SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for nettle-3.8.1-3.2.i586.rpm :

* Thu Jul 28 2022 Dirk Müller - update to 3.8.1:
* Avoid non-posix m4 argument references in the chacha implementation for arm64, powerpc64 and s390x. Reported by Christian Weisgerber, fix contributed by Mamone Tarsha.
* Use explicit .machine pseudo-ops where needed in s390x assembly files. Bug report by Andreas K. Huettel, fix contributed by Mamone Tarsha.
* Mon Jul 11 2022 Dirk Müller - update to 3.8: This release includes a couple of new features, and many performance improvements. It adds assembly code for two more architectures: ARM64 and S390x. The new version is intended to be fully source and binary compatible with Nettle-3.6. The shared library names are libnettle.so.8.5 and libhogweed.so.6.5, with sonames libnettle.so.8 and libhogweed.so.6. New features:
* AES keywrap (RFC 3394), contributed by Nicolas Mora.
* SM3 hash function, contributed by Tianjia Zhang.
* New functions cbc_aes128_encrypt, cbc_aes192_encrypt, cbc_aes256_encrypt. On processors where AES is fast enough, e.g., x86_64 with aesni instructions, the overhead of using Nettle\'s general cbc_encrypt can be significant. The new functions can be implemented in assembly, to do multiple blocks with reduced per-block overhead. Note that there\'s no corresponding new decrypt functions, since the general cbc_decrypt doesn\'t suffer from the same performance problem. Bug fixes:
* Fix fat builds for x86_64 windows, these appear to never have worked. Optimizations:
* New ARM64 implementation of AES, GCM, Chacha, SHA1 and SHA256, for processors supporting crypto extensions. Great speedups, and fat builds are supported. Contributed by Mamone Tarsha.
* New s390x implementation of AES, GCM, Chacha, memxor, SHA1, SHA256, SHA512 and SHA3. Great speedups, and fat builds are supported. Contributed by Mamone Tarsha.
* New PPC64 assembly for ecc modulo/redc operations, contributed by Amitay Isaacs, Martin Schwenke and Alastair D´Silva.
* The x86_64 AES implementation using aesni instructions has been reorganized with one separate function per key size, each interleaving the processing of two blocks at a time (when the caller processes multiple blocks with each call). This gives a modest performance improvement on some processors.
* Rewritten and faster x86_64 poly1305 assembly.- drop libnettle-s390x-CPACF-SHA-AES-support.patch (included in 3.8)
* Wed Jun 15 2022 Callum Farmer - Make shared libraries executable
* Mon Jan 17 2022 Pedro Monreal - Provide s390x CPACF/SHA/AES Support for Crypto Libraries
* Add libnettle-s390x-CPACF-SHA-AES-support.patch [jsc#SLE-20733]
* Wed Jun 09 2021 Paolo Stivanin - GNU Nettle 3.7.3: [CVE-2021-3580, bsc#1187060]
* Fix crash for zero input to rsa_sec_decrypt and rsa_decrypt_tr. Potential denial of service vector.
* Ensure that all of rsa_decrypt_tr and rsa_sec_decrypt return failure for out of range inputs, instead of either crashing, or silently reducing input modulo n. Potential denial of service vector.
* Ensure that rsa_decrypt returns failure for out of range inputs, instead of silently reducing input modulo n.
* Ensure that rsa_sec_decrypt returns failure if the message size is too large for the given key. Unlike the other bugs, this would typically be triggered by invalid local configuration, rather than by processing untrusted remote data.
* Sun Mar 21 2021 Andreas Stieger - GNU Nettle 3.7.2:
* fix a bug in ECDSA signature verification that could lead to a denial of service attack (via an assertion failure) or possibly incorrect results (CVE-2021-20305, boo#1184401)
* fix a few related problems where scalars are required to be canonically reduced modulo the ECC group order, but in fact may be slightly larger
* Thu Feb 18 2021 Andreas Stieger - GNU Nettle 3.7.1:
* Fix bug in chacha counter update logic (ppc64 and ppc64el)
* Restore support for big-endian ARM platforms
* Fix corner case bug in ECDSA verify, it would produce incorrect result in the unlikely case of an all-zero message hash
* Support for pbkdf2_hmac_sha384 and pbkdf2_hmac_sha512
* Remove poorly performing ARM Neon code for doing single-block Salsa20 and Chacha
* Mon Jan 04 2021 Andreas Stieger - GNU Nettle 3.7:
* add bcrypt password hashing
* add optimizations: PowerPC64 assembly- remove deprecated texinfo packaing macros
* Sun May 10 2020 Andreas Stieger - GNU Nettle 3.6:
* removal of internal and undocumented poly1305 functions
* Support for Curve448 and ED448 signatures
* Support for SHAKE256, SIV-CMAC, CMAC64, \"CryptoPro\" variant of the GOST hash (as gosthash94cp), GOST DSA signatures, including GOST curves gc256b and gc512a
* Support for Intel CET in x86 and x86_64 assembly files, if enabled via CFLAGS (gcc --fcf-protection=full)
* A few new functions to improve support for the Chacha variant with 96-bit nonce and 32-bit block counter (the existing functions use nonce and counter of 64-bit each), and functions to set the counter.
* New interface, struct nettle_mac, for MAC (message authentication code) algorithms. This abstraction is only for MACs that don\'t require a per-message nonce. For HMAC, the key size is fixed, and equal the digest size of the underlying hash function
* multiple bug fixes- drop nettle-respect-cflags.patch- silence packaging warning raised by HMAC files (bsc#1152692, jsc#SLE-9518)
* Tue Oct 01 2019 Vítězslav Čížek - Install checksums for binary integrity verification which are required when running in FIPS mode (bsc#1152692, jsc#SLE-9518)
  
ICM