Hello community, here is the log from the commit of package mozilla-nss for openSUSE:Factory checked in at 2015-04-07 09:28:49 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mozilla-nss (Old) and /work/SRC/openSUSE:Factory/.mozilla-nss.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "mozilla-nss" Changes: -------- --- /work/SRC/openSUSE:Factory/mozilla-nss/mozilla-nss.changes 2015-02-11 16:31:35.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.mozilla-nss.new/mozilla-nss.changes 2015-04-07 09:28:50.000000000 +0200 @@ -1,0 +2,52 @@ +Fri Apr 3 08:34:59 UTC 2015 - wr@rosenauer.org + +- update to 3.18 + * Firefox target release 38 + New functionality: + * When importing certificates and keys from a PKCS#12 source, + it's now possible to override the nicknames, prior to importing + them into the NSS database, using new API + SEC_PKCS12DecoderRenameCertNicknames. + * The tstclnt test utility program has new command-line options + -C, -D, -b and -R. + Use -C one, two or three times to print information about the + certificates received from a server, and information about the + locally found and trusted issuer certificates, to diagnose + server side configuration issues. It is possible to run tstclnt + without providing a database (-D). A PKCS#11 library that + contains root CA certificates can be loaded by tstclnt, which + may either be the nssckbi library provided by NSS (-b) or + another compatible library (-R). + New Functions: + * SEC_CheckCrlTimes + * SEC_GetCrlTimes + * SEC_PKCS12DecoderRenameCertNicknames + New Types: + * SEC_PKCS12NicknameRenameCallback + Notable Changes: + * The highest TLS protocol version enabled by default has been + increased from TLS 1.0 to TLS 1.2. Similarly, the highest DTLS + protocol version enabled by default has been increased from + DTLS 1.0 to DTLS 1.2. + * The default key size used by certutil when creating an RSA key + pair has been increased from 1024 bits to 2048 bits. + * The following CA certificates had the Websites and Code Signing + trust bits turned off: + - Equifax Secure Certificate Authority + - Equifax Secure Global eBusiness CA-1 + - TC TrustCenter Class 3 CA II + * The following CA certificates were added: + - Staat der Nederlanden Root CA - G3 + - Staat der Nederlanden EV Root CA + - IdenTrust Commercial Root CA 1 + - IdenTrust Public Sector Root CA 1 + - S-TRUST Universal Root CA + - Entrust Root Certification Authority - G2 + - Entrust Root Certification Authority - EC1 + - CFCA EV ROOT + * The version number of the updated root CA list has been set + to 2.3 +- add the changes file as source so the .src.rpm builds (used for + fake build time) + +------------------------------------------------------------------- Old: ---- nss-3.17.4.tar.gz New: ---- nss-3.18.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mozilla-nss.spec ++++++ --- /var/tmp/diff_new_pack.yaiMg8/_old 2015-04-07 09:28:51.000000000 +0200 +++ /var/tmp/diff_new_pack.yaiMg8/_new 2015-04-07 09:28:51.000000000 +0200 @@ -21,11 +21,11 @@ Name: mozilla-nss BuildRequires: gcc-c++ -BuildRequires: mozilla-nspr-devel >= 4.10.7 +BuildRequires: mozilla-nspr-devel >= 4.10.8 BuildRequires: pkg-config BuildRequires: sqlite-devel BuildRequires: zlib-devel -Version: 3.17.4 +Version: 3.18 Release: 0 # bug437293 %ifarch ppc64 @@ -36,8 +36,8 @@ License: MPL-2.0 Group: System/Libraries Url: http://www.mozilla.org/projects/security/pki/nss/ -Source: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_17_4_RTM/src/nss-%{version}.tar.gz -# hg clone https://hg.mozilla.org/projects/nss nss-3.17.4/nss ; cd nss-3.17.4/nss ; hg up NSS_3_17_4_RTM +Source: https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_18_RTM/src/nss-%{version}.tar.gz +# hg clone https://hg.mozilla.org/projects/nss nss-3.18/nss ; cd nss-3.18/nss ; hg up NSS_3_18_RTM #Source: nss-%{version}.tar.gz Source1: nss.pc.in Source3: nss-config.in @@ -48,6 +48,7 @@ Source8: key4.db Source9: pkcs11.txt #Source10: PayPalEE.cert +Source99: %{name}.changes Patch1: nss-opt.patch Patch2: system-nspr.patch Patch4: nss-no-rpath.patch @@ -179,7 +180,7 @@ %build cd nss -modified="$(sed -n '/^----/n;s/ - .*$//;p;q' "%{_sourcedir}/%{name}.changes")" +modified="$(sed -n '/^----/n;s/ - .*$//;p;q' "%{S:99}")" DATE="\"$(date -d "${modified}" "+%%b %%e %%Y")\"" TIME="\"$(date -d "${modified}" "+%%R")\"" find . -name '*.[ch]' -print -exec sed -i "s/__DATE__/${DATE}/g;s/__TIME__/${TIME}/g" {} + ++++++ nss-3.17.4.tar.gz -> nss-3.18.tar.gz ++++++ /work/SRC/openSUSE:Factory/mozilla-nss/nss-3.17.4.tar.gz /work/SRC/openSUSE:Factory/.mozilla-nss.new/nss-3.18.tar.gz differ: char 5, line 1