Hello community, here is the log from the commit of package boringssl for openSUSE:Factory checked in at 2019-10-16 09:13:31 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/boringssl (Old) and /work/SRC/openSUSE:Factory/.boringssl.new.2352 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "boringssl" Wed Oct 16 09:13:31 2019 rev:6 rq:738259 version:20190916 Changes: -------- --- /work/SRC/openSUSE:Factory/boringssl/boringssl.changes 2019-09-04 15:45:51.446701008 +0200 +++ /work/SRC/openSUSE:Factory/.boringssl.new.2352/boringssl.changes 2019-10-16 09:13:36.239727561 +0200 @@ -1,0 +2,48 @@ +Mon Oct 14 10:40:13 UTC 2019 - Martin Pluskal <[email protected]> + +- Update to version 20190916: + * Revert "Fix VS build when assembler is enabled" + * Only bypass the signature verification itself in fuzzer mode. + * Move the PQ-experiment signal to SSL_CTX. + * Name cipher suite tests in runner by IETF names. + * Align TLS 1.3 cipher suite names with OpenSSL. + * Prefix all the SIKE symbols. + * Rename SIKE's params.c. + * Add post-quantum experiment signal extension. + * Fix shim error message endings. + * Add initial draft of ACVP tool. + * Implements SIKE/p434 + * Add SipHash-2-4. + * Remove android_tools checkout + * Support key wrap with padding in CAVP. + * Add android_sdk checkout + * Move fipstools/ to util/fipstools/cavp + * Factor out TLS cipher selection to ssl_choose_tls_cipher. + * Emit empty signerInfos in PKCS#7 bundles. + * Clarify language about default SSL_CTX session ticket key behavior. + * Add an API to record use of delegated credential + * Fix runner tests with Go 1.13. + * Add a value barrier to constant-time selects. + * Avoid leaking intermediate states in point doubling special case. + * Split p224-64.c multiplication functions in three. + * Add AES-KWP + * Discuss the doubling case in windowed Booth representation. + * Update build tools. + * Set a minimum CMake version of 3.0. + * Replace addc64,subc64,mul64 in SIKE Go code with functions from math/bits + * Eliminate some superfluous conditions in SIKE Go code. + * Fix various typos. + * Fix name clash in test structures + * bcm: don't forget to cleanup HMAC_CTX. + * Handle fips_shared_support.c getting built in other builds. + * Fix various mistakes in ec_GFp_nistp_recode_scalar_bits comment. + * Fix filename in comment. + * Split EC_METHOD.mul into two operations. + * Split ec_point_mul_scalar into two operations. + * Add FIPS shared mode. + * delocate: add test for .file handling. + * delocate: translate uleb128 and sleb128 directives + * Integrate SIKE with TLS key exchange. + * Convert ecdsa_p224_key.pem to PKCS#8. + +------------------------------------------------------------------- Old: ---- boringssl-20190523.tar.xz New: ---- boringssl-20190916.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ boringssl.spec ++++++ --- /var/tmp/diff_new_pack.VUGsKv/_old 2019-10-16 09:13:37.519724262 +0200 +++ /var/tmp/diff_new_pack.VUGsKv/_new 2019-10-16 09:13:37.523724252 +0200 @@ -19,7 +19,7 @@ %define sover 1 %define libname libboringssl%{sover} Name: boringssl -Version: 20190523 +Version: 20190916 Release: 0 Summary: An SSL/TLS protocol implementation License: OpenSSL ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.VUGsKv/_old 2019-10-16 09:13:37.563724149 +0200 +++ /var/tmp/diff_new_pack.VUGsKv/_new 2019-10-16 09:13:37.567724139 +0200 @@ -1,4 +1,4 @@ <servicedata> <service name="tar_scm"> <param name="url">https://boringssl.googlesource.com/boringssl</param> - <param name="changesrevision">2e0d354690064c90ee245c715b92e2bb32492571</param></service></servicedata> \ No newline at end of file + <param name="changesrevision">6f3e034fe58ce3bca3c1c32be6d603a6206c89af</param></service></servicedata> \ No newline at end of file ++++++ add-soversion-option.patch ++++++ --- /var/tmp/diff_new_pack.VUGsKv/_old 2019-10-16 09:13:37.583724097 +0200 +++ /var/tmp/diff_new_pack.VUGsKv/_new 2019-10-16 09:13:37.587724087 +0200 @@ -18,11 +18,11 @@ ssl/CMakeLists.txt | 6 ++++++ 5 files changed, 29 insertions(+) -Index: boringssl-20190523/BUILDING.md +Index: boringssl-20190916/BUILDING.md =================================================================== ---- boringssl-20190523.orig/BUILDING.md -+++ boringssl-20190523/BUILDING.md -@@ -79,6 +79,9 @@ Windows, where functions need to be tagg +--- boringssl-20190916.orig/BUILDING.md ++++ boringssl-20190916/BUILDING.md +@@ -78,6 +78,9 @@ Windows, where functions need to be tagg shared library, define `BORINGSSL_SHARED_LIBRARY` in any code which `#include`s the BoringSSL headers. @@ -32,19 +32,19 @@ In order to serve environments where code-size is important as well as those where performance is the overriding concern, `OPENSSL_SMALL` can be defined to remove some code that is especially large. -Index: boringssl-20190523/CMakeLists.txt +Index: boringssl-20190916/CMakeLists.txt =================================================================== ---- boringssl-20190523.orig/CMakeLists.txt -+++ boringssl-20190523/CMakeLists.txt +--- boringssl-20190916.orig/CMakeLists.txt ++++ boringssl-20190916/CMakeLists.txt @@ -1,5 +1,7 @@ - cmake_minimum_required(VERSION 2.8.11) + cmake_minimum_required(VERSION 3.0) +set(boringssl_SOVERSION 1) + - # Report AppleClang separately from Clang. Their version numbers are different. - # https://cmake.org/cmake/help/v3.0/policy/CMP0025.html - if(POLICY CMP0025) -@@ -546,6 +548,12 @@ endif() + # Defer enabling C and CXX languages. + project(BoringSSL NONE) + +@@ -536,6 +538,12 @@ endif() # Add minimal googletest targets. The provided one has many side-effects, and # googletest has a very straightforward build. add_library(boringssl_gtest third_party/googletest/src/gtest-all.cc) @@ -57,11 +57,11 @@ target_include_directories(boringssl_gtest PRIVATE third_party/googletest) include_directories(third_party/googletest/include) -Index: boringssl-20190523/crypto/CMakeLists.txt +Index: boringssl-20190916/crypto/CMakeLists.txt =================================================================== ---- boringssl-20190523.orig/crypto/CMakeLists.txt -+++ boringssl-20190523/crypto/CMakeLists.txt -@@ -419,6 +419,12 @@ add_library( +--- boringssl-20190916.orig/crypto/CMakeLists.txt ++++ boringssl-20190916/crypto/CMakeLists.txt +@@ -420,6 +420,12 @@ add_library( ${CRYPTO_ARCH_SOURCES} ${CRYPTO_FIPS_OBJECTS} ) @@ -72,12 +72,12 @@ + ) +endif() - add_dependencies(crypto global_target) - -Index: boringssl-20190523/decrepit/CMakeLists.txt + if(FIPS_SHARED) + # Rewrite libcrypto.so to inject the correct module hash value. This assumes +Index: boringssl-20190916/decrepit/CMakeLists.txt =================================================================== ---- boringssl-20190523.orig/decrepit/CMakeLists.txt -+++ boringssl-20190523/decrepit/CMakeLists.txt +--- boringssl-20190916.orig/decrepit/CMakeLists.txt ++++ boringssl-20190916/decrepit/CMakeLists.txt @@ -21,6 +21,12 @@ add_library( x509/x509_decrepit.c xts/xts.c @@ -91,10 +91,10 @@ add_dependencies(decrepit global_target) -Index: boringssl-20190523/ssl/CMakeLists.txt +Index: boringssl-20190916/ssl/CMakeLists.txt =================================================================== ---- boringssl-20190523.orig/ssl/CMakeLists.txt -+++ boringssl-20190523/ssl/CMakeLists.txt +--- boringssl-20190916.orig/ssl/CMakeLists.txt ++++ boringssl-20190916/ssl/CMakeLists.txt @@ -40,6 +40,12 @@ add_library( tls13_enc.cc tls13_server.cc ++++++ boringssl-20190523.tar.xz -> boringssl-20190916.tar.xz ++++++ /work/SRC/openSUSE:Factory/boringssl/boringssl-20190523.tar.xz /work/SRC/openSUSE:Factory/.boringssl.new.2352/boringssl-20190916.tar.xz differ: char 26, line 1
