SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for pki-tps-9.0.11-1.fc17.x86_64.rpm :
Fri May 24 14:00:00 2013 Andrew Wnuk 9.0.11-1
- Bugzilla Bug #903401 - TMS: RSA token enrollment failed : public key decode
- Bugzilla Bug #923039 - (CVE-2013-1885) Certificate System: pki-tps XSS flaw
- Bugzilla Bug #924870 - (CVE-2013-1886) Certificate System: pki-tps format string injection

Thu Dec 6 13:00:00 2012 Jack Magne 9.0.10-1
- Bugzilla Bug #863272 - rhcs81 tps httpd segfault on interrupted token format operations. -
- Bugzilla Bug #864607 - Empty certificate search in TPS results in httpd.worker segmentation fault then server error.

Tue Oct 30 13:00:00 2012 Andrew Wnuk 9.0.9-1
- New official build
- Changes to allow tps to start correctly - (alee)
- TMS - ECC Key Recovery - ticket #252 (cfu)
- Provide default for operations transition list, related #858816 - (jmagne)
- TMS ECC infrastructure - ticket #304 (cfu)

Wed Aug 22 14:00:00 2012 Ade Lee 9.0.8-1
- Added systemd scripts

Tue Aug 7 14:00:00 2012 Nathan Kinder 9.0.7-4
- The API changed between httpd 2.2 and 2.4. We now need to pass
the module index to ap_log_error() when calling it. The remote_ip
member of the connection struct also was renamed to client_ip.
(Patch for Fedora 18 only)

Sat Jul 21 14:00:00 2012 Fedora Release Engineering - 9.0.7-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild

Sat Jan 14 13:00:00 2012 Fedora Release Engineering - 9.0.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild

Thu Sep 22 14:00:00 2011 Jack Magne 9.0.7-1
- Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu)
- Bugzilla Bug #730162 - TPS/TKS token enrollment failure in FIPS mode
(hsm+NSS). (jmagne)
- Bugzilla Bug #737184 - TPS UI display admin user name as
\"undefined TUS Administrator\". (awnuk)
- Bugzilla Bug #735191 - in ou=tokens, token_type not getting updated if a
card is changed from one type to another (awnuk)

Wed Aug 10 14:00:00 2011 Jack Magne 9.0.6-1
- Bugzilla Bug #725572 - Starting TPS subsystem with no pre-existing audit
log file does not write audit messages.

Thu Jul 14 14:00:00 2011 Matthew Harmsen 9.0.5-1
- Bugzilla Bug #697035 - TPS database schema not populated correctly
(alee)
- Bugzilla Bug #694569 - parameter used by pkiremove not updated (alee)
- Bugzilla Bug #696851 - TPS crashes that cause AuditVerify on TPS audit
logs - some of the signatures are failing. (jmagne)
- Bugzilla Bug #699837 - service command is not fully backwards
compatible with Dogtag pki subsystems (mharmsen)
- Bugzilla Bug #696443 - ESC display Smartcard renewal operation success
for a failed renewal operation. (jmagne)
- Bugzilla Bug #707095 - tps delete user operation should check for roles
(not have them passed in) (alee)
- Bugzilla Bug #717813 - EV_AUDIT_LOG_SHUTDOWN audit log not generated
for tps and ca on server shutdown (alee)
- Bugzilla Bug #717765 - TPS configuration: logging into security domain
from tps does not work with clientauth=want. (alee)
- Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen)

Tue Apr 26 14:00:00 2011 Matthew Harmsen 9.0.4-1
- Bugzilla Bug #697035 - TPS database schema not populated correctly
- Bugzilla Bug #694569 - parameter used by pkiremove not updated
- Bugzilla Bug #696851 - TPS crashes that cause AuditVerify on
TPS audit logs - some of the signatures are failing.
- Bugzilla Bug #699837 - service command is not fully backwards compatible
with Dogtag pki subsystems

Tue Apr 5 14:00:00 2011 Matthew Harmsen 9.0.3-1
- Bugzilla Bug #690950 - Update Dogtag Packages for Fedora 15 (beta)
- Bugzilla Bug #691867 - add ldaps support through perLDAP

Fri Mar 25 13:00:00 2011 Matthew Harmsen 9.0.2-1
- Bugzilla Bug #690950 - Update Dogtag Packages for Fedora 15 (beta)
- Bugzilla Bug #684381 - CS.cfg specifies incorrect type of comments
- Bugzilla Bug #689956 - TPS Configuration with nethsm: audit signing
certificate location is not configured to nethsm in CS.cfg

Thu Mar 17 13:00:00 2011 Matthew Harmsen 9.0.1-1
- Bugzilla Bug #688763 - Rebase updated Dogtag Packages for Fedora 15 (alpha)
- Bugzilla Bug #676421 - CC: Remove unused TPS interface calls and add
audit logging
- Bugzilla Bug #676678 - Missing audit log messages for Secure Channel
Generation.
- Bugzilla Bug #606944 - Convert TPS to use ldap utilities and API from
OpenLDAP instead of the Mozldap
- Bugzilla Bug #676152 - Token enrollment with symmetric key change over
fails.
- Bugzilla Bug #674396 - TPS: some audit signatures failed to verify
- Bugzilla Bug #680567 - CC doc: remove update.applet.directory audit
message from TPS doc.
- Bugzilla Bug #681066 - TPS authentication crash when exercising audit
log message.
- Bugzilla Bug #684259 - incorrect group used for tps operators

Wed Dec 1 13:00:00 2010 Matthew Harmsen 9.0.0-1
- Updated Dogtag 1.3.x --> Dogtag 2.0.0 --> Dogtag 9.0.0
- Bugzilla Bug #620863 - saved CS.cfg files should be moved to a subdirectory
to avoid cluttering
- Bugzilla Bug #607373 - add self test framework to TPS subsytem
- Bugzilla Bug #607374 - add self test to TPS self test framework
- Bugzilla Bug #624847 - Installed TPS cannot be started to be configured.
- Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs
in the java subsystems
- Bugzilla Bug #547507 - Token renewal: certs on the token is deleted when
one of the certs on the token is outside renewal grace period.
- Bugzilla Bug #622535 - 64 bit host zlib uncompress operation fails when
reading data from token.
- Bugzilla Bug #497931 - CS 8.0 -- Have to download and stall the trust chain
through ESC even if it was already installed in the browser.
- Bugzilla Bug #579790 - errors in ESC communications can leave unusable
tokens and inconsistent data in TPS
- Bugzilla Bug #631474 - Token enrollment with TPS Client fails with error
\'Applet memory exceeded when writing out final token data\'
- Bugzilla Bug #488762 - Found HTTP TRACE method enabled on TPS
- Bugzilla Bug #633405 - Tps client unable to perform token enrollment when
tried to load certificates with 2048 bit keys
- Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be
generated on TKS instead of TPS.
- Bugzilla Bug #574942 - TPS database has performance problems with a large
number of tokens
- Bugzilla Bug #637982 - some selftest parameters are not properly substituted
- Bugzilla Bug #637824 - TPS UI: Profile state in CS.cfg is Pending Approval
after agent approve and Enable
- Bugzilla Bug #223313 - should do random generated IV param
for symmetric keys
- Bugzilla Bug #628995 - TPS CC requirement: Unused predicates for revocation
controls for TPS enrollment profiles should be removed.
- Bugzilla Bug #642084 - CC feature: Key Management -provide signature
verification functions (TPS subsystem)
- Bugzilla Bug #646545 - TPS Agent tab: displays approve list parameter with
last character chopped.
- Bugzilla Bug #532724 - Feature: ESC Security officer work station should
display % of operation complete for format SO card
- Bugzilla Bug #647364 - CC: audit signing certs for JAVA subsystems fail
CIMC cert verification (expose updated cert verification function in JSS)
- Bugzilla Bug #651087 - TPS UI Admin tab display \'null\' string in the
General configuration
- Bugzilla Bug #651916 - kra and ocsp are using incorrect ports
to talk to CA and complete configuration in DonePanel
- Bugzilla Bug #632425 - Port to tomcat6
- Bugzilla Bug #638377 - Generate PKI UI components which exclude
a GUI interface
- Bugzilla Bug #640042 - TPS Installlation Wizard: need to move Module Panel
up to before Security Domain Panel
- Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for
validity
- Bugzilla Bug #643206 - New CMake based build system for Dogtag
- Bugzilla Bug #499494 - change CA defaults to SHA2
- Bugzilla Bug #661128 - incorrect CA ports used for revoke, unrevoke certs
in TPS
- Bugzilla Bug #223314 - AOL: Better activities logs
- Bugzilla Bug #651001 - TPS does not create a password for entries in ldap.
This violates STIG requirements
- Bugzilla Bug #512248 - Status mismatch for the encryption cert in tps agent
and CA when a temporary smart card is issued.
- Bugzilla Bug #666902 - TPS needs to call CERT_VerifyCertificate() correctly
- Bugzilla Bug #223319 - Certificate Status inconsistency between token db
and CA
- Bugzilla Bug #669055 - TPS server does not re-start when signedAudit
logging is turned ON
- Bugzilla Bug #606944 - Convert TPS to use ldap utilities and API from
OpenLDAP instead of the Mozldap
- Bugzilla Bug #606944 - Convert TPS to use ldap utilities and API from
OpenLDAP instead of the Mozldap
- Bugzilla Bug #614639 - 64k gemalto usb token no longer works properly
after a \"logout\" request is issued
- Bugzilla Bug #671522 - TPS AuditVerify fails.
- Bugzilla Bug #669804 - on active token re-enroll, TPS does not revoke and
remove existing certs.
- Bugzilla Bug #656666 - Please Update Spec File to use \'ghost\' on files
in /var/run and /var/lock

Wed Aug 4 14:00:00 2010 Matthew Harmsen 1.3.2-1
- Bugzilla Bug #601299 - tps installation does not update security domain
- Bugzilla Bug #527593 - More robust signature digest alg, like SHA256
instead of SHA1 for ECC
- Bugzilla Bug #528236 - rhcs80 web conf wizard - cannot specify CA signing
algorithm
- Bugzilla Bug #533510 - tps exception, cannot start when signed audit true
- Bugzilla Bug #529280 - TPS returns HTTP data without ending in 0rn
per RFC 2616
- Bugzilla Bug #498299 - Should not be able to change the status manually
on a token marked as permanently lost or destroyed
- Bugzilla Bug #554892 - configurable frequency signed audit
- Bugzilla Bug #500700 - tps log rotation
- Bugzilla Bug #562893 - tps shutdown if audit logs full
- Bugzilla Bug #557346 - Name Constraints Extension cant be marked critical
- Bugzilla Bug #556152 - ACL changes to CA and OCSP
- Bugzilla Bug #556167 - ACL changes to CA and OCSP
- Bugzilla Bug #581004 - add more audit logging to the TPS
- Bugzilla Bug #566517 - CC: Add client auth to OCSP publishing,
and move to a client-auth port
- Bugzilla Bug #565842 - Clone config throws errors - fix key_algorithm
- Bugzilla Bug #581017 - enabling log signing from tps ui pages causes tps
crash
- Bugzilla Bug #581004 - add more audit logs
- Bugzilla Bug #595871 - CC: TKS needed audit message changes
- Bugzilla Bug #598752 - Common Criteria: TKS ACL analysis result.
- Bugzilla Bug #598666 - Common Criteria: incorrect ACLs for signedAudit
- Bugzilla Bug #504905 - Smart card renewal should load old encryption cert
on the token.
- Bugzilla Bug #499292 - TPS - Enrollments where keys are recovered need
to do both GenerateNewKey and RecoverLast operation for encryption key.
- Bugzilla Bug #498299 - fix case where no transitions available
- Bugzilla Bug #604186 - Common Criteria: TPS: Key Recovery needs
to meet CC requirements
- Bugzilla Bug #604178 - Common Criteria: TPS: cert registration needs
to meet CC requirements
- Bugzilla Bug #600968 - Common Criteria: TPS: cert registration needs
to meet CC requirements
- Bugzilla Bug #607381 - Common Criteria: TPS: cert registration needs
to meet CC requirements

Thu Apr 8 14:00:00 2010 Matthew Harmsen 1.3.1-1
- Bugzilla Bug #564131 - Config wizard : all subsystems - done panel text
needs correction

Tue Feb 16 13:00:00 2010 Matthew Harmsen 1.3.0-8
- Bugzilla Bug #566060 - Add \'pki-native-tools\' as a runtime dependency
for RA, and TPS . . .

Fri Jan 29 13:00:00 2010 Matthew Harmsen 1.3.0-7
- Bugzilla Bug #553852 - Review Request: pki-tps - The Dogtag PKI System
Token Processing System
- Bugzilla Bug #553078 - Apply \"registry\" logic to pki-tps . . .
- Applied filters for unwanted perl provides and requires
- Applied -j5 option to \'make\'
- Removed manual \'strip\' commands

Thu Jan 28 13:00:00 2010 Matthew Harmsen 1.3.0-6
- Bugzilla Bug #553078 - Apply \"registry\" logic to pki-tps . . .
- Bugzilla Bug #553852 - Review Request: pki-tps - The Dogtag PKI System
Token Processing System

Wed Jan 27 13:00:00 2010 Kevin Wright 1.3.0-5
- Bugzilla Bug #553852 - Review Request: pki-tps - The Dogtag PKI System
Token Processing System
- Per direction from the Fedora community,
removed the following explicit \"Requires\":
perl-HTML-Parser
perl-HTML-Tagset
perl-Parse-RecDescent
perl-URI
perl-XML-NamespaceSupport
perl-XML-Parser
perl-XML-Simple

Thu Jan 14 13:00:00 2010 Matthew Harmsen 1.3.0-4
- Bugzilla Bug #512234 - Move pkiuser:pkiuser check from spec file into
pkicreate . . .
- Bugzilla Bug #547471 - Apply PKI SELinux changes to PKI registry model
- Bugzilla Bug #553076 - Apply \"registry\" logic to pki-ra . . .
- Bugzilla Bug #553078 - Apply \"registry\" logic to pki-tps . . .
- Bugzilla Bug #553852 - Review Request: pki-tps - Dogtag Certificate System
Token Processing System

Mon Dec 14 13:00:00 2009 Kevin Wright 1.3.0-3
- Removed BuildRequires bash - Removed \'with exceptions\' from License

Mon Nov 2 13:00:00 2009 Matthew Harmsen 1.3.0-2
- Bugzilla Bug #X - Packaging for Fedora Dogtag PKI
- Prepended directory path in front of setup_package
- Take ownership of pki tps directory.

Fri Oct 16 14:00:00 2009 Matthew Harmsen 1.3.0-1
- Bugzilla Bug #X - Packaging for Fedora Dogtag PKI


 
ICM