Version: 1.10.0-bp155.1.7
* Tue Oct 25 2022 Dirk Müller <dmueller@suse.com>
- refresh keyring
* Tue Sep 27 2022 Dirk Müller <dmueller@suse.com>
- add build-fix-old-gcc.patch for older dists
* Mon Sep 12 2022 Dirk Müller <dmueller@suse.com>
- add boundary-check-CVE-2022-2469.patch (bsc#1201715)
- avoid duplicate packaging of license
* Mon Jan 31 2022 Dirk Müller <dmueller@suse.com>
- add 0001-Fix-build-issues-with-GCC-12-s-Werror-address.patch
* Sat Jan 02 2021 Andreas Stieger <andreas.stieger@gmx.de>
- update to 1.10.0:
* SCRAM-SHA-256 and SCRAM-SHA-256-PLUS (RFC 7677)
* New SCRAM crypto helper APIs
* SCRAM server: Support for password-less usage
* SCRAM: Sets SCRAM_ITER/SCRAM_SALT/SCRAM_SALTED_PASSWORD
* SCRAM, GS2, and GSSAPI no longer retrieve the TLS channel
binding data (property GSASL_CB_TLS_UNIQUE) during
gsasl_client_start() or gsasl_server_start()
* A number of legacy and less secure interfaces deprecated
* New APIs for hex encoding/decoding
- add upstream signing key and validate source signature
- refresh spec file
- build with all warnings and treat them as errors
* Fri Mar 13 2020 David Mulder <dmulder@suse.com>
- Re-enable GSSAPI by explicitly choosing mit kerberos.
* Tue Feb 04 2020 Bjørn Lie <bjorn.lie@gmail.com>
- Update to version 1.8.1:
* gsasl: IMAP client code now permits empty SASL tokens prefixed
with '+'. Normally servers should send '+ '. Buggy servers
include Microsoft Exchange.
* GSSAPI client:
- Now retrieves GSASL_AUTHZID for authorization identity.
- Can now transmit an empty/missing authorization identity.
- See lib/NEWS for more information.
* Build fixes: Update of gnulib, including how it is
bootstrapped.
* Updated translations.
- Run spec-cleaner, modernize spec.
- No longer recommend -lang: supplements are in use.
* Sun Feb 08 2015 p.drouand@gmail.com
- Update to version 1.8.0
* SAML20 support following RFC 6595.
* OPENID20 support following RFC 6616.
* Various cleanups, portability and other bug fixes.
See the NEWS entries during the 1.7.x branch for details
- Use %lang_package macro instead of manually defined -lang package
- Remove libgsasl-stdio.h.patch; fixed
- Remove fix-arm.patch; fixed
- Use download Url as source
* Thu Jul 07 2011 vuntz@opensuse.org
- Stop using source service to download the tarball, as Factory
will move away from this.
Version: 1.8.0-2.1
* Mon Apr 04 2016 kukuk@suse.de
- Remove unused buildrequires for libgssglue-devel
* Tue Oct 27 2015 meissner@suse.com
- run "make check"
* Mon Feb 09 2015 p.drouand@gmail.com
- Update to version 1.8.0
* SAML20 support following RFC 6595.
* OPENID20 support following RFC 6616.
* Various cleanups, portability and other bug fixes.
See the NEWS entries during the 1.7.x branch for details
- Use %lang_package macro instead of manually defined -lang package
- Remove libgsasl-stdio.h.patch; fixed
- Remove fix-arm.patch; fixed
- Use download Url as source
* Thu May 02 2013 jengelh@inai.de
- "Recommends" is not understood by RHEL6ish
* Thu Mar 21 2013 dmueller@suse.com
- fix build on aarch64 by applying fix-arm.patch
* Mon Feb 11 2013 aj@suse.com
- Change lang package Requires to Recommends since it is not
mandatory at runtime.
* Thu Aug 16 2012 agraf@suse.com
- fix-arm.patch: Add hack to fix compiling on ARM
* Mon Aug 13 2012 cfarrell@suse.com
- license update: LGPL-2.1+ and GPL-3.0+
contains numerous GPL-3.0+ licensed test files
* Sat Aug 11 2012 jengelh@inai.de
- Have package compile on RHEL6ish.
* Fri Jul 27 2012 aj@suse.de
- Fix build with missing gets declaration (glibc 2.16)
* Sun Mar 25 2012 jengelh@medozas.de
- Enable building against libntlm (now that it exists in factory)
* Sun Mar 25 2012 jengelh@medozas.de
- Parallel build with %_smp_mflags; strip redundant spec sections
* Fri Jul 08 2011 vuntz@opensuse.org
- Stop using source service to download the tarball, as Factory
will move away from this.
* Fri May 27 2011 vuntz@opensuse.org
- Update to version 1.6.1:
+ Add a Libs.private to libgsasl.pc.
+ Updated translations.
* Fri Apr 29 2011 dimstar@opensuse.org
- Update to version 1.6.0:
+ SCRAM: General fixes and support for SCRAM-SHA-1-PLUS with
channel bindings.
+ GS2-KRB5: New mechanism GS2 with support for Kerberos V5.
+ GSSAPI/GS2-KRB5: Support for MIT Kerberos for Windows GSS-API
library.
+ DIGEST-MD5: The server code now returns GSASL_OK after the
final token.
+ Added property for tls-unique channel binding.
+ No longer require the same or newer libgcrypt it was built
with.
+ Several doc improvements.
+ Update gnulib files.
- Use source services: download_url, recompress and set_Version.
* Thu Mar 25 2010 vuntz@opensuse.org
- Update to version 1.4.4:
+ SCRAM: Fix build error on platforms without strnlen.
- Changes from version 1.4.3:
+ SCRAM: Don't read out of bounds when parsing tokens.
* Tue Mar 16 2010 dimstar@opensuse.org
- Update to version 1.4.2:
+ SCRAM: Encode and decode username/authzid properly. Before any
username/authzid that contained '=' or ',' would not work.
+ Fix typo in error message for
GSASL_GSSAPI_ACCEPT_SEC_CONTEXT_ERROR.
+ Updated translations.
* Wed Feb 17 2010 dimstar@opensuse.org
- Update to version 1.4.1:
+ gsasl: Improve application data throughput
+ Improve MinGW builds
+ Updated translations.
* Wed Dec 02 2009 vuntz@opensuse.org
- Update to version 1.4.0:
+ Fix Visual Studio project files to work with SCRAM.
+ Properly increment libtool version to reflect newly added ABIs.
This was accidentally forgotten in the last release.
+ Export gsasl_sha1 and gsasl_hmac_sha1 in linker version script.
This was accidentally forgotten in the last release.
+ Fix crash in SCRAM-SHA-1 client when the application provides a
value for GSASL_SCRAM_SALTED_PASSWORD.
+ Fix detection of libgcrypt during builds.
+ Updated translations.
+ Add libgcrypt-devel BuildRequires.
* Fri Nov 13 2009 vuntz@opensuse.org
- Update to version 1.3:
+ libgsasl: Implement SCRAM-SHA-1.
New properties are GSASL_SCRAM_ITER, GSASL_SCRAM_SALT,
andGSASL_SCRAM_SALTED_PASSWORD.
+ libgsasl: Add helper APIs for SHA-1 and HMAC-SHA-1.
New functions are gsasl_sha1 and gsasl_hmac_sha1.