Accepting request 948899 from security:chipcard

OBS-URL: https://build.opensuse.org/request/show/948899
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/pam_pkcs11?expand=0&rev=33

pam_pkcs11-0.5.3-nss-conf.patch

@@ -1,5 +1,7 @@
---- pam_pkcs11-0.5.3/etc/pam_pkcs11.conf.example.in	2005-09-12 05:12:55.000000000 -0400
-+++ pam_pkcs11-0.5.3/etc/pam_pkcs11.conf.example.in	2007-03-01 10:42:20.000000000 -0500
+Index: pam_pkcs11-pam_pkcs11-0.6.12/etc/pam_pkcs11.conf.example.in
+===================================================================
+--- pam_pkcs11-pam_pkcs11-0.6.12.orig/etc/pam_pkcs11.conf.example.in
++++ pam_pkcs11-pam_pkcs11-0.6.12/etc/pam_pkcs11.conf.example.in
 @@ -9,7 +9,7 @@ pam_pkcs11 {
    nullok = true;
  
@@ -9,8 +11,8 @@
  
    # Do not prompt the user for the passwords but take them from the
    # PAM_ items instead.
-@@ -24,7 +24,12 @@ pam_pkcs11 {
-   use_authtok = false;
+@@ -48,7 +48,12 @@ pam_pkcs11 {
+   screen_savers = xfce4-screensaver, mate-screensaver, gnome-screensaver, kde4-kscreensaver, kscreensaver, xscreensaver;
  
    # Filename of the PKCS #11 module. The default value is "default"
 -  use_pkcs11_module = opensc;
@@ -23,7 +25,7 @@
  
    pkcs11_module opensc {
      module = /usr/lib/opensc-pkcs11.so;
-@@ -112,7 +112,7 @@
+@@ -162,7 +167,7 @@ pam_pkcs11 {
    # If used null mapper should be the last in the list :-)
    # Also you should select at least one mapper, otherwise
    # certificate will not match :-)

pam_pkcs11-0.6.10.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3bce6b184ce054c2a752e96e36646ea8dd545a52f3025ca32b3e705302bc9152
-size 270819

pam_pkcs11.changes

@@ -1,3 +1,12 @@
+-------------------------------------------------------------------
+Sat Jan 15 10:26:28 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de>
+
+- update to 0.6.12:
+  * Limit signature length to 65536 bytes
+  * A number of bug fixes and OpenSSL compatibility updates
+  * console output color updates
+  * Add support of ECDSA signature in addition to RSA
+
 -------------------------------------------------------------------
 Tue Jan 29 22:45:28 CET 2019 - sbrabec@suse.com
 

pam_pkcs11.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package pam_pkcs11
 #
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2022 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,12 +19,12 @@
 # It seems to be an upstream naming bug:
 %define _name pam_pkcs11-pam_pkcs11
 Name:           pam_pkcs11
-Version:        0.6.10
+Version:        0.6.12
 Release:        0
 Summary:        PKCS #11 PAM Module
 License:        LGPL-2.1-or-later
 Group:          Productivity/Security
-Url:            https://github.com/OpenSC/pam_pkcs11
+URL:            https://github.com/OpenSC/pam_pkcs11
 Source:         https://github.com/OpenSC/pam_pkcs11/archive/%{name}-%{version}.tar.gz
 Source1:        pam_pkcs11-common-auth-smartcard.pam
 Source2:        baselibs.conf
@@ -101,9 +101,9 @@ sed -i '/^HTML_TIMESTAMP/s/YES/NO/' doc/doxygen.conf.in
 	--docdir=%{_docdir}/%{name}\
 	--with-nss\
 	--with-curl
-make %{?_smp_mflags}
+%make_build
 # Generate documentation: This sounds like an upstream bug while making an upstream source tarball.
-make %{?_smp_mflags} dist
+%make_build dist
 
 %install
 %make_install