-
Wed Jan 27 2016 Kai Engert <kaie@redhat.com> - 2015.2.6-70.1
- Update to CKBI 2.6 from NSS 3.21 with legacy modifications.
-
Thu Apr 23 2015 Kai Engert <kaie@redhat.com> - 2015.2.4-71
- Update to CKBI 2.4 from NSS 3.18.1 with legacy modifications.
-
Tue Apr 14 2015 Kai Engert <kaie@redhat.com> - 2015.2.3-72
- Fix a typo in the ca-legacy manual page (rhbz#1208850)
-
Tue Mar 31 2015 Kai Engert <kaie@redhat.com> - 2015.2.3-71
- Update to CKBI 2.3 from NSS 3.18 with legacy modifications.
- Add an alternative version of the "Thawte Premium Server CA" root,
which carries a SHA1-RSA signature, to allow OpenJDK to verify applets
which contain that version of the root certificate.
This change doesn't add trust for another key, because both versions
of the certificate use the same public key (rhbz#1170982).
- Add a patch to the source RPM that documents the changes from the
upstream version.
- Introduce the ca-legacy utility, a manual page, and the ca-legacy.conf
configuration file.
- The new scriptlets require the coreutils package.
- Remove the obsolete blacklist.txt file.
-
Wed Sep 17 2014 Stef Walter <stefw@redhat.com> - 2014.1.98-72
- The BasicConstraints fix for Entrust Root is no longer necessary.
In addition it was invalid for p11-kit 0.20.x. rhbz#1130485
-
Wed Sep 03 2014 Kai Engert <kaie@redhat.com> - 2014.1.98-71
- Update to CKBI 1.98 from NSS 3.16.1
- building on RHEL 7 no longer requires java-openjdk
- added more detailed instructions for release numbers on RHEL branches,
to avoid problems when rebasing on both z- and y-stream branches.
-
Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 2013.1.95-71
- Mass rebuild 2013-12-27
-
Tue Dec 17 2013 Kai Engert <kaie@redhat.com> - 2013.1.95-70.1
- Update to CKBI 1.95 from NSS 3.15.3.1
-
Fri Oct 18 2013 Kai Engert <kaie@redhat.com> - 2013.1.94-70.1
- Only create backup files if there is an original file, rhbz#999017
-
Tue Sep 03 2013 Kai Engert <kaie@redhat.com> - 2013.1.94-70.0
- Update to CKBI 1.94 from NSS 3.15