Compare commits
No commits in common. "c8-stream-2.3" and "c9-beta" have entirely different histories.
c8-stream-
...
c9-beta
53
SOURCES/0001-Define-OPENSSL_API_COMPAT-to-0x10101000L.patch
Normal file
53
SOURCES/0001-Define-OPENSSL_API_COMPAT-to-0x10101000L.patch
Normal file
@ -0,0 +1,53 @@
|
|||||||
|
From b339a18aa06c78d64ac33d891d400eac7b86fff3 Mon Sep 17 00:00:00 2001
|
||||||
|
From: Jakub Hrozek <jhrozek@redhat.com>
|
||||||
|
Date: Mon, 17 May 2021 13:30:24 +0200
|
||||||
|
Subject: [PATCH] Define OPENSSL_API_COMPAT to 0x10101000L
|
||||||
|
|
||||||
|
---
|
||||||
|
src/jwe.c | 2 ++
|
||||||
|
src/jwk.c | 2 ++
|
||||||
|
src/jws.c | 2 ++
|
||||||
|
3 files changed, 6 insertions(+)
|
||||||
|
|
||||||
|
diff --git a/src/jwe.c b/src/jwe.c
|
||||||
|
index 822d408..d6f3149 100644
|
||||||
|
--- a/src/jwe.c
|
||||||
|
+++ b/src/jwe.c
|
||||||
|
@@ -5,6 +5,8 @@
|
||||||
|
* Copyright (c) 2014-2016 Cisco Systems, Inc. All Rights Reserved.
|
||||||
|
*/
|
||||||
|
|
||||||
|
+#define OPENSSL_API_COMPAT 0x10101000L
|
||||||
|
+
|
||||||
|
#include <cjose/base64.h>
|
||||||
|
#include <cjose/header.h>
|
||||||
|
#include <cjose/jwe.h>
|
||||||
|
diff --git a/src/jwk.c b/src/jwk.c
|
||||||
|
index 860f0e7..87408e9 100644
|
||||||
|
--- a/src/jwk.c
|
||||||
|
+++ b/src/jwk.c
|
||||||
|
@@ -5,6 +5,8 @@
|
||||||
|
* Copyright (c) 2014-2016 Cisco Systems, Inc. All Rights Reserved.
|
||||||
|
*/
|
||||||
|
|
||||||
|
+#define OPENSSL_API_COMPAT 0x10101000L
|
||||||
|
+
|
||||||
|
#include "include/jwk_int.h"
|
||||||
|
#include "include/util_int.h"
|
||||||
|
|
||||||
|
diff --git a/src/jws.c b/src/jws.c
|
||||||
|
index 4e03554..9d682a0 100644
|
||||||
|
--- a/src/jws.c
|
||||||
|
+++ b/src/jws.c
|
||||||
|
@@ -5,6 +5,8 @@
|
||||||
|
* Copyright (c) 2014-2016 Cisco Systems, Inc. All Rights Reserved.
|
||||||
|
*/
|
||||||
|
|
||||||
|
+#define OPENSSL_API_COMPAT 0x10101000L
|
||||||
|
+
|
||||||
|
#include <cjose/base64.h>
|
||||||
|
#include <cjose/header.h>
|
||||||
|
#include <cjose/jws.h>
|
||||||
|
--
|
||||||
|
2.31.1
|
||||||
|
|
@ -1,6 +1,6 @@
|
|||||||
Name: cjose
|
Name: cjose
|
||||||
Version: 0.6.1
|
Version: 0.6.1
|
||||||
Release: 4%{?dist}
|
Release: 16%{?dist}
|
||||||
Summary: C library implementing the Javascript Object Signing and Encryption (JOSE)
|
Summary: C library implementing the Javascript Object Signing and Encryption (JOSE)
|
||||||
|
|
||||||
License: MIT
|
License: MIT
|
||||||
@ -8,14 +8,16 @@ URL: https://github.com/cisco/cjose
|
|||||||
Source0: https://github.com/cisco/%{name}/archive/%{version}/%{name}-%{version}.tar.gz
|
Source0: https://github.com/cisco/%{name}/archive/%{version}/%{name}-%{version}.tar.gz
|
||||||
|
|
||||||
Patch1: concatkdf.patch
|
Patch1: concatkdf.patch
|
||||||
Patch2: 0002-check-cjose_get_alloc.patch
|
Patch2: 0001-Define-OPENSSL_API_COMPAT-to-0x10101000L.patch
|
||||||
Patch3: 0003-CVE-2023-37464.patch
|
Patch3: 0002-check-cjose_get_alloc.patch
|
||||||
|
Patch4: 0003-CVE-2023-37464.patch
|
||||||
|
|
||||||
BuildRequires: gcc
|
BuildRequires: gcc
|
||||||
BuildRequires: doxygen
|
BuildRequires: doxygen
|
||||||
BuildRequires: openssl-devel
|
BuildRequires: openssl-devel
|
||||||
BuildRequires: jansson-devel
|
BuildRequires: jansson-devel
|
||||||
BuildRequires: check-devel
|
BuildRequires: check-devel
|
||||||
|
BuildRequires: make
|
||||||
|
|
||||||
%description
|
%description
|
||||||
Implementation of JOSE for C/C++
|
Implementation of JOSE for C/C++
|
||||||
@ -44,9 +46,7 @@ find %{buildroot} -name '*.a' -exec rm -f {} ';'
|
|||||||
find %{buildroot} -name '*.la' -exec rm -f {} ';'
|
find %{buildroot} -name '*.la' -exec rm -f {} ';'
|
||||||
|
|
||||||
|
|
||||||
%post -p /sbin/ldconfig
|
%ldconfig_scriptlets
|
||||||
|
|
||||||
%postun -p /sbin/ldconfig
|
|
||||||
|
|
||||||
|
|
||||||
%check
|
%check
|
||||||
@ -66,14 +66,55 @@ make check || (cat test/test-suite.log; exit 1)
|
|||||||
|
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
* Wed Jul 19 2023 <thalman@redhat.com> - 0.6.1-4
|
* Wed Jul 19 2023 <thalman@redhat.com> - 0.6.1-16
|
||||||
- CVE-2023-37464 cjose: AES GCM decryption uses the Tag length from the actual
|
- CVE-2023-37464 cjose: AES GCM decryption uses the Tag length from the actual
|
||||||
Authentication Tag provided in the JWE
|
Authentication Tag provided in the JWE
|
||||||
Resolves: rhbz#2223308
|
Resolves: rhbz#2223308
|
||||||
|
|
||||||
* Fri Mar 17 2023 <thalman@redhat.com> - 0.6.1-3
|
* Wed May 3 2023 <spoore@redhat.com> - 0.6.1-15
|
||||||
|
- Rebuilt for gating
|
||||||
|
Related: rhbz#2180445
|
||||||
|
|
||||||
|
* Tue May 2 2023 <thalman@redhat.com> - 0.6.1-14
|
||||||
|
- Rebuilt for gating
|
||||||
|
Related: rhbz#2180445
|
||||||
|
|
||||||
|
* Tue Mar 21 2023 <thalman@redhat.com> - 0.6.1-13
|
||||||
- Random memory override
|
- Random memory override
|
||||||
Resolves: rhbz#2072469
|
Resolves: rhbz#2180445
|
||||||
|
|
||||||
|
* Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 0.6.1-12
|
||||||
|
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
|
||||||
|
Related: rhbz#1991688
|
||||||
|
|
||||||
|
* Wed Jul 28 2021 Florian Weimer <fweimer@redhat.com> - 0.6.1-11
|
||||||
|
- Rebuild to pick up OpenSSL 3.0 Beta ABI (#1984097)
|
||||||
|
|
||||||
|
* Wed Jun 16 2021 Mohan Boddu <mboddu@redhat.com> - 0.6.1-10
|
||||||
|
- Rebuilt for RHEL 9 BETA for openssl 3.0
|
||||||
|
Related: rhbz#1971065
|
||||||
|
|
||||||
|
* Mon May 17 2021 Jakub Hrozek <jhrozek@redhat.com> - 0.6.1-9
|
||||||
|
- enable build with openssl 3.0
|
||||||
|
- Resolves: rhbz#1958026
|
||||||
|
|
||||||
|
* Thu Apr 15 2021 Mohan Boddu <mboddu@redhat.com> - 0.6.1-8
|
||||||
|
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
|
||||||
|
|
||||||
|
* Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 0.6.1-7
|
||||||
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
|
||||||
|
|
||||||
|
* Mon Jul 27 2020 Fedora Release Engineering <releng@fedoraproject.org> - 0.6.1-6
|
||||||
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
|
||||||
|
|
||||||
|
* Tue Jan 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 0.6.1-5
|
||||||
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
|
||||||
|
|
||||||
|
* Wed Jul 24 2019 Fedora Release Engineering <releng@fedoraproject.org> - 0.6.1-4
|
||||||
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
|
||||||
|
|
||||||
|
* Thu Jan 31 2019 Fedora Release Engineering <releng@fedoraproject.org> - 0.6.1-3
|
||||||
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
|
||||||
|
|
||||||
* Thu Aug 2 2018 <jdennis@redhat.com> - 0.6.1-2
|
* Thu Aug 2 2018 <jdennis@redhat.com> - 0.6.1-2
|
||||||
- fix concatkdf big endian architecture problem.
|
- fix concatkdf big endian architecture problem.
|
||||||
|
Loading…
Reference in New Issue
Block a user