Update files for release 2.3.1

This commit is contained in:
Benjamin Dauvergne 2010-09-07 16:39:01 +02:00
parent b1f6b7e0ed
commit 9af598f85c
8 changed files with 1385 additions and 8 deletions

259
ChangeLog
View File

@ -1,3 +1,262 @@
2010-09-07 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* configure.ac, lasso/saml-2.0/profile.c:
[SAMLv2] when no artifact message is present, still return a success
status
It is mandated by the specification.
2010-09-06 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* tests/integration/saml2/__init__.py:
[Tests integration] fix configuration variable name
2010-09-03 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/id-ff/provider.c:
[Core] fix memory leak in lasso_endpoint_free
2010-09-03 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/id-ff/provider.c, lasso/saml-2.0/provider.c:
[ID-FFv1.2&SAMLv2] add more warning for failure to load metadata file
Report detailf of the failure through warning log.
2010-09-03 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/profile.c, lasso/xml/strings.h:
[SAMLv2] when failing to recreate the content for the ArtefactResponse set a lasso specific status code
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/profile.c:
[SAMLv2] change the way content is stored and loaded for the
HTTP-Artifact binding
Previously content was stored as the result of lasso_node_dump method
then reloaded, and then serialized again as part of the
ArtifactResponse message. lasso_node_dump was ignoring all hint to
sign node, but keeping the needed parameters around. That's not what
must be done, the signature should happen at the generation of the
artifact and the result must manipulated as is (i.e. XML content) and
never moved back to the land of LassoNode objects.
Now the content is:
- first removed of any signature at the message level, because the
ArtifactResponse will take care of this, (any signature under this
level (like at the assertion) is kept),
- serialized using lasso_node_export_to_xml,
- reloaded using lasso_xml_parse_memory,
- and put into the ArtifactResponse using a
lasso_misc_text_node_new_with_xml_node.
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/profile.c, lasso/saml-2.0/profileprivate.h:
[SAMLv2] make lasso_saml20_profile_generate_artifact a static function
It is only used in lasso/saml-2.0/profile.c anyway.
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/xml/xml.c:
[Core] load signature parameters
Generic signature parameters (attached as qdata to nodes) is now
reloaded when initializing a node from XML for a node type with a
signature snippet in its metadatas.
It fixes the problematic usage of ciphered private keys with the
HTTP-Artifact binding (which needs to keep a copy of the AuthnResponse
around and to sign it later).
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/xml/xml.c:
[Core] add private function to read an integer attribute
This function does integer parsing and range checks, it returns TRUE if
all goes well.
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/xml/tools.c, lasso/xml/xml.h:
[Core] add LAST enum values to LassoSignatureMethod and
LassoSignatureType enumerations
It helps making range checks.
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* bindings/java/lang.py, bindings/perl/lang.py,
bindings/php5/wrapper_source.py, bindings/python/lang.py,
lasso/xml/strings.h:
[Strings] add string constant for the internal XML attributes used in
dumps
Add string constants for signature method, signature type, private key
(file path or content), private key password and certificate (file
path or content).
Add cast for xmlChar constant strings definition in python bindings,
it assumed all constant strings were char*.
2010-08-31 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso.doap:
[DOAP] fix typos
Tags were badly formatted.
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/login.c:
[SAMLv2] mark Redirect binding as an invalid binding for return AuthnResponse
This is really not supported by the SAMLv2 protocol.
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/login.c:
[SAMLv2] fix string in comment
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/login.c:
[SAMLv2] replace use of lasso_provider_get_default_name_id_format with direct use of lasso_provider_get_metadata_one_for_role
The first is trying to use provider->role to know which kind of role
descriptor to lookup, but for the server object this field is 0 and
when building authn request we know that we want our default
NameIDFormat for the SP sso descriptor.
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/provider.c:
[SAMLv2] rebuild specialized LassoProvider methods upon new endpoints storage
The new way of storing endpoints allows to keep ordering between
endpoints with respect to the order of the index and isDefault field
for indexed endpoint type, and to the XML node orders for other
endpoints.
It also simplifies the code.
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/id-ff/provider.c:
[Core] add destroy code for new private field endpoints
The contained string must be disallocated if the object is destroyed.
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/id-ff/providerprivate.h:
[Core] add structure to store endpoints type for metadata files
This new C structure will allow to filter ID-FFv1.2 and SAMLv2
endpoints more easily.
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/xml/xml.c:
[XML] use strtol instead of atoi to parse XSchema integers
This commit also reject negative integers from being parsed (all
integers in SAMLv2 and ID-FFv1.2 schemas are positive integers).
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/saml-2.0/login.c:
[SAMLv2] when AuthnRequest contains invalid attributes returns
INVALID_REQUEST not NO_DEFAULT_ENDPOINT
This is the right status to return.
2010-08-05 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* lasso/id-ff/provider.h:
[Core] fix change of enumeration value
This change broke the API, revert it.
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/web/index.xml:
[Website] update download link on front page
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/templates/base.ezt:
[Website] fix typos
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/templates/base.ezt, website/web/download/index.xml:
[Website] fix source and download links
The source repository is now the git repository on dev.entrouvert.org.
Latest source release is 2.3.0. And git browser is included in our
redmine.
2010-07-27 Benjamin Dauvergne <bdauvergne@lupin.entrouvert.com>
* website/templates/base.ezt:
[Website] change position of Download block in right bar
2010-07-27 Benjamin Dauvergne <bdauvergne@lupin.entrouvert.com>
* website/convert-to-static.py:
[Website] in convert-to-static.py, work around errors in build logs
If Build() constructor fails, keep going.
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/web/news/15-release-2.3.0.xml:
[Website] fix wrong structure for the news file about release 2.3.0
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/convert-to-static.py:
[Website] import convert-to-static.py modification from lupin
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/web/news/15-release-2.3.0.xml:
[Website] add news file aboute release 2.3.0
2010-07-22 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/web/download/index.xml:
[Website] fix non escaped ampersand
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* configure.ac:
[Release] update libtool version
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* website/web/download/index.xml:
[Website] update download links
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* NEWS, configure.ac, lasso.doap, website/web/doap.rdf:
[Release] Update version number from 2.3 to 2.3.0
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* NEWS:
[Release] update release date in NEWS file
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
* ChangeLog:
[Release] update ChangeLog
2010-07-21 17:55 bdauvergne
* NEWS, abi/abi-2.3, configure.ac, lasso.doap, website/templates/base.ezt,

21
NEWS
View File

@ -1,8 +1,27 @@
NEWS
====
2.3.1 - September 9th 2010
--------------------------
31 commits, 23 files changed, 523 insertions, 356 deletions
* An ABI breakage was introduced in 2.3.0 with change of value for enumeration
values LASSO_PROVIDER_ROLE_SP and LASSO_PROVIDER_ROLE_IDP, it breaked code
compiled with previous version and dumps of server objects. This release fix
it.
* SAMLv2 handling of the artifact binding for the WebSSO profile is now
simpler, no more dumping of the response nodes and signing at the artifact
building time, the final response is signed when the artifact is generated
and when unserialized later it is only manipulated as XML for not breaking
the signature. It fixes usage of ciphered private keys with the
HTTP-Artifact binding.
* SAMLv2 internal storage of endpoints was modified to better keep the
ordering between endpoints, which is espacially important for
AssertionConsumerService endpoints and difficult to implement well.
2.3.0 - July 21th 2010
--------------------
----------------------
391 commits, 332 files changed, 13919 insertions, 7137 deletions

1091
abi/abi-2.3.1 Normal file

File diff suppressed because it is too large Load Diff

View File

@ -184,7 +184,7 @@ dnl - interfaces removed -> AGE = 0
# m = a
# r = r
current=`expr $VERSION_MAJOR + $VERSION_MINOR`
LASSO_VERSION_INFO="11:0:8"
LASSO_VERSION_INFO="12:0:8"
AC_SUBST(LASSO_VERSION_INFO)
dnl Compute the minimal supported ABI version for Win32 scripts and resources files.

View File

@ -61,6 +61,10 @@
</SVNRepository>
</repository>
<release>
<Version>
<created>2010-09-07</created>
<revision>2.3.1</revision>
</Version>
<Version>
<created>2010-07-21</created>
<revision>2.3.0</revision>

View File

@ -57,8 +57,8 @@
<div id="download">
<h2>Download</h2>
<p>
The most recent version of Lasso is <strong>2.3</strong> and was
release on July 21th 2010.
The most recent version of Lasso is <strong>2.3.1</strong> and was
release on Septembre 9th 2010.
</p>
<h3>Binary packages</h3>
<p>
@ -67,7 +67,7 @@
</p>
<h3>Source</h3>
<p>
<li><a href="http://labs.libre-entreprise.org/frs/download.php/807/lasso-2.3.0.tar.gz">.tar.gz</a></li>
<li><a href="https://dev.entrouvert.org/attachments/download/12/lasso-2.3.1.tar.gz">.tar.gz</a></li>
<li><a href="http://dev.entrouvert.org/git/lasso.git">Git repository : http://dev.entrouvert.org/git/lasso.git</a></li>
<li><a href="https://dev.entrouvert.org/projects/lasso/repository">Browse git repository</a></li>
</p>

View File

@ -1,4 +1,4 @@
<Project
<Project
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:rdfs="http://www.w3.org/2000/01/rdf-schema#"
xmlns="http://usefulinc.com/ns/doap#"
@ -29,12 +29,12 @@
<implements>
<Specification rdf:about="http://www.projectliberty.org/liberty/content/download/1266/8160/file/liberty-idff-1.2-20050520.zip">
<rdfs:label>Liberty Alliance ID-FF 1.2</rdfs:label>
</Specification
</Specification>
</implements>
<implements>
<Specification rdf:about="http://docs.oasis-open.org/security/saml/v2.0/saml-2.0-os.zip">
<rdfs:label>OASIS SAML 2.0</rdfs:label>
</Specification
</Specification>
</implements>
<maintainer>
<foaf:Person>
@ -61,6 +61,10 @@
</SVNRepository>
</repository>
<release>
<Version>
<created>2010-09-07</created>
<revision>2.3.1</revision>
</Version>
<Version>
<created>2010-07-21</created>
<revision>2.3.0</revision>