[pki-kra] - Updated Dogtag 1.3.x --> Dogtag 2.0.0 --> Dogtag 9.0.0 - Bugzilla Bug #620925 - CC: auditor needs
kwright
kwright at fedoraproject.org
Tue Feb 8 00:26:28 UTC 2011
commit 68f6eec1ace0e7f29e5790a75d0b769584fd3070
Author: Kevin Wright <kwright at redhat.com>
Date: Mon Feb 7 16:26:21 2011 -0800
- Updated Dogtag 1.3.x --> Dogtag 2.0.0 --> Dogtag 9.0.0
- Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs
in the java subsystems
- Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml
as part of CC interface review
- Bugzilla Bug #583823 - CC: Auditing issues found as result of
CC - interface review
- Bugzilla Bug #607380 - CC: Make sure Java Console can configure
all security relevant config items
- Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be
generated on TKS instead of TPS.
- Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable
a CA that it serves
- Bugzilla Bug #504061 - ECC: unable to install subsystems - phase 1
- Bugzilla Bug #637330 - CC feature: Key Management - provide signature
verification functions (JAVA subsystems)
- Bugzilla Bug #223313 - should do random generated IV param
for symmetric keys
- Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and
port fowarding for agent services
- Bugzilla Bug #631179 - Administrator is not allowed to remove
ocsp signing certificate using console
- Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of
signature algorithm; and for ECC curves
- Bugzilla Bug #451874 - RFE - Java console - Certificate Wizard missing
e.c. support
- Bugzilla Bug #529945 - (Instructions and sample only) CS 8.0 GA release --
DRM and TKS do not seem to have CRL checking enabled
- Bugzilla Bug #609641 - CC: need procedure (and possibly tools) to help
correctly set up CC environment
- Bugzilla Bug #651916 - kra and ocsp are using incorrect ports
to talk to CA and complete configuration in DonePanel
- Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml)
- Bugzilla Bug #489385 - references to rhpki
- Bugzilla Bug #649910 - Console: an auditor or agent can be added to
an administrator group.
- Bugzilla Bug #632425 - Port to tomcat6
- Bugzilla Bug #638377 - Generate PKI UI components which exclude
a GUI interface
- Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets
as expected
- Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for
validity
- Bugzilla Bug #643206 - New CMake based build system for Dogtag
- Bugzilla Bug #499494 - change CA defaults to SHA2
- Bugzilla Bug #649343 - Publishing queue should recover from CA crash.
- Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and
pkiCA, obsolete 2252 and 2256
- Bugzilla Bug #223346 - Two conflicting ACL list definitions in source
repository
- Bugzilla Bug #663546 - Disable the functionalities that are not exposed
in the console
- Bugzilla Bug #656733 - Standardize jar install location and jar names
- Bugzilla Bug #661142 - Verification should fail when
a revoked certificate is added
- Bugzilla Bug #668100 - DRM storage cert has OCSP signing extended key usage
- Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time
interface is no longer available through console
- Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During
CRL Generation
.gitignore | 1 +
clog | 60 ++++++++++++
pki-kra.spec | 305 ++++++++++++++++++++++++++++++++++++++++------------------
sources | 2 +-
4 files changed, 275 insertions(+), 93 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index 2126cad..8baf757 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,3 @@
pki-kra-1.3.3.tar.gz
pki-kra-1.3.4.tar.gz
+/pki-kra-9.0.0.tar.gz
diff --git a/clog b/clog
new file mode 100644
index 0000000..a789d77
--- /dev/null
+++ b/clog
@@ -0,0 +1,60 @@
+- Updated Dogtag 1.3.x --> Dogtag 2.0.0 --> Dogtag 9.0.0
+- Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs
+ in the java subsystems
+- Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml
+ as part of CC interface review
+- Bugzilla Bug #583823 - CC: Auditing issues found as result of
+ CC - interface review
+- Bugzilla Bug #607380 - CC: Make sure Java Console can configure
+ all security relevant config items
+- Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be
+ generated on TKS instead of TPS.
+- Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable
+ a CA that it serves
+- Bugzilla Bug #504061 - ECC: unable to install subsystems - phase 1
+- Bugzilla Bug #637330 - CC feature: Key Management - provide signature
+ verification functions (JAVA subsystems)
+- Bugzilla Bug #223313 - should do random generated IV param
+ for symmetric keys
+- Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and
+ port fowarding for agent services
+- Bugzilla Bug #631179 - Administrator is not allowed to remove
+ ocsp signing certificate using console
+- Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of
+ signature algorithm; and for ECC curves
+- Bugzilla Bug #451874 - RFE - Java console - Certificate Wizard missing
+ e.c. support
+- Bugzilla Bug #529945 - (Instructions and sample only) CS 8.0 GA release --
+ DRM and TKS do not seem to have CRL checking enabled
+- Bugzilla Bug #609641 - CC: need procedure (and possibly tools) to help
+ correctly set up CC environment
+- Bugzilla Bug #651916 - kra and ocsp are using incorrect ports
+ to talk to CA and complete configuration in DonePanel
+- Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml)
+- Bugzilla Bug #489385 - references to rhpki
+- Bugzilla Bug #649910 - Console: an auditor or agent can be added to
+ an administrator group.
+- Bugzilla Bug #632425 - Port to tomcat6
+- Bugzilla Bug #638377 - Generate PKI UI components which exclude
+ a GUI interface
+- Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets
+ as expected
+- Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for
+ validity
+- Bugzilla Bug #643206 - New CMake based build system for Dogtag
+- Bugzilla Bug #499494 - change CA defaults to SHA2
+- Bugzilla Bug #649343 - Publishing queue should recover from CA crash.
+- Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and
+ pkiCA, obsolete 2252 and 2256
+- Bugzilla Bug #223346 - Two conflicting ACL list definitions in source
+ repository
+- Bugzilla Bug #663546 - Disable the functionalities that are not exposed
+ in the console
+- Bugzilla Bug #656733 - Standardize jar install location and jar names
+- Bugzilla Bug #661142 - Verification should fail when
+ a revoked certificate is added
+- Bugzilla Bug #668100 - DRM storage cert has OCSP signing extended key usage
+- Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time
+ interface is no longer available through console
+- Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During
+ CRL Generation
diff --git a/pki-kra.spec b/pki-kra.spec
index c6434e1..461dfc6 100644
--- a/pki-kra.spec
+++ b/pki-kra.spec
@@ -1,121 +1,230 @@
-Name: pki-kra
-Version: 1.3.4
-Release: 1%{?dist}
-Summary: Dogtag Certificate System - Data Recovery Manager
-URL: http://pki.fedoraproject.org/
-License: GPLv2
-Group: System Environment/Daemons
-
-BuildArch: noarch
-
-BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
-
-BuildRequires: ant
-BuildRequires: java-devel >= 1:1.6.0
-BuildRequires: jpackage-utils
-BuildRequires: jss >= 4.2.6
-BuildRequires: pki-common
-BuildRequires: pki-util
-BuildRequires: tomcatjss
-
-Requires: java >= 1:1.6.0
-Requires: pki-common
-Requires: pki-console
-Requires: pki-kra-ui
-Requires: pki-selinux
-Requires: pki-silent
-Requires(post): chkconfig
-Requires(preun): chkconfig
-Requires(preun): initscripts
-Requires(postun): initscripts
-
-Source0: http://pki.fedoraproject.org/pki/sources/%{name}/%{name}-%{version}.tar.gz
+Name: pki-kra
+Version: 9.0.0
+Release: 1%{?dist}
+Summary: Certificate System - Data Recovery Manager
+URL: http://pki.fedoraproject.org/
+License: GPLv2
+Group: System Environment/Daemons
+
+BuildArch: noarch
+
+BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
+
+BuildRequires: cmake
+BuildRequires: java-devel >= 1:1.6.0
+BuildRequires: jpackage-utils
+BuildRequires: jss >= 4.2.6-12
+BuildRequires: nspr-devel
+BuildRequires: nss-devel
+BuildRequires: pki-common
+BuildRequires: pki-util
+
+Requires: java >= 1:1.6.0
+Requires: pki-common
+Requires: pki-kra-theme
+Requires: pki-selinux
+Requires(post): chkconfig
+Requires(preun): chkconfig
+Requires(preun): initscripts
+Requires(postun): initscripts
+%if 0%{?fedora} >= 15
+# Details:
+#
+# * https://fedoraproject.org/wiki/Features/var-run-tmpfs
+# * https://fedoraproject.org/wiki/Tmpfiles.d_packaging_draft
+#
+Requires: initscripts
+%endif
+
+Source0: http://pki.fedoraproject.org/pki/sources/%{name}/%{name}-%{version}.tar.gz
%description
-Dogtag Certificate System is an enterprise software system designed
+Certificate System (CS) is an enterprise software system designed
to manage enterprise Public Key Infrastructure (PKI) deployments.
-The Dogtag Data Recovery Manager is an optional PKI subsystem that can act
+The Data Recovery Manager (DRM) is an optional PKI subsystem that can act
as a Key Recovery Authority (KRA). When configured in conjunction with the
-Dogtag Certificate Authority, the Dogtag Data Recovery Manager stores
-private encryption keys as part of the certificate enrollment process. The
-key archival mechanism is triggered when a user enrolls in the PKI and creates
-the certificate request. Using the Certificate Request Message Format (CRMF)
-request format, a request is generated for the user's private encryption key.
-This key is then stored in the Dogtag Data Recovery Manager which is
-configured to store keys in an encrypted format that can only be decrypted by
-several agents requesting the key at one time, providing for protection of the
-public encryption keys for the users in the PKI deployment.
-
-Note that the Dogtag Data Recovery Manager archives encryption keys; it does
-not archive signing keys, since such archival would undermine nonrepudiation
-properties of signing keys.
+Certificate Authority (CA), the DRM stores private encryption keys as part of
+the certificate enrollment process. The key archival mechanism is triggered
+when a user enrolls in the PKI and creates the certificate request. Using the
+Certificate Request Message Format (CRMF) request format, a request is
+generated for the user's private encryption key. This key is then stored in
+the DRM which is configured to store keys in an encrypted format that can only
+be decrypted by several agents requesting the key at one time, providing for
+protection of the public encryption keys for the users in the PKI deployment.
+
+Note that the DRM archives encryption keys; it does NOT archive signing keys,
+since such archival would undermine non-repudiation properties of signing keys.
+
+For deployment purposes, a DRM requires the following components from the PKI
+Core package:
+
+ * pki-setup
+ * pki-native-tools
+ * pki-util
+ * pki-java-tools
+ * pki-common
+ * pki-selinux
+
+and can also make use of the following optional components from the PKI Core
+package:
+
+ * pki-util-javadoc
+ * pki-java-tools-javadoc
+ * pki-common-javadoc
+ * pki-silent
+
+Additionally, Certificate System requires ONE AND ONLY ONE of the following
+"Mutually-Exclusive" PKI Theme packages:
+
+ * dogtag-pki-theme (Dogtag Certificate System deployments)
+ * redhat-pki-theme (Red Hat Certificate System deployments)
+
%prep
+
%setup -q
+
+%clean
+%{__rm} -rf %{buildroot}
+
+
%build
-ant \
- -Dinit.d="rc.d/init.d" \
- -Dproduct.ui.flavor.prefix="" \
- -Dproduct.prefix="pki" \
- -Dproduct="kra" \
- -Dversion="%{version}"
+%{__mkdir_p} build
+cd build
+%cmake -DVAR_INSTALL_DIR:PATH=/var -DBUILD_PKI_KRA:BOOL=ON ..
+%{__make} VERBOSE=1 %{?_smp_mflags}
+
%install
-%define major_version %(echo `echo %{version} | awk -F. '{ print $1 }'`)
-%define minor_version %(echo `echo %{version} | awk -F. '{ print $2 }'`)
-%define patch_version %(echo `echo %{version} | awk -F. '{ print $3 }'`)
-
-rm -rf %{buildroot}
-cd dist/binary
-unzip %{name}-%{version}.zip -d %{buildroot}
-sed -i 's/^preop.product.version=.*$/preop.product.version=%{version}/' %{buildroot}%{_datadir}/pki/kra/conf/CS.cfg
-sed -i 's/^cms.version=.*$/cms.version=%{major_version}.%{minor_version}/' %{buildroot}%{_datadir}/pki/kra/conf/CS.cfg
-mkdir -p %{buildroot}%{_localstatedir}/lock/pki/kra
-mkdir -p %{buildroot}%{_localstatedir}/run/pki/kra
-cd %{buildroot}%{_javadir}
-mv kra.jar kra-%{version}.jar
-ln -s kra-%{version}.jar kra.jar
-
-# supply convenience symlink(s) for backwards compatibility
-mkdir -p %{buildroot}%{_javadir}/pki/kra
-cd %{buildroot}%{_javadir}/pki/kra
-ln -s ../../kra.jar kra.jar
+%{__rm} -rf %{buildroot}
+cd build
+%{__make} install DESTDIR=%{buildroot} INSTALL="install -p"
+
+%if 0%{?fedora} >= 15
+# Details:
+#
+# * https://fedoraproject.org/wiki/Features/var-run-tmpfs
+# * https://fedoraproject.org/wiki/Tmpfiles.d_packaging_draft
+#
+%{__mkdir_p} %{buildroot}%{_sysconfdir}/tmpfiles.d
+# generate 'pki-kra.conf' under the 'tmpfiles.d' directory
+echo "D /var/lock/pki 0755 root root -" > %{buildroot}%{_sysconfdir}/tmpfiles.d/pki-kra.conf
+echo "D /var/lock/pki/kra 0755 root root -" >> %{buildroot}%{_sysconfdir}/tmpfiles.d/pki-kra.conf
+echo "D /var/run/pki 0755 root root -" >> %{buildroot}%{_sysconfdir}/tmpfiles.d/pki-kra.conf
+echo "D /var/run/pki/kra 0755 root root -" >> %{buildroot}%{_sysconfdir}/tmpfiles.d/pki-kra.conf
+%endif
-%clean
-rm -rf %{buildroot}
%post
# This adds the proper /etc/rc*.d links for the script
/sbin/chkconfig --add pki-krad || :
+
%preun
if [ $1 = 0 ] ; then
/sbin/service pki-krad stop >/dev/null 2>&1
/sbin/chkconfig --del pki-krad || :
fi
+
%postun
if [ "$1" -ge "1" ] ; then
/sbin/service pki-krad condrestart >/dev/null 2>&1 || :
fi
+
%files
%defattr(-,root,root,-)
-%doc LICENSE
-%{_initrddir}/*
-%{_javadir}/*
-%{_datadir}/pki/
-%{_localstatedir}/lock/*
-%{_localstatedir}/run/*
+%doc base/kra/LICENSE
+%{_initrddir}/pki-krad
+%{_javadir}/pki/pki-kra-%{version}.jar
+%{_javadir}/pki/pki-kra.jar
+%dir %{_datadir}/pki/kra
+%{_datadir}/pki/kra/conf/
+%{_datadir}/pki/kra/setup/
+%{_datadir}/pki/kra/webapps/
+%dir %{_localstatedir}/lock/pki/kra
+%dir %{_localstatedir}/run/pki/kra
+%if 0%{?fedora} >= 15
+# Details:
+#
+# * https://fedoraproject.org/wiki/Features/var-run-tmpfs
+# * https://fedoraproject.org/wiki/Tmpfiles.d_packaging_draft
+#
+%config(noreplace) %{_sysconfdir}/tmpfiles.d/pki-kra.conf
+%endif
+
%changelog
-* Wed Aug 4 2010 Matthew Harmsen <mharmsen at redhat.com> 1.3.4-1
+* Wed Dec 1 2010 Matthew Harmsen <mharmsen at redhat.com> 9.0.0-1
+- Updated Dogtag 1.3.x --> Dogtag 2.0.0 --> Dogtag 9.0.0
+- Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs
+ in the java subsystems
+- Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml
+ as part of CC interface review
+- Bugzilla Bug #583823 - CC: Auditing issues found as result of
+ CC - interface review
+- Bugzilla Bug #607380 - CC: Make sure Java Console can configure
+ all security relevant config items
+- Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be
+ generated on TKS instead of TPS.
+- Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable
+ a CA that it serves
+- Bugzilla Bug #504061 - ECC: unable to install subsystems - phase 1
+- Bugzilla Bug #637330 - CC feature: Key Management - provide signature
+ verification functions (JAVA subsystems)
+- Bugzilla Bug #223313 - should do random generated IV param
+ for symmetric keys
+- Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and
+ port fowarding for agent services
+- Bugzilla Bug #631179 - Administrator is not allowed to remove
+ ocsp signing certificate using console
+- Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of
+ signature algorithm; and for ECC curves
+- Bugzilla Bug #451874 - RFE - Java console - Certificate Wizard missing
+ e.c. support
+- Bugzilla Bug #529945 - (Instructions and sample only) CS 8.0 GA release --
+ DRM and TKS do not seem to have CRL checking enabled
+- Bugzilla Bug #609641 - CC: need procedure (and possibly tools) to help
+ correctly set up CC environment
+- Bugzilla Bug #651916 - kra and ocsp are using incorrect ports
+ to talk to CA and complete configuration in DonePanel
+- Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml)
+- Bugzilla Bug #489385 - references to rhpki
+- Bugzilla Bug #649910 - Console: an auditor or agent can be added to
+ an administrator group.
+- Bugzilla Bug #632425 - Port to tomcat6
+- Bugzilla Bug #638377 - Generate PKI UI components which exclude
+ a GUI interface
+- Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets
+ as expected
+- Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for
+ validity
+- Bugzilla Bug #643206 - New CMake based build system for Dogtag
+- Bugzilla Bug #499494 - change CA defaults to SHA2
+- Bugzilla Bug #649343 - Publishing queue should recover from CA crash.
+- Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and
+ pkiCA, obsolete 2252 and 2256
+- Bugzilla Bug #223346 - Two conflicting ACL list definitions in source
+ repository
+- Bugzilla Bug #663546 - Disable the functionalities that are not exposed
+ in the console
+- Bugzilla Bug #656733 - Standardize jar install location and jar names
+- Bugzilla Bug #661142 - Verification should fail when
+ a revoked certificate is added
+- Bugzilla Bug #668100 - DRM storage cert has OCSP signing extended key usage
+- Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time
+ interface is no longer available through console
+- Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During
+ CRL Generation
+
+* Wed Aug 04 2010 Matthew Harmsen <mharmsen at redhat.com> 1.3.4-1
- Bugzilla Bug #608086 - CC: CA, OCSP, and DRM need to add more audit calls
-- Bugzilla Bug #527593 - More robust signature digest alg, like SHA256
- instead of SHA1 for ECC
+- Bugzilla Bug #527593 - More robust signature digest alg,
+ like SHA256 instead of SHA1 for ECC
- Bugzilla Bug #528236 - rhcs80 web conf wizard - cannot specify CA signing
algorithm
- Bugzilla Bug #533510 - tps exception, cannot start when signed audit true
@@ -133,8 +242,8 @@ fi
- Bugzilla Bug #566517 - CC: Add client auth to OCSP publishing, and move
to a client-auth port
- Bugzilla Bug #565842 - Clone config throws errors - fix key_algorithm
-- Bugzilla Bug #581017 - enabling log signing from tps ui pages causes tps
- crash
+- Bugzilla Bug #581017 - enabling log signing from tps ui pages causes
+ tps crash
- Bugzilla Bug #581004 - add more audit logs
- Bugzilla Bug #595871 - CC: TKS needed audit message changes
- Bugzilla Bug #598752 - Common Criteria: TKS ACL analysis result.
@@ -149,25 +258,36 @@ fi
- Bugzilla Bug #472597 - Disable policy code,UI
- Bugzilla Bug #504359 - pkiconsole - Administrator Group's Description
References Fedora
+- Bugzilla Bug #672111 - CC doc: certServer.usrgrp.administration missing
+ information
+- Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml
+ as part of CC interface review
+- Bugzilla Bug #673614 - CC: Review of cryptographic algorithms provided by
+ 'netscape.security.provider' package
+- Bugzilla Bug #656662 - Please Update Spec File to use 'ghost' on files
+ in /var/run and /var/lock
+- Bugzilla Bug #674917 - Restore identification of Tomcat-based PKI subsystem
+ instances
* Mon Apr 26 2010 Ade Lee <alee at redhat.com> 1.3.3-1
-- Bugzilla Bug 584917- Can not access CA Configuration Web UI after CA installation
+- Bugzilla Bug 584917- Can not access CA Configuration Web UI after
+ CA installation
* Mon Mar 22 2010 Christina Fu <cfu at redhat.com> 1.3.2-1
- Bugzilla Bug #522343 Add asynchronous key recovery mode
* Tue Feb 16 2010 Matthew Harmsen <mharmsen at redhat.com> 1.3.1-2
-- Bugzilla Bug #566059 - Add 'pki-console' as a runtime dependency
+- Bugzilla Bug #566059 - Add 'pki-console' as a runtime dependency
for CA, KRA, OCSP, and TKS . . .
-* Mon Feb 8 2010 Matthew Harmsen <mharmsen at redhat.com> 1.3.1-1
-- Bugzilla Bug #562986 - Supply convenience symlink(s) for backwards
+* Mon Feb 08 2010 Matthew Harmsen <mharmsen at redhat.com> 1.3.1-1
+- Bugzilla Bug #562986 - Supply convenience symlink(s) for backwards
compatibility (rename jar files as appropriate)
* Fri Jan 15 2010 Kevin Wright <kwright at redhat.com> 1.3.0-4
-- Removed BuildRequires: dogtag-pki-kra-ui
+- Removed BuildRequires: dogtag-pki-kra-ui
-* Fri Jan 8 2010 Matthew Harmsen <mharmsen at redhat.com> 1.3.0-3
+* Fri Jan 08 2010 Matthew Harmsen <mharmsen at redhat.com> 1.3.0-3
- Corrected "|| :" scriptlet logic (see Bugzilla Bug #475895)
- Bugzilla Bug #553072 - Apply "registry" logic to pki-kra . . .
- Bugzilla Bug #553842 - New Package for Dogtag PKI: pki-kra
@@ -176,4 +296,5 @@ fi
- Removed 'with exceptions' from License
* Thu Oct 15 2009 Ade Lee <alee at redhat.com> 1.3.0-1
-- Bugzilla Bug #X - Packaging for Fedora Dogtag
+- Bugzilla Bug #X - Packaging for Fedora Dogtag
+
diff --git a/sources b/sources
index 8d83e73..7545225 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-c19e518a3d902e1d5c7d4edad05b124b pki-kra-1.3.4.tar.gz
+99be38bb0402c0c46afb2783c21b2fb3 pki-kra-9.0.0.tar.gz
More information about the scm-commits
mailing list