Hello community, here is the log from the commit of package ca-certificates-mozilla for openSUSE:Factory checked in at 2016-04-05 10:41:38 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ca-certificates-mozilla (Old) and /work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "ca-certificates-mozilla" Changes: -------- --- /work/SRC/openSUSE:Factory/ca-certificates-mozilla/ca-certificates-mozilla.changes 2015-01-20 12:26:33.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new/ca-certificates-mozilla.changes 2016-04-05 10:41:40.000000000 +0200 @@ -1,0 +2,74 @@ +Thu Mar 31 13:07:40 UTC 2016 - meissner@suse.com + +- Updated to 2.7. +- diff-from-upstream-2.2.patch: removed as openssl 1.0.2 can do + immediate root CAs. + +- Removed server trust from: + AC Raíz Certicámara S.A. + ComSign Secured CA + NetLock Uzleti (Class B) Tanusitvanykiado + NetLock Business (Class B) Root + NetLock Expressz (Class C) Tanusitvanykiado + TC TrustCenter Class 3 CA II + TURKTRUST Certificate Services Provider Root 1 + TURKTRUST Certificate Services Provider Root 2 + Equifax Secure Global eBusiness CA-1 + Verisign Class 4 Public Primary Certification Authority G3 +- enable server trust + Actalis Authentication Root CA +- Deleted CAs: + A Trust nQual 03 + Buypass Class 3 CA 1 + CA Disig + Digital Signature Trust Co Global CA 1 + Digital Signature Trust Co Global CA 3 + E Guven Kok Elektronik Sertifika Hizmet Saglayicisi + NetLock Expressz (Class C) Tanusitvanykiado + NetLock Kozjegyzoi (Class A) Tanusitvanykiado + NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado + NetLock Uzleti (Class B) Tanusitvanykiado + SG TRUST SERVICES RACINE + Staat der Nederlanden Root CA + TC TrustCenter Class 2 CA II + TC TrustCenter Universal CA I + TDC Internet Root CA + UTN DATACorp SGC Root CA + Verisign Class 1 Public Primary Certification Authority - G2 + Verisign Class 3 Public Primary Certification Authority + Verisign Class 3 Public Primary Certification Authority - G2 + +- New added CAs: + CA WoSign ECC Root + Certification Authority of WoSign + Certification Authority of WoSign G2 + Certinomis - Root CA + Certum Trusted Network CA 2 + CFCA EV ROOT + COMODO RSA Certification Authority + DigiCert Assured ID Root G2 + DigiCert Assured ID Root G3 + DigiCert Global Root G2 + DigiCert Global Root G3 + DigiCert Trusted Root G4 + Entrust Root Certification Authority - EC1 + Entrust Root Certification Authority - G2 + GlobalSign + GlobalSign + IdenTrust Commercial Root CA 1 + IdenTrust Public Sector Root CA 1 + OISTE WISeKey Global Root GB CA + QuoVadis Root CA 1 G3 + QuoVadis Root CA 2 G3 + QuoVadis Root CA 3 G3 + Staat der Nederlanden EV Root CA + Staat der Nederlanden Root CA - G3 + S-TRUST Universal Root CA + SZAFIR ROOT CA2 + TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H5 + TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6 + USERTrust ECC Certification Authority + USERTrust RSA Certification Authority + 沃通根证书 + +------------------------------------------------------------------- Old: ---- diff-from-upstream-2.2.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ca-certificates-mozilla.spec ++++++ --- /var/tmp/diff_new_pack.WsHe3D/_old 2016-04-05 10:41:41.000000000 +0200 +++ /var/tmp/diff_new_pack.WsHe3D/_new 2016-04-05 10:41:41.000000000 +0200 @@ -1,7 +1,7 @@ # # spec file for package ca-certificates-mozilla # -# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -26,7 +26,7 @@ Name: ca-certificates-mozilla # Version number is NSS_BUILTINS_LIBRARY_VERSION in this file: # http://hg.mozilla.org/projects/nss/file/default/lib/ckfw/builtins/nssckbi.h -Version: 2.2 +Version: 2.7 Release: 0 Summary: CA certificates for OpenSSL License: MPL-2.0 @@ -50,7 +50,8 @@ Source12: compareoldnew # temporary legacy patch -Patch0: diff-from-upstream-2.2.patch +# openssl 1.0.2 should not need it anymore. +# Patch0: diff-from-upstream-2.2.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildArch: noarch @@ -71,7 +72,7 @@ %setup -qcT /bin/cp %{SOURCE0} . -patch <%{PATCH0} +#patch <%{PATCH0} install -m 644 %{SOURCE11} COPYING ver=`sed -ne '/NSS_BUILTINS_LIBRARY_VERSION /s/.*"\(.*\)"/\1/p' < "%{SOURCE1}"` ++++++ certdata.txt ++++++ ++++ 6673 lines (skipped) ++++ between /work/SRC/openSUSE:Factory/ca-certificates-mozilla/certdata.txt ++++ and /work/SRC/openSUSE:Factory/.ca-certificates-mozilla.new/certdata.txt ++++++ nssckbi.h ++++++ --- /var/tmp/diff_new_pack.WsHe3D/_old 2016-04-05 10:41:41.000000000 +0200 +++ /var/tmp/diff_new_pack.WsHe3D/_new 2016-04-05 10:41:41.000000000 +0200 @@ -18,7 +18,7 @@ #define NSS_BUILTINS_CRYPTOKI_VERSION_MAJOR 2 #define NSS_BUILTINS_CRYPTOKI_VERSION_MINOR 20 -/* These version numbers detail the changes +/* These version numbers detail the changes * to the list of trusted certificates. * * The NSS_BUILTINS_LIBRARY_VERSION_MINOR macro needs to be bumped @@ -45,14 +45,14 @@ * of the comment in the CK_VERSION type definition. */ #define NSS_BUILTINS_LIBRARY_VERSION_MAJOR 2 -#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 2 -#define NSS_BUILTINS_LIBRARY_VERSION "2.2" +#define NSS_BUILTINS_LIBRARY_VERSION_MINOR 7 +#define NSS_BUILTINS_LIBRARY_VERSION "2.7" /* These version numbers detail the semantic changes to the ckfw engine. */ #define NSS_BUILTINS_HARDWARE_VERSION_MAJOR 1 #define NSS_BUILTINS_HARDWARE_VERSION_MINOR 0 -/* These version numbers detail the semantic changes to ckbi itself +/* These version numbers detail the semantic changes to ckbi itself * (new PKCS #11 objects), etc. */ #define NSS_BUILTINS_FIRMWARE_VERSION_MAJOR 1 #define NSS_BUILTINS_FIRMWARE_VERSION_MINOR 0