Fix IP address handling in CA certificate SAN constraints

Resolves: RHEL-107289 Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
2025-08-11 10:46:49 -04:00 · 2025-08-11 10:46:49 -04:00 · 34c2f672c8
commit 34c2f672c8
parent 835f9d3c4c
2 changed files with 1121 additions and 1 deletions
--- a/0008-Fix-IP-address-handling-in-CA-certificate-SAN-constr.patch
+++ b/0008-Fix-IP-address-handling-in-CA-certificate-SAN-constr.patch
--- a/sscg.spec
+++ b/sscg.spec
@ -9,7 +9,7 @@

 Name:           sscg
 Version:        3.0.0
-Release:        9%{?dist}
+Release:        10%{?dist}
 Summary:        Simple SSL certificate generator

 License:        GPLv3+ with exceptions
@ -33,6 +33,7 @@ Patch: 0004-dhparams-don-t-fail-if-default-file-can-t-be-created.patch
 Patch: 0005-dhparams-Fix-the-FIPS_mode-call-for-OpenSSL-3.0.patch
 Patch: 0006-x509-Use-proper-version-for-CSR.patch
 Patch: 0007-Ensure-critical-basicConstraint-for-CA-cert.patch
+Patch: 0008-Fix-IP-address-handling-in-CA-certificate-SAN-constr.patch

 %description
 A utility to aid in the creation of more secure "self-signed"
@ -63,6 +64,10 @@ false signatures from the service certificate.
 %{_mandir}/man8/%{name}.8*

 %changelog
+* Mon Aug 11 2025 Stephen Gallagher <sgallagh@redhat.com> - 3.0.0-10
+- Fix IP address handling in CA certificate SAN constraints
+- Resolves: RHEL-107289
+
 * Tue Apr 22 2025 Stephen Gallagher <sgallagh@redhat.com> - 3.0.0-9
 - Ensure 'critical' basicConstraint for CA cert
 - Resolves: RHEL-88119