Accepting request 1075017 from home:Guillaume_G:branches:security

- Disable jwt-svid-authenticator (SPIFFE) until fixed upstream
  with gcc13 - https://github.com/parallaxsecond/parsec/issues/672

OBS-URL: https://build.opensuse.org/request/show/1075017
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=42

parsec.changes

@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Mon Mar 27 09:55:24 UTC 2023 - Guillaume GARDET <guillaume.gardet@opensuse.org>
+
+- Disable jwt-svid-authenticator (SPIFFE) until fixed upstream
+  with gcc13 - https://github.com/parallaxsecond/parsec/issues/672
+
 -------------------------------------------------------------------
 Thu Mar 23 09:01:01 UTC 2023 - Guillaume GARDET <guillaume.gardet@opensuse.org>
 

parsec.spec

@@ -75,9 +75,13 @@ rm -rf .cargo && mkdir .cargo
 cp %{SOURCE2} .cargo/config
 # Enable all providers
 sed -i -e 's#default = \["unix-peer-credentials-authenticator"\]##' Cargo.toml
-# Features available in 1.0.0:
+# Features available in 1.2.0-rc1:
 # all-providers = ["tpm-provider", "pkcs11-provider", "mbed-crypto-provider", "trusted-service-provider"]
 # all-authenticators = ["direct-authenticator", "unix-peer-credentials-authenticator", "jwt-svid-authenticator"]
+%if 0%{?suse_version} > 1550
+# But disable "jwt-svid-authenticator"/SPIFFE with gcc13 until build fixed upstream - https://github.com/parallaxsecond/parsec/issues/672
+sed -i -e 's#all-authenticators = \["direct-authenticator", "unix-peer-credentials-authenticator", "jwt-svid-authenticator"\]#all-authenticators = \["direct-authenticator", "unix-peer-credentials-authenticator"\]#' Cargo.toml
+%endif
 # But disable "trusted-service-provider" until we have a trusted-services package
 echo 'default = ["tpm-provider", "pkcs11-provider", "mbed-crypto-provider", "all-authenticators"]' >> Cargo.toml