From 3cd59ac1a31dfaf6e17a230ed71c69fb370d63b4 Mon Sep 17 00:00:00 2001 From: tigro Date: Mon, 30 Dec 2024 22:17:33 +0300 Subject: [PATCH] import libtommath-1.3.1~rc1-3.el10 --- .gitignore | 7 +- .libtommath.metadata | 1 + CVE-2023-36328.patch | 106 ------------------ SPECS/libtommath.spec | 249 ++++++++++++++++++++++++++++++++++++++++++ libtommath.spec | 84 -------------- sources | 1 - 6 files changed, 251 insertions(+), 197 deletions(-) create mode 100644 .libtommath.metadata delete mode 100644 CVE-2023-36328.patch create mode 100644 SPECS/libtommath.spec delete mode 100644 libtommath.spec delete mode 100644 sources diff --git a/.gitignore b/.gitignore index 0850c3b..49c8945 100644 --- a/.gitignore +++ b/.gitignore @@ -1,6 +1 @@ -ltm-0.41.tar.bz2 -/ltm-0.42.0.tar.bz2 -/ltm-1.0.tar.xz -/libtommath-1.0.tar.gz -/libtommath-1.0.1.tar.gz -/libtommath-1.1.0.tar.gz +SOURCES/libtommath-1.3.1-rc1.tar.gz diff --git a/.libtommath.metadata b/.libtommath.metadata new file mode 100644 index 0000000..b2f3086 --- /dev/null +++ b/.libtommath.metadata @@ -0,0 +1 @@ +9d607a1ef70cde64c261a64305986100b0340d06 SOURCES/libtommath-1.3.1-rc1.tar.gz diff --git a/CVE-2023-36328.patch b/CVE-2023-36328.patch deleted file mode 100644 index 00f2215..0000000 --- a/CVE-2023-36328.patch +++ /dev/null @@ -1,106 +0,0 @@ -From beba892bc0d4e4ded4d667ab1d2a94f4d75109a9 Mon Sep 17 00:00:00 2001 -From: czurnieden -Date: Tue, 9 May 2023 17:17:12 +0200 -Subject: [PATCH] Fix possible integer overflow - -[fsumsal] Slightly altered to make it work with libtommath-1.1.0 - ---- - bn_mp_2expt.c | 4 ++++ - bn_mp_grow.c | 4 ++++ - bn_mp_init_size.c | 5 +++++ - bn_mp_mul_2d.c | 4 ++++ - bn_s_mp_mul_digs.c | 4 ++++ - bn_s_mp_mul_high_digs.c | 4 ++++ - 8 files changed, 33 insertions(+) - -diff --git a/bn_mp_2expt.c b/bn_mp_2expt.c -index 0ae3df1bf..23de0c3c5 100644 ---- a/bn_mp_2expt.c -+++ b/bn_mp_2expt.c -@@ -12,6 +12,10 @@ mp_err mp_2expt(mp_int *a, int b) - { - int res; - -+ if (b < 0) { -+ return MP_VAL; -+ } -+ - /* zero a as per default */ - mp_zero(a); - -diff --git a/bn_mp_grow.c b/bn_mp_grow.c -index 9e904c547..2b1682651 100644 ---- a/bn_mp_grow.c -+++ b/bn_mp_grow.c -@@ -9,6 +9,10 @@ mp_err mp_grow(mp_int *a, int size) - int i; - mp_digit *tmp; - -+ if (size < 0) { -+ return MP_VAL; -+ } -+ - /* if the alloc size is smaller alloc more ram */ - if (a->alloc < size) { - /* ensure there are always at least MP_PREC digits extra on top */ -diff --git a/bn_mp_init_size.c b/bn_mp_init_size.c -index d62268721..99573833f 100644 ---- a/bn_mp_init_size.c -+++ b/bn_mp_init_size.c -@@ -6,6 +6,10 @@ - { - int x; - -+ if (size < 0) { -+ return MP_VAL; -+ } -+ - /* pad size so there are always extra digits */ - size += (MP_PREC * 2) - (size % MP_PREC); - -diff --git a/bn_mp_mul_2d.c b/bn_mp_mul_2d.c -index 87354de20..bfeaf2eb2 100644 ---- a/bn_mp_mul_2d.c -+++ b/bn_mp_mul_2d.c -@@ -9,6 +9,10 @@ mp_err mp_mul_2d(const mp_int *a, int b, mp_int *c) - mp_digit d; - int res; - -+ if (b < 0) { -+ return MP_VAL; -+ } -+ - /* copy */ - if (a != c) { - if ((res = mp_copy(a, c)) != MP_OKAY) { -diff --git a/bn_s_mp_mul_digs.c b/bn_s_mp_mul_digs.c -index 64509d4cb..3682b4980 100644 ---- a/bn_s_mp_mul_digs.c -+++ b/bn_s_mp_mul_digs.c -@@ -16,6 +16,10 @@ mp_err s_mp_mul_digs(const mp_int *a, const mp_int *b, mp_int *c, int digs) - mp_word r; - mp_digit tmpx, *tmpt, *tmpy; - -+ if (digs < 0) { -+ return MP_VAL; -+ } -+ - /* can we use the fast multiplier? */ - if ((digs < (int)MP_WARRAY) && - (MIN(a->used, b->used) < -diff --git a/bn_s_mp_mul_high_digs.c b/bn_s_mp_mul_high_digs.c -index 2bb2a5098..c9dd355f8 100644 ---- a/bn_s_mp_mul_high_digs.c -+++ b/bn_s_mp_mul_high_digs.c -@@ -15,6 +15,10 @@ mp_err s_mp_mul_high_digs(const mp_int *a, const mp_int *b, mp_int *c, int digs) - mp_word r; - mp_digit tmpx, *tmpt, *tmpy; - -+ if (digs < 0) { -+ return MP_VAL; -+ } -+ - /* can we use the fast multiplier? */ - #ifdef BN_FAST_S_MP_MUL_HIGH_DIGS_C - if (((a->used + b->used + 1) < (int)MP_WARRAY) diff --git a/SPECS/libtommath.spec b/SPECS/libtommath.spec new file mode 100644 index 0000000..6671101 --- /dev/null +++ b/SPECS/libtommath.spec @@ -0,0 +1,249 @@ +## START: Set by rpmautospec +## (rpmautospec version 0.7.3) +## RPMAUTOSPEC: autorelease, autochangelog +%define autorelease(e:s:pb:n) %{?-p:0.}%{lua: + release_number = 3; + base_release_number = tonumber(rpm.expand("%{?-b*}%{!?-b:1}")); + print(release_number + base_release_number - 1); +}%{?-e:.%{-e*}}%{?-s:.%{-s*}}%{!?-n:%{?dist}} +## END: Set by rpmautospec + +Name: libtommath +Version: 1.3.1~rc1 +Release: %autorelease +Summary: A portable number theoretic multiple-precision integer library +License: Unlicense +URL: http://www.libtom.net/ + +Source0: https://github.com/libtom/%{name}/archive/v%{version_no_tilde}.tar.gz#/%{name}-%{version_no_tilde}.tar.gz + +BuildRequires: make +BuildRequires: libtool + +%if ! 0%{?flatpak} +BuildRequires: ghostscript +BuildRequires: ghostscript-tools-dvipdf +BuildRequires: libtiff-tools +BuildRequires: tex(amssymb.sty) +BuildRequires: tex(cmr10.tfm) +BuildRequires: tex(epstopdf-base.sty) +BuildRequires: tex(expl3.sty) +BuildRequires: tex(fancyhdr.sty) +BuildRequires: tex(hyphen.tex) +BuildRequires: tex(l3backend-dvips.def) +BuildRequires: texlive-appendix +BuildRequires: texlive-dvips-bin +BuildRequires: texlive-kpathsea +BuildRequires: texlive-latex-bin-bin +BuildRequires: texlive-makeindex-bin +BuildRequires: texlive-metafont +BuildRequires: texlive-mfware-bin +%endif + +%description +A free open source portable number theoretic multiple-precision integer library +written entirely in C. (phew!). The library is designed to provide a simple to +work with API that provides fairly efficient routines that build out of the box +without configuration. + +%package devel +Summary: Development files for %{name} +Requires: %{name}%{?_isa} = %{version}-%{release} + +%description devel +The %{name}-devel package contains libraries and header files for developing +applications that use %{name}. + +%if ! 0%{?flatpak} +%package doc +Summary: Documentation files for %{name} +BuildArch: noarch +Provides: %{name}-doc = %{version}-%{release} +Obsoletes: %{name}-doc < 0.42-1 + +%description doc +The %{name}-doc package contains PDF documentation for using %{name}. +%endif + +%prep +%autosetup -p1 -n %{name}-%{version_no_tilde} +# Fix permissions on installed library +sed -i -e 's/644 $(LIBNAME)/755 $(LIBNAME)/g' makefile.shared +# Fix pkgconfig path +sed -i \ + -e 's|^prefix=.*|prefix=%{_prefix}|g' \ + -e 's|^libdir=.*|libdir=%{_libdir}|g' \ + %{name}.pc.in + +%build +%set_build_flags +%make_build V=1 CFLAGS="$CFLAGS -I./" -f makefile.shared +%if ! 0%{?flatpak} +make V=1 -f makefile manual docs +%endif + +%check +make test +./test + +%install +%make_install V=1 CFLAGS="$CFLAGS -I./" PREFIX=%{_prefix} LIBPATH=%{_libdir} -f makefile.shared + +find %{buildroot} -name '*.la' -delete +find %{buildroot} -name '*.a' -delete + +%ldconfig_scriptlets + +%files +%license LICENSE +%{_libdir}/*.so.* + +%files devel +%{_includedir}/*.h +%{_libdir}/*.so +%{_libdir}/pkgconfig/*.pc + +%if ! 0%{?flatpak} +%files doc +%doc doc/bn.pdf +%endif + +%changelog +* Mon Dec 30 2024 Arkady L. Shane - 1.3.1~rc1-3 +- Rebuilt for MSVSphere 10 + +## START: Generated by rpmautospec +* Thu Oct 17 2024 Miroslav Suchý - 1.3.1~rc1-3 +- Migrate to SPDX license + +* Thu Jul 18 2024 Fedora Release Engineering - 1.3.1~rc1-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild + +* Tue Apr 30 2024 Frantisek Sumsal - 1.3.1~rc1-1 +- Bump to v1.3.1-rc1 (rhbz#2275490) + +* Wed Mar 27 2024 Frantisek Sumsal - 1.3.0-1 +- Bump to v1.3.0 + +* Wed Mar 20 2024 Frantisek Sumsal - 1.3.0~rc1-1 +- Bump to v1.3.0-rc1 + +* Thu Jan 25 2024 Fedora Release Engineering - 1.2.1-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild + +* Sun Jan 21 2024 Fedora Release Engineering - 1.2.1-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild + +* Fri Sep 08 2023 Frantisek Sumsal - 1.2.1-1 +- Bump to 1.2.1 + +* Fri Sep 08 2023 Frantisek Sumsal - 1.2.0-14 +- Run unit tests + +* Sat Sep 02 2023 Frantisek Sumsal - 1.2.0-13 +- Fix CVE-2023-36328 (#2236877,#2236878) + +* Thu Jul 20 2023 Fedora Release Engineering - 1.2.0-10 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild + +* Thu Jan 19 2023 Fedora Release Engineering - 1.2.0-9 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild + +* Thu Jul 21 2022 Fedora Release Engineering - 1.2.0-8 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild + +* Thu Jan 20 2022 Fedora Release Engineering - 1.2.0-7 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild + +* Mon Dec 13 2021 Frantisek Sumsal - 1.2.0-6 +- Add a couple of missing BRs (texlive-kpathsea and texlive-metafont) + +* Wed Nov 03 2021 Frantisek Sumsal - 1.2.0-5 +- Drop an obsoleted texlive-updmap-map build dependency (#1999507, #1987664) +- (see: #1965446) + +* Thu Jul 22 2021 Fedora Release Engineering - 1.2.0-4 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild + +* Mon Jan 25 2021 Than Ngo - 1.2.0-3 +- Add missing BRs + +* Tue Jul 28 2020 Fedora Release Engineering - 1.2.0-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild + +* Thu Apr 09 2020 Gerd Pokorra - 1.2.0-1 +- Update to 1.2.0. +- Remove poster make tag +- Add BuildRequires texlive-appendix + +* Wed Jan 29 2020 Fedora Release Engineering - 1.1.0-2 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild + +* Wed Oct 16 2019 Simone Caronni - 1.1.0-1 +- Update to 1.1.0. + +* Thu Jul 25 2019 Fedora Release Engineering - 1.0.1-10 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild + +* Sun Jun 02 2019 Leigh Scott - 1.0.1-9 +- Disable parallel build for docs + +* Tue May 14 2019 Scott Talbert - 1.0.1-8 +- Add BR texlive-updmap-map to fix FTBFS when building docs (#1675313) + +* Fri Feb 01 2019 Fedora Release Engineering - 1.0.1-7 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild + +* Fri Jul 13 2018 Fedora Release Engineering - 1.0.1-6 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild + +* Thu Apr 05 2018 Rafael Santos - 1.0.1-5 +- Resolves #1548832 - Fix Fedora build flags injection + +* Sun Feb 25 2018 Florian Weimer - 1.0.1-4 +- Add BuildRequires: ghostscript-tools-dvipdf + +* Wed Feb 07 2018 Fedora Release Engineering - 1.0.1-3 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild + +* Sat Feb 03 2018 Igor Gnatenko - 1.0.1-2 +- Switch to %%ldconfig_scriptlets + +* Mon Sep 11 2017 Simone Caronni - 1.0.1-1 +- Update to 1.0.1. +- Trim changelog. +- Clean up SPEC file. +- Remove RHEL 6 support. + +* Thu Aug 03 2017 Fedora Release Engineering - 1.0-10 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild + +* Wed Jul 26 2017 Fedora Release Engineering - 1.0-9 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild + +* Sun Jun 25 2017 Simone Caronni - 1.0-7 +- Update URL (#1463608, #1463547). + +* Fri Feb 10 2017 Fedora Release Engineering - 1.0-5 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild + +* Tue Feb 23 2016 Simone Caronni - 1.0-4 +- Fix installs with non-standard buildroots (#1299860). + +* Tue Feb 23 2016 Simone Caronni - 1.0-3 +- Remove useless latex build requirements. + +* Tue Feb 23 2016 Simone Caronni - 1.0-2 +- Use proper source URL. +- Cleanup SPEC file. + +* Tue Feb 23 2016 Simone Caronni - 1.0-1 +- Fix FTBFS (#1307741). +- Update to 1.0. +- Update URL. +- Use license macro. + +* Thu Feb 04 2016 Fedora Release Engineering - 0.42.0-7 +- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild + +## END: Generated by rpmautospec diff --git a/libtommath.spec b/libtommath.spec deleted file mode 100644 index a09f060..0000000 --- a/libtommath.spec +++ /dev/null @@ -1,84 +0,0 @@ -Name: libtommath -Version: 1.1.0 -Release: %autorelease -Summary: A portable number theoretic multiple-precision integer library -License: Public Domain -URL: http://www.libtom.net/ - -Source0: https://github.com/libtom/%{name}/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz - -Patch: CVE-2023-36328.patch - -BuildRequires: ghostscript -BuildRequires: libtiff-tools -BuildRequires: libtool -BuildRequires: texlive-dvips-bin -BuildRequires: ghostscript-tools-dvipdf -BuildRequires: texlive-latex-bin-bin -BuildRequires: texlive-makeindex-bin -BuildRequires: texlive-mfware-bin -BuildRequires: texlive-updmap-map -BuildRequires: tex(cmr10.tfm) -BuildRequires: tex(fancyhdr.sty) -BuildRequires: tex(hyphen.tex) - -%description -A free open source portable number theoretic multiple-precision integer library -written entirely in C. (phew!). The library is designed to provide a simple to -work with API that provides fairly efficient routines that build out of the box -without configuration. - -%package devel -Summary: Development files for %{name} -Requires: %{name}%{?_isa} = %{version}-%{release} - -%description devel -The %{name}-devel package contains libraries and header files for developing -applications that use %{name}. - -%package doc -Summary: Documentation files for %{name} -BuildArch: noarch -Provides: %{name}-doc = %{version}-%{release} -Obsoletes: %{name}-doc < 0.42-1 - -%description doc -The %{name}-doc package contains PDF documentation for using %{name}. - -%prep -%autosetup -p1 -# Fix permissions on installed library -sed -i -e 's/644 $(LIBNAME)/755 $(LIBNAME)/g' makefile.shared -# Fix pkgconfig path -sed -i \ - -e 's|^prefix=.*|prefix=%{_prefix}|g' \ - -e 's|^libdir=.*|libdir=%{_libdir}|g' \ - %{name}.pc.in - -%build -%set_build_flags -%make_build V=1 CFLAGS="$CFLAGS -I./" -f makefile.shared -make V=1 -f makefile poster manual docs - -%install -%make_install V=1 CFLAGS="$CFLAGS -I./" PREFIX=%{_prefix} LIBPATH=%{_libdir} -f makefile.shared - -find %{buildroot} -name '*.la' -delete -find %{buildroot} -name '*.a' -delete - -%ldconfig_scriptlets - -%files -%license LICENSE -%{_libdir}/*.so.* - -%files devel -%{_includedir}/*.h -%{_libdir}/*.so -%{_libdir}/pkgconfig/*.pc - -%files doc -%doc doc/bn.pdf doc/poster.pdf doc/tommath.pdf - -%changelog -%autochangelog diff --git a/sources b/sources deleted file mode 100644 index cc6cb2f..0000000 --- a/sources +++ /dev/null @@ -1 +0,0 @@ -SHA512 (libtommath-1.1.0.tar.gz) = 264942414033be70fb73590ec65912a3e8c6ee9c00fb0ce5b684a861af4804b6ccfb8d01821cc5c61348768b44c9c11fd58af0b54d654366329b01b56c644ea7