rpms/sscg
7
0
Fork 0
Code Issues Pull Requests Releases Activity
98 Commits 10 Branches 34 Tags 644 KiB
d227e41497
Commit Graph

98 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Stephen Gallagher
d227e41497
Update to SSCG 4.0.1 
* Drop dependency on libpath_utils
* Minor fixes and code cleanups

Related: RHEL-123675

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2025-12-02 09:55:14 -05:00
Stephen Gallagher
7ef4b1df20
Restore creation of dhparams file by default 
This was removed upstream in 4.0, but for backwards-compatibility in
RHEL, it will continue to be created.

Related: 123675

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2025-10-27 15:06:39 -04:00
Stephen Gallagher
f5a0062ca0
Release SSCG 4.0.0 
- Support for ML-DSA keys for post-quantum cryptography (PQC) when built
  against OpenSSL 3.5 or later
- Support for EC-DSA keys for elliptic curves
- RSA certificate authority is now created with a minimum key strength
  of 4096 bits
- Improved --help output
- Deprecated support for generating custom DH parameters
- Stopped producing the DH parameter file by default (it may be
  requested explicitly with the --dhparams-file argument)
- Minimum OpenSSL version is now 3.0
- Drop upstreamed patches

Resolves: RHEL-123675

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2025-10-27 14:20:49 -04:00
Zdenek Dohnal
c4904fe81b Migrate FMF tests into metadata format used in rhel-stacks 2025-08-13 13:48:56 +02:00
Stephen Gallagher
19a9c6e2e5 Fix IP address handling in CA certificate SAN constraints 
- Add automatic single-IP subnet mask to IP addresses in CA name constraints
- Update help text to show simplified IP format without subnet mask
- Add comprehensive test for basicConstraints

Resolves: RHEL-108619

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2025-08-11 11:00:09 -04:00
Stephen Gallagher
7f0effb035 Ensure 'critical' basicConstraint for CA cert 
Resolves: RHEL-88118

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2025-04-22 15:00:45 -04:00
Stephen Gallagher
e754c2e164 x509: Use proper version for CSR 
RFC 2986 only defines a single version for CSRs: X509_VERSION_1 (0).
OpenSSL starting with 3.4 rejects everything else.

Use X509_VERSION_1 as version for X509_REQ_set_version.

Resolves: RHEL-85814

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2025-04-02 20:53:43 -04:00
Troy Dawson
1c9e5bc4a1 Bump release for October 2024 mass rebuild: 
Resolves: RHEL-64018
 2024-10-29 09:15:12 -07:00
Troy Dawson
d9f0a1f06e Bump release for June 2024 mass rebuild 2024-06-24 09:25:26 -07:00
Branislav Náter
ffc275894c Adding gating rules for RHEL 2024-06-21 13:32:19 +02:00
Fedora Release Engineering
31cf588afd Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild 2024-01-27 04:18:06 +00:00
Joe Orton
00ae409662 SPDX migration 2023-11-16 14:14:23 +00:00
Stephen Gallagher
0cddb04217 Update README.md with latest usage 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2023-09-01 08:21:27 -04:00
Fedora Release Engineering
2da8e38627 Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2023-07-22 02:27:02 +00:00
Stephen Gallagher
f20c1143a3 Extend maximum DNS name to 256 
From-source-git-commit: 00fb4ba6ae29ed94b88675fa752f1c3e5c6fa85f
 2023-07-18 20:25:15 -04:00
Stephen Gallagher
6eccdf5e80 Release 3.0.5 
From-source-git-commit: 1440fb807c4cecce3a3e52dca9489cec1a53cc4d
 2023-06-20 16:32:59 -04:00
Stephen Gallagher
f673a25e51
[packit] 3.0.4 upstream release 
Upstream tag: sscg-3.0.4
Upstream commit: e87dd74e
 2023-06-08 14:25:55 -04:00
Fedora Release Engineering
fbcc49819f Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2023-01-21 03:59:21 +00:00
Stephen Gallagher
bc295d3869
Add missing BR: openssl 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2023-01-16 09:44:51 -05:00
Stephen Gallagher
5da24d354e
Release 3.0.3 
Multiple fixes for dhparams file generation.

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2023-01-16 09:15:52 -05:00
Fedora Release Engineering
f85686e675 Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-07-23 09:21:03 +00:00
Branislav Náter
730ac1cfc1 Adding fmf metadata 2022-04-20 14:55:14 +02:00
Branislav Náter
c2ad6f1c17 Adding tmt test plans and gating configuration 2022-04-20 14:33:04 +02:00
Stephen Gallagher
c98f9241ff
Merge branch 'f35' into rawhide 2022-03-09 14:49:00 -05:00
Stephen Gallagher
3440eb6c58
Merge branch 'f34' into rawhide 2022-03-09 14:48:55 -05:00
Stephen Gallagher
8514b1b69d
Merge branch 'rawhide' into f34 2022-03-09 14:44:22 -05:00
Stephen Gallagher
75ccf91fd0
Merge branch 'rawhide' into f35 2022-03-09 14:43:35 -05:00
Stephen Gallagher
5111dabe2c
Truncate IP address in SAN 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2022-03-09 14:42:46 -05:00
Stephen Gallagher
83dab1ae0f
Remove old packit data 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2022-03-09 11:40:55 -05:00
Stephen Gallagher
5704f1427c
Merge branch 'rawhide' into f34 2022-02-28 13:47:08 -05:00
Stephen Gallagher
0912d7352f
Merge branch 'rawhide' into f35 2022-02-28 13:32:08 -05:00
Stephen Gallagher
ec35e0ba1a
[packit] 3.0.2 upstream release 
Upstream tag: sscg-3.0.2
Upstream commit: b3682d9c

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2022-02-28 12:04:59 -05:00
Fedora Release Engineering
6c578eebba - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-01-22 01:35:51 +00:00
Packit Service
f4d6b2b15b [packit] 3.0.1 upstream release 
Upstream tag: sscg-3.0.1
Upstream commit: cba79c9a

Signed-off-by: Packit Service <user-cont-team+packit-service@redhat.com>
 2021-10-29 16:57:48 +00:00
Packit Service
698f77c110 [packit] 3.0.1 upstream release 
Upstream tag: sscg-3.0.1
Upstream commit: cba79c9a

Signed-off-by: Packit Service <user-cont-team+packit-service@redhat.com>
 2021-10-29 16:57:33 +00:00
Packit Service
adf4ef0ac8 [packit] 3.0.1 upstream release 
Upstream tag: sscg-3.0.1
Upstream commit: cba79c9a

Signed-off-by: Packit Service <user-cont-team+packit-service@redhat.com>
 2021-10-29 16:57:17 +00:00
Sahana Prasad
a212f93588 Rebuilt with OpenSSL 3.0.0 2021-09-14 19:15:36 +02:00
Stephen Gallagher
f4f99f1de8
Drop usage of ERR_GET_FUNC() 
This macro was dropped in OpenSSL 3.0 and has actually not been
providing a valid return code for some time.

Related: rhbz#1964837

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2021-08-07 15:14:33 -04:00
Stephen Gallagher
b2281c5ed5
Enable autorelease and autochangelog 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2021-08-07 15:10:12 -04:00
Stephen Gallagher
394e59c02f
Add changelog file 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2021-08-07 15:09:54 -04:00
Stephen Gallagher
0be38e21b7
Release 3.0.0 
Support for OpenSSL 3.0
Support for outputting named Diffie-Hellman parameter groups
Support for CentOS Stream 9

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2021-07-21 14:29:22 -04:00
Stephen Gallagher
c86262c8e4
Fixing incorrect license declaration 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2021-03-17 12:44:58 -04:00
Stephen Gallagher
743b33ac40
Updating to rebuild against the latest glibc 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2021-03-17 08:12:10 -04:00
Fedora Release Engineering
62d6ad35aa - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-01-27 20:59:31 +00:00
Fedora Release Engineering
f2c78d1acf - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-07-29 11:24:23 +00:00
Stephen Gallagher
b4e9110fa4
Drop upstreamed patch 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2020-06-23 14:24:56 -04:00
Stephen Gallagher
18d17a2fdd
Import the sources 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2020-06-23 14:17:57 -04:00
Stephen Gallagher
6c1d290dc9
Update to 2.6.2 
Handle very short and very long passphrases properly (fixes rhbz#1850183)

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2020-06-23 14:14:37 -04:00
Stephen Gallagher
4fdeb82a0f
Rebuild with corrected ELN macro definitions 
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2020-04-30 11:35:18 -04:00
Stephen Gallagher
a16d4e2460
Don't bother running clang-format in the RPM build 
Lengthen the test timeout so ARM tests pass

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
 2020-04-30 11:02:17 -04:00