head 1.2; access; symbols pkgsrc-2026Q1:1.1.0.42 pkgsrc-2026Q1-base:1.1 pkgsrc-2025Q4:1.1.0.40 pkgsrc-2025Q4-base:1.1 pkgsrc-2025Q3:1.1.0.38 pkgsrc-2025Q3-base:1.1 pkgsrc-2025Q2:1.1.0.36 pkgsrc-2025Q2-base:1.1 pkgsrc-2025Q1:1.1.0.34 pkgsrc-2025Q1-base:1.1 pkgsrc-2024Q4:1.1.0.32 pkgsrc-2024Q4-base:1.1 pkgsrc-2024Q3:1.1.0.30 pkgsrc-2024Q3-base:1.1 pkgsrc-2024Q2:1.1.0.28 pkgsrc-2024Q2-base:1.1 pkgsrc-2024Q1:1.1.0.26 pkgsrc-2024Q1-base:1.1 pkgsrc-2023Q4:1.1.0.24 pkgsrc-2023Q4-base:1.1 pkgsrc-2023Q3:1.1.0.22 pkgsrc-2023Q3-base:1.1 pkgsrc-2023Q2:1.1.0.20 pkgsrc-2023Q2-base:1.1 pkgsrc-2023Q1:1.1.0.18 pkgsrc-2023Q1-base:1.1 pkgsrc-2022Q4:1.1.0.16 pkgsrc-2022Q4-base:1.1 pkgsrc-2022Q3:1.1.0.14 pkgsrc-2022Q3-base:1.1 pkgsrc-2022Q2:1.1.0.12 pkgsrc-2022Q2-base:1.1 pkgsrc-2022Q1:1.1.0.10 pkgsrc-2022Q1-base:1.1 pkgsrc-2021Q4:1.1.0.8 pkgsrc-2021Q4-base:1.1 pkgsrc-2021Q3:1.1.0.6 pkgsrc-2021Q3-base:1.1 pkgsrc-2021Q2:1.1.0.4 pkgsrc-2021Q2-base:1.1 pkgsrc-2021Q1:1.1.0.2 pkgsrc-2021Q1-base:1.1; locks; strict; comment @# @; 1.2 date 2026.05.01.10.56.38; author fox; state Exp; branches; next 1.1; commitid q5OlHspste6ej6EG; 1.1 date 2021.03.12.23.01.07; author fox; state Exp; branches; next ; commitid Xc9aY2CIl7W1C4LC; desc @@ 1.2 log @security/libdecaf: Update to v1.0.3 Changes since v1.0.2: No upstream release notes; changes derived from commit log. * Allow long scalars to be null, mostly so that you can deserialize a zero-length null scalar without causing UB. * Signature context can be null. * Fix runtime errors. * Fix C++ test build with recent compilers. * CMake improvements and add enable sanitizer option. * Add SER_BYTES to gf_serialize prototype. * Adjust comments in ristretto.sage. * Indicate that x86 word_is_zero affects the carry flag. * Test for subgroup membership in ed448 (sage). * Document how to run tests. @ text @$NetBSD: patch-CMakeLists.txt,v 1.1 2021/03/12 23:01:07 fox Exp $ Bump the version of libdecaf to be correct. --- CMakeLists.txt.orig 2026-05-01 10:35:34.898297745 +0000 +++ CMakeLists.txt @@@@ -6,7 +6,7 @@@@ ############################################################################ cmake_minimum_required(VERSION 3.22) -project(DECAF VERSION 1.0 LANGUAGES C CXX) +project(DECAF VERSION 1.0.3 LANGUAGES C CXX) set(DECAF_SO_VERSION "0") @ 1.1 log @security/libdecaf: Updates to v1.0.1 - Build scripts now depend on the sourceforce git repository directly. Changes since v1.0.0: October 10, 2020: A paper by Konstantinos Chalkias, François Garillot, and Valeria Nikolaenko, to be found at: https://eprint.iacr.org/2020/1244.pdf discusses malleability in EdDSA implementations. Their test vectors reveal unintentional malleability in libdecaf's version of EdDSA verify, in violation of RFC 8032. With this malleability, an attacker could modify an existing valid signature to create a new signature that is still valid, but only for the same message. Releave v1.0.1, correcting this flaw. Additional changes generated from git commit logs: - (tag: v1.0.1) Fix bug in ristretto elligator: it should be able to take improper field elements as input - Fix malleability bug from https://eprint.iacr.org/2020/1244.pdf and add test vectors - Optimize s^2 -> s2 - Dont double generator for Ed448RistrettoPoint - Update ristretto.sage for python3. Also add Ed448RistrettoPoint for reference - Add safer version of EdDSA signing API - Fix issues when compiling on GCC 9.1 - Also remove X_SER_BYTES while were at it - Remove gf_hibit, since it was a relic from p521 days - Adds errno.eexist, remove hardcoded error value - Tweak generated code message - Fix flaky Python generator - Add full RFC 8032 test vectors - Change test scripts to avoid GCC warnings - Minor changes. Bump version number in CMakeLists.txt @ text @d1 1 a1 1 $NetBSD$ d5 1 a5 1 --- CMakeLists.txt.orig 2021-03-12 22:43:26.377889463 +0000 d10 1 a10 1 cmake_minimum_required(VERSION 3.0) d12 1 a12 1 +project(DECAF VERSION 1.0.1 LANGUAGES C CXX) @