tog-pegasus

OpenPegasus WBEM Services for Linux

Go to file

Troy Dawson 870d6465d2 Bump release for October 2024 mass rebuild: Resolves: RHEL-64018		2024-10-29 09:16:35 -07:00
.fmf	Related: RHELMISC-3914 - add gating.yaml file	2024-08-20 15:13:53 +02:00
plans	Related: RHELMISC-3914 - add gating.yaml file	2024-08-20 15:13:53 +02:00
.gitignore	Update to upstream version 2.12.1	2013-03-31 15:40:32 +01:00
access.conf	port from RHEL-4; upgrade to 2.5	2005-10-03 17:56:03 +00:00
add-riscv64-support.patch	Add riscv64 support	2024-03-01 13:49:44 +00:00
cimprovagt-wrapper.sh	Add cimprovagt wrapper for possibility of confining providers in SELinux, update README.RedHat.Security accordingly, add provider specific wrapper example	2012-12-18 13:43:09 +01:00
cmpiOSBase_OperatingSystemProvider-cimprovagt.example	Add cimprovagt wrapper for possibility of confining providers in SELinux, update README.RedHat.Security accordingly, add provider specific wrapper example	2012-12-18 13:43:09 +01:00
gating.yaml	Related: RHELMISC-3914 - add gating.yaml file	2024-08-20 15:13:53 +02:00
generate-certs	Move SSL certificates to more convenient place	2016-03-17 12:29:54 +01:00
pegasus_arch_alternatives	Port to ppc64le architecture	2014-03-18 12:07:38 +01:00
pegasus_rpm_build_env.sh	Port to ppc64le architecture	2014-03-18 12:07:38 +01:00
pegasus-2.5.1-pam-wbem.patch	- Use password-auth common PAM configuration instead of system-auth	2009-09-16 18:59:02 +00:00
pegasus-2.5.1-warnings.patch	fix bug 190432; fix upstream bugs 4955 4956 4968 4978 4983 4984 4986 5017	2006-05-03 00:13:59 +00:00
pegasus-2.7.0-PIE.patch	Update to upstream version 2.11.0	2011-05-19 15:50:06 +02:00
pegasus-2.7.0-snmp-tests.patch	Add snmp tests to the -test rpm and enable them, configure snmptrapd in test setup phase	2015-05-19 12:59:14 +02:00
pegasus-2.9.0-cmpi-provider-lib.patch	Update to upstream version 2.11.0	2011-05-19 15:50:06 +02:00
pegasus-2.9.0-local-or-remote-auth.patch	Update to upstream version 2.14.1	2015-04-08 13:11:12 +02:00
pegasus-2.9.0-no-rpath.patch	Update to upstream version 2.12.0	2012-10-09 11:22:20 +02:00
pegasus-2.9.0-redhat-config.patch	Fix setupSDK in -devel, Use Experimental DMTF CIM schema version 2.38.0	2015-05-28 10:14:33 +02:00
pegasus-2.9.0-sparc.patch	Update to upstream version 2.13.0	2013-09-03 12:30:53 +02:00
pegasus-2.9.1-getpagesize.patch	Update to upstream version 2.9.2, Cleanup the spec file, use upstream Makefile	2010-11-03 15:15:38 +01:00
pegasus-2.10.0-dont-strip.patch	Update to upstream version 2.14.1	2015-04-08 13:11:12 +02:00
pegasus-2.10.0-sparc-posix-lock.patch	Update to upstream version 2.13.0	2013-09-03 12:30:53 +02:00
pegasus-2.12.0-cimmofl-allow-experimental.patch	Update to upstream version 2.14.1	2015-04-08 13:11:12 +02:00
pegasus-2.12.0-empty_arrays.patch	Update to upstream version 2.14.1	2015-04-08 13:11:12 +02:00
pegasus-2.12.0-null_value.patch	Fix CMPI enumGetNext function to change CMPI Data state from default CMPI_nullValue to CMPI_goodValue when it finds and returns next instance correctly, Enable processing of ExecQuery operations	2012-10-24 14:16:56 +02:00
pegasus-2.12.0-schema-version-and-includes.patch	Update to upstream version 2.14.1	2015-04-08 13:11:12 +02:00
pegasus-2.13.0-enable-subscriptions-for-nonprivileged-users.patch	Allow unprivileged users to subscribe to indications, Remove packages which are part of the minimum build environment from BR	2014-01-08 10:09:14 +01:00
pegasus-2.13.0-gcc5-build.patch	Fix build fail with gcc5	2015-02-10 15:42:33 +01:00
pegasus-2.14.1-add-pegwsmserver-to-ldd-libs.patch	Fix FTBFS, use make macros	2020-11-26 13:27:22 +01:00
pegasus-2.14.1-build-fixes-2.patch	Fix build issues, reflect disabling of DES in net-snmp	2021-06-23 10:31:19 +02:00
pegasus-2.14.1-build-fixes.patch	Update to upstream version 2.14.1	2015-04-08 13:11:12 +02:00
pegasus-2.14.1-cimconfig-man-page-fixes.patch	Add manpage for repupgrade, fixes in cimconfig manapage	2015-09-21 10:02:11 +02:00
pegasus-2.14.1-crypto-policy-compliance.patch	Comply with Fedora crypto policy	2020-06-25 15:20:21 +02:00
pegasus-2.14.1-fix-setup-sdk-ppc64le.patch	Fix setupSDK in -devel for ppc64le	2015-10-06 15:30:20 +02:00
pegasus-2.14.1-fix-setup-sdk.patch	Fix setupSDK in -devel, Use Experimental DMTF CIM schema version 2.38.0	2015-05-28 10:14:33 +02:00
pegasus-2.14.1-fix-Wreserved-user-defined-literal.patch	Fix -Wreserved-user-defined-literal warnings	2020-03-25 04:23:21 +00:00
pegasus-2.14.1-openssl-1.1-fix.patch	Fix FTBFS because of openssl-1.1	2017-03-01 13:06:42 +01:00
pegasus-2.14.1-snmp-disable-des.patch	Fix build issues, reflect disabling of DES in net-snmp	2021-06-23 10:31:19 +02:00
pegasus-2.14.1-snmpv3-trap.patch	Fix sending of SNMPv3 traps	2015-05-26 10:18:11 +02:00
pegasus-2.14.1-ssl-cert-path.patch	Move SSL certificates to more convenient place	2016-03-17 12:29:54 +01:00
pegasus-2.14.1-ssl-include.patch	Add missing ssl.h include	2015-05-19 14:37:43 +02:00
pegasus-2.14.1-tesid.patch	Remove Beaker conflicting env variable from benchmark tests	2015-10-12 14:33:12 +02:00
README.RedHat.Security	Add cimprovagt wrapper for possibility of confining providers in SELinux, update README.RedHat.Security accordingly, add provider specific wrapper example	2012-12-18 13:43:09 +01:00
README.RedHat.SSL	Move SSL certificates to more convenient place	2016-03-17 12:29:54 +01:00
repupgrade.1.gz	Add manpage for repupgrade, fixes in cimconfig manapage	2015-09-21 10:02:11 +02:00
rpm_build_env	Port to ppc64le architecture	2014-03-18 12:07:38 +01:00
rpminspect.yaml	Fix requires, add rpminspect.yaml	2024-09-02 12:55:24 +02:00
snmptrapd.conf	Add snmp tests to the -test rpm and enable them, configure snmptrapd in test setup phase	2015-05-19 12:59:14 +02:00
sources	Update to upstream version 2.14.1	2015-04-08 13:11:12 +02:00
tog-pegasus.service	Wait for the slpd.service in the systemd unit file	2014-03-12 14:59:51 +01:00
tog-pegasus.spec	Bump release for October 2024 mass rebuild:	2024-10-29 09:16:35 -07:00
tog-pegasus.sysusers	Use systemd-sysusers for the 'pegasus' user and group creation	2022-08-02 14:55:39 +02:00
tog-pegasus.tmpfiles	Fix tmpfiles path	2020-02-27 15:39:52 +01:00

README.RedHat.SSL

              Red Hat SSL configuration for tog-pegasus
              ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

   The Red Hat tog-pegasus package is built with support for SSL
   (the Secure Socket Layer).
   Note: the upstream documentation for SSL is located here:
   /usr/share/doc/tog-pegasus/PegasusSSLGuidelines.htm
   However, because the upstream documentation for SSL is not up-to-date
   (it was last updated in March, 2006, around the time of the
   OpenPegasus-2.5.1 release), nor accurate, we are providing this short
   description of how to configure SSL, as well as how it should be used.

 Hard-Coded Build-Time Constants:
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

   Here is the list of constants which are hard-coded during build time:

   PEGASUS_CONFIG_DIR = /etc/Pegasus

   PEGASUS_PEM_DIR = /etc/pki/Pegasus

   PEGASUS_SSL_KEY_FILE = file.pem
   PEGASUS_SSL_KEY_FILE_PATH = $(PEGASUS_PEM_DIR)/$(PEGASUS_SSL_KEY_FILE)
                  (= /etc/pki/Pegasus/file.pem)
   o Contains the private key for the CIM Server SSL Certificate.

   PEGASUS_SSL_CERT_FILE = server.pem
   PEGASUS_SSL_CERT_FILE_PATH = $(PEGASUS_PEM_DIR)/$(PEGASUS_SSL_CERT_FILE)
                             (= /etc/pki/Pegasus/server.pem)
   o Contains the CIM Server SSL Certificate.

   PEGASUS_SSL_TRUSTSTORE = client.pem
   PEGASUS_SSL_CLIENT_TRUSTSTORE = $(PEGASUS_PEM_DIR)/$(PEGASUS_SSL_TRUSTSTORE)
                                (= /etc/pki/Pegasus/client.pem)
   PEGASUS_SSL_SERVER_TRUSTSTORE = $(PEGASUS_PEM_DIR)/cimserver_trust
                                (= /etc/pki/Pegasus/cimserver_trust)
   o Specifies the location of the OpenSSL truststore. Consistent with the
     OpenSSL implementation, a truststore can be either a file or directory.
     If the truststore is a directory, then all certificates within the
     directory are considered trusted.

   PEGASUS_SSL_SERVER_CRL = $(PEGASUS_PEM_DIR)/crl
                         (= /etc/pki/Pegasus/crl)
   o This is where the CRL (Certificate Revocation List) store resides.

 Tips Following Package Installation:
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

   o CIM Server default SSL certificates are generated when you run the
     tog-pegasus daemon (for example, by issuing the command
     "systemctl start tog-pegasus") for the first time, which includes the
     following files, which are created in /etc/pki/Pegasus: ca.crt, ca.srl,
     client.pem, file.pem, server.pem and in /etc/Pegasus: ssl-ca.cnf,
     ssl-service.cnf.
     Important: simply running the "cimserver" binary (/usr/sbin/cimserver)
     does NOT create the certificates or abovementioned files.
     Note: if you want to use your own certificates, simply overwrite the ones
     in /etc/pki/Pegasus.

   o to enable/disable HTTPS port 5989 (the official WBEM secure port),
     use cimconfig.

   o the wbemcli command (from the sblim-wbemcli package)
     uses /etc/pki/Pegasus/client.pem by default (see man wbemcli).