foreman_maintain 1.7.6 → 1.7.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. checksums.yaml +4 -4
  2. data/definitions/checks/check_sha1_certificate_authority.rb +27 -0
  3. data/definitions/procedures/pulpcore/container_handle_image_metadata.rb +1 -2
  4. data/definitions/procedures/repositories/index_katello_repositories_container_metadata.rb +1 -2
  5. data/definitions/scenarios/foreman_upgrade.rb +1 -0
  6. data/definitions/scenarios/satellite_upgrade.rb +1 -0
  7. data/lib/foreman_maintain/version.rb +1 -1
  8. metadata +6 -5
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 22d0abf16f40a1448c08bbcc3841e1347d27ffe2e7da598e05dd27a3c565de49
4
- data.tar.gz: b3b19431311ac39014e8679653bcb61c055cf46f4cc867158cc1222485986ebd
3
+ metadata.gz: 8777c6bb442c0912407d6f30a576230c2c55308168b8303d0fb88acdf63ed5ed
4
+ data.tar.gz: 60f93fc85d0f78df89cad0a8de1a50cef4cfc31f171ca97cb84e38811868b5b8
5
5
  SHA512:
6
- metadata.gz: 6534adf54060798589ef949490e03d43ef58525b6cf6818a0b55c9f1c909bd29b6cd8db3909e0961efaf3357b6148ef868b75713c15bd1b85ab7729c7b2331c9
7
- data.tar.gz: 53173b1621d5ced84e12eeffb80a03fb5d808dd92ed2f29585439506312e382600cfc25a53c799a692344513de27fe313c5bda1717b17304ef27068909627664
6
+ metadata.gz: 8ca48978960dfacef447466bbdfcd8f346402591645b0e44ce01d7b00a6c0981a7528c0a066d193807ad503fef6c624c9f0f7d683561cc92f42d07df28cf638b
7
+ data.tar.gz: e318ca1d5e8816e1073068d373b862871dd2b0527c9c0c4de1839ae6ec1e9bbe04c381409350d599a6bce25890acbc21ceb7c0f48224e463ca8cf21c237b9c13
data/definitions/checks/check_sha1_certificate_authority.rb ADDED
@@ -0,0 +1,27 @@
1
+ class Checks::CheckSha1CertificateAuthority < ForemanMaintain::Check
2
+ metadata do
3
+ label :check_sha1_certificate_authority
4
+ description 'Check if server certificate authority is sha1 signed'
5
+
6
+ confine do
7
+ feature(:katello) || feature(:foreman_proxy)
8
+ end
9
+
10
+ do_not_whitelist
11
+ end
12
+
13
+ def run
14
+ installer_answers = feature(:installer).answers
15
+ server_ca = installer_answers['certs']['server_ca_cert']
16
+
17
+ certificate = OpenSSL::X509::Certificate.new(File.read(server_ca))
18
+
19
+ msg = <<~MSG
20
+ Server CA certificate signed with sha1 which will break on upgrade.
21
+ Update the server CA certificate with one signed with sha256 or
22
+ stronger then proceed with the upgrade.
23
+ MSG
24
+
25
+ assert(certificate.signature_algorithm != 'sha1WithRSAEncryption', msg)
26
+ end
27
+ end
data/definitions/procedures/pulpcore/container_handle_image_metadata.rb CHANGED
@@ -14,8 +14,7 @@ module Procedures::Pulpcore
14
14
 
15
15
  feature(:service).handle_services(spinner, 'start', :only => necessary_services)
16
16
 
17
- spinner.update('Adding image metadata to pulp. You can continue using the ' \
18
- 'system normally while the task runs in the background.')
17
+ spinner.update('Adding image metadata to pulp.')
19
18
  execute!(pulpcore_manager('container-handle-image-data'))
20
19
  end
21
20
  end
data/definitions/procedures/repositories/index_katello_repositories_container_metadata.rb CHANGED
@@ -8,8 +8,7 @@ module Procedures::Repositories
8
8
  end
9
9
 
10
10
  def run
11
- with_spinner(('Adding image metadata. You can continue using the ' \
12
- 'system normally while the task runs in the background.')) do
11
+ with_spinner('Adding image metadata to Katello.') do
13
12
  execute!('foreman-rake katello:import_container_manifest_labels')
14
13
  end
15
14
  end
data/definitions/scenarios/foreman_upgrade.rb CHANGED
@@ -53,6 +53,7 @@ module Scenarios::Foreman
53
53
  Checks::PackageManager::Dnf::ValidateDnfConfig,
54
54
  Checks::Repositories::CheckNonRhRepository,
55
55
  Checks::CheckOrganizationContentAccessMode,
56
+ Checks::CheckSha1CertificateAuthority,
56
57
  Checks::Repositories::Validate
57
58
  )
58
59
  end
data/definitions/scenarios/satellite_upgrade.rb CHANGED
@@ -55,6 +55,7 @@ module Scenarios::Satellite
55
55
  Checks::CheckIpv6Disable,
56
56
  Checks::Disk::AvailableSpacePostgresql13,
57
57
  Checks::CheckOrganizationContentAccessMode,
58
+ Checks::CheckSha1CertificateAuthority,
58
59
  Checks::Repositories::Validate.new(:version => target_version),
59
60
  )
60
61
  end
data/lib/foreman_maintain/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module ForemanMaintain
2
- VERSION = '1.7.6'.freeze
2
+ VERSION = '1.7.8'.freeze
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: foreman_maintain
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.7.6
4
+ version: 1.7.8
5
5
  platform: ruby
6
6
  authors:
7
7
  - Ivan Nečas
8
- autorequire:
8
+ autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-10-16 00:00:00.000000000 Z
11
+ date: 2024-12-05 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: clamp
@@ -162,6 +162,7 @@ files:
162
162
  - definitions/checks/candlepin/db_up.rb
163
163
  - definitions/checks/check_hotfix_installed.rb
164
164
  - definitions/checks/check_ipv6_disable.rb
165
+ - definitions/checks/check_sha1_certificate_authority.rb
165
166
  - definitions/checks/check_tmout.rb
166
167
  - definitions/checks/disk/available_space.rb
167
168
  - definitions/checks/disk/available_space_candlepin.rb
@@ -410,7 +411,7 @@ homepage: https://github.com/theforeman/foreman_maintain
410
411
  licenses:
411
412
  - GPL-3.0
412
413
  metadata: {}
413
- post_install_message:
414
+ post_install_message:
414
415
  rdoc_options: []
415
416
  require_paths:
416
417
  - lib
@@ -429,7 +430,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
429
430
  version: '0'
430
431
  requirements: []
431
432
  rubygems_version: 3.3.27
432
- signing_key:
433
+ signing_key:
433
434
  specification_version: 4
434
435
  summary: Foreman maintenance tool belt
435
436
  test_files: []