[certmonger] Update to 0.73
Nalin Dahyabhai
nalin at fedoraproject.org
Mon Feb 24 15:18:56 UTC 2014
commit 42ca560e410c566faa5a11b17024335a551f93c4
Author: Nalin Dahyabhai <nalin at dahyabhai.net>
Date: Mon Feb 24 10:18:07 2014 -0500
Update to 0.73
- encode the friendlyName attribute in signing requests as a BMPString,
not as a PrintableString
- catch more filesystem permissions problems earlier (more of #996581)
- move the tmpfiles.d file from /etc/tmpfiles.d to %%{_tmpfilesdir},
where it belongs
- support generating requests and self-signing using DSA and EC keys
.gitignore | 2 ++
certmonger.spec | 47 +++++++++++++++++++++++++++++++++++++++++++++--
sources | 4 ++--
3 files changed, 49 insertions(+), 4 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index aa7278c..9250d62 100644
--- a/.gitignore
+++ b/.gitignore
@@ -60,3 +60,5 @@ certmonger-0.28.tar.gz
/certmonger-0.70.tar.gz.sig
/certmonger-0.71.2.tar.gz
/certmonger-0.71.2.tar.gz.sig
+/certmonger-0.73.tar.gz
+/certmonger-0.73.tar.gz.sig
diff --git a/certmonger.spec b/certmonger.spec
index d7db186..4599eea 100644
--- a/certmonger.spec
+++ b/certmonger.spec
@@ -19,7 +19,7 @@
%endif
Name: certmonger
-Version: 0.71.2
+Version: 0.73
Release: 1%{?dist}
Summary: Certificate status monitor and PKI enrollment client
@@ -195,13 +195,56 @@ exit 0
%{sysvinitdir}/certmonger
%endif
%if %{tmpfiles}
-%attr(0644,root,root) %config(noreplace) /etc/tmpfiles.d/certmonger.conf
+%attr(0644,root,root) %config(noreplace) %{_tmpfilesdir}/certmonger.conf
%endif
%if %{systemd}
%{_unitdir}/*
%endif
%changelog
+* Thu Feb 20 2014 Nalin Dahyabhai <nalin at redhat.com> 0.73-1
+- updates to 0.73
+ - getcert no longer claims to be stuck when a CA is unreachable,
+ because the daemon isn't actually stuck
+
+* Mon Feb 17 2014 Nalin Dahyabhai <nalin at redhat.com>
+- updates to 0.73
+ - also pass the key type to enrollment helpers in the environment as
+ a the value of "CERTMONGER_KEY_TYPE"
+
+* Mon Feb 10 2014 Nalin Dahyabhai <nalin at redhat.com>
+- move the tmpfiles.d file from /etc/tmpfiles.d to %%{_tmpfilesdir},
+ where it belongs
+
+* Mon Feb 10 2014 Nalin Dahyabhai <nalin at redhat.com>
+- updates for 0.73
+ - set the flag to encode EC public key parameters using named curves
+ instead of the default of all-the-details when using OpenSSL
+ - don't break when NSS supports secp521r1 but OpenSSL doesn't
+ - also pass the CA nickname to enrollment helpers in the environment as
+ a text value in "CERTMONGER_CA_NICKNAME", so they can use that value
+ when reading configuration settings
+ - also pass the SPKAC value to enrollment helpers in the environment as
+ a base64 value in "CERTMONGER_SPKAC"
+ - also pass the request's SubjectPublicKeyInfo value to enrollment helpers
+ in the environment as a base64 value in "CERTMONGER_SPKI"
+ - when generating signing requests using NSS, be more accommodating of
+ requested subject names that don't parse properly
+
+* Mon Feb 3 2014 Nalin Dahyabhai <nalin at redhat.com> 0.72-1
+- update to 0.72
+ - support generating DSA parameters and keys on sufficiently-new OpenSSL
+ and NSS
+ - support generating EC keys when OpenSSL and NSS support it, using key
+ size to select the curve to use from among secp256r1, secp384r1,
+ secp521r1 (which are the ones that are usually available, though
+ secp521r1 isn't always, even if the other two are)
+ - stop trying to cache public key parameters at all and instead cache public
+ key info properly
+ - encode the friendlyName attribute in signing requests as a BMPString,
+ not as a PrintableString
+ - catch more filesystem permissions problems earlier (more of #996581)
+
* Mon Jan 27 2014 Nalin Dahyabhai <nalin at redhat.com> 0.71-1
- check for cases where we fail to allocate memory while reading a request
or CA entry from disk (John Haxby)
diff --git a/sources b/sources
index d9ef01e..bfa1f64 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
-9e32d18ab4c9dc0abd15c25196c1afbf certmonger-0.71.2.tar.gz
-342b66ebe353cc47e2cb589a87c7e1ce certmonger-0.71.2.tar.gz.sig
+c5b06fba4e03cc8211c4e472108aba17 certmonger-0.73.tar.gz
+97a666e2f176904b724ec3e76f8d888b certmonger-0.73.tar.gz.sig
More information about the scm-commits
mailing list