[ol8_appstream] idm-pki-kra-10.12.0-4.0.1.module+el8.7.0+20845+c5918a27.noarch

Name:	idm-pki-kra
Version:	10.12.0
Release:	4.0.1.module+el8.7.0+20845+c5918a27
Architecture:	noarch
Module:	pki-core:10.6:8070020220726172732:6e5cea50
Group:	Unspecified
Size:	632147
License:	GPLv2 and LGPLv2
RPM:	idm-pki-kra-10.12.0-4.0.1.module+el8.7.0+20845+c5918a27.noarch.rpm
Source RPM:	pki-core-10.12.0-4.0.1.module+el8.7.0+20845+c5918a27.src.rpm
Build Date:	Tue Oct 11 2022
Build Host:	build-ol8-x86_64.oracle.com
Vendor:	Oracle America
URL:	https://www.dogtagpki.org
Summary:	IDM PKI KRA Package
Description:	IDM PKI Key Recovery Authority (KRA) is an optional subsystem that can act as a key archival facility. When configured in conjunction with the Certificate Authority (CA), the KRA stores private encryption keys as part of the certificate enrollment process. The key archival mechanism is triggered when a user enrolls in the PKI and creates the certificate request. Using the Certificate Request Message Format (CRMF) request format, a request is generated for the user's private encryption key. This key is then stored in the KRA which is configured to store keys in an encrypted format that can only be decrypted by several agents requesting the key at one time, providing for protection of the public encryption keys for the users in the PKI deployment. Note that the KRA archives encryption keys; it does NOT archive signing keys, since such archival would undermine non-repudiation properties of signing keys.

Changelog (Show File list) (Show related packages)

Mon Oct 10 2022 John Mcwalters <john.mcwalters@oracle.com> 10.12.0-4.0.1
```
- Remove upstream reference.
```

Mon Jul 25 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 10.12.0-4

- Bug 2107334 - CVE-2022-2414 access to external entities when parsing XML can lead to XXE
- Rename packages to idm-pki

Wed Jun 01 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 10.12.0-3
```
- ExcludeArch i686 as md2man not available in RHEL 8.7
```

Thu Feb 03 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 10.12.0-2

- Bug 2027470 - pki-healthcheck ClonesConnectivyAndDataCheck fails

Tue Nov 09 2021 Red Hat PKI Team <rhcs-maint@redhat.com> 10.12.0-0.1

- Rebase to PKI 10.12.0
- Bug 1904112 - pki fails to start if empty dir /var/lib/pki/pki-tomcat/kra exists
- Bug 1984455 - [RFE] Date Format on the TPS Agent Page
- Bug 1980378 - 'keyctl_search: Required key not available' message when running 'ipa-healthcheck'
- Bug 2004084 - Reinstall of the same ipa-replica fails with 'RuntimeError: CA configuration failed.'
- Bug 2006070 - Upgrades incorrectly add secret attribute to connectors

Thu Aug 12 2021 Red Hat PKI Team <rhcs-maint@redhat.com> 10.11.0-2

- Bug 1992337 - Double issuance of non-CA subsystem certs at installation

Mon Jul 26 2021 Red Hat PKI Team <rhcs-maint@redhat.com> 10.11.0-1
```
- Rebase to PKI 10.11.0
```
Mon Jun 14 2021 Red Hat PKI Team <rhcs-maint@redhat.com> 10.11.0-0.3
```
- Rebase to PKI 10.11.0-alpha3
```
Thu Jun 03 2021 Red Hat PKI Team <rhcs-maint@redhat.com> 10.11.0-0.2
```
- Fix JAVA_HOME
```
Wed Jun 02 2021 Red Hat PKI Team <rhcs-maint@redhat.com> 10.11.0-0.1
```
- Rebase to PKI 10.11.0-alpha2
```