forked from pool/yubico-piv-tool
Accepting request 782604 from security
Automatic submission by obs-autosubmit OBS-URL: https://build.opensuse.org/request/show/782604 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/yubico-piv-tool?expand=0&rev=13
This commit is contained in:
Dominique Leuenberger
Git OBS Bridge
commit
9f0aac7d0b
@ -1,3 +0,0 @@
|
|||||||
version https://git-lfs.github.com/spec/v1
|
|
||||||
oid sha256:b428527e4031453a637128077983e782e9fea25df98e95e0fc27819b2e82fd7f
|
|
||||||
size 588206
|
|
||||||
Binary file not shown.
3
yubico-piv-tool-2.0.0.tar.gz
Normal file
3
yubico-piv-tool-2.0.0.tar.gz
Normal file
@ -0,0 +1,3 @@
|
|||||||
|
version https://git-lfs.github.com/spec/v1
|
||||||
|
oid sha256:dae510ea88922720019029c7f0296ddc74bb30573e40d9bc18fc155023859488
|
||||||
|
size 1701905
|
||||||
BIN
yubico-piv-tool-2.0.0.tar.gz.sig
Normal file
BIN
yubico-piv-tool-2.0.0.tar.gz.sig
Normal file
Binary file not shown.
@ -1,3 +1,49 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Sun Mar 1 00:11:08 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
|
||||||
|
|
||||||
|
- Version 2.0.0
|
||||||
|
- ykpiv: Added ykpiv_get_metadata and ykpiv_util_parse_metadata
|
||||||
|
to read and parse private key metadata (supported from YK 5.3).
|
||||||
|
- ykpiv: Fixed PCSC transaction handling when re-selecting PIV
|
||||||
|
due to external card reset events.
|
||||||
|
- ykpiv: Improved error reporting.
|
||||||
|
- ykpiv: Correctly report YK5 devices, and NEO and YK5 over NFC.
|
||||||
|
- ykpiv: MGM KEY (SO PIN) is cached (in addition to PIN).
|
||||||
|
- ykpiv: Fixed resetting of cached serial / version when an
|
||||||
|
application re-uses ykpiv_state.
|
||||||
|
- ykpiv: ykpiv_get_pin_retries selects a different applet before
|
||||||
|
re-selecting PIV since just re-selecting PIV is a no-op on YK5.
|
||||||
|
- ykcs11: Shared library exports all PKCS11 functions per the
|
||||||
|
spec (For applications that don’t use C_GetFunctionList).
|
||||||
|
- ykcs11: Support for up to 16 simultaneous sessions, with
|
||||||
|
support for multi-threaded access (if requested when calling
|
||||||
|
C_Initialize).
|
||||||
|
- ykcs11: Support for resetting the PIV application via
|
||||||
|
C_initToken. Requires knowledge of the MGMT KEY (SO PIN) per
|
||||||
|
the PKCS11 spec.
|
||||||
|
- ykcs11: Support for public-key operations not supported by PIV
|
||||||
|
(C_Verify, C_Encrypt), implemented using OpenSSL.
|
||||||
|
- ykcs11: Support for attestations, exposed as session objects of
|
||||||
|
certificate class. Generated when opening the first session to
|
||||||
|
a slot.
|
||||||
|
- ykcs11: Support for forked processes on Linux and MacOS.
|
||||||
|
- ykcs11: Support for RSA signatures using PKCS or PSS padding
|
||||||
|
with optional digesting by the library. Raw signatures are also
|
||||||
|
supported.
|
||||||
|
- ykcs11: Support for ECDSA signatures with optional digesting by
|
||||||
|
the library. Raw signatures are also supported.
|
||||||
|
- ykcs11: Support for RSA encryption / decryption with PKCS or
|
||||||
|
OAEP padding.
|
||||||
|
- ykcs11: Makes use of key metadata when available (YK 5.3 and
|
||||||
|
above), providing access to keys even if certificates are not
|
||||||
|
present.
|
||||||
|
- ykcs11: Supports SHA1, SHA256, SHA384 and SHA512 digesting,
|
||||||
|
plus SHA224 digesting for ECDSA signatures and for the MGF1
|
||||||
|
digest in PSS / OAEP, implemented using OpenSSL.
|
||||||
|
- ykcs11: Supports C_Login with context-specific user type. This
|
||||||
|
allows use cases that require both SO PIN and normal PIN in the
|
||||||
|
same session.
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Mon Jun 3 08:22:20 UTC 2019 - Karol Babioch <kbabioch@suse.de>
|
Mon Jun 3 08:22:20 UTC 2019 - Karol Babioch <kbabioch@suse.de>
|
||||||
|
|
||||||
|
|||||||
@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file for package yubico-piv-tool
|
# spec file for package yubico-piv-tool
|
||||||
#
|
#
|
||||||
# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
|
# Copyright (c) 2020 SUSE LLC
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@ -18,7 +18,7 @@
|
|||||||
|
|
||||||
%define sover 1
|
%define sover 1
|
||||||
Name: yubico-piv-tool
|
Name: yubico-piv-tool
|
||||||
Version: 1.7.0
|
Version: 2.0.0
|
||||||
Release: 0
|
Release: 0
|
||||||
Summary: Yubico YubiKey NEO CCID Manager
|
Summary: Yubico YubiKey NEO CCID Manager
|
||||||
License: BSD-2-Clause
|
License: BSD-2-Clause
|
||||||
@ -79,7 +79,7 @@ Yubikey NEO PKCS#11 applet library.
|
|||||||
|
|
||||||
%build
|
%build
|
||||||
%configure --disable-static --with-backend=pcsc
|
%configure --disable-static --with-backend=pcsc
|
||||||
make %{?_smp_mflags}
|
make %{?_smp_mflags} V=1
|
||||||
|
|
||||||
%install
|
%install
|
||||||
%make_install INSTALL="install -p"
|
%make_install INSTALL="install -p"
|
||||||
@ -97,12 +97,10 @@ find %{buildroot} -type f -name "*.la" -delete -print
|
|||||||
%{_mandir}/man1/*
|
%{_mandir}/man1/*
|
||||||
|
|
||||||
%files -n libykpiv%{sover}
|
%files -n libykpiv%{sover}
|
||||||
%{_libdir}/libykpiv.so.%{sover}
|
%{_libdir}/libykpiv.so.%{sover}*
|
||||||
%{_libdir}/libykpiv.so.%{sover}.5.0
|
|
||||||
|
|
||||||
%files -n libykcs11-%{sover}
|
%files -n libykcs11-%{sover}
|
||||||
%{_libdir}/libykcs11.so.%{sover}
|
%{_libdir}/libykcs11.so.%{sover}*
|
||||||
%{_libdir}/libykcs11.so.%{sover}.5.0
|
|
||||||
|
|
||||||
%files -n libykpiv-devel
|
%files -n libykpiv-devel
|
||||||
%dir %{_includedir}/ykpiv/
|
%dir %{_includedir}/ykpiv/
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user