Sync from SUSE:SLFO:1.1 pcr-oracle revision 3b3073123ee846cf76d8ce2104a8b194

_service

@@ -4,10 +4,10 @@
 <services>
 	<service name="tar_scm" mode="disabled">
 		<param name="scm">git</param>
-		<param name="url">https://github.com/openSUSE/pcr-oracle.git</param>
+		<param name="url">https://github.com/okirch/pcr-oracle.git</param>
 		<param name="filename">pcr-oracle</param>
 		<param name="versionformat">@PARENT_TAG@</param>
-		<param name="revision">refs/tags/0.5.7</param>
+		<param name="revision">refs/tags/0.4.6</param>
 	</service>
 	<service name="recompress" mode="disabled">
 		 <param name="file">pcr-oracle*.tar</param>

pcr-oracle.changes

@@ -1,158 +1,3 @@
--------------------------------------------------------------------
-Thu May 29 07:31:13 UTC 2025 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Update to 0.5.7
-  + Support ppc64 events
-  + Fix the string comparison for the alternative event
-    (bsc#1241957)
-- Add the new BuildRequires: libelf-devel and libfdisk-devel
-
--------------------------------------------------------------------
-Tue May 13 02:53:41 UTC 2025 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Update to 0.5.6
-  + rsa: adopt OpenSSL 3.0 API to generate RSA key
-  + Drop the code for openSSL < 3.0.0
-  + Look for signing authority in alternative database
-   (bsc#1241957)
-- Bump the requirement of libopenssl-devel to 3.0.0
-
--------------------------------------------------------------------
-Tue Apr  1 15:26:00 UTC 2025 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Update to 0.5.5
-  + Merge of pending patches into the project
-  + No new feature since last release
-- Change source to the openSUSE project
-- Remove patches (merged)
-  + fix-bsc1230316-make-pcr4-hard-requirement.patch
-  + fix-bsc1230316-predict-sbatlevelrt.patch
-  + fix-bsc1230316-predict-sbatlevelrt-sb-off.patch
-  + fix_efi_measure_and_shim.patch
-  + fix-event-reshash-for-cryptouuid.patch
-  + fix_grub_bls_cmdline.patch
-  + fix_grub_bls_entry.patch
-  + fix_loader_conf.patch
-  + fix-testcase-empty-efi-variables.patch
-  + support-ecc-srk.patch
-
--------------------------------------------------------------------
-Fri Mar  7 06:19:42 UTC 2025 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Add fix-bsc1230316-predict-sbatlevelrt-sb-off.patch to fix the
-  prediction of SbatLevelRT when Secure Boot is disabled
-  (bsc#1230316)
-- Add fix-bsc1230316-make-pcr4-hard-requirement.patch to make PCR4
-  a hard requirement for SbatLevelRT prediction (bsc#1230316)
-
--------------------------------------------------------------------
-Wed Feb 26 07:31:47 UTC 2025 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Add fix-bsc1230316-predict-sbatlevelrt.patch to predict
-  SbatLevelRT for the next boot (bsc#1230316)
-
--------------------------------------------------------------------
-Fri Feb 21 02:20:27 UTC 2025 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Update the License tag to GPL-2.0-or-later to match the license
-  declaration in the source files
-
--------------------------------------------------------------------
-Thu Dec 26 05:57:07 UTC 2024 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Add fix-event-reshash-for-cryptouuid.patch to detect the crypto
-  device with the 'cryptouuid' prefix
-
--------------------------------------------------------------------
-Mon Aug  5 06:11:52 UTC 2024 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Add support-ecc-srk.patch to support ECC SRK
-- Add fix-testcase-empty-efi-variables.patch to fix the testcase
-  playback on empty EFI variables
-
--------------------------------------------------------------------
-Mon Mar 25 20:16:53 UTC 2024 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Add fix_grub_bls_cmdline.patch to include the measurements of the
-  cmdline and the linux and initrd grub commands
-
--------------------------------------------------------------------
-Thu Mar 14 10:33:23 UTC 2024 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Add fix_grub_bls_entry.patch to measure boot entries in GRUB BLS
-
--------------------------------------------------------------------
-Mon Feb 26 15:14:37 UTC 2024 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Remove fix_efi_measure.patch
-- Add fix_efi_measure_and_shim.patch (bsc#1219807)
-
--------------------------------------------------------------------
-Tue Feb 20 18:16:53 UTC 2024 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Add fix_loader_conf.patch to measure the systemd-boot loader.conf file
-
--------------------------------------------------------------------
-Fri Jan 12 07:28:55 UTC 2024 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Add fix_efi_measure.patch to fix the measurement of EFI binaries
-
--------------------------------------------------------------------
-Fri Dec  8 07:17:35 UTC 2023 - Gary Ching-Pang Lin <glin@suse.com>
-
-- Update to 0.5.4
-  - Improve systemd-boot support
-  - Add --boot-entry for systemd-boot
-  - Manpage fixes
-  - Fix PCR index in JSON file
-  - Fix GrubPcrSnapshot parsing
-- Drop upstreamed patches: boot_entry.patch and fix_pcr_index.patch
-
--------------------------------------------------------------------
-Wed Nov 29 15:56:39 UTC 2023 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Update to 0.5.3
-  - Improve documentation
-  - Detect key format store via extension
-  - Replace --key-format and --policy-format options with a single
-    --target-platform option
-  - The json file can contain multiple predictions
-- Remove fix_rsa.patch as is already upstream
-- Add boot_entry.patch to add new parameter to point to a new systemd
-  boot entry
-- Add fix_pcr_index.patch to fix the PCR index number in the JSON file
-
--------------------------------------------------------------------
-Mon Nov 20 10:24:32 UTC 2023 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Add fix_rsa.patch to support the export in PEM format of the public
-  key
-
--------------------------------------------------------------------
-Mon Nov 20 10:16:20 UTC 2023 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- FAPI is not present until tpm2-tss >= 2.4.0. Express that in the
-  BuildRequirement
-
--------------------------------------------------------------------
-Wed Nov 15 20:54:57 UTC 2023 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Update to 0.5.2
-  - Support EV_EVENT_TAG events from the kernel (PCR9 for the cmdline
-    and the kernel)
-  - Fix cmdline measurements
-- Update to 0.5.1
-  - Measure the kernel as an EFI binary (PCR4)
-
--------------------------------------------------------------------
-Mon Nov 13 10:53:20 UTC 2023 - Alberto Planas Dominguez <aplanas@suse.com>
-
-- Update to 0.5.0
-  - Support systemd-cryptenroll JSON files
-  - Generate RSA keys in more scenarios
-  - Select RSA key size
-- Drop systemd-boot.patch (already present in upstream)
-
 -------------------------------------------------------------------
 Thu Oct 19 11:01:10 UTC 2023 - Alberto Planas Dominguez <aplanas@suse.com>
 

pcr-oracle.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package pcr-oracle
 #
-# Copyright (c) 2025 SUSE LLC
+# Copyright (c) 2023 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -18,17 +18,17 @@
 
 
 Name:           pcr-oracle
-Version:        0.5.7
+Version:        0.4.6
 Release:        0
 Summary:        Predict TPM PCR values
-License:        GPL-2.0-or-later
+License:        GPL-2.0-only
 Group:          System/Boot
-URL:            https://github.com/openSUSE/pcr-oracle
+URL:            https://github.com/okirch/pcr-oracle
 Source:         %{name}-%{version}.tar.xz
-BuildRequires:  libelf-devel
+# PATCH-FEATURE-UPSTREAM systemd-boot.patch gh#okirch/pcr-oracle#31
-BuildRequires:  libfdisk-devel
+Patch01:        systemd-boot.patch
-BuildRequires:  libopenssl-devel >= 3.0.0
+BuildRequires:  libopenssl-devel >= 0.9.8
-BuildRequires:  tpm2-0-tss-devel >= 2.4.0
+BuildRequires:  tpm2-0-tss-devel
 Requires:       libtss2-tcti-device0
 ExclusiveArch:  x86_64 aarch64 ppc64le riscv64