From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 21583 invoked by alias); 20 Aug 2010 17:30:02 -0000 Received: (qmail 21468 invoked by uid 448); 20 Aug 2010 17:30:00 -0000 Date: Fri, 20 Aug 2010 17:30:00 -0000 Message-ID: <20100820173000.21457.qmail@sourceware.org> From: brolley@sourceware.org To: systemtap-cvs@sourceware.org Subject: [SCM] systemtap: system-wide probe/trace tool branch, master, updated. release-1.3-76-g3d9dfde X-Git-Refname: refs/heads/master X-Git-Reftype: branch X-Git-Oldrev: 785cf26dc2120b1d47c42a85fd8cd29d7481d41c X-Git-Newrev: 3d9dfde6d7bc4e6c8c92729ae6654c506de7563e Mailing-List: contact systemtap-cvs-help@sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Post: List-Help: , Sender: systemtap-cvs-owner@sourceware.org List-Archive: Reply-To: systemtap@sourceware.org X-SW-Source: 2010-q3/txt/msg00158.txt.bz2 This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "systemtap: system-wide probe/trace tool". The branch, master has been updated via 3d9dfde6d7bc4e6c8c92729ae6654c506de7563e (commit) via 0dd4c6e7953f74b7bcd0060d720e77302fdd8895 (commit) via 1a7f7b3fb66dbe496832311d22aa3cdd359f7f95 (commit) via b0e5fa8519569cb059885995d23b4019b89548ae (commit) via 334df419cc28ab72a61349aa528fd01f91710bcc (commit) via c77af0d0d61cb1a42e1091e99f000de84b020f31 (commit) via 3b6f3bbb731b551bfa2ff31c39548dc97c958993 (commit) via cf87c5728b3aabd4f6d79a005d8caa4ef7a9f849 (commit) via 0d1534e832ee14e8568dbce3f20ce9830cdfd4e8 (commit) via 478c14374df6287351ba414ef1b4d588c0367068 (commit) from 785cf26dc2120b1d47c42a85fd8cd29d7481d41c (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 3d9dfde6d7bc4e6c8c92729ae6654c506de7563e Author: Dave Brolley Date: Fri Aug 20 13:28:29 2010 -0400 PR 11441: Ensure that the integrated client compiles without NSS and/or AVAHI. commit 0dd4c6e7953f74b7bcd0060d720e77302fdd8895 Author: Dave Brolley Date: Fri Aug 20 11:16:42 2010 -0400 PR 11441 - Additional update to stap.1 and NEWS entry for new integrated client features. commit 1a7f7b3fb66dbe496832311d22aa3cdd359f7f95 Author: Dave Brolley Date: Wed Aug 18 13:05:20 2010 -0400 PR 11441: More cleanup - Make sure client side database files are readable by all. - Update stap.1 man page commit b0e5fa8519569cb059885995d23b4019b89548ae Author: Dave Brolley Date: Tue Aug 17 14:00:09 2010 -0400 PR 11441: Cleanup of integrated compile-server/cert management. - Call PR_Init/PR_Cleanup only once per session - Encapsulate compile_server_info within csclient.cxx - Expose only needed functions from csclient.cxx commit 334df419cc28ab72a61349aa528fd01f91710bcc Author: Dave Brolley Date: Tue Aug 17 11:29:35 2010 -0400 PR 11441: Allow specification of servers by certificate serial number. Mainly intended for certificate management, particularly when revoking trust, but also useful when listing servers and compiling using servers. commit c77af0d0d61cb1a42e1091e99f000de84b020f31 Author: Dave Brolley Date: Mon Aug 16 12:31:56 2010 -0400 PR 11441: Implement integrated server cert management in stap. New --trust-servers option allows for precise handling of individual server certificates for trust as an SSL peer and as a signer. commit 3b6f3bbb731b551bfa2ff31c39548dc97c958993 Author: Dave Brolley Date: Thu Aug 12 17:05:51 2010 -0400 create_dir: create path components if they do not exist. commit cf87c5728b3aabd4f6d79a005d8caa4ef7a9f849 Author: Dave Brolley Date: Thu Aug 12 17:04:11 2010 -0400 Ensure that the server's certificate is in place before attempting to get it's serial number. Also ensure that error output from certutil is logged. commit 0d1534e832ee14e8568dbce3f20ce9830cdfd4e8 Author: Dave Brolley Date: Mon Aug 9 15:13:14 2010 -0400 PR 11441: Implement resolving/querying of trusted servers (SSL) and trusted signing servers. - Serial number of server certificate now displayed by --list-servers when available - Servers now present certificate serial number via avahi in order to assist the user in identifying trusted servers and signers. - Resolve servers using dns, avahi and NSS in order to present complete information commit 478c14374df6287351ba414ef1b4d588c0367068 Author: Dave Brolley Date: Fri Aug 6 11:34:21 2010 -0400 Don't check signing certificate database integrity unless we're actually going to verify a signature. Database permissions were being checked even when loading unsigned modules. ----------------------------------------------------------------------- Summary of changes: NEWS | 23 + csclient.cxx | 1423 ++++++++++++++++++++++++++++++++++++------- csclient.h | 37 +-- main.cxx | 9 +- runtime/staprun/modverify.c | 24 +- session.cxx | 68 ++- session.h | 6 + stap-client-connect.c | 15 +- stap-serverd | 29 +- stap.1 | 108 +++- util.cxx | 23 +- util.h | 2 +- 12 files changed, 1456 insertions(+), 311 deletions(-) hooks/post-receive -- systemtap: system-wide probe/trace tool