Accepting request 819163 from home:pmonrealgonzalez:branches:devel:libraries:c_c++

- Update to 1.8.6 * mpi: Consider +0 and -0 the same in mpi_cmp * mpi: Fix flags in mpi_copy for opaque MPI * mpi: Fix the return value of mpi_invm_generic * mpi: DSA,ECDSA: Fix use of mpi_invm - Call mpi_invm before _gcry_dsa_modify_k - Call mpi_invm before _gcry_ecc_ecdsa_sign * mpi: Constant time mpi_inv with some conditions - mpi/mpi-inv.c (mpih_add_n_cond, mpih_sub_n_cond, mpih_swap_cond) - New: mpih_abs_cond, mpi_invm_odd - Rename from _gcry_mpi_invm: mpi_invm_generic - Use mpi_invm_odd for usual odd cases: _gcry_mpi_invm * mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr * Fix wrong code execution in Poly1305 ARM/NEON implementation - Set r14 to -1 at function entry: (_gcry_poly1305_armv7_neon_init_ext) * Set vZZ.16b register to zero before use in armv8 gcm implementation * random: Fix include of config.h * Fix declaration of internal function _gcry_mpi_get_ui: Don't use ulong * ecc: Fix wrong handling of shorten PK bytes - Zeros are already recovered: (_gcry_ecc_mont_decodepoint) - Update libgcrypt-ecc-ecdsa-no-blinding.patch OBS-URL: https://build.opensuse.org/request/show/819163 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libgcrypt?expand=0&rev=138
2020-07-07 09:36:56 +00:00 · 2020-07-07 09:36:56 +00:00 · 211bd2f53b
commit 211bd2f53b
parent b626ac7062
7 changed files with 32 additions and 8 deletions
--- a/libgcrypt-1.8.5.tar.bz2
+++ b/libgcrypt-1.8.5.tar.bz2
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3b4a2a94cb637eff5bdebbcaf46f4d95c4f25206f459809339cdada0eb577ac3
-size 2991291
--- a/libgcrypt-1.8.5.tar.bz2.sig
+++ b/libgcrypt-1.8.5.tar.bz2.sig
--- a/libgcrypt-1.8.6.tar.bz2
+++ b/libgcrypt-1.8.6.tar.bz2
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0cba2700617b99fc33864a0c16b1fa7fdf9781d9ed3509f5d767178e5fd7b975
+size 2997781
--- a/libgcrypt-1.8.6.tar.bz2.sig
+++ b/libgcrypt-1.8.6.tar.bz2.sig
--- a/libgcrypt-ecc-ecdsa-no-blinding.patch
+++ b/libgcrypt-ecc-ecdsa-no-blinding.patch
@ -48,7 +48,7 @@ Index: libgcrypt-1.8.5/cipher/ecc-ecdsa.c
 
   k = NULL;
   dr = mpi_alloc (0);
-@@ -128,15 +132,26 @@ _gcry_ecc_ecdsa_sign (gcry_mpi_t input,
+@@ -128,14 +132,25 @@ _gcry_ecc_ecdsa_sign (gcry_mpi_t input,
         }
       while (!mpi_cmp_ui (r, 0));
 
@ -70,7 +70,6 @@ Index: libgcrypt-1.8.5/cipher/ecc-ecdsa.c
 +          mpi_mulm (sum, b, hash, skey->E.n);
 +          mpi_addm (sum, sum, dr, skey->E.n);   /* sum = hash + (d*r) mod n */
 +	}
-       mpi_invm (k_1, k, skey->E.n);         /* k_1 = k^(-1) mod n  */
       mpi_mulm (s, k_1, sum, skey->E.n);    /* s = k^(-1)*(hash+(d*r)) mod n */
 -      /* Undo blinding by b^-1 */
 -      mpi_mulm (s, bi, s, skey->E.n);
--- a/libgcrypt.changes
+++ b/libgcrypt.changes
@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Tue Jul  7 09:12:27 UTC 2020 - Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
+
+- Update to 1.8.6
+  * mpi: Consider +0 and -0 the same in mpi_cmp
+  * mpi: Fix flags in mpi_copy for opaque MPI
+  * mpi: Fix the return value of mpi_invm_generic
+  * mpi: DSA,ECDSA: Fix use of mpi_invm
+    - Call mpi_invm before _gcry_dsa_modify_k
+    - Call mpi_invm before _gcry_ecc_ecdsa_sign
+  * mpi: Constant time mpi_inv with some conditions
+    - mpi/mpi-inv.c (mpih_add_n_cond, mpih_sub_n_cond, mpih_swap_cond)
+    - New: mpih_abs_cond, mpi_invm_odd
+    - Rename from _gcry_mpi_invm: mpi_invm_generic
+    - Use mpi_invm_odd for usual odd cases: _gcry_mpi_invm
+  * mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr
+  * Fix wrong code execution in Poly1305 ARM/NEON implementation
+    - Set r14 to -1 at function entry: (_gcry_poly1305_armv7_neon_init_ext)
+  * Set vZZ.16b register to zero before use in armv8 gcm implementation
+  * random: Fix include of config.h
+  * Fix declaration of internal function _gcry_mpi_get_ui: Don't use ulong
+  * ecc: Fix wrong handling of shorten PK bytes
+    - Zeros are already recovered: (_gcry_ecc_mont_decodepoint)
+- Update libgcrypt-ecc-ecdsa-no-blinding.patch
+
 -------------------------------------------------------------------
 Tue May 19 11:25:37 UTC 2020 - Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>

--- a/libgcrypt.spec
+++ b/libgcrypt.spec
@ -22,14 +22,14 @@
 %define libsoname %{name}%{libsover}
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:           libgcrypt
-Version:        1.8.5
+Version:        1.8.6
 Release:        0
 Summary:        The GNU Crypto Library
 License:        GPL-2.0-or-later AND LGPL-2.1-or-later AND GPL-3.0-or-later
 Group:          Development/Libraries/C and C++
 URL:            https://directory.fsf.org/wiki/Libgcrypt
-Source:         ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
-Source1:        ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
+Source:         https://gnupg.org/ftp/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
+Source1:        https://gnupg.org/ftp/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
 Source2:        baselibs.conf
 Source4:        %{name}.keyring
 # https://www.gnupg.org/signature_key.en.html