-
Tue Feb 12 2019 Rob Crittenden <rcritten@redhat.com> - 0.78.4-11
- Increase SCEP spec compliance, set more secure default cipher and hash.
(#1533216)
-
Fri Aug 24 2018 Rob Crittenden <rcritten@redhat.com> - 0.78.4-10
- Backport patches to add support for the MS Certificate Template V2
extension (#1622184)
-
Mon Aug 13 2018 Rob Crittenden <rcritten@redhat.com> - 0.78.4-9
- Remove patch to pass _PROXY, _proxy, LANG and LC_* environment
variables to helpers. The root cause was a bug in IPA (#1596161)
-
Tue Jul 17 2018 Rob Crittenden <rcritten@redhat.com> - 0.78.4-8
- Disable iterate-10 test which fails intermitently (#1596161)
- Add BuildRequires for running autoreconf
-
Tue Jul 17 2018 Rob Crittenden <rcritten@redhat.com> - 0.78.4-7
- Pass _PROXY, _proxy, LANG and LC_* environment variables to
helpers (#1596161)
-
Tue May 29 2018 Rob Crittenden <rcritten@redhat.com> - 0.78.4-6
- Remove reference to unused patch
-
Mon May 21 2018 Rob Crittenden <rcritten@redhat.com> - 0.78.4-5
- Add Requires on psmsic for killall in post script (#1458890)
- upstream project migrated from fedorahosted.org to pagure.io (#1501723)
- Strip CR/LF from passwords read from a file (#1545935)
-
Mon Mar 05 2018 Rob Crittenden <rcritten@redhat.com> - 0.78.4-4
- Use required DER encoding when setting CA basic constraint (#1551635)
- NSS 3.34 more strictly enforces length checking when verifying signatures
(#1551702)
-
Tue Sep 06 2016 Jan Cholasta <jcholast@redhat.com> - 0.78.4-3
- Resolves: #1367683 getcert request command fails to use Sub CA using -X
argument
- Fix CA option name for ipa cert-request
-
Fri Jul 01 2016 Jan Cholasta <jcholast@redhat.com> - 0.78.4-2
- Resolves: #1345755 Support for specifying IPA lightweight CA
- Add 'issuer' request option for specifying issuer
- Documentation: mark $CERTMONGER_CA_ISSUER as 0.79
- Comment/whitespace fixup
- ipa-submit: Retry without "ca" on OptionError
- getcert: fix a potential out-of-bounds
- Document the -X option in the ipa-submit man page
- Resolves: #1351052 certmonger build for RHEL 7.3 failure
- Stop assuming RSA 512 works
- Stop assuming RSA 512 works, part two
- Fix a flakiness in the 028-dbus test