ELBA-2023-31547 - scitokens-cpp Bug Fix update

Release Date:2023-11-16


- Allow the scitokens library user to setup a custom CA file
- Fix typecast errors in scitoken_status_get_*() that caused async queries to fail
- Fix logic error in deserialize_continue() that caused async deserialization to fail

- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

- Add support for API-configurable cache home
- Fix enforcer_acl_free logic
- scitokens_internal: catch matching exception type after jwt-cpp update

- Fix bug in generate acls which would cause a timeout

- Add async API for parsing and verifying tokens
- Add configuration API
- Make nbf claim optional for non-scitokens tokens
- Update to OpenSSL 3.0

- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild

- Retry failed key renewal every 5 minutes

- Add curl timeout of 4 seconds for update, and 30 for expired keys

- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild

- Add scitokens-* binaries to the package
- Bug: close sqlite db handle on return

- Changes from static analysis
- If only one key is available, do not error on no kid
- Support at+jwt profile

- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild

- Remove -Werror for depreciated OpenSSL 3 functions


Updated Packages

Release/ArchitectureFilenameMD5sumSuperseded By AdvisoryChannel Label
Oracle Linux 8 (x86_64) scitokens-cpp-1.1.0-1.el8.src.rpm94ee7e7ca6ca1437b65b7f46cc9e3a76-ol8_x86_64_developer_EPEL

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team