cloudstack

History

Marcus Sorensen 5604638b84 Apple base416 passphrase enc (#240 ) * Move PassphraseVO to use String instead of byte[] to support Encrypt annotation * Check for unencrypted passphrases before migrating passphrase table --------- Co-authored-by: Marcus Sorensen <mls@apple.com> Fixes #239 This PR moves PassphraseVO passphrase to String type. Since the GenericDaoBase manipulates encrypted fields as Strings we don't improve anything by handling as byte arrays. We still use byte arrays to pass these values down to the agents and we can get some security gains there. This PR also handles cases where the passphrase field may be previously unencrypted, and upgrades them to encrypted fields using the old encryption during cloudstack-migrate-databases. Then the process can upgrade to new encryption normally.	2023-09-27 13:24:13 +05:30
..
src	Apple base416 passphrase enc (#240 )	2023-09-27 13:24:13 +05:30
pom.xml	Updating pom.xml version numbers for release 4.18.1.0	2023-09-07 08:50:50 +02:00

Marcus Sorensen 5604638b84 Apple base416 passphrase enc (#240 )

* Move PassphraseVO to use String instead of byte[] to support Encrypt annotation

* Check for unencrypted passphrases before migrating passphrase table

---------

Co-authored-by: Marcus Sorensen <mls@apple.com>

Fixes #239

This PR moves PassphraseVO passphrase to String type. Since the
GenericDaoBase manipulates encrypted fields as Strings we don't improve
anything by handling as byte arrays. We still use byte arrays to pass
these values down to the agents and we can get some security gains
there.

This PR also handles cases where the passphrase field may be previously
unencrypted, and upgrades them to encrypted fields using the old
encryption during cloudstack-migrate-databases. Then the process can
upgrade to new encryption normally.

2023-09-27 13:24:13 +05:30

src

Apple base416 passphrase enc (#240 )

2023-09-27 13:24:13 +05:30

pom.xml

Updating pom.xml version numbers for release 4.18.1.0

2023-09-07 08:50:50 +02:00