From 40a88215a98799a2328c77b681de8dc3a9056146 Mon Sep 17 00:00:00 2001
From: Nalin Dahyabhai <nalin@redhat.com>
Date: Mon, 10 Nov 2014 17:58:42 -0500
Subject: [PATCH] Update to 0.76.6

Update to 0.76.6:
- avoid premature exit on CA data analysis failures (should fix issue
  reported by Natxo Asenjo)
- fixes for bugs found by static analysis
- rework the state machine so that we save an issued certificate's associated
  CA certificates, then re-read the certificate, then run the post hook and
  issue notifications, in that order, instead of saving CA certificates after
  running the post hook, which was always a surprising order (#1131700)
- add a generic dogtag-submit helper that doesn't include any IPA defaults,
  to make it easier to know the difference between paramenters it requires
  and parameters which are optional
- ipa-submit: when we fail to locate/contact LDAP or XML-RPC servers,
  use discovery to find them (#1136900)
- require a single certificate to be specified to 'getcert status' (#1148001)
- shorten the default help message which getcert prints when it's not given
  a specific command (#1131704)
- add private listener (-l, -L, -P) mode to certmonger, to allow it to listen
  for connections directly from clients running under the same UID
- add a command mode (-c) to certmonger, in which once it's started, it
  launches a specified command, and after that command exits, the daemon exits
- when getcert is invoked with no bus running, if it's running as root, run
  certmonger in private listener mode with the same invocation of getcert as
  the command to start and wait for (#1134497)
---
 .gitignore      |  2 ++
 certmonger.spec | 52 ++++++++++++++++++++++++++++++++++++++++++++++---
 sources         |  4 ++--
 3 files changed, 53 insertions(+), 5 deletions(-)

diff --git a/.gitignore b/.gitignore
index e3f6450..dbeea95 100644
--- a/.gitignore
+++ b/.gitignore
@@ -86,3 +86,5 @@ certmonger-0.28.tar.gz
 /certmonger-0.75.13.tar.gz.sig
 /certmonger-0.75.14.tar.gz
 /certmonger-0.75.14.tar.gz.sig
+/certmonger-0.76.6.tar.gz
+/certmonger-0.76.6.tar.gz.sig
diff --git a/certmonger.spec b/certmonger.spec
index bbfa063..2d5beb5 100644
--- a/certmonger.spec
+++ b/certmonger.spec
@@ -25,7 +25,7 @@
 %endif
 
 Name:		certmonger
-Version:	0.75.14
+Version:	0.76.6
 Release:	1%{?dist}
 Summary:	Certificate status monitor and PKI enrollment client
 
@@ -50,6 +50,9 @@ BuildRequires:	libcurl-devel
 BuildRequires:	curl-devel
 %endif
 BuildRequires:	libxml2-devel, xmlrpc-c-devel
+%if 0%{?rhel} < 6
+BuildRequires:	bind-libbind-devel
+%endif
 # Required for 'make check':
 #  for diff and cmp
 BuildRequires:	diffutils
@@ -236,10 +239,53 @@ exit 0
 %endif
 
 %changelog
+* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.6-1
+- don't discard the priority value in DNS SRV records
+
+* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.5-1
+- avoid premature exit on CA data analysis failures (should fix issue
+  reported by Natxo Asenjo)
+
+* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.4-1
+- fix a failure in self-tests
+
+* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.3-1
+- fixes for bugs found by static analysis
+- handle IDN correctly when doing service location using SRV records
+- documentation updates
+
+* Wed Nov  5 2014 Nalin Dahyabhai <nalin@redhat.com>
+- rework the state machine so that we save an issued certificate's associated
+  CA certificates, then re-read the certificate, then run the post hook and
+  issue notifications, in that order, instead of saving CA certificates after
+  running the post hook, which was always a surprising order (#1131700)
+- add a generic dogtag-submit helper that doesn't include any IPA defaults,
+  to make it easier to know the difference between paramenters it requires
+  and parameters which are optional
+
+* Tue Nov  4 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.2-1
+- ipa-submit: when we fail to locate/contact LDAP or XML-RPC servers,
+  use discovery to find them (#1136900)
+
+* Fri Oct 31 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.1-1
+- allow for 'certmonger -P abstract:...' to work, too
+
+* Fri Oct 31 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76-1
+- require a single certificate to be specified to 'getcert status' (#1148001)
+- shorten the default help message which getcert prints when it's not given
+  a specific command (#1131704)
+- add private listener (-l, -L, -P) mode to certmonger, to allow it to listen
+  for connections directly from clients running under the same UID
+- add a command mode (-c) to certmonger, in which once it's started, it
+  launches a specified command, and after that command exits, the daemon exits
+- when getcert is invoked with no bus running, if it's running as root, run
+  certmonger in private listener mode with the same invocation of getcert as
+  the command to start and wait for (#1134497)
+
 * Thu Aug 28 2014 Nalin Dahyabhai <nalin@redhat.com> 0.75.14-1
 - make pathname canonicalization slightly smarter, to handle ".." in
-  locations
-- updates to self-tests
+  locations (#1131758)
+- updates to self-tests (#1144082)
 
 * Thu Aug 21 2014 Kevin Fenzi <kevin@scrye.com> - 0.75.13-2
 - Rebuild for rpm bug 1131960
diff --git a/sources b/sources
index 237deaa..80aec17 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
-f9390a49196ef59c930259215fa57d19  certmonger-0.75.14.tar.gz
-111c8732566686cfc4d257a7e009460a  certmonger-0.75.14.tar.gz.sig
+103f26b6a1f4b04b9f03a61b81828b9f  certmonger-0.76.6.tar.gz
+36a5c1d4ba51970c6afbca64b589eff9  certmonger-0.76.6.tar.gz.sig