diff options
| author | Ade Lee <alee@redhat.com> | 2017-05-24 12:31:45 -0400 |
|---|---|---|
| committer | Ade Lee <alee@redhat.com> | 2017-05-24 14:49:30 -0400 |
| commit | 3ddc916954d712f6fe25497789925fecebef20fc (patch) | |
| tree | 5f2cd696c77fc7d54cd5188dc6d5cd56488b2874 /base/kra/src/com | |
| parent | 84f3958dc9c1c5bfab4a8789e621d621a28cbdd6 (diff) | |
| download | pki-3ddc916954d712f6fe25497789925fecebef20fc.tar.gz pki-3ddc916954d712f6fe25497789925fecebef20fc.tar.xz pki-3ddc916954d712f6fe25497789925fecebef20fc.zip | |
Encapsulate symmetric and asymmetric keygen audit events
Change-Id: Ifc8d05bd1d2d34bb0ef25877f838731bed58d00e
Diffstat (limited to 'base/kra/src/com')
| -rw-r--r-- | base/kra/src/com/netscape/kra/AsymKeyGenService.java | 20 | ||||
| -rw-r--r-- | base/kra/src/com/netscape/kra/SymKeyGenService.java | 16 |
2 files changed, 18 insertions, 18 deletions
diff --git a/base/kra/src/com/netscape/kra/AsymKeyGenService.java b/base/kra/src/com/netscape/kra/AsymKeyGenService.java index cfee504ef..ea1d0ccdd 100644 --- a/base/kra/src/com/netscape/kra/AsymKeyGenService.java +++ b/base/kra/src/com/netscape/kra/AsymKeyGenService.java @@ -28,11 +28,13 @@ import com.netscape.certsrv.base.EBaseException; import com.netscape.certsrv.base.IConfigStore; import com.netscape.certsrv.dbs.keydb.IKeyRecord; import com.netscape.certsrv.dbs.keydb.IKeyRepository; +import com.netscape.certsrv.dbs.keydb.KeyId; import com.netscape.certsrv.key.AsymKeyGenerationRequest; import com.netscape.certsrv.key.KeyRequestResource; import com.netscape.certsrv.kra.IKeyRecoveryAuthority; import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.event.AsymKeyGenerationProcessedEvent; import com.netscape.certsrv.request.IRequest; import com.netscape.certsrv.request.IService; import com.netscape.certsrv.request.RequestId; @@ -144,8 +146,8 @@ public class AsymKeyGenService implements IService { } catch (EBaseException e) { CMS.debugStackTrace(); auditAsymKeyGenRequestProcessed(auditSubjectID, ILogger.FAILURE, request.getRequestId(), - clientKeyId, null, "Failed to generate Asymmetric key"); - throw new EBaseException("Errors in generating Asymmetric key: " + e); + clientKeyId, null, "Failed to generate asymmetric key: " + e.getMessage()); + throw new EBaseException("Errors in generating Asymmetric key: " + e, e); } if (kp == null) { @@ -205,7 +207,7 @@ public class AsymKeyGenService implements IService { storage.addKeyRecord(record); auditAsymKeyGenRequestProcessed(auditSubjectID, ILogger.SUCCESS, request.getRequestId(), - clientKeyId, serialNo.toString(), "None"); + clientKeyId, new KeyId(serialNo), "None"); request.setExtData(IRequest.RESULT, IRequest.RES_SUCCESS); kra.getRequestQueue().updateRequest(request); return true; @@ -234,15 +236,13 @@ public class AsymKeyGenService implements IService { private void auditAsymKeyGenRequestProcessed(String subjectID, String status, RequestId requestID, String clientKeyID, - String keyID, String reason) { - String auditMessage = CMS.getLogMessage( - AuditEvent.ASYMKEY_GENERATION_REQUEST_PROCESSED, + KeyId keyID, String reason) { + audit(new AsymKeyGenerationProcessedEvent( subjectID, status, - requestID.toString(), + requestID, clientKeyID, - keyID != null ? keyID : "None", - reason); - audit(auditMessage); + keyID, + reason)); } } diff --git a/base/kra/src/com/netscape/kra/SymKeyGenService.java b/base/kra/src/com/netscape/kra/SymKeyGenService.java index bf350d5f5..a4613c285 100644 --- a/base/kra/src/com/netscape/kra/SymKeyGenService.java +++ b/base/kra/src/com/netscape/kra/SymKeyGenService.java @@ -32,11 +32,13 @@ import com.netscape.certsrv.base.EBaseException; import com.netscape.certsrv.base.IConfigStore; import com.netscape.certsrv.dbs.keydb.IKeyRecord; import com.netscape.certsrv.dbs.keydb.IKeyRepository; +import com.netscape.certsrv.dbs.keydb.KeyId; import com.netscape.certsrv.key.KeyRequestResource; import com.netscape.certsrv.key.SymKeyGenerationRequest; import com.netscape.certsrv.kra.IKeyRecoveryAuthority; import com.netscape.certsrv.logging.AuditEvent; import com.netscape.certsrv.logging.ILogger; +import com.netscape.certsrv.logging.event.SymKeyGenerationProcessedEvent; import com.netscape.certsrv.request.IRequest; import com.netscape.certsrv.request.IService; import com.netscape.certsrv.request.RequestId; @@ -232,7 +234,7 @@ public class SymKeyGenService implements IService { storage.addKeyRecord(rec); auditSymKeyGenRequestProcessed(auditSubjectID, ILogger.SUCCESS, request.getRequestId(), - clientKeyId, serialNo.toString(), "None"); + clientKeyId, new KeyId(serialNo), "None"); request.setExtData(IRequest.RESULT, IRequest.RES_SUCCESS); mKRA.getRequestQueue().updateRequest(request); @@ -262,15 +264,13 @@ public class SymKeyGenService implements IService { } private void auditSymKeyGenRequestProcessed(String subjectID, String status, RequestId requestID, String clientKeyID, - String keyID, String reason) { - String auditMessage = CMS.getLogMessage( - AuditEvent.SYMKEY_GENERATION_REQUEST_PROCESSED, + KeyId keyID, String reason) { + audit(new SymKeyGenerationProcessedEvent( subjectID, status, - requestID.toString(), + requestID, clientKeyID, - keyID != null ? keyID : "None", - reason); - audit(auditMessage); + keyID, + reason)); } }
\ No newline at end of file |