commit: b8750046fce96aae82f75dcefe6689647bee5ead Author: orbea <orbea <AT> riseup <DOT> net> AuthorDate: Wed Oct 15 22:27:36 2025 +0000 Commit: orbea <orbea <AT> riseup <DOT> net> CommitDate: Wed Oct 15 22:27:36 2025 +0000 URL: https://gitweb.gentoo.org/repo/proj/libressl.git/commit/?id=b8750046
dev-libs/libtpms: add 0.10.1 Signed-off-by: orbea <orbea <AT> riseup.net> dev-libs/libtpms/Manifest | 1 + .../libtpms/files/libtpms-0.10.1-libressl.patch | 19 ++++++++ dev-libs/libtpms/libtpms-0.10.1.ebuild | 52 ++++++++++++++++++++++ 3 files changed, 72 insertions(+) diff --git a/dev-libs/libtpms/Manifest b/dev-libs/libtpms/Manifest index eabf8c7..cefa6f8 100644 --- a/dev-libs/libtpms/Manifest +++ b/dev-libs/libtpms/Manifest @@ -1,2 +1,3 @@ DIST libtpms-0.10.0.tar.gz 1397526 BLAKE2B 8d05023f5f0fc8dd20cbf5606fa7be391b7dfdc45710c76387c97cef6afb555bd5f0920f73e4578719bdad8e64ba239c14f8c63ed1232c4c3e1b4a80c247b8e0 SHA512 a728188c26447656f43298d1475ebccf0f074d9474780a71fc64baf1ac8b6f6569c90e5ad07098dddc711ba1080eef409c1ac5334d054e7f144e48fa21b66df9 +DIST libtpms-0.10.1.tar.gz 1399253 BLAKE2B 39feead951a84b715e8e4db8cd6eab7f19728c00423df16150c99004230061691cde90fcf7aafc6a5748647ac58cb696b89a709368da4b8f0c684b22321ff1ea SHA512 a1087fb404d199755e38c0c45bd39d3b18686076ec12326e118a0d5c493339ef2a6e4092f451869aa468ff1b69ee024dfdbff9d5c4e0f874c70af3f36d293fe4 DIST libtpms-0.9.6.tar.gz 1264338 BLAKE2B 7b127ef370a48214814bb9ad0e8461ed0af21f32ab84f243945980c5e36ba5e374b4de7a83bf9c67c29264609063d48eae2dae83832daed70170bb1ed39eafea SHA512 35f26e4849eb98cd73461aff439c19f77bbbcde9b7661402e3d419354c4dcddd057349c4f7178573f1ceea2e95326498eb9afea3bd48064bbff534fc7f6939c3 diff --git a/dev-libs/libtpms/files/libtpms-0.10.1-libressl.patch b/dev-libs/libtpms/files/libtpms-0.10.1-libressl.patch new file mode 100644 index 0000000..087b207 --- /dev/null +++ b/dev-libs/libtpms/files/libtpms-0.10.1-libressl.patch @@ -0,0 +1,19 @@ +--- a/src/tpm2/crypto/openssl/tpm_radix.h ++++ b/src/tpm2/crypto/openssl/tpm_radix.h +@@ -64,15 +64,7 @@ + + #ifdef TPM_POSIX // libtpms added begin + # include <openssl/bn.h> +-# ifdef THIRTY_TWO_BIT +-# define RADIX_BITS 32 +-# endif +-# ifdef SIXTY_FOUR_BIT_LONG +-# define RADIX_BITS 64 +-# endif +-# ifndef RADIX_BITS +-# error Need to determine RADIX_BITS value +-# endif ++# define RADIX_BITS BN_BITS2 + #endif + #ifdef TPM_WINDOWS + #define RADIX_BITS 32 diff --git a/dev-libs/libtpms/libtpms-0.10.1.ebuild b/dev-libs/libtpms/libtpms-0.10.1.ebuild new file mode 100644 index 0000000..a7cb564 --- /dev/null +++ b/dev-libs/libtpms/libtpms-0.10.1.ebuild @@ -0,0 +1,52 @@ +# Copyright 1999-2025 Gentoo Authors +# Distributed under the terms of the GNU General Public License v2 + +EAPI=8 + +inherit autotools eapi9-ver + +DESCRIPTION="Library providing software emulation of a TPM" +HOMEPAGE="https://github.com/stefanberger/libtpms"; +SRC_URI="https://github.com/stefanberger/libtpms/archive/v${PV}.tar.gz -> ${P}.tar.gz" +LICENSE="BSD" +SLOT="0" +KEYWORDS="amd64 arm arm64 ~loong ~ppc ppc64 ~riscv x86" + +DEPEND="dev-libs/openssl:=" +RDEPEND="${DEPEND}" +BDEPEND="virtual/pkgconfig" + +PATCHES=( + "${FILESDIR}/${PN}-0.10.0-Remove-WError.patch" + "${FILESDIR}/${PN}-0.10.1-libressl.patch" +) + +src_prepare() { + default + eautoreconf +} + +src_configure() { + # --disable-hardening because it just sets what our toolchain + # already does. If the user wants to disable that in their *FLAGS, + # or via USE on toolchain packages, honour that. + econf \ + --with-openssl \ + --disable-hardening +} + +src_install() { + default + find "${ED}" -name '*.la' -delete || die +} + +pkg_postinst() { + if ver_replacing -lt 0.8.0; then + elog "Versions of libtpms prior to 0.8.0 generate weaker than expected TPM 2.0 RSA" + elog "keys due to a flawed key creation algorithm. Because fixing this would render" + elog "existing sealed data inaccessible, to use the corrected algorithm, the old" + elog "TPM state file must be deleted and a new TPM state file created. Data still" + elog "sealed using the old state file will be permanently inaccessible. For the" + elog "details see https://github.com/stefanberger/libtpms/issues/183"; + fi +}
