import opensc-0.19.0-7.el8

2020-04-28 05:42:12 -04:00 · 2020-04-28 05:42:12 -04:00 · 6cb8f64c08
commit 6cb8f64c08
parent 66525fea0f
3 changed files with 1736 additions and 1 deletions
--- a/SOURCES/opensc-0.19.0-coolkey-2k.patch
+++ b/SOURCES/opensc-0.19.0-coolkey-2k.patch
@ -0,0 +1,48 @@
 From 6c1b9094a6060d9d838bac9ea4f7c4c9e755c4ae Mon Sep 17 00:00:00 2001
 From: Steve Ross <sross@forcepoint.com>
 Date: Wed, 14 Nov 2018 11:59:43 -0600
 Subject: [PATCH] Enable CoolKey driver to handle 2048-bit keys.
 For a problem description, see <https://github.com/OpenSC/OpenSC/issues/1524>.
 In a nutshell, for a card with the CoolKey applet and 2048-bit keys,
 the command
 	pkcs11-tool --test --login
 fails to complete all of its tests.
 This commit consists of a patch from @dengert.
 To avoid triggering an error when the data exceeds 255 bytes, this commit
 limits the amount of the payload sent to the CoolKey applet on the card based
 on the maximum amount of data that the card can receive, and overhead bytes
 (namely, a header and nonce) that accompany the payload.
 With this change, the command
 	pkcs11-tool --test --login
 succeeds.
 ---
 src/libopensc/card-coolkey.c | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)
 diff --git a/src/libopensc/card-coolkey.c b/src/libopensc/card-coolkey.c
 index e320290dfe..11c4e92643 100644
 --- a/src/libopensc/card-coolkey.c
 +++ b/src/libopensc/card-coolkey.c
@@ -1168,12 +1168,16 @@ static int coolkey_write_object(sc_card_t *card, unsigned long object_id,
 	size_t operation_len;
 	size_t left = buf_len;
 	int r;
 +	size_t max_operation_len;
 +
 +	/* set limit for the card's maximum send size and short write */
 +	max_operation_len = MIN(COOLKEY_MAX_CHUNK_SIZE, (card->max_send_size - sizeof(coolkey_read_object_param_t) - nonce_size));
 	ulong2bebytes(&params.head.object_id[0], object_id);
 	do {
 		ulong2bebytes(&params.head.offset[0], offset);
 -		operation_len = MIN(left, COOLKEY_MAX_CHUNK_SIZE);
 +		operation_len = MIN(left, max_operation_len);
 		params.head.length = operation_len;
 		memcpy(params.buf, buf, operation_len);
 		r = coolkey_apdu_io(card, COOLKEY_CLASS, COOLKEY_INS_WRITE_OBJECT, 0, 0,
--- a/SOURCES/opensc-0.19.0-idprime.patch
+++ b/SOURCES/opensc-0.19.0-idprime.patch
--- a/SPECS/opensc.spec
+++ b/SPECS/opensc.spec
@ -3,7 +3,7 @@
 Name:           opensc
 Version:        0.19.0
-Release:        5%{?dist}
+Release:        7%{?dist}
 Summary:        Smart card library and applications
 Group:          System Environment/Libraries
@ -27,6 +27,10 @@ Patch5:         opensc-0.19.0-cac1.patch
 Patch6:         opensc-0.19.0-pinpad.patch
 # https://github.com/OpenSC/OpenSC/pull/1549
 Patch7:         opensc-0.19.0-dual.patch
 # https://github.com/OpenSC/OpenSC/pull/1772
 Patch8:         opensc-0.19.0-idprime.patch
 # https://github.com/OpenSC/OpenSC/pull/1532
 Patch9:         opensc-0.19.0-coolkey-2k.patch
 BuildRequires:  pcsc-lite-devel
 BuildRequires:  readline-devel
@ -60,6 +64,8 @@ every software/card that does so, too.
 %patch5 -p1 -b .cac1
 %patch6 -p1 -b .pinpad
 %patch7 -p1 -b .dual
 %patch8 -p1 -b .idprime
 %patch9 -p1 -b .coolkey-2k
 cp -p src/pkcs15init/README ./README.pkcs15init
 cp -p src/scconf/README.scconf .
@ -211,6 +217,13 @@ fi
 %changelog
 * Mon Nov 25 2019 Jakub Jelen <jjelen@redhat.com> - 0.19.0-7
 - Unbreak RSA-PSS mechanisms in -6 release (#1775673)
 * Thu Nov 14 2019 Jakub Jelen <jjelen@redhat.com> - 0.19.0-6
 - Add support for Gemalto IDPrime smart cards (#1657970)
 - Fix 2k RSA key operations with Coolkey (#1766712)
 * Thu Apr 18 2019 Jakub Jelen <jjelen@redhat.com> - 0.19.0-5
 - Avoid multilib issues (#1693380)