volume_key package update

Signed-off-by: basebuilder_pel7ppc64bebuilder0 <basebuilder@powerel.org>
2019-08-24 09:52:52 +02:00 · 2019-08-24 09:52:52 +02:00 · e54141aea6
parent c7dcc0655f
commit e54141aea6
4 changed files with 21743 additions and 0 deletions
--- a/SOURCES/volume_key-0.3.9-config.h.patch
+++ b/SOURCES/volume_key-0.3.9-config.h.patch
@ -0,0 +1,28 @@
+From 942017c862373a4ad03ed9fe05f274a1156d5b27 Mon Sep 17 00:00:00 2001
+From: Sebastian Kisela <skisela@redhat.com>
+Date: Mon, 9 Oct 2017 16:06:11 +0200
+Subject: [PATCH] Do not include config.h in libvolume_key.h
+
+The library's header file distributed in the devel package cannot include
+the config.h file that is only available during build otherwise it's not
+possible to use the library outside of the volume_key build process.
+---
+ lib/libvolume_key.h | 2 --
+ 1 file changed, 2 deletions(-)
+
+diff --git a/lib/libvolume_key.h b/lib/libvolume_key.h
+index 657b626..513f923 100644
+--- a/lib/libvolume_key.h
+++ b/lib/libvolume_key.h
+@@ -18,8 +18,6 @@ Author: Miloslav Trmač <mitr@redhat.com> */
+ #ifndef LIBVOLUME_KEY_H__
+ #define LIBVOLUME_KEY_H__
+ 
+-#include <config.h>
+-
+ #include <cert.h>
+ #include <glib.h>
+ 
+-- 
+2.9.5
+
--- a/SOURCES/volume_key-0.3.9-fips-crash.patch
+++ b/SOURCES/volume_key-0.3.9-fips-crash.patch
@ -0,0 +1,33 @@
+This case can be triggered by encrypting in FIPS mode, where the default
+algorithm is unsupported and gpg crashes in response.
+
+diff --git a/lib/crypto.c b/lib/crypto.c
+index 06eb482..905d583 100644
+--- a/lib/crypto.c
+++ b/lib/crypto.c
+@@ -709,6 +709,12 @@ encrypt_with_passphrase (size_t *res_size, const void *data, size_t size,
+     }
+   gpgme_data_release (src_data);
+   gpgme_res = gpgme_data_release_and_get_mem (dest_data, res_size);
+  if (gpgme_res == NULL)
+    {
+      g_set_error (error, LIBVK_ERROR, LIBVK_ERROR_CRYPTO,
+		   _("Unknown error getting encryption result"));
+      goto err_ctx;
+    }
+   res = g_memdup (gpgme_res, *res_size);
+   gpgme_free (gpgme_res);
+ 
+@@ -759,6 +765,12 @@ decrypt_with_passphrase (size_t *res_size, const void *data, size_t size,
+     }
+   gpgme_data_release (src_data);
+   gpgme_res = gpgme_data_release_and_get_mem (dest_data, res_size);
+  if (gpgme_res == NULL)
+    {
+      g_set_error (error, LIBVK_ERROR, LIBVK_ERROR_CRYPTO,
+		   _("Unknown error getting decryption result"));
+      goto err_ctx;
+    }
+   res = g_memdup (gpgme_res, *res_size);
+   gpgme_free (gpgme_res);
+ 
--- a/SOURCES/volume_key-0.3.9-translation-updates.patch
+++ b/SOURCES/volume_key-0.3.9-translation-updates.patch
--- a/SPECS/volume_key.spec
+++ b/SPECS/volume_key.spec
@ -0,0 +1,250 @@
+%{!?python_sitearch: %global python_sitearch %(%{__python} -c "from distutils.sysconfig import get_python_lib; print get_python_lib(1)")}
+
+Summary: An utility for manipulating storage encryption keys and passphrases
+Name: volume_key
+Version: 0.3.9
+Release: 8%{?dist}
+License: GPLv2
+Group: Applications/System
+URL: https://fedorahosted.org/volume_key/
+Requires: volume_key-libs%{?_isa} = %{version}-%{release}
+
+Source0: https://fedorahosted.org/releases/v/o/volume_key/volume_key-%{version}.tar.xz
+# Upstream commit 04991fe8c4f77c4e5c7874c2db8ca32fb4655f6e
+Patch1: volume_key-0.3.9-fips-crash.patch
+Patch2: volume_key-0.3.9-translation-updates.patch
+# Upstream commit 8f8698aba19b501f01285e9eec5c18231fc6bcea
+Patch3: volume_key-0.3.9-config.h.patch
+BuildRequires: cryptsetup-luks-devel, gettext-devel, glib2-devel, /usr/bin/gpg
+BuildRequires: gpgme-devel, libblkid-devel, nss-devel, python-devel
+
+%description
+This package provides a command-line tool for manipulating storage volume
+encryption keys and storing them separately from volumes.
+
+The main goal of the software is to allow restoring access to an encrypted
+hard drive if the primary user forgets the passphrase.  The encryption key
+back up can also be useful for extracting data after a hardware or software
+failure that corrupts the header of the encrypted volume, or to access the
+company data after an employee leaves abruptly.
+
+%package devel
+Summary: A library for manipulating storage encryption keys and passphrases
+Group: Development/Libraries
+Requires: volume_key-libs%{?_isa} = %{version}-%{release}
+
+%description devel
+This package provides libvolume_key, a library for manipulating storage volume
+encryption keys and storing them separately from volumes.
+
+The main goal of the software is to allow restoring access to an encrypted
+hard drive if the primary user forgets the passphrase.  The encryption key
+back up can also be useful for extracting data after a hardware or software
+failure that corrupts the header of the encrypted volume, or to access the
+company data after an employee leaves abruptly.
+
+%package libs
+Summary: A library for manipulating storage encryption keys and passphrases
+Group: System Environment/Libraries
+Requires: /usr/bin/gpg
+
+%description libs
+This package provides libvolume_key, a library for manipulating storage volume
+encryption keys and storing them separately from volumes.
+
+The main goal of the software is to allow restoring access to an encrypted
+hard drive if the primary user forgets the passphrase.  The encryption key
+back up can also be useful for extracting data after a hardware or software
+failure that corrupts the header of the encrypted volume, or to access the
+company data after an employee leaves abruptly.
+
+%package -n python-volume_key
+Summary: Python bindings for libvolume_key
+Group: System Environment/Libraries
+Requires: volume_key-libs%{?_isa} = %{version}-%{release}
+
+%description -n python-volume_key
+This package provides Python bindings for libvolume_key, a library for
+manipulating storage volume encryption keys and storing them separately from
+volumes.
+
+The main goal of the software is to allow restoring access to an encrypted
+hard drive if the primary user forgets the passphrase.  The encryption key
+back up can also be useful for extracting data after a hardware or software
+failure that corrupts the header of the encrypted volume, or to access the
+company data after an employee leaves abruptly.
+
+volume_key currently supports only the LUKS volume encryption format.  Support
+for other formats is possible, some formats are planned for future releases.
+
+%prep
+%setup -q
+
+%patch1 -p1 -b .fips-crash
+%patch2 -p2 -b .translation-updates
+%patch3 -p1 -b .config.h
+# The patch touches both .pot and .po files, make sure the .pot file is older
+# to avoid po/Makefile running (msgmerge --update); otherwise the set of
+# (msgemrge --update)'d files changes from build to build, depending on precise
+# timing, and causes multilib differences.
+touch -d '-1 minute' po/volume_key.pot
+
+%build
+%configure
+make %{?_smp_mflags}
+
+%install
+make install DESTDIR=$RPM_BUILD_ROOT INSTALL='install -p'
+
+%find_lang volume_key
+
+%clean
+rm -rf $RPM_BUILD_ROOT
+
+%post libs -p /sbin/ldconfig
+%postun libs -p /sbin/ldconfig
+
+%files
+%defattr(-,root,root,-)
+%doc README contrib
+%{_bindir}/volume_key
+%{_mandir}/man8/volume_key.8*
+
+%files devel
+%defattr(-,root,root,-)
+%{_includedir}/volume_key
+%exclude %{_libdir}/libvolume_key.la
+%{_libdir}/libvolume_key.so
+
+%files libs -f volume_key.lang
+%defattr(-,root,root,-)
+%doc AUTHORS COPYING ChangeLog NEWS
+%{_libdir}/libvolume_key.so.*
+
+%files -n python-volume_key
+%defattr(-,root,root,-)
+%exclude %{python_sitearch}/_volume_key.la
+%{python_sitearch}/_volume_key.so
+%{python_sitearch}/volume_key.py*
+
+%changelog
+* Mon Oct 09 2017 skisela@redhat.com - 0.3.9-8
+- Don't #include <config.h> in libvolume_key.h
+  Resolves: #1498783
+
+* Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 0.3.9-7
+- Mass rebuild 2014-01-24
+
+* Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 0.3.9-6
+- Mass rebuild 2013-12-27
+
+* Mon Dec  2 2013 Miloslav Trmač <mitr@redhat.com> - 0.3.9-5
+- Avoid multilib confilicts introduced by applying the previous patch
+  Related: #1030387
+
+* Fri Nov 29 2013 Miloslav Trmač <mitr@redhat.com> - 0.3.9-4
+- Include updated translations
+  Resolves: #1030387
+
+* Fri Feb 15 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.9-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
+
+* Thu Nov 22 2012 Miloslav Trmač <mitr@redhat.com> - 0.3.9-2
+- Fix a crash when trying to use passphrase encryption in FIPS mode
+
+* Sat Sep 22 2012 Miloslav Trmač <mitr@redhat.com> - 0.3.9-1
+- Update to volume_key-0.3.9
+
+* Mon Aug  6 2012 Miloslav Trmač <mitr@redhat.com> - 0.3.8-4
+- Use BuildRequires: /usr/bin/gpg instead of gnupg, for compatibility with RHEL
+
+* Mon Jul 23 2012 Miloslav Trmač <mitr@redhat.com> - 0.3.8-3
+- Add Requires: /usr/bin/gpg
+  Resolves: #842074
+
+* Sun Jul 22 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.8-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
+
+* Sat Mar  3 2012 Miloslav Trmač <mitr@redhat.com> - 0.3.8-1
+- Update to volume_key-0.3.8
+
+* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.7-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
+
+* Fri Oct 14 2011 Miloslav Trmač <mitr@redhat.com> - 0.3.7-2
+- Rebuild with newer libcryptsetup
+
+* Wed Aug 24 2011 Miloslav Trmač <mitr@redhat.com> - 0.3.7-1
+- Update to volume_key-0.3.7
+
+* Fri Jun 10 2011 Miloslav Trmač <mitr@redhat.com> - 0.3.6-2
+- Fix a typo
+  Resolves: #712256
+
+* Thu Mar 31 2011 Miloslav Trmač <mitr@redhat.com> - 0.3.6-1
+- Update to volume_key-0.3.6
+
+* Mon Feb 07 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.3.5-3
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
+
+* Fri Feb  4 2011 Miloslav Trmač <mitr@redhat.com> - 0.3.5-2
+- Use %%{?_isa} in Requires:
+
+* Wed Nov 24 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.5-1
+- Update to volume_key-0.3.5
+
+* Mon Oct 18 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.4-4
+- Tell the user if asking for the same passphrase again
+  Resolves: #641111
+- Check certificate file before interacting with the user
+  Resolves: #643897
+
+* Fri Oct  8 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.4-3
+- Make it possible to interrupt password prompts
+  Resolves: #641111
+
+* Wed Sep 29 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.4-2
+- Clarify which block device should be passed as an argument
+  Resolves: #636541
+- Recognize SSL error messages from NSS as well
+  Resolves: #638732
+
+* Fri Aug 27 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.4-1
+- Update to volume_key-0.3.4
+
+* Mon Jul 26 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.3-4
+- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
+
+* Thu Jul 22 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.3-3
+- Fix build with new gpgme
+
+* Thu Jul 22 2010 David Malcolm <dmalcolm@redhat.com> - 0.3.3-2
+- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
+
+* Fri Mar 26 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.3-1
+- Update to volume_key-0.3.3
+
+* Thu Mar  4 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.2-1
+- Update to volume_key-0.3.2
+- Drop no longer necessary references to BuildRoot:
+
+* Fri Feb  5 2010 Miloslav Trmač <mitr@redhat.com> - 0.3.1-2
+- Fix a crash when an empty passphrase is provided
+  Resolves: #558410
+
+* Fri Dec 11 2009 Miloslav Trmač <mitr@redhat.com> - 0.3.1-1
+- Update to volume_key-0.3.1.
+
+* Wed Sep 30 2009 Miloslav Trmač <mitr@redhat.com> - 0.3-1
+- Update to volume_key-0.3.
+- Drop bundled libcryptsetup.
+
+* Sat Aug  8 2009 Miloslav Trmač <mitr@redhat.com> - 0.2-3
+- Handle changed "TYPE=crypto_LUKS" from libblkid
+- Preserve file timestamps during installation
+
+* Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2-2
+- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
+
+* Tue Jun 30 2009 Miloslav Trmač <mitr@redhat.com> - 0.2-1
+- Initial build.