krb5-1.19.1-15.el9 | Build Info

Information for build krb5-1.19.1-15.el9

22095

Package Name

krb5

Version

1.19.1

Release

15.el9

Epoch

Draft

False

Source

git+https://git.cclinux.org/stage/rpms/krb5.git#c62d7a4f271e29747f92d80accf9b3412b5f2292

Summary

The Kerberos network authentication system

Description

Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form.

Built by

distrobuild

State

complete

Volume

DEFAULT

Started

Thu, 07 Jul 2022 17:52:12 CST

Completed

Thu, 07 Jul 2022 19:40:19 CST

Task

build (dist-circle9, /stage/rpms/krb5.git:c62d7a4f271e29747f92d80accf9b3412b5f2292)

Extra

{'source': {'original_url': 'git+https://git.cclinux.org/stage/rpms/krb5.git?#c62d7a4f271e29747f92d80accf9b3412b5f2292'}}

Tags

dist-circle9

dist-circle9-compose

RPMs

src
	krb5-1.19.1-15.el9.src.rpm (info) (download)
aarch64
	krb5-devel-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-libs-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-pkinit-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-server-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-server-ldap-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-workstation-1.19.1-15.el9.aarch64.rpm (info) (download)
	libkadm5-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-debuginfo-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-debugsource-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-libs-debuginfo-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-pkinit-debuginfo-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-server-debuginfo-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-server-ldap-debuginfo-1.19.1-15.el9.aarch64.rpm (info) (download)
	krb5-workstation-debuginfo-1.19.1-15.el9.aarch64.rpm (info) (download)
	libkadm5-debuginfo-1.19.1-15.el9.aarch64.rpm (info) (download)
i686
	krb5-devel-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-libs-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-pkinit-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-server-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-server-ldap-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-workstation-1.19.1-15.el9.i686.rpm (info) (download)
	libkadm5-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-debuginfo-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-debugsource-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-libs-debuginfo-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-pkinit-debuginfo-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-server-debuginfo-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-server-ldap-debuginfo-1.19.1-15.el9.i686.rpm (info) (download)
	krb5-workstation-debuginfo-1.19.1-15.el9.i686.rpm (info) (download)
	libkadm5-debuginfo-1.19.1-15.el9.i686.rpm (info) (download)
ppc64le
	krb5-devel-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-libs-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-pkinit-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-server-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-server-ldap-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-workstation-1.19.1-15.el9.ppc64le.rpm (info) (download)
	libkadm5-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-debuginfo-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-debugsource-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-libs-debuginfo-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-pkinit-debuginfo-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-server-debuginfo-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-server-ldap-debuginfo-1.19.1-15.el9.ppc64le.rpm (info) (download)
	krb5-workstation-debuginfo-1.19.1-15.el9.ppc64le.rpm (info) (download)
	libkadm5-debuginfo-1.19.1-15.el9.ppc64le.rpm (info) (download)
s390x
	krb5-devel-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-libs-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-pkinit-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-server-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-server-ldap-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-workstation-1.19.1-15.el9.s390x.rpm (info) (download)
	libkadm5-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-debuginfo-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-debugsource-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-libs-debuginfo-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-pkinit-debuginfo-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-server-debuginfo-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-server-ldap-debuginfo-1.19.1-15.el9.s390x.rpm (info) (download)
	krb5-workstation-debuginfo-1.19.1-15.el9.s390x.rpm (info) (download)
	libkadm5-debuginfo-1.19.1-15.el9.s390x.rpm (info) (download)
x86_64
	krb5-devel-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-libs-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-pkinit-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-server-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-server-ldap-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-workstation-1.19.1-15.el9.x86_64.rpm (info) (download)
	libkadm5-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-debuginfo-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-debugsource-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-libs-debuginfo-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-pkinit-debuginfo-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-server-debuginfo-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-server-ldap-debuginfo-1.19.1-15.el9.x86_64.rpm (info) (download)
	krb5-workstation-debuginfo-1.19.1-15.el9.x86_64.rpm (info) (download)
	libkadm5-debuginfo-1.19.1-15.el9.x86_64.rpm (info) (download)

Logs

aarch64
	build.log
	hw_info.log
	installed_pkgs.log
	mock_output.log
	root.log
	state.log
i686
	build.log
	hw_info.log
	installed_pkgs.log
	mock_output.log
	root.log
	state.log
ppc64le
	build.log
	hw_info.log
	installed_pkgs.log
	mock_output.log
	root.log
	state.log
s390x
	build.log
	hw_info.log
	installed_pkgs.log
	mock_output.log
	root.log
	state.log
x86_64
	build.log
	hw_info.log
	installed_pkgs.log
	mock_output.log
	root.log
	state.log

Changelog

* Mon Mar 14 2022 Julien Rische <jrische@redhat.com> - 1.19.1-15 - Use SHA-256 instead of SHA-1 for PKINIT CMS digest * Thu Feb 24 2022 Julien Rische <jrische@redhat.com> - 1.19.1-14 - Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled - Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode * Fri Dec 17 2021 Antonio Torres <antorres@redhat.com> - 1.19.1-13 - Remove -specs= from krb5-config output - Resolves #1997021 * Wed Oct 20 2021 Antonio Torres <antorres@redhat.com> - 1.19.1-12 - Fix KDC null deref on TGS inner body null server (CVE-2021-37750) - Resolves: #1997602 * Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 1.19.1-11.1 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 * Tue Jul 20 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-11 - Fix KDC null deref on bad encrypted challenge (CVE-2021-36222) - Resolves: #1983733 * Wed Jul 14 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-10 - Update OpenSSL 3 provider handling to clean up properly - Resolves: #1955873 * Mon Jun 21 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-9 - Sync openssl3 patches with upstream - Resolves: #1955873 * Thu Jun 17 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-8 - Rebuild for rpminspect and mass rebuild cleanup; no code changes - Resolves: #1967505 * Thu Jun 17 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-7 - Fix several fallback canonicalization problems - Resolves: #1967505 * Tue Jun 15 2021 Mohan Boddu <mboddu@redhat.com> - 1.19.1-6.1 - Rebuilt for RHEL 9 BETA for openssl 3.0 - Resolves: rhbz#1971065 * Thu Jun 10 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-6 - Backport KCM retrieval fixes - Resolves: #1956403 * Thu May 20 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-5 - Fix DES3 mention in KDFs - Resolves: #1955873 * Wed May 19 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-4 - Port to OpenSSL 3 (alpha 15) - Resolves: #1955873 * Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 1.19.1-3.1 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 * Mon Mar 01 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-3 - Further test dependency fixes; no code changes * Mon Mar 01 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-2 - Make test dependencies contingent on skipcheck; no code changes * Thu Feb 18 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-1 - New upstream version (1.19.1) * Wed Feb 17 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-3 - Restore krb5_set_default_tgs_ktypes() * Fri Feb 05 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-2 - No code change; just coping with reverted autoconf * Tue Feb 02 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-1 - New upstream version (1.19) * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.5 - Support host-based GSS initiator names * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.4 - Require krb5-pkinit from krb5-{server,workstation} * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.3 - Fix up weird mass rebuild versioning * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.2.2 - Add APIs for marshalling credentials * Wed Jan 27 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.1.2 - Cope with new autotools behavior wrt runstatedir * Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1.19-0.beta2.1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jan 12 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-1 - New upstream version (1.19-beta2) * Wed Dec 16 2020 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta1.2 - New upstream version (1.19-beta1) * Wed Dec 16 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-5 - Fix runstatedir configuration - Why couldn't systemd just leave it alone? * Tue Nov 24 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-4 - Document -k option in kvno(1) synopsis * Fri Nov 20 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-3 - Upstream executable shared libraries patch * Wed Nov 18 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-2 - Fix build failure in -1 * Wed Nov 18 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-1 - New upstream version (1.18.3) * Tue Nov 17 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-30 - Migrate /var/run to /run, an exercise in pointlessness - Resolves: #1898410 * Thu Nov 05 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-29 - Add recursion limit for ASN.1 indefinite lengths (CVE-2020-28196) * Fri Oct 23 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-28 - Fix minor static analysis defects * Wed Oct 21 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-27 - Fix build of previous * Wed Oct 21 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-26 - Cross-realm s4u fixes for samba (#1836630) * Thu Oct 15 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-25 - Unify kvno option documentation * Fri Oct 02 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-24 - Add md5 override to krad * Thu Sep 10 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-23 - Use `systemctl reload` to HUP the KDC during logrotate - Resolves: #1877692 * Wed Sep 09 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-22 - Fix input length checking in SPNEGO DER decoding * Fri Aug 28 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-21 - Mark crypto-polices snippet as missingok - Resolves: #1868379 * Thu Aug 13 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-20 - Temporarily dns_canonicalize_hostname=fallback changes - Hopefully unbreak IPA while we debug further * Fri Aug 07 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-19 - Expand dns_canonicalize_hostname=fallback support * Tue Aug 04 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-18 - Fix leak in KERB_AP_OPTIONS_CBT server support * Mon Aug 03 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-17 - Revert qualify_shortname removal * Mon Aug 03 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-16 - Disable tests on s390x - Resolves: #1863952 * Sat Aug 01 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.18.2-15 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Fri Jul 31 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-14 - Revert qualify_shortname changes * Tue Jul 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.18.2-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Wed Jul 22 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-12 - Ignore bad enctypes in krb5_string_to_keysalts() - Allow gss_unwrap_iov() of unpadded RC4 tokens * Wed Jul 15 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-11 - Ignore bad enctypes in krb5_string_to_keysalts() * Wed Jul 08 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-10 - Set qualify_shortname empty in default configuration - Resolves: #1852041 * Mon Jun 15 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-9 - Use two queues for concurrent t_otp.py daemons * Mon Jun 15 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-8 - Match Heimdal behavior for channel bindings * Mon Jun 08 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-7 - Fix test suite by removing wrapper workarounds * Mon Jun 08 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-6 - Omit PA_FOR_USER if we can't compute its checksum * Sat May 30 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-5 - Replace gssrpc tests with a Python script * Sat May 30 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-4 - Default dns_canonicalize_hostname to "fallback" * Tue May 26 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-3 - dns_canonicalize_hostname = fallback * Tue May 26 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-2 - Pass channel bindings through SPNEGO * Fri May 22 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-1 - New upstream release (1.18.2) * Fri May 22 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.1-6 - Fix SPNEGO acceptor mech filtering * Mon May 18 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.1-5 - Fix typo ("in in") in the ksu man page * Fri May 08 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.1-4 - Omit KDC indicator check for S4U2Self requests * Tue Apr 28 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.1-3 - Pass gss_localname() through SPNEGO * Tue Apr 14 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-1.1 - Drop yasm requirement since we don't use builtin crypto * Tue Apr 14 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.1-1 - New upstream version (1.18.1) * Tue Apr 07 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-12 - Make ksu honor KRB5CCNAME again * Thu Apr 02 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-11 - Do expiration warnings for all init_creds APIs * Wed Apr 01 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-10 - Correctly import "service@" GSS host-based name * Thu Mar 26 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-9 - Eliminate redundant PKINIT responder invocation * Thu Mar 26 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-8 - Add finalization safety check to com_err * Fri Mar 20 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-7 - Add maximum openssl version in preparation for openssl 3 * Tue Mar 17 2020 Robbie Harwood <rharwood@redhat.com> - 1.18-6 - Document client keytab usage

Main Site Links:

Information for build krb5-1.19.1-15.el9