Menu
▾
▴
openca-cvsdev — CVS Postings
You can subscribe to this list here.
| 2001 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(164) |
Nov
(133) |
Dec
(307) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2002 |
Jan
(202) |
Feb
(385) |
Mar
(235) |
Apr
(295) |
May
(258) |
Jun
(293) |
Jul
(199) |
Aug
(404) |
Sep
(439) |
Oct
(417) |
Nov
(360) |
Dec
(146) |
| 2003 |
Jan
(51) |
Feb
(47) |
Mar
(299) |
Apr
(257) |
May
(282) |
Jun
(294) |
Jul
(298) |
Aug
(284) |
Sep
(80) |
Oct
(34) |
Nov
(70) |
Dec
(73) |
| 2004 |
Jan
(227) |
Feb
(239) |
Mar
(206) |
Apr
(108) |
May
(162) |
Jun
(195) |
Jul
(187) |
Aug
(212) |
Sep
(241) |
Oct
(320) |
Nov
(161) |
Dec
(46) |
| 2005 |
Jan
(55) |
Feb
(129) |
Mar
(104) |
Apr
(111) |
May
(14) |
Jun
(211) |
Jul
(330) |
Aug
(314) |
Sep
(20) |
Oct
(90) |
Nov
(12) |
Dec
(39) |
| 2006 |
Jan
(18) |
Feb
(4) |
Mar
|
Apr
(5) |
May
|
Jun
|
Jul
(2) |
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2007 |
Jan
(16) |
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
|
From: <ope...@li...> - 2005-09-06 13:58:01
|
Update of /cvsroot/openca/www.openca.org/htdocs/docs In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv27393/docs Modified Files: index.html ws20041012.html Log Message: Added demo section, fixed some typos Author of changes: oliwel Index: index.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/docs/index.html,v retrieving revision 1.19 retrieving revision 1.20 diff -C2 -d -r1.19 -r1.20 *** index.html 8 Aug 2005 10:24:18 -0000 1.19 --- index.html 6 Sep 2005 13:57:50 -0000 1.20 *************** *** 17,20 **** --- 17,21 ---- <div class="menu_item"><a href="../news/">News</a></div> <div class="menu_item"><a href="../docs/">Documentation</a></div> + <div class="menu_item"><a href="../demo/">Demo Installations</a></div> <div class="menu_item"><a href="../download/">Download</a></div> <div class="menu_item"><a href="../resources/">Resources</a></div> Index: ws20041012.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/docs/ws20041012.html,v retrieving revision 1.6 retrieving revision 1.7 diff -C2 -d -r1.6 -r1.7 *** ws20041012.html 6 Dec 2004 15:15:48 -0000 1.6 --- ws20041012.html 6 Sep 2005 13:57:50 -0000 1.7 *************** *** 17,20 **** --- 17,21 ---- <div class="menu_item"><a href="../news/">News</a></div> <div class="menu_item"><a href="../docs/">Documentation</a></div> + <div class="menu_item"><a href="../demo/">Demo Installations</a></div> <div class="menu_item"><a href="../download/">Download</a></div> <div class="menu_item"><a href="../resources/">Resources</a></div> |
|
From: <ope...@li...> - 2005-09-06 13:57:59
|
Update of /cvsroot/openca/www.openca.org/htdocs/mirrors In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv27393/mirrors Modified Files: ftp.html index.html www.html Log Message: Added demo section, fixed some typos Author of changes: oliwel Index: ftp.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/mirrors/ftp.html,v retrieving revision 1.10 retrieving revision 1.11 diff -C2 -d -r1.10 -r1.11 *** ftp.html 6 Dec 2004 15:16:04 -0000 1.10 --- ftp.html 6 Sep 2005 13:57:50 -0000 1.11 *************** *** 19,22 **** --- 19,23 ---- <div class="menu_item"><a href="../news/">News</a></div> <div class="menu_item"><a href="../docs/">Documentation</a></div> + <div class="menu_item"><a href="../demo/">Demo Installations</a></div> <div class="menu_item"><a href="../download/">Download</a></div> <div class="menu_item"><a href="../resources/">Resources</a></div> Index: index.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/mirrors/index.html,v retrieving revision 1.11 retrieving revision 1.12 diff -C2 -d -r1.11 -r1.12 *** index.html 6 Dec 2004 15:16:04 -0000 1.11 --- index.html 6 Sep 2005 13:57:50 -0000 1.12 *************** *** 19,22 **** --- 19,23 ---- <div class="menu_item"><a href="../news/">News</a></div> <div class="menu_item"><a href="../docs/">Documentation</a></div> + <div class="menu_item"><a href="../demo/">Demo Installations</a></div> <div class="menu_item"><a href="../download/">Download</a></div> <div class="menu_item"><a href="../resources/">Resources</a></div> Index: www.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/mirrors/www.html,v retrieving revision 1.12 retrieving revision 1.13 diff -C2 -d -r1.12 -r1.13 *** www.html 2 Sep 2005 10:20:26 -0000 1.12 --- www.html 6 Sep 2005 13:57:50 -0000 1.13 *************** *** 19,22 **** --- 19,23 ---- <div class="menu_item"><a href="../news/">News</a></div> <div class="menu_item"><a href="../docs/">Documentation</a></div> + <div class="menu_item"><a href="../demo/">Demo Installations</a></div> <div class="menu_item"><a href="../download/">Download</a></div> <div class="menu_item"><a href="../resources/">Resources</a></div> |
|
From: <ope...@li...> - 2005-09-06 13:57:59
|
Update of /cvsroot/openca/www.openca.org/htdocs In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv27393 Modified Files: index.html Log Message: Added demo section, fixed some typos Author of changes: oliwel Index: index.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/index.html,v retrieving revision 1.8 retrieving revision 1.9 diff -C2 -d -r1.8 -r1.9 *** index.html 7 Dec 2004 13:52:19 -0000 1.8 --- index.html 6 Sep 2005 13:57:50 -0000 1.9 *************** *** 18,21 **** --- 18,22 ---- <div class="menu_item"><a href="docs/">Documentation</a></div> <div class="menu_item"><a href="download/">Download</a></div> + <div class="menu_item"><a href="demo/">Demo Installations</a></div> <div class="menu_item"><a href="resources/">Resources</a></div> <div class="menu_item"><a href="http://sourceforge.net/cvs/?group_id=20873">CVS (sf.net)</a></div> |
|
From: <ope...@li...> - 2005-09-06 13:49:01
|
Update of /cvsroot/openca/www.openca.org/htdocs/demo In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv25298/demo Log Message: Directory /cvsroot/openca/www.openca.org/htdocs/demo added to the repository |
|
From: <ope...@li...> - 2005-09-05 09:58:48
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/cmds In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv30849 Modified Files: warnExpiring Log Message: Added additional eMail Adresses to warnExpiring Author of changes: oliwel Index: warnExpiring =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/cmds/warnExpiring,v retrieving revision 1.7 retrieving revision 1.8 diff -C2 -d -r1.7 -r1.8 *** warnExpiring 18 Nov 2004 14:43:54 -0000 1.7 --- warnExpiring 5 Sep 2005 09:58:37 -0000 1.8 *************** *** 10,13 **** --- 10,17 ---- ## highly experimental actually and not linked to any webinterface + use strict; + + our ($LANGUAGE); + sub cmdWarnExpiring { *************** *** 48,51 **** --- 52,63 ---- my $email = $cert->getParsed()->{EMAILADDRESS}; + + unless ($email) { + my $csr_serial = $cert->getParsed()->{HEADER}->{CSR_SERIAL}; + my $csr = $db->getItem( DATATYPE=>'ARCHIVED_REQUEST', KEY=>$csr_serial ); + $email = $csr->getParsed()->{HEADER}->{ADDITIONAL_ATTRIBUTE_EMAIL}; + $email ||= $service_email; + } + my $cn = $cert->getParsed()->{DN_HASH}->{CN}[0]; my $subject = $cert->getParsed()->{DN}; |
|
From: <ope...@li...> - 2005-09-02 10:20:38
|
Update of /cvsroot/openca/www.openca.org/htdocs/mirrors In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv9261/htdocs/mirrors Modified Files: www.html Log Message: Added www3 Mirror (Cryptocom) Author of changes: oliwel Index: www.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/mirrors/www.html,v retrieving revision 1.11 retrieving revision 1.12 diff -C2 -d -r1.11 -r1.12 *** www.html 6 Dec 2004 15:16:04 -0000 1.11 --- www.html 2 Sep 2005 10:20:26 -0000 1.12 *************** *** 61,64 **** --- 61,71 ---- </ul> </li> + <li>Russia + <ul> + <li> + <a href="http://www3.openca.info/">www3.openca.info</a> + [ <a href="http://www.cryptocom.ru">Cryptocom Ltd, Moscow</a> ] + </li> + </li> </ul> </li> |
|
From: <ope...@li...> - 2005-08-31 13:05:55
|
Update of /cvsroot/openca/www.openca.org/htdocs/news In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19395 Modified Files: ws2005.html Log Message: Added contact details to workshop page Author of changes: oliwel Index: ws2005.html =================================================================== RCS file: /cvsroot/openca/www.openca.org/htdocs/news/ws2005.html,v retrieving revision 1.2 retrieving revision 1.3 diff -C2 -d -r1.2 -r1.3 *** ws2005.html 16 Aug 2005 06:41:03 -0000 1.2 --- ws2005.html 31 Aug 2005 13:05:40 -0000 1.3 *************** *** 42,45 **** --- 42,46 ---- <ul> <li>Location is the Technische Universität München in the city-center of Munich/Germany.</li> + <li>Responsible contact: <a href="http://www.ldv.ei.tum.de/page47" target="_blank">Oliver Welter</a> / <a href="http://www.ldv.ei.tum.de/" target="_blank">Lehrstuhl fuer Datenverarbeitung</a></li> <li>Monday, 17. October: developers day, will start around 10.30.</li> <li>Monday evening (~18.30): as last year we will do some entertainment for all that are already in town.</li> *************** *** 57,60 **** --- 58,65 ---- <h3>Agenda</h3> <ul><li>t.b.a.</li></ul> + + <h3>Misc</h3> + <ul><li>If you have any questions, don't hesitate to contact us <a href="mailto:ws...@op...">ws...@op...</a>.</li></ul> + </div> <!-- content --> <div class="footer"> |
|
From: <ope...@li...> - 2005-08-30 07:50:18
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/cmds In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv32227/src/common/lib/cmds Modified Files: Tag: openca_0_9_2 warnExpiring Log Message: Expiry Mails are send to contactaddress from csr or service mail account if there is no suitable address in the certificate Author of changes: oliwel Index: warnExpiring =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/cmds/warnExpiring,v retrieving revision 1.5.2.2 retrieving revision 1.5.2.3 diff -C2 -d -r1.5.2.2 -r1.5.2.3 *** warnExpiring 21 Dec 2004 09:46:20 -0000 1.5.2.2 --- warnExpiring 30 Aug 2005 07:50:10 -0000 1.5.2.3 *************** *** 52,55 **** --- 52,63 ---- my $email = $cert->getParsed()->{EMAILADDRESS}; + + unless ($email) { + my $csr_serial = $cert->getParsed()->{HEADER}->{CSR_SERIAL}; + my $csr = $db->getItem( DATATYPE=>'ARCHIVED_REQUEST', KEY=>$csr_serial ); + $email = $csr->getParsed()->{HEADER}->{ADDITIONAL_ATTRIBUTE_EMAIL}; + $email ||= $service_email; + } + my $cn = $cert->getParsed()->{DN_HASH}->{CN}[0]; my $subject = $cert->getParsed()->{DN}; |
|
From: <ope...@li...> - 2005-08-29 18:31:57
|
Update of /cvsroot/openca/openca-0.9/src/modules/openca-crypto In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv7348/src/modules/openca-crypto Modified Files: Tag: openca_0_9_2 Crypto.pm Log Message: * Fixed HSM login and logout commands so now they use the token's login and logout functions instead of direct command line execution Author of changes: balamood2 Index: Crypto.pm =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/modules/openca-crypto/Crypto.pm,v retrieving revision 1.13.2.2 retrieving revision 1.13.2.3 diff -C2 -d -r1.13.2.2 -r1.13.2.3 *** Crypto.pm 16 Feb 2005 16:58:21 -0000 1.13.2.2 --- Crypto.pm 29 Aug 2005 18:31:48 -0000 1.13.2.3 *************** *** 379,382 **** --- 379,404 ---- } + sub tokenLogOut{ + my $self = shift; + my $name = $_[0]; + + my $error = 0; + + + return $self->setError (7178030, + $self->{gettext} ("The token __NAME__ cannot be initialized.", + "__NAME__", $name)) + if (not $self->addToken($name)); + + + if (not $self->{TOKEN}->{$name}->logout()) + { + return $self->setError (7174010, + $self->{gettext} ("Logout of $name token failed")); + } + return 1; + } + + sub startDaemon { my $self = shift; |
|
From: <ope...@li...> - 2005-08-29 18:31:56
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/functions In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv7348/src/common/lib/functions Modified Files: Tag: openca_0_9_2 initServer Log Message: * Fixed HSM login and logout commands so now they use the token's login and logout functions instead of direct command line execution Author of changes: balamood2 Index: initServer =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/functions/initServer,v retrieving revision 1.47.2.5 retrieving revision 1.47.2.6 diff -C2 -d -r1.47.2.5 -r1.47.2.6 *** initServer 17 Aug 2005 08:11:31 -0000 1.47.2.5 --- initServer 29 Aug 2005 18:31:48 -0000 1.47.2.6 *************** *** 517,521 **** sub initCrypto { ! our ($crypto_layer, $xml_cache, $cryptoShell, $DEBUG); my $token_xml = getRequired( 'TokenConfiguration'); --- 517,521 ---- sub initCrypto { ! our ($crypto_layer, $xml_cache, $cryptoShell, $DEBUG, $ca_token); my $token_xml = getRequired( 'TokenConfiguration'); *************** *** 543,546 **** --- 543,554 ---- } + #$ca_token = $crypto_layer->getToken ('CA'); + + #if ( not $ca_token ) { + # configError( i18nGettext ("Cannot initialize Crypto token!"). + # $OpenCA::Crypto::errval, $OpenCA::Crypto::errno ); + #} + + setPerformancePoint ("cryptoshell ready"); *************** *** 639,649 **** } - if ((uc($CHARSET) eq 'UTF-8') || (uc($CHARSET) eq 'UTF8') || (uc($CHARSET) eq 'UTF_8')){ - $query->autoEscape(0); - } - else { - $query->autoEscape(1); - } - setPerformancePoint ("session loaded and language ready"); return 1; --- 647,650 ---- |
|
From: <ope...@li...> - 2005-08-29 18:31:56
|
Update of /cvsroot/openca/openca-0.9 In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv7348 Modified Files: Tag: openca_0_9_2 CHANGES Log Message: * Fixed HSM login and logout commands so now they use the token's login and logout functions instead of direct command line execution Author of changes: balamood2 Index: CHANGES =================================================================== RCS file: /cvsroot/openca/openca-0.9/CHANGES,v retrieving revision 1.295.2.60 retrieving revision 1.295.2.61 diff -C2 -d -r1.295.2.60 -r1.295.2.61 *** CHANGES 17 Aug 2005 08:11:31 -0000 1.295.2.60 --- CHANGES 29 Aug 2005 18:31:47 -0000 1.295.2.61 *************** *** 4,7 **** --- 4,9 ---- 2005-Aug-xx: + * Fixed HSM login and logout commands so now they use the token's + login and logout functions instead of direct command line execution * Fixed bug #1257733 (switch off CGI auto escaping to avoid wrong escaping of utf8 characters) (patch supplied by Julia Dubenskaya) |
|
From: <ope...@li...> - 2005-08-29 18:31:56
|
Update of /cvsroot/openca/openca-0.9/src/modules/openca-crypto/Token In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv7348/src/modules/openca-crypto/Token Modified Files: Tag: openca_0_9_2 LunaCA3.pm Log Message: * Fixed HSM login and logout commands so now they use the token's login and logout functions instead of direct command line execution Author of changes: balamood2 Index: LunaCA3.pm =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/modules/openca-crypto/Token/LunaCA3.pm,v retrieving revision 1.7.2.6 retrieving revision 1.7.2.7 diff -C2 -d -r1.7.2.6 -r1.7.2.7 *** LunaCA3.pm 17 Feb 2005 09:12:50 -0000 1.7.2.6 --- LunaCA3.pm 29 Aug 2005 18:31:48 -0000 1.7.2.7 *************** *** 42,45 **** --- 42,47 ---- ## create a new LunaCA3 token sub new { + + $ENV{'LD_LIBRARY_PATH'}=$ENV{'LD_LIBRARY_PATH'}.":/apps/usr/luna/lib"; my $that = shift; my $class = ref($that) || $that; *************** *** 66,69 **** --- 68,99 ---- return undef if (not $self->{CRYPTO}); return undef if (not $self->{NAME}); + + $keys->{ENGINE} = "LunaCA3"; + + if ($self->{MODE}=~ /^(SESSION|DAEMON)$/i) + { + my $lower=1000; + my $upper=50000; + my $HiRandom = int(rand( $upper-$lower + 10000 ) ) + $lower; + my $LoRandom = int(rand ($upper -$lower + 1)) + $lower ; + + my $AppID = "$HiRandom:$LoRandom"; + #print "\n AppID = $HiRandom:$LoRandom\n"; + #$self->{APPID} = $AppID; + $self->{APPID} = $keys->{APPID};; + if (not $self->login()){ + $errno = 7134014; + $errval = i18nGettext ("Cannot use the private key of the CA (__ERRNO__). __ERRVAL__", + "__ERRNO__", $self->errno(), + "__ERRVAL__", $self->errval()); + return undef; + } + print " OK"; + $keys->{PRE_ENGINE} = " ENGINE_INIT:". $self->{SLOT}.":".$self->{APPID}; + + + } + + ## create openssl object *************** *** 72,76 **** #$keys->{ENGINE} = "LunaCA3 -enginearg ". # $self->{SLOT}.":".$self->{APPID}; - $keys->{ENGINE} = "LunaCA3"; $keys->{KEYFORM} = "PEM"; $self->debug ("initing OpenSSL"); --- 102,105 ---- *************** *** 146,149 **** --- 175,183 ---- my $keys = { @_ }; + if ( -e $self->{LOCK_FILE}) { + return 1; + } + + my $command = $self->{UTILITY}; $command .= " -o "; *************** *** 151,154 **** --- 185,189 ---- $command .= " -i ".$self->{APPID}; + $self->debug ("executing login"); my $ret = `$command`; |
|
From: <ope...@li...> - 2005-08-29 18:31:56
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/cmds In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv7348/src/common/lib/cmds Modified Files: Tag: openca_0_9_2 hsmLogin hsmLogout Log Message: * Fixed HSM login and logout commands so now they use the token's login and logout functions instead of direct command line execution Author of changes: balamood2 Index: hsmLogin =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/cmds/hsmLogin,v retrieving revision 1.2.2.4 retrieving revision 1.2.2.5 diff -C2 -d -r1.2.2.4 -r1.2.2.5 *** hsmLogin 1 Apr 2005 15:49:38 -0000 1.2.2.4 --- hsmLogin 29 Aug 2005 18:31:48 -0000 1.2.2.5 *************** *** 8,33 **** ## Parameters: sub cmdHsmLogin { - print startLogPage (gettext("Login to hardware security module")); - print addLogSection (gettext("The login command is:")); - my $command = getRequired('HSM_LOGIN_CMD'); - print addPreLogLine ($command); - print closeLogSection (); ! print addLogSection (gettext("Run the command ... ")); ! my $ret=`$command`; ! if ($? == 0) { ! print addLogLine (gettext("OK")); ! } else { ! print addLogLine ("<FONT COLOR=#FF0000>FAILED</FONT>"); ! print addPreLogLine ("<FONT COLOR=#FF0000>$ret</FONT>"); ! } ! print closeLogSection (); ! print closeLogPage (); ! return 1; } --- 8,35 ---- ## Parameters: + use strict; + sub cmdHsmLogin { ! print startLogPage (gettext("Login to hardware security module")); ! print addLogSection (gettext("The login command is:")); ! my $ca_token; ! #$crypto_layer->startDaemon(); ! $ca_token = $crypto_layer->getToken ('CA'); ! ! if ( not $ca_token ) { ! configError( i18nGettext ("Cannot initialize Crypto token!"). ! $OpenCA::Crypto::errval, $OpenCA::Crypto::errno ); ! } ! ! print closeLogSection (); ! ! print closeLogPage (); ! ! return 1; } Index: hsmLogout =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/cmds/hsmLogout,v retrieving revision 1.2.2.4 retrieving revision 1.2.2.5 diff -C2 -d -r1.2.2.4 -r1.2.2.5 *** hsmLogout 1 Apr 2005 15:49:38 -0000 1.2.2.4 --- hsmLogout 29 Aug 2005 18:31:48 -0000 1.2.2.5 *************** *** 8,33 **** ## Parameters: sub cmdHsmLogout { - print startLogPage (gettext("Logout from hardware security module")); - print addLogSection (gettext("The logout command is:")); - my $command = getRequired('HSM_LOGOUT_CMD'); - print addPreLogLine ($command); - print closeLogSection (); ! print addLogSection (gettext("Run the command ... ")); ! my $ret=`$command`; ! if ($? == 0) { ! print addLogLine (gettext("OK")); ! } else { ! print addLogLine ("<FONT COLOR=#FF0000>FAILED</FONT>"); ! print addPreLogLine ("<FONT COLOR=#FF0000>$ret</FONT>"); ! } ! print closeLogSection (); ! print closeLogPage (); ! return 1; } --- 8,38 ---- ## Parameters: + use strict; + sub cmdHsmLogout { ! print startLogPage (gettext("Logout from hardware security modules in daemon mode")); ! print addLogSection (gettext("Ending the HSM session:<br>")); ! print closeLogSection (); ! ! print addLogSection (gettext("Stop modules via cryptographic layer ...")); ! ! my $ret = $crypto_layer->tokenLogOut('CA'); ! if (not $ret == 1) { ! ! print addLogLine ("<FONT COLOR=#FF0000>FAILED</FONT>"); ! print addPreLogLine ("<FONT COLOR=#FF0000>$ret</FONT>"); ! } ! ! ! print closeLogSection (); ! ! print closeLogPage (); ! ! return 1; } |
|
From: <ope...@li...> - 2005-08-29 12:14:49
|
Update of /cvsroot/openca/openca-0.9/src/ocspd/src In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv13771/src Modified Files: general.h ocspd.c server.c support.c support.h Log Message: Author of changes: madwolf Index: general.h =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/src/general.h,v retrieving revision 1.15 retrieving revision 1.16 diff -C2 -d -r1.15 -r1.16 *** general.h 27 Apr 2005 13:33:47 -0000 1.15 --- general.h 29 Aug 2005 12:14:36 -0000 1.16 *************** *** 307,310 **** --- 307,314 ---- CRL_DATA crl_data; + /* User and Group the processes will run as */ + char *user; + char *group; + /* Digest to be used */ EVP_MD *digest; Index: ocspd.c =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/src/ocspd.c,v retrieving revision 1.13 retrieving revision 1.14 diff -C2 -d -r1.13 -r1.14 *** ocspd.c 27 Apr 2005 13:33:47 -0000 1.13 --- ocspd.c 29 Aug 2005 12:14:36 -0000 1.14 *************** *** 29,34 **** --- 29,36 ---- #endif + /* #include <pwd.h> #include <grp.h> + */ #include <time.h> *************** *** 86,94 **** int main ( int argc, char *argv[] ) { struct passwd *pw = NULL; struct group *gr = NULL; ! ! char *usr = NULL; ! char *group = NULL; char *port_s = NULL; --- 88,95 ---- int main ( int argc, char *argv[] ) { + /* struct passwd *pw = NULL; struct group *gr = NULL; ! */ char *port_s = NULL; *************** *** 479,497 **** /* Get the user name to set the process to */ ! if ((group == NULL) && ((group = NCONF_get_string(ocspd_conf->conf, section, ! ENV_OCSPD_GROUP)) == NULL)) { if( verbose ) lookup_fail(section,ENV_OCSPD_GROUP); ! group = OCSPD_DEF_GROUP; } /* Get the user name to set the process to */ ! if ((usr == NULL) && ((usr = NCONF_get_string(ocspd_conf->conf, section, ! ENV_OCSPD_USER)) == NULL)) { if( verbose ) lookup_fail(section,ENV_OCSPD_USER); ! usr = OCSPD_DEF_USER; } --- 480,500 ---- /* Get the user name to set the process to */ ! if ((ocspd_conf->group == NULL) && ! ((ocspd_conf->group = NCONF_get_string(ocspd_conf->conf, ! section, ENV_OCSPD_GROUP)) == NULL)) { if( verbose ) lookup_fail(section,ENV_OCSPD_GROUP); ! ocspd_conf->group = OCSPD_DEF_GROUP; } /* Get the user name to set the process to */ ! if ((ocspd_conf->user == NULL) && ! ((ocspd_conf->user = NCONF_get_string(ocspd_conf->conf, ! section, ENV_OCSPD_USER)) == NULL)) { if( verbose ) lookup_fail(section,ENV_OCSPD_USER); ! ocspd_conf->user = OCSPD_DEF_USER; } *************** *** 502,506 **** lookup_fail(section,ENV_OCSPD_PIDFILE); ! usr = OCSPD_DEF_PIDFILE; } /*****************************************************************/ --- 505,509 ---- lookup_fail(section,ENV_OCSPD_PIDFILE); ! pidfile = OCSPD_DEF_PIDFILE; } /*****************************************************************/ *************** *** 669,695 **** /*****************************************************************/ - /* Let's have the program running under username.groupid, somewhere */ - - if( (gr = getgrnam( group ) ) == NULL ) { - syslog( LOG_ERR, "Cannot find group %s", group); - goto err; - } - - if (setgid (gr->gr_gid) == -1) { - syslog(LOG_ERR,"Error setting group %d (%s)", gr->gr_gid, group); - exit (1); - } - - if( (pw = getpwnam( usr ) ) == NULL ) { - syslog( LOG_ERR, "Cannot find user %s", usr); - goto err; - } - - if (setuid (pw->pw_uid) == -1) { - syslog(LOG_ERR,"Error setting user %d (%s)", pw->pw_uid, usr ); - exit (1); - } - - /*****************************************************************/ /* Main spawn and signal routines */ --- 672,675 ---- Index: server.c =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/src/server.c,v retrieving revision 1.14 retrieving revision 1.15 diff -C2 -d -r1.14 -r1.15 *** server.c 27 Apr 2005 13:33:47 -0000 1.14 --- server.c 29 Aug 2005 12:14:36 -0000 1.15 *************** *** 113,116 **** --- 113,122 ---- } + /* Set privileges */ + if( set_privileges( ocspd_conf ) < 1 ) { + syslog( LOG_ERR, "Error in setting privileges, exiting!"); + exit(-7); + } + /* Set the Lock Management into config variable */ ocspd_conf->lck = init_lock(); *************** *** 125,129 **** signal( SIGTERM, handle_sigkill ); signal( SIGSTOP, handle_sigkill ); ! signal( SIGHUP, handle_sigkill ); signal( SIGQUIT, handle_sigkill ); --- 131,137 ---- signal( SIGTERM, handle_sigkill ); signal( SIGSTOP, handle_sigkill ); ! #ifdef SIGHUP ! signal( SIGHUP, handle_sigusr1 ); ! #endif signal( SIGQUIT, handle_sigkill ); *************** *** 161,170 **** /* Close the bio_socket */ if(verbose) syslog( LOG_INFO, "Closing main socket while reloading CRLs"); BIO_free_all(bio_socket); - sleep(1); if( verbose ) syslog(LOG_ERR, "Freeing lock [%d]", --- 169,180 ---- /* Close the bio_socket */ + /* if(verbose) syslog( LOG_INFO, "Closing main socket while reloading CRLs"); BIO_free_all(bio_socket); sleep(1); + */ + if( verbose ) syslog(LOG_ERR, "Freeing lock [%d]", *************** *** 184,188 **** syslog( LOG_INFO, "CRLs reloaded."); } - sleep(1); --- 194,197 ---- *************** *** 200,203 **** --- 209,213 ---- /* Re-Init the socket */ + /* if(verbose) syslog(LOG_INFO, *************** *** 208,211 **** --- 218,222 ---- exit( -6 ); } + */ if(verbose) *************** *** 245,254 **** BIO_set_bind_mode(bio_socket, 2L ); ! if (verbose) syslog(LOG_INFO, "Successfully binded to %s", addr); BIO_set_accept_bios(bio_socket, buf_bio); buf_bio = NULL; ! if (BIO_do_accept(bio_socket) <= 0) ! { syslog( LOG_ERR, "Error setting up accept BIO"); BIO_free_all( bio_socket ); --- 256,266 ---- BIO_set_bind_mode(bio_socket, 2L ); ! if (verbose) ! syslog(LOG_INFO, "Successfully binded to %s", addr); BIO_set_accept_bios(bio_socket, buf_bio); buf_bio = NULL; ! ! if (BIO_do_accept(bio_socket) <= 0) { syslog( LOG_ERR, "Error setting up accept BIO"); BIO_free_all( bio_socket ); *************** *** 315,324 **** goto err; } if((ocsp_req = get_ocsp_request( curr_bio )) == NULL ) { ! syslog(LOG_ERR, "Can not parse ocsp request"); goto err; } ! if(( make_ocsp_response(&ocsp_resp, ! ocsp_req, ocspd_conf)) == 0 ) { syslog( LOG_ERR, "Error in generating response" ); goto err; --- 327,339 ---- goto err; } + if((ocsp_req = get_ocsp_request( curr_bio )) == NULL ) { ! if( verbose ) ! syslog(LOG_ERR, "Can not parse ocsp request"); goto err; } ! ! if(( make_ocsp_response(&ocsp_resp, ocsp_req, ocspd_conf)) ! == 0 ) { syslog( LOG_ERR, "Error in generating response" ); goto err; *************** *** 365,369 **** if(!have_post) { if( strncmp( buf, "POST", 4) ) { ! syslog(LOG_ERR,"Method is not POST, rejecting"); return (NULL); } --- 380,384 ---- if(!have_post) { if( strncmp( buf, "POST", 4) ) { ! if( verbose ) syslog(LOG_ERR,"Method is not POST, rejecting"); return (NULL); } *************** *** 380,384 **** ocsp_req = d2i_OCSP_REQUEST_bio(bio, NULL); if (!ocsp_req) { ! syslog( LOG_ERR, "Error parsing OCSP request\n"); return(NULL); } --- 395,400 ---- ocsp_req = d2i_OCSP_REQUEST_bio(bio, NULL); if (!ocsp_req) { ! /* remove to prevent unused log... ! syslog( LOG_ERR, "Error parsing OCSP request\n");*/ return(NULL); } *************** *** 390,395 **** char http_resp[] = ! "HTTP/1.0 200 OK\r\nContent-type: application/ocsp-response\r\n" ! "Content-Length: %d\r\n\r\n"; if (!bio) { --- 406,413 ---- char http_resp[] = ! "HTTP/1.0 200 OK\r\n" ! "Content-type: application/ocsp-response\r\n" ! "Content-Transfer-Encoding: Binary\r\n" ! "Content-Length: %d\r\n\r\n"; if (!bio) { *************** *** 574,578 **** server_status = RELOAD; ! return; --- 592,596 ---- server_status = RELOAD; ! ocspd_conf->crl_auto_reload = 10; return; *************** *** 682,685 **** --- 700,707 ---- int ppid = 0; int min_alarm = 0; + /* + struct passwd *pw = NULL; + struct group *gr = NULL; + */ if(verbose) *************** *** 687,706 **** max_child, live_childrens ); /* Let's init the client list, -1 means free space */ for( i = 0 ; i < max_child; i++ ) { /* Forking process */ pid = fork(); if ( pid == 0 ) { /* child */ - // Register signal handlers signal( SIGCHLD, SIG_DFL ); signal( SIGALRM, SIG_IGN ); signal( SIGHUP, child_sighup ); signal( SIGTERM, exit_child ); signal( SIGKILL, exit_child ); signal( SIGSTOP, exit_child ); handle_connection( bio, ocspd_conf ); _exit(0); --- 709,755 ---- max_child, live_childrens ); + /* + if( (pw = getpwnam( ocspd_conf->user ) ) == NULL ) { + syslog( LOG_ERR, "Cannot find user %s", ocspd_conf->user); + return 0; + } + if( (gr = getgrnam( ocspd_conf->group ) ) == NULL ) { + syslog( LOG_ERR, "Cannot find group %s", ocspd_conf->group); + return 0; + } + */ + /* Let's init the client list, -1 means free space */ for( i = 0 ; i < max_child; i++ ) { + /* Forking process */ pid = fork(); + if ( pid == 0 ) { /* child */ // Register signal handlers signal( SIGCHLD, SIG_DFL ); signal( SIGALRM, SIG_IGN ); + #ifdef SIGHUP signal( SIGHUP, child_sighup ); + #endif signal( SIGTERM, exit_child ); signal( SIGKILL, exit_child ); signal( SIGSTOP, exit_child ); + /* + if (setgid (gr->gr_gid) == -1) { + syslog(LOG_ERR,"Error setting group %d (%s)", + gr->gr_gid, ocspd_conf->user); + _exit(1); + } + if (setuid (pw->pw_uid) == -1) { + syslog(LOG_ERR,"Error setting user%d (%s)", + gr->gr_gid, ocspd_conf->group); + _exit(1); + } + */ + handle_connection( bio, ocspd_conf ); _exit(0); *************** *** 721,724 **** --- 770,774 ---- /* Now on the parent process we setup the auto_checking functions */ + if( ocspd_conf->crl_auto_reload || ocspd_conf->crl_check_validity ) { *************** *** 839,843 **** alarm( ocspd_conf->crl_check_validity ); } - return; } --- 889,892 ---- Index: support.c =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/src/support.c,v retrieving revision 1.5 retrieving revision 1.6 diff -C2 -d -r1.5 -r1.6 *** support.c 27 Apr 2005 13:33:47 -0000 1.5 --- support.c 29 Aug 2005 12:14:36 -0000 1.6 *************** *** 22,25 **** --- 22,28 ---- #include <openssl/x509.h> + #include <pwd.h> + #include <grp.h> + #define BUFF_MAX_SIZE 1024 *************** *** 312,313 **** --- 315,346 ---- return ret; } + + int set_privileges( OCSPD_CONFIG *conf ) { + + struct passwd *pw = NULL; + struct group *gr = NULL; + + if( (gr = getgrnam( conf->group ) ) == NULL ) { + syslog( LOG_ERR, "Cannot find group %s", conf->group); + return 0; + } + + if( (pw = getpwnam( conf->user ) ) == NULL ) { + syslog( LOG_ERR, "Cannot find user %s", conf->user); + return 0; + } + + if (setgid (gr->gr_gid) == -1) { + syslog(LOG_ERR, "Error setting group %d (%s)", + gr->gr_gid, conf->group); + return 0; + } + + if (setuid (pw->pw_uid) == -1) { + syslog(LOG_ERR,"Error setting user %d (%s)", + pw->pw_uid, conf->user ); + return 0; + } + + return 1; + } Index: support.h =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/src/support.h,v retrieving revision 1.4 retrieving revision 1.5 diff -C2 -d -r1.4 -r1.5 *** support.h 28 Oct 2004 09:38:40 -0000 1.4 --- support.h 29 Aug 2005 12:14:36 -0000 1.5 *************** *** 23,24 **** --- 23,25 ---- STACK_OF(X509) *load_certs(BIO *err, const char *file, int format, const char *pass, const char *cert_descrip); + int set_privileges(OCSPD_CONFIG *conf ); |
|
From: <ope...@li...> - 2005-08-29 12:14:49
|
Update of /cvsroot/openca/openca-0.9/src/ocspd In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv13771 Modified Files: ChangeLog Makefile.am Makefile.in VERSION Added Files: spec Log Message: Author of changes: --- NEW FILE: spec --- %define ver 1.0.5 %define RELEASE 2 %define rel %{?CUSTOM_RELEASE} %{!?CUSTOM_RELEASE:%RELEASE} %define prefix / %define mand /usr/man %define sslprefix /usr/local/openssl-0.9.7e %define openssl_req 0.9.7 %define openldap_req 2.2 Summary: OpenCA OCSP Daemon Name: OpenCA-OCSPD Version: %ver Release: %rel Copyright: OpenCA Licensed Software Group: Network/Daemons Source: OpenCA-OCSPD-%{ver}.tar.gz BuildRoot: /var/tmp/OpenCA-OCSPD-%{ver}-root URL: http://www.openca.org/ Docdir: %{prefix}/doc Prefix: %prefix Requires: openssl >= %openssl_req %description The openca-ocspd is an RFC2560 compliant OCSPD responder. It can be used to verify the status of a certificate using OCSP clients (such as Mozilla/Firefox/Thunderbird). %prep %setup %ifarch alpha ARCH_FLAGS="--host=alpha-redhat-linux" %endif if [ ! -f configure ]; then CFLAGS="$RPM_OPT_FLAGS" ./autogen.sh $ARCH_FLAGS --prefix=%{prefix} --with-openssl-prefix=%{sslprefix} --enable-openssl-engine --mandir=%{mand} --disable-shared else CFLAGS="$RPM_OPT_FLAGS" ./configure $ARCH_FLAGS --prefix=%{prefix} --with-openssl-prefix=%{sslprefix} --enable-openssl-engine --mandir=%{mand} --disable-shared fi %build if [ "$SMP" != "" ]; then (make "MAKE=make -k -j $SMP"; exit 0) make else make fi %install [ -n "$RPM_BUILD_ROOT" -a "$RPM_BUILD_ROOT" != / ] && rm -rf $RPM_BUILD_ROOT make prefix=$RPM_BUILD_ROOT%{prefix} mandir=$RPM_BUILD_ROOT%{mand} install %clean [ -n "$RPM_BUILD_ROOT" -a "$RPM_BUILD_ROOT" != / ] && rm -rf $RPM_BUILD_ROOT %files %defattr(-, root, root) %doc AUTHORS COPYING ChangeLog NEWS README %{prefix}/sbin/* %{prefix}/etc/init.d/* %{prefix}/etc/ocspd/* %{mand}/* %post %postun %changelog * Thu Apr 28 2005 Massimiliano Pala <ma...@op...> -Fixed RPM installation of man pages * Wed Apr 27 2005 Massimiliano Pala <ma...@op...> -Fixed RPM creation on Fedora Distros * Tue Apr 19 2005 Massimiliano Pala <ma...@op...> -Fixed child re-spawning when HSM is active -Added support for CA/CRL downloading via HTTP * Fri Jan 28 2005 Massimiliano Pala <ma...@op...> -Fixed SIGHUP problem when auto_crl_reload was enabled -Fixed Solaris include for flock usage instead of semaphores -Added --enable-flock and --enable-semaphores in configure script * Tue Jan 18 2005 Massimiliano Pala <ma...@op...> -Fixed bug for nextUpdate and lastUpdate fields setting when reloading CRLs. -Added CA certificate loading from LDAP. -Added multiple CA certificate from the same cACertificate entry in LDAP. -Fixed Solaris putenv issues in configure.c -Added OS architecture specific targes in makefiles * Wed May 19 2004 Massimiliano Pala <ma...@op...> -First support for new data structure for CRL lookup and multi CAs support (not working now) -Fixed configure.in for correct generation of config.h -Fixed configure.in for openldap ld options (for non-standard directories) * Mon May 17 2004 Massimiliano Pala <ma...@op...> -Fixed compilation problems on Solaris -Added support for exclusion of ldap usage (--disable-openldap) -Added support for openldap directory specification -Fixed signal handling and correct children death -Added pre-spawning of processes() * Thu May 13 2004 Massimiliano Pala <ma...@op...> -Fixed miscreation of responses when certificate is revoked -Fixed crl loading checking (segmentation fault on loading fixed) * Fri Jan 17 2003 Massimiliano Pala <ma...@op...> -Correclty lookup using loaded CRL -Added extensions management from CRL to OCSP response * Mon Jan 13 2003 Massimiliano Pala <ma...@op...> -Updated the sample (contrib/) configuration file -Added CRL retrivial from LDAP server -Added LDAP support (needs OpenLDAP libraries) -Added CRL retrivial from file * Wed Oct 16 2002 Massimiliano Pala <ma...@op...> -Fixed daemon description -Fixed requirements (for ENGINE support) -Added multi child spawning (max_childs_num) -Fixed zombi child presence * Mon Feb 25 2002 Massimiliano Pala <ma...@op...> -Fixed response generation * Thu Feb 20 2001 Massimiliano Pala <ma...@op...> -First RPM spec file Index: ChangeLog =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/ChangeLog,v retrieving revision 1.10 retrieving revision 1.11 diff -C2 -d -r1.10 -r1.11 *** ChangeLog 27 Apr 2005 13:33:41 -0000 1.10 --- ChangeLog 29 Aug 2005 12:14:36 -0000 1.11 *************** *** 1,56 **** * Tue Apr 19 19:50:09 CEST 2005 ! -Spec file updated ! -Man pages updated with new configuration options ! -Fixed child re-spawning when HSM is active ! -Added support for CA/CRL downloading via HTTP * Fri Jan 28 16:14:14 CET 2005 ! -Fixed SIGHUP problem when auto_crl_reload was enabled ! -Fixed Solaris include for flock usage instead of semaphores ! -Added --enable-flock and --enable-semaphores in configure script * Tue Jan 18 14:01:13 CET 2005 ! - Fixed bug for nextUpdate and lastUpdate fields setting when reloading ! CRLs. ! - Added CA certificate loading from LDAP. ! - Added multiple CA certificate from the same cACertificate entry in LDAP. ! - Fixed Solaris putenv issues in configure.c ! - Added OS architecture specific targes in makefiles * Wed May 19 19:19:11 CEST 2004 ! - First support for new data structure for CRL lookup and multi CAs ! support (not working now) ! - Fixed configure.in for correct generation of config.h ! - Fixed configure.in for openldap ld options (for non-standard directories) * Mon May 17 19:06:39 CEST 2004 ! - Fixed compilation problems on Solaris ! - Added support for exclusion of ldap usage (--disable-openldap) ! - Added support for openldap directory specification ! - Fixed signal handling and correct children death ! - Added pre-spawning of processes() * Thu May 13 20:21:09 CEST 2004 ! - Fixed miscreation of responses when certificate is revoked ! - Fixed crl loading checking (segmentation fault on loading fixed) * Fri Jan 17 17:59:56 CET 2003 ! - Correclty lookup using loaded CRL ! - Added extensions management from CRL to OCSP response * Mon Jan 13 14:00:24 CET 2003 ! - Updated the sample (contrib/) configuration file ! - Added CRL retrivial from LDAP server ! - Added LDAP support (needs OpenLDAP libraries) ! - Added CRL retrivial from file * Oct 16 05:29:00 Tue 2002 ! - Added multi child spawning (max_childs_num) ! - Fixed zombi child presence * Feb 25 00:54:00 Mon 2002 ! - Fixed response generation ! - Added verbose information to syslog ! - Support for the index.txt db file ! - Addedd response generation related keywords in the configuration ! file --- 1,67 ---- + * Mon Aug 29 12:45:38 CEST 2005 Massimiliano Pala <ma...@op...> + -Added 3rd header in response to solve a CiscoIOS problem + + * Wed Jun 1 2005 Massimiliano Pala <ma...@op...> + -Modified the privilege management to allow for the server to run on + ports < 1024 under not privileged user/group + -Fixed some Solaris signal-handling definitions + + * Thu Apr 28 2005 Massimiliano Pala <ma...@op...> + -Fixed RPM installation of man pages + * Tue Apr 19 19:50:09 CEST 2005 ! -Spec file updated ! -Man pages updated with new configuration options ! -Fixed child re-spawning when HSM is active ! -Added support for CA/CRL downloading via HTTP * Fri Jan 28 16:14:14 CET 2005 ! -Fixed SIGHUP problem when auto_crl_reload was enabled ! -Fixed Solaris include for flock usage instead of semaphores ! -Added --enable-flock and --enable-semaphores in configure script * Tue Jan 18 14:01:13 CET 2005 ! -Fixed bug for nextUpdate and lastUpdate fields setting when reloading ! CRLs. ! -Added CA certificate loading from LDAP. ! -Added multiple CA certificate from the same cACertificate entry in LDAP. ! -Fixed Solaris putenv issues in configure.c ! -Added OS architecture specific targes in makefiles * Wed May 19 19:19:11 CEST 2004 ! -First support for new data structure for CRL lookup and multi CAs ! support (not working now) ! -Fixed configure.in for correct generation of config.h ! -Fixed configure.in for openldap ld options (for non-standard directories) * Mon May 17 19:06:39 CEST 2004 ! -Fixed compilation problems on Solaris ! -Added support for exclusion of ldap usage (--disable-openldap) ! -Added support for openldap directory specification ! -Fixed signal handling and correct children death ! -Added pre-spawning of processes() * Thu May 13 20:21:09 CEST 2004 ! -Fixed miscreation of responses when certificate is revoked ! -Fixed crl loading checking (segmentation fault on loading fixed) * Fri Jan 17 17:59:56 CET 2003 ! -Correclty lookup using loaded CRL ! -Added extensions management from CRL to OCSP response * Mon Jan 13 14:00:24 CET 2003 ! -Updated the sample (contrib/) configuration file ! -Added CRL retrivial from LDAP server ! -Added LDAP support (needs OpenLDAP libraries) ! -Added CRL retrivial from file * Oct 16 05:29:00 Tue 2002 ! -Added multi child spawning (max_childs_num) ! -Fixed zombi child presence * Feb 25 00:54:00 Mon 2002 ! -Fixed response generation ! -Added verbose information to syslog ! -Support for the index.txt db file ! -Addedd response generation related keywords in the configuration ! file Index: Makefile.am =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/Makefile.am,v retrieving revision 1.10 retrieving revision 1.11 diff -C2 -d -r1.10 -r1.11 *** Makefile.am 27 Apr 2005 13:33:41 -0000 1.10 --- Makefile.am 29 Aug 2005 12:14:36 -0000 1.11 *************** *** 55,59 **** EXTRA_SCRIPTS = contrib/autogen.sh contrib/build-rpm.sh \ ! contrib/OpenCA-OCSPD.spec EXTRA_EXAMPLES = examples/index.txt examples/start.sh examples/request.sh \ --- 55,59 ---- EXTRA_SCRIPTS = contrib/autogen.sh contrib/build-rpm.sh \ ! contrib/OpenCA-OCSPD.spec spec EXTRA_EXAMPLES = examples/index.txt examples/start.sh examples/request.sh \ Index: Makefile.in =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/Makefile.in,v retrieving revision 1.20 retrieving revision 1.21 diff -C2 -d -r1.20 -r1.21 *** Makefile.in 27 Apr 2005 13:33:41 -0000 1.20 --- Makefile.in 29 Aug 2005 12:14:36 -0000 1.21 *************** *** 256,260 **** EXTRA_SCRIPTS = contrib/autogen.sh contrib/build-rpm.sh \ ! contrib/OpenCA-OCSPD.spec EXTRA_EXAMPLES = examples/index.txt examples/start.sh examples/request.sh \ --- 256,260 ---- EXTRA_SCRIPTS = contrib/autogen.sh contrib/build-rpm.sh \ ! contrib/OpenCA-OCSPD.spec spec EXTRA_EXAMPLES = examples/index.txt examples/start.sh examples/request.sh \ Index: VERSION =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/VERSION,v retrieving revision 1.13 retrieving revision 1.14 diff -C2 -d -r1.13 -r1.14 *** VERSION 27 Apr 2005 13:33:41 -0000 1.13 --- VERSION 29 Aug 2005 12:14:36 -0000 1.14 *************** *** 1 **** ! 1.0.3 --- 1 ---- ! 1.0.5 |
|
From: <ope...@li...> - 2005-08-29 12:14:45
|
Update of /cvsroot/openca/openca-0.9/src/ocspd/docs In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv13771/docs Modified Files: ocspd.conf.3 Log Message: Author of changes: madwolf Index: ocspd.conf.3 =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/docs/ocspd.conf.3,v retrieving revision 1.4 retrieving revision 1.5 diff -C2 -d -r1.4 -r1.5 *** ocspd.conf.3 27 Apr 2005 13:33:46 -0000 1.4 --- ocspd.conf.3 29 Aug 2005 12:14:36 -0000 1.5 *************** *** 130,134 **** .\" .IX Title "ocspd.conf.3 3" ! .TH ocspd.conf.3 3 "2005-04-27" "openca-ocspd 1.0.2" "OpenCA Contributed Manual" .SH "NAME" .Vb 1 --- 130,134 ---- .\" .IX Title "ocspd.conf.3 3" ! .TH ocspd.conf.3 3 "2005-04-27" "openca-ocspd 1.0.3" "OpenCA Contributed Manual" .SH "NAME" .Vb 1 *************** *** 436,444 **** the base of the \s-1LDAP\s0 tree, but different installations are also possible). ! .IP "\fBengine_id\fR" 4 .IX Item "engine_id" Specifies the \s-1ENGINE\s0 id to be used \- check OpenSSL and your \s-1HSM\s0 vendor to get more info about this parameter. ! .IP "\fBengine_pre\fR" 4 .IX Item "engine_pre" Some \s-1HSM\s0 need initialisation before access to the crypto accelerated --- 436,449 ---- the base of the \s-1LDAP\s0 tree, but different installations are also possible). ! .RE ! .IP "\fB\s-1ENGINE\s0 section\fR" ! .IX Item "ENGINE section" ! .PD 0 ! .IP "\fBengine_id\fR" 6 .IX Item "engine_id" + .PD Specifies the \s-1ENGINE\s0 id to be used \- check OpenSSL and your \s-1HSM\s0 vendor to get more info about this parameter. ! .IP "\fBengine_pre\fR" 6 .IX Item "engine_pre" Some \s-1HSM\s0 need initialisation before access to the crypto accelerated *************** *** 451,455 **** ... It is possible to have as many commands as needed. ! .IP "\fBengine_post\fR" 4 .IX Item "engine_post" Some HSMs need to perform commands after the \s-1ENGINE\s0 initialisation --- 456,460 ---- ... It is possible to have as many commands as needed. ! .IP "\fBengine_post\fR" 6 .IX Item "engine_post" Some HSMs need to perform commands after the \s-1ENGINE\s0 initialisation |
|
From: <ope...@li...> - 2005-08-29 12:14:45
|
Update of /cvsroot/openca/openca-0.9/src/ocspd/contrib In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv13771/contrib Modified Files: OpenCA-OCSPD.spec Log Message: Author of changes: madwolf Index: OpenCA-OCSPD.spec =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/ocspd/contrib/OpenCA-OCSPD.spec,v retrieving revision 1.2 retrieving revision 1.3 diff -C2 -d -r1.2 -r1.3 *** OpenCA-OCSPD.spec 27 Apr 2005 13:33:46 -0000 1.2 --- OpenCA-OCSPD.spec 29 Aug 2005 12:14:36 -0000 1.3 *************** *** 1,8 **** ! %define ver 1.0.3 ! %define RELEASE 1 ! %define rel %{?CUSTOM_RELEASE} %{!?CUSTOM_RELEASE:%RELEASE} %define prefix / %define sslprefix /usr/local/openssl-0.9.7e %define openssl_req 0.9.7 Summary: OpenCA OCSP Daemon --- 1,10 ---- ! %define ver 1.0.5 ! %define RELEASE 1 ! %define rel %{?CUSTOM_RELEASE} %{!?CUSTOM_RELEASE:%RELEASE} %define prefix / + %define mand /usr/man %define sslprefix /usr/local/openssl-0.9.7e %define openssl_req 0.9.7 + %define openldap_req 2.2 Summary: OpenCA OCSP Daemon *************** *** 32,38 **** if [ ! -f configure ]; then ! CFLAGS="$RPM_OPT_FLAGS" ./autogen.sh $ARCH_FLAGS --prefix=%{prefix} --with-openssl-prefix=%{sslprefix} --enable-openssl-engine else ! CFLAGS="$RPM_OPT_FLAGS" ./configure $ARCH_FLAGS --prefix=%{prefix} --with-openssl-prefix=%{sslprefix} --enable-openssl-engine fi --- 34,40 ---- if [ ! -f configure ]; then ! CFLAGS="$RPM_OPT_FLAGS" ./autogen.sh $ARCH_FLAGS --prefix=%{prefix} --with-openssl-prefix=%{sslprefix} --enable-openssl-engine --mandir=%{mand} --disable-shared else ! CFLAGS="$RPM_OPT_FLAGS" ./configure $ARCH_FLAGS --prefix=%{prefix} --with-openssl-prefix=%{sslprefix} --enable-openssl-engine --mandir=%{mand} --disable-shared fi *************** *** 49,53 **** [ -n "$RPM_BUILD_ROOT" -a "$RPM_BUILD_ROOT" != / ] && rm -rf $RPM_BUILD_ROOT ! make prefix=$RPM_BUILD_ROOT%{prefix} install %clean --- 51,55 ---- [ -n "$RPM_BUILD_ROOT" -a "$RPM_BUILD_ROOT" != / ] && rm -rf $RPM_BUILD_ROOT ! make prefix=$RPM_BUILD_ROOT%{prefix} mandir=$RPM_BUILD_ROOT%{mand} install %clean *************** *** 62,66 **** %{prefix}/etc/init.d/* %{prefix}/etc/ocspd/* ! %{prefix}/man/* %post --- 64,68 ---- %{prefix}/etc/init.d/* %{prefix}/etc/ocspd/* ! %{mand}/* %post *************** *** 70,75 **** %changelog * Wed Apr 27 2005 Massimiliano Pala <ma...@op...> ! - Fixed RPM creation on Fedora Distros * Tue Apr 19 2005 Massimiliano Pala <ma...@op...> --- 72,80 ---- %changelog + * Thu Apr 28 2005 Massimiliano Pala <ma...@op...> + -Fixed RPM installation of man pages + * Wed Apr 27 2005 Massimiliano Pala <ma...@op...> ! -Fixed RPM creation on Fedora Distros * Tue Apr 19 2005 Massimiliano Pala <ma...@op...> |
|
From: <ope...@li...> - 2005-08-17 08:14:17
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/locale/en_GB In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9/src/common/lib/locale/en_GB Modified Files: openca.po Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: openca.po =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/locale/en_GB/openca.po,v retrieving revision 1.17 retrieving revision 1.18 diff -C2 -d -r1.17 -r1.18 *** openca.po 15 Aug 2005 14:36:44 -0000 1.17 --- openca.po 17 Aug 2005 08:13:35 -0000 1.18 *************** *** 3013,3016 **** --- 3013,3020 ---- msgstr "The parent is missing by the login module of the HTML interface." + #, fuzzy + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE" + msgstr "Anonymous login" + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE_NONE" msgstr "Anonymous login" *************** *** 3288,3295 **** msgstr "" - #, fuzzy - msgid "I18N_OPENCA_X509_STRFTIME_FORMAT_STRING" - msgstr "Lifetime is ok." - msgid "I18N_OPENCA_XML_CACHE_GET_XPATH_COUNT_MISSING_ELEMENT" msgstr "The XML cache cannot find the element __TAG__ at position __POS__." --- 3292,3295 ---- *************** *** 3312,3315 **** --- 3312,3319 ---- "detected - __ERRVAL__." + #, fuzzy + #~ msgid "I18N_OPENCA_X509_STRFTIME_FORMAT_STRING" + #~ msgstr "Lifetime is ok." + #~ msgid "I18N_OPENCA_MENU_CA_CERT_OBJECTS" #~ msgstr "CA Certificates" |
|
From: <ope...@li...> - 2005-08-17 08:14:17
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/locale/es_ES In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9/src/common/lib/locale/es_ES Modified Files: openca.po Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: openca.po =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/locale/es_ES/openca.po,v retrieving revision 1.38 retrieving revision 1.39 diff -C2 -d -r1.38 -r1.39 *** openca.po 15 Aug 2005 14:36:45 -0000 1.38 --- openca.po 17 Aug 2005 08:13:35 -0000 1.39 *************** *** 3204,3207 **** --- 3204,3211 ---- msgstr "" + #, fuzzy + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE" + msgstr "FALLÓ" + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE_NONE" msgstr "" *************** *** 3509,3516 **** #, fuzzy - msgid "I18N_OPENCA_X509_STRFTIME_FORMAT_STRING" - msgstr "FALLÓ" - - #, fuzzy msgid "I18N_OPENCA_XML_CACHE_GET_XPATH_COUNT_MISSING_ELEMENT" msgstr "INSERT" --- 3513,3516 ---- *************** *** 3537,3540 **** --- 3537,3544 ---- #, fuzzy + #~ msgid "I18N_OPENCA_X509_STRFTIME_FORMAT_STRING" + #~ msgstr "FALLÓ" + + #, fuzzy #~ msgid "I18N_OPENCA_API_CMD_ISSUE_CERT_DATABASE_FAILED" #~ msgstr "DELETED" |
|
From: <ope...@li...> - 2005-08-17 08:14:16
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/locale/de_DE In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9/src/common/lib/locale/de_DE Modified Files: openca.mo openca.po Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: openca.mo =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/locale/de_DE/openca.mo,v retrieving revision 1.62 retrieving revision 1.63 diff -C2 -d -r1.62 -r1.63 Binary files /tmp/cvsBCLwyF and /tmp/cvschZDRz differ Index: openca.po =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/locale/de_DE/openca.po,v retrieving revision 1.72 retrieving revision 1.73 diff -C2 -d -r1.72 -r1.73 *** openca.po 15 Aug 2005 14:36:43 -0000 1.72 --- openca.po 17 Aug 2005 08:13:34 -0000 1.73 *************** *** 3260,3263 **** --- 3260,3266 ---- msgstr "" + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE" + msgstr "Authentifizierungs-Variante" + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE_NONE" msgstr "Anonym (Gast-Login)" |
|
From: <ope...@li...> - 2005-08-17 08:14:13
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/locale In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9/src/common/lib/locale Modified Files: openca.pot Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: openca.pot =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/locale/openca.pot,v retrieving revision 1.53 retrieving revision 1.54 diff -C2 -d -r1.53 -r1.54 *** openca.pot 15 Aug 2005 14:36:43 -0000 1.53 --- openca.pot 17 Aug 2005 08:13:33 -0000 1.54 *************** *** 2695,2698 **** --- 2695,2701 ---- msgstr "" + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE" + msgstr "" + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE_NONE" msgstr "" *************** *** 2953,2959 **** msgstr "" - msgid "I18N_OPENCA_X509_STRFTIME_FORMAT_STRING" - msgstr "" - msgid "I18N_OPENCA_XML_CACHE_GET_XPATH_COUNT_MISSING_ELEMENT" msgstr "" --- 2956,2959 ---- |
|
From: <ope...@li...> - 2005-08-17 08:14:13
|
Update of /cvsroot/openca/openca-0.9/src/common/lib/locale/el_GR In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9/src/common/lib/locale/el_GR Modified Files: openca.po Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: openca.po =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/common/lib/locale/el_GR/openca.po,v retrieving revision 1.16 retrieving revision 1.17 diff -C2 -d -r1.16 -r1.17 *** openca.po 15 Aug 2005 14:36:44 -0000 1.16 --- openca.po 17 Aug 2005 08:13:34 -0000 1.17 *************** *** 3206,3209 **** --- 3206,3213 ---- msgstr "" + #, fuzzy + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE" + msgstr "ÎÏοÏÏ Ïία" + msgid "I18N_OPENCA_UI_HTML_LOGIN_TYPE_NONE" msgstr "" *************** *** 3511,3518 **** #, fuzzy - msgid "I18N_OPENCA_X509_STRFTIME_FORMAT_STRING" - msgstr "ÎÏοÏÏ Ïία" - - #, fuzzy msgid "I18N_OPENCA_XML_CACHE_GET_XPATH_COUNT_MISSING_ELEMENT" msgstr "ÎÏοÏÏ Ïία" --- 3515,3518 ---- *************** *** 3539,3542 **** --- 3539,3546 ---- #, fuzzy + #~ msgid "I18N_OPENCA_X509_STRFTIME_FORMAT_STRING" + #~ msgstr "ÎÏοÏÏ Ïία" + + #, fuzzy #~ msgid "I18N_OPENCA_API_CMD_ISSUE_CERT_DATABASE_FAILED" #~ msgstr "ÎÏοÏÏ Ïία" |
|
From: <ope...@li...> - 2005-08-17 08:14:12
|
Update of /cvsroot/openca/openca-0.9 In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9 Modified Files: CHANGES Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: CHANGES =================================================================== RCS file: /cvsroot/openca/openca-0.9/CHANGES,v retrieving revision 1.399 retrieving revision 1.400 diff -C2 -d -r1.399 -r1.400 *** CHANGES 15 Aug 2005 14:36:42 -0000 1.399 --- CHANGES 17 Aug 2005 08:13:33 -0000 1.400 *************** *** 4,7 **** --- 4,10 ---- 2005-Aug-xx + * Fixed bug #1257733 (switch off CGI auto escaping to avoid wrong + escaping of utf8 characters) (patch supplied by Julia Dubenskaya) + (openca_0_9_2 too) * Added flag PUBLIC to CSRs and certs (support non-public certs) * Added automatic CSR printing (from DFN-PCA) |
|
From: <ope...@li...> - 2005-08-17 08:13:50
|
Update of /cvsroot/openca/openca-0.9/src/modules/openca-ui-scep In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9/src/modules/openca-ui-scep Modified Files: SCEP.pm Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: SCEP.pm =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/modules/openca-ui-scep/SCEP.pm,v retrieving revision 1.6 retrieving revision 1.7 diff -C2 -d -r1.6 -r1.7 *** SCEP.pm 10 Aug 2005 16:03:51 -0000 1.6 --- SCEP.pm 17 Aug 2005 08:13:38 -0000 1.7 *************** *** 86,89 **** --- 86,90 ---- my $hashref = thaw($load); $self->{CGI} = OpenCA::TRIStateCGI->new (); + $self->{CGI}->autoEscape(0); foreach my $key (keys %{$hashref}) { |
|
From: <ope...@li...> - 2005-08-17 08:13:48
|
Update of /cvsroot/openca/openca-0.9/src/modules/openca-ui-html/HTML In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv19313/openca-0.9/src/modules/openca-ui-html/HTML Modified Files: Login.pm View.pm Log Message: fixed autoescaping of CGI (Julia Dubenskaya) Author of changes: michaelbell Index: Login.pm =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/modules/openca-ui-html/HTML/Login.pm,v retrieving revision 1.8 retrieving revision 1.9 diff -C2 -d -r1.8 -r1.9 *** Login.pm 12 Aug 2005 13:47:44 -0000 1.8 --- Login.pm 17 Aug 2005 08:13:38 -0000 1.9 *************** *** 83,87 **** push @types, [$type => $known{$type}]; } ! $info_list->{BODY}->[0]->[0] = {TYPE => "SELECT", NAME => '__openca_ui_html_login_type', VALUES => \@types}; --- 83,88 ---- push @types, [$type => $known{$type}]; } ! $info_list->{BODY}->[0]->[0] = i18nGettext ('I18N_OPENCA_UI_HTML_LOGIN_TYPE'); ! $info_list->{BODY}->[0]->[1] = {TYPE => "SELECT", NAME => '__openca_ui_html_login_type', VALUES => \@types}; Index: View.pm =================================================================== RCS file: /cvsroot/openca/openca-0.9/src/modules/openca-ui-html/HTML/View.pm,v retrieving revision 1.14 retrieving revision 1.15 diff -C2 -d -r1.14 -r1.15 *** View.pm 15 Aug 2005 14:36:47 -0000 1.14 --- View.pm 17 Aug 2005 08:13:38 -0000 1.15 *************** *** 449,453 **** foreach my $item (@{$line}) { ! if ($colspan > 1) { $main .= ' <td colspan="'.$colspan.'" class="'.$name.'_list_head">'; --- 449,453 ---- foreach my $item (@{$line}) { ! if ($colspan > 1 and scalar @{$list->{BODY}} > 1) { $main .= ' <td colspan="'.$colspan.'" class="'.$name.'_list_head">'; |
1 message has been excluded from this view by a project administrator.
