swtpm-devel-0.7.3-150500.2.1 >  A dQp9|ځ5Zhf!cAxwص5̻>TeZtAպ+h6F0k#2R#: Lh^7ag4rmP Ԏ@jOod'?O>"y^GA^I0b}OK72Y&>uoGbAotбXDH`aU> DN~dWe qqQC^J^Yk3G K_545a9d92104f1e26cdd0ef66921d99f3a2642b4fba270385db2a1679b3f939ef1b68f5723817358aec0165e3b165b8b0bee384ecTxdQp9| J!#b C!onlHSޟceʗ =hzc!"^^bg8)ҙϦ fm3DKRDQ7Xս/~>uPadIKl?$uy(^HސHdBUlgM-IяH"v"É5(z[ r<>D"3pЀY9;2)@jn-oy?t>p;0?/d  ;\`lp  0 8 @ P  ,L\  I (o8x9:DF,G- H-I-,X-0Y-8\-\]-l^-b-c.d.e.f.l.u/v/z/////Cswtpm-devel0.7.3150500.2.1Development files for swtpmThe development files for SWTPMdQs390zl32BSD-3-Clausehttps://www.suse.com/Development/Libraries/C and C++https://github.com/stefanberger/swtpmlinuxs390x'A큤dQdQdQdQ6d67d368af8e9f9591eb96403f06bd0d6854199674a1d221fac38bb974ddc249c5d472baa358eb14e45d0bf6d008c9ed9d3c4023db59c9431b1b250debedae4clibswtpm_libtpms.so.0.0.0rootrootrootrootrootrootrootrootswtpm-0.7.3-150500.2.1.src.rpmswtpm-develswtpm-devel(s390-64)    glib2-devellibopenssl-devellibseccomp-devellibtpms-develrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)swtpm3.0.4-14.6.0-14.0-15.2-10.7.34.14.3dP@cAf@bk@bMb(b~a@aKau`O@_w@___R__5+@_"@_ ^1^,]pZmeissner@suse.commeissner@suse.commeissner@suse.commliska@suse.czwolfgang.frisch@suse.commeissner@suse.commeissner@suse.commeissner@suse.comgmbr3@opensuse.orgpmonreal@suse.commeissner@suse.comglin@suse.comglin@suse.comkai.liu@suse.comkai.liu@suse.comkai.liu@suse.comkai.liu@suse.comkai.liu@suse.comglin@suse.comglin@suse.comglin@suse.comglin@suse.com- remove python3 dependency, no longer needed after rewrite (bsc#1211010)- remove selinux support for now.- Updated to version 0.7.3: - swtpm: - Use uint64_t in tlv_data_append() to avoid integer overflows - Use uint64_t to avoid integer wrap-around when adding a uint32_t - removed allow-FORTIFY_SOURCE=3.patch (upstreamed)- Cheery-pick upstream patch allow-FORTIFY_SOURCE=3.patch.- Update to version 0.7.2: - swtpm: - Do not chdir(/) when using --daemon - swtpm-localca: - Re-implement variable resolution for swtpm-localca.conf - tests: - Use ${WORKDIR} in config files to test env. var replacement - man pages: - Add missing .config directory to path description when using ${HOME} - build-sys: - Add probing for -fstack-protector- Update to version 0.7.1: - swtpm: - Check header size indicator against expected size (CVE-2022-23645 bsc#1196240) - swtpm_localca: - Test for available issuercert before creating CA- Update to version 0.7.0: - swtpm: - Support for linear file storage backend (file://) - Report 'tpm-1.2' & 'tpm-2.0' in --print-capabilities depending what libtpms supports - Add implementation of SWTPM_HMAC using OpenSSL 3.0 APIs - Wipe keys from stack and heap - Many other small changes - Make --daemon not racy - swtpm_setup: - Only activate SHA256 PCR bank, not SHA1 bank anymore by default - Support for linear file storage backend (file://) - Implement option --create-config-files to create config files - Use non-deprecated APIs to contruct RSA key (OSSL 3) - Report stderr as returned by external tool (swtpm-localcal) - Replace '+' and ',' characters in VMId's to make work with common name in X509 subject - Add support for --reconfigure flag to change active PCR banks - swtpm_localca: - Created certificates for CAs and TPM that do not expire - swtpm_cert: - Allow passing -1 for days to get a non-expiring certificate - test: - ASAN-related test changes and skipping of tests if ASAN is used - Fix tests using tpm2-abrmd by preventing concurrency - Skip chardev related tests after checking for chardev support - exit with error code if mktemp fails - OSSL 3: Make TPM 1.2 test compile; skip IBM TSS 2 test - build-sys: - Introduce --enable-sanitizers to configure - Remove check for pip3 that was used by python swtpm_setup - Allow passing of aditional CFLAGS during build- Update to version 0.6.1: - swtpm: - Clear keys from stack and heap - swtpm-localca: - Add missing else branch for pkcs11 and PIN - swtpm_setup: - Initialize Gerror and free it - Replace '\\s' in regex with [[:space:]] to fix cygwin - tests: - Kill tpm2-abrmd with SIGKILL rather SIGTERM - build-sys: - Use -DOPENSSL_SUPPRESS_DEPRECATED to suppress deprecation warnings (OSSL 3) - Enable configuring with CFLAGS and passing additional CFLAGS on build- Update to version 0.6.0: - Addressed potential symlink attack issue (CVE-2020-28407) - Rewritten in 'C'; needs json-glib - Use timeouts for communicating with swtpm (Unix socket) - Fix --print-capabilities for 'swtpm chardev' - Various cleanups and fixes (coverity) - Enable selinux support - Removed swtpm-rename_deprecated_libtasn1_types.patch: upstream - Fix rpmlint errors- swtpm_cert: rename deprecated libtasn1 types. * https://github.com/stefanberger/swtpm/pull/443 * Add swtpm-rename_deprecated_libtasn1_types.patch- Update to version 0.5.2 - swtpm: - Fix potential buffer overflow related to largely unused data hashing function in control channel - swtpm: Unconditionally close fd if writing of pidfile fails (coverity) - swtpm_setup: - Increase timeout from 10s to 30s for slower machines - Travis: - Not building on OS X anymore due to additional costs- Use "Requires user(tss)" for the "tss" user and group- Create /var/lib/swtpm-localca to store the keys created by swtpm-localca (bsc#1179811) - Replace net-tools-deprecated with iproute2 since the scripts in swtpm now can use 'ss' instead of 'netstat'- Update to version 0.5.1 * swtpm & swtpm_setup: - Addressed potential symlink attack issue (CVE-2020-28407) * build-sys: - Fix configure python cryptography error message - Misc. spec file changes.- Update Requires and BuildRequires for changes since 0.4.0. - Remove patch files that are no longer needed: * swtpm-adjust-seccomp-path.patch * swtpm-setup-tcsd-path.patch * swtpm-tpm-tools-path.patch - Update to version 0.5.0 * swtpm: - Write files atomically using a temp file and then renaming * swtpm_setup: - Removed remaining 'c' wrapper program - Do not truncate logfile when testing write-access (regression) - Remove TPM state file in case error occurred * swtpm-localca: - Rewrite in python - Allow passing pkcs11 PIN using signingkey_password - Allow passing environment variables needed for pkcs11 modules using swtpm-localca.conf and format 'env:VARNAME=VALUE'. * build-sys: - Add python-install and python-uninstall targets - Add configure option to disable installation of Python module - Use -Wl,-z,relro and -Wl,-z,now only when linking (clang) - Use AC_LINK_IFELSE to check whether support for hardening flags - Changes from version 0.4.1 * swtpm_setup: - Do not hardcode '/etc' but use SYSCONFDIR - Fix support for -h and -? options - Add missing .config path when using ${HOME} * swtpm-localca: - Apply password for signing key when creating platform cert - Properly apply passwords for localca signing key - Changes from version 0.4.0 * swtpm: - Invoke print capabilities after choosing TPM version - Add some recent syscalls to seccomp blacklist * swtpm_cert: - Support --ecc-curveid option to pass curve id * swtpm_setup & related scripts: - Rewrite swtpm_setup.sh in python with TPM 1.2 not requiring tcsd and TPM tools anymore; new dependencies: - python3: pip, cryptography, setuptools dropped dependencies for swtpm_setup: - tcsd, expect, tpm-tools (some still needed for pkcs11 tests) - Added support for RSA 3072 keys (for libtpms-0.8.0) and moved to ECC NIST P384 curve; default RSA key size is still 2048 - Added support for --rsa-keysize option - Extend script to create a CA using a TPM 2 for signing * tests: - Use the IBM TSS2 v1.5.0's test suite - Add test case for loading of an NVRAM completely full with keys - Have softhsm_setup use temporary directory for softhsm config & state - various other improvements * man pages: - Improvements * build-sys: - clang: properly test for linker flag 'now' and 'relro' - Gentoo: explicitly link libswtpm_libtpms with -lcrypto - Ownership of /var/lib/swtpm-localca is now tss:root and mode flags 0750.- Update to version 0.3.4: * swtpm: - Fix compilation for cygwin * swtpm_setup & swtpm-localca: - Get rid of bash's eval when invoking external tools to avoid abuse. Only use eval for 'resolving' variables. * tests: - Various fixes of minor issues- Update to version 0.3.3: * swtpm_setup: - openSUSE: Support tcsd configuration where tss user != tss group, such as root/tss; Fedora & Ubuntu for example use tss/tss * build-sys: - Check whether tss user and group are available - Add tss user & group build flags per upstream instruction. This together with v0.3.3 fixed the bug with TPM 1.2 emulation. Related upstream bug: https://github.com/stefanberger/swtpm/issues/284- Update to 0.3.2: + swtpm: + Remove unnecessary #include (fixes SuSE build) + Make coverity happy by handling default case in case statement + swtpm_setup: + bugfix: Create ECC storage primary key in owner hierarchy + bugfix: remove tpm2_stirrandom and tpm2_changeeps + tests: + Adjusted pcrUpdateCounter in tests to succeed with PCR TCB group fixes in libtpms TPM 2 code- Update to 0.3.1 + swtpm: Fix vtpm proxy case without startup flags + swtpm: Only call memcpy if tocopy != 0 (coverity) + man: Document new startup options and capabilities advertisement + swtpm: Enable sending startup commands before processing commands + swtpm_cert: Accept serial numbers that use up to 64bits + swtpm_cert: Use getopt_long_only to parse options + swtpm_cert: Add support for --print-capabilities option + swtpm_cert: Allow passing signing key and parent key via new option + swtpm_setup: Enable spaces in paths and other variables + swtpm_ioctl: Calculate strlen(input) only once + swtpm_ioctl: Block SIGPIPE so we can get EPIPE on write() + swtpm_bios: Block SIGPIPE so we can get EPIPE on write() + swtpm: Only accept() new client ctrl connection if we have none + swtpm_setup: Do not fail on future PCR banks' hashes + swtpm_setup: Use 1st part of SWTPM_EXE/SWTPM_IOCTL to determine executable + swtpm_setup: Keep reserved range of file descriptors for swtpm_setup.sh + swtpm_setup: Log about encryption and fix c&p error in err msg + swtpm: Add --print-capabilities to help screen of 'swtpm chardev' + swtpm_ioctl: Fix uninitialized variable 'pgi' + swtpm_cert: Use gnutls_x509_crt_get_subject_key_id API call for subj keyId + swtpm_cert: Fix OIDs for TPM 2 platforms data + swtpm: Fix typo in error report: HMAC instead of hash + swtpm: Use writev_full rather than writev; fixes --vtpm-proxy EIO error - Refresh swtpm-setup-tcsd-path.patch- Amend swtpm-adjust-seccomp-path.patch to add the missing seccomp paths - Adjust the conditional check of net-tools-deprecated for SLE15 and SLE15-SP1- Update to 0.2.0 +Linux: swtpm now runs with a seccomp profile (blacklist) if compiled with libseccomp support + Added subpport for passing key and passphrase via file descriptor + TPM 2 commands can now be prefixed by 'the TCG header' and responses will have a 4-byte prefix and 4-byte suffix. + Added --print-capabilities command line option + Proper handling on EINTR on read, poll, and write - Patches to adjust the pathes + swtpm-tpm-tools-path.patch + swtpm-setup-tcsd-path.patch + swtpm-adjust-seccomp-path.patch- Initial import: 0.1.0-dev2s390zl32 16830712190.7.3-150500.2.10.7.3-150500.2.1swtpmtpm_ioctl.hlibswtpm_libtpms.soswtpm_ioctls.3.gz/usr/include//usr/include/swtpm//usr/lib64/swtpm//usr/share/man/man3/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:SLE-15-SP5:GA/standard/fecc8529b0425a754cebef0033b99654-swtpmcpioxz5s390x-suse-linuxdirectoryC source, ASCII texttroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)]OiJ{w)utf-8fefcd06abea7a0dd8be5f1e510073fa624bc341625a29410c0e6007247d56a60?P7zXZ !t/?s Y] crt:bLL rSv~~jߪ }-b+s`'{]xfqQ|ZU#8CC?f+, =;uCFͩ-P7nB F\̩4sԺo; ҏ՝{m?vgV֔j,>A7jmd(l1˰1?Zc]JAO^`56\Th {d4[[F(- (=2?~8TυjY1ի"D6j\gmm9JK!&F.Wl\j(aU.<]=ᖄEca);*W7E!DgNP6\on#6"n[G:l~lֆUBl6Vr5%IBJZC ;|WD WwƵi@J׍ia$rBԔPֿTƫU e3w7lq&81>q)V9OZ }ΤKpmG\R6=Et&O1{1 -K޾3Yfvr8jݵfnڹSG^*w VE!5>'vEwH-/xw/K;" *"2;1bKF)S;P|*;48ڮY~[1e'%^|XxzA[kAEI~ġ>vcU`pԡ'0߆آ 2+jWeêxUFo\ΐmJ}ЪJ#@L.?Չ0%G )b=@ެh4{א_xHxe|): 4RϳpYzMeٛp;%-Fx *HJzr&Mf?`4 WS !R:Q.=C[L)nQBQ S2g*q/q娂M,䲵 \ǐS0bԜ\S2ܠà_[*tTw,M} g=1 Zrx]M8N%ƀ6syNBc ~4.8ꨫVuP ](=Ȟw%M5U,^bÕ~>Rk8w_ZM zψWcvAbf3t*3P+ؚ޴в}`42w$N]ݛp40v?r0@[{zҡ/:OX'7RqW=&^#,6&kd_3ȯhB ?uL91$"TȢZ$s;YN!FAsa1 Ғxi Gݲbر h 8nQsqUc&ﻟlVhwTʇڱvi *@E"桕ă? 2/&&ݞh=(lHFJaYR*Bv7 y>6כIjihYfOB1/u1.. ~qe.D{\Q;.N0ͬ;Ԓ]I$ ɖwq|;cp |[ie킊U_c0rɇ [.a!@, Dy}G:{~&s?[ٹ^ O|f,d2<k$EH}>__`Y҈@!iӰSc OAJ-Ka2.W[U΢.t'Ղ%0[Yf̽ɀj-gj =9e._8],DLÎjtF>Tod/+'-&(Mi%b]@:B+msSt}}c}ȁ&^9hxϬΠʒP7w'O8sJW̙IY3W I)g-t Φ=cbLSgE?{ŐY"O%D5S~D>\(`B82LB=bt'nˆaU;3[-o,n-֭J Vܷj&r[ r6U*}:Hs0u[gږM#67+r H'.6ց>NHR6o˹/K~Tr {UR2ǟm8qս0Y੒vI]22G#9:AMɒmhT5L$}د蟐ԕ'&\'2DNNͫCR&Y'}RlESbRB b藳a\ݭ!gZzʵrt1HqQ+qWWT}IH Y|/3o2/!Rc$h?:ϑU &M/P:iFUtYs®]۷8/D.ܐ}591"^븳iPmd k.4-9VXґy2qg& Sq\ot t_iEƌ\Uxo3]v8r o%4X/|"ܩ7¢qjH]bfC `1<ʉFGB~f8mBC5LY]}`H3J۳!,pp\d ’9K'=z , *m¸w+ԒHP`RugHk0E"^ 2Qi$,yIYD;Pgo;tʨ>m ]_+vu[c^ޞŞl;IjShp@RPA3%N{G$Ib(纯X'ciJT_ IJ%ػ5(x /JoD }=2qy`g~CEѱLiPU ' B*r?V۵I9K^9kټ8E$<˕чEcee͸?ŊXLnu~3oaI<9tPFZ~6:~5oo3ET C=jڸ+ "r'i: 9Dݿ(W~qI}/ ӟh2"<02,BzƒGq:%b, XzИHa-_+:|&KALkrմ/hf$1I"Q>,49~JS)YX^4>n{|RfYa>o2Y(/N{{lu~[ԝE%iơ  M1=2?І4!rzx(2CWVeENfl@|a04K}F\Ԗʯb (b3-D ̄F-?+)fbVԪ[s?V~LO2s~Vhr e^ogG/}D/D_A9Ƨ |Q#83;3{ :{<~Hg"[ q9\oRwXdj'MÓzG5B ⶵ=2y4|ƒ1&&q1eީ$J٤0 !<#l MʿBԊe rII\qV]LMyәcj7Q0y9dZb|6  |_|s+6xFG`zKo[g;Vx ȥVTNLCxEo?+ W-ֲ45qN#i`7)Wf6! |Hs &J&Cjr}`u3<+u}hҞm;8`2 lRv\HdC6U[é(GZ9ha|WA@aߺ]zj\&oDn`StP'ߟ\2 5q=7~hPIhˌjۡ=1\9rQ4Z8ZX*H^m,޹i_;NTPg<|4Ed%ijޥ:i)Z498͇1l܊D< 8Ifyqa䵩=g)*g֓9z\n}`ltYI xyh 1ٚw! M+=%jv4Ah 싿r­.fTn9faK@N5Per 'YEŠɶ4&a5 ز\t*U il[A}^b2]\H1h~x|IX_l<3ԒR}*,b|cTj7gb/v4ggKXGȔݾ0&ݝPWx"5.CoFҴq5PO\%p 4^Q#=֋ՓDJ.HgOC8Kfųr{ x3}ZG)UDX@tW~Bwcvy 8leֹ]uYz^W!S>jߌPD)y)rP; y2/+:yN@F%u \wQ\$Y&Jd˄aBڢ6wXخF0JOn`eoyVX]ZEk9!U %cB=u3Pl(J0z^9+,ק#yV D$E-wbi GVg[p`y nGv3^DF@KVOC0jHb )eFI%CaZ Ⱦs~J„'T/!ZH_1:JuOjB}Y+AITպ=Q|-մYi9!lXv[l"z x i^F{x wKpyD ۫Y|<-g}&f~9< 1;AU_D %ºu@S2g#$r VGRW^upgWו.Ңʼn\Vvǟ&/^PǙ[,-D-{tʤ+s~J.oV"tzs>Q~jLOw2͹< Isiq9$?y/P()$bҩti7 j M-o<ǠR %=d䙝1T)Qq3py"f66+c4@;g{uzRuBuVzȪ7)QhqU$Lt6E ن&\l#Uҭ2s9:lM;w!/|_7( -.,}`rE`|< ^$^`f|,)iP48nzUևA^ko)`.WhD`".vIeQrXBEQCAa%K ^ P$kbyɨe O:5yKbN|9bt<,wNf7LRت *mWdA8AF-1Ao{jkg|M4, gP8A~fS YZ