- Disable failing tests with NSS 3.115.1: 007-certsave-dbm
and 007-certsave-sql 025-casave-dbm
* patch disable_some_tests.patch
- Update to 0.79.20
* Fix type error in cm_tdbusm_get_vn
* Adjust parameter type for util_EVP_PKEY_id
* Update tests to be compatible with OpenSSL 3.2
* Switch BR from /usr/include/popt.h to popt-devel
* getcert: return 2 when trying to create a duplicate entry
* getcert: add NULL check to duplicate string compare
* Use correct object path for 'ca' property of request objects in D-Bus API
* Move shell_escape function to util.c
* Add more environment variables to be passed on to the notification command
* Translated using Weblate (Chinese (Simplified) (zh_CN))
* Translated using Weblate (Georgian)
* Translated using Weblate (Russian)
- Remove patches merged upstream
* 0001-Update-tests-to-be-compatible-with-OpenSSL-3.2.patch
* certmonger-c99-01.patch
* certmonger-c99-02.patch
- New patch
* add_some_missing_tests.patch
OBS-URL: https://build.opensuse.org/request/show/1302571
OBS-URL: https://build.opensuse.org/package/show/security:idm/certmonger?expand=0&rev=25
* getcert: add-scep-ca: fix help for --ca-cert and --ra-cert
* Don't restrict tokens to CKM_RSA_X_509
* Updated translations from Weblate
- Update to 0.79.18
* Rename DBus service and conf files to match canonical name
* Add missing .TP tags in getcert-resubmit man page
* migrated to SPDX license
* Include owner and perms in getcert list output
* Don't require an NSS database in cm_certread_n_parse
* Add new certs to internal token, try harder to remove on renewal
- Update to 0.79.17
* Respect LDFLAGS settings defined by user
* Switch to CA user when saving NSS certificates
* Translated using Weblate (German)
* Translated using Weblate (Georgian)
- Update to 0.79.16
* Add a PEM validity checker and validate SCEP CA files
* Fix implicit declaration of function ‘PEM_read_bio_X509’
* Don't include "NEW" in certificate signing requests
* Verify that the AES-128 is used for encrypting the local CA
* Replace DER-encoded test file with a base64-encoded one
* Correct a bad date in the spec changelog
* Switch to https URLs for Sources, etc.
* Remove dependency on SHA-1
* tests: Test that the CA constraint DER encoding is correct
* Disable DSA in the RPM spec
* Manually build the srpm for the copr CI
* Require jansson >= 2.12
* Mark the current directory as a safe git directory
* Fix usage of PKCS#7 ASN1 attribute retrieval for SCEP keygen
OBS-URL: https://build.opensuse.org/request/show/1141177
OBS-URL: https://build.opensuse.org/package/show/security:idm/certmonger?expand=0&rev=19
- update to 0.79.11:
- Fix crash bug when generating thumbprints
- dogtag: use POST for profileProcess requests
- Improve logging in SCEP helper
- Add verbose option to SCEP CA if requested in add-scep-ca
- Re-order the way the SCEP signing and CA certs are collected
- Add new option to allow overriding the detected SCEP CA chain
- template_profile, issuer and MS certificate template are single-value
- Ensure that files read in have a trailing new-line
- Adapt to the new behavior of disconnect in dbus-broker
- Add long command-line options to CLI and man pages
- Include &message=CA-IDENT with GetCACaps and GetCACert requests
- Address issues uncovered by clang and Coverity
- Handle an uninitialized token when adding CA certs to an NSS db
- tests: Parametrize 025-casave with NSS db types
OBS-URL: https://build.opensuse.org/request/show/830735
OBS-URL: https://build.opensuse.org/package/show/security:idm/certmonger?expand=0&rev=3
