pool/libtasn1
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

libtasn1 4.20.0 CVE-2024-12133 boo#1236878

Browse Source 
OBS-URL: https://build.opensuse.org/package/show/security:tls/libtasn1?expand=0&rev=19
This commit is contained in:
Pedro Monreal Gonzalez 2025-02-07 07:55:12 +00:00 committed by Git OBS Bridge
commit 05c6db554a
10 changed files with 828 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
.gitattributes vendored Normal file
View File

@ -0,0 +1,23 @@
## Default LFS
*.7z filter=lfs diff=lfs merge=lfs -text
*.bsp filter=lfs diff=lfs merge=lfs -text
*.bz2 filter=lfs diff=lfs merge=lfs -text
*.gem filter=lfs diff=lfs merge=lfs -text
*.gz filter=lfs diff=lfs merge=lfs -text
*.jar filter=lfs diff=lfs merge=lfs -text
*.lz filter=lfs diff=lfs merge=lfs -text
*.lzma filter=lfs diff=lfs merge=lfs -text
*.obscpio filter=lfs diff=lfs merge=lfs -text
*.oxt filter=lfs diff=lfs merge=lfs -text
*.pdf filter=lfs diff=lfs merge=lfs -text
*.png filter=lfs diff=lfs merge=lfs -text
*.rpm filter=lfs diff=lfs merge=lfs -text
*.tbz filter=lfs diff=lfs merge=lfs -text
*.tbz2 filter=lfs diff=lfs merge=lfs -text
*.tgz filter=lfs diff=lfs merge=lfs -text
*.ttf filter=lfs diff=lfs merge=lfs -text
*.txz filter=lfs diff=lfs merge=lfs -text
*.whl filter=lfs diff=lfs merge=lfs -text
*.xz filter=lfs diff=lfs merge=lfs -text
*.zip filter=lfs diff=lfs merge=lfs -text
*.zst filter=lfs diff=lfs merge=lfs -text

1
.gitignore vendored Normal file
View File

@ -0,0 +1 @@
.osc

2
baselibs.conf Normal file
View File

@ -0,0 +1,2 @@
libtasn1-6
libtasn1-devel

BIN
libtasn1-4.19.0.tar.gz (Stored with Git LFS) Normal file
View File

Binary file not shown.

7
libtasn1-4.19.0.tar.gz.sig Normal file
View File

@ -0,0 +1,7 @@
-----BEGIN PGP SIGNATURE-----
iHUEABYIAB0WIQSjzJyHC50xCrrUzy9RcisI/kdFogUCYwUS9wAKCRBRcisI/kdF
ouWTAP95jlnitHZ2gCNZgtei9tEjdUVVL8CsFbQnvogFVUvieQD/XzHxaRGluLTh
DuHAJzrPScJUtPGImSUsoqcgozUv4w8=
=zX4n
-----END PGP SIGNATURE-----

3
libtasn1-4.20.0.tar.gz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:92e0e3bd4c02d4aeee76036b2ddd83f0c732ba4cda5cb71d583272b23587a76c
size 1783873

22
libtasn1-4.20.0.tar.gz.sig Normal file
View File

@ -0,0 +1,22 @@
-----BEGIN PGP SIGNATURE-----
iQNTBAAWCgL7FiEEo8ychwudMQq61M8vUXIrCP5HRaIFAmeksWHCHCYAmDMEXJLO
tBYJKwYBBAHaRw8BAQdACIcrZIvhrxDBkK9fV+QlTmXxo2naObDuGtw58YaxlOu0
JVNpbW9uIEpvc2Vmc3NvbiA8c2ltb25Aam9zZWZzc29uLm9yZz6IlgQTFggAPgIb
AwULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgBYhBLHSvRN1vst4TPT4xNc89jjFPAa+
BQJl/YgIBQkLehFUAAoJENc89jjFPAa+CboA+wUa06RD5e5VTCxvSWtPS75Wq2qB
eYGZnf0jvUMxa2n4AP4xkUeAPPnNuMsTm2fsFCDIGaEM2Yn6Vb2huzzT1Fw/BLgz
BFySz4EWCSsGAQQB2kcPAQEHQOxTCIOaeXAxI2hIX4HK9bQTpNVei708oNr1Klm8
qCGKiPUEGBYIACYCGwIWIQSx0r0Tdb7LeEz0+MTXPPY4xTwGvgUCZf2IKwUJC3oQ
qgCBdiAEGRYIAB0WIQSjzJyHC50xCrrUzy9RcisI/kdFogUCXJLPgQAKCRBRcisI
/kdFoqdMAQCgH45aseZgIrwKOvUOA9QfsmeE8GZHYNuFHmM9FEQS6AD6A4x5aYvo
Y6lo98pgtw2HPDhmcCXFItjXCrV4A0GmJA4JENc89jjFPAa+GcYA/26YQY05bLtn
XiIjTiAzrGQrRXxTHPA8Av7TDFHvIetWAP9sHSoU8OfTwmTiEnGwLlsV7QJclZg3
YNz/Ypcp9TqQBrg4BFySz2oSCisGAQQBl1UBBQEBB0AxlRumDW6nZY7A+VCfek9V
pEx6PJmdJyYPt3lNHMd6HAMBCAeIfgQYFggAJgIbDBYhBLHSvRN1vst4TPT4xNc8
9jjFPAa+BQJl/YgwBQkLehDGAAoJENc89jjFPAa+phoA/jrDqIrl/55vUMBhIQv+
TP635d2iCTEnyFmbUcP9+gh6APoDsXalVd2cOGxQtSC+TF8PkZMn1TLkJKAjVxr+
xx40AgAKCRBRcisI/kdFok6DAP9PaJmARJKk05qvNQdGbfn2LGqiUQpifZtSktP/
LSl/1AD/Sh1QtFKGUtS1+fMRDMwProNEGpwf1TvVuaol1TC9IQk=
=Ghwk
-----END PGP SIGNATURE-----

536
libtasn1.changes Normal file
View File

@ -0,0 +1,536 @@
-------------------------------------------------------------------
Thu Feb 6 20:31:51 UTC 2025 - Andreas Stieger <andreas.stieger@gmx.de>
- libtasn1 4.20.0:
* Fix CVE-2024-12133: Potential DoS in handling of numerous
SEQUENCE OF or SET OF elements (boo#1236878)
* The release tarball is now reproducible
* Update gnulib files and various build/maintenance fixes.
- update upstream signing key
-------------------------------------------------------------------
Wed Aug 24 18:58:07 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
- libtasn1 4.19.0:
* Clarify libtasn1.map license
* Fix ETYPE_OK out of bounds read
* Update gnulib files and various maintenance fixes
-------------------------------------------------------------------
Thu Nov 11 19:36:54 UTC 2021 - Pedro Monreal <pmonreal@suse.com>
- Update libtasn1.keyring with upstream keys
-------------------------------------------------------------------
Thu Nov 11 13:40:52 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de>
- libtasn1 4.18.0:
* Improve GTK-DOC manual
* Improve --help and --version for tools with gnulib
* Update gnulib files and various maintenance fixes
- drop libtasn1-rpmlintrc due to no longer being required on TW
-------------------------------------------------------------------
Mon May 17 18:08:25 UTC 2021 - Andreas Stieger <andreas.stieger@gmx.de>
- libtasn1 4.17.0:
* Print deprecation messages for deprecated macros
* Fix some clang issues due to illegal pointers
* Restore handling of SIZE nodes
* Fix memory leak caught by oss-fuzz
* Gtk-doc fixes
* Fix bugs unveiled by Static Analysis
* Update gnulib files and many build fixes
- move tools to -tools packages and clarify licenses
- update upstream signing keyring
- remove deprecated texinfo packaging macros
-------------------------------------------------------------------
Sun Feb 2 23:00:48 UTC 2020 - Andreas Stieger <andreas.stieger@gmx.de>
- libtasn1 4.16.0:
* asn1_decode_simple_ber: added support for constructed definite
octet strings
* asn1_get_object_id_der: enhance the range of decoded OIDs
* asn1_object_id_der: New function
-------------------------------------------------------------------
Fri Nov 22 17:08:35 UTC 2019 - Andreas Stieger <andreas.stieger@gmx.de>
- libtasn1 4.15.0:
* The generated tree no longer contains ASN.1 built-in types
even if they are explicitly defined in the description.
Previously a warning was printed when these types were seen,
now they are ignored.
* Several fixes in ASN.1 definition parser, preventing several
crashes and leaks in the tools due to improper ASN.1.
* Switched to semantic versioning
-------------------------------------------------------------------
Wed Jul 31 20:15:25 UTC 2019 - Andreas Stieger <andreas.stieger@gmx.de>
- libtasn1 4.14:
* New #defines for version checking
* other developer visible changes
- drop libtasn1-object-id-recursion.patch, incorporating the
upstream fix for boo#1105435 CVE-2018-1000654
-------------------------------------------------------------------
Mon Apr 29 16:13:16 UTC 2019 - mgorse@suse.com
- Add libtasn1-object-id-recursion.patch: limit recursion in
_asn1_expand_object_id (boo#1105435 CVE-2018-1000654
(https://gitlab.com/gnutls/libtasn1/merge_requests/8)
-------------------------------------------------------------------
Thu Feb 22 15:10:38 UTC 2018 - fvogt@suse.com
- Use %license (boo#1082318)
-------------------------------------------------------------------
Fri Jan 19 16:03:20 UTC 2018 - kbabioch@suse.com
- update to 4.13
* On indefinite string decoding, set a maximum level of allowed
recursions (3) to protect the BER decoder from a stack exhaustion.
(CVE-2018-6003 boo#1076832)
-------------------------------------------------------------------
Sun Jun 4 19:41:21 UTC 2017 - astieger@suse.com
- libtasn1 4.12:
* Corrected so-name version
- includes changes in 4.11:
* Introduce the ASN1_TIME_ENCODING_ERROR error code to indicate
an invalid encoding in the DER time fields.
* Introduced flag ASN1_DECODE_FLAG_ALLOW_INCORRECT_TIME. This flag
allows decoding errors in time fields even when in strict DER mode.
That is introduced in order to allow toleration of invalid times in
X.509 certificates (which are common) even though strict DER adherence
is enforced in other fields.
* Added safety check in asn1_find_node(). That prevents a crash
when a very long variable name is provided by the developer.
Note that this to be exploited requires controlling the ASN.1
definitions used by the developer, i.e., the 'name' parameter of
asn1_write_value() or asn1_read_value(). The library is
not designed to protect against malicious manipulation of the
developer assigned variable names
- includes changes from 4.10:
* Updated gnulib
* Removed -Werror from default compiler flags
(drop patch 0001-configure-don-t-add-Werror-to-build-flags.patch)
* Fixed undefined behavior when negating integers in _asn1_ltostr().
* Pass the correct length to _asn1_get_indefinite_length_string in
asn1_get_length_ber. This addresses reading 1-byte past the end
of data.
-------------------------------------------------------------------
Wed Aug 10 18:57:51 UTC 2016 - astieger@suse.com
- update to 4.9:
* Fix OID encoding of OIDs which have elements which exceed 2^32
- Do not treat i586 warning as error, adding upstream
0001-configure-don-t-add-Werror-to-build-flags.patch
- fate#322523
-------------------------------------------------------------------
Mon Apr 11 14:56:31 UTC 2016 - mpluskal@suse.com
- Update to 4.8
* Fixes to avoid reliance on C undefined behavior.
* Fixes to avoid an infinite recursion when decoding without the
ASN1_DECODE_FLAG_STRICT_DER flag. Reported by Pascal Cuoq.
(CVE-2016-4008 / bsc#982779)
* Combined all the BER octet string decoding functions to a
single one based on asn1_decode_simple_ber().
-------------------------------------------------------------------
Wed Sep 16 23:49:25 UTC 2015 - zaitor@opensuse.org
- Update to version 4.7:
* Fixed regression introduced in the decoding of multi-byte tags
fix.
-------------------------------------------------------------------
Mon Sep 7 20:10:23 UTC 2015 - astieger@suse.com
- libtasn1 4.6:
* Allow decoding OCTET STRINGs with multi-byte tags.
* Add asn1_get_object_id_der
-------------------------------------------------------------------
Fri May 1 19:33:32 UTC 2015 - astieger@suse.com
- update libtasn1 4.5:
* Corrected an invalid memory access in octet string decoding.
CVE-2015-3622 [boo#929414]
-------------------------------------------------------------------
Sun Mar 29 17:27:11 UTC 2015 - astieger@suse.com
- update to libtasn1 4.4 [bsc#924828]:
* Corrected a two-byte stack overflow in asn1_der_decoding.
CVE-2015-2806
-------------------------------------------------------------------
Sun Mar 22 10:41:46 UTC 2015 - mpluskal@suse.com
- Update project url
- Cleanup spec-file with spec-cleaner
- Add info preun and post dependencies
- Update to 4.3
* Added asn1_decode_simple_ber()
* Only assign a value if the previous node has one (bsc#961491).
-------------------------------------------------------------------
Sat Feb 14 08:12:10 UTC 2015 - jengelh@inai.de
- Put C API documentation into -devel package.
Use modern %make_install. Description fix.
-------------------------------------------------------------------
Wed Oct 8 18:23:43 UTC 2014 - tabraham@suse.com
- updated to libtasn1 4.2:
* Noteworthy changes in release 4.2 (released 2014-09-15) [stable]
- Added sanity checks in the decoding of time when
ASN1_DECODE_FLAG_STRICT_DER is used.
- Fixes in the decoding of OCTET STRING when close to the end
of the structure.
* Noteworthy changes in release 4.1 (released 2014-08-23) [stable]
- Corrected indefinite tag check in ANY constructions. That allows
the decoding of BER-encoded structures that contain indefinite
encoding within an ANY element.
- Added DER decoding flag ASN1_DECODE_FLAG_STRICT_DER. Over the
years BER functionality was added to the decoder and this flag
provides the way to disable it.
- API and ABI changes since last version:
ASN1_DECODE_FLAG_STRICT_DER: New definition
* Noteworthy changes in release 4.0 (released 2014-06-26) [stable]
- Optimized asn1_der_decoding_startEnd(). It no longer requires the
additional decoding step.
- asn1_read_value() understands the ?CURRENT keyword, which can be used
to indicate the current element of a sequence, when the provided node
is a sequence element.
- Several optimizations in DER decoding of structures with sequences
containing many elements.
- asn1_der_decoding2() is introduced and allows flags to be passed on
the decoding process. Currently only ASN1_DECODE_FLAG_ALLOW_PADDING is
defined and that allows decoding DER structures that contain arbitrary
data past their end. Contributed by Karel Slany.
- API and ABI changes since last version:
ASN1_DECODE_FLAG_ALLOW_PADDING: New definition
asn1_dup_node: New function
asn1_der_decoding2: New function
asn1_der_decoding_element: It is now an alias to asn1_der_decoding
-------------------------------------------------------------------
Fri Jul 25 16:28:02 UTC 2014 - mgorse@suse.com
- updated to libtasn1 3.7:
* Noteworthy changes in release 3.7 (released 2014-06-26) [stable]
- Fixes in length calculation in _asn1_extract_der_octet().
- Fixes in DER decoding.
- Fixes: CVE-2014-3468 CVE-2014-3467 CVE-2014-3469 bnc#880738
bnc#880737 bnc#880735
-------------------------------------------------------------------
Tue Jun 3 09:20:18 UTC 2014 - meissner@suse.com
- libtasn1.keyring: added Nikos Mavrogiannopoulos <nmav@gnutls.org>
key, who did this release (and shares responsibility with Simon).
- updated to libtasn1 3.6
* Noteworthy changes in release 3.6 (released 2014-05-25) [stable]
- Corrected an off-by-one error in ASN.1 DER tag decoding. (CVE-2014-3468/bnc#880735)
- Several improvements and new safety checks on DER decoding;
issues found using Codenomicon TLS test suite. (CVE-2014-3469/bnc#880738,
CVE-2014-3467/bnc#880737)
- Marked asn1_der_decoding_element() as deprecated. Use
asn1_der_decoding() instead.
* Noteworthy changes in release 3.5 (released 2014-05-01) [stable]
- Correctly handle decoding of recursive CHOICE options.
- Allow deleting elements of SET OF. Patch by Jean-Louis Thekekara.
- Several small bug fixes found by coverity.
- Code improvements contributed by Kurt Roeckx.
* Noteworthy changes in release 3.4 (released 2013-11-25) [stable]
- Added asn1_delete_structure2() which allows zeroizing the contents
of all values in the structure prior to deinitialization.
- The parser accepts negative numbers in an INTEGER range (but
still does no enforce them).
-------------------------------------------------------------------
Tue Jun 25 12:01:36 UTC 2013 - coolo@suse.com
- remove gpg source checking again to avoid this cycle:
libtasn1 -> libssh2_org -> openssh -> krb5 -> python-Jinja2 -> vim -> libtasn1
-------------------------------------------------------------------
Thu Jun 20 12:36:22 UTC 2013 - meissner@suse.com
- updated to libtasn1 3.3
* Noteworthy changes in release 3.3 (released 2013-03-23) [stable]
- More precise overflow checks using gnulib's intprops module.
- Updates to compile in Android systems.
* Noteworthy changes in release 3.2 (released 2012-11-30) [stable]
- Corrected buffer overflow in the error reporting of the parser (reported
by Andreas Metzler).
* Noteworthy changes in release 3.1 (released 2012-11-24) [stable]
- Completed rename of types:
ASN1_ARRAY_TYPE -> asn1_static_node (was asn1_static_node_t)
- Added new types: VisibleString, NumericString, IA5String, TeletexString,
PrintableString, UniversalString, BMPString, UTF8String. When re-defined
a warning is being print instead of failing.
- Parser outputs more detailed syntax error messages.
- Added asn1_decode_simple_der() and asn1_encode_simple_der().
- Added asn1_read_value_type() to return value and type.
- Introduced ASN1_ETYPE_UTC_TIME and ASN1_ETYPE_GENERALIZED_TIME
- added gpg source checking
-------------------------------------------------------------------
Sat Nov 17 22:17:09 UTC 2012 - andreas.stieger@gmx.de
- update to libtasn1 3.0, SONAME libtasn1.so.6
- Added tool in tests/ to benchmark X.509 structure decoding.
- Added asn1_read_node_value() to obtain a node's value.
- Optimizations in internal tree allocation.
- Optimizations in tree search.
- libtasn1.h no longer exports internal structures.
- Types were renamed for consistency:
ASN1_DATA_NODE -> asn1_data_node_st
ASN1_ARRAY_TYPE -> asn1_static_node
ASN1_TYPE -> asn1_node
ASN1_TYPE_EMPTY -> NULL
static_struct_asn -> asn1_static_node_st
node_asn_struct -> asn1_node_st
node_asn -> asn1_node_st
(the old types are still available as definitions)
- fix W: devel-package-with-non-devel-group
-------------------------------------------------------------------
Fri Sep 28 09:23:57 UTC 2012 - meissner@suse.com
- updated to version 2.14
This release adds asn1_read_node_value() to obtain a node's value. This
is to deprecate the export of the node_asn internal structure for the
upcoming 3.x release. The ASN1_DATA_NODE type and the ASN1_ETYPE_*
constants were added to support the new function.
- removed upstreamed libtasn1-stdio.h patch
- make check
-------------------------------------------------------------------
Sun Jul 22 06:25:15 UTC 2012 - aj@suse.de
- Fix build with missing gets declaration (glibc 2.16)
-------------------------------------------------------------------
Fri Jun 29 14:45:07 UTC 2012 - cfarrell@suse.com
- license update: LGPL-2.1+ and GPL-3.0
Tools are GPL-3.0
-------------------------------------------------------------------
Sat Apr 14 17:24:30 UTC 2012 - tabraham@novell.com
- update to version 2.12
+ Cleanup license headers.
+ build: Update gnulib files.
+ Corrected DER decoding issue (reported by Matthew Hall).
Added self check to detect the problem, see tests/Test_overflow.c.
This problem can lead to at least remotely triggered crashes, see
further analysis on the libtasn1 mailing list.
-------------------------------------------------------------------
Sun Jan 8 16:37:35 UTC 2012 - tabraham@novell.com
- update to version 2.11
+ qa: now builds without compiler warnings with Solaris CC
+ qa: added clang analysis. fixed cyclomatic complexity output
+ tests: added self-test of bit string functions
+ build: added windows/libtasn14win.mk rules to produce Windows
binaries
+ build: don't hard code path to perl in doc/gdoc
+ various minor fixes
- changes in version 2.10
+ lib: small optimization, possibly working around gcc/valgrind issue
+ build: update gnulib files
+ asn1Coding: actually implement the -c parameter
+ asn1Decoding: the -c parameter serves no purpose. remove it.
+ doc: add examples to asn1Coding and ans1Decoding description
- changes in version 2.9
+ tests: link to gnulib to avoid build error related to 'rpl_ftello'
on Solaris. Reported by Dagobert Michelsen
+ doc: fix bug reporting address to point at help-libtasn1@gnu.org
+ doc: fix returns: documentation in Texinfo. Reported by Jeffery
Walton
+ build : update gnulib files
- changes in version 2.8
+ update gnulib files
+ use libtool 2.2.10 to ease MinGW64 builds
- changes in version 2.7
+ Doc: build PDF manual using GTK-DOC
+ Doc: fix of asn1_check_version, documentation was missing from
last release
+ Build: avoid warnings about ignored visibility attributes on
Windows
- changes in version 2.6
+ Fix build failure on platforms without support for GNU_LD
version scripts
+ libtasn1: simplified implementation of asn1_check_version
+ tests: improved self-checks
+ update gnulib files, fix many syntax-check nits, indent code,
fix license templates
- changes in version 2.5
+ doc: improve GTK-DOC comments
+ misc: updated gnulib files
- changes in version 2.4
+ Doc fixes
+ updated gnulib files
+ clean up copyright notices
- changes in version 2.3
+ libtasn1 is now an official GNU project
+ solve build problem on Tru64 related to TRUE/FALSE
+ More careful decoding of OIDs
+ Fixed warning in ANS1.y
+ Use "Software libraries" info dircategory
+ Drop GPL/LGPL copies from the manual (not needed there)
+ New configure parameters to set packagin specific information
The parameters are --with-packager, --with-packager-version,
and --with-packager-bug-reports. See
<http://article.gmane.org/gmane.comp.lib.gnulib.bugs/17791> for
more details.
-------------------------------------------------------------------
Sun Oct 31 12:37:02 UTC 2010 - jengelh@medozas.de
- Use %_smp_mflags
-------------------------------------------------------------------
Sat Apr 24 11:38:22 UTC 2010 - coolo@novell.com
- buildrequire pkg-config to fix provides
-------------------------------------------------------------------
Thu Dec 17 22:48:05 CET 2009 - jengelh@medozas.de
- Add baselibs.conf as a source
-------------------------------------------------------------------
Thu May 21 16:03:24 CEST 2009 - vuntz@novell.com
- Update to version 2.2:
+ Change how the ASN1_API decorator is used in libtasn1.h, for
GTK-DOC.
+ Changed license of libtasn1.pc from GPLv3+ to LGPLv2.1+.
+ Building with many warning flags now requires
--enable-gcc-warnings.
+ Some warnings fixed.
- Fix license of library packages: it's LGPL not GPL.
-------------------------------------------------------------------
Wed May 6 02:11:26 CEST 2009 - vuntz@novell.com
- Update to version 2.1:
+ Fix compilation failure on platforms that can't generate empty
archives, e.g., Mac OS X.
- Changes from version 2.0:
+ Optimized tree generation.
+ ASN1 parser code re-generated using Bison 2.4.1.
+ Build with more warning flags. Many compiler warnings fixed.
+ Compiled with -fvisibility=hidden by default if supported.
See http://gcc.gnu.org/wiki/Visibility
+ The libtasn1-config tool has been removed. For application
developers, please stop using libtasn1-config for finding
libtasn1, use proper autoconf checks or pkg-config instead.
- Remove AutoReqProv: it's default now.
- Pass --disable-static to configure.
-------------------------------------------------------------------
Wed Feb 11 20:46:06 CET 2009 - ro@suse.de
- added baselibs.conf (needed by gnome-keyring-32bit)
-------------------------------------------------------------------
Sun Feb 1 18:05:12 EST 2009 - mboman@suse.de
- Update to version 1.8:
+ Fix crlf self-test under Mingw+Wine.
+ Fix build problems on platforms that lack stdint.h.
-------------------------------------------------------------------
Sat Dec 20 11:34:23 EST 2008 - mboman@suse.de
- Update to version 1.7:
+ Add libtasn1-config for compatibility.
Please stop use it as it will disappear in v2.0!
Use standard AC_CHECK_FUNCS autoconf tests or pkg-config instead.
+ Read PKCS#12 blob as binary file, fixes self-tests under Mingw.
+ Fix use of __attribute__ ((deprecated)) to work on non-GCC
+ Fixed namespace violation for MAX_NAME_SIZE and MAX_ERROR_DESCRIPTION_SIZE.
The new names are ASN1_MAX_NAME_SIZE and ASN1_MAX_ERROR_DESCRIPTION_SIZE.
+ Fixed namespace violation for libtasn1_perror and libtasn1_strerror.
The new names are asn1_perror and asn1_strerror.
+ Fix namespace violation for LIBASN1_VERSION.
The new name is ASN1_VERSION.
+ Decoder can now decode BER encoded octet strings.
+ doc: Change license on the manual to GFDLv1.3+.
+ doc: Sync gdoc script with GnuTLS, changes license on man-pages to GAP.
+ doc: Improve gtk-doc manual.
+ Assumes system has strdup and string.h.
+ Remove libtasn1-config and libtasn1.m4,
use standard AC_CHECK_FUNCS autoconf tests or pkg-config instead.
+ Change detection of when to use a linker version script,
use --enable-ld-version-script or --disable-ld-version-script to
override auto-detection logic.
+ API and ABI changes since last version:
asn1_get_length_ber: New function.
ASN1_VERSION: New symbol, replaces LIBTASN1_VERSION.
asn1_strerror: New function, replaces libtasn1_strerror.
asn1_perror: New function, replaces libtasn1_perror.
libtasn1_strerror: Marked as deprecated.
libtasn1_perror: Marked as deprecated.
LIBTASN1_VERSION: Deprecated.
-------------------------------------------------------------------
Fri Sep 12 07:30:10 CDT 2008 - maw@suse.de
- Update to version 1.5:
+ Update gnulib files
+ Handle 'INTEGER { ... } (a..b)' regression
Revert parts of earlier fix. asn1Parser can now again parse
src/pkix.asn1.
The ASN1.c file was generated using Bison 2.3.
+ Move examples from src/ to new directory examples/.
+ Duplicate copy of divergated pkix.asn removed.
+ Merge unnecessary lib/defines.h into lib/int.h.
+ Misc. fixes.
-------------------------------------------------------------------
Wed Jan 2 20:37:16 CET 2008 - maw@suse.de
- Add a %clean section.
-------------------------------------------------------------------
Thu Dec 20 13:21:18 CST 2007 - maw@suse.de
- Properly package info files
- Package several documentation files.
-------------------------------------------------------------------
Thu Dec 20 12:42:17 CST 2007 - maw@suse.de
- New package, version 1.2.

128
libtasn1.keyring Normal file
View File

@ -0,0 +1,128 @@
pub ed25519 2019-03-20 [SC] [expires: 2025-04-26]
B1D2 BD13 75BE CB78 4CF4 F8C4 D73C F638 C53C 06BE
uid [ultimate] Simon Josefsson <simon@josefsson.org>
sub ed25519 2019-03-20 [A] [expires: 2025-04-26]
sub ed25519 2019-03-20 [S] [expires: 2025-04-26]
sub cv25519 2019-03-20 [E] [expires: 2025-04-26]
-----BEGIN PGP PUBLIC KEY BLOCK-----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=L0YA
-----END PGP PUBLIC KEY BLOCK-----

103
libtasn1.spec Normal file
View File

@ -0,0 +1,103 @@
#
# spec file for package libtasn1
#
# Copyright (c) 2022 SUSE LLC
# Copyright (c) 2025 Andreas Stieger <Andreas.Stieger@gmx.de>
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
%define somajor 6
Name: libtasn1
Version: 4.20.0
Release: 0
Summary: ASN.1 parsing library
License: GFDL-1.3-or-later AND GPL-3.0-or-later AND LGPL-2.1-or-later
Group: Productivity/Networking/Security
URL: https://www.gnu.org/software/libtasn1/
Source0: http://ftp.gnu.org/gnu/libtasn1/%{name}-%{version}.tar.gz
Source1: http://ftp.gnu.org/gnu/libtasn1/%{name}-%{version}.tar.gz.sig
Source2: https://josefsson.org/key-20190320.txt#/%{name}.keyring
Source99: baselibs.conf
BuildRequires: pkgconfig
%description
This is the ASN.1 library used by GNUTLS. Abstract Syntax Notation One (ASN.1)
is a standardized data description and serialization language.
%package -n libtasn1-%{somajor}
Summary: ASN.1 parsing library
License: LGPL-2.1-or-later
Group: System/Libraries
%description -n libtasn1-%{somajor}
This is the ASN.1 library used by GNUTLS. Abstract Syntax Notation One (ASN.1)
is a standardized data description and serialization language.
%package tools
Summary: ASN.1 parsing tools
License: GFDL-1.3-or-later AND GPL-3.0-or-later
Group: Productivity/Networking/Diagnostic
Obsoletes: libtasn1 <= 4.16.0
Provides: libtasn1 = %{version}
%description tools
This package contains various utilities for parting ASN.1 data.
%package devel
Summary: Development files for the ASN.1 parsing library
License: GFDL-1.3-or-later AND LGPL-2.1-or-later
Group: Development/Libraries/C and C++
Requires: libtasn1-%{somajor} = %{version}
%description devel
This is the ASN.1 library used by GNUTLS. Abstract Syntax Notation One (ASN.1)
is a standardized data description and serialization language.
This package contains files required to build against libtasn1.
%prep
%autosetup -p1
%build
%configure --disable-static
%make_build
%install
%make_install
find %{buildroot} -type f -name "*.la" -delete -print
%check
%make_build check
%ldconfig_scriptlets -n libtasn1-%{somajor}
%files -n libtasn1-%{somajor}
%license COPYING.LESSERv2
%{_libdir}/*.so.%{somajor}*
%files tools
%license COPYING
%{_bindir}/*
%{_mandir}/man1/*.1%{?ext_man}
%{_infodir}/*.info%{?ext_info}
%files devel
%license COPYING.LESSERv2
%doc NEWS README THANKS
%{_includedir}/*.h
%{_libdir}/*.so
%{_libdir}/pkgconfig/libtasn1.pc
%{_mandir}/man3/*.3%{?ext_man}
%changelog