OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=11

opensc-0.11.6.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:38ba637a940a3ee99f5e60ceb4fef9f61d09386ac2d3aa6331f4c5b58dea0db2
-size 1077790

opensc-0.11.7.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:f3215d440e07bdf16416b5dea148933fb8b9e0b045fdfd8376b3464e342e3362
+size 1066717

opensc-code-fixes.patch

@@ -1,22 +0,0 @@
---- src/libopensc/card-entersafe.c
-+++ src/libopensc/card-entersafe.c
-@@ -913,7 +913,7 @@
- 	 return entersafe_compute_with_prkey(card,crgram,crgram_len,out,outlen);
- }
- 
--static int entersafe_init_pin_info(struct sc_pin_cmd_pin *pin, unsigned int num)
-+static void entersafe_init_pin_info(struct sc_pin_cmd_pin *pin, unsigned int num)
- {
- 	pin->encoding   = SC_PIN_ENCODING_ASCII;
- 	pin->min_length = 4;
---- src/libopensc/card-gemsafeV1.c
-+++ src/libopensc/card-gemsafeV1.c
-@@ -332,7 +332,7 @@
- 
- 	tag = sc_asn1_find_tag(ctx, p, len, 0x8C, &tlen);
- 	if (tag) {
--		r = gemsafe_setacl(card, file, tag, type == "DF" ? 1 : 0);
-+		r = gemsafe_setacl(card, file, tag, strcmp(type, "DF") ? 0 : 1);
- 		if (r < 0) {
- 			sc_debug(ctx, "unable to set ACL\n");
- 			return SC_ERROR_INTERNAL;

opensc-gpk-profile.patch

@@ -0,0 +1,11 @@
+--- src/pkcs15init/gpk.profile
++++ src/pkcs15init/gpk.profile
+@@ -74,7 +74,7 @@
+ 
+ 	        # private data objects are stored in transparent EFs.
+                 EF privdata {
+-    	            file-id	= 3300;
++    	            file-id	= 3220;
+     	            structure	= transparent;
+     	            ACL		= *=NEVER,
+ 					READ=$PIN,

opensc.changes

@@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Tue Mar 17 18:01:29 CET 2009 - sbrabec@suse.cz
+
+- Updated to version 0.11.7:
+  * hide_empty_slots now on by default? small logic change?
+  * ruToken driver was updated.
+  * openct virtual readers reduced to 2 by default.
+  * Security issue: Fix private data support. (bnc#480262,
+    CVE-2009-0368)
+    See http://en.opensuse.org/Smart_Cards/Advisories for more.
+  * Enable lock_login by default.
+  * Disable allow_soft_keygen by default.
+
 -------------------------------------------------------------------
 Wed Dec 10 12:34:56 CET 2008 - olh@suse.de
 

opensc.spec

@@ -1,7 +1,7 @@
 #
-# spec file for package opensc (Version 0.11.6)
+# spec file for package opensc (Version 0.11.7)
 #
-# Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -34,18 +34,19 @@ Obsoletes:      opensc-64bit
 %endif
 #
 Url:            http://www.opensc-project.org/opensc/
-Version:        0.11.6
-Release:        5
+Version:        0.11.7
+Release:        1
 Group:          Productivity/Security
 Summary:        OpenSC Smart Card Library
 License:        LGPL v2.1 or later
 Requires:       libopensc2 = %{version} pcsc-lite
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 Source:         %{name}-%{version}.tar.bz2
-Patch:          opensc-code-fixes.patch
 # Supress all ugly warnings related to required .so and .la files in the main package:
 Source2:        %{name}-rpmlintrc
 # and also skip-check-libtool-deps (and add these dependencies to the devel package)
+# PATCH-FIX-UPSTREAM opensc-gpk-profile.patch sbrabec@suse.cz -- Fix privdata file-id clask for GPK cards.
+Patch:          opensc-gpk-profile.patch
 
 %description
 OpenSC provides a set of libraries and utilities to access smart cards.
@@ -183,6 +184,16 @@ rm -rf $RPM_BUILD_ROOT
 %{_libdir}/pkgconfig/*.pc
 
 %changelog
+* Tue Mar 17 2009 sbrabec@suse.cz
+- Updated to version 0.11.7:
+  * hide_empty_slots now on by default? small logic change?
+  * ruToken driver was updated.
+  * openct virtual readers reduced to 2 by default.
+  * Security issue: Fix private data support. (bnc#480262,
+  CVE-2009-0368)
+  See http://en.opensuse.org/Smart_Cards/Advisories for more.
+  * Enable lock_login by default.
+  * Disable allow_soft_keygen by default.
 * Wed Dec 10 2008 olh@suse.de
 - use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade
   (bnc#437293)