pool/libtpms
SHA256
4
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
51 Commits 2 Branches 0 Tags
Commit Graph

51 Commits

This Branch
This Branch
All Branches
Author SHA256 Message Date
Ana Guerrero
805704e3bb Accepting request 1228778 from security 
- Use gcc/g++-13 on Leap to fix the following failure:
  "tpm2_setprofile.c:49:24: error: initializer element is not constant" (forwarded request 1228719 from manfred-h)

OBS-URL: https://build.opensuse.org/request/show/1228778
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=21
 2024-12-08 10:36:31 +00:00
Marcus Meissner
162d0d245a - Use gcc/g++-13 on Leap to fix the following failure: 
"tpm2_setprofile.c:49:24: error: initializer element is not constant"

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=47
 2024-12-06 13:06:07 +00:00
Ana Guerrero
a3fdd4fe12 Accepting request 1228303 from security 
- Add tpm2-Add-padding-to-OBJECT-for-32bit-targets.patch
- Update to 0.10.0:
  * tpm2: Support for profiles: default-v1 & custom
  * tpm2: Add new API call TPMLIB_SetProfile to enable user to set a
    profile
  * tpm2: Extende TPMLIB_GetInfo to return profiles-related info
  * tpm2: Implemented crypto tests and restrictions on crypto related
    to FIPS-140-3; can be enabled with profiles
  * tpm2: Enable Camellia-192 and AES-192
  * tpm2: Implement TPMLIB_WasManufactured API call
  * tpm2: Fixes for issues detected by static analyzers
  * tpm2: Use OpenSSL-based KDFe implementation if possible
  * tpm2: Update to TPM 2 spec rev 183 (many changes)
  * tpm2: Better support for OpenSSL 3.x
  * tpm2: Use Carmichael function for RSA priv. exponent D (>= 2048
    bits)
  * tpm2: Fixes for CVE-2023-1017 and CVE-2023-1018
  * tpm2: Fix of SignedCompareB().
- NOTE: This fix may result in backwards compatibility issues with PCR
  policies used by TPM2_PolicyCounterTimer and TPM2_PolicyNV when
  upgrading from v0.9 to v0.10. (forwarded request 1228299 from aplanas)

OBS-URL: https://build.opensuse.org/request/show/1228303
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=20
 2024-12-05 16:05:18 +00:00
Marcus Meissner
5aa17fdce9 - Add tpm2-Add-padding-to-OBJECT-for-32bit-targets.patch 
- Update to 0.10.0:
  * tpm2: Support for profiles: default-v1 & custom
  * tpm2: Add new API call TPMLIB_SetProfile to enable user to set a
    profile
  * tpm2: Extende TPMLIB_GetInfo to return profiles-related info
  * tpm2: Implemented crypto tests and restrictions on crypto related
    to FIPS-140-3; can be enabled with profiles
  * tpm2: Enable Camellia-192 and AES-192
  * tpm2: Implement TPMLIB_WasManufactured API call
  * tpm2: Fixes for issues detected by static analyzers
  * tpm2: Use OpenSSL-based KDFe implementation if possible
  * tpm2: Update to TPM 2 spec rev 183 (many changes)
  * tpm2: Better support for OpenSSL 3.x
  * tpm2: Use Carmichael function for RSA priv. exponent D (>= 2048
    bits)
  * tpm2: Fixes for CVE-2023-1017 and CVE-2023-1018
  * tpm2: Fix of SignedCompareB().
- NOTE: This fix may result in backwards compatibility issues with PCR
  policies used by TPM2_PolicyCounterTimer and TPM2_PolicyNV when
  upgrading from v0.9 to v0.10.

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=45
 2024-12-04 12:48:14 +00:00
Marcus Meissner
0e8ef6b37e revert 
0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=44
 2024-01-09 07:34:45 +00:00
Marcus Meissner
73c3336a5a Accepting request 1137544 from home:msmeissn:branches:security 
removed 0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  removed 0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  removed 0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch

OBS-URL: https://build.opensuse.org/request/show/1137544
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=43
 2024-01-08 11:59:47 +00:00
Dominique Leuenberger
9be3928e74 Accepting request 1135332 from security 
- 0001-tpm2-Check-size-of-buffer-before-accessing-it-CVE-20.patch: upstreamed
- Used in SLE:
  0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch (forwarded request 1134474 from msmeissn)

OBS-URL: https://build.opensuse.org/request/show/1135332
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=19
 2024-01-03 11:27:23 +00:00
Marcus Meissner
b6b06fac5f Accepting request 1134474 from home:msmeissn:branches:security 
- 0001-tpm2-Check-size-of-buffer-before-accessing-it-CVE-20.patch: upstreamed
- Used in SLE:
  0001-tpm2-Reset-TPM2B-buffer-sizes-after-test-fails-for-v.patch
  0002-tpm2-Add-maxSize-parameter-to-TPM2B_Marshal-for-sani.patch
  0003-tpm2-Restore-original-value-if-unmarsalled-value-was.patch

OBS-URL: https://build.opensuse.org/request/show/1134474
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=41
 2023-12-27 15:05:42 +00:00
Dominique Leuenberger
f1228b649f Accepting request 1069859 from security 
- Update to 0.9.6:
  * CVE-2023-1018: tpm2: Fixed out of bounds read in CryptParameterDecryption (bsc#1206023)
  * CVE-2023-1017: tpm2: Fixed out of bounds write in CryptParameterDecryption (bsc#1206022)

OBS-URL: https://build.opensuse.org/request/show/1069859
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=18
 2023-03-08 13:51:27 +00:00
Marcus Meissner
7792fda5b1 * CVE-2023-1018: tpm2: Fixed out of bounds read in CryptParameterDecryption (bsc#1206023) 
* CVE-2023-1017: tpm2: Fixed out of bounds write in CryptParameterDecryption (bsc#1206022)

OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=39
 2023-03-07 07:54:42 +00:00
Marcus Meissner
4031a0c9b9 Accepting request 1069708 from home:aplanas:branches:security 
- Update to 0.9.6:
  * tpm2: Check size of buffer before accessing it (CVE-2023-1017 & CVE-2023-1018)

OBS-URL: https://build.opensuse.org/request/show/1069708
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=38
 2023-03-07 07:49:19 +00:00
Dominique Leuenberger
ef9306888e Accepting request 1040190 from security 
- update to 0.9.5:
  * tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
  * tpm2: Fix a potential overflow expression (coverity)
  * tpm2: Fix size check in CryptSecretDecrypt
  * tpm: #undef printf in case it is #define'd (OSS-Fuzz)
  * tpm2: Check return code of BN_div()
  * tpm2: Initialize variables due to gcc complaint (s390x, false positive)
  * tpm12: Initialize variables due to gcc complaint (s390x, false positive)
  * build-sys: Fix configure script to support _FORTIFY_SOURCE=3 (forwarded request 1039771 from dirkmueller)

OBS-URL: https://build.opensuse.org/request/show/1040190
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=17
 2022-12-07 16:33:34 +00:00
Marcus Meissner
d2855e28e8 Accepting request 1039771 from home:dirkmueller:Factory 
- update to 0.9.5:
  * tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
  * tpm2: Fix a potential overflow expression (coverity)
  * tpm2: Fix size check in CryptSecretDecrypt
  * tpm: #undef printf in case it is #define'd (OSS-Fuzz)
  * tpm2: Check return code of BN_div()
  * tpm2: Initialize variables due to gcc complaint (s390x, false positive)
  * tpm12: Initialize variables due to gcc complaint (s390x, false positive)
  * build-sys: Fix configure script to support _FORTIFY_SOURCE=3

OBS-URL: https://build.opensuse.org/request/show/1039771
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=36
 2022-12-05 09:26:56 +00:00
Dominique Leuenberger
4c20ad26e6 Accepting request 1038201 from security 
- fix build for ppc64le: use -Wl,--no-as-needed in check-local
  [bsc#1204556] (forwarded request 1038171 from pgajdos)

OBS-URL: https://build.opensuse.org/request/show/1038201
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=16
 2022-11-26 17:45:09 +00:00
Marcus Meissner
f8ab61146f Accepting request 1038171 from home:pgajdos 
- fix build for ppc64le: use -Wl,--no-as-needed in check-local
  [bsc#1204556]

OBS-URL: https://build.opensuse.org/request/show/1038171
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=34
 2022-11-25 12:36:24 +00:00
Dominique Leuenberger
65e8804926 Accepting request 1031153 from security 
- Fixed CVE-2021-3623 (bsc#1187767) (forwarded request 1030434 from msmeissn)

OBS-URL: https://build.opensuse.org/request/show/1031153
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=15
 2022-10-26 10:31:31 +00:00
Marcus Meissner
e4822e6c4b Accepting request 1030434 from home:msmeissn:branches:security 
- Fixed CVE-2021-3623 (bsc#1187767)

OBS-URL: https://build.opensuse.org/request/show/1030434
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=32
 2022-10-25 13:45:00 +00:00
Dominique Leuenberger
910f45be3c Accepting request 968367 from security 
- update to 0.9.3:
  * build-sys: Add probing for -fstack-protector
  * tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size
  * (OSSL 3)
  * tpm2: When writing state initialize s_ContextSlotMask if not set (forwarded request 968240 from dirkmueller)

OBS-URL: https://build.opensuse.org/request/show/968367
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=14
 2022-04-13 19:03:59 +00:00
Marcus Meissner
a189fe5a91 Accepting request 968240 from home:dirkmueller:Factory 
- update to 0.9.3:
  * build-sys: Add probing for -fstack-protector
  * tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size
  * (OSSL 3)
  * tpm2: When writing state initialize s_ContextSlotMask if not set

OBS-URL: https://build.opensuse.org/request/show/968240
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=30
 2022-04-11 07:24:27 +00:00
Dominique Leuenberger
9ce0154138 Accepting request 939041 from security 
OBS-URL: https://build.opensuse.org/request/show/939041
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=13
 2021-12-12 20:27:10 +00:00
Marcus Meissner
3226d3caae Accepting request 938273 from home:susnux:branches:security 
Update to version 0.9.1

OBS-URL: https://build.opensuse.org/request/show/938273
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=29
 2021-12-10 09:13:17 +00:00
Dominique Leuenberger
70f326e461 Accepting request 917964 from security 
OBS-URL: https://build.opensuse.org/request/show/917964
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=12
 2021-09-13 14:24:29 +00:00
Marcus Meissner
5e1c966304 Accepting request 915306 from home:pgajdos 
- security update
- added patches
  fix CVE-2021-3746 [bsc#1189935], out-of-bounds access via specially crafted TPM 2 command packets
  + libtpms-CVE-2021-3746.patch

OBS-URL: https://build.opensuse.org/request/show/915306
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=28
 2021-09-10 13:22:37 +00:00
Richard Brown
b978166866 Accepting request 910800 from security 
OBS-URL: https://build.opensuse.org/request/show/910800
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=11
 2021-08-12 07:01:02 +00:00
Marcus Meissner
83310af55f Accepting request 910606 from home:gmbr3:Active 
- Update to version 0.8.4:
  * Reset too large size indicators in TPM2B to avoid access
    beyond buffer
  * Restore original value in buffer if unmarshalled one was
    illegal

OBS-URL: https://build.opensuse.org/request/show/910606
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=27
 2021-08-09 08:47:20 +00:00
Dominique Leuenberger
eb5492e628 Accepting request 886707 from security 
- Update to version 0.8.2
  * tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do
    not use (bsc#1184939 CVE-2021-3505)
  * tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX
    (bsc#1184939 CVE-2021-3505) (forwarded request 886589 from gary_lin)

OBS-URL: https://build.opensuse.org/request/show/886707
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=10
 2021-04-23 15:49:36 +00:00
Marcus Meissner
3b46b43aa0 Accepting request 886589 from home:gary_lin:branches:security 
- Update to version 0.8.2
  * tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do
    not use (bsc#1184939 CVE-2021-3505)
  * tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX
    (bsc#1184939 CVE-2021-3505)

OBS-URL: https://build.opensuse.org/request/show/886589
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=25
 2021-04-19 14:15:21 +00:00
Dominique Leuenberger
7581f3cf18 Accepting request 880046 from security 
- Update to version 0.7.7
  * CryptSym: fix AES output IV (bsc#1183729, CVE-2021-3446)
  * tpm2: Fix public key context save due to ANY_OBJECT_Marshal usage
  * tpm2: Address some Coverity issues (false positives)
  * tpm1.2: Backported ASAN/UBSAN related fixes
  * tpm2: Return properly sized array for b parameter for NIST P521
    (HLK)
  * tpm2: Addressed issues detected by UBSAN
  * tpm2: Addressed issues detected by cppcheck (false positives) (forwarded request 880005 from gary_lin)

OBS-URL: https://build.opensuse.org/request/show/880046
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=9
 2021-03-24 15:09:49 +00:00
Marcus Meissner
15458222e5 Accepting request 880005 from home:gary_lin:branches:security 
- Update to version 0.7.7
  * CryptSym: fix AES output IV (bsc#1183729, CVE-2021-3446)
  * tpm2: Fix public key context save due to ANY_OBJECT_Marshal usage
  * tpm2: Address some Coverity issues (false positives)
  * tpm1.2: Backported ASAN/UBSAN related fixes
  * tpm2: Return properly sized array for b parameter for NIST P521
    (HLK)
  * tpm2: Addressed issues detected by UBSAN
  * tpm2: Addressed issues detected by cppcheck (false positives)

OBS-URL: https://build.opensuse.org/request/show/880005
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=23
 2021-03-19 07:40:53 +00:00
Dominique Leuenberger
804cd47bf5 Accepting request 850101 from security 
- Update to version 0.7.4
  * Addressed potential constant-time related issues in TPM 1.2 and
    TPM 2 code
    TPM 1.2: RSA decryption
    TPM 2: EcSchnorr and EcSM2 signatures; Ecsda is handled by OpenSSL
  * Fixed some compilation issues (forwarded request 850056 from gary_lin)

OBS-URL: https://build.opensuse.org/request/show/850101
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=8
 2020-11-23 14:48:57 +00:00
Marcus Meissner
f53e2de3f9 Accepting request 850056 from home:gary_lin:branches:security 
- Update to version 0.7.4
  * Addressed potential constant-time related issues in TPM 1.2 and
    TPM 2 code
    TPM 1.2: RSA decryption
    TPM 2: EcSchnorr and EcSM2 signatures; Ecsda is handled by OpenSSL
  * Fixed some compilation issues

OBS-URL: https://build.opensuse.org/request/show/850056
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=21
 2020-11-23 08:03:48 +00:00
Dominique Leuenberger
87351a616e Accepting request 822328 from security 
Update to version 0.7.3. Other minor changes to the spec file were done automatically by the format spec service. (forwarded request 822315 from kailiu)

OBS-URL: https://build.opensuse.org/request/show/822328
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=7
 2020-07-24 08:05:23 +00:00
Marcus Meissner
6199663c69 Accepting request 822315 from home:kailiu:branches:security 
Update to version 0.7.3. Other minor changes to the spec file were done automatically by the format spec service.

OBS-URL: https://build.opensuse.org/request/show/822315
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=19
 2020-07-23 08:15:48 +00:00
Dominique Leuenberger
608bd69fa6 Accepting request 729455 from security 
OBS-URL: https://build.opensuse.org/request/show/729455
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=6
 2019-09-09 21:58:15 +00:00
Marcus Meissner
e94ef42ba6 Accepting request 728463 from home:gary_lin:branches:security 
Update to version 0.7.0

OBS-URL: https://build.opensuse.org/request/show/728463
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=17
 2019-09-09 12:39:29 +00:00
Dominique Leuenberger
ee8dbd91b4 Accepting request 674674 from security 
OBS-URL: https://build.opensuse.org/request/show/674674
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=5
 2019-02-27 16:27:50 +00:00
Marcus Meissner
fed6c438fc Accepting request 669009 from home:gary_lin:branches:security 
Update to version 0.6.0 and enable TPM2 support

OBS-URL: https://build.opensuse.org/request/show/669009
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=15
 2019-02-13 17:01:49 +00:00
Dominique Leuenberger
38123043f8 Accepting request 568220 from security 
OBS-URL: https://build.opensuse.org/request/show/568220
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=4
 2018-01-24 14:29:18 +00:00
Marcus Meissner
cf3e340b01 Accepting request 566607 from home:vitezslav_cizek:branches:security 
- Update to version 0.6.0-dev1
  * no upstream changelog
  * fix build with openssl 1.1 (bsc#1074801)
- fix rpm group

OBS-URL: https://build.opensuse.org/request/show/566607
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=13
 2018-01-22 16:25:33 +00:00
Dominique Leuenberger
5884b64c2b Accepting request 292213 from security 
- Update to version 0.5.2
  * No entry for this release
- Update project home and download Urls
- Add autoconf, automake and libtool build require; the tarball
  comes from git and configure script has to be generated

OBS-URL: https://build.opensuse.org/request/show/292213
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=3
 2015-03-23 11:18:58 +00:00
Marcus Meissner
b81b72912b Accepting request 292200 from home:posophe:branches:security 
update

OBS-URL: https://build.opensuse.org/request/show/292200
OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=11
 2015-03-21 12:07:02 +00:00
Stephan Kulow
f957d5de00 Accepting request 214259 from security 
add for factory

OBS-URL: https://build.opensuse.org/request/show/214259
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libtpms?expand=0&rev=1
 2014-01-22 22:19:36 +00:00
Marcus Meissner
d0dd6f52d9 OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=9 2014-01-17 15:09:10 +00:00
Marcus Meissner
b62c429735 OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=8 2014-01-15 10:11:13 +00:00
Marcus Meissner
155b363f0c OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=7 2014-01-15 10:02:46 +00:00
Marcus Meissner
6b8fa6279c OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=6 2014-01-15 09:46:21 +00:00
Marcus Meissner
1f82814f06 OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=5 2014-01-15 09:46:04 +00:00
Marcus Meissner
f9e980b5eb OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=4 2014-01-15 09:42:37 +00:00
Marcus Meissner
0cd82dc88b OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=3 2014-01-15 08:14:16 +00:00
Marcus Meissner
9e96f652d5 OBS-URL: https://build.opensuse.org/package/show/security/libtpms?expand=0&rev=2 2014-01-14 14:53:57 +00:00