Update from upstream (:SHA1:NO-ENFORCE-EMS, ECDSAPxxxSHAxxx):

- openssl: fix SHA1 and NO-ENFORCE-EMS interaction
- bind: fix a typo that led to duplication of ECDSAPxxxSHAxxx

Resolves: RHEL-10730
Resolves: RHEL-11346
Resolves: RHEL-11349
This commit is contained in:
Alexander Sosedkin 2023-09-29 11:57:23 +02:00
parent a8018c1657
commit 410783a906
2 changed files with 8 additions and 4 deletions

View File

@ -1,5 +1,5 @@
%global git_date 20230920 %global git_date 20231016
%global git_commit 8dcf74d6d64184aabebcd93d0520ede6f9382da1 %global git_commit 77ceb0bb0eb3fa0e97865d489b82175bdbce413b
%{?git_commit:%global git_commit_hash %(c=%{git_commit}; echo ${c:0:7})} %{?git_commit:%global git_commit_hash %(c=%{git_commit}; echo ${c:0:7})}
%global _python_bytecompile_extra 0 %global _python_bytecompile_extra 0
@ -31,7 +31,7 @@ Version: %{git_date}
Release: 1.git%{git_commit_hash}%{?dist} Release: 1.git%{git_commit_hash}%{?dist}
Summary: System-wide crypto policies Summary: System-wide crypto policies
License: LGPLv2+ License: LGPL-2.1-or-later
URL: https://gitlab.com/redhat-crypto/fedora-crypto-policies URL: https://gitlab.com/redhat-crypto/fedora-crypto-policies
# For RHEL-9 we use the upstream branch rhel9. # For RHEL-9 we use the upstream branch rhel9.
Source0: https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/archive/%{git_commit_hash}/%{name}-git%{git_commit_hash}.tar.gz Source0: https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/archive/%{git_commit_hash}/%{name}-git%{git_commit_hash}.tar.gz
@ -238,6 +238,10 @@ end
%{_mandir}/man8/fips-finish-install.8* %{_mandir}/man8/fips-finish-install.8*
%changelog %changelog
* Mon Oct 16 2023 Alexander Sosedkin <asosedkin@redhat.com> - 20231016-1.git77ceb0b
- openssl: fix SHA1 and NO-ENFORCE-EMS interaction
- bind: fix a typo that led to duplication of ECDSAPxxxSHAxxx
* Wed Sep 20 2023 Alexander Sosedkin <asosedkin@redhat.com> - 20230920-1.git8dcf74d * Wed Sep 20 2023 Alexander Sosedkin <asosedkin@redhat.com> - 20230920-1.git8dcf74d
- OSPP subpolicy: tighten beyond reason for OSPP 4.3 - OSPP subpolicy: tighten beyond reason for OSPP 4.3
- fips-mode-setup: more thorough --disable, still unsupported - fips-mode-setup: more thorough --disable, still unsupported

View File

@ -1 +1 @@
SHA512 (crypto-policies-git8dcf74d.tar.gz) = dde440c60451167655e63cc8f8f6d964ce4a3250b64c1d8634f2be19719a0da6e77a322bd55a71b8d09b72d1052bf80933ecc5511485f7595a15ea1fdd248163 SHA512 (crypto-policies-git77ceb0b.tar.gz) = d422cd8e4ddc56618c04498060cb2fcf0c624e5bba10cdd349e54f5106e246d287a763764246787ae17aaea359854767eb12df425f51f141b86d35e2a7a95aea