jss
jss copied to clipboard
dogtagpki
Network Security Services for Java is a Java interface to NSS
Bumps org.apache.tomcat:tomcat-coyote from 9.0.62 to 9.0.86. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
The TPS test in JSS failed consistently on Rawhide: https://github.com/edewata/jss/actions/runs/7821129758/job/21337674464#step:11:558 ``` INFO: PKISocketFactory: Creating socket for pki.example.com:389 com.netscape.certsrv.base.PKIException: LDAP error (1): Operations error at com.netscape.certsrv.ldap.LDAPExceptionConverter.toPKIException(LDAPExceptionConverter.java:47) at com.netscape.cmscore.usrgrp.UGSubsystem.modifyGroup(UGSubsystem.java:1782) at org.dogtagpki.server.cli.SubsystemGroupMemberAddCLI.execute(SubsystemGroupMemberAddCLI.java:76) at...
`Signed-off-by: Alexander Scheel ` Code I had lying around, should probably be merged at some point in the next release cycle. Was pending discussions with Jack.
Many applications can use custom ssl socket factory for the communication so it is possible to create the socket with **JSS** and make the communication secure. However, many applications instantiate...
From the [cms documentation](https://www.rfc-editor.org/rfc/rfc5652#section-5.2.1) there is a difference between CMS and PKCS7: > PKCS #7 defines content as: > > content [0] EXPLICIT ANY DEFINED BY contentType OPTIONAL > >...
It appears that the boostrap user that came at installation for TPS is not being assigned any Administrations or TPS Agents roles. Without this, TPS cannot be managed and no...
pkispawn fails to create a CA with a YubiHSM, in JSS org.mozilla.jss.NoSuchTokenException: No such token: YubiHSM but the device is accessible by NSS. details F33 yubihsm-connector-2.2.0-2.fc33.x86_64 yubihsm-shell-2.0.3-1.fc33.x86_64 ``` mkdir yubihsm2-sdk.f33.dir...
Whee! ---- This adds an optimized JSSEngine! More description Monday. :)
The title says it all. It would help us if JSS could support loading keys from a .p12 blob.
Sometimes the `Buffer.WriteCapacity()` throws an NPE: ``` 2021-07-02T18:29:32.7931657Z + pki -n caadmin ca-user-cert-add caagent --serial 0x7 2021-07-02T18:29:36.2129529Z java.lang.NullPointerException 2021-07-02T18:29:36.2131194Z at org.mozilla.jss.nss.Buffer.WriteCapacity(Native Method) 2021-07-02T18:29:36.2133683Z at org.mozilla.jss.ssl.javax.JSSEngineReferenceImpl.unwrap(JSSEngineReferenceImpl.java:1192) 2021-07-02T18:29:36.2136070Z at org.mozilla.jss.ssl.javax.JSSSocketChannel.read(JSSSocketChannel.java:276) 2021-07-02T18:29:36.2138079Z at...