From a82fa2975ef6e84e9011645a60d31d27e2138e7d63b7fac14fbfe4212e577653 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Adrian=20Schr=C3=B6ter?= Date: Sat, 4 May 2024 00:32:13 +0200 Subject: [PATCH] Sync from SUSE:SLFO:Main secvarctl revision 26e3a71ee152f65c289d1940d38c40f5 --- .gitattributes | 23 ++++++++++ _service | 16 +++++++ _servicedata | 4 ++ secvarctl-1.0.0+git0.73d91fa.tar.gz | 3 ++ secvarctl.changes | 65 +++++++++++++++++++++++++++++ secvarctl.spec | 49 ++++++++++++++++++++++ 6 files changed, 160 insertions(+) create mode 100644 .gitattributes create mode 100644 _service create mode 100644 _servicedata create mode 100644 secvarctl-1.0.0+git0.73d91fa.tar.gz create mode 100644 secvarctl.changes create mode 100644 secvarctl.spec diff --git a/.gitattributes b/.gitattributes new file mode 100644 index 0000000..9b03811 --- /dev/null +++ b/.gitattributes @@ -0,0 +1,23 @@ +## Default LFS +*.7z filter=lfs diff=lfs merge=lfs -text +*.bsp filter=lfs diff=lfs merge=lfs -text +*.bz2 filter=lfs diff=lfs merge=lfs -text +*.gem filter=lfs diff=lfs merge=lfs -text +*.gz filter=lfs diff=lfs merge=lfs -text +*.jar filter=lfs diff=lfs merge=lfs -text +*.lz filter=lfs diff=lfs merge=lfs -text +*.lzma filter=lfs diff=lfs merge=lfs -text +*.obscpio filter=lfs diff=lfs merge=lfs -text +*.oxt filter=lfs diff=lfs merge=lfs -text +*.pdf filter=lfs diff=lfs merge=lfs -text +*.png filter=lfs diff=lfs merge=lfs -text +*.rpm filter=lfs diff=lfs merge=lfs -text +*.tbz filter=lfs diff=lfs merge=lfs -text +*.tbz2 filter=lfs diff=lfs merge=lfs -text +*.tgz filter=lfs diff=lfs merge=lfs -text +*.ttf filter=lfs diff=lfs merge=lfs -text +*.txz filter=lfs diff=lfs merge=lfs -text +*.whl filter=lfs diff=lfs merge=lfs -text +*.xz filter=lfs diff=lfs merge=lfs -text +*.zip filter=lfs diff=lfs merge=lfs -text +*.zst filter=lfs diff=lfs merge=lfs -text diff --git a/_service b/_service new file mode 100644 index 0000000..612a15f --- /dev/null +++ b/_service @@ -0,0 +1,16 @@ + + + git + https://github.com/open-power/secvarctl.git + main + v(.*) + \1 + @PARENT_TAG@+git@TAG_OFFSET@.%h + enable + + + *.tar + gz + + + diff --git a/_servicedata b/_servicedata new file mode 100644 index 0000000..f81f36a --- /dev/null +++ b/_servicedata @@ -0,0 +1,4 @@ + + + https://github.com/open-power/secvarctl.git + 73d91faeca1677218d034b117fb6bd3603319fb8 \ No newline at end of file diff --git a/secvarctl-1.0.0+git0.73d91fa.tar.gz b/secvarctl-1.0.0+git0.73d91fa.tar.gz new file mode 100644 index 0000000..3c14650 --- /dev/null +++ b/secvarctl-1.0.0+git0.73d91fa.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:7f3a76b4015c17460c4638b8718cd23df8c298a52555f08e6f04d6d7d2ac2d4f +size 375073 diff --git a/secvarctl.changes b/secvarctl.changes new file mode 100644 index 0000000..f0f803b --- /dev/null +++ b/secvarctl.changes @@ -0,0 +1,65 @@ +------------------------------------------------------------------- +Wed Feb 14 09:46:08 UTC 2024 - msuchanek@suse.com + +- Update to version v1.0.0 (jsc#PED-5449): + * guest/generate: fix multiple input/output format specifier argument parsing + * guest/read: fix segfault in read -c caused by empty variable name + * guest/verify: only print default PK in get_current_esl_data if verbose is set + +------------------------------------------------------------------- +Thu Dec 14 16:03:34 UTC 2023 - msuchanek@suse.com + +- Update to version 1.0.0~rc3: + * Guest/verify: fix misbehaviour of verify and write with -p + * Guest/generate: trustedcadb variable allow only CA certificates + * Guest/Verify: -w option allowed when use -u with -p + * guest/generate: fix potential null reference in pk/append special case + +------------------------------------------------------------------- +Fri Oct 13 14:04:07 UTC 2023 - msuchanek@suse.com + +- Update to version 1.0.0~rc2+git1.1f96bad: + * guest/read: return early if next esd cannot be parsed + * guest: Remove x509 SHA GUID functions and macros + * guest/generate: change --append option to be a boolean based on presence + * guest/read: allow paths with or without a trailing slash + * Makefile: Fix installation after source reorganization +- Remove upstreamed secvarctl-install.patch + +------------------------------------------------------------------- +Mon Oct 02 13:56:10 UTC 2023 - msuchanek@suse.com + +- Update to version 1.0.0~rc1+git0.a180a56: + * guest/util: Add crypto id to signature list + * secvarctl: guest secure boot variable backend + * secvarctl: reorganised host secure boot variable backend +- Fix installation: secvarctl-install.patch + +------------------------------------------------------------------- +Tue Nov 22 20:10:25 UTC 2022 - msuchanek@suse.com + +- Update to version 0.3+git13.76db7a7: + * Update crypto calling functions to expect success return codes + * crypto-gnutls.c: Unify return codes + * crypto-mbedtls.c: Unify error codes + * crypto-openssl.c: Unify return codes + * crypto: Add support for GnuTLS + * crypto: Fix openssl implementation of crypto_x509_is_RSA + * crypto: Enable compatability with OpenSSL V3 + * crypto: Catch possible uninitialized return code + +------------------------------------------------------------------- +Thu Sep 23 08:22:33 UTC 2021 - Michal Suchanek + +- Version 0.2+git31 released as 0.3 (jsc#SLE-18126). + +------------------------------------------------------------------- +Mon Sep 20 17:26:18 UTC 2021 - msuchanek@suse.com + +- Update to version 0.2+git31~26ea751: +- Remove workaround for wrong man page location - fixed upstream. + +------------------------------------------------------------------- +Wed Jun 16 11:09:59 UTC 2021 - Michal Suchanek + +- Initial packaging (jsc#SLE-18126). diff --git a/secvarctl.spec b/secvarctl.spec new file mode 100644 index 0000000..7cb0303 --- /dev/null +++ b/secvarctl.spec @@ -0,0 +1,49 @@ +# +# spec file for package secvarctl +# +# Copyright (c) 2024 SUSE LLC +# +# All modifications and additions to the file contributed by third parties +# remain the property of their copyright owners, unless otherwise agreed +# upon. The license for this file, and modifications and additions to the +# file, is the same license as for the pristine package itself (unless the +# license for the pristine package is not an Open Source License, in which +# case the license is the MIT License). An "Open Source License" is a +# license that conforms to the Open Source Definition (Version 1.9) +# published by the Open Source Initiative. + +# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# + + +%global make_parms OPENSSL=1 DEBUG=1 +Name: secvarctl +Version: 1.0.0+git0.73d91fa +Release: 0 +Summary: Suite of tools to manipulate and generate Secure Boot variables on POWER +License: Apache-2.0 +URL: https://github.com/open-power/secvarctl +Source: %{name}-%{version}.tar.gz +BuildRequires: openssl-devel +ExclusiveArch: ppc64 ppc64le + +%description +The purpose of this tool is to simplify and automate the process of reading and writing secure boot keys. +secvarctl allows the user to communicate, via terminal commands, with the keys efficiently. + +%prep +%autosetup + +%build +%make_build %{make_parms} + +%install +%make_install %{make_parms} + +%files +%license LICENSE +%doc README.md +%{_bindir}/secvarctl +%{_mandir}/man1/secvarctl.1%{?ext_man} + +%changelog