./security/go-crypto, Go supplementary cryptography libraries

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 0.0.20200122nb4, Package name: go-crypto-0.0.20200122nb4, Maintainer: pkgsrc-users

Supplementary Go cryptography libraries.


Required to build:
[pkgtools/cwrappers] [devel/go-sys] [lang/go114]

Master sites:


Version history: (Expand)


CVS history: (Expand)


   2020-07-17 20:04:33 by Benny Siegert | Files touched by this commit (196) | Package updated
Log message:
Revbump all Go packages after go114 update.
   2020-06-17 11:54:20 by Benny Siegert | Files touched by this commit (188) | Package updated
Log message:
Revbump Go packages after Go 1.14.4 update.
   2020-04-12 13:01:51 by Benny Siegert | Files touched by this commit (171)
Log message:
Revbump all Go packages after default version switch to 1.14.
   2020-03-21 17:57:21 by Benny Siegert | Files touched by this commit (170) | Package updated
Log message:
Revbump all Go packages after go113 update.
   2020-02-03 15:51:56 by Benny Siegert | Files touched by this commit (6)
Log message:
Re-add a package for go-crypto-acme.

The acme package has a dependency on go-net but go-net depends on
go-crypto. Separate it out to prevent a circular dependency.
   2020-02-03 14:14:20 by Benny Siegert | Files touched by this commit (4) | Package updated
Log message:
Update go-crypto to 0.0.20200122.

In addition to about two years of changes, this contains notably the
following security fix:

	When int is 32 bits wide (on 32-bit architectures like 386 and arm), an
	overflow could occur, causing a panic, due to malformed ASN.1 being
	passed to any of the ASN1 methods of String.

	Tested on linux/386 and darwin/amd64.

	This fixes CVE-2020-7919 and was found thanks to the Project Wycheproof
	test vectors.

pkgsrc changes:
Once again, the acme subdirectory was removed as it introduces a circular
dependency with go-net.

Prodded several times by ng0@
   2020-02-02 15:19:15 by Benny Siegert | Files touched by this commit (169) | Package updated
Log message:
Revbump all Go packages after go113 update.
   2020-01-10 14:32:32 by Benny Siegert | Files touched by this commit (169)
Log message:
Revbump Go packages after Go default version bump.