commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2024-03-20 21:10:00
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.1905 (New)
Package is "cepces"
Wed Mar 20 21:10:00 2024 rev:10 rq:1159565 version:0.3.9
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2024-01-24
19:04:12.537061472 +0100
+++ /work/SRC/openSUSE:Factory/.cepces.new.1905/cepces.changes 2024-03-20
21:10:17.913027454 +0100
@@ -1,0 +2,7 @@
+Mon Mar 18 19:06:40 UTC 2024 - dmul...@suse.com
+
+- Update to version 0.3.9:
+ * Fix failure to parse DER encoded cert; (bsc#1196658).
+- Also disable selinux in 15.6, since it is still not supported.
+
+---
Old:
cepces-0.3.8.tar.bz2
New:
cepces-0.3.9.tar.bz2
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.GRulYB/_old 2024-03-20 21:10:18.817060674 +0100
+++ /var/tmp/diff_new_pack.GRulYB/_new 2024-03-20 21:10:18.817060674 +0100
@@ -21,7 +21,7 @@
%global logdir %{_localstatedir}/log/%{app_name}
Name: %{app_name}
-Version:0.3.8
+Version:0.3.9
Release:0%{?dist}
Summary:Certificate Enrollment through CEP/CES
@@ -32,7 +32,7 @@
Requires: %{app_name}-certmonger == %{version}
Requires: python3-%{app_name} == %{version}
-%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150600 || 0%{?suse_version} > 1500
Requires: (%{app_name}-selinux == %{version} if selinux-policy)
%endif
BuildRequires: fdupes
@@ -68,7 +68,7 @@
%{app_name} is an application for enrolling certificates through CEP and CES.
This package provides the certmonger integration.
-%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150600 || 0%{?suse_version} > 1500
%package selinux
Summary:SELinux support for %{app_name}
@@ -87,7 +87,7 @@
%build
%py3_build
-%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150600 || 0%{?suse_version} > 1500
# Build the SELinux module(s).
for SELINUXVARIANT in %{selinux_variants}; do
make -C selinux clean all
@@ -100,7 +100,7 @@
install -d -m 0700 %{buildroot}%{logdir}
-%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150600 || 0%{?suse_version} > 1500
# Install the SELinux module(s).
rm -fv selinux-files.txt
@@ -133,7 +133,7 @@
%fdupes %{buildroot}/%{python3_sitelib}/%{app_name}
-%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150600 || 0%{?suse_version} > 1500
%post selinux
for SELINUXVARIANT in %{selinux_variants}; do
%{_sbindir}/semodule -n -s ${SELINUXVARIANT} \
@@ -191,7 +191,7 @@
%dir %{_libexecdir}/certmonger
%{_libexecdir}/certmonger/%{app_name}-submit
-%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150600 || 0%{?suse_version} > 1500
%files selinux -f selinux-files.txt
%defattr(0644,root,root,0755)
%endif
++ _servicedata ++
--- /var/tmp/diff_new_pack.GRulYB/_old 2024-03-20 21:10:18.853061997 +0100
+++ /var/tmp/diff_new_pack.GRulYB/_new 2024-03-20 21:10:18.857062144 +0100
@@ -1,6 +1,6 @@
https://github.com/openSUSE/cepces.git
- 91447ecd6116440b606c797db139da55d6c7a3e6
+ 6abc53e7edff33cd07204c7cd10ac658c9f4db4c
(No newline at EOF)
++ cepces-0.3.8.tar.bz2 -> cepces-0.3.9.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.8/cepces/__init__.py
new/cepces-0.3.9/cepces/__init__.py
--- old/cepces-0.3.8/cepces/__init__.py 2024-01-22 16:27:47.0 +0100
+++ new/cepces-0.3.9/cepces/__init__.py 2024-03-18 20:03:50.0 +0100
@@ -23,7 +23,7 @@
__title__ = 'cepces'
__description__ = 'CEP/CES library.'
__url__ = 'https://github.com/openSUSE/cepces/'
-__version__ = '0.3.8'
+__version__ = '0.3.9'
__author__ = 'Daniel Uvehag'
__author_email__ = 'daniel.uve...@gmail.com'
__license__ = 'GPLv3'
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.8/cepces/core.py
new/cepces-0.3.9/cepces/core.py
--- old/cepces-0.3.8/cepces/core.py 2024-01-22 16:27:47.0 +0100
+++ new/cepces-0.3.9/cepces/core.py 2024-03-18 20:03:50.0 +0100
@@ -282,10 +282,17 @@
oid = x509.oid.AuthorityInformationAccessOID
# Load the certificate.
-cert = x509.load_pem_x509_certificate(
-data.encode(),
-default_backend(),
-)
+try:
+cert = x509
commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2022-12-02 13:12:08
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.1835 (New)
Package is "cepces"
Fri Dec 2 13:12:08 2022 rev:8 rq:1039334 version:0.3.7
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2022-10-25
11:18:57.277996642 +0200
+++ /work/SRC/openSUSE:Factory/.cepces.new.1835/cepces.changes 2022-12-02
13:12:16.369567299 +0100
@@ -1,0 +2,6 @@
+Thu Dec 1 14:44:33 UTC 2022 - David Mulder
+
+Release v0.3.7:
+- Make the openssl security level configurable
+
+---
Old:
cepces-0.3.6.tar.bz2
New:
cepces-0.3.7.tar.bz2
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.cbQGs2/_old 2022-12-02 13:12:16.937570402 +0100
+++ /var/tmp/diff_new_pack.cbQGs2/_new 2022-12-02 13:12:16.945570446 +0100
@@ -21,7 +21,7 @@
%global logdir %{_localstatedir}/log/%{app_name}
Name: %{app_name}
-Version:0.3.6
+Version:0.3.7
Release:0%{?dist}
Summary:Certificate Enrollment through CEP/CES
++ cepces-0.3.6.tar.bz2 -> cepces-0.3.7.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.6/bin/cepces-submit
new/cepces-0.3.7/bin/cepces-submit
--- old/cepces-0.3.6/bin/cepces-submit 2022-10-20 13:58:52.0 +0200
+++ new/cepces-0.3.7/bin/cepces-submit 2022-12-01 15:39:46.0 +0100
@@ -24,6 +24,7 @@
import sys
import traceback
import argparse
+import requests
from cepces.certmonger.core import Result
from cepces.certmonger.operation import Operation
from cepces.config import Configuration
@@ -62,6 +63,8 @@
# Load the configuration and instantiate a service.
config = Configuration.load(global_overrides=global_overrides,
krb5_overrides=krb5_overrides)
+if config.openssl_seclevel and config.openssl_seclevel.isnumeric():
+requests.packages.urllib3.util.ssl_.DEFAULT_CIPHERS =
'ALL:@SECLEVEL=%s' % config.openssl_seclevel
service = Service(config)
# Call the operation.
@@ -88,6 +91,7 @@
parser.add_argument('--keytab', help='Use the specified keytab')
parser.add_argument('--principals',
help='A list of principals to try when requesting a ticket')
+parser.add_argument('--openssl-seclevel', help='The openssl security
level')
args = parser.parse_args()
g_overrides = {}
if args.server is not None:
@@ -98,6 +102,8 @@
g_overrides['endpoint'] = endpoint
if args.poll_interval is not None:
g_overrides['poll_interval'] = args.poll_interval
+if args.openssl_seclevel is not None:
+g_overrides['openssl_seclevel'] = args.openssl_seclevel
k_overrides = {}
if args.keytab is not None:
k_overrides['keytab'] = args.keytab
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.6/cepces/__init__.py
new/cepces-0.3.7/cepces/__init__.py
--- old/cepces-0.3.6/cepces/__init__.py 2022-10-20 13:58:52.0 +0200
+++ new/cepces-0.3.7/cepces/__init__.py 2022-12-01 15:39:46.0 +0100
@@ -23,7 +23,7 @@
__title__ = 'cepces'
__description__ = 'CEP/CES library.'
__url__ = 'https://github.com/openSUSE/cepces/'
-__version__ = '0.3.6'
+__version__ = '0.3.7'
__author__ = 'Daniel Uvehag'
__author_email__ = 'daniel.uve...@gmail.com'
__license__ = 'GPLv3'
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.6/cepces/config.py
new/cepces-0.3.7/cepces/config.py
--- old/cepces-0.3.6/cepces/config.py 2022-10-20 13:58:52.0 +0200
+++ new/cepces-0.3.7/cepces/config.py 2022-12-01 15:39:46.0 +0100
@@ -55,7 +55,7 @@
'Certificate': SOAPAuth.TransportCertificateAuthentication,
}
-def __init__(self, endpoint, endpoint_type, cas, auth, poll_interval):
+def __init__(self, endpoint, endpoint_type, cas, auth, poll_interval,
openssl_seclevel):
super().__init__()
self._endpoint = endpoint
@@ -63,6 +63,7 @@
self._cas = cas
self._auth = auth
self._poll_interval = poll_interval
+self._openssl_seclevel = openssl_seclevel
@property
def endpoint(self):
@@ -89,6 +90,11 @@
"""Return the poll interval."""
return self._poll_interval
+@property
+def openssl_seclevel(self):
+"""Return the openssl security level."""
+return self._openssl_sec
commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2022-10-25 11:18:47
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.2275 (New)
Package is "cepces"
Tue Oct 25 11:18:47 2022 rev:7 rq:1030897 version:0.3.6
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2022-05-22
20:25:57.582134462 +0200
+++ /work/SRC/openSUSE:Factory/.cepces.new.2275/cepces.changes 2022-10-25
11:18:57.277996642 +0200
@@ -1,0 +2,22 @@
+Thu Oct 20 12:15:15 UTC 2022 - David Mulder
+
+Release v0.3.6:
+- Fix Bug #15 cepces.conf.dist: server should be pointed to actual CEP host
+- Replace old requests_kerberos with requests_gssapi
+- setup: Do not install example configs
+- setup: Respect the prefix the user specifies
+- Delete the spec file
+- Make Kerberos delegation configurable
+- Fix Bug #24 cepces-submit 'TypeError: option values must be strings'
+- Removed b755b56d25f3e54f8f15d9985fd0597b21c1051d.patch because
+ it is now upstream.
+
+---
+Wed Jun 01 18:58:29 UTC 2022 - David Mulder
+
+Release v0.3.5:
+- Added polling_interval which tells certmonger how long to wait in seconds
before retrying.
+- Implemented Certificate authentication method.
+- Python 3.10 compatible.
+
+---
Old:
b755b56d25f3e54f8f15d9985fd0597b21c1051d.patch
cepces-0.3.4.tar.bz2
New:
cepces-0.3.6.tar.bz2
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.EIoxI6/_old 2022-10-25 11:18:57.825997856 +0200
+++ /var/tmp/diff_new_pack.EIoxI6/_new 2022-10-25 11:18:57.833997874 +0200
@@ -21,14 +21,13 @@
%global logdir %{_localstatedir}/log/%{app_name}
Name: %{app_name}
-Version:0.3.4
+Version:0.3.6
Release:0%{?dist}
Summary:Certificate Enrollment through CEP/CES
License:GPL-3.0-or-later
URL:https://github.com/ufven/%{app_name}
Source0:%{name}-%{version}.tar.bz2
-Patch1:
https://github.com/openSUSE/cepces/pull/11/commits/b755b56d25f3e54f8f15d9985fd0597b21c1051d.patch
BuildArch: noarch
Requires: %{app_name}-certmonger == %{version}
@@ -47,12 +46,12 @@
BuildRequires: python3-cryptography >= 1.2
BuildRequires: python3-devel
BuildRequires: python3-requests
-BuildRequires: python3-requests-kerberos >= 0.9
+BuildRequires: python3-requests-gssapi
BuildRequires: python3-setuptools
Requires: python3-cryptography >= 1.2
Requires: python3-requests
-Requires: python3-requests-kerberos >= 0.9
+Requires: python3-requests-gssapi
%description -n python3-%{app_name}
%{app_name} is an application for enrolling certificates through CEP and CES.
@@ -83,7 +82,6 @@
%prep
%setup -q -n %{app_name}-%{version}
-%autopatch -p1
%build
%py3_build
++ cepces-0.3.4.tar.bz2 -> cepces-0.3.6.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.4/bin/cepces-submit
new/cepces-0.3.6/bin/cepces-submit
--- old/cepces-0.3.4/bin/cepces-submit 2021-07-19 16:14:02.0 +0200
+++ new/cepces-0.3.6/bin/cepces-submit 2022-10-20 13:58:52.0 +0200
@@ -83,17 +83,21 @@
choices=['Anonymous', 'Kerberos',
'UsernamePassword', 'Certificate'],
default='Kerberos')
+parser.add_argument('--poll_interval',
+help='Time in seconds before re-checking if the certificate has been
issued')
parser.add_argument('--keytab', help='Use the specified keytab')
parser.add_argument('--principals',
help='A list of principals to try when requesting a ticket')
args = parser.parse_args()
+g_overrides = {}
if args.server is not None:
-g_overrides = { 'server': args.server, 'auth': args.auth }
+g_overrides['server'] = args.server
+g_overrides['auth'] = args.auth
endpoint = 'https://%s/ADPolicyProvider_CEP_%s/service.svc/CEP' % \
(args.server, args.auth)
g_overrides['endpoint'] = endpoint
-else:
-g_overrides = {}
+if args.poll_interval is not None:
+g_overrides['poll_interval'] = args.poll_interval
k_overrides = {}
if args.keytab is not None:
k_overrides['keytab'] = args.keytab
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.4/cepces/__init__.py
new/cepces-0.3.6/cepces/__init__.py
--- old/cepces-0.3.4/cepces/__init__.py 2021-07-19 16:14:02.0 +0200
+++ new/cepces-0.3.6/cepces/__init__.py 2022-10
commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2022-05-22 20:25:56
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.1538 (New)
Package is "cepces"
Sun May 22 20:25:56 2022 rev:6 rq:977821 version:0.3.4
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2021-10-08
22:05:20.732589468 +0200
+++ /work/SRC/openSUSE:Factory/.cepces.new.1538/cepces.changes 2022-05-22
20:25:57.582134462 +0200
@@ -1,0 +2,5 @@
+Tue May 10 19:19:56 UTC 2022 - Dirk M??ller
+
+- add b755b56d25f3e54f8f15d9985fd0597b21c1051d.patch
+
+---
New:
b755b56d25f3e54f8f15d9985fd0597b21c1051d.patch
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.TV9iKm/_old 2022-05-22 20:25:58.174135333 +0200
+++ /var/tmp/diff_new_pack.TV9iKm/_new 2022-05-22 20:25:58.178135339 +0200
@@ -1,7 +1,7 @@
#
# spec file
#
-# Copyright (c) 2021 SUSE LLC
+# Copyright (c) 2022 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -28,6 +28,7 @@
License:GPL-3.0-or-later
URL:https://github.com/ufven/%{app_name}
Source0:%{name}-%{version}.tar.bz2
+Patch1:
https://github.com/openSUSE/cepces/pull/11/commits/b755b56d25f3e54f8f15d9985fd0597b21c1051d.patch
BuildArch: noarch
Requires: %{app_name}-certmonger == %{version}
@@ -82,6 +83,7 @@
%prep
%setup -q -n %{app_name}-%{version}
+%autopatch -p1
%build
%py3_build
++ b755b56d25f3e54f8f15d9985fd0597b21c1051d.patch ++
>From b755b56d25f3e54f8f15d9985fd0597b21c1051d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dirk=20M=C3=BCller?=
Date: Tue, 10 May 2022 18:18:32 +0200
Subject: [PATCH] Use Python 3.10 compatible import path
This should work with any python >= 3.0
---
cepces/xml/binding.py | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/cepces/xml/binding.py b/cepces/xml/binding.py
index 2749399..9928c1f 100644
--- a/cepces/xml/binding.py
+++ b/cepces/xml/binding.py
@@ -18,7 +18,7 @@
# pylint: disable=protected-access,too-few-public-methods,too-many-arguments
# pylint: disable=too-many-ancestors
"""Module containing XML bindings."""
-from collections import MutableSequence
+from collections.abc import MutableSequence
from xml.etree import ElementTree
import inspect
from abc import ABCMeta, abstractmethod
commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2021-10-08 22:04:58
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.2443 (New)
Package is "cepces"
Fri Oct 8 22:04:58 2021 rev:5 rq:923507 version:0.3.4
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2021-08-20
16:58:13.306841838 +0200
+++ /work/SRC/openSUSE:Factory/.cepces.new.2443/cepces.changes 2021-10-08
22:05:20.732589468 +0200
@@ -1,0 +2,15 @@
+Wed Oct 6 09:03:40 UTC 2021 - Fabian Vogt
+
+- Only install the selinux policy if necessary
+- Add missing dependency on the main package to the certmonger
+ subpackage
+- Use %license and move it to the common subpackage
+- Avoid bashisms
+- Fix file list for the python subpackage for 3.10+
+
+---
+Tue Oct 5 14:28:05 UTC 2021 - David Mulder
+
+- Also disable selinux in 15.4, since it is still not supported.
+
+---
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.oY8CmF/_old 2021-10-08 22:05:21.272590356 +0200
+++ /var/tmp/diff_new_pack.oY8CmF/_new 2021-10-08 22:05:21.276590363 +0200
@@ -31,10 +31,10 @@
BuildArch: noarch
Requires: %{app_name}-certmonger == %{version}
-%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
-Requires: %{app_name}-selinux == %{version}
-%endif
Requires: python3-%{app_name} == %{version}
+%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
+Requires: (%{app_name}-selinux == %{version} if selinux-policy)
+%endif
%description
%{app_name} is an application for enrolling certificates through CEP and CES.
@@ -60,13 +60,14 @@
%package certmonger
Summary:certmonger integration for %{app_name}
+Requires: %{name} == %{version}
Requires: certmonger
%description certmonger
%{app_name} is an application for enrolling certificates through CEP and CES.
This package provides the certmonger integration.
-%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
%package selinux
Summary:SELinux support for %{app_name}
@@ -85,7 +86,7 @@
%build
%py3_build
-%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
# Build the SELinux module(s).
for SELINUXVARIANT in %{selinux_variants}; do
make -C selinux clean all
@@ -98,7 +99,7 @@
install -d -m 0700 %{buildroot}%{logdir}
-%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
# Install the SELinux module(s).
rm -fv selinux-files.txt
@@ -129,7 +130,7 @@
sed -i 's/\/usr\/bin\/env python3/\/usr\/bin\/python3/g'
%{buildroot}%{_libexecdir}/certmonger/%{app_name}-submit
-%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
%post selinux
for SELINUXVARIANT in %{selinux_variants}; do
%{_sbindir}/semodule -n -s ${SELINUXVARIANT} \
@@ -155,14 +156,14 @@
%post certmonger
# Install the CA into certmonger.
-if [[ "$1" == "1" ]]; then
+if [ $1 -eq 1 ]; then
getcert add-ca -c %{app_name} \
-e %{_libexecdir}/certmonger/%{app_name}-submit >/dev/null || :
fi
%preun certmonger
# Remove the CA from certmonger, unless it's an upgrade.
-if [[ "$1" == "0" ]]; then
+if [ $1 -eq 0 ]; then
getcert remove-ca -c %{app_name} >/dev/null || :
fi
@@ -172,7 +173,6 @@
popd
%files
-%doc LICENSE
%doc README.rst
%dir %{_sysconfdir}/%{app_name}/
%config(noreplace) %{_sysconfdir}/%{app_name}/%{app_name}.conf
@@ -180,14 +180,15 @@
%dir %{logdir}
%files -n python3-%{app_name}
+%license LICENSE
%{python3_sitelib}/%{app_name}
-%{python3_sitelib}/%{app_name}-%{version}-py?.?.egg-info
+%{python3_sitelib}/%{app_name}-%{version}-py*.egg-info
%files certmonger
%dir %{_libexecdir}/certmonger
%{_libexecdir}/certmonger/%{app_name}-submit
-%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
+%if 0%{?sle_version} > 150400 || 0%{?suse_version} > 1500
%files selinux -f selinux-files.txt
%defattr(0644,root,root,0755)
%endif
commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2021-08-20 16:57:51
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.1899 (New)
Package is "cepces"
Fri Aug 20 16:57:51 2021 rev:4 rq:913201 version:0.3.4
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2021-07-20
15:40:08.689545430 +0200
+++ /work/SRC/openSUSE:Factory/.cepces.new.1899/cepces.changes 2021-08-20
16:58:13.306841838 +0200
@@ -1,0 +2,5 @@
+Thu Aug 19 14:39:17 UTC 2021 - David Mulder
+
+- Disable selinux where not supported; (jsc#SLE-18456).
+
+---
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.HG3oyF/_old 2021-08-20 16:58:13.882840962 +0200
+++ /var/tmp/diff_new_pack.HG3oyF/_new 2021-08-20 16:58:13.886840955 +0200
@@ -31,7 +31,9 @@
BuildArch: noarch
Requires: %{app_name}-certmonger == %{version}
+%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
Requires: %{app_name}-selinux == %{version}
+%endif
Requires: python3-%{app_name} == %{version}
%description
@@ -64,6 +66,7 @@
%{app_name} is an application for enrolling certificates through CEP and CES.
This package provides the certmonger integration.
+%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
%package selinux
Summary:SELinux support for %{app_name}
@@ -74,6 +77,7 @@
%description selinux
SELinux support for %{app_name}
+%endif
%prep
%setup -q -n %{app_name}-%{version}
@@ -81,17 +85,20 @@
%build
%py3_build
+%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
# Build the SELinux module(s).
for SELINUXVARIANT in %{selinux_variants}; do
make -C selinux clean all
mv -v selinux/%{app_name}.pp selinux/%{app_name}-${SELINUXVARIANT}.pp
done
+%endif
%install
%py3_install
install -d -m 0700 %{buildroot}%{logdir}
+%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
# Install the SELinux module(s).
rm -fv selinux-files.txt
@@ -103,6 +110,7 @@
echo %{_datadir}/selinux/${SELINUXVARIANT}/%{app_name}.pp >> \
selinux-files.txt
done
+%endif
# Install configuration files.
install -d %{buildroot}%{_sysconfdir}/%{app_name}
@@ -121,6 +129,7 @@
sed -i 's/\/usr\/bin\/env python3/\/usr\/bin\/python3/g'
%{buildroot}%{_libexecdir}/certmonger/%{app_name}-submit
+%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
%post selinux
for SELINUXVARIANT in %{selinux_variants}; do
%{_sbindir}/semodule -n -s ${SELINUXVARIANT} \
@@ -142,6 +151,7 @@
fi
done
fi
+%endif
%post certmonger
# Install the CA into certmonger.
@@ -177,7 +187,9 @@
%dir %{_libexecdir}/certmonger
%{_libexecdir}/certmonger/%{app_name}-submit
+%if 0%{?sle_version} > 150300 || 0%{?suse_version} > 1500
%files selinux -f selinux-files.txt
%defattr(0644,root,root,0755)
+%endif
%changelog
commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2021-07-20 15:39:25
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.2632 (New)
Package is "cepces"
Tue Jul 20 15:39:25 2021 rev:3 rq:907158 version:0.3.4
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2021-07-16
22:13:25.426541212 +0200
+++ /work/SRC/openSUSE:Factory/.cepces.new.2632/cepces.changes 2021-07-20
15:40:08.689545430 +0200
@@ -1,0 +2,6 @@
+Mon Jul 19 14:32:34 UTC 2021 - David Mulder
+
+- Fix configuration missing global section.
+- Add a test runner for executing unittests, and github CI.
+
+---
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.Ugl43h/_old 2021-07-20 15:40:09.177546303 +0200
+++ /var/tmp/diff_new_pack.Ugl43h/_new 2021-07-20 15:40:09.177546303 +0200
@@ -157,7 +157,9 @@
fi
%check
-%{__python3} setup.py test
+pushd tests
+%{__python3} ./runner.py
+popd
%files
%doc LICENSE
++ cepces-0.3.4.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.4/.github/workflows/ci.yml
new/cepces-0.3.4/.github/workflows/ci.yml
--- old/cepces-0.3.4/.github/workflows/ci.yml 1970-01-01 01:00:00.0
+0100
+++ new/cepces-0.3.4/.github/workflows/ci.yml 2021-07-19 16:14:02.0
+0200
@@ -0,0 +1,25 @@
+name: Run Python Tests
+on:
+ push:
+branches:
+ - master
+ pull_request:
+branches:
+ - master
+
+jobs:
+ build:
+runs-on: ubuntu-latest
+steps:
+ - uses: actions/checkout@v2
+ - name: Install Python 3
+uses: actions/setup-python@v1
+with:
+ python-version: 3.8
+ - name: Install dependencies
+run: |
+ sudo apt-get install libkrb5-dev
+ python3 -m pip install --upgrade pip
+ pip3 install -r requirements.txt
+ - name: Run tests
+run: pushd tests; python3 runner.py; popd
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.4/bin/cepces-submit
new/cepces-0.3.4/bin/cepces-submit
--- old/cepces-0.3.4/bin/cepces-submit 2021-07-14 21:44:47.0 +0200
+++ new/cepces-0.3.4/bin/cepces-submit 2021-07-19 16:14:02.0 +0200
@@ -60,8 +60,8 @@
else:
try:
# Load the configuration and instantiate a service.
-config = Configuration.load(global_overrides,
-krb5_overrides)
+config = Configuration.load(global_overrides=global_overrides,
+krb5_overrides=krb5_overrides)
service = Service(config)
# Call the operation.
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.4/cepces/wstep/service.py
new/cepces-0.3.4/cepces/wstep/service.py
--- old/cepces-0.3.4/cepces/wstep/service.py2021-07-14 21:44:47.0
+0200
+++ new/cepces-0.3.4/cepces/wstep/service.py2021-07-19 16:14:02.0
+0200
@@ -119,7 +119,7 @@
results.append(
Service.Response(
request_id=response.request_id,
-reference=response.token.token_reference.reference.uri,
+
reference=response.requested_token.token_reference.reference.uri,
),
)
@@ -167,7 +167,7 @@
results.append(
Service.Response(
request_id=response.request_id,
-reference=response.token.token_reference.reference.uri,
+
reference=response.requested_token.token_reference.reference.uri,
),
)
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.4/tests/cepces/__init__.py
new/cepces-0.3.4/tests/cepces/__init__.py
--- old/cepces-0.3.4/tests/cepces/__init__.py 2021-07-14 21:44:47.0
+0200
+++ new/cepces-0.3.4/tests/cepces/__init__.py 1970-01-01 01:00:00.0
+0100
@@ -1,17 +0,0 @@
-# -*- coding: utf-8 -*-
-#
-# This file is part of cepces.
-#
-# cepces is free software: you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation, either version 3 of the License, or
-# (at your option) any later version.
-#
-# cepces is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
commit cepces for openSUSE:Factory
Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cepces for openSUSE:Factory checked
in at 2021-07-16 22:12:52
Comparing /work/SRC/openSUSE:Factory/cepces (Old)
and /work/SRC/openSUSE:Factory/.cepces.new.2632 (New)
Package is "cepces"
Fri Jul 16 22:12:52 2021 rev:2 rq:906537 version:0.3.4
Changes:
--- /work/SRC/openSUSE:Factory/cepces/cepces.changes2021-07-08
22:49:53.243789196 +0200
+++ /work/SRC/openSUSE:Factory/.cepces.new.2632/cepces.changes 2021-07-16
22:13:25.426541212 +0200
@@ -1,0 +2,8 @@
+Mon Jul 12 16:24:51 UTC 2021 - David Mulder
+
+- v0.3.4: Allow overriding of parameters from the command line
+ - Removed upstreamed patch 0001-Added-Kerberos-delegation.patch
+ - Removed upstreamed patch
0001-Allow-overriding-of-server-auth-from-the-command-lin.patch
+ - Removed upstreamed patch 0001-add-SELinux-permissions-for-RHEL-6.patch
+
+---
Old:
0001-Added-Kerberos-delegation.patch
0001-Allow-overriding-of-server-auth-from-the-command-lin.patch
0001-add-SELinux-permissions-for-RHEL-6.patch
cepces-0.3.3.tar.bz2
New:
cepces-0.3.4.tar.bz2
Other differences:
--
++ cepces.spec ++
--- /var/tmp/diff_new_pack.czmTNA/_old 2021-07-16 22:13:25.934537623 +0200
+++ /var/tmp/diff_new_pack.czmTNA/_new 2021-07-16 22:13:25.938537594 +0200
@@ -1,5 +1,5 @@
#
-# spec file for package cepces
+# spec file
#
# Copyright (c) 2021 SUSE LLC
#
@@ -15,26 +15,24 @@
# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
+
%global app_name cepces
%global selinux_variants targeted
%global logdir %{_localstatedir}/log/%{app_name}
Name: %{app_name}
-Version:0.3.3
-Release:2%{?dist}
+Version:0.3.4
+Release:0%{?dist}
Summary:Certificate Enrollment through CEP/CES
License:GPL-3.0-or-later
URL:https://github.com/ufven/%{app_name}
Source0:%{name}-%{version}.tar.bz2
-Patch0: 0001-Allow-overriding-of-server-auth-from-the-command-lin.patch
-Patch1: 0001-add-SELinux-permissions-for-RHEL-6.patch
-Patch2: 0001-Added-Kerberos-delegation.patch
BuildArch: noarch
-Requires: python3-%{app_name} == %{version}
Requires: %{app_name}-certmonger == %{version}
Requires: %{app_name}-selinux == %{version}
+Requires: python3-%{app_name} == %{version}
%description
%{app_name} is an application for enrolling certificates through CEP and CES.
@@ -43,11 +41,11 @@
%package -n python3-%{app_name}
Summary:Python part of %{app_name}
-BuildRequires: python3-devel
-BuildRequires: python3-setuptools
BuildRequires: python3-cryptography >= 1.2
+BuildRequires: python3-devel
BuildRequires: python3-requests
BuildRequires: python3-requests-kerberos >= 0.9
+BuildRequires: python3-setuptools
Requires: python3-cryptography >= 1.2
Requires: python3-requests
@@ -79,9 +77,6 @@
%prep
%setup -q -n %{app_name}-%{version}
-%patch0 -p1
-%patch1 -p1
-%patch2 -p1
%build
%py3_build
++ _service ++
--- /var/tmp/diff_new_pack.czmTNA/_old 2021-07-16 22:13:25.970537368 +0200
+++ /var/tmp/diff_new_pack.czmTNA/_new 2021-07-16 22:13:25.970537368 +0200
@@ -1,8 +1,8 @@
-https://github.com/ufven/cepces.git
+https://github.com/openSUSE/cepces.git
git
-develop
+master
@PARENT_TAG@
v(.*)
\1
++ cepces-0.3.3.tar.bz2 -> cepces-0.3.4.tar.bz2 ++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/cepces-0.3.3/README.rst new/cepces-0.3.4/README.rst
--- old/cepces-0.3.3/README.rst 2020-05-27 17:22:09.0 +0200
+++ new/cepces-0.3.4/README.rst 2021-07-14 21:44:47.0 +0200
@@ -3,14 +3,13 @@
==
``cepces`` is an application for enrolling certificates through CEP and CES. It
-currently requires `certmonger`_ to operate, but may eventually be extended to
-a standalone application
+requires `certmonger`_ to operate.
Only simple deployments using Microsoft Active Directory Certificate Services
-has been tested.
+have been tested.
For more up-to-date information and further documentation, please visit the
-project's home page at: https://github.com/ufven/cepces
+project's home page at: https://github.com/openSUSE/cepces
Requirements
@@ -56,6 +55,13 @@
extension by either copying (or renaming) the file (i.e. ``cepces.conf.dist``
should be named ``cepces.conf``).
+Alternatively, some configuration options can be specified from the co
