Features/DogtagCertificateSystem

From FedoraProject

< Features(Difference between revisions)
Jump to: navigation, search
(call out sections that need to be completed for review)
Line 94: Line 94:
  
 
== Dependencies ==
 
== Dependencies ==
'''FIXME''': Requires and build requires
+
 
 +
BuildRequires
 +
 
 +
BUILD-TIME PACKAGES ALREADY INCLUDED IN FEDORA:
 +
 
 +
* ant
 +
* apr-devel
 +
* apr-util-devel
 +
* cyrus-sasl-devel
 +
* httpd-devel >= 2.2.3
 +
* idm-console-framework
 +
* java-devel >= 1:1.6.0
 +
* jpackage-utils
 +
* jss >= 4.2.6
 +
* ldapjdk
 +
* m4
 +
* make
 +
* mozldap-devel
 +
* nspr-devel >= 4.6.99
 +
* nss-devel >= 3.12.3.99
 +
* pcre-devel
 +
* pkgconfig
 +
* policycoreutils
 +
* selinux-policy-devel
 +
* svrcore-devel
 +
* tomcat5
 +
* velocity
 +
* xalan-j2
 +
* xerces-j2
 +
* zlib
 +
* zlib-devel
 +
 
 +
BUILD-TIME DOGTAG PACKAGES NEW TO FEDORA:
 +
 
 +
* osutil
 +
* pki-common
 +
* pki-symkey
 +
* pki-util
 +
* tomcatjss
 +
 
 +
 
 +
Requires
 +
 
 +
RUNTIME PACKAGES ALREADY INCLUDED IN FEDORA:
 +
 
 +
* idm-console-framework
 +
* java >= 1:1.6.0
 +
* jpackage-utils
 +
* jss >= 4.2.6
 +
* ldapjdk
 +
* mod_nss >= 1.0.7
 +
* mod_perl
 +
* mod_perl >= 1.99_16
 +
* mozldap
 +
* mozldap >= 6.0.2
 +
* mozldap-tools
 +
* nss >= 3.12.3.99
 +
* nss-tools >= 3.12.3.99
 +
* perl-DBD-SQLite
 +
* perl-DBI
 +
* perl-HTML-Parser
 +
* perl-HTML-Tagset
 +
* perl-Parse-RecDescent
 +
* perl-URI
 +
* perl-XML-NamespaceSupport
 +
* perl-XML-Parser
 +
* perl-XML-Simple
 +
* policycoreutils
 +
* selinux-policy-targeted
 +
* sendmail
 +
* sqlite
 +
* tomcat5
 +
* velocity
 +
* xalan-j2
 +
* xerces-j2
 +
 
 +
RUNTIME DOGTAG PACKAGES NEW TO FEDORA:
 +
 
 +
* osutil
 +
* pki-ca-ui
 +
* pki-common
 +
* pki-common-ui
 +
* pki-console-ui
 +
* pki-java-tools
 +
* pki-kra-ui
 +
* pki-native-tools
 +
* pki-ocsp-ui
 +
* pki-ra-ui
 +
* pki-selinux
 +
* pki-setup
 +
* pki-silent
 +
* pki-symkey
 +
* pki-tks-ui
 +
* pki-tps-ui
 +
* pki-util
 +
* tomcatjss
 +
 
 +
TOP-LEVEL DOGTAG PACKAGES NEW TO FEDORA:
 +
 
 +
* pki-ca
 +
* pki-console
 +
* pki-kra
 +
* pki-ocsp
 +
* pki-ra
 +
* pki-tks
 +
* pki-tps
 +
 
 +
DOGTAG SUBPACKAGES NEW TO FEDORA:
 +
 
 +
* osutil-debuginfo
 +
* pki-common-javadoc
 +
* pki-java-tools-javadoc
 +
* pki-native-tools-debuginfo
 +
* pki-symkey-debuginfo
 +
* pki-tps-debuginfo
 +
* pki-tps-devel
 +
* pki-util-javadoc
  
 
== Contingency Plan ==
 
== Contingency Plan ==

Revision as of 16:38, 26 January 2010


Contents

Dogtag Certificate System

Summary

Dogtag Certificate System is an enterprise-class open source Certificate Authority (CA) supporting all aspects of certificate lifecycle management including key archival, OCSP and smartcard management.

Owner

Current status

  • Targeted release: Fedora 13
  • Last updated: 01-22-2010
  • Percentage of completion: 98%

Detailed Description

Details can be found here.

Benefit to Fedora

All new feature. Full featured open source PKI comprised of 6 major subsystems (25 packages):

  • Certificate Authority (CA)
  • Data Recovery Manager (DRM)
  • OCSP Manager (OCSP)
  • Registration Authority (RA)
  • Token Key Service (TKS)
  • Token Processing System (TPS)

Package List:

  • tomcatjss
  • osutil (x86, x86_64, ppc, ppc64)
  • pki-symkey (x86, x86_64, ppc, ppc64)
  • pki-native-tools (x86, x86_64, ppc, ppc64)
  • pki-util
    • pki-util-javadoc
  • pki-java-tools
    • pki-java-tools-javadoc
  • pki-selinux
  • pki-setup
  • dogtag-pki-common-ui
  • pki-common
    • pki-common-javadoc
  • pki-silent
  • dogtag-pki-ca-ui
  • pki-ca
  • dogtag-pki-kra-ui
  • pki-kra
  • dogtag-pki-ocsp-ui
  • pki-ocsp
  • dogtag-pki-tks-ui
  • pki-tks
  • dogtag-pki-ra-ui
  • pki-ra
  • dogtag-pki-tps-ui
  • pki-tps (x86, x86_64, ppc, ppc64)
    • pki-tps-devel
  • dogtag-pki-console-ui
  • pki-console

Scope

  • Code complete. Awaiting Package Review on three remaining packages.
  • FIXME: state which packages still need reviews

How To Test

FIXME section is incomplete

Hardware Requirements

System Prep

Testing

Expected Results


User Experience

FIXME

Dependencies

BuildRequires

BUILD-TIME PACKAGES ALREADY INCLUDED IN FEDORA:

  • ant
  • apr-devel
  • apr-util-devel
  • cyrus-sasl-devel
  • httpd-devel >= 2.2.3
  • idm-console-framework
  • java-devel >= 1:1.6.0
  • jpackage-utils
  • jss >= 4.2.6
  • ldapjdk
  • m4
  • make
  • mozldap-devel
  • nspr-devel >= 4.6.99
  • nss-devel >= 3.12.3.99
  • pcre-devel
  • pkgconfig
  • policycoreutils
  • selinux-policy-devel
  • svrcore-devel
  • tomcat5
  • velocity
  • xalan-j2
  • xerces-j2
  • zlib
  • zlib-devel

BUILD-TIME DOGTAG PACKAGES NEW TO FEDORA:

  • osutil
  • pki-common
  • pki-symkey
  • pki-util
  • tomcatjss


Requires

RUNTIME PACKAGES ALREADY INCLUDED IN FEDORA:

  • idm-console-framework
  • java >= 1:1.6.0
  • jpackage-utils
  • jss >= 4.2.6
  • ldapjdk
  • mod_nss >= 1.0.7
  • mod_perl
  • mod_perl >= 1.99_16
  • mozldap
  • mozldap >= 6.0.2
  • mozldap-tools
  • nss >= 3.12.3.99
  • nss-tools >= 3.12.3.99
  • perl-DBD-SQLite
  • perl-DBI
  • perl-HTML-Parser
  • perl-HTML-Tagset
  • perl-Parse-RecDescent
  • perl-URI
  • perl-XML-NamespaceSupport
  • perl-XML-Parser
  • perl-XML-Simple
  • policycoreutils
  • selinux-policy-targeted
  • sendmail
  • sqlite
  • tomcat5
  • velocity
  • xalan-j2
  • xerces-j2

RUNTIME DOGTAG PACKAGES NEW TO FEDORA:

  • osutil
  • pki-ca-ui
  • pki-common
  • pki-common-ui
  • pki-console-ui
  • pki-java-tools
  • pki-kra-ui
  • pki-native-tools
  • pki-ocsp-ui
  • pki-ra-ui
  • pki-selinux
  • pki-setup
  • pki-silent
  • pki-symkey
  • pki-tks-ui
  • pki-tps-ui
  • pki-util
  • tomcatjss

TOP-LEVEL DOGTAG PACKAGES NEW TO FEDORA:

  • pki-ca
  • pki-console
  • pki-kra
  • pki-ocsp
  • pki-ra
  • pki-tks
  • pki-tps

DOGTAG SUBPACKAGES NEW TO FEDORA:

  • osutil-debuginfo
  • pki-common-javadoc
  • pki-java-tools-javadoc
  • pki-native-tools-debuginfo
  • pki-symkey-debuginfo
  • pki-tps-debuginfo
  • pki-tps-devel
  • pki-util-javadoc

Contingency Plan

In it's current state, Dogtag will work.<--FIXME: this is unclear... revert to previous working version?

Documentation

  • Documentation can be found here.

Release Notes

  • Release Notes can be found here.

Comments and Discussion