Releases · Openwsman/openwsman

23 Jan 10:06

kkaempf

v2.8.1

20efbcc

Latest

Main reason for this release is the broken SSL support in 2.8.0 due to
a too short default key length for certificates created by the owsmangencert.sh script.

The cmake dependency was relaxed to 3.12, allowing it to build on more (older) distributions.

Bugfixes
- openssl 3 requires minimal key length of 2048 bits
- improve error reporting for openssl errors
- update README.md
- revert minimal cmake to 3.12 (Alexander Usyskin)
- fix .spec file for reproducible build (Bernhard Wiedemann)

Assets 2

06 Dec 15:23

kkaempf

v2.8.0

a2461f9

Version 2.8.0 - refresh dependencies

Version 2.8.0

Update to CMake 3.27 or later, OpenSSL 3

API change
- 'int facility' must be defined in all executables using u/log
Features
- support TLS v1.3
- use CMake 3.27 or later for building
- builds on MacOS now (kkaempf)
- add Python 3.11 support (Joshua Kugler)
Bugfixes
- fix Ruby rb_io vs rb_io_t to support Ruby 3.x (Vitezslav Crhonek, kkaempf)
- Fixed missing void in prototypes causing compile errors when
  using -Wstrict-prototypes (Olaf Trygve Berglihn)
- Removed unused token lineno causing errors due to compile
  flag -Wunused (Olaf Trygve Berglihn)
- Link with libm for floor() function (Khem Raj)
- Added wsman-key-value.h to list of headers to install (Olaf Trygve Berglihn)
- wsman-win-client-transport: add SECURITY_FLAG_IGNORE_CERT_WRONG_USAGE,
  Ignore more problematic certificates if verify_peer is 0. (Alexander Usyskin)
- unlock mutex before destroy (kkaempf)
- fix many compiler warnings (Alexander Usyskin)
- drop Python 3.7 support (kkaempf)

Assets 2

28 Dec 15:50

Openwsman

v2.7.2

0120e25

Version 2.7.2 - robustness improvements

This release add two "good practice" security fixes and a number of smaller improvements

Security
- call setgroups before setuid or setgid (kkaempf)
- harden systemd service (https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort)
Bugfixes
- wsman-win-client-transport: initialize certificate pointer (Alexander Usyskin)
- iniparser: fix buffer size (Alexander Usyskin)
- wsman-win-client-transport: plug leak in error path (Alexander Usyskin)
- memory.c: fix memory cleanup (Alexander Usyskin)
- Improve handling of HTTP 401 Unauthorized (Vitezslav Crhonek)
- Fix serialization tests (kkaempf)
- Fix Ruby bindings warnings (kkaempf)
- Fix Ruby plugin loading test (kkaempf)
- Fix rpm packaging (kkaempf)
- Allow to run tests from 'build' directory (kkaempf)
- Add Python XML test (kkaempf)
- Enable CUNIT tests (kkaempf)

Assets 2

12 Oct 13:11

kkaempf

v2.7.1

6cdf3be

v2.7.1 - bugfix release

Bugfixes
- msvc build fixes (Alexander Usyskin)
- cleanup passwords after use (Alexander Usyskin)
- drop RANDFILE in owsmangencert.h (kkaempf)
- fix potential NULL pointer dereference (Alexander Usyskin)
- MinGW build enablement (Bastian Germann)

Assets 2

12 Oct 13:10

kkaempf

v2.7.0

9aeaa0a

Version 2.7.0 - minor API changes !

API change
- client_opt: expiry and hearbeat_interval are float (Alexander Usyskin)
  wsmc_set_sub_expiry() and wsmc_set_heartbeat_interval() change their
  first parameter from int to float
- bump so version of libwsman_client from 4 to 5
- new functions for C++ bindings: OpenWsmanClient::GetWithFlags()
  and OpenWsmanClient::PutWithFlags to add a 'flags' parameter
  (Alexander Usyskin)
- add FLAG_SUPRESS_100_CONTINUE to options, fixes #131 to workaround
  a curl problem. Reportedly curl 7.69.0 fixes this also in curl.
  (Alexander Usyskin)
- fixed several compiler warnings (Alexander Usyskin)
- fixed spelling errors (Tomas Winkler)

Assets 2

17 Sep 10:08

kkaempf

v2.6.11

d8eba6c

Version 2.6.11 - bugfix update

Version 2.6.10 had a double-free bug in the events error processing. This is fixed by 2.6.11.

Assets 2

16 Sep 13:46

kkaempf

v2.6.10

c32252f

Version 2.6.10 - security update

Pthread usage fixes (Alexander Usyskin)
Convert sprintf to snprintf and strcpy to strncpy (Tomas Winkler)
Fix configure for Windows (Alexander Usyskin)
Fix possible denial of service (Adam Majer, Klaus Kaempf)
CVE-2019-3833:
"Openwsman, versions up to and including 2.6.9, are vulnerable to
infinite loop in process_connection() when parsing specially crafted
HTTP requests. A remote, unauthenticated attacker can exploit this
vulnerability by sending malicious HTTP request to cause denial of
service to openwsman server."
Many potential NULL dereferences fixed (Alexander Usyskin)

Assets 2

22 Nov 14:19

kkaempf

v2.6.9

5efb154

Version 2.6.9 - CURL 7.62 adaption, openSSL 1.1.0 support

Main change is build enablement against CURL 7.62 and support for the openSSL 1.1.0 API

Other changes

fix build on VS2017 (#114)
warn on empty ssl_cipher_list (#111)
improve winrs compatibility (#83)

Assets 2

12 Oct 10:12

kkaempf

v2.6.8

b9cd0b7

Version 2.6.8 - security fix

This version disables directory listing in the http(s) component.

Assets 2

12 Oct 10:11

kkaempf

v2.6.7

2bd9500

Version 2.6.7 - CMake 2.6 support

This release builds with CMake 2.6 (or later)

Bugfixes
- fix return value check for SSL_CTX_set_cipher_list()
- fix pam config for local install

Assets 2

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Version 2.8.0

Update to CMake 3.27 or later, OpenSSL 3

Releases: Openwsman/openwsman

Version 2.8.1 - bugfix release

Version 2.8.0 - refresh dependencies

Version 2.8.0

Update to CMake 3.27 or later, OpenSSL 3

Version 2.7.2 - robustness improvements

v2.7.1 - bugfix release

Version 2.7.0 - minor API changes !

Version 2.6.11 - bugfix update

Version 2.6.10 - security update

Version 2.6.9 - CURL 7.62 adaption, openSSL 1.1.0 support

Version 2.6.8 - security fix

Version 2.6.7 - CMake 2.6 support