-
s390-tools (2.31.0-0ubuntu5) noble; urgency=medium
* Add the following commits as patches:
- d/p/lp-2059303-rust-pv-test-Code-Certificate-refactoring.patch
(excluded patching binary files rust/pv/tests/assets/cert/der.crl and
rust/pv/tests/assets/cert/der.crt, which is not supported by quilt
- these files are needed for testing only)
- d/p/lp-2059303-rust-pv-Support-Armonk-in-IBM-signing-key-subject.patch
- d/p/lp-2059303-genprotimg-support-Armonk-in-IBM-signing-key-subject.patch
- d/p/lp-2059303-libpv-Support-Armonk-in-IBM-signing-key-subject.patch
- d/p/lp-2059303-pvattest-Fix-root-ca-parsing.patch
to fix Secure Execution tooling and accept new IBM host-key
subject locality. LP: #2059303
* Add d/p/lp-2058944-dbginfo.sh-dash-compatible-copy-sequence.patch
to fix dash incompatibility in dbginfo.sh. LP: #2058944
-- Frank Heimes <email address hidden> Tue, 02 Apr 2024 12:45:30 +0200
-
s390-tools (2.31.0-0ubuntu4) noble; urgency=medium
* No-change rebuild for CVE-2024-3094
-- William Grant <email address hidden> Mon, 01 Apr 2024 18:56:47 +1100
-
s390-tools (2.31.0-0ubuntu3) noble; urgency=medium
* No-change rebuild against libcurl4t64
-- Steve Langasek <email address hidden> Sat, 16 Mar 2024 06:59:43 +0000
-
s390-tools (2.31.0-0ubuntu2) noble; urgency=medium
* No-change rebuild against libssl3t64
-- Steve Langasek <email address hidden> Mon, 04 Mar 2024 21:19:50 +0000
-
s390-tools (2.31.0-0ubuntu1) noble; urgency=medium
[ Frank Heimes ]
* New upstream release, requested in LP: #2049612
- Includes 'Secure Execution - Secure guest tool to bind and associate
APQNs'. LP: #2003672
- No new crates and no significant changes in size of the vendored crates
tar ball.
- Update XS-Vendored-Sources-Rust field in d/control.
- Modify d/s390-tools.install to add targets for the new pvapconfig tool.
- Rewrote and updated d/copyright according to DEP-5 aka
debian.org/doc/packaging-manuals/copyright-format/1.0/
- Add d/s390-tools.lintian-overrides to override a known false positive
detection of lintian of libyaml in rust code.
- Add d/gzip-files-without-timestamps-or-names.patch to
avoid timestampes in gzip that will lead to lintian warning
'package-contains-timestamped-gzip' and will harm reproducible builds.
[ Simon Chopin ]
* d/control: replace dh-cargo by dh-cargo-tools and explicit cargo
dependency as we're not using the dh plugin
-- Simon Chopin <email address hidden> Mon, 26 Feb 2024 15:44:15 +0100
-
s390-tools (2.30.0-0ubuntu1) noble; urgency=medium
* Remove some unused test directories from vendored dependencies to
reduce the overall size of the vendor tarball
[ Frank Heimes ]
* New upstream release, requested in LP: #2045953
- Remove d/p/lp-2028936-zkey-Support-EP11-AES-keys-with-prepended-.patch
since it's now incl. in upstream 2.30.0.
- Adjust d/p/rust_path.patch to align with changes in Makefile.
- Adjust d/update-crate.sh and d/rules and point to the new workspace.
- Due to the updated mockito crate 1.0, the entire tokio runtime is pulled
in (needed for testing), which increases the vendored crate tar ball size
to 5.5MB.
- Update and expand d/vendor-remove-unused-deps.patch due to context changes
in Cargo.toml files and because additional crates were added.
- Update XS-Vendored-Sources-Rust field in d/control.
- Adjust d/rules to not remove $(CARGO_VENDOR_DIR)/vcpkg,
to fix a build issue.
-- Simon Chopin <email address hidden> Tue, 16 Jan 2024 11:58:42 +0100
-
s390-tools (2.29.0-0ubuntu3) noble; urgency=medium
* Change zkey to generate EP11 keys using a new format (PKEY_TYPE_EP11_AES),
that allows to keep support for existing key blobs by adding d/p/
lp-2028936-zkey-Support-EP11-AES-keys-with-prepended-header-to-.patch
(LP: #2028936)
-- Frank Heimes <email address hidden> Tue, 28 Nov 2023 12:00:58 +0100
-
s390-tools (2.29.0-0ubuntu2) mantic; urgency=medium
* d/rules: Split the vendoring process into several discrete targets to be
able to update the vendored code without having to update the tarball.
This can be useful for security updates.
* d/update-crate.sh: introduce a script to help updating a single crate
* d/rules: don't overwrite the vendor tarball if it already exists. This
should prevent some borked uploads.
* d/README.source: Document the procedures for single-crate update as well
as wholesale refresh of the vendor tarball.
-- Simon Chopin <email address hidden> Wed, 20 Sep 2023 11:21:48 +0200
