Commit Graph

23 Commits

Author SHA1 Message Date
Sergio Correia
fc3ab656ed
Rebuild for properly tagging the resulting build
Resolves: RHEL-1898
2023-09-06 14:39:27 +01:00
Sergio Correia
e2f9c60fc2
Add missing dependencies python3-jinja2 and util-linux
Resolves: RHEL-1898
2023-09-01 14:48:17 +01:00
Anderson Toshiyuki Sasaki
86a18d1bb4 Automatically update agent API version
Resolves: RHEL-1518

Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
2023-08-28 22:55:42 +02:00
Sergio Correia
2c457d5430
Fix registrar is subject to a DoS against SSL (CVE-2023-38200)
Resolves: rhbz#2222694
2023-08-28 14:27:44 +01:00
Anderson Toshiyuki Sasaki
6ac5a8f8e6 Fix challenge-protocol bypass during agent registration (CVE-2023-38201)
Resolves: rhbz#2222695

Signed-off-by: Anderson Toshiyuki Sasaki <ansasaki@redhat.com>
2023-08-25 18:28:17 +02:00
Sergio Correia
606d9c0c62
Follow-up fix for files updated in %post scriptlets
Update spec file to use %verify(not md5 size mode mtime) for
files updated in %post scriptlets.

Resolves: RHEL-475
2023-08-25 09:05:48 +01:00
Sergio Correia
bb2aac1ec0
Fix Keylime configuration upgrades issues introduced in last rebase
- Fix Keylime configuration upgrades issues introduced in last rebase
  Resolves: RHEL-475
- Handle session close using a session manager
  Resolves: RHEL-1252
- Add ignores for EV_PLATFORM_CONFIG_FLAGS
  Resolves: RHEL-947
2023-08-17 11:42:24 +01:00
Patrik Koncity
931f17ab63 Add dynamic ref branching for e2e test plan 2023-08-11 14:20:21 +02:00
Patrik Koncity
92ac23c8bc Prepare build for new keylime-selinux policy release 2023-08-08 16:25:29 +02:00
Sergio Correia
4dba8b49a7
Update to 7.3.0
Resolves: RHEL-475
2023-07-28 14:14:46 +01:00
Sergio Correia
7842bcd0bc
Backport upstream PR#1240 - logging: remove option to log into separate file
Resolves: rhbz#2154584 - keylime verifier is not logging to /var/log/keylime
2023-01-16 07:53:36 -03:00
Sergio Correia
bf9cfcee94
- Remove leftover policy file
Related: rhbz#2152135
2022-12-13 16:02:22 -03:00
Patrik Koncity
12403b5c1c Use source file for keylime selinux from upstream.
Download keylime selinux upstream as tarball file and
build it.

Resolves: rhbz#2152135
2022-12-13 16:28:16 +01:00
Sergio Correia
6c01a5e3ec Update to 6.5.2
Resolves: CVE-2022-3500
Resolves: rhbz#2138167 - agent fails IMA attestation when one scripts is executed quickly after the other
Resolves: rhbz#2140670 - Segmentation fault in /usr/share/keylime/create_mb_refstate script
Resolves: rhbz#142009 - Registrar may crash during EK validation when require_ek_cert is enabled
2022-11-29 17:26:15 +01:00
Sergio Correia
346f3201ee Update to 6.5.0
Resolves: rhbz#2120686 - Keylime configuration is too complex
2022-09-21 13:59:21 -03:00
Sergio Correia
d27537fb46
Update to 6.4.3
Resolves: rhbz#2121044 - Error parsing EK ASN.1 certificate of Nuvoton HW TPM
2022-08-27 02:54:43 +00:00
Patrik Koncity
59b5fc166b Update keylime selinux policy 2022-08-26 22:48:19 +02:00
Patrik Koncity
ba67a34300 Update keylime selinux policy
Resolves: rhbz#2121058
2022-08-26 19:16:50 +02:00
Patrik Koncity
f33189eab3 Update selinux policy and add misssing rules
Resolves: rhbz#2121058
2022-08-26 12:47:27 +02:00
Patrik Koncity
97e752b0b6 Add keylime-selinux policy
Update .spec file to build
keylime-selinux subpackage.

Resolves: rhbz#2121058
2022-08-25 19:45:42 -03:00
Sergio Correia
9017e1e7ec Fix efivar-libs dependency
Related: rhbz#2082989
2022-07-11 09:02:05 -03:00
Sergio Correia
9865b69545 Update to 6.4.2
Related: rhbz#2082989
2022-07-07 15:51:07 -03:00
Sergio Correia
b19c921a82 Add keylime to RHEL-9
Resolves: rhbz#2082989
2022-06-24 14:43:37 -03:00