eu-emi/canl-java issues and pull requests

#123 - proxy: use sha2 to generate proxy request

Pull Request - State: open - Opened by kofemann 10 months ago

#122 - canl-java hard-coded SHA1 algorithm for proxy-delegation

Issue - State: open - Opened by kofemann 11 months ago

#121 - Missing information in error message

Issue - State: open - Opened by paulmillar over 1 year ago - 3 comments

#120 - Bump bcprov-jdk18on from 1.71 to 1.74

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago
Labels: dependencies

#119 - Fix order of certificates

Pull Request - State: closed - Opened by paulmillar almost 2 years ago - 1 comment

#118 - Add initial set of unit tests for OpensslCertChainValidator

Pull Request - State: closed - Opened by paulmillar about 2 years ago - 1 comment

#117 - Support GN in X.500 names

Issue - State: closed - Opened by golbi over 2 years ago

#116 - Certificate validation fails with unnecessary certificate in the CA chain

Issue - State: closed - Opened by vokac over 2 years ago - 18 comments
Labels: Severity: Defect

#115 - Test failures with bouncycastle 1.70 on Fedora 36.

Issue - State: closed - Opened by ellert about 3 years ago - 4 comments

#114 - NullPointerException via PemCredential when private key is password protected

Issue - State: closed - Opened by lemora about 3 years ago - 1 comment
Labels: Res: Fixed

#113 - Update CANL to Java 8

Issue - State: closed - Opened by golbi about 3 years ago
Labels: Severity: Feature

#112 - Adapt to Apache Commons-IO 2.9 and later

Pull Request - State: closed - Opened by ellert over 3 years ago - 2 comments

#111 - Compilation fails with Apache Commons-IO 2.9

Issue - State: closed - Opened by ellert over 3 years ago - 2 comments

#110 - Bump commons-io from 2.6 to 2.7

Pull Request - State: closed - Opened by dependabot[bot] almost 4 years ago - 2 comments
Labels: dependencies

#109 - provide safer hostname verification method

Issue - State: closed - Opened by golbi about 4 years ago

#108 - upgrade BC to 1.68

Issue - State: closed - Opened by golbi about 4 years ago

#107 - Validation fails with SSLException after CA certificate is "rolled-over"

Issue - State: closed - Opened by paulmillar about 4 years ago - 6 comments

#106 - Bump junit from 4.12 to 4.13.1

Pull Request - State: closed - Opened by dependabot[bot] over 4 years ago - 1 comment
Labels: dependencies

#105 - Namespace validation error for certificates issued by the GEANT Personal CA 4

Issue - State: closed - Opened by andreaceccanti over 4 years ago - 20 comments

#104 - canl-java fails within voms-proxy-init when using elliptic curve keys

Issue - State: open - Opened by msalle over 4 years ago

#103 - JDK 11 javadoc

Pull Request - State: closed - Opened by ellert almost 5 years ago

#102 - Adapt to bouncycastle 1.63. Still builds with older versions.

Pull Request - State: closed - Opened by ellert about 5 years ago

#100 - NPE from DirectoryCertChainValidator when not absolute path to trusted store is specified

Issue - State: closed - Opened by kofemann almost 6 years ago
Labels: Severity: Defect

#99 - Update to BC 1.61

Issue - State: closed - Opened by golbi almost 6 years ago
Labels: Severity: Feature, Res: Fixed

#98 - Update default proxy key size to 2048bit

Issue - State: closed - Opened by golbi almost 6 years ago
Labels: Severity: Feature, Res: Fixed

#97 - Add source version to javadoc configuration

Pull Request - State: closed - Opened by ellert about 6 years ago - 1 comment

#96 - CAnL certificate validation error, v2.5.0

Issue - State: closed - Opened by DmitryLitvintsev about 6 years ago - 6 comments

#95 - signing_policy parser does not handle escaping

Issue - State: closed - Opened by paulmillar almost 7 years ago - 6 comments
Labels: Severity: Defect, Res: Fixed

#94 - CA migrating from SHA-1 to SHA-256 leaves stale TrustAnchor

Issue - State: closed - Opened by paulmillar about 7 years ago
Labels: Severity: Defect, Res: Fixed

#93 - fix stale trust anchor on SHA-1 to SHA-256 migration.

Pull Request - State: closed - Opened by paulmillar about 7 years ago - 1 comment

#92 - NPE when validating a certificate with no TrustAnchor

Issue - State: closed - Opened by paulmillar about 7 years ago - 11 comments

#91 - Update to BC 1.56

Issue - State: closed - Opened by golbi over 8 years ago - 1 comment
Labels: Severity: Feature, Res: Fixed

#90 - The time based OpensslValidatorStressTest should not be part of default build.

Issue - State: closed - Opened by golbi over 8 years ago
Labels: Severity: Defect

#89 - Relax condition due to Debian BTS 834958

Pull Request - State: closed - Opened by ellert over 8 years ago - 3 comments
Labels: Res: Duplicate

#88 - caNL produces incompatible draft-RFC proxies

Issue - State: closed - Opened by msalle over 8 years ago - 2 comments
Labels: Severity: Defect

#87 - Add support for a truststore in a multi-PEM file

Issue - State: closed - Opened by golbi over 8 years ago
Labels: Severity: Feature, Priority: Medium

#86 - Fix warning about empty @return

Pull Request - State: closed - Opened by ellert about 9 years ago - 1 comment

#85 - backport #81 to 2.1.x

Issue - State: closed - Opened by golbi about 9 years ago

#84 - backport #80 to 2.1.x

Issue - State: closed - Opened by golbi about 9 years ago

#83 - backport #73 to 2.1.x

Issue - State: closed - Opened by golbi about 9 years ago

#82 - Update to BC 1.54

Issue - State: closed - Opened by golbi about 9 years ago
Labels: Severity: Feature

#81 - Inconsistent default for infinite proxy path length

Issue - State: closed - Opened by msalle about 9 years ago - 2 comments
Labels: Severity: Defect, AssociatedTest: Yes

#80 - Lock contention on OpensslCertChainValidator#validate

Issue - State: closed - Opened by gbehrmann about 9 years ago - 17 comments
Labels: Severity: Feature

#79 - CRL download from distribution point failing?

Issue - State: closed - Opened by gbehrmann over 9 years ago - 5 comments
Labels: Res: Invalid

#78 - CRL validation succeeds despite of expired CRL

Issue - State: closed - Opened by gbehrmann over 9 years ago - 2 comments

#77 - Javadoc fixes

Pull Request - State: closed - Opened by ellert over 9 years ago

#76 - DERBoolean → ASN1Boolean

Pull Request - State: closed - Opened by ellert over 9 years ago - 1 comment

#75 - Fix javadoc warnings/errors

Pull Request - State: closed - Opened by ellert over 9 years ago - 1 comment

#74 - bouncycastle 1.52

Issue - State: closed - Opened by ellert over 9 years ago - 3 comments

#73 - sortChain() method can return array with nulls

Issue - State: closed - Opened by golbi over 9 years ago - 3 comments
Labels: Severity: Defect, Priority: Low, Res: Fixed, DetectionArea: production

#72 - Test failure using updated OpenJDK 1.7

Issue - State: closed - Opened by ellert over 10 years ago - 2 comments
Labels: Res: Invalid

#71 - Backport OCSP bugfixes

Issue - State: closed - Opened by golbi over 10 years ago
Labels: Severity: Defect, Priority: Medium, Res: Fixed

#70 - Unrestricted memory usage of OCSP responses cache

Issue - State: closed - Opened by golbi over 10 years ago
Labels: Severity: Defect, Priority: Low, Res: Fixed, AssociatedTest: Yes

#69 - Test failure when compiling using OpenJDK 1.8

Issue - State: closed - Opened by ellert over 10 years ago
Labels: Severity: Defect, Priority: Medium, Res: Fixed

#68 - Cache unresponsive OCSP responders

Issue - State: closed - Opened by golbi over 10 years ago
Labels: Severity: Defect, Priority: Medium, Res: Fixed, DetectionArea: production, AssociatedTest: Yes

#67 - Handling canl.jar as symlink in RPM scripts

Issue - State: closed - Opened by sustr4 over 10 years ago - 1 comment
Labels: Severity: Defect, Res: Invalid

#66 - eu.emi.security.authn.x509.impl.OpensslNamesTest test failure

Issue - State: closed - Opened by ellert almost 11 years ago - 3 comments
Labels: Severity: Feature, Priority: Medium, Res: Fixed

#65 - Backport of the KeyUsage #64 fix to the 1.x branch

Issue - State: closed - Opened by golbi about 11 years ago - 1 comment
Labels: Severity: Defect, Priority: High, Res: Fixed, AssociatedTest: Yes

#64 - canl 1.3.1 breaks voms-clients creating proxies from pkcs12 keystores

Issue - State: closed - Opened by andreaceccanti about 11 years ago - 9 comments
Labels: Severity: Defect, Priority: High, AssociatedTest: Yes

#63 - Backport of the KeyUsage fix to the 1.x branch

Issue - State: closed - Opened by golbi about 11 years ago - 1 comment
Labels: Severity: Defect, Priority: Medium, Res: Fixed, AssociatedTest: Yes

#62 - Proxy KeyUsage extension must not include bits which are not set in the parent chain

Issue - State: closed - Opened by golbi about 11 years ago
Labels: Severity: Defect, Priority: Medium, Res: Fixed, AssociatedTest: Yes

#61 - Openssl DN conversion is failing with BC 1.49

Issue - State: closed - Opened by golbi about 11 years ago - 1 comment
Labels: Severity: Defect, Res: Invalid, Priority: Medium, AssociatedTest: Yes

#60 - Proxy KeyUsage extension should be marked as critical (backport to 1.x)

Issue - State: closed - Opened by golbi over 11 years ago - 10 comments
Labels: Severity: Defect, Priority: High, Res: Fixed, AssociatedTest: Yes

#59 - KeyUsage extension should be marked as critical

Issue - State: closed - Opened by andreaceccanti over 11 years ago - 1 comment
Labels: Severity: Defect, Priority: High, Res: Fixed, AssociatedTest: Yes

#58 - Backporting 2.0.0 features to 1.x branch

Issue - State: closed - Opened by golbi over 11 years ago - 1 comment
Labels: Severity: Feature, Priority: Medium, AssociatedTest: N/A

#57 - Lazy loading of CRL, namespaces and signing policies for OpenSSL validator

Issue - State: closed - Opened by andreaceccanti almost 12 years ago - 3 comments
Labels: Severity: Feature, Priority: Medium, Res: Fixed, DetectionArea: production

#56 - Problems with overriding of the namespaces definitions by sub CAs

Issue - State: closed - Opened by golbi almost 12 years ago - 1 comment
Labels: Severity: Defect, Priority: Low, Res: Fixed, AssociatedTest: Yes

#55 - corrections for some issues detected by findbugs

Pull Request - State: closed - Opened by loomis almost 12 years ago - 3 comments

#54 - Canl should automatically cancel timer tasks even without dispose

Issue - State: closed - Opened by golbi almost 12 years ago - 2 comments
Labels: Severity: Defect, Priority: High, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: Yes

#53 - PKCS12 keystores require unlimited strength JCA policy

Issue - State: closed - Opened by golbi almost 12 years ago
Labels: Severity: Feature, Priority: High, Res: Fixed, AffectedRelease: EMI3

#52 - ProxyCSRGenerator assigns a wrong serial for RFC proxies

Issue - State: closed - Opened by golbi about 12 years ago - 5 comments
Labels: Severity: Defect, Priority: High, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: Yes

#51 - ProxyCSRInfo fails to parse CSR laoded from PEM

Issue - State: closed - Opened by golbi about 12 years ago
Labels: Severity: Defect, Priority: Medium, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: Yes

#50 - Possible file handles leak in CertificateUtils

Issue - State: closed - Opened by golbi about 12 years ago - 1 comment
Labels: Severity: Defect, Priority: Medium, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: No

#49 - ProxyGeneratorHelper does not limit RFC proxies even if asked to

Issue - State: closed - Opened by jhahkala about 12 years ago - 12 comments
Labels: Severity: Defect, Priority: Low, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: Yes

#48 - ProxyCSRGenerator and ProxyGenerator should find out the type from given information

Issue - State: closed - Opened by jhahkala about 12 years ago - 2 comments
Labels: Severity: Defect, Priority: Medium, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: Yes

#47 - Compilation fails on Fedora 17 (on Java 7)

Issue - State: closed - Opened by ellert about 12 years ago - 1 comment
Labels: Severity: Defect, Priority: Medium, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: No

#46 - CANL error stack contains invalid error message

Issue - State: closed - Opened by andreaceccanti about 12 years ago - 4 comments
Labels: Severity: Defect, Priority: Low, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: Yes

#45 - Rewrite loadCertificate so it stops after loading the first certificate

Issue - State: closed - Opened by golbi about 12 years ago - 1 comment
Labels: Severity: Feature, Priority: Low, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: Yes

#44 - Add method(s) with X509Credential argument to CertificateUtils

Issue - State: closed - Opened by golbi about 12 years ago - 1 comment
Labels: Severity: Feature, Priority: Low, Res: Fixed, AffectedRelease: EMI3, AssociatedTest: No

#43 - Update canl to BouncyCastle 1.48

Issue - State: closed - Opened by golbi about 12 years ago - 1 comment
Labels: Severity: Feature, Priority: Low, Res: Fixed

#42 - Support for openssl 1.0.0 subject hashes in truststore

Issue - State: closed - Opened by golbi about 12 years ago - 1 comment
Labels: Severity: Feature, Priority: Low

#41 - NullPointerException raised when parsing empty file private key

Issue - State: closed - Opened by andreaceccanti about 12 years ago - 2 comments
Labels: Severity: Defect, Priority: Low, Res: Fixed, AssociatedTest: Yes

#40 - ProxyCertificateOptions should allow to explicitly set generated proxy certificate notBefore and notAfter validity dates

Issue - State: closed - Opened by andreaceccanti about 12 years ago - 4 comments
Labels: Severity: Feature, Priority: Low, Res: Fixed, AssociatedTest: Yes

GitHub / eu-emi/canl-java issues and pull requests