rpms/opendnssec
7
0
Fork 0
Code Issues Pull Requests Releases Activity
100 Commits 13 Branches 26 Tags 221 KiB
c66df39a74
Commit Graph

100 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Troy Dawson
c66df39a74 Bump release for October 2024 mass rebuild: 
Resolves: RHEL-64018
 2024-10-29 08:52:40 -07:00
Sudhir Menon
a2b07747bb Added gating.yaml for opendnssec 
Signed-off-by: Sudhir Menon <sumenon@redhat.com>
 2024-06-26 13:41:11 +05:30
Troy Dawson
0d87bd94d8 Bump release for June 2024 mass rebuild 2024-06-24 09:05:45 -07:00
Alexander Bokovoy
14dfcf9140 Do not require java outside of supported Java architectures 
When building pre-releases, RelaxNG needs java but Fedora does not ship
one on i686: https://fedoraproject.org/wiki/Changes/Drop_i686_JDKs

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2024-02-08 14:23:59 +02:00
Alexander Bokovoy
68df51a565 Upstream release 2.1.14rc1 
Fix GCC14 incompatibilities

Resolves: rhbz#2261421

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2024-02-08 14:00:35 +02:00
Fedora Release Engineering
d240ecae2e Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild 2024-01-25 11:16:05 +00:00
Fedora Release Engineering
3234437426 Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild 2024-01-21 11:11:11 +00:00
Yaakov Selkowitz
636ceed7aa Fix for https://fedoraproject.org/wiki/Changes/PortingToModernC 
https://github.com/opendnssec/opendnssec/pull/853
 2023-12-26 14:13:56 -05:00
Fedora Release Engineering
c919b74c3b Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2023-07-20 18:02:19 +00:00
Rafael Guterres Jeffman
426504b099 Migrated to SPDX license 
Signed-off-by: Rafael Guterres Jeffman <rjeffman@redhat.com>
 2023-03-30 11:42:20 -03:00
Florian Weimer
dd051b0e3c Port to C99 
Related to:

  <https://fedoraproject.org/wiki/Changes/PortingToModernC>
  <https://fedoraproject.org/wiki/Toolchain/PortingToModernC>
 2023-02-24 18:21:45 +01:00
Alexander Bokovoy
ca78a1bdbf Fix fortification issues 
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
 2023-01-30 12:00:33 +02:00
Fedora Release Engineering
4dd7781f5f Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2023-01-19 22:48:11 +00:00
Fedora Release Engineering
6874e7b936 Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-07-22 02:04:15 +00:00
Fedora Release Engineering
30b5213ccd - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-01-20 22:21:03 +00:00
François Cami
e09e7a2680 Update to 2.1.10 
Issues reported fixed by upstream (same as 2.1.9):
- OPENDNSSEC-955: Prevent concurrency between certain valid
  PKCS#11 HSM operations to avoid some keys to be (transiently)
  unavailable.

- OPENDNSSEC-956: Harden signing procedure to still sign zones
  for which there are unused keys specified in the zone which are
  unavailable.

Issues newly reported fixed:
- OPENDNSSEC-957: Fix exit code signer daemon to not always report
  failure.

- OPENDNSSEC-958: Fix immediate resalting after migration from 1.4.

- OPENDNSSEC-959: Emit warning on ods-kaspcheck for NSEC iteration
  count that is deemed too high.

- SUPPORT-265: Resolve conflict when deleting keys from HSM whilst
  also performing step in key roll process. Typically a message
  “key_data_update failed” is present in logs.
 2021-10-18 20:47:18 +02:00
Sahana Prasad
c199a0094f Rebuilt with OpenSSL 3.0.0 2021-09-14 19:09:42 +02:00
Fedora Release Engineering
11a2c18037 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-07-22 17:12:55 +00:00
François Cami
a7fe6a09ab Update to 2.1.9 
Issues solved:
- OPENDNSSEC-955: Prevent concurrency between certain valid
                  PKCS#11 HSM operations to avoid some keys
                  to be (transiently) unavailable.
- OPENDNSSEC-956: Harden signing procedure to still sign zones
                  for which there are unused keys specified in
                  the zone which are unavailable.

Known issue:
- OPENDNSSEC-957: Signer daemon stops with failure exit code
                  even when no error occured.
 2021-07-06 16:55:01 +02:00
Zbigniew Jędrzejewski-Szmek
85d740ed46 Rebuilt for updated systemd-rpm-macros 
See https://pagure.io/fesco/issue/2583.
 2021-03-02 16:13:10 +01:00
Fedora Release Monitoring
33b7514afc Update to 2.1.8 (#1931143) 2021-02-21 18:02:43 +02:00
Fedora Release Engineering
937d85e900 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-01-26 22:29:32 +00:00
Tom Stellard
0f5fe5758a Add BuildRequires: make 
https://fedoraproject.org/wiki/Changes/Remove_make_from_BuildRoot
 2021-01-07 06:30:35 +00:00
Adam Williamson
6898d0823a Rebuild for libldns soname bump 2020-12-19 10:14:09 -08:00
Paul Wouters
e2ef048d83 - Resolves rhbz#1826233 ods-enforcerd.service should wait until socket is ready 2020-12-08 21:10:34 -05:00
Alexander Bokovoy
753f88d235 Update to 2.1.7 
- OPENDNSSEC-949: Fix for migration bug not keeping proper parameters
   of NSEC3 signed zones. Amongst others the zone become NSEC. Loading
   the policies fixes the situation, migration scripts now corrected. Since
   1.4 does not require a salt, a resalt might be automatic after
   migrating, as this is a required parameter.

 - OPENDNSSEC-948: do not recreate signatures for keys that are moving
   out this fixes unexpected double signatures in the zone.

 - SUPPORT-253: Incorrect keytag used when using Combined Signing keys
   (CSK) (Thanks to Simon Arlott)

 - SUPPORT-257: Export keys by locator (Thansk to Simon Arlott)

 - SUPPORT-222: Support ED25519/ED448 keys. This requires library ldns
   1.7.0 or better, otherwise unavailable. (Thanks again to Simon
   Arlott)

 - Load libsqlite3.so.0 and fall back on libsqlite3.so.0 to allow to run
   migration tool on systems without libsqlite3.so.0 soft link. (Thanks
   to Paul Wouters)

 - Some compilation warnings, o.a. gcc10 related, code quality and
   initialization improvements. (Thanks to Jonas Berlin, and Mathieu
   MirMont, and Paul Wouters)
 2020-12-04 17:45:16 +02:00
Fedora Release Engineering
dfb31f8f57 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-07-28 12:41:47 +00:00
Tom Stellard
9a95494575 Use make macros 
https://fedoraproject.org/wiki/Changes/UseMakeBuildInstallMacro
 2020-07-14 02:20:56 +00:00
Paul Wouters
79b9c53dc1 - Resolves: rhbz#1833718 ods-signerd.service missing .service 2020-05-28 13:38:07 -04:00
Paul Wouters
07a7db0602 - Resolves: rhbz#1825812 AVC avc: denied { dac_override } for comm="ods-enforcerd 2020-04-20 09:49:21 -04:00
Paul Wouters
ee3dc63b53 - Fix migration check to not attempt to check on first install with no db 2020-03-10 22:43:23 -04:00
Alexander Bokovoy
ed1a3ea7ca Create and own /var/opendnssec/enforcer directory in the package 
Resolves: rhbz#1809492
 2020-03-03 11:15:50 +02:00
Paul Wouters
6c8038d198 new sources and patch 2020-02-24 13:36:14 -05:00
Paul Wouters
3b082a60ff * Wed Feb 19 2020 Paul Wouters <pwouters@redhat.com> - 2.1.6-2 
- Update to 2.1.6 (major upgrade, supports migration from 1.4.x)
- gcc10 compile fixups
- Fix trying to use unversioned libsqlite3.so file
 2020-02-24 13:30:42 -05:00
Paul Wouters
cbc7fca9d1 - Update to 2.1.5 (major upgrade, supports migration from 1.4.x) 2020-02-18 16:41:36 -05:00
Fedora Release Engineering
9fe5786c6c - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-01-29 20:16:09 +00:00
Fedora Release Engineering
08a2d6c5e8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2019-07-25 23:25:44 +00:00
Fedora Release Engineering
6f81c827c1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2019-02-01 17:22:20 +00:00
Igor Gnatenko
bce84c95f0 Remove obsolete Group tag 
References: https://fedoraproject.org/wiki/Changes/Remove_Group_Tag
 2019-01-28 20:24:23 +01:00
Fedora Release Engineering
64bb9a73c6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2018-07-13 15:05:06 +00:00
Igor Gnatenko
126b372f94 add BuildRequires: gcc 
Reference: https://fedoraproject.org/wiki/Changes/Remove_GCC_from_BuildRoot
 2018-07-09 19:06:49 +02:00
Fedora Release Engineering
ee848ab4d8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2018-02-08 09:27:04 +00:00
Paul Wouters
ffb901ceb2 * Tue Dec 12 2017 Paul Wouters <pwouters@redhat.com> - 1.4.14-1 
- Update to 1.4.14 as first steop to migrating to 2.x
- Resolves: rhbz#1413254 Move tmpfiles.d config to %%{_tmpfilesdir}, install LICENSE as %%license
 2017-12-12 13:20:29 -05:00
Fedora Release Engineering
c3e28a2a66 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild 2017-08-03 04:31:19 +00:00
Fedora Release Engineering
1f02006bf1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild 2017-07-27 01:46:26 +00:00
Petr Písař
e438c8654f perl dependency renamed to perl-interpreter <https://fedoraproject.org/wiki/Changes/perl_Package_to_Install_Core_Modules> 2017-07-12 14:25:37 +02:00
Tomas Hozza
6460f2ef4e Fix FTBFS (#1424019) in order to rebuild against new ldns 
Signed-off-by: Tomas Hozza <thozza@redhat.com>
 2017-03-09 12:58:04 +01:00
Fedora Release Engineering
f710e5c910 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild 2017-02-11 00:50:45 +00:00
Richard W.M. Jones
0fcdc057f3 Add BR perl. 
See:
https://fedoraproject.org/wiki/Packaging:Perl#Build_Dependencies

No rebuild is required.

The original error was:

...
checking time.h presence... yes
checking for time.h... yes
checking for SSL... found in /usr
checking for HMAC_CTX_init in -lcrypto... yes
checking for EVP_sha1... yes
checking for EVP_sha256... yes
checking for dlopen... no
checking for dlopen in -ldl... yes
checking for perl... no
configure: error: perl not found
 2016-10-07 18:33:46 +01:00
Paul Wouters
68bd9bdffa * Thu Feb 18 2016 Paul Wouters <pwouters@redhat.com> - 1.4.9-3 
- Resolves: rbz#1303965 upgrade to opendnssec-1.4.9-1.fc23 breaks old installations
- On initial install, after token init, also run ods-ksmutil setup
 2016-02-17 22:05:21 -05:00