CVS commit: pkgsrc/security/libgcrypt

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/libgcrypt
From: "Ryo ONODERA" <ryoon%netbsd.org@localhost>
Date: Fri, 9 Aug 2024 03:51:27 +0000

Module Name:    pkgsrc
Committed By:   ryoon
Date:           Fri Aug  9 03:51:27 UTC 2024

Modified Files:
        pkgsrc/security/libgcrypt: Makefile distinfo
Added Files:
        pkgsrc/security/libgcrypt/patches: patch-cipher_aria.c

Log Message:
security/libgcrypt: Update to 1.11.0

Changelog:
Noteworthy changes in version 1.11.0 (2024-06-19)  [C25/A5/R0]
-------------------------------------------------

 * New and extended interfaces:

   - Add an API for Key Encapsulation Mechanism (KEM).  [T6755]

   - Add Streamlined NTRU Prime sntrup761 algorithm.  [rCcf9923e1a5]

   - Add Kyber algorithm according to FIPS 203 ipd 2023-08-24.
     [rC18e5c0d268]

   - Add Classic McEliece algorithm.  [rC003367b912]

   - Add One-Step KDF with hash and MAC.  [T5964]

   - Add KDF algorithm HKDF of RFC-5869.  [T5964]

   - Add KDF algorithm X963KDF for use in CMS.  [rC3abac420b3]

   - Add GMAC-SM4 and Poly1305-SM4.  [rCd1ccc409d4]

   - Add ARIA block cipher algorithm.  [rC316c6d7715]

   - Add explicit FIPS indicators for MD and MAC algorithms.  [T6376]

   - Add support for SHAKE as MGF in RSA.  [T6557]

   - Add gcry_md_read support for SHAKE algorithms.  [T6539]

   - Add gcry_md_hash_buffers_ext function.  [T7035]

   - Add cSHAKE hash algorithm.  [rC065b3f4e02]

   - Support internal generation of IV for AEAD cipher mode.  [T4873]

 * Performance:

   - Add SM3 ARMv8/AArch64/CE assembly implementation.  [rCfe891ff4a3]

   - Add SM4 ARMv8/AArch64 assembly implementation.  [rCd8825601f1]

   - Add SM4 GFNI/AVX2 and GFI/AVX512 implementation.
     [rC5095d60af4,rCeaed633c16]

   - Add SM4 ARMv9 SVE CE assembly implementation.  [rC2dc2654006]

   - Add PowerPC vector implementation of SM4.  [rC0b2da804ee]

   - Optimize ChaCha20 and Poly1305 for PPC P10 LE.  [T6006]

   - Add CTR32LE bulk acceleration for AES on PPC.  [rC84f2e2d0b5]

   - Add generic bulk acceleration for CTR32LE mode (GCM-SIV) for SM4
     and Camellia.  [rCcf956793af]

   - Add GFNI/AVX2 implementation of Camellia.  [rC4e6896eb9f]

   - Add AVX2 and AVX512 accelerated implementations for GHASH (GCM)
     and POLYVAL (GCM-SIV).  [rCd857e85cb4, rCe6f3600193]

   - Add AVX512 implementation for SHA512.  [rC089223aa3b]

   - Add AVX512 implementation for Serpent.  [rCce95b6ec35]

   - Add AVX512 implementation for Poly1305 and ChaCha20
     [rCcd3ed49770, rC9a63cfd617]

   - Add AVX512 accelerated implementation for SHA3 and Blake2
     [rCbeaad75f46,rC909daa700e]

   - Add VAES/AVX2 accelerated i386 implementation for AES.
     [rC4a42a042bc]

   - Add bulk processing for XTS mode of Camellia and SM4.
     [rC32b18cdb87, rCaad3381e93]

   - Accelerate XTS and ECB modes for Twofish and Serpent.
     [rCd078a928f5,rC8a1fe5f78f]

   - Add AArch64 crypto/SHA512 extension implementation for
     SHA512. [rCe51d3b8330]

   - Add AArch64 crypto-extension implementation for Camellia.
     [rC898c857206]

   - Accelerate OCB authentication on AMD with AVX2.  [rC6b47e85d65]

 * Bug fixes:

   - For PowerPC check for missing optimization level for vector
     register usage.  [T5785]

   - Fix EdDSA secret key check.  [T6511]

   - Fix decoding of PKCS#1-v1.5 and OAEP padding.  [rC34c2042792]

   - Allow use of PKCS#1-v1.5 with SHA3 algorithms.  [T6976]

   - Fix AESWRAP padding length check.  [T7130]

 * Other:

   - Allow empty password for Argon2 KDF.  [rCa20700c55f]

   - Various constant time operation imporvements.

   - Add "bp256", "bp384", "bp512" aliases for Brainpool curves.

   - Support for the random server has been removed.  [T5811]

   - The control code GCRYCTL_ENABLE_M_GUARD is deprecated and not
     supported any more.  Please use valgrind or other tools.  [T5822]

   - Logging is now done via the libgpg-error logging functions.
     [rCab0bdc72c7]


To generate a diff of this commit:
cvs rdiff -u -r1.111 -r1.112 pkgsrc/security/libgcrypt/Makefile
cvs rdiff -u -r1.99 -r1.100 pkgsrc/security/libgcrypt/distinfo
cvs rdiff -u -r0 -r1.1 pkgsrc/security/libgcrypt/patches/patch-cipher_aria.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/libgcrypt/Makefile
diff -u pkgsrc/security/libgcrypt/Makefile:1.111 pkgsrc/security/libgcrypt/Makefile:1.112
--- pkgsrc/security/libgcrypt/Makefile:1.111    Wed Nov 15 15:26:49 2023
+++ pkgsrc/security/libgcrypt/Makefile  Fri Aug  9 03:51:27 2024
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.111 2023/11/15 15:26:49 nia Exp $
+# $NetBSD: Makefile,v 1.112 2024/08/09 03:51:27 ryoon Exp $
 
-DISTNAME=      libgcrypt-1.10.3
+DISTNAME=      libgcrypt-1.11.0
 CATEGORIES=    security
 MASTER_SITES=  https://gnupg.org/ftp/gcrypt/libgcrypt/
 EXTRACT_SUFX=  .tar.bz2

Index: pkgsrc/security/libgcrypt/distinfo
diff -u pkgsrc/security/libgcrypt/distinfo:1.99 pkgsrc/security/libgcrypt/distinfo:1.100
--- pkgsrc/security/libgcrypt/distinfo:1.99     Wed Nov 15 10:35:26 2023
+++ pkgsrc/security/libgcrypt/distinfo  Fri Aug  9 03:51:27 2024
@@ -1,11 +1,11 @@
-$NetBSD: distinfo,v 1.99 2023/11/15 10:35:26 wiz Exp $
+$NetBSD: distinfo,v 1.100 2024/08/09 03:51:27 ryoon Exp $
 
-BLAKE2s (libgcrypt-1.10.3.tar.bz2) = 71cefea84ce054f245b8e5c647e4ea191773fcb2b74a51bd22346a3a64e2d294
-SHA512 (libgcrypt-1.10.3.tar.bz2) = 8a8d4c61a6622d8481ceb9edc88ec43f58da32e316f79f8d4775325a48f8936aaa9eb355923b39e2c267b784e9c390600daeb62e0c94f00e30bbadb0d8c0865d
-Size (libgcrypt-1.10.3.tar.bz2) = 3783827 bytes
+BLAKE2s (libgcrypt-1.11.0.tar.bz2) = b431a329ef99a103d60bf8337f36e33f7dae380e31644de4a8853c557e70b9aa
+SHA512 (libgcrypt-1.11.0.tar.bz2) = 8e093e69e3c45d30838625ca008e995556f0d5b272de1c003d44ef94633bcc0d0ef5d95e8725eb531bfafb4490ac273488633e0c801200d4666194f86c3e270e
+Size (libgcrypt-1.11.0.tar.bz2) = 4180345 bytes
 SHA1 (patch-aa) = 60b3f4453b217ed8879a2ffd8d485c0195ffb5f8
+SHA1 (patch-cipher_aria.c) = 7e574b13872ea0610bf8b4abd699ffbc9dabc09a
 SHA1 (patch-cipher_rijndael-arm.S) = ef3cb7f481022440780eb48ae31cbfad0a3ec115
 SHA1 (patch-config.h.in) = b065aca0c4bf11cd45507b14d60b682be10ab8c9
-SHA1 (patch-configure) = d29856442b931ad24fa2e0ab41a81bf9ac731dc6
 SHA1 (patch-mpi_config.links) = 0e87480ead46914653405bb9c693554180ccd126
 SHA1 (patch-src_visibility.h) = 8cbbf6803ab34b4b7dda832aa8ee18247aa89518

Added files:

Index: pkgsrc/security/libgcrypt/patches/patch-cipher_aria.c
diff -u /dev/null pkgsrc/security/libgcrypt/patches/patch-cipher_aria.c:1.1
--- /dev/null   Fri Aug  9 03:51:27 2024
+++ pkgsrc/security/libgcrypt/patches/patch-cipher_aria.c       Fri Aug  9 03:51:27 2024
@@ -0,0 +1,20 @@
+$NetBSD: patch-cipher_aria.c,v 1.1 2024/08/09 03:51:27 ryoon Exp $
+
+* Do not conflict with NetBSD's bswap(3).
+
+--- cipher/aria.c.orig 2024-08-02 04:47:06.896383457 +0000
++++ cipher/aria.c
+@@ -641,11 +641,13 @@ u32 rotr32(u32 v, u32 r)
+   return ror(v, r);
+ }
+ 
++#if !defined(__NetBSD__)
+ static ALWAYS_INLINE
+ u32 bswap32(u32 v)
+ {
+   return _gcry_bswap32(v);
+ }
++#endif
+ 
+ static ALWAYS_INLINE u32
+ get_u8(u32 x, u32 y)

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index