Commit Graph

51 Commits

Author SHA256 Message Date
Ana Guerrero
9231456bf8 Accepting request 1202016 from security
- Fix swtpm custom module (bsc#1229131)
  - Add patch: 1229131-fix-swtpm-selinux-policy-mismatch.patch
  - this can be removed once swtpm upstream sorts out their custom selinux module.
    see: https://github.com/stefanberger/swtpm/issues/885
    there were a couple changes in the selinux-policy libvirt handling
    which causes the logfile in /var/log/swtpm/libvirt/qemu/*.log to be labeled
    virt_log_t instead of var_log_t. this patch allows swtpm_t to open the virt_log_t (forwarded request 1202015 from cahu)

OBS-URL: https://build.opensuse.org/request/show/1202016
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=20
2024-09-20 15:09:01 +00:00
7468cdf8a6 - Fix swtpm custom module (bsc#1229131)
- Add patch: 1229131-fix-swtpm-selinux-policy-mismatch.patch
  - this can be removed once swtpm upstream sorts out their custom selinux module.
    see: https://github.com/stefanberger/swtpm/issues/885
    there were a couple changes in the selinux-policy libvirt handling
    which causes the logfile in /var/log/swtpm/libvirt/qemu/*.log to be labeled
    virt_log_t instead of var_log_t. this patch allows swtpm_t to open the virt_log_t

OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=46
2024-09-19 14:01:38 +00:00
Dominique Leuenberger
543bf0e702 Accepting request 1191034 from security
OBS-URL: https://build.opensuse.org/request/show/1191034
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=19
2024-08-06 07:07:07 +00:00
0686c8dbaf Accepting request 1190897 from home:rrahl0
- update to 0.9.0:
  - fixes: boo#1226398
  - swtpm:
    - Use umask() to create/truncated state file rather than fchmod()
    - Use fchmod to set mode bits provided by user
    - Replace mkstemp with g_mkstemp_full (Coverity)
    - fix typo in help message
    - cuse: Fix Coverity complaints regarding locks
    - Fix double free in error path
    - Close fd after main loop
    - Restore logging to stderr on log open failure
  - swtpm_setup:
    - Fail --pcr-banks without --tpm2
    - Fail --decryption or --allow-signing without --tpm2
    - Initialized argv in get_swtpm_capabilities()
    - Flush spk after persisting to create room for another key
    - Refactor duplicate code into swtpm_tpm2_write_cert_nvram
    - Move persisting of certificate into tpm2_persist_certificate
    - Pass key_type to function creating filename for key
    - Add scheme parameter before curveid to createprimary_ecc
    - Rename is_ek to preserve for future extension
    - Mask-out EK and plaform certificate flags and set cert_flags
    - Move common code into new function read_certificate_file()
    - Exit with '0' upon --version rather than '1'
    - Close file descriptors passed to swtpm process on parent side
    - Make stdout unbuffered
    - Use medium duration on TSC_PhysicalPresence to avoid timeouts
    - Add poll() after write() and before read() to detect errors
  - swtpm_localca:
    - Add support for up to 20 bytes serial numbers

OBS-URL: https://build.opensuse.org/request/show/1190897
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=44
2024-08-01 18:11:21 +00:00
Ana Guerrero
4c6a556542 Accepting request 1118837 from security
- Add missing requires for certtool (forwarded request 1118747 from firstyear)

OBS-URL: https://build.opensuse.org/request/show/1118837
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=18
2023-10-19 20:46:56 +00:00
06fbbd50d7 Accepting request 1118747 from home:firstyear:branches:security
- Add missing requires for certtool

OBS-URL: https://build.opensuse.org/request/show/1118747
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=42
2023-10-19 07:29:40 +00:00
Ana Guerrero
17e84e36e2 Accepting request 1111638 from security
- Update to version 0.8.1:
  - swtpm:
    -   Restore logging to stderr on log open failure
  - swtpm_setup:
    -   Exit with '0' upon --version rather than '1'.
    -   Initialized @argv in get_swtpm_capabilities()
  - swtpm_localca:
    -   Add missing NULL option to end of array
  - SELinux:
    -   Add rules for user_tpm_t:sockfile to allow unlink
    -   Add rules for sock_file on user_tmp_t (forwarded request 1111637 from msmeissn)

OBS-URL: https://build.opensuse.org/request/show/1111638
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=17
2023-09-26 20:00:32 +00:00
c6fc1a9240 Accepting request 1111637 from home:msmeissn:branches:security
- Update to version 0.8.1:
  - swtpm:
    -   Restore logging to stderr on log open failure
  - swtpm_setup:
    -   Exit with '0' upon --version rather than '1'.
    -   Initialized @argv in get_swtpm_capabilities()
  - swtpm_localca:
    -   Add missing NULL option to end of array
  - SELinux:
    -   Add rules for user_tpm_t:sockfile to allow unlink
    -   Add rules for sock_file on user_tmp_t

OBS-URL: https://build.opensuse.org/request/show/1111637
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=40
2023-09-16 10:14:31 +00:00
Fabian Vogt
1804f12c82 Accepting request 1096892 from security
- Make selinux optional to allow building this package for Leap, too. (forwarded request 1093513 from manfred-h)

OBS-URL: https://build.opensuse.org/request/show/1096892
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=16
2023-07-06 16:27:54 +00:00
5d3857dd8d Accepting request 1093513 from home:manfred-h
- Make selinux optional to allow building this package for Leap, too.

OBS-URL: https://build.opensuse.org/request/show/1093513
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=38
2023-07-05 06:54:53 +00:00
Dominique Leuenberger
258633fdff Accepting request 1084024 from security
- remove python3 dependency, no longer needed after rewrite (bsc#1211010) (forwarded request 1084023 from msmeissn)

OBS-URL: https://build.opensuse.org/request/show/1084024
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=15
2023-05-03 10:56:27 +00:00
e322973215 Accepting request 1084023 from home:msmeissn:branches:security
- remove python3 dependency, no longer needed after rewrite (bsc#1211010)

OBS-URL: https://build.opensuse.org/request/show/1084023
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=36
2023-05-02 12:16:37 +00:00
Dominique Leuenberger
5bfd4aeb5e Accepting request 1073549 from security
bsc#1209117 (forwarded request 1073548 from msmeissn)

OBS-URL: https://build.opensuse.org/request/show/1073549
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=14
2023-03-24 14:15:57 +00:00
3fb71b9267 Accepting request 1073548 from home:msmeissn:branches:security
bsc#1209117

OBS-URL: https://build.opensuse.org/request/show/1073548
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=34
2023-03-21 12:57:57 +00:00
8828873bbc Accepting request 1073545 from home:msmeissn:branches:security
- swtpm-fix-build.patch: disable -Wstack-protector, it fails on s390x

OBS-URL: https://build.opensuse.org/request/show/1073545
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=33
2023-03-21 12:51:07 +00:00
Dominique Leuenberger
3b651e6494 Accepting request 1069861 from security
- Drop trousers requirement

- Update to version 0.8.0:
  * swtpm:
    + Implement release-lock-outgoing parameter for --migration option
    + Introduce --migration option and 'incoming' parameter
    + Implement terminate parameter for ctrl channel loss
    + Add a chroot option
    + Introduce disable-auto-shutdown flag for --flags option
    + If necessary send TPM2_Shutdown() before TPMLIB_Terminate()
    + Add some more recent syscalls to seccomp profile
    + Disable OpenSSL FIPS mode to avoid libtpms failures
    + Avoid locking directory multiple times
    + Remove support for pre-v0.1 state files without header
    + Use uint64_t in tlv_data_append() to avoid integer overflows
    + Use uint64_t to avoid integer wrap-around when adding a uint32_t
    + Do not chdir(/) when using --daemon
    + Check header size indicator against expected size (CVE-2022-23645 bsc#1196240)
    + Fixes for gcc 12.2.1 -fanalyzer
  * build-sys:
    + Fix configure script to support _FORTIFY_SOURCE=3
    + Define __USE_LINUX_IOCTL_DEFS in header file (Cygwin)
  * swtpm-localca:
    + Re-implement variable resolution for swtpm-localca.conf
    + Test for available issuercert before creating CA
  * swtpm_setup:
    + Configure swtpm to log to stdout/err if needed (glib >=2.74)
  * tests:
    + Use ${WORKDIR} in config files to test env. var replacement
    + Patch IBM TSS2 test suite for OpenSSL 3.x

OBS-URL: https://build.opensuse.org/request/show/1069861
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=13
2023-03-08 13:51:29 +00:00
93f24082f9 + Check header size indicator against expected size (CVE-2022-23645 bsc#1196240)
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=31
2023-03-07 08:25:52 +00:00
5848fe1a37 Accepting request 1069732 from home:aplanas:branches:security
- Drop trousers requirement

- Update to version 0.8.0:
  * swtpm:
    + Implement release-lock-outgoing parameter for --migration option
    + Introduce --migration option and 'incoming' parameter
    + Implement terminate parameter for ctrl channel loss
    + Add a chroot option
    + Introduce disable-auto-shutdown flag for --flags option
    + If necessary send TPM2_Shutdown() before TPMLIB_Terminate()
    + Add some more recent syscalls to seccomp profile
    + Disable OpenSSL FIPS mode to avoid libtpms failures
    + Avoid locking directory multiple times
    + Remove support for pre-v0.1 state files without header
    + Use uint64_t in tlv_data_append() to avoid integer overflows
    + Use uint64_t to avoid integer wrap-around when adding a uint32_t
    + Do not chdir(/) when using --daemon
    + Check header size indicator against expected size (CVE-2022-23645)
    + Fixes for gcc 12.2.1 -fanalyzer
  * build-sys:
    + Fix configure script to support _FORTIFY_SOURCE=3
    + Define __USE_LINUX_IOCTL_DEFS in header file (Cygwin)
  * swtpm-localca:
    + Re-implement variable resolution for swtpm-localca.conf
    + Test for available issuercert before creating CA
  * swtpm_setup:
    + Configure swtpm to log to stdout/err if needed (glib >=2.74)
  * tests:
    + Use ${WORKDIR} in config files to test env. var replacement
    + Patch IBM TSS2 test suite for OpenSSL 3.x

OBS-URL: https://build.opensuse.org/request/show/1069732
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=30
2023-03-07 08:25:26 +00:00
Dominique Leuenberger
98513e2108 Accepting request 974426 from security
- Updated to version 0.7.3:
  - swtpm:
    - Use uint64_t in tlv_data_append() to avoid integer overflows
    - Use uint64_t to avoid integer wrap-around when adding a uint32_t
- removed allow-FORTIFY_SOURCE=3.patch (upstreamed) (forwarded request 973850 from msmeissn)

OBS-URL: https://build.opensuse.org/request/show/974426
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=12
2022-05-04 13:17:37 +00:00
a06ed21114 Accepting request 973850 from home:msmeissn:branches:security
- Updated to version 0.7.3:
  - swtpm:
    - Use uint64_t in tlv_data_append() to avoid integer overflows
    - Use uint64_t to avoid integer wrap-around when adding a uint32_t
- removed allow-FORTIFY_SOURCE=3.patch (upstreamed)

OBS-URL: https://build.opensuse.org/request/show/973850
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=28
2022-05-02 13:42:36 +00:00
Dominique Leuenberger
52536a98d7 Accepting request 967242 from security
- Cheery-pick upstream patch allow-FORTIFY_SOURCE=3.patch. (forwarded request 967210 from marxin)

OBS-URL: https://build.opensuse.org/request/show/967242
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=11
2022-04-07 22:27:22 +00:00
354b107645 Accepting request 967210 from home:marxin:branches:security
- Cheery-pick upstream patch allow-FORTIFY_SOURCE=3.patch.

OBS-URL: https://build.opensuse.org/request/show/967210
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=26
2022-04-06 08:39:04 +00:00
Dominique Leuenberger
26e247d3aa Accepting request 960503 from security
- Update to version 0.7.2:
  - swtpm:
    - Do not chdir(/) when using --daemon
  - swtpm-localca:
    - Re-implement variable resolution for swtpm-localca.conf
  - tests:
    - Use ${WORKDIR} in config files to test env. var replacement
  - man pages:
    - Add missing .config directory to path description when using ${HOME}
  - build-sys:
    - Add probing for -fstack-protector (forwarded request 960501 from wfrisch)

OBS-URL: https://build.opensuse.org/request/show/960503
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=10
2022-03-11 20:41:04 +00:00
6e373795cd Accepting request 960501 from home:wfrisch:branches:security
- Update to version 0.7.2:
  - swtpm:
    - Do not chdir(/) when using --daemon
  - swtpm-localca:
    - Re-implement variable resolution for swtpm-localca.conf
  - tests:
    - Use ${WORKDIR} in config files to test env. var replacement
  - man pages:
    - Add missing .config directory to path description when using ${HOME}
  - build-sys:
    - Add probing for -fstack-protector

OBS-URL: https://build.opensuse.org/request/show/960501
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=24
2022-03-09 14:19:29 +00:00
Dominique Leuenberger
48ad1e1b5d Accepting request 957026 from security
OBS-URL: https://build.opensuse.org/request/show/957026
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=9
2022-02-24 17:18:18 +00:00
0aa5880cf9 Accepting request 956473 from home:msmeissn:branches:security
- Update to version 0.7.1:
  - swtpm:
    - Check header size indicator against expected size (CVE-2022-23645 bsc#1196240)
  - swtpm_localca:
    - Test for available issuercert before creating CA

OBS-URL: https://build.opensuse.org/request/show/956473
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=23
2022-02-23 12:02:37 +00:00
Dominique Leuenberger
ee0def1312 Accepting request 930649 from security
- Update to version 0.7.0:
  - swtpm:
    - Support for linear file storage backend (file://)
    - Report 'tpm-1.2' & 'tpm-2.0' in --print-capabilities depending what
      libtpms supports
    - Add implementation of SWTPM_HMAC using OpenSSL 3.0 APIs
    - Wipe keys from stack and heap
    - Many other small changes
    - Make --daemon not racy
  - swtpm_setup:
    - Only activate SHA256 PCR bank, not SHA1 bank anymore by default
    - Support for linear file storage backend (file://)
    - Implement option --create-config-files to create config files
    - Use non-deprecated APIs to contruct RSA key (OSSL 3)
    - Report stderr as returned by external tool (swtpm-localcal)
    - Replace '+' and ',' characters in VMId's to make work with
      common name in X509 subject
    - Add support for --reconfigure flag to change active PCR banks
  - swtpm_localca:
    - Created certificates for CAs and TPM that do not expire
  - swtpm_cert:
    - Allow passing -1 for days to get a non-expiring certificate
  - test:
    - ASAN-related test changes and skipping of tests if ASAN is used
    - Fix tests using tpm2-abrmd by preventing concurrency
    - Skip chardev related tests after checking for chardev support
    - exit with error code if mktemp fails
    - OSSL 3: Make TPM 1.2 test compile; skip IBM TSS 2 test
  - build-sys:
    - Introduce --enable-sanitizers to configure

OBS-URL: https://build.opensuse.org/request/show/930649
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=8
2021-11-12 14:59:06 +00:00
1bbb90dad8 - Update to version 0.7.0:
- swtpm:
    - Support for linear file storage backend (file://)
    - Report 'tpm-1.2' & 'tpm-2.0' in --print-capabilities depending what
      libtpms supports
    - Add implementation of SWTPM_HMAC using OpenSSL 3.0 APIs
    - Wipe keys from stack and heap
    - Many other small changes
    - Make --daemon not racy
  - swtpm_setup:
    - Only activate SHA256 PCR bank, not SHA1 bank anymore by default
    - Support for linear file storage backend (file://)
    - Implement option --create-config-files to create config files
    - Use non-deprecated APIs to contruct RSA key (OSSL 3)
    - Report stderr as returned by external tool (swtpm-localcal)
    - Replace '+' and ',' characters in VMId's to make work with
      common name in X509 subject
    - Add support for --reconfigure flag to change active PCR banks
  - swtpm_localca:
    - Created certificates for CAs and TPM that do not expire
  - swtpm_cert:
    - Allow passing -1 for days to get a non-expiring certificate
  - test:
    - ASAN-related test changes and skipping of tests if ASAN is used
    - Fix tests using tpm2-abrmd by preventing concurrency
    - Skip chardev related tests after checking for chardev support
    - exit with error code if mktemp fails
    - OSSL 3: Make TPM 1.2 test compile; skip IBM TSS 2 test
  - build-sys:
    - Introduce --enable-sanitizers to configure

OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=22
2021-11-10 08:50:07 +00:00
Dominique Leuenberger
9dda348d94 Accepting request 920852 from security
- Update to version 0.6.1:
  - swtpm:
    - Clear keys from stack and heap
  - swtpm-localca:
    - Add missing else branch for pkcs11 and PIN
  - swtpm_setup:
    - Initialize Gerror and free it
    - Replace '\\s' in regex with [[:space:]] to fix cygwin
  - tests:
    - Kill tpm2-abrmd with SIGKILL rather SIGTERM
  - build-sys:
    - Use -DOPENSSL_SUPPRESS_DEPRECATED to suppress deprecation warnings (OSSL 3)
    - Enable configuring with CFLAGS and passing additional CFLAGS on build

OBS-URL: https://build.opensuse.org/request/show/920852
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=7
2021-09-26 19:48:17 +00:00
f0d81401b9 - Update to version 0.6.1:
- swtpm:
    - Clear keys from stack and heap
  - swtpm-localca:
    - Add missing else branch for pkcs11 and PIN
  - swtpm_setup:
    - Initialize Gerror and free it
    - Replace '\\s' in regex with [[:space:]] to fix cygwin
  - tests:
    - Kill tpm2-abrmd with SIGKILL rather SIGTERM
  - build-sys:
    - Use -DOPENSSL_SUPPRESS_DEPRECATED to suppress deprecation warnings (OSSL 3)
    - Enable configuring with CFLAGS and passing additional CFLAGS on build

OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=21
2021-09-22 09:35:00 +00:00
Richard Brown
3a4505e5ba Accepting request 912783 from security
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/912783
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=6
2021-08-19 11:06:39 +00:00
0e250bbded Accepting request 911320 from home:gmbr3:Active
minor change

OBS-URL: https://build.opensuse.org/request/show/911320
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=20
2021-08-16 13:22:06 +00:00
ec4b576af5 - swtpm-rename_deprecated_libtasn1_types.patch: upstream
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=19
2021-08-09 08:56:23 +00:00
9f05f64ac4 Accepting request 910608 from home:gmbr3:Active
- Update to version 0.6.0:
  - Addressed potential symlink attack issue (CVE-2020-28407)
  - Rewritten in 'C'; needs json-glib
  - Use timeouts for communicating with swtpm (Unix socket)
  - Fix --print-capabilities for 'swtpm chardev'
  - Various cleanups and fixes (coverity)
- Enable selinux support

OBS-URL: https://build.opensuse.org/request/show/910608
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=18
2021-08-09 08:47:13 +00:00
Dominique Leuenberger
639a6a4123 Accepting request 894591 from security
OBS-URL: https://build.opensuse.org/request/show/894591
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=5
2021-05-21 19:49:39 +00:00
Gary Ching-Pang Lin
099d31ba0a Accepting request 894521 from home:pmonrealgonzalez:branches:security
- swtpm_cert: rename deprecated libtasn1 types.
  * https://github.com/stefanberger/swtpm/pull/443
  * Add swtpm-rename_deprecated_libtasn1_types.patch

OBS-URL: https://build.opensuse.org/request/show/894521
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=16
2021-05-20 09:56:17 +00:00
Dominique Leuenberger
2ce130d3a6 Accepting request 858915 from security
OBS-URL: https://build.opensuse.org/request/show/858915
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=4
2020-12-28 09:30:50 +00:00
Gary Ching-Pang Lin
b1fc3d57f8 Accepting request 858841 from home:msmeissn:branches:security
- Update to version 0.5.2
  - swtpm:
    - Fix potential buffer overflow related to largely unused data hashing
      function in control channel
    - swtpm: Unconditionally close fd if writing of pidfile fails (coverity)
  - swtpm_setup:
    - Increase timeout from 10s to 30s for slower machines
  - Travis:
    - Not building on OS X anymore due to additional costs

OBS-URL: https://build.opensuse.org/request/show/858841
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=14
2020-12-28 01:23:52 +00:00
Dominique Leuenberger
a2333b736e Accepting request 858005 from security
- Create /var/lib/swtpm-localca to store the keys created by swtpm-localca (bsc#1179811)
- Replace net-tools-deprecated with iproute2 since the scripts in swtpm now can use 'ss' instead of 'netstat'

OBS-URL: https://build.opensuse.org/request/show/858005
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=3
2020-12-22 10:52:12 +00:00
Gary Ching-Pang Lin
48200997b7 Accepting request 858004 from home:gary_lin:branches:security
Use "Requires user(tss)" for the "tss" user and group

OBS-URL: https://build.opensuse.org/request/show/858004
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=12
2020-12-22 08:05:26 +00:00
Gary Ching-Pang Lin
4d287787ed Accepting request 857979 from home:gary_lin:branches:security
- Create /var/lib/swtpm-localca to store the keys created by
  swtpm-localca (bsc#1179811)
- Replace net-tools-deprecated with iproute2 since the scripts in
  swtpm now can use 'ss' instead of 'netstat'

OBS-URL: https://build.opensuse.org/request/show/857979
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=11
2020-12-22 06:30:57 +00:00
Dominique Leuenberger
756febd8ac Accepting request 850055 from security
OBS-URL: https://build.opensuse.org/request/show/850055
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=2
2020-11-23 14:48:47 +00:00
Gary Ching-Pang Lin
9bbeceb75c Accepting request 850053 from home:kailiu:branches:security
Update to version 0.5.1.  Misc. spec file changes, fix rpmlint errors.

OBS-URL: https://build.opensuse.org/request/show/850053
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=9
2020-11-23 03:28:09 +00:00
Dominique Leuenberger
f0165a8b52 Accepting request 844896 from security
add to factory please

OBS-URL: https://build.opensuse.org/request/show/844896
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/swtpm?expand=0&rev=1
2020-11-10 12:39:44 +00:00
Gary Ching-Pang Lin
95cbe02092 Accepting request 841653 from home:kailiu:branches:security
- Update Requires and BuildRequires for changes since 0.4.0.
- Remove patch files that are no longer needed:
  * swtpm-adjust-seccomp-path.patch
  * swtpm-setup-tcsd-path.patch
  * swtpm-tpm-tools-path.patch
- Update to version 0.5.0

OBS-URL: https://build.opensuse.org/request/show/841653
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=7
2020-10-14 03:33:47 +00:00
Gary Ching-Pang Lin
20862cca74 Accepting request 826253 from home:kailiu:branches:security
Update to v0.3.4.

OBS-URL: https://build.opensuse.org/request/show/826253
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=6
2020-08-14 01:20:53 +00:00
Gary Ching-Pang Lin
1ef1b98455 Accepting request 823607 from home:kailiu:branches:security
- Update to version 0.3.3 and fix a bug of TPM 1.2 emulation.

OBS-URL: https://build.opensuse.org/request/show/823607
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=5
2020-08-05 02:32:01 +00:00
Gary Ching-Pang Lin
9f788b39b2 Accepting request 820470 from home:kailiu:branches:security
Version bump to 0.3.2.

OBS-URL: https://build.opensuse.org/request/show/820470
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=4
2020-07-13 01:21:22 +00:00
Gary Ching-Pang Lin
8d82668977 Accepting request 796145 from home:gary_lin:branches:security
Update to 0.3.1

OBS-URL: https://build.opensuse.org/request/show/796145
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=3
2020-04-22 05:29:30 +00:00
Gary Ching-Pang Lin
8d6fea0d58 Accepting request 760525 from home:gary_lin:branches:security
- Amend swtpm-adjust-seccomp-path.patch to add the missing seccomp paths
- Adjust the conditional check of net-tools-deprecated for SLE15 and SLE15-SP1

OBS-URL: https://build.opensuse.org/request/show/760525
OBS-URL: https://build.opensuse.org/package/show/security/swtpm?expand=0&rev=2
2020-01-06 01:46:00 +00:00