Accepting request 240770 from mozilla:Factory

Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/240770
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/mozilla-nss?expand=0&rev=93

mozilla-nss.changes

@@ -1,3 +1,72 @@
+-------------------------------------------------------------------
+Sat Jul  5 12:10:36 UTC 2014 - wr@rosenauer.org
+
+- update to 3.16.3
+  * required for Firefox 32
+  New Functions:
+  * CERT_GetGeneralNameTypeFromString (This function was already added
+    in NSS 3.16.2, however, it wasn't declared in a public header file.)
+  Notable Changes:
+  * The following 1024-bit CA certificates were removed
+    - Entrust.net Secure Server Certification Authority
+    - GTE CyberTrust Global Root
+    - ValiCert Class 1 Policy Validation Authority
+    - ValiCert Class 2 Policy Validation Authority
+    - ValiCert Class 3 Policy Validation Authority
+  * Additionally, the following CA certificate was removed as
+    requested by the CA:
+    - TDC Internet Root CA
+  * The following CA certificates were added:
+    - Certification Authority of WoSign
+    - CA 沃通根证书
+    - DigiCert Assured ID Root G2
+    - DigiCert Assured ID Root G3
+    - DigiCert Global Root G2
+    - DigiCert Global Root G3
+    - DigiCert Trusted Root G4
+    - QuoVadis Root CA 1 G3
+    - QuoVadis Root CA 2 G3
+    - QuoVadis Root CA 3 G3
+  * The Trust Bits were changed for the following CA certificates
+    - Class 3 Public Primary Certification Authority
+    - Class 3 Public Primary Certification Authority
+    - Class 2 Public Primary Certification Authority - G2
+    - VeriSign Class 2 Public Primary Certification Authority - G3
+    - AC Raíz Certicámara S.A.
+    - NetLock Uzleti (Class B) Tanusitvanykiado
+    - NetLock Expressz (Class C) Tanusitvanykiado
+- changes in 3.16.2
+  New functionality:
+  * DTLS 1.2 is supported.
+  * The TLS application layer protocol negotiation (ALPN) extension
+    is also supported on the server side.
+  * RSA-OEAP is supported. Use the new PK11_PrivDecrypt and
+    PK11_PubEncrypt functions with the CKM_RSA_PKCS_OAEP mechanism.
+  * New Intel AES assembly code for 32-bit and 64-bit Windows,
+    contributed by Shay Gueron and Vlad Krasnov of Intel.
+  New Functions:
+  * CERT_AddExtensionByOID
+  * PK11_PrivDecrypt
+  * PK11_PubEncrypt
+  New Macros
+  * SSL_ERROR_NEXT_PROTOCOL_NO_CALLBACK
+  * SSL_ERROR_NEXT_PROTOCOL_NO_PROTOCOL
+  Notable Changes:
+  * The btoa command has a new command-line option -w suffix, which
+    causes the output to be wrapped in BEGIN/END lines with the
+    given suffix
+  * The certutil commands supports additionals types of subject
+    alt name extensions.
+  * The certutil command supports generic certificate extensions,
+    by loading binary data from files, which have been prepared using
+    external tools, or which have been extracted from other existing
+    certificates and dumped to file.
+  * The certutil command supports three new certificate usage specifiers.
+  * The pp command supports printing UTF-8 (-u).
+  * On Linux, NSS is built with the -ffunction-sections -fdata-sections
+    compiler flags and the --gc-sections linker flag to allow unused
+    functions to be discarded.
+
 -------------------------------------------------------------------
 Thu May  8 05:46:17 UTC 2014 - wr@rosenauer.org
 

mozilla-nss.spec

@@ -25,7 +25,7 @@ BuildRequires:  mozilla-nspr-devel >= 4.10.5
 BuildRequires:  pkg-config
 BuildRequires:  sqlite-devel
 BuildRequires:  zlib-devel
-Version:        3.16.1
+Version:        3.16.3
 Release:        0
 # bug437293
 %ifarch ppc64
@@ -36,7 +36,7 @@ Summary:        Network Security Services
 License:        MPL-2.0
 Group:          System/Libraries
 Url:            http://www.mozilla.org/projects/security/pki/nss/
-Source:         https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_16_1_RTM/src/nss-%{version}.tar.gz
+Source:         https://ftp.mozilla.org/pub/mozilla.org/security/nss/releases/NSS_3_16_3_RTM/src/nss-%{version}.tar.gz
 # hg clone https://hg.mozilla.org/projects/nss nss-3.16/nss ; cd nss-3.16/nss ; hg up NSS_3_16_RTM
 #Source:         nss-%{version}.tar.gz
 Source1:        nss.pc.in
@@ -278,9 +278,9 @@ s:%%NSPR_VERSION%%:%{nspr_ver}:g" \
   %{SOURCE1} > $RPM_BUILD_ROOT%{_libdir}/pkgconfig/nss.pc
 # prepare nss-config file
 popd
-NSS_VMAJOR=`cat lib/nss/nss.h | grep "#define.*NSS_VMAJOR" | awk '{print $3}'`
-NSS_VMINOR=`cat lib/nss/nss.h | grep "#define.*NSS_VMINOR" | awk '{print $3}'`
-NSS_VPATCH=`cat lib/nss/nss.h | grep "#define.*NSS_VPATCH" | awk '{print $3}'`
+NSS_VMAJOR=`cat lib/nss/nss.h | grep "#define.*NSS_VMAJOR" | gawk '{print $3}'`
+NSS_VMINOR=`cat lib/nss/nss.h | grep "#define.*NSS_VMINOR" | gawk '{print $3}'`
+NSS_VPATCH=`cat lib/nss/nss.h | grep "#define.*NSS_VPATCH" | gawk '{print $3}'`
 cat %{SOURCE3} | sed -e "s,@libdir@,%{_libdir},g" \
                      -e "s,@prefix@,%{_prefix},g" \
                      -e "s,@exec_prefix@,%{_prefix},g" \

nss-3.16.1.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:fab750f7d34c09cf34df25da1924a9a8f4c7f1768e2d456f8be767ecbbe84a6e
-size 6409506

nss-3.16.3.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:657711ff7a4058043b69019a66f44101d0234eae2b6b80ab900439dbf02add60
+size 6426732