~ubuntu-branches/ubuntu/oneiric/mcollective/oneiric-proposed

Viewing changes to doc/classes/MCollective/Security/Aes_security.html

Committer: Bazaar Package Importer
Author(s): Marc Cluet, Marc Cluet, Chuck Short
Date: 2011-05-05 07:37:54 UTC
mfrom: (1.1.2 upstream)
Revision ID: james.westby@ubuntu.com-20110505073754-klk1jkz8afi4fomx

Tags: 1.2.0-0ubuntu1

[Marc Cluet]
* Update to 1.2.0
* Build for Oneiric.

[Chuck Short]
* Drop ruby from mcollective, mcollective-middleware, mcollective-client
since its a dependency of mcollective-common.
* Bump standards to 3.9.2.
* Fix up lintian warnings.

files added:
debian/mcollective-client.config

debian/mcollective-client.postinst

debian/mcollective-client.postrm

debian/mcollective-client.templates

debian/mcollective.config

debian/mcollective.postrm

debian/mcollective.templates

doc/classes/Array.html

doc/classes/MCollective/Agent/Test.html

doc/classes/MCollective/Application

doc/classes/MCollective/Application.html

doc/classes/MCollective/Application/Controller.html

doc/classes/MCollective/Application/Facts.html

doc/classes/MCollective/Application/Find.html

doc/classes/MCollective/Application/Help.html

doc/classes/MCollective/Application/Inventory.html

doc/classes/MCollective/Application/Ping.html

doc/classes/MCollective/Application/Rpc.html

doc/classes/MCollective/Applications.html

doc/classes/MCollective/Facts/Bar.html

doc/classes/MCollective/Facts/Testfacts.html

doc/classes/MCollective/Facts/Yaml_facts.html

doc/classes/MCollective/Foo.html

doc/classes/MCollective/Logger

doc/classes/MCollective/Logger.html

doc/classes/MCollective/Logger/Base.html

doc/classes/MCollective/Logger/Console_logger.html

doc/classes/MCollective/Logger/File_logger.html

doc/classes/MCollective/Logger/Syslog_logger.html

doc/classes/MCollective/RPC/ActionRunner.html

doc/classes/MCollective/SSL.html

doc/classes/MCollective/Security/Aes_security.html

doc/classes/MCollective/Security/Sshkey.html

doc/classes/MCollective/Shell.html

doc/classes/MCollective/Vendor.html

doc/classes/Object.html

doc/files/lib/mcollective/application_rb.html

doc/files/lib/mcollective/applications_rb.html

doc/files/lib/mcollective/logger

doc/files/lib/mcollective/logger/base_rb.html

doc/files/lib/mcollective/logger/console_logger_rb.html

doc/files/lib/mcollective/logger/file_logger_rb.html

doc/files/lib/mcollective/logger/syslog_logger_rb.html

doc/files/lib/mcollective/logger_rb.html

doc/files/lib/mcollective/rpc/actionrunner_rb.html

doc/files/lib/mcollective/shell_rb.html

doc/files/lib/mcollective/ssl_rb.html

doc/files/lib/mcollective/vendor_rb.html

doc/files/plugins/mcollective/agent/test_rb.html

doc/files/plugins/mcollective/application

doc/files/plugins/mcollective/application/controller_rb.html

doc/files/plugins/mcollective/application/facts_rb.html

doc/files/plugins/mcollective/application/find_rb.html

doc/files/plugins/mcollective/application/help_rb.html

doc/files/plugins/mcollective/application/inventory_rb.html

doc/files/plugins/mcollective/application/ping_rb.html

doc/files/plugins/mcollective/application/rpc_rb.html

doc/files/plugins/mcollective/facts/yaml_facts_rb.html

doc/files/plugins/mcollective/security/aes_security_rb.html

doc/files/plugins/mcollective/security/sshkey_rb.html

doc/files/spec

doc/files/spec/monkey_patches

doc/files/spec/monkey_patches/instance_variable_defined_rb.html

doc/files/spec/spec_helper_rb.html

doc/files/spec/unit

doc/files/spec/unit/application_spec_rb.html

doc/files/spec/unit/applications_spec_rb.html

doc/files/spec/unit/config_spec_rb.html

doc/files/spec/unit/facts

doc/files/spec/unit/facts/base_spec_rb.html

doc/files/spec/unit/facts_spec_rb.html

doc/files/spec/unit/log_spec_rb.html

doc/files/spec/unit/logger

doc/files/spec/unit/logger/base_spec_rb.html

doc/files/spec/unit/optionparser_spec_rb.html

doc/files/spec/unit/pluginmanager_spec_rb.html

doc/files/spec/unit/rpc

doc/files/spec/unit/rpc/actionrunner_spec_rb.html

doc/files/spec/unit/rpc/agent_spec_rb.html

doc/files/spec/unit/rpc/reply_spec_rb.html

doc/files/spec/unit/rpc/request_spec_rb.html

doc/files/spec/unit/rpc/result_spec_rb.html

doc/files/spec/unit/rpc/stats_spec_rb.html

doc/files/spec/unit/security

doc/files/spec/unit/security/base_spec_rb.html

doc/files/spec/unit/security/psk_spec_rb.html

doc/files/spec/unit/shell_spec_rb.html

doc/files/spec/unit/ssl_spec_rb.html

doc/files/spec/unit/util_spec_rb.html

doc/files/spec/unit/vendor_spec_rb.html

ext/action_helpers

ext/action_helpers/perl

ext/action_helpers/perl/.gitignore

ext/action_helpers/perl/Makefile.PL

ext/action_helpers/perl/lib

ext/action_helpers/perl/lib/MCollective

ext/action_helpers/perl/lib/MCollective/Action.pm

ext/action_helpers/perl/t

ext/action_helpers/perl/t/basic.t

ext/action_helpers/php

ext/action_helpers/php/README.markdown

ext/action_helpers/php/mcollective_action.php

ext/action_helpers/python

ext/action_helpers/python/kwilczynski

ext/action_helpers/python/kwilczynski/README.markdown

ext/action_helpers/python/kwilczynski/echo.py

ext/action_helpers/python/kwilczynski/mcollective_action.py

ext/action_helpers/python/romke

ext/action_helpers/python/romke/README.markdown

ext/action_helpers/python/romke/mcollectiveah.py

ext/action_helpers/python/romke/test.py

lib/mcollective/application.rb

lib/mcollective/applications.rb

lib/mcollective/logger

lib/mcollective/logger.rb

lib/mcollective/logger/base.rb

lib/mcollective/logger/console_logger.rb

lib/mcollective/logger/file_logger.rb

lib/mcollective/logger/syslog_logger.rb

lib/mcollective/rpc/actionrunner.rb

lib/mcollective/shell.rb

lib/mcollective/ssl.rb

lib/mcollective/vendor

lib/mcollective/vendor.rb

lib/mcollective/vendor/json

lib/mcollective/vendor/json/.gitignore

lib/mcollective/vendor/json/CHANGES

lib/mcollective/vendor/json/COPYING

lib/mcollective/vendor/json/COPYING-json-jruby

lib/mcollective/vendor/json/GPL

lib/mcollective/vendor/json/README

lib/mcollective/vendor/json/README-json-jruby.markdown

lib/mcollective/vendor/json/Rakefile

lib/mcollective/vendor/json/TODO

lib/mcollective/vendor/json/VERSION

lib/mcollective/vendor/json/benchmarks

lib/mcollective/vendor/json/benchmarks/data

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/.keep

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkComparison.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkExt#generator_fast-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkExt#generator_fast.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkExt#generator_pretty-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkExt#generator_pretty.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkExt#generator_safe-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkExt#generator_safe.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkExt.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkPure#generator_fast-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkPure#generator_fast.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkPure#generator_pretty-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkPure#generator_pretty.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkPure#generator_safe-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkPure#generator_safe.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkPure.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkRails#generator-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkRails#generator.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/GeneratorBenchmarkRails.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkComparison.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkExt#parser-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkExt#parser.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkExt.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkPure#parser-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkPure#parser.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkPure.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkRails#parser-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkRails#parser.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkRails.log

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkYAML#parser-autocorrelation.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkYAML#parser.dat

lib/mcollective/vendor/json/benchmarks/data-p4-3GHz-ruby18/ParserBenchmarkYAML.log

lib/mcollective/vendor/json/benchmarks/data/.keep

lib/mcollective/vendor/json/benchmarks/generator2_benchmark.rb

lib/mcollective/vendor/json/benchmarks/generator_benchmark.rb

lib/mcollective/vendor/json/benchmarks/ohai.json

lib/mcollective/vendor/json/benchmarks/ohai.ruby

lib/mcollective/vendor/json/benchmarks/parser2_benchmark.rb

lib/mcollective/vendor/json/benchmarks/parser_benchmark.rb

lib/mcollective/vendor/json/bin

lib/mcollective/vendor/json/bin/edit_json.rb

lib/mcollective/vendor/json/bin/prettify_json.rb

lib/mcollective/vendor/json/data

lib/mcollective/vendor/json/data/example.json

lib/mcollective/vendor/json/data/index.html

lib/mcollective/vendor/json/data/prototype.js

lib/mcollective/vendor/json/diagrams

lib/mcollective/vendor/json/diagrams/.keep

lib/mcollective/vendor/json/ext

lib/mcollective/vendor/json/ext/json

lib/mcollective/vendor/json/ext/json/ext

lib/mcollective/vendor/json/ext/json/ext/generator

lib/mcollective/vendor/json/ext/json/ext/generator/extconf.rb

lib/mcollective/vendor/json/ext/json/ext/generator/generator.c

lib/mcollective/vendor/json/ext/json/ext/generator/generator.h

lib/mcollective/vendor/json/ext/json/ext/parser

lib/mcollective/vendor/json/ext/json/ext/parser/extconf.rb

lib/mcollective/vendor/json/ext/json/ext/parser/parser.c

lib/mcollective/vendor/json/ext/json/ext/parser/parser.h

lib/mcollective/vendor/json/ext/json/ext/parser/parser.rl

lib/mcollective/vendor/json/install.rb

lib/mcollective/vendor/json/java

lib/mcollective/vendor/json/java/lib

lib/mcollective/vendor/json/java/lib/bytelist-1.0.6.jar

lib/mcollective/vendor/json/java/lib/jcodings.jar

lib/mcollective/vendor/json/java/src

lib/mcollective/vendor/json/java/src/json

lib/mcollective/vendor/json/java/src/json/ext

lib/mcollective/vendor/json/java/src/json/ext/ByteListTranscoder.java

lib/mcollective/vendor/json/java/src/json/ext/Generator.java

lib/mcollective/vendor/json/java/src/json/ext/GeneratorMethods.java

lib/mcollective/vendor/json/java/src/json/ext/GeneratorService.java

lib/mcollective/vendor/json/java/src/json/ext/GeneratorState.java

lib/mcollective/vendor/json/java/src/json/ext/OptionsReader.java

lib/mcollective/vendor/json/java/src/json/ext/Parser.java

lib/mcollective/vendor/json/java/src/json/ext/Parser.rl

lib/mcollective/vendor/json/java/src/json/ext/ParserService.java

lib/mcollective/vendor/json/java/src/json/ext/RuntimeInfo.java

lib/mcollective/vendor/json/java/src/json/ext/StringDecoder.java

lib/mcollective/vendor/json/java/src/json/ext/StringEncoder.java

lib/mcollective/vendor/json/java/src/json/ext/Utils.java

lib/mcollective/vendor/json/json-java.gemspec

lib/mcollective/vendor/json/lib

lib/mcollective/vendor/json/lib/json

lib/mcollective/vendor/json/lib/json.rb

lib/mcollective/vendor/json/lib/json/Array.xpm

lib/mcollective/vendor/json/lib/json/FalseClass.xpm

lib/mcollective/vendor/json/lib/json/Hash.xpm

lib/mcollective/vendor/json/lib/json/Key.xpm

lib/mcollective/vendor/json/lib/json/NilClass.xpm

lib/mcollective/vendor/json/lib/json/Numeric.xpm

lib/mcollective/vendor/json/lib/json/String.xpm

lib/mcollective/vendor/json/lib/json/TrueClass.xpm

lib/mcollective/vendor/json/lib/json/add

lib/mcollective/vendor/json/lib/json/add/core.rb

lib/mcollective/vendor/json/lib/json/add/rails.rb

lib/mcollective/vendor/json/lib/json/common.rb

lib/mcollective/vendor/json/lib/json/editor.rb

lib/mcollective/vendor/json/lib/json/ext

lib/mcollective/vendor/json/lib/json/ext.rb

lib/mcollective/vendor/json/lib/json/ext/.keep

lib/mcollective/vendor/json/lib/json/json.xpm

lib/mcollective/vendor/json/lib/json/pure

lib/mcollective/vendor/json/lib/json/pure.rb

lib/mcollective/vendor/json/lib/json/pure/generator.rb

lib/mcollective/vendor/json/lib/json/pure/parser.rb

lib/mcollective/vendor/json/lib/json/version.rb

lib/mcollective/vendor/json/tests

lib/mcollective/vendor/json/tests/fixtures

lib/mcollective/vendor/json/tests/fixtures/fail1.json

lib/mcollective/vendor/json/tests/fixtures/fail10.json

lib/mcollective/vendor/json/tests/fixtures/fail11.json

lib/mcollective/vendor/json/tests/fixtures/fail12.json

lib/mcollective/vendor/json/tests/fixtures/fail13.json

lib/mcollective/vendor/json/tests/fixtures/fail14.json

lib/mcollective/vendor/json/tests/fixtures/fail18.json

lib/mcollective/vendor/json/tests/fixtures/fail19.json

lib/mcollective/vendor/json/tests/fixtures/fail2.json

lib/mcollective/vendor/json/tests/fixtures/fail20.json

lib/mcollective/vendor/json/tests/fixtures/fail21.json

lib/mcollective/vendor/json/tests/fixtures/fail22.json

lib/mcollective/vendor/json/tests/fixtures/fail23.json

lib/mcollective/vendor/json/tests/fixtures/fail24.json

lib/mcollective/vendor/json/tests/fixtures/fail25.json

lib/mcollective/vendor/json/tests/fixtures/fail27.json

lib/mcollective/vendor/json/tests/fixtures/fail28.json

lib/mcollective/vendor/json/tests/fixtures/fail3.json

lib/mcollective/vendor/json/tests/fixtures/fail4.json

lib/mcollective/vendor/json/tests/fixtures/fail5.json

lib/mcollective/vendor/json/tests/fixtures/fail6.json

lib/mcollective/vendor/json/tests/fixtures/fail7.json

lib/mcollective/vendor/json/tests/fixtures/fail8.json

lib/mcollective/vendor/json/tests/fixtures/fail9.json

lib/mcollective/vendor/json/tests/fixtures/pass1.json

lib/mcollective/vendor/json/tests/fixtures/pass15.json

lib/mcollective/vendor/json/tests/fixtures/pass16.json

lib/mcollective/vendor/json/tests/fixtures/pass17.json

lib/mcollective/vendor/json/tests/fixtures/pass2.json

lib/mcollective/vendor/json/tests/fixtures/pass26.json

lib/mcollective/vendor/json/tests/fixtures/pass3.json

lib/mcollective/vendor/json/tests/setup_variant.rb

lib/mcollective/vendor/json/tests/test_json.rb

lib/mcollective/vendor/json/tests/test_json_addition.rb

lib/mcollective/vendor/json/tests/test_json_encoding.rb

lib/mcollective/vendor/json/tests/test_json_fixtures.rb

lib/mcollective/vendor/json/tests/test_json_generate.rb

lib/mcollective/vendor/json/tests/test_json_string_matching.rb

lib/mcollective/vendor/json/tests/test_json_unicode.rb

lib/mcollective/vendor/json/tools

lib/mcollective/vendor/json/tools/fuzz.rb

lib/mcollective/vendor/json/tools/server.rb

lib/mcollective/vendor/load_json.rb

lib/mcollective/vendor/load_systemu.rb

lib/mcollective/vendor/require_vendored.rb

lib/mcollective/vendor/systemu

lib/mcollective/vendor/systemu/LICENSE

lib/mcollective/vendor/systemu/README

lib/mcollective/vendor/systemu/README.erb

lib/mcollective/vendor/systemu/Rakefile

lib/mcollective/vendor/systemu/lib

lib/mcollective/vendor/systemu/lib/systemu.rb

lib/mcollective/vendor/systemu/samples

lib/mcollective/vendor/systemu/samples/a.rb

lib/mcollective/vendor/systemu/samples/b.rb

lib/mcollective/vendor/systemu/samples/c.rb

lib/mcollective/vendor/systemu/samples/d.rb

lib/mcollective/vendor/systemu/samples/e.rb

lib/mcollective/vendor/systemu/samples/f.rb

lib/mcollective/vendor/systemu/systemu.gemspec

plugins/mcollective/agent/test.rb

plugins/mcollective/application

plugins/mcollective/application/controller.rb

plugins/mcollective/application/facts.rb

plugins/mcollective/application/find.rb

plugins/mcollective/application/help.rb

plugins/mcollective/application/inventory.rb

plugins/mcollective/application/ping.rb

plugins/mcollective/application/rpc.rb

plugins/mcollective/facts/yaml_facts.rb

plugins/mcollective/security/aes_security.rb

plugins/mcollective/security/sshkey.rb

files removed:
.pc/debian-changes-1.0.1-0ubuntu4

.pc/debian-changes-1.0.1-0ubuntu4/etc

.pc/debian-changes-1.0.1-0ubuntu4/etc/client.cfg.dist

.pc/debian-changes-1.0.1-0ubuntu4/etc/server.cfg.dist

debian/patches/debian-changes-1.0.1-0ubuntu4

doc/classes/MCollective/Facts/Yaml.html

doc/files/ext/ec2demo

doc/files/ext/ec2demo/rightscale_rb.html

doc/files/ext/ec2demo/start-mcollective-demo_rb.html

doc/files/plugins/mcollective/facts/yaml_rb.html

ext/ec2demo

ext/ec2demo/etc

ext/ec2demo/etc/activemq

ext/ec2demo/etc/activemq/activemq.xml.templ

ext/ec2demo/etc/mcollective

ext/ec2demo/etc/mcollective/client.cfg.templ

ext/ec2demo/etc/mcollective/server.cfg.templ

ext/ec2demo/mcollective-node.motd

ext/ec2demo/motd-complete

ext/ec2demo/rc.local

ext/ec2demo/rightscale.rb

ext/ec2demo/start-mcollective-demo.rb

plugins/mcollective/facts/yaml.rb

files modified:
.pc/applied-patches

.pc/drop-init-script.patch/ext/Makefile

.pc/pluginsdir.patch/etc/client.cfg.dist

.pc/pluginsdir.patch/etc/server.cfg.dist

debian/changelog

debian/control

debian/mcollective-client.install

debian/mcollective.install

debian/mcollective.postinst

debian/mcollective.upstart

debian/patches/pluginsdir.patch

debian/patches/series

debian/rules

doc/classes/MCollective.html

doc/classes/MCollective/Agent.html

doc/classes/MCollective/Agent/Discovery.html

doc/classes/MCollective/Agents.html

doc/classes/MCollective/Client.html

doc/classes/MCollective/Config.html

doc/classes/MCollective/Connector.html

doc/classes/MCollective/Connector/Base.html

doc/classes/MCollective/Connector/Stomp.html

doc/classes/MCollective/Facts.html

doc/classes/MCollective/Facts/Base.html

doc/classes/MCollective/Log.html

doc/classes/MCollective/Optionparser.html

doc/classes/MCollective/PluginManager.html

doc/classes/MCollective/RPC.html

doc/classes/MCollective/RPC/Agent.html

doc/classes/MCollective/RPC/Audit.html

doc/classes/MCollective/RPC/Client.html

doc/classes/MCollective/RPC/DDL.html

doc/classes/MCollective/RPC/Helpers.html

doc/classes/MCollective/RPC/Logfile.html

doc/classes/MCollective/RPC/Progress.html

doc/classes/MCollective/RPC/Reply.html

doc/classes/MCollective/RPC/Request.html

doc/classes/MCollective/RPC/Result.html

doc/classes/MCollective/RPC/Stats.html

doc/classes/MCollective/Registration/Agentlist.html

doc/classes/MCollective/Registration/Base.html

doc/classes/MCollective/Request.html

doc/classes/MCollective/Runner.html

doc/classes/MCollective/RunnerStats.html

doc/classes/MCollective/Security.html

doc/classes/MCollective/Security/Base.html

doc/classes/MCollective/Security/Psk.html

doc/classes/MCollective/Security/Ssl.html

doc/classes/MCollective/Util.html

doc/classes/Symbol.html

doc/created.rid

doc/files/ext/mc-rpc-restserver_rb.html

doc/files/lib/mcollective/agents_rb.html

doc/files/lib/mcollective/client_rb.html

doc/files/lib/mcollective/config_rb.html

doc/files/lib/mcollective/connector/base_rb.html

doc/files/lib/mcollective/connector_rb.html

doc/files/lib/mcollective/facts/base_rb.html

doc/files/lib/mcollective/facts_rb.html

doc/files/lib/mcollective/log_rb.html

doc/files/lib/mcollective/monkey_patches_rb.html

doc/files/lib/mcollective/optionparser_rb.html

doc/files/lib/mcollective/pluginmanager_rb.html

doc/files/lib/mcollective/registration/base_rb.html

doc/files/lib/mcollective/registration_rb.html

doc/files/lib/mcollective/request_rb.html

doc/files/lib/mcollective/rpc/agent_rb.html

doc/files/lib/mcollective/rpc/audit_rb.html

doc/files/lib/mcollective/rpc/client_rb.html

doc/files/lib/mcollective/rpc/ddl_rb.html

doc/files/lib/mcollective/rpc/helpers_rb.html

doc/files/lib/mcollective/rpc/progress_rb.html

doc/files/lib/mcollective/rpc/reply_rb.html

doc/files/lib/mcollective/rpc/request_rb.html

doc/files/lib/mcollective/rpc/result_rb.html

doc/files/lib/mcollective/rpc/stats_rb.html

doc/files/lib/mcollective/rpc_rb.html

doc/files/lib/mcollective/runner_rb.html

doc/files/lib/mcollective/runnerstats_rb.html

doc/files/lib/mcollective/security/base_rb.html

doc/files/lib/mcollective/security_rb.html

doc/files/lib/mcollective/util_rb.html

doc/files/lib/mcollective_rb.html

doc/files/mcollectived_rb.html

doc/files/plugins/mcollective/agent/discovery_rb.html

doc/files/plugins/mcollective/agent/rpcutil_rb.html

doc/files/plugins/mcollective/audit/logfile_rb.html

doc/files/plugins/mcollective/connector/stomp_rb.html

doc/files/plugins/mcollective/registration/agentlist_rb.html

doc/files/plugins/mcollective/security/psk_rb.html

doc/files/plugins/mcollective/security/ssl_rb.html

doc/fr_class_index.html

doc/fr_file_index.html

doc/fr_method_index.html

doc/index.html

etc/client.cfg.dist

etc/server.cfg.dist

ext/Makefile

ext/activemq/examples/single-broker/activemq.xml

ext/debian/mcollective-client.install

ext/debian/patches/pluginsdir.dpatch

ext/mc-irb

ext/mc-rpc-restserver.rb

ext/stompclient

lib/mcollective.rb

lib/mcollective/agents.rb

lib/mcollective/client.rb

lib/mcollective/config.rb

lib/mcollective/facts.rb

lib/mcollective/facts/base.rb

lib/mcollective/log.rb

lib/mcollective/optionparser.rb

lib/mcollective/pluginmanager.rb

lib/mcollective/registration.rb

lib/mcollective/registration/base.rb

lib/mcollective/request.rb

lib/mcollective/rpc.rb

lib/mcollective/rpc/agent.rb

lib/mcollective/rpc/audit.rb

lib/mcollective/rpc/client.rb

lib/mcollective/rpc/ddl.rb

lib/mcollective/rpc/helpers.rb

lib/mcollective/rpc/progress.rb

lib/mcollective/rpc/reply.rb

lib/mcollective/rpc/request.rb

lib/mcollective/rpc/result.rb

lib/mcollective/rpc/stats.rb

lib/mcollective/runner.rb

lib/mcollective/runnerstats.rb

lib/mcollective/security.rb

lib/mcollective/security/base.rb

lib/mcollective/util.rb

mc-controller

mc-facts

mc-find-hosts

mc-inventory

mc-ping

mc-rpc

mcollective.init

mcollective.init-rh

mcollective.spec

mcollectived.rb

plugins/mcollective/agent/discovery.rb

plugins/mcollective/agent/rpcutil.ddl

plugins/mcollective/agent/rpcutil.rb

plugins/mcollective/audit/logfile.rb

plugins/mcollective/connector/stomp.rb

plugins/mcollective/security/psk.rb

plugins/mcollective/security/ssl.rb

Show diffs side-by-side

added added

removed removed

doc/classes/MCollective/Security/Aes_security.html

<?xml version="1.0" encoding="iso-8859-1"?>

<!DOCTYPE html

PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"

"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<head>

<title>Class: MCollective::Security::Aes_security</title>

// <![CDATA[

function popupCode( url ) {

window.open(url, "Code", "resizable=yes,scrollbars=yes,toolbar=no,status=no,height=150,width=400")

}

function toggleCode( id ) {

if ( document.getElementById )

elem = document.getElementById( id );

else if ( document.all )

elem = eval( "document.all." + id );

else

return false;

elemStyle = elem.style;

if ( elemStyle.display != "block" ) {

elemStyle.display = "block"

} else {

elemStyle.display = "none"

}

return true;

}

// Make codeblocks hidden by default

document.writeln( "<style type=\"text/css\">div.method-source-code { display: none }</style>" )

// ]]>

</script>

</head>

<body>

<td>Class</td>

<td class="class-name-in-header">MCollective::Security::Aes_security</td>

</tr>

<td>

plugins/mcollective/security/aes_security.rb

</a>

</td>

</tr>

<td>Parent:</td>

<td>

Base

</a>

</td>

</tr>

</table>

</div>

Impliments a security system that encrypts payloads using AES and secures

the AES encrypted data using RSA public/private key encryption.

The design goals of this plugin are:

<ul>

<li>Each actor - clients and servers - can have their own set of public and

private keys

</li>

<li>All actors are uniquely and cryptographically identified

</li>

<li>Requests are encrypted using the clients private key and anyone that has

100

the public key can see the request. Thus an atacker may see the requests

101

given access to network or machine due to the broadcast nature of

102

mcollective

103

104

</li>

105

<li>Replies are encrypted using the calling clients public key. Thus no-one but

106

the caller can view the contents of replies.

107

108

</li>

109

<li>Servers can all have their own RSA keys, or share one, or reuse keys

110

created by other PKI using software like Puppet

111

112

</li>

113

<li>Requests from servers - like registration data - can be secured even to

114

external eaves droppers depending on the level of configuration you are

115

prepared to do

116

117

</li>

118

<li>Given a network where you can ensure third parties are not able to access

119

the middleware public key distribution can happen automatically

120

121

</li>

122

</ul>

123

124

Configuration Options:

125

126

127

128

Common Options:

129

130

<pre>

131

# Enable this plugin

132

securityprovider = aes_security

133

134

# Use YAML as serializer

135

plugin.aes.serializer = yaml

136

137

# Send our public key with every request so servers can learn it

138

plugin.aes.send_pubkey = 1

139

</pre>

140

141

Clients:

142

143

<pre>

144

# The clients public and private keys

145

plugin.aes.client_private = /home/user/.mcollective.d/user-private.pem

146

plugin.aes.client_public = /home/user/.mcollective.d/user.pem

147

</pre>

148

149

Servers:

150

151

<pre>

152

# Where to cache client keys or find manually distributed ones

153

plugin.aes.client_cert_dir = /etc/mcollective/ssl/clients

154

155

# Cache public keys promiscuously from the network

156

plugin.aes.learn_pubkeys = 1

157

158

# The servers public and private keys

159

plugin.aes.server_private = /etc/mcollective/ssl/server-private.pem

160

plugin.aes.server_public = /etc/mcollective/ssl/server-public.pem

161

</pre>

162

163

</div>

164

165

166

</div>

167

168

169

<h3 class="section-bar">Methods</h3>

170

171

172

<a href="#M000015">callerid</a>

173

<a href="#M000024">certname_from_callerid</a>

174

<a href="#M000023">client_cert_dir</a>

175

<a href="#M000019">client_private_key</a>

176

<a href="#M000020">client_public_key</a>

177

<a href="#M000010">decodemsg</a>

178

<a href="#M000017">decrypt</a>

179

<a href="#M000014">deserialize</a>

180

<a href="#M000011">encodereply</a>

181

<a href="#M000012">encoderequest</a>

182

<a href="#M000016">encrypt</a>

183

<a href="#M000018">public_key_path_for_client</a>

184

<a href="#M000013">serialize</a>

185

<a href="#M000022">server_private_key</a>

186

<a href="#M000021">server_public_key</a>

187

</div>

188

</div>

189

190

</div>

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

<h3 class="section-bar">Public Instance methods</h3>

207

208

209

210

211

212

213

callerid()

214

</a>

215

</div>

216

217

218

219

sets the caller id to the md5 of the public key

220

221

<a class="source-toggle" href="#"

222

onclick="toggleCode('M000015-source');return false;">[Source]</a>

223

224

<pre>

225

# File plugins/mcollective/security/aes_security.rb, line 151

226

151: def callerid

227

152: if @initiated_by == :client

228

153: return "cert=#{File.basename(client_public_key).gsub(/\.pem$/, '')}"

229

154: else

230

155: # servers need to set callerid as well, not usually needed but

231

156: # would be if you're doing registration or auditing or generating

232

157: # requests for some or other reason

233

158: return "cert=#{File.basename(server_public_key).gsub(/\.pem$/, '')}"

234

159: end

235

160: end

236

</pre>

237

</div>

238

</div>

239

</div>

240

241

242

243

244

245

246

certname_from_callerid(id)

247

</a>

248

</div>

249

250

251

252

Takes our cert=foo callerids and return the foo bit else nil

253

254

<a class="source-toggle" href="#"

255

onclick="toggleCode('M000024-source');return false;">[Source]</a>

256

257

<pre>

258

# File plugins/mcollective/security/aes_security.rb, line 249

259

249: def certname_from_callerid(id)

260

250: if id =~ /^cert=(.+)/

261

251: return $1

262

252: else

263

253: return nil

264

254: end

265

255: end

266

</pre>

267

</div>

268

</div>

269

</div>

270

271

272

273

274

275

276

client_cert_dir()

277

</a>

278

</div>

279

280

281

282

Figures out where to get client public certs from the plugin.aes.<a

283

href="Aes_security.html#M000023">client_cert_dir</a> config option

284

285

<a class="source-toggle" href="#"

286

onclick="toggleCode('M000023-source');return false;">[Source]</a>

287

288

<pre>

289

# File plugins/mcollective/security/aes_security.rb, line 243

290

243: def client_cert_dir

291

244: raise("No plugin.aes.client_cert_dir configuration option specified") unless @config.pluginconf.include?("aes.client_cert_dir")

292

245: @config.pluginconf["aes.client_cert_dir"]

293

246: end

294

</pre>

295

</div>

296

</div>

297

</div>

298

299

300

301

302

303

304

client_private_key()

305

</a>

306

</div>

307

308

309

310

Figures out the client private key either from MCOLLECTIVE_AES_PRIVATE or

311

the plugin.aes.client_private config option

312

313

<a class="source-toggle" href="#"

314

onclick="toggleCode('M000019-source');return false;">[Source]</a>

315

316

<pre>

317

# File plugins/mcollective/security/aes_security.rb, line 212

318

212: def client_private_key

319

213: return ENV["MCOLLECTIVE_AES_PRIVATE"] if ENV.include?("MCOLLECTIVE_AES_PRIVATE")

320

214:

321

215: raise("No plugin.aes.client_private configuration option specified") unless @config.pluginconf.include?("aes.client_private")

322

216:

323

217: return @config.pluginconf["aes.client_private"]

324

218: end

325

</pre>

326

</div>

327

</div>

328

</div>

329

330

331

332

333

334

335

client_public_key()

336

</a>

337

</div>

338

339

340

341

Figures out the client public key either from MCOLLECTIVE_AES_PUBLIC or the

342

plugin.aes.client_public config option

343

344

<a class="source-toggle" href="#"

345

onclick="toggleCode('M000020-source');return false;">[Source]</a>

346

347

<pre>

348

# File plugins/mcollective/security/aes_security.rb, line 222

349

222: def client_public_key

350

223: return ENV["MCOLLECTIVE_AES_PUBLIC"] if ENV.include?("MCOLLECTIVE_AES_PUBLIC")

351

224:

352

225: raise("No plugin.aes.client_public configuration option specified") unless @config.pluginconf.include?("aes.client_public")

353

226:

354

227: return @config.pluginconf["aes.client_public"]

355

228: end

356

</pre>

357

</div>

358

</div>

359

</div>

360

361

362

363

364

365

366

decodemsg(msg)

367

</a>

368

</div>

369

370

371

<a class="source-toggle" href="#"

372

onclick="toggleCode('M000010-source');return false;">[Source]</a>

373

374

<pre>

375

# File plugins/mcollective/security/aes_security.rb, line 56

376

56: def decodemsg(msg)

377

57: body = deserialize(msg.payload)

378

58:

379

59: # if we get a message that has a pubkey attached and we're set to learn

380

60: # then add it to the client_cert_dir this should only happen on servers

381

61: # since clients will get replies using their own pubkeys

382

62: if @config.pluginconf.include?("aes.learn_pubkeys") && @config.pluginconf["aes.learn_pubkeys"] == "1"

383

63: if body.include?(:sslpubkey)

384

64: if client_cert_dir

385

65: certname = certname_from_callerid(body[:callerid])

386

66: if certname

387

67: certfile = "#{client_cert_dir}/#{certname}.pem"

388

68: unless File.exist?(certfile)

389

69: Log.debug("Caching client cert in #{certfile}")

390

70: File.open(certfile, "w") {|f| f.print body[:sslpubkey]}

391

71: end

392

72: end

393

73: end

394

74: end

395

75: end

396

76:

397

77: cryptdata = {:key => body[:sslkey], :data => body[:body]}

398

78:

399

79: if @initiated_by == :client

400

80: body[:body] = deserialize(decrypt(cryptdata, nil))

401

81: else

402

82: body[:body] = deserialize(decrypt(cryptdata, body[:callerid]))

403

83: end

404

84:

405

85: return body

406

86: rescue OpenSSL::PKey::RSAError

407

87: raise MsgDoesNotMatchRequestID, "Could not decrypt message using our key, possibly directed at another client"

408

88:

409

89: rescue Exception => e

410

90: Log.warn("Could not decrypt message from client: #{e.class}: #{e}")

411

91: raise SecurityValidationFailed, "Could not decrypt message"

412

92: end

413

</pre>

414

</div>

415

</div>

416

</div>

417

418

419

420

421

422

423

decrypt(string, certid)

424

</a>

425

</div>

426

427

428

<a class="source-toggle" href="#"

429

onclick="toggleCode('M000017-source');return false;">[Source]</a>

430

431

<pre>

432

# File plugins/mcollective/security/aes_security.rb, line 185

433

185: def decrypt(string, certid)

434

186: if @initiated_by == :client

435

187: @ssl ||= SSL.new(client_public_key, client_private_key)

436

188:

437

189: Log.debug("Decrypting message using private key")

438

190: return @ssl.decrypt_with_private(string)

439

191: else

440

192: Log.debug("Decrypting message using public key for #{certid}")

441

193:

442

194: ssl = SSL.new(public_key_path_for_client(certid))

443

195: return ssl.decrypt_with_public(string)

444

196: end

445

197: end

446

</pre>

447

</div>

448

</div>

449

</div>

450

451

452

453

454

455

456

deserialize(msg)

457

</a>

458

</div>

459

460

461

462

De-Serializes a message using the configured encoder

463

464

<a class="source-toggle" href="#"

465

onclick="toggleCode('M000014-source');return false;">[Source]</a>

466

467

<pre>

468

# File plugins/mcollective/security/aes_security.rb, line 137

469

137: def deserialize(msg)

470

138: serializer = @config.pluginconf["aes.serializer"] || "marshal"

471

139:

472

140: Log.debug("De-Serializing using #{serializer}")

473

141:

474

142: case serializer

475

143: when "yaml"

476

144: return YAML.load(msg)

477

145: else

478

146: return Marshal.load(msg)

479

147: end

480

148: end

481

</pre>

482

</div>

483

</div>

484

</div>

485

486

487

488

489

490

491

encodereply(sender, target, msg, requestid, requestcallerid)

492

</a>

493

</div>

494

495

496

497

Encodes a reply

498

499

<a class="source-toggle" href="#"

500

onclick="toggleCode('M000011-source');return false;">[Source]</a>

501

502

<pre>

503

# File plugins/mcollective/security/aes_security.rb, line 95

504

95: def encodereply(sender, target, msg, requestid, requestcallerid)

505

96: crypted = encrypt(serialize(msg), requestcallerid)

506

97:

507

98: req = create_reply(requestid, sender, target, crypted[:data])

508

99: req[:sslkey] = crypted[:key]

509

100:

510

101: serialize(req)

511

102: end

512

</pre>

513

</div>

514

</div>

515

</div>

516

517

518

519

520

521

522

encoderequest(sender, target, msg, requestid, filter={}, target_agent=nil, target_collective=nil)

523

</a>

524

</div>

525

526

527

528

Encodes a request msg

529

530

<a class="source-toggle" href="#"

531

onclick="toggleCode('M000012-source');return false;">[Source]</a>

532

533

<pre>

534

# File plugins/mcollective/security/aes_security.rb, line 105

535

105: def encoderequest(sender, target, msg, requestid, filter={}, target_agent=nil, target_collective=nil)

536

106: crypted = encrypt(serialize(msg), callerid)

537

107:

538

108: req = create_request(requestid, target, filter, crypted[:data], @initiated_by, target_agent, target_collective)

539

109: req[:sslkey] = crypted[:key]

540

110:

541

111: if @config.pluginconf.include?("aes.send_pubkey") && @config.pluginconf["aes.send_pubkey"] == "1"

542

112: if @initiated_by == :client

543

113: req[:sslpubkey] = File.read(client_public_key)

544

114: else

545

115: req[:sslpubkey] = File.read(server_public_key)

546

116: end

547

117: end

548

118:

549

119: serialize(req)

550

120: end

551

</pre>

552

</div>

553

</div>

554

</div>

555

556

557

558

559

560

561

encrypt(string, certid)

562

</a>

563

</div>

564

565

566

<a class="source-toggle" href="#"

567

onclick="toggleCode('M000016-source');return false;">[Source]</a>

568

569

<pre>

570

# File plugins/mcollective/security/aes_security.rb, line 162

571

162: def encrypt(string, certid)

572

163: if @initiated_by == :client

573

164: @ssl ||= SSL.new(client_public_key, client_private_key)

574

165:

575

166: Log.debug("Encrypting message using private key")

576

167: return @ssl.encrypt_with_private(string)

577

168: else

578

169: # when the server is initating requests like for registration

579

170: # then the certid will be our callerid

580

171: if certid == callerid

581

172: Log.debug("Encrypting message using private key #{server_private_key}")

582

173:

583

174: ssl = SSL.new(server_public_key, server_private_key)

584

175: return ssl.encrypt_with_private(string)

585

176: else

586

177: Log.debug("Encrypting message using public key for #{certid}")

587

178:

588

179: ssl = SSL.new(public_key_path_for_client(certid))

589

180: return ssl.encrypt_with_public(string)

590

181: end

591

182: end

592

183: end

593

</pre>

594

</div>

595

</div>

596

</div>

597

598

599

600

601

602

603

public_key_path_for_client(clientid)

604

</a>

605

</div>

606

607

608

609

On servers this will look in the aes.client_cert_dir for public keys

610

matching the clientid, clientid is expected to be in the format set by <a

611

href="Aes_security.html#M000015">callerid</a>

612

613

<a class="source-toggle" href="#"

614

onclick="toggleCode('M000018-source');return false;">[Source]</a>

615

616

<pre>

617

# File plugins/mcollective/security/aes_security.rb, line 202

618

202: def public_key_path_for_client(clientid)

619

203: raise "Unknown callerid format in '#{clientid}'" unless clientid.match(/^cert=(.+)$/)

620

204:

621

205: clientid = $1

622

206:

623

207: client_cert_dir + "/#{clientid}.pem"

624

208: end

625

</pre>

626

</div>

627

</div>

628

</div>

629

630

631

632

633

634

635

serialize(msg)

636

</a>

637

</div>

638

639

640

641

Serializes a message using the configured encoder

642

643

<a class="source-toggle" href="#"

644

onclick="toggleCode('M000013-source');return false;">[Source]</a>

645

646

<pre>

647

# File plugins/mcollective/security/aes_security.rb, line 123

648

123: def serialize(msg)

649

124: serializer = @config.pluginconf["aes.serializer"] || "marshal"

650

125:

651

126: Log.debug("Serializing using #{serializer}")

652

127:

653

128: case serializer

654

129: when "yaml"

655

130: return YAML.dump(msg)

656

131: else

657

132: return Marshal.dump(msg)

658

133: end

659

134: end

660

</pre>

661

</div>

662

</div>

663

</div>

664

665

666

667

668

669

670

server_private_key()

671

</a>

672

</div>

673

674

675

676

Figures out the server private key from the plugin.aes.server_private

677

config option

678

679

<a class="source-toggle" href="#"

680

onclick="toggleCode('M000022-source');return false;">[Source]</a>

681

682

<pre>

683

# File plugins/mcollective/security/aes_security.rb, line 237

684

237: def server_private_key

685

238: raise("No plugin.aes.server_private configuration option specified") unless @config.pluginconf.include?("aes.server_private")

686

239: @config.pluginconf["aes.server_private"]

687

240: end

688

</pre>

689

</div>

690

</div>

691

</div>

692

693

694

695

696

697

698

server_public_key()

699

</a>

700

</div>

701

702

703

704

Figures out the server public key from the plugin.aes.server_public config

705

option

706

707

<a class="source-toggle" href="#"

708

onclick="toggleCode('M000021-source');return false;">[Source]</a>

709

710

<pre>

711

# File plugins/mcollective/security/aes_security.rb, line 231

712

231: def server_public_key

713

232: raise("No aes.server_public configuration option specified") unless @config.pluginconf.include?("aes.server_public")

714

233: return @config.pluginconf["aes.server_public"]

715

234: end

716

</pre>

717

</div>

718

</div>

719

</div>

720

721

722

</div>

723

724

725

</div>

726

727

728

729

<a href="http://validator.w3.org/check/referer">[Validate]</a>

730

</div>

731

732

</body>

733

</html>

b'\\ No newline at end of file'

Older »