commit 2adbb7e7983e6d37e2750bdaa788062998efc6c0
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 19 22:34:27 2025 +0200
* Run more tests, and generate test barbican.conf file before testing.
Blacklist WhenTestingSimpleCryptoPlugin.* that's having configuration
loading issues.
commit 2eb414c324415265883e6d4e289204ea06d47313
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 19 08:30:26 2025 +0200
Removed Refactor-test_create_pkcs11-for-future-compat.patch applied upstream.
commit bc59071fc293e6f48b03ddd7265e7a6407a4449b
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 19 08:29:13 2025 +0200
Fixed (build-)depends for this release.
commit 7d7c925a283a2ef12ac03b2d06b201a2badb09fd
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 19 08:27:00 2025 +0200
Now packaging 21.0.0_rc1
commit c6583bc4a1fd289d6ef1c534368e24842ca1a458
Merge: c4c41b5 842ea71
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 19 08:26:35 2025 +0200
Merge tag '21.0.0_rc1' into debian/flamingo
barbican 21.0.0.0rc1 release candidate
meta:version: 21.0.0.0rc1
meta:team: barbican
meta:diff-start: -
meta:series: flamingo
meta:branch: master
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Elod Illes <elod.illes@est.tech>
meta:release:Commit: Elod Illes <elod.illes@est.tech>
meta:release:Change-Id: Ic5b9cbd88d3db4a381bb94396dcd7d389165e6b5
meta:release:Code-Review+2: Thierry Carrez <thierry@openstack.org>
meta:release:Workflow+1: Thierry Carrez <thierry@openstack.org>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
commit c4c41b51c04596219e47abf733600c0ec1c2313c
Author: Thomas Goirand <zigo@debian.org>
Date: Sat Jul 12 10:13:28 2025 +0200
export OS_OSLO_MESSAGING_RABBIT__PROCESSNAME
commit a26df0526b0b00876aca8755e798803d00cd25d0
Author: Thomas Goirand <zigo@debian.org>
Date: Tue May 13 08:16:35 2025 +0200
* Add upstream patch Refactor-test_create_pkcs11-for-future-compat.patch and
re-enable WhenTestingP11CryptoPlugin.test_create_pkcs11.
commit 9f5ec367b549370c1d407984068f2bbfd69466fb
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Apr 2 13:03:43 2025 +0200
Now packaging 20.0.0
commit 91d0ef0f1e5f70bd8b0a7520035084a5e0e60768
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Mar 28 13:53:04 2025 +0100
Uploading to unstable.
commit a6a8eaba43f04a484502a66d282bfacf4a7a6740
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Mar 14 17:35:39 2025 +0100
Fixed (build-)depends for this release.
commit 12bff0a806efa0ac813d629c0f5d651b1266220a
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Mar 14 17:34:13 2025 +0100
Now packaging 20.0.0_rc1
commit a72ffdbff2703d5e37f765782e70cfe2cd7c7290
Merge: a5b93aa 4500d9f
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Mar 14 17:33:53 2025 +0100
Merge tag '20.0.0_rc1' into debian/epoxy
barbican 20.0.0.0rc1 release candidate
meta:version: 20.0.0.0rc1
meta:team: barbican
meta:diff-start: -
meta:series: epoxy
meta:branch: master
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Elod Illes <elod.illes@est.tech>
meta:release:Commit: Elod Illes <elod.illes@est.tech>
meta:release:Change-Id: Ie7fbcbc3fa900280cd49e45e87a23851fcd6ebec
meta:release:Code-Review+1: Ade Lee <alee@redhat.com>
meta:release:Workflow+1: Elod Illes <elod.illes@est.tech>
meta:release:Code-Review+2: Thierry Carrez <thierry@openstack.org>
meta:release:Code-Review+1: Mauricio Harley <mharley@redhat.com>
meta:release:Code-Review+1: Douglas Mendizábal <dmendiza@redhat.com>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
commit a5b93aa3522af1e574b469f9104a03abe0d978c8
Author: Thomas Goirand <zigo@debian.org>
Date: Tue Jan 14 08:35:15 2025 +0100
Removed pep8 build-depends.
commit 8c26801b7de37440a42b29362a1bba472814e1af
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Dec 20 09:12:27 2024 +0100
Switch to pybuild (Closes: #1090399).
commit 72abf439ebd8405c22a8aaf0be588c30f4df8ec6
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Nov 27 09:03:01 2024 +0100
* Black list WhenTestingP11CryptoPlugin.test_create_pkcs11 that is failing
under Python 3.13, see https://bugs.launchpad.net/barbican/+bug/2089735.
(Closes: #1088317).
commit e11be6f5b082c10706c926d7324f64d43df2a93d
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Oct 2 13:18:28 2024 +0200
Now packaging Dalmatian final.
commit 7b3817a023744fcc1b4d7bfc20e7cdb304ce90f8
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 20 16:28:15 2024 +0200
Uploading to unstable.
commit 90a7d227dd17bd2e960bf399d7a253a5dacb5e11
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 13 09:13:27 2024 +0200
Removed python3-openssl from (build-)depends.
commit 839af6f26cfb8c5a7f9c29b146d5915278ee5fba
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 13 09:12:07 2024 +0200
Now packaging 19.0.0_rc1
commit 195ca54bc210093dd984adf8feccfe4531683067
Merge: 579e18b 9d641ce
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Sep 13 09:11:34 2024 +0200
Merge tag '19.0.0_rc1' into debian/dalmatian
barbican 19.0.0.0rc1 release candidate
meta:version: 19.0.0.0rc1
meta:diff-start: -
meta:series: dalmatian
meta:branch: master
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Elod Illes <elod.illes@est.tech>
meta:release:Commit: Elod Illes <elod.illes@est.tech>
meta:release:Change-Id: I153e05c926a039367e821d29e43f3902c24ba260
meta:release:Code-Review+2: Thierry Carrez <thierry@openstack.org>
meta:release:Workflow+1: Thierry Carrez <thierry@openstack.org>
meta:release:Code-Review+1: Grzegorz Grasza <xek@redhat.com>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
commit 579e18b87e4d032d308533c9462c2c965f857168
Author: Thomas Goirand <zigo@debian.org>
Date: Mon Apr 8 10:27:04 2024 +0200
* Disable test_keystone_listener.WhenUsingNotificationTask.* that needs
further configuration to not fail.
commit 80f6e65e660fd31fe549c8af7e774933ba79a0ac
Author: Thomas Goirand <zigo@debian.org>
Date: Thu Apr 4 09:01:19 2024 +0200
Uploading 18.0.0 to unstable.
commit 69b8dc912acbd60ea73fc620a03f860288607b05
Author: Thomas Goirand <zigo@debian.org>
Date: Sun Mar 17 11:57:11 2024 +0100
Now packaging 18.0.0_rc1
commit 1b70a3d68c0678a53927b6adc81ed23300855753
Merge: 8a30353 b6edfda
Author: Thomas Goirand <zigo@debian.org>
Date: Sun Mar 17 11:56:48 2024 +0100
Merge tag '18.0.0_rc1' into debian/caracal
barbican 18.0.0.0rc1 release candidate
meta:version: 18.0.0.0rc1
meta:diff-start: -
meta:series: caracal
meta:branch: master
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Elod Illes <elod.illes@est.tech>
meta:release:Commit: Elod Illes <elod.illes@est.tech>
meta:release:Change-Id: I7385ae6b8a3322b6e730ba908ef1020b0f5c85e8
meta:release:Code-Review+2: Hervé Beraud <herveberaud.pro@gmail.com>
meta:release:Workflow+1: Hervé Beraud <herveberaud.pro@gmail.com>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
commit 8a3035353b6823ffcfb3c6b46ca6976ec475017d
Author: Thomas Goirand <zigo@debian.org>
Date: Tue Feb 20 15:16:45 2024 +0100
Add close-on-exec{2,} = true in uwsgi config.
commit 36921fc1f43e3cd24119225507b0a05e1750b085
Author: Thomas Goirand <zigo@debian.org>
Date: Tue Oct 10 14:17:57 2023 +0200
Add missing namespaces when generating barbican.conf.
commit af2923f4d7a00972670db46a97484db8dc659109
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Oct 4 23:11:51 2023 +0200
Now packaging 17.0.0.
commit 043f6ba08a858705e0e9a2788831991616f0c58f
Author: Thomas Goirand <zigo@debian.org>
Date: Sat Sep 16 16:12:37 2023 +0200
Cleans better.
commit c6b5316f15ded636f2eed5632c9ccb7d304df2cc
Author: Thomas Goirand <zigo@debian.org>
Date: Sat Sep 16 16:09:13 2023 +0200
Fixed (build-)depends for this release.
commit 761b89e4a67db1fe1b9aa53f10146b458a37121d
Author: Thomas Goirand <zigo@debian.org>
Date: Sat Sep 16 16:02:45 2023 +0200
Now packaging 17.0.0_rc1
commit 4831dbc3e018a6e752dce001a75edff611705ba1
Merge: 585e07d c8e3dc1
Author: Thomas Goirand <zigo@debian.org>
Date: Sat Sep 16 16:02:19 2023 +0200
Merge tag '17.0.0_rc1' into debian/bobcat
barbican 17.0.0.0rc1 release candidate
meta:version: 17.0.0.0rc1
meta:diff-start: -
meta:series: bobcat
meta:branch: master
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Elod Illes <elod.illes@est.tech>
meta:release:Commit: Elod Illes <elod.illes@est.tech>
meta:release:Change-Id: I765acaaade765cc050880c278188b2bdfe4399d3
meta:release:Code-Review+2: Hervé Beraud <herveberaud.pro@gmail.com>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
meta:release:Workflow+1: Hervé Beraud <herveberaud.pro@gmail.com>
commit 585e07d5f0454a0c8f62d22da02bbd9d27e3800b
Author: Thomas Goirand <zigo@debian.org>
Date: Mon Aug 14 11:49:53 2023 +0200
Correctly cleans built files (Closes: #1043644).
commit 49d8a82b60941c5130eb19d1fbd261436cfbc71d
Author: Thomas Goirand <zigo@debian.org>
Date: Mon Jun 19 13:50:35 2023 +0200
Removed obsolete lsb-base depends.
commit 0cce8a273db7068a94eb1efa8c5b2e9da88a52b5
Author: Thomas Goirand <zigo@debian.org>
Date: Mon Jun 19 13:45:05 2023 +0200
Uploading to unstable.
commit 7a0542c2ebb8391b6da72f21d169c7a59b92389e
Author: Thomas Goirand <zigo@debian.org>
Date: Fri Apr 14 10:20:42 2023 +0200
Build-depends on openstack-pkg-tools (>= 123~).
commit fb0355e1b6a516e7d80682662c62fe3aa23a9003
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Mar 22 13:09:37 2023 +0100
Now packaging 16.0.0
commit 64ff023f09360b1ef41b6cad590e781504c9ef2b
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Mar 1 15:50:14 2023 +0100
Fixed diff with upstream tag.
commit 534df109d943fd4bda2ee41d10a443fdbe76555e
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Mar 1 15:40:05 2023 +0100
Removed python3-six from (build-)depends.
commit c51012e07b08397e55a8fcac37ba71223921e519
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Mar 1 15:38:37 2023 +0100
Now packaging 16.0.0_rc1
commit 5215e7a1d1cffa73407381968af74af6e0514a20
Merge: 8407d98 5defb5c
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Mar 1 15:38:16 2023 +0100
Merge tag '16.0.0_rc1' into debian/antelope
barbican 16.0.0.0rc1 release candidate
meta:version: 16.0.0.0rc1
meta:diff-start: -
meta:series: antelope
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Hervé Beraud <hberaud@redhat.com>
meta:release:Commit: Hervé Beraud <herveberaud.pro@gmail.com>
meta:release:Change-Id: I867fcff484dc820d1605e4bc327581ffe0ffcce8
meta:release:Code-Review+1: Grzegorz Grasza <xek@redhat.com>
meta:release:Code-Review+2: Thierry Carrez <thierry@openstack.org>
meta:release:Code-Review+1: wu.chunyang <wchy1001@gmail.com>
meta:release:Code-Review+1: Ade Lee <alee@redhat.com>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
meta:release:Workflow+1: Elod Illes <elod.illes@est.tech>
meta:release:Code-Review+2: Hervé Beraud <herveberaud.pro@gmail.com>
commit 8407d98bbd5f9ba437946737c2b2d5c4aca0c3df
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Feb 1 09:12:50 2023 +0100
Now packaging 15.0.1
commit 90dfc1f0237dd0e068b99638b24d899fe6f3e03e
Merge: 9efff33 7d6749f
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Feb 1 09:12:32 2023 +0100
Merge tag '15.0.1' into debian/zed
barbican 15.0.1 release
meta:version: 15.0.1
meta:diff-start: -
meta:series: zed
meta:release-type: release
meta:pypi: no
meta:first: no
meta:release:Author: Tobias Urdin <tobias.urdin@binero.com>
meta:release:Commit: Tobias Urdin <tobias.urdin@binero.com>
meta:release:Change-Id: I6d7f175b15b30352bab2c4ecbe7cb9241c181a25
meta:release:Code-Review+1: Grzegorz Grasza <xek@redhat.com>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
meta:release:Code-Review+1: Ade Lee <alee@redhat.com>
meta:release:Code-Review+2: Thierry Carrez <thierry@openstack.org>
meta:release:Workflow+1: Thierry Carrez <thierry@openstack.org>
commit 7d6749fcb1ad16a3350de82cd8e523d5b55306f8
Merge: 5f4f7ce ac7ba5e
Author: Zuul <zuul@review.opendev.org>
Date: Fri Nov 25 10:08:44 2022 +0000
Merge "Fix typo in check_str for system_admin policy rule" into stable/zed
commit 5f4f7ce12febaa86af5a6467ba7f085defca48f7
Author: Grzegorz Grasza <xek@redhat.com>
Date: Mon Oct 17 11:32:53 2022 +0200
Fix unit test error after cryptography update
After migrating from cryptography===36.0.2 to 38.0.2, the function
generating a not signed CSR fails during the serialization process.
This fix returns a pre-generated CSR from cryptography===36.0.2
Change-Id: Ib538184bf224fd76a892509752fdb2000c205f38
(cherry picked from commit 564c1e50d39998c2cc0b7ed4098f97bfee753472)
commit ac7ba5e20a001e24f18fd305e87730267df0a2d0
Author: melanie witt <melwittt@gmail.com>
Date: Thu Nov 10 20:46:16 2022 +0000
Fix typo in check_str for system_admin policy rule
Story: #2010435
Task: #46851
Depends-On: https://review.opendev.org/c/openstack/requirements/+/865276
Change-Id: I4896f1508e34785864c260e64484ae0138100ef4
(cherry picked from commit 455057c9417d8bce8a60e3903a289c0f1eecadb7)
commit 9efff3361a98f9874375f647b06ea5d52bbe5981
Author: Thomas Goirand <zigo@debian.org>
Date: Thu Oct 6 10:37:53 2022 +0200
Now packaging 15.0.0
commit 371703e435c9ae1c26f942f10b569eb8d9a03ba3
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Oct 5 11:35:47 2022 +0200
* New upstream release:
- fix CVE-2022-3100: incorrectly parsed requests which could allow an
authenticated user to bypass Barbican access policy (Closes: #1021139).
commit 1581eec1170db45060953a21479bacc1d7d060ac
Merge: 9589fd8 b6cbbf9
Author: Thomas Goirand <zigo@debian.org>
Date: Wed Oct 5 11:34:08 2022 +0200
Merge tag '15.0.0_rc3' into debian/zed
barbican 15.0.0.0rc3 release candidate
meta:version: 15.0.0.0rc3
meta:diff-start: -
meta:series: zed
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Douglas Mendizábal <dmendiza@redhat.com>
meta:release:Commit: Douglas Mendizábal <dmendiza@redhat.com>
meta:release:Change-Id: I7662ab3e3c38470b58596b85827242ad47f86133
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
meta:release:Code-Review+2: Hervé Beraud <herveberaud.pro@gmail.com>
meta:release:Workflow+1: Elod Illes <elod.illes@est.tech>
commit b6cbbf90c66d1d7f33d603a32de3287f307f1e58
Author: Douglas Mendizábal <dmendiza@redhat.com>
Date: Tue Aug 30 14:58:00 2022 -0500
Fix Story 2010258 (CVE-2022-3100)
This patch fixes a security vunlerability where the contents of a
request query string were mistakenly being used in the RBAC policy
engine.
(cherry picked from commit 6112c302375bf3d4c27303d12beec52ce2a82a2b)
Change-Id: I5797988e4c63c75fccf85277c52815d9bf684cff
commit 1068bc7ce96a3947c4e7b6430b4cd5f33ff3b261
Author: Grzegorz Grasza <xek@redhat.com>
Date: Mon Sep 12 14:39:11 2022 +0200
Change the unique properties of secret consumers
This makes the resource_id unique together with
service and resource_type (in addition to secret_id).
Additionaly the auto-generated alembic migration also
adds the missing foreign key for project_id.
Change-Id: I4b266782638a4f79357df2b1fe26ea3427479abf
(cherry picked from commit dd94fa2f41471bf47487416ed4a5c37208e8e8cc)
commit 74a14511e790d88b997bb45b07d05c26b104f7b2
Author: OpenStack Release Bot <infra-root@openstack.org>
Date: Mon Sep 26 15:24:50 2022 +0000
Update TOX_CONSTRAINTS_FILE for stable/zed
Update the URL to the upper-constraints file to point to the redirect
rule on releases.openstack.org so that anyone working on this branch
will switch to the correct upper-constraints list automatically when
the requirements repository branches.
Until the requirements repository has as stable/zed branch, tests will
continue to use the upper-constraints list on master.
Change-Id: I386a3ae6ad057222bc82116f756ebf8381449863
commit f20b26ab0a13091387e7f0b4fa5b75f85a6712dc
Author: OpenStack Release Bot <infra-root@openstack.org>
Date: Mon Sep 26 15:24:48 2022 +0000
Update .gitreview for stable/zed
Change-Id: I6a855a3d74034a46a125d03475f5853d25e2385e
commit cfd2b9000839540d787d70fd47cd5b1f5947dd44
Author: Douglas Mendizábal <dmendiza@redhat.com>
Date: Fri Sep 16 13:37:21 2022 -0400
Fix Barbican gate
This patch fixes a zuul syntax error due to a deprecated definition that
was still in use in our configuration.
It also makes the grenade job non-voting as it is currently failing. A
follow up patch will fix grenade and re-enable voting.
Change-Id: I271a3d50dba5f1c7c58c01838fa68b4c8adbd72c
(cherry picked from commit d8ffdf91e56c04ef7d4305d1158eee38695300cc)
commit 9589fd861f5656d3d288ddcc6c026ea7b0efcb55
Author: Thomas Goirand <zigo@debian.org>
Date: Tue Sep 27 09:15:19 2022 +0200
Add python3-microversion-parse as (build-)depends.
commit e30d9708f81faa7975bdd74cbc525fc1cba385e4
Author: Thomas Goirand <zigo@debian.org>
Date: Tue Sep 27 09:13:44 2022 +0200
Start Barbican after FRR.
Now packaging 15.0.0_rc1.
commit 91765b263750ea3733ec4957d907c0c6726efab4
Merge: f2c7b9a 304d5c0
Author: Thomas Goirand <zigo@debian.org>
Date: Tue Sep 27 09:13:15 2022 +0200
Merge tag '15.0.0_rc1' into debian/zed
barbican 15.0.0.0rc1 release candidate
meta:version: 15.0.0.0rc1
meta:diff-start: -
meta:series: zed
meta:release-type: release candidate
meta:pypi: no
meta:first: no
meta:release:Author: Elod Illes <elod.illes@est.tech>
meta:release:Commit: Elod Illes <elod.illes@est.tech>
meta:release:Change-Id: If86cf7c5dfa5913fe1732735407dcafab1226f13
meta:release:Code-Review-1: Douglas Mendizábal <dmendiza@redhat.com>
meta:release:Code-Review+2: Elod Illes <elod.illes@est.tech>
meta:release:Code-Review+2: Hervé Beraud <herveberaud.pro@gmail.com>
meta:release:Workflow+1: Hervé Beraud <herveberaud.pro@gmail.com>
commit f2c7b9aa8b4be6fd1d0fece40ecdf85a6e51f5bd
Author: Thomas Goirand <zigo@debian.org>
Date: Tue Jun 14 11:04:06 2022 +0200
* Also blacklist test_should_raise_with_unsigned_pkcs10_data() in
autopkgtest (Closes: #1012485).
commit 269f66d35f83e322f2f414710c54c7a1fd90f7a0
Author: Thomas Goirand <zigo@debian.org>
Date: Tue May 31 09:53:01 2022 +0200
Blacklist test_should_raise_with_unsigned_pkcs10_data() (Closes: #1011703).
Among the 2 debian patches available in version 1:20.0.0-3 of the package, we noticed the following issues:
![[bug history graph]](https://qa.debian.org/data/bts/graphs/b/barbican.png){kind=link}