commit libgcrypt for openSUSE:Factory

2020-10-29 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2020-10-29 09:21:24

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new.3463 (New)


Package is "libgcrypt"

Thu Oct 29 09:21:24 2020 rev:83 rq:843816 version:1.8.7

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2020-07-15 
11:11:20.988780152 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new.3463/libgcrypt.changes
2020-10-29 09:21:26.554638072 +0100
@@ -1,0 +2,8 @@
+Sat Oct 24 10:25:13 UTC 2020 - Andreas Stieger 
+
+- libgcrypt 1.8.7:
+  * Support opaque MPI with gcry_mpi_print
+  * Fix extra entropy collection via clock_gettime, a fallback code
+path for legacy hardware
+
+---

Old:

  libgcrypt-1.8.6.tar.bz2
  libgcrypt-1.8.6.tar.bz2.sig

New:

  libgcrypt-1.8.7.tar.bz2
  libgcrypt-1.8.7.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.m6g3yM/_old  2020-10-29 09:21:27.742639209 +0100
+++ /var/tmp/diff_new_pack.m6g3yM/_new  2020-10-29 09:21:27.746639213 +0100
@@ -22,7 +22,7 @@
 %define libsoname %{name}%{libsover}
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.8.6
+Version:1.8.7
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0-or-later AND LGPL-2.1-or-later AND GPL-3.0-or-later
@@ -173,7 +173,6 @@
 
 %build
 echo building with build_hmac256 set to %{build_hmac256}
-%{?suse_update_config}
 autoreconf -fi
 date=$(date -u +%{Y}-%{m}-%{dT}%{H}:%{M}+ -r %{SOURCE99})
 sed -e "s,BUILD_TIMESTAMP=.*,BUILD_TIMESTAMP=$date," -i configure
@@ -187,7 +186,7 @@
 %endif
--enable-hmac-binary-check \
--enable-random=linux
-make %{?_smp_mflags}
+%make_build
 
 %if 0%{?build_hmac256}
 # this is a hack that re-defines the __os_install_post macro
@@ -205,7 +204,7 @@
 
 %check
 fipshmac src/.libs/libgcrypt.so.??
-make %{?_smp_mflags} check
+%make_build check
 
 %install
 %make_install

++ libgcrypt-1.8.6.tar.bz2 -> libgcrypt-1.8.7.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/libgcrypt-1.8.6/ChangeLog 
new/libgcrypt-1.8.7/ChangeLog
--- old/libgcrypt-1.8.6/ChangeLog   2020-07-06 15:24:50.0 +0200
+++ new/libgcrypt-1.8.7/ChangeLog   2020-10-23 19:27:40.0 +0200
@@ -1,5 +1,40 @@
+2020-10-23  Werner Koch  
+
+   Release 1.8.7.
+   + commit 04c156a48b35b56cf201091ddd43883957a042e5
+
+
+   random: Allow for a Unicode random seed file on Windows.
+   + commit 6b79963f3f09c82b684293dbcd1951d65101fedd
+   * random/random-csprng.c (utf8_to_wchar) [W32]: New.
+   (any8bitchar) [W32]: New.
+   (my_open): New.  Replace all calls to open with this.
+
+2020-08-26  Werner Koch  
+
+   build: Allow customization of the signing key.
+   + commit 9c42c068c37411bfda9851b1bd60e927cb81ec7c
+   * Makefile.am (sign-release): Read variabales from user configuration.
+
+2020-08-04  Jussi Kivilinna  
+
+   random/jitterentropy: fix USE_JENT == JENT_USES_GETTIME code path.
+   + commit 01b441308838e5b9b12022b40754855bda8670bf
+   * random/jitterentropy-base-user.h (jent_get_nstime): Use 'tv' variable
+   instead of non-existing 'time'.
+
+2020-07-30  NIIBE Yutaka  
+
+   mpi: Support opaque MPI with gcry_mpi_print.
+   + commit d9103048d11bcd8c9cce42dd450b394acd8949ac
+   * mpi/mpicoder.c (_gcry_mpi_get_buffer): Return the bytes as-is.
+
 2020-07-06  Werner Koch  
 
+   Post release updates.
+   + commit c917ebb48d1b784f6f29bc5b292bab78469aabfb
+
+
mpi: Consider +0 and -0 the same in mpi_cmp.
+ commit 31bb4f3210df76c3036b03ce6dfd2b7c0c6af9ed
* mpi/mpi-cmp.c (do_mpi_cmp): Check size of U an V.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/libgcrypt-1.8.6/Makefile.am 
new/libgcrypt-1.8.7/Makefile.am
--- old/libgcrypt-1.8.6/Makefile.am 2019-09-28 09:30:19.0 +0200
+++ new/libgcrypt-1.8.7/Makefile.am 2020-08-26 09:42:45.0 +0200
@@ -17,13 +17,13 @@
 # License along with this program; if not, see .
 # SPDX-License-Identifier: LGPL-2.1-or-later
 
-# Location of the released tarball archives.  Note that this is an
-# internal archive and before uploading this to the public server,
-# manual tests should be run and the git release tagged and pushed.
-# Adjust as needed.
-RELEASE_ARCHIVE_DIR  = wk@vigenere:tarballs/libgcrypt/v1.8/
-# The key used to sign the released sources.  Adjust as needed.
-RELEASE_SIGNING_KEY  = 

commit libgcrypt for openSUSE:Factory

2020-07-15 Thread root


bin8NiAwUOJHz.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2020-05-23 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2020-05-23 17:19:49

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new.2738 (New)


Package is "libgcrypt"

Sat May 23 17:19:49 2020 rev:81 rq:807319 version:1.8.5

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2020-05-19 
14:43:07.315382924 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new.2738/libgcrypt.changes
2020-05-23 17:20:02.486447534 +0200
@@ -1,0 +2,8 @@
+Tue May 19 11:25:37 UTC 2020 - Pedro Monreal Gonzalez 

+
+- FIPS: RSA/DSA/ECC test_keys() print out debug messages [bsc#1171872]
+  * Print the debug messages in test_keys() only in debug mode.
+- Update patches: libgcrypt-PCT-RSA.patch libgcrypt-PCT-DSA.patch
+  libgcrypt-PCT-ECC.patch
+
+---



Other differences:
--

++ libgcrypt-PCT-DSA.patch ++
--- /var/tmp/diff_new_pack.4MSUo5/_old  2020-05-23 17:20:03.382449473 +0200
+++ /var/tmp/diff_new_pack.4MSUo5/_new  2020-05-23 17:20:03.386449481 +0200
@@ -2,7 +2,7 @@
 ===
 --- libgcrypt-1.8.2.orig/cipher/dsa.c
 +++ libgcrypt-1.8.2/cipher/dsa.c
-@@ -181,24 +181,91 @@ test_keys (DSA_secret_key *sk, unsigned
+@@ -181,24 +181,101 @@ test_keys (DSA_secret_key *sk, unsigned
/* Create a random plaintext.  */
_gcry_mpi_randomize (data, qbits, GCRY_WEAK_RANDOM);
  
@@ -23,7 +23,8 @@
 +
 +  if (_gcry_md_open (, GCRY_MD_SHA256, 0))
 +{
-+  log_debug ("gcry_pk_sign failed\n");
++  if (DBG_CIPHER)
++log_debug ("gcry_pk_sign/open failed\n");
 +  goto leave;
 +}
 +
@@ -31,6 +32,7 @@
 +  _gcry_md_write (hd, buf, buflen);
 +
 +  xfree (buf);
++  buf = NULL;
 +
 +  /* build DSA private key sexp in s_skey */
 +  sexp_build (_skey, NULL, "(private-key (dsa(p %m)(q %m)(g %m)(y %m)(x 
%m)))",
@@ -38,20 +40,23 @@
 +  sexp_build (_hash, NULL, "(data (flags pkcs1)(hash-algo sha256))");
 +  if (_gcry_pk_sign_md (_sig, hd, s_hash, s_skey))
 +{
-+  log_debug ("gcry_pk_sign failed\n");
++  if (DBG_CIPHER)
++log_debug ("gcry_pk_sign failed\n");
 +  goto leave;
 +}
 +
 +  /* Check that the signature and the original plaintext differ. */
 +  if (_gcry_sexp_extract_param (r_sig, NULL, "rs", _sig_mpi, _sig_mpi, 
NULL))
 +{
-+  log_debug ("extracting signature data failed\n");
++  if (DBG_CIPHER)
++log_debug ("extracting signature data failed\n");
 +  goto leave;
 +}
 +
 +  if ( !verify (r_sig_mpi, s_sig_mpi, data, ))
 +{
-+  log_debug ("Signature failed\n");
++  if (DBG_CIPHER)
++log_debug ("Signature failed\n");
 +  goto leave; /* Signature matches but should not. */
 +}
 +
@@ -64,17 +69,22 @@
 +  sexp_build (_hash, NULL, "(data (flags pkcs1)(hash-algo sha256))");
 +
 +  if (_gcry_md_open (, GCRY_MD_SHA256, 0))
-+log_debug ("gcry_md_open failed\n");
++{
++  if (DBG_CIPHER)
++log_debug ("gcry_md_open failed\n");
++}
 +
 +  _gcry_mpi_aprint (GCRYMPI_FMT_STD, , , data);
 +  _gcry_md_write (hd, buf, buflen);
 +
 +  xfree (buf);
++  buf = NULL;
 +
 +  /* verify the signature */
 +  if (_gcry_pk_verify_md (r_sig, hd, s_hash, s_pkey))
 +{
-+  log_debug ("gcry_pk_verify failed\n");
++  if (DBG_CIPHER)
++log_debug ("gcry_pk_verify failed\n");
 +  goto leave; /* Signature does not match. */
 +}
  

++ libgcrypt-PCT-ECC.patch ++
--- /var/tmp/diff_new_pack.4MSUo5/_old  2020-05-23 17:20:03.394449499 +0200
+++ /var/tmp/diff_new_pack.4MSUo5/_new  2020-05-23 17:20:03.394449499 +0200
@@ -70,7 +70,7 @@
ECC_public_key pk;
gcry_mpi_t test = mpi_new (nbits);
mpi_point_struct R_;
-@@ -297,17 +310,161 @@ test_keys (ECC_secret_key *sk, unsigned
+@@ -297,17 +310,190 @@ test_keys (ECC_secret_key *sk, unsigned
  
_gcry_mpi_randomize (test, nbits, GCRY_WEAK_RANDOM);
  
@@ -91,13 +91,18 @@
 +  int flags = 0;
 +
 +  if (_gcry_md_open (, GCRY_MD_SHA256, 0))
-+log_debug ("gcry_pk_sign failed: _gcry_md_open\n");
++{
++  if (DBG_CIPHER)
++log_debug ("gcry_pk_sign failed: _gcry_md_open\n");
++}
 +
 +  _gcry_mpi_aprint (GCRYMPI_FMT_STD, , , test);
 +  _gcry_md_write (hd, buf, buflen);
 +
 +  xfree (buf);
-+
++  buf = NULL;
+ 
+-  if (_gcry_ecc_ecdsa_verify (test, , r, s))
 +  sexp_build (_hash, NULL, "(data (flags rfc6979)(hash-algo sha256))");
 +
 +  /* Assemble the point Q from affine coordinates by simple
@@ -109,7 +114,11 @@
 +  ctx = _gcry_mpi_ec_p_internal_new (sk->E.model, sk->E.dialect, flags,
 + sk->E.p, sk->E.a, sk->E.b);
 +  if 

commit libgcrypt for openSUSE:Factory

2020-05-19 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2020-05-19 14:43:00

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new.2738 (New)


Package is "libgcrypt"

Tue May 19 14:43:00 2020 rev:80 rq:805629 version:1.8.5

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2020-01-30 
09:32:02.957189834 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new.2738/libgcrypt.changes
2020-05-19 14:43:07.315382924 +0200
@@ -1,0 +2,70 @@
+Mon Apr 27 08:55:12 UTC 2020 - Pedro Monreal Gonzalez 

+
+- FIPS: libgcrypt: Double free in test_keys() on failed signature
+  verification [bsc#1169944]
+  * Use safer gcry_mpi_release() instead of mpi_free()
+- Update patches:
+  * libgcrypt-PCT-DSA.patch
+  * libgcrypt-PCT-RSA.patch
+  * libgcrypt-PCT-ECC.patch
+
+---
+Thu Apr 16 16:45:23 UTC 2020 - Vítězslav Čížek 
+
+- Ship the FIPS checksum file in the shared library package and
+  create a separate trigger file for the FIPS selftests (bsc#1169569)
+  * add libgcrypt-fips_selftest_trigger_file.patch
+  * refresh libgcrypt-global_init-constructor.patch
+- Remove libgcrypt-binary_integrity_in_non-FIPS.patch obsoleted
+  by libgcrypt-global_init-constructor.patch
+
+---
+Wed Apr 15 13:55:27 UTC 2020 - Pedro Monreal Gonzalez 

+
+- FIPS: Verify that the generated signature and the original input
+  differ in test_keys function for RSA, DSA and ECC: [bsc#1165539]
+- Add zero-padding when qx and qy have different lengths when
+  assembling the Q point from affine coordinates.
+- Refreshed patches:
+  * libgcrypt-PCT-DSA.patch
+  * libgcrypt-PCT-RSA.patch
+  * libgcrypt-PCT-ECC.patch
+
+---
+Mon Mar 30 10:48:02 UTC 2020 - Pedro Monreal Gonzalez 

+
+- FIPS: Switch the PCT to use the new signature operation [bsc#1165539]
+  * Patches for DSA, RSA and ECDSA test_keys functions:
+- libgcrypt-PCT-DSA.patch
+- libgcrypt-PCT-RSA.patch
+- libgcrypt-PCT-ECC.patch
+- Update patch: libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch
+
+---
+Thu Mar 26 18:09:47 UTC 2020 - Pedro Monreal Gonzalez 

+
+- FIPS: Run self-tests from constructor during power-on [bsc#1166748]
+  * Set up global_init as the constructor function:
+- libgcrypt-global_init-constructor.patch
+  * Relax the entropy requirements on selftest. This is especially
+important for virtual machines to boot properly before the RNG
+is available:
+- libgcrypt-random_selftests-testentropy.patch
+- libgcrypt-rsa-no-blinding.patch
+- libgcrypt-ecc-ecdsa-no-blinding.patch
+  * Fix benchmark regression test in FIPS mode:
+- libgcrypt-FIPS-GMAC_AES-benckmark.patch
+
+---
+Thu Mar 12 16:54:33 UTC 2020 - Pedro Monreal Gonzalez 

+
+- Remove check not needed in _gcry_global_constructor [bsc#1164950]
+  * Update libgcrypt-Restore-self-tests-from-constructor.patch
+
+---
+Tue Feb 25 22:13:24 UTC 2020 - Pedro Monreal Gonzalez 

+
+- FIPS: Run the self-tests from the constructor [bsc#1164950]
+  * Add libgcrypt-invoke-global_init-from-constructor.patch
+
+---

Old:

  libgcrypt-binary_integrity_in_non-FIPS.patch

New:

  libgcrypt-FIPS-GMAC_AES-benckmark.patch
  libgcrypt-PCT-DSA.patch
  libgcrypt-PCT-ECC.patch
  libgcrypt-PCT-RSA.patch
  libgcrypt-Restore-self-tests-from-constructor.patch
  libgcrypt-ecc-ecdsa-no-blinding.patch
  libgcrypt-fips_selftest_trigger_file.patch
  libgcrypt-global_init-constructor.patch
  libgcrypt-invoke-global_init-from-constructor.patch
  libgcrypt-random_selftests-testentropy.patch
  libgcrypt-rsa-no-blinding.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.ZdJnLU/_old  2020-05-19 14:43:08.959386437 +0200
+++ /var/tmp/diff_new_pack.ZdJnLU/_new  2020-05-19 14:43:08.959386437 +0200
@@ -18,7 +18,8 @@
 
 %define build_hmac256 1
 %define separate_hmac256_binary 0
-%define libsoname %{name}20
+%define libsover 20
+%define libsoname %{name}%{libsover}
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
 Version:1.8.5
@@ -55,7 +56,6 @@
 #PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-verify
 Patch36:libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
 Patch39:libgcrypt-1.8.3-fips-ctor.patch
-Patch41:

commit libgcrypt for openSUSE:Factory

2020-01-30 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2020-01-30 09:31:14

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new.26092 (New)


Package is "libgcrypt"

Thu Jan 30 09:31:14 2020 rev:79 rq:766879 version:1.8.5

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2019-09-07 
11:28:47.222469056 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new.26092/libgcrypt.changes   
2020-01-30 09:32:02.957189834 +0100
@@ -1,0 +2,37 @@
+Fri Jan 17 17:35:15 UTC 2020 - Pedro Monreal Gonzalez 

+
+- FIPS: libgcrypt DSA PQG parameter generation: Missing value [bsc#1161219]
+- FIPS: libgcrypt DSA PQG verification incorrect results [bsc#1161215]
+- FIPS: libgcrypt RSA siggen/keygen: 4k not supported [bsc#1161220]
+  * Add patch from Fedora libgcrypt-1.8.4-fips-keygen.patch
+
+---
+Wed Dec 11 10:18:23 UTC 2019 - Pedro Monreal Gonzalez 

+
+- FIPS: RSA/DSA/ECDSA are missing hashing operation [bsc#1155337]
+  * Add libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch
+
+---
+Wed Nov 27 14:01:01 UTC 2019 - Pedro Monreal Gonzalez 

+
+- Fix tests in FIPS mode:
+  * Fix tests: basic benchmark bench-slope pubkey t-cv25519 t-secmem
+  * Add patch libgcrypt-fix-tests-fipsmode.patch
+
+---
+Tue Nov 26 18:48:20 UTC 2019 - Pedro Monreal Gonzalez 

+
+- Fix test dsa-rfc6979 in FIPS mode:
+  * Disable tests in elliptic curves with 192 bits which are not
+recommended in FIPS mode
+  * Add patch libgcrypt-dsa-rfc6979-test-fix.patch
+
+---
+Tue Nov 12 11:05:02 UTC 2019 - Pedro Monreal Gonzalez 

+
+- CMAC AES and TDES FIPS self-tests:
+  * CMAC AES self test missing [bsc#1155339]
+  * CMAC TDES self test missing [bsc#1155338]
+- Add libgcrypt-CMAC-AES-TDES-selftest.patch
+
+---

New:

  libgcrypt-1.8.4-fips-keygen.patch
  libgcrypt-CMAC-AES-TDES-selftest.patch
  libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch
  libgcrypt-dsa-rfc6979-test-fix.patch
  libgcrypt-fix-tests-fipsmode.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.pMwPjp/_old  2020-01-30 09:32:05.113190987 +0100
+++ /var/tmp/diff_new_pack.pMwPjp/_new  2020-01-30 09:32:05.117190990 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -66,6 +66,15 @@
 Patch47:libgcrypt-CVE-2019-12904-GCM.patch
 Patch48:libgcrypt-CVE-2019-12904-AES.patch
 Patch49:libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch
+#PATCH-FIX-SUSE bsc#1155338 bsc#1155338 FIPS: CMAC AES and TDES self tests 
missing
+Patch50:libgcrypt-CMAC-AES-TDES-selftest.patch
+#PATCH-FIX-SUSE Fix test in FIPS mode
+Patch51:libgcrypt-dsa-rfc6979-test-fix.patch
+Patch52:libgcrypt-fix-tests-fipsmode.patch
+#PATCH-FIX-SUSE bsc#1155337 FIPS: RSA/DSA/ECDSA are missing hashing operation
+Patch53:libgcrypt-FIPS-RSA-DSA-ECDSA-hashing-operation.patch
+#PATCH-FIX-SUSE bsc#1161220 FIPS: libgcrypt RSA siggen/keygen: 4k not supported
+Patch54:libgcrypt-1.8.4-fips-keygen.patch
 BuildRequires:  automake >= 1.14
 BuildRequires:  fipscheck
 BuildRequires:  libgpg-error-devel >= 1.25

++ libgcrypt-1.8.4-fips-keygen.patch ++
Index: libgcrypt-1.8.2/cipher/dsa.c
===
--- libgcrypt-1.8.2.orig/cipher/dsa.c
+++ libgcrypt-1.8.2/cipher/dsa.c
@@ -457,11 +457,22 @@ generate_fips186 (DSA_secret_key *sk, un
  _q, _p,
  r_counter,
  r_seed, r_seedlen);
-  else
-ec = _gcry_generate_fips186_3_prime (nbits, qbits, NULL, 0,
+  else if (!domain->p || !domain->q)
+ec = _gcry_generate_fips186_3_prime (nbits, qbits,
+ initial_seed.seed,
+ initial_seed.seedlen,
  _q, _p,
  r_counter,
  r_seed, r_seedlen, NULL);
+  else
+   {
+ /* Domain parameters p and q are given; 

commit libgcrypt for openSUSE:Factory

2019-09-07 Thread root


binutcQDi9EYx.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2019-06-30 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2019-06-30 10:18:38

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new.4615 (New)


Package is "libgcrypt"

Sun Jun 30 10:18:38 2019 rev:77 rq:712272 version:1.8.4

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2019-06-07 
18:00:48.569810476 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new.4615/libgcrypt.changes
2019-06-30 10:18:39.451355118 +0200
@@ -1,0 +2,29 @@
+Wed Jun 26 06:52:54 UTC 2019 - Jason Sikes 
+
+- Fixed redundant fips tests in some situations causing sudo to stop
+  working when pam-kwallet is installed. bsc#1133808
+  * Added libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch
+  * Removed libgcrypt-fips_run_selftest_at_constructor.patch
+because it was obsoleted by libgcrypt-1.8.3-fips-ctor.patch
+  * Removed libgcrypt-fips_ignore_FIPS_MODULE_PATH.patch
+because it was obsoleted by 
libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch
+
+---
+Fri Jun 21 16:53:07 UTC 2019 - Pedro Monreal Gonzalez 

+
+- Fixed env-script-interpreter in cavs_driver.pl
+
+---
+Fri Jun 21 16:39:00 UTC 2019 - Pedro Monreal Gonzalez 

+
+- Security fix: [bsc#1138939, CVE-2019-12904]
+  * The C implementation of AES is vulnerable to a flush-and-reload
+side-channel attack because physical addresses are available to
+other processes. (The C implementation is used on platforms where
+an assembly-language implementation is unavailable.)
+  * Added patches:
+- libgcrypt-CVE-2019-12904-GCM-Prefetch.patch
+- libgcrypt-CVE-2019-12904-GCM.patch
+- libgcrypt-CVE-2019-12904-AES.patch
+
+---

Old:

  libgcrypt-fips_ignore_FIPS_MODULE_PATH.patch
  libgcrypt-fips_run_selftest_at_constructor.patch

New:

  libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch
  libgcrypt-CVE-2019-12904-AES.patch
  libgcrypt-CVE-2019-12904-GCM-Prefetch.patch
  libgcrypt-CVE-2019-12904-GCM.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.jl0uvg/_old  2019-06-30 10:18:42.455359785 +0200
+++ /var/tmp/diff_new_pack.jl0uvg/_new  2019-06-30 10:18:42.495359847 +0200
@@ -50,19 +50,22 @@
 Patch28:libgcrypt-fix-rng.patch
 #PATCH-FIX-SUSE add FIPS CAVS test app for DRBG
 Patch30:drbg_test.patch
-#PATCH-FIX-SUSE run FIPS self-test from constructor
-Patch32:libgcrypt-fips_run_selftest_at_constructor.patch
 #PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-sign
 Patch35:libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
 #PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-verify
 Patch36:libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
 Patch39:libgcrypt-1.8.3-fips-ctor.patch
-Patch40:libgcrypt-fips_ignore_FIPS_MODULE_PATH.patch
 Patch41:libgcrypt-binary_integrity_in_non-FIPS.patch
 Patch42:libgcrypt-fips_rsa_no_enforced_mode.patch
 Patch43:libgcrypt-1.8.4-use_xfree.patch
 Patch44:libgcrypt-1.8.4-allow_FSM_same_state.patch
 Patch45:libgcrypt-1.8.4-getrandom.patch
+#PATCH-FIX-UPSTREAM bsc#1138939 CVE-2019-12904 C implementation of AES is
+#vulnerable to a flush-and-reload side-channel attack
+Patch46:libgcrypt-CVE-2019-12904-GCM-Prefetch.patch
+Patch47:libgcrypt-CVE-2019-12904-GCM.patch
+Patch48:libgcrypt-CVE-2019-12904-AES.patch
+Patch49:libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch
 BuildRequires:  automake >= 1.14
 BuildRequires:  fipscheck
 BuildRequires:  libgpg-error-devel >= 1.25
@@ -168,7 +171,7 @@
 # invalidates a HMAC that may have been created earlier.
 # solution: create the hashes _after_ the macro runs.
 #
-# this shows up earlier because otherwise the %expand of
+# this shows up earlier because otherwise the %%expand of
 # the macro is too late.
 %{expand:%%global __os_install_post {%__os_install_post
 fipshmac %{buildroot}/%{_bindir}/hmac256
@@ -207,7 +210,7 @@
 %files -n %{libsoname}-hmac
 %if 0%{?build_hmac256}
 %{_libdir}/.libgcrypt.so.*.hmac
-%endif # %if 0%{?build_hmac256}
+%endif # %%if 0%%{?build_hmac256}
 
 %files devel
 %license COPYING COPYING.LIB
@@ -222,7 +225,7 @@
 
 %if 0%{?separate_hmac256_binary}
 %files hmac256
-%endif # %if 0%{?separate_hmac256_binary}
+%endif # %%if 0%%{?separate_hmac256_binary}
 %{_bindir}/hmac256
 %{_bindir}/.hmac256.hmac
 %doc %{_mandir}/man1/hmac256.1*

++ cavs_driver.pl ++
--- /var/tmp/diff_new_pack.jl0uvg/_old  2019-06-30 

commit libgcrypt for openSUSE:Factory

2019-06-07 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2019-06-07 18:00:42

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new.4811 (New)


Package is "libgcrypt"

Fri Jun  7 18:00:42 2019 rev:76 rq:698628 version:1.8.4

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2018-12-03 
10:04:00.724060437 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new.4811/libgcrypt.changes
2019-06-07 18:00:48.569810476 +0200
@@ -1,0 +2,61 @@
+Fri Apr 26 06:47:45 UTC 2019 - Jason Sikes 
+
+- do not try to open /dev/urandom if getrandom() works
+  * Added libgcrypt-1.8.4-getrandom.patch
+- Drop libgcrypt-init-at-elf-load-fips.patch obsoleted
+  by libgcrypt-1.8.3-fips-ctor.patch
+
+---
+Tue Apr 23 12:38:40 UTC 2019 - Jason Sikes 
+
+- Restored libgcrypt-binary_integrity_in_non-FIPS.patch sans section that
+  was partially causing bsc#1131183.
+- Fixed race condition in multi-threaded applications by allowing a FSM state
+  transition to the current state. This means some tests are run twice.
+  * Added libgcrypt-1.8.4-allow_FSM_same_state.patch
+- Fixed an issue in malloc/free wrappers so that memory created by the malloc()
+  wrappers will be destroyed using the free() wrappers.
+  * Added libgcrypt-1.8.4-use_xfree.patch
+
+---
+Fri Apr  5 21:56:00 UTC 2019 - Jason Sikes 
+
+- removed libgcrypt-binary_integrity_in_non-FIPS.patch since it was breaking
+  libotr. bsc#1131183
+
+---
+Tue Mar 26 16:30:23 UTC 2019 - Vítězslav Čížek 
+
+- libgcrypt-1.8.3-fips-ctor.patch changed the way the fips selftests
+  are invoked as well as the state transition, adjust the code so
+  a missing checksum file is not an issue in non-FIPS mode (bsc#1097073)
+  * update libgcrypt-binary_integrity_in_non-FIPS.patch
+
+---
+Tue Mar 26 16:25:18 UTC 2019 - Vítězslav Čížek 
+
+- Enforce the minimal RSA keygen size in fips mode (bsc#1125740)
+  * add libgcrypt-fips_rsa_no_enforced_mode.patch
+
+---
+Fri Mar 22 14:13:05 UTC 2019 - Vítězslav Čížek 
+
+- Don't run full self-tests from constructor (bsc#1097073)
+  * Don't call global_init() from the constructor, _gcry_global_constructor()
+from libgcrypt-1.8.3-fips-ctor.patch takes care of the binary
+integrity check instead.
+  * Only the binary checksum will be verified, the remaining
+self-tests will be run upon the library initialization
+- Add libgcrypt-fips_ignore_FIPS_MODULE_PATH.patch
+- Drop libgcrypt-init-at-elf-load-fips.patch and
+  libgcrypt-fips_run_selftest_at_constructor.patch obsoleted
+  by libgcrypt-1.8.3-fips-ctor.patch
+
+---
+Thu Mar  7 10:53:40 UTC 2019 - Pedro Monreal Gonzalez 

+
+- Skip all the self-tests except for binary integrity when called
+  from the constructor (bsc#1097073)
+  * Added libgcrypt-1.8.3-fips-ctor.patch from Fedora
+
+---

Old:

  libgcrypt-init-at-elf-load-fips.patch

New:

  libgcrypt-1.8.3-fips-ctor.patch
  libgcrypt-1.8.4-allow_FSM_same_state.patch
  libgcrypt-1.8.4-getrandom.patch
  libgcrypt-1.8.4-use_xfree.patch
  libgcrypt-fips_ignore_FIPS_MODULE_PATH.patch
  libgcrypt-fips_rsa_no_enforced_mode.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.Bo267F/_old  2019-06-07 18:00:49.385810186 +0200
+++ /var/tmp/diff_new_pack.Bo267F/_new  2019-06-07 18:00:49.389810185 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -48,7 +48,6 @@
 #PATCH-FIX-SUSE: bnc#724841, fix a random device opening routine
 Patch14:libgcrypt-1.6.1-fips-cfgrandom.patch
 Patch28:libgcrypt-fix-rng.patch
-Patch29:libgcrypt-init-at-elf-load-fips.patch
 #PATCH-FIX-SUSE add FIPS CAVS test app for DRBG
 Patch30:drbg_test.patch
 #PATCH-FIX-SUSE run FIPS self-test from constructor
@@ -57,7 +56,13 @@
 Patch35:libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
 #PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-verify
 Patch36:libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
-Patch37:  

commit libgcrypt for openSUSE:Factory

2018-12-03 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2018-12-03 10:03:49

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new.19453 (New)


Package is "libgcrypt"

Mon Dec  3 10:03:49 2018 rev:75 rq:652051 version:1.8.4

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2018-11-08 
09:41:06.657617045 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new.19453/libgcrypt.changes   
2018-12-03 10:04:00.724060437 +0100
@@ -1,0 +2,7 @@
+Mon Nov 26 17:09:47 UTC 2018 - Vítězslav Čížek 
+
+- Fail selftests when checksum file is missing in FIPS mode only
+  (bsc#1117355)
+  * add libgcrypt-binary_integrity_in_non-FIPS.patch
+
+---

New:

  libgcrypt-binary_integrity_in_non-FIPS.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.0ddWZi/_old  2018-12-03 10:04:02.660058671 +0100
+++ /var/tmp/diff_new_pack.0ddWZi/_new  2018-12-03 10:04:02.664058667 +0100
@@ -12,7 +12,7 @@
 # license that conforms to the Open Source Definition (Version 1.9)
 # published by the Open Source Initiative.
 
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
 #
 
 
@@ -57,6 +57,7 @@
 Patch35:libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
 #PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-verify
 Patch36:libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
+Patch37:libgcrypt-binary_integrity_in_non-FIPS.patch
 BuildRequires:  automake >= 1.14
 BuildRequires:  fipscheck
 BuildRequires:  libgpg-error-devel >= 1.25
@@ -149,6 +150,7 @@
 %patch14 -p1
 %patch35 -p1
 %patch36 -p1
+%patch37 -p1
 
 %build
 echo building with build_hmac256 set to %{build_hmac256}


++ libgcrypt-binary_integrity_in_non-FIPS.patch ++
Index: libgcrypt-1.8.4/src/fips.c
===
--- libgcrypt-1.8.4.orig/src/fips.c 2018-11-26 17:30:28.040692529 +0100
+++ libgcrypt-1.8.4/src/fips.c  2018-11-26 17:59:04.130934181 +0100
@@ -663,7 +663,11 @@ check_binary_integrity (void)
   /* Open the file.  */
   fp = fopen (fname, "r");
   if (!fp)
-err = gpg_error_from_syserror ();
+{
+  /* Missing checksum is a problem only in FIPS mode */
+  if (fips_mode() || errno != ENOENT)
+err = gpg_error_from_syserror ();
+}
   else
 {
   /* A buffer of 64 bytes plus one for a LF and one to



commit libgcrypt for openSUSE:Factory

2018-11-08 Thread root


bindttUSv80Er.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2018-07-07 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2018-07-07 21:56:53

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Sat Jul  7 21:56:53 2018 rev:73 rq:620216 version:1.8.3

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2018-06-22 
13:15:15.191327085 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2018-07-07 
21:57:18.855400161 +0200
@@ -1,0 +2,8 @@
+Mon Jul  2 10:38:42 UTC 2018 - sch...@suse.de
+
+- libgcrypt-1.6.3-aliasing.patch, libgcrypt-ppc64.patch,
+  libgcrypt-strict-aliasing.patch: Remove obsolete patches
+- libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch: Rediff
+- Reenable testsuite
+
+---

Old:

  libgcrypt-1.6.3-aliasing.patch
  libgcrypt-ppc64.patch
  libgcrypt-strict-aliasing.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.SchsqS/_old  2018-07-07 21:57:19.455399399 +0200
+++ /var/tmp/diff_new_pack.SchsqS/_new  2018-07-07 21:57:19.455399399 +0200
@@ -36,8 +36,6 @@
 Source5:cavs-test.sh
 Source6:cavs_driver.pl
 Source99:   %{name}.changes
-Patch0: %{name}-ppc64.patch
-Patch1: %{name}-strict-aliasing.patch
 Patch3: %{name}-1.4.1-rijndael_no_strict_aliasing.patch
 Patch4: %{name}-sparcv9.diff
 #PATCH-FIX-UPSTREAM: bnc#701267, explicitly link with $(DL_LIBS)
@@ -55,7 +53,6 @@
 Patch30:drbg_test.patch
 #PATCH-FIX-SUSE run FIPS self-test from constructor
 Patch32:libgcrypt-fips_run_selftest_at_constructor.patch
-Patch34:libgcrypt-1.6.3-aliasing.patch
 #PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-sign
 Patch35:libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
 #PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-verify
@@ -139,8 +136,6 @@
 
 %prep
 %setup -q
-%patch0 -p1
-%patch1
 %patch3 -p1
 %patch4 -p1
 %patch5 -p1
@@ -150,11 +145,6 @@
 %patch29 -p1
 %patch30 -p1
 %patch32 -p1
-# This patch breaks x86_64 builds but is needed for big-endian
-# architectures
-%ifarch ppc ppc64 s390 s390x
-%patch34 -p1
-%endif
 %patch13 -p1
 %patch14 -p1
 %patch35 -p1
@@ -194,10 +184,7 @@
 
 %check
 fipshmac src/.libs/libgcrypt.so.??
-# Nice idea. however this uses /dev/random, which hangs
-# on hardware without random feeds.
-# so lets not run it inside OBS
-# make %{?_smp_mflags} check
+make %{?_smp_mflags} check
 
 %install
 %make_install

++ libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch ++
--- /var/tmp/diff_new_pack.SchsqS/_old  2018-07-07 21:57:19.499399343 +0200
+++ /var/tmp/diff_new_pack.SchsqS/_new  2018-07-07 21:57:19.503399339 +0200
@@ -1,11 +1,11 @@
-Index: libgcrypt-1.4.1/cipher/Makefile.am
+Index: libgcrypt-1.8.3/cipher/Makefile.am
 ===
 libgcrypt-1.4.1.orig/cipher/Makefile.am2008-11-11 17:13:59.0 
+0100
-+++ libgcrypt-1.4.1/cipher/Makefile.am 2008-11-11 17:18:58.0 +0100
-@@ -92,3 +92,11 @@ ac.o: $(srcdir)/ac.c
+--- libgcrypt-1.8.3.orig/cipher/Makefile.am
 libgcrypt-1.8.3/cipher/Makefile.am
+@@ -128,3 +128,11 @@ tiger.o: $(srcdir)/tiger.c
  
- ac.lo: $(srcdir)/ac.c
-   `echo $(LTCOMPILE) -fno-strict-aliasing -c $(srcdir)/ac.c` 
+ tiger.lo: $(srcdir)/tiger.c
+   `echo $(LTCOMPILE) -c $(srcdir)/tiger.c | $(o_flag_munging) `
 +
 +# rijndael.c needs -fno-strict-aliasing
 +rijndael.o: $(srcdir)/rijndael.c





commit libgcrypt for openSUSE:Factory

2018-06-22 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2018-06-22 13:15:10

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Fri Jun 22 13:15:10 2018 rev:72 rq:616511 version:1.8.3

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2018-05-07 
14:52:21.936498020 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2018-06-22 
13:15:15.191327085 +0200
@@ -1,0 +2,14 @@
+Wed Jun 13 10:46:33 UTC 2018 - kbabi...@suse.com
+
+- Update to version 1.8.3:
+  - Use blinding for ECDSA signing to mitigate a novel side-channel
+attack. (CVE-2018-0495 bsc#1097410)
+  - Fix incorrect counter overflow handling for GCM when using an IV
+size other than 96 bit.
+  - Fix incorrect output of AES-keywrap mode for in-place encryption
+on some platforms.
+  - Fix the gcry_mpi_ec_curve_point point validation function.
+  - Fix rare assertion failure in gcry_prime_check. 
+- Applied spec-cleaner
+
+---

Old:

  libgcrypt-1.8.2.tar.bz2
  libgcrypt-1.8.2.tar.bz2.sig

New:

  libgcrypt-1.8.3.tar.bz2
  libgcrypt-1.8.3.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.owVFLM/_old  2018-06-22 13:15:16.543276952 +0200
+++ /var/tmp/diff_new_pack.owVFLM/_new  2018-06-22 13:15:16.547276804 +0200
@@ -21,12 +21,12 @@
 %define libsoname %{name}20
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.8.2
+Version:1.8.3
 Release:0
 Summary:The GNU Crypto Library
-License:GPL-2.0+ AND LGPL-2.1+ AND GPL-3.0+
+License:GPL-2.0-or-later AND LGPL-2.1-or-later AND GPL-3.0-or-later
 Group:  Development/Libraries/C and C++
-Url:http://directory.fsf.org/wiki/Libgcrypt
+URL:http://directory.fsf.org/wiki/Libgcrypt
 Source: ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
 Source1:
ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
 Source2:baselibs.conf
@@ -73,7 +73,7 @@
 
 %package -n %{libsoname}
 Summary:The GNU Crypto Library
-License:GPL-2.0+ AND LGPL-2.1+
+License:GPL-2.0-or-later AND LGPL-2.1-or-later
 Group:  System/Libraries
 Suggests:   %{libsoname}-hmac = %{version}-%{release}
 
@@ -83,7 +83,7 @@
 
 %package -n %{libsoname}-hmac
 Summary:HMAC checksums for the GNU Crypto Library
-License:GPL-2.0+ AND LGPL-2.1+
+License:GPL-2.0-or-later AND LGPL-2.1-or-later
 Group:  System/Libraries
 Requires:   %{libsoname} = %{version}-%{release}
 
@@ -94,7 +94,7 @@
 
 %package devel
 Summary:The GNU Crypto Library
-License:GFDL-1.1 AND GPL-2.0+ AND LGPL-2.1+ AND MIT
+License:GFDL-1.1-only AND GPL-2.0-or-later AND LGPL-2.1-or-later AND 
MIT
 Group:  Development/Libraries/C and C++
 Requires:   %{libsoname} = %{version}
 Requires:   glibc-devel
@@ -112,7 +112,7 @@
 
 %package cavs
 Summary:The GNU Crypto Library
-License:GFDL-1.1 AND GPL-2.0+ AND LGPL-2.1+ AND MIT
+License:GFDL-1.1-only AND GPL-2.0-or-later AND LGPL-2.1-or-later AND 
MIT
 Group:  Development/Libraries/C and C++
 Requires:   %{libsoname} = %{version}
 Requires:   %{libsoname}-hmac
@@ -123,7 +123,7 @@
 %if 0%{?separate_hmac256_binary}
 %package hmac256
 Summary:The GNU Crypto Library
-License:GPL-2.0+ AND LGPL-2.1+
+License:GPL-2.0-or-later AND LGPL-2.1-or-later
 Group:  Development/Libraries/C and C++
 Requires:   %{libsoname} = %{version}
 Requires:   libgpg-error-devel
@@ -231,7 +231,7 @@
 %files devel
 %license COPYING COPYING.LIB
 %doc AUTHORS ChangeLog NEWS README THANKS TODO
-%{_infodir}/gcrypt.info%{ext_info}
+%{_infodir}/gcrypt.info*%{ext_info}
 %{_bindir}/dumpsexp
 %{_bindir}/mpicalc
 %{_bindir}/%{name}-config

++ libgcrypt-1.8.2.tar.bz2 -> libgcrypt-1.8.3.tar.bz2 ++
 16647 lines of diff (skipped)




commit libgcrypt for openSUSE:Factory

2018-05-07 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2018-05-07 14:52:21

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Mon May  7 14:52:21 2018 rev:71 rq:603170 version:1.8.2

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2018-04-03 
12:11:20.525020848 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2018-05-07 
14:52:21.936498020 +0200
@@ -1,0 +2,6 @@
+Wed May  2 14:31:07 UTC 2018 - pmonrealgonza...@suse.com
+
+- Suggest libgcrypt20-hmac for package libgcrypt20 to ensure they
+  are installed in the right order. [bsc#1090766]
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.tXfQA6/_old  2018-05-07 14:52:23.160459823 +0200
+++ /var/tmp/diff_new_pack.tXfQA6/_new  2018-05-07 14:52:23.160459823 +0200
@@ -75,6 +75,7 @@
 Summary:The GNU Crypto Library
 License:GPL-2.0+ AND LGPL-2.1+
 Group:  System/Libraries
+Suggests:   %{libsoname}-hmac = %{version}-%{release}
 
 %description -n %{libsoname}
 Libgcrypt is a general purpose crypto library based on the code used in





commit libgcrypt for openSUSE:Factory

2018-04-03 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2018-04-03 12:11:16

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Tue Apr  3 12:11:16 2018 rev:70 rq:592209 version:1.8.2

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2018-03-01 
12:05:47.542440493 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2018-04-03 
12:11:20.525020848 +0200
@@ -1,0 +2,9 @@
+Thu Mar 29 06:37:44 UTC 2018 - pmonrealgonza...@suse.com
+
+- Extended the fipsdrv dsa-sign and dsa-verify commands with the
+  --algo parameter for the FIPS testing of DSA SigVer and SigGen
+  (bsc#1064455).
+  * Added libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
+  * Added libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
+
+---

New:

  libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
  libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.2xc1PK/_old  2018-04-03 12:11:21.600982132 +0200
+++ /var/tmp/diff_new_pack.2xc1PK/_new  2018-04-03 12:11:21.600982132 +0200
@@ -56,6 +56,10 @@
 #PATCH-FIX-SUSE run FIPS self-test from constructor
 Patch32:libgcrypt-fips_run_selftest_at_constructor.patch
 Patch34:libgcrypt-1.6.3-aliasing.patch
+#PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-sign
+Patch35:libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
+#PATCH-FIX-UPSTREAM bsc#1064455 fipsdrv patch to enable --algo for dsa-verify
+Patch36:libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
 BuildRequires:  automake >= 1.14
 BuildRequires:  fipscheck
 BuildRequires:  libgpg-error-devel >= 1.25
@@ -152,6 +156,8 @@
 %endif
 %patch13 -p1
 %patch14 -p1
+%patch35 -p1
+%patch36 -p1
 
 %build
 echo building with build_hmac256 set to %{build_hmac256}


++ libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch ++
Index: libgcrypt-1.6.1/tests/fipsdrv.c
===
--- libgcrypt-1.6.1.orig/tests/fipsdrv.c
+++ libgcrypt-1.6.1/tests/fipsdrv.c
@@ -2190,11 +2190,12 @@ dsa_hash_from_key(gcry_sexp_t s_key)
   return GCRY_MD_NONE;
 }
 
-
+
 /* Sign DATA of length DATALEN using the key taken from the S-expression
encoded KEYFILE. */
 static void
-run_dsa_sign (const void *data, size_t datalen, const char *keyfile)
+run_dsa_sign (const void *data, size_t datalen,
+ int hashalgo, const char *keyfile)
 
 {
   gpg_error_t err;
@@ -2202,13 +2203,20 @@ run_dsa_sign (const void *data, size_t d
   char hash[128];
   gcry_mpi_t tmpmpi;
   int algo;
+  int algo_len;
+  int hashalgo_len;
 
   s_key = read_sexp_from_file (keyfile);
   algo = dsa_hash_from_key(s_key);
+  algo_len = gcry_md_get_algo_dlen(algo);
+  hashalgo_len = gcry_md_get_algo_dlen(hashalgo);
 
-  gcry_md_hash_buffer (algo, hash, data, datalen);
+  if (hashalgo_len < algo_len)
+  algo_len = hashalgo_len;
+
+  gcry_md_hash_buffer (hashalgo, hash, data, datalen);
   err = gcry_mpi_scan (, GCRYMPI_FMT_USG, hash,
-   gcry_md_get_algo_dlen(algo), NULL);
+   algo_len, NULL);
   if (!err)
 {
   err = gcry_sexp_build (_data, NULL,
@@ -3000,14 +3008,21 @@ main (int argc, char **argv)
 }
   else if (!strcmp (mode_string, "dsa-sign"))
 {
+  int algo;
+
   if (!key_string)
 die ("option --key is required in this mode\n");
   if (access (key_string, R_OK))
 die ("option --key needs to specify an existing keyfile\n");
+  if (!algo_string)
+die ("option --algo is required in this mode\n");
+  algo = gcry_md_map_name (algo_string);
+  if (!algo)
+die ("digest algorithm `%s' is not supported\n", algo_string); 
   if (!data)
 die ("no data available (do not use --chunk)\n");
 
-  run_dsa_sign (data, datalen, key_string);
+  run_dsa_sign (data, datalen, algo, key_string);
 }
   else if (!strcmp (mode_string, "dsa-verify"))
 {
++ libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch ++
--- libgcrypt-1.6.1-orig/tests/fipsdrv.c2017-10-20 10:39:56.080098385 
+
+++ libgcrypt-1.6.1-orig/tests/fipsdrv.c2017-10-20 10:41:15.780098385 
+
@@ -2288,7 +2288,7 @@ run_dsa_sign (const void *data, size_t d
S-expression in KEYFILE against the S-expression formatted
signature in SIGFILE.  */
 static void
-run_dsa_verify (const void *data, size_t datalen,
+run_dsa_verify (const void *data, size_t datalen, int hashalgo,
 const char *keyfile, const char *sigfile)
 
 {
@@ -2297,15 

commit libgcrypt for openSUSE:Factory

2018-03-01 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2018-03-01 12:05:46

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Thu Mar  1 12:05:46 2018 rev:69 rq:580133 version:1.8.2

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2017-12-29 
18:48:44.050383732 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2018-03-01 
12:05:47.542440493 +0100
@@ -1,0 +2,5 @@
+Thu Feb 22 15:10:36 UTC 2018 - fv...@suse.com
+
+- Use %license (boo#1082318)
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.n2xShS/_old  2018-03-01 12:05:48.934390544 +0100
+++ /var/tmp/diff_new_pack.n2xShS/_new  2018-03-01 12:05:48.934390544 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -213,7 +213,7 @@
 %install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
 
 %files -n %{libsoname}
-%doc COPYING.LIB
+%license COPYING.LIB
 %{_libdir}/%{name}.so.*
 
 %files -n %{libsoname}-hmac
@@ -222,7 +222,8 @@
 %endif # %if 0%{?build_hmac256}
 
 %files devel
-%doc AUTHORS COPYING COPYING.LIB ChangeLog NEWS README THANKS TODO
+%license COPYING COPYING.LIB
+%doc AUTHORS ChangeLog NEWS README THANKS TODO
 %{_infodir}/gcrypt.info%{ext_info}
 %{_bindir}/dumpsexp
 %{_bindir}/mpicalc





commit libgcrypt for openSUSE:Factory

2017-12-29 Thread root


binF1gC0KnqqW.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2017-09-07 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2017-09-07 22:07:50

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Thu Sep  7 22:07:50 2017 rev:67 rq:519870 version:1.8.1

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2017-08-29 
11:33:57.849720578 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2017-09-07 
22:07:58.791240652 +0200
@@ -1,0 +2,11 @@
+Mon Aug 28 17:54:24 UTC 2017 - astie...@suse.com
+
+- libgcrypt 1.8.1:
+  * Mitigate a local side-channel attack on Curve25519 dubbed "May
+the Fourth be With You" CVE-2017-0379 bsc#1055837
+  * Add more extra bytes to the pool after reading a seed file
+  * Add the OID SHA384WithECDSA from RFC-7427 to SHA-384
+  * Fix build problems with the Jitter RNG
+  * Fix assembler code build problems on Rasbian (ARMv8/AArch32-CE)
+
+---

Old:

  libgcrypt-1.8.0.tar.bz2
  libgcrypt-1.8.0.tar.bz2.sig

New:

  libgcrypt-1.8.1.tar.bz2
  libgcrypt-1.8.1.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.IxEiOI/_old  2017-09-07 22:07:59.763103659 +0200
+++ /var/tmp/diff_new_pack.IxEiOI/_new  2017-09-07 22:07:59.763103659 +0200
@@ -21,7 +21,7 @@
 %define libsoname %{name}20
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.8.0
+Version:1.8.1
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ AND LGPL-2.1+ AND GPL-3.0+

++ libgcrypt-1.8.0.tar.bz2 -> libgcrypt-1.8.1.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/libgcrypt-1.8.0/ChangeLog 
new/libgcrypt-1.8.1/ChangeLog
--- old/libgcrypt-1.8.0/ChangeLog   2017-07-18 16:17:14.0 +0200
+++ new/libgcrypt-1.8.1/ChangeLog   2017-08-27 09:27:04.0 +0200
@@ -1,3 +1,88 @@
+2017-08-27  Werner Koch  
+
+   Release 1.8.1.
+   + commit 80fd8615048c3897b91a315cca22ab139b056ccd
+   * configure.ac: Set LT version to C22/A2/R1.
+
+2017-08-27  NIIBE Yutaka  
+
+   ecc: Add input validation for X25519.
+   + commit bf76acbf0da6b0f245e491bec12c0f0a1b5be7c9
+   * cipher/ecc.c (ecc_decrypt_raw): Add input validation.
+   * mpi/ec.c (ec_p_init): Use scratch buffer for bad points.
+   (_gcry_mpi_ec_bad_point): New.
+
+2017-08-07  Marcus Brinkmann  
+
+   cipher: Add OID for SHA384WithECDSA.
+   + commit a7bd2cbd3eabda88fb3cac5cbc13c21c97a7b315
+   * cipher/sha512.c (oid_spec_sha384): Add SHA384WithECDSA.
+
+2017-08-02  Werner Koch  
+
+   tests: Fix a printf glitch for a Windows test.
+   + commit df1e221b3012e96bbffbc7d5fd70836a9ae1cc19
+   * tests/t-convert.c (check_formats): Fix print format glitch on
+   Windows.
+   * tests/t-ed25519.c: Typo fix.
+
+   tests: Add benchmarking option to tests/random.
+   + commit 21d0f068a721c022f955084c28304934fd198c5e
+   * tests/random.c: Always include unistd.h.
+   (prepend_srcdir): New.
+   (run_benchmark): New.
+   (main): Add options --benchmark and --with-seed-file.  Print whetehr
+   JENT has been used.
+   * tests/t-common.h (split_fields_colon): New. Taken from GnuPG.
+   License of that code changed to LGPLv2.1.
+
+   random: Add more bytes to the pool in addition to the seed file.
+   + commit eea36574f37830a6a80b4fad884825e815b2912f
+   * random/random-csprng.c (read_seed_file): Read 128 or 32 butes
+   depending on whether we have the Jitter RNG.
+
+2017-08-01  Jussi Kivilinna  
+
+   Add script to run basic tests with all supported HWF combinations.
+   + commit 94a92a3db909aef0ebcc009c2d7f5a2663e99004
+   * tests/basic_all_hwfeature_combinations.sh: New.
+   * tests/Makefile.am: Add basic_all_hwfeature_combinations.sh.
+
+2017-07-29  Jussi Kivilinna  
+
+   Fix return value type for _gcry_md_extract.
+   + commit cf1528e7f2761774d06ace0de48f39c96b52dc4f
+   * src/gcrypt-int.h (_gcry_md_extract): Use gpg_err_code_t instead of
+   gpg_error_t for internal function return type.
+
+   Fix building AArch32 CE implementations when target is ARMv6 arch.
+   + commit 4a7aa30ae9f3ce798dd886c2f2d4164c43027748
+   * cipher/cipher-gcm-armv8-aarch32-ce.S: Select ARMv8 architecure.
+   * cipher/rijndael-armv8-aarch32-ce.S: Ditto.
+   * cipher/sha1-armv8-aarch32-ce.S: Ditto.
+   * 

commit libgcrypt for openSUSE:Factory

2017-08-29 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2017-08-29 11:33:52

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Tue Aug 29 11:33:52 2017 rev:66 rq:512433 version:1.8.0

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2017-07-04 
11:54:17.004080375 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2017-08-29 
11:33:57.849720578 +0200
@@ -1,0 +2,38 @@
+Mon Jul 24 23:43:40 UTC 2017 - jeng...@inai.de
+
+- RPM group fixes.
+
+---
+Fri Jul 21 15:50:14 UTC 2017 - astie...@suse.com
+
+- libgcrypt 1.8.0:
+   * New cipher mode XTS
+   * New hash function Blake-2
+   * New function gcry_mpi_point_copy.
+   * New function gcry_get_config.
+   * GCRYCTL_REINIT_SYSCALL_CLAMP allows to init nPth after Libgcrypt.
+   * New gobal configuration file /etc/gcrypt/random.conf.
+   * GCRYCTL_PRINT_CONFIG does now also print build information for
+ libgpg-error and the used compiler version.
+   * GCRY_CIPHER_MODE_CFB8 is now supported.
+   * A jitter based entropy collector is now used in addition to the
+ other entropy collectors.
+   * Optimized gcry_md_hash_buffers for SHA-256 and SHA-512.
+ random pool lock).
+   * Interface changes relative to the 1.7.0 release:
+ gcry_get_config NEW function.
+ gcry_mpi_point_copy NEW function.
+ GCRYCTL_REINIT_SYSCALL_CLAMPNEW macro.
+ GCRY_MD_BLAKE2B_512 NEW constant.
+ GCRY_MD_BLAKE2B_384 NEW constant.
+ GCRY_MD_BLAKE2B_256 NEW constant.
+ GCRY_MD_BLAKE2B_160 NEW constant.
+ GCRY_MD_BLAKE2S_256 NEW constant.
+ GCRY_MD_BLAKE2S_224 NEW constant.
+ GCRY_MD_BLAKE2S_160 NEW constant.
+ GCRY_MD_BLAKE2S_128 NEW constant.
+ GCRY_CIPHER_MODE_XTSNEW constant.
+ gcry_md_infoDEPRECATED.
+- Refresh patch libgcrypt-1.6.3-aliasing.patch
+
+---

Old:

  libgcrypt-1.7.8.tar.bz2
  libgcrypt-1.7.8.tar.bz2.sig

New:

  libgcrypt-1.8.0.tar.bz2
  libgcrypt-1.8.0.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.Xpcquf/_old  2017-08-29 11:33:59.953424993 +0200
+++ /var/tmp/diff_new_pack.Xpcquf/_new  2017-08-29 11:33:59.961423869 +0200
@@ -21,10 +21,10 @@
 %define libsoname %{name}20
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.7.8
+Version:1.8.0
 Release:0
 Summary:The GNU Crypto Library
-License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
+License:GPL-2.0+ AND LGPL-2.1+ AND GPL-3.0+
 Group:  Development/Libraries/C and C++
 Url:http://directory.fsf.org/wiki/Libgcrypt
 Source: ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
@@ -58,9 +58,8 @@
 Patch34:libgcrypt-1.6.3-aliasing.patch
 BuildRequires:  automake >= 1.14
 BuildRequires:  fipscheck
-BuildRequires:  libgpg-error-devel >= 1.13
+BuildRequires:  libgpg-error-devel >= 1.25
 BuildRequires:  libtool
-BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 
 %description
 Libgcrypt is a general purpose library of cryptographic building
@@ -70,8 +69,8 @@
 
 %package -n %{libsoname}
 Summary:The GNU Crypto Library
-License:GPL-2.0+ and LGPL-2.1+
-Group:  Development/Libraries/C and C++
+License:GPL-2.0+ AND LGPL-2.1+
+Group:  System/Libraries
 
 %description -n %{libsoname}
 Libgcrypt is a general purpose crypto library based on the code used in
@@ -79,8 +78,8 @@
 
 %package -n %{libsoname}-hmac
 Summary:HMAC checksums for the GNU Crypto Library
-License:GPL-2.0+ and LGPL-2.1+
-Group:  Development/Libraries/C and C++
+License:GPL-2.0+ AND LGPL-2.1+
+Group:  System/Libraries
 Requires:   %{libsoname} = %{version}-%{release}
 
 %description -n %{libsoname}-hmac
@@ -90,7 +89,7 @@
 
 %package devel
 Summary:The GNU Crypto Library
-License:GFDL-1.1 and GPL-2.0+ and LGPL-2.1+ and MIT
+License:GFDL-1.1 AND GPL-2.0+ AND LGPL-2.1+ AND MIT
 Group:  Development/Libraries/C and C++
 Requires:   %{libsoname} = %{version}
 Requires:   glibc-devel
@@ -108,7 +107,7 @@
 
 %package cavs
 Summary:The GNU Crypto Library
-License:GFDL-1.1 and GPL-2.0+ and LGPL-2.1+ and MIT
+License:GFDL-1.1 AND GPL-2.0+ AND LGPL-2.1+ AND MIT
 Group:  Development/Libraries/C and C++
 

commit libgcrypt for openSUSE:Factory

2017-07-04 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2017-07-04 11:54:12

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Tue Jul  4 11:54:12 2017 rev:65 rq:507221 version:1.7.8

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2017-06-05 
18:50:00.528036877 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2017-07-04 
11:54:17.004080375 +0200
@@ -1,0 +2,7 @@
+Thu Jun 29 09:49:44 UTC 2017 - astie...@suse.com
+
+- libgcrypt 1.7.8:
+  * CVE-2017-7526: Mitigate a flush+reload side-channel attack on
+RSA secret keys (bsc#1046607)
+
+---

Old:

  libgcrypt-1.7.7.tar.bz2
  libgcrypt-1.7.7.tar.bz2.sig

New:

  libgcrypt-1.7.8.tar.bz2
  libgcrypt-1.7.8.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.tMHNxP/_old  2017-07-04 11:54:18.199912087 +0200
+++ /var/tmp/diff_new_pack.tMHNxP/_new  2017-07-04 11:54:18.207910962 +0200
@@ -21,7 +21,7 @@
 %define libsoname %{name}20
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.7.7
+Version:1.7.8
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+

++ libgcrypt-1.7.7.tar.bz2 -> libgcrypt-1.7.8.tar.bz2 ++
 9250 lines of diff (skipped)




commit libgcrypt for openSUSE:Factory

2017-06-05 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2017-06-05 18:49:58

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Mon Jun  5 18:49:58 2017 rev:64 rq:501083 version:1.7.7

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2017-01-25 
22:32:30.967272306 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2017-06-05 
18:50:00.528036877 +0200
@@ -1,0 +2,16 @@
+Sun Jun  4 19:26:12 UTC 2017 - astie...@suse.com
+
+- libgcrypt 1.7.7:
+  * Fix possible timing attack on EdDSA session key (previously
+patched, drop libgcrypt-secure-EdDSA-session-key.patch)
+  * Fix long standing bug in secure memory implementation which
+could lead to a segv on free
+
+---
+Fri Jun  2 10:05:18 UTC 2017 - pmonrealgonza...@suse.com
+
+- Added libgcrypt-secure-EdDSA-session-key.patch [bsc#1042326]
+  * Store the session key in secure memory to ensure that constant
+time point operations are used in the MPI library.
+
+---

Old:

  libgcrypt-1.7.6.tar.bz2
  libgcrypt-1.7.6.tar.bz2.sig

New:

  libgcrypt-1.7.7.tar.bz2
  libgcrypt-1.7.7.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.oh46p9/_old  2017-06-05 18:50:01.975832803 +0200
+++ /var/tmp/diff_new_pack.oh46p9/_new  2017-06-05 18:50:01.999829420 +0200
@@ -21,7 +21,7 @@
 %define libsoname %{name}20
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.7.6
+Version:1.7.7
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+

++ libgcrypt-1.7.6.tar.bz2 -> libgcrypt-1.7.7.tar.bz2 ++
 10217 lines of diff (skipped)




commit libgcrypt for openSUSE:Factory

2017-01-25 Thread root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2017-01-25 22:32:29

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2016-08-31 
00:00:27.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2017-01-25 
22:32:30.967272306 +0100
@@ -1,0 +2,34 @@
+Fri Jan 20 09:41:15 UTC 2017 - rmali...@suse.com
+
+- libgcrypt 1.7.6:
+  * Fix counter operand from read-only to read/write 
+  * Fix too large jump alignment in mpih-rshift
+
+---
+Thu Dec 15 10:32:18 UTC 2016 - astie...@suse.com
+
+- libgcrypt 1.7.5:
+  * Fix regression in mlock detection introduced with 1.7.4
+
+---
+Tue Dec 13 12:20:47 UTC 2016 - astie...@suse.com
+
+- libgcrypt 1.7.4:
+  * ARMv8/AArch32 performance improvements for AES, GCM, SHA-256,
+and SHA-1.
+  * Add ARMv8/AArch32 assembly implementation for Twofish and
+Camellia.
+  * Add bulk processing implementation for ARMv8/AArch32.
+  * Add Stribog OIDs.
+  * Improve the DRBG performance and sync the code with the Linux
+version.
+  * When secure memory is requested by the MPI functions or by
+gcry_xmalloc_secure, they do not anymore lead to a fatal error
+if the secure memory pool is used up.  Instead new pools are
+allocated as needed.  These new pools are not protected against
+being swapped out (mlock can't be used). Mitigation for
+minor confidentiality issues is encryption swap space.
+  * Fix GOST 28147 CryptoPro-B S-box.
+  * Fix error code handling of mlock calls.
+
+---

Old:

  libgcrypt-1.7.3.tar.bz2
  libgcrypt-1.7.3.tar.bz2.sig

New:

  libgcrypt-1.7.6.tar.bz2
  libgcrypt-1.7.6.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.yyDZns/_old  2017-01-25 22:32:32.507039282 +0100
+++ /var/tmp/diff_new_pack.yyDZns/_new  2017-01-25 22:32:32.515038071 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,10 +19,9 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 %define libsoname %{name}20
-%define sosuffix  20.1.3
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.7.3
+Version:1.7.6
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+

++ libgcrypt-1.7.3.tar.bz2 -> libgcrypt-1.7.6.tar.bz2 ++
 13854 lines of diff (skipped)




commit libgcrypt for openSUSE:Factory

2016-08-30 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2016-08-31 00:00:25

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2016-08-22 
10:06:37.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2016-08-31 
00:00:27.0 +0200
@@ -1,0 +2,144 @@
+Sat Aug 20 10:38:15 UTC 2016 - mpluskal,vcizek,astieger}@suse.com
+
+- libgcrypt 1.7.3:
+   * security issue already fixes with 1.6.6
+   * Fix building of some asm modules with older compilers and CPUs.
+   * ARMv8/AArch32 improvements for AES, GCM, SHA-256, and SHA-1.
+- includes changes from libgcrypt 1.7.2:
+ * Bug fixes:
+   - Fix setting of the ECC cofactor if parameters are specified.
+   - Fix memory leak in the ECC code.
+   - Remove debug message about unsupported getrandom syscall.
+   - Fix build problems related to AVX use.
+   - Fix bus errors on ARM for Poly1305, ChaCha20, AES, and SHA-512.
+ * Internal changes:
+   - Improved fatal error message for wrong use of gcry_md_read.
+   - Disallow symmetric encryption/decryption if key is not set.
+- includes changes from 1.7.1:
+ * Bug fixes:
+   - Fix ecc_verify for cofactor support.
+   - Fix portability bug when using gcc with Solaris 9 SPARC.
+   - Build fix for OpenBSD/amd64
+   - Add OIDs to the Serpent ciphers.
+ * Internal changes:
+   - Use getrandom system call on Linux if available.
+   - Blinding is now also used for RSA signature creation.
+   - Changed names of debug envvars
+- includes changes from 1.7.0:
+ * New algorithms and modes:
+   - SHA3-224, SHA3-256, SHA3-384, SHA3-512, and MD2 hash algorithms.
+   - SHAKE128 and SHAKE256 extendable-output hash algorithms.
+   - ChaCha20 stream cipher.
+   - Poly1305 message authentication algorithm
+   - ChaCha20-Poly1305 Authenticated Encryption with Associated Data
+ mode.
+   - OCB mode.
+   - HMAC-MD2 for use by legacy applications.
+ * New curves for ECC:
+   - Curve25519.
+   - sec256k1.
+   - GOST R 34.10-2001 and GOST R 34.10-2012.
+ * Performance:
+   - Improved performance of KDF functions.
+   - Assembler optimized implementations of Blowfish and Serpent on
+ ARM.
+   - Assembler optimized implementation of 3DES on x86.
+   - Improved AES using the SSSE3 based vector permutation method by
+ Mike Hamburg.
+   - AVX/BMI is used for SHA-1 and SHA-256 on x86.  This is for SHA-1
+ about 20% faster than SSSE3 and more than 100% faster than the
+ generic C implementation.
+   - 40% speedup for SHA-512 and 72% for SHA-1 on ARM Cortex-A8.
+   - 60-90% speedup for Whirlpool on x86.
+   - 300% speedup for RIPE MD-160.
+   - Up to 11 times speedup for CRC functions on x86.
+ * Other features:
+   - Improved ECDSA and FIPS 186-4 compliance.
+   - Support for Montgomery curves.
+   - gcry_cipher_set_sbox to tweak S-boxes of the gost28147 cipher
+ algorithm.
+   - gcry_mpi_ec_sub to subtract two points on a curve.
+   - gcry_mpi_ec_decode_point to decode an MPI into a point object.
+   - Emulation for broken Whirlpool code prior to 1.6.0.  [from 1.6.1]
+   - Flag "pkcs1-raw" to enable PCKS#1 padding with a user supplied
+ hash part.
+   - Parameter "saltlen" to set a non-default salt length for RSA PSS.
+   - A SP800-90A conforming DRNG replaces the former X9.31 alternative
+ random number generator.
+   - Map deprecated RSA algo number to the RSA algo number for better
+ backward compatibility. [from 1.6.2]
+   - Use ciphertext blinding for Elgamal decryption [CVE-2014-3591].
+ See http://www.cs.tau.ac.il/~tromer/radioexp/ for details.
+ [from 1.6.3]
+   - Fixed data-dependent timing variations in modular exponentiation
+ [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks
+  are Practical]. [from 1.6.3]
+   - Flag "no-keytest" for ECC key generation.  Due to a bug in
+ the parser that flag will also be accepted but ignored by older
+ version of Libgcrypt. [from 1.6.4]
+   - Speed up the random number generator by requiring less extra
+ seeding. [from 1.6.4]
+   - Always verify a created RSA signature to avoid private key leaks
+ due to hardware failures. [from 1.6.4]
+   - Mitigate side-channel attack on ECDH with Weierstrass curves
+ [CVE-2015-7511].  See http://www.cs.tau.ac.IL/~tromer/ecdh/ for
+ details. [from 1.6.5]
+ * Internal changes:
+   - Moved locking out to libgpg-error.
+   - Support of the SYSROOT envvar in the build system.
+   - Refactor some code.
+   - The availability of a 64 bit integer type is now mandatory.
+ * Bug fixes:
+   - Fixed message digest lookup by OID (regression in 1.6.0).
+   - Fixed a build problem on NetBSD
+   - Fixed some asm 

commit libgcrypt for openSUSE:Factory

2016-08-22 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2016-08-22 10:06:35

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2016-05-20 
11:55:23.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2016-08-22 
10:06:37.0 +0200
@@ -1,0 +2,9 @@
+Wed Aug 17 18:21:44 UTC 2016 - astie...@suse.com
+
+- libgcrypt 1.6.6:
+  * fix CVE-2016-6313: Issue in the mixing functions of the random
+number generators allowed an attacker who obtained a number of
+bytes from the standard RNG to predict some of the next ouput.
+(bsc#994157)
+
+---

Old:

  libgcrypt-1.6.5.tar.bz2
  libgcrypt-1.6.5.tar.bz2.sig

New:

  libgcrypt-1.6.6.tar.bz2
  libgcrypt-1.6.6.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.CtMmFO/_old  2016-08-22 10:06:39.0 +0200
+++ /var/tmp/diff_new_pack.CtMmFO/_new  2016-08-22 10:06:39.0 +0200
@@ -19,10 +19,10 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 %define libsoname %{name}20
-%define sosuffix  20.0.5
+%define sosuffix  20.0.6
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.6.5
+Version:1.6.6
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+

++ libgcrypt-1.6.5.tar.bz2 -> libgcrypt-1.6.6.tar.bz2 ++
 5520 lines of diff (skipped)




commit libgcrypt for openSUSE:Factory

2016-05-20 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2016-05-20 11:55:14

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2016-02-18 
12:35:39.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2016-05-20 
11:55:23.0 +0200
@@ -1,0 +2,13 @@
+Mon May 16 14:37:45 UTC 2016 - pjano...@suse.de
+
+- remove conditionals for unsupported distributions (before 13.2),
+  it would not build anyway because of new dependencies
+
+---
+Mon May 16 12:36:14 UTC 2016 - pjano...@suse.de
+
+- make the -hmac package depend on the same version of the library,
+  fixing bsc#979629 FIPS: system fails to reboot after installing
+  fips pattern
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.7oWYk4/_old  2016-05-20 11:55:24.0 +0200
+++ /var/tmp/diff_new_pack.7oWYk4/_new  2016-05-20 11:55:24.0 +0200
@@ -70,12 +70,10 @@
 Patch33:libgcrypt-fips_ecdsa.patch
 Patch34:libgcrypt-1.6.3-aliasing.patch
 BuildRequires:  automake >= 1.14
+BuildRequires:  fipscheck
 BuildRequires:  libgpg-error-devel >= 1.11
 BuildRequires:  libtool
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
-%if 0%{?suse_version} > 1310
-BuildRequires:  fipscheck
-%endif
 
 %description
 Libgcrypt is a general purpose library of cryptographic building
@@ -96,6 +94,7 @@
 Summary:HMAC checksums for the GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+
 Group:  Development/Libraries/C and C++
+Requires:   %{libsoname} = %{version}-%{release}
 
 %description -n %{libsoname}-hmac
 Libgcrypt is a general purpose crypto library based on the code used in
@@ -131,7 +130,6 @@
 CAVS testing framework for libgcrypt
 
 %if 0%{?separate_hmac256_binary}
-
 %package hmac256
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+
@@ -156,7 +154,6 @@
 %patch4 -p1
 %patch5 -p1
 %patch7 -p1
-%if 0%{?suse_version} > 1310
 %patch12 -p1
 %patch21 -p1
 %patch22 -p1
@@ -172,7 +169,6 @@
 %patch32 -p1
 %patch33 -p1
 %patch34 -p1
-%endif
 %patch13 -p1
 %patch14 -p1
 
@@ -180,7 +176,7 @@
 echo building with build_hmac256 set to %{build_hmac256}
 %{?suse_update_config}
 autoreconf -fi
-date=$(date -u +%Y-%m-%dT%H:%M+ -r %{S:99})
+date=$(date -u +%Y-%m-%dT%H:%M+ -r %{SOURCE99})
 sed -e "s,BUILD_TIMESTAMP=.*,BUILD_TIMESTAMP=$date," -i configure
 export CFLAGS="%{optflags} $(getconf LFS_CFLAGS)"
 %configure --with-pic \
@@ -202,26 +198,14 @@
 #
 # this shows up earlier because otherwise the %expand of
 # the macro is too late.
-%if 0%{?suse_version} > 1310
 %{expand:%%global __os_install_post {%__os_install_post
 fipshmac %{buildroot}/%{_bindir}/hmac256
 fipshmac %{buildroot}/%{_libdir}/*.so.??
 }}
-%else
-%{expand:%%global __os_install_post {%__os_install_post
-
-%{buildroot}/%{_bindir}/hmac256 "What am I, a doctor or a moonshuttle 
conductor?"  \
-  < %{buildroot}/%{_bindir}/hmac256 > %{buildroot}/%{_bindir}/.hmac256.hmac
-%{buildroot}/%{_bindir}/hmac256 "What am I, a doctor or a moonshuttle 
conductor?"  \
-  < %{buildroot}/%{_libdir}/libgcrypt.so.%{sosuffix} > 
%{buildroot}/%{_libdir}/.libgcrypt.so.20.hmac
-}}
-%endif
 %endif
 
 %check
-%if 0%{?suse_version} > 1310
 fipshmac src/.libs/libgcrypt.so.??
-%endif
 # Nice idea. however this uses /dev/random, which hangs
 # on hardware without random feeds.
 # so lets not run it inside OBS
@@ -236,11 +220,9 @@
 install -m 0755 %{SOURCE5} %{buildroot}%{cavs_dir}
 install -m 0755 %{SOURCE6} %{buildroot}%{cavs_dir}
 
-%if 0%{?suse_version} > 1310
 mv %{buildroot}%{_bindir}/fips186_dsa %{buildroot}%{cavs_dir}
 mv %{buildroot}%{_bindir}/fipsdrv %{buildroot}%{cavs_dir}
 mv %{buildroot}%{_bindir}/drbg_test %{buildroot}%{cavs_dir}
-%endif
 
 %post -n %{libsoname} -p /sbin/ldconfig
 
@@ -275,7 +257,6 @@
 %{_datadir}/aclocal/%{name}.m4
 
 %if 0%{?separate_hmac256_binary}
-
 %files hmac256
 %defattr(-,root,root)
 %endif # %if 0%{?separate_hmac256_binary}





commit libgcrypt for openSUSE:Factory

2016-02-18 Thread h_root


binbezk7EqEGS.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2015-10-20 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2015-10-20 16:21:01

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is "libgcrypt"

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2015-09-19 
06:53:19.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2015-10-20 
16:21:02.0 +0200
@@ -1,0 +2,5 @@
+Sat Oct 10 11:56:08 UTC 2015 - astie...@suse.com
+
+- follow-up to libgcrypt 1.6.4 update: sosuffix is 20.0.4
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.ssWNmr/_old  2015-10-20 16:21:03.0 +0200
+++ /var/tmp/diff_new_pack.ssWNmr/_new  2015-10-20 16:21:03.0 +0200
@@ -19,7 +19,7 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 %define libsoname %{name}20
-%define sosuffix  20.0.3
+%define sosuffix  20.0.4
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
 Version:1.6.4





commit libgcrypt for openSUSE:Factory

2015-09-18 Thread h_root


bin5U0cF5C6Sl.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2015-07-02 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2015-07-02 22:45:56

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2015-03-05 
18:15:55.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2015-07-02 
22:45:57.0 +0200
@@ -1,0 +2,6 @@
+Tue Jun 23 15:15:30 UTC 2015 - dval...@suse.com
+
+- Fix gpg2 tests on BigEndian architectures: s390x ppc64 
+  libgcrypt-1.6.3-aliasing.patch
+
+---

New:

  libgcrypt-1.6.3-aliasing.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.KL6Chv/_old  2015-07-02 22:45:59.0 +0200
+++ /var/tmp/diff_new_pack.KL6Chv/_new  2015-07-02 22:45:59.0 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -68,6 +68,7 @@
 Patch32:libgcrypt-fips_run_selftest_at_constructor.patch
 #PATCH-FIX-SUSE bnc#896202 make ECDSA compliant with FIPS 186-4
 Patch33:libgcrypt-fips_ecdsa.patch
+Patch34:libgcrypt-1.6.3-aliasing.patch
 BuildRequires:  automake = 1.14
 BuildRequires:  libgpg-error-devel = 1.11
 BuildRequires:  libtool
@@ -170,6 +171,7 @@
 %patch31 -p1
 %patch32 -p1
 %patch33 -p1
+%patch34 -p1
 %endif
 %patch13 -p1
 %patch14 -p1

++ libgcrypt-1.6.3-aliasing.patch ++
diff -up libgcrypt-1.6.3/cipher/bufhelp.h.aliasing 
libgcrypt-1.6.3/cipher/bufhelp.h
--- libgcrypt-1.6.3/cipher/bufhelp.h.aliasing   2015-02-27 10:54:03.0 
+0100
+++ libgcrypt-1.6.3/cipher/bufhelp.h2015-03-13 15:03:43.301749751 +0100
@@ -80,7 +80,7 @@ do_bytes:
   for (; len; len--)
 *dst++ = *src++;
 #endif /*__GNUC__ = 4  (__x86_64__ || __i386__)*/
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 
 /* Optimized function for buffer xoring */
@@ -117,7 +117,7 @@ do_bytes:
   /* Handle tail.  */
   for (; len; len--)
 *dst++ = *src1++ ^ *src2++;
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 
 /* Optimized function for buffer xoring with two destination buffers.  Used
@@ -155,7 +155,7 @@ do_bytes:
   /* Handle tail.  */
   for (; len; len--)
 *dst1++ = (*dst2++ ^= *src++);
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 
 /* Optimized function for combined buffer xoring and copying.  Used by mainly
@@ -208,7 +208,7 @@ do_bytes:
   *dst_xor++ = *srcdst_cpy ^ *src_xor++;
   *srcdst_cpy++ = temp;
 }
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 
 /* Optimized function for combined buffer xoring and copying.  Used by mainly
@@ -234,7 +234,7 @@ buf_eq_const(const void *_a, const void
 diff -= !!(a[i] - b[i]);
 
   return !diff;
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 
 #ifndef BUFHELP_FAST_UNALIGNED_ACCESS
@@ -246,14 +246,14 @@ static inline u32 buf_get_be32(const voi
   const byte *in = _buf;
   return ((u32)in[0]  24) | ((u32)in[1]  16) | \
  ((u32)in[2]  8) | (u32)in[3];
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 static inline u32 buf_get_le32(const void *_buf)
 {
   const byte *in = _buf;
   return ((u32)in[3]  24) | ((u32)in[2]  16) | \
  ((u32)in[1]  8) | (u32)in[0];
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 static inline void buf_put_be32(void *_buf, u32 val)
 {
@@ -262,7 +262,7 @@ static inline void buf_put_be32(void *_b
   out[1] = val  16;
   out[2] = val  8;
   out[3] = val;
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 static inline void buf_put_le32(void *_buf, u32 val)
 {
@@ -271,7 +271,7 @@ static inline void buf_put_le32(void *_b
   out[2] = val  16;
   out[1] = val  8;
   out[0] = val;
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 #ifdef HAVE_U64_TYPEDEF
 /* Functions for loading and storing unaligned u64 values of different
@@ -283,7 +283,7 @@ static inline u64 buf_get_be64(const voi
  ((u64)in[2]  40) | ((u64)in[3]  32) | \
  ((u64)in[4]  24) | ((u64)in[5]  16) | \
  ((u64)in[6]  8) | (u64)in[7];
-}
+} __attribute__ ((optimize(no-strict-aliasing)))
 
 static inline u64 buf_get_le64(const void *_buf)
 {
@@ -292,7 +292,7 @@ static inline u64 buf_get_le64(const voi
  ((u64)in[5]  40) | ((u64)in[4]  32) | \
  ((u64)in[3]  24) | ((u64)in[2]  16) | \
  ((u64)in[1]  8) | (u64)in[0];
-}
+} __attribute__ 

commit libgcrypt for openSUSE:Factory

2015-03-05 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2015-03-05 15:39:00

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2015-02-16 
17:34:09.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2015-03-05 
18:15:55.0 +0100
@@ -1,0 +2,15 @@
+Sun Mar  1 21:16:26 UTC 2015 - astie...@suse.com
+
+- fix sosuffix for 1.6.3 (20.0.3)
+
+---
+Sat Feb 28 19:31:10 UTC 2015 - astie...@suse.com
+
+- libgcrypt 1.6.3 [bnc#920057]:
+ * Use ciphertext blinding for Elgamal decryption [CVE-2014-3591].
+ * Fixed data-dependent timing variations in modular exponentiation
+   [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks
+   are Practical].
+- update upstream signing keyring
+
+---

Old:

  libgcrypt-1.6.2.tar.bz2
  libgcrypt-1.6.2.tar.bz2.sig

New:

  libgcrypt-1.6.3.tar.bz2
  libgcrypt-1.6.3.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.KOMEBd/_old  2015-03-05 18:15:56.0 +0100
+++ /var/tmp/diff_new_pack.KOMEBd/_new  2015-03-05 18:15:56.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,10 +19,10 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 %define libsoname %{name}20
-%define sosuffix  20.0.2
+%define sosuffix  20.0.3
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.6.2
+Version:1.6.3
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -31,8 +31,8 @@
 Source: ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
 Source1:
ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
 Source2:baselibs.conf
-# http://www.gnupg.org/signature_key.en.html
 Source4:%{name}.keyring
+# https://www.gnupg.org/signature_key.en.html
 # cavs test framework
 Source5:cavs-test.sh
 Source6:cavs_driver.pl
@@ -68,7 +68,7 @@
 Patch32:libgcrypt-fips_run_selftest_at_constructor.patch
 #PATCH-FIX-SUSE bnc#896202 make ECDSA compliant with FIPS 186-4
 Patch33:libgcrypt-fips_ecdsa.patch
-BuildRequires:  automake = 1.11
+BuildRequires:  automake = 1.14
 BuildRequires:  libgpg-error-devel = 1.11
 BuildRequires:  libtool
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
@@ -246,13 +246,9 @@
 
 %post devel
 %install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
-%install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info-1.gz
-%install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info-2.gz
 
 %preun devel
 %install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
-%install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info-1.gz
-%install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info-2.gz
 
 %files -n %{libsoname}
 %defattr(-,root,root)
@@ -269,8 +265,6 @@
 %defattr(-,root,root)
 %doc AUTHORS COPYING COPYING.LIB ChangeLog NEWS README THANKS TODO
 %{_infodir}/gcrypt.info.gz
-%{_infodir}/gcrypt.info-1.gz
-%{_infodir}/gcrypt.info-2.gz
 %{_bindir}/dumpsexp
 %{_bindir}/mpicalc
 %{_bindir}/%{name}-config

++ libgcrypt-1.6.2.tar.bz2 - libgcrypt-1.6.3.tar.bz2 ++
 24757 lines of diff (skipped)

++ libgcrypt.keyring ++
--- /var/tmp/diff_new_pack.KOMEBd/_old  2015-03-05 18:15:58.0 +0100
+++ /var/tmp/diff_new_pack.KOMEBd/_new  2015-03-05 18:15:58.0 +0100
@@ -1,411 +1,127 @@
 pub   2048R/4F25E3B6 2011-01-12 [expires: 2019-12-31]
-Key fingerprint = D869 2123 C406 5DEA 5E0F  3AB5 249B 39D2 4F25 E3B6
-  uid  Werner Koch (dist sig)
-  sub   2048R/AC87C71A 2011-01-12 [expires: 2019-12-31]
+  Key fingerprint = D869 2123 C406 5DEA 5E0F  3AB5 249B 39D2 4F25 E3B6
+uid   Werner Koch (dist sig)
+
+pub   rsa2048/E0856959 2014-10-29 [expires: 2019-12-31]
+  Key fingerprint = 46CC 7308 65BB 5C78 EBAB  ADCF 0437 6F3E E085 6959
+uid   David Shaw (GnuPG Release Signing Key) lt;dshaw 'at' jabberwocky.comgt;
+
+pub   rsa2048/33BD3F06 2014-10-29 [expires: 2016-10-28]
+  Key fingerprint = 031E C253 6E58 0D8E A286  A9F2 2071 B08A 33BD 3F06
+uid   NIIBE Yutaka (GnuPG 

commit libgcrypt for openSUSE:Factory

2015-02-16 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2015-02-16 15:01:48

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-11-14 
09:18:30.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2015-02-16 
17:34:09.0 +0100
@@ -1,0 +2,20 @@
+Fri Feb  6 18:42:28 UTC 2015 - co...@suse.com
+
+- making the build reproducible - see 
+  http://lists.gnupg.org/pipermail/gnupg-commits/2014-September/010683.html
+  for a very similiar problem
+
+---
+Fri Feb  6 18:38:55 UTC 2015 - dims...@opensuse.org
+
+- Move %install_info_delete calls from postun to preun: the files
+  must still be present to be parsed.
+- Fix the names passed to install_info for gcrypt.info-[12].gz
+  instead of gcrypt-[12].info.gz.
+
+---
+Fri Feb  6 18:30:26 UTC 2015 - co...@suse.com
+
+- fix filename for info pages in %post scripts
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.bKIkgb/_old  2015-02-16 17:34:10.0 +0100
+++ /var/tmp/diff_new_pack.bKIkgb/_new  2015-02-16 17:34:10.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -36,6 +36,7 @@
 # cavs test framework
 Source5:cavs-test.sh
 Source6:cavs_driver.pl
+Source99:   %{name}.changes
 Patch0: %{name}-ppc64.patch
 Patch1: %{name}-strict-aliasing.patch
 Patch3: %{name}-1.4.1-rijndael_no_strict_aliasing.patch
@@ -177,6 +178,8 @@
 echo building with build_hmac256 set to %{build_hmac256}
 %{?suse_update_config}
 autoreconf -fi
+date=$(date -u +%Y-%m-%dT%H:%M+ -r %{S:99})
+sed -e s,BUILD_TIMESTAMP=.*,BUILD_TIMESTAMP=$date, -i configure
 export CFLAGS=%{optflags} $(getconf LFS_CFLAGS)
 %configure --with-pic \
--enable-noexecstack \
@@ -243,13 +246,13 @@
 
 %post devel
 %install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
-%install_info --info-dir=%{_infodir} %{_infodir}/gcrypt-1.info.gz
-%install_info --info-dir=%{_infodir} %{_infodir}/gcrypt-2.info.gz
+%install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info-1.gz
+%install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info-2.gz
 
-%postun devel
+%preun devel
 %install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
-%install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt-1.info.gz
-%install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt-2.info.gz
+%install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info-1.gz
+%install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info-2.gz
 
 %files -n %{libsoname}
 %defattr(-,root,root)


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2014-11-14 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-11-14 09:18:28

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-09-24 
13:09:33.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-11-14 
09:18:30.0 +0100
@@ -1,0 +2,15 @@
+Wed Nov  5 20:37:24 UTC 2014 - andreas.stie...@gmx.de
+
+- libgcrypt 1.6.2:
+ * Map deprecated RSA algo number to the RSA algo number for better
+   backward compatibility.
+ * Support a 0x40 compression prefix for EdDSA.
+ * Improve ARM hardware feature detection and building.
+ * Fix building for the x32 ABI platform.
+ * Fix some possible NULL deref bugs.
+- remove libgcrypt-1.6.0-use-intenal-functions.patch, upstream
+  via xtrymalloc macro 
+- remove libgcrypt-fixed-sizet.patch, upstream
+- adjust libgcrypt-1.6.1-use-fipscheck.patch for xtrymalloc change
+
+---

Old:

  libgcrypt-1.6.0-use-intenal-functions.patch
  libgcrypt-1.6.1.tar.bz2
  libgcrypt-1.6.1.tar.bz2.sig
  libgcrypt-fixed-sizet.patch

New:

  libgcrypt-1.6.2.tar.bz2
  libgcrypt-1.6.2.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.l8lxcg/_old  2014-11-14 09:18:32.0 +0100
+++ /var/tmp/diff_new_pack.l8lxcg/_new  2014-11-14 09:18:32.0 +0100
@@ -19,10 +19,10 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 %define libsoname %{name}20
-%define sosuffix  20.0.1
+%define sosuffix  20.0.2
 %define cavs_dir %{_libexecdir}/%{name}/cavs
 Name:   libgcrypt
-Version:1.6.1
+Version:1.6.2
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -45,9 +45,6 @@
 Patch5: libgcrypt-unresolved-dladdr.patch
 #PATCH-FIX-SUSE: N/A
 Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
-#PATCH-FIX-UPSTREAM: internal functions are supposed to be used inside 
libgcrypt, mvysko...@suse.com
-Patch8: libgcrypt-1.6.0-use-intenal-functions.patch
-Patch11:libgcrypt-fixed-sizet.patch
 Patch12:libgcrypt-1.6.1-use-fipscheck.patch
 Patch13:libgcrypt-1.6.1-fips-cavs.patch
 #PATCH-FIX-SUSE: bnc#724841, fix a random device opening routine
@@ -157,8 +154,6 @@
 %patch4 -p1
 %patch5 -p1
 %patch7 -p1
-%patch8 -p1
-%patch11 -p1
 %if 0%{?suse_version}  1310
 %patch12 -p1
 %patch21 -p1

++ libgcrypt-1.6.1-use-fipscheck.patch ++
--- /var/tmp/diff_new_pack.l8lxcg/_old  2014-11-14 09:18:32.0 +0100
+++ /var/tmp/diff_new_pack.l8lxcg/_new  2014-11-14 09:18:32.0 +0100
@@ -1,7 +1,25 @@
-Index: libgcrypt-1.6.1/src/fips.c
+---
+ src/Makefile.in |2 +-
+ src/fips.c  |   39 ---
+ 2 files changed, 33 insertions(+), 8 deletions(-)
+
+Index: libgcrypt-1.6.2/src/Makefile.in
 ===
 libgcrypt-1.6.1.orig/src/fips.c
-+++ libgcrypt-1.6.1/src/fips.c
+--- libgcrypt-1.6.2.orig/src/Makefile.in   2014-11-05 20:33:18.0 
+
 libgcrypt-1.6.2/src/Makefile.in2014-11-05 20:34:04.0 +
+@@ -449,7 +449,7 @@ libgcrypt_la_LIBADD = $(gcrypt_res) \
+   ../cipher/libcipher.la \
+   ../random/librandom.la \
+   ../mpi/libmpi.la \
+-  ../compat/libcompat.la  $(GPG_ERROR_LIBS)
++  ../compat/libcompat.la  $(GPG_ERROR_LIBS) -ldl
+ 
+ dumpsexp_SOURCES = dumpsexp.c
+ dumpsexp_CFLAGS = $(arch_gpg_error_cflags)
+Index: libgcrypt-1.6.2/src/fips.c
+===
+--- libgcrypt-1.6.2.orig/src/fips.c2014-11-05 20:33:18.0 +
 libgcrypt-1.6.2/src/fips.c 2014-11-05 20:34:04.0 +
 @@ -589,23 +589,48 @@ run_random_selftests (void)
return !!err;
  }
@@ -60,8 +78,8 @@
  err = gpg_error (GPG_ERR_INTERNAL);
else
  {
--  fname = _gcry_malloc (strlen (info.dli_fname) + 1 + 5 + 1 );
-+  fname = _gcry_malloc (strlen (libpath) + 1 + 5 + 1 );
+-  fname = xtrymalloc (strlen (info.dli_fname) + 1 + 5 + 1 );
++  fname = xtrymalloc (strlen (libpath) + 1 + 5 + 1 );
if (!fname)
  err = gpg_error_from_syserror ();
else
@@ -74,16 +92,3 @@
p = strrchr (fname, '/');
if (p)
  p++;
-Index: libgcrypt-1.6.1/src/Makefile.in
-===
 libgcrypt-1.6.1.orig/src/Makefile.in
-+++ 

commit libgcrypt for openSUSE:Factory

2014-09-24 Thread h_root


bin9oTCp28zsK.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2014-09-03 Thread h_root


binfDEOjm5Gds.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2014-08-16 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-08-16 15:37:35

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-06-01 
18:54:44.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-08-16 
15:37:36.0 +0200
@@ -1,0 +2,5 @@
+Tue Aug 12 07:43:19 UTC 2014 - meiss...@suse.com
+
+- split off the -hmac package that contains the checksums
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.O3T2vL/_old  2014-08-16 15:37:38.0 +0200
+++ /var/tmp/diff_new_pack.O3T2vL/_new  2014-08-16 15:37:38.0 +0200
@@ -83,6 +83,16 @@
 Libgcrypt is a general purpose crypto library based on the code used in
 GnuPG (alpha version).
 
+%package -n %{libsoname}-hmac
+Summary:HMAC checksums for the GNU Crypto Library
+License:GPL-2.0+ and LGPL-2.1+
+Group:  Development/Libraries/C and C++
+
+%description -n %{libsoname}-hmac
+Libgcrypt is a general purpose crypto library based on the code used in
+GnuPG (alpha version). This package contains the HMAC checksum files
+for integrity checking the library, as required by FIPS 140-2.
+
 %package devel
 Summary:The GNU Crypto Library
 License:GFDL-1.1 and GPL-2.0+ and LGPL-2.1+ and MIT
@@ -216,6 +226,9 @@
 %defattr(-,root,root)
 %doc COPYING.LIB
 %{_libdir}/%{name}.so.*
+
+%files -n %{libsoname}-hmac
+%defattr(-,root,root)
 %if 0%{?build_hmac256}
 %{_libdir}/.libgcrypt.so.*.hmac
 %endif # %if 0%{?build_hmac256}
@@ -234,6 +247,7 @@
 %{_datadir}/aclocal/%{name}.m4
 
 %if 0%{?separate_hmac256_binary}
+
 %files hmac256
 %defattr(-,root,root)
 %endif # %if 0%{?separate_hmac256_binary}

++ baselibs.conf ++
--- /var/tmp/diff_new_pack.O3T2vL/_old  2014-08-16 15:37:38.0 +0200
+++ /var/tmp/diff_new_pack.O3T2vL/_new  2014-08-16 15:37:38.0 +0200
@@ -1,6 +1,7 @@
 libgcrypt20
   obsoletes libgcrypt-targettype = version
   provides libgcrypt-targettype = version
+libgcrypt20-hmac
 libgcrypt-devel
  requires -libgcrypt-targettype
  requires libgcrypt20-targettype = version


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2014-06-01 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-06-01 18:54:43

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-05-17 
22:01:41.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-06-01 
18:54:44.0 +0200
@@ -1,0 +2,9 @@
+Mon May 26 12:05:17 UTC 2014 - meiss...@suse.com
+
+- libgcrypt-fix-rng.patch: make drbg work again in FIPS mode.
+- libgcrypt-1.6.1-use-fipscheck.patch: library to test is libgcrypt.so.20
+  and not libgcrypt.so.11
+- libgcrypt-init-at-elf-load-fips.patch: initialize globally on ELF 
+  DSO loading to meet FIPS requirements.
+
+---

New:

  libgcrypt-fix-rng.patch
  libgcrypt-init-at-elf-load-fips.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.257xid/_old  2014-06-01 18:54:46.0 +0200
+++ /var/tmp/diff_new_pack.257xid/_new  2014-06-01 18:54:46.0 +0200
@@ -56,6 +56,8 @@
 Patch25:0005-Function-definitions-for-gcry_control-callbacks.patch
 Patch26:0006-DRBG-specific-gcry_control-requests.patch
 Patch27:0007-User-interface-to-DRBG.patch
+Patch28:libgcrypt-fix-rng.patch
+Patch29:libgcrypt-init-at-elf-load-fips.patch
 BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.11
 BuildRequires:  libtool
@@ -136,6 +138,8 @@
 %patch25 -p1
 %patch26 -p1
 %patch27 -p1
+%patch28 -p1
+%patch29 -p1
 %endif
 %patch13 -p1
 %patch14 -p1

++ libgcrypt-1.6.1-use-fipscheck.patch ++
--- /var/tmp/diff_new_pack.257xid/_old  2014-06-01 18:54:46.0 +0200
+++ /var/tmp/diff_new_pack.257xid/_new  2014-06-01 18:54:46.0 +0200
@@ -47,7 +47,7 @@
 -  if (!dladdr (gcry_check_version, info))
 +  const char key[] = orboDeJITITejsirpADONivirpUkvarP;
 +  
-+  if (get_library_path (libgcrypt.so.11, gcry_check_version, libpath, 
sizeof(libpath)))
++  if (get_library_path (libgcrypt.so.20, gcry_check_version, libpath, 
sizeof(libpath)))
  err = gpg_error_from_syserror ();
else
  {


++ libgcrypt-fix-rng.patch ++
Index: libgcrypt-1.6.1/random/random.c
===
--- libgcrypt-1.6.1.orig/random/random.c
+++ libgcrypt-1.6.1/random/random.c
@@ -440,6 +440,9 @@ _gcry_create_nonce (void *buffer, size_t
   size_t n;
   int err;
 
+  /* Make sure we are initialized. */
+  _gcry_random_initialize (1);
+
   /* First check whether we shall use the FIPS nonce generator.  This
  is only done in FIPS mode, in all other modes, we use our own
  nonce generator which is seeded by the RNG actual in use.  */
@@ -455,9 +458,6 @@ _gcry_create_nonce (void *buffer, size_t
  FIPS mode (not that this means it is also used if the FIPS RNG
  has been selected but we are not in fips mode).  */
 
-  /* Make sure we are initialized. */
-  _gcry_random_initialize (1);
-
   /* Acquire the nonce buffer lock. */
   err = ath_mutex_lock (nonce_buffer_lock);
   if (err)
++ libgcrypt-init-at-elf-load-fips.patch ++
Index: libgcrypt-1.6.1/src/global.c
===
--- libgcrypt-1.6.1.orig/src/global.c
+++ libgcrypt-1.6.1/src/global.c
@@ -76,7 +76,7 @@ static gpg_err_code_t external_lock_test
likely to be called at startup.  The suggested way for an
application to make sure that this has been called is by using
gcry_check_version. */
-static void
+static void __attribute__((constructor))
 global_init (void)
 {
   gcry_error_t err = 0;
-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2014-05-17 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-05-17 22:01:36

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-05-12 
09:28:39.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-05-17 
22:01:41.0 +0200
@@ -1,0 +2,7 @@
+Tue May 13 10:47:51 UTC 2014 - vci...@suse.com
+
+- add new 0007-User-interface-to-DRBG.patch from upstream
+  * fixes bnc#877233
+  * supersedes the patch from previous entry
+
+---



Other differences:
--
++ 0007-User-interface-to-DRBG.patch ++
--- /var/tmp/diff_new_pack.2yypxV/_old  2014-05-17 22:01:42.0 +0200
+++ /var/tmp/diff_new_pack.2yypxV/_new  2014-05-17 22:01:42.0 +0200
@@ -1,11 +1,12 @@
 Changes v4:
 
- * add fail_seed_source to struct drbg_test_data
+ * add explicit type casting from void to unsigned char as reported
+   in https://bugzilla.novell.com/show_bug.cgi?id=877233
 
-Signed-off-by: Stephan Mueller smuel...@chronox.de
+Signed-off-by: Stephan Mueller smueller at chronox.de
 ---
 diff --git a/src/gcrypt.h.in b/src/gcrypt.h.in
-index c84a3f7..2a17dcd 100644
+index c84a3f7..569d7a0 100644
 --- a/src/gcrypt.h.in
 +++ b/src/gcrypt.h.in
 @@ -193,7 +193,7 @@ gcry_error_t gcry_err_make_from_errno (gcry_err_source_t 
source, int err);
@@ -147,7 +148,7 @@
 +/* DRBG input data structure for DRBG generate with additional information
 + * string */
 +struct drbg_gen {
-+  void *outbuf;   /* output buffer for random numbers */
++  unsigned char *outbuf;  /* output buffer for random numbers */
 +  unsigned int outlen;/* size of output buffer */
 +  struct drbg_string *addtl;  /* input buffer for
 +   * additional information string */
@@ -185,7 +186,7 @@
 + struct drbg_string *addtl)
 +{
 +  struct drbg_gen genbuf;
-+  genbuf.outbuf = outbuf;
++  genbuf.outbuf = (unsigned char *)outbuf;
 +  genbuf.outlen = outlen;
 +  genbuf.addtl = addtl;
 +  genbuf.test_data = NULL;
@@ -199,7 +200,7 @@
 +  struct drbg_test_data *test_data)
 +{
 +  struct drbg_gen genbuf;
-+  genbuf.outbuf = outbuf;
++  genbuf.outbuf = (unsigned char *)outbuf;
 +  genbuf.outlen = outlen;
 +  genbuf.addtl = addtl;
 +  genbuf.test_data = test_data;


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2014-05-12 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-05-12 09:28:38

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-05-10 
08:32:13.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-05-12 
09:28:39.0 +0200
@@ -1,0 +2,6 @@
+Sun May 12 13:25:33 UTC 2014 - tittiatc...@gmail.com
+
+- Correct patch 0007-User-interface-to-DRBG.patch so that the 
+  struct used in the route matches the header of the function
+
+---



Other differences:
--
++ 0007-User-interface-to-DRBG.patch ++
--- /var/tmp/diff_new_pack.W0hSnr/_old  2014-05-12 09:28:40.0 +0200
+++ /var/tmp/diff_new_pack.W0hSnr/_new  2014-05-12 09:28:40.0 +0200
@@ -147,7 +147,7 @@
 +/* DRBG input data structure for DRBG generate with additional information
 + * string */
 +struct drbg_gen {
-+  unsigned char *outbuf;  /* output buffer for random numbers */
++  void *outbuf;   /* output buffer for random numbers */
 +  unsigned int outlen;/* size of output buffer */
 +  struct drbg_string *addtl;  /* input buffer for
 +   * additional information string */


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2014-04-05 Thread h_root


bin4A1qW28qmP.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2014-02-08 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-02-08 10:34:19

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-01-08 
20:07:21.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-02-08 
10:34:20.0 +0100
@@ -1,0 +2,18 @@
+Thu Jan 30 13:29:49 UTC 2014 - idon...@suse.com
+
+- Drop arm-missing-files.diff, fixed upstream 
+
+---
+Wed Jan 29 18:40:49 UTC 2014 - andreas.stie...@gmx.de
+
+- libgcrypt 1.6.1, a bugfix release with the folloging fixes:
+  * Added emulation for broken Whirlpool code prior to 1.6.0.
+  * Improved performance of KDF functions.
+  * Improved ECDSA compliance.
+  * Fixed message digest lookup by OID (regression in 1.6.0).
+  * Fixed memory leaks in ECC code.
+  * Fixed some asm build problems and feature detection bugs.
+  * Interface changes relative to the 1.6.0 release:
+GCRY_MD_FLAG_BUGEMU1NEW (minor API change).
+
+---

Old:

  arm-missing-files.diff
  libgcrypt-1.6.0.tar.bz2
  libgcrypt-1.6.0.tar.bz2.sig

New:

  libgcrypt-1.6.1.tar.bz2
  libgcrypt-1.6.1.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.agfBVS/_old  2014-02-08 10:34:21.0 +0100
+++ /var/tmp/diff_new_pack.agfBVS/_new  2014-02-08 10:34:21.0 +0100
@@ -20,11 +20,11 @@
 %define separate_hmac256_binary 0
 
 %define libsoname %{name}20
-%define sosuffix  20.0.0
+%define sosuffix  20.0.1
 
 Name:   libgcrypt
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.6.0
+Version:1.6.1
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -47,7 +47,6 @@
 Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
 #PATCH-FIX-UPSTREAM: internal functions are supposed to be used inside 
libgcrypt, mvysko...@suse.com
 Patch8: libgcrypt-1.6.0-use-intenal-functions.patch
-Patch9: arm-missing-files.diff
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.11
@@ -116,7 +115,6 @@
 %patch6 -p1
 %patch7 -p1
 %patch8 -p1
-%patch9
 
 %build
 echo building with build_hmac256 set to %{build_hmac256}

++ libgcrypt-1.6.0.tar.bz2 - libgcrypt-1.6.1.tar.bz2 ++
 58943 lines of diff (skipped)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2014-01-08 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-01-08 20:07:19

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-01-03 
19:27:46.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-01-08 
20:07:21.0 +0100
@@ -1,0 +2,60 @@
+Fri Jan  3 16:36:21 UTC 2014 - dmuel...@suse.com
+
+- add arm-missing-files.diff: Add missing files to fix build 
+
+---
+Fri Jan  3 09:43:39 UTC 2014 - mvysko...@suse.com
+
+- fix bnc#856915: can't open /dev/urandom
+  * correct libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
+- require libgpg-error 1.11 or higher
+
+---
+Thu Dec 19 13:53:21 UTC 2013 - mvysko...@suse.com
+
+- fix dependency for 32bit devel package
+- name hmac files according soname
+- fix hmac subpackage dependency
+
+---
+Thu Dec 19 09:03:21 UTC 2013 - mvysko...@suse.com
+
+- update to 1.6. 
+ * Removed the long deprecated gcry_ac interface.  Thus Libgcrypt is
+   not anymore ABI compatible to previous versions if they used the ac
+   interface. Check NEWS in libgcrypt-devel for removed interfaces.
+ * Removed the module register subsystem.
+ * The deprecated message digest debug macros have been removed.  Use
+   gcry_md_debug instead.
+ * Removed deprecated control codes.
+ * Improved performance of most cipher algorithms as well as for the
+   SHA family of hash functions.
+ * Added support for the IDEA cipher algorithm.
+ * Added support for the Salsa20 and reduced Salsa20/12 stream ciphers.
+ * Added limited support for the GOST 28147-89 cipher algorithm.
+ * Added support for the GOST R 34.11-94 and R 34.11-2012 (Stribog)
+   hash algorithms.
+ * Added a random number generator to directly use the system's RNG.
+   Also added an interface to prefer the use of a specified RNG.
+ * Added support for the SCRYPT algorithm.
+ * Mitigated the Yarom/Falkner flush+reload side-channel attack on RSA
+   secret keys.  See http://eprint.iacr.org/2013/448 [CVE-2013-4242].
+ * Added support for Deterministic DSA as per RFC-6969.
+ * Added support for curve Ed25519.
+ * Added a scatter gather hash convenience function.
+ * Added several MPI amd SEXP helper functions.
+ * Added support for negative numbers to gcry_mpi_print,
+   gcry_mpi_aprint and gcry_mpi_scan.
+ * The algorithm ids GCRY_PK_ECDSA and GCRY_PK_ECDH are now
+   deprecated.  Use GCRY_PK_ECC if you need an algorithm id.
+ * Changed gcry_pk_genkey for ecc to only include the curve name and
+   not the parameters.  The flag param may be used to revert this.
+ * Added a feature to globally disable selected hardware features.
+ * Added debug helper functions.
+- rebased patches
+ * libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
+ * libgcrypt-ppc64.patch
+- add libgcrypt-1.6.0-use-intenal-functions.patch to fix fips.c build
+- Move all documentation to -devel package
+
+---

Old:

  libgcrypt-1.5.3.tar.bz2
  libgcrypt-1.5.3.tar.bz2.sig

New:

  arm-missing-files.diff
  libgcrypt-1.6.0-use-intenal-functions.patch
  libgcrypt-1.6.0.tar.bz2
  libgcrypt-1.6.0.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.HYnCpC/_old  2014-01-08 20:07:21.0 +0100
+++ /var/tmp/diff_new_pack.HYnCpC/_new  2014-01-08 20:07:21.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,12 +19,12 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 
-%define libsoname %{name}11
-%define sosuffix  11.8.2
+%define libsoname %{name}20
+%define sosuffix  20.0.0
 
 Name:   libgcrypt
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.5.3
+Version:1.6.0
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -45,9 +45,12 @@
 Patch6: libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
 #PATCH-FIX-SUSE: N/A
 Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
+#PATCH-FIX-UPSTREAM: internal functions are supposed to be used inside 
libgcrypt, mvysko...@suse.com

commit libgcrypt for openSUSE:Factory

2014-01-03 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-01-03 14:58:16

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2013-12-23 
15:32:47.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-01-03 
14:58:17.0 +0100
@@ -1,0 +2,55 @@
+Fri Jan  3 09:43:39 UTC 2014 - mvysko...@suse.com
+
+- fix bnc#856915: can't open /dev/urandom
+  * correct libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
+- require libgpg-error 1.11 or higher
+
+---
+Thu Dec 19 13:53:21 UTC 2013 - mvysko...@suse.com
+
+- fix dependency for 32bit devel package
+- name hmac files according soname
+- fix hmac subpackage dependency
+
+---
+Thu Dec 19 09:03:21 UTC 2013 - mvysko...@suse.com
+
+- update to 1.6. 
+ * Removed the long deprecated gcry_ac interface.  Thus Libgcrypt is
+   not anymore ABI compatible to previous versions if they used the ac
+   interface. Check NEWS in libgcrypt-devel for removed interfaces.
+ * Removed the module register subsystem.
+ * The deprecated message digest debug macros have been removed.  Use
+   gcry_md_debug instead.
+ * Removed deprecated control codes.
+ * Improved performance of most cipher algorithms as well as for the
+   SHA family of hash functions.
+ * Added support for the IDEA cipher algorithm.
+ * Added support for the Salsa20 and reduced Salsa20/12 stream ciphers.
+ * Added limited support for the GOST 28147-89 cipher algorithm.
+ * Added support for the GOST R 34.11-94 and R 34.11-2012 (Stribog)
+   hash algorithms.
+ * Added a random number generator to directly use the system's RNG.
+   Also added an interface to prefer the use of a specified RNG.
+ * Added support for the SCRYPT algorithm.
+ * Mitigated the Yarom/Falkner flush+reload side-channel attack on RSA
+   secret keys.  See http://eprint.iacr.org/2013/448 [CVE-2013-4242].
+ * Added support for Deterministic DSA as per RFC-6969.
+ * Added support for curve Ed25519.
+ * Added a scatter gather hash convenience function.
+ * Added several MPI amd SEXP helper functions.
+ * Added support for negative numbers to gcry_mpi_print,
+   gcry_mpi_aprint and gcry_mpi_scan.
+ * The algorithm ids GCRY_PK_ECDSA and GCRY_PK_ECDH are now
+   deprecated.  Use GCRY_PK_ECC if you need an algorithm id.
+ * Changed gcry_pk_genkey for ecc to only include the curve name and
+   not the parameters.  The flag param may be used to revert this.
+ * Added a feature to globally disable selected hardware features.
+ * Added debug helper functions.
+- rebased patches
+ * libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
+ * libgcrypt-ppc64.patch
+- add libgcrypt-1.6.0-use-intenal-functions.patch to fix fips.c build
+- Move all documentation to -devel package
+
+---

Old:

  libgcrypt-1.5.3.tar.bz2
  libgcrypt-1.5.3.tar.bz2.sig

New:

  libgcrypt-1.6.0-use-intenal-functions.patch
  libgcrypt-1.6.0.tar.bz2
  libgcrypt-1.6.0.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.XZQ8NZ/_old  2014-01-03 14:58:18.0 +0100
+++ /var/tmp/diff_new_pack.XZQ8NZ/_new  2014-01-03 14:58:18.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,12 +19,12 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 
-%define libsoname %{name}11
-%define sosuffix  11.8.2
+%define libsoname %{name}20
+%define sosuffix  20.0.0
 
 Name:   libgcrypt
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.5.3
+Version:1.6.0
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -45,9 +45,11 @@
 Patch6: libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
 #PATCH-FIX-SUSE: N/A
 Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
+#PATCH-FIX-UPSTREAM: internal functions are supposed to be used inside 
libgcrypt, mvysko...@suse.com
+Patch8: libgcrypt-1.6.0-use-intenal-functions.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  automake = 1.11
-BuildRequires:  libgpg-error-devel = 1.8
+BuildRequires:  

commit libgcrypt for openSUSE:Factory

2014-01-03 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2014-01-03 19:27:45

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2014-01-03 
14:58:17.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2014-01-03 
19:27:46.0 +0100
@@ -2,55 +1,0 @@
-Fri Jan  3 09:43:39 UTC 2014 - mvysko...@suse.com
-
-- fix bnc#856915: can't open /dev/urandom
-  * correct libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
-- require libgpg-error 1.11 or higher
-

-Thu Dec 19 13:53:21 UTC 2013 - mvysko...@suse.com
-
-- fix dependency for 32bit devel package
-- name hmac files according soname
-- fix hmac subpackage dependency
-

-Thu Dec 19 09:03:21 UTC 2013 - mvysko...@suse.com
-
-- update to 1.6. 
- * Removed the long deprecated gcry_ac interface.  Thus Libgcrypt is
-   not anymore ABI compatible to previous versions if they used the ac
-   interface. Check NEWS in libgcrypt-devel for removed interfaces.
- * Removed the module register subsystem.
- * The deprecated message digest debug macros have been removed.  Use
-   gcry_md_debug instead.
- * Removed deprecated control codes.
- * Improved performance of most cipher algorithms as well as for the
-   SHA family of hash functions.
- * Added support for the IDEA cipher algorithm.
- * Added support for the Salsa20 and reduced Salsa20/12 stream ciphers.
- * Added limited support for the GOST 28147-89 cipher algorithm.
- * Added support for the GOST R 34.11-94 and R 34.11-2012 (Stribog)
-   hash algorithms.
- * Added a random number generator to directly use the system's RNG.
-   Also added an interface to prefer the use of a specified RNG.
- * Added support for the SCRYPT algorithm.
- * Mitigated the Yarom/Falkner flush+reload side-channel attack on RSA
-   secret keys.  See http://eprint.iacr.org/2013/448 [CVE-2013-4242].
- * Added support for Deterministic DSA as per RFC-6969.
- * Added support for curve Ed25519.
- * Added a scatter gather hash convenience function.
- * Added several MPI amd SEXP helper functions.
- * Added support for negative numbers to gcry_mpi_print,
-   gcry_mpi_aprint and gcry_mpi_scan.
- * The algorithm ids GCRY_PK_ECDSA and GCRY_PK_ECDH are now
-   deprecated.  Use GCRY_PK_ECC if you need an algorithm id.
- * Changed gcry_pk_genkey for ecc to only include the curve name and
-   not the parameters.  The flag param may be used to revert this.
- * Added a feature to globally disable selected hardware features.
- * Added debug helper functions.
-- rebased patches
- * libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
- * libgcrypt-ppc64.patch
-- add libgcrypt-1.6.0-use-intenal-functions.patch to fix fips.c build
-- Move all documentation to -devel package
-


Old:

  libgcrypt-1.6.0-use-intenal-functions.patch
  libgcrypt-1.6.0.tar.bz2
  libgcrypt-1.6.0.tar.bz2.sig

New:

  libgcrypt-1.5.3.tar.bz2
  libgcrypt-1.5.3.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.iOsC1m/_old  2014-01-03 19:27:47.0 +0100
+++ /var/tmp/diff_new_pack.iOsC1m/_new  2014-01-03 19:27:47.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,12 +19,12 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 
-%define libsoname %{name}20
-%define sosuffix  20.0.0
+%define libsoname %{name}11
+%define sosuffix  11.8.2
 
 Name:   libgcrypt
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.6.0
+Version:1.5.3
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -45,11 +45,9 @@
 Patch6: libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
 #PATCH-FIX-SUSE: N/A
 Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
-#PATCH-FIX-UPSTREAM: internal functions are supposed to be used inside 
libgcrypt, mvysko...@suse.com
-Patch8: libgcrypt-1.6.0-use-intenal-functions.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  automake = 1.11
-BuildRequires:  libgpg-error-devel = 1.11
+BuildRequires:  

commit libgcrypt for openSUSE:Factory

2013-12-23 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2013-12-23 15:32:46

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2013-12-22 
19:35:08.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2013-12-23 
15:32:47.0 +0100
@@ -2,48 +1,0 @@
-Thu Dec 19 13:53:21 UTC 2013 - mvysko...@suse.com
-
-- fix dependency for 32bit devel package
-- name hmac files according soname
-- fix hmac subpackage dependency
-

-Thu Dec 19 09:03:21 UTC 2013 - mvysko...@suse.com
-
-- update to 1.6. 
- * Removed the long deprecated gcry_ac interface.  Thus Libgcrypt is
-   not anymore ABI compatible to previous versions if they used the ac
-   interface. Check NEWS in libgcrypt-devel for removed interfaces.
- * Removed the module register subsystem.
- * The deprecated message digest debug macros have been removed.  Use
-   gcry_md_debug instead.
- * Removed deprecated control codes.
- * Improved performance of most cipher algorithms as well as for the
-   SHA family of hash functions.
- * Added support for the IDEA cipher algorithm.
- * Added support for the Salsa20 and reduced Salsa20/12 stream ciphers.
- * Added limited support for the GOST 28147-89 cipher algorithm.
- * Added support for the GOST R 34.11-94 and R 34.11-2012 (Stribog)
-   hash algorithms.
- * Added a random number generator to directly use the system's RNG.
-   Also added an interface to prefer the use of a specified RNG.
- * Added support for the SCRYPT algorithm.
- * Mitigated the Yarom/Falkner flush+reload side-channel attack on RSA
-   secret keys.  See http://eprint.iacr.org/2013/448 [CVE-2013-4242].
- * Added support for Deterministic DSA as per RFC-6969.
- * Added support for curve Ed25519.
- * Added a scatter gather hash convenience function.
- * Added several MPI amd SEXP helper functions.
- * Added support for negative numbers to gcry_mpi_print,
-   gcry_mpi_aprint and gcry_mpi_scan.
- * The algorithm ids GCRY_PK_ECDSA and GCRY_PK_ECDH are now
-   deprecated.  Use GCRY_PK_ECC if you need an algorithm id.
- * Changed gcry_pk_genkey for ecc to only include the curve name and
-   not the parameters.  The flag param may be used to revert this.
- * Added a feature to globally disable selected hardware features.
- * Added debug helper functions.
-- rebased patches
- * libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
- * libgcrypt-ppc64.patch
-- add libgcrypt-1.6.0-use-intenal-functions.patch to fix fips.c build
-- Move all documentation to -devel package
-


Old:

  libgcrypt-1.6.0-use-intenal-functions.patch
  libgcrypt-1.6.0.tar.bz2
  libgcrypt-1.6.0.tar.bz2.sig

New:

  libgcrypt-1.5.3.tar.bz2
  libgcrypt-1.5.3.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.nViFVo/_old  2013-12-23 15:32:48.0 +0100
+++ /var/tmp/diff_new_pack.nViFVo/_new  2013-12-23 15:32:48.0 +0100
@@ -19,12 +19,12 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 
-%define libsoname %{name}20
-%define sosuffix  20.0.0
+%define libsoname %{name}11
+%define sosuffix  11.8.2
 
 Name:   libgcrypt
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.6.0
+Version:1.5.3
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -45,8 +45,6 @@
 Patch6: libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
 #PATCH-FIX-SUSE: N/A
 Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
-#PATCH-FIX-UPSTREAM: internal functions are supposed to be used inside 
libgcrypt, mvysko...@suse.com
-Patch8: libgcrypt-1.6.0-use-intenal-functions.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.8
@@ -93,7 +91,7 @@
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+
 Group:  Development/Libraries/C and C++
-Requires:   %{libsoname} = %version
+Requires:   libgcrypt11 = %version
 Requires:   libgpg-error-devel
 PreReq: %install_info_prereq
 
@@ -114,7 +112,6 @@
 %patch5 -p1
 %patch6 -p1
 %patch7 -p1
-%patch8 -p1
 
 %build
 echo building with build_hmac256 set to %{build_hmac256}
@@ -130,7 +127,7 @@
 %endif
 --enable-hmac-binary-check \
 --enable-random=linux 
-make %{?_smp_mflags}
+%{__make} %{?_smp_mflags}
 
 %if 0%{?build_hmac256}
 # 

commit libgcrypt for openSUSE:Factory

2013-12-22 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2013-12-22 19:35:06

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2013-07-29 
17:42:12.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2013-12-22 
19:35:08.0 +0100
@@ -1,0 +2,48 @@
+Thu Dec 19 13:53:21 UTC 2013 - mvysko...@suse.com
+
+- fix dependency for 32bit devel package
+- name hmac files according soname
+- fix hmac subpackage dependency
+
+---
+Thu Dec 19 09:03:21 UTC 2013 - mvysko...@suse.com
+
+- update to 1.6. 
+ * Removed the long deprecated gcry_ac interface.  Thus Libgcrypt is
+   not anymore ABI compatible to previous versions if they used the ac
+   interface. Check NEWS in libgcrypt-devel for removed interfaces.
+ * Removed the module register subsystem.
+ * The deprecated message digest debug macros have been removed.  Use
+   gcry_md_debug instead.
+ * Removed deprecated control codes.
+ * Improved performance of most cipher algorithms as well as for the
+   SHA family of hash functions.
+ * Added support for the IDEA cipher algorithm.
+ * Added support for the Salsa20 and reduced Salsa20/12 stream ciphers.
+ * Added limited support for the GOST 28147-89 cipher algorithm.
+ * Added support for the GOST R 34.11-94 and R 34.11-2012 (Stribog)
+   hash algorithms.
+ * Added a random number generator to directly use the system's RNG.
+   Also added an interface to prefer the use of a specified RNG.
+ * Added support for the SCRYPT algorithm.
+ * Mitigated the Yarom/Falkner flush+reload side-channel attack on RSA
+   secret keys.  See http://eprint.iacr.org/2013/448 [CVE-2013-4242].
+ * Added support for Deterministic DSA as per RFC-6969.
+ * Added support for curve Ed25519.
+ * Added a scatter gather hash convenience function.
+ * Added several MPI amd SEXP helper functions.
+ * Added support for negative numbers to gcry_mpi_print,
+   gcry_mpi_aprint and gcry_mpi_scan.
+ * The algorithm ids GCRY_PK_ECDSA and GCRY_PK_ECDH are now
+   deprecated.  Use GCRY_PK_ECC if you need an algorithm id.
+ * Changed gcry_pk_genkey for ecc to only include the curve name and
+   not the parameters.  The flag param may be used to revert this.
+ * Added a feature to globally disable selected hardware features.
+ * Added debug helper functions.
+- rebased patches
+ * libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
+ * libgcrypt-ppc64.patch
+- add libgcrypt-1.6.0-use-intenal-functions.patch to fix fips.c build
+- Move all documentation to -devel package
+
+---

Old:

  libgcrypt-1.5.3.tar.bz2
  libgcrypt-1.5.3.tar.bz2.sig

New:

  libgcrypt-1.6.0-use-intenal-functions.patch
  libgcrypt-1.6.0.tar.bz2
  libgcrypt-1.6.0.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.KVb8UB/_old  2013-12-22 19:35:09.0 +0100
+++ /var/tmp/diff_new_pack.KVb8UB/_new  2013-12-22 19:35:09.0 +0100
@@ -19,12 +19,12 @@
 %define build_hmac256 1
 %define separate_hmac256_binary 0
 
-%define libsoname %{name}11
-%define sosuffix  11.8.2
+%define libsoname %{name}20
+%define sosuffix  20.0.0
 
 Name:   libgcrypt
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.5.3
+Version:1.6.0
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -45,6 +45,8 @@
 Patch6: libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
 #PATCH-FIX-SUSE: N/A
 Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
+#PATCH-FIX-UPSTREAM: internal functions are supposed to be used inside 
libgcrypt, mvysko...@suse.com
+Patch8: libgcrypt-1.6.0-use-intenal-functions.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.8
@@ -91,7 +93,7 @@
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+
 Group:  Development/Libraries/C and C++
-Requires:   libgcrypt11 = %version
+Requires:   %{libsoname} = %version
 Requires:   libgpg-error-devel
 PreReq: %install_info_prereq
 
@@ -112,6 +114,7 @@
 %patch5 -p1
 %patch6 -p1
 %patch7 -p1
+%patch8 -p1
 
 %build
 echo building with build_hmac256 set to %{build_hmac256}
@@ -127,7 +130,7 @@
 %endif
 --enable-hmac-binary-check \
 --enable-random=linux 
-%{__make} %{?_smp_mflags}
+make %{?_smp_mflags}
 
 %if 0%{?build_hmac256}
 # 

commit libgcrypt for openSUSE:Factory

2013-07-29 Thread h_root


binqYFMLcXgrx.bin
Description: Binary data


commit libgcrypt for openSUSE:Factory

2013-07-25 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2013-07-25 15:07:21

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2013-06-18 
10:31:50.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2013-07-25 
15:07:22.0 +0200
@@ -1,0 +2,13 @@
+Thu Jul 25 09:15:43 UTC 2013 - mvysko...@suse.com
+
+- port SLE enhancenments to Factory (bnc#831028)
+  * add libgcrypt-unresolved-dladdr.patch (bnc#701267)
+  * add libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff (bnc#724841)
+  * add libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
+- install .hmac256.hmac (bnc#704068)
+- enable varuous new options in configure (m-guard, hmac binary check and
+  random device linux)
+- build with all ciphers, pubkeys and digest by default as whitelist
+  simply allowed them all
+
+---
@@ -9 +22 @@
-- Library must by built with large file support in 
+- Library must be built with large file support in 

New:

  libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
  libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
  libgcrypt-unresolved-dladdr.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.enGdLi/_old  2013-07-25 15:07:23.0 +0200
+++ /var/tmp/diff_new_pack.enGdLi/_new  2013-07-25 15:07:23.0 +0200
@@ -16,8 +16,13 @@
 #
 
 
-Name:   libgcrypt
+%define build_hmac256 1
+%define separate_hmac256_binary 0
+
 %define libsoname %{name}11
+%define sosuffix  11.8.1
+
+Name:   libgcrypt
 Url:http://directory.fsf.org/wiki/Libgcrypt
 Version:1.5.2
 Release:0
@@ -33,10 +38,18 @@
 Patch1: %{name}-strict-aliasing.patch
 Patch3: %{name}-1.4.1-rijndael_no_strict_aliasing.patch
 Patch4: %{name}-sparcv9.diff
+#PATCH-FIX-UPSTREAM: bnc#701267, explicitly link with $(DL_LIBS)
+#was: libgcrypt-1.5.0-as-needed.patch
+Patch5: libgcrypt-unresolved-dladdr.patch
+#PATCH-FIX-SUSE: bnc#724841, fix a random device opening routine
+Patch6: libgcrypt-1.5.0-etc_gcrypt_rngseed-symlink.diff
+#PATCH-FIX-SUSE: N/A
+Patch7: libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.8
 BuildRequires:  libtool
+# not for base packages to avoid huge cycles
 #BuildRequires:  gpg-offline
 
 %description
@@ -49,14 +62,6 @@
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+
 Group:  Development/Libraries/C and C++
-# bug437293
-%ifarch ppc64
-Obsoletes:  %{name}-64bit
-%endif
-#
-# libgcrypt last used in 10.3
-Obsoletes:  %{name}  %{version}
-Provides:   %{name} = %{version}
 
 %description -n %{libsoname}
 Libgcrypt is a general purpose crypto library based on the code used in
@@ -69,11 +74,6 @@
 Requires:   %{libsoname} = %{version}
 Requires:   glibc-devel
 Requires:   libgpg-error-devel = 1.8
-# bug437293
-%ifarch ppc64
-Obsoletes:  %{name}-devel-64bit
-%endif
-#
 PreReq: %install_info_prereq
 
 %description devel
@@ -85,41 +85,76 @@
 This package contains needed files to compile and link against the
 library.
 
+%if 0%{?separate_hmac256_binary}
+
+%package hmac256
+Summary:The GNU Crypto Library
+License:GPL-2.0+ and LGPL-2.1+
+Group:  Development/Libraries/C and C++
+Requires:   libgcrypt11 = %version
+Requires:   libgpg-error-devel
+PreReq: %install_info_prereq
+
+%description hmac256
+Libgcrypt is a general purpose library of cryptographic building
+blocks.  It is originally based on code used by GnuPG.  It does not
+provide any implementation of OpenPGP or other protocols.  Thorough
+understanding of applied cryptography is required to use Libgcrypt.
+
+%endif  # #if separate_hmac256_binary
+
 %prep
 %setup -q -n %{name}-%{version}
 %patch0 -p1
 %patch1
 %patch3 -p1
 %patch4 -p1
+%patch5 -p1
+%patch6 -p1
+%patch7 -p1
 
 %build
-# define ciphers to build
-ENABLE_CIPHER=arcfour blowfish cast5 des aes twofish serpent rfc2268 seed 
camellia idea
-ENABLE_PUBKEY=dsa elgamal rsa ecc
-ENABLE_DIGEST=crc md4 md5 rmd160 sha1 sha256 sha512 tiger whirlpool
-#
+echo building with build_hmac256 set to %{build_hmac256}
 %{?suse_update_config}
 autoreconf -fi
 export CFLAGS=%optflags $(getconf LFS_CFLAGS)
 %configure --with-pic \
--enable-noexecstack \
--disable-static \
+--enable-m-guard \
 %ifarch %sparc
   

commit libgcrypt for openSUSE:Factory

2013-06-18 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2013-06-18 10:31:49

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2013-04-19 
09:56:44.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2013-06-18 
10:31:50.0 +0200
@@ -1,0 +2,11 @@
+Mon Jun 17 13:22:33 UTC 2013 - co...@suse.com
+
+- avoid gpg-offline in bootstrap packages
+
+---
+Sun Jun 16 22:56:56 UTC 2013 - crrodrig...@opensuse.org
+
+- Library must by built with large file support in 
+ 32 bit archs.
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.lsHyl6/_old  2013-06-18 10:31:50.0 +0200
+++ /var/tmp/diff_new_pack.lsHyl6/_new  2013-06-18 10:31:50.0 +0200
@@ -37,9 +37,7 @@
 BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.8
 BuildRequires:  libtool
-%if 0%{?suse_version} = 1230
-BuildRequires:  gpg-offline
-%endif
+#BuildRequires:  gpg-offline
 
 %description
 Libgcrypt is a general purpose library of cryptographic building
@@ -88,7 +86,6 @@
 library.
 
 %prep
-%{?gpg_verify: %gpg_verify %{S:1}}
 %setup -q -n %{name}-%{version}
 %patch0 -p1
 %patch1
@@ -103,6 +100,7 @@
 #
 %{?suse_update_config}
 autoreconf -fi
+export CFLAGS=%optflags $(getconf LFS_CFLAGS)
 %configure --with-pic \
--enable-noexecstack \
--disable-static \


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2013-04-19 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2013-04-19 09:56:34

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2013-03-25 
20:32:08.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2013-04-19 
09:56:44.0 +0200
@@ -1,0 +2,12 @@
+Thu Apr 18 18:23:36 UTC 2013 - andreas.stie...@gmx.de
+
+- update to 1.5.2
+ * The upstream sources now contain the IDEA algorithm, dropping:
+   idea.c.gz
+   libgcrypt-1.5.0-idea.patch
+   libgcrypt-1.5.0-idea_codecleanup.patch
+ * Made the Padlock code work again (regression since 1.5.0).
+ * Fixed alignment problems for Serpent.
+ * Fixed two bugs in ECC computations.
+
+---

Old:

  idea.c.gz
  libgcrypt-1.5.0-idea.patch
  libgcrypt-1.5.0-idea_codecleanup.patch
  libgcrypt-1.5.1.tar.bz2
  libgcrypt-1.5.1.tar.bz2.sig

New:

  libgcrypt-1.5.2.tar.bz2
  libgcrypt-1.5.2.tar.bz2.sig



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.YQj4St/_old  2013-04-19 09:56:47.0 +0200
+++ /var/tmp/diff_new_pack.YQj4St/_new  2013-04-19 09:56:47.0 +0200
@@ -19,7 +19,7 @@
 Name:   libgcrypt
 %define libsoname %{name}11
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.5.1
+Version:1.5.2
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
@@ -27,15 +27,12 @@
 Source: ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
 Source1:
ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
 Source2:baselibs.conf
-Source3:idea.c.gz
 # http://www.gnupg.org/signature_key.en.html
 Source4:%{name}.keyring
 Patch0: %{name}-ppc64.patch
 Patch1: %{name}-strict-aliasing.patch
 Patch3: %{name}-1.4.1-rijndael_no_strict_aliasing.patch
 Patch4: %{name}-sparcv9.diff
-Patch5: %{name}-1.5.0-idea.patch
-Patch6: %{name}-1.5.0-idea_codecleanup.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.8
@@ -93,13 +90,10 @@
 %prep
 %{?gpg_verify: %gpg_verify %{S:1}}
 %setup -q -n %{name}-%{version}
-gzip -dc  %{S:3}  cipher/idea.c
 %patch0 -p1
 %patch1
 %patch3 -p1
 %patch4 -p1
-%patch5 -p1
-%patch6 -p1
 
 %build
 # define ciphers to build

++ libgcrypt-1.5.1.tar.bz2 - libgcrypt-1.5.2.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/libgcrypt-1.5.1/AUTHORS new/libgcrypt-1.5.2/AUTHORS
--- old/libgcrypt-1.5.1/AUTHORS 2013-03-18 16:00:35.0 +0100
+++ new/libgcrypt-1.5.2/AUTHORS 2013-04-18 16:48:42.0 +0200
@@ -98,6 +98,11 @@
 open...@brainhub.org
 (cipher/ecc.c and related files)
 
+LIBGCRYPT   Vladimir Serbinenko  2012-04-26
+Assigns Past and Future Changes
+phco...@gmail.com
+(cipher/serpent.c)
+
 
 Authors with a DCO
 ==
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/libgcrypt-1.5.1/ChangeLog 
new/libgcrypt-1.5.2/ChangeLog
--- old/libgcrypt-1.5.1/ChangeLog   2013-03-18 16:32:24.0 +0100
+++ new/libgcrypt-1.5.2/ChangeLog   2013-04-18 17:07:43.0 +0200
@@ -1,5 +1,96 @@
+2013-04-18  Werner Koch  w...@gnupg.org
+
+   Release 1.5.2.
+
+   Update LT version for the next release.
+   * configure.ac: Set LT version to C19/A8/R1.
+
+   mpi: Yet another fix to get option flag munging right.
+   * cipher/Makefile.am (o_flag_munging): Yet another fix.
+
+   cipher: Fix regression in Padlock support.
+   * cipher/rijndael.c (do_setkey): Remove dummy padlock key generation 
case
+   and use the standard one.
+
+   Fix alignment problem in idea.c.
+   * cipher/idea.c (cipher): Rework parameter use to fix alignment
+   problems.
+
+   * cipher/idea.c (FNCCAST_SETKEY, FNCCAST_CRYPT): Remove unused macros.
+
+2013-04-18  Vladimir Serbinenko  phco...@gmail.com
+
+   Add some const attributes.
+   * cipher/md4.c (transform): Add const attribute.
+   * cipher/md5.c (transform): Ditto.
+   * cipher/rmd160.c (transform): Ditto.
+
+   Fix alignment problem in serpent.c.
+   * cipher/serpent.c (serpent_key_prepare): Fix misaligned access.
+   (serpent_setkey): Likewise.
+   (serpent_encrypt_internal): Likewise.
+   (serpent_decrypt_internal): Likewise.
+   

commit libgcrypt for openSUSE:Factory

2013-03-25 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2013-03-25 20:32:07

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2012-06-25 
14:19:22.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2013-03-25 
20:32:08.0 +0100
@@ -1,0 +2,27 @@
+Fri Mar 22 09:31:11 UTC 2013 - mvysko...@suse.com
+
+- add GPL3.0+ to License tag because of dumpsexp (bnc#810759) 
+
+---
+Mon Mar 18 20:41:00 UTC 2013 - andreas.stie...@gmx.de
+
+- update to 1.5.1
+ * Allow empty passphrase with PBKDF2.
+ * Do not abort on an invalid algorithm number in
+   gcry_cipher_get_algo_keylen and gcry_cipher_get_algo_blklen.
+ * Fixed some Valgrind warnings.
+ * Fixed a problem with select and high fd numbers.
+ * Improved the build system
+ * Various minor bug fixes.
+ * Interface changes relative to the 1.5.0 release:
+   GCRYCTL_SET_ENFORCED_FIPS_FLAG NEW.
+   GCRYPT_VERSION_NUMBER  NEW.
+- add verification of source code signatures
+- now requires automake 1.11 to build
+
+---
+Sat Feb  2 18:51:33 UTC 2013 - co...@suse.com
+
+- update license to new format
+
+---

Old:

  libgcrypt-1.5.0.tar.bz2

New:

  libgcrypt-1.5.1.tar.bz2
  libgcrypt-1.5.1.tar.bz2.sig
  libgcrypt.keyring



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.atXyP0/_old  2013-03-25 20:32:10.0 +0100
+++ /var/tmp/diff_new_pack.atXyP0/_new  2013-03-25 20:32:10.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,14 +19,17 @@
 Name:   libgcrypt
 %define libsoname %{name}11
 Url:http://directory.fsf.org/wiki/Libgcrypt
-Version:1.5.0
+Version:1.5.1
 Release:0
 Summary:The GNU Crypto Library
-License:GPL-2.0+ ; LGPL-2.1+
+License:GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
 Group:  Development/Libraries/C and C++
-Source: %{name}-%{version}.tar.bz2
+Source: ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2
+Source1:
ftp://ftp.gnupg.org/gcrypt/libgcrypt/%{name}-%{version}.tar.bz2.sig
 Source2:baselibs.conf
 Source3:idea.c.gz
+# http://www.gnupg.org/signature_key.en.html
+Source4:%{name}.keyring
 Patch0: %{name}-ppc64.patch
 Patch1: %{name}-strict-aliasing.patch
 Patch3: %{name}-1.4.1-rijndael_no_strict_aliasing.patch
@@ -34,16 +37,22 @@
 Patch5: %{name}-1.5.0-idea.patch
 Patch6: %{name}-1.5.0-idea_codecleanup.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
+BuildRequires:  automake = 1.11
 BuildRequires:  libgpg-error-devel = 1.8
 BuildRequires:  libtool
+%if 0%{?suse_version} = 1230
+BuildRequires:  gpg-offline
+%endif
 
 %description
-Libgcrypt is a general purpose crypto library based on the code used in
-GnuPG (alpha version).
+Libgcrypt is a general purpose library of cryptographic building
+blocks.  It is originally based on code used by GnuPG.  It does not
+provide any implementation of OpenPGP or other protocols.  Thorough
+understanding of applied cryptography is required to use Libgcrypt.
 
 %package -n %{libsoname}
 Summary:The GNU Crypto Library
-License:GPL-2.0+ ; LGPL-2.1+
+License:GPL-2.0+ and LGPL-2.1+
 Group:  Development/Libraries/C and C++
 # bug437293
 %ifarch ppc64
@@ -60,7 +69,7 @@
 
 %package devel
 Summary:The GNU Crypto Library
-License:GFDL-1.1 ; GPL-2.0+ ; LGPL-2.1+ ; MIT
+License:GFDL-1.1 and GPL-2.0+ and LGPL-2.1+ and MIT
 Group:  Development/Libraries/C and C++
 Requires:   %{libsoname} = %{version}
 Requires:   glibc-devel
@@ -73,13 +82,16 @@
 PreReq: %install_info_prereq
 
 %description devel
-Libgcrypt is a general purpose crypto library based on the code used in
-GnuPG (alpha version).
+Libgcrypt is a general purpose library of cryptographic building
+blocks.  It is originally based on code used by GnuPG.  It does not
+provide any implementation of OpenPGP or other protocols.  Thorough
+understanding of 

commit libgcrypt for openSUSE:Factory

2012-06-25 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2012-06-25 14:02:19

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2012-03-26 
11:03:05.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2012-06-25 
14:19:22.0 +0200
@@ -1,0 +2,7 @@
+Tue Jun 12 21:19:18 UTC 2012 - ch...@computersalat.de
+
+- fix deps
+  * libgpg-error-devel = 1.8
+- add libsoname macro
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.u46i5f/_old  2012-06-25 14:19:23.0 +0200
+++ /var/tmp/diff_new_pack.u46i5f/_new  2012-06-25 14:19:23.0 +0200
@@ -17,43 +17,44 @@
 
 
 Name:   libgcrypt
-BuildRequires:  libgpg-error-devel
-BuildRequires:  libtool
+%define libsoname %{name}11
 Url:http://directory.fsf.org/wiki/Libgcrypt
 Version:1.5.0
 Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ ; LGPL-2.1+
 Group:  Development/Libraries/C and C++
-Source: %name-%version.tar.bz2
+Source: %{name}-%{version}.tar.bz2
 Source2:baselibs.conf
 Source3:idea.c.gz
-Patch0: %name-ppc64.patch
-Patch1: libgcrypt-strict-aliasing.patch
-Patch3: libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch
-Patch4: libgcrypt-sparcv9.diff
-Patch5: libgcrypt-1.5.0-idea.patch
-Patch6: libgcrypt-1.5.0-idea_codecleanup.patch
+Patch0: %{name}-ppc64.patch
+Patch1: %{name}-strict-aliasing.patch
+Patch3: %{name}-1.4.1-rijndael_no_strict_aliasing.patch
+Patch4: %{name}-sparcv9.diff
+Patch5: %{name}-1.5.0-idea.patch
+Patch6: %{name}-1.5.0-idea_codecleanup.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
+BuildRequires:  libgpg-error-devel = 1.8
+BuildRequires:  libtool
 
 %description
 Libgcrypt is a general purpose crypto library based on the code used in
 GnuPG (alpha version).
 
-%package -n libgcrypt11
+%package -n %{libsoname}
 Summary:The GNU Crypto Library
 License:GPL-2.0+ ; LGPL-2.1+
 Group:  Development/Libraries/C and C++
 # bug437293
 %ifarch ppc64
-Obsoletes:  libgcrypt-64bit
+Obsoletes:  %{name}-64bit
 %endif
 #
 # libgcrypt last used in 10.3
-Obsoletes:  libgcrypt  %{version}
-Provides:   libgcrypt = %{version}
+Obsoletes:  %{name}  %{version}
+Provides:   %{name} = %{version}
 
-%description -n libgcrypt11
+%description -n %{libsoname}
 Libgcrypt is a general purpose crypto library based on the code used in
 GnuPG (alpha version).
 
@@ -61,12 +62,12 @@
 Summary:The GNU Crypto Library
 License:GFDL-1.1 ; GPL-2.0+ ; LGPL-2.1+ ; MIT
 Group:  Development/Libraries/C and C++
+Requires:   %{libsoname} = %{version}
 Requires:   glibc-devel
-Requires:   libgcrypt11 = %version
-Requires:   libgpg-error-devel
+Requires:   libgpg-error-devel = 1.8
 # bug437293
 %ifarch ppc64
-Obsoletes:  libgcrypt-devel-64bit
+Obsoletes:  %{name}-devel-64bit
 %endif
 #
 PreReq: %install_info_prereq
@@ -79,7 +80,7 @@
 library.
 
 %prep
-%setup -q -n libgcrypt-%version
+%setup -q -n %{name}-%{version}
 gzip -dc  %{S:3}  cipher/idea.c
 %patch0 -p1
 %patch1
@@ -115,11 +116,11 @@
 %install
 make DESTDIR=$RPM_BUILD_ROOT install
 #
-rm %{buildroot}%{_libdir}/libgcrypt.la
+rm %{buildroot}%{_libdir}/%{name}.la
 
-%post -n libgcrypt11 -p /sbin/ldconfig
+%post -n %{libsoname} -p /sbin/ldconfig
 
-%postun -n libgcrypt11 -p /sbin/ldconfig
+%postun -n %{libsoname} -p /sbin/ldconfig
 
 %post devel
 %install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
@@ -129,10 +130,10 @@
 %install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
 %install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt-1.info.gz
 
-%files -n libgcrypt11
+%files -n %{libsoname}
 %defattr(-,root,root)
 %doc AUTHORS COPYING COPYING.LIB ChangeLog NEWS README THANKS TODO
-%{_libdir}/libgcrypt.so.11*
+%{_libdir}/%{name}.so.11*
 
 %files devel
 %defattr(-,root,root)
@@ -140,9 +141,9 @@
 %_infodir/gcrypt.info-1.gz
 %_bindir/dumpsexp
 %_bindir/hmac256
-%_bindir/libgcrypt-config
-%_libdir/libgcrypt.so
+%_bindir/%{name}-config
+%_libdir/%{name}.so
 %_includedir/gcrypt*.h
-%_datadir/aclocal/libgcrypt.m4
+%_datadir/aclocal/%{name}.m4
 
 %changelog


-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2012-03-26 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2012-03-26 11:03:04

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2012-02-15 
16:16:23.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2012-03-26 
11:03:05.0 +0200
@@ -6,0 +7,5 @@
+Sat Dec 24 23:51:26 UTC 2011 - opens...@dstoecker.de
+
+- add the missing IDEA algorithm after the patent is no longer relevant
+
+--

New:

  idea.c.gz
  libgcrypt-1.5.0-idea.patch
  libgcrypt-1.5.0-idea_codecleanup.patch



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.EN5Z8P/_old  2012-03-26 11:03:07.0 +0200
+++ /var/tmp/diff_new_pack.EN5Z8P/_new  2012-03-26 11:03:07.0 +0200
@@ -19,7 +19,7 @@
 Name:   libgcrypt
 BuildRequires:  libgpg-error-devel
 BuildRequires:  libtool
-Url:http://www.gnu.org/directory/Security/libgcrypt.html
+Url:http://directory.fsf.org/wiki/Libgcrypt
 Version:1.5.0
 Release:0
 Summary:The GNU Crypto Library
@@ -27,10 +27,13 @@
 Group:  Development/Libraries/C and C++
 Source: %name-%version.tar.bz2
 Source2:baselibs.conf
+Source3:idea.c.gz
 Patch0: %name-ppc64.patch
 Patch1: libgcrypt-strict-aliasing.patch
 Patch3: libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch
 Patch4: libgcrypt-sparcv9.diff
+Patch5: libgcrypt-1.5.0-idea.patch
+Patch6: libgcrypt-1.5.0-idea_codecleanup.patch
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
 
 %description
@@ -58,7 +61,9 @@
 Summary:The GNU Crypto Library
 License:GFDL-1.1 ; GPL-2.0+ ; LGPL-2.1+ ; MIT
 Group:  Development/Libraries/C and C++
-Requires:   libgcrypt11 = %version libgpg-error-devel
+Requires:   glibc-devel
+Requires:   libgcrypt11 = %version
+Requires:   libgpg-error-devel
 # bug437293
 %ifarch ppc64
 Obsoletes:  libgcrypt-devel-64bit
@@ -75,14 +80,17 @@
 
 %prep
 %setup -q -n libgcrypt-%version
+gzip -dc  %{S:3}  cipher/idea.c
 %patch0 -p1
 %patch1
 %patch3 -p1
 %patch4 -p1
+%patch5 -p1
+%patch6 -p1
 
 %build
 # define ciphers to build
-ENABLE_CIPHER=arcfour blowfish cast5 des aes twofish serpent rfc2268 seed 
camellia
+ENABLE_CIPHER=arcfour blowfish cast5 des aes twofish serpent rfc2268 seed 
camellia idea
 ENABLE_PUBKEY=dsa elgamal rsa ecc
 ENABLE_DIGEST=crc md4 md5 rmd160 sha1 sha256 sha512 tiger whirlpool
 #

++ libgcrypt-1.5.0-idea.patch ++
diff -ur libgcrypt-1.5.0/cipher/cipher.c libgcrypt-1.5.0f/cipher/cipher.c
--- libgcrypt-1.5.0/cipher/cipher.c 2011-04-19 16:06:57.0 +0200
+++ libgcrypt-1.5.0f/cipher/cipher.c2011-12-25 00:45:18.391287616 +0100
@@ -60,6 +60,12 @@
 { _gcry_cipher_spec_blowfish,
   dummy_extra_spec,  GCRY_CIPHER_BLOWFISH },
 #endif
+#if USE_IDEA
+{ _gcry_cipher_spec_idea,
+  dummy_extra_spec,  GCRY_CIPHER_IDEA },
+#else
+# warn IDEA not supported
+#endif
 #if USE_DES
 { _gcry_cipher_spec_des,
   dummy_extra_spec,  GCRY_CIPHER_DES },
diff -ur libgcrypt-1.5.0/cipher/Makefile.am libgcrypt-1.5.0f/cipher/Makefile.am
--- libgcrypt-1.5.0/cipher/Makefile.am  2011-03-11 09:47:39.0 +0100
+++ libgcrypt-1.5.0f/cipher/Makefile.am 2011-12-25 00:39:27.051857406 +0100
@@ -51,6 +51,7 @@
 dsa.c \
 elgamal.c \
 ecc.c \
+idea.c \
 md4.c \
 md5.c \
 rijndael.c rijndael-tables.h \
diff -ur libgcrypt-1.5.0/configure.ac libgcrypt-1.5.0f/configure.ac
--- libgcrypt-1.5.0/configure.ac2011-06-29 10:53:22.0 +0200
+++ libgcrypt-1.5.0f/configure.ac   2011-12-25 00:39:27.050857305 +0100
@@ -155,7 +155,7 @@
 LIBGCRYPT_CONFIG_HOST=$host
 
 # Definitions for symmetric ciphers.
-available_ciphers=arcfour blowfish cast5 des aes twofish serpent rfc2268 seed
+available_ciphers=arcfour blowfish cast5 des aes twofish serpent rfc2268 seed 
idea
 available_ciphers=$available_ciphers camellia
 enabled_ciphers=
 
@@ -1005,6 +1005,12 @@
AC_DEFINE(USE_CAST5, 1, [Defined if this module should be included])
 fi
 
+LIST_MEMBER(idea, $enabled_ciphers)
+if test $found = 1 ; then
+   GCRYPT_CIPHERS=$GCRYPT_CIPHERS idea.lo
+   AC_DEFINE(USE_IDEA, 1, [Defined if this module should be included])
+fi
+
 LIST_MEMBER(des, $enabled_ciphers)
 if test $found = 1 ; then
GCRYPT_CIPHERS=$GCRYPT_CIPHERS des.lo
diff -ur libgcrypt-1.5.0/src/cipher.h libgcrypt-1.5.0f/src/cipher.h
--- 

commit libgcrypt for openSUSE:Factory

2012-02-15 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2012-02-15 16:15:59

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2011-11-16 
17:19:20.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2012-02-15 
16:16:23.0 +0100
@@ -1,0 +2,5 @@
+Sun Feb 12 15:23:56 UTC 2012 - crrodrig...@opensuse.org
+
+- Libraries back into %{_libdir}, /usr merge project 
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.DzoXEs/_old  2012-02-15 16:16:27.0 +0100
+++ /var/tmp/diff_new_pack.DzoXEs/_new  2012-02-15 16:16:27.0 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package libgcrypt
 #
-# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -16,13 +16,12 @@
 #
 
 
-
 Name:   libgcrypt
 BuildRequires:  libgpg-error-devel
 BuildRequires:  libtool
 Url:http://www.gnu.org/directory/Security/libgcrypt.html
 Version:1.5.0
-Release:1
+Release:0
 Summary:The GNU Crypto Library
 License:GPL-2.0+ ; LGPL-2.1+
 Group:  Development/Libraries/C and C++
@@ -40,6 +39,7 @@
 
 %package -n libgcrypt11
 Summary:The GNU Crypto Library
+License:GPL-2.0+ ; LGPL-2.1+
 Group:  Development/Libraries/C and C++
 # bug437293
 %ifarch ppc64
@@ -55,8 +55,8 @@
 GnuPG (alpha version).
 
 %package devel
-License:GFDL-1.1 ; GPL-2.0+ ; LGPL-2.1+ ; MIT
 Summary:The GNU Crypto Library
+License:GFDL-1.1 ; GPL-2.0+ ; LGPL-2.1+ ; MIT
 Group:  Development/Libraries/C and C++
 Requires:   libgcrypt11 = %version libgpg-error-devel
 # bug437293
@@ -88,7 +88,7 @@
 #
 %{?suse_update_config}
 autoreconf -fi
-%configure --with-pic --libdir=/%{_lib} \
+%configure --with-pic \
--enable-noexecstack \
--disable-static \
 %ifarch %sparc
@@ -107,10 +107,7 @@
 %install
 make DESTDIR=$RPM_BUILD_ROOT install
 #
-rm $RPM_BUILD_ROOT/%{_lib}/libgcrypt.la
-mkdir -p $RPM_BUILD_ROOT%_libdir
-%{__ln_s} -v /%{_lib}/$(readlink %{buildroot}/%{_lib}/%{name}.so) 
%{buildroot}%{_libdir}/%{name}.so
-%{__rm} -v %{buildroot}/%{_lib}/%{name}.so
+rm %{buildroot}%{_libdir}/libgcrypt.la
 
 %post -n libgcrypt11 -p /sbin/ldconfig
 
@@ -127,7 +124,7 @@
 %files -n libgcrypt11
 %defattr(-,root,root)
 %doc AUTHORS COPYING COPYING.LIB ChangeLog NEWS README THANKS TODO
-/%_lib/libgcrypt.so.11*
+%{_libdir}/libgcrypt.so.11*
 
 %files devel
 %defattr(-,root,root)

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2011-12-06 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2011-12-06 18:23:36

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:




Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.khW5n2/_old  2011-12-06 18:41:27.0 +0100
+++ /var/tmp/diff_new_pack.khW5n2/_new  2011-12-06 18:41:27.0 +0100
@@ -24,7 +24,7 @@
 Version:1.5.0
 Release:1
 Summary:The GNU Crypto Library
-License:GPLv2+ ; LGPLv2.1+
+License:GPL-2.0+ ; LGPL-2.1+
 Group:  Development/Libraries/C and C++
 Source: %name-%version.tar.bz2
 Source2:baselibs.conf
@@ -55,7 +55,7 @@
 GnuPG (alpha version).
 
 %package devel
-License:GFDLv1.1 ; GPLv2+ ; LGPLv2.1+ ; MIT
+License:GFDL-1.1 ; GPL-2.0+ ; LGPL-2.1+ ; MIT
 Summary:The GNU Crypto Library
 Group:  Development/Libraries/C and C++
 Requires:   libgcrypt11 = %version libgpg-error-devel

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2011-11-16 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2011-11-16 17:18:46

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2011-11-14 
12:13:46.0 +0100
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2011-11-16 
17:19:20.0 +0100
@@ -1,0 +2,5 @@
+Sun Nov 13 14:37:29 UTC 2011 - jeng...@medozas.de
+
+- Remove redundant/unwanted tags/section (cf. specfile guidelines)
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.G5DQce/_old  2011-11-16 17:19:23.0 +0100
+++ /var/tmp/diff_new_pack.G5DQce/_new  2011-11-16 17:19:23.0 +0100
@@ -15,7 +15,6 @@
 # Please submit bugfixes or comments via http://bugs.opensuse.org/
 #
 
-# norootforbuild
 
 
 Name:   libgcrypt
@@ -39,21 +38,7 @@
 Libgcrypt is a general purpose crypto library based on the code used in
 GnuPG (alpha version).
 
-
-
-Authors:
-
-Maintainer:w...@g10code.com
-
-Authors:   Werner Koch w...@gnupg.org
-   Matthew Skala msk...@ansuz.sooke.bc.ca
-   Michael Roth mr...@nessie.de
-   Niklas Hernaeus n...@df.lth.se
-   R�mi Guyomarch rgu...@mail.dotcom.fr
-   Timo Schulz twoa...@freakmail.de
-
 %package -n libgcrypt11
-License:GPLv2+ ; LGPLv2.1+
 Summary:The GNU Crypto Library
 Group:  Development/Libraries/C and C++
 # bug437293
@@ -69,19 +54,6 @@
 Libgcrypt is a general purpose crypto library based on the code used in
 GnuPG (alpha version).
 
-
-
-Authors:
-
-Maintainer:w...@g10code.com
-
-Authors:   Werner Koch w...@gnupg.org
-   Matthew Skala msk...@ansuz.sooke.bc.ca
-   Michael Roth mr...@nessie.de
-   Niklas Hernaeus n...@df.lth.se
-   R�mi Guyomarch rgu...@mail.dotcom.fr
-   Timo Schulz twoa...@freakmail.de
-
 %package devel
 License:GFDLv1.1 ; GPLv2+ ; LGPLv2.1+ ; MIT
 Summary:The GNU Crypto Library
@@ -101,19 +73,6 @@
 This package contains needed files to compile and link against the
 library.
 
-
-
-Authors:
-
-Maintainer:w...@g10code.com
-
-Authors:   Werner Koch w...@gnupg.org
-   Matthew Skala msk...@ansuz.sooke.bc.ca
-   Michael Roth mr...@nessie.de
-   Niklas Hernaeus n...@df.lth.se
-   R�mi Guyomarch rgu...@mail.dotcom.fr
-   Timo Schulz twoa...@freakmail.de
-
 %prep
 %setup -q -n libgcrypt-%version
 %patch0 -p1
@@ -153,9 +112,6 @@
 %{__ln_s} -v /%{_lib}/$(readlink %{buildroot}/%{_lib}/%{name}.so) 
%{buildroot}%{_libdir}/%{name}.so
 %{__rm} -v %{buildroot}/%{_lib}/%{name}.so
 
-%clean
-rm -rf $RPM_BUILD_ROOT
-
 %post -n libgcrypt11 -p /sbin/ldconfig
 
 %postun -n libgcrypt11 -p /sbin/ldconfig

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2011-11-14 Thread h_root
Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory 
checked in at 2011-11-14 12:13:45

Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
 and  /work/SRC/openSUSE:Factory/.libgcrypt.new (New)


Package is libgcrypt, Maintainer is mvysko...@suse.com

Changes:

--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes  2011-10-03 
09:24:10.0 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2011-11-14 
12:13:46.0 +0100
@@ -1,0 +2,5 @@
+Sun Nov 13 09:16:36 UTC 2011 - co...@suse.com
+
+- add libtool as explicit buildrequire to avoid implicit dependency from 
prjconf
+
+---



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.V6HCGK/_old  2011-11-14 12:13:48.0 +0100
+++ /var/tmp/diff_new_pack.V6HCGK/_new  2011-11-14 12:13:48.0 +0100
@@ -20,13 +20,13 @@
 
 Name:   libgcrypt
 BuildRequires:  libgpg-error-devel
+BuildRequires:  libtool
 Url:http://www.gnu.org/directory/Security/libgcrypt.html
 Version:1.5.0
 Release:1
 Summary:The GNU Crypto Library
 License:GPLv2+ ; LGPLv2.1+
 Group:  Development/Libraries/C and C++
-AutoReqProv:on
 Source: %name-%version.tar.bz2
 Source2:baselibs.conf
 Patch0: %name-ppc64.patch

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org



commit libgcrypt for openSUSE:Factory

2011-10-03 Thread h_root

Hello community,

here is the log from the commit of package libgcrypt for openSUSE:Factory
checked in at Mon Oct 3 09:24:11 CEST 2011.




--- openSUSE:Factory/libgcrypt/libgcrypt.changes2011-09-23 
02:08:17.0 +0200
+++ libgcrypt/libgcrypt.changes 2011-10-02 20:40:48.0 +0200
@@ -1,0 +2,7 @@
+Sun Oct  2 18:38:28 UTC 2011 - crrodrig...@opensuse.org
+
+- Update to version 1.5.0, most important changes
+ * Uses the Intel AES-NI instructions if available
+ * Support ECDH.
+
+---

calling whatdependson for head-i586


Old:

  libgcrypt-1.4.4-mpicheck.patch
  libgcrypt-1.4.6.tar.bz2

New:

  libgcrypt-1.5.0.tar.bz2



Other differences:
--
++ libgcrypt.spec ++
--- /var/tmp/diff_new_pack.wXht0c/_old  2011-10-03 09:24:07.0 +0200
+++ /var/tmp/diff_new_pack.wXht0c/_new  2011-10-03 09:24:07.0 +0200
@@ -1,7 +1,7 @@
 #
-# spec file for package libgcrypt (Version 1.4.6)
+# spec file for package libgcrypt
 #
-# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -21,7 +21,7 @@
 Name:   libgcrypt
 BuildRequires:  libgpg-error-devel
 Url:http://www.gnu.org/directory/Security/libgcrypt.html
-Version:1.4.6
+Version:1.5.0
 Release:1
 Summary:The GNU Crypto Library
 License:GPLv2+ ; LGPLv2.1+
@@ -31,7 +31,6 @@
 Source2:baselibs.conf
 Patch0: %name-ppc64.patch
 Patch1: libgcrypt-strict-aliasing.patch
-Patch2: libgcrypt-1.4.4-mpicheck.patch
 Patch3: libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch
 Patch4: libgcrypt-sparcv9.diff
 BuildRoot:  %{_tmppath}/%{name}-%{version}-build
@@ -119,7 +118,6 @@
 %setup -q -n libgcrypt-%version
 %patch0 -p1
 %patch1
-%patch2
 %patch3 -p1
 %patch4 -p1
 
@@ -158,17 +156,17 @@
 %clean
 rm -rf $RPM_BUILD_ROOT
 
-%post -n libgcrypt11
-/sbin/ldconfig
+%post -n libgcrypt11 -p /sbin/ldconfig
 
-%postun -n libgcrypt11
-/sbin/ldconfig
+%postun -n libgcrypt11 -p /sbin/ldconfig
 
 %post devel
 %install_info --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
+%install_info --info-dir=%{_infodir} %{_infodir}/gcrypt-1.info.gz
 
 %postun devel
 %install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt.info.gz
+%install_info_delete --info-dir=%{_infodir} %{_infodir}/gcrypt-1.info.gz
 
 %files -n libgcrypt11
 %defattr(-,root,root)
@@ -177,7 +175,8 @@
 
 %files devel
 %defattr(-,root,root)
-%doc %_infodir/gcrypt.info.gz
+%_infodir/gcrypt.info.gz
+%_infodir/gcrypt.info-1.gz
 %_bindir/dumpsexp
 %_bindir/hmac256
 %_bindir/libgcrypt-config

++ libgcrypt-1.4.6.tar.bz2 - libgcrypt-1.5.0.tar.bz2 ++
 121995 lines of diff (skipped)

continue with q...



Remember to have fun...

-- 
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org