Bugzilla Bug #583822 - CC: ACL issues from CA interface CC doc review
Bugzilla Bug #620863 - saved CS.cfg files should be moved to a subdirectory to avoid cluttering
Bugzilla Bug #607373 - add self test framework to TPS subsytem
Bugzilla Bug #607374 - add self test to TPS self test framework
Bugzilla Bug #620925 - CC: auditor needs to be able to download audit logs in the java subsystems
Bugzilla Bug #615814 - rhcs80 - profile policyConstraintsCritical cannot be set to true
Bugzilla Bug #615827 - rhcs80 - profile policies need more than 5 policy mappings (seem hardcoded)
Bugzilla Bug #624847 - Installed TPS cannot be started to be configured.
Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty packages
Bugzilla Bug #548699 - subCA’s admin certificate should be generated by itself
Bugzilla Bug #622535 - 64 bit host zlib uncompress operation fails when reading data from token.
Bugzilla Bug #621322 - Provide switch disabling SCEP support in CA
Bugzilla Bug #583824 - CC: Duplicate servlet mappings found as part of CC interface doc review
Bugzilla Bug #621339 - SCEP one-time PIN can be used an unlimited number of times
Bugzilla Bug #223343 - pkicreate: should add ‘pkiuser’ to nfast group
Bugzilla Bug #630018 - Delete button missing from Edit Profile page.
Bugzilla Bug #621350 - Unauthenticated user can decrypt a one-time PIN in a SCEP request
Bugzilla Bug #629769 - password decryption logs plain text password
Bugzilla Bug #629377 - Selinux errors during pkicreate CA, KRA, OCSP and TKS.
Bugzilla Bug #488762 - Found HTTP TRACE method enabled on TPS
Bugzilla Bug #583823 - CC: Auditing issues found as result of CC - interface review
Bugzilla Bug #519291 - Deleting a CRL Issuing Point after edits throws ‘Internal Server Error’.
Bugzilla Bug #621337 - Limit the received senderNonce value to 16 bytes.
Bugzilla Bug #607380 - CC: Make sure Java Console can configure all security relevant config items
Bugzilla Bug #489342 - com.netscape.cms.servlet.common.CMCOutputTemplate.java doesn’t support EC
Bugzilla Bug #630121 - OCSP responder lacking option to delete or disable a CA that it serves
Bugzilla Bug #634663 - CA CMC response default hard-coded to SHA1
Bugzilla Bug #621327 - Provide switch disabling algorithm downgrade attack in SCEP
Bugzilla Bug #574942 - TPS database has performance problems with a large number of tokens
Bugzilla Bug #504061 - ECC: unable to install subsystems - phase 1
Bugzilla Bug #637982 - some selftest parameters are not properly substituted
Bugzilla Bug #630126 - clone installation wizard basedn for internal db should not be changeable
Bugzilla Bug #533529 - rhcs80 web wizard - broken login page when using valid pin
Bugzilla Bug #640091 - pkisilent panels need to match with changed java subsystems
Bugzilla Bug #539781 - rhcs 71 - CRLs Partitioned by Reason Code - onlySomeReasons ?
Bugzilla Bug #518241 - pkiconsole does not launch when CA is configured with ECC
Bugzilla Bug #527322 - pkisilent ConfigureDRM should configure DRM Clone.
Bugzilla Bug #223313 - should do random generated IV param for symmetric keys
Bugzilla Bug #555927 - rhcs80 - AgentRequestFilter servlet and port fowarding for agent services
Bugzilla Bug #630176 - Improve reliability of the LdapAnonConnFactory
Bugzilla Bug #516632 - RHCS 7.1 - CS Incorrectly Issuing Multiple Certificates from the Same Request
Bugzilla Bug #646545 - TPS Agent tab: displays approve list parameter with last character chopped.
Bugzilla Bug #528249 - rhcs80 - web pages, css -moz-opacity deprecated
Bugzilla Bug #631179 - Administrator is not allowed to remove ocsp signing certificate using console
Bugzilla Bug #645874 - rfe ecc - add ecc curve name support in JSS and CS interface
Bugzilla Bug #648757 - expose and use updated cert verification function in JSS
Bugzilla Bug #451874 - RFE - Java console - Certificate Wizard missing e.c. support
Bugzilla Bug #488253 - com.netscape.cmsutil.ocsp.BasicOCSPResponse ASN.1 encoding/decoding is broken
Bugzilla Bug #551410 - com.netscape.cmsutil.ocsp.TBSRequest ASN.1 encoding/decoding is incomplete
Bugzilla Bug #550331 - com.netscape.cmsutil.ocsp.ResponseData ASN.1 encoding/decoding is incomplete
Bugzilla Bug #651087 - TPS UI Admin tab display ‘null’ string in the General configuration
Bugzilla Bug #360721 - New Feature: Profile Integrity Check . . .
Bugzilla Bug #509481 - RFE: support sMIMECapabilities extensions in certificates (RFC 4262)
Bugzilla Bug #511990 - rhcs 7.3, 8.0 - re-activate missing object signing support in RHCS
Bugzilla Bug #642359 - CC Feature - need to verify certificate when it is added
Bugzilla Bug #653713 - CC: setting trust on a CIMC cert requires auditing
Bugzilla Bug #583754 - pki-silent needs an option to configure signing algorithm for CA certificates
Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml)
Bugzilla Bug #623452 - rhcs80 pkiconsole profile policy editor limit policy extension to 5 only
Bugzilla Bug #606946 - Convert Native Tools to use ldapAPI from OpenLDAP instead of the Mozldap
Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group.
Bugzilla Bug #606946 - Convert Native Tools to use ldapAPI from OpenLDAP instead of the Mozldap
Bugzilla Bug #638377 - Generate PKI UI components which exclude a GUI interface
Bugzilla Bug #651977 - turn off ssl2 for java servers (server.xml) - patch 2
Bugzilla Bug #653576 - tomcat5 does not always run filters on servlets as expected
Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for validity
Bugzilla Bug #642357 - CC Feature- Self-Test plugins only check for validity - (TPS part)
Bugzilla Bug #643206 - New CMake based build system for Dogtag
Bugzilla Bug #658926 - org.apache.commons.lang class not found on F13
Bugzilla Bug #643206 - New CMake based build system for Dogtag
Bugzilla Bug #661128 - incorrect CA ports used for revoke, unrevoke certs in TPS
Bugzilla Bug #643206 - New CMake based build system for Dogtag
Bugzilla Bug #512496 - RFE rhcs80 - crl updates and scheduling feature
Bugzilla Bug #663546 - Disable the functionalities that are not exposed in the console
Bugzilla Bug #661514 - CMAKE build system requires rules to make javadocs
Bugzilla Bug #662201 - Console: View button for log messages is not functional.
Bugzilla Bug #658188 - remove remaining references to tomcat5
Bugzilla Bug #649343 - Publishing queue should recover from CA crash.
Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and pkiCA, obsolete 2252 and 2256
Bugzilla Bug #643206 - New CMake based build system for Dogtag
Bugzilla Bug #583754 - pki-silent needs an option to configure signing algorithm for CA certificates
Bugzilla Bug #667153 - store nuxwdog passwords in kernel ring buffer - selinux changes
Bugzilla Bug #491183 - rhcs rfe - add rfc 4523 support for pkiUser and pkiCA, obsolete 2252 and 225
Bugzilla Bug #223346 - Two conflicting ACL list definitions in source repository
Bugzilla Bug #643206 - New CMake based build system for Dogtag
Bugzilla Bug #640710 - Current SCEP implementation does not support HSMs
Bugzilla Bug #663546 - Disable the functionalities that are not exposed in the console
Bugzilla Bug #662156 - HttpClient is hard-coded to handle only up to 5000 bytes
Bugzilla Bug #667556 - Consolidate ‘osutil’ SVN source code with ‘osutil’ GIT source code
Bugzilla Bug #512496 - RFE rhcs80 - crl updates and scheduling feature
Bugzilla Bug #656733 - Standardize jar install location and jar names
Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added
Bugzilla Bug #645895 - pkisilent: add ability to select ECC curves, signing algorithm
Bugzilla Bug #658641 - pkisilent doesn’t not properly handle passwords with special characters
Bugzilla Bug #666902 - TPS needs to call CERT_VerifyCertificate() correctly
Bugzilla Bug #223319 - Certificate Status inconsistency between token db and CA
Bugzilla Bug #669055 - TPS server does not re-start when signedAudit logging is turned ON
Bugzilla Bug #668100 - DRM storage cert has OCSP signing extended key usage
Bugzilla Bug #670337: CA Clone configuration throws TCP connection error
Bugzilla Bug #531137 - RHCS 7.1 - Running out of Java Heap Memory During CRL Generation
Bugzilla Bug #671058 - ipa2 - ipa-server-install fails on pkisilent - xml parsing string – ?
Bugzilla Bug #564207 - Searches for completed requests in the agent interface returns zero entries
Bugzilla Bug #670337 - CA Clone configuration throws TCP connection error - fix for kra cloning
Bugzilla Bug #672111 - remove unused certServer.usrgrp.administration acl
Bugzilla Bug #504055 - SCEP requests are not properly populated
Bugzilla Bug #564207 - Searches for completed requests in the agent interface returns zero entries
Bugzilla Bug #669804 - on active token re-enroll, TPS does not revoke and remove existing certs.
Bugzilla Bug #673199 - init script returns control before web apps have started
Bugzilla Bug #672333 - Creation of RA agent fails in IPA installation
Bugzilla Bug #656661 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
Bugzilla Bug #656662 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
Bugzilla Bug #656663 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
Bugzilla Bug #656664 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
Bugzilla Bug #656665 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
Bugzilla Bug #656666 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
Bugzilla Bug #674917 - Restore identification of Tomcat-based PKI subsystem instances
Bugzilla Bug #673233 - Rebase pki-core to pick the latest features and fixes
Bugzilla Bug #674894 - ipactl restart : an annoy output line
Bugzilla Bug #675179 - ipactl restart : an annoy output line
Bugzilla Bug #606943 - Convert RA to use ldap utilities from OpenLDAP instead of the Mozldap
Bugzilla Bug #674195 - SELinux error message thrown during token enrollment
Bugzilla Bug #676421 - CC: Remove unused TPS interface calls and add audit logging
Bugzilla Bug #676182 - IPA installation failing - Fails to create CA instance
Bugzilla Bug #676682 - REGRESSION: Restore missing ‘gif’ files to console …
Bugzilla Bug #676678 - Missing audit log messages for Secure Channel Generation.
Bugzilla Bug #606944 - Convert TPS to use ldap utilities and API from OpenLDAP
Bugzilla Bug #676152 - Token enrollment with symmetric key change over fails.
Bugzilla Bug #674396 - TPS: some audit signatures failed to verify
Bugzilla Bug #676152 - Token enrollment with symmetric key change over fails.
Bugzilla Bug #678654 - Change “compose*” scripts to use “bash | tee” rather than “script -c”
Bugzilla Bug #678142 - Flakey JAR packaging encountered on Fedora 15 when
Bugzilla Bug #678157 - uninitialized variable warnings from Perl.
Bugzilla Bug #679574 - Velocity fails to load all dependent classes
Bugzilla Bug #680567 - CC doc: remove update.applet.directory audit message from TPS doc.
Bugzilla Bug #681066 - TPS authentication crash when exercising audit log message.
Bugzilla Bug #682013 - pkisilent needs xml-commons-apis.jar in it’s classpath
Bugzilla Bug #673609 - CC: authorize() call needs to be added to getStats servlet
Bugzilla Bug #673508 - CS8 64 bit pkicreate script uses wrong library name for SafeNet LunaSA
Bugzilla Bug #684259 - incorrect group used for tps operators
Bugzilla Bug #688763 - Rebase updated Dogtag Packages for Fedora 15 (alpha)
Bugzilla Bug #684381 - CS.cfg specifies incorrect type of comments . . .
Bugzilla Bug #689501 - ExtJoiner tool fails to join the multiple extensions.
Bugzilla Bug #689662 - ocsp publishing needs to be re-enabled on the EE port
Bugzilla Bug #690626 - pkiremove removes the registry entry for all instances on a machine
Bugzilla Bug #689453 - CRMFPopClient request to CA’s unsecure port throws file not found exception.
Bugzilla Bug #692990 - Audit log messages needed to match CC doc: DRM Recovery audit log messages
Bugzilla Bug #695157 - Auditverify on TPS audit log throws error.
Bugzilla Bug #693815 - /var/log/tomcat6/catalina.out owned by pkiuser
Bugzilla Bug #694569 - pkiremove parameter not updated - additional fix
Bugzilla Bug #697035 - TPS dataabase schema not populated correctly
Bugzilla Bug #694569 - parameter used by pkiremove not updated
Bugzilla Bug #694143 - CA Agent not returning specified request
Bugzilla Bug #699364 - PKI-RA instance not created successfully
Bugzilla Bug #698885 - Race conditions during IPA installation
Bugzilla Bug #699837 - service command is not fully backwards compatible with Dogtag pki subsystems
Bugzilla Bug #700462 - No action on clicking Help button of pkiconsole’s right pane
Bugzilla Bug #702716 - rhcs80 cannot do client auth with pkiconsole (ok with 7.3)
Bugzilla Bug #704792 - - CC_LAB_EVAL: CA agent interface: SubjectID=$ fails audit evaluation.
Bugzilla Bug #696443 - ESC display renewal operation success for failed renewal operation.
Bugzilla Bug #649910 - Console: an auditor or agent can be added to an administrator group.
Bugzilla Bug #705914 - SCEP mishandles nicknames when processing subsequent SCEP requests.
Bugzilla Bug #704351 - remove help buttons in agent and ee UI in all subsystems
Bugzilla Bug #707095 - tps delete user operation should check for roles (not have them passed in)
Bugzilla Bug #661142 - Verification should fail when a revoked certificate is added.
Bugzilla Bug #707416 - CC_LAB_EVAL: Security Domain: missing audit msgs for modify/add
Bugzilla Bug #707416 - additional audit messages for GetCookie
Bugzilla Bug #716269 - make ra authenticated profiles non-visible on ee pages
Bugzilla Bug #697939 - DRM signed audit log message - operation should be read instead of modify.
Bugzilla Bug #718427 - When audit log is full, server continue to function
Bugzilla Bug #720503 - RA and TPS require additional SELinux permissions to run in Enforcing mode
Bugzilla Bug #669226 - Remove Legacy Build System (Ant + Autoconf –> CMake)
Bugzilla Bug #720510 - Console: Adding a certificate into nethsm throws Token not found error.
Bugzilla Bug #719113 - Add client usage flag to caIPAserviceCert