Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VOMS v. 2.1.0 #139

Merged
merged 117 commits into from
Oct 10, 2024
Merged

VOMS v. 2.1.0 #139

merged 117 commits into from
Oct 10, 2024

Conversation

giacomini
Copy link
Member

Note that the version in configure.ac is erroneously set to 2.1.1 (see #135).

Francesco Giacomini and others added 30 commits January 25, 2017 19:36
@andreaceccanti
Porting to OpenSSL 1.1
b70cc24 
This commit ports VOMS to OpenSSL 1.1.
More details in openssl11.md.
@andreaceccanti
Merge branch 'develop-2.1.x' into ssl11-port
30aaa78
@andreaceccanti
Merge pull request #53 from giacomini/ssl11-port
8cc8d2f 
Porting to OpenSSL 1.1
@andreaceccanti
Restore pkg-config check for OpenSSL
16f971f
@ellert
Fix for GCC 7
28e7070
@ellert
Don't use macros in AC_CHECK_LIB
994d34f
fix issue #54
85264b2
it's actually a fix to issue #60
bcdeef5
@andreaceccanti
fix issue #54
5de1cf4
@andreaceccanti
Merge pull request #61 from italiangrid/issue-60
2657e2d 
Fix issue #60
@ellert
Assign default value before reading sysconfig
9a9f840
@andreaceccanti
Merge branch 'wsdl2h-detect' of https://github.com/olifre/voms into o…
b4a6e8e 
…lifre-wsdl2h-detect

* 'wsdl2h-detect' of https://github.com/olifre/voms:
  wsdl2h.m4: Fix detection of modern wsdl2h versions.
  Fixes for README.md
@andreaceccanti
Added Jenkinsfile and minimal docker build image
380171e 
Based on italiangrid/pkg.base:centos6
@andreaceccanti
Fixed typos in Jenkinsfile
09f60e2
@ellert
Change default proxy cert key length to 2048 bits
53e7d0b
@andreaceccanti
Migrate to new CI configuration
3bae0a7
@andreaceccanti
First incarnation of a systemd unit
dba1134
@andreaceccanti
Instantiated service support for systemd unit
1414455
@andreaceccanti
Stop building clients
e825be8
@giacomini
Some .gitignore hygiene
bbe4e61
@giacomini
INSTALL is generated
25fe8ec
@giacomini
Ignore LaTeX artifacts
4984d10
@giacomini
Ignore shell wrapper of voms-proxy-init
4c56c6f
@giacomini
Use native openssl for authorityKeyIdentifier
7d32708 
Fix https://issues.infn.it/jira/browse/VOMS-875
(for the part about incompatible AC)
@giacomini
Allow to skip OpenSSL initialization
7c60bd7 
Add a class static function to allow clients to skip OpenSSL
initialization. This makes sense only for versions up to 1.0.2; above
that the initialization is done automatically. There is no check on
this though, to minimize changes.

Moreover OpenSSL (if not skipped) and AC- and Proxy-related
functionality are initialized atomically.

The flag that tells if OpenSSL needs to be initialized is not atomic
because it is checked inside the critical section of pthread_once.

Fixes: #89
@andreaceccanti
Merge pull request #80 from italiangrid/issue-VOMS-875
dcd42c8 
Fix AC incompatibilty introduced with the migration to OpenSSL 1.1
@giacomini
Change function name; add clarification comment
224a504
@andreaceccanti
Merge branch 'develop-2.1.x' into develop
e138cc3
@andreaceccanti
Merge pull request #90 from italiangrid/develop
73f9db4 
Align develop-2.1.x with develop
@andreaceccanti
Restore clients build
fdc82d9
giacomini and others added 29 commits April 2, 2024 12:24
@giacomini
Open the randfile only if it exists
425a99b
@giacomini
Fix the parsing of the REST API XML response
2d20ec4 
The depth of some fields was not correct for the response obtained
through the REST API, which is the first one tried and the only one that
will survive in the future with VOMS-AA.

In addition, VOMS-AA returns a numeric code for an error condition, not
a string like VOMS server.
@giacomini
Review the management of errors from the REST API
4c487ab 
* Always process the errors, not only in case an AC has been returned
* For certain errors (user doesn't exist, is suspended, is inactive) do
  not try the legacy endpoint, which doesn't even exist for VOMS AA
* Leave some commented-out debug messages, to be possibly included in
  the output in debug mode (requires some work to propagate the debug
  flag)
@giacomini
Allocate a GENERAL_NAME before using it for a target
7ecb06e
@olifre
Makefile: don't reference deleted INSTALL file in apidoc target (#117)
410be29 
Fixes build error if all targets are made.
@ellert
Fix spelling errors reported by lintian (#122)
15c2607
@ellert
Fix lintian warning (#126)
910a8b6 
voms-server: chown-with-dot root.voms [usr/share/voms/voms_install_db:276]

chown-with-dot

  The named script uses a dot to separate owner and group in a call like
  chown user.group but that usage is deprecated.

  Please use a colon instead, as in:

  chown user:group.
@giacomini
Regenerate lexers/parsers (#119)
41267aa 
* Regenerate lexers/parsers

Regenerate lexers/parsers after PR #112, which has changed the *.y and
*.l files.

The regeneration is done on CentOS 9 Stream, with bison 3.7.4-5 and
flex 2.6.4-9.

Resolves issue #118

* Prepend srcdir path for out-of-source builds
@rwf14f
Fix problem with newer gsoap versions. (#125)
15654d2
@giacomini
Adjust docker compose infrastructure
dfc9b76
@giacomini
Use almalinux:9 instead of centos(stream)9
c78c527
@giacomini
Merge branch 'develop' into 124-adapt-client-libraries-and-clients-to…
c45363e 
…-voms-aa
@giacomini
Merge the possible order arguments into the fqans
1947b5f 
Contrary to the VOMS server, VOMS-AA expects that the fqans query
parameter includes also the FQANs specified with the --order command
line argument of voms-proxy-init.
We keep the order query parameter, which is instead expected by the VOMS
server.
@giacomini
Fix implementation of join
a6ab24a 
And avoid the use of std::next, which is C++11
@giacomini
Update gh action and use almalinux:9
6580b4c
@giacomini
Downgrade gh action for centos7
27551b4
@giacomini
Merge pull request #128 from italiangrid/124-adapt-client-libraries-a…
1421b87 
…nd-clients-to-voms-aa

Adapt client libraries and clients to voms aa
@giacomini
Add missing files in the tarball distribution
511937d
@giacomini
Remove unused myproxycertinfo source files
f64356f 
They were replaced by those coming from globus during the migration
to OpenSSL 1.1.
@giacomini
Fix typo in an error message
5dbe645
@giacomini
Merge pull request #131 from italiangrid/130-tarball-created-by-make-…
efd11d3 
…dist-is-missing-several-files

Clean the distribution tarball
@giacomini
Make EnvironmentFile optional in the systemd unit
19a84d8
@giacomini
Return true/false from a function returning bool
30d6817 
Return false in case the certificate is about to expire, causing the
(only) caller to subsequently verify the proxy.
@giacomini
Fix how the read mode is specified to access
a3eaa5c 
The mode passed to access is an int and not a string, like in fopen.
@giacomini
Simplify the production of the SSL error message
1f25a6d 
Just rely on the canonical loop over the error stack, without special
treatment for an expired certificate, which is caught somewhere else in
any case.
Be sure that the data added to an error is a text string before printing
it.
@giacomini
Remove commented out code
cd5c735 
The code mentions OpenSSL functions related to error management, which
has changed in OpenSSL 3, deprecating old practices.
@giacomini
Ignore the function name in OpenSSL errors
8866b95 
The use of the function name in errors has been abandoned in OpenSSL 3.
Profit to replace the use of sprintf with snprintf.
@giacomini
Re-format the output of an SSL error message
ac778b8 
To be more compatible with how it was done before.
@giacomini
Merge pull request #133 from italiangrid/110-error-string-handling-fo…
86021b4 
…r-openssl-300-needs-further-fixing

Avoid function names when printing OpenSSL errors
@giacomini giacomini merged commit 2eaeb9a into master Oct 10, 2024
12 of 15 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
10 participants
@giacomini @andreaceccanti @ellert @msalle @bbockelm @fweimer-rh @DrDaveD @chrisburr @olifre @rwf14f