From 91b56edf3ef228cb8e29df9e57a6605a5ce9557c Mon Sep 17 00:00:00 2001
From: jvergara <jvergara@localhost>
Date: Wed, 02 Apr 2008 13:00:55 +0000
Subject: [PATCH] Fix for issue 3075 (ads-truststore creation failure and exception handling) 1. There is a problem with the default cipher algorithm provided in the CryptoManager  configuration (RSA/ECB/OAEPWITHSHA-1ANDMGF1PADDING) since it does not work in IBM Java.  RSA/ECB/PKCS1Padding must be used instead in default Java 5 AIX installations.  This issue may apply to any other JVM that do not include the same ciphers as Sun JCE.        A fix to handle this case corresponds to the modifications performed in ConfigureDS.java. ConfigureDS checks whether the default cipher can be used with the JVM and if not, tries to use an alternative cipher.  If the default cipher does not work and an alternative cipher is found, the configuration of the CryptoManager is updated.

---
 opends/src/server/org/opends/server/config/ConfigConstants.java |    6 ++++++
 1 files changed, 6 insertions(+), 0 deletions(-)

diff --git a/opends/src/server/org/opends/server/config/ConfigConstants.java b/opends/src/server/org/opends/server/config/ConfigConstants.java
index 06d5586..f97d57a 100644
--- a/opends/src/server/org/opends/server/config/ConfigConstants.java
+++ b/opends/src/server/org/opends/server/config/ConfigConstants.java
@@ -2915,6 +2915,12 @@
   public static final String ATTR_CRYPTO_CIPHER_TRANSFORMATION_NAME =
        "ds-cfg-cipher-transformation-name";
 
+  /**
+   * The name of the attribute that is used to hold the key wrapping
+   * transformation used by the Crypto Manager.
+   */
+  public static final String ATTR_CRYPTO_CIPHER_KEY_WRAPPING_TRANSFORMATION =
+    "ds-cfg-key-wrapping-transformation";
 
   /**
    * The name of the attribute that is used to hold the name of a

--
Gitblit v1.10.0