Benjamin Dauvergne
49e0ea80c8
Fix undefined macro in #if conditional ( #85339 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-04-16 16:32:57 +02:00
Benjamin Dauvergne
3768f1bedf
xmlsec: re-enable KeyValue nodes when reading KeyInfo descriptors ( #85339 )
...
KeyValue has been disabled in libxmlsec >= 1.3.3, as it can be a security
liability in other settings than SAML:
(xmlsec-core) Disabled KeyValue and DEREncodedKeyValue XML nodes by default. Use the '--enabled-key-data' option for the xmlsec command line utility or update the 'keyInfoCtx->enabledKeyData' parameter if you need to re-enable these nodes (also see question 3.5 in the FAQ).
2024-04-16 11:02:13 +02:00
Benjamin Dauvergne
21c224cfef
xmlsec: use XMLSEC_KEYINFO_FLAGS_LAX_KEY_SEARCH when writing encrypted keys ( #85339 )
...
For compatibility with libxmlsec1>=1.3.0, as we do not use KeyName to
reference the wrapping key:
(API breaking change) Changed the key search to strict mode: only keys referenced by KeyInfo are used. To restore the old "lax" mode, set XMLSEC_KEYINFO_FLAGS_LAX_KEY_SEARCH flag on xmlSecKeyInfoCtx or use '--lax-key-search' option for XMLSec command line utility.
2024-04-16 11:02:13 +02:00
Benjamin Dauvergne
66c9f50f1f
xmlsec: replace xmlSecCryptoAppKeyLoad by xmlSecCryptoAppKeyLoadEx ( #85339 )
...
xmlSecCryptoAppKeyLoad was removed from libxmlsec1 in version >= 1.3.3:
(xmlsec-core) Removed previously deprecated functions, defines, etc.
xmlSecCryptoAppKeyLoadEx was introduced in libxmlsec in version 1.3.0.
2024-04-16 09:24:15 +02:00
Benjamin Dauvergne
1ca8e8699c
misc: mute warning about implicit declaration of lasso_get_default_signature_method ( #85339 )
2024-04-16 09:24:15 +02:00
Benjamin Dauvergne
46caef8185
xml: fix uninitialized local variable ( #85339 )
2024-04-16 09:24:15 +02:00
Benjamin Dauvergne
fe27e52da0
misc: check for signature parameter before sigalg ( #89371 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-04-15 15:38:16 +02:00
Benjamin Dauvergne
3e6f9076e1
misc: move declarations of signature method setters in private.h ( #86867 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-02-14 12:43:54 +01:00
Benjamin Dauvergne
625bf7d9c1
misc: move declaration of lasso_get_default_signature_method in xml.h ( #86867 )
2024-02-14 12:43:54 +01:00
Benjamin Dauvergne
5c963205ad
configure.ac: raise errors for implicit function declarations ( #86867 )
2024-02-14 12:43:46 +01:00
Benjamin Dauvergne
596994307e
web: remove dead links ( #82919 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-02-08 10:19:20 +01:00
Benjamin Dauvergne
b3b9584b76
web: update license links ( #82919 )
2024-02-08 10:17:24 +01:00
Benjamin Dauvergne
534d2b9698
Do not free xmlDoc before unlinking its tree ( #86472 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-02-01 21:50:21 +01:00
Benjamin Dauvergne
cbe2c45455
misc: adjust to structured error callback argument change in libxml2 2.12 ( #86080 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-01-24 15:19:10 +01:00
Benjamin Dauvergne
9767cdf764
misc: fix implicit function declaration errors ( #85340 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-01-24 15:17:33 +01:00
Benjamin Dauvergne
253e8abe7b
xml: export lasso_get_min_signature method function ( #86076 )
gitea/lasso/pipeline/head This commit looks good
Details
2024-01-24 14:43:58 +01:00
Benjamin Dauvergne
ffaddeb015
xmlsec: fix removed symbol XMLSEC_CRYPTO in libxmlsec 1.3.0 ( #78280 )
...
gitea/lasso/pipeline/head This commit looks good
Details
Thanks to Simo Sorce.
2024-01-24 14:03:42 +01:00
Frédéric Péters
c500c57a75
debian: add changelog entry for 2.8.2-1 ( #85188 )
gitea/lasso/pipeline/head This commit looks good
Details
2023-12-31 09:43:25 +01:00
Frédéric Péters
1683073e27
debian: add missing/explicit python3-lasso to python autopkgtests ( #85188 )
2023-12-31 09:42:49 +01:00
Frédéric Péters
cb573dd733
debian: add missing depends: python3-all to python autopkgtests ( #85188 )
gitea/lasso/pipeline/head This commit looks good
Details
2023-12-29 20:14:29 +01:00
Frédéric Péters
8a98d691ab
debian/control: add build-dependency on python3-all ( #83823 )
gitea/lasso/pipeline/head This commit looks good
Details
2023-11-22 13:19:57 +01:00
Frédéric Péters
f4d7946e29
ci: build .deb package for both bullseye and bookworm ( #79361 )
gitea/lasso/pipeline/head This commit looks good
Details
2023-07-04 16:51:46 +02:00
Frédéric Péters
9b6d07dd5d
debian: update packaging with latest debian.org package ( #79361 )
2023-07-04 16:51:11 +02:00
Frédéric Péters
118fbea410
debian: remove version-specific debian/ directories ( #79361 )
2023-07-04 16:49:11 +02:00
Frédéric Péters
6d30fc5b55
web: update mod_auth_mellon to new name/home ( #75802 )
gitea/lasso/pipeline/head This commit looks good
Details
2023-03-25 08:59:48 +01:00
Frédéric Péters
108430e093
web: remove mention of subversion commits ( #75802 )
2023-03-25 08:55:50 +01:00
Frédéric Péters
2961daa543
web: update URLs to https ( #75802 )
2023-03-25 08:55:50 +01:00
Frédéric Péters
9ea9fac973
web: update visit tracking to matomo ( #75802 )
2023-03-25 08:55:50 +01:00
Frédéric Péters
8195016ae5
web: update git instructions for new gitea URLs ( #75802 )
2023-03-25 08:55:50 +01:00
Frédéric Péters
0f656eb233
web: update debian repository infos for bullseye ( #75802 )
2023-03-25 08:43:49 +01:00
Frédéric Péters
d03d11b36f
web: update download page with latest version number ( #75802 )
2023-03-25 08:42:54 +01:00
Frédéric Péters
257e0bfea4
web: fix 2.8.2 entry as not much happened, really ( #75802 )
2023-03-25 08:42:54 +01:00
Frédéric Péters
5b78304f42
web: switch generation script to python 3 ( #775802 )
2023-03-25 08:42:54 +01:00
Benjamin Dauvergne
d457886486
Release 2.8.2 ( #74996 )
...
gitea/lasso/pipeline/head This commit looks good
Details
- Compatibility with EVP API of openssl 1.x, thanks to Maxime Besson
from Worteks.
2023-03-14 18:14:48 +01:00
Benjamin Dauvergne
7ac76525be
Compatibility with EVP API of openssl 1.x ( #74996 )
...
Thanks to Maxime Besson from Worteks.
2023-03-06 11:44:47 +01:00
Benjamin Dauvergne
614cf17d99
Release 2.8.1
...
gitea/lasso/pipeline/head This commit looks good
Details
-·Major·overhaul·of·OpenSSL·API·usage·by·using·only·the·EVP·API·as·the·low¶
··level·API·(RSA*,·HMAC*)·is·deprecated.¶
-·Fix·wrong·parsing·of·Count·attribute·on·saml:ProxyRestriction,·thanks·to¶
··Maxime·Besson·from·Worteks.¶
-·Perl:·pass·LDFLAGS·to·Makefile.PL¶
-·Replace·use·of·deprecated·xmlSecBase64Decode·by·xmlSecBase64Decode_ex¶
-·Fix·overwrite·of·profile.signature_status·in·lasso_saml20_login_process_response_status_and_assertion¶
-·Fix·lot·of·GCC·warnings¶
2023-02-28 16:02:18 +01:00
Agate
089a2a0003
Prepare Jenkinsfile for Gitea migration ( #74572 )
gitea/lasso/pipeline/head There was a failure building this commit
Details
2023-02-20 15:09:38 +01:00
Frédéric Péters
8d43785224
debian: introduce autopkgtests ( #74360 )
2023-02-09 11:12:21 +01:00
Frédéric Péters
8d48a76802
ci: only build package for bullseye ( #72729 )
2022-12-22 17:21:27 +01:00
Benjamin Dauvergne
16148102e5
In lasso_saml20_login_process_response_status_and_assertion does not overwirte signature_status with rc which is always at 0 ( #54689 )
...
We are losing information in this case, like if the response was not
signed.
2022-11-23 09:40:28 +01:00
Jakub Hrozek
2d78634827
In lasso_saml20_login_process_response_status_and_assertion remove dead switch ( #54689 )
...
In case VERIFY_HINT was set to IGNORE and the login signature was
incorrect, lasso_saml20_login_process_response_status_and_assertion
would have jumped straight to the cleanup label which just returns the
return code.
Related: https://dev.entrouvert.org/issues/54689
License: MIT
2022-11-23 09:40:28 +01:00
Benjamin Dauvergne
d10c0f6693
Fix unused parameters warnings ( #71400 )
2022-11-21 13:28:10 +01:00
Benjamin Dauvergne
72b778e47e
Fix all cast-function-type warnings ( #71400 )
2022-11-21 13:28:08 +01:00
Benjamin Dauvergne
69b1ea1c2f
Fix warning about enum conversion ( #71400 )
2022-11-21 13:28:06 +01:00
Benjamin Dauvergne
99fe56bec4
Fix all warnings in tests ( #71400 )
2022-11-21 13:28:02 +01:00
Benjamin Dauvergne
0c4d3014a4
Fix use of wrong enumeration NULL value ( #71400 )
...
It produced a cast warning.
2022-11-21 13:27:53 +01:00
Benjamin Dauvergne
6389b2ca48
Fix warnings about type casts ( #71400 )
2022-11-21 13:27:47 +01:00
Benjamin Dauvergne
8a588a8acb
Replace all use of xmlSecBase64Decode by lasso_base64_decode ( #71399 )
2022-11-21 13:27:15 +01:00
Benjamin Dauvergne
1aa6271f93
Adapt lasso_base64_decode to the deprecation of xmlSecBase64Decode ( #71399 )
...
We now use the non-deprecated new API (since xmlsec 1.2.35) xmlSecBase64Decode_ex.
2022-11-21 13:27:15 +01:00
Benjamin Dauvergne
b263815fa4
Add new define LASSO_XMLSEC_VERSION_NUMBER allow version check on libxmlsec ( #71399 )
2022-11-21 13:27:15 +01:00