.crypto-policies.metadata

@@ -1 +1 @@
-d43a8ec9893ba0079437515360db8b2483bb0351 SOURCES/crypto-policies-git626aa59.tar.gz
+374a6877739e60ff646c3546d0325786664761d5 SOURCES/crypto-policies-gitbaf3e06.tar.gz

.gitignore

@@ -1 +1 @@
-SOURCES/crypto-policies-git626aa59.tar.gz
+SOURCES/crypto-policies-gitbaf3e06.tar.gz

SPECS/crypto-policies.spec

@@ -1,18 +1,19 @@
-%global git_date 20240828
-%global git_commit 626aa590f9c1ffe7ce108952e9449f22a642cca2
+%global git_date 20240822
+%global git_commit baf3e063c68f6c69eec1bf79c1b3e9a745640183
 %{?git_commit:%global git_commit_hash %(c=%{git_commit}; echo ${c:0:7})}
 
 %global _python_bytecompile_extra 0
 
 Name:           crypto-policies
 Version:        %{git_date}
-Release:        2.git%{git_commit_hash}%{?dist}
+Release:        1.git%{git_commit_hash}%{?dist}.inferit
 Summary:        System-wide crypto policies
 
 License:        LGPL-2.1-or-later
 URL:            https://gitlab.com/redhat-crypto/fedora-crypto-policies
 # For RHEL-9 we use the upstream branch rhel9.
 Source0:        https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/archive/%{git_commit_hash}/%{name}-git%{git_commit_hash}.tar.gz
+Patch1:         0001-Added-GOST-9.5-policy-also-added-experimental-PAM-ge.patch
 
 BuildArch: noarch
 BuildRequires: asciidoc
@@ -32,6 +33,11 @@ Conflicts: nss < 3.90.0
 Conflicts: libreswan < 3.28
 Conflicts: openssh < 8.7p1-24
 Conflicts: gnutls < 3.7.6-22
+Recommends: openssl-gost-engine
+Requires: authselect
+Requires: findutils
+
+
 
 %description
 This package provides pre-built configuration files with
@@ -144,6 +150,10 @@ end
 %dir %{_sysconfdir}/crypto-policies/policies/
 %dir %{_sysconfdir}/crypto-policies/policies/modules/
 %dir %{_datarootdir}/crypto-policies/
+%dir %{_sysconfdir}/authselect/custom/sssd_gost/
+%dir %{_sysconfdir}/authselect/custom/minimal_gost/
+%{_sysconfdir}/authselect/custom/sssd_gost/*
+%{_sysconfdir}/authselect/custom/minimal_gost/*
 
 %ghost %config(missingok,noreplace) %{_sysconfdir}/crypto-policies/config
 
@@ -160,6 +170,7 @@ end
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/libreswan.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/libssh.config
 %ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/openssl_fips.config
+%ghost %config(missingok,noreplace) %verify(not mode) %{_sysconfdir}/crypto-policies/back-ends/auth.config
 # %verify(not mode) comes from the fact
 # these turn into symlinks and back to regular files at will, see bz1898986
 
@@ -175,6 +186,8 @@ end
 %{_datarootdir}/crypto-policies/default-config
 %{_datarootdir}/crypto-policies/reload-cmds.sh
 %{_datarootdir}/crypto-policies/policies
+%{_datarootdir}/crypto-policies/GOST-ONLY
+%{_datarootdir}/crypto-policies/GOST-ONLY-PAM
 
 %{_libexecdir}/fips-setup-helper
 
@@ -184,6 +197,7 @@ end
 %{_bindir}/update-crypto-policies
 %{_mandir}/man8/update-crypto-policies.8*
 %{_datarootdir}/crypto-policies/python
+%{_datarootdir}/crypto-policies-scripts/auth_apply.sh
 
 %{_bindir}/fips-mode-setup
 %{_bindir}/fips-finish-install
@@ -191,11 +205,8 @@ end
 %{_mandir}/man8/fips-finish-install.8*
 
 %changelog
-* Tue Sep 17 2024 Alexander Sosedkin <asosedkin@redhat.com> - 20240828-2.git626aa59
-- release bump
-
-* Wed Aug 28 2024 Alexander Sosedkin <asosedkin@redhat.com> - 20240828-1.git626aa59
-- fips-mode-setup: small Argon2 detection fix
+* Thu Oct 10 2024 Arkady L. Shane <tigro@msvsphere-os.ru> - 20240822-1.gitbaf3e06.inferit
+- Added GOST
 
 * Thu Aug 22 2024 Alexander Sosedkin <asosedkin@redhat.com> - 20240822-1.gitbaf3e06
 - fips-mode-setup: block if LUKS devices using Argon2 are detected
@@ -262,6 +273,9 @@ end
 - openssl: set Groups explicitly
 - openssl: add support for Brainpool curves
 
+* Fri Apr 14 2023 MSVSphere Packaging Team <packager@msvsphere.ru> - 20221215-1.git9a18988
+- Rebuilt for MSVSphere 9.2 beta
+
 * Thu Dec 15 2022 Alexander Sosedkin <asosedkin@redhat.com> - 20221215-1.git9a18988
 - bind: expand the list of disableable algorithms