Compare commits
No commits in common. "c8s" and "c9s" have entirely different histories.
|
@ -1 +1 @@
|
|||
SOURCES/xmlsec1-1.2.25.tar.gz
|
||||
/xmlsec1-1.2.29.tar.gz
|
||||
|
|
|
@ -1 +1 @@
|
|||
0ef1117b8d11da475fd8d842a1341c675e627ab9 SOURCES/xmlsec1-1.2.25.tar.gz
|
||||
dff1279c410817bf0fe5d3b7444fb72d5ad6b021 xmlsec1-1.2.29.tar.gz
|
||||
|
|
|
@ -1,55 +0,0 @@
|
|||
Please see this bug report for full details:
|
||||
https://github.com/lsh123/xmlsec/issues/164
|
||||
|
||||
commit e303e077fb3e13654ba711b2816ff1a94247338b
|
||||
Author: lsh123 <aleksey@aleksey.com>
|
||||
Date: Wed Apr 11 17:13:43 2018 -1000
|
||||
|
||||
Add missing return(-1). (#165)
|
||||
|
||||
Fixed issue #164. All other crypto libraries are ok.
|
||||
|
||||
diff --git a/src/openssl/x509.c b/src/openssl/x509.c
|
||||
index 15fe70db..b98e62d1 100644
|
||||
--- a/src/openssl/x509.c
|
||||
+++ b/src/openssl/x509.c
|
||||
@@ -870,6 +870,7 @@ xmlSecOpenSSLX509DataNodeRead(xmlSecKeyDataPtr data, xmlNodePtr node, xmlSecKeyI
|
||||
xmlSecInternalError2("xmlSecOpenSSLX509CertificateNodeRead",
|
||||
xmlSecKeyDataGetName(data),
|
||||
"node=%s", xmlSecErrorsSafeString(xmlSecNodeGetName(cur)));
|
||||
+ return(-1);
|
||||
}
|
||||
} else if(xmlSecCheckNodeName(cur, xmlSecNodeX509SubjectName, xmlSecDSigNs)) {
|
||||
ret = xmlSecOpenSSLX509SubjectNameNodeRead(data, cur, keyInfoCtx);
|
||||
@@ -877,6 +878,7 @@ xmlSecOpenSSLX509DataNodeRead(xmlSecKeyDataPtr data, xmlNodePtr node, xmlSecKeyI
|
||||
xmlSecInternalError2("xmlSecOpenSSLX509SubjectNameNodeRead",
|
||||
xmlSecKeyDataGetName(data),
|
||||
"node=%s", xmlSecErrorsSafeString(xmlSecNodeGetName(cur)));
|
||||
+ return(-1);
|
||||
}
|
||||
} else if(xmlSecCheckNodeName(cur, xmlSecNodeX509IssuerSerial, xmlSecDSigNs)) {
|
||||
ret = xmlSecOpenSSLX509IssuerSerialNodeRead(data, cur, keyInfoCtx);
|
||||
@@ -884,6 +886,7 @@ xmlSecOpenSSLX509DataNodeRead(xmlSecKeyDataPtr data, xmlNodePtr node, xmlSecKeyI
|
||||
xmlSecInternalError2("xmlSecOpenSSLX509IssuerSerialNodeRead",
|
||||
xmlSecKeyDataGetName(data),
|
||||
"node=%s", xmlSecErrorsSafeString(xmlSecNodeGetName(cur)));
|
||||
+ return(-1);
|
||||
}
|
||||
} else if(xmlSecCheckNodeName(cur, xmlSecNodeX509SKI, xmlSecDSigNs)) {
|
||||
ret = xmlSecOpenSSLX509SKINodeRead(data, cur, keyInfoCtx);
|
||||
@@ -891,6 +894,7 @@ xmlSecOpenSSLX509DataNodeRead(xmlSecKeyDataPtr data, xmlNodePtr node, xmlSecKeyI
|
||||
xmlSecInternalError2("xmlSecOpenSSLX509SKINodeRead",
|
||||
xmlSecKeyDataGetName(data),
|
||||
"node=%s", xmlSecErrorsSafeString(xmlSecNodeGetName(cur)));
|
||||
+ return(-1);
|
||||
}
|
||||
} else if(xmlSecCheckNodeName(cur, xmlSecNodeX509CRL, xmlSecDSigNs)) {
|
||||
ret = xmlSecOpenSSLX509CRLNodeRead(data, cur, keyInfoCtx);
|
||||
@@ -898,6 +902,7 @@ xmlSecOpenSSLX509DataNodeRead(xmlSecKeyDataPtr data, xmlNodePtr node, xmlSecKeyI
|
||||
xmlSecInternalError2("xmlSecOpenSSLX509CRLNodeRead",
|
||||
xmlSecKeyDataGetName(data),
|
||||
"node=%s", xmlSecErrorsSafeString(xmlSecNodeGetName(cur)));
|
||||
+ return(-1);
|
||||
}
|
||||
} else if((keyInfoCtx->flags & XMLSEC_KEYINFO_FLAGS_X509DATA_STOP_ON_UNKNOWN_CHILD) != 0) {
|
||||
/* laxi schema validation: ignore unknown nodes */
|
|
@ -0,0 +1,6 @@
|
|||
--- !Policy
|
||||
product_versions:
|
||||
- rhel-9
|
||||
decision_context: osci_compose_gate
|
||||
rules:
|
||||
- !PassingTestCaseRule {test_case_name: osci.brew-build.tier0.functional}
|
|
@ -0,0 +1 @@
|
|||
SHA512 (xmlsec1-1.2.29.tar.gz) = 07c3012179da4392f0a9d41a51ed51d692ca8b491310488b955d5fef0637f104d3f82374754b0ef175fadc663a8ca8c996178198c5dd77b3a8b34393d1482e4d
|
|
@ -0,0 +1 @@
|
|||
1
|
|
@ -0,0 +1,5 @@
|
|||
---
|
||||
standard-inventory-qcow2:
|
||||
qemu:
|
||||
m: 3G
|
||||
smp: 2
|
|
@ -0,0 +1,12 @@
|
|||
#!/bin/bash
|
||||
|
||||
export GIT_SSL_NO_VERIFY=true
|
||||
git clone https://github.com/latchset/federation_testing.git
|
||||
|
||||
cd federation_testing
|
||||
if [ ! -d /tmp/artifacts ]; then
|
||||
mkdir -p /tmp/artifacts
|
||||
fi
|
||||
|
||||
./setup.sh
|
||||
./test_xmlsec.sh
|
|
@ -0,0 +1,12 @@
|
|||
- hosts: localhost
|
||||
roles:
|
||||
- role: standard-test-basic
|
||||
tags:
|
||||
- classic
|
||||
tests:
|
||||
- mod_auth_mellon:
|
||||
dir: scripts
|
||||
run: ./run_tests.sh
|
||||
required_packages:
|
||||
- git
|
||||
|
|
@ -1,10 +1,11 @@
|
|||
Summary: Library providing support for "XML Signature" and "XML Encryption" standards
|
||||
Name: xmlsec1
|
||||
Version: 1.2.25
|
||||
Release: 4%{?dist}%{?extra_release}
|
||||
Version: 1.2.29
|
||||
Release: 9%{?dist}%{?extra_release}
|
||||
License: MIT
|
||||
Source0: http://www.aleksey.com/xmlsec/download/xmlsec1-%{version}.tar.gz
|
||||
Source0: https://www.aleksey.com/xmlsec/download/xmlsec1-%{version}.tar.gz
|
||||
URL: http://www.aleksey.com/xmlsec/
|
||||
BuildRequires: make
|
||||
BuildRequires: pkgconfig(libxml-2.0) >= 2.8.0
|
||||
BuildRequires: pkgconfig(libxslt) >= 1.0.20
|
||||
BuildRequires: pkgconfig(openssl) >= 1.0.0
|
||||
|
@ -19,8 +20,6 @@ BuildRequires: automake
|
|||
BuildRequires: gettext-devel
|
||||
BuildRequires: libtool
|
||||
|
||||
Patch1: xmlSecOpenSSLX509DataNodeRead-error.patch
|
||||
|
||||
%description
|
||||
XML Security Library is a C library based on LibXML2 and OpenSSL.
|
||||
The library was created with a goal to support major XML security
|
||||
|
@ -103,11 +102,10 @@ Libraries, includes, etc. for developing XML Security applications with NSS.
|
|||
|
||||
%prep
|
||||
%setup -q
|
||||
%patch1 -p1
|
||||
|
||||
%build
|
||||
autoreconf -vfi
|
||||
%configure --disable-static
|
||||
%configure --disable-static --disable-md5 --disable-sha1
|
||||
sed -i 's|^hardcode_libdir_flag_spec=.*|hardcode_libdir_flag_spec=""|g' libtool
|
||||
sed -i 's|^runpath_var=LD_RUN_PATH|runpath_var=DIE_RPATH_DIE|g' libtool
|
||||
%make_build V=1
|
||||
|
@ -137,9 +135,7 @@ mv %{buildroot}%{_docdir}/xmlsec1/* __tmp_doc
|
|||
%{_bindir}/xmlsec1-config
|
||||
%dir %{_includedir}/xmlsec1
|
||||
%dir %{_includedir}/xmlsec1/xmlsec
|
||||
%dir %{_includedir}/xmlsec1/xmlsec/private
|
||||
%{_includedir}/xmlsec1/xmlsec/*.h
|
||||
%{_includedir}/xmlsec1/xmlsec/private/*.h
|
||||
%{_libdir}/libxmlsec1.so
|
||||
%{_libdir}/pkgconfig/xmlsec1.pc
|
||||
%{_libdir}/xmlsec1Conf.sh
|
||||
|
@ -180,6 +176,50 @@ mv %{buildroot}%{_docdir}/xmlsec1/* __tmp_doc
|
|||
%{_libdir}/pkgconfig/xmlsec1-nss.pc
|
||||
|
||||
%changelog
|
||||
* Tue Aug 10 2021 Mohan Boddu <mboddu@redhat.com> - 1.2.29-9
|
||||
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
|
||||
Related: rhbz#1991688
|
||||
|
||||
* Wed Jul 28 2021 Florian Weimer <fweimer@redhat.com> - 1.2.29-8
|
||||
- Rebuild to pick up OpenSSL 3.0 Beta ABI (#1984097)
|
||||
|
||||
* Thu Jun 17 2021 Jakub Hrozek <jhrozek@redhat.com> - 1.2.29-7
|
||||
- compile without sha1 and md5
|
||||
- Resolves: rhbz#1936682 - xmlsec1 implements and/or uses the deprecated
|
||||
SHA-1 algorithm by default
|
||||
|
||||
* Wed Jun 16 2021 Mohan Boddu <mboddu@redhat.com> - 1.2.29-6
|
||||
- Rebuilt for RHEL 9 BETA for openssl 3.0
|
||||
Related: rhbz#1971065
|
||||
|
||||
* Thu Jun 3 2021 Jakub Hrozek <jhrozek@redhat.com> - 1.2.29-5
|
||||
- Rebuilt for OpenSSL3
|
||||
- Related: rhbz#1962052 - lasso: Port to OpenSSL 3.0
|
||||
|
||||
* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 1.2.29-4
|
||||
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
|
||||
|
||||
* Thu Jan 28 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1.2.29-3
|
||||
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
|
||||
|
||||
* Wed Jul 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.2.29-2
|
||||
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
|
||||
|
||||
* Wed Jan 29 2020 Caolán McNamara <caolanm@redhat.com> - 1.2.29-1
|
||||
- New upstream release
|
||||
|
||||
* Sat Jul 27 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.2.27-3
|
||||
- Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
|
||||
|
||||
* Sun Feb 03 2019 Fedora Release Engineering <releng@fedoraproject.org> - 1.2.27-2
|
||||
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
|
||||
|
||||
* Tue Oct 23 2018 Simo Sorce <simo@redhat.com> - 1.2.27-1
|
||||
- New upstream release
|
||||
|
||||
* Sat Jul 14 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.2.25-5
|
||||
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
|
||||
|
||||
* Thu Apr 12 2018 John Dennis <jdennis@redhat.com> - 1.2.25-4
|
||||
- Resolves: rhbz#1566748
|
||||
xmlSecOpenSSLX509DataNodeRead fails to return error
|
Loading…
Reference in New Issue