Temporarily add support for GOST algorithms for RPM5->RPM4 transition

Temporarily use the same OIDs for GOST as we used in RPM 5 to ensure RPM 5
is able to install those packages from rpm5 to boostrap rosa2019.05 based on
packages from rosa2019.0.

This needs to be reworked before upstream inclusion.

Cf. rpm-software-management#1082

build/files.c

@@ -1253,6 +1253,11 @@ static void genCpioListAndHeader(FileList fl, Package pkg, int isSrc)
 	rpmlibNeedsFeature(pkg, "FileDigests", "4.6.0-1");
     }
 
+    if (digestalgo == PGPHASHALGO_GOST12_256 || digestalgo == PGPHASHALGO_GOST12_512) {
+	headerPutUint32(h, RPMTAG_FILEDIGESTALGO, &digestalgo, 1);
+	rpmlibNeedsFeature(pkg, "FileDigestsGOST12", "4.15.0-1");
+    }
+
     if (fl->haveCaps) {
 	rpmlibNeedsFeature(pkg, "FileCaps", "4.6.1-1");
     }

configure.ac

@@ -387,6 +387,7 @@ if test "$with_crypto" = libgcrypt ; then
        AC_MSG_ERROR([libgcrypt not found])
     fi
   fi
+  AC_DEFINE(WITH_LIBGCRYPT, 1, [Build with libgcrypt?])
 fi
 
 AM_CONDITIONAL([WITH_LIBGCRYPT],[test "$with_crypto" = libgcrypt])

lib/rpmds.c

@@ -1132,6 +1132,17 @@ static const struct rpmlibProvides_s rpmlibProvides[] = {
     { "rpmlib(FileDigests)", 		"4.6.0-1",
 	(		 RPMSENSE_EQUAL),
     N_("file digest algorithm is per package configurable") },
+#ifdef WITH_LIBGCRYPT
+    /*
+     * As rpmlib(FileDigestsGOST12) is available only when RPM is built with libcgrypt,
+     * to avoid other versions of RPM from misunderatanding hashes
+     * (see e.g. https://github.com/rpm-software-management/rpm/issues/959),
+     * require FileDigestsGOST12 separately
+     */
+    { "rpmlib(FileDigestsGOST12)", 		"4.15.0-1",
+	(		 RPMSENSE_RPMLIB|RPMSENSE_EQUAL),
+    N_("file digest can be GOST R 34.11 2012 (STREEBOG256, STREEBOG512)") },
+#endif
 #ifdef WITH_CAP
     { "rpmlib(FileCaps)", 		"4.6.1-1",
 	(		 RPMSENSE_EQUAL),

rpmio/digest_libgcrypt.c

@@ -40,10 +40,12 @@ size_t rpmDigestLength(int hashalgo)
 	return 20;
     case PGPHASHALGO_SHA224:
 	return 28;
+    case PGPHASHALGO_GOST12_256:
     case PGPHASHALGO_SHA256:
 	return 32;
     case PGPHASHALGO_SHA384:
 	return 48;
+    case PGPHASHALGO_GOST12_512:
     case PGPHASHALGO_SHA512:
 	return 64;
     default:
@@ -66,6 +68,10 @@ static int hashalgo2gcryalgo(int hashalgo)
 	return GCRY_MD_SHA384;
     case PGPHASHALGO_SHA512:
 	return GCRY_MD_SHA512;
+    case PGPHASHALGO_GOST12_256:
+	return GCRY_MD_STRIBOG256;
+    case PGPHASHALGO_GOST12_512:
+	return GCRY_MD_STRIBOG512;
     default:
 	return 0;
     }

rpmio/rpmpgp.c

@@ -97,6 +97,8 @@ static struct pgpValTbl_s const pgpHashTbl[] = {
     { PGPHASHALGO_SHA384,	"SHA384" },
     { PGPHASHALGO_SHA512,	"SHA512" },
     { PGPHASHALGO_SHA224,	"SHA224" },
+    { PGPHASHALGO_GOST12_256,	"MD_GOST12_256" },
+    { PGPHASHALGO_GOST12_512,	"MD_GOST12_512" },
     { -1,			"Unknown hash algorithm" },
 };
 

rpmio/rpmpgp.h

@@ -272,6 +272,8 @@ typedef enum pgpHashAlgo_e {
     PGPHASHALGO_SHA384		=  9,	/*!< SHA384 */
     PGPHASHALGO_SHA512		= 10,	/*!< SHA512 */
     PGPHASHALGO_SHA224		= 11,	/*!< SHA224 */
+    PGPHASHALGO_GOST12_256	= 99,	/*!< GOST R 34.11-2012 256 */
+    PGPHASHALGO_GOST12_512	= 100,	/*!< GOST R 34.11-2012 512 */
 } pgpHashAlgo;
 
 /** \ingroup rpmpgp

sign/rpmsignfiles.c

@@ -28,6 +28,8 @@ static const char *hash_algo_name[] = {
     [PGPHASHALGO_SHA384]       = "sha384",
     [PGPHASHALGO_SHA512]       = "sha512",
     [PGPHASHALGO_SHA224]       = "sha224",
+    [PGPHASHALGO_GOST12_256]   = "streebog256",
+    [PGPHASHALGO_GOST12_512]   = "streebog512",
 };
 
 #define ARRAY_SIZE(a)  (sizeof(a) / sizeof(a[0]))