------------------------------------------------------------------- Fri Dec 06 13:56:33 UTC 2024 - Daniel Wagner - Update to version 0.10+33.g311d943: * tlshd: always link .nvme default keyring into the session (bsc#1229034) * tlshd: Ensure libnl-genl3 is available * tlshd: receive new session ticket msg after completing quic handshake * tlshd: use quic_config to get parameters for quic handshake * tlshd: clean up some unnecessary code in quic handshake * tlshd: improve error logging for tlshd_server_psk_cb() * tlshd: guard against possible overrun of tlshd_peername * tlshd: fix optlen passed to getsockopt() * tlshd: free pathname before it goes out of scope * tlshd: add support for quic handshake * tlshd: include socket ip_proto in tlshd_handshake_parms * tlshd: Refactor tlshd_service_socket() * config: supply meaningful error for non-existing pathnames * tlshd: Fix implicit signedness conversion * tlshd: Fix memory leaks ------------------------------------------------------------------- Thu Mar 21 21:50:44 UTC 2024 - Martin Wilck - Update to version 0.10+12.gc3923f7: * Rework priority string setting for PSK (bsc#1221437) * config: use 'authenticate' as a section name * server: add missing priority setting (gh#oracle/ktls-utils#49) ------------------------------------------------------------------- Tue Mar 5 17:24:44 UTC 2024 - Martin Wilck - Update to upstream version 0.10+9.gf28f084: * ktls: restrict hash functions to supported sizes (bsc#1218037) * tlshd: Add support for chained certs ------------------------------------------------------------------- Tue Feb 20 17:28:48 UTC 2024 - Martin Wilck - Update to upstream version 0.10: * All previously SUSE_specific patches included * tlshd: Reorganize tlshd.conf - get rid of [main] - add [debug] and move the debug-related options there - move the "keyrings" option to [authenticate] * tlshd: add 'delay' configuration parameter * tlshd: Add .conf option to specify trust store * Bug fixes and cleanups ------------------------------------------------------------------- Wed Jan 17 11:56:19 UTC 2024 - Martin Wilck - Spec file: * fix summary and license * use pkgconfig for BuildRequires * remove superfluous PreReq dependencies * use %config(noreplace) for the config file (because it may contain paths to key files) * remove BuildRoot * simplify build section ------------------------------------------------------------------- Tue Jan 9 16:12:57 UTC 2024 - Martin Wilck - Update to version 0.9+4.g01b3018 (jsc#PED-7559) * _service: move to openSUSE git repository - Patches now in git, remove them from spec file: * del 0001-netlink-de-constify-nla_policy * del 0001-tlshd-Allow-for-compilation-with-older-libnl-librari.patch * del 0002-tlshd-Check-for-gnutls_get_system_config_file.patch * del 0003-tlshd-add-delay-configuration-parameter.patch ------------------------------------------------------------------- Wed 16 Aug 2023 08:21:59 PM CEST - Hannes Reinecke - Reshuffle patches to match upstream submission: * Remove 0001-netlink-de-constify-nla_policy * Add 0001-tlshd-Allow-for-compilation-with-older-libnl-librari.patch * Remove 0001-Check-for-gnutls_get_system_config_file.patch * Add 0002-tlshd-Check-for-gnutls_get_system_config_file.patch * Remove 0001-Add-tlshd_delay-configuration-option.patch * Add 0003-tlshd-add-delay-configuration-parameter.patch ------------------------------------------------------------------- Wed 16 Aug 2023 07:55:46 AM CEST - Hannes Reinecke - Add patch to exercise handshake timeout * 0001-Add-tlshd_delay-configuration-option.patch - Add patch to allow compilation on older releases * 0001-Check-for-gnutls_get_system_config_file.patch ------------------------------------------------------------------- Sat 01 Jul 2023 10:40:46 AM CEST - Hannes Reinecke - Add patch for older libnl versions + 0001-netlink-de-constify-nla_policy.patch - Fix build error on 32-bit + 0001-tlshd-fix-max-config-file-size-comparison.patch ------------------------------------------------------------------- Fri 30 Jun 2023 12:58:27 PM CEST - Hannes Reinecke - Initial package, version 0.9