Commit graph

6 commits

Author SHA1 Message Date
nia
3df0f20e22 security: Replace RMD160 checksums with BLAKE2s checksums
All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2
2021-10-26 11:16:56 +00:00
nia
fa4b2904a6 security: Remove SHA1 hashes for distfiles 2021-10-07 14:53:40 +00:00
fox
6aa6e68ed9 security/libdecaf: Updates to v1.0.1
- Build scripts now depend on the sourceforce git repository directly.

Changes since v1.0.0:

October 10, 2020:
    A paper by Konstantinos Chalkias, François Garillot, and Valeria
    Nikolaenko, to be found at:

    https://eprint.iacr.org/2020/1244.pdf

    discusses malleability in EdDSA implementations.  Their test
    vectors reveal unintentional malleability in libdecaf's version
    of EdDSA verify, in violation of RFC 8032.  With this malleability,
    an attacker could modify an existing valid signature to create a
    new signature that is still valid, but only for the same message.

    Releave v1.0.1, correcting this flaw.

Additional changes generated from git commit logs:

- (tag: v1.0.1) Fix bug in ristretto elligator: it should be able to take improper field elements as input
- Fix malleability bug from https://eprint.iacr.org/2020/1244.pdf and add test vectors
- Optimize s^2 -> s2
- Dont double generator for Ed448RistrettoPoint
- Update ristretto.sage for python3. Also add Ed448RistrettoPoint for reference
- Add safer version of EdDSA signing API
- Fix issues when compiling on GCC 9.1
- Also remove X_SER_BYTES while were at it
- Remove gf_hibit, since it was a relic from p521 days
- Adds errno.eexist, remove hardcoded error value
- Tweak generated code message
- Fix flaky Python generator
- Add full RFC 8032 test vectors
- Change test scripts to avoid GCC warnings
- Minor changes. Bump version number in CMakeLists.txt
2021-03-12 23:01:07 +00:00
nia
4b51d9715f *: Convert broken sourceforge HOMEPAGEs back to http 2020-03-20 11:57:53 +00:00
rillig
b686dd9180 all: migrate several HOMEPAGEs to https
pkglint --only "https instead of http" -r -F

With manual adjustments afterwards since pkglint 19.4.4 fixed a few
indentations in unrelated lines.

This mainly affects projects hosted at SourceForce, as well as
freedesktop.org, CTAN and GNU.
2020-01-18 23:30:43 +00:00
fox
d328d7fb40 Import of libdecaf 1.0.0 as security/libdecaf
Implementation of elliptic curve cryptography using the Montgomery
and Edwards curves Curve25519, Ed25519, Ed448-Goldilocks and
Curve448, using the Decaf / Ristretto encoding.
2019-08-11 16:47:52 +00:00