xca/xca.changes

-------------------------------------------------------------------
Fri Oct 16 07:13:41 UTC 2015 - ecsos@opensuse.org

- update to 1.3.2
 * Gentoo Bug #562288 linking fails
 * Add OID resolver, move some Menu items to "Extra"
 * SF. Bug. #81 Make xca qt5 compatible
 * SF. Bug. #107 error:0D0680A8:asn1 encoding
 * Don't validate notBefore and notAfter if they are disabled.
 
- previous changes from 1.3.1
 * Fix endless loop while searching for a signer of a CRL
 
- previous changes from 1.3.0
 * Update to OpenSSL 1.0.2d for Windows and MAC
 * SF Bug #105 1.2.0 OS X Retina Display Support
 * Digitaly sign Windows and MAC binaries with a valid certificate
 * Refactor the context menu. Exporting many selected items
   to the clipboard or a PEM file now works. Certificate renewal 
   and revocation
   may now be performed on a batch of certificates.
 * Feat. Reg. #83 Option to revoke old certificate when renewing
 * Refactor revocation handling. All revocation information is
   stored with the CA and may be modified.
   Revoked certificates may now be deleted from the database
 * Support nameConstraints, policyMappings, InhibitAnyPolicy, 
   PolicyConstraint and (OSCP)noCheck when transforming 
   certificates to templates or OpenSSL configs
 * Fix SF Bug #104 Export to template introduces spaces
 * Add option for disabling legacy Netscape extensions
 * Support exporting SSH2 public key to the clipboard
 * SF Bug #102 Weak entropy source used for key generation:
   Use /dev/random, mouse/kbd entropy, token RNG
 * SF Feat. Req. #80 Create new certificate,
   based on existing certificate, same for requests
 * Add Cert/Req Column for Signature Algorithm
 * SF Feat. Req. #81 Show key size in New Certificate dialog
 * Distinguish export from transform:
   - Export writes to an external file,
   - Transform generates another XCA item

-------------------------------------------------------------------
Tue Mar 31 09:28:37 UTC 2015 - ecsos@opensuse.org

- update to 1.2.0
  - Update to OpenSSL 1.0.2a for Windows and MAC drop brainpool 
    extra builds
  - Use CTRL +/- to change the font size in the view
  - Add Row numbering for easy item counting
  - Support SSH2 public key format for import and export
  - Add support for SHA-224
  - add "xca extract" to export items from the database on the 
    commandline

- previous changes from 1.1.0
  - SF Bug #79 Template export from WinXP cannot be imported in 
    Linux and Mac OS X
  - Support for Brainpool windows and MacOSX binaries
  - SF Feat. Req. #70 ability to search certificates
  - SF Feat. Req. #75 show SHA-256 digest
  - RedHat Bug #1164340 - segfault when viewing a RHEL 
    entitlement certificate
  - Database hardening
  - Delete invalid items (on demand)
  - Be more tolerant against database errors
  - Gracefully handle and repair corrupt databases
  - Add "xca_db_stat(.exe)" binary to all installations
  - Translation updates
  - Optionally allow hash algos not supported by the token
  - Select whether to translate established x509 terms
  - Finish Token EC and DSA support - generate, import, export, 
    sign
  - SF Feat. Req. #57 More options for Distinguished Name
  - Switch to autoconf for the configure script
  - SF Feature Req. #76 Export private keys to clipboard
  - EC Keys: show Curve name in table
  - Support EC key generation on PKCS#11 token
  - PKCS#11: Make EC and RSA signatures work
  - PKCS#11: Fix reading EC keys from card
  - SF Bug #82 Certificate Creation out of Spec
  - SF Bug #95 XCA 1.0 only runs in French on a UK English Mac

- previous changes from 1.0.0
  - SF Bug #89 Validating CRL distribution point results in error
  - SF Feature Req. #69 Create "Recent databases..." file menu item
  - SF Bug #75 authorityInfoAccess set error
  - SF Bug #88 Minor spelling error
  - SF Bug #87 Unable to set default key length The Key generation 
    dialog now allows to remember the current settings
  - Do not interpret HTML tags in message boxes
  - Overwite extensions from the PKCS#10 request by local 
    extensions. This avoids duplication errors and allows to 
    overwrite some extensions from the request
  - SF Bug #78 replace path separators in export filenames
  - SF Feature Req. #71 Add KDC Authentication OIDs to default 
    files
  - SF Bug #82 Certificate Creation out of Spec
  - Add Croatian translation
  - SF Bug #83 Inappropriate gcc argument order in configure script

-------------------------------------------------------------------
Thu Oct  9 10:29:12 UTC 2014 - mrueckert@suse.de

- added 0001-Fix-for-openssl-1.0.1i.patch
  From http://sourceforge.net/p/xca/patches/14/

-------------------------------------------------------------------
Wed Jun  6 20:37:43 UTC 2012 - chris@computersalat.de

- update to 0.9.3
  * Fix double free in a1time resulting in random crashes
- fix License (http://spdx.org/licenses/)
  * BSD-3-Clause
- rebase patches

-------------------------------------------------------------------
Mon May  7 18:42:49 UTC 2012 - chris@computersalat.de

- update to 0.9.2
  * Support for Local timezone dates.
    Differentiate between invalid and undefined dates.
  * Fix Bug #3461403 Error when create certificate with CRL distribution point
    User error -> Improve user-friendlyness
  * Fix Bug #3485139 Exception when creating certificates in passwordless db
  * Avoid very long names resulting in duplicate names in the database.
  * Add warning colors for expired dates.
- rebase patches

-------------------------------------------------------------------
Tue Nov  8 22:32:27 UTC 2011 - chris@computersalat.de

- update to 0.9.1
  * Close bug [ 3372449 ] All numeric names cannot be used
  * add search functionality for PKCS#11 libraries
  * fix ASN.1 encoding of PKCS#10 request
  * Close bug [ 3318203 ] Build failure with GNU gold linker
  * Add x509v3 extensions to the list of selectable columns
  * Close bug [ 3314262 ] Incorrect "Path length" template parameter handling
  * Close bug [ 3314263 ] Unrevoking a certificate does not make it "Trusted"
  * Feature Request [3286442] Make success/import messges optional
  * improve Password entry
  * Improve SPKAC import
  * add french translation by Patrick Monnerat
  * Export requests or certificates as openssl config file
  * Support building with EC disabled
  * Close bug [3091576] Private key export is always PKCS#8 encoded
  * Feature Request [3058196] Autoload database
  * Feature Request [3058195] Export directly to the clipboard
  * Close bug [3062711] Additional OIDs
  * Close bug [3062708] Invalid user configuration file path name
  * Fix PKCS#11 library handling
- remove obsolete Makefile patch
- rework configure, desktop patch
  * remove version from name
- fix deps
  * remove obsolete dos2unix (COPYRIGHT got fixed)

-------------------------------------------------------------------
Mon Oct  4 21:14:15 UTC 2010 - chris@computersalat.de

- update to 0.9.0
  * support loading more than one PKCS#11 library
  * remove the need for engine_pkcs11
    now more than one PKCS#11 library can be loaded and used in parallel
  * Add de/selection of columns and add a lot of new possible columns
    All Subject entries, the subject hash and whole name,
    Certificate fingerprints, dates, CA info, CRL number,
    corresponding key of certs and requests
  * Improve CRL generation [3035294] CRLNumber, CRLReason
  * improve creating templates from cert
    - enhance parsing of CRL-DP, SAN, IAN and AuthInfoAcc
    - add support for CertificatePolicies
    - unknown extension are written as generic DER
  * improve date handling. "notBefore" is not reset to now anymore
    when applying a time range
  * Support dropping files onto the application
  * russian translation by Pavel Belly
  * support loading DER formatted PKCS#8 keys
  * ease commandline use
  * add DH param generation menu entry
  * improve token handling and PIN changing dialogs
  * improve key-value table input for "additional DN entries"
  * PIN and PUK changing implemented
  * apply partial template-contents
    - applying the subject only or the extensions only is possible now
  * add informational messageboxes
    - whenever an item was successfully created or imported
  * add support for random serial numbers
  * improve messages, usability and german translation
  * improve token support
    - token initializing
    - creating keys on a token
    - store existing keys on a token
    - delete keys and certs from a token
- xca 0.8.1 Tue Jan 5 07:52:03 2010
  * fix string conversion from QString to ASN1
- xca 0.8.0 Thu Dec 10 18:44:03 2009
  * improve documentation
  * improve file-dialog handling
  * Generate Template from certificate or PKCS#10 request
    -> Feature request [2213094] and [1108304]
  * add hash algos "ripemd160" and "SHA384"
  * add the "no well-defined date" from RFC 5280 as checkbox
  * Feature request [1996192]
    Include "OCSPSigning" in misc/eku.txt
  * Support for EC keys
  * Update Step-by-step documentation
    Thanks Devin Reade
  * Support for Smart Cards
  * set proper file-extension .xdb on opening databases
- reworked patches
  o Makefile, configure, desktop patch
- remove obsolete uint32_t patch

-------------------------------------------------------------------
Sun Jun 20 17:38:35 UTC 2010 - rpm@scorpio-it.net

- fix build for 11.2
  o added uint32_t patch

-------------------------------------------------------------------
Tue Oct 27 18:24:14 UTC 2009 - chris@computersalat.de

- fixed deps for SLES 10
  o qt-devel

-------------------------------------------------------------------
Tue Oct 27 15:19:34 UTC 2009 - chris@computersalat.de

- update to new version 0.7.0 
  o removed 0.6.3 patches
  o added 0.7.0 patches
    * configure
    * Makefile
    * desktop
  o cleanup spec
  o moved changes to .changes file

-------------------------------------------------------------------
Sat Sep 22 15:15:10 UTC 2007 - rpm@scorpio-it.net

- initial package 0.6.3