Bug 806262
| Summary: | bouncycastle-1.48 is available | ||||||
|---|---|---|---|---|---|---|---|
| Product: | [Fedora] Fedora | Reporter: | Upstream Release Monitoring <upstream-release-monitoring> | ||||
| Component: | bouncycastle | Assignee: | Juan Hernández <juan.hernandez> | ||||
| Status: | CLOSED RAWHIDE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | ||||
| Severity: | unspecified | Docs Contact: | |||||
| Priority: | unspecified | ||||||
| Version: | rawhide | CC: | langel, oget.fedora, puntogil, tcallawa | ||||
| Target Milestone: | --- | Keywords: | FutureFeature, Reopened, Triaged | ||||
| Target Release: | --- | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Whiteboard: | |||||||
| Fixed In Version: | Doc Type: | Enhancement | |||||
| Doc Text: | Story Points: | --- | |||||
| Clone Of: | Environment: | ||||||
| Last Closed: | 2013-02-22 10:22:35 UTC | Type: | --- | ||||
| Regression: | --- | Mount Type: | --- | ||||
| Documentation: | --- | CRM: | |||||
| Verified Versions: | Category: | --- | |||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||
| Embargoed: | |||||||
| Attachments: |
|
||||||
|
Description
Upstream Release Monitoring
2012-03-23 11:05:05 UTC
Hi spot, thanks for updating bouncycastle to 1.47 in rawhide, but there were good reasons for me to keep it at 1.46. Mainly, we cannot update one of the main users of this package, itext, due to legal issues, and our version of itext needs bouncycastle-1.46 or earlier. Please see the discussion [1] and the links therein for the FE-Legal response for updating itext. Bouncycastle made major API changes between 1.46 and 1.47. While I was able to port big parts of the itext code to the 1.47, I realized that some needed parts of the bouncycastle library were removed entirely. The 1.47 update has another problem with the change of these package names, e.g. bouncycastle-tsp does not exist for 1.47 and its contents are distributed into other packages currently unavailable at Fedora. So a careful consideration and planning (including new package review requests) is required really for this update. I did not check, but the 1.47 update might also cause problems with other bouncycastle users. To this end, I will be downgrading bouncycastle to 1.46 in rawhide unless you have an objection. By the way, the bouncycastle suite consists of 3 packages: bounycastle, bounycastle-mail, bounycastle-tsp. The other two packages will also need to be rebuilt with the original tarballs. [1] http://lists.fedoraproject.org/pipermail/legal/2011-June/001653.html I just removed the 'f18' tag from the build before the next rawhide compose. So we can get away with not using the epoch. Sorry about that! Feel free to sync the changes from f17 into rawhide instead. Not a problem. I rebuilt bouncycastle-mail with the upstream tarball on F16+ and appended it to the bouncycastle update in bodhi. Apparently bouncycastle-tsp does not need a rebuild since it is using the upstream tarball already. bouncycastle-pg-1.46-7.fc17 has been submitted as an update for Fedora 17. https://admin.fedoraproject.org/updates/bouncycastle-pg-1.46-7.fc17 The above update is not a "fix" for this bug report. Reverting status from MODIFIED to NEW. Package bouncycastle-pg-1.46-7.fc17: * should fix your issue, * was pushed to the Fedora 17 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=updates-testing bouncycastle-pg-1.46-7.fc17' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-2012-7612/bouncycastle-pg-1.46-7.fc17 then log in and leave karma (feedback). bouncycastle-pg-1.46-7.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report. Again, this update is not related to the bug. Reopening. Latest upstream release: 1.48 Current version in Fedora Rawhide: 1.46 URL: http://www.bouncycastle.org/ Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component. Updated to 1.48 in rawhide. If itext can't use it, then someone should package bouncycastle146. I am fine with that as I don't maintain itext and bouncycastle* anymore. But this is a lot of work. spot: Just updating bouncycastle to 1.48 is not good. You need to update also bouncycastle-mail and bouncycastle-tsp to 1.48. Unfortunately bouncycastle-tsp is renamed by upstream to bouncycastle-pkix, A new review request is required. After this is done, as spot says one needs to package bouncycastle146, bouncycastle-mail146, and bouncycastle-tsp146; and patch itext to use them instead. Alternatively one can fix itext to use bouncycastle-1.48. I am attaching a (incomplete) patch that ports itext to bouncycastle-1.47 API. I don't know if there are API changes between 1.47 and 1.48. The new maintainer can use this as a starting point. Also CCing the new itext maintainer. Created attachment 701191 [details]
incomplete patch for itext using bc-1.47
|