -size 8225080 diff --git a/0.12.0.tar.gz b/0.12.0.tar.gz new file mode 100644 index 0000000..c9a93c6 --- /dev/null +++ b/0.12.0.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:df999915204eb1eba311d89e83d1edd3a514d5a07374745d6a9e5b2dd0d59c08 +size 8039758 diff --git a/baselibs.conf b/baselibs.conf index a7f6b4d..83c7a0d 100644 --- a/baselibs.conf +++ b/baselibs.conf @@ -1,2 +1,2 @@ -liboqs6 +liboqs7 liboqs-devel diff --git a/liboqs.changes b/liboqs.changes index ec9f08c..234d5fa 100644 --- a/liboqs.changes +++ b/liboqs.changes @@ -1,3 +1,31 @@ +------------------------------------------------------------------- +Tue Dec 10 07:51:25 UTC 2024 - Marcus Meissner + +- Updated to 0.12.0: + - This release updates the ML-DSA implementation to the [final + FIPS 204](https://csrc.nist.gov/pubs/fips/204/final) version. This + release still includes the NIST Round 3 version of Dilithium for + interoperability purposes, but we plan to remove Dilithium Round 3 in + a future release. + + - This will be the last release of liboqs to include Kyber (that is, + the NIST Round 3 version of Kyber, prior to its standardization by NIST + as ML-KEM in FIPS 203). Applications should switch to ML-KEM (FIPS 203). + + - The addition of ML-DSA FIPS 204 final version to liboqs has + introduced a new signature API which includes a context string + parameter. We are planning to remove the old version of the API + without a context string in the next release to streamline the + API and bring it in line with NIST specifications. Users who + have an opinion on this removal are invited to provide input at + https://github.com/open-quantum-safe/liboqs/issues/2001. + + Security issues: + + - CVE-2024-54137: Fixed bug in HQC decapsulation that leads to incorrect + shared secret value during decapsulation when called with an invalid + ciphertext. (bsc#1234292) + ------------------------------------------------------------------- Sun Sep 29 09:48:19 UTC 2024 - Marcus Meissner diff --git a/liboqs.spec b/liboqs.spec index 97b3f12..9dfd817 100644 --- a/liboqs.spec +++ b/liboqs.spec @@ -17,7 +17,7 @@ Name: liboqs -Version: 0.11.0 +Version: 0.12.0 Release: 0 Summary: C library for quantum-resistant cryptographic algorithms License: MIT @@ -35,18 +35,18 @@ BuildRequires: libopenssl-devel liboqs is a C library for quantum-resistant cryptographic algorithms. See the bundled README.md for particular limitations on intended use. -%package -n liboqs6 +%package -n liboqs7 Summary: C library for quantum-resistant cryptographic algorithms Group: System/Libraries -%description -n liboqs6 +%description -n liboqs7 liboqs is a C library for quantum-resistant cryptographic algorithms. See the bundled README.md for particular limitations on intended use. %package devel Summary: Headers for liboqs, a library for quantum-resistant cryptography Group: Development/Languages/C and C++ -Requires: liboqs6 = %{version} +Requires: liboqs7 = %{version} %description devel liboqs is a C library for quantum-resistant cryptographic algorithms. @@ -78,13 +78,13 @@ mv %{buildroot}%{_prefix}/local/* %{buildroot}%{_prefix} rmdir %{buildroot}%{_prefix}/local/ -%post -n liboqs6 -p /sbin/ldconfig -%postun -n liboqs6 -p /sbin/ldconfig +%post -n liboqs7 -p /sbin/ldconfig +%postun -n liboqs7 -p /sbin/ldconfig -%files -n liboqs6 +%files -n liboqs7 %license LICENSE.txt %{_libdir}/liboqs.so.%version -%{_libdir}/liboqs.so.6 +%{_libdir}/liboqs.so.7 %doc README.md %files devel