foreman_maintain 1.7.6 → 1.7.8

Sign up to get free protection for your applications and to get access to all the features.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/definitions/checks/check_sha1_certificate_authority.rb +27 -0
  3. data/definitions/procedures/pulpcore/container_handle_image_metadata.rb +1 -2
  4. data/definitions/procedures/repositories/index_katello_repositories_container_metadata.rb +1 -2
  5. data/definitions/scenarios/foreman_upgrade.rb +1 -0
  6. data/definitions/scenarios/satellite_upgrade.rb +1 -0
  7. data/lib/foreman_maintain/version.rb +1 -1
  8. metadata +6 -5
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 22d0abf16f40a1448c08bbcc3841e1347d27ffe2e7da598e05dd27a3c565de49
4
- data.tar.gz: b3b19431311ac39014e8679653bcb61c055cf46f4cc867158cc1222485986ebd
3
+ metadata.gz: 8777c6bb442c0912407d6f30a576230c2c55308168b8303d0fb88acdf63ed5ed
4
+ data.tar.gz: 60f93fc85d0f78df89cad0a8de1a50cef4cfc31f171ca97cb84e38811868b5b8
5
5
  SHA512:
6
- metadata.gz: 6534adf54060798589ef949490e03d43ef58525b6cf6818a0b55c9f1c909bd29b6cd8db3909e0961efaf3357b6148ef868b75713c15bd1b85ab7729c7b2331c9
7
- data.tar.gz: 53173b1621d5ced84e12eeffb80a03fb5d808dd92ed2f29585439506312e382600cfc25a53c799a692344513de27fe313c5bda1717b17304ef27068909627664
6
+ metadata.gz: 8ca48978960dfacef447466bbdfcd8f346402591645b0e44ce01d7b00a6c0981a7528c0a066d193807ad503fef6c624c9f0f7d683561cc92f42d07df28cf638b
7
+ data.tar.gz: e318ca1d5e8816e1073068d373b862871dd2b0527c9c0c4de1839ae6ec1e9bbe04c381409350d599a6bce25890acbc21ceb7c0f48224e463ca8cf21c237b9c13
data/definitions/checks/check_sha1_certificate_authority.rb ADDED
@@ -0,0 +1,27 @@
1
+ class Checks::CheckSha1CertificateAuthority < ForemanMaintain::Check
2
+ metadata do
3
+ label :check_sha1_certificate_authority
4
+ description 'Check if server certificate authority is sha1 signed'
5
+
6
+ confine do
7
+ feature(:katello) || feature(:foreman_proxy)
8
+ end
9
+
10
+ do_not_whitelist
11
+ end
12
+
13
+ def run
14
+ installer_answers = feature(:installer).answers
15
+ server_ca = installer_answers['certs']['server_ca_cert']
16
+
17
+ certificate = OpenSSL::X509::Certificate.new(File.read(server_ca))
18
+
19
+ msg = <<~MSG
20
+ Server CA certificate signed with sha1 which will break on upgrade.
21
+ Update the server CA certificate with one signed with sha256 or
22
+ stronger then proceed with the upgrade.
23
+ MSG
24
+
25
+ assert(certificate.signature_algorithm != 'sha1WithRSAEncryption', msg)
26
+ end
27
+ end
data/definitions/procedures/pulpcore/container_handle_image_metadata.rb CHANGED
@@ -14,8 +14,7 @@ module Procedures::Pulpcore
14
14
 
15
15
  feature(:service).handle_services(spinner, 'start', :only => necessary_services)
16
16
 
17
- spinner.update('Adding image metadata to pulp. You can continue using the ' \
18
- 'system normally while the task runs in the background.')
17
+ spinner.update('Adding image metadata to pulp.')
19
18
  execute!(pulpcore_manager('container-handle-image-data'))
20
19
  end
21
20
  end
data/definitions/procedures/repositories/index_katello_repositories_container_metadata.rb CHANGED
@@ -8,8 +8,7 @@ module Procedures::Repositories
8
8
  end
9
9
 
10
10
  def run
11
- with_spinner(('Adding image metadata. You can continue using the ' \
12
- 'system normally while the task runs in the background.')) do
11
+ with_spinner('Adding image metadata to Katello.') do
13
12
  execute!('foreman-rake katello:import_container_manifest_labels')
14
13
  end
15
14
  end
data/definitions/scenarios/foreman_upgrade.rb CHANGED
@@ -53,6 +53,7 @@ module Scenarios::Foreman
53
53
  Checks::PackageManager::Dnf::ValidateDnfConfig,
54
54
  Checks::Repositories::CheckNonRhRepository,
55
55
  Checks::CheckOrganizationContentAccessMode,
56
+ Checks::CheckSha1CertificateAuthority,
56
57
  Checks::Repositories::Validate
57
58
  )
58
59
  end
data/definitions/scenarios/satellite_upgrade.rb CHANGED
@@ -55,6 +55,7 @@ module Scenarios::Satellite
55
55
  Checks::CheckIpv6Disable,
56
56
  Checks::Disk::AvailableSpacePostgresql13,
57
57
  Checks::CheckOrganizationContentAccessMode,
58
+ Checks::CheckSha1CertificateAuthority,
58
59
  Checks::Repositories::Validate.new(:version => target_version),
59
60
  )
60
61
  end
data/lib/foreman_maintain/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module ForemanMaintain
2
- VERSION = '1.7.6'.freeze
2
+ VERSION = '1.7.8'.freeze
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: foreman_maintain
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.7.6
4
+ version: 1.7.8
5
5
  platform: ruby
6
6
  authors:
7
7
  - Ivan Nečas
8
- autorequire:
8
+ autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-10-16 00:00:00.000000000 Z
11
+ date: 2024-12-05 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: clamp
@@ -162,6 +162,7 @@ files:
162
162
  - definitions/checks/candlepin/db_up.rb
163
163
  - definitions/checks/check_hotfix_installed.rb
164
164
  - definitions/checks/check_ipv6_disable.rb
165
+ - definitions/checks/check_sha1_certificate_authority.rb
165
166
  - definitions/checks/check_tmout.rb
166
167
  - definitions/checks/disk/available_space.rb
167
168
  - definitions/checks/disk/available_space_candlepin.rb
@@ -410,7 +411,7 @@ homepage: https://github.com/theforeman/foreman_maintain
410
411
  licenses:
411
412
  - GPL-3.0
412
413
  metadata: {}
413
- post_install_message:
414
+ post_install_message:
414
415
  rdoc_options: []
415
416
  require_paths:
416
417
  - lib
@@ -429,7 +430,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
429
430
  version: '0'
430
431
  requirements: []
431
432
  rubygems_version: 3.3.27
432
- signing_key:
433
+ signing_key:
433
434
  specification_version: 4
434
435
  summary: Foreman maintenance tool belt
435
436
  test_files: []