git-echo/linux_patch_api
Private
Public Access
1
0
Fork 0
Code Releases 32 Wiki Activity
Files
6ddb511cb0fd8fdacabafe46446ba4b9fced98da
linux_patch_api/debian/changelog
git-echo 1322598581 feat: add auto-enrollment, cert validation, and crash loop fixes 
- Auto-enrollment on startup when certs are missing/invalid and enrollment.manager_url configured
- Certificate validation (existence, parse, expiry, key match, CA trust)
- --enroll exits after completion (no port conflict with systemd service)
- --renew-certs flag for manual cert renewal
- SO_REUSEADDR on TcpListener::bind (prevents Address already in use)
- Polling token persistence for enrollment resume after restart
- Exit code strategy (0=clean, 1=error, 2=enrollment in progress)
- HTTP 409 (host already exists) handling during enrollment
- Move 'Listening on' log after actual bind
- Increase RestartSec to 10s and add StartLimitBurst=5
- Postinst checks for certs and enrollment URL, prints guidance
- EnrollmentConfig.manager_url changed to Option<String>
- cert_renewal_threshold_days and polling_token config fields
- Updated SPEC.md and DEPLOYMENT_GUIDE.md with new workflow
- RCA document for crash loop root cause analysis
- Version bumped to 1.2.0
2026-05-29 10:44:42 -05:00

23 lines
1012 B
Plaintext
Raw Blame History

linux-patch-api (1.2.0) unstable; urgency=medium
* Add auto-enrollment on startup when certs are missing/invalid
* Add cert validation (existence, parse, expiry, key match, CA trust)
* Add --renew-certs CLI flag for manual cert renewal
* Fix --enroll to exit after completion (no port conflict)
* Add SO_REUSEADDR to prevent Address already in use errors
* Add polling token persistence for enrollment resume after restart
* Add exit code strategy (0=clean, 1=error, 2=enrollment in progress)
* Increase RestartSec to 10s and add StartLimitBurst=5
* Add cert and enrollment URL check in postinst
* Fix misleading "Listening on" log before actual bind
-- Echo <echo@moon-dragon.us> Thu, 29 May 2026 10:20:00 -0500
linux-patch-api (1.1.17) unstable; urgency=medium
* Add mandatory package cache refresh before patch_apply
* Add health check cache refresh when stale (>4h)
* Add cache status fields to health response
-- Echo <echo@moon-dragon.us> Thu, 22 May 2026 12:00:00 -0500
View Git Blame Copy Permalink