* New upstream release (LP: #2003847), includes support for:
- ep11 token: master key consistency (LP: #2003629)
- ica and soft tokens: PKCS #11 3.0 - support AES_XTS (LP: #2003630)
- ep11 token: PKCS #11 3.0 - support AES_XTS (LP: #2003632)
- Support of ep11 token for new IBM Z Hardware (IBM z16) (LP: #2003635)
- ep11 token: vendor specific key derivation (LP: #2003638)
- key gen. with expected MKVP only on CCA and EP11 tokens (LP: #2003639)
- p11sak support Dilithium and Kyber keys (LP: #2003669)
* Remove patch
d/p/lp-1982842-EP11-Fix-C_GetMechanismList-returning-CKR_BUFFER_TOO.patch
since it's included in 3.19 and newer.
* Remove patch
d/p/lp-1989558-common-fix-memory-leak-in-save_private_token_object.patch
since it's included in 3.19 and newer.
* Adjust patch d/p/01-disable-testcases.patch due to minor change in context.
* Refresh patch d/p/03-dlopen-soname.patch to fix 'fuzz'.
* Modified patch
d/p/lp-1982842-move-pkcs11-group-assigment-from-makefile-to-postinst.patch
due to change in context, refresh it to fix 'fuzz' and remove addgroup
from Makefile.am, since this is handled in d/opencryptoki.postinst.
* Add opencryptoki.pc to d/libopencryptoki-dev.install.
* Add new config file ccatok.conf to d/opencryptoki.install.s390x.
* Consolidate multiple /etc/opencryptoki/*.conf entries in
d/opencryptoki.install to one line and make it more generic.
* Migrate in d/rules from 'dh_install --fail-missing --sourcedir=debian/tmp'
to 'dh_install --sourcedir=debian/tmp' and 'dh_missing --fail-missing'.
* Update 'Standards-Version' field in d/control to latest version 4.6.1.0.
* Expand the copyright year range in d/copyright relfecting the latest code.
-- Frank Heimes <email address hidden> Mon, 13 Feb 2023 10:10:45 +0100
This bug was fixed in the package opencryptoki - 3.20.0+ dfsg-0ubuntu1
--------------- dfsg-0ubuntu1) lunar; urgency=medium
opencryptoki (3.20.0+
* New upstream release (LP: #2003847), includes support for: lp-1982842- EP11-Fix- C_GetMechanismL ist-returning- CKR_BUFFER_ TOO.patch lp-1989558- common- fix-memory- leak-in- save_private_ token_object. patch disable- testcases. patch due to minor change in context. dlopen- soname. patch to fix 'fuzz'. lp-1982842- move-pkcs11- group-assigment -from-makefile- to-postinst. patch postinst. ki-dev. install. install. s390x. ki/*.conf entries in oki.install to one line and make it more generic. debian/ tmp' debian/ tmp' and 'dh_missing --fail-missing'.
- ep11 token: master key consistency (LP: #2003629)
- ica and soft tokens: PKCS #11 3.0 - support AES_XTS (LP: #2003630)
- ep11 token: PKCS #11 3.0 - support AES_XTS (LP: #2003632)
- Support of ep11 token for new IBM Z Hardware (IBM z16) (LP: #2003635)
- ep11 token: vendor specific key derivation (LP: #2003638)
- key gen. with expected MKVP only on CCA and EP11 tokens (LP: #2003639)
- p11sak support Dilithium and Kyber keys (LP: #2003669)
* Remove patch
d/p/
since it's included in 3.19 and newer.
* Remove patch
d/p/
since it's included in 3.19 and newer.
* Adjust patch d/p/01-
* Refresh patch d/p/03-
* Modified patch
d/p/
due to change in context, refresh it to fix 'fuzz' and remove addgroup
from Makefile.am, since this is handled in d/opencryptoki.
* Add opencryptoki.pc to d/libopencrypto
* Add new config file ccatok.conf to d/opencryptoki.
* Consolidate multiple /etc/opencrypto
d/opencrypt
* Migrate in d/rules from 'dh_install --fail-missing --sourcedir=
to 'dh_install --sourcedir=
* Update 'Standards-Version' field in d/control to latest version 4.6.1.0.
* Expand the copyright year range in d/copyright relfecting the latest code.
-- Frank Heimes <email address hidden> Mon, 13 Feb 2023 10:10:45 +0100