pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/security/liboqs
Module Name: pkgsrc
Committed By: jschauma
Date: Wed Dec 18 21:30:34 UTC 2024
Modified Files:
pkgsrc/security/liboqs: Makefile distinfo
Log Message:
update to liboqs-0.12.0
Release notes:
https://github.com/open-quantum-safe/liboqs/releases/tag/0.12.0
This release updates the ML-DSA implementation to the
final FIPS 204 version. This release still includes
the NIST Round 3 version of Dilithium for
interoperability purposes, but we plan to remove
Dilithium Round 3 in a future release.
Deprecation notice
This will be the last release of liboqs to include
Kyber (that is, the NIST Round 3 version of Kyber,
prior to its standardization by NIST as ML-KEM in FIPS
203). Applications should switch to ML-KEM (FIPS 203).
The addition of ML-DSA FIPS 204 final version to
liboqs has introduced a new signature API which
includes a context string parameter. We are planning
to remove the old version of the API without a context
string in the next release to streamline the API and
bring it in line with NIST specifications. Users who
have an opinion on this removal are invited to provide
input at #2001.
Security issues
CVE-2024-54137: Fixed bug in HQC decapsulation that
leads to incorrect shared secret value during
decapsulation when called with an invalid ciphertext.
Thank you to Célian Glénaz and Dahmun Goudarzi from
Quarkslab for identifying the issue.
What's New
This release continues from the 0.11.0 release of liboqs.
Key encapsulation mechanisms
HQC: Fixed bug in decapsulation that leads to
incorrect shared secret value during decapsulation
when called with an invalid ciphertext. Thank you to
Célian Glénaz and Dahmun Goudarzi from Quarkslab for
identifying the issue.
Kyber: This is the last release of liboqs to include Kyber.
ML-KEM: Improved testing of ML-KEM.
Digital signature schemes
LMS: Fixed crashing bug.
ML-DSA: Removed FIPS 204-ipd (initial public draft)
and replaced it with FIPS 204 final version.
Added new API for digital signatures with context
strings; see #2001 for plan to remove old API without
context string.
Added fuzzing tests for signature schemes.
Added benchmarking for stateful hash-based signature schemes.
Other changes
Updated CBOM format to version 1.6.
Added a function OQS_thread_stop to be called by
multi-threaded applications to properly deallocate
resources in a threaded execution.
Added preprocessor macros conveying liboqs version
information.
To generate a diff of this commit:
cvs rdiff -u -r1.3 -r1.4 pkgsrc/security/liboqs/Makefile
cvs rdiff -u -r1.2 -r1.3 pkgsrc/security/liboqs/distinfo
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/security/liboqs/Makefile
diff -u pkgsrc/security/liboqs/Makefile:1.3 pkgsrc/security/liboqs/Makefile:1.4
--- pkgsrc/security/liboqs/Makefile:1.3 Mon Oct 14 15:24:03 2024
+++ pkgsrc/security/liboqs/Makefile Wed Dec 18 21:30:34 2024
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.3 2024/10/14 15:24:03 nia Exp $
+# $NetBSD: Makefile,v 1.4 2024/12/18 21:30:34 jschauma Exp $
-DISTNAME= liboqs-0.11.0
+DISTNAME= liboqs-0.12.0
CATEGORIES= security
MASTER_SITES= ${MASTER_SITE_GITHUB:=open-quantum-safe/}
Index: pkgsrc/security/liboqs/distinfo
diff -u pkgsrc/security/liboqs/distinfo:1.2 pkgsrc/security/liboqs/distinfo:1.3
--- pkgsrc/security/liboqs/distinfo:1.2 Thu Oct 10 19:32:28 2024
+++ pkgsrc/security/liboqs/distinfo Wed Dec 18 21:30:34 2024
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.2 2024/10/10 19:32:28 jschauma Exp $
+$NetBSD: distinfo,v 1.3 2024/12/18 21:30:34 jschauma Exp $
-BLAKE2s (liboqs-0.11.0.tar.gz) = fd1806d5c1a2333e75c447ecb9748438416b3020182c05bd7546f8299e9c7c85
-SHA512 (liboqs-0.11.0.tar.gz) = 10dc002f148895cc304d6b0db14734d9149aeae43308caee4fe5c39ee18fbd7297c65f5c67df0a39b84534f676f209bbcda591b353128b4bab152cb69177c6ae
-Size (liboqs-0.11.0.tar.gz) = 8225080 bytes
+BLAKE2s (liboqs-0.12.0.tar.gz) = 516cb4776d991aaa2a3d2210adf4735333e6b0a9808076231316c9eee3b1c798
+SHA512 (liboqs-0.12.0.tar.gz) = 93260f15c02108157fa595e252685c49c5fb6433d04b989c381da4e27169577f3011d9174b2ec0c110fff15d2d3c640a9833bf28aa53949e8f33c0e674b6e781
+Size (liboqs-0.12.0.tar.gz) = 8039758 bytes
SHA1 (patch-common.c) = 8841eacb7500a1a589786eb710aa22f603a24af7
Home |
Main Index |
Thread Index |
Old Index