Accepting request 988569 from home:aplanas:branches:security

- Update to 1.8.0
  + Fixed
    * Fix GetRandom Memory Leak
    * Fix some spelling mistakes
    * Fix unit test test_parser
    * Fix importing of RSA private key through pkcs11 interface should
      fail.
    * Fix ECDSA signature length calculation.
    * Fix memory leak of tokens.
    * Fix suspicious sizeof usage in _str_padded_copy
    * Fix encoding errors when importing a certificate into the pkcs11
      store.
    * Fix try/finally scope issues in tpm2_ptool.
    * Fix, an OOB access in db upgrade path.
    * Fix ECDSA length calculation that was causing issues with Mutual
      TLS in Firefox and Chrome.
  + Changed
    * remove unused macro set_safe_rc
  + Added
    * Add support for OpenSSL 3. Note that calls through engine are no
      longer supported on OpenSSL3.
    * Add tpm2_ptool export commandlet for exporting token keys into
      PEM and TPM blob format.
- Add new dependencies to PyYAML, cryptography, pyasn1 and tpm2-pytss

OBS-URL: https://build.opensuse.org/request/show/988569
OBS-URL: https://build.opensuse.org/package/show/security/tpm2-pkcs11?expand=0&rev=11

tpm2-pkcs11-1.7.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:078a445ed0e9f5009675a162b4b7b88f3520436cfbc791bb2249f37bd1f475bd
-size 1386693

tpm2-pkcs11-1.7.0.tar.gz.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEEW0grjj4Z2nyXjh0BbeLpB44fUMEFAmFSG3QACgkQbeLpB44f
-UMElEQ/9GEz+wfA85IKbd2rtNQax059vLRxU1cwS8N1U0KI3Ij1Y10+mK7aii0JV
-p/iqq3h7lsTU83Im/KX2Bs13I68YTENeTkgtqdIS5/VvGGOWeFdLwBOA3Mfw/S3A
-ZW8X1fyX6hqFB44io/2m+j7EvmHCCQn9x0pVheUo9Jrx2aulknDoKiHorj/esWWp
-NoniIuDWIofrBJ0RrtzzSxJznzQEol6XpZqrWK8Wg2LrlEX9j86PE5dBM9fnHHlx
-rIc4wOl+GXDB6Ulac4F0O2Q8zfroc/tLBkKZyq8tqTYVlew6WDCtgkBWbO1Onbc6
-ZlXGPWoSZGhm1LoM3pbuewyXi2F+8sJiDaySGGubCGC0HT6uStbWqtIHiI4zb8+V
-ih62dDQOLzWe6dIRO187k8N0EsgAe5Dy948xJ0DLTvz+gtwsbpF/Iz0M0py8S8cQ
-9N7BAmHOsJ8Rui4Wix5Fg7PAEof6m6nTxawQpWZEinax0nyF0MeVUc5Dw1w8/Mpu
-0wsIPmCsNgrd7ucsodNpJ2qxj1Uitzh1hRm4K3CbJPWtFRPhF8wOxRQkWkFK98Km
-gChX1uO0VTPjAqqZs1ON0UxAeNgXruE2pbJFKUAe0pxU/k6QRJ3NSi6LeVW6NICN
-DMrT/S4utPlnfGwKsUPtPWQXwCECmT6VA9fR6d/nQG7As4TlSgs=
-=Gwnb
------END PGP SIGNATURE-----

tpm2-pkcs11-1.8.0.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:79f28899047defd6b4b72b7268dd56abf27774954022315f818c239af33e05bd
+size 1393977

tpm2-pkcs11-1.8.0.tar.gz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=TLp3
+-----END PGP SIGNATURE-----

tpm2-pkcs11.changes

@@ -1,3 +1,31 @@
+-------------------------------------------------------------------
+Fri Jul  8 12:23:01 UTC 2022 - Alberto Planas Dominguez <aplanas@suse.com>
+
+- Update to 1.8.0
+  + Fixed
+    * Fix GetRandom Memory Leak
+    * Fix some spelling mistakes
+    * Fix unit test test_parser
+    * Fix importing of RSA private key through pkcs11 interface should
+      fail.
+    * Fix ECDSA signature length calculation.
+    * Fix memory leak of tokens.
+    * Fix suspicious sizeof usage in _str_padded_copy
+    * Fix encoding errors when importing a certificate into the pkcs11
+      store.
+    * Fix try/finally scope issues in tpm2_ptool.
+    * Fix, an OOB access in db upgrade path.
+    * Fix ECDSA length calculation that was causing issues with Mutual
+      TLS in Firefox and Chrome.
+  + Changed
+    * remove unused macro set_safe_rc
+  + Added
+    * Add support for OpenSSL 3. Note that calls through engine are no
+      longer supported on OpenSSL3.
+    * Add tpm2_ptool export commandlet for exporting token keys into
+      PEM and TPM blob format.
+- Add new dependencies to PyYAML, cryptography, pyasn1 and tpm2-pytss
+
 -------------------------------------------------------------------
 Sat Feb 26 14:12:48 UTC 2022 - Callum Farmer <gmbr3@opensuse.org>
 

tpm2-pkcs11.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package tpm2-pkcs11
 #
-# Copyright (c) 2021 SUSE LLC
+# Copyright (c) 2022 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
 %define so_ver  0
 %define pythons python3
 Name:           tpm2-pkcs11
-Version:        1.7.0
+Version:        1.8.0
 Release:        0
 Summary:        A PKCS#11 interface for TPM2 hardware
 License:        BSD-2-Clause
@@ -35,8 +35,12 @@ BuildRequires:  fdupes
 BuildRequires:  libtool
 BuildRequires:  pkgconfig
 BuildRequires:  python-rpm-generators
+BuildRequires:  python3-PyYAML
 BuildRequires:  python3-base
+BuildRequires:  python3-cryptography
+BuildRequires:  python3-pyasn1-modules
 BuildRequires:  python3-setuptools
+BuildRequires:  python3-tpm2-pytss
 BuildRequires:  tpm2.0-tools
 BuildRequires:  pkgconfig(libcrypto) >= 1.0.2g
 BuildRequires:  pkgconfig(p11-kit-1)