tpm2-pkcs11-1.9.1-1.2 RPM for aarch64

From OpenSuSE Ports Tumbleweed for aarch64

tpm2-pkcs11 is a plugin shared library implementing the PKCS #11
Cryptographic Token Interface (Cryptoki) C API atop of TPM2 devices.

Provides

• tpm2-pkcs11
• libtpm2_pkcs11-0
• libtpm2_pkcs11.so.0()(64bit)
• pkgconfig(tpm2-pkcs11)
• python3.13dist(tpm2-pkcs11-tools)
• python3dist(tpm2-pkcs11-tools)
• tpm2-pkcs11(aarch-64)
• tpm2-pkcs11-devel

Requires

• /sbin/ldconfig
• /sbin/ldconfig
• /usr/bin/pkg-config
• /usr/bin/python3.13
• ld-linux-aarch64.so.1()(64bit)
• ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libsqlite3.so.0()(64bit)
• libtss2-esys.so.0()(64bit)
• libtss2-fapi.so.1()(64bit)
• libtss2-mu.so.0()(64bit)
• libtss2-rc.so.0()(64bit)
• libtss2-tctildr.so.0()(64bit)
• libyaml-0.so.2()(64bit)
• pkgconfig(libcrypto)
• pkgconfig(sqlite3)
• pkgconfig(tss2-esys)
• pkgconfig(tss2-mu)
• python(abi) = 3.13
• python3.13dist(bcrypt)
• python3.13dist(cryptography) >= 3
• python3.13dist(pyasn1)
• python3.13dist(pyasn1-modules)
• python3.13dist(pyyaml)
• python3.13dist(setuptools)
• python3.13dist(tpm2-pytss)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PartialHardlinkSets) <= 4.0.4-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1

License

BSD-2-Clause

Changelog

* Thu Dec 12 2024 Lucas Mulling <lucas.mulling@suse.com>
  - Enable unit testing
* Wed Dec 11 2024 Lucas Mulling <lucas.mulling@suse.com>
  - Update to 1.9.1
    + Fixed
    * configure:
      Change mistaken += to =.
      use user supplied --prefix even when p11kit is detected.
    * Remove warning about unable to find FAPI when it's is not-compiled in and not chosen as the beckend.
    * Fix memory leaks in tpm_create_transient_primary_from_template.
    * Fix NULL pointer dereference in db.c on uses of CKA_ALLOWED_MECHANISMS.
    * Fix offset miscalculation in FAPI backend that was corrupting data.
    * Support CKM_ECDH1_DERIVE via C_DeriveKey.
    * Fix usages of tpm2-ptool for its wrapped tpm2_ptool in tests.
    * Fix failing db upgrades on double conversion to int.
    * Fix db lock file due to missing parenthesis and order of operations.
    * documentation:
      Fix use of objects where tokens was meant.
    + Changed
    * --enable-fapi to --with-fapi. Note this is not a major version bump as its internal to builders only. However --enable-fapi left in place for backwards compat.
    + Add maintainer public key:
      tpm2-pkcs11.keyring
* Thu May 18 2023 Alberto Planas Dominguez <aplanas@suse.com>
  - Merge subpackages lib and devel into the main one
* Thu Feb 16 2023 Alberto Planas Dominguez <aplanas@suse.com>
  - Update to 1.9.0
    + Fixed
    * Fix autoconf invocation on a release tarball not being a git
      repo for VERSION. VERSION file now generated and packaged as
      part of the release tarball from the git version information.
    * Fix TPM2_PKCS11_OWNER_AUTH not being used when a persistent SRK
      is needed in the C_InitToken path.
    * During an upgrade of the database to version 4, the config key
      'persistent' is added instead of 'transient', causing KeyError
      when using the upgraded database.
    * Leave the original db on upgrade failure, a bug caused the
      original db to be unlinked not the upgraded db.
    * A bug prevented the use of CreateLoaded if the TPM supports the
      command.
    * A bug when creating keys through the PKCS11 interface (not
      tpm2-ptool), the attributes for CKA_ALLOWED_MECHANISMS were
      encoded as a hex string and not a sequence of ints within the
      YAML. Correcting this will trigger a db upgrade to 8
    + Added
    * Env varibale PKCS11_SQL_LOCK to allow setting a lock directory,
      eg for temprary directory so lock files do not persist across
      reboots.
* Fri Jul 08 2022 Alberto Planas Dominguez <aplanas@suse.com>
  - Update to 1.8.0
    + Fixed
    * Fix GetRandom Memory Leak
    * Fix some spelling mistakes
    * Fix unit test test_parser
    * Fix importing of RSA private key through pkcs11 interface should
      fail.
    * Fix ECDSA signature length calculation.
    * Fix memory leak of tokens.
    * Fix suspicious sizeof usage in _str_padded_copy
    * Fix encoding errors when importing a certificate into the pkcs11
      store.
    * Fix try/finally scope issues in tpm2_ptool.
    * Fix, an OOB access in db upgrade path.
    * Fix ECDSA length calculation that was causing issues with Mutual
      TLS in Firefox and Chrome.
    + Changed
    * remove unused macro set_safe_rc
    + Added
    * Add support for OpenSSL 3. Note that calls through engine are no
      longer supported on OpenSSL3.
    * Add tpm2_ptool export commandlet for exporting token keys into
      PEM and TPM blob format.
  - Add new dependencies to PyYAML, cryptography, pyasn1 and tpm2-pytss
* Sat Feb 26 2022 Callum Farmer <gmbr3@opensuse.org>
  - Use hardlinks in %fdupes for python files
* Wed Oct 20 2021 Callum Farmer <gmbr3@opensuse.org>
  - Add keyring & use source verification
* Wed Oct 20 2021 Alberto Planas Dominguez <aplanas@suse.com>
  - Update to 1.7.0
    + DB Schema Change from 5 to 7.
    * Backup your DB before upgrading
    + Fixed compilation issues with GCC11.
    + Fixed errors on releases due to newer compilers from failing by
      only adding -Werror for non-release builds.
    + Fixed error message when the DB is too new in tpm2_ptool.
    + Added support for tpm2_ptool import with ssh-keygen format
      keys. Note: Requires cryptography >= 3.0.
    + Changed default long level from error to warning.
    + Added better error message for FAPI backend errors along with
      docs/FAPI.md document.
    + Changed tpm2_ptool make --algorithm optional.
    + Fixed error message of wrong attribute name on expected attribute
      check to be false.
    + Added support for ECDSA 256, 384 and 512.
    + Fixed a bug in the Python code DB upgrade path from 4 to 5 where
      it didn't add AES mode CTR to CKA_ALLOWED_MECHANISMS.
    + Added tpm2_ptool support for ECC key size 192.
    + Added support passwordless login for tokens, ie not setting
      CKF_LOGIN_REQUIRED.
    + Fixed Running integration tests when Java version has the -ea,
      like on Debian 11 and OpenJDK 17.
    + Added support for HMAC keys using tpm2_ptool and the C_Sign and
      C_Verify interfaces. The following interfaces in ptool have
      support:
    * addkey: previous working versions of tpm2-tools will support
      this.
    * link: previous working versions of tpm2-tools will support this.
    * import: requires tpm2-tools 5.2+ for support.
    + Fixed leaking of temp file descriptors in tpm2_ptool.
    + Fixed wrong free in tpm code, should use Esys_Free.
    + Fixed a space formatting issue in tpm2_ptool verify.
    + Fixed leaked file descriptor in tpm2_ptool.
    + Fixed a few suspicious sizeof usages in str_padded_copy
    + Fixed a memory leak of the token list on a failure condition in
      initialization.
* Sun Aug 22 2021 Jan Engelhardt <jengelh@inai.de>
  - Use definite tense in %description.
* Sat Aug 21 2021 Callum Farmer <gmbr3@opensuse.org>
  - Build and install python tools

Files

/etc/tpm2_pkcs11
/usr/bin/tpm2_ptool
/usr/lib/python3.13/site-packages/tpm2_pkcs11
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__init__.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/__init__.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/__init__.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/command.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/command.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/commandlets_keys.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/commandlets_keys.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/commandlets_store.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/commandlets_store.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/commandlets_token.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/commandlets_token.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/db.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/db.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/objects.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/objects.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/pkcs11t.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/pkcs11t.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/tpm2.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/tpm2.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/tpm2_ptool.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/tpm2_ptool.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/utils.cpython-313.opt-1.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/__pycache__/utils.cpython-313.pyc
/usr/lib/python3.13/site-packages/tpm2_pkcs11/command.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/commandlets_keys.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/commandlets_store.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/commandlets_token.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/db.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/objects.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/pkcs11t.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/tpm2.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/tpm2_ptool.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11/utils.py
/usr/lib/python3.13/site-packages/tpm2_pkcs11_tools-1.33.7-py3.13.egg-info
/usr/lib/python3.13/site-packages/tpm2_pkcs11_tools-1.33.7-py3.13.egg-info/PKG-INFO
/usr/lib/python3.13/site-packages/tpm2_pkcs11_tools-1.33.7-py3.13.egg-info/SOURCES.txt
/usr/lib/python3.13/site-packages/tpm2_pkcs11_tools-1.33.7-py3.13.egg-info/dependency_links.txt
/usr/lib/python3.13/site-packages/tpm2_pkcs11_tools-1.33.7-py3.13.egg-info/entry_points.txt
/usr/lib/python3.13/site-packages/tpm2_pkcs11_tools-1.33.7-py3.13.egg-info/requires.txt
/usr/lib/python3.13/site-packages/tpm2_pkcs11_tools-1.33.7-py3.13.egg-info/top_level.txt
/usr/lib64/pkcs11
/usr/lib64/pkcs11/libtpm2_pkcs11.so
/usr/lib64/pkcs11/libtpm2_pkcs11.so.0
/usr/lib64/pkcs11/libtpm2_pkcs11.so.0.0.0
/usr/lib64/pkgconfig/tpm2-pkcs11.pc
/usr/share/doc/packages/tpm2-pkcs11
/usr/share/doc/packages/tpm2-pkcs11/ARCHITECTURE.md
/usr/share/doc/packages/tpm2-pkcs11/BUILDING.md
/usr/share/doc/packages/tpm2-pkcs11/CHANGELOG.md
/usr/share/doc/packages/tpm2-pkcs11/CODE_OF_CONDUCT.md
/usr/share/doc/packages/tpm2-pkcs11/CONTRIBUTING.md
/usr/share/doc/packages/tpm2-pkcs11/DB_UPGRADE.md
/usr/share/doc/packages/tpm2-pkcs11/EAP-TLS.md
/usr/share/doc/packages/tpm2-pkcs11/FAPI.md
/usr/share/doc/packages/tpm2-pkcs11/FUZZING.md
/usr/share/doc/packages/tpm2-pkcs11/INITIALIZING.md
/usr/share/doc/packages/tpm2-pkcs11/INSTALL.md
/usr/share/doc/packages/tpm2-pkcs11/INTEROPERABILITY.md
/usr/share/doc/packages/tpm2-pkcs11/MAINTAINERS.md
/usr/share/doc/packages/tpm2-pkcs11/OPENSSL.md
/usr/share/doc/packages/tpm2-pkcs11/OPENVPN.md
/usr/share/doc/packages/tpm2-pkcs11/P11.md
/usr/share/doc/packages/tpm2-pkcs11/PKCS11_TOOL.md
/usr/share/doc/packages/tpm2-pkcs11/README.md
/usr/share/doc/packages/tpm2-pkcs11/RELEASE.md
/usr/share/doc/packages/tpm2-pkcs11/SECURITY.md
/usr/share/doc/packages/tpm2-pkcs11/SSH.md
/usr/share/doc/packages/tpm2-pkcs11/SSH_HOSTKEYS.md
/usr/share/doc/packages/tpm2-pkcs11/coding_standard_c.txt
/usr/share/doc/packages/tpm2-pkcs11/illustrations
/usr/share/doc/packages/tpm2-pkcs11/illustrations/cisco_e1500_wireless_config.jpg
/usr/share/doc/packages/tpm2-pkcs11/illustrations/object_diagram_nv_objects.png
/usr/share/doc/packages/tpm2-pkcs11/illustrations/object_diagram_transient_objects.png
/usr/share/doc/packages/tpm2-pkcs11/illustrations/pkcs11_api_classification.png
/usr/share/doc/packages/tpm2-pkcs11/illustrations/policy_model_nv_objects.png
/usr/share/doc/packages/tpm2-pkcs11/illustrations/policy_model_transient_objects.png
/usr/share/doc/packages/tpm2-pkcs11/illustrations/reader-slot-token-obj.png
/usr/share/doc/packages/tpm2-pkcs11/tpm2-pkcs11_object_auth_model.md
/usr/share/licenses/tpm2-pkcs11
/usr/share/licenses/tpm2-pkcs11/LICENSE
/usr/share/p11-kit
/usr/share/p11-kit/modules
/usr/share/p11-kit/modules/tpm2_pkcs11.module

Generated by rpm2html 1.8.1

Fabrice Bellet, Thu Oct 23 23:06:42 2025