2019-03-27 18:24:05 +01:00
|
|
|
Source: libpve-network-perl
|
|
|
|
|
Section: perl
|
2019-06-04 06:38:11 +02:00
|
|
|
Priority: optional
|
2019-03-27 18:24:05 +01:00
|
|
|
Maintainer: Proxmox Support Team <support@proxmox.com>
|
2023-05-25 18:18:12 +02:00
|
|
|
Build-Depends: debhelper-compat (= 13),
|
2019-03-27 18:24:05 +01:00
|
|
|
lintian,
|
2024-11-23 07:10:05 +01:00
|
|
|
libfile-slurp-perl <!nocheck>,
|
|
|
|
|
libnet-subnet-perl <!nocheck>,
|
|
|
|
|
libtest-mockmodule-perl <!nocheck>,
|
|
|
|
|
pve-cluster (>= 8.0.10) <!nocheck>,
|
|
|
|
|
pve-firewall (>= 5.1.0~) <!nocheck>,
|
|
|
|
|
pve-doc-generator (>= 5.3-3) <!nocheck>,
|
|
|
|
|
libpve-access-control <!nocheck>,
|
2023-05-25 18:05:56 +02:00
|
|
|
Standards-Version: 4.6.1
|
|
|
|
|
Homepage: https://www.proxmox.com
|
2019-03-27 18:24:05 +01:00
|
|
|
|
|
|
|
|
Package: libpve-network-perl
|
|
|
|
|
Architecture: all
|
|
|
|
|
Depends: libpve-common-perl (>= 5.0-45),
|
2024-11-18 22:21:18 +01:00
|
|
|
pve-cluster (>= 8.0.10),
|
api request helper: enforce TLS cert-check and add cert-fingerprint option
Currently, we do not verify the TLS certificate for API requests
external IPAM and DNS integration. This could allow man-in-the-middle
attacks, albeit most IPAM infrastructure is on controlled and isolated
LANs, so it's not something that should frequently happen; and
technically our IPAM integration is still marked as tech-preview,
which had its reasons.
Enforce verification, and allow users to pass a cert SHA256
fingerprint to ensure a certificates validity if it's not trusted by
the system trust store, as it's, e.g., the case for self-signed certs.
The code was adapted from the one in pve-apiclient, which we cannot
reuse directly as it is only implemented for requests against PVE
nodes, not as a generic HTTP client request helper.
Add the new dependency `libio-socket-ssl-perl` required to get the
verify callback for the TLS certificate used for cert-fingerprint
checking.
Signed-off-by: Hannes Duerr <h.duerr@proxmox.com>
Tested-by: Stefan Hanreich <s.hanreich@proxmox.com>
[TL: return valid for non-leaf certs and rewrite commit message]
Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
2025-02-10 15:19:25 +01:00
|
|
|
libio-socket-ssl-perl,
|
2020-10-05 17:08:38 +02:00
|
|
|
libnet-subnet-perl,
|
2020-10-05 17:08:47 +02:00
|
|
|
libnet-ip-perl,
|
|
|
|
|
libnetaddr-ip-perl,
|
2019-07-10 17:53:17 +02:00
|
|
|
${misc:Depends},
|
2019-06-12 07:04:16 +02:00
|
|
|
${perl:Depends},
|
2023-11-21 08:26:56 +01:00
|
|
|
Recommends: ifupdown2
|
|
|
|
|
Suggests: frr-pythontools (>= 8.5.1~), dnsmasq,
|
2023-05-25 18:06:48 +02:00
|
|
|
Description: Proxmox VE's SDN (Software Defined Network) stack
|
2024-11-18 18:17:18 +01:00
|
|
|
This package contains the perl side of the Software Defined Network
|
|
|
|
|
implementation for Proxmox VE.
|
|
|
|
|
|
|
|
|
|
Package: libpve-network-api-perl
|
|
|
|
|
Architecture: all
|
|
|
|
|
Depends: libpve-common-perl (>= 5.0-45),
|
2024-11-19 16:22:28 +01:00
|
|
|
pve-firewall (>= 5.1.0~),
|
2024-11-18 18:17:18 +01:00
|
|
|
pve-cluster (>= 8.0.9),
|
|
|
|
|
libpve-network-perl (= ${binary:Version}),
|
|
|
|
|
${misc:Depends},
|
|
|
|
|
${perl:Depends},
|
|
|
|
|
Breaks: libpve-network-perl (<< 0.9.9~),
|
|
|
|
|
Replaces: pve-cluster (<< 0.9.9~),
|
|
|
|
|
Description: API endpoints for Proxmox VE's SDN stack
|
|
|
|
|
This package contains the API endpoints for the Software Defined Network of
|
2023-05-25 18:06:48 +02:00
|
|
|
Proxmox VE.
|