upgrade from xenial multiple crashes

upgrading FreeIPA from xenial to yakkity or directly to zesty breaks in several spots.

/etc/pki/pki.version has an invalid version (10.2.6+git20160317) in xenial

changing this to 10.2.6 gets past this error.

default port for nss in apache starting in yakkety is 8443. Conflicts with pki-tomcat if maintainer version of config file is installed.

/<email address hidden> and /etc/systemd/system/apache2.service.d/ipa.conf reference files in /usr/libexec which doesn't exist. The files are installed at /usr/lib. Linking /usr/libexec to /usr/lib works around this.

GssapiDelegCcacheUnique is not available in the version of mod-auth-gssapi available on yakkity. It is available in zesty.

in yakkety the jaxrs jar changed names.
ln -sf /usr/share/java/javax.ws.rs-api.jar /usr/share/java/jaxrs-api.jar
yakkety was missing the dependency libscannotation-java

ipa-server-upgrade crashes if freeipa-server-trust-ad isn't installed

  File "/usr/lib/python2.7/dist-packages/ipaserver/install/server/upgrade.py", line 49, in <module>
    from ipaserver.install import adtrustinstance
ImportError: cannot import name adtrustinstance

after fixing these, upgrading from xenial directly to the zesty version seems to work. Upgrding to yakkity may work as well but I haven't tested it since sorting out the libexec bug.