cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
173,187 Commits 1 Branch 0 Tags 544 MiB
master
Commit Graph

98 Commits

Author SHA1 Message Date
tb
65c79227b4 zap trailing blank 2023-01-29 07:31:30 +00:00
tb
51fc6cccd4 libgcrypt: more amd64 x-only assembly fixes. Remove USE_NOEXECONLY for 
amd64 now.
 2023-01-28 21:02:08 +00:00
tb
47f5cec607 libgcrypt: amd64 assembly fixes for x-only. 2023-01-19 17:11:02 +00:00
tb
d7fd0260f8 libgcrypt aarch64: fix one use of adr by using GET_DATA_POINTER() in 
camellia similar to what upstream has done recently.
 2023-01-19 13:01:16 +00:00
tb
ba03b57a13 libgcrypt: arm64 assembly fixes: move constants from .text to .rodata. 
"right" kettenis
ok ajacoutot phessler
 2023-01-15 09:35:41 +00:00
sthen
dcce6e7de5 use USE_NOEXECONLY, from tb@ 2023-01-09 17:27:49 +00:00
tb
3dc92afd91 libgcrypt: link with -Wl,--no-execute-only until we have a better fix. 
There's a lot of handwritten armv8 assembly and fixing this for xonly
will be a whack-a-mole.

ok phessler sthen
 2023-01-07 15:49:26 +00:00
naddy
6b4f833990 security/libgcrypt: enable aarch64 hardware crypto support 
ok ajacoutot@
 2022-04-12 21:04:06 +00:00
ajacoutot
32a47609bf Update to libgcrypt-1.10.1. 2022-03-29 07:15:13 +00:00
naddy
8c0294c2fa drop RCS Ids 2022-03-11 19:53:16 +00:00
ajacoutot
a3b54f6c93 Update to libgcrypt-1.10.0. 
ok robert@
 2022-02-19 07:53:44 +00:00
ajacoutot
474ba5cfab SECURITY update to libgcrypt-1.9.4 (CVE-2021-33560). 2021-08-23 05:39:45 +00:00
ajacoutot
4664208dbd Update to libgcrypt-1.9.3. 2021-04-24 07:44:41 +00:00
ajacoutot
ac74558f97 Update to libgcrypt-1.9.2. 2021-02-18 06:57:29 +00:00
ajacoutot
d8177977cc SECURITY update to libgcrypt-1.9.1. 
From https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html:
There is a heap buffer overflow in libgcrypt due to an incorrect
assumption in the block buffer management code. Just decrypting some
data can overflow a heap buffer with attacker controlled data, no
verification or signature is validated before the vulnerability
occurs.
 2021-01-29 12:14:13 +00:00
ajacoutot
cb347ad4a6 Unbreak selftest (from upstream): 
- kdf: add missing null-terminator for self-test test-vector array
- kdf: make self-test test-vector array read-only
 2021-01-23 08:55:21 +00:00
ajacoutot
fd51965a71 Major update to libgcrypt-1.9.0. 
Release info: https://dev.gnupg.org/T4294

Tested in an amd64 bulk.
 2021-01-23 07:15:01 +00:00
ajacoutot
54edd6696e Update to libgcrypt-1.8.7. 2020-10-25 08:53:25 +00:00
naddy
e10775e205 pull in upstream fix so aarch64 builds; ok ajacoutot@ phessler@ 2020-08-11 10:50:55 +00:00
ajacoutot
2d46f6ee5c Update to libgcrypt-1.8.6. 2020-07-07 07:08:29 +00:00
ajacoutot
562bd9d030 SECURITY update to libgcrypt-1.8.5. 
- Add mitigation against an ECDSA timing attack [CVE-2019-13627]
 2019-09-07 16:46:01 +00:00
sthen
48b0b9660c replace simple PERMIT_PACKAGE_CDROM=Yes with PERMIT_PACKAGE=Yes 2019-07-12 20:48:23 +00:00
robert
becdcd5b83 use arc4random_buf(3) in libgcrypt instead of /dev/random 
this issue came to the light after using an unveil(2)'d chrome
inside a GNOME environment where it was trying to use the keyring
which was relying on libgcrypt

ok ajacoutot@
 2018-12-02 11:24:15 +00:00
ajacoutot
d9643a91ff Update to libgcrypt-1.8.4. 2018-10-27 16:12:26 +00:00
ajacoutot
963b7cd96e SECURITY update to libgcrypt-1.8.3 (CVE-2018-0495). 2018-06-14 06:07:46 +00:00
jca
ae84f94e29 Tweak the HOMEPAGE of gnupg.org ports 
- move to https
- use the per-project canonical homepage (reachable thru the main
- homepage; pinentry doesn't seem to have such homepage)

ok pea@ ajacoutot@
 2018-01-30 15:06:37 +00:00
ajacoutot
227e380b4b Update to libgcrypt-1.8.2. 2017-12-14 14:30:22 +00:00
ajacoutot
a13ed238ef Remove useless includes. 2017-10-29 10:42:21 +00:00
natano
d7464b17b0 Patch configure instead of configure.ac for selecting the correct random 
device, otherwise the change is not picked up by the build.

pointed out by ajacoutot
 2017-10-26 20:36:47 +00:00
natano
f69ad6ded1 Switch libgcrypt from /dev/srandom to /dev/random. The device node for srandom 
has been removed.  ok ajacoutot
 2017-10-26 18:32:54 +00:00
ajacoutot
95bf11a09c SECURITY update to libgcrypt-1.8.1. 
- CVE-2017-0379 - side-channel attack on Curve25519
 2017-08-27 17:10:25 +00:00
ajacoutot
c7534e8bc8 Update to libgcrypt-1.8.0. 2017-07-20 06:16:00 +00:00
ajacoutot
2d3dab9031 SECURITY update to libgcrypt-1.7.8. 
[CVE-2017-7526]
- See https://eprint.iacr.org/2017/627 for details.
 2017-06-30 07:47:36 +00:00
ajacoutot
5e44c7ef84 Update to libgcrypt-1.7.7. 2017-06-05 07:34:12 +00:00
ajacoutot
5424240b6d Update to libgcrypt-1.7.6. 2017-01-19 03:24:16 +00:00
ajacoutot
3be61c7c1c Update to libgcrypt-1.7.5. 2016-12-16 08:51:49 +00:00
ajacoutot
ba33c4bd27 Update to libgcrypt-1.7.4. 2016-12-10 07:24:45 +00:00
naddy
893e631df0 rename MASTER_SITES_GNUPG to MASTER_SITE_GNUPG, like all the others 2016-10-01 13:56:26 +00:00
ajacoutot
fb437bde44 SECURITY update to libgcrypt-1.7.3. 
CVE-2016-6313
 2016-08-21 13:03:22 +00:00
ajacoutot
e713df8a46 Update to libgcrypt-1.7.2. 
ok sthen@ before lock
 2016-07-30 14:21:44 +00:00
ajacoutot
e2b3cab8cd Update to libgcrypt-1.7.1. 2016-06-15 21:21:21 +00:00
jca
0129efef49 Committed upstream. 2016-06-11 15:56:02 +00:00
jca
088ac8f980 Re-add the error message that motivated those patches 
crc-intel-pclmul.c:369: Error: no such instruction: `pextrd $1,%xmm0,(%rdi)'
 2016-05-08 23:21:29 +00:00
jca
ddc250512c Drop use of pclmul/SSE4.1 for CRC, and the use of clang while here 
While this bring a nice speed improvement over libgcrypt-1.6.5, it
requires newer gcc or clang.  Since libgcrypt is a requirement for
tons of ports, using clang here means that you end up building two huge
compilers before building anything useful.

pclmul alone is supported by base gcc and is still used for GCM.

ok ajacoutot@ (maintainer)
 2016-05-08 23:13:20 +00:00
ajacoutot
35887a73e8 Only use clang for i386 and amd64. 2016-05-06 14:41:51 +00:00
ajacoutot
65236d93f8 Update to libgcrypt-1.7.0. 2016-04-24 21:40:25 +00:00
naddy
bcafc84fa7 replace the gettext module with conventional dependencies; ok ajacoutot@ 2016-04-06 16:56:42 +00:00
naddy
ce859edcb4 garbage collect CONFIGURE_SHARED 2016-03-11 20:28:21 +00:00
ajacoutot
e0f087e633 Update to libgcrypt-1.6.5 to fix CVE-2015-7511. 
prodded by Sevan Janiyan
ok sthen@
 2016-02-23 15:41:30 +00:00
ajacoutot
40b83043f4 Update to libgcrypt-1.6.4. 2015-09-09 07:46:44 +00:00