[Pkg-freeipa-devel] custodia: Changes to 'refs/tags/debian/0.5.0-1'
Timo Aaltonen
tjaalton at moszumanska.debian.org
Sat Dec 23 08:44:58 UTC 2017
Tag 'debian/0.5.0-1' created by Timo Aaltonen <tjaalton at debian.org> at 2017-12-23 08:44 +0000
tagging package custodia version debian/0.5.0-1
-----BEGIN PGP SIGNATURE-----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=2URa
-----END PGP SIGNATURE-----
Changes since debian/0.1.0-6:
Christian Heimes (132):
etcdstore: prevent path traversal attacks
Add support for using listening on TCP sockets
Fix Travis CI builds
Use Python's logging framework for logging
Don't install tests
Fix pylint violations
Custodia client logging
Increase logging output of Kubernetes plugins
Add sd_notify() call to custodia server
Add extended interpolation support to config parser
Add TLS server and client cert auth support
Fix sign-ness of uid_t/gid_t in SO_PEERCRED
Misc docker fixes
Use fully-qualified Kubernetes name for auth
Add SimpleClientCertAuth
Actually run Python 3 tests under Python 3
Move serialization into HTTP consumer
Move all tests and test data into tests/ directory
Move code from custodia script to custodia.server
Make tests work with Python 3.5
Support user and group name for SimpleCredsAuth plugin
EncryptedOverlay can auto-generate encryption key
Move global section parsing
Add global umask and sqlite filemode options
Add setup.cfg with release aliases
Make server_url or server_socket required, mutual exclusive options
Distribute custodia with setuptools
Add systemd socket activation
Use PEP 440 version schema
Use entry points for Custodia plugins
Add simple command line interface for Custodia
Mark some APIs as unstable and provisional
Misc minor fixes
Move plugin base classes to custodia.plugin
Better plugin configuration
Sphinx autodocs for plugin classes
Fix docs for good
Use RSA-OAEP instead of PKCS#1 v1.5 padding
Use argparse for custodia command / custodia.server
Add --skip-servertests option
Add tests for custodia.cli
Support relative path to unix socket
Move more plugins to new configuration system
Disable intersphinx
Make 'custodia' a namespace package
Move custodia.kubernetes plugins to a separate package
Port SimpleAuthKeys to new plugin config
Add API examples
Simple example configuration and systemd service files
Relax abstract methods of CSStore
Don't unquote path
Prepare release v0.2.0
Post release change
Misc packaging and testing fixes
Fix three linter / pep8 errors
Tests: accept more ssl error message styles
Move sitepackages=true from tox.ini to Makefile
Add Docker container infrastructure
Add 'hostname' to config defaults
Python 3 fix for root handler
Test on Python 3.6
Use RemoveOnStop to cleanup systemd socket
Fix typo in tox.ini
Provide an API to run server with custom argparser
Warn users about missing systemd bindings
Create /var/run/custodia with tmpfiles.d
Move example config files into subdirectories
SimpleCredsAuth: Don't hard-code uid/gid defaults to 0
Use users root and nobody for testing
Automate and document more release steps
Regenerate README
Renew test certs and increase life time to 4 years
Add target to create a release build of Docker image
Prepare release v0.3.0
Post release bump to 0.4.dev1
Fix typo in make dockerreleasebuild target
Coverage: run in parallel and report after tests
Move Py2/Py3 imports to custodia.compat
Make custodia compatible with old setuptools
Test case for KEM requests with white space
Replace path with tuple of unquoted path segments
Add unit tests for custodia.cli
[Py3] Fix sorting of pkg_resource EntryPoints
Initialize logging before plugins are loaded
Find free port on localhost
More improvements for custodia-cli error reporting
Prepare release v0.3.1
Post release bump to 0.4.dev2
Log plugin load traceback in debug mode
Auto-document commands with sphinx-argparse
Add spell checker and fix some spellings
Add custodia.spec from fedpkg
Add "make rpm"
Consolidate metadata in __about__.py
Run pylint on test_cli
Fix pylint warnings
Use default sphinx theme again
Set up logging for custodia-cli
Reduce verbosity of custodia-cli tests
Use custom logger and getLogger everywhere
custodia-cli: check plugins
Plugin config: add special marker for inherit global
Tests: Don't spam stderr with log messages
Move custodia package into src/ subdir
Remove PYTHONPATH from tests
Prepare release v0.4.0
Post release bump to 0.5.dev1
Print correct version in docker release build
Backwards compatibility with older pytest
Create custodia user and group
Rename python-custodia-extras package
Run pre/post systemd hooks for service and socket
Restrict custodia.service
Refactoring: Split custodia.server package
Server: Add support for named instances and conf.d
Add tests for named instances and conf.d
Document named instances and new default values
CLI: Support named instances
Improve diagnostics of Travis CI
Include test configs in sdist
Add named instance templates for systemd
Upgrade pip first
Remove conflict with ipalib < 4.5
Revert to /path/logdir/audit.log
Introduce bin/ file for in-tree scripts
tox: don't recurse into dist directory
Rename parser argument to cfgparser
Add section attribute to all plugin instances
Add two-phase initialization API to plugins
Document makedirs and enable it in demo config
Prepare release and add make releasecheck
Release v0.5.0
Colin Walters (1):
README: Fix typo
Nathan Kinder (6):
Correct socket path in documentation examples
Bump Fedora version to 25 in Dockerfile
Add /etc/custodia as an externally mounted volume in docker image
Update docs to refer to RTD instead of wiki
Add documentation for Docker image usage
Clean up API documentation
Pavel Odvody (1):
Also capture loginuid of the remote process
Raildo Mascena (6):
Improvement in the error reporting message
Distiguish between containes and keys
Add more logging calls to explain 403 errors
GETting a container without terminating '/' should return an error
Create CSStoreUnsupported exception
Create CSStoreDenied Exception
Simo Sorce (55):
Allow tox to use locally installed packages
Remove unused directory
Enhance README and point to wiki
Fix tox env for machine installed python version
Fix pep8 issues
Make tox pep8 happy
Fix traceback support in python 3.4
Avoid running tests twice
Remove filter option for directory listings
Better error handling for enclite store
Add Ability to retrieve peer's SELinux Context
Add UserNameSpace auths plugin
Extend store interface to create namespaces
Implement ETCD based Store
Add simple Keys-in-Header based authentication
Add client classes to query custodia servers
Add auditing to auth/authz modules
Use CustodiaClient in tests
Add forwarder plugin
Allow non prefixed forwarding
Split README and README.md
Do not spam logs with tracebacks on HTTP Errors
Secrets: Allow creation of root directories
Add more debug logging to auth/authz plugins
Add more debug logging to storage plugins
Add incoming requests to debug log
Add some debug loggig in Secrets
Change tests to be more self contained
Improve logging format and configuration
Add a generic encrypting layer for storage
Fix authorization stack to call all modules
Fix KEM messages handling when storing data.
Refactor CustodiaClient interface
Add support in the client for the kem message type
Fix bad variable name aliasings in custodia/log.py
Do not use reserved words wor argument names
Silence broad-except warnings
Do not use a private name for public variables
Add support in the client for the kem message type
Add Authentication module for Kubernetes node
Add authz plugin that verify kubelets requests
Try to make the lack of docker a soft error
Fix Makefile: Remove the pep8 target
Do not require python-etcd
Fix URLs and references to the project
Allow to send raw data for the simple type
Insure Content-Length is set
Return None if no output available
Add pylint checks to travis CI
Fix python3/flake8 issues in PR#26
Fix docs as CustodiaPlugin has been moved around
Fix flake8, wrong import order
Fix make run
Fix test flapping due to DNS resolution
Add a Quick Start Guide.
Thorsten Scherf (1):
Fixed some typos
Timo Aaltonen (16):
Merge branch 'upstream'
update the version
control, copyright, watch: Update upstream urls.
control: Add VCS urls.
control: Fix python3-custodia Depends. (Closes: #867397)
Bump debhelper to 10.
control: Bump policy to 4.1.2, no changes.
patches: Delete upstreamed patches.
rules: Drop obsolete moving of files.
Don't run servertests, and disable installing dependencies via an env variable instead of patching.
control: Add python-requests do b-deps/deps.
control: Add python-systemd to b-deps/deps.
fix a typo
rules: Add python3 tests, override dh_clean.
control: Bump python-jwcrypto2 dependency to 0.4.2.
releasing package custodia version 0.5.0-1
---
.coveragerc | 2
.dockerignore | 9
.gitignore | 14
.travis.yml | 47
API.md | 41
MANIFEST.in | 20
Makefile | 205 +++
README | 56
README.md | 49
bin/custodia | 25
bin/custodia-cli | 25
conftest.py | 1
contrib/config/README.txt | 17
contrib/config/custodia/custodia.conf | 32
contrib/config/systemd/system/custodia at .service | 19
contrib/config/systemd/system/custodia at .socket | 16
contrib/config/tmpfiles.d/custodia.conf | 1
contrib/docker/Dockerfile | 37
contrib/docker/demo.conf | 39
custodia.conf | 87 +
custodia.spec | 260 ++++
custodia/custodia | 115 -
custodia/httpd/authenticators.py | 63 -
custodia/httpd/authorizers.py | 48
custodia/httpd/consumer.py | 67 -
custodia/httpd/server.py | 317 -----
custodia/log.py | 72 -
custodia/message/common.py | 63 -
custodia/message/formats.py | 63 -
custodia/message/kem.py | 404 ------
custodia/message/simple.py | 33
custodia/root.py | 16
custodia/secrets.py | 581 ----------
custodia/store/enclite.py | 37
custodia/store/interface.py | 30
custodia/store/sqlite.py | 205 ---
debian/changelog | 19
debian/compat | 2
debian/control | 28
debian/copyright | 2
debian/patches/Allow-tox-to-use-locally-installed-packages.patch | 55
debian/patches/call-python-coverage.diff | 13
debian/patches/disable-intersphinx.diff | 33
debian/patches/dont-install-deps.diff | 56
debian/patches/fix-tox-env-for-machine-installed-python-version.diff | 23
debian/patches/series | 6
debian/rules | 26
debian/watch | 2
docs/Makefile | 5
docs/docs_requirements.txt | 6
docs/source/_static/.gitignore | 1
docs/source/api.rst | 198 +++
docs/source/commands.rst | 18
docs/source/conf.py | 39
docs/source/config.rst | 164 ++
docs/source/container.rst | 80 +
docs/source/examples/cfgparser.py | 152 ++
docs/source/examples/cfgparser.rst | 6
docs/source/examples/index.rst | 9
docs/source/examples/misc.rst | 38
docs/source/examples/yaml.rst | 6
docs/source/examples/yaml_ext.py | 44
docs/source/index.rst | 9
docs/source/plugins/authenticators.rst | 31
docs/source/plugins/authorizers.rst | 24
docs/source/plugins/baseclasses.rst | 38
docs/source/plugins/clients.rst | 24
docs/source/plugins/consumers.rst | 24
docs/source/plugins/index.rst | 66 +
docs/source/plugins/stores.rst | 24
docs/source/quick.rst | 312 +++++
docs/source/readme.rst | 55
docs/source/spelling_wordlist.txt | 70 +
examples/enclite.db |binary
man/custodia.7 | 8
requirements.txt | 2
setup.cfg | 8
setup.py | 154 ++
src/custodia/__about__.py | 19
src/custodia/__init__.py | 3
src/custodia/cli/__init__.py | 326 +++++
src/custodia/cli/__main__.py | 7
src/custodia/client.py | 293 +++++
src/custodia/compat.py | 25
src/custodia/forwarder.py | 86 +
src/custodia/httpd/authenticators.py | 134 ++
src/custodia/httpd/authorizers.py | 80 +
src/custodia/httpd/consumer.py | 13
src/custodia/httpd/server.py | 545 +++++++++
src/custodia/log.py | 190 +++
src/custodia/message/common.py | 68 +
src/custodia/message/formats.py | 64 +
src/custodia/message/kem.py | 247 ++++
src/custodia/message/simple.py | 42
src/custodia/plugin.py | 481 ++++++++
src/custodia/root.py | 20
src/custodia/secrets.py | 400 ++++++
src/custodia/server/__init__.py | 141 ++
src/custodia/server/__main__.py | 7
src/custodia/server/args.py | 80 +
src/custodia/server/config.py | 166 ++
src/custodia/store/encgen.py | 82 +
src/custodia/store/enclite.py | 40
src/custodia/store/etcdstore.py | 122 ++
src/custodia/store/interface.py | 12
src/custodia/store/sqlite.py | 145 ++
tests/ca/.gitignore | 1
tests/ca/custodia-ca.conf | 95 +
tests/ca/custodia-ca.key | 28
tests/ca/custodia-ca.pem | 83 +
tests/ca/custodia-ca.sh | 63 +
tests/ca/custodia-client.conf | 22
tests/ca/custodia-client.key | 28
tests/ca/custodia-client.pem | 82 +
tests/ca/custodia-server.conf | 22
tests/ca/custodia-server.key | 28
tests/ca/custodia-server.pem | 85 +
tests/client.py | 21
tests/conftest.py | 39
tests/custodia.py | 62 -
tests/empty.conf | 2
tests/empty.conf.d/root.conf | 2
tests/test_authenticators.py | 140 ++
tests/test_cli.py | 97 +
tests/test_custodia.py | 482 ++++++++
tests/test_message_kem.py | 203 +++
tests/test_misc.py | 65 +
tests/test_plugins.py | 50
tests/test_secrets.py | 413 +++++++
tests/test_server.py | 99 +
tests/test_store.py | 72 +
tests/test_store_sqlite.py | 129 ++
tests/tests.py | 19
tox.ini | 86 -
134 files changed, 8788 insertions(+), 2564 deletions(-)
---
More information about the Pkg-freeipa-devel
mailing list