SHA256
1
0
forked from pool/parsec
Commit Graph

27 Commits

Author SHA256 Message Date
0232d85cd4 Accepting request 1118527 from home:Guillaume_G:branches:security
- Fix build on Leap 15.5
- Update to 1.3.0-rc1

OBS-URL: https://build.opensuse.org/request/show/1118527
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=48
2023-10-18 07:45:57 +00:00
ba78fbdd9b OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=47 2023-10-18 07:44:58 +00:00
dc2f3cb281 Accepting request 1080909 from home:Guillaume_G:branches:security
- Update to 1.2.0:
  * Closed issue since 1.2.0-rc1:
    - Parsec 1.1 fails to build with meta-security master branch

OBS-URL: https://build.opensuse.org/request/show/1080909
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=44
2023-04-20 15:10:55 +00:00
e657aa794a Accepting request 1075017 from home:Guillaume_G:branches:security
- Disable jwt-svid-authenticator (SPIFFE) until fixed upstream
  with gcc13 - https://github.com/parallaxsecond/parsec/issues/672

OBS-URL: https://build.opensuse.org/request/show/1075017
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=42
2023-03-28 13:00:46 +00:00
2a08837f5e Accepting request 1073923 from home:Guillaume_G:branches:security
- Update to 1.2.0-rc1
- Drop upstream patch:
  * 664.patch

OBS-URL: https://build.opensuse.org/request/show/1073923
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=41
2023-03-23 09:27:14 +00:00
9b8a4e9719 Accepting request 1071968 from home:Guillaume_G:branches:security
- Add patch to fix build on Tumbleweed (update tss-esapi to 7.2.0):
  * 664.patch
- Add <param name="update">true</param> to _service to apply
  security updates
- Use cargo-packaging for all flavors
- Enable cargo_audit

OBS-URL: https://build.opensuse.org/request/show/1071968
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=39
2023-03-15 08:18:22 +00:00
836f20c193 Accepting request 1059543 from home:Guillaume_G:branches:security
- Add libstdc++6-devel-gcc11 to fix build with GCC11 on
  Backports SLE15-SP4/5

OBS-URL: https://build.opensuse.org/request/show/1059543
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=37
2023-01-19 11:05:28 +00:00
07db0a658b Accepting request 1007911 from home:Guillaume_G:branches:security
- Update to 1.1.0:
  * Main updates:
    - Add generate random support into TPM and PKCS11 providers
    - Implement configurable exclusion of deprecated primitives
    - Allow binary PIN values for PKCS11 provider
    - Recognise a PKCS11 hardware token with its serial number
      instead of slot number
  * Full changelog: https://github.com/parallaxsecond/parsec/releases/tag/1.1.0

OBS-URL: https://build.opensuse.org/request/show/1007911
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=35
2022-10-04 13:45:36 +00:00
efb1dcbc5d - rust-packaging -> cargo-packaging (bsc#1198131)
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=30
2022-04-06 07:01:20 +00:00
04e8e21f4e Accepting request 966122 from home:Guillaume_G:branches:security
- Update to 1.0.0:
  * Update changelog file only
- Disable build on x86 since the build fails

OBS-URL: https://build.opensuse.org/request/show/966122
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=27
2022-03-31 06:28:28 +00:00
cb3d0190c0 Accepting request 963699 from home:Guillaume_G:branches:security
- Update to 1.0.0-rc3:
  * Changelog: https://github.com/parallaxsecond/parsec/compare/1.0.0-rc2...1.0.0-rc3
  * Fixes CVE-2022-24713 - boo#1196972

OBS-URL: https://build.opensuse.org/request/show/963699
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=25
2022-03-21 13:31:26 +00:00
ec546eaaf3 Accepting request 960364 from home:Guillaume_G:branches:security
- Update to 1.0.0-rc2:
  * Changelog: https://github.com/parallaxsecond/parsec/compare/1.0.0-rc1...1.0.0-rc2
- Remove CryptoAuthLib (CAL) provider as it is unmaintained.

OBS-URL: https://build.opensuse.org/request/show/960364
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=23
2022-03-09 07:35:10 +00:00
5ffa71a25b Accepting request 957245 from home:Guillaume_G:branches:security
- Update to 1.0.0-rc1:
  * Changelog: https://github.com/parallaxsecond/parsec/compare/0.8.1...1.0.0-rc1
- Drop upstream patch:
  * harden_parsec.service.patch

OBS-URL: https://build.opensuse.org/request/show/957245
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=21
2022-02-24 09:42:19 +00:00
5bd53dc3f7 OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=20 2022-01-13 13:47:48 +00:00
30a40ae621 Accepting request 946148 from home:Guillaume_G:branches:security
- Update to 0.8.0:
  * Changelog: https://github.com/parallaxsecond/parsec/compare/0.8.0...0.8.1

OBS-URL: https://build.opensuse.org/request/show/946148
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=19
2022-01-13 13:47:08 +00:00
f1f6febe17 OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=18 2021-12-21 15:16:33 +00:00
fad872c73b Accepting request 925351 from home:jsegitz:branches:systemdhardening:security
Automatic systemd hardening effort by the security team. This has not been tested. For details please see https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort

OBS-URL: https://build.opensuse.org/request/show/925351
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=16
2021-12-21 15:09:55 +00:00
30810bef27 OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=15 2021-12-09 13:58:41 +00:00
685234f717 Accepting request 937755 from home:Guillaume_G:branches:security
- Fix /run/parsec permission to 755. This is enough for all
  users to access the service - boo#1193484

OBS-URL: https://build.opensuse.org/request/show/937755
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=14
2021-12-09 11:06:53 +00:00
d8388a0735 Accepting request 921728 from home:Guillaume_G:branches:security
- Allow access to /run/parsec to all users
- Requires rust 1.53+ (now also available in 15.3/15-SP3 via Update)
  which allow to enable same features accross distros

OBS-URL: https://build.opensuse.org/request/show/921728
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=13
2021-09-27 12:13:40 +00:00
663a30d392 Accepting request 920614 from home:Guillaume_G:branches:security
- Update to 0.8.0:
  * Changelog: https://github.com/parallaxsecond/parsec/compare/0.7.2...0.8.0
- Drop upstream patch:
  * parsec-fix-old-rust.patch
- Disable 'trusted-service-provider' as it currently fails to build
- Disable 'jwt-svid-authenticator' (SPIFFE-based authenticator)
  on Leap, as it cannot be compiled with rust 1.43.1

OBS-URL: https://build.opensuse.org/request/show/920614
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=12
2021-09-21 09:16:10 +00:00
c8dac349e0 Accepting request 889537 from home:Guillaume_G:branches:security
- Fix build with old rust used in Leap 15.3/SLE15-SP3.
  * parsec-fix-old-rust.patch

OBS-URL: https://build.opensuse.org/request/show/889537
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=10
2021-04-30 11:37:33 +00:00
747332bc19 Accepting request 885427 from home:Guillaume_G:branches:security
- Requires 'tpm2-0-tss' as it holds the udev rule to make /dev/tpm*
  owned by tss user
- Requires 'libtss2-tcti-device0' as it is required to start parsec
  with TPM support
- Enable all authenticators which adds 'direct-authenticator'
- Add CryptoAuthLib template (disabled) in config.toml

OBS-URL: https://build.opensuse.org/request/show/885427
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=8
2021-04-14 15:57:17 +00:00
d07d808112 Accepting request 882706 from home:Guillaume_G:branches:security
Drop softhsm references

OBS-URL: https://build.opensuse.org/request/show/882706
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=6
2021-04-02 10:08:52 +00:00
b023bfab1c Accepting request 882567 from home:Guillaume_G:branches:security
- Make 'parsec' user part of 'tss' group to access /dev/tpm* devices

- Update to 0.7.2:
  * Changelog: https://github.com/parallaxsecond/parsec/compare/0.6.0...0.7.2

- Recommends 'softhsm' as it is used by PKCS#11 backend
- Recommends 'opensc' as it is used to initialize HSM keys (PKCS#11 backend)
- Add PKCS#11 template (disabled) in config.toml
- Disable Tpm backend by default in config.toml

OBS-URL: https://build.opensuse.org/request/show/882567
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=5
2021-04-01 13:00:44 +00:00
55c56f76c2 Accepting request 848361 from home:Guillaume_G:branches:security
- Enable 'all-providers' which adds 'pkcs11-provider' compared to 
  previous config
- Drop unneeded patch:
  * pkcs11-libloading-issue.patch

OBS-URL: https://build.opensuse.org/request/show/848361
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=3
2020-11-13 14:30:27 +00:00
e83954ae8f Accepting request 844364 from home:Guillaume_G
parsec service

OBS-URL: https://build.opensuse.org/request/show/844364
OBS-URL: https://build.opensuse.org/package/show/security/parsec?expand=0&rev=1
2020-11-03 08:16:41 +00:00