Add old ima-evm-utils version with the patches to expose the old soname for
satisfying rpm-sign runtime dependency on the old soname. Thus, the new
rpm-sign can be built and then depend on the new soname.
Related: rhbz#2026028
Signed-off-by: Bruno Meneguele <bmeneg@redhat.com>
The new version already handles the two additional patches that were being
applied through the rpm package creation, with that, remove both of them.
Also, this commit modifies some specfile pieces to get closer to Fedora's
specfile.
Related: rhbz#2026028
Signed-off-by: Bruno Meneguele <bmeneg@redhat.com>
One of the requests from the Crypto team in RHEL-9 was to drop the support
for SHA1 as a strong algorithm. For ima-evm-utils it's not quite possible,
since it's somewhat dependent on the underlying hardware (TPM version).
However, SHA1 was still being used as the default hash algorithm, with that,
make SHA256 the default instead.
Also, this patch substitutes the patch to solve the memory leak added in the
last release to the one accepted in upstream.
Related: rhbz#1934949
Signed-off-by: Bruno Meneguele <bmeneg@redhat.com>
