1. 10 Mar, 2016 1 commit
    • Guus der Kinderen's avatar
      Prevent occasional failure of CheckChainTrustedTest · 3ed99368
      Guus der Kinderen authored
      There's one unit test that occasionally fails. This occurs as a result of an unintended
      collision. As part of the test, many certificates are generated and stored in keystores.
      The alias used for the entry was based on the hashcode of the public ke of the certificate.
      The value range of those hashcodes is fairly small (it has only a couple of digits), which
      leads to occasional collisions, causing the test to fail.
      
      This commit replaces the hashcode-based alias with the Base64-encoded public key information.
      This ensures that aliases for distinct keys are also distinct, while ensuring that the
      aliases for equal keys are equal.
      3ed99368
  2. 01 Dec, 2015 2 commits
  3. 25 Nov, 2015 2 commits
    • Guus der Kinderen's avatar
      OF-946: Centralize connection configuration. · e58d590b
      Guus der Kinderen authored
      This commit (which is compilable, but breaks some important
      functionality - work in progess) aims to centralize the configuration
      for connections. "Connections" are used in a broad sense here, and
      includes socket-based (TLS and legacy-mode SSL) client connections,
      BOSH-based client connections, component connections, connectionmanager
      (multiplexer) connections, but also connections to the admin panel.
      e58d590b
    • Guus der Kinderen's avatar
      OF-946: Openfire should allow for more than one set of keystores. · 97f7cf3f
      Guus der Kinderen authored
      This commit:
      - Refactors SSL-related code to reduce complexity and deprecate unused code
      - Adds factory methods to obtain SSL/TLS engine / contexts, to replace all
        code duplication that was going on before.
      97f7cf3f