diff mbox series

[nanbield,19/41] libgcrypt: upgrade 1.10.2 -> 1.10.3

Message ID	451480be9e8693d026fb408f5bfd1c6c77ad7182.1703864512.git.steve@sakoman.com
State	New, archived
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.214.174, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][nanbield 19/41] libgcrypt: upgrade 1.10.2 -> 1.10.3 Date: Fri, 29 Dec 2023 05:44:33 -1000 Message-Id: <451480be9e8693d026fb408f5bfd1c6c77ad7182.1703864512.git.steve@sakoman.com> In-Reply-To: <cover.1703864512.git.steve@sakoman.com> References: <cover.1703864512.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[nanbield,01/41] cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT \| expand [nanbield,01/41] cve-update-nvd2-native: remove unused variable CVE_SOCKET_TIMEOUT [nanbield,02/41] cve-update-nvd2-native: make number of fetch attemtps configurable [nanbield,03/41] cve-update-nvd2-native: faster requests with API keys [nanbield,04/41] cve-update-nvd2-native: increase the delay between subsequent request failures [nanbield,05/41] rust: Fix CVE-2023-40030 [nanbield,06/41] linux-yocto: update CVE exclusions [nanbield,07/41] linux-yocto/6.1: drop removed IMA option [nanbield,08/41] linux-yocto-rt/6.1: update to -rt18 [nanbield,09/41] linux-yocto/6.1: update to v6.1.66 [nanbield,10/41] linux-yocto/6.1: update to v6.1.67 [nanbield,11/41] linux-yocto/6.1: update to v6.1.68 [nanbield,12/41] linux/cve-exclusion6.1: Update to latest kernel point release [nanbield,13/41] linux-yocto/6.5: drop removed IMA option [nanbield,14/41] linux-yocto/6.5: fix AB-INT: QEMU kernel panic: No irq handler for vector [nanbield,15/41] libsolv: upgrade 0.7.25 -> 0.7.26 [nanbield,16/41] gstreamer1.0: upgrade 1.22.6 -> 1.22.7 [nanbield,17/41] bind: upgrade 9.18.19 -> 9.18.20 [nanbield,18/41] ell: upgrade 0.59 -> 0.60 [nanbield,19/41] libgcrypt: upgrade 1.10.2 -> 1.10.3 [nanbield,20/41] libxslt: upgrade 1.1.38 -> 1.1.39 [nanbield,21/41] log4cplus: upgrade 2.1.0 -> 2.1.1 [nanbield,22/41] cmake: upgrade 3.27.5 -> 3.27.7 [nanbield,23/41] systemd: update LICENSE statement [nanbield,24/41] sed -i destroys symlinks [nanbield,25/41] gtk: Add rdepend on printbackend for cups [nanbield,26/41] useradd_base: Fix sed command line for passwd-expire [nanbield,27/41] lib/oe/patch: ensure os.chdir restoring always happens [nanbield,28/41] kernel-arch: use ccache only for compiler [nanbield,29/41] package_ipk: Fix Source: field variable dependency [nanbield,30/41] systemd-compat-units.bb: fix postinstall script [nanbield,31/41] devtool: fix update-recipe dry-run mode [nanbield,32/41] python3-ptest: skip test_storlines [nanbield,33/41] devtool: finish/update-recipe: restrict mode srcrev to recipes fetched from SCM [nanbield,34/41] bluez5: fix connection for ps5/dualshock controllers [nanbield,35/41] cups: Add root,sys,wheel to system groups [nanbield,36/41] json-c: fix icecc compilation [nanbield,37/41] systemd-boot: Fix build issues on armv7a-linux [nanbield,38/41] patchtest: shorten patch signed-off-by test output [nanbield,39/41] testimage: Drop target_dumper and most of monitor_dumper [nanbield,40/41] tcl: skip timing-dependent tests in run-ptest [nanbield,41/41] tcl: skip async and event tests in run-ptest

Commit Message

Steve Sakoman Dec. 29, 2023, 3:44 p.m. UTC

From: Wang Mingyu <wangmy@fujitsu.com>

Changelog:
==========
- Fix public key computation for other EdDSA curves.
- Remove out of core handler diagnostic in FIPS mode.
- Check that the digest size is not zero in gcry_pk_sign_md and
  gcry_pk_verify_md.
- Make store an s-exp with \0 is considered to be binary.
- Various constant-time improvements.
- Use getrandom call only when supported by the platform.
- Change the default for --with-libtool-modification to never.

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit e21583896116cf37bf6b95aea466854e4fd5e54b)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 .../libgcrypt/{libgcrypt_1.10.2.bb => libgcrypt_1.10.3.bb}      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-support/libgcrypt/{libgcrypt_1.10.2.bb => libgcrypt_1.10.3.bb} (96%)

diff mbox series

Patch

diff --git a/meta/recipes-support/libgcrypt/libgcrypt_1.10.2.bb b/meta/recipes-support/libgcrypt/libgcrypt_1.10.3.bb
similarity index 96%
rename from meta/recipes-support/libgcrypt/libgcrypt_1.10.2.bb
rename to meta/recipes-support/libgcrypt/libgcrypt_1.10.3.bb
index 524b06ca22..1c4f4d6038 100644
--- a/meta/recipes-support/libgcrypt/libgcrypt_1.10.2.bb
+++ b/meta/recipes-support/libgcrypt/libgcrypt_1.10.3.bb
@@ -27,7 +27,7 @@  SRC_URI = "${GNUPG_MIRROR}/libgcrypt/libgcrypt-${PV}.tar.bz2 \
            file://no-bench-slope.patch \
            file://run-ptest \
            "
-SRC_URI[sha256sum] = "3b9c02a004b68c256add99701de00b383accccf37177e0d6c58289664cce0c03"
+SRC_URI[sha256sum] = "8b0870897ac5ac67ded568dcfadf45969cfa8a6beb0fd60af2a9eadc2a3272aa"
 
 CVE_STATUS[CVE-2018-12433] = "disputed: CVE is disputed and not affecting crypto libraries for any distro."
 CVE_STATUS[CVE-2018-12438] = "disputed: CVE is disputed and not affecting crypto libraries for any distro."