external-software/github_OpenIdentityPlatform_OpenDJ.git

external-software / github_OpenIdentityPlatform_OpenDJ

mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git

OPENDJ-3051 Make sure cryptographic keys are generated or imported atomically.

Fabio Pistolesi

30.46.2016 4fc797d6a4c0e33640b49822c0d01cddec0de79d

refs
author	Fabio Pistolesi <fabio.pistolesi@forgerock.com>
	Monday, May 30, 2016 16:46 +0200
committer	Fabio Pistolesi <fabio.pistolesi@forgerock.com>
	Thursday, June 2, 2016 14:46 +0200
commit	4fc797d6a4c0e33640b49822c0d01cddec0de79d
tree	b0824bb81c0ea51db4e039c566ac2201060400be tree \| zip \| gz
parent	155e356aa8ec37c2a698ddfe2cc08eb1bff9377b view \| diff

OPENDJ-3051 Make sure cryptographic keys are generated or imported atomically.

Avoid concurrent generation of keys for the same cipher and key length, due to multiple replication threads applying updates concurrently.
Moreover, define the key to use for encryption as the "last" to be generated or imported. While it does not guarantee determinism across restarts, it does during runtime.

2 files modified

	opendj-server-legacy/src/main/java/org/opends/server/crypto/CryptoManagerImpl.java	212 ●●●●● diff \| view \| raw \| blame \| history
	opendj-server-legacy/src/test/java/org/opends/server/crypto/CryptoManagerTestCase.java	15 ●●●●● diff \| view \| raw \| blame \| history