pool/tpm2.0-abrmd
SHA256
3
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • cd398a7cbe Accepting request 1193691 from security factory Dominique Leuenberger 2024-08-14 12:13:54 +0000
  • 4a0438e2e0 - Fix SELinux sbin/bin merge (bsc#1229047) 1229047-fix-bin-sbin-selinux.patch Can be dropped once https://github.com/tpm2-software/tpm2-abrmd/pull/846 is merged upstream Matthias Gerstner 2024-08-13 09:25:31 +0000
  • 7a8ab520dc Accepting request 1190949 from security Dominique Leuenberger 2024-08-02 15:25:40 +0000
  • 7fa9a4afec Accepting request 1190938 from home:jsegitz:branches:security Alberto Planas Dominguez 2024-08-01 10:50:21 +0000
  • 84e2d8338c Accepting request 1088672 from security Dominique Leuenberger 2023-05-24 18:22:12 +0000
  • 86346a0423 Accepting request 1088671 from home:aplanas:branches:security Alberto Planas Dominguez 2023-05-23 13:55:07 +0000
  • be96b17c89 Accepting request 1088652 from home:aplanas:branches:security Alberto Planas Dominguez 2023-05-23 12:36:28 +0000
  • 084e1b5dbe Accepting request 1041873 from security Dominique Leuenberger 2022-12-10 20:17:39 +0000
  • 8e63387014 Accepting request 1041872 from home:aplanas:branches:security Alberto Planas Dominguez 2022-12-09 13:28:01 +0000
  • 275465ba4e Accepting request 987872 from security Dominique Leuenberger 2022-07-09 14:59:04 +0000
  • aff03c95a6 Accepting request 987871 from home:aplanas:branches:security Alberto Planas Dominguez 2022-07-08 09:36:10 +0000
  • 892426b7ff Accepting request 987866 from home:aplanas:branches:security Alberto Planas Dominguez 2022-07-08 09:24:21 +0000
  • 8ad3f04a3a Accepting request 966798 from security Dominique Leuenberger 2022-04-05 17:55:07 +0000
  • 9bffff1eff - dbus-access.patch: restrict D-Bus access to tpm2-abrmd to members of the tss group (bsc#1197532). This prevents arbitrary users from meddling with TPM state and thus potential denial-of-service vectors. Matthias Gerstner 2022-04-04 11:06:24 +0000
  • f5802a1cf0 - restrict D-Bus access to tpm2-abrmd to members of the tss group (bsc#1197532). This prevents arbitrary users from meddling with TPM state and thus potential denial-of-service vectors. Matthias Gerstner 2022-04-04 10:57:16 +0000
  • e4c37f44dd Accepting request 936756 from security Dominique Leuenberger 2021-12-08 21:08:47 +0000
  • 484a6963b0 Accepting request 936755 from home:aplanas:branches:security Alberto Planas Dominguez 2021-12-08 17:09:43 +0000
  • 127461b313 Accepting request 934691 from home:aplanas:branches:security Matthias Gerstner 2021-12-06 10:27:18 +0000
  • 513931f99e Accepting request 934685 from security Dominique Leuenberger 2021-12-01 19:46:21 +0000
  • b27e01aef4 Accepting request 933795 from home:jsegitz:branches:systemdhardening:security Matthias Gerstner 2021-11-30 09:31:21 +0000
  • d0041bdfd8 Accepting request 908096 from security Dominique Leuenberger 2021-08-02 10:04:17 +0000
  • 1e214528c0 Accepting request 906866 from home:gmbr3:Active Matthias Gerstner 2021-07-19 08:32:03 +0000
  • 41e7715f7f Accepting request 906496 from home:gmbr3:Active Matthias Gerstner 2021-07-16 08:20:11 +0000
  • def244e4ba Accepting request 899900 from security Dominique Leuenberger 2021-06-14 21:11:12 +0000
  • 811636d17a Accepting request 898987 from home:aplanas:branches:security Marcus Meissner 2021-06-14 08:37:45 +0000
  • c98a16565a explicitly mark %license Matthias Gerstner 2021-02-02 12:23:47 +0000
  • 0686fb58f0 note about download_files magic Matthias Gerstner 2021-01-29 13:09:02 +0000
  • 1d55170c8b remove now unneeded workaroud Matthias Gerstner 2021-01-29 10:37:52 +0000
  • 450571fde8 Accepting request 843600 from security Dominique Leuenberger 2020-10-28 10:25:47 +0000
  • 878c029dde - update to version 2.3.3: - changes in version 2.3.1: - Fixed handle resource leak exhausting TPM resources. - changes in version 2.3.2: - Added cirrus CI specific config files to enable FreeBSD builds. - Changed test scripts to be more portable. - Changed include header paths specific to FreeBSD. - changes in version 2.3.1: - Provide meaningful exit codes on initialization failures. - Prevent systemd from starting the daemon before udev changes ownership of the TPM device node. - Prevent systemd from starting the daemon if there is no TPM device node. - Prevent systemd from restarting the daemon if it fails. - Add SELinux policy to allow daemon to resolve names. - Add SELinux policy boolean (disabled by default) to allow daemon to connect to all unreserved ports. Matthias Gerstner 2020-10-22 12:19:32 +0000
  • 6e1501cfc9 Accepting request 755854 from security Dominique Leuenberger 2019-12-18 13:44:46 +0000
  • d451320a04 - drop fix_dlopen.patch: no longer necessary since abrmd not uses the tctildr shared library. This one hopefully now does the right thing. Matthias Gerstner 2019-12-11 12:02:48 +0000
  • 73b5f87efa - update to version 2.3.0: - changes in version 2.3.0: - Add '--enable-debug' flag to configure script to simplify debug builds. This relies on the AX_CHECK_ENABLE_DEBUG autoconf archive macro. - Replaced custom dynamic TCTI loading code with libtss2-tctildr from upstream tpm2-tss repo. (requires tpm2-0-tss version 2.3.0) - Explicitly set '-O2' optimization when using FORTIFY_SOURCE as required. - changes in version 2.2.0: - New configuration option `--disable-defaultflags/ added. This is for use for packaging for targets that do not support the default compilation / linking flags. - Use private dependencies properly in pkg-config metadata for TCTI. - Refactor daemon main module to enable better handling of error conditions and enable more thorough unit testing. - Updated dependencies to ensure compatibility with pkg-config fixes in tpm2-tss. - Fixed bug causing TCTI to block when used by libtss2-sys built with partial reads enabled. - Removed unnecessary libs / flags for pthreads in the TCTI pkg-config. - Output from configure script now accurately describes the state of the flags that govern the integration tests. Matthias Gerstner 2019-12-11 12:00:43 +0000
  • 44b560097f Accepting request 726060 from security Dominique Leuenberger 2019-08-27 08:23:15 +0000
  • 76e0c2b6a5 - update to version 2.1.1: - changes in version 2.1.1: - Unit tests accessing dbus have been fixed to use mock functions. Unit tests no longer depend on dbus. - Race condition between client connections and dbus proxy object creation by registering bus name after instantiation of the proxy object. Matthias Gerstner 2019-08-26 06:52:49 +0000
  • 6cbdab952a Accepting request 698147 from security Yuchen Lin 2019-04-26 20:55:02 +0000
  • d9c5e11335 Accepting request 698139 from home:jubalh:branches:security Matthias Gerstner 2019-04-26 10:42:04 +0000
  • 2d3fdd30cc Accepting request 682103 from security Dominique Leuenberger 2019-03-06 14:51:47 +0000
  • 987a3b6fee - added _service file for syncing with upstream tags Matthias Gerstner 2019-03-06 10:40:25 +0000
  • fae18a1e25 - update to version 2.1.0: - changes in 2.1.0: - -Wstrict-overflow=5 now used in default CFLAGS. - Handling of TPM2_RC_CONTEXT_GAP on behalf of users. - Convert TPM2_PT_CONTEXT_GAP_MAX response from lower layer to UINT32_MAX - travis-ci now uses 'xenial' builder - Significant refactoring of TCTI handling code. - --install added to ACLOCAL_AMFLAGS to install aclocal required macros instead of using the default symlinks - Launch dbus-run-session in the automake test environment to automagically set up a dbus session bus instance when one isn't present. - Bug caused by unloading of libtss2-tcti-tabrmd.so on dlclose. GLib does not support reloading a second time. - Bug causing -fstack-protector-all to be used on systems with core libraries (i.e. libc) that do not support it. This caused failures at link-time. - Unnecessary symbols from libtest utility library no longer included in TCTI library. - changes in 2.0.3: - Update build to account for upstream change to glib '.pc' files described in: https://gitlab.gnome.org/GNOME/glib/issues/1521 - changes in 2.0.2: - --enable-integration option to configure script now works as documented. Matthias Gerstner 2019-03-06 10:39:57 +0000
  • 7149753868 Accepting request 665953 from security Dominique Leuenberger 2019-01-21 09:52:59 +0000
  • 2ffd556609 Incorporate FATE# in changes file for SLE-15-SP1 (bsc#1121860) Matthias Gerstner 2019-01-14 14:21:47 +0000
  • 92ba446dd8 Accepting request 644573 from security Dominique Leuenberger 2018-10-26 09:10:05 +0000
  • 1d9194c69e - add a Requires towards tpm2-0-tss, because that main package holds the udev rules and logic for setting up the tss user. Without this the daemon can't start up correctly. Matthias Gerstner 2018-10-25 09:01:40 +0000
  • 466bf92992 Accepting request 643993 from security Dominique Leuenberger 2018-10-23 18:42:25 +0000
  • 14047cdd08 - fix broken build due to newer glib dependency that reports a full path for gdbus-codegen, breaking the configure check. Matthias Gerstner 2018-10-23 15:47:33 +0000
  • 385c6e60ed Accepting request 638481 from security Dominique Leuenberger 2018-09-28 06:53:20 +0000
  • 8b282ca0aa remove signature file Matthias Gerstner 2018-09-26 16:04:57 +0000
  • 6860a81c92 - update to version 2.0.2: - --enable-integration option to configure script now works as documented. - Format specifier with wrong size in util module. - Initialize TCTI context to 0 before setting values. This will cause all members that aren't explicitly initialized by be 0. Matthias Gerstner 2018-09-26 15:56:05 +0000
  • 121abbe5e0 Accepting request 636379 from security Yuchen Lin 2018-09-19 12:30:37 +0000
  • b29ad9fd05 - add recommends to the tcti-device and tcti-abrmd. Otherwise they're not installed right away, rendering the abrmd quite unusable. Matthias Gerstner 2018-09-18 09:05:57 +0000
  • 440b8bea80 Accepting request 628591 from security Dominique Leuenberger 2018-08-12 18:53:45 +0000
  • e00fdb0c4b fixed source URL Matthias Gerstner 2018-08-10 11:00:36 +0000
  • 50ad8ee045 OBS-URL: https://build.opensuse.org/package/show/security/tpm2.0-abrmd?expand=0&rev=29 Matthias Gerstner 2018-08-10 10:33:03 +0000
  • c0e2898883 - Update to version 2.0.1: * SessionList: Fix Connection object reference leak. * source/sink: Organize ControlMessage processing. * CommandSource: Replace 'connection-removed' signal with ControlMessage. * SessionList: Remove all locking. * ConnectionManager: Remove 'connection-removed' signal. * ci: Build 'check' target when CC is gcc. * build: Fix bad URLs in configure script. * CHANGELOG.md: Add version number and date for 2.0.1 release. * Replace references to drand48_r family of functions for portability * Fix for type-punned pointer reported in newer compilers that enforce strict aliasing Matthias Gerstner 2018-08-10 10:31:50 +0000
  • 1de8f4ed3b Accepting request 620450 from security Dominique Leuenberger 2018-07-06 08:41:17 +0000
  • 63a9433b38 changed source URL to release tarbal, adjust github URL to new tpm2-software org Matthias Gerstner 2018-07-03 11:47:01 +0000
  • 3f5af3599f OBS-URL: https://build.opensuse.org/package/show/security/tpm2.0-abrmd?expand=0&rev=25 Matthias Gerstner 2018-07-03 10:52:52 +0000
  • 0ea529fd90 OBS-URL: https://build.opensuse.org/package/show/security/tpm2.0-abrmd?expand=0&rev=24 Matthias Gerstner 2018-07-03 10:49:47 +0000
  • 89d067305c OBS-URL: https://build.opensuse.org/package/show/security/tpm2.0-abrmd?expand=0&rev=23 Matthias Gerstner 2018-07-03 10:46:16 +0000
  • 61a8990276 OBS-URL: https://build.opensuse.org/package/show/security/tpm2.0-abrmd?expand=0&rev=22 Matthias Gerstner 2018-07-03 09:59:56 +0000
  • ea25d61a41 - Trying to fix build on older distros that fail because of a missing or broken autoconf valgrind detection macro. Removing autoreconf to hopefully fix this. Matthias Gerstner 2018-07-03 09:21:33 +0000
  • 2ccdd2a027 - add fix_dlopen.patch: fixes an issue with dlopen()'ing the tcti-device library from tpm2-0-tss. See https://github.com/tpm2-software/tpm2-abrmd/issues/486. Matthias Gerstner 2018-07-02 09:29:58 +0000
  • 5fe02cf67b OBS-URL: https://build.opensuse.org/package/show/security/tpm2.0-abrmd?expand=0&rev=19 Matthias Gerstner 2018-06-29 14:14:44 +0000
  • a6159bc70d Accepting request 578992 from security Dominique Leuenberger 2018-02-26 22:24:21 +0000
  • e7db476738 reference added but unused patch to satisfy factory checkers Matthias Gerstner 2018-02-22 12:17:22 +0000
  • e91d8694b6 - correctly trigger udev to update /dev/tpm* permissions after package installation. (bnc#1078687) Matthias Gerstner 2018-02-22 11:39:11 +0000
  • 895b7f4def - update to upstream version 1.2.0: - Limit maximum number of active sessions per connection with '--max-sessions'. - Flush all transient objects and sessions on daemon start with '--flush-all'. - Allow passing of sessions across connections with ContextSave / Load. - Unref the GUnixFDList returned by GIO / dbus in the TCTI init function. This fixes a memory leak in the TCTI library. Matthias Gerstner 2018-02-22 11:37:19 +0000
  • 25eb4b1290 Accepting request 542015 from security Dominique Leuenberger 2017-11-16 13:02:09 +0000
  • 45aa70719e removed bogus patch, added patch name to changes file. Matthias Gerstner 2017-11-15 12:21:15 +0000
  • 177ba37246 - service_path.patch: fixed broken systemd service unit (bnc#1066123). the service unit file in the upstream distribution tarball is already configured and looks for binaries and configuration files in the /usr/local prefix which is wrong. Matthias Gerstner 2017-11-15 12:20:34 +0000
  • b981d03939 - fixed broken systemd service unit (bnc#1066123). the service unit file in the upstream distribution tarball is already configured and looks for binaries and configuration files in the /usr/local prefix which is wrong. Matthias Gerstner 2017-11-15 11:44:33 +0000
  • dd75eb48ae Accepting request 520199 from security Dominique Leuenberger 2017-09-04 10:34:51 +0000
  • aef1f3004c - package version symlink correctly, belongs into the lib package itself, not the -devel. Matthias Gerstner 2017-09-01 14:38:05 +0000
  • 63717e6b31 Accepting request 519625 from security Dominique Leuenberger 2017-08-30 14:24:39 +0000
  • 209831ef3d fix rm line for i586 Matthias Gerstner 2017-08-30 08:45:40 +0000
  • 5acd8f14e1 - update to upstream version 1.1.1 which fixes some local denial-of-service security issues among other things: - Replace use of sigaction with g_unix_signal_* stuff from glib. - Rewrite of INSTALL.md including info on custom configure script options. - Default value for --with-simulatorbin configure option has been removed. New default behavior is to disable integration tests. - CommandSource will no longer reject commands without parameters. - Unit tests updated to use cmocka v1.0.0 API. - Integration tests now run daemon under valgrind memcheck and fail when errors are found. - CommandSource now tracks max FD in set of client FDs to prevent unnecessary iterations over FD_SETSIZE fds. - no longer call bootstrap and switch to the release upstream tarball which has now been fixed to contain all necessary files Matthias Gerstner 2017-08-30 08:33:05 +0000
  • 278b33d980 Accepting request 514219 from security Dominique Leuenberger 2017-08-24 16:44:54 +0000
  • b9994caa9f adjust artifact name to match download URL basename Matthias Gerstner 2017-08-03 11:53:43 +0000
  • a5a889c22a switch to source tarball, correct upstream URL, documented the situation Matthias Gerstner 2017-08-03 11:39:21 +0000
  • 22f00b7eca OBS-URL: https://build.opensuse.org/package/show/security/tpm2.0-abrmd?expand=0&rev=2 Marcus Meissner 2017-08-03 10:00:31 +0000
  • 431d7c228c Accepting request 514156 from home:mgerstner:branches:security Marcus Meissner 2017-08-03 08:13:01 +0000