5766 Commits

All Branches

Search

Author	SHA1	Message	Date
Benjamin Dauvergne	49e0ea80c8	Fix undefined macro in #if conditional (#85339)	2024-04-16 16:32:57 +02:00
Benjamin Dauvergne	3768f1bedf	xmlsec: re-enable KeyValue nodes when reading KeyInfo descriptors (#85339) ... KeyValue has been disabled in libxmlsec >= 1.3.3, as it can be a security liability in other settings than SAML: (xmlsec-core) Disabled KeyValue and DEREncodedKeyValue XML nodes by default. Use the '--enabled-key-data' option for the xmlsec command line utility or update the 'keyInfoCtx->enabledKeyData' parameter if you need to re-enable these nodes (also see question 3.5 in the FAQ).	2024-04-16 11:02:13 +02:00
Benjamin Dauvergne	21c224cfef	xmlsec: use XMLSEC_KEYINFO_FLAGS_LAX_KEY_SEARCH when writing encrypted keys (#85339) ... For compatibility with libxmlsec1>=1.3.0, as we do not use KeyName to reference the wrapping key: (API breaking change) Changed the key search to strict mode: only keys referenced by KeyInfo are used. To restore the old "lax" mode, set XMLSEC_KEYINFO_FLAGS_LAX_KEY_SEARCH flag on xmlSecKeyInfoCtx or use '--lax-key-search' option for XMLSec command line utility.	2024-04-16 11:02:13 +02:00
Benjamin Dauvergne	66c9f50f1f	xmlsec: replace xmlSecCryptoAppKeyLoad by xmlSecCryptoAppKeyLoadEx (#85339) ... xmlSecCryptoAppKeyLoad was removed from libxmlsec1 in version >= 1.3.3: (xmlsec-core) Removed previously deprecated functions, defines, etc. xmlSecCryptoAppKeyLoadEx was introduced in libxmlsec in version 1.3.0.	2024-04-16 09:24:15 +02:00
Benjamin Dauvergne	1ca8e8699c	misc: mute warning about implicit declaration of lasso_get_default_signature_method (#85339)	2024-04-16 09:24:15 +02:00
Benjamin Dauvergne	46caef8185	xml: fix uninitialized local variable (#85339)	2024-04-16 09:24:15 +02:00
Benjamin Dauvergne	fe27e52da0	misc: check for signature parameter before sigalg (#89371)	2024-04-15 15:38:16 +02:00
Benjamin Dauvergne	3e6f9076e1	misc: move declarations of signature method setters in private.h (#86867)	2024-02-14 12:43:54 +01:00
Benjamin Dauvergne	625bf7d9c1	misc: move declaration of lasso_get_default_signature_method in xml.h (#86867)	2024-02-14 12:43:54 +01:00
Benjamin Dauvergne	5c963205ad	configure.ac: raise errors for implicit function declarations (#86867)	2024-02-14 12:43:46 +01:00
Benjamin Dauvergne	596994307e	web: remove dead links (#82919)	2024-02-08 10:19:20 +01:00
Benjamin Dauvergne	b3b9584b76	web: update license links (#82919)	2024-02-08 10:17:24 +01:00
Benjamin Dauvergne	534d2b9698	Do not free xmlDoc before unlinking its tree (#86472)	2024-02-01 21:50:21 +01:00
Benjamin Dauvergne	cbe2c45455	misc: adjust to structured error callback argument change in libxml2 2.12 (#86080)	2024-01-24 15:19:10 +01:00
Benjamin Dauvergne	9767cdf764	misc: fix implicit function declaration errors (#85340)	2024-01-24 15:17:33 +01:00
Benjamin Dauvergne	253e8abe7b	xml: export lasso_get_min_signature method function (#86076)	2024-01-24 14:43:58 +01:00
Benjamin Dauvergne	ffaddeb015	xmlsec: fix removed symbol XMLSEC_CRYPTO in libxmlsec 1.3.0 (#78280) ... Thanks to Simo Sorce.	2024-01-24 14:03:42 +01:00
Frédéric Péters	c500c57a75	debian: add changelog entry for 2.8.2-1 (#85188)	2023-12-31 09:43:25 +01:00
Frédéric Péters	1683073e27	debian: add missing/explicit python3-lasso to python autopkgtests (#85188)	2023-12-31 09:42:49 +01:00
Frédéric Péters	cb573dd733	debian: add missing depends: python3-all to python autopkgtests (#85188)	2023-12-29 20:14:29 +01:00
Frédéric Péters	8a98d691ab	debian/control: add build-dependency on python3-all (#83823)	2023-11-22 13:19:57 +01:00
Frédéric Péters	f4d7946e29	ci: build .deb package for both bullseye and bookworm (#79361)	2023-07-04 16:51:46 +02:00
Frédéric Péters	9b6d07dd5d	debian: update packaging with latest debian.org package (#79361)	2023-07-04 16:51:11 +02:00
Frédéric Péters	118fbea410	debian: remove version-specific debian/ directories (#79361)	2023-07-04 16:49:11 +02:00
Frédéric Péters	6d30fc5b55	web: update mod_auth_mellon to new name/home (#75802)	2023-03-25 08:59:48 +01:00
Frédéric Péters	108430e093	web: remove mention of subversion commits (#75802)	2023-03-25 08:55:50 +01:00
Frédéric Péters	2961daa543	web: update URLs to https (#75802)	2023-03-25 08:55:50 +01:00
Frédéric Péters	9ea9fac973	web: update visit tracking to matomo (#75802)	2023-03-25 08:55:50 +01:00
Frédéric Péters	8195016ae5	web: update git instructions for new gitea URLs (#75802)	2023-03-25 08:55:50 +01:00
Frédéric Péters	0f656eb233	web: update debian repository infos for bullseye (#75802)	2023-03-25 08:43:49 +01:00
Frédéric Péters	d03d11b36f	web: update download page with latest version number (#75802)	2023-03-25 08:42:54 +01:00
Frédéric Péters	257e0bfea4	web: fix 2.8.2 entry as not much happened, really (#75802)	2023-03-25 08:42:54 +01:00
Frédéric Péters	5b78304f42	web: switch generation script to python 3 (#775802)	2023-03-25 08:42:54 +01:00
Benjamin Dauvergne	d457886486	Release 2.8.2 (#74996) ... - Compatibility with EVP API of openssl 1.x, thanks to Maxime Besson from Worteks.	2023-03-14 18:14:48 +01:00
Benjamin Dauvergne	7ac76525be	Compatibility with EVP API of openssl 1.x (#74996) ... Thanks to Maxime Besson from Worteks.	2023-03-06 11:44:47 +01:00
Benjamin Dauvergne	614cf17d99	Release 2.8.1 ... -·Major·overhaul·of·OpenSSL·API·usage·by·using·only·the·EVP·API·as·the·low¶ ··level·API·(RSA*,·HMAC*)·is·deprecated.¶ -·Fix·wrong·parsing·of·Count·attribute·on·saml:ProxyRestriction,·thanks·to¶ ··Maxime·Besson·from·Worteks.¶ -·Perl:·pass·LDFLAGS·to·Makefile.PL¶ -·Replace·use·of·deprecated·xmlSecBase64Decode·by·xmlSecBase64Decode_ex¶ -·Fix·overwrite·of·profile.signature_status·in·lasso_saml20_login_process_response_status_and_assertion¶ -·Fix·lot·of·GCC·warnings¶	2023-02-28 16:02:18 +01:00
Agate	089a2a0003	Prepare Jenkinsfile for Gitea migration (#74572)	2023-02-20 15:09:38 +01:00
Frédéric Péters	8d43785224	debian: introduce autopkgtests (#74360)	2023-02-09 11:12:21 +01:00
Frédéric Péters	8d48a76802	ci: only build package for bullseye (#72729)	2022-12-22 17:21:27 +01:00
Benjamin Dauvergne	16148102e5	In lasso_saml20_login_process_response_status_and_assertion does not overwirte signature_status with rc which is always at 0 (#54689) ... We are losing information in this case, like if the response was not signed.	2022-11-23 09:40:28 +01:00
Jakub Hrozek	2d78634827	In lasso_saml20_login_process_response_status_and_assertion remove dead switch (#54689) ... In case VERIFY_HINT was set to IGNORE and the login signature was incorrect, lasso_saml20_login_process_response_status_and_assertion would have jumped straight to the cleanup label which just returns the return code. Related: https://dev.entrouvert.org/issues/54689 License: MIT	2022-11-23 09:40:28 +01:00
Benjamin Dauvergne	d10c0f6693	Fix unused parameters warnings (#71400)	2022-11-21 13:28:10 +01:00
Benjamin Dauvergne	72b778e47e	Fix all cast-function-type warnings (#71400)	2022-11-21 13:28:08 +01:00
Benjamin Dauvergne	69b1ea1c2f	Fix warning about enum conversion (#71400)	2022-11-21 13:28:06 +01:00
Benjamin Dauvergne	99fe56bec4	Fix all warnings in tests (#71400)	2022-11-21 13:28:02 +01:00
Benjamin Dauvergne	0c4d3014a4	Fix use of wrong enumeration NULL value (#71400) ... It produced a cast warning.	2022-11-21 13:27:53 +01:00
Benjamin Dauvergne	6389b2ca48	Fix warnings about type casts (#71400)	2022-11-21 13:27:47 +01:00
Benjamin Dauvergne	8a588a8acb	Replace all use of xmlSecBase64Decode by lasso_base64_decode (#71399)	2022-11-21 13:27:15 +01:00
Benjamin Dauvergne	1aa6271f93	Adapt lasso_base64_decode to the deprecation of xmlSecBase64Decode (#71399) ... We now use the non-deprecated new API (since xmlsec 1.2.35) xmlSecBase64Decode_ex.	2022-11-21 13:27:15 +01:00
Benjamin Dauvergne	b263815fa4	Add new define LASSO_XMLSEC_VERSION_NUMBER allow version check on libxmlsec (#71399)	2022-11-21 13:27:15 +01:00