CVS commit: pkgsrc/security/botan2

["Niclas Rosenvik" <nros%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   nros
Date:           Mon Feb 26 21:01:13 UTC 2024

Modified Files:
        pkgsrc/security/botan2: Makefile PLIST buildlink3.mk distinfo

Log Message:
Update botan2 to version 2.19.4

Pkgsrc changes:
Add pkg-config override.

Changes From changelog:

* Fix a potential denial of service caused by accepting arbitrary
  length primes as potential elliptic curve parameters in ASN.1
  encodings. With very large inputs the primality verification
  can become computationally expensive. Now any prime field larger
  than 1024 bits is rejected immediately. Reported by Bing Shi.
  (GH #3914)

* Switch to using a constant time binary algorithm for computing
  GCD (GH #3912)

* Fix a bug in SHAKE_Cipher which could cause incorrect output
  if set_key was called multiple times. (GH #3192)

* Fix a bug in RSA-KEM encryption where the shared secret key
  was incorrectly not padded to exactly the byte length of the
  modulus. This would cause an incorrect shared key with ~1/256
  probability. (GH #3380)

* In RSA decryption and signature verification, reject bytestrings
  which are longer than the public modulus. Previously, otherwise
  valid signatures/ciphertexts with additional leading zero bytes
  would also be accepted. (GH #3380)

* Add support for short nonces in XTS (GH #3384 #3336)

* Fix NIST keywrap which was incorrect when wrapping 64-bit keys
  (GH #3384 #3340)

* Fix nonce handling bug in EAX (GH #3382 #3335)

* Fix a bug in PKCS11 AttributeContainer where adding an attribute
  that already existed could cause incorrect references to the
  existing attributes. (GH #3185)

* Apply patches which allow GCC 4.7 to compile Botan 2.x. Previously
  at least GCC 4.8 had been required. (GH #3273)

* Fix a build time problem affecting VCpkg (GH #3071)

* Fix a build problem affecting Windows ARM with Visual C++ (GH #3871)


To generate a diff of this commit:
cvs rdiff -u -r1.9 -r1.10 pkgsrc/security/botan2/Makefile
cvs rdiff -u -r1.3 -r1.4 pkgsrc/security/botan2/PLIST
cvs rdiff -u -r1.7 -r1.8 pkgsrc/security/botan2/buildlink3.mk
cvs rdiff -u -r1.4 -r1.5 pkgsrc/security/botan2/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/security/botan2/Makefile
diff -u pkgsrc/security/botan2/Makefile:1.9 pkgsrc/security/botan2/Makefile:1.10
--- pkgsrc/security/botan2/Makefile:1.9 Fri Dec 29 18:24:57 2023
+++ pkgsrc/security/botan2/Makefile     Mon Feb 26 21:01:13 2024
@@ -1,8 +1,7 @@
-# $NetBSD: Makefile,v 1.9 2023/12/29 18:24:57 adam Exp $
+# $NetBSD: Makefile,v 1.10 2024/02/26 21:01:13 nros Exp $
 
-DISTNAME=      Botan-2.19.3
+DISTNAME=      Botan-2.19.4
 PKGNAME=       ${DISTNAME:tl}
-PKGREVISION=   4
 CATEGORIES=    security
 MASTER_SITES=  https://botan.randombit.net/releases/
 EXTRACT_SUFX=  .tar.xz
@@ -49,6 +48,9 @@ CONFIGURE_ARGS+=      --cpu=arm64
 CONFIGURE_ARGS+=       --cpu=arm32
 .endif
 
+PKGCONFIG_OVERRIDE=            build/botan-2.pc
+PKGCONFIG_OVERRIDE_STAGE=      post-configure
+
 MAKE_FLAGS+=   LIB_OPT=${CXXFLAGS:Q}
 
 USE_TOOLS+=    gmake

Index: pkgsrc/security/botan2/PLIST
diff -u pkgsrc/security/botan2/PLIST:1.3 pkgsrc/security/botan2/PLIST:1.4
--- pkgsrc/security/botan2/PLIST:1.3    Thu Nov 24 11:59:30 2022
+++ pkgsrc/security/botan2/PLIST        Mon Feb 26 21:01:13 2024
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.3 2022/11/24 11:59:30 wiz Exp $
+@comment $NetBSD: PLIST,v 1.4 2024/02/26 21:01:13 nros Exp $
 bin/botan
 include/botan-2/botan/adler32.h
 include/botan-2/botan/aead.h
@@ -317,7 +317,7 @@ include/botan-2/botan/zlib.h
 lib/libbotan-2.a
 lib/libbotan-2.so
 lib/libbotan-2.so.19
-lib/libbotan-2.so.19.19.3
+lib/libbotan-2.so.19.19.4
 lib/pkgconfig/botan-2.pc
 ${PYSITELIB}/botan2.py
 share/doc/${PKGNAME}/authors.txt

Index: pkgsrc/security/botan2/buildlink3.mk
diff -u pkgsrc/security/botan2/buildlink3.mk:1.7 pkgsrc/security/botan2/buildlink3.mk:1.8
--- pkgsrc/security/botan2/buildlink3.mk:1.7    Fri Dec 29 18:24:57 2023
+++ pkgsrc/security/botan2/buildlink3.mk        Mon Feb 26 21:01:13 2024
@@ -1,4 +1,4 @@
-# $NetBSD: buildlink3.mk,v 1.7 2023/12/29 18:24:57 adam Exp $
+# $NetBSD: buildlink3.mk,v 1.8 2024/02/26 21:01:13 nros Exp $
 
 BUILDLINK_TREE+=       botan
 
@@ -6,7 +6,7 @@ BUILDLINK_TREE+=        botan
 BOTAN_BUILDLINK3_MK:=
 
 BUILDLINK_API_DEPENDS.botan+=  botan>=2.11
-BUILDLINK_ABI_DEPENDS.botan+=  botan>=2.19.3nb4
+BUILDLINK_ABI_DEPENDS.botan+=  botan>=2.19.4
 BUILDLINK_PKGSRCDIR.botan?=    ../../security/botan2
 
 .include "../../devel/zlib/buildlink3.mk"

Index: pkgsrc/security/botan2/distinfo
diff -u pkgsrc/security/botan2/distinfo:1.4 pkgsrc/security/botan2/distinfo:1.5
--- pkgsrc/security/botan2/distinfo:1.4 Mon Dec 19 17:39:40 2022
+++ pkgsrc/security/botan2/distinfo     Mon Feb 26 21:01:13 2024
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.4 2022/12/19 17:39:40 nros Exp $
+$NetBSD: distinfo,v 1.5 2024/02/26 21:01:13 nros Exp $
 
-BLAKE2s (Botan-2.19.3.tar.xz) = 124eb756725b0b7fe63a89617940271a6e99cee91ca1f6ca986ce432b7f8fc22
-SHA512 (Botan-2.19.3.tar.xz) = 80012397e2aa7cc88a9536340ac9b770d1195fddda53b9d4cfde82318dd05f9d4f925bbdff773aba99883a701f4d30581e9d5c97e915fa80c3ca2acfa5a92110
-Size (Botan-2.19.3.tar.xz) = 6105896 bytes
+BLAKE2s (Botan-2.19.4.tar.xz) = 7a865e592c497bfff1035d52415cc044c070e4c77a57797f129d08974bd4970a
+SHA512 (Botan-2.19.4.tar.xz) = 2fab4347367703dce8302b7710698ed228c6cc6dd609c39829ba17ad580407ed40d822862d467aa7aea4bfd633c1f1d1c0d437e86376f453845cc609596335d8
+Size (Botan-2.19.4.tar.xz) = 6099528 bytes
 SHA1 (patch-configure.py) = 2688fe59474bf3de425b49d2e0c9c1f4ecccfd16
 SHA1 (patch-src_build-data_os_openbsd.txt) = 7858a819d457e0cb18a5b9d608c386bee36813ee
 SHA1 (patch-src_lib_utils_os__utils.cpp) = cf914c9566e7c0f376b045c85bb39fb6a573b225