commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2020-11-02 09:39:48
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new.3463 (New)
Package is "ima-evm-utils"
Mon Nov 2 09:39:48 2020 rev:19 rq:844713 version:1.3.2
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2020-10-02 17:17:31.146111718 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new.3463/ima-evm-utils.changes
2020-11-02 09:39:53.969581489 +0100
@@ -1,0 +2,13 @@
+Thu Oct 29 06:12:46 UTC 2020 - Petr Vorel
+
+- Update to version 1.3.2
+ * Bugfixes: importing keys
+ * NEW: Docker based travis distro testing
+ * Travis bugfixes, code cleanup, software version update,
+ and script removal
+ * Initial travis testing
+- Remove 0001-help-Add-missing-new-line-for-ignore-violations.patch
+ (patch from this release)
+- Add make check + dependencies (getfattr => attr, xxd => vim)
+
+---
Old:
0001-help-Add-missing-new-line-for-ignore-violations.patch
ima-evm-utils-1.3.1.tar.gz
New:
ima-evm-utils-1.3.2.tar.gz
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.8saiuV/_old 2020-11-02 09:39:54.425581927 +0100
+++ /var/tmp/diff_new_pack.8saiuV/_new 2020-11-02 09:39:54.429581931 +0100
@@ -19,15 +19,15 @@
%define sover 2
%define libname libimaevm%{sover}
Name: ima-evm-utils
-Version:1.3.1
+Version:1.3.2
Release:0
Summary:IMA/EVM control utility
License:LGPL-2.1-or-later
Group: System/Base
URL:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
-Patch1: 0001-help-Add-missing-new-line-for-ignore-violations.patch
BuildRequires: asciidoc
+BuildRequires: attr
BuildRequires: autoconf
BuildRequires: automake
BuildRequires: docbook-xsl-stylesheets
@@ -38,6 +38,7 @@
BuildRequires: openssl-devel
BuildRequires: pkgconfig
BuildRequires: tpm2-0-tss-devel
+BuildRequires: vim
%description
This package provides the control utility for IMA/EVM (Integrity
@@ -86,6 +87,9 @@
rm -rf %{buildroot}%{_datadir}/doc
find %{buildroot} -type f -name "*.la" -delete -print
+%check
+make %{?_smp_mflags} check
+
%post -n %{libname} -p /sbin/ldconfig
%postun -n %{libname} -p /sbin/ldconfig
++ ima-evm-utils-1.3.1.tar.gz -> ima-evm-utils-1.3.2.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-1.3.1/.travis.yml
new/ima-evm-utils-1.3.2/.travis.yml
--- old/ima-evm-utils-1.3.1/.travis.yml 1970-01-01 01:00:00.0 +0100
+++ new/ima-evm-utils-1.3.2/.travis.yml 2020-10-28 18:18:08.0 +0100
@@ -0,0 +1,78 @@
+dist: bionic
+language: C
+services:
+- docker
+
+matrix:
+include:
+# 32 bit build
+- os: linux
+ env: DISTRO=debian:stable VARIANT=i386 ARCH=i386 TSS=tpm2-tss
+ compiler: gcc
+
+# cross compilation builds
+- os: linux
+ env: DISTRO=debian:stable VARIANT=cross-compile ARCH=ppc64el
TSS=ibmtss
+ compiler: powerpc64le-linux-gnu-gcc
+
+- os: linux
+ env: DISTRO=debian:stable VARIANT=cross-compile ARCH=arm64
TSS=tpm2-tss
+ compiler: aarch64-linux-gnu-gcc
+
+- os: linux
+ env: DISTRO=debian:stable VARIANT=cross-compile ARCH=s390x TSS=ibmtss
+ compiler: s390x-linux-gnu-gcc
+
+# musl
+- os: linux
+ env: DISTRO=alpine:latest TSS=tpm2-tss
+ compiler: gcc
+
+# glibc (gcc/clang)
+- os: linux
+ env: DISTRO=opensuse/tumbleweed TSS=ibmtss
+ compiler: clang
+
+- os: linux
+ env: DISTRO=opensuse/leap TSS=tpm2-tss
+ compiler: gcc
+
+- os: linux
+ env: DISTRO=ubuntu:eoan TSS=ibmtss
+ compiler: gcc
+
+- os: linux
+ env: DISTRO=ubuntu:xenial TSS=tpm2-tss
+ compiler: clang
+
+- os: linux
+ env: DISTRO=fedora:latest TSS=ibmtss
+ compiler: clang
+
+- os: linux
+ env: DISTRO=centos:7 TSS=tpm2-tss
+ compiler: gcc
+
+- os: linux
+ env: DISTRO=centos:latest TSS=tpm2-tss
+ compiler: clang
+
+- os: linux
+ env: DISTRO=debian:testing TSS=tpm2-tss
+ compiler: clang
+
+- os: linux
+ env: DISTRO=debian:stable TSS=ibmtss
+ compiler: gcc
+
+before_install:
+- df -hT
+-
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2020-10-02 17:17:09
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new.4249 (New)
Package is "ima-evm-utils"
Fri Oct 2 17:17:09 2020 rev:18 rq:838990 version:1.3.1
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2020-08-16 20:33:13.406295485 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new.4249/ima-evm-utils.changes
2020-10-02 17:17:31.146111718 +0200
@@ -1,0 +2,6 @@
+Thu Oct 1 13:42:17 UTC 2020 - Petr Vorel
+
+- Fix missing new line in help
+ (0001-help-Add-missing-new-line-for-ignore-violations.patch)
+
+---
New:
0001-help-Add-missing-new-line-for-ignore-violations.patch
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.SE05ja/_old 2020-10-02 17:17:33.118111804 +0200
+++ /var/tmp/diff_new_pack.SE05ja/_new 2020-10-02 17:17:33.122111804 +0200
@@ -26,6 +26,7 @@
Group: System/Base
URL:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
+Patch1: 0001-help-Add-missing-new-line-for-ignore-violations.patch
BuildRequires: asciidoc
BuildRequires: autoconf
BuildRequires: automake
++ 0001-help-Add-missing-new-line-for-ignore-violations.patch ++
>From f785a34ceb4cef2fb229934a0e9446532301abea Mon Sep 17 00:00:00 2001
From: Petr Vorel
Date: Mon, 21 Sep 2020 14:47:22 +0200
Subject: [PATCH] help: Add missing new line for --ignore-violations
Fixes: 62534f2 ("Rename "--validate" to "--ignore-violations"")
Signed-off-by: Petr Vorel
[ upstream status: https://patchwork.kernel.org/patch/11789709/ ]
---
src/evmctl.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/evmctl.c b/src/evmctl.c
index 7ad1150..774eb7e 100644
--- a/src/evmctl.c
+++ b/src/evmctl.c
@@ -2467,7 +2467,7 @@ static void usage(void)
" --caps use custom Capabilities for
EVM(unspecified: from FS, empty: do not use)\n"
" --verify-sig verify measurement list signatures\n"
" --engine e preload OpenSSL engine e (such as:
gost)\n"
- " --ignore-violations ignore ToMToU measurement violations"
+ " --ignore-violations ignore ToMToU measurement
violations\n"
" -v increase verbosity level\n"
" -h, --help display this help and exit\n"
"\n");
--
2.28.0
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2020-08-16 20:33:10
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new.3399 (New)
Package is "ima-evm-utils"
Sun Aug 16 20:33:10 2020 rev:17 rq:826695 version:1.3.1
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2020-07-26 16:18:48.968778668 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new.3399/ima-evm-utils.changes
2020-08-16 20:33:13.406295485 +0200
@@ -1,0 +2,13 @@
+Fri Aug 14 14:50:08 UTC 2020 - Petr Vorel
+
+- Update to version 1.3.1
+ * "--pcrs" support for per crypto algorithm
+ * Drop/rename "ima_measurement" options
+ * Moved this summary from "Changelog" to "NEWS", removing
+ requirement for GNU empty files
+ * Distro build fixes
+
+ * Remove 0001-pcr_tss-Fix-compilation-for-old-compilers.patch (from this
+release)
+
+---
Old:
0001-pcr_tss-Fix-compilation-for-old-compilers.patch
ima-evm-utils-1.3.tar.gz
New:
ima-evm-utils-1.3.1.tar.gz
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.NPOkPe/_old 2020-08-16 20:33:13.870295741 +0200
+++ /var/tmp/diff_new_pack.NPOkPe/_new 2020-08-16 20:33:13.874295744 +0200
@@ -19,14 +19,13 @@
%define sover 2
%define libname libimaevm%{sover}
Name: ima-evm-utils
-Version:1.3
+Version:1.3.1
Release:0
Summary:IMA/EVM control utility
License:LGPL-2.1-or-later
Group: System/Base
URL:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
-Patch1: 0001-pcr_tss-Fix-compilation-for-old-compilers.patch
BuildRequires: asciidoc
BuildRequires: autoconf
BuildRequires: automake
++ ima-evm-utils-1.3.tar.gz -> ima-evm-utils-1.3.1.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-1.3/ChangeLog
new/ima-evm-utils-1.3.1/ChangeLog
--- old/ima-evm-utils-1.3/ChangeLog 2020-07-22 00:39:17.0 +0200
+++ new/ima-evm-utils-1.3.1/ChangeLog 1970-01-01 01:00:00.0 +0100
@@ -1,184 +0,0 @@
-2020-07-21 Mimi Zohar
-
- version 1.3 new features:
- * NEW ima-evm-utils regression test infrastructure with two initial
- tests:
- - ima_hash.test: calculate/verify different crypto hash algorithms
- - sign_verify.test: EVM and IMA sign/verify signature tests
- * TPM 2.0 support
- - Calculate the new per TPM 2.0 bank template data digest
- - Support original padding the SHA1 template data digest
- - Compare ALL the re-calculated TPM 2.0 bank PCRs against the
- TPM 2.0 bank PCR values
- - Calculate the per TPM bank "boot_aggregate" values, including
- PCRs 8 & 9 in calculation
- - Support reading the per TPM 2.0 Bank PCRs using Intel's TSS
- - boot_aggregate.test: compare the calculated "boot_aggregate"
- values with the "boot_aggregate" value included in the IMA
- measurement.
- * TPM 1.2 support
- - Additionally support reading the TPM 1.2 PCRs from a supplied file
- ("--pcrs" option)
- * Based on original IMA LTP and standalone version support
- - Calculate the TPM 1.2 "boot_aggregate" based on the exported
- TPM 1.2 BIOS event log.
- - In addition to verifying the IMA measurement list against the
- the TPM PCRs, verify the IMA template data digest against the
- template data. (Based on LTP "--verify" option.)
- - Ignore file measurement violations while verifying the IMA
- measurment list. (Based on LTP "--validate" option.)
- - Verify the file data signature included in the measurement list
- based on the file hash also included in the measurement list
- (--verify-sig)
- - Support original "ima" template (mixed templates not supported)
- * Support "sm3" crypto name
-
- Bug fixes and code cleanup:
- * Don't exit with -1 on failure, exit with 125
- * On signature verification failure, include pathname.
- * Provide minimal hash_info.h file in case one doesn't exist, needed
- by the ima-evm-utils regression tests.
- * On systems with TPM 1.2, skip "boot_aggregate.test" using sample logs
- * Fix hash_algo type comparison mismatch
- * Simplify/clean up code
- * Address compiler complaints and
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2020-07-26 16:17:30
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new.3592 (New)
Package is "ima-evm-utils"
Sun Jul 26 16:17:30 2020 rev:16 rq:822318 version:1.3
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2019-08-14 11:36:09.616709883 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new.3592/ima-evm-utils.changes
2020-07-26 16:18:48.968778668 +0200
@@ -1,0 +2,79 @@
+Thu Jul 23 07:15:19 UTC 2020 - Petr Vorel
+
+- Use %autosetup -p1
+
+---
+Wed Jul 22 12:10:45 UTC 2020 - Petr Vorel
+
+- Remove suse_version check for tpm2-0-tss-devel as the package is available
+ for back as far as SLE 12 SP2 and respective openSUSE versions (also check
+ was wrong, should have been 1500).
+
+---
+Wed Jul 22 11:35:42 UTC 2020 - Petr Vorel
+
+- Fixes from previous SR (reported by fvogt):
+ * Move ibmtss runtime dependency to evmctl package
+ * Remove dependencies to devel package (should not be needed)
+
+---
+Wed Jul 22 08:23:08 UTC 2020 - Petr Vorel
+
+- Update to version 1.3
+ version 1.3 new features:
+ * NEW ima-evm-utils regression test infrastructure with two initial
+ tests:
+ - ima_hash.test: calculate/verify different crypto hash algorithms
+ - sign_verify.test: EVM and IMA sign/verify signature tests
+ * TPM 2.0 support
+ - Calculate the new per TPM 2.0 bank template data digest
+ - Support original padding the SHA1 template data digest
+ - Compare ALL the re-calculated TPM 2.0 bank PCRs against the
+ TPM 2.0 bank PCR values
+ - Calculate the per TPM bank "boot_aggregate" values, including
+ PCRs 8 & 9 in calculation
+ - Support reading the per TPM 2.0 Bank PCRs using Intel's TSS
+ - boot_aggregate.test: compare the calculated "boot_aggregate"
+ values with the "boot_aggregate" value included in the IMA
+ measurement.
+ * TPM 1.2 support
+ - Additionally support reading the TPM 1.2 PCRs from a supplied file
+ ("--pcrs" option)
+ * Based on original IMA LTP and standalone version support
+ - Calculate the TPM 1.2 "boot_aggregate" based on the exported
+ TPM 1.2 BIOS event log.
+ - In addition to verifying the IMA measurement list against the
+ the TPM PCRs, verify the IMA template data digest against the
+ template data. (Based on LTP "--verify" option.)
+ - Ignore file measurement violations while verifying the IMA
+ measurment list. (Based on LTP "--validate" option.)
+ - Verify the file data signature included in the measurement list
+ based on the file hash also included in the measurement list
+ (--verify-sig)
+ - Support original "ima" template (mixed templates not supported)
+ * Support "sm3" crypto name
+
+ Bug fixes and code cleanup:
+ * Don't exit with -1 on failure, exit with 125
+ * On signature verification failure, include pathname.
+ * Provide minimal hash_info.h file in case one doesn't exist, needed
+ by the ima-evm-utils regression tests.
+ * On systems with TPM 1.2, skip "boot_aggregate.test" using sample logs
+ * Fix hash_algo type comparison mismatch
+ * Simplify/clean up code
+ * Address compiler complaints and failures
+ * Fix memory allocations and leaks
+ * Sanity check provided input files are regular files
+ * Revert making "tsspcrread" a compile build time decision.
+ * Limit additional messages based on log level (-v)
+
+- Add patch 0001-pcr_tss-Fix-compilation-for-old-compilers.patch
+- Upstream bumped soname to 2.0.0
+- Add tpm2-0-tss-devel for Tumbleweed as build dependency, for the rest ibmtss
+ as runtime dependency (needed for for reading PCR in ima_boot_aggregate cmd;
+ better to use libtss2-esys and libtss2-rc than require tsspcrread binary in
+ runtime, but tpm2-0-tss-devel is available only for Tumbleweed) + the same
+ logic as runtime dependency for devel package
+- Mark COPYING as %license
+
+---
Old:
ima-evm-utils-1.2.1.tar.gz
New:
0001-pcr_tss-Fix-compilation-for-old-compilers.patch
ima-evm-utils-1.3.tar.gz
Other differences:
--
++ ima-evm-utils.spec ++
---
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2019-08-14 11:36:07
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new.9556 (New)
Package is "ima-evm-utils"
Wed Aug 14 11:36:07 2019 rev:15 rq:722572 version:1.2.1
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2018-09-13 12:11:36.686287471 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new.9556/ima-evm-utils.changes
2019-08-14 11:36:09.616709883 +0200
@@ -1,0 +2,38 @@
+Tue Jul 30 21:55:31 UTC 2019 - Petr Vorel
+
+- Update to version 1.2.1 (included changes of unreleased v1.2)
+ version 1.2 new features:
+ * Generate EVM signatures based on the specified hash algorithm
+ * include "security.apparmor" in EVM signature
+ * Add support for writing & verifying "user." xattrs for testing
+ * Support Strebog/Gost hash functions
+ * Add OpenSSL engine support
+ * Use of EVP_PKEY OpenSSL API to generate/verify v2 signatures
+ * Support verifying multiple signatures at once
+ * Support new template "buf" field and warn about other unknown fields
+ * Improve OpenSSL error reporting
+ * Support reading TPM 2.0 PCRs using tsspcrread
+
+ Bug fixes and code cleanup:
+ * Update manpage stylesheet detection
+ * Fix xattr.h include file
+ * On error when reading TPM PCRs, don't log gargabe
+ * Properly return keyid string to calc_keyid_v1/v2 callers, caused by
+ limiting keyid output to verbose mode
+ * Fix hash buffer overflow caused by EVM support for larger hashes,
+ defined MAX_DIGEST_SIZE and MAX_SIGNATURE_SIZE, and added "asserts".
+ * Linked with libcrypto instead of OpenSSL
+ * Updated Autotools, replacing INCLUDES with AM_CPPFLAGS
+ * Include new "hash-info.gen" in tar
+ * Log the hash algorithm, not just the hash value
+ * Fixed memory leaks in: EV_MD_CTX, init_public_keys
+ * Fixed other warnings/bugs discovered by clang, coverity
+ * Remove indirect calls in verify_hash() to improve code readability
+ * Don't fallback to using sha1
+ * Namespace some too generic object names
+ * Make functions/arrays static if possible
+
+- Upstream bumped soname to 1.0.0 in v1.2
+- Drop ima-evm-utils-xattr.patch and
ima-evm-utils-fix-docbook-xsl-directory.patch (included in v1.2)
+
+---
Old:
ima-evm-utils-1.1.tar.gz
ima-evm-utils-fix-docbook-xsl-directory.patch
ima-evm-utils-xattr.patch
New:
ima-evm-utils-1.2.1.tar.gz
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.ARYdK8/_old 2019-08-14 11:36:10.412709740 +0200
+++ /var/tmp/diff_new_pack.ARYdK8/_new 2019-08-14 11:36:10.412709740 +0200
@@ -1,7 +1,7 @@
#
# spec file for package ima-evm-utils
#
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -12,22 +12,20 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
-%define sover 0
+%define sover 1
%define libname libimaevm%{sover}
Name: ima-evm-utils
-Version:1.1
+Version:1.2.1
Release:0
Summary:IMA/EVM control utility
License:LGPL-2.1-or-later
Group: System/Base
Url:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
-Patch0: ima-evm-utils-xattr.patch
-Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
BuildRequires: asciidoc
BuildRequires: autoconf
BuildRequires: automake
@@ -73,10 +71,6 @@
%prep
%setup -q
-%if 0%{?suse_version} >= 1315
-%patch0 -p1
-%patch2 -p1
-%endif
%build
autoreconf -fiv
++ ima-evm-utils-1.1.tar.gz -> ima-evm-utils-1.2.1.tar.gz ++
2249 lines of diff (skipped)
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2018-09-13 12:11:36
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Thu Sep 13 12:11:36 2018 rev:14 rq:635260 version:1.1
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2018-03-20 21:59:29.147570643 +0100
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2018-09-13 12:11:36.686287471 +0200
@@ -1,0 +2,5 @@
+Wed Sep 12 06:03:41 UTC 2018 - meiss...@suse.com
+
+- ima-evm-utils-xattr.patch: xattr.h is now libattr.h
+
+---
New:
ima-evm-utils-xattr.patch
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.1mjvEx/_old 2018-09-13 12:11:37.390286677 +0200
+++ /var/tmp/diff_new_pack.1mjvEx/_new 2018-09-13 12:11:37.394286672 +0200
@@ -26,6 +26,7 @@
Group: System/Base
Url:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
+Patch0: ima-evm-utils-xattr.patch
Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
BuildRequires: asciidoc
BuildRequires: autoconf
@@ -73,6 +74,7 @@
%prep
%setup -q
%if 0%{?suse_version} >= 1315
+%patch0 -p1
%patch2 -p1
%endif
++ ima-evm-utils-xattr.patch ++
Index: ima-evm-utils-1.1/configure.ac
===
--- ima-evm-utils-1.1.orig/configure.ac
+++ ima-evm-utils-1.1/configure.ac
@@ -30,7 +30,7 @@ AC_SUBST(OPENSSL_LIBS)
AC_CHECK_HEADER(unistd.h)
AC_CHECK_HEADERS(openssl/conf.h)
-AC_CHECK_HEADERS(attr/xattr.h, , [AC_MSG_ERROR([attr/xattr.h header not found.
You need the libattr development package.])])
+AC_CHECK_HEADERS(attr/libattr.h, , [AC_MSG_ERROR([attr/libattr.h header not
found. You need the libattr development package.])])
AC_CHECK_HEADERS(keyutils.h, , [AC_MSG_ERROR([keyutils.h header not found. You
need the libkeyutils development package.])])
#debug support - yes for a while
Index: ima-evm-utils-1.1/src/evmctl.c
===
--- ima-evm-utils-1.1.orig/src/evmctl.c
+++ ima-evm-utils-1.1/src/evmctl.c
@@ -49,7 +49,7 @@
#include
#include
#include
-#include
+#include
#include
#include
#include
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2018-03-20 21:59:04
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Tue Mar 20 21:59:04 2018 rev:13 rq:587839 version:1.1
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2017-11-27 22:18:57.293450564 +0100
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2018-03-20 21:59:29.147570643 +0100
@@ -1,0 +2,16 @@
+Fri Mar 16 09:23:01 UTC 2018 - pvo...@suse.cz
+
+- Update to version 1.1
+ * Support the new openssl 1.1 api
+ * Support for validating multiple pcrs
+ * Verify the measurement list signature based on the list digest
+ * Verify the "ima-sig" measurement list using multiple keys
+ * Fixed parsing the measurement template data field length
+ * Portable & immutable EVM signatures (new format)
+ * Multiple fixes that have been lingering in the next branch. Some
+are for experimental features that are not yet supported in the
+kernel.
+- Drop ima-evm-utils-openssl1.patch (not needed any more as IMA got
+ backward compatible support for openssl 1.1).
+
+---
Old:
ima-evm-utils-1.0.tar.gz
ima-evm-utils-openssl1.patch
New:
ima-evm-utils-1.1.tar.gz
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.gXbrIK/_old 2018-03-20 21:59:29.875544433 +0100
+++ /var/tmp/diff_new_pack.gXbrIK/_new 2018-03-20 21:59:29.879544289 +0100
@@ -1,7 +1,7 @@
#
# spec file for package ima-evm-utils
#
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -19,15 +19,14 @@
%define sover 0
%define libname libimaevm%{sover}
Name: ima-evm-utils
-Version:1.0
+Version:1.1
Release:0
Summary:IMA/EVM control utility
-License:LGPL-2.1+
+License:LGPL-2.1-or-later
Group: System/Base
Url:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
-Patch3: ima-evm-utils-openssl1.patch
BuildRequires: asciidoc
BuildRequires: autoconf
BuildRequires: automake
@@ -76,9 +75,6 @@
%if 0%{?suse_version} >= 1315
%patch2 -p1
%endif
-if pkg-config --atleast-version=1.1 openssl; then
-%patch3 -p1
-fi
%build
autoreconf -fiv
++ ima-evm-utils-1.0.tar.gz -> ima-evm-utils-1.1.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-1.0/ChangeLog
new/ima-evm-utils-1.1/ChangeLog
--- old/ima-evm-utils-1.0/ChangeLog 2015-07-30 20:28:53.0 +0200
+++ new/ima-evm-utils-1.1/ChangeLog 2018-02-15 14:02:19.0 +0100
@@ -1,3 +1,16 @@
+2018-01-28 Mimi Zohar
+
+ version 1.1
+ * Support the new openssl 1.1 api
+ * Support for validating multiple pcrs
+ * Verify the measurement list signature based on the list digest
+ * Verify the "ima-sig" measurement list using multiple keys
+ * Fixed parsing the measurement template data field length
+ * Portable & immutable EVM signatures (new format)
+ * Multiple fixes that have been lingering in the next branch. Some
+ are for experimental features that are not yet supported in the
+ kernel.
+
2014-07-30 Dmitry Kasatkin
version 1.0
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-1.0/README new/ima-evm-utils-1.1/README
--- old/ima-evm-utils-1.0/README2015-07-30 20:28:53.0 +0200
+++ new/ima-evm-utils-1.1/README2018-02-15 14:02:19.0 +0100
@@ -26,12 +26,12 @@
--version
help
import [--rsa] pubkey keyring
- sign [-r] [--imahash | --imasig ] [--key key] [--pass password] file
+ sign [-r] [--imahash | --imasig ] [--portable] [--key key] [--pass password]
file
verify file
ima_sign [--sigfile] [--key key] [--pass password] file
ima_verify file
ima_hash file
- ima_measurement file
+ ima_measurement [--key "key1, key2, ..."] [--list] file
ima_fix [-t fdsxm] path
sign_hash [--key key] [--pass password]
hmac [--imahash | --imasig ] file
@@ -46,6 +46,7 @@
-f, --sigfile store IMA signature in .sig file instead of xattr
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2017-11-27 22:18:55
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Mon Nov 27 22:18:55 2017 rev:12 rq:546015 version:1.0
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2017-11-10 14:57:21.136176123 +0100
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2017-11-27 22:18:57.293450564 +0100
@@ -1,0 +2,5 @@
+Tue Nov 21 08:42:47 UTC 2017 - mplus...@suse.com
+
+- Small spec file cleanup with spec-cleaner
+
+---
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.rk5jzb/_old 2017-11-27 22:18:58.013424433 +0100
+++ /var/tmp/diff_new_pack.rk5jzb/_new 2017-11-27 22:18:58.017424287 +0100
@@ -18,7 +18,6 @@
%define sover 0
%define libname libimaevm%{sover}
-
Name: ima-evm-utils
Version:1.0
Release:0
@@ -29,7 +28,6 @@
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
Patch3: ima-evm-utils-openssl1.patch
-BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: asciidoc
BuildRequires: autoconf
BuildRequires: automake
@@ -39,7 +37,7 @@
BuildRequires: libtool
BuildRequires: libxslt-tools
BuildRequires: openssl-devel
-BuildRequires: pkg-config
+BuildRequires: pkgconfig
%description
This package provides the control utility for IMA/EVM (Integrity
@@ -75,7 +73,7 @@
%prep
%setup -q
-%if %suse_version >= 1315
+%if 0%{?suse_version} >= 1315
%patch2 -p1
%endif
if pkg-config --atleast-version=1.1 openssl; then
@@ -83,34 +81,31 @@
fi
%build
-NOCONFIGURE=1 ./autogen.sh
-%configure --disable-static
+autoreconf -fiv
+%configure \
+ --disable-static
make %{?_smp_mflags}
%install
-make DESTDIR=%{buildroot} install
+%make_install
# Let do it by ourselves later...
rm -rf %{buildroot}%{_datadir}/doc
-find %{buildroot}%{_libdir} -type f -name "*.la" -print -delete
+find %{buildroot} -type f -name "*.la" -delete -print
%post -n %{libname} -p /sbin/ldconfig
-
%postun -n %{libname} -p /sbin/ldconfig
%files devel
-%defattr(-,root,root,-)
%doc examples/*
%{_includedir}/*
%{_libdir}/libimaevm.so
%files -n %{libname}
-%defattr(-,root,root,-)
%doc README COPYING NEWS AUTHORS
-%{_libdir}/libimaevm.so.*
+%{_libdir}/libimaevm.so.%{sover}*
%files -n evmctl
-%defattr(-,root,root,-)
%{_bindir}/evmctl
-%{_mandir}/man1/evmctl.1.gz
+%{_mandir}/man1/evmctl.1%{ext_man}
%changelog
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2017-11-10 14:57:00
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Fri Nov 10 14:57:00 2017 rev:11 rq:539892 version:1.0
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2017-10-24 22:23:40.719570353 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2017-11-10 14:57:21.136176123 +0100
@@ -1,0 +2,5 @@
+Wed Nov 8 12:31:07 UTC 2017 - meiss...@suse.com
+
+- ima-evm-utils-openssl1.patch: allow building against openssl 1.1
(bsc#1066947)
+
+---
New:
ima-evm-utils-openssl1.patch
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.9scVxb/_old 2017-11-10 14:57:22.304133877 +0100
+++ /var/tmp/diff_new_pack.9scVxb/_new 2017-11-10 14:57:22.308133733 +0100
@@ -28,6 +28,7 @@
Url:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
+Patch3: ima-evm-utils-openssl1.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: asciidoc
BuildRequires: autoconf
@@ -77,6 +78,9 @@
%if %suse_version >= 1315
%patch2 -p1
%endif
+if pkg-config --atleast-version=1.1 openssl; then
+%patch3 -p1
+fi
%build
NOCONFIGURE=1 ./autogen.sh
++ ima-evm-utils-openssl1.patch ++
Index: ima-evm-utils-1.0/src/evmctl.c
===
--- ima-evm-utils-1.0.orig/src/evmctl.c
+++ ima-evm-utils-1.0/src/evmctl.c
@@ -305,7 +305,7 @@ static int calc_evm_hash(const char *fil
struct stat st;
int err;
uint32_t generation = 0;
- EVP_MD_CTX ctx;
+ EVP_MD_CTX *ctx;
unsigned int mdlen;
char **xattrname;
char xattr_value[1024];
@@ -345,7 +345,8 @@ static int calc_evm_hash(const char *fil
return -1;
}
- err = EVP_DigestInit(, EVP_sha1());
+ ctx = EVP_MD_CTX_new();
+ err = EVP_DigestInit(ctx, EVP_sha1());
if (!err) {
log_err("EVP_DigestInit() failed\n");
return 1;
@@ -364,7 +365,7 @@ static int calc_evm_hash(const char *fil
/*log_debug("name: %s, value: %s, size: %d\n", *xattrname,
xattr_value, err);*/
log_info("name: %s, size: %d\n", *xattrname, err);
log_debug_dump(xattr_value, err);
- err = EVP_DigestUpdate(, xattr_value, err);
+ err = EVP_DigestUpdate(ctx, xattr_value, err);
if (!err) {
log_err("EVP_DigestUpdate() failed\n");
return 1;
@@ -412,7 +413,7 @@ static int calc_evm_hash(const char *fil
log_debug("hmac_misc (%d): ", hmac_size);
log_debug_dump(_misc, hmac_size);
- err = EVP_DigestUpdate(, _misc, hmac_size);
+ err = EVP_DigestUpdate(ctx, _misc, hmac_size);
if (!err) {
log_err("EVP_DigestUpdate() failed\n");
return 1;
@@ -423,14 +424,14 @@ static int calc_evm_hash(const char *fil
if (err)
return -1;
- err = EVP_DigestUpdate(, (const unsigned char *)uuid,
sizeof(uuid));
+ err = EVP_DigestUpdate(ctx, (const unsigned char *)uuid,
sizeof(uuid));
if (!err) {
log_err("EVP_DigestUpdate() failed\n");
return 1;
}
}
- err = EVP_DigestFinal(, hash, );
+ err = EVP_DigestFinal(ctx, hash, );
if (!err) {
log_err("EVP_DigestFinal() failed\n");
return 1;
@@ -844,7 +845,7 @@ static int calc_evm_hmac(const char *fil
struct stat st;
int err = -1;
uint32_t generation = 0;
- HMAC_CTX ctx;
+ HMAC_CTX *ctx;
unsigned int mdlen;
char **xattrname;
unsigned char xattr_value[1024];
@@ -900,7 +901,8 @@ static int calc_evm_hmac(const char *fil
goto out;
}
- err = !HMAC_Init(, evmkey, sizeof(evmkey), EVP_sha1());
+ ctx = HMAC_CTX_new();
+ err = !HMAC_Init(ctx, evmkey, sizeof(evmkey), EVP_sha1());
if (err) {
log_err("HMAC_Init() failed\n");
goto out;
@@ -919,7 +921,7 @@ static int calc_evm_hmac(const char *fil
/*log_debug("name: %s, value: %s, size: %d\n", *xattrname,
xattr_value, err);*/
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2017-10-24 22:23:37
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Tue Oct 24 22:23:37 2017 rev:10 rq:536019 version:1.0
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2017-10-17 01:53:00.209070152 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2017-10-24 22:23:40.719570353 +0200
@@ -1,0 +2,6 @@
+Mon Oct 23 09:25:38 UTC 2017 - matthias.gerst...@suse.com
+
+- added openssl-devel dependency to ima-evm-utils-devel. otherwise the ima
+ header can't be included if the openssl headers are missing
+
+---
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.czdM06/_old 2017-10-24 22:23:41.223546794 +0200
+++ /var/tmp/diff_new_pack.czdM06/_new 2017-10-24 22:23:41.227546607 +0200
@@ -48,6 +48,7 @@
Summary:Development files for the IMA/EVM control utility library
Group: Development/Libraries/C and C++
Requires: %{libname} = %{version}
+Requires: openssl-devel
%description devel
This package contains the header files and the utilities for %{name}.
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2017-10-17 01:52:55
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Tue Oct 17 01:52:55 2017 rev:9 rq:534142 version:1.0
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2017-08-18 15:04:45.435169362 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2017-10-17 01:53:00.209070152 +0200
@@ -1,0 +2,14 @@
+Sat Oct 14 22:48:40 UTC 2017 - jeng...@inai.de
+
+- No need to remove .a files which don't exist.
+- Drop extraneous ldconfig call on preun.
+- Update RPM groups and descriptions.
+
+---
+Fri Oct 13 14:09:08 UTC 2017 - matthias.gerst...@suse.com
+
+- ima-evm-utils-fix-docbook-xsl-directory.patch: adjusted to refer to the
+ "current" version of stylesheet to make the build work again
+- adjusted spec file to apply stylesheet patch to SLE12 as well
+
+---
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.e9tAlb/_old 2017-10-17 01:53:01.009032683 +0200
+++ /var/tmp/diff_new_pack.e9tAlb/_new 2017-10-17 01:53:01.009032683 +0200
@@ -24,7 +24,7 @@
Release:0
Summary:IMA/EVM control utility
License:LGPL-2.1+
-Group: System/Libraries
+Group: System/Base
Url:http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
@@ -41,10 +41,11 @@
BuildRequires: pkg-config
%description
-This package provides the IMA/EVM control utility.
+This package provides the control utility for IMA/EVM (Integrity
+Measurement Architecture/ Linux Extended Verification Module).
%package devel
-Summary:IMA/EVM control utility --development files
+Summary:Development files for the IMA/EVM control utility library
Group: Development/Libraries/C and C++
Requires: %{libname} = %{version}
@@ -52,14 +53,15 @@
This package contains the header files and the utilities for %{name}.
%package -n %{libname}
-Summary:IMA/EVM control utility --shared library
+Summary:IMA/EVM control utility libary
Group: System/Libraries
%description -n %{libname}
-This package provides the IMA:EVM shared library.
+This package provides the shared library for IMA/EVM (Integrity
+Measurement Architecture/Extended Verification Module).
%package -n evmctl
-Summary:IMA/EVM control utility --IMA/EVM signing utility
+Summary:IMA/EVM signing utility
Group: System/Kernel
Provides: ima-evm-utils = %{version}
Obsoletes: ima-evm-utils < %{version}
@@ -71,7 +73,7 @@
%prep
%setup -q
-%if %suse_version > 1315
+%if %suse_version >= 1315
%patch2 -p1
%endif
@@ -84,13 +86,10 @@
make DESTDIR=%{buildroot} install
# Let do it by ourselves later...
rm -rf %{buildroot}%{_datadir}/doc
-find %{buildroot}%{_libdir} -type f -name "*.a" -print -delete
find %{buildroot}%{_libdir} -type f -name "*.la" -print -delete
%post -n %{libname} -p /sbin/ldconfig
-%preun -n %{libname} -p /sbin/ldconfig
-
%postun -n %{libname} -p /sbin/ldconfig
%files devel
++ ima-evm-utils-fix-docbook-xsl-directory.patch ++
--- /var/tmp/diff_new_pack.e9tAlb/_old 2017-10-17 01:53:01.037031371 +0200
+++ /var/tmp/diff_new_pack.e9tAlb/_new 2017-10-17 01:53:01.037031371 +0200
@@ -7,7 +7,7 @@
# requires asciidoc, xslproc, docbook-xsl
-MANPAGE_DOCBOOK_XSL =
/usr/share/xml/docbook/stylesheet/docbook-xsl/manpages/docbook.xsl
-+MANPAGE_DOCBOOK_XSL =
/usr/share/xml/docbook/stylesheet/nwalsh/1.79.0/manpages/docbook.xsl
++MANPAGE_DOCBOOK_XSL =
/usr/share/xml/docbook/stylesheet/nwalsh/current/manpages/docbook.xsl
evmctl.1.html: README
@asciidoc -o $@ $<
commit ima-evm-utils for openSUSE:Factory
Hello community, here is the log from the commit of package ima-evm-utils for openSUSE:Factory checked in at 2017-08-18 15:04:39 Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old) and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New) Package is "ima-evm-utils" Fri Aug 18 15:04:39 2017 rev:8 rq:517195 version:1.0 Changes: --- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes 2017-05-17 10:54:20.578921846 +0200 +++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes 2017-08-18 15:04:45.435169362 +0200 @@ -4 +4 @@ -- Add ima-evm-utils to SLES. (FATE#21603) +- Add ima-evm-utils to SLES. (FATE#321603) Other differences: --
commit ima-evm-utils for openSUSE:Factory
Hello community, here is the log from the commit of package ima-evm-utils for openSUSE:Factory checked in at 2017-05-17 10:54:19 Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old) and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New) Package is "ima-evm-utils" Wed May 17 10:54:19 2017 rev:7 rq:494960 version:1.0 Changes: --- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes 2016-01-22 01:09:26.0 +0100 +++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes 2017-05-17 10:54:20.578921846 +0200 @@ -1,0 +2,5 @@ +Mon May 8 12:48:44 UTC 2017 - meiss...@suse.com + +- Add ima-evm-utils to SLES. (FATE#21603) + +--- Other differences: -- ++ ima-evm-utils.spec ++ --- /var/tmp/diff_new_pack.BEZJXk/_old 2017-05-17 10:54:21.246827885 +0200 +++ /var/tmp/diff_new_pack.BEZJXk/_new 2017-05-17 10:54:21.250827323 +0200 @@ -1,7 +1,7 @@ # # spec file for package ima-evm-utils # -# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -71,7 +71,9 @@ %prep %setup -q +%if %suse_version > 1315 %patch2 -p1 +%endif %build NOCONFIGURE=1 ./autogen.sh
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2016-01-21 23:43:55
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2015-12-03 13:32:51.0 +0100
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2016-01-22 01:09:26.0 +0100
@@ -1,0 +2,6 @@
+Tue Jan 19 09:32:33 UTC 2016 - meiss...@suse.com
+
+- ima-evm-utils-fix-docbook-xsl-directory.patch:
+ fixed the nwalsh docbook directory again
+
+---
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.aleDP7/_old 2016-01-22 01:09:29.0 +0100
+++ /var/tmp/diff_new_pack.aleDP7/_new 2016-01-22 01:09:29.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package ima-evm-utils
#
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -15,6 +15,7 @@
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
+
%define sover 0
%define libname libimaevm%{sover}
++ ima-evm-utils-fix-docbook-xsl-directory.patch ++
--- /var/tmp/diff_new_pack.aleDP7/_old 2016-01-22 01:09:29.0 +0100
+++ /var/tmp/diff_new_pack.aleDP7/_new 2016-01-22 01:09:29.0 +0100
@@ -1,12 +1,13 @@
a/Makefile.am.orig 2014-09-23 14:09:05.0 +0200
-+++ b/Makefile.am 2015-01-21 18:00:23.762694050 +0100
-@@ -24,7 +24,7 @@
+Index: ima-evm-utils-1.0/Makefile.am
+===
+--- ima-evm-utils-1.0.orig/Makefile.am
ima-evm-utils-1.0/Makefile.am
+@@ -24,7 +24,7 @@ rpm: $(tarname)
rpmbuild -ba --nodeps $(SPEC)
# requires asciidoc, xslproc, docbook-xsl
-MANPAGE_DOCBOOK_XSL =
/usr/share/xml/docbook/stylesheet/docbook-xsl/manpages/docbook.xsl
-+MANPAGE_DOCBOOK_XSL =
/usr/share/xml/docbook/stylesheet/nwalsh/1.78.1/manpages/docbook.xsl
++MANPAGE_DOCBOOK_XSL =
/usr/share/xml/docbook/stylesheet/nwalsh/1.79.0/manpages/docbook.xsl
evmctl.1.html: README
@asciidoc -o $@ $<
-
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2015-12-03 13:32:49
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is "ima-evm-utils"
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2015-01-24 22:20:42.0 +0100
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2015-12-03 13:32:51.0 +0100
@@ -1,0 +2,10 @@
+Wed Dec 2 13:44:58 UTC 2015 - p.drou...@gmail.com
+
+- Update to version 1.0
+ * Recursive hashing
+ * Immutable EVM signatures (experimental)
+ * Command 'ima_clear' to remove xattrs
+ * Support for passing password to the library
+ * Support for asking password safely from the user
+
+---
Old:
ima-evm-utils-0.9.tar.gz
New:
ima-evm-utils-1.0.tar.gz
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.Zwvqf7/_old 2015-12-03 13:32:51.0 +0100
+++ /var/tmp/diff_new_pack.Zwvqf7/_new 2015-12-03 13:32:51.0 +0100
@@ -19,12 +19,12 @@
%define libname libimaevm%{sover}
Name: ima-evm-utils
-Version:0.9
+Version:1.0
Release:0
Summary:IMA/EVM control utility
License:LGPL-2.1+
Group: System/Libraries
-URL: http://sourceforge.net/projects/linux-ima/
+Url: http://sourceforge.net/projects/linux-ima/
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
++ ima-evm-utils-0.9.tar.gz -> ima-evm-utils-1.0.tar.gz ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-0.9/ChangeLog
new/ima-evm-utils-1.0/ChangeLog
--- old/ima-evm-utils-0.9/ChangeLog 2014-09-23 14:09:05.0 +0200
+++ new/ima-evm-utils-1.0/ChangeLog 2015-07-30 20:28:53.0 +0200
@@ -1,3 +1,12 @@
+2014-07-30 Dmitry Kasatkin
+
+ version 1.0
+ * Recursive hashing
+ * Immutable EVM signatures (experimental)
+ * Command 'ima_clear' to remove xattrs
+ * Support for passing password to the library
+ * Support for asking password safely from the user
+
2014-09-23 Dmitry Kasatkin
version 0.9
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-0.9/README new/ima-evm-utils-1.0/README
--- old/ima-evm-utils-0.9/README2014-09-23 14:09:05.0 +0200
+++ new/ima-evm-utils-1.0/README2015-07-30 20:28:53.0 +0200
@@ -403,7 +403,7 @@
Latest version of keyctl allows to import X509 public key certificates:
-cat /etc/keys/x509_ima.der | keyctl padd asymmetric '' @ima_id
+cat /etc/keys/x509_ima.der | keyctl padd asymmetric '' $ima_id
FILES
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-0.9/configure.ac
new/ima-evm-utils-1.0/configure.ac
--- old/ima-evm-utils-0.9/configure.ac 2014-09-23 14:09:05.0 +0200
+++ new/ima-evm-utils-1.0/configure.ac 2015-07-30 20:28:53.0 +0200
@@ -1,7 +1,7 @@
# autoconf script
AC_PREREQ([2.65])
-AC_INIT(ima-evm-utils, 0.9, d.kasat...@samsung.com)
+AC_INIT(ima-evm-utils, 1.0, dmitry.kasat...@huawei.com)
AM_INIT_AUTOMAKE
AC_CONFIG_HEADERS([config.h])
AC_CONFIG_MACRO_DIR([m4])
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-0.9/packaging/ima-evm-utils.spec
new/ima-evm-utils-1.0/packaging/ima-evm-utils.spec
--- old/ima-evm-utils-0.9/packaging/ima-evm-utils.spec 2014-09-23
14:09:05.0 +0200
+++ new/ima-evm-utils-1.0/packaging/ima-evm-utils.spec 2015-07-30
20:28:53.0 +0200
@@ -1,5 +1,5 @@
Name: ima-evm-utils
-Version: 0.9
+Version: 1.0
Release: 1%{?dist}
Summary: ima-evm-utils - IMA/EVM control utility
Group: System/Libraries
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/ima-evm-utils-0.9/src/evmctl.c
new/ima-evm-utils-1.0/src/evmctl.c
--- old/ima-evm-utils-0.9/src/evmctl.c 2014-09-23 14:09:05.0 +0200
+++ new/ima-evm-utils-1.0/src/evmctl.c 2015-07-30 20:28:53.0 +0200
@@ -54,6 +54,7 @@
#include
#include
#include
+#include
#include
#include
@@ -107,6 +108,7 @@
static int recursive;
static int msize;
static dev_t fs_dev;
+static bool evm_immutable;
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2015-01-24 22:20:34
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is ima-evm-utils
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2014-10-19 19:28:39.0 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2015-01-24 22:20:42.0 +0100
@@ -1,0 +2,23 @@
+Wed Jan 21 17:39:08 UTC 2015 - p.drou...@gmail.com
+
+- Update to version 0.9
+ * Updated README
+ * man page generated and added to the package
+ * Use additional SMACK xattrs for EVM signature generation
+ * Signing functions moved to libimaevm for external use (RPM)
+ * Fixed setting of correct hash header
+- Add additional requirements; asciidoc, docbook-xsl-stylesheets,
+ libattr-devel and libxslt-tools
+- Remove COPYING from sources; upstream provides one now
+- Remove automake.patch; test directory isn't provided by upstream
+ anymore
+- Remove ima-evm-utils-xattr.patch; libimaevm0 does link against
+ libattr now
+- Split package in three subpackage
+ * libimaevm0: contains shared library
+ * -devel: contains header and examples files
+ * evmctl: the kernel signing tool
+- Add ima-evm-utils-fix-docbook-xsl-directory.patch; fix path
+ where Make is looking for docbook.xsl
+
+---
Old:
COPYING
automake.patch
ima-evm-utils-0.2.tar.gz
ima-evm-utils-xattr.patch
New:
ima-evm-utils-0.9.tar.gz
ima-evm-utils-fix-docbook-xsl-directory.patch
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.KC66ow/_old 2015-01-24 22:20:42.0 +0100
+++ /var/tmp/diff_new_pack.KC66ow/_new 2015-01-24 22:20:42.0 +0100
@@ -1,7 +1,7 @@
#
# spec file for package ima-evm-utils
#
-# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -15,55 +15,95 @@
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
+%define sover 0
+%define libname libimaevm%{sover}
Name: ima-evm-utils
-Version:0.2
+Version:0.9
Release:0
Summary:IMA/EVM control utility
License:LGPL-2.1+
Group: System/Libraries
-#URL:
-Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/ima-evm-utils-0.2.tar.gz
-Source1:COPYING
-Patch0: automake.patch
-Patch1: ima-evm-utils-xattr.patch
+URL: http://sourceforge.net/projects/linux-ima/
+Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/%{name}-%{version}.tar.gz
+Patch2: ima-evm-utils-fix-docbook-xsl-directory.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
-
+BuildRequires: asciidoc
BuildRequires: autoconf
BuildRequires: automake
+BuildRequires: docbook-xsl-stylesheets
BuildRequires: keyutils-devel
+BuildRequires: libattr-devel
BuildRequires: libtool
+BuildRequires: libxslt-tools
BuildRequires: openssl-devel
BuildRequires: pkg-config
%description
This package provides the IMA/EVM control utility.
+%package devel
+Summary:IMA/EVM control utility --development files
+Group: Development/Libraries/C and C++
+Requires: %{libname} = %{version}
+
+%description devel
+This package contains the header files and the utilities for %{name}.
+
+%package -n %{libname}
+Summary:IMA/EVM control utility --shared library
+Group: System/Libraries
+
+%description -n %{libname}
+This package provides the IMA:EVM shared library.
+
+%package -n evmctl
+Summary:IMA/EVM control utility --IMA/EVM signing utility
+Group: System/Kernel
+Provides: ima-evm-utils = %{version}
+Obsoletes: ima-evm-utils %{version}
+
+%description -n evmctl
+The evmctl utility can be used for producing and verifying digital signatures,
+which are used by Linux kernel integrity subsystem (IMA/EVM). It can be also
+used to import keys into the kernel keyring.
+
%prep
%setup -q
-%patch0 -p1
-%patch1 -p1
+%patch2 -p1
%build
-./autogen.sh
-%configure --prefix=/usr
+NOCONFIGURE=1 ./autogen.sh
+%configure --disable-static
make %{?_smp_mflags}
-cp %{SOURCE1} .
%install
make DESTDIR=%{buildroot} install
+# Let do it by ourselves later...
+rm -rf %{buildroot}%{_datadir}/doc
+find %{buildroot}%{_libdir} -type f -name *.a -print -delete
+find
commit ima-evm-utils for openSUSE:Factory
Hello community,
here is the log from the commit of package ima-evm-utils for openSUSE:Factory
checked in at 2014-10-19 19:28:06
Comparing /work/SRC/openSUSE:Factory/ima-evm-utils (Old)
and /work/SRC/openSUSE:Factory/.ima-evm-utils.new (New)
Package is ima-evm-utils
Changes:
--- /work/SRC/openSUSE:Factory/ima-evm-utils/ima-evm-utils.changes
2013-10-21 19:52:26.0 +0200
+++ /work/SRC/openSUSE:Factory/.ima-evm-utils.new/ima-evm-utils.changes
2014-10-19 19:28:39.0 +0200
@@ -1,0 +2,7 @@
+Sun Oct 12 15:03:26 UTC 2014 - crrodrig...@opensuse.org
+
+- ima-evm-utils-xattr.patch: libattr is never linked, things
+ still work because glibc provides the same interface, switch
+ the includes to the glibc headers and remove the build dependency.
+
+---
New:
ima-evm-utils-xattr.patch
Other differences:
--
++ ima-evm-utils.spec ++
--- /var/tmp/diff_new_pack.f2Kazr/_old 2014-10-19 19:28:40.0 +0200
+++ /var/tmp/diff_new_pack.f2Kazr/_new 2014-10-19 19:28:40.0 +0200
@@ -1,7 +1,7 @@
#
# spec file for package ima-evm-utils
#
-# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -26,13 +26,13 @@
Source0:
http://downloads.sourceforge.net/project/linux-ima/ima-evm-utils/ima-evm-utils-0.2.tar.gz
Source1: COPYING
Patch0:automake.patch
+Patch1: ima-evm-utils-xattr.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: autoconf
BuildRequires: automake
-BuildRequires: libtool
BuildRequires: keyutils-devel
-BuildRequires: libattr-devel
+BuildRequires: libtool
BuildRequires: openssl-devel
BuildRequires: pkg-config
@@ -42,11 +42,12 @@
%prep
%setup -q
%patch0 -p1
+%patch1 -p1
%build
./autogen.sh
%configure --prefix=/usr
-make
+make %{?_smp_mflags}
cp %{SOURCE1} .
%install
++ ima-evm-utils-xattr.patch ++
--- ima-evm-utils-0.2.orig/src/evmctl.c
+++ ima-evm-utils-0.2/src/evmctl.c
@@ -36,13 +36,12 @@
#include stdio.h
#include stdint.h
#include string.h
-#include attr/xattr.h
+#include sys/xattr.h
#include getopt.h
#include signal.h
#include keyutils.h
#include asm/byteorder.h
#include syslog.h
-#include attr/xattr.h
#include dirent.h
#include openssl/sha.h
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit ima-evm-utils for openSUSE:Factory
binUcxZqsliee.bin Description: Binary data
