pool/tpm2-0-tss
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 906442 from home:gmbr3:Active

Browse Source 
- Clean spec file
- Add new library libtss2-tcti-pcap0
- Update to 3.1.0:
  * Fix FAPI PolicyPCR not instatiating correctly (CVE-2020-24455)
  * Fixed possible access outside the array in ifapi_calculate_tree
  * Added pcap TCTI
  * Added GlobalSign TPM Root CA certs to FAPI cert store
  * Changed EncryptDecrypt mode type to align with TPM2.0 spec 1.59
  * Added two new TPM commands TPM2_CC_CertifyX509,
    and TPM2_CC_ACT_SetTimeout

OBS-URL: https://build.opensuse.org/request/show/906442
OBS-URL: https://build.opensuse.org/package/show/security/tpm2-0-tss?expand=0&rev=111
This commit is contained in:
Matthias Gerstner 2021-07-15 11:15:44 +00:00 committed by Git OBS Bridge
parent 3495640baa
commit bcdc60d0a7
5 changed files with 44 additions and 34 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
_service
View File

@ -1,11 +0,0 @@
<services>
<!-- we need to setup a download_files service here. it is already called implicitly for some reason in the devel project, but not in e.g. SLE-15 -->
<service name="tar_scm" mode="disabled">
<param name="url">https://github.com/intel/tpm2-tss.git</param>
<param name="scm">git</param>
<param name="revision">3.0.3</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">disable</param>
</service>
<service name="set_version" mode="disabled"/>
</services>

14
tpm2-0-tss.changes
View File

@ -1,3 +1,17 @@
-------------------------------------------------------------------
Wed Jul 14 15:11:55 UTC 2021 - Callum Farmer <gmbr3@opensuse.org>
- Clean spec file
- Add new library libtss2-tcti-pcap0
- Update to 3.1.0:
* Fix FAPI PolicyPCR not instatiating correctly (CVE-2020-24455)
* Fixed possible access outside the array in ifapi_calculate_tree
* Added pcap TCTI
* Added GlobalSign TPM Root CA certs to FAPI cert store
* Changed EncryptDecrypt mode type to align with TPM2.0 spec 1.59
* Added two new TPM commands TPM2_CC_CertifyX509,
and TPM2_CC_ACT_SetTimeout
------------------------------------------------------------------- -------------------------------------------------------------------
Mon Jun 28 06:52:53 UTC 2021 - Marcus Meissner <meissner@suse.com> Mon Jun 28 06:52:53 UTC 2021 - Marcus Meissner <meissner@suse.com>

47
tpm2-0-tss.spec
View File

@ -17,7 +17,7 @@
Name: tpm2-0-tss Name: tpm2-0-tss
Version: 3.0.3 Version: 3.1.0
Release: 0 Release: 0
Summary: Intel's TCG Software Stack access libraries for TPM 2.0 chips Summary: Intel's TCG Software Stack access libraries for TPM 2.0 chips
License: BSD-2-Clause License: BSD-2-Clause
@ -27,12 +27,14 @@ Source0: https://github.com/tpm2-software/tpm2-tss/releases/download/%{ve
Source2: baselibs.conf Source2: baselibs.conf
BuildRequires: doxygen BuildRequires: doxygen
BuildRequires: gcc-c++ BuildRequires: gcc-c++
BuildRequires: libcurl-devel BuildRequires: pkgconfig(libcurl)
BuildRequires: libgcrypt-devel BuildRequires: libgcrypt-devel
BuildRequires: libjson-c-devel BuildRequires: pkgconfig(json-c)
BuildRequires: libopenssl-devel BuildRequires: pkgconfig(libopenssl)
BuildRequires: pkg-config BuildRequires: pkgconfig
BuildRequires: pkgconfig(udev) BuildRequires: pkgconfig(udev)
BuildRequires: /usr/sbin/groupadd
BuildRequires: acl
# The same user is employed by trousers (and was employed by the old # The same user is employed by trousers (and was employed by the old
# resourcemgr shipped with the tpm2-0-tss package): # resourcemgr shipped with the tpm2-0-tss package):
# #
@ -48,8 +50,7 @@ BuildRequires: pkgconfig(udev)
# the packages ATM. Trousers is keeping state there, but the directory is # the packages ATM. Trousers is keeping state there, but the directory is
# owned by root and files are opened before dropping privileges. The passwd # owned by root and files are opened before dropping privileges. The passwd
# entry seems not to be evaluated. # entry seems not to be evaluated.
Requires: user(tss) Requires(pre): user(tss)
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description %description
The tpm2-0-tss package provides a TPM 2.0 TSS implementation. This The tpm2-0-tss package provides a TPM 2.0 TSS implementation. This
@ -70,6 +71,7 @@ Requires: libtss2-tcti-cmd0 = %{version}
Requires: libtss2-tcti-device0 = %{version} Requires: libtss2-tcti-device0 = %{version}
Requires: libtss2-tcti-mssim0 = %{version} Requires: libtss2-tcti-mssim0 = %{version}
Requires: libtss2-tcti-swtpm0 = %{version} Requires: libtss2-tcti-swtpm0 = %{version}
Requires: libtss2-tcti-pcap0 = %{version}
Requires: libtss2-tctildr0 = %{version} Requires: libtss2-tctildr0 = %{version}
Requires: tpm2-0-tss = %{version} Requires: tpm2-0-tss = %{version}
@ -170,10 +172,21 @@ A TCTI for interaction with the TPM2 software simulator. It abstracts the
details of direct communication with the interface and protocol exposed by the details of direct communication with the interface and protocol exposed by the
daemon hosting the TPM2 reference implementation. daemon hosting the TPM2 reference implementation.
%package -n libtss2-tcti-pcap0
Summary: TCTI pcap interface library
Group: System/Libraries
%description -n libtss2-tcti-pcap0
A TCTI which prints TPM commands and responses to a file in pcap-ng format. It abstracts the
details of direct communication with the interface and protocol exposed by the
daemon hosting the TPM2 reference implementation.
%prep %prep
%setup -q -n tpm2-tss-%{version} %autosetup -n tpm2-tss-%{version}
%build %build
# configure looks for groupadd on PATH
export PATH="$PATH:%{_sbindir}"
%configure --disable-static \ %configure --disable-static \
--with-udevrulesdir=%{_udevrulesdir} \ --with-udevrulesdir=%{_udevrulesdir} \
--with-runstatedir=%{_rundir} \ --with-runstatedir=%{_rundir} \
@ -213,9 +226,11 @@ mv %{buildroot}%{_udevrulesdir}/tpm-udev.rules %{buildroot}%{_udevrulesdir}/%{ud
%postun -n libtss2-tcti-cmd0 -p /sbin/ldconfig %postun -n libtss2-tcti-cmd0 -p /sbin/ldconfig
%post -n libtss2-tcti-swtpm0 -p /sbin/ldconfig %post -n libtss2-tcti-swtpm0 -p /sbin/ldconfig
%postun -n libtss2-tcti-swtpm0 -p /sbin/ldconfig %postun -n libtss2-tcti-swtpm0 -p /sbin/ldconfig
%post -n libtss2-tcti-pcap0 -p /sbin/ldconfig
%postun -n libtss2-tcti-pcap0 -p /sbin/ldconfig
%files %files
%defattr(-,root,root)
%doc *.md %doc *.md
%license LICENSE %license LICENSE
%{_mandir}/man3/* %{_mandir}/man3/*
@ -229,41 +244,32 @@ mv %{buildroot}%{_udevrulesdir}/tpm-udev.rules %{buildroot}%{_udevrulesdir}/%{ud
%config /etc/tpm2-tss/fapi-profiles/*.json %config /etc/tpm2-tss/fapi-profiles/*.json
%files devel %files devel
%defattr(-,root,root)
%{_includedir}/tss2 %{_includedir}/tss2
%{_libdir}/*.so %{_libdir}/*.so
%{_libdir}/pkgconfig/*.pc %{_libdir}/pkgconfig/*.pc
%files -n libtss2-esys0 %files -n libtss2-esys0
%defattr(-,root,root)
%{_libdir}/libtss2-esys.so.* %{_libdir}/libtss2-esys.so.*
%files -n libtss2-sys1 %files -n libtss2-sys1
%defattr(-,root,root)
%{_libdir}/libtss2-sys.so.* %{_libdir}/libtss2-sys.so.*
%files -n libtss2-mu0 %files -n libtss2-mu0
%defattr(-,root,root)
%{_libdir}/libtss2-mu.so.* %{_libdir}/libtss2-mu.so.*
%files -n libtss2-rc0 %files -n libtss2-rc0
%defattr(-,root,root)
%{_libdir}/libtss2-rc.so.* %{_libdir}/libtss2-rc.so.*
%files -n libtss2-tctildr0 %files -n libtss2-tctildr0
%defattr(-,root,root)
%{_libdir}/libtss2-tctildr.so.* %{_libdir}/libtss2-tctildr.so.*
%files -n libtss2-tcti-device0 %files -n libtss2-tcti-device0
%defattr(-,root,root)
%{_libdir}/libtss2-tcti-device.so.* %{_libdir}/libtss2-tcti-device.so.*
%files -n libtss2-tcti-mssim0 %files -n libtss2-tcti-mssim0
%defattr(-,root,root)
%{_libdir}/libtss2-tcti-mssim.so.* %{_libdir}/libtss2-tcti-mssim.so.*
%files -n libtss2-fapi1 %files -n libtss2-fapi1
%defattr(-,root,root)
%{_libdir}/libtss2-fapi.so.* %{_libdir}/libtss2-fapi.so.*
%{_tmpfilesdir}/tpm2-tss-fapi.conf %{_tmpfilesdir}/tpm2-tss-fapi.conf
# this would fix "tmpfile-not-in-filelist" warnings but when adding these # this would fix "tmpfile-not-in-filelist" warnings but when adding these
@ -280,11 +286,12 @@ mv %{buildroot}%{_udevrulesdir}/tpm-udev.rules %{buildroot}%{_udevrulesdir}/%{ud
# %%ghost %%{_rundir}/%%{name}/eventlog # %%ghost %%{_rundir}/%%{name}/eventlog
%files -n libtss2-tcti-cmd0 %files -n libtss2-tcti-cmd0
%defattr(-,root,root)
%{_libdir}/libtss2-tcti-cmd.so.* %{_libdir}/libtss2-tcti-cmd.so.*
%files -n libtss2-tcti-swtpm0 %files -n libtss2-tcti-swtpm0
%defattr(-,root,root)
%{_libdir}/libtss2-tcti-swtpm.so.* %{_libdir}/libtss2-tcti-swtpm.so.*
%files -n libtss2-tcti-pcap0
%{_libdir}/libtss2-tcti-pcap.so.*
%changelog %changelog

3
tpm2-tss-3.0.3.tar.gz
View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:78392be7309baf47f51b122f566ac915fd4d1760ea78571cba2e1484f9b5be17
size 1489136

3
tpm2-tss-3.1.0.tar.gz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:8900a6603f74310b749b65f23c3461cde6e2a23a5f61058b21004c25f9cf19e8
size 1584690