--- belpic-2.6.0.orig/SConstruct +++ belpic-2.6.0/SConstruct @@ -21,7 +21,12 @@ env = Environment(tools=['default', 'generic', 'qt'], toolpath=['admin']) env['QT_LIB'] = 'qt-mt' env.Append(ENV = {'HOME': os.environ['HOME']}) -env.AppendUnique(CCFLAGS='-Dlinux -pipe -DQT_THREAD_SUPPORT -D_REENTRANT') +env['PREFIX'] = ARGUMENTS.get('prefix', '/usr/local') +# FIXME: the confdir is hardcoded to /usr/local/etc, as is done in the sources +env['CONFDIR'] = ARGUMENTS.get('confdir', env['PREFIX'] + '/etc/') +#env['CONFDIR'] = env['PREFIX'] . '/etc' +env['LIBDIR'] = ARGUMENTS.get('libdir', env['PREFIX'] + '/lib') +env.Append(CCFLAGS = '-Dlinux -pipe -DQT_THREAD_SUPPORT -D_REENTRANT -DPREFIX=\'"' + env['PREFIX'] + '"\' -DCONFDIR=\'"' + env['CONFDIR'] + '"\'') env.AppendUnique(CPPPATH=['/usr/include/PCSC']) # here needed for config step (for debian) # FIXME not for for 32 bit mandriva ! @@ -29,12 +34,6 @@ # FIXME should remove /usr/lib/qt3/lib from path (now warning ...) env.Append(LIBPATH=['/usr/lib/qt3/lib64']) -env['PREFIX'] = ARGUMENTS.get('prefix', '/usr/local') -# FIXME: the confdir is hardcoded to /usr/local/etc, as is done in the sources -#env['CONFDIR'] = ARGUMENTS.get('confdir', '/usr/local/etc') -env['CONFDIR'] = '/usr/local/etc' -env['LIBDIR'] = ARGUMENTS.get('libdir', '/usr/local/lib') - def CheckPKGConfig(context, version): context.Message( 'Checking for pkg-config... ' ) ret = context.TryAction('pkg-config --atleast-pkgconfig-version=%s' % version)[0] @@ -113,6 +112,7 @@ if os.environ.has_key('JAVA_HOME'): saveEnv = env['CPPPATH'] javaHome = os.environ['JAVA_HOME'] + javaHome = javaHome.rstrip() env['JAVA'] = javaHome env.Append(CPPPATH = [javaHome + '/include', javaHome + '/include/linux']) if conf.CheckHeader('jni.h'): --- belpic-2.6.0.orig/Makefile +++ belpic-2.6.0/Makefile @@ -0,0 +1,22 @@ +all: + @/usr/bin/scons + +# it is also possible to use +# @/usr/bin/scons -j4 + +install: + @/usr/bin/scons install + ldconfig -v + +clean: + @/usr/bin/scons -c + +uninstall: + @/usr/bin/scons -c install + +dist: + @/usr/bin/scons dist + +distclean: + @/usr/bin/scons -c + rm -rf cache/ --- belpic-2.6.0.orig/src/newpkcs11/config.h +++ belpic-2.6.0/src/newpkcs11/config.h @@ -3,7 +3,7 @@ /********** Hardcoded path to the config file **********/ -#define OPENSC_CONF_PATH "/usr/local/etc/beidbase.conf" +#define OPENSC_CONF_PATH CONFDIR "/beidbase.conf" /* Enable debug messages. */ --- belpic-2.6.0.orig/src/newpkcs11/src/libopensc/card-belpic.c +++ belpic-2.6.0/src/newpkcs11/src/libopensc/card-belpic.c @@ -93,6 +93,7 @@ #ifdef HAVE_GUI #include "scgui.h" +#include static void * modgui = NULL; static SCGUI_INIT pGuiInit = NULL; static SCGUI_ENTERPIN pGuiEnterPin = NULL; @@ -960,7 +961,7 @@ /* QT complains if not full path given on Mac */ modgui = (void *)scdl_open("/usr/local/lib/libbeidgui.dylib"); #else - modgui = (void *)scdl_open("libbeidgui.so"); + modgui = (void *)scdl_open("libbeidgui.so.1"); #endif if(modgui) { --- belpic-2.6.0.orig/src/newpkcs11/src/libopensc/reader-pcsc.c +++ belpic-2.6.0/src/newpkcs11/src/libopensc/reader-pcsc.c @@ -46,7 +46,6 @@ #ifdef _WIN32 /* Some windows specific kludge */ -#define SCARD_SCOPE_GLOBAL SCARD_SCOPE_USER /* Error printing */ #define PCSC_ERROR(ctx, desc, rv) sc_error(ctx, desc ": %lx\n", rv); @@ -511,13 +510,13 @@ struct pcsc_global_private_data *gpriv; scconf_block **blocks = NULL, *conf_block = NULL; - rv = SCardEstablishContext(SCARD_SCOPE_GLOBAL, + rv = SCardEstablishContext(SCARD_SCOPE_USER, NULL, NULL, &pcsc_ctx); if (rv != SCARD_S_SUCCESS) return pcsc_ret_to_error(rv); - SCardListReaders(pcsc_ctx, NULL, NULL, + rv = SCardListReaders(pcsc_ctx, NULL, NULL, (LPDWORD) &reader_buf_size); if (reader_buf_size < 2) { SCardReleaseContext(pcsc_ctx); --- belpic-2.6.0.orig/src/newpkcs11/src/tools/pkcs11-tool.c +++ belpic-2.6.0/src/newpkcs11/src/tools/pkcs11-tool.c @@ -84,7 +84,7 @@ #ifdef __APPLE__ static const char * opt_module = "/usr/local/lib/beid-pkcs11.bundle"; #else -static const char * opt_module = "libbeidpkcs11.so"; +static const char * opt_module = "libbeidpkcs11.so.2"; #endif static CK_SLOT_ID opt_slot = NO_SLOT; static const char * opt_slot_label = NULL; --- belpic-2.6.0.orig/src/newpkcs11/etc/beid-pkcs11-register.html +++ belpic-2.6.0/src/newpkcs11/etc/beid-pkcs11-register.html @@ -85,7 +85,7 @@ if (navigator.platform.indexOf("Mac") >= 0) p11Lib = "/usr/local/lib/beid-pkcs11.bundle"; else if (navigator.platform.indexOf("Linux") >= 0) - p11Lib = "/usr/local/lib/libbeidpkcs11.so"; + p11Lib = "/usr/lib/libbeidpkcs11.so.2"; res = pkcs11.addmodule(p11Name, p11Lib, 0, 0); --- belpic-2.6.0.orig/src/newpkcs11/etc/Belgian_eID_PKCS11_java.cfg +++ belpic-2.6.0/src/newpkcs11/etc/Belgian_eID_PKCS11_java.cfg @@ -1,3 +1,3 @@ name = BelgianEID -library = /usr/local/lib/libbeidpkcs11.so +library = /usr/lib/libbeidpkcs11.so --- belpic-2.6.0.orig/src/eidlib/OpenSCReader.cpp +++ belpic-2.6.0/src/eidlib/OpenSCReader.cpp @@ -11,6 +11,8 @@ #include #include +#include + struct pcsc_slot_data { unsigned long pcsc_card; }; /* comes from reader-pcsc.c */ #define GET_SLOT_DATA(r) ((struct pcsc_slot_data *) (r)->drv_data) --- belpic-2.6.0.orig/src/eidlib/Verify.cpp +++ belpic-2.6.0/src/eidlib/Verify.cpp @@ -1013,6 +1013,7 @@ unsigned char *pucRNCert = NULL; unsigned long ulRNCertLen = 0; BEID_Certif_Check tCertifs = {0}; + int evp_ret; if(m_pCertifManager == NULL) { @@ -1084,7 +1085,11 @@ EVP_VerifyInit(&cmd_ctx, EVP_sha1()); EVP_VerifyUpdate(&cmd_ctx, pucData, ulDataLen); - iRet = 2*iDiffRNCert + !EVP_VerifyFinal(&cmd_ctx, (unsigned char *)pucSig, ulSigLen, pKey); + evp_ret = EVP_VerifyFinal(&cmd_ctx, (unsigned char *)pucSig, ulSigLen, pKey); + if(evp_ret >= 0) { + evp_ret = 1 - evp_ret; + } + iRet = 2*iDiffRNCert + evp_ret; EVP_PKEY_free(pKey); X509_free(pX509); return iRet; --- belpic-2.6.0.orig/src/eidlib/patch +++ belpic-2.6.0/src/eidlib/patch @@ -0,0 +1,23 @@ +--- Verify.cpp.orig 2009-01-09 03:48:56.000000000 +0100 ++++ Verify.cpp 2009-01-09 03:42:44.000000000 +0100 +@@ -1013,6 +1013,7 @@ + unsigned char *pucRNCert = NULL; + unsigned long ulRNCertLen = 0; + BEID_Certif_Check tCertifs = {0}; ++ int evp_ret; + + if(m_pCertifManager == NULL) + { +@@ -1084,7 +1085,11 @@ + + EVP_VerifyInit(&cmd_ctx, EVP_sha1()); + EVP_VerifyUpdate(&cmd_ctx, pucData, ulDataLen); +- iRet = 2*iDiffRNCert + !EVP_VerifyFinal(&cmd_ctx, (unsigned char *)pucSig, ulSigLen, pKey); ++ evp_ret = EVP_VerifyFinal(&cmd_ctx, (unsigned char *)pucSig, ulSigLen, pKey); ++ if(evp_ret >= 0) { ++ evp_ret = 1 - evp_ret; ++ } ++ iRet = 2*iDiffRNCert + evp_ret; + EVP_PKEY_free(pKey); + X509_free(pX509); + return iRet; --- belpic-2.6.0.orig/src/eidlib/eiderrors.h +++ belpic-2.6.0/src/eidlib/eiderrors.h @@ -21,6 +21,8 @@ #define SCARD_E_NO_ACCESS 0x80100027 #endif +#include + typedef struct { int iOpenSC; --- belpic-2.6.0.orig/src/winscarp/winscarp.cpp +++ belpic-2.6.0/src/winscarp/winscarp.cpp @@ -122,7 +122,7 @@ #define SCARDGETSTATUSFUNC "SCardStatusA" #else #define WINAPI - #define PCSCNAME "pcsclite" + #define PCSCNAME "pcsclite.so.1" #define SCARDCONNECTFUNC "SCardConnect" #define SCARDGETSTATUSCHANGEFUNC "SCardGetStatusChange" #define SCARDLISTREADERSFUNC "SCardListReaders" --- belpic-2.6.0.orig/src/beidservicecrl/CRLScheduler.cpp +++ belpic-2.6.0/src/beidservicecrl/CRLScheduler.cpp @@ -93,7 +93,7 @@ if(pCRLDistribution != NULL && pszCRLStorePath != NULL) { - char *pTemp; + const char *pTemp; const char *pFile = pCRLDistribution; while(NULL != (pTemp = strstr(pFile, "/"))) { --- belpic-2.6.0.orig/src/beidcommlib/MessageQueue.cpp +++ belpic-2.6.0/src/beidcommlib/MessageQueue.cpp @@ -4,6 +4,7 @@ #include "MessageQueue.h" #include +#include using namespace std; --- belpic-2.6.0.orig/src/eidlibjni/SConscript +++ belpic-2.6.0/src/eidlibjni/SConscript @@ -12,7 +12,7 @@ obj.vnum='2.7.2' obj.libs='beid' obj.libpaths='../eidlib' -obj.includes='../eidlib ' + javaHome + '/include ' + javaHome + '/include/linux' +obj.includes='../eidlib ' + javaHome + '/include ' + javaHome + '/include/linux ' obj.execute() libdir = env['LIBDIR'] env.Alias('install', env.Install(libdir, obj.target + '.so.' + obj.vnum)) --- belpic-2.6.0.orig/src/beidcommon/TLVBuffer.cpp +++ belpic-2.6.0/src/beidcommon/TLVBuffer.cpp @@ -4,6 +4,9 @@ #include "TLVBuffer.h" +#include +#include + namespace eidcommon { --- belpic-2.6.0.orig/src/beidcommon/config.cpp +++ belpic-2.6.0/src/beidcommon/config.cpp @@ -1,5 +1,4 @@ -// Config.cpp: implementation of the CConfig class. -// +// Config.cpp: implementation of the CConfig class. // ////////////////////////////////////////////////////////////////////// #include "config.h" @@ -18,7 +17,7 @@ /********** Harcoded config path **********/ -#define LINUX_CONF_PATH "/usr/local/etc/" +#define LINUX_CONF_PATH CONFDIR #define CONFFILE_BEID "beidgui.conf" --- belpic-2.6.0.orig/src/beidcommon/datafile.cpp +++ belpic-2.6.0/src/beidcommon/datafile.cpp @@ -32,6 +32,8 @@ // #include "datafile.h" +#include +#include #include #include #include @@ -41,6 +43,8 @@ #include #endif +#include + // Compatibility Defines //////////////////////////////////////////////////////// ///////////////////////////////////////////////////////////////////////////////// --- belpic-2.6.0.orig/src/eidviewer/beidgui.conf +++ belpic-2.6.0/src/eidviewer/beidgui.conf @@ -2,10 +2,10 @@ [BEID_default] # The certificates directory (must exist) -certs = /usr/local/share/beid/certs/ +certs = /usr/share/beid/certs/ # The CRL directory (must exist) -crl = /usr/local/share/beid/crl/ +crl = /usr/share/beid/crl/ [CA_certs] --- belpic-2.6.0.orig/src/eidviewer/beidgui.desktop +++ belpic-2.6.0/src/eidviewer/beidgui.desktop @@ -7,10 +7,9 @@ Comment=Display and administer your eID card Comment[nl]=Weergeven en beheren van uw eID kaart Comment[fr]=Affichage et gestion de votre carte eID -Exec=/usr/local/bin/beidgui +Exec=/usr/bin/beidgui Terminal=false -MultipleArgs=false Type=Application -Icon=/usr/local/bin/beidgui.png -Categories=Application +Icon=/usr/share/icons/beidgui.png +Categories=Utility; Viewer; Security --- belpic-2.6.0.orig/debian/government2006.pem +++ belpic-2.6.0/debian/government2006.pem @@ -0,0 +1,23 @@ +-----BEGIN CERTIFICATE----- +MIID3TCCAsWgAwIBAgIQESt+nvjtTsUmICDl8GCxnzANBgkqhkiG9w0BAQUFADAn +MQswCQYDVQQGEwJCRTEYMBYGA1UEAxMPQmVsZ2l1bSBSb290IENBMB4XDTA1MTIw +MTExMDAwMFoXDTEyMDgwMTEwMDAwMFowNDELMAkGA1UEBhMCQkUxFjAUBgNVBAMT +DUdvdmVybm1lbnQgQ0ExDTALBgNVBAUTBDIwMDYwggEiMA0GCSqGSIb3DQEBAQUA +A4IBDwAwggEKAoIBAQC0tL3SirxVYIT8VaVz+9Jkgtfg4f4NCL3XkOMxRM8HNooB +SBGfT161dnLSvEmKgYHXGCmj+KPXTrfzK3P/8WyxJGci06VF3b0XHY60EwfDMXja +paYSWWl0LmJUL9SwyLnAR41BytWcTK6w/o0inkc5uzZapBQpOrWdx87WmepXg+SY ++reAsvLXohM1R764W4yca7fF3ZBM2fGM2XGyEVhT61gwQu/w/Q4mqdMilganAbh0 +IwXelHQSL2VhAHMu7Z0v/aGoVI1SSxB9OpgW4eoqnjeGNPjzPkCneuJhWqmAz52Y +lWOevMTTN5RObquNA9pBbLdNIiP+nI5N7dQMy40BAgMBAAGjgfcwgfQwDgYDVR0P +AQH/BAQDAgEGMBIGA1UdEwEB/wQIMAYBAf8CAQAwQwYDVR0gBDwwOjA4BgZgOAEB +AQMwLjAsBggrBgEFBQcCARYgaHR0cDovL3JlcG9zaXRvcnkucGtpLmJlbGdpdW0u +YmUwHQYDVR0OBBYEFEy18/hsB2Aohsy31QZQhK3mXuaAMDYGA1UdHwQvMC0wK6Ap +oCeGJWh0dHA6Ly9jcmwucGtpLmJlbGdpdW0uYmUvYmVsZ2l1bS5jcmwwEQYJYIZI +AYb4QgEBBAQDAgAHMB8GA1UdIwQYMBaAFBDwDFabYepXOrY1l22f3bkUjtvmMA0G +CSqGSIb3DQEBBQUAA4IBAQCo4zBI6KK4pPnbF5hxTK6tTptJQwWhYLHxf95GF9+O +lL4/DbGDJOC93WuPIAaRMiUtVOpS+4Gnr7Ve5V6rFE9sAITGIOMAvqxdCLxIdD0D +0bYrSx7WwUccx0utj4CUUAWbqPxjAaoM1sxdwsKP4O1DwxajMxqNNxcGm5K3yhbS +XoMEtQH+0+VVrIbTK6v/Nefje4JRaWtHqynoHg+ecVrM+D72EGa1pXOHretRWNqu +TJfYimayxWdvOPhnVcucbXc+2WlZC0qsEHewPvboriC2AA+i64xK/BUiEQE+Y8u/ +XsmVQTBLaHgYbhlhxLbfJmr9LOEqQVOAFzCohXcU0Az9 +-----END CERTIFICATE----- --- belpic-2.6.0.orig/debian/government2007.pem +++ belpic-2.6.0/debian/government2007.pem @@ -0,0 +1,23 @@ +-----BEGIN CERTIFICATE----- +MIID3TCCAsWgAwIBAgIQHiRv2pty5fPDGOasAWbHPjANBgkqhkiG9w0BAQUFADAn +MQswCQYDVQQGEwJCRTEYMBYGA1UEAxMPQmVsZ2l1bSBSb290IENBMB4XDTA2MTEy +NzEyMDAwMFoXDTEzMDcyNzEyMDAwMFowNDELMAkGA1UEBhMCQkUxFjAUBgNVBAMT +DUdvdmVybm1lbnQgQ0ExDTALBgNVBAUTBDIwMDcwggEiMA0GCSqGSIb3DQEBAQUA +A4IBDwAwggEKAoIBAQDQv7X8oIqN1FpjK9HwBFmYlHsKEnsXiGlULqBN3tVs+fz6 +lhvR701Q3yE0KZFc5OZ957PLSeJ0Wfvc7ywy2uptbD/dqR+nsmhp3SMBUsTqiwFi +g18hGJlkaL1JCwG0lRWZFA8O5rqLjQP41b4vs6fVE5UGAZo99wu4V0hrIJEPND2O +TixSbtBYDxnXPaKRXKcTs7epu9QXF6Oq+EDF4vEzz9Xt5XyZgtcmKt7WCJ3JNuD8 +/JUR0ZbmU96QlMfwDBAodhZxHQKOAYvKL7Pwyi3LUcjigl5J9dbHmSm2oRJa4i1A +VEyJfJYB7HOamTFtot0fxaetjT9EIZ0MWotx7K9NAgMBAAGjgfcwgfQwDgYDVR0P +AQH/BAQDAgEGMBIGA1UdEwEB/wQIMAYBAf8CAQAwQwYDVR0gBDwwOjA4BgZgOAEB +AQMwLjAsBggrBgEFBQcCARYgaHR0cDovL3JlcG9zaXRvcnkucGtpLmJlbGdpdW0u +YmUwHQYDVR0OBBYEFA4H9NQ61LH/GoAg62D8xO6BjbCPMDYGA1UdHwQvMC0wK6Ap +oCeGJWh0dHA6Ly9jcmwucGtpLmJlbGdpdW0uYmUvYmVsZ2l1bS5jcmwwEQYJYIZI +AYb4QgEBBAQDAgAHMB8GA1UdIwQYMBaAFBDwDFabYepXOrY1l22f3bkUjtvmMA0G +CSqGSIb3DQEBBQUAA4IBAQBHPSPe73oMQt45o3//HJSqF1RS99wPCNW6lJxijtXQ +gDFpaGi41FwER0lB5H71Wor7r/VgUloorv4Zh0EfB0TTuaLQ85JVaTH5/a0isj9M +TxKIatz2IlemuGTh9OhbI/x0ESqAXUAX2UELUlj0QGYpd+Ge6Ui2nddPsZQJBwh9 +AHj4PpkM7tQbcRkWH1ZwyZzgmQWgM3U/DNfhkYPuasEvOGuVoBWMbehbcyCgZlqe +1ZW4/32tBSNQyUoT/bSfOvqRGCeHDY3FKeu20ECkWtoiZgrMQqqms1UwfwFFE7Ta +2kdSdv+rtjGXewuU+4rvCsRbWfkLQv4cBBLhi5wWWpyM +-----END CERTIFICATE----- --- belpic-2.6.0.orig/debian/rules +++ belpic-2.6.0/debian/rules @@ -0,0 +1,91 @@ +#!/usr/bin/make -f +TOPDIR=$(shell pwd) + +#export DH_VERBOSE=1 +CFLAGS=-Wall -g +ifeq ($(findstring noopt,$(DEB_BUILD_OPTIONS)),) + CFLAGS+=-O2 +endif +CXXFLAGS=$(CFLAGS) + +export JAVA_HOME=/usr/lib/jvm/default-java +export CFLAGS +export CXXFLAGS + +stampdir: + mkdir stampdir + +clean: + dh_testdir + dh_testroot + -make distclean + -rm -Rf stampdir + -rm -Rf .sconf_temp + -find . -name *.pyc -exec rm -f {} \; + -find . -type d -name cache -exec rm -Rf {} \; + -rm config.log + dh_clean + +HOSTNAME=$(shell hostname --fqdn) +build: stampdir/build-stamp +stampdir/build-stamp: stampdir + dh_testdir + scons --cache-disable prefix=/usr confdir=/etc/ + touch stampdir/build-stamp + +install: stampdir/install-stamp +stampdir/install-stamp: stampdir stampdir/build-stamp + dh_testdir + dh_testroot + dh_installdirs + # 'make install' is currently broken. See changelog. + #make DESTDIR=$(TOPDIR)/debian/tmp install + install -d debian/tmp/usr/lib debian/tmp/usr/bin debian/tmp/usr/include/beid/opensc debian/tmp/usr/share/locale debian/tmp/usr/share/beid/certs debian/tmp/usr/share/beid/crl debian/tmp/etc debian/tmp/usr/share/applications debian/tmp/usr/share/icons debian/tmp/usr/lib/pkcs11 + cp -a src/newpkcs11/src/pkcs11/libbeidpkcs11.so* src/beidcommlib/libbeidcomm.so* src/winscarp/libbeidpcsclite.so* src/belpicgui/libbeidgui.so* src/eidlib/libbeid.so* src/eidlibjni/libbeidlibjni.so* src/beidcommon/libbeidcommon.so* src/newpkcs11/src/libopensc/libbeidlibopensc.so* debian/tmp/usr/lib + cp -a src/newpkcs11/src/tools/beid-pkcs11-tool src/newpkcs11/src/tools/beid-tool src/eidviewer/beidgui src/Belpic\ PCSC\ Service/beidpcscd src/beidservicecrl/beidcrld debian/tmp/usr/bin + cp -a src/newpkcs11/config.h src/eidlib/eidlib.h src/eidlib/eiddefines.h src/eidlib/eiderrors.h debian/tmp/usr/include/beid + openssl x509 -in debian/government2006.pem -out debian/tmp/usr/share/beid/certs/beid-cert-government2006.der -inform pem -outform der + openssl x509 -in debian/government2007.pem -out debian/tmp/usr/share/beid/certs/beid-cert-government2007.der -inform pem -outform der + cp -a src/eidviewer/certs/* debian/tmp/usr/share/beid/certs + cp -a src/eidviewer/beidgui_*mo debian/tmp/usr/share/locale + cp -a src/newpkcs11/etc/beidbase.conf src/eidviewer/beidgui.conf debian/tmp/etc + cp -a src/eidviewer/beidgui.desktop debian/tmp/usr/share/applications + cp -a src/eidviewer/res/beidgui.png debian/tmp/usr/share/icons + # The following are symlinks, which we do *not* want to see persisting. + cp -pR src/newpkcs11/src/include/opensc/* debian/tmp/usr/include/beid/opensc + cp -a src/newpkcs11/etc/beid-pkcs11-*.html debian/tmp/usr/share/beid + cp -a src/newpkcs11/etc/Belgian_eID_PKCS11_java.cfg debian/tmp/usr/lib/pkcs11 + dh_install --fail-missing --sourcedir=debian/tmp + cp debian/beidgui.lintian-overrides debian/beidgui/usr/share/lintian-overrides/beidgui + dh_installmenu + dh_installman -p beid-tools src/newpkcs11/docs/beid-tool.1 src/newpkcs11/docs/beid-pkcs11-tool.1 + dh_installdocs -A doc/eID-toolkit_licensing* #pkcs11/docs/for_release/readme.txt pkcs11/docs/for_release/linux pkcs11/docs/for_release/pkcs11_install_netsc_moz.htm pkcs11/docs/for_release/pkcs11_uninstall_netsc_moz.htm + dh_installdocs -p libbeidlibopensc2-dev doc/DeveloperGuide.doc + dh_installexamples -p libbeid2-dev src/eidlib/test/ src/eidlibjni/BEIDCard.html src/eidlibjni/eidlibTest/src/eidlibtest/Test.java + touch stampdir/install-stamp + +binary: stampdir/binary-stamp +stampdir/binary-stamp: stampdir stampdir/install-stamp + dh_testdir -a + dh_testroot -a + dh_installman -a + dh_installchangelogs -a + dh_installinit -p beid-tools --name=beid + dh_strip -p libbeidlibopensc2 --dbg-package=libbeidlibopensc2-dbg + dh_strip -p libbeid2 --dbg-package=libbeid2-dbg + dh_strip -a + dh_link -a + dh_compress -a + dh_fixperms -a + dh_makeshlibs -V -p libbeidlibopensc2 -Pdebian/libbeidlibopensc2 + dh_makeshlibs -V -p libbeid2 -Pdebian/libbeid2 + dh_installdeb -a + dh_shlibdeps -ldebian/tmp/usr/lib -Llibeid2 -Llibbelpic2 + dh_gencontrol -a + dh_md5sums -a + dh_builddeb -a + touch stampdir/binary-stamp + +binary-arch: binary +binary-indep: binary +.PHONY: belpic-build belpic-binary binary install belpic-install build binary-arch --- belpic-2.6.0.orig/debian/beidgui.postrm +++ belpic-2.6.0/debian/beidgui.postrm @@ -0,0 +1,7 @@ +#!/bin/sh + +#DEBHELPER# + +if [ "$1" = "remove" ]; then + ldconfig +fi --- belpic-2.6.0.orig/debian/libbeidlibopensc2-dev.install +++ belpic-2.6.0/debian/libbeidlibopensc2-dev.install @@ -0,0 +1,7 @@ +usr/lib/libbeidlibopensc.so +usr/lib/libbeidpcsclite.so +usr/lib/libbeidcommon.so +usr/lib/libbeidcomm.so +usr/lib/libbeidpkcs11.so +usr/include/beid/config.h +usr/include/beid/opensc --- belpic-2.6.0.orig/debian/beidgui.dirs +++ belpic-2.6.0/debian/beidgui.dirs @@ -0,0 +1,2 @@ +usr/bin +usr/share/lintian-overrides --- belpic-2.6.0.orig/debian/substvars +++ belpic-2.6.0/debian/substvars @@ -0,0 +1 @@ +shlibs:Depends=libatk1.0-0 (>= 1.7.2), libc6 (>= 2.3.2.ds1-21), libglib2.0-0 (>= 2.6.0), libgtk2.0-0 (>= 2.6.0), libopenct0 (>> 0.6.2), libpango1.0-0 (>= 1.8.1), libssl0.9.7 --- belpic-2.6.0.orig/debian/libbeidlibopensc2-dbg.dirs +++ belpic-2.6.0/debian/libbeidlibopensc2-dbg.dirs @@ -0,0 +1 @@ +usr/lib/debug/usr/lib --- belpic-2.6.0.orig/debian/beid-tools.beid.init +++ belpic-2.6.0/debian/beid-tools.beid.init @@ -0,0 +1,93 @@ +#!/bin/sh +# +# skeleton example file to build /etc/init.d/ scripts. +# This file should be used to construct scripts for /etc/init.d. +# +# Written by Miquel van Smoorenburg . +# Modified for Debian +# by Ian Murdock . +# +# Version: @(#)skeleton 1.9 26-Feb-2001 miquels@cistron.nl +# +### BEGIN INIT INFO +# Provides: beid +# Required-Start: $remote_fs +# Required-Stop: $remote_fs +# Default-Start: 2 3 4 5 +# Default-Stop: 0 1 6 +# Short-Description: Belgian electronic ID card support daemons +### END INIT INFO + +PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin +DESC="BEID daemons" +NAME1=beidpcscd +NAME2=beidcrld +DAEMON1=/usr/bin/$NAME1 +DAEMON2=/usr/bin/$NAME2 + +test -x $DAEMON1 || exit 0 + +. /lib/lsb/init-functions + +# Include #PACKAGE# defaults if available +if [ -f /etc/default/beid ] ; then + . /etc/default/beid +fi + +set -e + +case "$1" in + start) + log_daemon_msg "Starting $DESC" + log_progress_msg "$NAME1" + start-stop-daemon --start --quiet --oknodo --exec $DAEMON1 -- $PCSCD_OPTS + log_progress_msg "$NAME2" + start-stop-daemon --start --quiet --oknodo --exec $DAEMON2 -- $DAEMON_OPTS + log_end_msg 0 + ;; + stop) + log_daemon_msg "Stopping $DESC" + log_progress_msg "$NAME1" + start-stop-daemon --oknodo --stop --quiet --oknodo --exec $DAEMON1 + log_progress_msg "$NAME2" + start-stop-daemon --oknodo --stop --quiet --oknodo --exec $DAEMON2 + log_end_msg 0 + ;; + #reload) + # + # If the daemon can reload its config files on the fly + # for example by sending it SIGHUP, do it here. + # + # If the daemon responds to changes in its config file + # directly anyway, make this a do-nothing entry. + # + # echo "Reloading $DESC configuration files." + # start-stop-daemon --stop --signal 1 --quiet --pidfile \ + # /var/run/$NAME.pid --exec $DAEMON + #;; + restart|force-reload) + # + # If the "reload" option is implemented, move the "force-reload" + # option to the "reload" entry above. If not, "force-reload" is + # just the same as "restart". + # + log_daemon_msg "Restarting $DESC" + start-stop-daemon --oknodo --stop --quiet --exec $DAEMON1 + sleep 1 + start-stop-daemon --start --quiet --exec $DAEMON1 -- $DAEMON_OPTS + log_progress_msg "$NAME1" + start-stop-daemon --oknodo --stop --quiet --exec $DAEMON2 + sleep 1 + start-stop-daemon --start --quiet --exec $DAEMON2 -- $DAEMON_OPTS + log_progress_msg "$NAME2" + log_end_msg 0 + ;; + *) + N=/etc/init.d/beid + # echo "Usage: $N {start|stop|restart|reload|force-reload}" >&2 + echo "Usage: $N {start|stop|restart|force-reload}" >&2 + exit 1 + ;; +esac + +exit 0 --- belpic-2.6.0.orig/debian/libbeidlibopensc2.install +++ belpic-2.6.0/debian/libbeidlibopensc2.install @@ -0,0 +1,13 @@ +usr/lib/pkcs11/Belgian_eID_PKCS11_java.cfg +usr/share/beid +usr/lib/libbeidpkcs11.so.2 +usr/lib/libbeidpkcs11.so.2.1.0 +usr/lib/libbeidlibopensc.so.2 +usr/lib/libbeidlibopensc.so.2.2.0 +usr/lib/libbeidcomm.so.0 +usr/lib/libbeidcomm.so.0.0.0 +usr/lib/libbeidpcsclite.so.2 +usr/lib/libbeidpcsclite.so.2.7.1 +usr/lib/libbeidcommon.so.0 +usr/lib/libbeidcommon.so.0.0.0 +etc/beidbase.conf --- belpic-2.6.0.orig/debian/TODO +++ belpic-2.6.0/debian/TODO @@ -0,0 +1,2 @@ +* Update .desktop file so that it doesn't create a new category. Perhaps look + at RPM files for that? --- belpic-2.6.0.orig/debian/beidgui.install +++ belpic-2.6.0/debian/beidgui.install @@ -0,0 +1,8 @@ +usr/bin/beidgui +usr/share/applications/beidgui.desktop +usr/share/icons/beidgui.png +usr/share/locale +etc/beidgui.conf +usr/lib/libbeidgui.so +usr/lib/libbeidgui.so.1 +usr/lib/libbeidgui.so.1.5.0 --- belpic-2.6.0.orig/debian/compat +++ belpic-2.6.0/debian/compat @@ -0,0 +1 @@ +5 --- belpic-2.6.0.orig/debian/control +++ belpic-2.6.0/debian/control @@ -0,0 +1,190 @@ +Source: belpic +Section: utils +Priority: extra +Maintainer: Ubuntu Developers +XSBC-Original-Maintainer: Wouter Verhelst +Build-Depends: debhelper (>= 5.0), libpcsclite-dev, openssl, libssl-dev, libwxgtk2.6-dev, scons, libqt3-mt-dev, flex, default-jdk-builddep +Standards-Version: 3.7.2 + +Package: libbeidlibopensc2 +Section: libs +Suggests: libacr38u +Recommends: beid-tools, pcscd | openct +Architecture: any +Depends: ${shlibs:Depends} +Provides: libbelpic0 +Conflicts: libbelpic0 +Description: belgian eID PKCS11 library + This package contains libbeidlibopensc, a library that is loosely based + on libopensc with additional support for the Belgian eID card. It was + built from the official sources as provided by Zetes Belgium on the + Belgian federal website. + . + The OpenSC library, on which this library was based, now also contains + support for the Belgian eID cards. However, since there are still some + things that OpenSC chooses not to do (like showing a popup window + without the application's interference when the user needs to enter his + pincode), applications that want to use the Belgian eID card may have + to use this library instead of OpenSC. + . + Please read the README.Debian file for information on setting up your + system so that it can read from smartcards. + +Package: libbeidlibopensc2-dev +Architecture: any +Section: libdevel +Depends: libbeidlibopensc2 (=${binary:Version}) +Conflicts: libopensc1-dev, libbelpic0-dev +Provides: libbelpic0-dev +Description: belgian eID PKCS11 library, development files + This package contains the development files for libbeidlibopensc, a + library that is loosely based on libopensc with additional support for + the Belgian eID card. It was built from the official sources as + provided by Zetes Belgium on the Belgian federal website. + . + The OpenSC library, on which this library was based, now also contains + support for the Belgian eID cards. However, since there are still some + things that OpenSC chooses not to do (like showing a popup window + without the application's interference when the user needs to enter his + pincode), applications that want to use the Belgian eID card may have + to use this library instead of OpenSC. + . + Install this package if you want to develop applications that use + libbeidlibopensc directly. + . + Please read the README.Debian file in the libbeidlibopensc2 package for + information on setting up your system so that it can read from smartcards. + +Package: libbeidlibopensc2-dbg +Architecture: any +Section: libdevel +Depends: libbeidlibopensc2 (=${binary:Version}) +Description: belgian eID PKCS11 library, debugging symbols + This package contains the development files for libbeidlibopensc, a + library that is loosely based on libopensc with additional support for + the Belgian eID card. It was built from the official sources as + provided by Zetes Belgium on the Belgian federal website. + . + The OpenSC library, on which this library was based, now also contains + support for the Belgian eID cards. However, since there are still some + things that OpenSC chooses not to do (like showing a popup window + without the application's interference when the user needs to enter his + pincode), applications that want to use the Belgian eID card may have + to use this library instead of OpenSC. + . + Install this package if you need the debugging symbols of + libbeidlibopensc2 + . + Please read the README.Debian file in the libbeidlibopensc2 package for + information on setting up your system so that it can read from smartcards. + +Package: beid-tools +Provides: belpic +Conflicts: belpic +Replaces: libbeidlibopensc2 (<< 2.5.9-2) +Architecture: any +Section: utils +Depends: ${shlibs:Depends} +Description: SmartCard utilities from the OpenSC project, compiled against libbeidlibopensc + This package contains some of the utilities that can be found in the + opensc package, but compiled against libbeidlibopensc rather than + libopensc. libbeidlibopensc is libopensc 0.8.1 with additional support + for the Belgian eID card. See the libbeidlibopensc0 package for + details. + . + The binaries in this package have all been prefixed with 'beid-', so + as to avoid namespace conflicts with the opensc package. + . + Please read the README.Debian file in the libbeidlibopensc2 package for + information on setting up your system so that it can read from smartcards. + +Package: libbeid2 +Architecture: any +Section: libs +Depends: ${shlibs:Depends} +Provides: libeid0 +Conflicts: libeid0 +Description: library to read identity information from the Belgian electronic ID card + The Belgian electronic ID card contains two types of data: on the one + hand, there's the X.509 keys that can be used by the owner of the card + to perform authentication and to make digital signatures; on the other + hand, the card contains digital versions of the identity information, + digitally signed by the government. + . + This library allows the user to read out the identity information, to + verify the signature, and to verify its certificate against an online + CRL or similar technology. + . + To read out the X.509 keys, please see the libbeidlibopensc2 package. + . + Please read the README.Debian file in the libbeidlibopensc2 package for + information on setting up your system so that it can read from smartcards. + +Package: libbeid2-dev +Architecture: any +Section: libdevel +Depends: libbeid2 (=${binary:Version}) +Provides: libeid0-dev +Conflicts: libeid0-dev +Description: development library to read identity information from the Belgian eID card + The Belgian electronic ID card contains two types of data: on the one + hand, there's the X.509 keys that can be used by the owner of the card + to perform authentication and to make digital signatures; on the other + hand, the card contains digital versions of the identity information, + digitally signed by the government. + . + This library allows the user to read out the identity information, to + verify the signature, and to verify its certificate against an online + CRL or similar technology. + . + To read out the X.509 keys, please see the libbeidlibopensc2 package. + . + This package contains the development files for libbeid2. + . + Please read the README.Debian file in the libbeidlibopensc2 package for + information on setting up your system so that it can read from smartcards. + +Package: libbeid2-dbg +Architecture: any +Section: libdevel +Depends: libbeid2 (=${binary:Version}) +Description: library to read identity information from the Belgian eID card (debug) + The Belgian electronic ID card contains two types of data: on the one + hand, there's the X.509 keys that can be used by the owner of the card + to perform authentication and to make digital signatures; on the other + hand, the card contains digital versions of the identity information, + digitally signed by the government. + . + This library allows the user to read out the identity information, to + verify the signature, and to verify its certificate against an online + CRL or similar technology. + . + To read out the X.509 keys, please see the libbeidlibopensc2 package. + . + This package contains the debugging symbols for libbeid2. + . + Please read the README.Debian file in the libbeidlibopensc2 package for + information on setting up your system so that it can read from smartcards. + +Package: beidgui +Architecture: any +Section: utils +Depends: ${shlibs:Depends} +Provides: eidviewer +Conflicts: eidviewer +Description: application to read out information from the Belgian electronic ID card + This application allows the user to read out any information from a + Belgian electronic ID card, by using libbeid and libbeidlibopensc to + read the data from the card and parse it. Both identity information and + information about the stored cryptographic keys can be read in a + user-friendly manner, and can easily be printed out or stored for later + reviewal. + . + The application verifies the signature of the identity information, + checks whether it was signed by a government-issued key, and optionally + checks the certificate against the government's Certificate Revocation List + (CRL) and/or by using the Online Certificate Status Protocol (OCSP) against + the government's servers. + . + Please read the README.Debian file in the libbeidlibopensc2 package for + information on setting up your system so that it can read from smartcards. --- belpic-2.6.0.orig/debian/libbeid2.install +++ belpic-2.6.0/debian/libbeid2.install @@ -0,0 +1,4 @@ +usr/lib/libbeid.so.2 +usr/lib/libbeid.so.2.7.3 +usr/lib/libbeidlibjni.so.2 +usr/lib/libbeidlibjni.so.2.7.2 --- belpic-2.6.0.orig/debian/libbeidlibopensc2.prerm +++ belpic-2.6.0/debian/libbeidlibopensc2.prerm @@ -0,0 +1,6 @@ +#!/bin/sh +# +# We need this for clean upgrade from libbeidlibopensc2_2.5.9-1. It +# needs to exist, but it doesn't need to do anything... + +#DEBHELPER# --- belpic-2.6.0.orig/debian/beidgui.lintian-overrides +++ belpic-2.6.0/debian/beidgui.lintian-overrides @@ -0,0 +1,5 @@ +# This library is used only by the binaries in the package itself, so we're not +# packaging it separately. +beidgui binary: non-dev-pkg-with-shlib-symlink +beidgui binary: no-shlibs-control-file +beidgui binary: package-name-doesnt-match-sonames --- belpic-2.6.0.orig/debian/README.Debian +++ belpic-2.6.0/debian/README.Debian @@ -0,0 +1,76 @@ +README for the beid packages in Debian +====================================== + +Setting up +---------- + +To be able to use your electronic ID card in Debian, you need a few +things: +* A smart card framework, which will allow low-level access to your + smartcard. Although OpenSC, on which libbeidlibopensc.so.2 was based, + has support for many such frameworks, the current version of + libbeidlibopensc.so.2 supports only OpenCT and pcsclite. + Which of the two you need depends on your actual hardware (none of the + frameworks supports all available smart card hardware, and this is not + possible either). +* Since accessing smart cards is done using raw USB commands that are + sent to the hardware (i.e., no kernel driver), which is allowed for + root only, these smart card frameworks often come with a daemon that + will allow and manage access to the hardware for non-root users. + It is possible to install both daemons, or just the one you need. In + the latter case, the BEID libraries wil produce an error message when + they try to open the socket to the not installed daemon. This message + is harmless and can be ignored. +* Some hardware requires additional low-level drivers before pcsclite or + OpenCT will be able to use them. One such example is the ACR38u + chipset which is being used in the cardreaders being distributed by + the Belgian government and by Zetes NV/SA; for this hardware, please + install the libacr38u and pcscd packages. +* The libbeidlibopensc2 package, for filesystem-level access to the data + on the card and for cryptographically signing data. +* The libbeid2 package, for being able to access data on a higher level; + this library provides an API which allows a user to request "the name + of the owner of this card", or "the picture that is provided on the + smart card" +* Software which will give you a useful user interface to the smart + card. This can be the software in the beidgui package (which will + allow you to read the data on your electronic ID card, or to change + its pin code), or the mozilla/firefox/iceweasel plugin. + For the mozilla plugin, please open the file + /usr/share/beid/beid-pkcs11-register.html in your gecko-based browser to + enable the plugin. There is also a corresponding -unregister.html file to + remove it again. +* The package beid-tools allows for some command-line manipulation of + your eID card; additionally, it contains some daemons that will do + housekeeping tasks such as updating the CRL (Certificate Revocation + Lists) while online. It is not required for functioning of the beid + software, though you may miss out on some features without it. +* Additionally, the "regular" OpenSC software has some (limited) support + for the Belgian electronic ID card as well; it is possible to perform + some operations with its command-line utilities. + +For more information, including API documentation for libbeid2, please +go to http://eid.belgium.be/. For libbeidlibopensc2 API documentation, +please refer to the OpenSC API documentation. + +Troubleshooting +--------------- + +Sometimes, even when you've set up everything correctly, it still won't +work. Before filing bugs, please try the following: + +- Make sure that your user is allowed to access smartcard readers; the + command 'id|grep scard' should produce some output. +- unplug and re-insert your cardreader, especially if it's a USB model. + Sometimes detecting USB cardreaders doesn't work from the first time + around +- Restart the relevant daemons: + /etc/init.d/pcscd restart + /etc/init.d/beid restart +- Verify that at least basic functionality is working, by running + "beid-tool -l", and "beid-pkcs11-tool -L". Both commands should give + you a list of things it knows about, and no errors, even if your card + is not in the cardreader. If your card is in the reader, the second + command should contain a line containing 'token label: BELPIC' + +If after all that it still doesn't work, please file a bug. --- belpic-2.6.0.orig/debian/beidgui.menu +++ belpic-2.6.0/debian/beidgui.menu @@ -0,0 +1 @@ +?package(beidgui):needs="x11" section="Applications/System/Security" title="Belpic EID viewer" command="beidgui" --- belpic-2.6.0.orig/debian/libbeid2-dbg.dirs +++ belpic-2.6.0/debian/libbeid2-dbg.dirs @@ -0,0 +1 @@ +usr/lib/debug/usr/lib --- belpic-2.6.0.orig/debian/libbeid2-dev.install +++ belpic-2.6.0/debian/libbeid2-dev.install @@ -0,0 +1,3 @@ +usr/lib/libbeid.so +usr/lib/libbeidlibjni.so +usr/include/beid/eid*.h --- belpic-2.6.0.orig/debian/changelog +++ belpic-2.6.0/debian/changelog @@ -0,0 +1,406 @@ +belpic (2.6.0-7ubuntu1) karmic; urgency=low + + * Sync on Debian(Unstable) + * src/beidservicecrl/CRLScheduler.cpp: Inline Patch to fix FTBFS + caused by "error: invalid conversion from 'const char*' to 'char*'". + * debian/control: Added "Section: utils" field for the source package + + -- Stefan Ebner Mon, 14 Sep 2009 19:35:51 +0200 + +belpic (2.6.0-7) unstable; urgency=low + + * Fix scons usage; Closes: #525593. + + -- Wouter Verhelst Sat, 25 Jul 2009 16:31:33 +0200 + +belpic (2.6.0-6) unstable; urgency=high + + * Remove libopenct1-dev builddep, and single leftover linkage to + libopenct. This code was not actually active anymore since 2.6.0-4, + but there were some leftovers. + * Copy reader-pcsc.c over from a more recent version of opensc; + interfaces have changed since this code was written, and otherwise + it wouldn't compile anymore. + * Include fix for CVE-2009-0049: EVP_VerifyFinal() return value is + not correctly checked. Checked with upstream. Since this is a rather + important security issue, urgency=high. + + -- Wouter Verhelst Fri, 08 Aug 2008 17:02:33 -0300 + +belpic (2.6.0-5) unstable; urgency=low + + * Update build-dependencies to use default-jdk-builddep, rather than + explicitly depending on kaffe, which may not be available everywhere. + Thanks, Riku Voipio; Closes: #489075. + * Create debian/NEWS file to note loss of OpenCT-support in the previous + version. + * Add "troubleshooting" section to README.Debian + + -- Wouter Verhelst Thu, 03 Jul 2008 14:48:52 +0200 + +belpic (2.6.0-4) unstable; urgency=low + + * Acknowledge NMUs (if that even is still necessary). Closes: #471095, + #454892, #455286, #485556. + * Fix path to .so file to also include version number in file name, rather + than expecting the user has the -dev version installed, too, when trying + to register beid in iceweasel. + * Fix typos in several Description:s. Closes: #425045. + * No more OpenCT. I got rid of my OpenCT-reader, and am now using an + ACR38U cardreader, like the rest of the country. I'm quite sure the + OpenCT stuff that I added was causing more trouble than it was + worth... + + -- Wouter Verhelst Tue, 01 Jul 2008 13:10:14 +0200 + +belpic (2.6.0-3.2) unstable; urgency=low + + * Non-maintainer upload. + * Correct and improve init.d dependency header (Closes: #471095). + Patch from Petter Reinholdtsen. + * Use LSB functions for boot time output (Closes: #454892). Patch + from Laurent Bigonville. + + -- Petter Reinholdtsen Mon, 9 Jun 2008 22:52:33 +0200 + +belpic (2.6.0-3.1) unstable; urgency=low + + * Non-maintainer upload. + * Fix g++-4.3 FTBFS thanks to Cyril Brulebois. Closes: #455286. + + -- Pierre Habouzit Sat, 05 Apr 2008 22:05:18 +0000 + +belpic (2.6.0-3) unstable; urgency=low + + * Apply patch to fix library usage. Closes: #413666 + * Call dh_installdeb at the right time. Closes: #454589 + + -- Wouter Verhelst Sun, 09 Dec 2007 22:58:48 +0100 + +belpic (2.6.0-2) unstable; urgency=low + + * Call rstrip() on javaHome variable, so that building eidlibjni doesn't + break this time around. + + -- Wouter Verhelst Fri, 23 Nov 2007 11:18:27 +0100 + +belpic (2.6.0-1) unstable; urgency=low + + * New upstream release + * Removed beid-pkcs11-register.html.orig from the source package (that was + some leftover cruft, oops) + * Add '-a' to all appropriate debhelper calls, so that it will in fact act + on all packages. + * Fix ordering in debian/rules so that dh_makeshlibs is called _before_ + dh_installdeb (as the latter wants to work on files created by the former) + * Add stupid LSB init info to beid initscript in beid-tools package. The LSB + dependency info is horribly broken, but since I don't have a better + suggestion to make, well. + * Add lintian overrides for library-related warnings to beidgui package. The + beidgui package installs the "libbeidgui" library, which is used by the + beidgui binary only (in a particularly creative form of MVC separation of + code). Since this library hence doesn't need to interact with other + software or packages, we don't go through the trouble of playing with + shlibs and friends for this one library. + * Update beidgui menu file to be nice to the newer menu policy. Beidgui can + now be found in Applications/System/Security, rather than the defunct + Apps/Tools + * Patched source to no longer use hardcoded paths to config files (in /etc + or otherwise); instead, use compile-time definitions. This isn't as + important for us as it is for, say, FreeBSD, but well. + * Apply patch from Frederik Himpe (sent to me through mandriva) to search + for .so.X files rather than just plain .so + * Some more JAVA_HOME massaging so that it works again. + * Use export on the right variables at the right place. + * Store 2006 and 2007 certificates in PEM form to debian directory, and + convert them at build time to their DER equivalents. PEM is ASCII (which + can go in .diff.gz), DER isn't. This software expects the DER form (at + least, that's what I think). This way is a hack, but, well, it works. + Sortof. + * Fix .desktop file. + + -- Wouter Verhelst Wed, 21 Nov 2007 20:32:06 +0100 + +belpic (2.5.9-9) unstable; urgency=low + + * Remove erroneous 'Conflicts:', 'Provides:' and 'Replaces:' lines from -dbg + packages. Copying package stanzas from the -dev package is one thing, but + I shouldn't forget to remove lines that we don't need. + * Fix includes in card-belpic.c so that we don't get missing prototypes + turning void* return values into int return values, since they, well, + break on 64bit architectures. Closes: #427529. + + -- Wouter Verhelst Wed, 11 Jul 2007 00:51:00 +0200 + +belpic (2.5.9-8) unstable; urgency=low + + * Create -dbg packages. Since we want to use the v5 semantics, update + debhelper compat level to 5. + * Apply upstream patch to make stuff build again. Closes: #415030 + * Apply patches to compile with GCC 4.3. Closes: #417113 + * Remove hack to build with -j3 on rock, since it is no longer an SMP + host. + * Build-dep changes: remove libsablevm-native1 and add kaffe-dev, so that + the build system finds jni.h again. Also, build-dep on debhelper 5 or + above, for compat level update + * Modify 'make distclean' call to remove confusing JAVA_HOME messages + + -- Wouter Verhelst Mon, 7 May 2007 14:04:13 +0200 + +belpic (2.5.9-7) unstable; urgency=low + + * Add README.Debian explaining how to use these packages. + * Add Recommends: pcscd | openct, since many people seem to miss that + (and I get a lot of bogus bugreports as a result) + + -- Wouter Verhelst Wed, 27 Dec 2006 02:56:50 +0100 + +belpic (2.5.9-6) unstable; urgency=low + + * Fix SConstruct, to fix FTBFS bug found by Lucas Nussbaum. + Closes: #400171, with thanks to Joost Yervante Damad for coming up + with a patch while my mail is broken. + * Removed .svn directory from debian/; it doesn't belong there (Thanks, + marga!) + + -- Wouter Verhelst Mon, 27 Nov 2006 23:05:18 +0100 + +belpic (2.5.9-5) unstable; urgency=low + + * Remove wxWidgets2.4-alternatives from build-depends, to avoid issues. + * Change beidcommon/config.cpp to point to /etc rather than /usr/local/etc. + Too bad the SCons "prefix" parameter isn't used to specify this... oh + well. + * Modify SConstruct file to use Debian Policy-compliant CFLAGS + * Fix initscript (add --oknodo to restart target, so as to not bail out when + not necessary) + + -- Wouter Verhelst Mon, 4 Sep 2006 17:42:21 +0200 + +belpic (2.5.9-3bpo1) unstable; urgency=low + + * Rebuild for backports.org + * Change build-deps slightly to accomodate for differences between Sid and + Sarge + + -- Wouter Verhelst Mon, 31 Jul 2006 18:36:57 +0200 + +belpic (2.5.9-4) unstable; urgency=low + + * Fix beidgui.menu. Really, this time. + * Fix /etc/beidgui.conf to point to /usr/share, rather than + /usr/local/share. Closes: #380145 (and *this* is -4, not yours; you + should've done a version something like '2.5.9-3dapper1' or so) + * Fix Belgian_eID_PKCS11_java.cfg to do approximately the same thing. + Closes: #380405. + + -- Wouter Verhelst Sun, 30 Jul 2006 10:54:03 +0200 + +belpic (2.5.9-3) unstable; urgency=low + + * Re-add openct cardreader driver, so that my cardreader actually works. The + previous two uploads were 'tested' as in 'I forgot that I still had + patched binaries in /usr/local, and they worked. Kinda sorta'. Whoops. + * Modify src/newpkcs11/config.h to point to /etc/beidbase.conf rather than + /usr/local/etc/beidbase.conf + + -- Wouter Verhelst Sun, 23 Jul 2006 18:36:04 +0200 + +belpic (2.5.9-2) unstable; urgency=low + + * Move stuff in /usr/bin in libbeidlibopensc2 to beid-tools instead, + and the initscript with it. Closes: #378635. Library packages aren't + allowed to have stuff in /usr/bin, apparently, and as it happens, + one of those binaries depends on libbeid2, which makes for circular + dependencies. Yuck. + * Add --oknodo to same initscript in the 'stop' action. + * Add Recommends: beid-tools to libbeidlibopensc2 + * Fix size_t/unsigned int confusion. Closes: #339344. + * Standards-Version update to 3.7.2 (no relevant changes) + * Merge double Conflicts: fields into one. + * Modify beidgui menu file to call "beidgui" instead of the (outdated) + "eidviewer". + * Make beidgui postinst call ldconfig, since it installs its own library. + + -- Wouter Verhelst Fri, 21 Jul 2006 17:34:10 +0200 + +belpic (2.5.9-1) unstable; urgency=low + + * New upstream release. + - Fixes issues with firefox. Closes: #343747. + - Fixes build issues with G++-4.1. Closes: #361396. + * Upstream renamed all libraries according to my suggestion to avoid + namespace pollution and to get names which are more similar to eachother + and a bit more descriptive. This is a good thing, but it forces us to go + through NEW again. Sigh. + I chose not to modify the name of the source package, though, since I + don't think that would be of much benefit. We'll see. + * Add Conflicts: and Provides: headers to make updating a tad bit easier. + They won't be preserved forever, though; I'll probably drop them after + Ubuntu releases somewhere in October. + * The build system in the current release doesn't support DESTDIR, so do the + make install phase manually rather than using upstream's build system. + Ugh. Upstream is aware that we want this, though, so the next version + should support this again (there was no time left to fix this before + upstream had to do their release). + * Remove debian/README.source, since it's now outdated with the new upstream + build system. + * Upstream now includes two daemons (one to update the CRL, one to do PC/SC + stuff), so update our initscript to do both (we ignore the LSB initscript, + as that is too generic to our taste) + + -- Wouter Verhelst Tue, 11 Jul 2006 23:59:52 +0200 + +belpic (2.5.8-1) unstable; urgency=low + + * New upstream (private only) release. Was never uploaded to Debian, on + purpose. + + -- Wouter Verhelst Tue, 30 May 2006 10:15:42 +0200 + +belpic (2.40-1) unstable; urgency=low + + * New upstream release + * Requires some additional build-deps (libqt3-mt-dev and scons), so add + those. + * This release was never uploaded due to the fact that some files in the + upstream release were broken (it took us a while to discover that). + + -- Wouter Verhelst Wed, 7 Dec 2005 11:34:06 +0100 + +belpic (2.3.13.full-6) unstable; urgency=low + + * Fix all unsigned int/size_t confusion this time, after testing on raptor; + Closes: #339344. + + -- Wouter Verhelst Tue, 22 Nov 2005 17:13:33 +0100 + +belpic (2.3.13.full-5) unstable; urgency=low + + * Fix unsigned int/size_t confusion in eidlib/CertifManager.cpp (Closes: + #339344). + * Fix pointer -> unsigned int cast, which doesn't work on 64bit + architectures. + * Set -Wall, -g, and (unless DEB_BUILD_OPTIONS contains noopt) -O2 in CFLAGS + to comply with policy a bit more, and make sure we can spot more potential + errors in the build log. + + -- Wouter Verhelst Mon, 21 Nov 2005 00:07:19 +0100 + +belpic (2.3.13.full-4) unstable; urgency=low + + * Fix build system to properly build against the libpcsclitep that we build. + Since we stop 'detecting' libpcsclitep to do this properly, we can also + stop building winscarp before everything else. Whee. + * Install belpcscd into libbelpic0, and make sure it's being ran. According + to upstream, this is a daemon that will add some nice functionality (some + concerning single sign-on) if belpic is used through libpcsclitep. + + -- Wouter Verhelst Tue, 15 Nov 2005 11:29:17 +0100 + +belpic (2.3.13.full-3) unstable; urgency=low + + * Grr, found yet another build-dep. Checked with pbuilder (on my webserver) + this time. + + -- Wouter Verhelst Wed, 9 Nov 2005 18:02:27 +0100 + +belpic (2.3.13.full-2) unstable; urgency=low + + * Add libsablevm1-dev and libwxgtk2.4-dev build-deps, as suggested by Leo + Eraly (pbuilder is nice, but not on a 56kbit line). Thanks! + * Fix the Makefile.am for eidlibjni. + * Clean up debian/copyright a bit: refer to + /usr/share/common-licenses/LGPL-2.1 rather than including it there. + * Re-apply patch to make sure libbelpic links to libscconf.la correctly + (rather than going to .libs/libscconf.a manually) + * Added debian/README.source explaining how pkcs11/belpcscd overwrites + pkcs11/opensc + + -- Wouter Verhelst Wed, 9 Nov 2005 12:39:33 +0100 + +belpic (2.3.13.full-1) unstable; urgency=low + + * Found a license in a _different_ .zip on the same upstream download site, + with a reference to the "Belgian eID runtime" (i.e., _this_ code), + claiming it covers that code. Added it to the packages' debian/copyright, + with explanation. The license for the belpic-specific code is + special-case, but (in my judgement) passes the DFSG. Whee. + * Since this clarifies the (previously blurry) licensing situation of + libeid and the eidviewer, build and include those too, now. + * This makes for a lot of "new" files in the .orig.tar.gz (those that I + previously excluded, thinking they had no license). Hence, upstream + version number is now 2.3.13.full rather than 2.3.13. Broken, broken + katie. + * It also makes for a few new packages: libeid (maybe to be renamed libbeid + sometime soon to avoid namespace clashing, but I can't do that just yet; + at least not without upstream's consent) and its -dev package, plus the + eidviewer (an application to view the data on the card). Enjoy! + * Redid some of upstream's build scripts to use automake/autoconf/libtool + rather than some home-brewn semi-makefiles. They're not Great yet, but + they should work better than Upstream's build system (which mixes .a files + with -fPIC binaries in the same .so -- no, that will not work!). + + -- Wouter Verhelst Tue, 27 Sep 2005 22:22:09 +0200 + +belpic (2.3.13-1) unstable; urgency=low + + * New upstream release. I'm on crack; this version existed before I + even uploaded belpic to the Archive. Sue me. Closes: #325735. + * Edited upstream tarball to remove non-DFSG-free code (the parts for + which no license has been specified). + * Ran autoreconf in the source directory. Apparently, this is a CVS + checkout. + * Updated link to upstream download site. Apparently, upstream decides + to make variations on the theme for every new version. *sigh*. + * Update to policy version 3.6.2. No changes applicable to belpic. + + -- Wouter Verhelst Mon, 5 Sep 2005 19:37:04 +0200 + +belpic (1.4-4) unstable; urgency=low + + * Correct spelling of upstream contact's name in debian/copyright + (whoops, sorry). + * Add link to upstream download site to debian/copyright. + * This release was never uploaded. + + -- Wouter Verhelst Tue, 21 Jun 2005 18:50:44 +0200 + +belpic (1.4-3) unstable; urgency=low + + * Sync package sections in debian/control with override file. + * Strip the libbelpic0-dev package now, too, as we found why it + errorred out at first. + * Remove references to Sarge from control file. We didn't make it into + Sarge anyway. + * Apply patch to build cleanly with gcc-4.0 on amd64 (and probably other + platforms, too). Closes: #314688. + + -- Wouter Verhelst Fri, 17 Jun 2005 22:58:51 +0200 + +belpic (1.4-2) unstable; urgency=low + + * Remove temporary insanity and don't try to make libbelpic0-dev depend on + libopensc1-dev, considering the fact that the libscconf.so corresponding + to the libscconf.a for which we do this has a different SONAME in + libbelpic versus libopensc. + + -- Wouter Verhelst Tue, 3 May 2005 14:42:46 +0200 + +belpic (1.4-1) unstable; urgency=low + + * Initial release. Closes: #287317 + * Does not (yet) contain libeid et al, because its license isn't + clear, the people in charge of that license don't respond to my + inquiries, and Sarge is about to release. Sigh. + * Does not (yet) have a proper libbelpic0-dev; stripping libbelpic.a + results in ugly stuff: + + wouter@country:~/debian/eID/belpic-1.4$ dh_strip -p libbelpic0-dev + strip: debian/libbelpic0-dev/usr/lib/st86AXON/libscconf.a: Invalid operation + dh_strip: command returned error code 256 + + which we will fix at the proper order, but I want to get the package + tested on other accounts, first, if at all possible. + + -- Wouter Verhelst Wed, 15 Sep 2004 11:33:48 +0200 --- belpic-2.6.0.orig/debian/beid-tools.install +++ belpic-2.6.0/debian/beid-tools.install @@ -0,0 +1,4 @@ +usr/bin/beid-tool +usr/bin/beid-pkcs11-tool +usr/bin/beidcrld +usr/bin/beidpcscd --- belpic-2.6.0.orig/debian/copyright +++ belpic-2.6.0/debian/copyright @@ -0,0 +1,330 @@ +This package was debianized by Wouter Verhelst in early +2005. It was downloaded from +http://www.belgium.be/zip/eid_datacapture_nl.html + +Upstream authors: Zetes Belgium N.V.; contact: Stef Hoeben + +The copyright of this software was assigned to FedIct, the ICT services of the +Belgian Federal government. + +A verbatim copy of the license.txt file, which is part of the upstream 'SDK' +package but refers to the SDK package and this package, follows: + +----- +IMPORTANT -- READ CAREFULLY BEFORE USING THIS SOFTWARE: Do not install, +download or use the eID Toolkit software until you have read and accepted this +Agreement (including its Exhibit). By clicking on the "Accept" button, +installing, downloading or otherwise using the eID Toolkit you agree to to be +bound by the terms of this Agreement (including its Exhibit). If you do not +agree to the terms of this Agreement (and/or its Exhibit), click on the +"cancel" button and/or do not install the eID Toolkit software. + + + eID Run-time Software License + ============================= + + + +Whereas this eID Toolkit software is released in a final version; + +Whereas this eID Toolkit is being provided by Fedict for no fee and for wide +use by any third party under the terms and conditions of this Agreement; + +WHEREAS THIS AGREEMENT REFERS TO AN OPEN-SOURCE LIBRARY, BEING ITSELF BASED ON +OPEN-SOURCE SOFTWARE, THE TERMS AND CONDITIONS OF WHICH ARE INCLUDED IN THE +EXHIBIT, WHICH NEED TO BE COMPLIED WITH BY ANY PARTY USING, REPRODUCING, +COPYING, MODIFYING, DISPLAYING AND DISTRIBUTING THE EID TOOLKIT; + +WHEREAS THIS AGREEMENT DOES NOT TAKE AWAY YOUR FREEDOM TO SHARE THE EID +TOOLKIT AND CHANGE IT IN ORDER TO ENABLE ITS WIDEST POSSIBLE ROLL-OUT TO OTHER +POTENTIAL USERS, PROVIDED THAT SUCH USE IN RELATION TO THE EID TOOLKIT +COMPLIES WITH THE TERMS AND CONDITIONS SET OUT IN THIS AGREEMENT (INCLUDING +ITS EXHIBIT). + + +Article 1: Grant of license + +The terms of this License Agreement (“License Agreement”) between you, the +licensee, and the Belgian Federal Government (“Fedict"), the licensor, allow +you, subject to the terms and limits set forth in this License Agreement and +its Exhibit (collectively "Agreement"), to receive from Fedict a world-wide, +royalty-free, non-exclusive, perpetual and transferable right of using, +reproducing, copying, modifying, displaying and distributing the software set +out in the Exhibit ("eID Toolkit "). + + +Article 2: Warranties of Licensor and Disclaimers + +2.1. Since the eID Toolkit has not specifically been created and tailored to +address, and has not been based on, your specific needs, Fedict does not +warrant that the eID Toolkit will meet your specific requirements or that the +operation of the eID Toolkit will operate in the specific combinations which +you may select for use. As no software is error-free, Fedict cannot guarantee +that the eID Toolkit will operate without interruption or be error free. + +2.2. Without prejudice to the above paragraph, this eID Toolkit is provided by +Fedict "AS IS" and any expressed or implied warranties other than those laid +down in provision 2.1, including, but not limited to, the implied warranties +of merchantability and fitness for a particular purpose are disclaimed. + +2.3 This Agreement does not entitle you to receive any maintenance, support +(be it telephone, fax or email) or any other assistance with respect to the +eID Toolkit or with respect to any alteration made on the eID Toolkit in any +form whatsoever, including, but not limited to additions, upgrades, +improvements to the substance and structure of the software ("Modifications"). + +Article 3: Licensee obligations + +3.1. Any use, including, but not limited to, reproduction, copy, modification, +display and distribution, is subject to compliance with the terms of this +Agreement. You warrant that you will comply with the terms of this Agreement +including the licenses governing the libraries or codes developed (and +protected by intellectual property rights as the case may be) by third +parties, which have been used wholly or in part for the development of the eID +Toolkit, being embedded in the eID application, linked to, being integrated +into or compiled with other libraries and codes to form the eID Toolkit +("Third-Party Work"). + +3.2. You may not copy, modify, sublicense, or distribute the eID Toolkit +otherwise than as expressly provided under this Agreement. Any attempt +otherwise to copy, modify, sublicense or distribute the eID Toolkit is void, +and will automatically terminate your rights under this Agreement. + +3.3. Redistributions in source and binary forms, with our without +modification, must reproduce this Agreement including the licenses governing +the libraries or codes developed by third parties, which have been used wholly +or in part for the development of the eID Toolkit. + +3.4. The name of Fedict may not be used to endorse or promote products derived +from this eID Toolkit without specific prior written permission. + +3.5. Third parties who have received copies, or rights, from you under this +Agreement will not have their licenses terminated if you infringe the terms of +this Agreement, so long as such parties remain in full compliance with these +terms. + +Article 4: Liability + +4.1. Under this Agreement, Fedict shall under no circumstances, except for +fraud or wilful misconduct, be liable for any indirect, special, incidental or +consequential damages, or for any loss of profits, loss of data, loss of +savings or business opportunity, trading losses, staff costs or costs of staff +turnover, computer failure or malfunction, IT system break-down, business +interruption or other technical or operational damage of any dimension +whatever, or other indirect, consequential or punitive damages arising from or +in connection with the use of the eID Toolkit or of any modified or derivative +work, or for any other commercial damages or losses arising from the use of +it. + +4.2. Fedict shall not be liable to indemnify you for any claims of +intellectual property right infringement, including contributory infringement +or inducement to infringe, of any intellectual property claimed in the eID +Toolkit by the authors of the Third-Party Works as identified in the special +notices in the Exhibit. You agree to indemnify, defend and hold harmless +Fedict against any and all claims, demands, penalties, proceedings, losses, +liabilities, damages of whatsoever nature, costs, fees and expenses of any +kind relating to in any way directly or indirectly out of Modifications and/or +the use of the eID Toolkit alone or in combination with other devices, +products, software, services and/or materials, provided that Fedict notifies +you in writing of the claim and allows you to control and reasonably +cooperates with you in the defense of the claim and any related settlement +negotiations. + +4.3. Fedict shall not be responsible for (i) the consequences of modifying the +eID Toolkit, integrating the eID Toolkit in proprietary products, or using the +eID Toolkit in combination with other devices, products, software, services +and/or materials or (ii) determining whether you require a license to or +additional rights from any of the Third Party Works, obtaining any such +license on its behalf, or paying any fees relating to any such licenses, to +the extent that such Third Party Works are claimed to be open source products. + +Article 5: Termination + +5.1 The Agreement and all licenses granted by the Licensor hereunder shall +automatically terminate by law if you breach this Agreement. + +5.2 Upon termination of the Agreement, you shall cease all use of the eID +Toolkit and shall destroy all copies of the eID Toolkit within your possession +or control. + +Article 6: General + +6.1 If any term or provision of this Agreement is determined to be illegal or +unenforceable, such term or provision shall be deemed stricken, and all other +terms and provisions shall remain in full force and effect. Each such +provision shall be modified by the parties to the extent necessary to make it +valid, legal and enforceable whilst preserving the intent of and balance +between the parties. + +6.2 This Agreement constitutes the entire understanding and agreement with +respect to the eID Toolkit and supersedes all prior oral and written +communications. + +6.3 This Agreement shall be governed by the laws of Belgium. Any dispute that +cannot be settled amicably shall be subject to the courts of Brussels. + +Exhibit +The Belgian eID Run-time– see Belgian eID Run-time User's Guide – consist of +? The Belgian eID Toolkit +? The Belgian e-ID Security Middleware +1.2 Third-party licenses +1.2.1 GNU Lesser General Public License +This license is used by several open source products. We will refer to it when +applicable. + + On Debian GNU/Linux systems, the LGPL can be found in + /usr/share/common-licenses/LGPL-2.1. It is part of the upstream + 'license.txt' file, as it applies to the opensc (and thus belpic) + source. + +1.2.2 OpenSSL +This run-time uses the OpenSSL Toolkit developed by the OpenSSL Project +(http://www.openssl.org/). +Here is a copy of the license (from +http://www.openssl.org/source/license.html): +LICENSE ISSUES + The OpenSSL toolkit stays under a dual license, i.e. both the conditions +of the OpenSSL License and the original SSLeay license apply to the toolkit. +See below for the actual license texts. Actually both licenses are BSD-style +Open Source licenses. In case of any license issues related to OpenSSL please +contact openssl-core@openssl.org. + +OpenSSL License +Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. +Redistribution and use in source and binary forms, with or without +modification, are permitted provided that the following conditions are met: + + 1. Redistributions of source code must retain the above copyright notice, +this list of conditions and the following disclaimer. + + 2. Redistributions in binary form must reproduce the above copyright notice, +this list of conditions and the following disclaimer in the documentation +and/or other materials provided with the distribution. + + 3. All advertising materials mentioning features or use of this software must +display the following acknowledgment: "This product includes software +developed by the OpenSSL Project for use in the OpenSSL Toolkit. +(http://www.openssl.org/)" + + 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to +endorse or promote products derived from this software without prior written +permission. For written permission, please contact openssl-core@openssl.org. + + 5. Products derived from this software may not be called "OpenSSL" nor may +"OpenSSL" appear in their names without prior written permission of the +OpenSSL Project. + + 6. Redistributions of any form whatsoever must retain the following +acknowledgment: "This product includes software developed by the OpenSSL +Project for use in the OpenSSL Toolkit (http://www.openssl.org/)" + +THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY EXPRESSED +OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES +OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO +EVENT SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, +INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, +BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, +DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY +OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING +NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, +EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +This product includes cryptographic software written by Eric Young +(eay@cryptsoft.com). +This product includes software written by Tim Hudson (tjh@cryptsoft.com). + +Original SSLeay License +Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) All rights reserved. + + This package is an SSL implementation written by Eric Young +(eay@cryptsoft.com). The implementation was written so as to conform with +Netscapes SSL. + + This library is free for commercial and non-commercial use as long as the +following conditions are aheared to. The following conditions apply to all +code found in this distribution, be it the RC4, RSA, lhash, DES, etc., code; +not just the SSL code. The SSL documentation included with this distribution +is covered by the same copyright terms except that the holder is Tim Hudson +(tjh@cryptsoft.com). + + Copyright remains Eric Young's, and as such any Copyright notices in the code +are not to be removed. If this package is used in a product, Eric Young should +be given attribution as the author of the parts of the library used. This can +be in the form of a textual message at program startup or in documentation +(online or textual) provided with the package. + + Redistribution and use in source and binary forms, with or without +modification, are permitted provided that the following conditions are met: 1. +Redistributions of source code must retain the copyright notice, this list of +conditions and the following disclaimer. 2. Redistributions in binary form +must reproduce the above copyright notice, this list of conditions and the +following disclaimer in the documentation and/or other materials provided with +the distribution. 3. All advertising materials mentioning features or use of +this software must display the following acknowledgement: "This product +includes cryptographic software written by Eric Young (eay@cryptsoft.com)" The +word 'cryptographic' can be left out if the rouines from the library being +used are not cryptographic related :-). 4. If you include any Windows specific +code (or a derivative thereof) from the apps directory (application code) you +must include an acknowledgement: "This product includes software written by +Tim Hudson (tjh@cryptsoft.com)" + + THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND ANY EXPRESS OR IMPLIED +WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO +EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, +INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT +LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR +PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF +LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING +NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, +EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + + The licence and distribution terms for any publically available version or +derivative of this code cannot be changed. i.e. this code cannot simply be +copied and put under another distribution licence [including the GNU Public +Licence.] +1.2.3 OpenSC +This run-time uses the OpenSC Toolkit developed by the OpenSC Project +(http://www.opensc.org/). +This toolkit is released under the “GNU Lesser General Public License” (see +7.2.1) (included in the distribution package http://www.opensc.org/cgi- +bin/cvsweb/opensc/COPYING?rev=1.2&content-type=text/x-cvsweb-markup): +1.2.5 libstdc +This run-time uses the libstdc++ run-time libraries developed by the Gnu CC +Project (http://www.gnucc.org/). +Here is a copy of the license (from +http://gcc.gnu.org/onlinedocs/libstdc++/17_intro/license.html): +The Code: Runtime GPL +The source code of libstdc++-v3 is distributed under version 2 of the GNU +General Public License +(http://gcc.gnu.org/onlinedocs/libstdc++/17_intro/COPYING), with the so-called +"runtime exception," as follows (or see any header or implementation file): +As a special exception, you may use this file as part of a free software +library without restriction. Specifically, if other files instantiate +templates or use macros or inline functions from this file, or you compile +this file and link it with other files to produce an executable, this file +does not by itself cause the resulting executable to be covered by the GNU +General Public License. This exception does not however invalidate any other +reasons why the executable file might be covered by the GNU General Public +License. + +Hopefully that text is self-explanatory. If it isn't, you need to speak to +your lawyer, or the Free Software Foundation. + +Q: So any program which uses libstdc++ falls under the GPL? +A: No. The special exception permits use of the library in proprietary +applications. + +Q: How is that different from the GNU {Lesser,Library} GPL? +A: The LGPL requires that users be able to replace the LGPL code with a +modified version; this is trivial if the library in question is a C shared +library. But there's no way to make that work with C++, where much of the +library consists of inline functions and templates, which are expanded inside +the code that uses the library. So to allow people to replace the library +code, someone using the library would have to distribute their own source, +rendering the LGPL equivalent to the GPL. + +Q: I see. So, what restrictions are there on programs that use the library? +A: None. We encourage such programs to be released as open source, but we +won't punish you or sue you if you choose otherwise. + --- belpic-2.6.0.orig/debian/beidgui.postinst +++ belpic-2.6.0/debian/beidgui.postinst @@ -0,0 +1,8 @@ +#!/bin/sh + +#DEBHELPER# + +if [ "$1" = "configure" ] +then + ldconfig +fi --- belpic-2.6.0.orig/debian/NEWS +++ belpic-2.6.0/debian/NEWS @@ -0,0 +1,10 @@ +belpic (2.6.0-5) unstable; urgency=low + + * Since 2.6.0-4, there is no more support for OpenCT-based cardreaders in + this Debian package. The support for OpenCT-using cardreaders was a + Debian-only patch, anyway, which seemed to be causing problems more than + it solved. If you were using an OpenCT-only cardreader before, you will + no longer be able to use it with these packages. Sorry for the + inconvenience. + + -- Wouter Verhelst Thu, 03 Jul 2008 14:53:51 +0200 --- belpic-2.6.0.orig/admin/generic.py +++ belpic-2.6.0/admin/generic.py @@ -492,7 +492,7 @@ def string_la_file(target, source, env): print "building '%s' from '%s'" % (target[0].name, source[0].name) - la_file = env.Action(build_la_file, string_la_file, ['BKSYS_VNUM', 'BKSYS_DESTDIR']) + la_file = env.Action(build_la_file, string_la_file, 'BKSYS_VNUM', 'BKSYS_DESTDIR') env['BUILDERS']['LaFile'] = env.Builder(action=la_file,suffix='.la',src_suffix=env['SHLIBSUFFIX']) ## Function for building shared libraries