diff --git a/pam_pkcs11-0.5.3-nss-conf.patch b/pam_pkcs11-0.5.3-nss-conf.patch index 9a898e0..6e58dcc 100644 --- a/pam_pkcs11-0.5.3-nss-conf.patch +++ b/pam_pkcs11-0.5.3-nss-conf.patch @@ -1,5 +1,7 @@ ---- pam_pkcs11-0.5.3/etc/pam_pkcs11.conf.example.in 2005-09-12 05:12:55.000000000 -0400 -+++ pam_pkcs11-0.5.3/etc/pam_pkcs11.conf.example.in 2007-03-01 10:42:20.000000000 -0500 +Index: pam_pkcs11-pam_pkcs11-0.6.12/etc/pam_pkcs11.conf.example.in +=================================================================== +--- pam_pkcs11-pam_pkcs11-0.6.12.orig/etc/pam_pkcs11.conf.example.in ++++ pam_pkcs11-pam_pkcs11-0.6.12/etc/pam_pkcs11.conf.example.in @@ -9,7 +9,7 @@ pam_pkcs11 { nullok = true; @@ -9,8 +11,8 @@ # Do not prompt the user for the passwords but take them from the # PAM_ items instead. -@@ -24,7 +24,12 @@ pam_pkcs11 { - use_authtok = false; +@@ -48,7 +48,12 @@ pam_pkcs11 { + screen_savers = xfce4-screensaver, mate-screensaver, gnome-screensaver, kde4-kscreensaver, kscreensaver, xscreensaver; # Filename of the PKCS #11 module. The default value is "default" - use_pkcs11_module = opensc; @@ -23,7 +25,7 @@ pkcs11_module opensc { module = /usr/lib/opensc-pkcs11.so; -@@ -112,7 +112,7 @@ +@@ -162,7 +167,7 @@ pam_pkcs11 { # If used null mapper should be the last in the list :-) # Also you should select at least one mapper, otherwise # certificate will not match :-) diff --git a/pam_pkcs11-0.6.10.tar.gz b/pam_pkcs11-0.6.10.tar.gz deleted file mode 100644 index cc5f517..0000000 --- a/pam_pkcs11-0.6.10.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:3bce6b184ce054c2a752e96e36646ea8dd545a52f3025ca32b3e705302bc9152 -size 270819 diff --git a/pam_pkcs11-0.6.12.tar.gz b/pam_pkcs11-0.6.12.tar.gz new file mode 100644 index 0000000..0930210 --- /dev/null +++ b/pam_pkcs11-0.6.12.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:c29cfd021fd3793263f1784b039f166f0e751996bada656a0f9470005eb0c093 +size 272762 diff --git a/pam_pkcs11.changes b/pam_pkcs11.changes index 21cdff1..ccef297 100644 --- a/pam_pkcs11.changes +++ b/pam_pkcs11.changes @@ -1,3 +1,12 @@ +------------------------------------------------------------------- +Sat Jan 15 10:26:28 UTC 2022 - Andreas Stieger + +- update to 0.6.12: + * Limit signature length to 65536 bytes + * A number of bug fixes and OpenSSL compatibility updates + * console output color updates + * Add support of ECDSA signature in addition to RSA + ------------------------------------------------------------------- Tue Jan 29 22:45:28 CET 2019 - sbrabec@suse.com diff --git a/pam_pkcs11.spec b/pam_pkcs11.spec index af95991..142649f 100644 --- a/pam_pkcs11.spec +++ b/pam_pkcs11.spec @@ -1,7 +1,7 @@ # # spec file for package pam_pkcs11 # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -19,12 +19,12 @@ # It seems to be an upstream naming bug: %define _name pam_pkcs11-pam_pkcs11 Name: pam_pkcs11 -Version: 0.6.10 +Version: 0.6.12 Release: 0 Summary: PKCS #11 PAM Module License: LGPL-2.1-or-later Group: Productivity/Security -Url: https://github.com/OpenSC/pam_pkcs11 +URL: https://github.com/OpenSC/pam_pkcs11 Source: https://github.com/OpenSC/pam_pkcs11/archive/%{name}-%{version}.tar.gz Source1: pam_pkcs11-common-auth-smartcard.pam Source2: baselibs.conf @@ -101,9 +101,9 @@ sed -i '/^HTML_TIMESTAMP/s/YES/NO/' doc/doxygen.conf.in --docdir=%{_docdir}/%{name}\ --with-nss\ --with-curl -make %{?_smp_mflags} +%make_build # Generate documentation: This sounds like an upstream bug while making an upstream source tarball. -make %{?_smp_mflags} dist +%make_build dist %install %make_install