commit ca-certificates-mozilla for openSUSE:Factory

h_root Wed, 06 Nov 2013 23:34:55 -0800

Hello community,

here is the log from the commit of package ca-certificates-mozilla for 
openSUSE:Factory checked in at 2013-11-07 08:34:02
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/ca-certificates-mozilla (Old)
 and      /work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "ca-certificates-mozilla"

Changes:
--------
--- 
/work/SRC/openSUSE:Factory/ca-certificates-mozilla/ca-certificates-mozilla.changes
  2013-08-30 11:33:03.000000000 +0200
+++ 
/work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new/ca-certificates-mozilla.changes
     2013-11-07 08:34:03.000000000 +0100
@@ -1,0 +2,36 @@
+Tue Oct 29 13:52:16 UTC 2013 - [email protected]
+
+- Updated to 1.94
+  * new: CA_Disig_Root_R1:2.9.0.195.3.154.238.80.144.110.40.crt
+    server auth, code signing, email signing
+  * new: CA_Disig_Root_R2:2.9.0.146.184.136.219.176.138.193.99.crt
+    server auth, code signing, email signing
+  * new: 
China_Internet_Network_Information_Center_EV_Certificates_Root:2.4.72.159.0.1.crt
+    server auth
+  * changed: Digital_Signature_Trust_Co._Global_CA_1:2.4.54.112.21.150.crt
+    removed code signing and server auth abilities
+  * changed: Digital_Signature_Trust_Co._Global_CA_3:2.4.54.110.211.206.crt
+    removed code signing and server auth abilities
+  * new: D-TRUST_Root_Class_3_CA_2_2009:2.3.9.131.243.crt
+    server auth
+  * new: D-TRUST_Root_Class_3_CA_2_EV_2009:2.3.9.131.244.crt
+    server auth
+  * removed: Entrust.net_Premium_2048_Secure_Server_CA:2.4.56.99.185.102.crt
+  * new:     Entrust.net_Premium_2048_Secure_Server_CA:2.4.56.99.222.248.crt
+    I think the missing flags were adjusted.
+  * removed: Equifax_Secure_eBusiness_CA_2:2.4.55.112.207.181.crt
+  * new: PSCProcert:2.1.11.crt
+    server auth, code signing, email signing
+  * new: 
Swisscom_Root_CA_2:2.16.30.158.40.232.72.242.229.239.195.124.74.30.90.24.103.182.crt
+    server auth, code signing, email signing
+  * new: 
Swisscom_Root_EV_CA_2:2.17.0.242.250.100.226.116.99.211.141.253.16.29.4.31.118.202.88.crt
+    server auth, code signing
+  * changed: 
TC_TrustCenter_Universal_CA_III:2.14.99.37.0.1.0.2.20.141.51.21.2.228.108.244.crt
+    removed all abilities
+  * new: TURKTRUST_Certificate_Services_Provider_Root_2007:2.1.1.crt
+    server auth, code signing
+  * changed: TWCA_Root_Certification_Authority:2.1.1.crt
+    added code signing ability
+- removed temporary Entrust.net_Premium_2048_Secure_Server_CA.p11-kit override.
+
+-------------------------------------------------------------------

Old:
----
  Entrust.net_Premium_2048_Secure_Server_CA.p11-kit

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ ca-certificates-mozilla.spec ++++++
--- /var/tmp/diff_new_pack.kQkFw5/_old  2013-11-07 08:34:04.000000000 +0100
+++ /var/tmp/diff_new_pack.kQkFw5/_new  2013-11-07 08:34:04.000000000 +0100
@@ -26,7 +26,7 @@
 Name:           ca-certificates-mozilla
 # Version number is NSS_BUILTINS_LIBRARY_VERSION in this file:
 # 
https://hg.mozilla.org/releases/mozilla-release/raw-file/default/security/nss/lib/ckfw/builtins/nssckbi.h
-Version:        1.93
+Version:        1.94
 Release:        0
 Summary:        CA certificates for OpenSSL
 License:        MPL-2.0
@@ -48,11 +48,6 @@
 Source10:       certdata2pem.py
 Source11:       %{name}.COPYING
 Source12:       compareoldnew
-# make p11-kit think there are basic constraints in the Entrust
-# cert (https://bugs.freedesktop.org/show_bug.cgi?id=62064)
-# Remove after the updated cert is accepted into NSS
-# https://bugzilla.mozilla.org/show_bug.cgi?id=694536
-Source99:       Entrust.net_Premium_2048_Secure_Server_CA.p11-kit
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 BuildArch:      noarch
 # for update-ca-certificates
@@ -104,7 +99,7 @@
                openssl x509 -in "$i" "${args[@]}"
        } > "%{buildroot}/%{trustdir_static}$d/${i%%:*}.pem"
 done
-for i in *.p11-kit %{SOURCE99}; do
+for i in *.p11-kit ; do
        install -m 644 "$i" "%{buildroot}/%{trustdir_static}"
 done
 set -x

++++++ certdata.txt ++++++
++++ 1838 lines (skipped)
++++ between /work/SRC/openSUSE:Factory/ca-certificates-mozilla/certdata.txt
++++ and /work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new/certdata.txt

++++++ nssckbi.h ++++++
--- /var/tmp/diff_new_pack.kQkFw5/_old  2013-11-07 08:34:04.000000000 +0100
+++ /var/tmp/diff_new_pack.kQkFw5/_new  2013-11-07 08:34:04.000000000 +0100
@@ -45,8 +45,8 @@
  * of the comment in the CK_VERSION type definition.
  */
 #define NSS_BUILTINS_LIBRARY_VERSION_MAJOR 1
-#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 93
-#define NSS_BUILTINS_LIBRARY_VERSION "1.93"
+#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 94
+#define NSS_BUILTINS_LIBRARY_VERSION "1.94"
 
 /* These version numbers detail the semantic changes to the ckfw engine. */
 #define NSS_BUILTINS_HARDWARE_VERSION_MAJOR 1

-- 
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

commit ca-certificates-mozilla for openSUSE:Factory

Reply via email to