Initialize for libtasn1

.gitignore

@@ -0,0 +1 @@
+libtasn1-4.13.tar.gz

.libtasn1.metadata

@@ -0,0 +1 @@
+295e18f117d3ebc8dbb7cc396f47157a144a18dfcc49a68997b28def6be8ad5f libtasn1-4.13.tar.gz

baselibs.conf

@@ -0,0 +1,2 @@
+libtasn1-6
+libtasn1-devel

libtasn1-4.13.tar.gz.sig

@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEqBLL/fzcTQvnoJMSnV6q9pATuEIFAlpeOtEACgkQnV6q9pAT
+uEIWNAf/YnmT4u3ShAfhUKE4sIap+8ivG5AxCPw1Rwgwc8qcS2VKOVeiwYTWmt9t
+g5CDrVu27DTPbCkdS7sTKrHQT3Pjc2DRJWHJbaHr5J717sNp50XWWXjNyZGrmyN4
+ais1d7no0GMXRsR6SUOFi+M52Q/vWhhYz4gaDAV9XSOqbJ6MPiw4BhjqyVSQ4lwD
+Lfn4upk+1JFjzCpVft7iXrx1P4RXvFJC1sBYpUJAbdm9y0rO5jGiY7EHokDNq1rT
+71hBWUclo37GsJnF65CRD1Mb5/wdZxm2wvEL/SFlHKqnY/uB3y4u7il91fi9zrwY
+mDmVimu7E563pqum16000pybZIEmFw==
+=LTAv
+-----END PGP SIGNATURE-----

libtasn1-CVE-2021-46848.patch

@@ -0,0 +1,12 @@
+diff -Nurp libtasn1-4.13-orig/lib/int.h libtasn1-4.13/lib/int.h
+--- libtasn1-4.13-orig/lib/int.h	2016-09-11 11:53:52.000000000 +0200
++++ libtasn1-4.13/lib/int.h	2022-10-25 09:40:21.061918424 +0200
+@@ -98,7 +98,7 @@ typedef struct tag_and_class_st
+ #define ETYPE_TAG(etype) (_asn1_tags[etype].tag)
+ #define ETYPE_CLASS(etype) (_asn1_tags[etype].class)
+ #define ETYPE_OK(etype) (((etype) != ASN1_ETYPE_INVALID && \
+-                          (etype) <= _asn1_tags_size && \
++                          (etype) < _asn1_tags_size && \
+                           _asn1_tags[(etype)].desc != NULL)?1:0)
+ 
+ #define ETYPE_IS_STRING(etype) ((etype == ASN1_ETYPE_GENERALSTRING || \

libtasn1-object-id-recursion.patch

@@ -0,0 +1,122 @@
+From 9c40f7796c9d33179b602f65f4b587d175fba23c Mon Sep 17 00:00:00 2001
+From: Mike Gorse <mgorse@alum.wpi.edu>
+Date: Thu, 11 Apr 2019 11:14:58 -0500
+Subject: [PATCH 1/2] _asn1_expand_object_id: Limit recursion
+
+Resolves #4
+---
+ lib/parser_aux.c | 8 ++++++--
+ 1 file changed, 6 insertions(+), 2 deletions(-)
+
+diff --git a/lib/parser_aux.c b/lib/parser_aux.c
+index 786ea64..08c2167 100644
+--- a/lib/parser_aux.c
++++ b/lib/parser_aux.c
+@@ -675,7 +675,7 @@ _asn1_expand_object_id (asn1_node node)
+ {
+   asn1_node p, p2, p3, p4, p5;
+   char name_root[ASN1_MAX_NAME_SIZE], name2[2 * ASN1_MAX_NAME_SIZE + 1];
+-  int move, tlen;
++  int move, tlen, tries;
+ 
+   if (node == NULL)
+     return ASN1_ELEMENT_NOT_FOUND;
+@@ -684,6 +684,7 @@ _asn1_expand_object_id (asn1_node node)
+ 
+   p = node;
+   move = DOWN;
++  tries = 0;
+ 
+   while (!((p == node) && (move == UP)))
+     {
+@@ -738,7 +739,9 @@ _asn1_expand_object_id (asn1_node node)
+ 			  p4 = p4->right;
+ 			}
+ 		      move = DOWN;
+-		      continue;
++		      tries++;
++                      if (tries < 3)
++		        continue;
+ 		    }
+ 		}
+ 	    }
+@@ -747,6 +750,7 @@ _asn1_expand_object_id (asn1_node node)
+       else
+ 	move = RIGHT;
+ 
++      tries = 0;
+       if (move == DOWN)
+ 	{
+ 	  if (p->down)
+-- 
+From 57d6bc19d44b0693023031c6dbc0d21a36550f34 Mon Sep 17 00:00:00 2001
+From: Mike Gorse <mgorse@alum.wpi.edu>
+Date: Thu, 25 Apr 2019 16:40:18 -0500
+Subject: [PATCH 2/2] Add reproducer for issues/4 to Test_tree.asn
+
+---
+ tests/Test_tree.asn        |  9 +++++++++
+ tests/Test_tree_asn1_tab.c | 13 +++++++++++--
+ 2 files changed, 20 insertions(+), 2 deletions(-)
+
+diff --git a/tests/Test_tree.asn b/tests/Test_tree.asn
+index 0ad0dc5..a253bc8 100644
+--- a/tests/Test_tree.asn
++++ b/tests/Test_tree.asn
+@@ -154,6 +154,15 @@ X520LocalityName ::= CHOICE {
+       bmpString           BMPString    }
+ 
+ 
++id-xnyTest OBJECT IDENTIFIER  ::=  {id-ix 29 1}
++id-ix OBJECR  ::=  {id-ix 29 2}
++BMPString ::= OCTET S
++}
++UniversalString : BY id O}
++id-ix OBJECT IDENTIFIER  ::=  {2 5}
++id-xnyTest OBJECT IDENTIFIER  ::=  {id-ix 29 1}
++anyTest2  ::= INTEGER
++
+ id-Test OBJECT IDENTIFIER  ::=  {1 2 29 2}
+ 
+ END
+diff --git a/tests/Test_tree_asn1_tab.c b/tests/Test_tree_asn1_tab.c
+index 7869f85..0f211c8 100644
+--- a/tests/Test_tree_asn1_tab.c
++++ b/tests/Test_tree_asn1_tab.c
+@@ -68,7 +68,7 @@ const asn1_static_node Test_tree_asn1_tab[] = {
+   { "set", 1610612751, NULL },
+   { NULL, 3, NULL },
+   { "oid", 1073741836, NULL },
+-  { "time2", 1082130449, NULL },
++  { "time2", 1073741861, NULL },
+   { "bol", 1073741828, NULL },
+   { "oct", 1073741831, NULL },
+   { "bit", 1073758214, NULL },
+@@ -81,7 +81,7 @@ const asn1_static_node Test_tree_asn1_tab[] = {
+   { "any", 1610637325, NULL },
+   { NULL, 4104, "1"},
+   { "gen", 1073758235, NULL },
+-  { "time1", 16777233, NULL },
++  { "time1", 36, NULL },
+   { "SequenceTestTag", 1610612741, NULL },
+   { "int1", 1610620931, NULL },
+   { NULL, 2056, "2"},
+@@ -160,6 +160,15 @@ const asn1_static_node Test_tree_asn1_tab[] = {
+   { "universalString", 1073741856, NULL },
+   { "utf8String", 1073741858, NULL },
+   { "bmpString", 33, NULL },
++  { "id-xnyTest", 1879048204, NULL },
++  { NULL, 1073741825, "id-ix"},
++  { NULL, 1073741825, "29"},
++  { NULL, 1, "1"},
++  { "id-ix", 1880096780, "OBJECR"},
++  { NULL, 1073741825, "id-ix"},
++  { NULL, 1073741825, "29"},
++  { NULL, 1, "2"},
++  { "BMPString", 1073741827, NULL },
+   { "id-Test", 805306380, NULL },
+   { NULL, 1073741825, "1"},
+   { NULL, 1073741825, "2"},
+-- 
+2.20.1
+

libtasn1.changes

@@ -0,0 +1,343 @@
+* Tue Oct 25 2022 abergmann@suse.com
+- Add libtasn1-CVE-2021-46848.patch: Fixed off-by-one array size check
+  that affects asn1_encode_simple_der (CVE-2021-46848, bsc#1204690).
+* Mon Apr 29 2019 mgorse@suse.com
+- Add libtasn1-object-id-recursion.patch: limit recursion in
+  _asn1_expand_object_id (boo#1105435 CVE-2018-1000654
+  (https://gitlab.com/gnutls/libtasn1/merge_requests/8)
+* Thu Feb 22 2018 fvogt@suse.com
+- Use %%license (boo#1082318)
+* Fri Jan 19 2018 kbabioch@suse.com
+- update to 4.13
+  * On indefinite string decoding, set a maximum level of allowed
+    recursions (3) to protect the BER decoder from a stack exhaustion.
+    (CVE-2018-6003 boo#1076832)
+* Sun Jun  4 2017 astieger@suse.com
+- libtasn1 4.12:
+  * Corrected so-name version
+- includes changes in 4.11:
+  * Introduce the ASN1_TIME_ENCODING_ERROR error code to indicate
+    an invalid encoding in the DER time fields.
+  * Introduced flag ASN1_DECODE_FLAG_ALLOW_INCORRECT_TIME. This flag
+    allows decoding errors in time fields even when in strict DER mode.
+    That is introduced in order to allow toleration of invalid times in
+    X.509 certificates (which are common) even though strict DER adherence
+    is enforced in other fields.
+  * Added safety check in asn1_find_node(). That prevents a crash
+    when a very long variable name is provided by the developer.
+    Note that this to be exploited requires controlling the ASN.1
+    definitions used by the developer, i.e., the 'name' parameter of
+    asn1_write_value() or asn1_read_value(). The library is
+    not designed to protect against malicious manipulation of the
+    developer assigned variable names
+- includes changes from 4.10:
+  * Updated gnulib
+  * Removed -Werror from default compiler flags
+    (drop patch 0001-configure-don-t-add-Werror-to-build-flags.patch)
+  * Fixed undefined behavior when negating integers in _asn1_ltostr().
+  * Pass the correct length to _asn1_get_indefinite_length_string in
+    asn1_get_length_ber. This addresses reading 1-byte past the end
+    of data.
+* Wed Aug 10 2016 astieger@suse.com
+- update to 4.9:
+  * Fix OID encoding of OIDs which have elements which exceed 2^32
+- Do not treat i586 warning as error, adding upstream
+  0001-configure-don-t-add-Werror-to-build-flags.patch
+- fate#322523
+* Mon Apr 11 2016 mpluskal@suse.com
+- Update to 4.8
+  * Fixes to avoid reliance on C undefined behavior.
+  * Fixes to avoid an infinite recursion when decoding without the
+    ASN1_DECODE_FLAG_STRICT_DER flag. Reported by Pascal Cuoq.
+    (CVE-2016-4008 / bsc#982779)
+  * Combined all the BER octet string decoding functions to a
+    single one based on asn1_decode_simple_ber().
+* Wed Sep 16 2015 zaitor@opensuse.org
+- Update to version 4.7:
+  * Fixed regression introduced in the decoding of multi-byte tags
+    fix.
+* Mon Sep  7 2015 astieger@suse.com
+- libtasn1 4.6:
+  * Allow decoding OCTET STRINGs with multi-byte tags.
+  * Add asn1_get_object_id_der
+* Fri May  1 2015 astieger@suse.com
+- update libtasn1 4.5:
+  * Corrected an invalid memory access in octet string decoding.
+    CVE-2015-3622 [boo#929414]
+* Sun Mar 29 2015 astieger@suse.com
+- update to libtasn1 4.4 [bsc#924828]:
+  * Corrected a two-byte stack overflow in asn1_der_decoding.
+    CVE-2015-2806
+* Sun Mar 22 2015 mpluskal@suse.com
+- Update project url
+- Cleanup spec-file with spec-cleaner
+- Add info preun and post dependencies
+- Update to 4.3
+  * Added asn1_decode_simple_ber()
+  * Only assign a value if the previous node has one (bsc#961491).
+* Sat Feb 14 2015 jengelh@inai.de
+- Put C API documentation into -devel package.
+  Use modern %%make_install. Description fix.
+* Wed Oct  8 2014 tabraham@suse.com
+- updated to libtasn1 4.2:
+  * Noteworthy changes in release 4.2 (released 2014-09-15) [stable]
+  - Added sanity checks in the decoding of time when
+    ASN1_DECODE_FLAG_STRICT_DER is used.
+  - Fixes in the decoding of OCTET STRING when close to the end
+    of the structure.
+  * Noteworthy changes in release 4.1 (released 2014-08-23) [stable]
+  - Corrected indefinite tag check in ANY constructions. That allows
+    the decoding of BER-encoded structures that contain indefinite
+    encoding within an ANY element.
+  - Added DER decoding flag ASN1_DECODE_FLAG_STRICT_DER. Over the
+    years BER functionality was added to the decoder and this flag
+    provides the way to disable it.
+  - API and ABI changes since last version:
+    ASN1_DECODE_FLAG_STRICT_DER: New definition
+  * Noteworthy changes in release 4.0 (released 2014-06-26) [stable]
+  - Optimized asn1_der_decoding_startEnd(). It no longer requires the
+    additional decoding step.
+  - asn1_read_value() understands the ?CURRENT keyword, which can be used
+    to indicate the current element of a sequence, when the provided node
+    is a sequence element.
+  - Several optimizations in DER decoding of structures with sequences
+    containing many elements.
+  - asn1_der_decoding2() is introduced and allows flags to be passed on
+    the decoding process. Currently only ASN1_DECODE_FLAG_ALLOW_PADDING is
+    defined and that allows decoding DER structures that contain arbitrary
+    data past their end. Contributed by Karel Slany.
+  - API and ABI changes since last version:
+    ASN1_DECODE_FLAG_ALLOW_PADDING: New definition
+    asn1_dup_node: New function
+    asn1_der_decoding2: New function
+    asn1_der_decoding_element: It is now an alias to asn1_der_decoding
+* Fri Jul 25 2014 mgorse@suse.com
+- updated to libtasn1 3.7:
+  * Noteworthy changes in release 3.7 (released 2014-06-26) [stable]
+  - Fixes in length calculation in _asn1_extract_der_octet().
+  - Fixes in DER decoding.
+  - Fixes: CVE-2014-3468 CVE-2014-3467 CVE-2014-3469 bnc#880738
+    bnc#880737 bnc#880735
+* Tue Jun  3 2014 meissner@suse.com
+- libtasn1.keyring: added Nikos Mavrogiannopoulos <nmav@gnutls.org>
+  key, who did this release (and shares responsibility with Simon).
+- updated to libtasn1 3.6
+  * Noteworthy changes in release 3.6 (released 2014-05-25) [stable]
+  - Corrected an off-by-one error in ASN.1 DER tag decoding. (CVE-2014-3468/bnc#880735)
+  - Several improvements and new safety checks on DER decoding;
+    issues found using Codenomicon TLS test suite. (CVE-2014-3469/bnc#880738,
+    CVE-2014-3467/bnc#880737)
+  - Marked asn1_der_decoding_element() as deprecated. Use
+    asn1_der_decoding() instead.
+  * Noteworthy changes in release 3.5 (released 2014-05-01) [stable]
+  - Correctly handle decoding of recursive CHOICE options.
+  - Allow deleting elements of SET OF. Patch by Jean-Louis Thekekara.
+  - Several small bug fixes found by coverity.
+  - Code improvements contributed by Kurt Roeckx.
+  * Noteworthy changes in release 3.4 (released 2013-11-25) [stable]
+  - Added asn1_delete_structure2() which allows zeroizing the contents
+    of all values in the structure prior to deinitialization.
+  - The parser accepts negative numbers in an INTEGER range (but
+    still does no enforce them).
+* Tue Jun 25 2013 coolo@suse.com
+- remove gpg source checking again to avoid this cycle:
+  libtasn1 -> libssh2_org -> openssh -> krb5 -> python-Jinja2 -> vim -> libtasn1
+* Thu Jun 20 2013 meissner@suse.com
+- updated to libtasn1 3.3
+  * Noteworthy changes in release 3.3 (released 2013-03-23) [stable]
+  - More precise overflow checks using gnulib's intprops module.
+  - Updates to compile in Android systems.
+  * Noteworthy changes in release 3.2 (released 2012-11-30) [stable]
+  - Corrected buffer overflow in the error reporting of the parser (reported
+    by Andreas Metzler).
+  * Noteworthy changes in release 3.1 (released 2012-11-24) [stable]
+  - Completed rename of types:
+    ASN1_ARRAY_TYPE -> asn1_static_node (was asn1_static_node_t)
+  - Added new types: VisibleString, NumericString, IA5String, TeletexString,
+    PrintableString, UniversalString, BMPString, UTF8String. When re-defined
+    a warning is being print instead of failing.
+  - Parser outputs more detailed syntax error messages.
+  - Added asn1_decode_simple_der() and asn1_encode_simple_der().
+  - Added asn1_read_value_type() to return value and type.
+  - Introduced ASN1_ETYPE_UTC_TIME and ASN1_ETYPE_GENERALIZED_TIME
+- added gpg source checking
+* Sat Nov 17 2012 andreas.stieger@gmx.de
+- update to libtasn1 3.0, SONAME libtasn1.so.6
+  - Added tool in tests/ to benchmark X.509 structure decoding.
+  - Added asn1_read_node_value() to obtain a node's value.
+  - Optimizations in internal tree allocation.
+  - Optimizations in tree search.
+  - libtasn1.h no longer exports internal structures.
+  - Types were renamed for consistency:
+    ASN1_DATA_NODE -> asn1_data_node_st
+    ASN1_ARRAY_TYPE -> asn1_static_node
+    ASN1_TYPE -> asn1_node
+    ASN1_TYPE_EMPTY -> NULL
+    static_struct_asn -> asn1_static_node_st
+    node_asn_struct -> asn1_node_st
+    node_asn -> asn1_node_st
+    (the old types are still available as definitions)
+- fix W: devel-package-with-non-devel-group
+* Fri Sep 28 2012 meissner@suse.com
+- updated to version 2.14
+  This release adds asn1_read_node_value() to obtain a node's value. This
+  is to deprecate the export of the node_asn internal structure for the
+  upcoming 3.x release. The ASN1_DATA_NODE type and the ASN1_ETYPE_*
+  constants were added to support the new function.
+- removed upstreamed libtasn1-stdio.h patch
+- make check
+* Sun Jul 22 2012 aj@suse.de
+- Fix build with missing gets declaration (glibc 2.16)
+* Fri Jun 29 2012 cfarrell@suse.com
+- license update: LGPL-2.1+ and GPL-3.0
+  Tools are GPL-3.0
+* Sat Apr 14 2012 tabraham@novell.com
+- update to version 2.12
+  + Cleanup license headers.
+  + build: Update gnulib files.
+  + Corrected DER decoding issue (reported by Matthew Hall).
+    Added self check to detect the problem, see tests/Test_overflow.c.
+    This problem can lead to at least remotely triggered crashes, see
+    further analysis on the libtasn1 mailing list.
+* Sun Jan  8 2012 tabraham@novell.com
+- update to version 2.11
+  + qa: now builds without compiler warnings with Solaris CC
+  + qa: added clang analysis. fixed cyclomatic complexity output
+  + tests: added self-test of bit string functions
+  + build: added windows/libtasn14win.mk rules to produce Windows
+    binaries
+  + build: don't hard code path to perl in doc/gdoc
+  + various minor fixes
+- changes in version 2.10
+  + lib: small optimization, possibly working around gcc/valgrind issue
+  + build: update gnulib files
+  + asn1Coding: actually implement the -c parameter
+  + asn1Decoding: the -c parameter serves no purpose. remove it.
+  + doc: add examples to asn1Coding and ans1Decoding description
+- changes in version 2.9
+  + tests: link to gnulib to avoid build error related to 'rpl_ftello'
+    on Solaris. Reported by Dagobert Michelsen
+  + doc: fix bug reporting address to point at help-libtasn1@gnu.org
+  + doc: fix returns: documentation in Texinfo. Reported by Jeffery
+    Walton
+  + build : update gnulib files
+- changes in version 2.8
+  + update gnulib files
+  + use libtool 2.2.10 to ease MinGW64 builds
+- changes in version 2.7
+  + Doc: build PDF manual using GTK-DOC
+  + Doc: fix of asn1_check_version, documentation was missing from
+    last release
+  + Build: avoid warnings about ignored visibility attributes on
+    Windows
+- changes in version 2.6
+  + Fix build failure on platforms without support for GNU_LD
+    version scripts
+  + libtasn1: simplified implementation of asn1_check_version
+  + tests: improved self-checks
+  + update gnulib files, fix many syntax-check nits, indent code,
+    fix license templates
+- changes in version 2.5
+  + doc: improve GTK-DOC comments
+  + misc: updated gnulib files
+- changes in version 2.4
+  + Doc fixes
+  + updated gnulib files
+  + clean up copyright notices
+- changes in version 2.3
+  + libtasn1 is now an official GNU project
+  + solve build problem on Tru64 related to TRUE/FALSE
+  + More careful decoding of OIDs
+  + Fixed warning in ANS1.y
+  + Use "Software libraries" info dircategory
+  + Drop GPL/LGPL copies from the manual (not needed there)
+  + New configure parameters to set packagin specific information
+    The parameters are --with-packager, --with-packager-version,
+    and --with-packager-bug-reports. See
+    <http://article.gmane.org/gmane.comp.lib.gnulib.bugs/17791> for
+    more details.
+* Sun Oct 31 2010 jengelh@medozas.de
+- Use %%_smp_mflags
+* Sat Apr 24 2010 coolo@novell.com
+- buildrequire pkg-config to fix provides
+* Thu Dec 17 2009 jengelh@medozas.de
+- Add baselibs.conf as a source
+* Thu May 21 2009 vuntz@novell.com
+- Update to version 2.2:
+  + Change how the ASN1_API decorator is used in libtasn1.h, for
+    GTK-DOC.
+  + Changed license of libtasn1.pc from GPLv3+ to LGPLv2.1+.
+  + Building with many warning flags now requires
+  - -enable-gcc-warnings.
+  + Some warnings fixed.
+- Fix license of library packages: it's LGPL not GPL.
+* Wed May  6 2009 vuntz@novell.com
+- Update to version 2.1:
+  + Fix compilation failure on platforms that can't generate empty
+    archives, e.g., Mac OS X.
+- Changes from version 2.0:
+  + Optimized tree generation.
+  + ASN1 parser code re-generated using Bison 2.4.1.
+  + Build with more warning flags.  Many compiler warnings fixed.
+  + Compiled with -fvisibility=hidden by default if supported.
+    See http://gcc.gnu.org/wiki/Visibility
+  + The libtasn1-config tool has been removed. For application
+    developers, please stop using libtasn1-config for finding
+    libtasn1, use proper autoconf checks or pkg-config instead.
+- Remove AutoReqProv: it's default now.
+- Pass --disable-static to configure.
+* Wed Feb 11 2009 ro@suse.de
+- added baselibs.conf (needed by gnome-keyring-32bit)
+* Sun Feb  1 2009 mboman@suse.de
+- Update to version 1.8:
+  + Fix crlf self-test under Mingw+Wine.
+  + Fix build problems on platforms that lack stdint.h.
+* Sat Dec 20 2008 mboman@suse.de
+- Update to version 1.7:
+  + Add libtasn1-config for compatibility.
+    Please stop use it as it will disappear in v2.0!
+    Use standard AC_CHECK_FUNCS autoconf tests or pkg-config instead.
+  + Read PKCS#12 blob as binary file, fixes self-tests under Mingw.
+  + Fix use of __attribute__ ((deprecated)) to work on non-GCC
+  + Fixed namespace violation for MAX_NAME_SIZE and MAX_ERROR_DESCRIPTION_SIZE.
+    The new names are ASN1_MAX_NAME_SIZE and ASN1_MAX_ERROR_DESCRIPTION_SIZE.
+  + Fixed namespace violation for libtasn1_perror and libtasn1_strerror.
+    The new names are asn1_perror and asn1_strerror.
+  + Fix namespace violation for LIBASN1_VERSION.
+    The new name is ASN1_VERSION.
+  + Decoder can now decode BER encoded octet strings.
+  + doc: Change license on the manual to GFDLv1.3+.
+  + doc: Sync gdoc script with GnuTLS, changes license on man-pages to GAP.
+  + doc: Improve gtk-doc manual.
+  + Assumes system has strdup and string.h.
+  + Remove libtasn1-config and libtasn1.m4,
+    use standard AC_CHECK_FUNCS autoconf tests or pkg-config instead.
+  + Change detection of when to use a linker version script,
+    use --enable-ld-version-script or --disable-ld-version-script to
+    override auto-detection logic.
+  + API and ABI changes since last version:
+    asn1_get_length_ber: New function.
+    ASN1_VERSION: New symbol, replaces LIBTASN1_VERSION.
+    asn1_strerror: New function, replaces libtasn1_strerror.
+    asn1_perror: New function, replaces libtasn1_perror.
+    libtasn1_strerror: Marked as deprecated.
+    libtasn1_perror: Marked as deprecated.
+    LIBTASN1_VERSION: Deprecated.
+* Fri Sep 12 2008 maw@suse.de
+- Update to version 1.5:
+  + Update gnulib files
+  + Handle 'INTEGER { ... } (a..b)' regression
+    Revert parts of earlier fix.  asn1Parser can now again parse
+    src/pkix.asn1.
+    The ASN1.c file was generated using Bison 2.3.
+  + Move examples from src/ to new directory examples/.
+  + Duplicate copy of divergated pkix.asn removed.
+  + Merge unnecessary lib/defines.h into lib/int.h.
+  + Misc. fixes.
+* Wed Jan  2 2008 maw@suse.de
+- Add a %%clean section.
+* Thu Dec 20 2007 maw@suse.de
+- Properly package info files
+- Package several documentation files.
+* Thu Dec 20 2007 maw@suse.de
+- New package, version 1.2.

libtasn1.spec

@@ -0,0 +1,99 @@
+#
+# spec file for package libtasn1
+#
+# Copyright (c) 2022-2023 ZhuningOS
+#
+
+
+%define somajor 6
+Name:           libtasn1
+Version:        4.13
+Release:        150000.4.8.1
+Summary:        ASN.1 parsing library
+License:        LGPL-2.1-or-later AND GPL-3.0-only
+Group:          Productivity/Networking/Security
+Url:            https://www.gnu.org/software/libtasn1/
+Source0:        http://ftp.gnu.org/gnu/libtasn1/%{name}-%{version}.tar.gz
+Source1:        ftp://ftp.gnu.org/gnu/%{name}/%{name}-%{version}.tar.gz.sig
+# http://josefsson.org/key.txt
+Source2:        %{name}.keyring
+Source99:       baselibs.conf
+# PATCH-FIX-UPSTREAM libtasn1-object-id-recursion.patch boo#1105435 mgorse@suse.com -- limit recursion in _asn1_expand_object_id.
+Patch0:         libtasn1-object-id-recursion.patch
+Patch1:		libtasn1-CVE-2021-46848.patch
+BuildRequires:  info
+BuildRequires:  pkgconfig
+Requires(post): %{install_info_prereq}
+Requires(preun): %{install_info_prereq}
+BuildRoot:      %{_tmppath}/%{name}-%{version}-build
+
+%description
+This is the ASN.1 library used by GNUTLS. More up to date information
+can be found at http://www.gnu.org/software/gnutls and
+http://www.gnutls.org
+
+%package -n libtasn1-%{somajor}
+Summary:        ASN.1 parsing library
+Group:          System/Libraries
+Requires:       %{name} >= %{version}
+
+%description -n libtasn1-%{somajor}
+This is the ASN.1 library used by GNUTLS. More up to date information
+can be found at http://www.gnu.org/software/gnutls and
+http://www.gnutls.org
+
+%package devel
+Summary:        Development files for the ASN.1 parsing library
+Group:          Development/Libraries/C and C++
+Requires:       libtasn1-%{somajor} = %{version}
+
+%description devel
+This is the ASN.1 library used by GNUTLS. More up to date information
+can be found at http://www.gnu.org/software/gnutls and
+http://www.gnutls.org
+
+%prep
+%setup -q
+%patch0 -p1
+%patch1 -p1
+
+%build
+%configure --disable-static
+make %{?_smp_mflags} V=1
+
+%install
+%make_install
+find %{buildroot} -type f -name "*.la" -delete -print
+
+%check
+make %{?_smp_mflags} check
+
+%post
+%install_info --info-dir=%{_infodir} %{_infodir}/%{name}.info.gz
+
+%preun
+%install_info_delete --info-dir=%{_infodir} %{_infodir}/%{name}.info.gz
+
+%post -n libtasn1-%{somajor} -p /sbin/ldconfig
+%postun -n libtasn1-%{somajor} -p /sbin/ldconfig
+
+%files
+%defattr(-, root, root)
+%license COPYING.LIB
+%doc NEWS README THANKS
+%{_bindir}/*
+%{_mandir}/man1/*.1%{ext_man}
+%{_infodir}/*.info%{ext_info}
+
+%files -n libtasn1-%{somajor}
+%defattr(-, root, root)
+%{_libdir}/*.so.%{somajor}*
+
+%files devel
+%defattr(-, root, root)
+%{_includedir}/*.h
+%{_libdir}/*.so
+%{_libdir}/pkgconfig/libtasn1.pc
+%{_mandir}/man3/*.3%{ext_man}
+
+%changelog