diff --git a/n_utilize-system-crypto-policies.patch b/n_utilize-system-crypto-policies.patch new file mode 100644 index 0000000..64c45aa --- /dev/null +++ b/n_utilize-system-crypto-policies.patch @@ -0,0 +1,13 @@ +Index: tigervnc-1.10.1/common/rfb/Security.cxx +=================================================================== +--- tigervnc-1.10.1.orig/common/rfb/Security.cxx ++++ tigervnc-1.10.1/common/rfb/Security.cxx +@@ -52,7 +52,7 @@ static LogWriter vlog("Security"); + #ifdef HAVE_GNUTLS + StringParameter Security::GnuTLSPriority("GnuTLSPriority", + "GnuTLS priority string that controls the TLS session’s handshake algorithms", +- "NORMAL"); ++ "@SYSTEM"); + #endif + + Security::Security() diff --git a/tigervnc.changes b/tigervnc.changes index dc560eb..afdd367 100644 --- a/tigervnc.changes +++ b/tigervnc.changes @@ -1,3 +1,9 @@ +------------------------------------------------------------------- +Fri Mar 5 14:46:02 UTC 2021 - Pedro Monreal + +- Use the system crypto-policies [bsc#1183082] +- Add n_utilize-system-crypto-policies.patch + ------------------------------------------------------------------- Mon Dec 7 12:01:22 UTC 2020 - Stefan Dirsch diff --git a/tigervnc.spec b/tigervnc.spec index 6395a17..37abffd 100644 --- a/tigervnc.spec +++ b/tigervnc.spec @@ -1,7 +1,7 @@ # # spec file for package tigervnc # -# Copyright (c) 2020 SUSE LLC +# Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -149,6 +149,7 @@ Patch12: tigervnc-fix-saving-of-bad-server-certs.patch Patch13: u_xorg-server-1.20.7-ddxInputThreadInit.patch Patch21: U_0001-Properly-store-certificate-exceptions.patch Patch22: U_0002-Properly-store-certificate-exceptions-in-Java-viewer.patch +Patch23: n_utilize-system-crypto-policies.patch %description TigerVNC is an implementation of VNC (Virtual Network Computing), a @@ -269,6 +270,7 @@ It maps common x11vnc arguments to x0vncserver arguments. %patch21 -p1 %patch22 -p1 %patch8 -p1 +%patch23 -p1 cp -r %{_prefix}/src/xserver/* unix/xserver/ pushd unix/xserver