[golang] removing the elliptic.P224 curve bz1038683
Vincent Batts
vbatts at fedoraproject.org
Wed Dec 18 19:26:39 UTC 2013
commit 5152b3a3e6b3ac53c0da0f9f256cf3ed6d64aa48
Author: Vincent Batts <vbatts at redhat.com>
Date: Wed Dec 18 14:25:44 2013 -0500
removing the elliptic.P224 curve
bz1038683
golang-1.2-remove-ECC-p224.patch | 164 ++++++++++++++++++++++++++++++++++++++
golang.spec | 11 +++-
2 files changed, 174 insertions(+), 1 deletions(-)
---
diff --git a/golang-1.2-remove-ECC-p224.patch b/golang-1.2-remove-ECC-p224.patch
new file mode 100644
index 0000000..d31b400
--- /dev/null
+++ b/golang-1.2-remove-ECC-p224.patch
@@ -0,0 +1,164 @@
+diff -r 87dea3f5ebe7 api/go1.txt
+--- a/api/go1.txt Fri Nov 29 08:32:31 2013 +1100
++++ b/api/go1.txt Fri Dec 06 13:31:29 2013 -0500
+@@ -412,7 +412,6 @@
+ pkg crypto/ecdsa, type PublicKey struct, embedded elliptic.Curve
+ pkg crypto/elliptic, func GenerateKey(Curve, io.Reader) ([]uint8, *big.Int, *big.Int, error)
+ pkg crypto/elliptic, func Marshal(Curve, *big.Int, *big.Int) []uint8
+-pkg crypto/elliptic, func P224() Curve
+ pkg crypto/elliptic, func P256() Curve
+ pkg crypto/elliptic, func P384() Curve
+ pkg crypto/elliptic, func P521() Curve
+diff -r 87dea3f5ebe7 src/pkg/crypto/ecdsa/ecdsa_test.go
+--- a/src/pkg/crypto/ecdsa/ecdsa_test.go Fri Nov 29 08:32:31 2013 +1100
++++ b/src/pkg/crypto/ecdsa/ecdsa_test.go Fri Dec 06 13:31:29 2013 -0500
+@@ -33,7 +33,6 @@
+ }
+
+ func TestKeyGeneration(t *testing.T) {
+- testKeyGeneration(t, elliptic.P224(), "p224")
+ if testing.Short() {
+ return
+ }
+@@ -63,7 +62,6 @@
+ }
+
+ func TestSignAndVerify(t *testing.T) {
+- testSignAndVerify(t, elliptic.P224(), "p224")
+ if testing.Short() {
+ return
+ }
+@@ -129,8 +127,6 @@
+ parts := strings.SplitN(line, ",", 2)
+
+ switch parts[0] {
+- case "P-224":
+- pub.Curve = elliptic.P224()
+ case "P-256":
+ pub.Curve = elliptic.P256()
+ case "P-384":
+diff -r 87dea3f5ebe7 src/pkg/crypto/elliptic/bottombits.go
+--- /dev/null Thu Jan 01 00:00:00 1970 +0000
++++ b/src/pkg/crypto/elliptic/bottombits.go Fri Dec 06 13:31:29 2013 -0500
+@@ -0,0 +1,14 @@
++
++// Copyright 2012 The Go Authors. All rights reserved.
++// Use of this source code is governed by a BSD-style
++// license that can be found in the LICENSE file.
++
++package elliptic
++
++const bottom12Bits = 0xfff
++const bottom28Bits = 0xfffffff
++
++const two31p3 = 1<<31 + 1<<3
++const two31m3 = 1<<31 - 1<<3
++const two31m15m3 = 1<<31 - 1<<15 - 1<<3
++
+diff -r 87dea3f5ebe7 src/pkg/crypto/elliptic/elliptic.go
+--- a/src/pkg/crypto/elliptic/elliptic.go Fri Nov 29 08:32:31 2013 +1100
++++ b/src/pkg/crypto/elliptic/elliptic.go Fri Dec 06 13:31:29 2013 -0500
+@@ -326,7 +326,6 @@
+ var p521 *CurveParams
+
+ func initAll() {
+- initP224()
+ initP256()
+ initP384()
+ initP521()
+diff -r 87dea3f5ebe7 src/pkg/crypto/elliptic/elliptic_test.go
+--- a/src/pkg/crypto/elliptic/elliptic_test.go Fri Nov 29 08:32:31 2013 +1100
++++ b/src/pkg/crypto/elliptic/elliptic_test.go Fri Dec 06 13:31:29 2013 -0500
+@@ -1,3 +1,5 @@
++// +build ignore
++
+ // Copyright 2010 The Go Authors. All rights reserved.
+ // Use of this source code is governed by a BSD-style
+ // license that can be found in the LICENSE file.
+diff -r 87dea3f5ebe7 src/pkg/crypto/elliptic/p224.go
+--- a/src/pkg/crypto/elliptic/p224.go Fri Nov 29 08:32:31 2013 +1100
++++ b/src/pkg/crypto/elliptic/p224.go Fri Dec 06 13:31:29 2013 -0500
+@@ -1,3 +1,5 @@
++// +build ignore
++
+ // Copyright 2012 The Go Authors. All rights reserved.
+ // Use of this source code is governed by a BSD-style
+ // license that can be found in the LICENSE file.
+@@ -183,10 +185,6 @@
+ }
+ }
+
+-const two31p3 = 1<<31 + 1<<3
+-const two31m3 = 1<<31 - 1<<3
+-const two31m15m3 = 1<<31 - 1<<15 - 1<<3
+-
+ // p224ZeroModP31 is 0 mod p where bit 31 is set in all limbs so that we can
+ // subtract smaller amounts without underflow. See the section "Subtraction" in
+ // [1] for reasoning.
+@@ -215,9 +213,6 @@
+ // "Subtraction" in [1] for why.
+ var p224ZeroModP63 = [8]uint64{two63p35, two63m35, two63m35, two63m35, two63m35m19, two63m35, two63m35, two63m35}
+
+-const bottom12Bits = 0xfff
+-const bottom28Bits = 0xfffffff
+-
+ // p224Mul computes *out = a*b
+ //
+ // a[i] < 2**29, b[i] < 2**30 (or vice versa)
+diff -r 87dea3f5ebe7 src/pkg/crypto/elliptic/p224_test.go
+--- a/src/pkg/crypto/elliptic/p224_test.go Fri Nov 29 08:32:31 2013 +1100
++++ b/src/pkg/crypto/elliptic/p224_test.go Fri Dec 06 13:31:29 2013 -0500
+@@ -1,3 +1,5 @@
++// +build ignore
++
+ // Copyright 2012 The Go Authors. All rights reserved.
+ // Use of this source code is governed by a BSD-style
+ // license that can be found in the LICENSE file.
+diff -r 87dea3f5ebe7 src/pkg/crypto/x509/x509.go
+--- a/src/pkg/crypto/x509/x509.go Fri Nov 29 08:32:31 2013 +1100
++++ b/src/pkg/crypto/x509/x509.go Fri Dec 06 13:31:29 2013 -0500
+@@ -305,9 +305,6 @@
+
+ // RFC 5480, 2.1.1.1. Named Curve
+ //
+-// secp224r1 OBJECT IDENTIFIER ::= {
+-// iso(1) identified-organization(3) certicom(132) curve(0) 33 }
+-//
+ // secp256r1 OBJECT IDENTIFIER ::= {
+ // iso(1) member-body(2) us(840) ansi-X9-62(10045) curves(3)
+ // prime(1) 7 }
+@@ -320,7 +317,6 @@
+ //
+ // NB: secp256r1 is equivalent to prime256v1
+ var (
+- oidNamedCurveP224 = asn1.ObjectIdentifier{1, 3, 132, 0, 33}
+ oidNamedCurveP256 = asn1.ObjectIdentifier{1, 2, 840, 10045, 3, 1, 7}
+ oidNamedCurveP384 = asn1.ObjectIdentifier{1, 3, 132, 0, 34}
+ oidNamedCurveP521 = asn1.ObjectIdentifier{1, 3, 132, 0, 35}
+@@ -328,8 +324,6 @@
+
+ func namedCurveFromOID(oid asn1.ObjectIdentifier) elliptic.Curve {
+ switch {
+- case oid.Equal(oidNamedCurveP224):
+- return elliptic.P224()
+ case oid.Equal(oidNamedCurveP256):
+ return elliptic.P256()
+ case oid.Equal(oidNamedCurveP384):
+@@ -342,8 +336,6 @@
+
+ func oidFromNamedCurve(curve elliptic.Curve) (asn1.ObjectIdentifier, bool) {
+ switch curve {
+- case elliptic.P224():
+- return oidNamedCurveP224, true
+ case elliptic.P256():
+ return oidNamedCurveP256, true
+ case elliptic.P384():
+@@ -1373,7 +1365,7 @@
+ hashFunc = crypto.SHA1
+ case *ecdsa.PrivateKey:
+ switch priv.Curve {
+- case elliptic.P224(), elliptic.P256():
++ case elliptic.P256():
+ hashFunc = crypto.SHA256
+ signatureAlgorithm.Algorithm = oidSignatureECDSAWithSHA256
+ case elliptic.P384():
diff --git a/golang.spec b/golang.spec
index 2af2b6a..c3fdc5a 100644
--- a/golang.spec
+++ b/golang.spec
@@ -25,7 +25,7 @@
Name: golang
Version: 1.2
-Release: 1%{?dist}
+Release: 2%{?dist}
Summary: The Go Programming Language
License: BSD
@@ -54,6 +54,9 @@ Requires: /usr/bin/godoc
Patch0: golang-1.2-verbose-build.patch
+# https://bugzilla.redhat.com/show_bug.cgi?id=1038683
+Patch2: golang-1.2-remove-ECC-p224.patch
+
# Having documentation separate was broken
Obsoletes: %{name}-docs < 1.1-4
@@ -131,6 +134,9 @@ end
# increase verbosity of build
%patch0 -p1
+# remove the P224 curve
+%patch2 -p1
+
# create a [dirty] gcc wrapper to allow us to build with our own flags
# (dirty because it is spoofing 'gcc' since CC value is stored in the go tool)
# TODO: remove this and just set CFLAGS/LDFLAGS once upstream supports it
@@ -282,6 +288,9 @@ cp -av %{SOURCE101} $RPM_BUILD_ROOT%{_sysconfdir}/prelink.conf.d/golang.conf
%changelog
+* Wed Dec 18 2013 Vincent Batts <vbatts at redhat.com> - 1.2-2
+- removing P224 ECC curve
+
* Mon Dec 2 2013 Vincent Batts <vbatts at fedoraproject.org> - 1.2-1
- Update to upstream 1.2 release
- remove the pax tar patches
More information about the scm-commits
mailing list