pool/opensc
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
88 Commits 1 Branch 0 Tags 2.7 MiB
factory
Commit Graph

55 Commits

Author SHA256 Message Date
Wolfgang Rosenauer
6231a9f6d3 Accepting request 1165704 from home:mnhauke 
- Update to verion 0.25.1
  General improvements
  * Add missing file to dist tarball to build documentation.
  minidriver
  * Fix RSA decryption with PKCS#1 v1.5 padding.
  * Fix crash when app is not set.

OBS-URL: https://build.opensuse.org/request/show/1165704
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=86
 2024-04-08 12:09:02 +00:00
Otto Hollmann
aa96531e8a Accepting request 1157766 from home:mnhauke 
- Build with support for libeac (OpenPACE)

OBS-URL: https://build.opensuse.org/request/show/1157766
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=84
 2024-03-14 08:20:15 +00:00
Otto Hollmann
f1181f62b8 Accepting request 1156722 from home:mnhauke 
- Update to version 0.25.0
  Security
  * CVE-2023-5992: Fix Side-channel leaks while stripping
    encryption PKCS#1.5 padding in OpenSC.
  * CVE-2024-1454: Fix Potential use-after-free in AuthentIC driver
    during card enrollment in pkcs15init.
  General improvements
  * Remove support for old card drivers Akis, GPK, Incrypto34 and
    Westcos, disable Cyberflex driver.
  * Fix 64b to 32b conversions.
  * Improvements for the p11test.
  * Fix reader initialization without SCardControl.
  * Make RSA PKCS#1 v1.5 depadding constant-time.
  * Add option for disabling PKCS#1 v1.5 depadding (type 01 and 02)
    on the card.
  * Fixed various issues reported by OSS-Fuzz and Coverity in
    drivers, PKCS#11 and PKCS#15 layer.
- Add patch:
  * opensc-docbook-xsl-fix.patch
- Drop not longer needed patches:
  * CVE-2024-1454.patch
- Introduce subpackage for bash-completion

OBS-URL: https://build.opensuse.org/request/show/1156722
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=82
 2024-03-11 09:16:52 +00:00
Otto Hollmann
25a0c61513 Accepting request 1152250 from home:dimstar:Factory 
bnc => bsc... it's been many moons that SUSE was not part of
Novell anymore and we are not using Novell's bugzilla instance

  Fix for CVE-2024-1454 / bsc#1219868.

OBS-URL: https://build.opensuse.org/request/show/1152250
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=80
 2024-02-29 10:19:44 +00:00
Wolfgang Rosenauer
25dd5a5f8a Accepting request 1150515 from home:mschreiner:branches:security:chipcard 
- Add CVE-2024-1454.patch.
  Fix for CVE-2024-1454 / bnc#1219868.

OBS-URL: https://build.opensuse.org/request/show/1150515
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=79
 2024-02-25 21:28:25 +00:00
Otto Hollmann
15fa3b41d1 Accepting request 1132875 from home:ohollmann:branches:security:chipcard 
- Update to OpenSC 0.24.0:
  * Security
    - CVE-2023-40660: Fix Potential PIN bypass
      (#2806, frankmorgner/OpenSCToken#50, #2807)
    - CVE-2023-40661: Important dynamic analyzers reports
    - CVE-2023-4535: Out-of-bounds read in MyEID driver handling encryption
      using symmetric keys (f1993dc)
  * General improvements
    - Fix compatibility of EAC with OpenSSL 3.0 (#2674)
    - Enable use_file_cache by default (#2501)
    - Use custom libctx with OpenSSL >= 3.0 (#2712, #2715)
    - Fix record-based files (#2604)
    - Fix several race conditions (#2735)
    - Run tests under Valgrind (#2756)
    - Test signing of data bigger than 512 bytes (#2789)
    - Update to OpenPACE 1.1.3 (#2796)
    - Implement logout for some of the card drivers (#2807)
    - Fix wrong popup position of opensc-notify (#2901)
    - Fixed various issues reported by OSS-Fuzz and Coverity regarding card
      drivers, PKCS#11 and PKCS#15 init
  * PKCS#11
    - Check card presence state in C_GetSessionInfo (#2740)
    - Remove onepin-opensc-pkcs11 module (#2681)
    - Do not use colons in the token info label (#2760)
    - Present profile objects in all slots with the CKA_TOKEN attribute to
      resolve issues with NSS (#2928, #2924)
    - Use secure memory for PUK (#2906)
    - Don't logout to preserve concurrent access from different processes
      (#2907)
    - Add more examples to manual page (#2936)

OBS-URL: https://build.opensuse.org/request/show/1132875
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=77
 2023-12-13 13:06:49 +00:00
Otto Hollmann
58d3215b4a Accepting request 1116477 from home:ohollmann:branches:security:chipcard 
- Security Fix: [CVE-2023-40661, bsc#1215761]
  * opensc: multiple memory issues with pkcs15-init (enrollment tool)
  * Add patches:
    - opensc-CVE-2023-40661-1of12.patch
    - opensc-CVE-2023-40661-2of12.patch
    - opensc-CVE-2023-40661-3of12.patch
    - opensc-CVE-2023-40661-4of12.patch
    - opensc-CVE-2023-40661-5of12.patch
    - opensc-CVE-2023-40661-6of12.patch
    - opensc-CVE-2023-40661-7of12.patch
    - opensc-CVE-2023-40661-8of12.patch
    - opensc-CVE-2023-40661-9of12.patch
    - opensc-CVE-2023-40661-10of12.patch
    - opensc-CVE-2023-40661-11of12.patch
    - opensc-CVE-2023-40661-12of12.patch

- Security Fix: [CVE-2023-4535, bsc#1215763]
  * Add patches:
    - opensc-CVE-2023-4535.patch
    - opensc-NULL_pointer_fix.patch

- Security Fix: [CVE-2023-40660, bsc#1215762]
  * opensc: PIN bypass when card tracks its own login state
  * Add patches:
    - opensc-CVE-2023-40660-1of2.patch
    - opensc-CVE-2023-40660-2of2.patch

OBS-URL: https://build.opensuse.org/request/show/1116477
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=75
 2023-10-10 12:49:01 +00:00
Otto Hollmann
0086e3b481 Accepting request 1090292 from home:ohollmann:branches:security:chipcard 
- Security Fix: [CVE-2023-2977, bsc#1211894]
  * opensc: out of bounds read in pkcs15 cardos_have_verifyrc_package()
  * Add opensc-CVE-2023-2977.patch

OBS-URL: https://build.opensuse.org/request/show/1090292
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=73
 2023-06-01 13:53:40 +00:00
Jason Sikes
f0bc901336 Accepting request 1038952 from home:stroeder:iam 
Update to OpenSC 0.23.0

OBS-URL: https://build.opensuse.org/request/show/1038952
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=71
 2022-11-30 19:17:02 +00:00
Jason Sikes
0304fc1dad Accepting request 932929 from home:pgajdos 
* CVE-2019-19480: improper free operation in sc_pkcs15_decode_prkdf_entry (boo#1158307)
  * CVE-2019-20792: double free in coolkey_free_private_dat (bsc#1170809)

OBS-URL: https://build.opensuse.org/request/show/932929
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=70
 2021-11-22 09:22:08 +00:00
Jason Sikes
49f73bbe48 Accepting request 932428 from home:pgajdos 
Add th tracker bug into changelog, align with 15 codestream.

OBS-URL: https://build.opensuse.org/request/show/932428
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=69
 2021-11-22 04:11:06 +00:00
Jason Sikes
b3c4988348 Accepting request 928634 from home:sbrabec:branches:security:chipcard 
Add refereces to security issues fixed in 0.22.0.

OBS-URL: https://build.opensuse.org/request/show/928634
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=68
 2021-11-08 09:49:15 +00:00
Jason Sikes
7615a78b4c Accepting request 923351 from home:danidoni:branches:security:chipcard 
- Update to OpenSC 0.22.0:
  * Removed changes in opensc-gcc11.patch already present in upstream. 
    - See e549e9c62e
  * Removed some false positives from the openrc-rpmlintrc file.
  * Use standard paths for file cache on Linux (#2148) and OSX (#2214)
  * Various issues of memory/buffer handling in legacy drivers mostly reported by oss-fuzz and coverity (tcos, oberthur, isoapplet, iasecc, westcos, gpk, flex, dnie, mcrd, authentic, belpic)
  * Add threading test to `pkcs11-tool` (#2067)
  * Add support to generate generic secret keys (#2140)
  * `opensc-explorer`: Print information about LCS (Life cycle status byte) (#2195)
  * Add support for Apple's arm64 (M1) binaries, removed TokenD. A seperate installer with TokenD (and without arm64 binaries) will be available (#2179).
  * Support for gcc11 and its new strict aliasing rules (#2241, #2260)
  * Initial support for building with OpenSSL 3.0 (#2343)
  * pkcs15-tool: Write data objects in binary mode (#2324)
  * Avoid limited size of log messages (#2352)
  * Support for ECDSA verification (#2211)
  * Support for ECDSA with different SHA hashes (#2190)
  * Prevent issues in p11-kit by not returning unexpected return codes (#2207)
  * Add support for PKCS#11 3.0: The new interfaces, profile objects and functions (#2096, #2293)
  * Standardize the version 2 on 2.20 in the code (#2096)
  * Fix CKA_MODIFIABLE and CKA_EXTRACTABLE  (#2176)
  * Copy arguments of C_Initialize (#2350)
  * Fix RSA-PSS signing (#2234)
  * Fix DO deletion (#2215)
  * Add support for (X)EdDSA keys (#1960)
  * Add support for applet version 3 and fix RSA-PSS mechanisms (#2205)
  * Add support for applet version 4 (#2332)
  * New configuration option for opensc.conf to disable pkcs1_padding (#2193)
  * Add support for ECDSA with different hashes (#2190)
  * Enable more mechanisms (#2178)
  * Fixed asking for a user pin when formatting a card (#1737)
  * Added support for French CPx Healthcare cards (#2217)
  * Added ATR for new CardOS 5.4 version (#2296)

OBS-URL: https://build.opensuse.org/request/show/923351
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=67
 2021-10-06 00:01:20 +00:00
Jason Sikes
6f06492cfe Accepting request 902649 from home:predivan:branches:security:chipcard 
- Fix build on GCC11
    * Add opensc-gcc11.patch from Fedora 
    (https://github.com/OpenSC/OpenSC/pull/2241/)

OBS-URL: https://build.opensuse.org/request/show/902649
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=66
 2021-06-27 22:50:05 +00:00
Wolfgang Rosenauer
e3196864c3 Accepting request 878662 from home:dirkmueller:Factory 
- move licenses to licensedir

OBS-URL: https://build.opensuse.org/request/show/878662
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=65
 2021-06-09 05:59:07 +00:00
Jason Sikes
ca18dc3554 Accepting request 851393 from home:AndreasStieger:branches:security:chipcard 
- OpenSC 0.21.0:
* CVE-2020-26571 boo#1177380
* CVE-2020-26572 boo#1177378
* CVE-2020-26570 boo#1177364
* CardOS 5.x support boo#1179291
* CVE-2019-6502 boo#1122756
* CVE-2019-15946 boo#1149747
* CVE-2019-15945 boo#1149746
* CVE-2019-19479 boo#1158256
* CVE-2019-19480 boo#1158307

OBS-URL: https://build.opensuse.org/request/show/851393
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=63
 2020-12-09 02:48:13 +00:00
Jason Sikes
e06d1bbcb8 - added opensc-0.19.0-piv_card_matching.patch 
* Improve Card Matching for Dual CAC/PIV and PIVKEY cards.
  * sourced from https://github.com/OpenSC/OpenSC/pull/1549

OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=61
 2019-08-18 03:34:29 +00:00
Stanislav Brabec
e53426025b Accepting request 719737 from home:jsikes:branches:security:chipcard 
A few fixes for opensc. Enjoy!

OBS-URL: https://build.opensuse.org/request/show/719737
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=59
 2019-08-01 17:55:43 +00:00
Jason Sikes
93272ea1af Accepting request 718027 from home:bnavigator:branches:security:chipcard 
- add explicit BuildRequires: zlib-devel

OBS-URL: https://build.opensuse.org/request/show/718027
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=57
 2019-07-25 11:14:54 +00:00
Stanislav Brabec
ff4ec9e2c8 Accepting request 635547 from home:kbabioch:branches:security:chipcard 
- Update to version 0.19.0
  * Fixed multiple security problems (out of bound writes/reads):
    * CVE-2018-16391 (bsc#1106998)
    * CVE-2018-16392 (bsc#1106999)
    * CVE-2018-16393 (bsc#1108318)
    * CVE-2018-16418 (bsc#1107039)
    * CVE-2018-16419 (bsc#1107107)
    * CVE-2018-16420 (bsc#1107097)
    * CVE-2018-16421 (bsc#1107049)
    * CVE-2018-16422 (bsc#1107038)
    * CVE-2018-16423 (bsc#1107037)
    * CVE-2018-16424 (bsc#1107036)
    * CVE-2018-16425 (bsc#1107035)
    * CVE-2018-16426 (bsc#1107034)
    * CVE-2018-16427 (bsc#1107033)
  * Workaround cards returning short signatures without leading zeroes
  * Distribute minimal opensc.conf
  * `pkcs11_enable_InitToken made` global configuration option
  * Modify behavior of `OPENSC_DRIVER` environment variable to restrict driver
    list instead of forcing one driver and skipping vital parts of
    configuration
  * Removed configuration options `zero_ckaid_for_ca_certs`,
    `force_card_driver`, `reopen_debug_file`, `paranoid-memory`
  * Generalized configuration option `ignored_readers`
  * If card initialization fails, continue card detection with other card
    drivers
  * reader-pcsc: allow fixing the length of a PIN
  * fixed crash during `C_WaitForSlotEvent`
  * Allow cancelling the PIN pad prompt before starting the reader transaction.
    Whether to start the transaction immediately or not is user-configurable

OBS-URL: https://build.opensuse.org/request/show/635547
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=55
 2018-09-25 14:35:23 +00:00
Stanislav Brabec
defc0af54f - Replace patch preambles by the upstream ones. 
- Add missing patch to changes.

OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=53
 2018-07-10 14:57:49 +00:00
Stanislav Brabec
7fe7642846 Add another BOO. 
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=52
 2018-07-10 14:50:23 +00:00
Stanislav Brabec
8b4a709161 Accepting request 618520 from home:sbrabec:branches:security:chipcard 
- Update to version 0.18.0:
  * Further improvements of PIN support.
  * Large number of improvements and fixes (boo#1097951).
  * See /usr/share/doc/packages/opensc/NEWS for complete list.
- Add opensc-desktop.patch and opensc-bash-completions.patch.

OBS-URL: https://build.opensuse.org/request/show/618520
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=51
 2018-06-25 15:55:59 +00:00
Stanislav Brabec
e058d5f88f * See /usr/share/doc/packages/opensc/NEWS for complete list. 
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=49
 2018-02-05 19:46:58 +00:00
Stanislav Brabec
79835c0498 * added .pc file 
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=48
 2018-02-05 19:45:42 +00:00
Stanislav Brabec
9941e019ec - update to version 0.17.0: 
* support for new cards
  * PIN support enhancemets
  * builds with OpenSSL 1.1.0 (1074799)

OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=47
 2018-02-05 19:44:58 +00:00
Stanislav Brabec
ec0386f280 Accepting request 561012 from home:stroeder:branches:security:chipcard 
- update to version 0.17.0

OBS-URL: https://build.opensuse.org/request/show/561012
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=45
 2018-01-15 16:33:09 +00:00
Stanislav Brabec
ced4e33ce3 Accepting request 511219 from home:scarabeus_iv:branches:security:chipcard 
- Switch to tarball fetching from github
- Few small cleanups

OBS-URL: https://build.opensuse.org/request/show/511219
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=43
 2017-07-18 14:01:25 +00:00
Stanislav Brabec
13de599d03 Accepting request 441453 from home:sbrabec:branches:security:chipcard 
- Add baselibs.conf to provide 32-bit PKCS11 plugins (bsc#996047).
- Drop opensc-ADVISORIES. There is no new advisory since 2009.

OBS-URL: https://build.opensuse.org/request/show/441453
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=41
 2016-11-24 15:11:00 +00:00
Wolfgang Rosenauer
b92a6868c4 Accepting request 406753 from home:Simmphonie 
OBS-URL: https://build.opensuse.org/request/show/406753
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=39
 2016-08-23 07:26:09 +00:00
Stanislav Brabec
bb23158ac9 Remove trailing spaces in changes file. 
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=37
 2015-10-02 13:23:06 +00:00
Stanislav Brabec
ba7af549cb Accepting request 319752 from home:bhwachter:branches:security:chipcard 
Update to version 0.15.0

OBS-URL: https://build.opensuse.org/request/show/319752
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=35
 2015-08-07 16:14:19 +00:00
Tomáš Chvátal
458a93f4cb Accepting request 287154 from home:stroeder:branches:security:chipcard 
update to 0.14.0

OBS-URL: https://build.opensuse.org/request/show/287154
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=33
 2015-02-28 09:30:12 +00:00
Tomáš Chvátal
0e7d89e6d4 Accepting request 209335 from home:luizluca:branches:security:chipcard 
This patch updates opensc to latest version (0.13.0). This update fixes problem with non-listed etokens in 13.1 (i.e. Aladdin eToken PRO 64)

OBS-URL: https://build.opensuse.org/request/show/209335
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=31
 2013-12-13 11:04:22 +00:00
Wolfgang Rosenauer
e44c3c5aa5 Accepting request 124759 from home:mgorse:branches:security:chipcard 
- make needed directories before running make install

OBS-URL: https://build.opensuse.org/request/show/124759
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=29
 2012-06-13 05:08:04 +00:00
Wolfgang Rosenauer
470736347d Accepting request 85500 from home:lmedinas:branches:security:chipcard 
Bumped to 0.12.2. 0.12.0 is old and this one should go to factory asap.

OBS-URL: https://build.opensuse.org/request/show/85500
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=27
 2011-09-29 18:07:13 +00:00
Stanislav Brabec
5a40d6a1ae Accepting request 57877 from home:sbrabec:branches:security:chipcard 
Accepted my own submit.

OBS-URL: https://build.opensuse.org/request/show/57877
OBS-URL: https://build.opensuse.org/package/show/security:chipcard/opensc?expand=0&rev=25
 2011-01-11 13:35:58 +00:00
OBS User autobuild
986028a554 Accepting request 45999 from security:chipcard 
Copy from security:chipcard/opensc based on submit request 45999 from user sbrabec

OBS-URL: https://build.opensuse.org/request/show/45999
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=22
 2010-08-24 15:28:39 +00:00
OBS User autobuild
7ee4407f4d Accepting request 38302 from security:chipcard 
Copy from security:chipcard/opensc based on submit request 38302 from user coolo

OBS-URL: https://build.opensuse.org/request/show/38302
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=19
 2010-04-23 17:28:32 +00:00
OBS User autobuild
a5d0ae8015 Accepting request 32751 from security:chipcard 
Copy from security:chipcard/opensc based on submit request 32751 from user coolo

OBS-URL: https://build.opensuse.org/request/show/32751
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=17
 2010-02-18 15:47:32 +00:00
OBS User unknown
eef0b7b770 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=15 2009-08-06 16:35:29 +00:00
OBS User unknown
f6c81015ae OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=14 2009-07-30 14:51:50 +00:00
OBS User unknown
ce7aaeb3e0 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=13 2009-05-15 20:30:13 +00:00
OBS User unknown
e2662ab937 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=12 2009-04-18 12:02:39 +00:00
OBS User unknown
3063db90c0 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=11 2009-03-20 18:35:23 +00:00
OBS User unknown
0e72005457 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=10 2008-12-15 12:05:16 +00:00
OBS User unknown
efed3de8ab OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=9 2008-11-02 14:44:36 +00:00
OBS User unknown
0d5e7bb30b OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=8 2008-09-13 04:31:55 +00:00
OBS User unknown
d997106444 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=7 2008-09-01 13:27:38 +00:00
OBS User unknown
aac760fc51 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/opensc?expand=0&rev=6 2008-08-03 22:50:05 +00:00