Hello community,
here is the log from the commit of package ca-certificates-mozilla for
openSUSE:Factory checked in at 2016-04-05 10:41:38
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/ca-certificates-mozilla (Old)
and /work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ca-certificates-mozilla"
Changes:
--------
---
/work/SRC/openSUSE:Factory/ca-certificates-mozilla/ca-certificates-mozilla.changes
2015-01-20 12:26:33.000000000 +0100
+++
/work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new/ca-certificates-mozilla.changes
2016-04-05 10:41:40.000000000 +0200
@@ -1,0 +2,74 @@
+Thu Mar 31 13:07:40 UTC 2016 - [email protected]
+
+- Updated to 2.7.
+- diff-from-upstream-2.2.patch: removed as openssl 1.0.2 can do
+ immediate root CAs.
+
+- Removed server trust from:
+ AC Raíz Certicámara S.A.
+ ComSign Secured CA
+ NetLock Uzleti (Class B) Tanusitvanykiado
+ NetLock Business (Class B) Root
+ NetLock Expressz (Class C) Tanusitvanykiado
+ TC TrustCenter Class 3 CA II
+ TURKTRUST Certificate Services Provider Root 1
+ TURKTRUST Certificate Services Provider Root 2
+ Equifax Secure Global eBusiness CA-1
+ Verisign Class 4 Public Primary Certification Authority G3
+- enable server trust
+ Actalis Authentication Root CA
+- Deleted CAs:
+ A Trust nQual 03
+ Buypass Class 3 CA 1
+ CA Disig
+ Digital Signature Trust Co Global CA 1
+ Digital Signature Trust Co Global CA 3
+ E Guven Kok Elektronik Sertifika Hizmet Saglayicisi
+ NetLock Expressz (Class C) Tanusitvanykiado
+ NetLock Kozjegyzoi (Class A) Tanusitvanykiado
+ NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado
+ NetLock Uzleti (Class B) Tanusitvanykiado
+ SG TRUST SERVICES RACINE
+ Staat der Nederlanden Root CA
+ TC TrustCenter Class 2 CA II
+ TC TrustCenter Universal CA I
+ TDC Internet Root CA
+ UTN DATACorp SGC Root CA
+ Verisign Class 1 Public Primary Certification Authority - G2
+ Verisign Class 3 Public Primary Certification Authority
+ Verisign Class 3 Public Primary Certification Authority - G2
+
+- New added CAs:
+ CA WoSign ECC Root
+ Certification Authority of WoSign
+ Certification Authority of WoSign G2
+ Certinomis - Root CA
+ Certum Trusted Network CA 2
+ CFCA EV ROOT
+ COMODO RSA Certification Authority
+ DigiCert Assured ID Root G2
+ DigiCert Assured ID Root G3
+ DigiCert Global Root G2
+ DigiCert Global Root G3
+ DigiCert Trusted Root G4
+ Entrust Root Certification Authority - EC1
+ Entrust Root Certification Authority - G2
+ GlobalSign
+ GlobalSign
+ IdenTrust Commercial Root CA 1
+ IdenTrust Public Sector Root CA 1
+ OISTE WISeKey Global Root GB CA
+ QuoVadis Root CA 1 G3
+ QuoVadis Root CA 2 G3
+ QuoVadis Root CA 3 G3
+ Staat der Nederlanden EV Root CA
+ Staat der Nederlanden Root CA - G3
+ S-TRUST Universal Root CA
+ SZAFIR ROOT CA2
+ TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H5
+ TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6
+ USERTrust ECC Certification Authority
+ USERTrust RSA Certification Authority
+ 沃通根证书
+
+-------------------------------------------------------------------
Old:
----
diff-from-upstream-2.2.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ ca-certificates-mozilla.spec ++++++
--- /var/tmp/diff_new_pack.WsHe3D/_old 2016-04-05 10:41:41.000000000 +0200
+++ /var/tmp/diff_new_pack.WsHe3D/_new 2016-04-05 10:41:41.000000000 +0200
@@ -1,7 +1,7 @@
#
# spec file for package ca-certificates-mozilla
#
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -26,7 +26,7 @@
Name: ca-certificates-mozilla
# Version number is NSS_BUILTINS_LIBRARY_VERSION in this file:
# http://hg.mozilla.org/projects/nss/file/default/lib/ckfw/builtins/nssckbi.h
-Version: 2.2
+Version: 2.7
Release: 0
Summary: CA certificates for OpenSSL
License: MPL-2.0
@@ -50,7 +50,8 @@
Source12: compareoldnew
# temporary legacy patch
-Patch0: diff-from-upstream-2.2.patch
+# openssl 1.0.2 should not need it anymore.
+# Patch0: diff-from-upstream-2.2.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildArch: noarch
@@ -71,7 +72,7 @@
%setup -qcT
/bin/cp %{SOURCE0} .
-patch <%{PATCH0}
+#patch <%{PATCH0}
install -m 644 %{SOURCE11} COPYING
ver=`sed -ne '/NSS_BUILTINS_LIBRARY_VERSION /s/.*"\(.*\)"/\1/p' < "%{SOURCE1}"`
++++++ certdata.txt ++++++
++++ 6673 lines (skipped)
++++ between /work/SRC/openSUSE:Factory/ca-certificates-mozilla/certdata.txt
++++ and /work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new/certdata.txt
++++++ nssckbi.h ++++++
--- /var/tmp/diff_new_pack.WsHe3D/_old 2016-04-05 10:41:41.000000000 +0200
+++ /var/tmp/diff_new_pack.WsHe3D/_new 2016-04-05 10:41:41.000000000 +0200
@@ -18,7 +18,7 @@
#define NSS_BUILTINS_CRYPTOKI_VERSION_MAJOR 2
#define NSS_BUILTINS_CRYPTOKI_VERSION_MINOR 20
-/* These version numbers detail the changes
+/* These version numbers detail the changes
* to the list of trusted certificates.
*
* The NSS_BUILTINS_LIBRARY_VERSION_MINOR macro needs to be bumped
@@ -45,14 +45,14 @@
* of the comment in the CK_VERSION type definition.
*/
#define NSS_BUILTINS_LIBRARY_VERSION_MAJOR 2
-#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 2
-#define NSS_BUILTINS_LIBRARY_VERSION "2.2"
+#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 7
+#define NSS_BUILTINS_LIBRARY_VERSION "2.7"
/* These version numbers detail the semantic changes to the ckfw engine. */
#define NSS_BUILTINS_HARDWARE_VERSION_MAJOR 1
#define NSS_BUILTINS_HARDWARE_VERSION_MINOR 0
-/* These version numbers detail the semantic changes to ckbi itself
+/* These version numbers detail the semantic changes to ckbi itself
* (new PKCS #11 objects), etc. */
#define NSS_BUILTINS_FIRMWARE_VERSION_MAJOR 1
#define NSS_BUILTINS_FIRMWARE_VERSION_MINOR 0
