# # spec file for package libtasn1 # # Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via http://bugs.opensuse.org/ # %define somajor 6 Name: libtasn1 Version: 4.7 Release: 48.1 Summary: ASN.1 parsing library License: LGPL-2.1+ and GPL-3.0 Group: Productivity/Networking/Security Url: https://www.gnu.org/software/libtasn1/ Source0: http://ftp.gnu.org/gnu/libtasn1/%{name}-%{version}.tar.gz Source1: ftp://ftp.gnu.org/gnu/%{name}/%{name}-%{version}.tar.gz.sig # http://josefsson.org/key.txt Source2: %{name}.keyring Source99: baselibs.conf BuildRequires: info BuildRequires: pkg-config Requires(post): %{install_info_prereq} # FIXME: use proper Requires(pre/post/preun/...) Requires(preun): %{install_info_prereq} BuildRoot: %{_tmppath}/%{name}-%{version}-build %description This is the ASN.1 library used by GNUTLS. More up to date information can be found at http://www.gnu.org/software/gnutls and http://www.gnutls.org %package -n libtasn1-%{somajor} Summary: ASN.1 parsing library Group: System/Libraries Requires: %{name} >= %{version} %description -n libtasn1-%{somajor} This is the ASN.1 library used by GNUTLS. More up to date information can be found at http://www.gnu.org/software/gnutls and http://www.gnutls.org %package devel Summary: Development files for the ASN.1 parsing library Group: Development/Libraries/C and C++ Requires: libtasn1-%{somajor} = %{version} %description devel This is the ASN.1 library used by GNUTLS. More up to date information can be found at http://www.gnu.org/software/gnutls and http://www.gnutls.org %prep %setup -q %build %configure --enable-static make %{?_smp_mflags} V=1 %install %make_install find %{buildroot} -type f -name "*.la" -delete -print %check make %{?_smp_mflags} check %post %install_info --info-dir=%{_infodir} %{_infodir}/%{name}.info.gz %preun %install_info_delete --info-dir=%{_infodir} %{_infodir}/%{name}.info.gz %post -n libtasn1-%{somajor} -p /sbin/ldconfig %postun -n libtasn1-%{somajor} -p /sbin/ldconfig %files %defattr(-, root, root) %doc NEWS README THANKS %{_bindir}/* %{_mandir}/man1/*.1.gz %{_infodir}/*.info.gz %files -n libtasn1-%{somajor} %defattr(-, root, root) %{_libdir}/*.so.%{somajor}* %files devel %defattr(-, root, root) %{_includedir}/*.h %{_libdir}/*.so %{_libdir}/*.a %{_libdir}/pkgconfig/libtasn1.pc %{_mandir}/man3/*.3.gz %changelog * Wed Sep 16 2015 zaitor@opensuse.org - Update to version 4.7: * Fixed regression introduced in the decoding of multi-byte tags fix. * Mon Sep 7 2015 astieger@suse.com - libtasn1 4.6: * Allow decoding OCTET STRINGs with multi-byte tags. * Add asn1_get_object_id_der * Fri May 1 2015 astieger@suse.com - update libtasn1 4.5: * Corrected an invalid memory access in octet string decoding. CVE-2015-3622 [boo#929414] * Sun Mar 29 2015 astieger@suse.com - update to libtasn1 4.4 [bsc#924828]: * Corrected a two-byte stack overflow in asn1_der_decoding. CVE-2015-2806 * Sun Mar 22 2015 mpluskal@suse.com - Update project url - Cleanup spec-file with spec-cleaner - Add info preun and post dependencies - Update to 4.3 * Added asn1_decode_simple_ber() * Sat Feb 14 2015 jengelh@inai.de - Put C API documentation into -devel package. Use modern %%make_install. Description fix. * Wed Oct 8 2014 tabraham@suse.com - updated to libtasn1 4.2: * Noteworthy changes in release 4.2 (released 2014-09-15) [stable] - Added sanity checks in the decoding of time when ASN1_DECODE_FLAG_STRICT_DER is used. - Fixes in the decoding of OCTET STRING when close to the end of the structure. * Noteworthy changes in release 4.1 (released 2014-08-23) [stable] - Corrected indefinite tag check in ANY constructions. That allows the decoding of BER-encoded structures that contain indefinite encoding within an ANY element. - Added DER decoding flag ASN1_DECODE_FLAG_STRICT_DER. Over the years BER functionality was added to the decoder and this flag provides the way to disable it. - API and ABI changes since last version: ASN1_DECODE_FLAG_STRICT_DER: New definition * Noteworthy changes in release 4.0 (released 2014-06-26) [stable] - Optimized asn1_der_decoding_startEnd(). It no longer requires the additional decoding step. - asn1_read_value() understands the ?CURRENT keyword, which can be used to indicate the current element of a sequence, when the provided node is a sequence element. - Several optimizations in DER decoding of structures with sequences containing many elements. - asn1_der_decoding2() is introduced and allows flags to be passed on the decoding process. Currently only ASN1_DECODE_FLAG_ALLOW_PADDING is defined and that allows decoding DER structures that contain arbitrary data past their end. Contributed by Karel Slany. - API and ABI changes since last version: ASN1_DECODE_FLAG_ALLOW_PADDING: New definition asn1_dup_node: New function asn1_der_decoding2: New function asn1_der_decoding_element: It is now an alias to asn1_der_decoding * Fri Jul 25 2014 mgorse@suse.com - updated to libtasn1 3.7: * Noteworthy changes in release 3.7 (released 2014-06-26) [stable] - Fixes in length calculation in _asn1_extract_der_octet(). - Fixes in DER decoding. - Fixes: CVE-2014-3468 CVE-2014-3467 CVE-2014-3469 bnc#880738 bnc#880737 bnc#880735 * Tue Jun 3 2014 meissner@suse.com - libtasn1.keyring: added Nikos Mavrogiannopoulos key, who did this release (and shares responsibility with Simon). - updated to libtasn1 3.6 * Noteworthy changes in release 3.6 (released 2014-05-25) [stable] - Corrected an off-by-one error in ASN.1 DER tag decoding. (CVE-2014-3468/bnc#880735) - Several improvements and new safety checks on DER decoding; issues found using Codenomicon TLS test suite. (CVE-2014-3469/bnc#880738, CVE-2014-3467/bnc#880737) - Marked asn1_der_decoding_element() as deprecated. Use asn1_der_decoding() instead. * Noteworthy changes in release 3.5 (released 2014-05-01) [stable] - Correctly handle decoding of recursive CHOICE options. - Allow deleting elements of SET OF. Patch by Jean-Louis Thekekara. - Several small bug fixes found by coverity. - Code improvements contributed by Kurt Roeckx. * Noteworthy changes in release 3.4 (released 2013-11-25) [stable] - Added asn1_delete_structure2() which allows zeroizing the contents of all values in the structure prior to deinitialization. - The parser accepts negative numbers in an INTEGER range (but still does no enforce them). * Tue Jun 25 2013 coolo@suse.com - remove gpg source checking again to avoid this cycle: libtasn1 -> libssh2_org -> openssh -> krb5 -> python-Jinja2 -> vim -> libtasn1 * Thu Jun 20 2013 meissner@suse.com - updated to libtasn1 3.3 * Noteworthy changes in release 3.3 (released 2013-03-23) [stable] - More precise overflow checks using gnulib's intprops module. - Updates to compile in Android systems. * Noteworthy changes in release 3.2 (released 2012-11-30) [stable] - Corrected buffer overflow in the error reporting of the parser (reported by Andreas Metzler). * Noteworthy changes in release 3.1 (released 2012-11-24) [stable] - Completed rename of types: ASN1_ARRAY_TYPE -> asn1_static_node (was asn1_static_node_t) - Added new types: VisibleString, NumericString, IA5String, TeletexString, PrintableString, UniversalString, BMPString, UTF8String. When re-defined a warning is being print instead of failing. - Parser outputs more detailed syntax error messages. - Added asn1_decode_simple_der() and asn1_encode_simple_der(). - Added asn1_read_value_type() to return value and type. - Introduced ASN1_ETYPE_UTC_TIME and ASN1_ETYPE_GENERALIZED_TIME - added gpg source checking * Sat Nov 17 2012 andreas.stieger@gmx.de - update to libtasn1 3.0, SONAME libtasn1.so.6 - Added tool in tests/ to benchmark X.509 structure decoding. - Added asn1_read_node_value() to obtain a node's value. - Optimizations in internal tree allocation. - Optimizations in tree search. - libtasn1.h no longer exports internal structures. - Types were renamed for consistency: ASN1_DATA_NODE -> asn1_data_node_st ASN1_ARRAY_TYPE -> asn1_static_node ASN1_TYPE -> asn1_node ASN1_TYPE_EMPTY -> NULL static_struct_asn -> asn1_static_node_st node_asn_struct -> asn1_node_st node_asn -> asn1_node_st (the old types are still available as definitions) - fix W: devel-package-with-non-devel-group * Fri Sep 28 2012 meissner@suse.com - updated to version 2.14 This release adds asn1_read_node_value() to obtain a node's value. This is to deprecate the export of the node_asn internal structure for the upcoming 3.x release. The ASN1_DATA_NODE type and the ASN1_ETYPE_* constants were added to support the new function. - removed upstreamed libtasn1-stdio.h patch - make check * Sun Jul 22 2012 aj@suse.de - Fix build with missing gets declaration (glibc 2.16) * Fri Jun 29 2012 cfarrell@suse.com - license update: LGPL-2.1+ and GPL-3.0 Tools are GPL-3.0 * Sat Apr 14 2012 tabraham@novell.com - update to version 2.12 + Cleanup license headers. + build: Update gnulib files. + Corrected DER decoding issue (reported by Matthew Hall). Added self check to detect the problem, see tests/Test_overflow.c. This problem can lead to at least remotely triggered crashes, see further analysis on the libtasn1 mailing list. * Sun Jan 8 2012 tabraham@novell.com - update to version 2.11 + qa: now builds without compiler warnings with Solaris CC + qa: added clang analysis. fixed cyclomatic complexity output + tests: added self-test of bit string functions + build: added windows/libtasn14win.mk rules to produce Windows binaries + build: don't hard code path to perl in doc/gdoc + various minor fixes - changes in version 2.10 + lib: small optimization, possibly working around gcc/valgrind issue + build: update gnulib files + asn1Coding: actually implement the -c parameter + asn1Decoding: the -c parameter serves no purpose. remove it. + doc: add examples to asn1Coding and ans1Decoding description - changes in version 2.9 + tests: link to gnulib to avoid build error related to 'rpl_ftello' on Solaris. Reported by Dagobert Michelsen + doc: fix bug reporting address to point at help-libtasn1@gnu.org + doc: fix returns: documentation in Texinfo. Reported by Jeffery Walton + build : update gnulib files - changes in version 2.8 + update gnulib files + use libtool 2.2.10 to ease MinGW64 builds - changes in version 2.7 + Doc: build PDF manual using GTK-DOC + Doc: fix of asn1_check_version, documentation was missing from last release + Build: avoid warnings about ignored visibility attributes on Windows - changes in version 2.6 + Fix build failure on platforms without support for GNU_LD version scripts + libtasn1: simplified implementation of asn1_check_version + tests: improved self-checks + update gnulib files, fix many syntax-check nits, indent code, fix license templates - changes in version 2.5 + doc: improve GTK-DOC comments + misc: updated gnulib files - changes in version 2.4 + Doc fixes + updated gnulib files + clean up copyright notices - changes in version 2.3 + libtasn1 is now an official GNU project + solve build problem on Tru64 related to TRUE/FALSE + More careful decoding of OIDs + Fixed warning in ANS1.y + Use "Software libraries" info dircategory + Drop GPL/LGPL copies from the manual (not needed there) + New configure parameters to set packagin specific information The parameters are --with-packager, --with-packager-version, and --with-packager-bug-reports. See for more details. * Sun Oct 31 2010 jengelh@medozas.de - Use %%_smp_mflags * Sat Apr 24 2010 coolo@novell.com - buildrequire pkg-config to fix provides * Thu Dec 17 2009 jengelh@medozas.de - Add baselibs.conf as a source * Thu May 21 2009 vuntz@novell.com - Update to version 2.2: + Change how the ASN1_API decorator is used in libtasn1.h, for GTK-DOC. + Changed license of libtasn1.pc from GPLv3+ to LGPLv2.1+. + Building with many warning flags now requires - -enable-gcc-warnings. + Some warnings fixed. - Fix license of library packages: it's LGPL not GPL. * Wed May 6 2009 vuntz@novell.com - Update to version 2.1: + Fix compilation failure on platforms that can't generate empty archives, e.g., Mac OS X. - Changes from version 2.0: + Optimized tree generation. + ASN1 parser code re-generated using Bison 2.4.1. + Build with more warning flags. Many compiler warnings fixed. + Compiled with -fvisibility=hidden by default if supported. See http://gcc.gnu.org/wiki/Visibility + The libtasn1-config tool has been removed. For application developers, please stop using libtasn1-config for finding libtasn1, use proper autoconf checks or pkg-config instead. - Remove AutoReqProv: it's default now. - Pass --disable-static to configure. * Wed Feb 11 2009 ro@suse.de - added baselibs.conf (needed by gnome-keyring-32bit) * Sun Feb 1 2009 mboman@suse.de - Update to version 1.8: + Fix crlf self-test under Mingw+Wine. + Fix build problems on platforms that lack stdint.h. * Sat Dec 20 2008 mboman@suse.de - Update to version 1.7: + Add libtasn1-config for compatibility. Please stop use it as it will disappear in v2.0! Use standard AC_CHECK_FUNCS autoconf tests or pkg-config instead. + Read PKCS#12 blob as binary file, fixes self-tests under Mingw. + Fix use of __attribute__ ((deprecated)) to work on non-GCC + Fixed namespace violation for MAX_NAME_SIZE and MAX_ERROR_DESCRIPTION_SIZE. The new names are ASN1_MAX_NAME_SIZE and ASN1_MAX_ERROR_DESCRIPTION_SIZE. + Fixed namespace violation for libtasn1_perror and libtasn1_strerror. The new names are asn1_perror and asn1_strerror. + Fix namespace violation for LIBASN1_VERSION. The new name is ASN1_VERSION. + Decoder can now decode BER encoded octet strings. + doc: Change license on the manual to GFDLv1.3+. + doc: Sync gdoc script with GnuTLS, changes license on man-pages to GAP. + doc: Improve gtk-doc manual. + Assumes system has strdup and string.h. + Remove libtasn1-config and libtasn1.m4, use standard AC_CHECK_FUNCS autoconf tests or pkg-config instead. + Change detection of when to use a linker version script, use --enable-ld-version-script or --disable-ld-version-script to override auto-detection logic. + API and ABI changes since last version: asn1_get_length_ber: New function. ASN1_VERSION: New symbol, replaces LIBTASN1_VERSION. asn1_strerror: New function, replaces libtasn1_strerror. asn1_perror: New function, replaces libtasn1_perror. libtasn1_strerror: Marked as deprecated. libtasn1_perror: Marked as deprecated. LIBTASN1_VERSION: Deprecated. * Fri Sep 12 2008 maw@suse.de - Update to version 1.5: + Update gnulib files + Handle 'INTEGER { ... } (a..b)' regression Revert parts of earlier fix. asn1Parser can now again parse src/pkix.asn1. The ASN1.c file was generated using Bison 2.3. + Move examples from src/ to new directory examples/. + Duplicate copy of divergated pkix.asn removed. + Merge unnecessary lib/defines.h into lib/int.h. + Misc. fixes. * Wed Jan 2 2008 maw@suse.de - Add a %%clean section. * Thu Dec 20 2007 maw@suse.de - Properly package info files - Package several documentation files. * Thu Dec 20 2007 maw@suse.de - New package, version 1.2.