53b870b7db
Fix: Cannot use SSL3 anymore
...
Resolves : #1592431
2018-08-14 16:11:47 +02:00
7b3fb1195a
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
...
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-07-13 15:07:42 +00:00
db6986970e
Build with LDAP_USE_NON_BLOCKING_TLS
...
The default bahviour should not change as the default timeout is
infinity.
Resolves : #1594928
2018-07-06 19:27:37 +02:00
8b7d2a395d
Remove unused leftover MozNSS Compat. Layer references (cont.)
...
A bit more for the before previous commmit 5411c84#1557967
2018-07-06 19:16:02 +02:00
15e6edc515
Perl 5.28 rebuild
2018-07-06 09:36:41 +02:00
5411c8463a
Remove unused leftover MozNSS Compat. Layer references
...
Related: #1557967
2018-07-04 16:14:00 +02:00
799c2121f4
Merge branch 'f28' into 'master' for linearity
2018-07-04 13:32:13 +02:00
a9731a320b
MozNSS Compat. Layer: Make log messages more clear
...
Resolves : #1598103
2018-07-04 13:07:08 +02:00
ff45e6ac8e
MozNSS Compat. Layer: Fix memleaks reported by valgrind
...
Resolves : #1595203
2018-06-29 17:37:56 +02:00
b7ad18970b
Perl 5.28 rebuild
2018-06-27 21:43:08 +02:00
44ef9ba558
MozNSS Compat. Layer: Fix typos, and spelling in the README file header
...
Resolves : #1564161
2018-04-05 16:09:24 +02:00
7150aca353
Rebase to version OpenLDAP 2.4.46
...
Resolves : #1559652
2018-03-27 18:46:56 +02:00
81afb5768a
Utilize system-wide crypto-policies
...
Resolves : #1483979
2018-03-05 09:48:07 +01:00
6f8a4c6436
Drop superfluous back-sql linking patch
...
This patch is not needed any more as we do not build with back-sql at
all.
Related: #1548676
2018-03-01 10:18:33 +01:00
cd7bdcf821
fix: openldap does not use Fedora build flags
...
- %configure introduces the correct flags, however we need* to set our
custom CFLAGS before the actual run of ./configure, thus we request
the flags explicitly using %set_build_flags
- dropping %{optflags} which is just a legacy version of
%{build_cflags} which is already included in $set_build_flags set
* ./configure plays with the flags, hence customizing the CFLAGS after
%configure does not have a desired effect
Resolves : #1548676
2018-03-01 10:13:54 +01:00
54acca337f
MozNSS Compat. Layer: CA certs extraction fail should be fatal
...
Resolves : #1550110
2018-02-28 19:24:21 +01:00
cd6ded4588
Bump release number
...
Related: #1270678 , #1537259
2018-02-21 17:36:13 +01:00
bdec46fdaf
TLS: Use system trusted CA store by default
...
Resolves : #1270678 , #1537259
2018-02-21 17:10:28 +01:00
44d9f0fe1b
Complete change: Disable TLSMC in F29+
...
- completes commit 60f1a08
2018-02-14 14:09:27 +01:00
ed8fb8d19b
systemd-units → systemd
...
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-10 18:52:08 +01:00
4d3fac9347
switch to %systemd_requires
...
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-10 18:51:55 +01:00
c358051be4
remove unneeded Requires(post)
...
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-10 18:51:00 +01:00
96650fcc56
Switch to %ldconfig_scriptlets
...
Reference: https://fedoraproject.org/wiki/Changes/Removing_ldconfig_scriptlets
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-10 18:45:53 +01:00
f08cb7ec48
don't call ldconfig in servers subacpakge
...
servers subpkg installs everything into private libdir, so no need to
call ldconfig (since there is no ld.so.conf for it).
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-10 18:44:53 +01:00
7472792967
remove obsolete Group tag
...
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-10 18:42:09 +01:00
60f1a0883e
disable TLSMC in F29+
...
It should not affect any active Fedora branches, but will save time in
future.
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-10 11:18:21 +01:00
e3677af8bb
Escape macros in %changelog
...
Reference: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/thread/Y2ZUKK2B7T2IKXPMODNF6HB2O5T5TS6H/
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
2018-02-09 09:05:20 +01:00
eff4749dd8
Drop TCP wrappers support
...
Resolves : #1531487
2018-02-07 18:24:53 +01:00
7264811847
MozNSS Compat. Layer: fix incorrect parsing of CACertDir
...
NSS DB type prefix was not taken into account at all. Due to this the
path might not have been stat-ed. Thus, last part of the path would
have been considered an NSS DB name prefix which would be incorrect.
(cherry picked from commit 7f41b4a1ffe61c03d65896d82fc6b72a2710c492)
(originally #1533955 )
Related: #1400570
2018-02-07 18:01:42 +01:00
8c29eeec6a
MozNSS Compat. Layer: fix PIN disclaimer not always shown
...
- ad #1516409#c7 case 1
(cherry picked from commit 6e2bfcadc598ed202cc77e34d5bfdea3d6ed8fbe)
(orginally #1516409 )
Related: #1400570
2018-02-07 18:01:16 +01:00
e6c4c72153
MozNSS Compat. Layer: fix recursive directory deletion
...
- ad #1516409#c7 case 2
(cherry picked from commit c66191c12b1bf372204cf3bf0b31759e7b0bd133)
(originally #1516409 )
Related: #1400570
2018-02-07 17:53:30 +01:00
716f3439ac
MozNSS Compat. Layer: Ensure consistency of a PEM dir before usage
...
+ Warn just before use of a PIN about key file extraction
(cherry picked from commit 856ec5d38c45ffe71774a4d86a36177d3c4ca372)
(originally #1516409 )
Related: #1400570
2018-02-07 17:36:46 +01:00
68ef0e0238
MozNSS Compat. Layer: Enable usage of NSS DB with PEM cert/key
...
+ Fix a possible invalid dereference (covscan)
(cherry picked from commit 7abf6fbae6df9bc7cfdd9d28cc52f7676a123d9b)
(originally #1525485 )
Related: #1400570
2018-02-07 17:28:16 +01:00
1a23456530
Rebuilt for switch to libxcrypt
2018-01-20 23:07:22 +01:00
60ece3dfc8
[tests] Add CI tests using the standard test interface
...
- runs upstream test cases
2018-01-03 13:37:25 +01:00
d181b0472d
Fix various MozNSS compatibility layer issues
...
+ Force write file with fsync to avoid race conditions
+ Always filestamp both sql and dbm NSS DB variants to not rely on default DB type prefix
+ Allow missing cert and key which is a valid usecase
+ Create extraction folder only in /tmp to simplify selinux rules
+ Fix Covscan issues
Related: #1400570
2017-12-06 15:13:49 +01:00
d8e109406e
Merge #2 `Do not call deleted script from %post section`
2017-11-14 14:24:32 +00:00
a33df4e168
Build with OpenSSL with MozNSS compatibility layer
...
Resolves : #1400570
2017-11-03 20:43:25 +01:00
031e2b95cc
Do not call deleted script from %post section
...
Commit b730f13ce0
2017-10-31 23:21:05 +01:00
50d73564a7
Add CI tests using the standard test interface
2017-10-16 10:49:32 +02:00
671ba8f100
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
2017-08-03 04:32:58 +00:00
00533e64f8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
2017-07-27 01:49:08 +00:00
3a8a7258ab
perl dependency renamed to perl-interpreter < https://fedoraproject.org/wiki/Changes/perl_Package_to_Install_Core_Modules >
2017-07-12 14:16:56 +02:00
35246b7090
Merge branch 'f26' to 'master'
...
- Rebase to version 2.4.45 (#1458081 )
* fixes CVE-2017-9287 (#1456712 , #1456713 )
- Update the 'sources' file with new SHA512 hashes
Related: #1458081
2017-07-07 17:17:49 +02:00
5c7cdc96e6
Rebase to version 2.4.45
...
Resolves : #1458081
2017-07-07 16:58:40 +02:00
872ea264fa
Change Requires to Recommends for nss-tools
...
Resolves : #1415086
2017-07-07 13:49:14 +02:00
7a68ca8d9c
Perl 5.26 rebuild
2017-06-04 14:18:11 +02:00
af30ccf247
Merge branch 'f25' into f26 for linearity
...
Related: #1435692
2017-03-31 17:22:53 +02:00
32c688fc27
NSS: Maximal TLS protocol version should be equal to NSS default
...
Related: #1435689
2017-03-31 17:08:11 +02:00
8ba6f5c9b7
Merge branch 'f25' into f26 for linearity
...
Conflicts:
openldap.spec
Resolves : #1435692
2017-03-30 14:55:47 +02:00
Matúš Honěk
Fedora Release Engineering
Petr Písař
Jitka Plesnikova
Igor Gnatenko
Björn Esser
Matus Honek
Guido Aulisi
Bruno Goncalves