summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* New pki-common requirementsdogtag-9Andrew Wnuk2012-11-011-2/+2
|
* New buildAndrew Wnuk2012-10-3010-13/+40
|
* Changes to allow tps to start correctlyAde Lee2012-10-182-12/+11
| | | | | | 1. Change to system cert verification test to allow successful return if all certs pass 2. Change to functions to allow correct processing of tus link
* https://fedorahosted.org/pki/ticket/252 - TMS - ECC Key RecoveryChristina Fu2012-09-283-29/+73
|
* TMS secure recovery part of - Bug 737122 - DRM: during archiving and ↵Christina Fu2012-09-281-61/+139
| | | | recovering, wrapping unwrapping keys should be done in the token
* Used GetStatus servlet to provide startup statusAde Lee2012-09-212-0/+8
|
* Audit Cert RenewalMatthew Harmsen2012-09-201-2/+2
| | | | | * TRAC Ticket #333 - Increase audit cert renewal range to 2 years * Bugzilla Bug #843979 - Increase audit cert renewal range to 2 years
* Provide default for operations transition list, related # 858816.Jack Magne2012-09-191-0/+1
|
* time based searchesAndrew Wnuk2012-09-197-412/+254
| | | | | | | This patch removes "fixed" year from time based searches for agent and EE interfaces. It also unifies time selection between search and revocation templates. Bug 854420.
* https://fedorahosted.org/pki/ticket/304Christina Fu2012-09-1714-334/+946
| | | | TMS ECC infrastructure (enrollment with client-side and server-side key generation, and key archival)
* Bugzilla Bug #852855 - rhcs81 - remove unexpected anonymous binds toMatthew Harmsen2012-09-101-1/+3
| | | | internal db in cert status thread.
* Bugzilla Bug# 852855 - rhcs81 - remove unexpected anonymous binds to ↵Jack Magne2012-09-101-17/+19
| | | | internal db in cert status thread.
* Verify symbolic linksMatthew Harmsen2012-09-074-4/+8
| | | | | * TRAC Ticket #301 - Need to modify init scripts to verify needed symlinks in an instance (support non-default instance names)
* Added 'systemd-units' buildtime requirement on Fedora 16 (required by Koji)Matthew Harmsen2012-09-061-1/+8
|
* TRAC Ticket #310 - Dogtag 9: Rebuild official PKI packages as necessary . . .Matthew Harmsen2012-09-046-21/+24
|
* version number adjustmentChristina Fu2012-09-046-14/+14
|
* Fixed anon connection factory to make no anonymous bindsAde Lee2012-08-312-15/+25
| | | | This allow server to come up with DS where anon binds are turned off.
* Bug 844800 - TPS should provide the ability to not allow tokens marked as ↵Jack Magne2012-08-306-16/+148
| | | | 'Terminated' to be formatted and reused.
* Bugzilla Bug #849027 - rhcs81 tks failed start in selftest sharedsessionkey ↵Jack Magne2012-08-291-2/+4
| | | | - symkey PK11_Derive.
* Verify symbolic linksMatthew Harmsen2012-08-291-7/+353
| | | | | * TRAC Ticket #301 - Need to modify init scripts to verify needed symlinks in an instance
* Small correctionAndrew Wnuk2012-08-271-1/+1
| | | | | | Small correction to fix for bug #819123. Bug #819123
* spec file changes for selinux patchAde Lee2012-08-234-24/+14
|
* Added systemd files for RA and TPSAde Lee2012-08-2310-28/+221
|
* Modified selinux policy patch for f17Ade Lee2012-08-232-2/+74
|
* Revert "BZ 841966 - latest selinux policy fix breaks dogtag"Ade Lee2012-08-232-10/+2
| | | | | | | This change needs to be checked in as a patch to f17, rather than in upstream code. Otherwise it breaks f16. This reverts commit 868e724716512762ad780f15a10a7a4b88fb1487.
* https://fedorahosted.org/pki/ticket/241Christina Fu2012-08-231-8/+12
| | | | TPS ECC: when TPS server acts as an ECC SSL client to CA, TKS, or DRM, it needs to support ECC ciphers
* Bug 820695 - Tracker - TPS (ECC with nethsm) configuration failed at key ↵Christina Fu2012-08-231-43/+44
| | | | | | | | generation This patch calls with the right flags for each supported HSM to the new certutil that addressed the following bug: Bug 820684 - certutil support for EC on HSMs - need to call PK11_GenerateKeyPairWithOpFlags()
* Altered 'master' build script to build 'pki-tps' for Dogtag 9 by usingMatthew Harmsen2012-08-201-1/+1
| | | | 'hybrid_rpms' rather than 'rpms'.
* fix formatting issueAde Lee2012-08-201-2/+2
|
* DRM connector protectionAndrew Wnuk2012-08-173-37/+62
| | | | | | This patch prevents DRM connector to be overwritten by subsequent DRM installations. Bug 804179.
* Fix for BugZilla ticket 219Abhishek Koneru2012-08-172-5/+5
|
* https://fedorahosted.org/pki/ticket/238Christina Fu2012-08-153-51/+177
| | | | TPS installation wizard: SizePanel needs to support ECC curve selection
* https://fedorahosted.org/pki/ticket/237Christina Fu2012-08-158-47/+762
| | | | | | | | ECC support for tpsclient two parameters are added in the config file (see enroll.tps.ec for example): slotnamefile - this points to a file that contains the slot name. The reason why the slot name goes into another file instead of the conf file is because the existing conf file uses spaces for deliminator and I don't want to change the usage (and QE's tests) by changing it to something else. tokpasswod is the tokebn password This ECC feature requires the up-coming ECC supporting TPS to trigger. Testing of the ECC specific areas requires the availability of such ECC TPS. Without it, one can test with the old RSA method to see if it's broken.
* adding subsequent OCSPsAndrew Wnuk2012-08-083-142/+181
| | | | | | | This patch corrects process of attaching OCSP subsystem to CA. It improves handling of adding subsequent OCSP subsystems to CA. Bugs: 804179 and 804176.
* Changed patch level from "p2" to "p1".Matthew Harmsen2012-08-071-1/+1
|
* The API changed between httpd 2.2 and 2.4. We now need to passMatthew Harmsen2012-08-072-1/+684
| | | | | the module index to ap_log_error() when calling it. The remote_ip member of the connection struct also was renamed to client_ip.
* certificate import for IEAndrew Wnuk2012-08-062-21/+119
| | | | | | This patch corrects certificate import for IE Bug: 845387.
* certificate import for IEAndrew Wnuk2012-08-031-4/+30
| | | | | | This patch corrects certificate import for IE Bug: 845387.
* ECC directory enrollment profileAndrew Wnuk2012-08-022-1/+102
| | | | | | This patch adds ECC directory enrollment profile. Bug: 748514.
* ECC enrollments for IEAndrew Wnuk2012-08-011-13/+81
| | | | | | This patch enables ECC enrollments for IE. Bug: 748514.
* elimination of CA crashAndrew Wnuk2012-07-247-8/+38
| | | | | | This patch eliminates CA crash caused by default Android browser. Bug: 819123.
* BZ 841966 - latest selinux policy fix breaks dogtag ("Version" build fixes)Matthew Harmsen2012-07-202-2/+2
|
* BZ 841966 - latest selinux policy fix breaks dogtagAde Lee2012-07-202-2/+10
|
* CA removalAndrew Wnuk2012-07-171-5/+14
| | | | | | This patch provides fix to OCSP agent inability of removing a CA from the List of Certificate Authorities in some circumstances. Bug: 837124.
* CMC revocationAndrew Wnuk2012-07-091-9/+27
| | | | | | This patch provides verification of revocation reasons and proper handling for removeFromCRLrevocation reason. Bug: 441354.
* Perldap workaround.Andrew Wnuk2012-05-301-3/+2
| | | | | | | Ticket #373 This fix just appends a dummy value to the array, which consumes the error 53. Patch provided by mreynolds.
* Bug 823618 - TPS installation wizard (ECC): admin certificate panel needs to ↵Christina Fu2012-05-271-1/+11
| | | | | | support ECC This patch allows TPS administrators to enroll for EC cert during installation wizard. It follows the same implementation as the Java subsystems and defaults to nistp256
* New buildAndrew Wnuk2012-05-073-4/+7
|
* BZ 819111 non-existent container breaks replicationAde Lee2012-05-072-2/+25
| | | | | Added code to add the required ou=cmsusers container to cn=config on the master if it does not exist, when replication users are set up.
* Bug 744207 - Key archival fails when KRA is configured with lunasaChristina Fu2012-05-021-1/+13
| | | | - The real fix is in JSS alone; This patch only adds better error handling and non-static salt.
generated by cgit (git 2.34.1) at 2024-04-24 01:27:11 +0000