Update to 0.76.6
Update to 0.76.6: - avoid premature exit on CA data analysis failures (should fix issue reported by Natxo Asenjo) - fixes for bugs found by static analysis - rework the state machine so that we save an issued certificate's associated CA certificates, then re-read the certificate, then run the post hook and issue notifications, in that order, instead of saving CA certificates after running the post hook, which was always a surprising order (#1131700) - add a generic dogtag-submit helper that doesn't include any IPA defaults, to make it easier to know the difference between paramenters it requires and parameters which are optional - ipa-submit: when we fail to locate/contact LDAP or XML-RPC servers, use discovery to find them (#1136900) - require a single certificate to be specified to 'getcert status' (#1148001) - shorten the default help message which getcert prints when it's not given a specific command (#1131704) - add private listener (-l, -L, -P) mode to certmonger, to allow it to listen for connections directly from clients running under the same UID - add a command mode (-c) to certmonger, in which once it's started, it launches a specified command, and after that command exits, the daemon exits - when getcert is invoked with no bus running, if it's running as root, run certmonger in private listener mode with the same invocation of getcert as the command to start and wait for (#1134497)
This commit is contained in:
Nalin Dahyabhai
parent
b6fcbbc5a0
commit
40a88215a9
2
.gitignore
vendored
2
.gitignore
vendored
@ -86,3 +86,5 @@ certmonger-0.28.tar.gz
|
|||||||
/certmonger-0.75.13.tar.gz.sig
|
/certmonger-0.75.13.tar.gz.sig
|
||||||
/certmonger-0.75.14.tar.gz
|
/certmonger-0.75.14.tar.gz
|
||||||
/certmonger-0.75.14.tar.gz.sig
|
/certmonger-0.75.14.tar.gz.sig
|
||||||
|
/certmonger-0.76.6.tar.gz
|
||||||
|
/certmonger-0.76.6.tar.gz.sig
|
||||||
|
|||||||
@ -25,7 +25,7 @@
|
|||||||
%endif
|
%endif
|
||||||
|
|
||||||
Name: certmonger
|
Name: certmonger
|
||||||
Version: 0.75.14
|
Version: 0.76.6
|
||||||
Release: 1%{?dist}
|
Release: 1%{?dist}
|
||||||
Summary: Certificate status monitor and PKI enrollment client
|
Summary: Certificate status monitor and PKI enrollment client
|
||||||
|
|
||||||
@ -50,6 +50,9 @@ BuildRequires: libcurl-devel
|
|||||||
BuildRequires: curl-devel
|
BuildRequires: curl-devel
|
||||||
%endif
|
%endif
|
||||||
BuildRequires: libxml2-devel, xmlrpc-c-devel
|
BuildRequires: libxml2-devel, xmlrpc-c-devel
|
||||||
|
%if 0%{?rhel} < 6
|
||||||
|
BuildRequires: bind-libbind-devel
|
||||||
|
%endif
|
||||||
# Required for 'make check':
|
# Required for 'make check':
|
||||||
# for diff and cmp
|
# for diff and cmp
|
||||||
BuildRequires: diffutils
|
BuildRequires: diffutils
|
||||||
@ -236,10 +239,53 @@ exit 0
|
|||||||
%endif
|
%endif
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.6-1
|
||||||
|
- don't discard the priority value in DNS SRV records
|
||||||
|
|
||||||
|
* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.5-1
|
||||||
|
- avoid premature exit on CA data analysis failures (should fix issue
|
||||||
|
reported by Natxo Asenjo)
|
||||||
|
|
||||||
|
* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.4-1
|
||||||
|
- fix a failure in self-tests
|
||||||
|
|
||||||
|
* Mon Nov 10 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.3-1
|
||||||
|
- fixes for bugs found by static analysis
|
||||||
|
- handle IDN correctly when doing service location using SRV records
|
||||||
|
- documentation updates
|
||||||
|
|
||||||
|
* Wed Nov 5 2014 Nalin Dahyabhai <nalin@redhat.com>
|
||||||
|
- rework the state machine so that we save an issued certificate's associated
|
||||||
|
CA certificates, then re-read the certificate, then run the post hook and
|
||||||
|
issue notifications, in that order, instead of saving CA certificates after
|
||||||
|
running the post hook, which was always a surprising order (#1131700)
|
||||||
|
- add a generic dogtag-submit helper that doesn't include any IPA defaults,
|
||||||
|
to make it easier to know the difference between paramenters it requires
|
||||||
|
and parameters which are optional
|
||||||
|
|
||||||
|
* Tue Nov 4 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.2-1
|
||||||
|
- ipa-submit: when we fail to locate/contact LDAP or XML-RPC servers,
|
||||||
|
use discovery to find them (#1136900)
|
||||||
|
|
||||||
|
* Fri Oct 31 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76.1-1
|
||||||
|
- allow for 'certmonger -P abstract:...' to work, too
|
||||||
|
|
||||||
|
* Fri Oct 31 2014 Nalin Dahyabhai <nalin@redhat.com> 0.76-1
|
||||||
|
- require a single certificate to be specified to 'getcert status' (#1148001)
|
||||||
|
- shorten the default help message which getcert prints when it's not given
|
||||||
|
a specific command (#1131704)
|
||||||
|
- add private listener (-l, -L, -P) mode to certmonger, to allow it to listen
|
||||||
|
for connections directly from clients running under the same UID
|
||||||
|
- add a command mode (-c) to certmonger, in which once it's started, it
|
||||||
|
launches a specified command, and after that command exits, the daemon exits
|
||||||
|
- when getcert is invoked with no bus running, if it's running as root, run
|
||||||
|
certmonger in private listener mode with the same invocation of getcert as
|
||||||
|
the command to start and wait for (#1134497)
|
||||||
|
|
||||||
* Thu Aug 28 2014 Nalin Dahyabhai <nalin@redhat.com> 0.75.14-1
|
* Thu Aug 28 2014 Nalin Dahyabhai <nalin@redhat.com> 0.75.14-1
|
||||||
- make pathname canonicalization slightly smarter, to handle ".." in
|
- make pathname canonicalization slightly smarter, to handle ".." in
|
||||||
locations
|
locations (#1131758)
|
||||||
- updates to self-tests
|
- updates to self-tests (#1144082)
|
||||||
|
|
||||||
* Thu Aug 21 2014 Kevin Fenzi <kevin@scrye.com> - 0.75.13-2
|
* Thu Aug 21 2014 Kevin Fenzi <kevin@scrye.com> - 0.75.13-2
|
||||||
- Rebuild for rpm bug 1131960
|
- Rebuild for rpm bug 1131960
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user