pki-util-javadoc-9.0.20-1.fc15$>m#ЍM] }|>8` ?_d ! U #)0? ,?  ? (? $? ^? `$?e ?k[?qq?vvvwH(wr8w|#9x#:~#G?H?I$?X%Y&\&?]+ ?^DbJdKYlK^tKx?uPt?vUpwU?xZ?_e_f_Cpki-util-javadoc9.0.201.fc15Certificate System - PKI Utility Framework JavadocsThis documentation pertains exclusively to version 9.0.20 of the PKI Utility Framework. This package is a part of the PKI Core used by the Certificate System. ================================== || ABOUT "CERTIFICATE SYSTEM" || ================================== Certificate System (CS) is an enterprise software system designed to manage enterprise Public Key Infrastructure (PKI) deployments. PKI Core contains fundamental packages required by Certificate System, and consists of the following components: * pki-setup * pki-symkey * pki-native-tools * pki-util * pki-util-javadoc * pki-java-tools * pki-java-tools-javadoc * pki-common * pki-common-javadoc * pki-selinux * pki-ca * pki-silent which comprise the following PKI subsystems: * Certificate Authority (CA) For deployment purposes, Certificate System requires ONE AND ONLY ONE of the following "Mutually-Exclusive" PKI Theme packages: * ipa-pki-theme (IPA deployments) * dogtag-pki-theme (Dogtag Certificate System deployments) * redhat-pki-theme (Red Hat Certificate System deployments)O6x86-17.phx2.fedoraproject.org7MFedora ProjectFedora ProjectGPLv2Fedora ProjectDocumentationhttp://pki.fedoraproject.org/linuxnoarchH?5);&Y25{_)CFN)UM>;&N@Cl (&Nn){)}C2UO1XA 1518~1W8,1>1>2wN81d>Z"2B1U191@2IV1K05X&)+&1mF. >#+#"Q*M"-:9$8$S+&91E14K0115>o(;1(?BFBCC-C41BG DiCO#A0A.A2CbSBO9@D}IBBBC!XLDBBB6B!mMR(,BwBZ.B+*2`BDBKBE!C:Dmb&g1:-]lvblb%WDv&&%'Nl!OE7#Y0~=QvFH%JS5%wm w# 9!2oA큤AAAA큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤A큤O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6O6lO6O691ae6d5132984a54e99680b610cc376d8b13fa37e3f3005925253b71373b77e7b1ffaf079b43c2447e6919feb31be0f57a89e39dda49dc15e5abdda8d7dfe4d461e8cfb020ffc31b25abf6592a5e0e3992353c911d58803a45a942fb77d365065bb861d5500d96876b8e010b4d85baa4534dc7f575736a7d43f8f0cc0502defd6b0cf54d15c63c60b42f6dbfe62b963634e55fdc2d577983bdee3c8499432a97f1768d9e01783b81c1af2a13941d10d53ed52bf2408486cbd1a1e34651a99db3104b431675633fdfaea7f07bd95755e89dbdd9b02085d7d5bb2cf97fe98ddaae3c885f17dcf0f3cbb310673d2099fbb67988cd73d5fee67093f4407d122fb312d34166386eb0265eb76b32801dfd349036814535e6eda6e104ea9fdda5f186078197a57d5a752d4e0d9dcb225ed7e507413e7772a065ebdbb226e81a1c07fc88cfaaafd5fc1d78dadf40cf11bed54bfd886a0f3900467fa1f60a59bc8bbaf693611f4166a23865081c65e985283707e0fe22c389f803375151938f5f76e388adc81e5b8d6fea2848d72fa14f3722627d196186cd6f4b51d65e025fd68a3cd9fe251bc2d4ba701bf6653c5bcc2219ac9eb819b05be36d108aa1172590d16464ae835eb1b92437c96a85006ffda189784a687e6016aa0e12e92efd8852c3a4a63ffa4722f3996f3aca3db33d44002b718a631ecb59f001091fc485fc124c49d7dee20c3a73e188e587fca409ee5e9132266d75477d73e94fd66a1cc80cf427927f02080b88d5ff01819b508cc94cc5d9f8ef567910464caa9e0f2d593dbaeba64408e85c505ed3ce4a4403e7057127859ce3031477aa769a1cb1e74a0cdb972bb5a3625d779972d49878afa9d8ced76a01f8aae15796d1a16b0fb2dd0f8f9494946dac89accf088160cb13dbb260c785d7120c8b8e532d6a4b613570f6c326b4a090375e11c603de83d1ba3bc282166e5ab4ed85f845fd7c79c3417a5433f3add9405a08c4679c43036ab505983e3604af04df38cbd161692614d2806c7e29b33c00abb293f6aae0d03c63b4070d38ebe7b2f755ebd4c8514bbaa9d6cd9ad75b2077e7cdc52286516ce82528ced65153de810b72d3857ea753682507d2d2630601e708ea14303c22458b8529db0d4ab018f464567fc8d7cb38e1089a4605ff2b8aa0b3dedc90ffea76b0f42bfe3fa45867654074b6f0849e8771eb9694f4facf89e207982c888925cac422f4d719ad6d7635a9eb95e8bfd80176d5967f022316d0da86644f003369de2d0a419f8be7e9e17ec97bbbcca8ca26649015177856e75a34c65bfb82e90bf40b67b9f12e6d017e56d645bb8104cdbab87909e7d25c653dcfd5e4ae767533d682a1dbc3edc86366800880adaa21fe871962b90ec8b7b31d587c7a7d7fee7de9d34d3e8023eab88dcb5b353d296258c09e37bcc9984e62907db59c19dcd2676698a8a16df507acdf15c569bd748c3388463d3c691620e5db38fdab3d8a88f73e3d8b2b936f1436056d6e4f95307a57d3c4e0e3f14a85ca87363d984dfa6edf7081f1e1e7a34c5865631f73f14f2e2b3e17cda1307e64acfddd4bc7e9e4fd09bb4fa25890b99f2f9a0d1dd306c70b771cd13e78b5168d4a0596b696c07858170bf98dcf9dc01712941b495f5d7c1e8f66dd6e730b442daa52ba3b12c7686d06c99d8d0c0fa805f52c3befddb3d35a1a26d37a92efdaccff93fbde7e09afd4ce35a8e416a1275404aef467f23642fda85dac103cb12803ea3196e6812790882205944afeb59294b4859855ecc9dca248b663822e3c557fbb4b5f31d1cae501b966c7f6e83e185c5a2b3095628f9f706c420ba35bdcee92d8bfb2e7ba2b7ea3d091a9fb0aca30e9688b21935fe3a36e8437f209b31e9d388367fe2a7ce6627bd31737ff216eede1e61932ea33dd714d42a6f9dd2698348472c262b385de81921c96d9500b02ace8f7bb88c89d7bb5fcf7d3d60bae329e2a99274123d55ee4f46c20c4cc1f6ded0ca5a9c5f1424559940bd59cd46d8ad85ca48ebe5d96ab2b5e17c4adeccb9e9c73659629c25ceb55a0479d9637d04075f96f14b87a8dd9ecda1b6f7f3f3a1ff2f7d35546a95f73cb4146f67e97e8c7733fe8f9452ed37e50d44b867df5ef8c039eb1570f4921a91787dd64010f87ffa2d85f658aa23c7f692bb98d8f39e7ad17ab1a986d606d5ff0a7678f97f25d50d8d4926fb3a0c22ce669e918c9b5f487e407c906eaa57f06ed6b6b50b8c1b967adbd7ccac4066ad0a132b26d101e4f9baef3c4a303e31fef242d87aa2ceac9db773b287c55437ce28468dbd4ba6f7856f695d2751dbd7ed19e997529e29beb903960105f09ea60b7c63dcde89343bc8445daba2672d0cee6365c1b36a723166927f1bbc655d1fa2d3680b0aceea6c73c50b1f9be7e6f0d1615e2c2c59bec16787cbc889512ba3409b3e14cd7b18bcfb5e63410cded82a5cbfa408202c27b63e011f2434db01e88089df30689a81306bad554491146fd2431f96041289e30c2351424a5cd8b3531406d27d862b7df079765051447f67fa9e4778e262b71cfd66f5d770b3e232260e9b2cab73a4c27bb4fb3e6b60e136b3f28a67e409af9ed7d54b4b010dcdaa595d54871735160aa1f76824bc7760476da12847b90edf90b534013b874507b0b4e690e63c7a44dde0f8c3d840791093f1db58e949595070b59275b2eee0200cde41da34fdc05efe144cb478cef2fbaf92dd062257e1e3b0c93618efd28d86ab495bcf6b8361952880f07aec892960dc644563770a04a341a58ffbef9287e5d54ce471bb4498530b76e2683cd4edd848c7ee4a3c6b842fe90410e004bcc4abea20ff257ef007a7c388dda5689b48fa19f9edbfeece6522119b8c12956afa55d7bc7e157b90b851241c3d365a8f2b805726d30c019664b8b442c6704798f82faff3249c18b3e16663b38b2780e126b3cb936a59e9d5092d73ee9baa66653aebea861ab787b977b9c34de280cc429f8c13b4609a74312928fbe7fff38a75bc0d6ee32e7cfb90b728bb82f11125a379a89c412a2fb5f4009fb6f27ccafd90cd32aac7ca4f3fe8b87eaed1dc90aff0d68a42addf3d3d244213c6634851f3f4a3d3efe89cf5f4e8ba32429748335a8831e0e88abbd3b60ba942a9034997da8a2d894e0132a7a23b3bbd8b1e48244003442fbb75d3f305c0da23c497143644cb659ec483b5a399a8dbe9e5f733a92177f02e5185e6f3a9fe1e93d67cc112d2a5bd349a1617c70f1c921e711ee8fc80bc175e26a99bdcc1f0e48d58ae3ca56e1cc036493330325c0444ef86fd05566bdd4714b4af444494ec568aceabe384ab77a76dcb2b086fe6bd273e83f2be00bdf5eba599bc9e21b3f1eaa6675a2ec60b25a0cec3d953a6069f334dd8a0e8571681c92ca8048d3a798df830cb92d1fe6b34c6d2938493aaf3eed40360525aea392b9d8bd1c57024f6a122d11adb527bbd83e7af8c629c1008aeb4a50ff765eb3a70a2fdbfcf46b059da0e5480e4219b8129cb5beec8ea9931cc7a4930925e1f334d90f1de679c0e6e842dc266992206a69b87da877c0c2d82891e88333f24bbd13eb613021e79e4d399a8bc55ef0a8b188cc2ebe4f586b474821c37b1ad5a53cc17d3a38fd1c4d67109f1a870c6ce33d8adc2f2b12c5c00f6f3ddeaf569e03c2aa3fc4e04e324e7c0699dbdb62c265832fdf0e0eff56e80b9dd38e7549b8e6f36af2015f37114a9660a289072b620c480e4f3f4bf6b71895bae7d29a046cc690e351ab9691e4dcb34f468d366f31dc261181fbc695c3b4bfc25c37fbe3c65de5f999600ad0cc773fcb4515f736a4c6a19427b8274e84d703e0ced8c862bc28d6ea799b1eec6fec94649386fad376366e8ab2e92b5c7a909c1a6a250980a55b11a4e2f537f7af174bfc6ce21a054a804ac87c57c7e04ee9bbcc70aa79b95ec29adb309becd23fdba995f59bf5db39f973d1878fa3b025ffe1d8788dda0de0266518613114fc819124c8b04da697c39a4e490cd6e3dde183f5dfd444a7108ea57a21217d5d7dc4a827b1ed8c074e2383e1e222b37f6a84e01e7aefc5973b38fd06ce7b8a31dc98eeeabe3100d81af1c0ddb48c9be8765be0a8d1e8c46e7966ade9259c4965a502441ea1a50b7b783b3db0965ad385fee803b92f87a97ef7f67b069ae308130d8b70585193bcea9f15f6104bc0a1e8470bfa70a5ef62b8ca251b94194bfc08e987fb722ff41f8a3b69b37bd878c2cf0524f79200c243f7d77ef5226af477950cf8c7f60c8c5465d0d18e547e7efb03a779417d42600655856fa47cf70af312e7dc000a39cc302ce1903168a3e49de6f910f274847d595a87c44d8f3f03028507c3841cdee28ffeade9f7b0edc779737da0a0e7abe12b8be20ffb94bb8f1a263d86e1e11b828317c100449e3c9f6dc7ee3345ff8fb4abc46ce536695077395e30957349e2d3f7dff2674cba86fda6d1a6107e9e36ab3abda7e7fc7123850ade16e86d5cc59754c58dcd599a2a170b578b589ff26298becfd29597704e29e7824ab1634c56b02ae422ba9b9d6ff9e3719a574233713a7b8b01aab63fd28db34fd476ab3f5354d5992a8999f5ee7b4c847150bfa8b3f817330559413e7aef20e9036f9a9f6c326d08c7725a445a0cbc91189443768396a7c8d0998bfc16c93787900fc0bc1040fd48eae563a174647df0cae4fb183a9e136ca2b5b3976848a5a435dea695b131f52811380598734c08766be0557539f2df81d113bbb1256211ab2be9a592d5780d01f2ee9b0e8648904e4c98b1adf49c9c6de62bd1cb5e1732eadc84e46ac91e69adb6f0f74d852fec59652612898efcda0797f39f781126c1158a11e30c48bee9e99b572e6107a4511438032b4daa168486e178e2e58d4adb5c8490dd159b7b62cdd084636847fd86006ead3138ac9b1fb86b2a99e91d887fba3b85d42ae1708733123836d5b0d443c816e6d68e0c82c4d937d67ac6fdce3a48b4a8febe14e337abf3901abc1116b71751bf15b4ac6ec016e8c136a69701a25a88f5bdf09410edb8906bb8603452780188a4bbe4f8ed5b2439310f57a43b2b1d52466db1107ae40aa77257ec3835a3de1ee839ca9310f64d72523bfaf3e0f208f01eb735bfa8a92640fa3d23f4a2ec7af891746fcf4f978e10ea7b27f6ee7034377b393c54c6394a278f0a3a6bf982386ab5fc759e77916e7434af35c3cbac26716a4683aed701eddd23ebe582e1f2ea4027d37aa08aceded0b12b607f873ba6fb25469257dc62c92d3fc4e1bc93c5446e3c66bacc047b9a86cced2d8f2962df93ea8fb73718ce8e8b53894e8b7d0c96e2f98bb33d7e80fef0cef541a5862812155dd41404fa3cc4965a2a3ebb504b8b231e2a9ddebbd7f50b0b5ad1aa29367d2bd8c02ce697292f01eb2a4edb364f66c586f4c92f676735c3da19ce09b059b5156ab327b0cc486269eac77835e78d7ac4ba71309f782a636d8aacf50c897442be4ff99182ee8ee17e81c218ff3567c0b4784b02399b0995f3db5b8fe8b63228ae77056163ad1e83c5534d785b61c88d1d5224c5e2814db5ee4c15b40cbaf9dff8cf0793a6df1dccf9963631aa9dc80c06bb9f0f04747fd72c3da4d6f71ba5c27f37b438a4252021e8e074dd058cba6e5d4db4dc58a708c26e20268fda1fbb2bd9242dd22075b234dbc7ebc6df2b2d6e62eac17029173f7769aa4ef6365928e2b0418335250138ef21f93bb44b10d4239ae54f50ae2385849b800d744b04d3ff2b2bab46a33b46608c108d3d94a56a7c01933ab7c3d092fc5eba6d5cb8938237a6deb5a517541b751b36dc3c0736a338ff14508e15ff61aeba7562da22bff6919310172f6c528b9cf1aff09bcc01e0132a705c7db109352b096700073e0f614946d2409d20301fa3784372b393087b94bfd8dd22a21e7dd440b9c902805be349a4808973e89c2589b84c97d0839b405f7ee641d27d030d9c0e197cbabb25133b880c3e4a112dfa7be0de72b3221fb58184b22a289ad563949d335a58efeb90d04e0b6ff0c060c9947893c801d6d6f5f69b398e7997ce92d58c8701adbb284c2672d5d55e21e5fd33551c1a689056229672dad612a26c6c65443b5674891cf8af1465e1b111ed0ced01f8a8b20e4c922ccb44caa915f12ce46f1074f63f6de9bddb09fb48fcee44f6e0834a1aa9e8ca7cd23579fa97eab8f2da010d4683d6a294d90aab5db3d9309af15c3024668901590d62b0d37921c0c04046258b748ca5b2ce11a6b80b4cbcf3d90a68dc4b0913016b1308c4904a8eba344728cab5882db8a8bfec7d84b6322d3a259823e819efee7a81cc851c93c57e57c08c51f9b2a0a9757e158f78c4c319f5f598396c4e2d2b1e53df3399f6d121fe334e854617c43b0cdcb471d11a92a6fba2e96df00e611cc1fed0cbc86d2bfb13a4f81bc6e68fb036d105e1266835da73a33b86c19f1b2e699b173c6e5c87bd81448e90e6a34b94aa3d26a3c85466ce201bf3534f8e91169563bec4adf8de80b4b7542b758f1becb69ba6b395b3f53d0d104e9b1be192a9c4961234023f4d74724a032f38bccd9c5211953b13576d3dbb84e83f85274ea2d51273d07546c6820cef60a426174871b24830c74f70b1267da461e422dc0138a05d60162a16e0fc779fdaf217668f31ad3d96e090e3a02a1a180804519bbd6ea6607c3ead2210b9e85975294cbb9a71aeb2702bc6dba9de9ffd821a2934eaee3d54c9f167a09513bec4d582a21834000b3b29cb1f4d2d51c4dfa6d716ad3144ce111e22da6fc6429f232ce097924eeb56e67fc5b5ce1ae624c28a19598ffc9501aef60a0a13eedf80928cb340aa92645888ae9e70b6b4b4929672962882d2db24f9edaca4a99e1a29500a6c08595f390a2c5770d8187df8af8c09b6229cfa5674fd887d618d523c0f172d68a7528eed955e494c439b82cbbb63ea7240d7c5b74464c55d0a3c0bade8b617f2d3d8a9e4ec215fb393258b6b480a361e0a9deb54f3ab6df10b3452ce5bb5d82a79c9ffdedbaa3e36d663b8b2b6f2a741bbf368d40a14c2eda96e516396e523fbbed6150f1690bf2b04645cce9d89dab886c3578fb5183dc9ab4251bf72c494e6adf177e18936bfcd35b14480f5fff167edaf454b6fe5623a4563417ccd54a10f706573c5e4b98727b85eaa62c637a6951a0f1a54deddc2bba8e92a1b6c51ac49b2c269a755ed0085ba58356c79a9c9f88266e3b10936163d8d48102c9ccb5eab02f9e3fd8e931ba761186c916d2ffaedaabafe9995e13b9e6b677be4b10c2b4d33a52394f30e2c58afbad6594ac9be82e06cc3f976bba688e87059833493b1b0d1d99bc57c3900f5fb1c85792263ffadace6161b5e2098c6384c6e8c58140ad80ec783f7205f6de6780f4093ad063ab3d35ebea1199413fdc837f279e031a12fb09cbd9fe00b39854c88fe6c66c41a51732d046ef42fac3e2edabe443bfe717d3a394f54bf85236a27190f995afac97481af4c81ab93d466628274eef82201cadf39fffa882acf208c53bcba633f771443a0aa0e459ff79e173ec7d9ca3e7e59ec3083179be9eca5778875c4a7b270de49c35466d0165731385de441354df79f3bd4c216b0724a484017e027d4ff94c53163c1d229723246e2e0bbb56416e77dbd5c0c141ec58effa337f13ef073f1e211269adce83d52ecdbb74539a1df37ec53967fdce864e2ec701c5afeddc272e7c6cc801db22f29455e5726c9b19bdc17417284a4204a3bfd2fb06c3d90552bd4041810f528dcfc7a0505ca015d09498a030a479e006b08c34468674272b31844001e7690c4af8a4bc0fbc092d24005ea54256fd366ab62071a6596e90202c182eab7c806606ff9ba285670019f52855f48014badbbe3ae166c9305570604f53059dd0f8b89cbb33fac96623603d47c5a04dc6bb9e2c9c15a90a995d66ca5d15f899e6ff9022288aa24d240b6856ac9036b9f8e4bf57333815b153bebf1e47a508536221759581188bb8cb45e88853d85a520039ac7a6c0cc8ecdcd090582436bd9eded827bee58177a88c80fc475467a07597f4ec2848ce616eb630aa08be0d3adc9286ed84ecbf5923c751a488d909d2e3c46cc976b05968f6663cd36326e871e5cedc583c8b74ac488479cbd57addf5bce1ba62ab99f47d99d9602d49888d72a1d174f4bf43bdbd0ddc47639e4fbf1bbf668033194d92b52481041a146760aaeaba49420ce32da1bff3c29519102cda43a3a1c833c1147d71127ca91115f184f1376366d9609b15014348132574232b4ecca0349af5e1095e81fe3481ab22ff12d12ee8d595bb37c971344a696385a226964780a9d13c78f776b74fe805251c7decdba01abaed7ffabfe6781c410f96023f5e4b594fa3ff4d2d4c5750c69db1cefa5d9d7da6c5fb0d2a0f92e02385e4bfc9f9bc1c677c46cc1ced987beb6a1236f70d27de9e05b5f43faa727ceb34911c9d4173943630042c7a0bfd7d9937fe91c56a0d52a907598880fb4d1ae3f9765d2567952710bb318abd787c613bc36f0339fa8d4491ae6ff1ac7ddf68d8eb98f4af74a4eb5ebe7c2c8e8df9d1d0e36ff2800c8944067a3f1970281ac07c68ce21c468d53ef9942bb52db14604308536cec32c0c1eb8062ed90a518a8f9f40037d8c3fd7ac15ce88cf6dd8babb78195381df422f51069ef359804a75fd8b4883c7cc9f2888898f7805fd8e86ac02387d1be85610ec1f20d6ab7d8b2bdea71100627e17c5940aa9e200a3a03810709a6f18dc9d2208e362e43ad9da0c93884a580922d01d9845912029c9dbdefbfb23a6ddc94771adbaf0128d9cb9c3a7da6ad04357c3ba7f7f8ad36b51a1ac6e60e862097ab66c2733ed3a802c70130871c818b8a11103cb563d766a4c9d94598a6fd7e4ff05f551708b5bd10e160e7498f7150643e6f56c70986d8044804dfb19da186414e2aa218b450d5c638c93d77830504c9eeb25ebc64032d6fd6b3a7d20df9df181283006e687d6d58da119f5ddd098b979df75ee435e7377266419fbc9b505fdecdbcdd2fecacb34eee98b6be61b51d5560caf0279ffe5a53a4ee3459a4e1d7b0501f95c1cc5d5bbc93f552346c47ef4b6b1d6e96478f1aeb5fa31d685f9e790356ecf3b3950a5d5c7f334b034680d691b5386f0cf89763bd97cf577a546276616468cc2c0b4c7a1b1b2888ed50ec31c03dc32df99856025fb9778e321ee3dd6ec2104672872605087c14ea8fc01a14ccced04121cd6c92a402657c38794bdf0ca09b3ba24cd2750368e6fcecc9dfb2ef184b097fdaa7d26f84504bec0a7aa5d25e5289a2762a9ac28a0581f9918fb121cf7fb4a8d35dbb6bdd30753b2f95fdc6a914943d1dd56272fb6662d3fdbe03f3fb3261cd5a8918d2c2d8f585dbd46199ef015dd7bf9027c1f117b0cd7b342179dfc12b5cedd25c59bbb79d9d562e1a0c8af32b15b422274436ffd7888ec18610aec020c49aad08fa4fbf881ad6b6243fc595b91fb40095e1c0799859b7ecdcdb43bb17193848e5d15a62f7453a60168e046dead6e305535ac1fb05430f37b2031956b43ee8fab02f0bce7025df4dc9ef528f78f50e5824c0306e2fd9e19440b23db7b444f2275b68081af3f3e2956ca7751db3ee1a7aaa2d1421d9adc0d09bc2592669bfc91fbf95057bf2af04c84f1d684707eb48a657164f9655fb2b47bf55a935b1bd8b3c100bbd293e2dd44c5f17fda81f5f9db49c27f321c9657e65d275e32a863f6dfb4d236b011dc8f206151303c572871bb4d879484c454b43bddae5f307ba80137d9346fa5c6c85992ade29a4ae8ad273d5b919e2f6f6f8d361db955c9dcd7879af0e191c1eb7db8621a6610727b1fb183b625644fb54d93240021401777aa5cf46a6e3f0071d862d599cd86135d02ea948f451fb98bb3269d490184616d8f9fecfa6c1c8bdd21fdd5610f350fe21e6315dee5c52713c500f17c7c141eb2a54a917a933ab8b21ae322715a2094cc3f84d72f4c61241d5d281cde844df4c756b75041782ddcc842bdc67f26fc4340a12c9c21bb17e6ade29aa6a7cc124b3461f2531d060a69de2a884e874e88ca13c9de59c480511f00969486ad350aa7498b7fb3989c33f7017d9f429358ac6064ab1f6760a5dfdd6d27ace65a439b8186ac6a8398e7c9a163a45e1360b1165d8c2fe374aef1f11ddfb2c1fccee73cd3f24d7a5267e60f688ba15ca42a1fa016da5fc01ed20d81891750c9e083a4a8a462b29f642764136c4c597207a8610a8a2877fd4c35b9c70427c5c537644105bde1ca76d91872c3eb9d18f2b530df3637163e305530870d4c336a091701f56a77c272a0ae5bad3c9242daf126c9e653bf10108e317e0236b1f3e3c105d5fd4a0e9f29243efc2fb7be2754bdde630fd29e4553be91aacae889f4e62afa8b2d3951ef5eca553e2ceaf2ec95b655951f866d400f4c4ba5e813689ae620314d5bf2f21a3f1ecb0a0c39f05d3253c60f08694a89a6da81c06137a4108dd2aba6ba7ca483170713d6f76957b4c26ed36d49e49c09a7cc88dbc290307190a27cd10494f81028b8a79f1684b895423fdd73b10a5abe3f9ab2f06321bfff47aa2e51bb6380a8d3c3f7557fb86f5c5b2c4641d1065e84465e7f61551ad97f5260ea93524a71815ec0e191fcc4bebb513600e9aa14ac9357c3dbae764028f092c813c370b69ef57f3ebcbf9eaa0fc03f97e778c63f42a76608000e181f4d72494c0ab9fdf8d74a28436a0fb7e966ca7604408cc3f8fdec333a1900363f4b749c0dc4bacc0cbdcb727dd6abe0dec917b907a985d7710dc3a72005d99a40c62b81e155db991ded299d2b266318c1c76a2d6b8b46d0660741905d95cc43a2ee3a40eaff706e310afb48bef9b052d5198b1a9517b798f32e4d595a23b31507bed08a1f65b5732885795f488ec8030c3574367e287b17e45fb4240bd4a37bf2c9df78d7bdd6561cda2901a9b283471ab768a930faa2cbe81875ad4c2434dc1d9def602a472061c96a76bac9746e61e3e62060ec04b04aed06e70b2bcb5a47c3bca1cb5e578ac36792dbb879f4ddd727f4c6b4a9ce6d88a62456c3d0fa7f1a2146e8320a76a77c97a4d5b777322ba072c2471ce6c94c1543a777908e2c18f20e1436155ea7704908df81b7c8d568bdb5a36190d7aa44dc55a6b1fa155fd0ce5e8b08b1a87a7aa254e9f320e5a5e5ad057356b4e43a336d43613367a9dfd8fbca415bf72722e046560bcdb8359e6ccf1fe70c29692a6cd1fbc5ce75b7189a901c6528d29bab9f675ed2edf07dca3b0ddb7a299256cb3dae86490187f8891613595f1963d541dcad46be076408c88b715112a10d6cf93bbddc2982c4d4554be017054ed72d36d32a00aaac060096b6e0ffad8daa468e8a24c4272fa520f52838e96c104230d725295374ea91d71d31b8cff0aa3a026e436112b5e8d103646d699c4efb756a683527c3a41f173a78c0a3b2a2953e423510b7b3c9025fc4507f853839210922b98313732fa6c09e91910b03366ab196385f13cf17fa6f87a2eb3ae4faf11a9e711e73b2045bfbe31ae19430156a1d021eed6ece0815ea82c1cce2da841b4e7eac8b8b0334333b4311b9880a10a8dcf3f5306c64f90539d143ee3de8f6ab6185c833a49c4e89ba5976ced9051c376cc70a3a36d677ea82e505f27a3dae5d8a42e36fbf1a5625b9cce36c174516dafe7fd36526874e0447d506cb298eb8a5cbb1af6610e93dc9719b55c5d1873409395160d65289434d7084fa9f0b0d7129f76562c8d4a908313bc53d34547b3bbb74541556080ec56d0537b69805ec9e192f6f64b8d11163a7e8d1bef189605f18b0044e48d2f25b77b6a609156450a2f7c6b44c0c208f7f618a048a8dd275a725757aa2ba1a71c5e1e246a304c7f80e5e9a34c9761d8cf43d17aa871567ef3fbae5062fd8414b407ce0ca5bb4eadcad02cdbc75a128aa1e2fb22cc07d8748b4e22293c2a9d9fd3b64ff448bfe4c9cedafa641d9d2a46d1bef4555c9ef9862c40129e5bbf16b19dfc63fdd1da2e166bc8b22281a480a90d5b2c2c074912fd4ec91441a0b2865f0d8da5c055df924851886fb31197bbb58cbbe17cb51367b1de9fc5e691c7f070fab83b89dc0dc83e57138323564234a7e1cc4801e5f9c352041a9d1915f62dbde05b35c53e2c75d419c7386d3bffcb1da6e716cde55ba73dceb0feb95ac0fd6749c942a6286b8b6cbffca840af15a8e7b4e437aca47fbebe1e01d2a018379c657fb6dd52035747db6f7f873824ed9cacfad8b46317d22f0be12a89ea18c4272a3362db2eef4233ca4ee7c74688174619d206168f3e47350de3f89cf8ea3d79de6d9e64622b649b3133e360fde43ebe184eb002272569ff844e2c14e513e23f489b30a7bfd5db550e84c654db16b24fa3254b64d85b6ac8d6449aa773e7651d1496cbc366d7e44bf06b57d962c05acd80ee641cb8a91cfed02e584271e453d8d48996a3f9219fa2eafe9f879e452c6dec95a878a65dc0dc0acecdd180d89955d1d396fdb2751c93a5eed708311c8fbe8a94cb75b83784f32d4c885083e5b5b1faab13747d09f3dad0d0688fcc3ea69d90e655d0db2d2818f5979f43bfc8ec5a596233e127d08d019bd60cc2f5e9be6935024a19b4a3d14e50b3775f4dfa4313845bcb68885f6205ad4d3ed9caab43218e0b2b70af6bce18aa9584c539c6bcb6de3d0c18034d7c3df06e520f6fbc22ffb18df5ed577ded9705b22226879551bb70fe2a0ff89cd08dfa50921d96f0a2aa884ab1f4f48c7f5401ceaa0aa95fabe09e23edd01b19b931cef1a59931d48f569ab7ef48472a5cb7cbf2e047c48f1cc1f47d882fe23b7d8321a27e0501a0c14506a4c32f295d68be91b8ad5014ccefc2424f55ac6eab07de7a5635c36a9c37a6792e4fa8ee7e37f42db8e0089a15eb3aae489842e1c13b38f089a1c1f4c764a534e34d5153bbfdf8a7f49a089bb1798b65c3b461690bb25be9bd1d6fd936a01b8c188598e317b2675c3b2a9c21651ed566afeb4ad8e9dc1b5c3f47dfc08e2759bcca721744e6e494732049cc171fef0539e0a705a3e761a2fa1fc4a8d2cb3e37f46bf16a5cc17ad4fe6911ce99d07f3c907bc745c8a8d8fb9a666c70477dfebcefe0ffa411b107b0f63f0032ad41509013bc0213f3dca0cb17d6dfc4449c62833d8ba7153dfed5532002b9690fdfba7d75e0dc9bf08b743cb7e4b18bed7fb8a4844b7c5e6c863abccbbffd1e0f332f0b446dae6a227968324b5f8ef6e0aaa284dd53088714dddc91d0d874b81aa92e557134rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootpki-core-9.0.20-1.fc15.src.rpmpki-util-javadoc    pki-utilrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)9.0.20-1.fc153.0.4-14.6.0-14.0-15.2-14.9.1.3O@O@O O Oc+@OYOP@OLODON@N{#@NiNf @NS@NBrN)f@N@M@M@MM@M@M@MMMRMK@MJMIG@M8#M5M.@M.@L8Andrew Wnuk 9.0.20-1Ade Lee 9.0.19-4Ade Lee 9.0.19-3Christina Fu 9.0.19-2Ade Lee 9.0.19-1Matthew Harmsen 9.0.18-1Matthew Harmsen 9.0.17-4Ade Lee 9.0.17-3Matthew Harmsen 9.0.17-2Matthew Harmsen 9.0.17-1Matthew Harmsen 9.0.16-1Matthew Harmsen 9.0.15-1Matthew Harmsen 9.0.14-1Ade Lee 9.0.13-1Matthew Harmsen 9.0.12-1Matthew Harmsen 9.0.11-1Matthew Harmsen 9.0.10-1Matthew Harmsen 9.0.9-1Matthew Harmsen 9.0.8-2Matthew Harmsen 9.0.8-1Matthew Harmsen 9.0.7-1Matthew Harmsen 9.0.6-2Matthew Harmsen 9.0.6-1Matthew Harmsen 9.0.5-2Matthew Harmsen 9.0.5-1Matthew Harmsen 9.0.4-1Matthew Harmsen 9.0.3-2Matthew Harmsen 9.0.3-1Matthew Harmsen 9.0.2-1Matthew Harmsen 9.0.1-3Matthew Harmsen 9.0.1-2Matthew Harmsen 9.0.1-1Matthew Harmsen 9.0.0-3Matthew Harmsen 9.0.0-2Matthew Harmsen 9.0.0-1- New official build- Bugzilla Bug #819111 - non-existent container breaks replication- Bugzilla Bug #813075 - selinux denial for file size access- Bugzilla Bug #745278 - [RFE] ECC encryption keys cannot be archived- BZ 802396 - Change location of TOMCAT_LOG to match tomcat6 changes - Corrected patch selected for selinux f17 rules- Bugzilla Bug #796006 - Get DOGTAG_9_BRANCH GIT repository in-sync with DOGTAG_9_BRANCH SVN repository . . . - 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - Bugzilla Bug #784387 - Configuration wizard does not provide option to issue ECC credentials for admin during ECC CA configuration. - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #768138 - Make sure that paging works correctly in CA and DRM - Bugzilla Bug #771768 - "Agent-Authenticated File Signing" alters file digest for "logo_header.gif" - Bugzilla Bug #703608 - Enrollment Profile template Javascript code problem for handling non-dual ECC - Bugzilla Bug #223358 - new profile for ECC key generation - Bugzilla Bug #787806 - RSA should be default selection for transport key till "ECC phase 4" is implemented - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #703608 - Enrollment Profile template Javascript code problem for handling non-dual ECC - Bugzilla Bug #223358 - new profile for ECC key generation - Bugzilla Bug #787806 - RSA should be default selection for transport key till "ECC phase 4" is implemented - 'pki-silent' - Bugzilla Bug #801840 - pki_silent.template missing opening brace for ca_external variable- For 'mock' purposes, removed platform-specific logic from around the 'patch' files so that ALL 'patch' files will be included in the SRPM.- 'pki-selinux' - Added platform-dependent patches for SELinux component - Bugzilla Bug #739708 - Selinux fix for ephemeral ports (F16) - Bugzilla Bug #795966 - pki-selinux policy is kind of a mess (F17)- Add '-DSYSTEMD_LIB_INSTALL_DIR' override flag to 'cmake' to address changes in fundamental path structure in Fedora 17 - 'pki-setup' - Hard-code Perl dependencies to protect against bugs such as Bugzilla Bug #772699 - Adapt perl and python fileattrs to changed file 5.10 magics - 'pki-selinux' - Bugzilla Bug #795966 - pki-selinux policy is kind of a mess- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - Bugzilla Bug #771357 - sslget does not work after FEDORA-2011-17400 update, breaking FreeIPA install - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #757848 - DRM re-key tool: introduces a blank line in the middle of an ldif entry. - 'pki-common' - Bugzilla Bug #747019 - Migrated policy requests from 7.1->8.1 displays issuedcerts and cert_Info params as base 64 blobs. - Bugzilla Bug #756133 - Some DRM components are not referring properly to DRM's request and key records. - Bugzilla Bug #758505 - DRM's request list breaks after migration of request records with big IDs. - Bugzilla Bug #768138 - Make sure that paging works correctly in CA and DRM - 'pki-selinux' - 'pki-ca' - 'pki-silent'- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - Bugzilla Bug #737122 - DRM: during archiving and recovering, wrapping unwrapping keys should be done in the token (cfu) - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #744797 - KRA key recovery (retrieve pkcs#12) fails after the in-place upgrade( CS 8.0->8.1) (cfu) - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #746367 - Typo in the profile name. (jmagne) - Bugzilla Bug #737122 - DRM: during archiving and recovering, wrapping unwrapping keys should be done in the token (cfu) - Bugzilla Bug #749927 - Java class conflicts using Java 7 in Fedora 17 (rawhide) . . . (mharmsen) - Bugzilla Bug #749945 - Installation error reported during CA, DRM, OCSP, and TKS package installation . . . (mharmsen) - 'pki-silent'- Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . (mharmsen) - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-setup' - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - Bugzilla Bug #737192 - Need script to upgrade proxy configuration (alee) - 'pki-symkey' - Bugzilla Bug #730162 - TPS/TKS token enrollment failure in FIPS mode (hsm+NSS). (jmagne) - 'pki-native-tools' - Bugzilla Bug #730801 - Coverity issues in native-tools area (awnuk) - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - 'pki-util' - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - Bugzilla Bug #737218 - Incorrect request attribute name matching ignores request attributes during request parsing. (awnuk) - Bugzilla Bug #730162 - TPS/TKS token enrollment failure in FIPS mode (hsm+NSS). (jmagne) - 'pki-selinux' - Bugzilla Bug #739708 - pki-selinux lacks rules in F16 (alee) - 'pki-ca' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - Bugzilla Bug #730146 - SSL handshake picks non-FIPS ciphers in FIPS mode (cfu) - 'pki-silent' - Bugzilla Bug #739201 - pkisilent does not take arch into account as Java packages migrated to arch-dependent directories (mharmsen)- 'pki-setup' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-symkey' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-native-tools' - 'pki-util' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-java-tools' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-common' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . . - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-silent' - Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . .- 'pki-setup' - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-ca' - Bugzilla Bug #699809 - Convert CS to use systemd (alee) - 'pki-common' - Bugzilla Bug #699809 - Convert CS to use systemd (alee)- 'pki-setup' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-symkey' - 'pki-native-tools' - Bugzilla Bug #717643 - Fopen without NULL check and other Coverity issues (awnuk) - Bugzilla Bug #730801 - Coverity issues in native-tools area (awnuk) - 'pki-util' - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #700522 - pki tomcat6 instances currently running unconfined, allow server to come up when selinux disabled (alee) - Bugzilla Bug #731741 - some CS.cfg nickname parameters not updated correctly when subsystem cloned (using hsm) (alee) - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-selinux' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-ca' - Bugzilla Bug #712931 - CS requires too many ports to be open in the FW (alee) - 'pki-silent'- 'pki-setup' - Bugzilla Bug #689909 - Dogtag installation under IPA takes too much time - remove the inefficient sleeps (alee) - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #724861 - DRMTool: fix duplicate "dn:" records by renumbering "cn=" (mharmsen) - 'pki-common' - Bugzilla Bug #717041 - Improve escaping of some enrollment inputs like (jmagne, awnuk) - Bugzilla Bug #689909 - Dogtag installation under IPA takes too much time - remove the inefficient sleeps (alee) - Bugzilla Bug #708075 - Clone installation does not work over NAT (alee) - Bugzilla Bug #726785 - If replication fails while setting up a clone it will wait forever (alee) - Bugzilla Bug #728332 - xml output has changed on cert requests (awnuk) - Bugzilla Bug #700505 - pki tomcat6 instances currently running unconfined (alee) - 'pki-selinux' - Bugzilla Bug #700505 - pki tomcat6 instances currently running unconfined (alee) - 'pki-ca' - Bugzilla Bug #728605 - RFE: increase default validity from 6mo to 2yrs in IPA profile (awnuk) - 'pki-silent' - Bugzilla Bug #689909 - Dogtag installation under IPA takes too much time - remove the inefficient sleeps (alee)- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - Bugzilla Bug #719007 - Key Constraint keyParameter being ignored using an ECC CA to generate ECC certs from CRMF. (jmagne) - Bugzilla Bug #716307 - rhcs80 - DER shall not include an encoding for any component value which is equal to its default value (alee) - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #720510 - Console: Adding a certificate into nethsm throws Token not found error. (jmagne) - Bugzilla Bug #719007 - Key Constraint keyParameter being ignored using an ECC CA to generate ECC certs from CRMF. (jmagne) - Bugzilla Bug #716307 - rhcs80 - DER shall not include an encoding for any component value which is equal to its default value (alee) - Bugzilla Bug #722989 - Registering an agent when a subsystem is created - does not log AUTHZ_SUCCESS event. (alee) - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #719113 - Add client usage flag to caIPAserviceCert (awnuk) - 'pki-silent'- Updated release of 'jss' - Updated release of 'tomcatjss' for Fedora 15 - 'pki-setup' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser (jdennis) - Bugzilla Bug #694569 - parameter used by pkiremove not updated (alee) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-symkey' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-native-tools' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #717765 - TPS configuration: logging into security domain from tps does not work with clientauth=want. (alee) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-util' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-java-tools' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #532548 - Tool to do DRM re-key (mharmsen) - Bugzilla Bug #532548 - Tool to do DRM re-key (config file and record processing) (mharmsen) - Bugzilla Bug #532548 - Tool to do DRM re-key (tweaks) (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-common' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #695403 - Editing signedaudit or transaction, system logs throws 'Invalid protocol' for OCSP subsystems (alee) - Bugzilla Bug #694569 - parameter used by pkiremove not updated (alee) - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages (alee) - Bugzilla Bug #694143 - CA Agent not returning specified request (awnuk) - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages (jmagne) - Bugzilla Bug #698885 - Race conditions during IPA installation (alee) - Bugzilla Bug #704792 - CC_LAB_EVAL: CA agent interface: SubjectID=$Unidentified$ fails audit evaluation (jmagne) - Bugzilla Bug #705914 - SCEP mishandles nicknames when processing subsequent SCEP requests. (awnuk) - Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added. (jmagne) - Bugzilla Bug #707416 - CC_LAB_EVAL: Security Domain: missing audit msgs for modify/add (alee) - Bugzilla Bug #707416 - additional audit messages for GetCookie (alee) - Bugzilla Bug #707607 - Published certificate summary has list of non-published certificates with succeeded status (jmagne) - Bugzilla Bug #717813 - EV_AUDIT_LOG_SHUTDOWN audit log not generated for tps and ca on server shutdown (jmagne) - Bugzilla Bug #697939 - DRM signed audit log message - operation should be read instead of modify (jmagne) - Bugzilla Bug #718427 - When audit log is full, server continue to function. (alee) - Bugzilla Bug #718607 - CC_LAB_EVAL: No AUTH message is generated in CA's signedaudit log when a directory based user enrollment is performed (jmagne) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-selinux' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #720503 - RA and TPS require additional SELinux permissions to run in "Enforcing" mode (alee) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-ca' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser (jdennis) - Bugzilla Bug #699837 - service command is not fully backwards compatible with Dogtag pki subsystems (mharmsen) - Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group. (jmagne) - Bugzilla Bug #707416 - CC_LAB_EVAL: Security Domain: missing audit msgs for modify/add (alee) - Bugzilla Bug #716269 - make ra authenticated profiles non-visible on ee pages (alee) - Bugzilla Bug #718621 - CC_LAB_EVAL: PRIVATE_KEY_ARCHIVE_REQUEST occurs for a revocation invoked by EE user (awnuk) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen) - 'pki-silent' - Bugzilla Bug #695157 - Auditverify on TPS audit log throws error. (mharmsen) - Bugzilla Bug #669226 - Remove Legacy Build System (mharmsen)- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Added 'DRMTool.cfg' configuration file to inventory - 'pki-common' - 'pki-selinux' - 'pki-ca' - 'pki-silent'- 'pki-setup' - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #532548 - Tool to do DRM re-key - 'pki-common' - 'pki-selinux' - 'pki-ca' - 'pki-silent'- 'pki-setup' - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser - Bugzilla Bug #694569 - parameter used by pkiremove not updated - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - 'pki-common' - Bugzilla Bug #695403 - Editing signedaudit or transaction, system logs throws 'Invalid protocol' for OCSP subsystems - Bugzilla Bug #694569 - parameter used by pkiremove not updated - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages - Bugzilla Bug #694143 - CA Agent not returning specified request - Bugzilla Bug #695015 - Serial No. of a revoked certificate is not populated in the CA signedAudit messages - Bugzilla Bug #698885 - Race conditions during IPA installation - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser - Bugzilla Bug #699837 - service command is not fully backwards compatible with Dogtag pki subsystems - 'pki-silent'- Bugzilla Bug #695157 - Auditverify on TPS audit log throws error.- Bugzilla Bug #690950 - Update Dogtag Packages for Fedora 15 (beta) - Bugzilla Bug #693327 - Missing requires: tomcatjss - 'pki-setup' - Bugzilla Bug #690626 - pkiremove removes the registry entry for all instances on a machine - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #689453 - CRMFPopClient request to CA's unsecure port throws file not found exception. - 'pki-common' - Bugzilla Bug #692990 - Audit log messages needed to match CC doc: DRM Recovery audit log messages - 'pki-selinux' - 'pki-ca' - 'pki-silent'- Bugzilla Bug #693327 - Missing requires: tomcatjss- Bugzilla Bug #690950 - Update Dogtag Packages for Fedora 15 (beta) - Require "jss >= 4.2.6-15" as a build and runtime requirement - Require "tomcatjss >= 2.1.1" as a build and runtime requirement for Fedora 15 and later platforms - 'pki-setup' - Bugzilla Bug #688287 - Add "deprecation" notice regarding using "shared ports" in pkicreate -help . . . - Bugzilla Bug #688251 - Dogtag installation under IPA takes too much time - SELinux policy compilation - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #689501 - ExtJoiner tool fails to join the multiple extensions - 'pki-common' - Bugzilla Bug #683581 - CA configuration with ECC(Default EC curve-nistp521) CA fails with 'signing operation failed' - Bugzilla Bug #689662 - ocsp publishing needs to be re-enabled on the EE port - 'pki-selinux' - Bugzilla Bug #684871 - ldaps selinux link change - 'pki-ca' - Bugzilla Bug #683581 - CA configuration with ECC(Default EC curve-nistp521) CA fails with 'signing operation failed' - Bugzilla Bug #684381 - CS.cfg specifies incorrect type of comments - Bugzilla Bug #689453 - CRMFPopClient request to CA's unsecure port throws file not found exception.(profile and CS.cfg only) - 'pki-silent'- Bugzilla Bug #688763 - Rebase updated Dogtag Packages for Fedora 15 (alpha) - Bugzilla Bug #676182 - IPA installation failing - Fails to create CA instance - Bugzilla Bug #675742 - Profile caIPAserviceCert Not Found - 'pki-setup' - Bugzilla Bug #678157 - uninitialized variable warnings from Perl - Bugzilla Bug #679574 - Velocity fails to load all dependent classes - Bugzilla Bug #680420 - xml-commons-apis.jar dependency - Bugzilla Bug #682013 - pkisilent needs xml-commons-apis.jar in it's classpath - Bugzilla Bug #673508 - CS8 64 bit pkicreate script uses wrong library name for SafeNet LunaSA - 'pki-common' - Bugzilla Bug #673638 - Installation within IPA hangs - Bugzilla Bug #678715 - netstat loop fixes needed - Bugzilla Bug #673609 - CC: authorize() call needs to be added to getStats servlet - 'pki-selinux' - Bugzilla Bug #674195: SELinux error message thrown during token enrollment - 'pki-ca' - Bugzilla Bug #673638 - Installation within IPA hangs - Bugzilla Bug #673609 - CC: authorize() call needs to be added to getStats servlet - Bugzilla Bug #676330 - init script cannot start service - 'pki-silent' - Bugzilla Bug #682013 - pkisilent needs xml-commons-apis.jar in it's classpath- 'pki-common' - Bugzilla Bug #676051 - IPA installation failing - Fails to create CA instance - Bugzilla Bug #676182 - IPA installation failing - Fails to create CA instance- 'pki-common' - Bugzilla Bug #674894 - ipactl restart : an annoy output line - Bugzilla Bug #675179 - ipactl restart : an annoy output line- Bugzilla Bug #673233 - Rebase pki-core to pick the latest features and fixes - 'pki-setup' - Bugzilla Bug #673638 - Installation within IPA hangs - 'pki-symkey' - 'pki-native-tools' - 'pki-util' - 'pki-java-tools' - Bugzilla Bug #673614 - CC: Review of cryptographic algorithms provided by 'netscape.security.provider' package - 'pki-common' - Bugzilla Bug #672291 - CA is not publishing certificates issued using "Manual User Dual-Use Certificate Enrollment" - Bugzilla Bug #670337 - CA Clone configuration throws TCP connection error. - Bugzilla Bug #504056 - Completed SCEP requests are assigned to the "begin" state instead of "complete". - Bugzilla Bug #504055 - SCEP requests are not properly populated - Bugzilla Bug #564207 - Searches for completed requests in the agent interface returns zero entries - Bugzilla Bug #672291 - CA is not publishing certificates issued using "Manual User Dual-Use Certificate Enrollment" - - Bugzilla Bug #673614 - CC: Review of cryptographic algorithms provided by 'netscape.security.provider' package - Bugzilla Bug #672920 - CA console: adding policy to a profile throws 'Duplicate policy' error in some cases. - Bugzilla Bug #673199 - init script returns control before web apps have started - Bugzilla Bug #674917 - Restore identification of Tomcat-based PKI subsystem instances - 'pki-selinux' - 'pki-ca' - Bugzilla Bug #504013 - sscep request is rejected due to authentication error if submitted through one time pin router certificate enrollment. - Bugzilla Bug #672111 - CC doc: certServer.usrgrp.administration missing information - Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml as part of CC interface review - Bugzilla Bug #672333 - Creation of RA agent fails in IPA installation - Bugzilla Bug #674917 - Restore identification of Tomcat-based PKI subsystem instances - 'pki-silent' - Bugzilla Bug #673614 - CC: Review of cryptographic algorithms provided by 'netscape.security.provider' package- Bugzilla Bug #656661 - Please Update Spec File to use 'ghost' on files in /var/run and /var/lock- 'pki-symkey' - Bugzilla Bug #671265 - pki-symkey jar version incorrect - 'pki-common' - Bugzilla Bug #564207 - Searches for completed requests in the agent interface returns zero entries- Allow 'pki-native-tools' to be installed independently of 'pki-setup' - Removed explicit 'pki-setup' requirement from 'pki-ca' (since it already requires 'pki-common') - 'pki-setup' - Bugzilla Bug #223343 - pkicreate: should add 'pkiuser' to nfast group - Bugzilla Bug #629377 - Selinux errors during pkicreate CA, KRA, OCSP and TKS. - Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and port fowarding for agent services - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #606946 - Convert Native Tools to use ldapAPI from OpenLDAP instead of the Mozldap - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #658926 - org.apache.commons.lang class not found on F13 - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #665388 - jakarta-* jars have been renamed to apache-*, pkicreate fails Fedora 14 and above - Bugzilla Bug #23346 - Two conflicting ACL list definitions in source repository - Bugzilla Bug #656733 - Standardize jar install location and jar names - 'pki-symkey' - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #644056 - CS build contains warnings - 'pki-native-tools' - template change - Bugzilla Bug #606946 - Convert Native Tools to use ldapAPI from OpenLDAP instead of the Mozldap - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #644056 - CS build contains warnings - 'pki-util' - Bugzilla Bug #615814 - rhcs80 - profile policyConstraintsCritical cannot be set to true - Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty packages - Bugzilla Bug #621337 - Limit the received senderNonce value to 16 bytes. - Bugzilla Bug #621338 - Include a server randomly-generated 16 byte senderNonce in all signed SCEP responses. - Bugzilla Bug #621327 - Provide switch disabling algorithm downgrade attack in SCEP - Bugzilla Bug #621334 - Provide an option to set default hash algorithm for signing SCEP response messages. - Bugzilla Bug #635033 - At installation wizard selecting key types other than CA's signing cert will fail - Bugzilla Bug #645874 - rfe ecc - add ecc curve name support in JSS and CS interface - Bugzilla Bug #488253 - com.netscape.cmsutil.ocsp.BasicOCSPResponse ASN.1 encoding/decoding is broken - Bugzilla Bug #551410 - com.netscape.cmsutil.ocsp.TBSRequest ASN.1 encoding/decoding is incomplete - Bugzilla Bug #550331 - com.netscape.cmsutil.ocsp.ResponseData ASN.1 encoding/decoding is incomplete - Bugzilla Bug #623452 - rhcs80 pkiconsole profile policy editor limit policy extension to 5 only - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #658188 - remove remaining references to tomcat5 - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #223319 - Certificate Status inconsistency between token db and CA - Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During CRL Generation - 'pki-java-tools' - Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty packages - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #659004 - CC: AuditVerify hardcoded with SHA-1 - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #662156 - HttpClient is hard-coded to handle only up to 5000 bytes - Bugzilla Bug #656733 - Standardize jar install location and jar names - 'pki-common' - Bugzilla Bug #583822 - CC: ACL issues from CA interface CC doc review - Bugzilla Bug #623745 - SessionTimer with LDAPSecurityDomainSessionTable started before configuration completed - Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs in the java subsystems - Bugzilla Bug #615827 - rhcs80 - profile policies need more than 5 policy mappings (seem hardcoded) - Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty packages - Bugzilla Bug #548699 - subCA's admin certificate should be generated by itself - Bugzilla Bug #621322 - Provide switch disabling SCEP support in CA - Bugzilla Bug #563386 - rhcs80 ca crash on invalid inputs to profile caAgentServerCert (null cert_request) - Bugzilla Bug #621339 - SCEP one-time PIN can be used an unlimited number of times - Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml as part of CC interface review - Bugzilla Bug #629677 - TPS: token enrollment fails. - Bugzilla Bug #621350 - Unauthenticated user can decrypt a one-time PIN in a SCEP request - Bugzilla Bug #503838 - rhcs71-80 external publishing ldap connection pools not reliable - improve connections or discovery - Bugzilla Bug #629769 - password decryption logs plain text password - Bugzilla Bug #583823 - CC: Auditing issues found as result of CC - interface review - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #586700 - OCSP Server throws fatal error while using OCSP console for renewing SSL Server certificate. - Bugzilla Bug #621337 - Limit the received senderNonce value to 16 bytes. - Bugzilla Bug #621338 - Include a server randomly-generated 16 byte senderNonce in all signed SCEP responses. - Bugzilla Bug #607380 - CC: Make sure Java Console can configure all security relevant config items - Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be generated on TKS instead of TPS. - Bugzilla Bug #489342 - com.netscape.cms.servlet.common.CMCOutputTemplate.java doesn't support EC - Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable a CA that it serves - Bugzilla Bug #634663 - CA CMC response default hard-coded to SHA1 - Bugzilla Bug #621327 - Provide switch disabling algorithm downgrade attack in SCEP - Bugzilla Bug #621334 - Provide an option to set default hash algorithm for signing SCEP response messages. - Bugzilla Bug #635033 - At installation wizard selecting key types other than CA's signing cert will fail - Bugzilla Bug #621341 - Add CA support for new SCEP key pair dedicated for SCEP signing and encryption. - Bugzilla Bug #223336 - ECC: unable to clone a ECC CA - Bugzilla Bug #539781 - rhcs 71 - CRLs Partitioned by Reason Code - onlySomeReasons ? - Bugzilla Bug #637330 - CC feature: Key Management - provide signature verification functions (JAVA subsystems) - Bugzilla Bug #223313 - should do random generated IV param for symmetric keys - Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and port fowarding for agent services - Bugzilla Bug #630176 - Improve reliability of the LdapAnonConnFactory - Bugzilla Bug #524916 - ECC key constraints plug-ins should be based on ECC curve names (not on key sizes). - Bugzilla Bug #516632 - RHCS 7.1 - CS Incorrectly Issuing Multiple Certificates from the Same Request - Bugzilla Bug #648757 - expose and use updated cert verification function in JSS - Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of signature algorithm; and for ECC curves - Bugzilla Bug #451874 - RFE - Java console - Certificate Wizard missing e.c. support - Bugzilla Bug #651040 - cloning shoud not include sslserver - Bugzilla Bug #542863 - RHCS8: Default cert audit nickname written to CS.cfg files imcomplete when the cert is stored on a hsm - Bugzilla Bug #360721 - New Feature: Profile Integrity Check . . . - Bugzilla Bug #651916 - kra and ocsp are using incorrect ports to talk to CA and complete configuration in DonePanel - Bugzilla Bug #642359 - CC Feature - need to verify certificate when it is added - Bugzilla Bug #653713 - CC: setting trust on a CIMC cert requires auditing - Bugzilla Bug #489385 - references to rhpki - Bugzilla Bug #499494 - change CA defaults to SHA2 - Bugzilla Bug #623452 - rhcs80 pkiconsole profile policy editor limit policy extension to 5 only - Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group. - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets as expected - Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for validity - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #659004 - CC: AuditVerify hardcoded with SHA-1 - Bugzilla Bug #661196 - ECC(with nethsm) subca configuration fails with Key Type RSA Not Matched despite using ECC key pairs for rootCA & subCA. - Bugzilla Bug #661889 - The Servlet TPSRevokeCert of the CA returns an error to TPS even if certificate in question is already revoked. - Bugzilla Bug #663546 - Disable the functionalities that are not exposed in the console - Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs - Bugzilla Bug #658188 - remove remaining references to tomcat5 - Bugzilla Bug #649343 - Publishing queue should recover from CA crash. - Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and pkiCA, obsolete 2252 and 2256 - Bugzilla Bug #640710 - Current SCEP implementation does not support HSMs - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added - Bugzilla Bug #642741 - CS build uses deprecated functions - Bugzilla Bug #670337 - CA Clone configuration throws TCP connection error - Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time interface is no longer available through console - 'pki-selinux' - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #667153 - store nuxwdog passwords in kernel ring buffer - selinux changes - 'pki-ca' - Bugzilla Bug #583822 - CC: ACL issues from CA interface CC doc review - Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs in the java subsystems - Bugzilla Bug #621322 - Provide switch disabling SCEP support in CA - Bugzilla Bug #583824 - CC: Duplicate servlet mappings found as part of CC interface doc review - Bugzilla Bug #621602 - pkiconsole: Click on 'Publishing' option with admin privilege throws error "You are not authorized to perform this operation". - Bugzilla Bug #583825 - CC: Obsolete servlets to be removed from web.xml as part of CC interface review - Bugzilla Bug #583823 - CC: Auditing issues found as result of CC - interface review - Bugzilla Bug #519291 - Deleting a CRL Issuing Point after edits throws 'Internal Server Error'. - Bugzilla Bug #586700 - OCSP Server throws fatal error while using OCSP console for renewing SSL Server certificate. - Bugzilla Bug #621337 - Limit the received senderNonce value to 16 bytes. - Bugzilla Bug #621338 - Include a server randomly-generated 16 byte senderNonce in all signed SCEP responses. - Bugzilla Bug #558100 - host challenge of the Secure Channel needs to be generated on TKS instead of TPS. - Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable a CA that it serves - Bugzilla Bug #634663 - CA CMC response default hard-coded to SHA1 - Bugzilla Bug #621327 - Provide switch disabling algorithm downgrade attack in SCEP - Bugzilla Bug #621334 - Provide an option to set default hash algorithm for signing SCEP response messages. - Bugzilla Bug #539781 - rhcs 71 - CRLs Partitioned by Reason Code - onlySomeReasons ? - Bugzilla Bug #637330 - CC feature: Key Management - provide signature verification functions (JAVA subsystems) - Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and port fowarding for agent services - Bugzilla Bug #524916 - ECC key constraints plug-ins should be based on ECC curve names (not on key sizes). - Bugzilla Bug #516632 - RHCS 7.1 - CS Incorrectly Issuing Multiple Certificates from the Same Request - Bugzilla Bug #638242 - Installation Wizard: at SizePanel, fix selection of signature algorithm; and for ECC curves - Bugzilla Bug #529945 - (Instructions and sample only) CS 8.0 GA release -- DRM and TKS do not seem to have CRL checking enabled - Bugzilla Bug #609641 - CC: need procedure (and possibly tools) to help correctly set up CC environment - Bugzilla Bug #509481 - RFE: support sMIMECapabilities extensions in certificates (RFC 4262) - Bugzilla Bug #651916 - kra and ocsp are using incorrect ports to talk to CA and complete configuration in DonePanel - Bugzilla Bug #511990 - rhcs 7.3, 8.0 - re-activate missing object signing support in RHCS - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #489385 - references to rhpki - Bugzilla Bug #499494 - change CA defaults to SHA2 - Bugzilla Bug #623452 - rhcs80 pkiconsole profile policy editor limit policy extension to 5 only - Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group. - Bugzilla Bug #632425 - Port to tomcat6 - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets as expected - Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for validity - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #661128 - incorrect CA ports used for revoke, unrevoke certs in TPS - Bugzilla Bug #512496 - RFE rhcs80 - crl updates and scheduling feature - Bugzilla Bug #661196 - ECC(with nethsm) subca configuration fails with Key Type RSA Not Matched despite using ECC key pairs for rootCA & subCA. - Bugzilla Bug #649343 - Publishing queue should recover from CA crash. - Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and pkiCA, obsolete 2252 and 2256 - Bugzilla Bug #223346 - Two conflicting ACL list definitions in source repository - Bugzilla Bug #640710 - Current SCEP implementation does not support HSMs - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added - Bugzilla Bug #668100 - DRM storage cert has OCSP signing extended key usage - Bugzilla Bug #662127 - CC doc Error: SignedAuditLog expiration time interface is no longer available through console - Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During CRL Generation - 'pki-silent' - Bugzilla Bug #627309 - pkisilent subca configuration fails. - Bugzilla Bug #640091 - pkisilent panels need to match with changed java subsystems - Bugzilla Bug #527322 - pkisilent ConfigureDRM should configure DRM Clone. - Bugzilla Bug #643053 - pkisilent DRM configuration fails - Bugzilla Bug #583754 - pki-silent needs an option to configure signing algorithm for CA certificates - Bugzilla Bug #489385 - references to rhpki - Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface - Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - Bugzilla Bug #640042 - TPS Installlation Wizard: need to move Module Panel up to before Security Domain Panel - Bugzilla Bug #643206 - New CMake based build system for Dogtag - Bugzilla Bug #588323 - Failed to enable cipher 0xc001 - Bugzilla Bug #656733 - Standardize jar install location and jar names - Bugzilla Bug #645895 - pkisilent: add ability to select ECC curves, signing algorithm - Bugzilla Bug #658641 - pkisilent doesn't not properly handle passwords with special characters - Bugzilla Bug #642741 - CS build uses deprecated functions- Bugzilla Bug #668839 - Review Request: pki-core - Removed empty "pre" from "pki-ca" - Consolidated directory ownership - Corrected file ownership within subpackages - Removed all versioning from NSS and NSPR packages- Bugzilla Bug #668839 - Review Request: pki-core - Added component versioning comments - Updated JSS from "4.2.6-10" to "4.2.6-12" - Modified installation section to preserve timestamps - Removed sectional comments- Initial revision. (kwright@redhat.com & mharmsen@redhat.com)                                                                                                                                                                                                                                                                                                                               tVt_ttctdtettttttttttttt^trt`tbtotmt_tntptqtctltetftitgtdthtjtktutatstttfthtitjtmtgtktltntotqtrtutptsttttItEtt>tttBtAttt;tt@tt?t<t tt:tDttttt tHtJt ttt t tt=tFtt8t5tt/ttt3t2tt*t,tt1t(t0t-t"t)t+t4tt$t&t't!t7t9ttt%t#t tt.t6tKttCtGtLt[tNtMtPtXt\tQtVtStRtTtUtWt]tOtYtZtttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttttvtxtytzt}twt{t|tvtxtttwtzt|t~t}t{ttyttt~tttttttt]tWtt\tZtbtt^tatXtYt[t`9.0.20-1.fc15    pki-util-9.0.20allclasses-frame.htmlallclasses-noframe.htmlcomnetscapecmsutilcryptoCryptoUtil.htmlModule.htmlToken.htmlclass-useCryptoUtil.htmlModule.htmlToken.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlhttpConnectAsync.htmlHttp.htmlHttpClient.htmlHttpEofException.htmlHttpMessage.htmlHttpProtocolException.htmlHttpRequest.htmlHttpResponse.htmlJssSSLSocketFactory.htmlclass-useConnectAsync.htmlHttp.htmlHttpClient.htmlHttpEofException.htmlHttpMessage.htmlHttpProtocolException.htmlHttpRequest.htmlHttpResponse.htmlJssSSLSocketFactory.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlldapLDAPUtil.htmlclass-useLDAPUtil.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlnetISocketFactory.htmlclass-useISocketFactory.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlocspBasicOCSPResponse.Template.htmlBasicOCSPResponse.htmlCertID.Template.htmlCertID.htmlCertStatus.htmlGoodInfo.Template.htmlGoodInfo.htmlKeyHashID.Template.htmlKeyHashID.htmlNameID.Template.htmlNameID.htmlOCSPRequest.Template.htmlOCSPRequest.htmlOCSPResponse.Template.htmlOCSPResponse.htmlOCSPResponseStatus.Template.htmlOCSPResponseStatus.htmlRequest.Template.htmlRequest.htmlResponderID.htmlResponse.htmlResponseBytes.Template.htmlResponseBytes.htmlResponseData.Template.htmlResponseData.htmlRevokedInfo.Template.htmlRevokedInfo.htmlSignature.Template.htmlSignature.htmlSingleResponse.Template.htmlSingleResponse.htmlTBSRequest.Template.htmlTBSRequest.htmlUnknownInfo.Template.htmlUnknownInfo.htmlclass-useBasicOCSPResponse.Template.htmlBasicOCSPResponse.htmlCertID.Template.htmlCertID.htmlCertStatus.htmlGoodInfo.Template.htmlGoodInfo.htmlKeyHashID.Template.htmlKeyHashID.htmlNameID.Template.htmlNameID.htmlOCSPRequest.Template.htmlOCSPRequest.htmlOCSPResponse.Template.htmlOCSPResponse.htmlOCSPResponseStatus.Template.htmlOCSPResponseStatus.htmlRequest.Template.htmlRequest.htmlResponderID.htmlResponse.htmlResponseBytes.Template.htmlResponseBytes.htmlResponseData.Template.htmlResponseData.htmlRevokedInfo.Template.htmlRevokedInfo.htmlSignature.Template.htmlSignature.htmlSingleResponse.Template.htmlSingleResponse.htmlTBSRequest.Template.htmlTBSRequest.htmlUnknownInfo.Template.htmlUnknownInfo.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlpasswordIPasswordReader.htmlIPasswordStore.htmlIPasswordWriter.htmlPlainPasswordFile.htmlPlainPasswordReader.htmlPlainPasswordWriter.htmlclass-useIPasswordReader.htmlIPasswordStore.htmlIPasswordWriter.htmlPlainPasswordFile.htmlPlainPasswordReader.htmlPlainPasswordWriter.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlradiusAccessAccept.htmlAccessChallenge.htmlAccessReject.htmlAccessRequest.htmlAttribute.htmlAttributeFactory.htmlAttributeSet.htmlAuthenticator.htmlCHAPChallengeAttribute.htmlCHAPPasswordAttribute.htmlCallbackIdAttribute.htmlCallbackNumberAttribute.htmlCallerStationIdAttribute.htmlCallingStationIdAttribute.htmlChallengeException.htmlFilterIdAttribute.htmlFramedAppleTalkLinkAttribute.htmlFramedAppleTalkNetworkAttribute.htmlFramedAppleTalkZoneAttribute.htmlFramedCompressionAttribute.htmlFramedIPAddressAttribute.htmlFramedIPNetmaskAttribute.htmlFramedIPXNetworkAttribute.htmlFramedMTUAttribute.htmlFramedProtocolAttribute.htmlFramedRouteAttribute.htmlFramedRoutingAttribute.htmlGenericAttribute.htmlIdleTimeoutAttribute.htmlLoginIPHostAttribute.htmlLoginLATGroupAttribute.htmlLoginLATNodeAttribute.htmlLoginLATPortAttribute.htmlLoginLATServiceAttribute.htmlLoginServiceAttribute.htmlLoginTCPPortAttribute.htmlNASClassAttribute.htmlNASIPAddressAttribute.htmlNASIdentifierAttribute.htmlNASPacket.htmlNASPortAttribute.htmlNASPortTypeAttribute.htmlPacket.htmlPacketFactory.htmlPortLimitAttribute.htmlProxyStateAttribute.htmlRadiusConn.htmlRejectException.htmlReplyMessageAttribute.htmlRequestAuthenticator.htmlResponseAuthenticator.htmlServerPacket.htmlServiceTypeAttribute.htmlSessionTimeoutAttribute.htmlStateAttribute.htmlTerminationActionAttribute.htmlUserNameAttribute.htmlUserPasswordAttribute.htmlVendorSpecificAttribute.htmlclass-useAccessAccept.htmlAccessChallenge.htmlAccessReject.htmlAccessRequest.htmlAttribute.htmlAttributeFactory.htmlAttributeSet.htmlAuthenticator.htmlCHAPChallengeAttribute.htmlCHAPPasswordAttribute.htmlCallbackIdAttribute.htmlCallbackNumberAttribute.htmlCallerStationIdAttribute.htmlCallingStationIdAttribute.htmlChallengeException.htmlFilterIdAttribute.htmlFramedAppleTalkLinkAttribute.htmlFramedAppleTalkNetworkAttribute.htmlFramedAppleTalkZoneAttribute.htmlFramedCompressionAttribute.htmlFramedIPAddressAttribute.htmlFramedIPNetmaskAttribute.htmlFramedIPXNetworkAttribute.htmlFramedMTUAttribute.htmlFramedProtocolAttribute.htmlFramedRouteAttribute.htmlFramedRoutingAttribute.htmlGenericAttribute.htmlIdleTimeoutAttribute.htmlLoginIPHostAttribute.htmlLoginLATGroupAttribute.htmlLoginLATNodeAttribute.htmlLoginLATPortAttribute.htmlLoginLATServiceAttribute.htmlLoginServiceAttribute.htmlLoginTCPPortAttribute.htmlNASClassAttribute.htmlNASIPAddressAttribute.htmlNASIdentifierAttribute.htmlNASPacket.htmlNASPortAttribute.htmlNASPortTypeAttribute.htmlPacket.htmlPacketFactory.htmlPortLimitAttribute.htmlProxyStateAttribute.htmlRadiusConn.htmlRejectException.htmlReplyMessageAttribute.htmlRequestAuthenticator.htmlResponseAuthenticator.htmlServerPacket.htmlServiceTypeAttribute.htmlSessionTimeoutAttribute.htmlStateAttribute.htmlTerminationActionAttribute.htmlUserNameAttribute.htmlUserPasswordAttribute.htmlVendorSpecificAttribute.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlscepCRSPKIMessage.htmlclass-useCRSPKIMessage.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlutilCert.htmlFmt.htmlHMACDigest.htmlUtils.htmlclass-useCert.htmlFmt.htmlHMACDigest.htmlUtils.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlxmlXMLObject.htmlclass-useXMLObject.htmlpackage-frame.htmlpackage-summary.htmlpackage-tree.htmlpackage-use.htmlconstant-values.htmldeprecated-list.htmlhelp-doc.htmlindex-all.htmlindex.htmloverview-frame.htmloverview-summary.htmloverview-tree.htmlpackage-listresourcesinherit.gifserialized-form.htmlstylesheet.css/usr/share/javadoc//usr/share/javadoc/pki-util-9.0.20//usr/share/javadoc/pki-util-9.0.20/com//usr/share/javadoc/pki-util-9.0.20/com/netscape//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/crypto//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/crypto/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/http//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/http/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/ldap//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/ldap/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/net//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/net/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/ocsp//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/ocsp/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/password//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/password/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/radius//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/radius/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/scep//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/scep/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/util//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/util/class-use//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/xml//usr/share/javadoc/pki-util-9.0.20/com/netscape/cmsutil/xml/class-use//usr/share/javadoc/pki-util-9.0.20/resources/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=genericdrpmx86_64-redhat-linux-gnuASCII textGIF image data, version 89a, 15 x 14HTML document, ASCII textHTML document, ASCII text, with very long linesdirectoryxz2?7zXZ !PH6Fo(z]"k%vz`Wl߿ fUwĪݖ2zmC28!$h{mX4 -+tw3s6C4y(Vk,or8WF݌lw3lV;r1q@OSb( eCbF?RKG- 2z L|(ӝHop&,<@IVYmN"{1MxmtX9(غdMZ٧K w4Q@ L>K5o. t!b@t4&msMa_4U^M^7tNFi&}3PKj)a'<*m\׼u)&1z10 KmuW盷 žxE_\mKFp̷X B-Я)DU֦*Th7 Lߢer\&mvY}ұ "IG U7$Wp1A[΅9` ^)1Wndc1-c ߒUI\KrA)0Ɓ\+y(HcQw Qw㒨A pmZgK#Bj!K{=Ym"P:]It؋oހ$܅"q ?E#S`Bv*1+31s߰ 3+;Nļ׹8'^~etW 9ޗ)O,}tdV,p/47ti'$D+N-ԇZSlHH\Bȡ,tpm7@t 0]z;EGE|? ƄZ4{'hxYɒ 2ڊ͢ ߀#MYɣW*n''R,^: M{~h`wΐ|c3҆A 3 z8LCn[ 4k6*h}'zt q{خ8yx NQUzh{^y&Ȟ'NطM9`x34- JT9Me`;)S 36W3rhd{[xJj~I6d; 1hUuBwHUۢ`#N-'U bKuD/WpoYaO10c[Gϝ3(T{$S2{cM2p>e53\6M@8튏e`q>_DtcbK롤Uus|F !VE6KUQE`>\ IKCVCvŕ(39%n6&3цa-3H\@xug7.,^D+1bBV`Gxa3(Q nx,lHzTؗfX4Ezrn 9b& F^Fzr &MP0X;aX ^Y]z_> BG ^kR=G"oMBăJwdQx4ZS¨IGBFJ;3ZqDݫ(cl|I7%mZKS_<;e26cح,Cr EI2NԜDqNmf9>e!;gAƪ/+djhrhG-1UwA]jiS~Ng^E֐I4Hn H&Q3}\[^0Sqj> &ФskQL S !ADH%xP梍kWsĢ ŧVlGë=;\nGE9ps5%p@վ~1QEWj&/#(3gT]&:R$jV^.Hc}z7sL8AUug.ܯ~`w8hZZh{J M@`tl{v +TcY8 a LM=T`W] b˗Nk*-xl~.{&x ̜\ELnc8gC%[oD,]:u q!m .Aq_PR>7Od~~Vs Ϊ/ѓ{Omm<)l֣ғ$!=m8vB§LCH.bpɖӷpaȇa:ʼHWs&ѱ["4 ,gQa+0JoPY D|vS?Z?yM㽿 h6'$ryѓ).P4#0MGnbsW}Kw*AfF B0]J6l ap_\:硎43)bpY͍Y@+|}lQqk@0~ym.ެp& wټl@hedJ<8ErL>ᑍǍia '؎ .V5 [cLs?涣iz I:w ͏l=?}OV%-E4aZA ɠ}lQzQn|?u7@<eL += zxu)㯕(ヱ;I1 T':g:tbʗ)y{{~$ha\JO-a*'l~O3aPn_t `Jq@N5f syTѓ}P. Tfˈ #T]]y4xّ 2;*e c˚c#neM#S̷*rvYKKSr`r]e=rt@Fgm 4nZYMn8͂-o!:+ݟ "LT[zݝcB ;=!lW?)t7.'-aMj֧w|lz̯b|L..V2VW6 .A_ҢשJwP̒l|Ȋ:.!uW3ߌ@tvPS4Y)J{ [H̲otV^Wnsg^:*Uk_RMi^-`>(Q7ALʘ#L+wa;z{6rmsr\voϣ29 U#ؚt񚩸_!99o 'G5h%4zɶ cwN8C4y_U8/b\0]nH|u/Veeă]1<Z7Yx WVFZb}a\6py?L: p@ qgcGykvS%wHĠЛ_sE|i܀e Wznԝ"ah`s9k=xVV>Xb^IgjiD3A{T+ CY:[&ܤ*cU*ؐh}S ߴ!rژe-- Ž&qlb;♗[0~͖%xZԖOwޢYZg? CdN f*Wpcx }g҂9`;r/VW9@8\"r{lcoB7j»mDX\* G^7?5`yTFDexLPu 03~H,0fS"VJO6ɺy әH:c s , xa'ҦUeRZQT-Pk1rtZߢXB.q^V-euwXVIB87Vs!`D7":u&H3}i~_g!oJyCR`"Q Ef&ժpq7MӂsY$3N.ƉLɻ} AkJm.+5gK:`sNK;Ć fl:rkk.D`+v IYSe럸VyYk {bI3Ef]Q}Z*Խu "^Q@5D/T_#GXL$PȻa$:kBvrDA=xcut=~ ”bd x:$l]bb\/z T@؞-mL;F{-c>kFyd x{/40 e93$ֺJJ⛌Lxd ]G_QoBƴgELwzPX2&C 빦OnQb+rf{G;9eEF]6@1k쉰j"y@>]x{Нq>rc\v;ݏS~re&+bj`ђۓ|ɂA`^﮶n^J5]:fO7\|/43N_AQcLvM$u@MCQRFFx|P^Ӗm䩰Zj ؖƸ;amo,C,|Ru!ji|)+ʚZfge,8HqNZ>C1]Jo*! $cmʢgdC~ ?5'=_)#EO_WN2J4n3~wb] 7h<yc <_\sbcm R>*Ld~Fx+wlX/ K!)ܛPЙ)qvצ[}Ӛ.'{vu#aM7MGY3Rzx`mJqcl觸nSn*+y5>ts._@b&d?9- B`(b/q1X==񉵪LEks\ /$*l-cA~2"3a;rrzj+||S#& Qy8MŌ";ϼe͜"sŽyVI]Q{_9%GD罱QS ߊ64RZq'MMM`uYE2EQͼLu¼h v3ҨO0"_ ? A 9}N*?Gy~B8YC!2gK pTAGKlXEO>ss0e>"9O9ۥr,DtS֭'\ƕD輒o?*mGп޾L0vJ!5s3q`gMtm`gg֦+EJYmTKӲdJM1uy|#y>F]tYpey+&/l"#DnıIoKHe#"ʗ 3# ǹ|\*7cnD{:@VAl>%ݐ_ Fd ʧ-JJQx]oQjƭ9d>6Ke g$9V߅ɜLadP;Tp{24vO? &Mo]T94c^JOXZtH?[nnqprRH0ʵ JaMwq($t6l=Sbc+/|5Ұhfe&?2H 0V2>+H y_>>*&jP붌6i$ I$lsC5[fd|XupsNqDHiq?$Ys* M"}5 gb.:dʦ1~&6Z +B6Yܿ|OՆKߚO:r)W۬ siq 2Q<#BDCOW{B{|G8tƆ79 ťn }C_c _5xF#~C^Wg/{U:0{=LƁc&:,{l,&+8@\SrTj{y)%XZ0$挥h`+2R/~ot =hl$!of9=q3 S8Izf{j]8)KRQ&)QBS M_7lY9#KOޤβ1X 2fT%6 Б󘱈<|q$Pk૞"[z' 8m|+GǼ4 O6`'H4n^F'F`$zQP?An6ETb{?A^$s@q/uk.OJ2"l*/ h0ǪOI޻_@2悠y%mahQdb/&X]%#լA_a 10nbxS3T \ٕ7˺y_9D[wA fLx7؞~e-D@i{;C5,MX mb.,bT6ȝD2jKg׃S{V? :YgqLnD4sqTP#hwPpJ\gCI nrdW`׫_-;A,C{e):5~O<~ |Fk9qͯLjd: ~]#3hk8jcE{UUecpva,<퇀!8;t 1r{ jb֠QZ]K3^E>'Wxn :N =.e_'"I/7zTW `ܶ`~Oy`iK4K\*^_Ͻ5J4F}7IVɞ+ 瞌ͩ|ЌQHn-tG0"f>8rӚ,Qnv:цV_4\vČ h ${̫eHUέu>tyWWr56 s߸B̀;W?XPyJ\Đ"k'AIX7ml*@eY*~#;0i%<;MjVеPPD.yU5̀'Q ?:k:*rN3z߷E,DŽ~L/l#c|1\EKNxe RI&ι$őJNfƈ,2$QM DE+*VE#+"6}p*#=Ȗo-Y/ L@)2׆' g8}A]z#L2X еǔl_Ύcǚ1?wR`\tx?1r5DH5(ua粈^!(GL6"e!ىkL&Ic)t.Jrt [϶zE'L&I/$x<ϊ$5şi +?+>4H20O_}^:Z:zFg5"A ag*][tO]7]JiUu!qI\Dٞ:"xXwC48o $p":r֧6pd[f5\Erٵq1_cGHIiHA:=F%z7oL eXoJ :^yN'8۩7pUL4H0>ONSL:v(+lf*N0B7kpnxsOU{1v-bWy]б䄿a@>DJ*뗢Xw8֪FA;BUIdiŻ$-73-tu,ˮIOM_>Q>PެVD,֊U8ݔɊ-e`%y6 A91= 6l?tYnivVH₹NάRrƠu '/#co]"v͍sobZ0:@ 3:2DFO1c7wVW,*G$cȯN~\"K@cxԃ-%邧h)y\K#_IJ) shVPwPXU1c 300׎ t˱b|׎c[OhTqe?E\eM9>N2*ȤVbK}<ֱ32<+.hSO' ϷɃj?pM'@9f<?xm?[Ù0`h|肄D؟ K -'+8g>ITXh݇;݈ \"4 g5Tp|e9S!ajK_Z zשJk7&cyT*ϊN}&;ۣ=JbTP˥ʒHۘHf f34IJqB{UtGjs>e9h5%Rh)KtT ~*='jLu6Q:b YZ