./chat/libotr, Library for Off-The-Record encrypted messaging

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 4.1.1, Package name: libotr-4.1.1, Maintainer: nathanw

This is the portable OTR Messaging Library, as well as the toolkit to
help you forge messages.

Off-the-Record (OTR) Messaging allows you to have private
conversations over instant messaging by providing:

No one else can read your instant messages.
You are assured the correspondent is who you think it is.
The messages you send do not have digital signatures that are
checkable by a third party. Anyone can forge messages after a
conversation to make them look like they came from you. However,
during a conversation, your correspondent is assured the messages
he sees are authentic and unmodified.
Perfect forward secrecy
If you lose control of your private keys, no previous conversation
is compromised.

Required to run:

Required to build:

Master sites:

Filesize: 640.421 KB

Version history: (Expand)

CVS history: (Expand)

   2023-01-04 19:46:09 by Paolo Vincenzo Olivo | Files touched by this commit (2)
Log message:
chat/libotr: fix build.
   2021-10-26 12:05:29 by Nia Alarie | Files touched by this commit (146)
Log message:
chat: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes
   2021-10-07 15:23:36 by Nia Alarie | Files touched by this commit (146)
Log message:
chat: Remove SHA1 hashes for distfiles
   2020-02-23 19:07:10 by Nia Alarie | Files touched by this commit (1)
Log message:
libotr: Update HOMEPAGE
   2019-11-02 23:18:26 by Roland Illig | Files touched by this commit (40)
Log message:
chat: align variable assignments

pkglint -Wall -F --only aligned --only indent -r

No manual corrections.
   2016-03-09 19:04:17 by Greg Troxel | Files touched by this commit (2)
Log message:
Update to 4.1.1.

This is a security release addressing CVE-2016-2851.

- Fix an integer overflow bug that can cause a heap buffer overflow (and
  from there remote code execution) on 64-bit platforms
- Fix possible free() of an uninitialized pointer
- Be stricter about parsing v3 fragments
- Add a testsuite ("make check" to run it), but only on Linux for now,
  since it uses Linux-specific features such as epoll
- Fix a memory leak when reading a malformed instance tag file
- Protocol documentation clarifications
   2015-11-03 02:20:26 by Alistair G. Crooks | Files touched by this commit (119)
Log message:
Add SHA512 digests for distfiles for chat category

Problems found with existing distfiles:
No changes made to these /distinfo files.

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
   2014-10-21 13:46:31 by Greg Troxel | Files touched by this commit (2)
Log message:
Update to 4.1.0.

21 Oct 2014:
- Release 4.1.0
- Modernized autoconf build system
- Use constant-time comparisons where needed
- Use gcrypt secure memory allocation
- Correctly reject attempts to fragment a message into too many pieces
- Fix a missing opdata when sending message fragments
- Don't lose the first user message when REQUIRE_ENCRYPTION is set
- Fix some memory leaks
- Correctly check for children contexts' state when forgetting a context
- API Changes:
  - Added API functions otrl_context_find_recent_instance and