From 211bd2f53b5da7d6f7d60a292b218b7adba87aecb75b73e4e60c737434cf0035 Mon Sep 17 00:00:00 2001
From: Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
Date: Tue, 7 Jul 2020 09:36:56 +0000
Subject: [PATCH] Accepting request 819163 from
 home:pmonrealgonzalez:branches:devel:libraries:c_c++

- Update to 1.8.6
  * mpi: Consider +0 and -0 the same in mpi_cmp
  * mpi: Fix flags in mpi_copy for opaque MPI
  * mpi: Fix the return value of mpi_invm_generic
  * mpi: DSA,ECDSA: Fix use of mpi_invm
    - Call mpi_invm before _gcry_dsa_modify_k
    - Call mpi_invm before _gcry_ecc_ecdsa_sign
  * mpi: Constant time mpi_inv with some conditions
    - mpi/mpi-inv.c (mpih_add_n_cond, mpih_sub_n_cond, mpih_swap_cond)
    - New: mpih_abs_cond, mpi_invm_odd
    - Rename from _gcry_mpi_invm: mpi_invm_generic
    - Use mpi_invm_odd for usual odd cases: _gcry_mpi_invm
  * mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr
  * Fix wrong code execution in Poly1305 ARM/NEON implementation
    - Set r14 to -1 at function entry: (_gcry_poly1305_armv7_neon_init_ext)
  * Set vZZ.16b register to zero before use in armv8 gcm implementation
  * random: Fix include of config.h
  * Fix declaration of internal function _gcry_mpi_get_ui: Don't use ulong
  * ecc: Fix wrong handling of shorten PK bytes
    - Zeros are already recovered: (_gcry_ecc_mont_decodepoint)
- Update libgcrypt-ecc-ecdsa-no-blinding.patch

OBS-URL: https://build.opensuse.org/request/show/819163
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libgcrypt?expand=0&rev=138
---
 libgcrypt-1.8.5.tar.bz2               |   3 ---
 libgcrypt-1.8.5.tar.bz2.sig           | Bin 310 -> 0 bytes
 libgcrypt-1.8.6.tar.bz2               |   3 +++
 libgcrypt-1.8.6.tar.bz2.sig           | Bin 0 -> 310 bytes
 libgcrypt-ecc-ecdsa-no-blinding.patch |   3 +--
 libgcrypt.changes                     |  25 +++++++++++++++++++++++++
 libgcrypt.spec                        |   6 +++---
 7 files changed, 32 insertions(+), 8 deletions(-)
 delete mode 100644 libgcrypt-1.8.5.tar.bz2
 delete mode 100644 libgcrypt-1.8.5.tar.bz2.sig
 create mode 100644 libgcrypt-1.8.6.tar.bz2
 create mode 100644 libgcrypt-1.8.6.tar.bz2.sig

diff --git a/libgcrypt-1.8.5.tar.bz2 b/libgcrypt-1.8.5.tar.bz2
deleted file mode 100644
index cbf9d79..0000000
--- a/libgcrypt-1.8.5.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3b4a2a94cb637eff5bdebbcaf46f4d95c4f25206f459809339cdada0eb577ac3
-size 2991291
diff --git a/libgcrypt-1.8.5.tar.bz2.sig b/libgcrypt-1.8.5.tar.bz2.sig
deleted file mode 100644
index dab33538f449e5291fa02c906e023705c54abfad03446ce07d39675d8e0b5517..0000000000000000000000000000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 310
zcmV-60m=S}0W$;u0SEvc79j-KX(1!T23_i24?49Zn>o@?CF8aQ0$pd%wg3tV5G0#9
z(oZGhwuf5>|7I$K0g7~Qsg`JRk<G&*(8u0+Wt_Aiwfp(NPeB<8z5BOB)91)qDo;Wq
zLj+f_SX22xBkSid-8}vYpo^U$N`Tk_cW;H@^@6nP9~g>Ae$q9iai%aKxB>6UJ0I!q
z8Rlwz;=J~YrW^Z!V`#{fczVQ$c0?;;t@HEi1t+5{8qiXJn*0MER8WE)85)%I%8^;H
zDWQl2N7J{to=crRmzM_}54G_T8NALr`orp%X5@HTfKvCbxEGPRAPg|sS2X~n0rd#h
zwcs-2;YW-uWdLWX+5j1M37v>`*RX&b{(}p}wpT44H}`w^Fe@EMi%FCVu`zd-j3%&)
IH14@Ry6~WnJ^%m!

diff --git a/libgcrypt-1.8.6.tar.bz2 b/libgcrypt-1.8.6.tar.bz2
new file mode 100644
index 0000000..2a905c7
--- /dev/null
+++ b/libgcrypt-1.8.6.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:0cba2700617b99fc33864a0c16b1fa7fdf9781d9ed3509f5d767178e5fd7b975
+size 2997781
diff --git a/libgcrypt-1.8.6.tar.bz2.sig b/libgcrypt-1.8.6.tar.bz2.sig
new file mode 100644
index 0000000000000000000000000000000000000000000000000000000000000000..35a4b4de14702c50efd746aeb99a16ef4ccd4220557dd6db2bb2aa93b294b511
GIT binary patch
literal 310
zcmV-60m=S}0W$;u0SEvc79j-KX(1!T23_i24?49Zn>o@?CF8aQ0$&3sCjbfw5G0#9
z(oZGhw%djW{S!Mdx%zjOi|fXjF>coR(%f6ukkzel2Wx>O%~$d>e~yLfK@jDw9(^Fe
z2Sk?rC_L#Sbwk;RI?<N$&^jN6%<&KH^8V@*6{84^B9wa>;;olqo9wPv5EWtLyjZg8
zua|RaFw%FSRnK_dvWdWDsfRG#^0wLqp9rrQ@e5P-4%E2EKb&1poIq+KLCdMu9rIGm
zK8!?Qx0#dE)Ku6gV&?scE8s-_nzKCtr^x+W@Gv82Ij_`gxn(Gci%feLBae+(lyfe(
z<SNQ02@hr$^jdR=GsIM9zmY+fPvc9i>7|(05Jdlgs65g1UIssjddO^bKnK-#8HfIV
IrPorwKMVVnG5`Po

literal 0
HcmV?d00001

diff --git a/libgcrypt-ecc-ecdsa-no-blinding.patch b/libgcrypt-ecc-ecdsa-no-blinding.patch
index d1abc30..ea692c4 100644
--- a/libgcrypt-ecc-ecdsa-no-blinding.patch
+++ b/libgcrypt-ecc-ecdsa-no-blinding.patch
@@ -48,7 +48,7 @@ Index: libgcrypt-1.8.5/cipher/ecc-ecdsa.c
  
    k = NULL;
    dr = mpi_alloc (0);
-@@ -128,15 +132,26 @@ _gcry_ecc_ecdsa_sign (gcry_mpi_t input,
+@@ -128,14 +132,25 @@ _gcry_ecc_ecdsa_sign (gcry_mpi_t input,
          }
        while (!mpi_cmp_ui (r, 0));
  
@@ -70,7 +70,6 @@ Index: libgcrypt-1.8.5/cipher/ecc-ecdsa.c
 +          mpi_mulm (sum, b, hash, skey->E.n);
 +          mpi_addm (sum, sum, dr, skey->E.n);   /* sum = hash + (d*r) mod n */
 +	}
-       mpi_invm (k_1, k, skey->E.n);         /* k_1 = k^(-1) mod n  */
        mpi_mulm (s, k_1, sum, skey->E.n);    /* s = k^(-1)*(hash+(d*r)) mod n */
 -      /* Undo blinding by b^-1 */
 -      mpi_mulm (s, bi, s, skey->E.n);
diff --git a/libgcrypt.changes b/libgcrypt.changes
index 93d361b..5e61dbd 100644
--- a/libgcrypt.changes
+++ b/libgcrypt.changes
@@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Tue Jul  7 09:12:27 UTC 2020 - Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
+
+- Update to 1.8.6
+  * mpi: Consider +0 and -0 the same in mpi_cmp
+  * mpi: Fix flags in mpi_copy for opaque MPI
+  * mpi: Fix the return value of mpi_invm_generic
+  * mpi: DSA,ECDSA: Fix use of mpi_invm
+    - Call mpi_invm before _gcry_dsa_modify_k
+    - Call mpi_invm before _gcry_ecc_ecdsa_sign
+  * mpi: Constant time mpi_inv with some conditions
+    - mpi/mpi-inv.c (mpih_add_n_cond, mpih_sub_n_cond, mpih_swap_cond)
+    - New: mpih_abs_cond, mpi_invm_odd
+    - Rename from _gcry_mpi_invm: mpi_invm_generic
+    - Use mpi_invm_odd for usual odd cases: _gcry_mpi_invm
+  * mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr
+  * Fix wrong code execution in Poly1305 ARM/NEON implementation
+    - Set r14 to -1 at function entry: (_gcry_poly1305_armv7_neon_init_ext)
+  * Set vZZ.16b register to zero before use in armv8 gcm implementation
+  * random: Fix include of config.h
+  * Fix declaration of internal function _gcry_mpi_get_ui: Don't use ulong
+  * ecc: Fix wrong handling of shorten PK bytes
+    - Zeros are already recovered: (_gcry_ecc_mont_decodepoint)
+- Update libgcrypt-ecc-ecdsa-no-blinding.patch
+
 -------------------------------------------------------------------
 Tue May 19 11:25:37 UTC 2020 - Pedro Monreal Gonzalez <pmonrealgonzalez@suse.com>
 
diff --git a/libgcrypt.spec b/libgcrypt.spec
index 2594d2b..3a79bc2 100644
--- a/libgcrypt.spec
+++ b/libgcrypt.spec
@@ -22,14 +22,14 @@
 %define libsoname %{name}%{libsover}
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:           libgcrypt
-Version:        1.8.5
+Version:        1.8.6
 Release:        0
 Summary:        The GNU Crypto Library
 License:        GPL-2.0-or-later AND LGPL-2.1-or-later AND GPL-3.0-or-later
 Group:          Development/Libraries/C and C++
 URL:            https://directory.fsf.org/wiki/Libgcrypt
-Source:         ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
-Source1:        ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
+Source:         https://gnupg.org/ftp/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
+Source1:        https://gnupg.org/ftp/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
 Source2:        baselibs.conf
 Source4:        %{name}.keyring
 # https://www.gnupg.org/signature_key.en.html