Attachment 934767 Details for Bug 1130485 – Commit to ca-certificates that fixes the issue

[patch] Commit to ca-certificates that fixes the issue

0001-Update-trust-fixes-file-for-p11-kit-0.20.x-changes.patch (text/plain), 3.01 KB, created by Stef Walter on 2014-09-05 12:38:37 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: Stef Walter

Created: 2014-09-05 12:38:37 UTC

Size: 3.01 KB

patch

obsolete

>From 2a603fd45420e11c6ad0ef89235735dec44edf0d Mon Sep 17 00:00:00 2001
>From: Stef Walter <stefw@redhat.com>
>Date: Fri, 5 Sep 2014 14:31:09 +0200
>Subject: [PATCH] Update trust-fixes file for p11-kit 0.20.x changes
>
>Due to the rebase of p11-kit, the PKCS#11 attributes of a stapled
>extension changed slightly during the 0.19.x releases. This was
>due to specification work on the 'Storing Trust Policy' document.
>
>Resolves: rhbz#1130485
>---
> ca-certificates.spec | 12 +++++++++---
> trust-fixes          |  5 ++---
> 2 files changed, 11 insertions(+), 6 deletions(-)
>
>diff --git a/ca-certificates.spec b/ca-certificates.spec
>index d040fd0..b6cc46f 100644
>--- a/ca-certificates.spec
>+++ b/ca-certificates.spec
>@@ -30,7 +30,7 @@ Version: 2014.1.98
> # On RHEL 7.x, please keep the release version >= 70
> # When rebasing on Y-Stream (7.y), use 71, 72, 73, ...
> # When rebasing on Z-Stream (7.y.z), use 70.0, 70.1, 70.2, ...
>-Release: 71%{?dist}
>+Release: 72%{?dist}
> License: Public Domain
> 
> Group: System Environment/Base
>@@ -53,8 +53,8 @@ Source17: README.src
> 
> BuildArch: noarch
> 
>-Requires: p11-kit >= 0.17.3
>-Requires: p11-kit-trust >= 0.17.3
>+Requires: p11-kit >= 0.20.0
>+Requires: p11-kit-trust >= 0.20.0
> BuildRequires: perl
> BuildRequires: python
> BuildRequires: openssl
>@@ -297,6 +297,12 @@ fi
> 
> 
> %changelog
>+* Wed Sep 03 2014 Stef Walter <stefw@redhat.com> - 2014.1.98-72
>+- Due to the rebase of p11-kit update the format of our
>+  .p11-kit trust-fixes file. Related Fedora bug rhbz#988745.
>+  Resolves rhbz#1130485
>+- The changes require p11-kit 0.20.x series or later
>+
> * Wed Sep 03 2014 Kai Engert <kaie@redhat.com> - 2014.1.98-71
> - Update to CKBI 1.98 from NSS 3.16.1
> - building on RHEL 7 no longer requires java-openjdk
>diff --git a/trust-fixes b/trust-fixes
>index e675062..8fecef3 100644
>--- a/trust-fixes
>+++ b/trust-fixes
>@@ -1,8 +1,7 @@
> [p11-kit-object-v1]
> label: "Add missing BasicConstraints for Entrust root"
> id: "%55%e4%81%d1%11%80%be%d8%89%b9%08%a3%31%f9%a1%24%09%16%b9%70"
>+x-public-key-info: "%30%82%01%22%30%0d%06%09%2a%86%48%86%f7%0d%01%01%01%05%00%03%82%01%0f%00%30%82%01%0a%02%82%01%01%00%ad%4d%4b%a9%12%86%b2%ea%a3%20%07%15%16%64%2a%2b%4b%d1%bf%0b%4a%4d%8e%ed%80%76%a5%67%b7%78%40%c0%73%42%c8%68%c0%db%53%2b%dd%5e%b8%76%98%35%93%8b%1a%9d%7c%13%3a%0e%1f%5b%b7%1e%cf%e5%24%14%1e%b1%81%a9%8d%7d%b8%cc%6b%4b%03%f1%02%0c%dc%ab%a5%40%24%00%7f%74%94%a1%9d%08%29%b3%88%0b%f5%87%77%9d%55%cd%e4%c3%7e%d7%6a%64%ab%85%14%86%95%5b%97%32%50%6f%3d%c8%ba%66%0c%e3%fc%bd%b8%49%c1%76%89%49%19%fd%c0%a8%bd%89%a3%67%2f%c6%9f%bc%71%19%60%b8%2d%e9%2c%c9%90%76%66%7b%94%e2%af%78%d6%65%53%5d%3c%d6%9c%b2%cf%29%03%f9%2f%a4%50%b2%d4%48%ce%05%32%55%8a%fd%b2%64%4c%0e%e4%98%07%75%db%7f%df%b9%08%55%60%85%30%29%f9%7b%48%a4%69%86%e3%35%3f%1e%86%5d%7a%7a%15%bd%ef%00%8e%15%22%54%17%00%90%26%93%bc%0e%49%68%91%bf%f8%47%d3%9d%95%42%c1%0e%4d%df%6f%26%cf%c3%18%21%62%66%43%70%d6%d5%c0%07%e1%02%03%01%00%01"
> class: x-certificate-extension
> object-id: 2.5.29.19
>-x-critical: true
>-value: "%30%03%01%01%FF"
>-
>+value: "%30%0f%06%03%55%1d%13%01%01%ff%04%05%30%03%01%01%ff"
>-- 
>2.1.0
>

Actions: View | Diff

Attachments on bug 1130485: 934767 | 934818