rpm/tboot
SHA256
1
0
Fork 0
forked from pool/tboot
Code Pull Requests Activity

- update to new upstream release 1.9.12:

Browse Source 
- changes from 1.9.12:
        - Release localities in S3 flow for CRB interface
        - Config.mk, safestringlib/makefile : allow tool overrides
        - safestringlib: fix warnings with GCC 6.4.0
        - Strip executable file before generating tboot.gz
        - Add support for EFI memory map parse/modification
        - Add SHA384 and SHA512 digest algorithms
        - lcptools-v2: add pconf2 policy element support
        - tb_polgen: Add SHA384 and SHA512 support
        - Disable GCC9 address-of-packed-member warning
        - Fix warnings after "Avoid unsafe functions" scan
        - Use SHA256 as default hashing algorithm
    - changes from 1.9.11:
        - tb_polgen: Add support for SHA256
        - Configure IOMMU before executing GETSEC[SENTER]
        - SINIT ACM can have padding, handle that when checking size
    - disable-address-of-packed-member-warning.patch: now contained upstream
    - tboot-grub2-fix-xen-submenu-name.patch: refreshed

OBS-URL: https://build.opensuse.org/package/show/security/tboot?expand=0&rev=97
This commit is contained in:
Matthias Gerstner
2020-09-28 12:21:37 +00:00
committed by Git OBS Bridge
parent 95e240f293
commit ce270e1582
5 changed files with 35 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
tboot-1.9.10.tar.gz
View File

@@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:03879712edbf42e82c586fb2c9dfa26c1b6fa885cb0c935dcf3caed8294bd798
size 707101

3
tboot-1.9.12.tar.gz Normal file
View File

@@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:007212deacab8eb159d71449766f9b2e0523439f1c4fd64d1932eb38cb60e053
size 717624

8
tboot-grub2-fix-xen-submenu-name.patch
View File

@@ -4,13 +4,13 @@ Subject: fix xen submenu name to show tboot version
References: bnc#865815 References: bnc#865815
Patch-Mainline: no Patch-Mainline: no
Index: tboot-1.9.10/tboot/20_linux_xen_tboot Index: tboot-1.9.12/tboot/20_linux_xen_tboot
=================================================================== ===================================================================
--- tboot-1.9.10.orig/tboot/20_linux_xen_tboot --- tboot-1.9.12.orig/tboot/20_linux_xen_tboot
+++ tboot-1.9.10/tboot/20_linux_xen_tboot +++ tboot-1.9.12/tboot/20_linux_xen_tboot
@@ -232,7 +232,7 @@ while [ "x${xen_list}" != "x" ] ; do @@ -232,7 +232,7 @@ while [ "x${xen_list}" != "x" ] ; do
rel_tboot_dirname=`make_system_path_relative_to_its_root $tboot_dirname` rel_tboot_dirname=`make_system_path_relative_to_its_root $tboot_dirname`
tboot_version="1.9.10" tboot_version="1.9.12"
list="${linux_list}" list="${linux_list}"
- echo "submenu \"Xen ${xen_version}\" \"Tboot ${tboot_version}\"{" - echo "submenu \"Xen ${xen_version}\" \"Tboot ${tboot_version}\"{"
+ echo "submenu \"Xen ${xen_version} with Tboot ${tboot_version}\"{" + echo "submenu \"Xen ${xen_version} with Tboot ${tboot_version}\"{"

23
tboot.changes
View File

@@ -1,3 +1,26 @@
-------------------------------------------------------------------
Mon Sep 28 12:14:22 UTC 2020 - matthias.gerstner@suse.com
- update to new upstream release 1.9.12:
- changes from 1.9.12:
- Release localities in S3 flow for CRB interface
- Config.mk, safestringlib/makefile : allow tool overrides
- safestringlib: fix warnings with GCC 6.4.0
- Strip executable file before generating tboot.gz
- Add support for EFI memory map parse/modification
- Add SHA384 and SHA512 digest algorithms
- lcptools-v2: add pconf2 policy element support
- tb_polgen: Add SHA384 and SHA512 support
- Disable GCC9 address-of-packed-member warning
- Fix warnings after "Avoid unsafe functions" scan
- Use SHA256 as default hashing algorithm
- changes from 1.9.11:
- tb_polgen: Add support for SHA256
- Configure IOMMU before executing GETSEC[SENTER]
- SINIT ACM can have padding, handle that when checking size
- disable-address-of-packed-member-warning.patch: now contained upstream
- tboot-grub2-fix-xen-submenu-name.patch: refreshed
------------------------------------------------------------------- -------------------------------------------------------------------
Fri Jul 12 16:24:27 UTC 2019 - Martin Liška <mliska@suse.cz> Fri Jul 12 16:24:27 UTC 2019 - Martin Liška <mliska@suse.cz>

10
tboot.spec
View File

@@ -1,7 +1,7 @@
# #
# spec file for package tboot # spec file for package tboot
# #
# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # Copyright (c) 2020 SUSE LLC
# #
# All modifications and additions to the file contributed by third parties # All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed # remain the property of their copyright owners, unless otherwise agreed
@@ -17,20 +17,20 @@
Name: tboot Name: tboot
%define ver 1.9.10 %define ver 1.9.12
Version: 20190520_%{ver} Version: 20200429_%{ver}
Release: 0 Release: 0
Summary: Program for performing a verified launch using Intel TXT Summary: Program for performing a verified launch using Intel TXT
License: BSD-3-Clause License: BSD-3-Clause
Group: Productivity/Security Group: Productivity/Security
Url: http://sourceforge.net/projects/tboot/ URL: http://sourceforge.net/projects/tboot/
Source0: http://downloads.sourceforge.net/project/tboot/tboot/tboot-%{ver}.tar.gz Source0: http://downloads.sourceforge.net/project/tboot/tboot/tboot-%{ver}.tar.gz
Patch3: tboot-grub2-fix-menu-in-xen-host-server.patch Patch3: tboot-grub2-fix-menu-in-xen-host-server.patch
Patch4: tboot-grub2-fix-xen-submenu-name.patch Patch4: tboot-grub2-fix-xen-submenu-name.patch
Patch7: tboot-distributor.patch Patch7: tboot-distributor.patch
# This patch should be removed once upstream has a stock solution for the # This patch should be removed once upstream has a stock solution for the
# gcc-9 warning # gcc-9 warning
Patch8: disable-address-of-packed-member-warning.patch #Patch8: disable-address-of-packed-member-warning.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRoot: %{_tmppath}/%{name}-%{version}-build
ExclusiveArch: %{ix86} x86_64 ExclusiveArch: %{ix86} x86_64
BuildRequires: openssl-devel BuildRequires: openssl-devel