rpm/tboot
SHA256
1
0
Fork 0
forked from pool/tboot
Code Pull Requests Activity

update to new upstream version 1.9.6:

Browse Source 
- removed following patches, because they're now included upstream:
	* tboot-grub2-fix-menu-in-xen-host-server.patch
	* tboot-grub2-fix-xen-submenu-name.patch
	* tboot-grub2-suse.patch
- Changes in this version:
	* GCC7 fix, adds generic FALLTHROUGH notations to avoid warnings appearing on GCC7
        * Ensure Tboot never overwrites modules in the process of moving them.
        * Add support to x2APIC, which uses 32 bit APIC ID.
        * Fix S3 secrets sealing/unsealing failures
        * Support OpenSSL 1.1.0+ for ECDSA signature verification.
        * Support OpenSSL 1.1.0+ for RSA key manipulation.
        * Adds additional checks to prevent the kernel image from being overwritten.
        * Added TCG TPM event log support.
        * Pass through the EFI memory map that's provided by grub2.
        * Fix a null pointer dereference bug when Intel TXT is disabled in BIOS.
        * Adjust KERNEL_CMDLINE_OFFSET from 0x9000 to 0x8D00.
        * Bounds checking on the kernel_cmdline string.

OBS-URL: https://build.opensuse.org/package/show/security/tboot?expand=0&rev=64
This commit is contained in:
Matthias Gerstner
2017-07-18 11:15:11 +00:00
committed by Git OBS Bridge
parent b3b59d9789
commit b9b173fea3
9 changed files with 39 additions and 146 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
tboot.changes
View File

@@ -1,3 +1,27 @@
-------------------------------------------------------------------
Tue Jul 18 11:10:29 UTC 2017 - matthias.gerstner@suse.com
update to new upstream version 1.9.6:
- removed following patches, because they're now included upstream:
* tboot-grub2-fix-menu-in-xen-host-server.patch
* tboot-grub2-fix-xen-submenu-name.patch
* tboot-grub2-suse.patch
- Changes in this version:
* GCC7 fix, adds generic FALLTHROUGH notations to avoid warnings appearing on GCC7
* Ensure Tboot never overwrites modules in the process of moving them.
* Add support to x2APIC, which uses 32 bit APIC ID.
* Fix S3 secrets sealing/unsealing failures
* Support OpenSSL 1.1.0+ for ECDSA signature verification.
* Support OpenSSL 1.1.0+ for RSA key manipulation.
* Adds additional checks to prevent the kernel image from being overwritten.
* Added TCG TPM event log support.
* Pass through the EFI memory map that's provided by grub2.
* Fix a null pointer dereference bug when Intel TXT is disabled in BIOS.
* Adjust KERNEL_CMDLINE_OFFSET from 0x9000 to 0x8D00.
* Bounds checking on the kernel_cmdline string.
-------------------------------------------------------------------
Sun Jun 4 08:43:14 UTC 2017 - meissner@suse.com