Return-Path: 
 <dev-return-40121-apmail-directory-dev-archive=directory.apache.org@directory.apache.org>
X-Original-To: apmail-directory-dev-archive@www.apache.org
Delivered-To: apmail-directory-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 06FDD90C1
	for <apmail-directory-dev-archive@www.apache.org>;
 Wed, 25 Jan 2012 19:04:06 +0000 (UTC)
Received: (qmail 79949 invoked by uid 500); 25 Jan 2012 19:04:05 -0000
Delivered-To: apmail-directory-dev-archive@directory.apache.org
Received: (qmail 79864 invoked by uid 500); 25 Jan 2012 19:04:04 -0000
Mailing-List: contact dev-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@directory.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@directory.apache.org>
List-Post: <mailto:dev@directory.apache.org>
List-Id: <dev.directory.apache.org>
Reply-To: "Apache Directory Developers List" <dev@directory.apache.org>
Delivered-To: mailing list dev@directory.apache.org
Received: (qmail 79857 invoked by uid 99); 25 Jan 2012 19:04:04 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 25 Jan 2012 19:04:04 +0000
X-ASF-Spam-Status: No, hits=-2000.0 required=5.0
	tests=ALL_TRUSTED,T_RP_MATCHES_RCVD
X-Spam-Check-By: apache.org
Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 25 Jan 2012 19:04:02 +0000
Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116])
	by hel.zones.apache.org (Postfix) with ESMTP id 6671C1621DE
	for <dev@directory.apache.org>; Wed, 25 Jan 2012 19:03:41 +0000 (UTC)
Date: Wed, 25 Jan 2012 19:03:41 +0000 (UTC)
From: "Emmanuel Lecharny (Created) (JIRA)" <jira@apache.org>
To: dev@directory.apache.org
Message-ID: 
 <293603209.77494.1327518221421.JavaMail.tomcat@hel.zones.apache.org>
Subject: [jira] [Created] (DIRSERVER-1690) EncryptionTypes are not correctly
 handled in the server
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394
X-Virus-Checked: Checked by ClamAV on apache.org

EncryptionTypes are not correctly handled in the server
-------------------------------------------------------

                 Key: DIRSERVER-1690
                 URL: https://issues.apache.org/jira/browse/DIRSERVER-1690
             Project: Directory ApacheDS
          Issue Type: Bug
            Reporter: Emmanuel Lecharny
            Priority: Blocker


Currently, EncryptionType are stored in a Set, and we compare the expected ETypes passed by the client with the configured ETypes we support in the server. They are both stored in a Set, which is not ordered.

The problem is that there is nothing like a EType negotiation between the client and the server, so the encrypted data will be encrypted using the strongest Etype found in the list of Etypes, where the leftmost EType is the strongest, and the rightmost is the weaker.

Using a set is then a guarantee that we will face issues at some point. We must use a List instead.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira