summaryrefslogtreecommitdiffstats
path: root/pki/base/util/src
Commit message (Collapse)AuthorAgeFilesLines
* Escape parameter values in search filter.Endi Sukma Dewata2012-03-141-0/+26
| | | | | | | | The REST interface was vulnerable to injection attack. This has been fixed by escaping the special characters in parameter values before using them in the search filter. Ticket #96
* Fixes to cloning and security domain tables for client auth internaldb userAde Lee2012-03-091-1/+6
| | | | | | | | | | | | | | | | | | | | | The mechanism for getting an ldap connection to the internaldb was incorrect, both in the Security Domain Session Table and the DatabasePanel. As a result, connections to the internaldb failed for accessing the security domain session table and when trying to clone a master which connects to its database using client auth. The thread that handles reading the security domain session table is now only instantiated when running on a configured security domain master. Additionally, needed acls for the client auth certificate ldap user have been moved to manager.ldif. This includes acls to allow creation and management of replication agreements and replication users (now being created under ou=csusers, cn=config) Added logs to show when ldif import errors occur. Also made sure to write and remove master ldap password for use in replication. Ticket #5
* Option to create ECC credentials for adminAndrew Wnuk2012-03-061-0/+4
| | | | | | Configuration wizard should provide option to issue ECC credentials for admin during ECC CA configuration. Bug #784387.
* Fixed DRM REST interface to use BigInteger.Endi Sukma Dewata2012-03-051-2/+2
| | | | | | | | The DRM REST interface previously uses strings for key ID and request ID. It has been modified to use KeyId and RequestId classes which can accept decimal or hex numbers and internally store it as BigInteger. Ticket #94
* Removed dependency on OSUtil.Endi Sukma Dewata2012-02-291-11/+2
| | | | | | | The OSUtil is no longer used by the code. It has been removed from build scripts and tools. Ticket #90
* Replaced BtoA/AtoB with Apache codec.Endi Sukma Dewata2012-02-232-3/+12
| | | | | | | | The OSUtil's BtoA() and AtoB() have been replaced by Base64 codec from Apache Commons library. The codec is configured to use 64-byte line width as defined in RFC 1421. Ticket #90
* Consolidated BtoA/AtoB invocations.Endi Sukma Dewata2012-02-237-19/+38
| | | | | | | | The OSUtil's BtoA() and AtoB() have been replaced with wrapper methods in com.netscape.cmsutil.util.Utils to simplify transition into Base64 codec from Apache Commons library. Ticket #90
* Removed unused variables (part 1).Endi Sukma Dewata2012-02-2013-35/+11
| | | | | | This patch brings down the warnings from 2917 to 2406. Ticket #103
* Added generics (part 4).Endi Sukma Dewata2012-02-1422-58/+52
| | | | | | This patch brings down the warnings from 3427 to 2917. Ticket #2
* Moved client functions to CryptoUtil.java and added GenPKIArchiveOptions toolAde Lee2012-02-131-0/+143
|
* Added generics (part 3).Endi Sukma Dewata2012-02-063-5/+5
| | | | | | This patch brings down the warnings from 3992 to 3500. Ticket #2
* Added generics (part 2).Endi Sukma Dewata2012-01-186-56/+48
| | | | | | This patch brings down the warnings from 4648 to 3992. Ticket #2
* Added generics (part 1).Endi Sukma Dewata2012-01-1862-275/+304
| | | | | | | This patch is based on Adam's patch. It brings down the warnings from 6139 to 4648. Ticket #2
* Formatting (line wrap > 120 in commentsAde Lee2012-01-1143-81/+207
|
* Formatting - line wrap > 120 in codeAde Lee2012-01-119-27/+55
|
* Formatting (no line wrap in comments or code)Ade Lee2012-01-11281-17333/+16329
|
* Replaced byte-to-char & char-to-byte converters.Endi Sukma Dewata2012-01-1020-763/+637
| | | | | | | The byte-to-char and char-to-byte converters have been replaced with a set of charsets, each having its own decoders and encoders. Ticket #3
* Renamed byte-to-char & char-to-byte converters.Endi Sukma Dewata2012-01-108-199/+12
| | | | | | | | The byte-to-char and char-to-byte converters have been renamed in preparation for converting them into charset encoders and decoders. Ticket #3
* Replaced TreeSet with LinkedHashSet.Endi Sukma Dewata2012-01-103-10/+10
| | | | | | The TreeSet has been replaced by LinkedHashSet because it is used to store non-Comparable objects according to the insertion order. This fixes a ClassCastException that happens while viewing Certificate Revocation List.
* typesafety ACL Impls Random type safety cleanups.Adam Young2012-01-043-47/+46
|
* type safety for certserv.baseAdam Young2011-12-221-14/+15
| | | | more type safety
* util type safety cleanupAdam Young2011-12-2218-104/+106
|
* Removal of unused private methodsAdam Young2011-12-2019-157/+2
| | | | | | | | | | | | These methods are uncallable. There might be some discussion about the private default constructores. The Rules of Java are different from C++: If there is any constructor defined, all the other defaults befome uncallable. Thus, the private default constructors are not needed. https://bugzilla.redhat.com/show_bug.cgi?id=728303 Conflicts: pki/base/ca/src/com/netscape/ca/CRLIssuingPoint.java
* Revert "Formatting"Ade Lee2011-12-08281-20264/+21426
| | | | This reverts commit 32150d3ee32f8ac27118af7c792794b538c78a2f.
* FormattingAde Lee2011-12-07281-21426/+20264
| | | | Formatted project according to eclipse project settings
* TreeSetAdam Young2011-12-0740-365/+145
| | | | | | | | | | | | | | | | | | | ArraySet and AttributeNameEnumeration both were not updated to handfle Generics. Neither are really needed, and are likely to introduce errors. ArraySet can be safely replaced by TreeSet. TreeSet provides a stricter ordering constraint than ArraySet did. This will not hurt anything, and may actually be closer to the desired behavior AttributeNameEnumeration was a thin wrapper around Vector. It has been replaced with Vector<String> In addition, this patch cleans up the Type safety in of the collections used in the related files. removed files from cmake Removed custom collection files Supressed watnings generated by the clone method.
* call statics staticallyAdam Young2011-12-065-16/+15
| | | | | | | https://bugzilla.redhat.com/show_bug.cgi?id=728303 Updated with changes from code review Leaving in the warning in GenericASN1Extension, ans that is an indication of a real problem, which will get addressed in a separate patch.
* SerialVersionIDAdam Young2011-12-0285-5/+366
| | | | Autogenerated SerialVersionID for all serializable classes
* Cleanup importsadmiyo2011-11-04260-976/+1376
| | | | | | | | | | Automated changes done by Eclipse Minor tweak to one file where Eclipse was tring to find an import for Any Due to finding it in an annotated comment. https://bugzilla.redhat.com/show_bug.cgi?id=728303 git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2292 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bug 737122 - DRM: during archiving and recovering, wrapping unwrapping keys ↵cfu2011-10-211-0/+7
| | | | | | should be done in the token git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2273 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #734590 - Refactor JNI libraries for Fedora 16+ . . .mharmsen2011-09-131-5/+5
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2197 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla 730146 - SSL handshake picks non-FIPS ciphers in FIPS modecfu2011-08-261-0/+12
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2180 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla BZ#716307 - rhcs80 - DER shall not include an encoding for any ↵vakwetu2011-07-192-6/+3
| | | | | | component value which is equal to its default value git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2065 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Fix Bugzilla Bug# 719007 - Key Constraint keyParameter being ignored using ↵jmagne2011-07-191-1/+26
| | | | | | an ECC CA to generate ECC certs from CRMF. git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@2064 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Fixed bugzilla bug #531137.awnuk2011-01-201-3/+33
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1752 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #642741 - CS build uses deprecated functionsmharmsen2011-01-132-6/+8
| | | | | | | | - removed references to "sun.misc.BASE64Encoder" - removed references to "sun.misc.BASE64Decoder" git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1731 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #656733 - Standardize jar install location and jar namesmharmsen2011-01-111-14/+14
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1719 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* cmake: Added javadoc generation.asn2010-12-171-0/+22
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1654 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #643206 - New CMake based build system for Dogtagmharmsen2010-12-081-9/+24
| | | | | | | (prevent class replication across jars) git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1612 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #643206 - New CMake based build system for Dogtagmharmsen2010-12-071-0/+8
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1607 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bug 651977 - turn off ssl2 for java servers (server.xml) - patch 2cfu2010-11-221-2/+6
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1583 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Fix Bug 623452 - rhcs80 pkiconsole profile policy editor limit policy ↵jmagne2010-11-171-0/+8
| | | | | | extension to 5 only git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1520 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* BZ488253, BZ551410, BZ550331 - oscp asn1 encoding fixes, including code ↵vakwetu2010-11-093-440/+512
| | | | | | provided by David Studzman git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1482 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bug 645874 - rfe ecc - add ecc curve name support in JSS and CS interfacecfu2010-11-031-0/+59
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1467 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* cmake: Set nsutil and cmsutil version and install it.asn2010-10-191-14/+6
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1420 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* cmake: Added cmsutil java build.asn2010-10-191-0/+335
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1376 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bug 635033 - At installation wizard selecting key types other than CA's ↵cfu2010-09-261-6/+7
| | | | | | signing cert will fail git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1319 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Fixed bugzilla bugs: 621327 and 621334.awnuk2010-09-211-11/+43
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1313 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Fixed bugzilla bugs: 621337, 621338.awnuk2010-09-101-0/+7
| | | | git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1289 c9f7a03b-bd48-0410-a16d-cbbf54688b0b
* Bugzilla Bug #224945 - javadocs has missing descriptions, contains empty ↵mharmsen2010-08-1820-20/+60
| | | | | | packages (agreed upon fixes to pki-util javadocs attachment #439177). git-svn-id: svn+ssh://svn.fedorahosted.org/svn/pki/trunk@1213 c9f7a03b-bd48-0410-a16d-cbbf54688b0b