- Wed Aug 4 2010 Matthew Harmsen <mharmsen@redhat.com> 1.3.8-1
- Bugzilla Bug #601299 - tps installation does not update security domain
- Bugzilla Bug #606556 - Add known session key test to TKS self test set
- Bugzilla Bug #588375 - CA Setup Wizard cannot create new Security Domain if
locale not en_US
- Bugzilla Bug #608086 - CC: CA, OCSP, and DRM need to add more audit calls
- Bugzilla Bug #527593 - More robust signature digest alg, like SHA256
instead of SHA1 for ECC
- Bugzilla Bug #528236 - rhcs80 web conf wizard - cannot specify CA signing
algorithm
- Bugzilla Bug #533510 - tps exception, cannot start when signed audit true
- Bugzilla Bug #529280 - TPS returns HTTP data without ending in 0rn per
RFC 2616
- Bugzilla Bug #498299 - Should not be able to change the status manually
on a token marked as permanently lost or destroyed
- Bugzilla Bug #554892 - configurable frequency signed audit
- Bugzilla Bug #500700 - tps log rotation
- Bugzilla Bug #562893 - tps shutdown if audit logs full
- Bugzilla Bug #557346 - Name Constraints Extension cant be marked critical
- Bugzilla Bug #556152 - ACL changes to CA and OCSP
- Bugzilla Bug #556167 - ACL changes to CA and OCSP
- Bugzilla Bug #581004 - add more audit logging to the TPS
- Bugzilla Bug #566517 - CC: Add client auth to OCSP publishing, and move
to a client-auth port
- Bugzilla Bug #565842 - Clone config throws errors - fix key_algorithm
- Bugzilla Bug #581017 - enabling log signing from tps ui pages causes tps
crash
- Bugzilla Bug #581004 - add more audit logs
- Bugzilla Bug #595871 - CC: TKS needed audit message changes
- Bugzilla Bug #598752 - Common Criteria: TKS ACL analysis result.
- Bugzilla Bug #598666 - Common Criteria: incorrect ACLs for signedAudit
- Bugzilla Bug #504905 - Smart card renewal should load old encryption cert
on the token.
- Bugzilla Bug #499292 - TPS - Enrollments where keys are recovered need
to do both GenerateNewKey and RecoverLast operation for encryption key.
- Bugzilla Bug #498299 - fix case where no transitions available
- Bugzilla Bug #595391 - session domain table to be moved to ldap
- Bugzilla Bug #472597 - Disable policy code,UI
- Bugzilla Bug #608083 - CC: update ACL and AC calls for DRM - Fri May 21 2010 Christina Fu <cfu@redhat.com> 1.3.7-1
- Bugzilla Bug #580203 - Existing renewals generate certificates with validity
limited by current validity (cfu)
- Bugzilla Bug #577949 - Clone from a clone requires contacting original
security domain master (alee) - Mon Apr 26 2010 Andrew Wnuk <awnuk@redhat.com> 1.3.6-4
- Bugzilla Bug #553423 - displayBySerial returns a cryptic error
if an unknown serial number is requested - Mon Apr 26 2010 Ade Lee <alee@redhat.com> 1.3.6-3
- Bugzilla Bug 577949 - clone from a clone requires contacting original
security domain master - Fri Apr 23 2010 Andrew Wnuk <awnuk@redhat.com> 1.3.6-2
- Bugzilla Bug #501088 - agent cannot revoke cert with serial same as sub ca
- Wed Apr 21 2010 Andrew Wnuk <awnuk@redhat.com> 1.3.6-1
- Bugzilla Bug #493765 - console renewal fix for ca, ocsp, and ssl certificates
- Thu Apr 8 2010 Matthew Harmsen <mharmsen@redhat.com> 1.3.5-1
- Bugzilla Bug #564131 - Config wizard : all subsystems - done panel text
needs correction
- Update source tarball - Tue Apr 6 2010 Matthew Harmsen <mharmsen@redhat.com> 1.3.4-2
- Bugzilla Bug #568787 - pki-ca fails to create SSL connectors
- Bugzilla Bug #573038 - Unable to login on Dogtag EPEL installation - Mon Mar 22 2010 Christina Fu <cfu@redhat.com> 1.3.4-1
- Bugzilla Bug #522343 Add asynchronous key recovery mode
- Tue Mar 9 2010 Ade Lee <alee@redhat.com> 1.3.3-1
- Bugzilla Bug #545935 - Add new client-auth ee port to address CVE-2009-3555
TLS: MITM attacks via session renegotiation
- Bugzilla Bug #565842 - CA Clone instance configuration throws errors - Wed Feb 10 2010 Andrew Wnuk <awnuk@redhat.com> 1.3.2-1
- Bugzilla Bug #516632 - CS Incorrectly Issuing Multiple Certificates
from the Same Request - Fri Jan 29 2010 Matthew Harmsen <mharmsen@redhat.com> 1.3.1-2
- Bugzilla Bug #557638 - Rename 'symkey' package to 'pki-symkey' package
Renamed 'symkey' to 'pki-symkey' - Mon Jan 25 2010 Matthew Harmsen <mharmsen@redhat.com> 1.3.1-1
- Bugzilla Bug #547527 - dogtag does not work with latest 389 DS
- Temporarily backed out change required for
Bugzilla Bug #557638 - Rename 'symkey' package to 'pki-symkey' package
- Moved "_sharedstatedir/tomcat5/common/lib/cmsutil.jar" link to 'pki-util'
- Moved "_sharedstatedir/tomcat5/common/lib/nsutil.jar" link to 'pki-util' - Thu Jan 21 2010 Matthew Harmsen <mharmsen@redhat.com> 1.3.0-9
- Bugzilla Bug #557638 - Rename 'symkey' package to 'pki-symkey' package
- Fri Jan 15 2010 Kevin Wright <kwright@redhat.com> 1.3.0-8
- Removed Requires: rhgb
- Thu Jan 14 2010 Matthew Harmsen <mharmsen@redhat.com> 1.3.0-7
- Bugzilla Bug #441974 - CA Setup Wizard cannot create new Security Domain.
- Moved 'Conflicts: tomcat-native' to lower-level 'tomcatjss' package - Thu Dec 24 2009 Kevin Wright <kwright@redhat.com> 1.3.0-6
- Bugzilla Bug #522207 - packaging for Fedora Dogtag
- Removed Requires: rhgb - Wed Dec 23 2009 Kevin Wright <kwright@redhat.com> 1.3.0-5
- Bugzilla Bug #522207 - packaging for Fedora Dogtag
- Removed Requires: _javadir/pki/cmsutil.jar
- Removed Requires: _javadir/pki/nsutil.jar
- Removed BuildRequires: dogtag-pki-common-ui
- added Requires: pki-util
- changed -javadoc to: defattr(-,root,root,-) - Mon Dec 7 2009 Matthew Harmsen <mharmsen@redhat.com> 1.3.0-4
- Bugzilla Bug #522207 - packaging for Fedora Dogtag
- Removed 'postinstall' tasks
- Removed 'with exceptions' from License - Tue Nov 24 2009 Matthew Harmsen <mharmsen@redhat.com> 1.3.0-3
- Bugzilla Bug #522207 - packaging for Fedora Dogtag
- Use "_javadir" macro when appropriate - Mon Nov 2 2009 Matthew Harmsen <mharmsen@redhat.com> 1.3.0-2
- Bugzilla Bug #522207 - packaging for Fedora Dogtag
- Take ownership of directories - Tue Oct 13 2009 Ade Lee <alee@redhat.com> 1.3.0-1
- Bugzilla Bug #522207 - packaging for Fedora Dogtag