2024-10-17 13:10:15 +00:00
|
|
|
%global oqs_version 0.7.0
|
2024-10-24 16:13:41 +00:00
|
|
|
%global liboqs_min_version 0.11.0-3
|
2023-07-18 15:14:01 +00:00
|
|
|
Name: oqsprovider
|
|
|
|
Version: %{oqs_version}
|
2024-10-24 16:13:41 +00:00
|
|
|
Release: 2%{?dist}
|
2023-07-18 15:14:01 +00:00
|
|
|
Summary: oqsprovider is an OpenSSL provider for quantum-safe algorithms based on liboqs
|
|
|
|
|
|
|
|
License: Apache-2.0 AND MIT
|
|
|
|
URL: https://github.com/open-quantum-safe/oqs-provider.git
|
2024-10-03 11:58:08 +00:00
|
|
|
Source0: https://github.com/open-quantum-safe/oqs-provider/archive/refs/tags/%{oqs_version}.tar.gz
|
|
|
|
Source1: oqsprovider.conf
|
2023-07-18 15:14:01 +00:00
|
|
|
|
2024-10-24 16:13:41 +00:00
|
|
|
Patch01: 01-iana-kem-only.patch
|
|
|
|
|
2024-10-03 11:58:08 +00:00
|
|
|
Requires: liboqs >= %{liboqs_min_version}
|
2023-07-18 15:14:01 +00:00
|
|
|
Requires: openssl
|
|
|
|
BuildRequires: ninja-build
|
|
|
|
BuildRequires: cmake
|
|
|
|
BuildRequires: gcc
|
|
|
|
BuildRequires: liboqs-devel
|
|
|
|
BuildRequires: openssl-devel
|
2024-10-03 11:58:08 +00:00
|
|
|
BuildRequires: liboqs >= %{liboqs_min_version}
|
2023-07-18 15:14:01 +00:00
|
|
|
|
|
|
|
%description
|
|
|
|
oqs-provider fully enables quantum-safe cryptography for KEM key
|
|
|
|
establishment in TLS1.3 including management of such keys via the OpenSSL (3.0)
|
|
|
|
provider interface and hybrid KEM schemes. Also, QSC signatures including CMS
|
|
|
|
functionality are available via the OpenSSL EVP interface. Key persistence is
|
|
|
|
provided via the encode/decode mechanism and X.509 data structures.
|
|
|
|
|
|
|
|
%prep
|
2024-03-20 16:02:44 +00:00
|
|
|
%autosetup -T -b 0 -p1 -n oqs-provider-%{oqs_version}
|
2023-07-18 15:14:01 +00:00
|
|
|
|
|
|
|
%build
|
2024-02-01 16:22:28 +00:00
|
|
|
%cmake -GNinja -DCMAKE_BUILD_TYPE=Debug -DOQS_KEM_ENCODERS=ON -LAH ..
|
2023-07-18 15:14:01 +00:00
|
|
|
%cmake_build
|
|
|
|
|
|
|
|
%check
|
|
|
|
cd "%{_vpath_builddir}"
|
2024-03-20 16:02:44 +00:00
|
|
|
OPENSSL_CONF=/dev/null ctest -V
|
2023-07-18 15:14:01 +00:00
|
|
|
|
|
|
|
%install
|
|
|
|
mkdir -p $RPM_BUILD_ROOT/%{_libdir}/ossl-modules
|
2023-10-27 11:00:38 +00:00
|
|
|
install %{_vpath_builddir}/lib/oqsprovider.so $RPM_BUILD_ROOT/%{_libdir}/ossl-modules
|
|
|
|
(cd $RPM_BUILD_ROOT/%{_libdir}/ossl-modules/ && ln -s oqsprovider.so oqsprovider.so.%{oqs_version})
|
2024-10-03 11:58:08 +00:00
|
|
|
mkdir -p $RPM_BUILD_ROOT%{_sysconfdir}/pki/tls/openssl.d
|
|
|
|
install -m644 '%{SOURCE1}' \
|
|
|
|
$RPM_BUILD_ROOT/%{_sysconfdir}/pki/tls/openssl.d/oqsprovider.conf
|
2023-07-18 15:14:01 +00:00
|
|
|
|
|
|
|
%files
|
|
|
|
%license LICENSE.txt
|
|
|
|
%{_libdir}/ossl-modules/oqsprovider.so.%{oqs_version}
|
|
|
|
%{_libdir}/ossl-modules/oqsprovider.so
|
2024-10-03 11:58:08 +00:00
|
|
|
%config(noreplace) %{_sysconfdir}/pki/tls/openssl.d/oqsprovider.conf
|
2023-07-18 15:14:01 +00:00
|
|
|
|
|
|
|
%changelog
|
2024-10-24 16:13:41 +00:00
|
|
|
* Thu Oct 24 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.7.0-2
|
|
|
|
- OQS provider should provide only standard groups
|
|
|
|
Resolves: RHEL-64277
|
|
|
|
|
2024-10-17 13:10:15 +00:00
|
|
|
* Thu Oct 17 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.7.0-1
|
|
|
|
- Rebase oqsprovider to 0.7.0
|
|
|
|
Resolves: RHEL-56155
|
|
|
|
|
2024-10-03 11:58:08 +00:00
|
|
|
* Thu Oct 03 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.6.1-2
|
|
|
|
- Add drop-in configuration for oqsprovider
|
|
|
|
Resolves: RHEL-56891
|
|
|
|
|
2024-07-11 08:35:36 +00:00
|
|
|
* Thu Jul 11 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.6.1-1
|
|
|
|
- Rebase oqsprovider to 0.6.1
|
|
|
|
Resolves: RHEL-43146
|
|
|
|
|
2024-06-24 16:06:23 +00:00
|
|
|
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 0.5.3-4
|
|
|
|
- Bump release for June 2024 mass rebuild
|
|
|
|
|
2024-03-21 10:48:40 +00:00
|
|
|
* Thu Mar 21 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.5.3-3
|
|
|
|
- add gating.yaml
|
|
|
|
Related: RHEL-25983
|
|
|
|
|
2024-03-20 16:02:44 +00:00
|
|
|
* Fri Mar 01 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.5.3-2
|
|
|
|
- We run tests with specially crafted OpenSSL configuration, not the system one
|
|
|
|
Resolves: RHEL-25983
|
|
|
|
|
2024-02-01 16:22:28 +00:00
|
|
|
* Thu Feb 01 2024 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.5.3-1
|
|
|
|
- Update to 0.5.3 version
|
|
|
|
Enable KEM encoders
|
|
|
|
|
2024-01-25 11:35:35 +00:00
|
|
|
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 0.5.2-3
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
|
|
|
|
|
2024-01-21 11:29:20 +00:00
|
|
|
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 0.5.2-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
|
|
|
|
|
2023-10-27 11:00:38 +00:00
|
|
|
* Fri Oct 27 2023 Dmitry Belyavskiy <dbelyavs@redhat.com> - 0.5.2-1
|
|
|
|
- Switch to 0.5.2 version
|
|
|
|
Resolves: rhbz#2224598
|
|
|
|
|
2023-07-20 18:17:53 +00:00
|
|
|
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 0.5.0-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
|
|
|
|
|
2023-07-18 15:14:01 +00:00
|
|
|
* Tue Jul 18 2023 Dmitry Belyavskiy - 0.5.0-1
|
|
|
|
- Initial build of oqsprovider for Fedora
|
|
|
|
|