[ol9_appstream] idm-pki-kra-11.2.1-1.0.1.el9.noarch

Name:	idm-pki-kra
Version:	11.2.1
Release:	1.0.1.el9
Architecture:	noarch
Group:	Unspecified
Size:	639477
License:	GPLv2 and LGPLv2
RPM:	idm-pki-kra-11.2.1-1.0.1.el9.noarch.rpm
Source RPM:	pki-core-11.2.1-1.0.1.el9.src.rpm
Build Date:	Tue Oct 11 2022
Build Host:	build-ol9-x86_64.oracle.com
Vendor:	Oracle America
URL:	https://www.dogtagpki.org
Summary:	IDM PKI KRA Package
Description:	IDM PKI Key Recovery Authority (KRA) is an optional subsystem that can act as a key archival facility. When configured in conjunction with the Certificate Authority (CA), the KRA stores private encryption keys as part of the certificate enrollment process. The key archival mechanism is triggered when a user enrolls in the PKI and creates the certificate request. Using the Certificate Request Message Format (CRMF) request format, a request is generated for the user's private encryption key. This key is then stored in the KRA which is configured to store keys in an encrypted format that can only be decrypted by several agents requesting the key at one time, providing for protection of the public encryption keys for the users in the PKI deployment. Note that the KRA archives encryption keys; it does NOT archive signing keys, since such archival would undermine non-repudiation properties of signing keys.

Changelog (Show File list) (Show related packages)

Tue Oct 11 2022 Alan Steinberg <alan.steinberg@oracle.com> - 11.2.1-1.0.1
```
- Replaced upstream graphical references [Orabug: 33952704]
```

Thu Aug 04 2022 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.2.1-1

- Rebase to PKI 11.2.1
- Bug #2107336 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE [rhel-9.1.0]

Fri Jul 01 2022 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.2.0-1

- Rebase to PKI 11.2.0
- Bug #2084639 ipa cert-request ssl error
- Bug #2099312 SKI field is not reflected back in generated CSR
- Bug #2095197 PKI cert-fix operation failing

Fri May 06 2022 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.2.0-0.4.beta3

- Rebase to PKI 11.2.0-beta3
- Bug #2062808 Drop SHA-1 use from authentication challenges [rhel-9.1.0]

Mon May 02 2022 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.2.0-0.3.beta2
```
- Rebase to PKI 11.2.0-beta2
- Rename packages to idm-pki
```
Mon Apr 18 2022 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.2.0-0.2.beta1
```
- Rebase to PKI 11.2.0-beta1
```

Wed Jan 19 2022 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.0.3-1

- Bug #2033109 Invalid certificates with creation of subCA (pkispawn single step)[rhel-9.0.0]
- Bug #2013141 kra-key-retrieve failed to accept xml input format to generate .p12 key through cli
- Bug #2029838 SHA1withRSA being listed in signing certificates while approving certificate via Agent page in browser

Thu Dec 02 2021 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.0.1-3
```
- Change gcc compiler flags to fix annobin gating failures
```
Tue Nov 23 2021 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.0.1-2
```
- Rebase to PKI 11.0.1
```
Tue Oct 05 2021 Red Hat PKI Team <rhcs-maint@redhat.com> - 11.0.0-1
```
- Rebase to PKI 11.0.0
```