Added GOST support

SPECS/crypto-policies.spec

@@ -6,13 +6,14 @@
 
 Name:           crypto-policies
 Version:        %{git_date}
-Release:        1.git%{git_commit_hash}%{?dist}
+Release:        1.git%{git_commit_hash}%{?dist}.inferit
 Summary:        System-wide crypto policies
 
 License:        LGPL-2.1-or-later
 URL:            https://gitlab.com/redhat-crypto/fedora-crypto-policies
 # For RHEL-10 we use the upstream branch rhel10.
 Source0:        https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/archive/%{git_commit_hash}/%{name}-git%{git_commit_hash}.tar.gz
+Patch1:         0001-Added-GOST-10.0-policy-also-added-experimental-PAM-g.patch
 
 ExclusiveArch: %{java_arches} noarch
 BuildArch: noarch
@@ -34,6 +35,9 @@ Conflicts: nss < 3.101
 Conflicts: libreswan < 4.12
 Conflicts: openssh < 9.6p1-1
 Conflicts: gnutls < 3.8.3
+Recommends: openssl-gost-engine
+Requires: authselect
+Requires: findutils
 
 %description
 This package provides pre-built configuration files with
@@ -170,6 +174,10 @@ exit 0
 %dir %{_sysconfdir}/crypto-policies/policies/
 %dir %{_sysconfdir}/crypto-policies/policies/modules/
 %dir %{_datarootdir}/crypto-policies/
+%dir %{_sysconfdir}/authselect/custom/sssd_gost/
+%dir %{_sysconfdir}/authselect/custom/minimal_gost/
+%{_sysconfdir}/authselect/custom/sssd_gost/*
+%{_sysconfdir}/authselect/custom/minimal_gost/*
 
 %ghost %config(missingok,noreplace) %{_sysconfdir}/crypto-policies/config
 
@@ -181,12 +189,14 @@ exit 0
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/nss.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/bind.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/java.config
+%ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/javasystem.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/krb5.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/libreswan.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/libssh.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/openssl_fips.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/sequoia.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/rpm-sequoia.config
+%ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/auth.config
 # %verify(not mode) comes from the fact
 # these turn into symlinks and back to regular files at will, see bz1898986
 
@@ -203,6 +213,8 @@ exit 0
 %{_datarootdir}/crypto-policies/default-fips-config
 %{_datarootdir}/crypto-policies/reload-cmds.sh
 %{_datarootdir}/crypto-policies/policies
+%{_datarootdir}/crypto-policies/GOST-ONLY
+%{_datarootdir}/crypto-policies/GOST-ONLY-PAM
 
 %{_libexecdir}/fips-setup-helper
 %{_libexecdir}/fips-crypto-policy-overlay
@@ -214,6 +226,7 @@ exit 0
 %{_bindir}/update-crypto-policies
 %{_mandir}/man8/update-crypto-policies.8*
 %{_datarootdir}/crypto-policies/python
+%{_datarootdir}/crypto-policies-scripts/auth_apply.sh
 
 %{_bindir}/fips-mode-setup
 %{_bindir}/fips-finish-install
@@ -221,6 +234,9 @@ exit 0
 %{_mandir}/man8/fips-finish-install.8*
 
 %changelog
+* Wed Jan  8 2025 Arkady L. Shane <tigro@msvsphere-os.ru> - 20240822-1.git367040b.inferit
+- Added GOST support
+
 * Tue Nov 26 2024 MSVSphere Packaging Team <packager@msvsphere-os.ru> - 20240822-1.git367040b
 - Rebuilt for MSVSphere 10