From e657aa794ac6606df164c4fde7d7643e6d002bf87daefd52620b8faa9a8b7464 Mon Sep 17 00:00:00 2001
From: Guillaume GARDET <guillaume.gardet@opensuse.org>
Date: Tue, 28 Mar 2023 13:00:46 +0000
Subject: [PATCH] Accepting request 1075017 from
 home:Guillaume_G:branches:security

- Disable jwt-svid-authenticator (SPIFFE) until fixed upstream
  with gcc13 - https://github.com/parallaxsecond/parsec/issues/672

OBS-URL: https://build.opensuse.org/request/show/1075017
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=42
---
 parsec.changes | 6 ++++++
 parsec.spec    | 6 +++++-
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/parsec.changes b/parsec.changes
index bbaf32e..d6fd5dc 100644
--- a/parsec.changes
+++ b/parsec.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Mon Mar 27 09:55:24 UTC 2023 - Guillaume GARDET <guillaume.gardet@opensuse.org>
+
+- Disable jwt-svid-authenticator (SPIFFE) until fixed upstream
+  with gcc13 - https://github.com/parallaxsecond/parsec/issues/672
+
 -------------------------------------------------------------------
 Thu Mar 23 09:01:01 UTC 2023 - Guillaume GARDET <guillaume.gardet@opensuse.org>
 
diff --git a/parsec.spec b/parsec.spec
index 7a1c4b4..b135304 100644
--- a/parsec.spec
+++ b/parsec.spec
@@ -75,9 +75,13 @@ rm -rf .cargo && mkdir .cargo
 cp %{SOURCE2} .cargo/config
 # Enable all providers
 sed -i -e 's#default = \["unix-peer-credentials-authenticator"\]##' Cargo.toml
-# Features available in 1.0.0:
+# Features available in 1.2.0-rc1:
 # all-providers = ["tpm-provider", "pkcs11-provider", "mbed-crypto-provider", "trusted-service-provider"]
 # all-authenticators = ["direct-authenticator", "unix-peer-credentials-authenticator", "jwt-svid-authenticator"]
+%if 0%{?suse_version} > 1550
+# But disable "jwt-svid-authenticator"/SPIFFE with gcc13 until build fixed upstream - https://github.com/parallaxsecond/parsec/issues/672
+sed -i -e 's#all-authenticators = \["direct-authenticator", "unix-peer-credentials-authenticator", "jwt-svid-authenticator"\]#all-authenticators = \["direct-authenticator", "unix-peer-credentials-authenticator"\]#' Cargo.toml
+%endif
 # But disable "trusted-service-provider" until we have a trusted-services package
 echo 'default = ["tpm-provider", "pkcs11-provider", "mbed-crypto-provider", "all-authenticators"]' >> Cargo.toml