| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
| |
Fix whitespace issues - replace tabs
Added readme file for drmclient.py
Add arguments to allow drmclient.py to be configured.
Flatten code in GeneratePKIArchiveOptions
|
| |
|
|
|
|
|
|
| |
Changes to make the cmake build of this feature work.
Change to the .classpath to allow the DRMTest.java test client to run under Eclipse,
by adding additional jar paths to allow the client to run.
|
|
|
|
|
|
|
|
|
|
|
|
| |
Ticket #66 and #68.
Add ability to archive and recover symmetric keys and passphrases using rest interface.
Enhanced test client to test out new functionality.
Provided support to return recovered data either wrapped by symmetric key or wrapped in PBE password based encryption blob.
DRM symmetric key support cleanup changes.
Consists of suggested cleanup measures based on review comments.
|
| |
|
|
|
|
|
|
|
| |
Added ClientResponse annotation to SystemCertificateResource.
Added Consumes annotation to KeyResource, KeyRequestResource
Added checks for empty search results to test client, as well as stripping header, trailer
from transport cert.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
When sending a passphrase in the recovery request, we need to wrap it
in a session key and store it in sessionWrappedPassphrase. We also
then wrap the session key in transWrappedSessionKey.
The server needs to do PBE if the sessionWrappedPassphrase
is present, and symkey based encryption otherwise.
Also changed the DRM test to reflect these changes, and fixed some errors.
|
|
|
|
| |
Added new interfaces for each Resource, and renamed old Resource service classes.
|
|
|
|
|
|
| |
This patch brings down the warnings from 3992 to 3500.
Ticket #2
|
|
|
|
| |
Contributed by Josh Roys.
|
|
|
|
|
|
| |
This patch resolves issue of "Agent-Authenticated File Signing" enrollment altering some file hashes.
Bug: 771768.
|
|
|
|
|
|
|
|
| |
CertNickName in the audit output
The issue was that the parameter ocsp.cert.signing.certusage=StatusResponder
was missing the "certusage" component in CS.cfg.in. Adding it fixed the proble
m. cert nickname is added automatically at installation/configuration.
|
|
|
|
|
|
| |
not cause server to shutdown as expected
There are two issues: 1. The variable, r, returned by verifySystemCertByTag() gets overwritten by the next return value in a while loop. The problem affects both java subsystems and TPS. 2. In the TPS system, within a while loop that calls verifySystemCertByNickname(), one condition does a "continue" without advancing to the next token, causing an infinite loop under that condition. Adding a PL_strtok_r(NULL, ",", &lasts); call resolves the issue.
|
|
|
|
|
|
|
| |
CMakeLists.txt file was changed to account for the removal of
empty directories from the source code.
Bugzilla Bug #782953
|
|
|
|
|
|
| |
This patch brings down the warnings from 4648 to 3992.
Ticket #2
|
|
|
|
|
|
|
| |
This patch is based on Adam's patch. It brings down the warnings
from 6139 to 4648.
Ticket #2
|
|
|
|
|
| |
Added resteasy-jettison-provider to pki-setup as it is not currently delivered
by candlepin-deps.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Defined parameters that can be searched for in key and keyrequest searches.
Searches for KeyRequests and Keys will perform VLV searches if those searches are defined.
The results will include links to next and previous pages in the results.
Also added maxTime and maxResults parameters for regular searches. These will be operational
unless they exceed server defined limits - which are enforced at the repo level.
Modified link URL from "link" to "Link"
|
|
|
|
|
|
|
|
|
| |
This patch resolves multiple issues related to use of big numbers on CA and DRM
It also provides a fix for incomplete recovery requests causing null pointer exception.
Bugs: 756133, 758505.
Complete formatting changes for QueryRec.java.
|
|
|
|
|
|
|
|
|
| |
Resources now extend CMSResource.
Addressed following review comments:
* check for null pointers in SystemCertificateResource
* move logic from CertificatData constructor to CMSServlet builder method
* remove unused field uriInfo and replace hard-coded cache constant
* fixed some formatting issues
|
|
|
|
|
|
|
| |
Integrated files into current servlet structure.
Allowed exceptions to bubble up to top level.
Move bean initialization logic into DAO objects.
Fixed "keyRequest" path to "keyrequest" in KeyRequestDAO
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
| |
The byte-to-char and char-to-byte converters have been replaced
with a set of charsets, each having its own decoders and encoders.
Ticket #3
|
|
|
|
|
|
|
|
| |
The byte-to-char and char-to-byte converters have been renamed
in preparation for converting them into charset encoders and
decoders.
Ticket #3
|
|
|
|
|
|
|
|
| |
New tests have been added to measure the conversion time.
Currently the results are not validated, they are used to compare
the performance before and after upgrading to Charset.
Ticket #3
|
|
|
|
|
|
| |
New unit tests have been added to verify bug bug 359010.
Ticket #3
|
|
|
|
|
|
| |
The TreeSet has been replaced by LinkedHashSet because it is used to store
non-Comparable objects according to the insertion order. This fixes a
ClassCastException that happens while viewing Certificate Revocation List.
|
|
|
|
|
|
| |
breaking FreeIPA install
Modified sslget doIO() function to be able to handle small reads.
|
| |
|
| |
|
|
|
|
| |
Re-added files IPublshRuleSet and ILdapCertMapper
|
| |
|
| |
|
| |
|
|
|
|
| |
Using interface instead of implementing class
|
|
|
|
| |
more type safety
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
In each of the cases, more specific exceptions would be caught, masking these more generic exception.
|
| |
|
|
|
|
|
|
|
|
| |
These methods are uncallable.
There might be some discussion about the private default constructores. The Rules of Java are different from C++: If there is any constructor defined, all the other defaults befome uncallable. Thus, the private default constructors are not needed.
https://bugzilla.redhat.com/show_bug.cgi?id=728303
|