[ol7_u7_base] gssproxy-0.7.0-26.el7.aarch64

Name:	gssproxy
Version:	0.7.0
Release:	26.el7
Architecture:	aarch64
Group:	System Environment/Libraries
Size:	282001
License:	MIT
RPM:	gssproxy-0.7.0-26.el7.aarch64.rpm
Source RPM:	gssproxy-0.7.0-26.el7.src.rpm
Build Date:	Mon Jun 10 2019
Build Host:	ca-buildarm02.us.oracle.com
Vendor:	Oracle America
URL:	https://pagure.io/gssproxy
Summary:	GSSAPI Proxy
Description:	A proxy for GSSAPI credential handling

Changelog (Show File list) (Show related packages)

Wed May 01 2019 Robbie Harwood <rharwood@redhat.com> 0.7.0-26

- Avoid uninitialized free when allocating buffers
- Resolves: #1699331

Tue Apr 30 2019 Robbie Harwood <rharwood@redhat.com> 0.7.0-25

- Fix explicit NULL deref on some enctypes
- Resolves: #1699331

Mon Mar 18 2019 Robbie Harwood <rharwood@redhat.com> 0.7.0-24
```
- Add a safety timeout to epoll
- Resolves: #1687899
```

Mon Dec 17 2018 Robbie Harwood <rharwood@redhat.com> 0.7.0-23

- Use pthread keys for thread local storage
- Resolves: #1618375

Tue Dec 11 2018 Robbie Harwood <rharwood@redhat.com> 0.7.0-22
```
- Add hack to support read-only root
- Resolves: #1542567
```

Fri Jun 08 2018 Robbie Harwood <rharwood@redhat.com> 0.7.0-21

- Always choose highest requested debug level
- Resolves: #1505741

Fri Apr 27 2018 Robbie Harwood <rharwood@redhat.com> 0.7.0-20
```
- Clean up debug man page + behavior
- Resolves: #1554249
```
Fri Apr 27 2018 Robbie Harwood <rharwood@redhat.com> 0.7.0-19
```
- Always use the encype we selected
- Resolves: #1549684
```

Fri Apr 27 2018 Robbie Harwood <rharwood@redhat.com> 0.7.0-18

- Don't leak mech_type when CONTINUE_NEEDED from init_sec_context
- Resolves: #1553819

Wed Dec 13 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-17

- Conditionally reload kernel interface on SIGHUP
- Resolves: #1507817

Tue Dec 12 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-16
```
- Backport epoll() logic
- Resolves: #1507817
```

Wed Dec 06 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-15

- Properly initialize ccaches before storing into them
- Resolves: #1488629

Fri Dec 01 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-14

- Properly locate credentials in collection caches in mechglue
- Resolves: #1488629

Tue Oct 31 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-13
```
- Handle outdated encrypted ccaches
- Resolves: #1488629
```
Tue Oct 31 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-12
```
- Handle outdated encrypted ccaches
- Resolves: #1488629
```

Mon Oct 30 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-11

- Fix error message handling in gp_config_from_dir()
- Resolves: #1458913

Fri Oct 27 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-10

- Fix concurrency issue around server socket handling
- Resolves: #1462974

Tue Oct 17 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-9

- Log useful warning and merge when config file has duplicate sections
- Resolves: #1458913

Mon Oct 02 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-8

- Add Conflicts: line for old selinux-policy
- Resolves: #1458850

Thu Sep 21 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-7

- Backport NFS-related gssproxy.service changes
- Resolves: #1326440

Mon Sep 11 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-6

- Fix segfault when no config files are present
- Resolves: #1451255

Thu Aug 17 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-5
```
- Backport hardening improvements
- Resolves: #1462974
```

Wed May 31 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-4

- Make proc file failure loud but nonfatal
- Resolves: #1449238

Tue Mar 28 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-3

- Stop shipping NFS server snippet (nfs-utils takes it instead)
- Resolves: #1379836

Tue Mar 14 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-2

- Fix credential handling with mod_auth_gssapi that we broke
- Resolves: #1379836

Fri Mar 10 2017 Robbie Harwood <rharwood@redhat.com> 0.7.0-1
```
- New upstream version - 0.7.0
- Resolves: #1379836
```
Tue Feb 28 2017 Robbie Harwood <rharwood@redhat.com> 0.6.2-4
```
- Include fixes for NULL-termination
- Resolves: #1379836
```
Thu Feb 23 2017 Robbie Harwood <rharwod@redhat.com> 0.6.2-3
```
- Document debug_level option
- Resolves: #1379836
```
Tue Feb 21 2017 Robbie Harwood <rharwood@redhat.com> 0.6.2-2
```
- Enable running the test suite
- Resolves: #1379836
```

Thu Feb 16 2017 Robbie Harwood <rharwood@redhat.com> 0.6.2-1

- Rebase to latest version since we have krb5-1.15
- Resolves: #1379836
- Resolves: #1344518
- Resolves: #1366782
- Resolves: #1379005
- Resolves: #1379482
- Resolves: #1379616
- Resolves: #1380490
- Resolves: #1378600
- Resolves: #1285012
- Resolves: #1333813

Tue Sep 06 2016 Robbie Harwood <rharwood@redhat.com> 0.4.1-13
```
- Third try is the charm
- Resolves: #1092515
```
Tue Sep 06 2016 Robbie Harwood <rharwood@redhat.com> 0.4.1-12
```
- Restore _FORTIFY_SOURCE behavior
- Resolves: #1092515
```

Tue Sep 06 2016 Robbie Harwood <rharwood@redhat.com> 0.4.1-11

- Actually harden build with PIE and RELRO
- Resolves: #1092515

Fri Jun 10 2016 Robbie Harwood <rharwood@redhat.com> 0.4.1-10

- Fix behavior with multiple keys in a keytab
- Resolves: #1285012

Tue Jun 07 2016 Robbie Harwood <rharwood@redhat.com> 0.4.1-9

- Re-open socket in mechglue if client forks/changes privilege
- Resolves: #1340259

Wed Mar 30 2016 Robbie Harwood <rharwood@redhat.com> 0.4.1-8
```
- Make GSS-Proxy work with krb5-1.14
- resolves: #1292487
```

Tue Sep 29 2015 Simo Sorce <simo@redhat.com> 0.4.1-7

- Fix loop cause by imporper EINTR handling
- resolves: #1266564

Mon Aug 24 2015 Roland Mainz <rmainz@redhat.com> 0.4.1-6

- Remove extra whitespaces from #1208640/#1194299 patches
- spec file cleanup
related: #1208640 #1194299

Wed Aug 19 2015 Robbie Harwood <rharwood@redhat.com> 0.4.1-5

- Carry service/HTTP default conf section
- resolves: #1208640

Wed Aug 19 2015 Robbie Harwood <rharwood@redhat.com> 0.4.1-4
```
- Set default rcache location patch
- resolves: #1194299
```

Mon Jul 13 2015 Roland Mainz <rmainz@redhat.com> 0.4.1-3

- Bug #1213852 ("[gssproxy] NFS clients cannot mount with
  sec=krb5 if the NFS server is running gssproxy") was
  fixed by the rebase to 0.4.1 in bug ("[RFE] Rebase
  gssproxy to the latest to match expectations of other
  projects").
  Note that the same bug was also fixed in the kernel with
  "9507271 svcrpc: fix potential GSSX_ACCEPT_SEC_CONTEXT
  decoding failures" (see
  https://bugzilla.redhat.com/show_bug.cgi?id=1213852#c2
  and RH Bug #1120860 ("[NFS] NFS clients cannot mount with
  sec=krb5 if the NFS server is running gssproxy")) to
  handle various corner cases not covered by gssproxy,
  for example individual krb5 ticket fields exceeding
  the kernel's buffer size.

Thu Jul 09 2015 Roland Mainz <rmainz@redhat.com> 0.4.1-2

- The following bugs have been fixed by the rebase to 0.4.1
  in bug ("[RFE] Rebase gssproxy to the latest to match
  expectations of other projects"):
  - Bug #1196371 ("rpc.gssd segfaults in gssproxy (proxymech.so)")
    Upstream tickets { #137, #144 }
  - Bug #1053730 ("KrbLocalUserMapping does not work with
    Apache & GSS-Proxy")
    Upstream ticket #101
  - Bug #1168962 ("gssproxy is not working with httpd on ppc64 and s390x")
    Upstream ticket #146

Thu Jul 09 2015 Roland Mainz <rmainz@redhat.com> 0.4.1-1

- Add patch to remove -fno-strict-aliasing (gssproxy ticket #140,
  a dependicy for the fix for bug #1092515 (see below))
- Add patch to fix bug #1092515 ("gssproxy - PIE and RELRO check")

Fri Jun 05 2015 Roland Mainz <rmainz@redhat.com> 0.4.1-0

- Rebase gssproxy to 0.4.1 per bug #1132389 ("[RFE] Rebase
  gssproxy to the latest to match expectations of other
  projects").

Fri Jan 23 2015 Simo Sorce <ssorce@redhat.com> 0.3.0-10

- Fix crash bug affecting updated rpc.gssd
- resolves: #1184531

Wed Mar 12 2014 Guenther Deschner <gdeschner@redhat.com> 0.3.0-9
```
- Fix potential mutex deadlock
- resolves: #1075268
```
Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 0.3.0-8
```
- Mass rebuild 2014-01-24
```

Thu Jan 16 2014 Guenther Deschner <gdeschner@redhat.com> 0.3.0-7

- Fix nfsd startup
- resolves: https://fedorahosted.org/gss-proxy/ticket/114
- resolves: #1053710

Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 0.3.0-6
```
- Mass rebuild 2013-12-27
```

Tue Dec 17 2013 Guenther Deschner <gdeschner@redhat.com> 0.3.0-5

- Fix flags handling.
- resolves: https://fedorahosted.org/gss-proxy/ticket/112
- related: #1031710

Wed Nov 27 2013 Guenther Deschner <gdeschner@redhat.com> 0.3.0-4

- Use secure_getenv
- resolves: https://fedorahosted.org/gss-proxy/ticket/110
- resolves: #1032684
- Use strerror_r instead of strerror
- resolves: https://fedorahosted.org/gss-proxy/ticket/111
- resolves: #1033350

Tue Nov 19 2013 Guenther Deschner <gdeschner@redhat.com> 0.3.0-3

- Fix flags handling in gss_init_sec_context()
- resolves: https://fedorahosted.org/gss-proxy/ticket/106
- resolves: #1031713
- Fix OID handling in gss_inquire_cred_by_mech()
- resolves: https://fedorahosted.org/gss-proxy/ticket/107
- resolves: #1031712
- Fix continuation processing for not yet fully established contexts.
- resolves: https://fedorahosted.org/gss-proxy/ticket/108
- resolves: #1031711
- Add flags filtering and flags enforcing.
- resolves: https://fedorahosted.org/gss-proxy/ticket/109
- resolves: #1031710

Wed Oct 23 2013 Guenther Deschner <gdeschner@redhat.com> 0.3.0-0

- New upstream release 0.3.0:
  * Add support for impersonation (depends on s4u2self/s4u2proxy on the KDC)
  * Add support for new rpc.gssd mode of operation that forks and changes uid
  * Add 2 new options allow_any_uid and cred_usage

Fri Oct 18 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.3-8

- Fix default proxymech documentation and fix LOCAL_FIRST implementation
- resolves: https://fedorahosted.org/gss-proxy/ticket/105

Wed Jul 24 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.3-6

- Add better default gssproxy.conf file for nfs client and server usage

Thu Jun 06 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.3-5
```
- New upstream release
```

Fri May 31 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.2-5

- Require libverto-tevent to make sure libverto initialization succeeds

Wed May 29 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.2-4
```
- Modify systemd unit files for nfs-secure services
```
Wed May 22 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.2-3
```
- Fix cred_store handling w/o client keytab
```
Thu May 16 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.2-2
```
- New upstream release
```
Tue May 07 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.1-2
```
- New upstream release
```
Wed Apr 24 2013 Guenther Deschner <gdeschner@redhat.com> 0.2.0-1
```
- New upstream release
```
Mon Apr 01 2013 Simo Sorce <simo@redhat.com> - 0.1.0-0
```
- New upstream release
```
Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.0.3-8
```
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
```
Tue Nov 06 2012 Guenther Deschner <gdeschner@redhat.com> 0.0.3-7
```
- Update to 0.0.3
```
Wed Aug 22 2012 Guenther Deschner <gdeschner@redhat.com> 0.0.2-6
```
- Use new systemd-rpm macros
- resolves: #850139
```
Wed Jul 18 2012 Guenther Deschner <gdeschner@redhat.com> 0.0.2-5
```
- More spec file fixes
```
Mon Jul 16 2012 Guenther Deschner <gdeschner@redhat.com> 0.0.2-4
```
- Fix systemd service file
```
Fri Jul 13 2012 Guenther Deschner <gdeschner@redhat.com> 0.0.2-3
```
- Fix various packaging issues
```
Mon Jul 02 2012 Guenther Deschner <gdeschner@redhat.com> 0.0.1-2
```
- Add systemd packaging
```
Wed Mar 28 2012 Guenther Deschner <gdeschner@redhat.com> 0.0.1-1
```
- Various fixes
```
Mon Dec 12 2011 Simo Sorce <simo@redhat.com> - 0.0.2-0
```
- Automated build of the gssproxy daemon
```