From 541150e8d546700410b21a855eff6d273592768116d2249c5ca0a8e686fb3129 Mon Sep 17 00:00:00 2001
From: Marcus Meissner <meissner@suse.com>
Date: Mon, 14 Sep 2020 11:13:08 +0000
Subject: [PATCH] Accepting request 833322 from home:namtrac:branches:security

- Add 7a17a4e9127fb6df6278f19396760e7d60a5862c.patch from upstream
  to fix 32bit compilation issues.

- Update to version 1.5.0
  * hid_linux: return FIDO_OK if no devices are found.
  * hid_osx:
    + repair communication with U2F tokens, gh#166;
    + reliability fixes.
  * fido2-{assert,cred}: new options to explicitly toggle UP, UV.
  * Support for configurable report lengths.
  * New API calls:
    + fido_cbor_info_maxcredcntlst
    + fido_cbor_info_maxcredidlen
    + fido_cred_aaguid_len
    + fido_cred_aaguid_ptr
    + fido_dev_get_touch_begin
    + fido_dev_get_touch_status
  * Use COSE_ECDH_ES256 with CTAP_CBOR_CLIENT_PIN; gh#154.
  * Allow CTAP messages up to 2048 bytes; gh#171.
  * Ensure we only list USB devices by default.

OBS-URL: https://build.opensuse.org/request/show/833322
OBS-URL: https://build.opensuse.org/package/show/security/libfido2?expand=0&rev=33
---
 ...a4e9127fb6df6278f19396760e7d60a5862c.patch |  27 ++++++++++++++++++
 libfido2-1.4.0.tar.gz                         |   3 --
 libfido2-1.4.0.tar.gz.sig                     | Bin 310 -> 0 bytes
 libfido2-1.5.0.tar.gz                         |   3 ++
 libfido2-1.5.0.tar.gz.sig                     | Bin 0 -> 310 bytes
 libfido2.changes                              |  27 ++++++++++++++++++
 libfido2.spec                                 |   5 ++--
 7 files changed, 60 insertions(+), 5 deletions(-)
 create mode 100644 7a17a4e9127fb6df6278f19396760e7d60a5862c.patch
 delete mode 100644 libfido2-1.4.0.tar.gz
 delete mode 100644 libfido2-1.4.0.tar.gz.sig
 create mode 100644 libfido2-1.5.0.tar.gz
 create mode 100644 libfido2-1.5.0.tar.gz.sig

diff --git a/7a17a4e9127fb6df6278f19396760e7d60a5862c.patch b/7a17a4e9127fb6df6278f19396760e7d60a5862c.patch
new file mode 100644
index 0000000..9ba28b8
--- /dev/null
+++ b/7a17a4e9127fb6df6278f19396760e7d60a5862c.patch
@@ -0,0 +1,27 @@
+From 7a17a4e9127fb6df6278f19396760e7d60a5862c Mon Sep 17 00:00:00 2001
+From: pedro martelletto <pedro@ambientworks.net>
+Date: Wed, 9 Sep 2020 18:01:53 +0200
+Subject: [PATCH] add two casts to silence warnings on 32-bit
+
+add two casts to silence 'comparison is always false' warnings on
+32-bit platforms (gcc: -Werror=type-limits, clang:
+-Wtautological-constant-out-of-range-compare); gh#210
+---
+ src/hid_linux.c | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/src/hid_linux.c b/src/hid_linux.c
+index 9788012..c554784 100644
+--- a/src/hid_linux.c
++++ b/src/hid_linux.c
+@@ -385,8 +385,8 @@ timespec_to_ms(const struct timespec *ts, int upper_bound)
+ 	int64_t x;
+ 	int64_t y;
+ 
+-	if (ts->tv_sec < 0 || ts->tv_sec > INT64_MAX / 1000LL ||
+-	    ts->tv_nsec < 0 || ts->tv_nsec / 1000000LL > INT64_MAX)
++	if (ts->tv_sec < 0 || (uint64_t)ts->tv_sec > INT64_MAX / 1000LL ||
++	    ts->tv_nsec < 0 || (uint64_t)ts->tv_nsec / 1000000LL > INT64_MAX)
+ 		return (upper_bound);
+ 
+ 	x = ts->tv_sec * 1000LL;
diff --git a/libfido2-1.4.0.tar.gz b/libfido2-1.4.0.tar.gz
deleted file mode 100644
index 117243e..0000000
--- a/libfido2-1.4.0.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:ad921fbe7d4bb70e4a971e564cd01f341daf9b5ed5d69b3cbab94a8a811d2a6c
-size 391439
diff --git a/libfido2-1.4.0.tar.gz.sig b/libfido2-1.4.0.tar.gz.sig
deleted file mode 100644
index 532eb20e68ad20e5843d9e9aa4e4884550d6fb7f0b91b2e19d6c7c0853894ad2..0000000000000000000000000000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 310
zcmV-60m=S}0W$;u0SEvc79j+8E-A&_D(QCloTZg9yx|r<*=gAY0$!JU;{XZ?5HY;r
z7C+f(*-)$p|7est{bNOeDY8e<ek^k`I8r3xu#d^`p4u>PJ}a8XYn7{_?#44E;gxh*
zyj(R(+N4Wyr*@D>bUYWcx20K|r=n+(`5~K213Qa-<fzOjoPS`uziNm`8oRSf+geaU
z6K<xVpAUj!k7S_4KI5L-1A%0yLOc=M@;c!`z>ydx<<#(knuLUl0SvzE5y&66nFd>a
z7`nQ#k%5ZzF@gUwtu{AYVe^smP(J}`8Ow=8;=_^xS+V7o;!qn++%nY>D-{M)#2fWF
z4OZ$mX+;eeeAy-Q`-Ra?A~Fs_=dLvONF)ZRHb^zyt`UP4n!TXeA1Ir^<&@{k9Lj5T
IoZ`Kn{;0N**#H0l

diff --git a/libfido2-1.5.0.tar.gz b/libfido2-1.5.0.tar.gz
new file mode 100644
index 0000000..952c72b
--- /dev/null
+++ b/libfido2-1.5.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:5990f923c9390fe1e6a00ba5d1d1f74030e7344b855e971d9fb7223e70ff3122
+size 407259
diff --git a/libfido2-1.5.0.tar.gz.sig b/libfido2-1.5.0.tar.gz.sig
new file mode 100644
index 0000000000000000000000000000000000000000000000000000000000000000..1d359f59df628ca9ec5dc9d74e19347299a24cb791309444f68b0ac4a1f45cf8
GIT binary patch
literal 310
zcmV-60m=S}0W$;u0SEvc79j+8E-A&_D(QCloTZg9yx|r<*=gAY0$);QZvYAj5HY;r
z7C+f(*%)L90Iy4T$Hm_5h*gU~Yd-erB%Y5d7ArPcR!^voqC?NX_Hf4GN9K0NCpWn6
zfC9RJgzuoz>UCB2!nkt^iVlU$12HRgsW6n78_v!Oy3OKDHKHJ)2_#_S%y$u<GBvAA
z&^M-jeOOeQUB)@cB8%bv+y#bfwmi4Voz2DAx@=2WGawEH!0?~@RjNBS(nJw`GCU?B
zrQ=EQWz02th)sS}FbGL;o*t?;iM2`%qgGJy#}{z+T1tPPKd-59gisZ@ltFSGNfH~K
z&R5yOMRL#*@TUIf<@SKTp5rth_>y8tu8YQ^&@IyyHjFinXhng}ya%rvTiAeqR^eel
I#6DQyU)3Fvod5s;

literal 0
HcmV?d00001

diff --git a/libfido2.changes b/libfido2.changes
index 8f8c5e5..90ed755 100644
--- a/libfido2.changes
+++ b/libfido2.changes
@@ -1,3 +1,30 @@
+-------------------------------------------------------------------
+Wed Sep  9 13:33:47 UTC 2020 - Ismail Dönmez <idonmez@suse.com>
+
+- Add 7a17a4e9127fb6df6278f19396760e7d60a5862c.patch from upstream
+  to fix 32bit compilation issues.
+
+-------------------------------------------------------------------
+Tue Sep  1 11:17:49 UTC 2020 - Ismail Dönmez <idonmez@suse.com>
+
+- Update to version 1.5.0
+  * hid_linux: return FIDO_OK if no devices are found.
+  * hid_osx:
+    + repair communication with U2F tokens, gh#166;
+    + reliability fixes.
+  * fido2-{assert,cred}: new options to explicitly toggle UP, UV.
+  * Support for configurable report lengths.
+  * New API calls:
+    + fido_cbor_info_maxcredcntlst
+    + fido_cbor_info_maxcredidlen
+    + fido_cred_aaguid_len
+    + fido_cred_aaguid_ptr
+    + fido_dev_get_touch_begin
+    + fido_dev_get_touch_status
+  * Use COSE_ECDH_ES256 with CTAP_CBOR_CLIENT_PIN; gh#154.
+  * Allow CTAP messages up to 2048 bytes; gh#171.
+  * Ensure we only list USB devices by default.
+
 -------------------------------------------------------------------
 Fri Jul 24 19:33:15 UTC 2020 - Stefan Brüns <stefan.bruens@rwth-aachen.de>
 
diff --git a/libfido2.spec b/libfido2.spec
index 68a1a46..e77f210 100644
--- a/libfido2.spec
+++ b/libfido2.spec
@@ -18,13 +18,14 @@
 
 %define sover  1
 Name:           libfido2
-Version:        1.4.0
+Version:        1.5.0
 Release:        0
 Summary:        FIDO U2F and FIDO 2.0 protocols
 License:        BSD-2-Clause
 URL:            https://developers.yubico.com/
 Source0:        https://developers.yubico.com/libfido2/Releases/%{name}-%{version}.tar.gz
 Source1:        https://developers.yubico.com/libfido2/Releases/%{name}-%{version}.tar.gz.sig
+Patch1:         7a17a4e9127fb6df6278f19396760e7d60a5862c.patch
 BuildRequires:  cmake
 BuildRequires:  gcc-c++
 BuildRequires:  libopenssl-1_1-devel
@@ -73,7 +74,7 @@ BuildArch:      noarch
 This package contains the udev rules for FIDO2 compatible devices.
 
 %prep
-%setup -q
+%autosetup -p1
 
 %build
 %define __builder ninja