Version 2.4.15

This release fixes a nasty bug in wsmc_add_property.

• Features
  • Ruby: Add Fault#to_s
  • Ruby: Enable ClientOptions#properties=
  • Cim: New config option "cim_client_cql' to select CQL query
    identifier ('CQL' - default, 'DMTF:CQL' - standards-compliant)
• Bugfixes
  • Fix segfault in wsmc_add_property
  • Fix memleak in xpath handling
  • Fix typo in parsing max_connections_per_thread (vcrhonek)
  • Ruby: ClientOptions#properties=

Version 2.4.14

• Features
  • Improved C++ bindings (Peter Hatina)
• Bugfixes
  • Build fixes for Fedora21, RHEL7, and CentOS7
  • option parser accepts '-?' and '--help' as valid

Version 2.4.13

• Features
  • Support Ruby 2.2
• Bugfixes
  • Parsing of vendor namespaces (#48, #38)
  • Client getters memory leaks (#47)
  • Keep order of invoke parameters (#49)

Version 2.4.12

• Features
  • New config option 'ssl_disable_protocols'. Pre-set to disable SSLv2 and v3 in SSL mode
  • Ruby: support Ruby 2.1 threading API
• Bugfixes
  • Fix memory corruption due to a malloc made with the wrong size
  • iniparser: dictionary_set' must return a value (David Holm)

This version also changes the openwsman.gem to include the raw swig files and thus makes the gem independant from the host creating the gem

Version 2.4.11

• Features
  • Bindings: EndPointReference.selector_names() for Python
• Bugfixes
  • URI parsing: Disallow comma to separate selectors in resource uri, only ampersand is allowed. (issue #38)
  • Bindings: Fix Ruby doc generation

Do NOT use http://...?Foo="Bar",Baz="Boo",...
Use http://...?Foo="Bar"&Baz="Boo"&...

Feature release 2.4.10

This release adds support for embedded EndPointReferences in action (aka invoke()) parameters.

Such parameters are passed via ClientOptions.add_property(key, value) which now also accepts EndPointReference instances as a value type.

Bugfix release: 2.4.7

This release includes an important bugfix if you are using file-based authentication (instead of PAM).

The 2.4.6 release compared only up to 64 characters of the password hash, which is not sufficient if you use SHA512 for the hash.

Openwsman 2.4.6

This is a bugfix release. Special thanks to Kent Baxley for details on the security related fixes.

Security related fixes

• Support large hashes (like SHA512) in file authentication
• use constant-time password compare to prevent brute-force attacks

Packaging fixes

• Create server-plugin-ruby as separate RPM

Other fixes

• Fix crash on invalide resource URI
• Fix resource namespace for DCIM_ classes

Features

• Add Unisys namespace and CIM class prefix 'SPAR'

Openwsman 2.4.4

This release is mostly focused on fixing security issues reported by the Ubuntu security team.
Kudos to them for a thorough code review !

Not all reported issues are fixed, only the most obvious/critical ones.

Security related fixes

• ws_xml_make_default_prefix() can overflow buf parameter via sprintf()
• ws_xml_make_default_prefix() can overflow buf parameter via sprintf()
• wsmc_create_request() potential buf[20] overflow via WSMAN_ACTION_RENEW
• LocalSubscriptionOpUpdate() unchecked fopen()
• Incorrect order of sanity guards in wsman_get_fault_status_from_doc()
• Unchecked memory allocation in wsman_init_plugins(), p->ifc
• Unchecked memory allocation in mem_double(), newptr
• Unchecked memory allocation in dictionary_new(), d, d->val, d->key, d->hash
• Unchecked memory allocation in u_error_new(), *error
• sighup_handler() in wsmand.c uses unsafe functions in a signal handler

Features

• add rcopenwsman command to systemd environments
• add rcopenwsmand command for backwards compatibility

Bindings

• support rdoc 2.1 in Ruby bindings
• cmake: use PYTHON_INCLUDE_DIRS

Openwsman 2.4.3

• Bugfixes
  • Fix bindings for Java 1.5
  • Raise exception if client creation fails (bindings)