Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

pesign-116-4.1 RPM for aarch64

From OpenSuSE Ports Tumbleweed for aarch64

Name: pesign Distribution: openSUSE Tumbleweed
Version: 116 Vendor: openSUSE
Release: 4.1 Build date: Tue Nov 7 21:47:13 2023
Group: Productivity/Security Build host: i03-armsrv2
Size: 514123 Source RPM: pesign-116-4.1.src.rpm
Summary: Signing tool for PE-COFF binaries
Signing tool for PE-COFF binaries. It is vaguely compliant
with the PE and Authenticode specifications.






* Thu Nov 02 2023 Gary Ching-Pang Lin <>
  - Add the Provides tag for the files moved to pesign-systemd
* Wed Nov 01 2023 Gary Ching-Pang Lin <>
  - Move rcpesign and %{_tmpfilesdir}/pesign.conf to pesign-systemd
* Fri Oct 06 2023 Dan Čermák <>
  - Create pesign-systemd subpackage to remove systemd dependency
* Wed Feb 22 2023 Gary Ching-Pang Lin <>
  - Update to 116
    + daemon: remove always-true comparison
    + pesum - add a new tool to the shed
    + Fix building signed kernels on setups other than koji
    + macros.pesign: handle centos like rhel with --rhelver
    + Detect the presence of rpm-sign when checking for "rhel"-ness
    + Fix typo in efikeygen command
    + pesigcheck: Fix crash on digest match
    + cms: store digest as pointer instead of index
    + Fix mandoc invocation to not produce garbage
    + Password fixes
    + Re-work CMS's selected_digest again...
    + src/certs/make-certs: delete the duplicate codes
    + Free resources if certification cannot be found
    + macros: drop %{_pesign_args}
    + Fix two bugs from package building
    + Fix bad free of cms data (DoS only)
    + Send pesign stdout/err to systemd journal
    + Add missing Install section
    + Add default packages for pkg-config
    + Short delay to ensure /run/pesign/socket exists
    + Resolve crash when signature that is removed is not the end of
      the list
    + Enhance error diagnostics about version mismatch
    + Upstream all Fedora changes
    + Add some hardening options to build
    + Add code of conduct
    + Fix build on gcc 12 and non-Fedora
  - Add BuildRequires efivar-devel >= 38 for efisec.h
    + efisiglist is replaced by efisecdb in efivar 38
  - Add BuildRequires mandoc to generate the manpages
  - Replace pesign-privkey_unneeded.diff with
    pesign-skip-auth-on-friendly-slot.patch to avoid the unnecessary
  - Add pesign-fix-cert-match-check.patch to fix the subject name
  - Add pesign-fix-efikeygen-segfault.patch to fix the potential
    crash when executing efikeygen
  - Add pesign-bsc1202933-Remove-pesign-authorize.patch to remove
    pesign-authorize completely (bsc#1202933)
  - Refresh patches
    + harden_pesign.service.patch
    + pesign-boo1143063-remove-var-tracking.patch
    + pesign-boo1185663-set-rpmmacrodir.patch
    + pesign-fix-authvar-write-loop.patch
    + pesign-suse-build.patch
    + pesign-bsc1202933-Make-etc-pki-pesign-writeable.patch
  - Remove upstreamed/unnecessary patches
    + pesign-boo1158197-fix-pesigncheck-gcc10.patch
    + pesign-efikeygen-Fix-the-build-with-nss-3.44.patch
    + pesign-run.patch
    + pesign-bsc1202933-Use-normal-file-permissions-instead-of-ACLs.patch
* Tue Feb 07 2023 Gary Ching-Pang Lin <>
  - Add pesign-bsc1202933-Use-normal-file-permissions-instead-of-ACLs.patch
    to use the normal file permissions in pesign-authorize to avoid
    the potential security issue (bsc#1202933, CVE-2022-3560)
  - Set the libexecdir path for "make" to fix the path to
    pesign-authorize in pesign.service (bsc#1202933)
  - Add pesign-bsc1202933-Make-etc-pki-pesign-writeable.patch to make
    the default NSS datebase writeable (bsc#1202933)
* Thu Nov 11 2021 Andreas Schwab <>
  - Enable build on riscv64
* Tue Nov 09 2021 Callum Farmer <>
  - Change to systemd-sysusers
* Tue Oct 19 2021 Johannes Segitz <>
  - Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
    * harden_pesign.service.patch
* Tue Jun 08 2021 Wolfgang Frisch <>
  - Link as Position Independent Executable (bsc#1184124).
* Fri May 07 2021 Gary Ching-Pang Lin <>
  - Stop marking macros.pesign as %config
* Thu May 06 2021 Gary Ching-Pang Lin <>
  - Add pesign-boo1185663-set-rpmmacrodir.patch to set the rpm macro
    directory at build time (boo#1185663)
    + Also set rpmmacrodir when installing files
  - Remove "make install" since "make install_systemd" invokes
    "make install" automatically
* Tue May 05 2020 Dominique Leuenberger <>
  - Use %_tmpfilesdir instead of %{_libexecdir}/tmpfiles.d.



Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Feb 9 10:59:17 2024