ANNOUNCE: p11-kit 0.20.2

Stef Walter stefw at redhat.com
Wed Jan 15 05:49:45 PST 2014 

Announcing a new release of p11-kit. This is a stable release (at least
that's the idea :)

Of particular note is a regression that was introduced in the 'trust
extract' code of the 0.20.0 and 0.20.1 releases:

  If an anchor was blacklisted, but blacklisted in a different
  location (ie: token) than the anchor, then the 'trust extract'
  command would not take it into account when extracting anchors.

  More info:

  https://bugs.freedesktop.org/show_bug.cgi?id=73558
  https://bugzilla.redhat.com/show_bug.cgi?id=1041328

Therefore I recommend packagers update to version 0.20.2 if you've
packaged any of the 0.20.x series.

In other news, the autogen.sh script has been changed to run configure
in its own build directory by default. Packagers building from the
tarball should not be affected.

Changes between 0.20.1 and 0.20.2
---------------------------------

 * Fix bug where blacklist didn't affect extracted ca-anchors if the anc
   and blacklist were not in the same trust path (regression) [#73558]
 * Check for race in BasicConstraints stapled extension [#69314]
 * autogen.sh now runs configure as srcdir != builddir by default
 * Build fixes and cleanup

Many thanks to everyone who contributed with review, patches and testing :)


Detailed changes between 0.20.1 and 0.20.2
------------------------------------------

Andreas Metzler (1):
      Disable tests with setgid binaries when running in fakeroot

Nikos Mavrogiannopoulos (1):
      Check if pthread and nanosleep() are in libc before linking other

Roman Bogorodskiy (1):
      Drop unused libtasn1.h include

Stef Walter (17):
      Update from transifex and string changes
      Fix documentation build
      trust: Check for race in BasicConstraints stapled extension
      Fix typo in mock.c
      Update translations from transifex
      Remove straggler file in the tools directory
      iter: Add p11_kit_iter_get_attributes() function
      iter: Fix return value in rare memory allocation case
      enumerate: Use p11_enumerate_ready() from tests
      attrs: Allow NULL attribute to be passed to p11_attr_hash()
      enumerate: Preload and respect blacklist across all tokens
      Move gtk-doc.make into build directory
      Build in srcdir != builddir fashion by default
      trust: Add installcheck target for testing extract
      test-iter: Fix use of uninitialized variable
      distcheck: Build with optimizations so we get proper warnings
      Release version 0.20.2


Download
--------

http://p11-glue.freedesktop.org/releases/


Cheers,

Stef

More information about the p11-glue mailing list