Phan Xuan Tan [Mon, 29 Jul 2024 05:27:35 +0000 (12:27 +0700)]
Add unite tests for certsvc_certificate_verify and certsvc_certificate_verify_with_caflag
Change-Id: Ia2c8caa0b6c5f5d0a4b4f90a2bb37f6c33e19e80
Phan Xuan Tan [Fri, 26 Jul 2024 10:06:55 +0000 (17:06 +0700)]
Add unit test to get private key from stores
Change-Id: I2c6c0e3d56c15775a999517123296e70b39af86f
Phan Xuan Tan [Thu, 18 Jul 2024 07:58:40 +0000 (14:58 +0700)]
Add unit tests to get certificate info, status, and alias name from store
Change-Id: Ib2b235de76e1effa5887be466e12b9a90a73ef5d
Phan Xuan Tan [Wed, 10 Jul 2024 08:19:12 +0000 (15:19 +0700)]
Add unit test cases for SignatureValidator
Change-Id: I98ff12066b2362e53cafe45169c310884878d77a
Phan Xuan Tan [Mon, 15 Jul 2024 08:22:12 +0000 (15:22 +0700)]
Add unit test case fo delete certificate
+ vcore/certsvc_pkcs12_delete_certificate_from_store
+ vcore/vcore_client_delete_certificate_from_store
+ server/deleteCertificateFromStore
Change-Id: Idcfe8192abe0ef1ee5f69b83aadf1a37748a3d8f
Phan Xuan Tan [Tue, 9 Jul 2024 05:51:33 +0000 (12:51 +0700)]
Add positive and negative test cases for vcore_client_install_certificate_to_store
Change-Id: Ia499fe1a2b06748f96b422b20dc1964118b34557
tranthanhtung2001 [Wed, 10 Jul 2024 01:23:35 +0000 (08:23 +0700)]
Add unit-test for dpl log.cpp
Change-Id: I8792e0263409b514d93468f35a627343c05375d6
Signed-off-by: tranthanhtung2001 <tran.tung@samsung.com>
tran.tung [Mon, 8 Jul 2024 03:32:24 +0000 (10:32 +0700)]
Add unit-test for dpl old_style_log_provider
Change-Id: Ie11f200d654bab48248a168710021abb1a48b938
Signed-off-by: tran.tung <tran.tung@samsung.com>
tran.tung [Thu, 4 Jul 2024 04:04:11 +0000 (11:04 +0700)]
Add unit-test for dpl journal log provider
Change-Id: I10ba4639ca26fecdd1179168da3e2276ceb54b91
Signed-off-by: tran.tung <tran.tung@samsung.com>
Phan Xuan Tan [Wed, 10 Jul 2024 07:12:52 +0000 (14:12 +0700)]
Add unit test cases for SignatureReader
Change-Id: I045c943f0efce21fb25fd65f0fb5e4fa4a978931
Phan Xuan Tan [Wed, 10 Jul 2024 06:15:47 +0000 (13:15 +0700)]
Add unit test cases for SignatureFinder
Change-Id: I57cca5d0188a62416991477f6709c243a0a13a9d
Phan Xuan Tan [Wed, 10 Jul 2024 05:55:25 +0000 (12:55 +0700)]
Add positive and negative test cases for SignatureData
Change-Id: Ib4a486e2487b04def14a70d9ad88784472a6bf8f
Phan Xuan Tan [Wed, 10 Jul 2024 03:44:25 +0000 (10:44 +0700)]
Add positive and negative test cases for certsvc_certificate_is_root_ca and certsvc_certificate_chain_sort
Change-Id: I109a8022aa6821f357bb63c4a905784e5bb717e1
Phan Xuan Tan [Wed, 10 Jul 2024 02:06:16 +0000 (09:06 +0700)]
Add positive and negative test cases for certsvc_certificate_dup_x509 and certsvc_certificate_dup_pubkey_der
Change-Id: I1e430d71a01859b1fe08ec691abc63a7c1ab0206
Phan Xuan Tan [Tue, 9 Jul 2024 08:36:25 +0000 (15:36 +0700)]
Add positive and negative test cases for getCertificateListFromStore and loadCertificatesFromStore
Change-Id: Ie4b42b2fd5202dfb9ca6ed623ae81899bd1d6eb9
Phan Xuan Tan [Mon, 8 Jul 2024 10:10:45 +0000 (17:10 +0700)]
Add positive and negative test cases to get end user and root cert from stores
Change-Id: I176315a5691698a8adbe3de34bdeb2dd747e107c
Phan Xuan Tan [Mon, 8 Jul 2024 02:49:15 +0000 (09:49 +0700)]
Add positive and negative test cases to get certificates from stores
Change-Id: I44990b74c313a72f4675d725ff2e074c00171573
Phan Xuan Tan [Fri, 5 Jul 2024 06:24:51 +0000 (13:24 +0700)]
Add positve and negative test cases to import cert file to individual stores
Change-Id: I0088aaa3d6ad0a6ae4a743aeec793019aec0463f
Phan Xuan Tan [Thu, 4 Jul 2024 02:31:07 +0000 (09:31 +0700)]
Add negative and positive test cases
+ Save certificate to specific file
+ Get certificate information such as: subject info, issuer info, time not before and time not after
Change-Id: I17efc555dce73ae9821e325de326e0f0e96e8dde
Phan Xuan Tan [Thu, 27 Jun 2024 10:25:44 +0000 (17:25 +0700)]
Fix SVACE defect
Change-Id: Ic2824b155d1192b840b69e9b6ee19d739bc661d6
Phan Xuan Tan [Fri, 14 Jun 2024 02:22:43 +0000 (09:22 +0700)]
Add test cases for installCertificateToStore on server
Change-Id: Ic58f75198ff6e94850493403b157f6413ac95b1f
Phan Xuan Tan [Thu, 13 Jun 2024 09:51:31 +0000 (16:51 +0700)]
Add test cases for Base64 Encoder and Base64 Decoder
Change-Id: I8cd256107c12703650ec07a702f949576c087186
Phan Xuan Tan [Thu, 6 Jun 2024 11:36:33 +0000 (18:36 +0700)]
Add test cases for certsvc_certificate_new_from_memory and certsvc_certificate_new_from_file
Change-Id: I14938143371767fa920590379bd8f1d22b63a43f
Le [Wed, 19 Jun 2024 01:49:29 +0000 (08:49 +0700)]
Add unit tests for vcore: CertificateCollection
Change-Id: I71d9817af93137d664439de1617c364d6b4f3106
Signed-off-by: Le <xuan.tien@samsung.com>
tran.tung [Fri, 28 Jun 2024 09:56:16 +0000 (16:56 +0700)]
Add positive execute insert update query database
Add negative execute insert update query database not initialised
Add negative execute insert update query database query null
Change-Id: I61bd2a9491a4beedaa0da800bdb804af7288eec6
Signed-off-by: tran.tung <tran.tung@samsung.com>
tranthanhtung2001 [Tue, 18 Jun 2024 10:04:24 +0000 (17:04 +0700)]
Add test vcore time conversion
Change-Id: I4219356f3338eb863db859082c742b5272251850
Signed-off-by: tranthanhtung2001 <tran.tung@samsung.com>
Phan Xuan Tan [Mon, 3 Jun 2024 11:14:49 +0000 (18:14 +0700)]
Add positive and negative test case for CertStoreType class
Change-Id: I3e34395076bb1ea9449b3651c1a87f7dc6e658da
Phan Xuan Tan [Tue, 21 May 2024 10:33:52 +0000 (17:33 +0700)]
Add some positive & negative test cases for vcore/api
Functions: certsvc_string_to_cstring, certsvc_instance_new, certsvc_string_not_managed
Change-Id: I4e7d970ad296525dd05a77a76ad3923c4082d8b1
Phan Xuan Tan [Thu, 16 May 2024 02:39:47 +0000 (09:39 +0700)]
Add automation for code coverage
Change-Id: I868d933135bf4411ee8d28a2d13ece178e46981b
Phan Xuan Tan [Fri, 3 May 2024 02:44:14 +0000 (09:44 +0700)]
Config basic unit-tests for cert-svc
Change-Id: I3064a3ec18c73f7efc065e3d7e36eee3fecde696
Tomasz Swierczek [Thu, 1 Feb 2024 12:28:10 +0000 (13:28 +0100)]
Fix sqlite2 DB operations during the build & small spellchek fix
Now, if inserting certificates into DB fails, the shell script
that manages their insertion will cause GBS build to fail too.
Without this change, on Tizen 7.0+ the certs databse of cert-svc
was emtpy, becasue sqlite3 couldn't parse the sql script adding
each certificate AND GBS didn't fail due to the way sh script was
written.
Change-Id: I6a0266936b317a119dbe08fd3817883ab1b2fcec
Dariusz Michaluk [Wed, 12 Jul 2023 09:08:55 +0000 (11:08 +0200)]
Migrate to openssl3
Change-Id: Ide4665e5754e583c1a55445f53f7880b01f58c84
Dariusz Michaluk [Wed, 30 Aug 2023 08:47:29 +0000 (10:47 +0200)]
Fix tests
Change-Id: I5183918ae55974d58715a945703e2e9f1f45f0ca
Tomasz Swierczek [Mon, 10 Jul 2023 05:23:58 +0000 (07:23 +0200)]
Fix static analysis issues
Change-Id: I89454cf5d3014234114ac3ff720ccac24716a47a
Dongsun Lee [Mon, 26 Dec 2022 09:26:00 +0000 (18:26 +0900)]
use /usr/lib64 as PLUGIN_PATH for 64bit machine
Change-Id: I063d43e524eaa725f6155db8c936674442beca37
Dariusz Michaluk [Thu, 15 Dec 2022 09:08:52 +0000 (09:08 +0000)]
Merge "Update xmlsec callback logging" into tizen
Krzysztof Jackiewicz [Wed, 14 Dec 2022 16:26:55 +0000 (17:26 +0100)]
Update xmlsec callback logging
The main purpose of this commit is to help with debugging memory leaks in a
client app.
* Log file closing callback to make sure that files are closed eventually.
* Log only filename without the prefix in file opening callback. The prefix is
logged elsewhere anyway. This is to avoid log truncating on some images.
Change-Id: I20bd376c18b9c2f0ab865cf9dccdaf8cedbec202
Dariusz Michaluk [Thu, 25 Nov 2021 11:02:37 +0000 (12:02 +0100)]
Remove unused sec_build_binary_debug_enable build macro
Change-Id: I09cd433b893b3a0ceb1d920d3511415db424177c
INSUN PYO [Wed, 3 Feb 2021 04:22:55 +0000 (13:22 +0900)]
Change systemd-devel package name
Change-Id: I4cd8301827e11a8c4a8f305d2458d1119ee1421a
Dariusz Michaluk [Fri, 28 Feb 2020 12:02:17 +0000 (13:02 +0100)]
Fix cert-svc-test build
Change-Id: I89e8c5dbe8c4d9ac3f410384ef8d22ea74dd9f08
Tomasz Swierczek [Wed, 26 Feb 2020 07:26:44 +0000 (08:26 +0100)]
Fix static analysis issues
Change-Id: Ifce959c552cdd1605c1304220e5769b101e0433c
Tomasz Swierczek [Fri, 14 Feb 2020 09:38:48 +0000 (10:38 +0100)]
Fix static analysis issues
Change-Id: Ie3aaef254c8767a5ebe39a4168958ef580a7475d
Tomasz Swierczek [Wed, 15 Jan 2020 07:05:42 +0000 (08:05 +0100)]
Even more gcc 9 fixes after adding Wall to build root params
Change-Id: I02f46b0d9d4661cc9fdbbdc3689ff1dc7d670bd1
Tomasz Swierczek [Fri, 10 Jan 2020 06:06:52 +0000 (07:06 +0100)]
Adjust to gcc 9
Change-Id: I74da408463618ec011f83be49573689eda5036eb
Krzysztof Jackiewicz [Wed, 13 Nov 2019 12:53:41 +0000 (13:53 +0100)]
Disable automatic dependencies for test binaries
Tests package contains binaries compiled with different gcc versions. RPMs calls
ldd on them adding libgcc(3.5) to the package dependencies. As a result the
package can't be installed without --nodeps option.
This commit moves the test binaries to a separate package with automatic
dependencies disabled.
Change-Id: Ic77c85125f4d8348c8449dc04fc35116646f40c0
Dariusz Michaluk [Mon, 8 Jul 2019 14:53:15 +0000 (16:53 +0200)]
Migrate to openssl 1.1
Change-Id: I3f19d16650b4d9b12287029480b36d14b8b041f0
Krzysztof Jackiewicz [Mon, 14 Oct 2019 11:46:04 +0000 (13:46 +0200)]
Fix memory leaks reported by Coverity
Change-Id: I88fc5c33eaf1596f1ae81f7d2728710f7a0c5b8d
Tomasz Swierczek [Tue, 27 Aug 2019 05:01:45 +0000 (07:01 +0200)]
Add return value checking to xmlSecIORegisterCallbacks
Change-Id: Ib1b240c5994cb1c12844d45731e1dccf6c0fa133
Konrad Lipinski [Wed, 31 Jul 2019 18:26:50 +0000 (20:26 +0200)]
Fix ocsp and vcore test T0031_check_positive
* supplied new certificates for the test (leaf expires 2021.04.30)
* existing ocsp engine had problems handling those certificates so
modified vcore ocsp implementation to alleviate the issue;
used key-manager's implementation, particularly the commit
eacd8b321de92d38288294d2584ef98d517caead, as a guideline
Change-Id: Idfd944bfaa2d94d07f5073f0d3d21f873d355481
Konrad Lipinski [Wed, 31 Jul 2019 13:20:42 +0000 (15:20 +0200)]
Fix pkcs12 tests (generate expired certs anew)
Change-Id: I0e041bc89c545a5707c6cc62875288b4f0d0326f
Konrad Lipinski [Tue, 30 Jul 2019 17:10:26 +0000 (19:10 +0200)]
Fix capi tests (generate expired certificates anew)
Change-Id: Id94e35ae2840b63255aae7bb2266836691ad392d
INSUN PYO [Tue, 9 Jul 2019 05:19:39 +0000 (14:19 +0900)]
Disable cert-server.service startup at boot time
Cert-server.service starts only by socket activation.
So, we can remove "Wants=cert-server.service" from cert-server.service.
Change-Id: Id5e8d50c59513b9f9ec6e19a7661737c9bd98de3
Dongsun Lee [Tue, 29 Jan 2019 08:56:58 +0000 (17:56 +0900)]
Remove FINGERPRINT_LIST_RW_PATH
Change-Id: I9cc1840acfca421c676190775924d3795180dc0c
Signed-off-by: Dongsun Lee <ds73.lee@samsung.com>
Dariusz Michaluk [Wed, 5 Jun 2019 12:43:40 +0000 (14:43 +0200)]
Remove unnecessary openssl dependency
openssl binary is needed only during building, not in runtime
Change-Id: Ic018ad98e3f41bf2419bae00dea5cf5fcf413e7f
Konrad Lipinski [Mon, 29 Apr 2019 17:49:02 +0000 (19:49 +0200)]
Fix c++test defects (realpath, snprintf, strncpy usage)
Change-Id: I76c43ce065b751f10e1ec6026cc8f17fa4b668e4
Tomasz Swierczek [Thu, 31 Jan 2019 07:40:34 +0000 (08:40 +0100)]
Add arbitrary key-value map data interface to pass data between plugins and API clients
cert-svc allows to use validator plugins that can have any arbitrary logic embedded.
Installers may need to get special information, characteristic for plugins, from cert-svc.
New SignatureData class methods allow to set (on plugin side) and retrieve (on installer side)
simple string values that can have their meaning defined by plugin logic.
Installer should depend on specific plugin's key name definition (alternative is hard-coding)
and check for values using SignatureData interface.
Change-Id: I098a33b981d2b175ea72ba16cd8c968048ff116d
Jaechul Lee [Wed, 21 Mar 2018 06:42:17 +0000 (15:42 +0900)]
Add no auto requires to examples to fix build break
[Problem]
- Build failed due to prebuilt example binary requires lower version of
libc automatically
[Cause & Measure]
- Exclude auto requires not to require lower version of libc from
cert-svc rpm
[Developer] jc815.lee
Change-Id: Ie2544b847317d865e904e80c4382677bc4dee428
Signed-off-by: Jaechul Lee <jc815.lee@samsung.com>
Krzysztof Jackiewicz [Tue, 22 Jan 2019 13:35:20 +0000 (14:35 +0100)]
Fix SVACE
- WGID=371502:MEMORY_LEAK.EX
- WGID=371643:MEMORY_LEAK.EX
- WGID=371913:NULL_AFTER_DEREF
- WGID=371914:NULL_AFTER_DEREF
Change-Id: I8515247cb2267c20cc012644ca29a68ed0087a4f
Tomasz Swierczek [Tue, 4 Dec 2018 14:57:06 +0000 (15:57 +0100)]
Remove dependecy on libslp-db-util
DB open & close replaced with regular sqlite3 calls.
Change-Id: Idbfea53ec1a2f6140fa3db4544a0d7f4b6daddc0
Dongsun Lee [Mon, 1 Oct 2018 04:22:56 +0000 (13:22 +0900)]
Fix SVACE
- WGID=246307,246311:UNCHECKED_FUNC_RES.LIB.STRICT
Change-Id: I41e3ed525b5220f6036f61c04947306b11f9cb50
Signed-off-by: Dongsun Lee <ds73.lee@samsung.com>
Dongsun Lee [Thu, 3 May 2018 03:50:54 +0000 (12:50 +0900)]
Change log level of XmlSec1 to Error
Change-Id: I66cf2604d44eae4482269de2244915484831a02b
Signed-off-by: Dongsun Lee <ds73.lee@samsung.com>
Dongsun Lee [Mon, 9 Apr 2018 00:56:54 +0000 (09:56 +0900)]
Fix Coverity defects
- 105718: Unchecked return value
Change-Id: Id44b5382efac170ead4db403397262e59a2daa12
Signed-off-by: Dongsun Lee <ds73.lee@samsung.com>
Dongsun Lee [Tue, 3 Apr 2018 23:47:48 +0000 (08:47 +0900)]
Remove unused include for smack.h
Change-Id: I63eebf473cbc5c694eb71014e6c8a25c71c15a26
Signed-off-by: Dongsun Lee <ds73.lee@samsung.com>
Dongsun Lee [Thu, 22 Mar 2018 09:53:24 +0000 (18:53 +0900)]
Fix coverity defects
- 110857 Uninitialized scalar variable
- 106335 Uninitialized scalar variable
- 107729 Resource leak
- 105668 Unchecked return value from library
- 106114 Logically dead code
- 108585 Big parameter passed by value
Change-Id: I4081c2b0fe688bf8af6e0102a9dba690a84e23f7
Signed-off-by: Dongsun Lee <ds73.lee@samsung.com>
Krzysztof Jackiewicz [Thu, 30 Nov 2017 14:49:32 +0000 (15:49 +0100)]
Remove Openssl code
According to SSLeay License the code taken from OpenSSL can't be published nor
distributed under different license which was the case here.
Use public OpenSSL API to perform the time conversion.
Change-Id: Ie6b7f1ef1b685c526a30974ae393840eb2f675b3
Piotr Sawicki [Mon, 18 Sep 2017 13:59:15 +0000 (15:59 +0200)]
Let the import function return list with real aliases
To be consistent with certsvc_pkcs12_load_certificate_list_from_store(),
the new function certsvc_pkcs12_import_from_file_to_store_ret_list()
should return the list of intermediate certificates with aliases taken
from an imported certificate chain.
Change-Id: I22d31c59fc8943b9e08113a6ac290bfe1867a1eb
Sunmin Lee [Tue, 5 Sep 2017 08:11:46 +0000 (17:11 +0900)]
Remove old update script
RW update script for Tizen 2.4 (to 3.0) is not necessary.
There is no big change between 3.0 and 4.0. So no migration script is required.
Change-Id: I35854b4ac52fdd831ae43770a5bc867ca62abed1
(cherry picked from commit
f5502639c446f67e735e9fb33d91122fe8baa1a3)
Piotr Sawicki [Wed, 6 Sep 2017 07:49:46 +0000 (09:49 +0200)]
Fix memory leak in deleteCertificateFromStore()
Change-Id: Iaba5d8c8905d69eeb1858cad2c6dec42f718e488
Piotr Sawicki [Wed, 6 Sep 2017 07:32:15 +0000 (09:32 +0200)]
Fix memory leak in destroyStoreList()
Change-Id: I96a7e85639f3afd368ba6859fbfb393c4e79212d
Piotr Sawicki [Wed, 6 Sep 2017 07:22:36 +0000 (09:22 +0200)]
Introduce certsvc_pkcs12_import_from_file_to_store_ret_list()
This new function works in the same way as the
certsvc_pkcs12_import_from_file_to_store does, but additionally
it returns the list of imported certificates.
Change-Id: Id8af8229e7e5dc0eedc208ec940c1e1e5430ab8d
Piotr Sawicki [Tue, 5 Sep 2017 11:18:42 +0000 (13:18 +0200)]
Don't ignore alias during the import of certificates from PEM
Change-Id: Ide059aed684845e1875ec32a75c063df5266b888
Piotr Sawicki [Tue, 5 Sep 2017 10:40:05 +0000 (12:40 +0200)]
Fix sending responses in cert-server
This commit prevents from sending a partial response to the client.
Morover, two memory leaks have been fixed in procedures responsible
for retrieving a list of certificates.
Change-Id: I9cc27db73ebce9cbeb7c0c04b8f5f56f06201604
sangwan.kwon [Fri, 30 Jun 2017 08:10:23 +0000 (17:10 +0900)]
Fix upgrade script number
* Accordig to OS upgrade team's guide, these scripts would be run as 242, 243.
Change-Id: Ibd03157c1ec345cb6791678d8bbc8824a1fe7863
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
(cherry picked from commit
b911af767ffe491120bf326be57bfa098e490d03)
Piotr Sawicki [Tue, 11 Apr 2017 14:31:06 +0000 (16:31 +0200)]
Upgrade version to 2.2.1
* Fix issues detected by the SVACE tool
Change-Id: I91485cd333c698b8a33d9676f96f3f14d329d00b
Piotr Sawicki [Thu, 6 Apr 2017 11:24:17 +0000 (13:24 +0200)]
Fix issues detected by SVACE
* Check the capacity of 'alias' array before calling strncpy()
* Fix a memory leak in CreateFromFile()
* Fix a leak of file descriptors (returned by accept())
Change-Id: I89c55178510c6f23649fd54c65cb1d17ce278398
sangwan.kwon [Thu, 30 Mar 2017 08:34:46 +0000 (17:34 +0900)]
Upgrade version to 2.2.0
* [C++ API +] Add proxy mode on SignatureValidator
* Upgrade static cert-meta.db to 0.0.4
Change-Id: Iae55d29a4e965bc8c8760544f3d36c63598e8c73
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Fri, 24 Mar 2017 09:17:38 +0000 (18:17 +0900)]
Move trust-anchor to seperate git
Change-Id: Ibb55a1f8f64759aee36a597bd66cf2d9f9111a39
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Tue, 14 Mar 2017 04:18:06 +0000 (13:18 +0900)]
Rename AppCustomTrustAnchor to TrustAnchor
Change-Id: Ic44a7a07fc0eb337a812d76bf139c7d0c5dcf9e9
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Mon, 6 Mar 2017 03:46:20 +0000 (12:46 +0900)]
Implement CAPI and add testcase about ACTA
Change-Id: I8260e43c68d24e01e80f506ef71a91101c8aee9a
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Fri, 3 Mar 2017 08:51:25 +0000 (17:51 +0900)]
Add app custom trust anchor CAPI headers
Change-Id: I59a3fa636deca37e1a3df27198d0bf3a6161f96c
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Fri, 24 Feb 2017 08:42:48 +0000 (17:42 +0900)]
Check system certificates's change on ACTA launching
* Before ACTA launching check system certificates's change.
* If there is change, remake the custom bundle.
Change-Id: I57dc25d982c251d933dd6767d4dc4ea0e629c43c
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Tue, 7 Mar 2017 02:10:43 +0000 (11:10 +0900)]
Cherry picked from tizen_3.0
Fix compile flags according to feature
Fix bug on controlling bundle about user certificate
Change-Id: Ib06fb393edca552288e24513ff1afec8aceb6be3
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
(cherry picked from commit
0b8ac6fbf6ea101c95bafacd9ac11388f9f2edb8)
(cherry picked from commit
9552bd58e36d0348293025cb8f24194c2f4a3708)
sangwan.kwon [Fri, 24 Feb 2017 05:11:01 +0000 (14:11 +0900)]
Add script for ACTA test permission
* Test environment needs : CAP_SYS_ADMIN and system-session
Change-Id: Iecf36e523a7e295ca443f129c5f87018caea4bf4
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Thu, 23 Feb 2017 05:37:53 +0000 (14:37 +0900)]
Fix ACTA directory hierarchy
* Add empty bundle for usr app.
Change-Id: I8bb6cdb89ffb17f678633bc984d17ec05b2579b6
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Tue, 21 Feb 2017 06:22:33 +0000 (15:22 +0900)]
Implement launch operation on ACTA
* TODO: Add logic to check system certs's change.
Change-Id: I596ba360ebbd602ccde3544a621af31f97464ba4
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Wed, 15 Feb 2017 11:16:45 +0000 (20:16 +0900)]
Add making bundle logic on install stage
* Refine Certificate class as non-static for reducing file I/O.
Change-Id: I63832eb9fc595715d828d3549db708bb2fab7e3f
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Wed, 8 Feb 2017 09:26:11 +0000 (18:26 +0900)]
Fix svace defects
* Whole class member should be initialized.
* Check INT_MAX size.(overflow)
* Fix memory leak.
Change-Id: I428ef256f2165f7199f601c9b4e6ae503eafeb39
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
(cherry picked from commit
0145be068295e2e368007fc64fee5d2a8f1a29d2)
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Wed, 8 Feb 2017 09:13:40 +0000 (18:13 +0900)]
Add openssl to get certificate's subject-name-hash
* Custom certificate should be renamed as subject-name-hash.
Change-Id: I5dd52d7cd19cacd624e2d66b0e59183835011085
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Thu, 2 Feb 2017 10:48:55 +0000 (19:48 +0900)]
Add examples about SignatureValidator
* signature-validator-until-3.0
* signature-validator-since-4.0
Change-Id: Ib721ba32bb8c9e155b42479ce772743346510fef
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Fri, 13 Jan 2017 09:41:06 +0000 (18:41 +0900)]
Implement install and uninstall operation on ACTA
[TODO]
* Add Openssl class for getting subject name and making bundle.
Change-Id: Ia2fa0393931df231d2970e7d6465f2e2913ffbe6
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Thu, 12 Jan 2017 07:33:55 +0000 (16:33 +0900)]
Add logger with klay to AppCustomTrustAnchor
Change-Id: I1e41f5909cdad827ca6eb6b16fec765601b23dfe
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Wed, 11 Jan 2017 09:04:29 +0000 (18:04 +0900)]
Add dummy unit test for AppCustomTrustAnchor
Change-Id: Iec6e7e367cfe4cbc6e690a52afd8e2a3dbc5bc55
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Fri, 9 Dec 2016 05:11:26 +0000 (14:11 +0900)]
Init transec library about app custom trust anchor
* Add AppCustomTrustAnchor header draft
Change-Id: Iff710eaece8ba54a1ffad57589f02857b6b325ff
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Mon, 9 Jan 2017 02:25:52 +0000 (11:25 +0900)]
Suppress SIGPIPE for prevent abort
[PROBLEM]
* send() makes unexpectedly abort when SIG_PIPE occurred.
[SOLUTION]
* Suppress SIGPIPE by using MSG_NOSIGNAL params.
* And check pipe error(EPIPE) by errno.
Change-Id: I9acaba8418312dff3d1b7fbbeded4045c400b794
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Wed, 28 Dec 2016 07:59:06 +0000 (16:59 +0900)]
Refine descriptions on ccert.h and cinstance.h
Change-Id: Ib68d5a1b87b1cd16dd95474993f78396b2d75669
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Tue, 27 Dec 2016 10:14:53 +0000 (19:14 +0900)]
Remove singleton pattern on xmlSec
[AS-IS]
* For performance, singleton pattern is adopted on xmlSec.
* This makes issue which xmlSec's dtor is not called.
[TO-BE]
* Remove singletone pattern on xmlSec class.
Change-Id: Ibaaff16277ca7e97bd328e9899ee0dda596b5dea
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Tue, 27 Dec 2016 08:28:46 +0000 (17:28 +0900)]
Replace custom-smart-pointer to std::unique_ptr
Change-Id: I4f45929627210aa8d669b0b46a141404742c9689
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Mon, 26 Dec 2016 09:30:52 +0000 (18:30 +0900)]
Apply tizen coding rule on cert-server
Change-Id: Ic733798681f061b8d66f4f5c5a898e4d084d790d
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Mon, 26 Dec 2016 08:30:13 +0000 (17:30 +0900)]
Fix misuse of sqlite3 statement
* Query and Statement should be free after use.
* Freed statement's column shouldn't be used.
Change-Id: Ia372ff00ea28c324c8719c01c3634d20570f6169
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
sangwan.kwon [Thu, 22 Dec 2016 04:41:53 +0000 (13:41 +0900)]
Cast LogLevel to int explicitly before use as int
Change-Id: I8faaaf896cc4739217f5c8d8f201043ef3c06ef1
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>