|
|
|
|
Changelog for pki-ca-10.5.18-21.el7_9.noarch.rpm :
Tue May 31 14:00:00 2022 Dogtag Team 10.5.18-21 - ########################################################################## - # RHEL 7.9 (Batch Update 15): - ########################################################################## - Bugzilla Bug #2074722 - user password and pkcs12 password exposure when debug level set to maximum [RHEL 7.9.z] (cfu) - Bugzilla Bug #2082717 - SCEP manual approval failure (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
Mon Apr 25 14:00:00 2022 Dogtag Team 10.5.18-20 - ########################################################################## - # RHEL 7.9 (Batch Update 14): - ########################################################################## - Bugzilla Bug #2074722 - user password and pkcs12 password exposure when debug level set to maximum [RHEL 7.9.z] (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
Thu Dec 16 13:00:00 2021 Dogtag Team 10.5.18-19 - ########################################################################## - # RHEL 7.9 (Batch Update 11): - ########################################################################## - Bugzilla Bug 1998597 - TPS RA Separation Issues (cfu) - Bugzilla Bug 2008319 - PKISpawn with ECC Signing Algorithms fail in FIPS Mode (cfu) - Bugzilla Bug 2018608 - Invalid certificates with creation of subCA (pkispawn single step) [rhel-7.9.0.z] (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
Sat Oct 23 14:00:00 2021 Dogtag Team 10.5.18-18 - ########################################################################## - # RHEL 7.9 (Batch Update 10): - ########################################################################## - Bugzillla Bug 1978345 - End Entity\'s List Certificates Page Back/Forward Buttons are Broken (ckelley, jonahon.d.parrishAATTmail.mil, mharmsen) - Bugzilla Bug 2008707 - pkispawn bails out too easily for things that could have been worked around after installation [RHEL 7.9.z] (cfu) - Bugzilla Bug 2016773 - Directory authentication plugin requires directory admin password just for user authentication (rhel-7.9.z) (awnukAATTpurestorage.com, jmagne) - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
Wed Sep 15 14:00:00 2021 Dogtag Team 10.5.18-17 - ########################################################################## - # RHEL 7.9 (Batch Update 9): - ########################################################################## - Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx response from CA REST API: 500 [ftweedal, ckelley] - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
Mon Aug 9 14:00:00 2021 Dogtag Team 10.5.18-16 - ########################################################################## - # RHEL 7.9 (Batch Update 8): - ########################################################################## - Bugzilla Bug 1958277 - PKCS10Client EC Attribute Encoding [cfu] - Bugzilla Bug 1958788 - ipa: ERROR: Request failed with status 500: Non-2xx response from CA REST API: 500 [ftweedale, ckelley] - ########################################################################## - # RHCS 9.7 (Batch Update 8): - ########################################################################## - Bugzilla Bug 1959937 - TPS Allowing Token Transactions while the CA is Down [cfu] - Bugzilla Bug 1979710 - TPS Not properly enforcing Token Profile Separation [cfu]
Fri Jun 25 14:00:00 2021 Dogtag Team 10.5.18-15 - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug 1905374 - restrict EE profile list and enrollment submission per LDAP group without immediate issuance [rhel-7.9.z] (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 7)
Thu May 13 14:00:00 2021 Dogtag Team 10.5.18-14 - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug 1911472 - Revoke via REST API not working when Agent certificate not issued by CA [rhel-7.9.z] (cfu) - Bugzilla Bug 1914587 - RHEL IPA PKI - Failed to read product version String.java.io.FileNotFoundException (ckelley) - Bugzilla Bug 1942687 - TPS not populating Token Policy, or switching PIN_RESET=YES to NO [rhel-7.9.z] (jmagne) - Bugzilla Bug 1955633 - Recovery of Keys migrated to latest version of KRA fail to recover and result in Null Point Exception [rhel-7.9.z] (jmagne) - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
Thu Apr 22 14:00:00 2021 Dogtag Team 10.5.18-13 - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug 1949136 - PKI instance creation failed with new 389-ds-base build (jmagne) - Bugzilla Bug 1949656 - CRMF requests with extensions other than SKID cannot be processed (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.5.18 in RHCS 9.7 (Batch Update 6)
Wed Feb 24 13:00:00 2021 Dogtag Team 10.5.18-12 - Change variable \'TPS\' to \'tps\' - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug 1883639 - Add KRA Transport and Storage Certificates profiles, audit for IPA (edewata) - ########################################################################## - # Backported CVEs (ascheel): - ########################################################################## - Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token parameters in TPS resulting in stored XSS [certificate_system_9-default] (edewata, ascheel) - Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site scripting (XSS) in the pki-tps web Activity tab [certificate_system_9-default] (edewata, ascheel) - Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile creation [certificate_system_9-default] (edewata, ascheel) - Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site Scripting in \'path length\' constraint field in CA\'s Agent page [rhel-7.9.z] (dmoluguw, ascheel) - Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site scripting in getcookies?url= endpoint in CA [rhel-7.9.z] (dmoluguw, ascheel) - Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA\'s DRM agent page in authorize recovery tab [rhel-7.9.z] (ascheel) - Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne) - ########################################################################## - Update to jquery v3.4.1 (ascheel) - Update to jquery-i18n-properties v1.2.7 (ascheel) - Update to backbone v1.4.0 (ascheel) - Upgrade to underscore v1.9.2 (ascheel) - Update to patternfly v3.59.3 (ascheel) - Update to jQuery v3.5.1 (ascheel) - Upgrade to bootstrap v3.4.1 (ascheel) - Link in new Bootstrap CSS file (ascheel) - ########################################################################## - # RHCS 9.7: - ########################################################################## - # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Thu Feb 11 13:00:00 2021 Dogtag Team 10.5.18-11 - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug 1883639 - Add KRA Transport and Storage Certificates profiles, audit for IPA (edewata) - ########################################################################## - # Backported CVEs (ascheel): - ########################################################################## - Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token parameters in TPS resulting in stored XSS [certificate_system_9-default] (edewata, ascheel) - Bugzilla Bug 1725128 - CVE-2019-10178 pki-core: stored Cross-site scripting (XSS) in the pki-tps web Activity tab [certificate_system_9-default] (edewata, ascheel) - Bugzilla Bug 1791100 - CVE-2020-1696 pki-core: Stored XSS in TPS profile creation [certificate_system_9-default] (edewata, ascheel) - Bugzilla Bug 1724688 - CVE-2019-10146 pki-core: Reflected Cross-Site Scripting in \'path length\' constraint field in CA\'s Agent page [rhel-7.9.z] (dmoluguw, ascheel) - Bugzilla Bug 1789843 - CVE-2019-10221 pki-core: reflected cross site scripting in getcookies?url= endpoint in CA [rhel-7.9.z] (dmoluguw, ascheel) - Bugzilla Bug 1724713 - CVE-2019-10179 pki-core: pki-core/pki-kra: Reflected XSS in recoveryID search field at KRA\'s DRM agent page in authorize recovery tab [rhel-7.9.z] (ascheel) - Bugzilla Bug 1798011 - CVE-2020-1721 pki-core: KRA vulnerable to reflected XSS via the getPk12 page [rhel-7.9.z] (ascheel,jmagne) - ########################################################################## - Update to jquery v3.4.1 (ascheel) - Update to jquery-i18n-properties v1.2.7 (ascheel) - Update to backbone v1.4.0 (ascheel) - Upgrade to underscore v1.9.2 (ascheel) - Update to patternfly v3.59.3 (ascheel) - Update to jQuery v3.5.1 (ascheel) - Upgrade to bootstrap v3.4.1 (ascheel) - Link in new Bootstrap CSS file (ascheel) - ########################################################################## - # RHCS 9.7: - ########################################################################## - # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Fri Dec 4 13:00:00 2020 Dogtag Team 10.5.18-10 - Bugzilla Bug #1883639 - additional fix to upgrade script (edewata)
Thu Dec 3 13:00:00 2020 Dogtag Team 10.5.18-9 - Bugzilla Bug #1883639 - additional support on upgrade for audit cert profile and auditProfileUpgrade + auditProfileUpgrade part 2 (cfu)
Tue Nov 17 13:00:00 2020 Dogtag Team 10.5.18-8 - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug #1883639 - add profile caAuditSigningCert (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - # Bugzilla Bug #1710978 - TPS - Add logging to tdbAddCertificatesForCUID if - # Bugzilla Bug #1858860 - TPS - Update Error Codes returned to client - # Bugzilla Bug #1858861 - TPS - Server side key generation is not working - # Bugzilla Bug #1858867 - TPS does not check token cuid on the user
Wed May 27 14:00:00 2020 Dogtag Team 10.5.18-7 - Patch for CMCResponse tool - Bugzilla Bug #1710109 - add RSA PSS support - fix CMCResponse tool (jmagne)
Tue May 19 14:00:00 2020 Dogtag Team 10.5.18-6 - Patch for CMC Credential Error, RSA PSS typo, and new profile for directory-authentication-based Server-Side keygen - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug #1710109 - add RSA PSS support (jmagne) - Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Thu May 7 14:00:00 2020 Dogtag Team 10.5.18-5 - Updated jss dependencies - Bugzilla Bug #1710109 - add RSA PSS support - fix SHA512 (jmagne)
Tue May 5 14:00:00 2020 Dogtag Team 10.5.18-4 - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE additional support and touch-up (cfu) - ########################################################################## - # RHCS 9.7: - ########################################################################## - # Bugzilla Bug #1710975 - TPS - Searching the certificate DB for a brand new
Sun Apr 19 14:00:00 2020 Dogtag Team 10.5.18-3 - Updated jss dependencies - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug #1794213 - Server-Side keygen Enrollment for EE (cfu) - Bugzilla Bug #1809273 - CRL generation performs an unindexed search (jmagne) - ########################################################################## - # RHCS 9.7: - ########################################################################## - # Bugzilla Bug #1549307 - No default TPS Auditor group (ascheel)
Mon Mar 30 14:00:00 2020 Dogtag Team 10.5.18-2 - Bugzilla Bug #1710109 - add RSA PSS support - fix IPA installer (jmagne)
Sun Mar 29 14:00:00 2020 Dogtag Team 10.5.18-1 - Updated jss dependencies - ########################################################################## - # RHEL 7.9: - ########################################################################## - Bugzilla Bug #1774174 - Rebase pki-core from 10.5.17 to 10.5.18 (RHEL) - ########################################################################## - # RHCS 9.7: - ########################################################################## - # Bugzilla Bug #1774177 - Rebase redhat-pki, redhat-pki-theme, pki-core, and - # Bugzilla Bug #1774181 - Update RHCS version of CA, KRA, OCSP, and TKS so
Mon Dec 2 13:00:00 2019 Dogtag Team 10.5.17-6 - ########################################################################## - # RHEL 7.8: - ########################################################################## - Bugzilla Bug #1723008 - ECC Key recovery failure with CKR_TEMPLATE_INCONSISTENT (cfu) - Bugzilla Bug #1774282 - pki-server-nuxwdog template has pid file name with non-breakable space char encoded instead of 0x20 space char (ascheel) - ########################################################################## - # RHCS 9.6: - ########################################################################## - # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Thu Oct 24 14:00:00 2019 Dogtag Team 10.5.17-5 - ########################################################################## - # RHEL 7.8: - ########################################################################## - Bugzilla Bug #1523330 - CC: missing audit event for CS acting as TLS client (cfu) - ########################################################################## - # RHCS 9.6: - ########################################################################## - # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Mon Sep 30 14:00:00 2019 Dogtag Team 10.5.17-4 - Include \'pistool\' in the \'pki-tools\' package
Mon Sep 23 14:00:00 2019 Dogtag Team 10.5.17-3 - ########################################################################## - # RHEL 7.8: - ########################################################################## - Bugzilla Bug #1445479 - KRATool does not support netkeyKeyRecovery attribute (dmoluguw) - Bugzilla Bug #1534013 - Attempting to add new keys using a PUT KEY APDU to a token that is loaded only with the default/factory keys (Key Version Number 0xFF) returns an APDU with error code 0x6A88. (jmagne) - Bugzilla Bug #1709585 - PKI (test support) for PKCS#11 standard AES KeyWrap for HSM support (cfu, ftweedal) - Bugzilla Bug #1748766 - number range depletion when multiple clones created from same master (ftweedal) - ########################################################################## - # RHCS 9.6: - ########################################################################## - # Bugzilla Bug #1520258 - TPS token search fails to find entries , LDAP filter - # Bugzilla Bug #1535671 - RFE to have the users be able to use the
Mon Sep 9 14:00:00 2019 Dogtag Team 10.5.17-2 - ########################################################################## - # RHEL 7.8: - ########################################################################## - Bugzilla Bug #1523330 - CC: missing audit event for CS acting as TLS client (cfu) - Bugzilla Bug #1597727 - CA - Unable to change a certificate’s revocation reason from superceded to key_compromised (rhcs-maint) - ########################################################################## - # RHCS 9.6: - ########################################################################## - # Bugzilla Bug #1470410 - TPS doesn\'t update revocation status when - # Bugzilla Bug #1470433 - Add supported transitions to TPS (rhcs-maint) - # Bugzilla Bug #1585722 - TMS - PKISocketFactory – Modify Logging to Allow - # Bugzilla Bug #1642577 - TPS – Revoked Encryption Certificates Marked as
Tue Aug 13 14:00:00 2019 Dogtag Team 10.5.17-1 - Updated jss, nuxwdog, and tomcatjss dependencies - ########################################################################## - # RHEL 7.8: - ########################################################################## - Bugzilla Bug #1733586 - Rebase pki-core from 10.5.16 to 10.5.17 (RHEL) - ########################################################################## - # RHCS 9.6: - ########################################################################## - # Bugzilla Bug #1718418 - Update RHCS version of CA, KRA, OCSP, and TKS so - # Bugzilla Bug #1733588 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Thu Jun 20 14:00:00 2019 Dogtag Team 10.5.16-3 - ########################################################################## - # RHEL 7.7: - ########################################################################## - Bugzilla Bug #1638379 - PKI startup initialization process should not depend on LDAP operational attributes [ftweedal] - ########################################################################## - # RHCS 9.5: - ########################################################################## - # Bugzilla Bug #1633423 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Thu Apr 4 14:00:00 2019 Dogtag Team 10.5.16-2 - ########################################################################## - # RHEL 7.7: - ########################################################################## - Bugzilla Bug #1491453 - Need Method to Include SKI in CA Signing Certificate Request [ftweedal] - ########################################################################## - # RHCS 9.5: - ########################################################################## - # Bugzilla Bug #1633423 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Mon Mar 18 13:00:00 2019 Dogtag Team 10.5.16-1 - Updated jss dependencies - ########################################################################## - # RHEL 7.7: - ########################################################################## - Bugzilla Bug #1633422 - Rebase pki-core from 10.5.1 to 10.5.16 (RHEL) - ########################################################################## - # RHCS 9.5: - ########################################################################## - # Bugzilla Bug #1633423 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Fri Feb 15 13:00:00 2019 Dogtag Team 10.5.9-13 - Updated jss dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1671245 - CC: unable to verify cert before import [rhel-7.6.z] [manpage] (ascheel) - Bugzilla Bug #1671303 - CC: Upgrade scripts for audit event names (RHEL) [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1671586 - CC: Upgrade scripts for audit event names (RHCS)
Fri Feb 1 13:00:00 2019 Dogtag Team 10.5.9-12 - Updated jss dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1671245 - CC: unable to verify cert before import [rhel-7.6.z] (ascheel) - Bugzilla Bug #1671303 - CC: Upgrade scripts for audit event names (RHEL) [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1671586 - CC: Upgrade scripts for audit event names (RHCS)
Thu Jan 31 13:00:00 2019 Dogtag Team 10.5.9-11 - Updated jss dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1671245 - CC: unable to verify cert before import [rhel-7.6.z] (ascheel) - Bugzilla Bug #1671303 - CC: Upgrade scripts for audit event names (RHEL) [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1671586 - CC: Upgrade scripts for audit event names (RHCS)
Mon Dec 17 13:00:00 2018 Dogtag Team 10.5.9-10 - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1659939 - CC: Simplifying Web UI session timeout configuration [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA, - # Added Batch Update Information to Product Version (mharmsen)
Mon Dec 10 13:00:00 2018 Dogtag Team 10.5.9-9 - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1657922 - CC: CA/OCSP startup fail on SystemCertsVerification if enableOCSP is true [rhel-7.6.z] (jmagne) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA,
Wed Dec 5 13:00:00 2018 Dogtag Team 10.5.9-8 - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1645262 - pkidestroy may not remove all files [rhel-7.6.z] (dmoluguw) - Bugzilla Bug #1645263 - Auth plugins leave passwords in the access log and audit log using REST [rhel-7.6.z] (dmoluguw) - Bugzilla Bug #1645429 - pkispawn fails due to name collision with /var/log/pki/ [rhel-7.6.z] (dmoluguw) - Bugzilla Bug #1655951 - CC: tools supporting CMC requests output keyID needs to be captured in file [rhel-7.6.z] (cfu) - Bugzilla Bug #1656297 - Unable to install with admin-generated keys [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA,
Mon Oct 29 13:00:00 2018 Dogtag Team 10.5.9-7 - Require \"tomcatjss >= 7.2.1-8\" as a build and runtime requirement - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1632116 - CC: missing audit event for CS acting as TLS client [rhel-7.6.z] (cfu) - Bugzilla Bug #1632120 - Unsupported RSA_ ciphers should be removed from the default ciphers list [rhel-7.6.z] (cfu) - Bugzilla Bug #1632615 - Permit certain SHA384 FIPS ciphers to be enabled by default for RSA and ECC . . . [rhel-7.6.z] (cfu) - Bugzilla Bug #1632616 - X500Name.directoryStringEncodingOrder overridden by CSR encoding (coverity changes) [rhel-7.6.z] (mharmsen) - Bugzilla Bug #1633104 - CMC: add config to allow non-clientAuth [rhel-7.6.z] (cfu) - Bugzilla Bug #1636490 - Installation of CA using an existing CA fails [rhel-7.6.z] (edewata) - Bugzilla Bug #1643878 - pki cli command for RHCS doesn\'t prompt for a password [rhel-7.6.z] (edewata) - Bugzilla Bug #1643879 - CC: Identify version/release of pki-ca, pki-kra, pki-ocsp, pki-tks, and pki-tps remotely [RHEL] [rhel-7.6.z] (cfu, jmagne) - Bugzilla Bug #1643880 - PKI subsystem process is not shutdown when there is no space on the disk to write logs [rhel-7.6.z] (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1639836 - CC: Identify RHCS version of CA, KRA,
Tue Aug 21 14:00:00 2018 Dogtag Team 10.5.9-6 - Updated nuxwdog dependencies - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #673182 - ECC keys not supported for signing audit logs (cfu) - Bugzilla Bug #1593805 - Better understanding of NSS_USE_DECODED_CKA_EC_POINT for ECC (cfu) - Bugzilla Bug #1601071 - Certificate generation happens with partial attributes in CMCRequest file (cfu) - Bugzilla Bug #1601569 - CC: Enable all config audit events (cfu) - Bugzilla Bug #1608375 - CMC Revocations throws exception with same reqIssuer & certissuer (cfu) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to
Thu Aug 9 14:00:00 2018 Dogtag Team 10.5.9-5 - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1596629 - ipa-replica-install --setup-kra broken on DL0 with latest version (abokovoy) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to
Tue Jul 31 14:00:00 2018 Dogtag Team 10.5.9-4 - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1548203 - pki console configurations that involves ldap passwords leave the plain text password in signed audit logs (cfu) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1494591 - keyGen fails when only Identity
Mon Jul 23 14:00:00 2018 Dogtag Team 10.5.9-3 - Re-spin alpha builds
Thu Jul 5 14:00:00 2018 Dogtag Team 10.5.9-2 - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1471935 - X500Name.directoryStringEncodingOrder overridden by CSR encoding (cfu) - Bugzilla Bug #1538311 - Using a Netmask produces an odd entry in a certificate (ftweedal) - Bugzilla Bug #1540440 - CMC: Audit Events needed for failures in SharedToken scenario\'s (cfu) - Bugzilla Bug #1550742 - Address ECC profile overrides (cfu) - Bugzilla Bug #1562841 - servlet profileSubmitCMCSimple throws NPE (cfu) - Bugzilla Bug #1572432 - AuditVerify failure due to line breaks (cfu) - Bugzilla Bug #1592961 - Need proper default subjectDN for CMC request authenticated through SharedToken (cfu) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to
Mon Jun 11 14:00:00 2018 Dogtag Team 10.5.9-1 - ########################################################################## - # RHEL 7.6: - ########################################################################## - Bugzilla Bug #1538311 - Using a Netmask produces an odd entry in a certifcate (ftweedal) - Bugzilla Bug #1544843 - ExternalCA: Installation failed during csr generation with ecc (rrelyea, gkapoor) - Bugzilla Bug #1557569 - Re-base pki-core from 10.5.1 to latest upstream 10.5.x (RHEL) (mharmsen) - Bugzilla Bug #1580394 - CMC CRMF requests result in InvalidKeyFormatException when signing algorithm is ECC (cfu) - Bugzilla Bug #1580527 - CVE-2018-1080 pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access (ftweedal, cfu) - Bugzilla Bug #1585866 - CRMFPopClient tool - should allow option to do no key archival (cfu) - Bugzilla Bug #1588655 - Cert validation for installation with external CA cert (edewata) - ########################################################################## - # RHCS 9.4: - ########################################################################## - # Bugzilla Bug #1557570 - Re-base pki-core from 10.5.1 to
Sat Jun 9 14:00:00 2018 Dogtag Team 10.5.1-13.1 - Rebuild due to build system database problem
Fri Jun 8 14:00:00 2018 Dogtag Team 10.5.1-13 - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1553068 - Using a Netmask produces an odd entry in a certifcate [rhel-7.5.z] (ftweedal) - Bugzilla Bug #1585945 - CMC CRMF requests result in InvalidKeyFormatException when signing algorithm is ECC [rhel-7.5.z] (cfu) - Bugzilla Bug #1587826 - ExternalCA: Installation failed during csr generation with ecc [rhel-7.5.z] (rrelyea, gkapoor) - Bugzilla Bug #1588944 - Cert validation for installation with external CA cert [rhel-7.5.z] (edewata) - Bugzilla Bug #1588945 - CRMFPopClient tool - should allow option to do no key archival (cfu) - Bugzilla Bug #1589307 - CVE-2018-1080 pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access [rhel-7.5.z] (ftweedal, cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,
Tue May 22 14:00:00 2018 Dogtag Team 10.5.1-12 - Updated \"jss\" build and runtime requirements (mharmsen) - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1571582 - [MAN] Missing Man pages for tools CMCRequest, CMCResponse, CMCSharedToken (typos) [rhel-7.5.z] (cfu) - Bugzilla Bug #1572548 - IPA install with external-CA is failing when FIPS mode enabled. [rhel-7.5.z] (edewata) - Bugzilla Bug #1574848 - servlet profileSubmitCMCSimple throws NPE [rhel-7.5.z] (cfu) - Bugzilla Bug #1575521 - subsystem -> subsystem SSL handshake issue with TLS_ECDHE_RSA_ * on Thales HSM [rhel-7.5.z] (cfu) - Bugzilla Bug #1581134 - ECC installation for non CA subsystems needs improvement [rhel-7.5.z] (jmagne) - Bugzilla Bug #1581135 - SAN in internal SSL server certificate in pkispawn configuration step [rhel-7.5.z] (cfu) - Bugzilla Bug #1581167 - CC: CMC profiles: Some CMC profiles have wrong input class_id [rhel-7.5.z] (cfu) - Bugzilla Bug #1581382 - ECDSA Certificates Generated by Certificate System 9.3 fail NIST validation test with parameter field. [rhel-7.5.z] (cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,
Mon Apr 9 14:00:00 2018 Dogtag Team 10.5.1-11 - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1554726 - Need ECC-specific Enrollment Profiles for standard conformance [rhel-7.5.z] (cfu) - Bugzilla Bug #1557880 - [MAN] Missing Man pages for tools CMCRequest, CMCResponse, CMCSharedToken [rhel-7.5.z] (cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1560233 - libtps does not directly depend on libz
Fri Mar 23 13:00:00 2018 Dogtag Team 10.5.1-10 - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1550581 - CMCAuth throws org.mozilla.jss.crypto.TokenException: Unable to insert certificate into temporary database [rhel-7.5.z] (cfu) - Bugzilla Bug #1551067 - [MAN] Add --skip-configuration and --skip-installation into pkispawn man page. [rhel-7.5.z] (edewata) - Bugzilla Bug #1552241 - Make sslget aware of TLSv1_2 ciphers [rhel-7.5.z] (cheimes, mharmsen) - Bugzilla Bug #1553068 - Using a Netmask produces an odd entry in a certifcate [rhel-7.5.z] (ftweedal) - Bugzilla Bug #1554726 - Need ECC-specific Enrollment Profiles for standard conformance [rhel-7.5.z] (cfu) - Bugzilla Bug #1554727 - Permit additional FIPS ciphers to be enabled by default for RSA . . . [rhel-7.5.z] (mharmsen, cfu) - Bugzilla Bug #1557880 - [MAN] Missing Man pages for tools CMCRequest, CMCResponse, CMCSharedToken [rhel-7.5.z] (cfu) - Bugzilla Bug #1557883 - Console: Adding ACL from pki-console gives StringIndexOutOfBoundsException [rhel-7.5.z] (ftweedal) - Bugzilla Bug #1558919 - Not able to generate certificate request with ECC using pki client-cert-request [rhel-7.5.z] (akahat) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1560233 - libtps does not directly depend on libz
Mon Feb 19 13:00:00 2018 Dogtag Team 10.5.1-9 - ########################################################################## - # RHEL 7.5: - ########################################################################## - # Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release - Bugzilla Bug #1445532 - CC: Audit Events: Update the default audit event set (RHEL) (edewata) - Bugzilla Bug #1532867 - Inconsistent key ID encoding (edewata) - Bugzilla Bug #1540687 - CC: External OCSP Installation failure with HSM and FIPS (edewata) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, - # Bugzilla Bug #1404075 - CC: Audit Events: Update the default audit event
Mon Feb 12 13:00:00 2018 Dogtag Team 10.5.1-8 - ########################################################################## - # RHEL 7.5: - ########################################################################## - # Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release - Bugzilla Bug #1542210 - pki console configurations that involves ldap passwords leave the plain text password in debug logs (jmagne) - Bugzilla Bug #1543242 - Regression in lightweight CA key replication (ftweedal) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,
Mon Feb 5 13:00:00 2018 Dogtag Team 10.5.1-7 - ########################################################################## - # RHEL 7.5: - ########################################################################## - # Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release - Bugzilla Bug #1445532 - CC: Audit Events: Update the default audit event set (RHEL) (edewata) - Bugzilla Bug #1522938 - CC: Missing faillure resumption detection and audit event logging at startup (jmagne) - Bugzilla Bug #1523410 - Unable to have non \"pkiuser\" owned CA instance (alee) - Bugzilla Bug #1525306 - CC: missing CMC request and response record (cfu) - Bugzilla Bug #1532933 - Installing subsystems with external CMC certificates in HSM environment shows import error (edewata) - Bugzilla Bug #1535797 - ExternalCA: Failures when installed with hsm (edewata) - Bugzilla Bug #1539125 - restrict default cipher suite to those ciphers permitted in fips mode (mharmsen) - Bugzilla Bug #1539198 - Inconsistent CERT_REQUEST_PROCESSED outcomes. (edewata) - Bugzilla Bug #1540440 - CMC: Audit Events needed for failures in SharedToken scenario\'s (cfu) - Bugzilla Bug #1541526 - CMC: Revocation works with an unknown revRequest.issuer (cfu) - Bugzilla Bug #1541853 - ProfileService: config values with backslashes have backslashes removed (ftweedal) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, - # Bugzilla Bug #1404075 - CC: Audit Events: Update the default audit - # Bugzilla Bug #1501436 - TPS CS.cfg should be reflected with the
Tue Jan 23 13:00:00 2018 Dogtag Team 10.5.1-6 - Updated jss, nuxwdog, and openssl dependencies - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - Bugzilla Bug #1402280 - CA Cloning: Failed to update number range in few cases (ftweedal) - Bugzilla Bug #1428021 - CC: shared token storage and retrieval mechanism (cfu) - Bugzilla Bug #1447145 - CMC: cmc.popLinkWitnessRequired=false would cause error (cfu) - Bugzilla Bug #1498957 - pkidestroy does not work with nuxwdog (alee) - Bugzilla Bug #1520277 - PR_FILE_NOT_FOUND_ERROR during pkispawn (alee) - Bugzilla Bug #1520526 - p12 admin certificate is missing when certificate is signed Externally (edewata) - Bugzilla Bug #1523410 - Unable to have non \"pkiuser\" owned CA instance (alee) - Bugzilla Bug #1523443 - HAProxy rejects OCSP responses due to missing nextupdate field (ftweedal) - Bugzilla Bug #1526881 - Not able to setup CA with ECC (mharmsen) - Bugzilla Bug #1532759 - pkispawn seems to be leaving our passwords in several different files after installation completes (alee) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core,
Mon Dec 11 13:00:00 2017 Dogtag Team 10.5.1-5 - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - Bugzilla Bug #1466066 - CC: Secure removal of secret data storage (jmagne) - Bugzilla Bug #1518096 - ExternalCA: Failures in ExternalCA when tried to setup with CMC signed certificates (cfu) - ########################################################################## - # RHCS 9.3: - ########################################################################## - # Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Mon Nov 27 13:00:00 2017 Dogtag Team 10.5.1-4 - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - ########################################################################## - # RHCS 9.3: - ########################################################################## - #Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Tue Nov 14 13:00:00 2017 Troy Dawson - 10.5.1-3 - dogtagpki Pagure Issue #2853 - Cleanup spec file conditionals
Wed Nov 8 13:00:00 2017 Dogtag Team 10.5.1-2 - Patch applying check-ins since 10.5.1-1
Thu Nov 2 13:00:00 2017 Dogtag Team 10.5.1-1 - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - ########################################################################## - # RHCS 9.3: - ########################################################################## - #Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Thu Oct 19 14:00:00 2017 Dogtag Team 10.5.0-1 - ########################################################################## - # RHEL 7.5: - ########################################################################## - Bugzilla Bug #1473452 - Rebase pki-core to latest upstream 10.5.x release (RHEL) - ########################################################################## - # RHCS 9.3: - ########################################################################## - #Bugzilla Bug #1471303 - Rebase redhat-pki, redhat-pki-theme, pki-core, and
Mon Sep 18 14:00:00 2017 Dogtag Team 10.4.1-15 - #Bugzilla Bug #1492560 - ipa-replica-install --setup-kra broken on DL0
Tue Sep 12 14:00:00 2017 Dogtag Team 10.4.1-14 - #Require \"jss >= 4.4.0-8\" as a build and runtime requirement - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Resolves: rhbz #1486870,1485833,1487509,1490241,1491332 - # Bugzilla Bug #1486870 - Lightweight CA key replication fails (regressions) - # Bugzilla Bug #1485833 - Missing CN in user signing cert would cause error - # Bugzilla Bug #1487509 - pki-server-upgrade fails when upgrading from - # Bugzilla Bug #1490241 - PKCS12: upgrade to at least AES and SHA2 (FIPS) - # Bugzilla Bug #1491332 - TPS UI: need to display tokenType and tokenOrigin - # dogtagpki Pagure Issue #2764 - py3: pki.key.archive_encrypted_data: - ########################################################################## - # RHCS 9.2: - ########################################################################## - # Resolves: rhbz #1486870,1485833,1487509,1490241,1491332,1482729,1462271 - # Bugzilla Bug #1462271 - TPS incorrectly assigns \"tokenOrigin\" and - # Bugzilla Bug #1482729 - TPS UI: need to display tokenType and tokenOrigin
Mon Aug 21 14:00:00 2017 Dogtag Team 10.4.1-13 - Resolves: rhbz #1463350 - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Bugzilla Bug #1463350 - Access banner validation (edewata)
Wed Jul 19 14:00:00 2017 Dogtag Team 10.4.1-12 - # Resolves: rhbz #1472615,1472617,1469447,1463350,1469449,1472619,1464970,1469437,1469439,1469446 - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Bugzilla Bug #1472615 - CC: allow CA to process pre-signed CMC non-signing - # Bugzilla Bug #1472617 - CMC: cmc.popLinkWitnessRequired=false would cause - # Bugzilla Bug #1469447 - CC: CMC: check HTTPS client authentication cert - # Bugzilla Bug #1463350 - Access banner validation (edewata) - # Bugzilla Bug #1469449 - CC: allow CA to process pre-signed CMC renewal - # Bugzilla Bug #1472619 - Platform Dependent Python Import (mharmsen) - # Bugzilla Bug #1464970 - CC: CMC: replace id-cmc-statusInfo with - # Bugzilla Bug #1469437 - subsystem-cert-update command lacks --cert option - # Bugzilla Bug #1469439 - Fix Key Changeover with HSM to support SCP03 - # Bugzilla Bug #1469446 - CC: need CMC enrollment profiles for system
Mon Jul 17 14:00:00 2017 Dogtag Team 10.4.1-11 - # Resolves: rhbz #1469432 - ########################################################################## - # RHEL 7.4: - ########################################################################## - # Bugzilla Bug #1469432 - CMC plugin default change - # Resolves CVE-2017-7537 - # Fixes BZ #1470948
Mon Jun 19 14:00:00 2017 Dogtag Team 10.4.1-10 - ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1458043 - Key recovery on token fails with invalid public key error on KRA (alee) - Bugzilla Bug #1460764 - CC: CMC: check HTTPS client authentication cert against CMC signer (cfu) - Bugzilla Bug #1461533 - Unable to find keys in the p12 file after deleting the any of the subsystem certs from it (ftweedal)
Mon Jun 12 14:00:00 2017 Dogtag Team 10.4.1-9 - ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1393633 - Creating symmetric key (sharedSecret) using tkstool is failing when RHEL 7.3 is in FIPS mode. (jmagne) - Bugzilla Bug #1419756 - CC: allow CA to process pre-signed CMC non-signing certificate requests (cfu) - Bugzilla Bug #1419777 - CC: allow CA to process pre-signed CMC revocation non-signing cert requests (cfu) - Bugzilla Bug #1458047 - change the way aes clients refer to aes keysets (alee) - Bugzilla Bug #1458055 - dont reuse IVs in the CMC code (alee) - Bugzilla Bug #1460028 - In keywrap mode, key recovery on KRA with HSM causes KRA to crash (ftweedal)
Mon Jun 5 14:00:00 2017 Dogtag Team 10.4.1-8 - Require \"selinux-policy-targeted >= 3.13.1-159\" as a runtime requirement - Require \"tomcatjss >= 7.2.1-4\" as a build and runtime requirement - ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1400149 - pkispawn fails to create CA subsystem on FIPS enabled system (edewata) - Bugzilla Bug #1447144 - CA brought down during separate KRA instance creation (edewata) - Bugzilla Bug #1447762 - pkispawn fails occasionally with this failure ACCESS_SESSION_ESTABLISH_FAILURE (edewata) - Bugzilla Bug #1454450 - SubCA installation failure with 2 step installation in fips enabled mode (edewata) - Bugzilla Bug #1456597 - Certificate import using pki client-cert-import is asking for password when already provided (edewata) - Bugzilla Bug #1456940 - Build failure due to Pylint issues (cheimes) - Bugzilla Bug #1458043 - Key recovery using externalReg fails with java null pointer exception on KRA (alee) - Bugzilla Bug #1458379 - Upgrade script for keepAliveTimeout parameter (edewata) - Bugzilla Bug #1458429 - client-cert-import --ca-cert should import CA cert with trust bits \"CT,C,C\" (edewata) - ########################################################################## - # RHCS 9.2: - ########################################################################## - Bugzilla Bug #1274086 - [RFE] Add SCP03 support (RHCS) (jmagne)
Tue May 30 14:00:00 2017 Dogtag Team 10.4.1-7 - ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1393633 - Creating symmetric key (sharedSecret) using tkstool is failing when RHEL 7.3 is in FIPS mode. (jmagne) - Bugzilla Bug #1445519 - CA Server installation with HSM fails (jmagne) - Bugzilla Bug #1452617 - Unable to create IPA Sub CA (ftweedal) - Bugzilla Bug #1454471 - Enabling all subsystems on startup (edewata) - Bugzilla Bug #1455617 - Key recovery on token fails because key record is not marked encrypted (alee)
Tue May 23 14:00:00 2017 Dogtag Team 10.4.1-6 - Bugzilla Bug #1454603 - Unable to install IPA server due to pkispawn error (mharmsen)
Mon May 22 14:00:00 2017 Dogtag Team 10.4.1-5 - ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1419761 - CC: allow CA to process pre-signed CMC renewal non-signing cert requests (cfu) - Bugzilla Bug #1447080 - CC: CMC: allow enrollment key signed (self-signed) CMC with identity proof (cfu) - Bugzilla Bug #1447144 - CA brought down during separate KRA instance creation (mharmsen) - Bugzilla Bug #1448903 - exception Invalid module \"--ignore-banner\" when defined in ~/.dogtag/pki.conf and run pki pkcs12-import --help (edewata) - Bugzilla Bug #1450143 - CA installation with HSM in FIPS mode fails (jmagne) - Bugzilla Bug #1452123 - CA CS.cfg shows default port (mharmsen) - Bugzilla Bug #1452250 - Inconsistent CERT_REQUEST_PROCESSED event in ConnectorServlet. (edewata) - Bugzilla Bug #1452340 - Ensuring common audit log correctness (edewata) - Bugzilla Bug #1452344 - Adding serial number into CERT_REQUEST_PROCESSED audit event. (edewata)
Tue May 9 14:00:00 2017 Dogtag Team 10.4.1-4 - ########################################################################## - # RHEL 7.4: - ########################################################################## - Bugzilla Bug #1386303 - cannot extract generated private key from KRA when HSM is used. (alee) - Bugzilla Bug #1446364 - pkispawn returns before tomcat is ready (cheimes) - Bugzilla Bug #1447145 - CMC: cmc.popLinkWitnessRequired=false would cause error (cfu) - Bugzilla Bug #1448203 - CAInfoService: retrieve KRA-related values from the KRA (ftweedal) - Bugzilla Bug #1448204 - pkispawn of clone install fails with InvalidBERException (ftweedal) - Bugzilla Bug #1448521 - kra unable to extract symmetric keys generated on thales hsm (alee) - Updated \"jss\" build and runtime requirements (mharmsen) - ########################################################################## - # RHCS 9.2: - ########################################################################## - Bugzilla Bug #1274086 - [RFE] Add SCP03 support (RHCS) (jmagne)
Mon May 1 14:00:00 2017 Dogtag Team 10.4.1-3 - ############################################################################ - # RHEL 7.4: - ############################################################################ - Bugzilla Bug #1303683 - dogtag should support GSSAPI based auth in conjuction with FreeIPA (ftweedal) - Bugzilla Bug #1385208 - RHCS 9.1 RC5 CA in the certificate profiles the startTime parameter is not working as expected. (jmagne) - Bugzilla Bug #1419756 - CC: allow CA to process pre-signed CMC non-signing certificate requests (cfu) - Bugzilla Bug #1426754 - PKCS12: upgrade to at least AES and SHA2 (ftweedal) - Bugzilla Bug #1445088 - profile modification cannot remove existing config parameters (ftweedal) - Bugzilla Bug #1445535 - CC: Crypto Operation (AES Encryption/Decryption) (RHEL) (alee) - Bugzilla Bug #1446874 - Missing ClientIP and ServerIP in audit log when pki CLI terminates SSL connection (edewata) - Bugzilla Bug #1446875 - Session timeout for PKI console (RHEL) (edewata) - ############################################################################ - # RHCS 9.2: - ############################################################################ - Bugzilla Bug #1404480 - CC: Crypto Operation (AES Encryption/Decryption) (RHCS) (alee)
Mon Apr 17 14:00:00 2017 Dogtag Team 10.4.1-2 - ############################################################################ - # RHEL 7.4: - ############################################################################ - Bugzilla Bug #1282504 - Installing pki-server in container reports scriptlet failed, exit status 1 (jpazdziora) - Bugzilla Bug #1400149 - pkispawn fails to create CA subsystem on FIPS enabled system (edewata) - Bugzilla Bug #1410650 - [RFE] Add SCP03 support for sc 7 g & d cards (RHEL) (jmagne) - Bugzilla Bug #1437591 - cli authentication using expired cert throws an exception (edewata) - Bugzilla Bug #1437602 - non-CA cli looks for CA in the instance during a request (edewata) - ############################################################################ - # RHCS 9.2: - ############################################################################ - Bugzilla Bug #1274086 - [RFE] Add SCP03 support for sc 7 g & d cards (RHCS) (jmagne) - ############################################################################ - # Common Criteria - ############################################################################ - Bugzilla Bug #1404080 - CC: add audit event: various SSL/TLS failures (edewata) - Bugzilla Bug #1417307 - CC: Audit Review /Searches (edewata) - Bugzilla Bug #1419737 - CC: CMC: id-cmc-popLinkWitnessV2 feature implementation (cfu)
Mon Mar 27 14:00:00 2017 Dogtag Team 10.4.1-1 - Require \"nss >= 3.28.3\" as a build and runtime requirement - Require \"jss >= 4.4.0-4\" as a build and runtime requirement - Require \"tomcatjss >= 7.2.1-3\" as a build and runtime requirement - dogtagpki Pagure Issue #2612 - Unable to clone due to pki pkcs12-cert-find failure (edewata) - ############################################################################ - Bugzilla Bug #1394309 - Rebase pki-core to 10.4.x in RHEL-7.4 - Bugzilla Bug #1394315 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.4.x - ############################################################################ - # RHEL 7.4: - ############################################################################ - ############################################################################ - # RHCS 9.2: - ############################################################################ - ############################################################################ - # Common Criteria - ############################################################################ - Bugzilla Bug #1419734 - CC: CMC: id-cmc-identityProofV2 feature implementation (cfu) - Bugzilla Bug #1419742 - CC: CMC: provide Proof of Possession for encryption cert requests (cfu) - Bugzilla Bug #1404080 - CC: add audit event: various SSL/TLS failures (edewata) - Bugzilla Bug #1428020 - CC: CMC feature support: provided issuance protection cert mechanism (cfu)
Tue Mar 14 13:00:00 2017 Dogtag Team 10.4.0-1 - Require \"jss >= 4.4.0-1\" as a build and runtime requirement - Require \"tomcatjss >= 7.2.1-1\" as a build and runtime requirement - ############################################################################ - Bugzilla Bug #1394309 - Rebase pki-core to 10.4.x in RHEL-7.4 - Bugzilla Bug #1394315 - Rebase redhat-pki, redhat-pki-theme, pki-core, and pki-console to 10.4.x - ############################################################################ - # RHEL 7.4: - ############################################################################ - Bugzilla Bug #1222557 - ECDSA Certificates Generated by Certificate System 8.1 fail NIST validation test with parameter field. (cfu) - Bugzilla Bug #1238684 - Generting Symmetric key fails with key-generate when --usages verify (vakwetu) - Bugzilla Bug #1246635 - user-cert-add --serial CLI request to secure port with remote CA shows authentication failure (edewata) - Bugzilla Bug #1249400 - CA EE: Submit caUserCert request without uid does not show proper error message (vakwetu) - Bugzilla Bug #1305993 - Add profile component that copies CN to SAN (ftweedal) - Bugzilla Bug #1316653 - pki ca-cert-request-submit fails presumably because of missing authentication even if it should not require any (edewata) - Bugzilla Bug #1325071 - add options to enable/disable cert or crl publishing. (vakwetu) - Bugzilla Bug #1330800 - Failed to start pki-tomcatd Service (\"ipa-cacert-manage renew\" failed?) (edewata) - Bugzilla Bug #1368410 - Misleading Logging for HSM (edewata) - Bugzilla Bug #1372052 - Unable to search certificate requests using the latest request ID (edewata) - Bugzilla Bug #1375347 - Typo in comment line of UserPwdDirAuthentication.java (edewata) - Bugzilla Bug #1376226 - IPA replica-prepare failed with error \"Profile caIPAserviceCert Not Found\" (ftweedal) - Bugzilla Bug #1376488 - pkispawn fails as it is not able to find openssl as a dependency package (mharmsen) - Bugzilla Bug #1378275 - two-step externally-signed CA installation fails due to missing AuthorityID (ftweedal) - Bugzilla Bug #1378277 - Spurious host authority entries created (ftweedal) - Bugzilla Bug #1378527 - Miscellaneous Minor Changes (edewata) - Bugzilla Bug #1381084 - KRA installation failed against externally-signed CA with partial certificate chain (edewata) - Bugzilla Bug #1382066 - Problems with FIPS mode (edewata) - Bugzilla Bug #1386371 - Remove xenroll.dll from pki-core (mharmsen) - Bugzilla Bug #1386424 - Fix packaging duplicates of classes in multiple jar files (edewata) - Bugzilla Bug #1391737 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (RHEL 7) (edewata) - Bugzilla Bug #1392068 - [RFE] add express archivals and retrievals from KRA (vakwetu) - Bugzilla Bug #1395817 - Unable to install subordinate CA with HSM in FIPS mode (edewata) - Bugzilla Bug #1397200 - pkispawn does not change default ecc key size from nistp256 when nistp384 is specified in spawn config (jmagne) - Bugzilla Bug #1399862 - Dogtag 10.3.9 Man Pages (edewata) - Bugzilla Bug #1404881 - TPS throws \"err=6\" when attempting to format and enroll G&D Cards (jmagne) - Bugzilla Bug #1405654 - Token memory not wiped after key deletion (RHEL) (jmagne) - Bugzilla Bug #1409946 - Request ID undefined for CA signing certificate (vakwetu) - Bugzilla Bug #1409949 - CA Certificate Issuance Date displayed on CA website incorrect (vakwetu) - Bugzilla Bug #1410650 - [RFE] Add SCP03 support (RHEL) (jmagne) - Bugzilla Bug #1411428 - Unable to create a CA clone in FIPS (edewata) - Bugzilla Bug #1412211 - Unable to set up KRA in FIPS (edewata) - Bugzilla Bug #1412681 - update to 7.3 IPA with otpd bugfixes, tomcat will not finish start, hangs (ftweedal) - Bugzilla Bug #1413132 - pki-tomcat for 10+ minutes before generating cert (edewata) - Bugzilla Bug #1413136 - Problem with default AJP hostname in IPv6 environment. (edewata) - ############################################################################ - # RHCS 9.2: - ############################################################################ - Bugzilla Bug #1248553 - TPS Enrollment always goes to \"ca1 (cfu) - Bugzilla Bug #1274086 - [RFE] Add SCP03 support (RHCS) (jmagne) - Bugzilla Bug #1274096 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - Bugzilla Bug #1379379 - Unable to read an encrypted email using renewed tokens (jmagne) - Bugzilla Bug #1379749 - Automatic recovery of encryption cert is not working when a token is physically damaged and a temporary token is issued (jmagne) - Bugzilla Bug #1381375 - Cert/Key recovery is successful when the cert serial number and key id on the ldap user mismatches (cfu) - Bugzilla Bug #1381635 - Token format with external reg fails when op.format.externalRegAddToToken.revokeCert=true (cfu) - Bugzilla Bug #1382762 - PIN_RESET policy is not giving expected results when set on a token (jmagne) - Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (RHCS 9) (edewata) - Bugzilla Bug #1391207 - Automatic recovery of encryption cert - CA and TPS tokendb shows different certificate status (cfu) - Bugzilla Bug #1395479 - TPS throws \"err=6\" when attempting to format and enroll G&D Cards (RHCS) (jmagne) - Bugzilla Bug #1404900 - Dogtag 10.3.9 logging properties (edewata) - Bugzilla Bug #1405655 - Token memory not wiped after key deletion (RHCS) (jmagne) - ############################################################################
Mon Mar 6 13:00:00 2017 Dogtag Team 10.3.3-18 - ## RHEL 7.3.z Batch Update 4 - Bugzilla Bug #1429492 - Add profile component that copies CN to SAN (ftweedal)
Mon Jan 30 13:00:00 2017 Dogtag Team 10.3.3-17 - ## RHCS 9.1.z Batch Update 3 - Bugzilla Bug #1391207 - Automatic recovery of encryption cert - CA and TPS tokendb shows different certificate status (cfu) - ## RHEL 7.3.z Batch Update 3 - Bugzilla Bug #1417063 - ECDSA Certificates Generated by Certificate System 8.1 fail NIST validation test with parameter field. (cfu) - Bugzilla Bug #1417064 - Unable to search certificate requests using the latest request ID (edewata) - Bugzilla Bug #1417065 - CA Certificate Issuance Date displayed on CA website incorrect (alee) - Bugzilla Bug #1417066 - update to 7.3 IPA with otpd bugfixes, tomcat will not finish start, hangs (ftweedal) - Bugzilla Bug #1417067 - pki-tomcat for 10+ minutes before generating cert (edewata) - Bugzilla Bug #1417190 - Problem with default AJP hostname in IPv6 environment. (edewata)
Thu Dec 15 13:00:00 2016 Dogtag Team 10.3.3-16 - Separate original patches into RHEL and RHCS portions - ## RHEL 7.3.z Batch Update 2 - Bugzilla Bug #1404176 - logging properties and man pages (edewata) - Bugzilla Bug #1405328 - TPS throws \"err=6\" when attempting to format and enroll G&D Cards (jmagne) - ## RHCS 9.1.z Batch Update 2 - Bugzilla Bug #1395479 - TPS throws \"err=6\" when attempting to format and enroll G&D Cards (jmagne) - Bugzilla Bug #1404900 - RHCS logging properties (edewata)
Tue Dec 13 13:00:00 2016 Dogtag Team 10.3.3-15 - ## RHEL 7.3.z Batch Update 2 - Bugzilla Bug #1404173 - user-cert-add --serial CLI request to secure port with remote CA shows authentication failure (edewata) - Bugzilla Bug #1404175 - pki ca-cert-request-submit fails presumably because of missing authentication even if it should not require any (edewata) - Bugzilla Bug #1404178 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI [pki-base] (edewata) - Bugzilla Bug #1404172 - Unable to install subordinate CA with HSM in FIPS mode (edewata) - Bugzilla Bug #1403689 - pkispawn does not change default ecc key size from nistp256 when nistp384 is specified in spawn config (jmagne) - Bugzilla Bug #1404176 - logging properties and man pages (edewata) - ## RHCS 9.1.z Batch Update 2 - Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI [pki-tps] (edewata) - Bugzilla Bug #1391207 - Automatic recovery of encryption cert - CA and TPS tokendb shows different certificate status (cfu) - Bugzilla Bug #1395479 - TPS throws \"err=6\" when attempting to format and enroll G&D Cards (jmagne)
Tue Nov 8 13:00:00 2016 Dogtag Team 10.3.3-14 - Marked the following RHCS 9.1.z bug: Bugzilla Bug #1382862 - TPS token enrollment fails to setupSecureChannel when TPS and TKS security db is on fips mode. (jmagne) as a duplicate of RHEL 7.3.z bug: Bugzilla Bug #1389757 - Problems with FIPS mode (edewata) and moved the patch from the RHCS 9.1.z bug to the RHEL 7.3.z bug.
Thu Nov 3 13:00:00 2016 Dogtag Team 10.3.3-13 - ## RHEL 7.3.z Batch Update 1 - Bugzilla Bug #1389757 - Problems with FIPS mode (edewata) (added KRA key recovery via CLI in FIPS mode) - ## RHCS 9.1.z Batch Update 1 - Reverted patches associated with Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (edewata)
Mon Oct 31 13:00:00 2016 Dogtag Team 10.3.3-12 - ## RHEL 7.3.z Batch Update 1 - Bugzilla Bug #1390318 - CA EE: Submit caUserCert request without uid does not show proper error message (alee) - Bugzilla Bug #1390319 - Failed to start pki-tomcatd Service (\"ipa-cacert-manage renew\" failed?) (edewata) - Bugzilla Bug #1390320 - pkispawn fails as it is not able to find openssl as a dependency package (mharmsen) - Bugzilla Bug #1390321 - two-step externally-signed CA installation fails due to missing AuthorityID (ftweedal) - Bugzilla Bug #1390322 - Spurious host authority entries created (ftweedal) - Bugzilla Bug #1390324 - KRA installation failed against externally-signed CA with partial certificate chain (edewata) - Bugzilla Bug #1389757 - Problems with FIPS mode (edewata) - Bugzilla Bug #1390311 - Fix packaging duplicates of classes in multiple jar files (edewata) - Bugzilla Bug #1390325 - Typo in comment line of UserPwdDirAuthentication.java (edewata) - ## RHCS 9.1.z Batch Update 1 - Bugzilla Bug #1248553 - TPS Enrollment always goes to \"ca1\" (cfu) - Bugzilla Bug #1274096 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - Bugzilla Bug #1379379 - Unable to read an encrypted email using renewed tokens (jmagne) - Bugzilla Bug #1379749 - Automatic recovery of encryption cert is not working when a token is physically damaged and a temporary token is issued (jmagne) - Bugzilla Bug #1381375 - Cert/Key recovery is successful when the cert serial number and key id on the ldap user mismatches - Bugzilla Bug #1381635 - Token format with external reg fails when op.format.externalRegAddToToken.revokeCert=true (cfu) - Bugzilla Bug #1382762 - PIN_RESET policy is not giving expected results when set on a token (jmagne) - Bugzilla Bug #1382862 - TPS token enrollment fails to setupSecureChannel when TPS and TKS security db is on fips mode. (jmagne) - Bugzilla Bug #1386257 - Changes to target.agent.approve.list parameter is not reflected in the TPS Web UI (edewata)
Mon Oct 10 14:00:00 2016 Dogtag Team 10.3.3-11 - PKI TRAC Ticket #1527 - TPS Enrollment always goes to \"ca1\" (cfu) - PKI TRAC Ticket #1664 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - PKI TRAC Ticket #2478 - pkispawn fails as it is not able to find openssl as a dependency package (mharmsen) - PKI TRAC Ticket #2483 - Unable to read an encrypted email using renewed tokens (jmagne) - PKI TRAC Ticket #2496 - Cert/Key recovery is successful when the cert serial number and key id on the ldap user mismatches (cfu) - PKI TRAC Ticket #2505 - Fix packaging duplicates of classes in multiple jar files (edewata)
Fri Sep 9 14:00:00 2016 Dogtag Team 10.3.3-10 - Revert Patch: PKI TRAC Ticket #2449 - Unable to create system certificates in different tokens (edewata) - Resolves: rhbz #1374054 - ipa-replica-install fails setting up certificate - Restores: rhbz #1319557 - pkispawn KRA instance is failing server - Removes from Errata: rhbz #1372041 - Unable to create system certificates in different tokens
Tue Sep 6 14:00:00 2016 Dogtag Team 10.3.3-9 - PKI TRAC Ticket #1638 - Lightweight CAs: revoke certificate on CA deletion (ftweedal) - PKI TRAC Ticket #2436 - Dogtag 10.3.6: Miscellaneous Enhancements (edewata) - PKI TRAC Ticket #2443 - Prevent deletion of host CA\'s keys if LWCA entry deleted (ftweedal) - PKI TRAC Ticket #2444 - Authority entry without entryUSN is skipped even if USN plugin enabled (ftweedal) - PKI TRAC Ticket #2446 - pkispawn: make subject_dn defaults unique per instance name (for shared HSM) (cfu) - PKI TRAC Ticket #2447 - CertRequestInfo has incorrect URLs (vakwetu) - PKI TRAC Ticket #2449 - Unable to create system certificates in different tokens (edewata)
Mon Aug 29 14:00:00 2016 Dogtag Team 10.3.3-8 - PKI TRAC Ticket #1578 - Authentication Instance Id PinDirEnrollment with authType value as SslclientAuth is not working (jmagne) - PKI TRAC TIcket #2414 - pki pkcs12-cert-del shows a successfully deleted message when a wrong nickname is provided (gkapoor) - PKI TRAC Ticket #2423 - pki_ca_signing_token when not specified does not fallback to pki_token_name value (edewata) - PKI TRAC Ticket #2436 - Dogtag 10.3.6: Miscellaneous Enhancements (akasurde) - ticket remains open - PKI TRAC Ticket #2439 - Outdated deployment descriptors in upgraded server(edewata)
Tue Aug 23 14:00:00 2016 Dogtag Team 10.3.3-7 - PKI TRAC Ticket #690 - [MAN] pki-tools man pages (mharmsen) - CMCEnroll - PKI TRAC Ticket #833 - pki user-mod fullName=\"\" gives an error message \"PKIException: LDAP error (21): error result\" (edewata) - PKI TRAC Ticket #2431 - Errors noticed during ipa server upgrade. (cheimes, edewata, mharmsen) - PKI TRAC Ticket #2432 - Kra-selftest behavior is not as expected (edewata) - PKI TRAC Ticket #2436 - Dogtag 10.3.6: Miscellaneous Enhancements (edewata, mharmsen) - PKI TRAC Ticket #2437 - TPS UI: while adding certs for users from TPSUI pem format with/without header works while pkcs7 with header is not allowed (edewata) - PKI TRAC Ticket #2440 - Optional CA signing CSR for migration (edewata)
Mon Aug 15 14:00:00 2016 Dogtag Team 10.3.3-6 - Bugzilla Bug #1366465 - Errata TPS upgrade test fails
Mon Aug 8 14:00:00 2016 Dogtag Team 10.3.3-5 - PKI TRAC Ticket #978 - TPS connector man page: add revocation routing info (cfu) - PKI TRAC Ticket #1285 - [MAN] Apply \'generateCRMFRequest() removed from Firefox\' workarounds to appropriate \'pki\' man page (jmagne) - PKI TRAC Ticket #2246 - [MAN] Man Page: AuditVerify (cfu) - PKI TRAC Ticket #2381 - Throws exception while providing invalid module. (edewata) - PKI TRAC Ticket #2383 - CLI :: pki client-cert-request --extractable should accept only boolean value (edewata) - PKI TRAC Ticket #2389 - Installation: subsystem certs could have notAfter beyond CA signing cert in case of external or existing CA (cfu) - PKI TRAC Ticket #2399 - Dogtag 10.3.5: Miscellaneous Enhancements (akasurde, alee, cheimes, edewata, jmagne, mharmsen) - PKI TRAC Ticket #2401 - pkispawn calls dnsdomainname even if it does not rpm-require hostname (mharmsen) - PKI TRAC Ticket #2402 - Conflict in file ownership in pki-base and pki-server (cheimes) - PKI TRAC Ticket #2403 - Deployment problem with RESTEasy 3.0.17 (edewata) - PKI TRAC Ticket #2406 - Make starting CRL Number configurable (jmagne) - PKI TRAC Ticket #2412 - pki client-cert-import --trust option does not apply the specified trust bits (alee) - PKI TRAC Ticket #2418 - [TPS] Some template substitution didn\'t happen during installation (alee) - PKI TRAC Ticket #2420 - CA subsystem OSCP responder fails when LWCAs are not used (ftweedal) - PKI TRAC Ticket #2421 - Incorrect SELinux contexts Installation/Configuration (edewata) - PKI TRAC Ticket #2424 - ipa-ca-install fails on replica when IPA server is converted from CA-less to CA-full (edewata) - PKI TRAC Ticket #2428 - broken request links for CA\'s system certs in agent request viewing (cfu) - PKI TRAC Ticket #2430 - CA Agent certificate list is not sorted by serial number in migration case (jmagne) - PKI TRAC Ticket #2431 - Errors noticed during ipa server upgrade. (mharmsen) - PKI TRAC Ticket #2433 - Lightweight CA GET /chain returns bogus PEM data (ftweedal)
Tue Jul 5 14:00:00 2016 Dogtag Team 10.3.3-3 - PKI TRAC Ticket #691 - [MAN] pki-server man pages (mharmsen) - PKI TRAC Ticket #1114 - [MAN] Generting Symmetric key fails with key-generate when --usages verify is passed (jmagne) - PKI TRAC Ticket #1306 - [RFE] Add granularity to token termination in TPS (cfu) - PKI TRAC Ticket #1308 - [RFE] Provide ability to perform off-card key generation for non-encryption token keys (cfu) - PKI TRAC Ticket #1405 - [MAN] Add additional HSM details to \'pki_default.cfg\' & \'pkispawn\' man pages (mharmsen) - PKI TRAC Ticket #1607 - [MAN] man pkispawn has inadequate description for shared vs non shared tomcat instance installation (mharmsen) - PKI TRAC Ticket #1664 - [BUG] Add ability to disallow TPS to enroll a single user on multiple tokens. (jmagne) - PKI TRAC Ticket #1711 - CLI :: pki-server ca-cert-request-find throws IOError (edewata, ftweedal) - PKI TRAC Ticket #2285 - freeipa fails to start correctly after pki-core update on upgraded system (ftweedal) - PKI TRAC Ticket #2311 - When pki_token_name=Internal, consider normalizing it to \"internal\" (mharmsen) - PKI TRAC Ticket #2349 - Separated TPS does not automatically receive shared secret from remote TKS (jmagne) - PKI TRAC Ticket #2364 - CLI :: pki-server ca-cert-request-show throws attribute error (ftweedal) - PKI TRAC Ticket #2368 - pki-server subsystem subcommands throws error with --help option (edewata) - PKI TRAC Ticket #2374 - KRA cloning overwrites CA signing certificate trust flags (edewata) - PKI TRAC Ticket #2380 - Pki-server instance commands throws exception while specifying invalid parameters. (edewata) - PKI TRAC Ticket #2384 - CA installation with HSM prompts for HSM password during silent installation (edewata) - PKI TRAC Ticket #2385 - Upgraded CA lacks ca.sslserver.certreq in CS.cfg (ftweedal) - PKI TRAC Ticket #2387 - Add config for default OCSP URI if none given (ftweedal) - PKI TRAC Ticket #2388 - CA creation responds 500 if certificate issuance fails (ftweedal) - PKI TRAC Ticket #2389 - Installation: subsystem certs could have notAfter beyond CA signing cert in case of external or existing CA (cfu) - PKI TRAC Ticket #2390 - Dogtag 10.3.4: Miscellaneous Enhancements (akasurde, edewata)
Thu Jun 30 14:00:00 2016 Dogtag Team 10.3.3-2 - PKI TRAC Ticket #2373 - Fedora 25: RestEasy 3.0.6 ==> 3.0.17 breaks pki-core (ftweedal)
Mon Jun 20 14:00:00 2016 Dogtag Team 10.3.3-1 - Updated release number to 10.3.3-1
Tue Jun 7 14:00:00 2016 Dogtag Team 10.3.3-0.1 - Updated version number to 10.3.3-0.1
Tue Jun 7 14:00:00 2016 Dogtag Team 10.3.2-5 - Provided cleaner runtime dependency separation
Tue Jun 7 14:00:00 2016 Dogtag Team 10.3.2-4 - Updated tomcatjss version dependencies
Tue Jun 7 14:00:00 2016 Dogtag Team 10.3.2-3 - Updated \'java\', \'java-headless\', and \'java-devel\' dependencies to 1:1.8.0.
Tue Jun 7 14:00:00 2016 Dogtag Team 10.3.2-2 - Updated tomcat version dependencies
Tue Jun 7 14:00:00 2016 Dogtag Team 10.3.2-1 - Updated version number to 10.3.2-1
Wed May 18 14:00:00 2016 Dogtag Team 10.3.2-0.1 - Updated version number to 10.3.2-0.1
Tue May 17 14:00:00 2016 Dogtag Team 10.3.1-1 - Updated version number to 10.3.1-1 (to allow upgrade from 10.3.0.b1)
Mon May 16 14:00:00 2016 Dogtag Team 10.3.0-1 - Updated version number to 10.3.0-1
Mon Apr 18 14:00:00 2016 Dogtag Team 10.3.0.b1-1 - Build for F24 beta
Fri Apr 8 14:00:00 2016 Dogtag Team 10.3.0.a2-2 - PKI TRAC Ticket #2255 - PKCS #12 backup does not contain trust attributes.
Thu Apr 7 14:00:00 2016 Dogtag Team 10.3.0.a2-1 - Updated build for F24 alpha
Wed Mar 23 13:00:00 2016 Dogtag Team 10.3.0.a1-2 - PKI TRAC Ticket #1625 - Allow multiple ACLs of same name (union of rules) [ftweedal] - PKI TRAC Ticket #2237 - Add CRL dist points extension to OIDMap unconditionally [edewata] - PKI TRAC Ticket #1803 - Removed unnecessary URL encoding for admin cert request. [edewata] - PKI TRAC Ticket #1742 - Added support for cloning 3rd-party CA certificates. [edewata] - PKI TRAC Ticket #1482 - Added TPS token filter dialog. [edewata] - PKI TRAC Ticket #1808 - Fixed illegal token state transition via TEMP_LOST. [edewata]
Fri Mar 4 13:00:00 2016 Dogtag Team 10.3.0.a1-1 - Build for F24 alpha
Tue Mar 1 13:00:00 2016 Dogtag Team 10.3.0-0.5 - PKI Trac Ticket #1399 - Move java components out of pki-base
Thu Feb 11 13:00:00 2016 Dogtag Team 10.3.0-0.4 - PKI TRAC Ticket #1850 - Rename DRMTool --> KRATool
Thu Feb 4 13:00:00 2016 Dogtag Team 10.3.0-0.3 - PKI TRAC Ticket #1714 - mod_revocator and mod_nss dependency for tps should be removed
Sat Oct 3 14:00:00 2015 Dogtag Team 10.3.0-0.2 - PKI TRAC Ticket #1623 - Runtime dependency on python-nss is missing
Sat Aug 8 14:00:00 2015 Dogtag Team 10.3.0-0.1 - Updated version number to 10.3.0-0.1
Fri Aug 7 14:00:00 2015 Dogtag Team 10.2.7-0.3 - Added dep on tomcat-servlet-3.1-api [Fedora 23 and later] or dep on tomcat-servlet-3.0-api [Fedora 22 and later] to pki-tools - Updated dep on tomcatjss [Fedora 23 and later]
Fri Jul 24 14:00:00 2015 Tomas Radej - 10.2.7-0.2 - Updated dep on policycoreutils-python-utils [Fedora 23 and later]
Sat Jul 18 14:00:00 2015 Dogtag Team 10.2.7-0.1 - Updated version number to 10.2.7-0.1
Sat Jul 18 14:00:00 2015 Dogtag Team 10.2.6-1 - Update release number for release build
Fri Jul 17 14:00:00 2015 Dogtag Team 10.2.6-0.3 - Remove setup directory and remaining Perl dependencies
Sat Jun 20 14:00:00 2015 Dogtag Team 10.2.6-0.2 - Remove ExcludeArch directive
Fri Jun 19 14:00:00 2015 Dogtag Team 10.2.6-0.1 - Updated version number to 10.2.6-0.1
Fri Jun 19 14:00:00 2015 Dogtag Team 10.2.5-1 - Update release number for release build
Wed Jun 17 14:00:00 2015 Dogtag Team 10.2.5-0.2 - Resolves rhbz #1230970 - Errata TPS tests for rpm verification failed
Tue May 26 14:00:00 2015 Dogtag Team 10.2.5-0.1 - Updated version number to 10.2.5-0.1
Tue May 26 14:00:00 2015 Dogtag Team 10.2.4-1 - Update release number for release build
Tue May 12 14:00:00 2015 Dogtag Team 10.2.4-0.2 - Updated nuxwdog and tomcatjss requirements (alee)
Thu Apr 23 14:00:00 2015 Dogtag Team 10.2.4-0.1 - Updated version number to 10.2.4-0.1 - Added nuxwdog systemd files
Thu Apr 23 14:00:00 2015 Dogtag Team 10.2.3-1 - Update release number for release build
Thu Apr 9 14:00:00 2015 Dogtag Team 10.2.3-0.1 - Reverted version number back to 10.2.3-0.1 - Added support for Tomcat 8.
Mon Apr 6 14:00:00 2015 Dogtag Team 10.3.0-0.1 - Updated version number to 10.3.0-0.1
Wed Mar 18 13:00:00 2015 Dogtag Team 10.2.3-0.1 - Updated version number to 10.2.3-0.1
Tue Mar 17 13:00:00 2015 Dogtag Team 10.2.2-1 - Update release number for release build
Thu Jan 8 13:00:00 2015 Dogtag Team 10.2.2-0.1 - Updated version number to 10.2.2-0.1 - Moved web application deployment locations. - Updated Resteasy and Jackson dependencies. - Added missing python-lxml build dependency.
Thu Jan 8 13:00:00 2015 Dogtag Team 10.2.1-1 - Update release number for release build
Tue Dec 16 13:00:00 2014 Matthew Harmsen - 10.2.1-0.4 - PKI TRAC Ticket #1187 - mod_perl should be removed from requirements for 10.2 - PKI TRAC Ticket #1205 - Outdated selinux-policy dependency. - Removed perl(XML::LibXML), perl-Crypt-SSLeay, and perl-Mozilla-LDAP runtime dependencies
Fri Dec 12 13:00:00 2014 Ade Lee 10.2.1-0.3 - Change resteasy dependencies for F22+
Mon Nov 24 13:00:00 2014 Christina Fu 10.2.1-0.2 - Ticket 1198 Bugzilla 1158410 add TLS range support to server.xml by default and upgrade (cfu) - PKI Trac Ticket #1211 - New release overwrites old source tarball (mharmsen) - up the release number to 0.2
Fri Oct 24 14:00:00 2014 Dogtag Team 10.2.1-0.1 - Updated version number to 10.2.1-0.1. - Added CLIs to simplify generating user certificates - Added enhancements to KRA Python API - Added a man page for pki ca-profile commands. - Added python api docs
Wed Oct 1 14:00:00 2014 Ade Lee 10.2.0-3 - Disable pylint dependency for RHEL builds - Added jakarta-commons-httpclient requirements - Added tomcat version for RHEL build - Added resteasy-base-client for RHEL build
Wed Sep 24 14:00:00 2014 Matthew Harmsen - 10.2.0-2 - PKI TRAC Ticket #1130 - Add RHEL/CentOS conditionals to spec
Wed Sep 3 14:00:00 2014 Dogtag Team 10.2.0-1 - Update release number for release build
Wed Sep 3 14:00:00 2014 Matthew Harmsen - 10.2.0-0.10 - PKI TRAC Ticket #1017 - Rename pki-tps-tomcat to pki-tps
Fri Aug 29 14:00:00 2014 Matthew Harmsen - 10.2.0-0.9 - Merged jmagneAATTredhat.com\'s spec file changes from the stand-alone \'pki-tps-client\' package needed to build/run the native \'tpsclient\' command line utility into this \'pki-core\' spec file under the \'tps\' package. - Original tps libararies must be built to support this native utility. - Modifies tps package from \'noarch\' into \'architecture-specific\' package
Wed Aug 27 14:00:00 2014 Matthew Harmsen - 10.2.0-0.8 - PKI TRAC Ticket #1127 - Remove \'pki-ra\', \'pki-setup\', and \'pki-silent\' packages . . .
Sun Aug 17 14:00:00 2014 Fedora Release Engineering - 10.2.0-0.5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
Wed Aug 13 14:00:00 2014 Jack Magne - 10.2.0-0.7 - Respin to include the applet files with the rpm install. No change to spec file needed.
Tue Jul 15 14:00:00 2014 Matthew Harmsen - 10.2.0-0.6 - Bugzilla Bug #1120045 - pki-core: Switch to java-headless (build)requires -- drop dependency on java-atk-wrapper - Removed \'java-atk-wrapper\' dependency from \'pki-server\'
Wed Jul 2 14:00:00 2014 Matthew Harmsen - 10.2.0-0.5 - PKI TRAC Ticket #832 - Remove legacy \'systemctl\' files . . .
Tue Jul 1 14:00:00 2014 Ade Lee - 10.2.0-0.4 - Update rawhide build
Sat Jun 7 14:00:00 2014 Fedora Release Engineering - 10.2.0-0.3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
Fri Mar 28 13:00:00 2014 Michael Simacek - 10.2.0-0.2 - Use Requires: java-headless rebuild (#1067528)
Fri Nov 22 13:00:00 2013 Dogtag Team 10.2.0-0.1 - Added option to build without server packages. - Replaced Jettison with Jackson. - Added python-nss build requirement - Bugzilla Bug #1057959 - pkispawn requires policycoreutils-python - TRAC Ticket #840 - pkispawn requires policycoreutils-python - Updated requirements for resteasy - Added template files for archive, retrieve and generate key requests to the client package.
Fri Nov 15 13:00:00 2013 Ade Lee 10.1.0-1 - Trac Ticket 788 - Clean up spec files - Update release number for release build - Updated requirements for resteasy
Sun Nov 10 13:00:00 2013 Ade Lee 10.1.0-0.14 - Change release number for beta build
Thu Nov 7 13:00:00 2013 Ade Lee 10.1.0-0.13 - Updated requirements for tomcat
Fri Oct 4 14:00:00 2013 Ade Lee 10.1.0-0.12 - Removed additional /var/run, /var/lock references.
Fri Oct 4 14:00:00 2013 Ade Lee 10.1.0-0.11 - Removed delivery of /var/lock and /var/run directories for fedora 20.
Wed Aug 14 14:00:00 2013 Endi S. Dewata 10.1.0-0.10 - Moved Tomcat-based TPS into pki-core.
Wed Aug 14 14:00:00 2013 Abhishek Koneru 10.1.0.0.9 - Listed new packages required during build, due to issues reported by pylint. - Packages added: python-requests, python-ldap, libselinux-python, policycoreutils-python
Fri Aug 9 14:00:00 2013 Abhishek Koneru 10.1.0.0.8 - Added pylint scan to the build process.
Mon Jul 22 14:00:00 2013 Endi S. Dewata 10.1.0-0.7 - Added man pages for upgrade tools.
Wed Jul 17 14:00:00 2013 Endi S. Dewata 10.1.0-0.6 - Cleaned up the code to install man pages.
Tue Jul 16 14:00:00 2013 Endi S. Dewata 10.1.0-0.5 - Reorganized deployment tools.
Tue Jul 9 14:00:00 2013 Ade Lee 10.1.0-0.4 - Bugzilla Bug 973224 - resteasy-base must be split into subpackages to simplify dependencies
Fri Jun 14 14:00:00 2013 Endi S. Dewata 10.1.0-0.3 - Updated dependencies to Java 1.7.
Wed Jun 5 14:00:00 2013 Matthew Harmsen 10.1.0-0.2 - TRAC Ticket 606 - add restart / start at boot info to pkispawn man page - TRAC Ticket 610 - Document limitation in using GUI install - TRAC Ticket 629 - Package ownership of \'/usr/share/pki/etc/\' directory
Tue May 7 14:00:00 2013 Ade Lee 10.1.0-0.1 - Change release number for 10.1 development
Mon May 6 14:00:00 2013 Endi S. Dewata 10.0.2-5 - Fixed incorrect JNI_JAR_DIR.
Sat May 4 14:00:00 2013 Ade Lee 10.0.2-4 - TRAC Ticket 605 Junit internal function used in TestRunner, breaks F19 build
Sat May 4 14:00:00 2013 Ade Lee 10.0.2-3 - TRAC Ticket 604 Added fallback methods for pkispawn tests
Mon Apr 29 14:00:00 2013 Endi S. Dewata 10.0.2-2 - Added default pki.conf in /usr/share/pki/etc - Create upgrade tracker on install and remove it on uninstall
Fri Apr 26 14:00:00 2013 Ade Lee 10.0.2-1 - Change release number for official release.
Thu Apr 25 14:00:00 2013 Ade Lee 10.0.2-0.8 - Added %pretrans script for f19 - Added java-atk-wrapper dependency
Wed Apr 24 14:00:00 2013 Endi S. Dewata 10.0.2-0.7 - Added pki-server-upgrade script and pki.server module. - Call upgrade scripts in %post for pki-base and pki-server.
Tue Apr 23 14:00:00 2013 Endi S. Dewata 10.0.2-0.6 - Added dependency on commons-io.
Mon Apr 22 14:00:00 2013 Ade Lee 10.0.2-0.5 - Add /var/log/pki and /var/lib/pki directories
Tue Apr 16 14:00:00 2013 Endi S. Dewata 10.0.2-0.4 - Run pki-upgrade on post server installation.
Mon Apr 15 14:00:00 2013 Endi S. Dewata 10.0.2-0.3 - Added dependency on python-lxml.
Fri Apr 5 14:00:00 2013 Endi S. Dewata 10.0.2-0.2 - Added pki-upgrade script.
Fri Apr 5 14:00:00 2013 Endi S. Dewata 10.0.2-0.1 - Updated version number to 10.0.2-0.1.
Fri Apr 5 14:00:00 2013 Endi S. Dewata 10.0.1-9 - Renamed base/deploy to base/server. - Moved pki.conf into pki-base. - Removed redundant pki/server folder declaration.
Tue Mar 19 13:00:00 2013 Ade Lee 10.0.1-8 - Removed jython dependency
Mon Mar 11 13:00:00 2013 Endi S. Dewata 10.0.1-7 - Added minimum python-requests version.
Fri Mar 8 13:00:00 2013 Matthew Harmsen 10.0.1-6 - Bugzilla Bug #919476 - pkispawn crashes due to dangling symlink to jss4.jar
Thu Mar 7 13:00:00 2013 Endi S. Dewata 10.0.1-5 - Added dependency on python-requests. - Reorganized Python module packaging.
Thu Mar 7 13:00:00 2013 Endi S. Dewata 10.0.1-4 - Added dependency on python-ldap.
Mon Mar 4 13:00:00 2013 Matthew Harmsen 10.0.1-3 - TRAC Ticket #517 - Clean up theme dependencies - TRAC Ticket #518 - Remove UI dependencies from pkispawn . . .
Fri Mar 1 13:00:00 2013 Matthew Harmsen 10.0.1-2 - Removed runtime dependency on \'pki-server-theme\' to resolve Bugzilla Bug #916134 - unresolved dependency in pki-server: pki-server-theme
Tue Jan 15 13:00:00 2013 Ade Lee 10.0.1-1 - TRAC Ticket 214 - Missing error description for duplicate user - TRAC Ticket 213 - Add nonces for cert revocation - TRAC Ticket 367 - pkidestroy does not remove connector - TRAC Ticket #430 - License for 3rd party code - Bugzilla Bug 839426 - [RFE] ECC CRL support for OCSP - Fix spec file to allow f17 to work with latest tomcatjss - TRAC Ticket 466 - Increase root CA validity to 20 years - TRAC Ticket 469 - Fix tomcatjss issue in spec files - TRAC Ticket 468 - pkispawn throws exception - TRAC Ticket 191 - Mapping HTTP Exceptions to HTTP error codes - TRAC Ticket 271 - Dogtag 10: Fix \'status\' command in \'pkidaemon\' . . . - TRAC Ticket 437 - Make admin cert p12 file location configurable - TRAC Ticket 393 - pkispawn fails when selinux is disabled - Punctuation and formatting changes in man pages - Revert to using default config file for pkidestroy - Hardcode setting of resteasy-lib for instance - TRAC Ticket 436 - Interpolation for pki_subsystem - TRAC Ticket 433 - Interpolation for paths - TRAC Ticket 435 - Identical instance id and instance name - TRAC Ticket 406 - Replace file dependencies with package dependencies
Wed Jan 9 13:00:00 2013 Matthew Harmsen 10.0.0-5 - TRAC Ticket #430 - License for 3rd party code
Fri Jan 4 13:00:00 2013 Matthew Harmsen 10.0.0-4 - TRAC Ticket #469 - Dogtag 10: Fix tomcatjss issue in pki-core.spec and dogtag-pki.spec . . . - TRAC Ticket #468 - pkispawn throws exception
Wed Dec 12 13:00:00 2012 Ade Lee 10.0.0-3 - Replaced file dependencies with package dependencies
Mon Dec 10 13:00:00 2012 Ade Lee 10.0.0-2 - Updated man pages
Fri Dec 7 13:00:00 2012 Ade Lee 10.0.0-1 - Update to official release for rc1
Thu Dec 6 13:00:00 2012 Matthew Harmsen 10.0.0-0.56.b3 - TRAC Ticket #315 - Man pages for pkispawn/pkidestroy. - Added place-holders for \'pki.1\' and \'pki_default.cfg.5\' man pages.
Thu Dec 6 13:00:00 2012 Endi S. Dewata 10.0.0-0.55.b3 - Added system-wide configuration /etc/pki/pki.conf. - Removed redundant lines in %files.
Tue Dec 4 13:00:00 2012 Endi S. Dewata 10.0.0-0.54.b3 - Moved default deployment configuration to /etc/pki.
Mon Nov 19 13:00:00 2012 Ade Lee 10.0.0-0.53.b3 - Cleaned up spec file to provide only support rhel 7+, f17+ - Added resteasy-base dependency for rhel 7 - Update cmake version
Mon Nov 12 13:00:00 2012 Ade Lee 10.0.0-0.52.b3 - Update release to b3
Fri Nov 9 13:00:00 2012 Endi S. Dewata 10.0.0-0.51.b2 - Removed dependency on CA, KRA, OCSP, TKS theme packages.
Thu Nov 8 13:00:00 2012 Endi S. Dewata 10.0.0-0.50.b2 - Renamed pki-common-theme to pki-server-theme.
Thu Nov 8 13:00:00 2012 Matthew Harmsen 10.0.0-0.49.b2 - TRAC Ticket #395 - Dogtag 10: Add a Tomcat 7 runtime requirement to \'pki-server\'
Mon Oct 29 13:00:00 2012 Ade Lee 10.0.0-0.48.b2 - Update release to b2
Wed Oct 24 14:00:00 2012 Matthew Harmsen 10.0.0-0.47.b1 - TRAC Ticket #350 - Dogtag 10: Remove version numbers from PKI jar files . . .
Tue Oct 23 14:00:00 2012 Ade Lee 10.0.0-0.46.b1 - Added Obsoletes for pki-selinux
Tue Oct 23 14:00:00 2012 Ade Lee 10.0.0-0.45.b1 - Remove build of pki-selinux for f18, use system policy instead
Fri Oct 12 14:00:00 2012 Ade Lee 10.0.0-0.44.b1 - Update required tomcatjss version - Added net-tools dependency
Mon Oct 8 14:00:00 2012 Ade Lee 10.0.0-0.43.b1 - Update selinux-policy version to fix error from latest policy changes
Mon Oct 8 14:00:00 2012 Ade Lee 10.0.0-0.42.b1 - Fix typo in selinux policy versions
Mon Oct 8 14:00:00 2012 Ade Lee 10.0.0-0.41.b1 - Added build requires for correct version of selinux-policy-devel
Mon Oct 8 14:00:00 2012 Ade Lee 10.0.0-0.40.b1 - Update release to b1
Fri Oct 5 14:00:00 2012 Endi S. Dewata 10.0.0-0.40.a2 - Merged pki-silent into pki-server.
Fri Oct 5 14:00:00 2012 Endi S. Dewata 10.0.0-0.39.a2 - Renamed \"shared\" folder to \"server\".
Fri Oct 5 14:00:00 2012 Ade Lee 10.0.0-0.38.a2 - Added required selinux versions for new policy.
Tue Oct 2 14:00:00 2012 Endi S. Dewata 10.0.0-0.37.a2 - Added Provides to packages replacing obsolete packages.
Mon Oct 1 14:00:00 2012 Ade Lee 10.0.0-0.36.a2 - Update release to a2
Sun Sep 30 14:00:00 2012 Endi S. Dewata 10.0.0-0.36.a1 - Modified CMake to use RPM version number
Tue Sep 25 14:00:00 2012 Endi S. Dewata 10.0.0-0.35.a1 - Added VERSION file
Mon Sep 24 14:00:00 2012 Endi S. Dewata 10.0.0-0.34.a1 - Merged pki-setup into pki-server
Thu Sep 13 14:00:00 2012 Ade Lee 10.0.0-0.33.a1 - Added Conflicts for IPA 2.X - Added build requires for zip to work around mock problem
Wed Sep 12 14:00:00 2012 Matthew Harmsen 10.0.0-0.32.a1 - TRAC Ticket #312 - Dogtag 10: Automatically restart any running instances upon RPM \"update\" . . . - TRAC Ticket #317 - Dogtag 10: Move \"pkispawn\"/\"pkidestroy\" from /usr/bin to /usr/sbin . . .
Wed Sep 12 14:00:00 2012 Endi S. Dewata 10.0.0-0.31.a1 - Fixed pki-server to include everything in shared dir.
Tue Sep 11 14:00:00 2012 Endi S. Dewata 10.0.0-0.30.a1 - Added build dependency on redhat-rpm-config.
Thu Aug 30 14:00:00 2012 Endi S. Dewata 10.0.0-0.29.a1 - Merged Javadoc packages.
Thu Aug 30 14:00:00 2012 Endi S. Dewata 10.0.0-0.28.a1 - Added pki-tomcat.jar.
Thu Aug 30 14:00:00 2012 Endi S. Dewata 10.0.0-0.27.a1 - Moved webapp creation code into pkispawn.
Mon Aug 20 14:00:00 2012 Endi S. Dewata 10.0.0-0.26.a1 - Split pki-client.jar into pki-certsrv.jar and pki-tools.jar.
Mon Aug 20 14:00:00 2012 Endi S. Dewata 10.0.0-0.25.a1 - Merged pki-native-tools and pki-java-tools into pki-tools. - Modified pki-server to depend on pki-tools.
Mon Aug 20 14:00:00 2012 Endi S. Dewata 10.0.0-0.24.a1 - Split pki-common into pki-base and pki-server. - Merged pki-util into pki-base. - Merged pki-deploy into pki-server.
Thu Aug 16 14:00:00 2012 Matthew Harmsen 10.0.0-0.23.a1 - Updated release of \'tomcatjss\' to rely on Tomcat 7 for Fedora 17 - Changed Dogtag 10 build-time and runtime requirements for \'pki-deploy\' - Altered PKI Package Dependency Chain (top-to-bottom): pki-ca, pki-kra, pki-ocsp, pki-tks --> pki-deploy --> pki-common
Mon Aug 13 14:00:00 2012 Endi S. Dewata 10.0.0-0.22.a1 - Added pki-client.jar.
Fri Jul 27 14:00:00 2012 Endi S. Dewata 10.0.0-0.21.a1 - Merged pki-jndi-realm.jar into pki-cmscore.jar.
Tue Jul 24 14:00:00 2012 Matthew Harmsen 10.0.0-0.20.a1 - PKI TRAC Task #254 - Dogtag 10: Fix spec file to build successfully via mock on Fedora 17 . . .
Wed Jul 11 14:00:00 2012 Matthew Harmsen 10.0.0-0.19.a1 - Moved \'pki-jndi-real.jar\' link from \'tomcat6\' to \'tomcat\' (Tomcat 7)
Thu Jun 14 14:00:00 2012 Matthew Harmsen 10.0.0-0.18.a1 - Updated release of \'tomcatjss\' to rely on Tomcat 7 for Fedora 18
Tue May 29 14:00:00 2012 Endi S. Dewata 10.0.0-0.17.a1 - Added CLI for REST services
Fri May 18 14:00:00 2012 Matthew Harmsen 10.0.0-0.16.a1 - Integration of Tomcat 7 - Addition of centralized \'pki-tomcatd\' systemd functionality to the PKI Deployment strategy - Removal of \'pki_flavor\' attribute
Mon Apr 16 14:00:00 2012 Ade Lee 10.0.0-0.15.a1 - BZ 813075 - selinux denial for file size access
Thu Apr 5 14:00:00 2012 Christina Fu 10.0.0-0.14.a1 - Bug 745278 - [RFE] ECC encryption keys cannot be archived
Tue Mar 27 14:00:00 2012 Endi S. Dewata 10.0.0-0.13.a1 - Replaced candlepin-deps with resteasy
Fri Mar 23 13:00:00 2012 Endi S. Dewata 10.0.0-0.12.a1 - Added option to build without Javadoc
Fri Mar 16 13:00:00 2012 Ade Lee 10.0.0-0.11.a1 - BZ 802396 - Change location of TOMCAT_LOG to match tomcat6 changes - Corrected patch selected for selinux f17 rules
Wed Mar 14 13:00:00 2012 Matthew Harmsen 10.0.0-0.10.a1 - Corrected \'junit\' dependency check
Mon Mar 12 13:00:00 2012 Matthew Harmsen 10.0.0-0.9.a1 - Initial attempt at PKI deployment framework described in \'http://pki.fedoraproject.org/wiki/PKI_Instance_Deployment\'.
Fri Mar 9 13:00:00 2012 Jack Magne 10.0.0-0.8.a1 - Added support for pki-jndi-realm in tomcat6 in pki-common and pki-kra. - Ticket #69.
Fri Mar 2 13:00:00 2012 Matthew Harmsen 10.0.0-0.7.a1 - For \'mock\' purposes, removed platform-specific logic from around the \'patch\' files so that ALL \'patch\' files will be included in the SRPM.
Wed Feb 29 13:00:00 2012 Endi S. Dewata 10.0.0-0.6.a1 | |