Revisions of p11-kit
- new version 0.20.3 * Fix problems reinitializing managed modules after fork * Fix bad bookeeping when fail initializing one of the modules * Fix case where module would be unloaded while in use [#74919] * Remove assertions when module used before initialized [#74919] * Fix handling of mmap failure and mapping empty files [#74773] * Stable p11_kit_be_quiet() and p11_kit_be_loud() functions * Require automake 1.12 or later * Build fixes for Windows [#76594 #74149] - apply patches to avoid errors from certificates with invalid public key (fdo#82328, bnc#890908, trust-Dont-use-invalid-public-keys-for-looking-up-.patch, trust-Print-label-of-certificate-when-complaining-.patch)
- New version 0.20.2 * Fix bug where blacklist didn't affect extracted ca-anchors if the anchor and blacklist were not in the same trust path (regression) [fdo#73558] * Check for race in BasicConstraints stapled extension [fdo#69314] * Build fixes and cleanup
Automatic submission by obs-autosubmit
- trust: allow to also add openssl style hashes to pem-directory 0001-trust-allow-to-also-add-openssl-style-hashes-to-pem-d.diff (forwarded request 209621 from lnussel)
- upgrade to 0.20.1 which is 0.19 declared stable * Extract compat trust data after we've changes * Skip compat extraction if running as non-root * Better failure messages when removing anchors - new version 0.19.4 * 'trust anchor' now adds/removes certificate anchors * 'trust list' lists trust policy stuff * 'p11-kit extract' is now 'trust extract' * 'p11-kit extract-trust' is now 'trust extract-compat' * Workarounds for working on broken zfsonlinux.org [#68525] * Add --with-module-config parameter to the configure script [#68122] * Add support for removing stored PKCS#11 objects in trust module (forwarded request 198188 from lnussel)
- new version 0.19.3 * Fix up problems with automake testing * Fix a bunch of memory leaks in newly refactored code * Don't use _GNU_SOURCE and the unportability it brings * Add basic 'trust anchor' command to store a new anchor * Support for writing out trust token objects * Port to use CKA_PUBLIC_KEY_INFO and updated trust store spec * Add option to use freebl for hashing * Implement reloading of token data * Fix warnings and possible minor bugs higlighted by code scanners * Don't load configs in home directories when running setuid or setgid * Support treating ~/.config as $XDG_CONFIG_HOME * Use $XDG_DATA_HOME/pkcs11 as default user config directory * Use $TMPDIR instead of $TEMP while testing * Open files and fds with O_CLOEXEC * Abort initialization if a critical module fails to load * Don't use thread-unsafe functions: strerror, getpwuid * Fix p11_kit_space_strlen() result when empty string * Refactoring of where various components live (forwarded request 196078 from lnussel)
- fix 32bit provides of libnssckbi.so - repace p11-kit-extract-trust with update-ca-certificates (forwarded request 182281 from lnussel)
- provide libnssckbi.so to replace mozilla-nss-certs - add p11-kit-nss-trust subpackage that serves as drop-in replacement for mozilla-nss-certs (forwarded request 181779 from lnussel)
fate 314991, use p11-kit for system ca-certificate handling
Update to 0.18.2 (forwarded request 175643 from Zaitor)
Push GNOME 3.8.1 to Factory - mostly small bug fixes over the existing 3.8.0 we have
Update to 0.18.0 - Fix old bug references.. they are fdo bugs! (forwarded request 162621 from Zaitor)
Update to ver 0.17.5 (forwarded request 161675 from vuntz)
Pushing GNOME:Factory towards openSUSE:Factory
Pushing most G:F bits
Displaying revisions 21 - 40 of 46