Merge pull request #42 from Keyfactor/pswd-logging

fiddlermikey · web-flow · commit f70ebd699405 · 2024-01-03T14:17:45.000-08:00
Pswd logging
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,6 @@
+v2.4.1
+- Fix logging issue for RFKDB
+
 v2.4.0
 - Add new optional custom parameter, IgnorePrivateKeyOnInventory, for RFPEM, which will allow inventorying RFPEM certificate stores where the store password is unknown.  This will make the store INVENTORY ONLY.  Once the store password is added, this option can be de-selected (set to False), inventory can be run again, and then renewing/removing the certificate will be allowed.
 - Bug fix: Discovery "Directories to Ignore" field not being used to filter results
diff --git a/RemoteFile/ImplementedStoreTypes/KDB/KDBCertificateStoreSerializer.cs b/RemoteFile/ImplementedStoreTypes/KDB/KDBCertificateStoreSerializer.cs
@@ -46,7 +46,7 @@ public Pkcs12Store DeserializeRemoteCertificateStore(byte[] storeContentBytes, s
 
             try
             {
-                remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, null);
+                remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, new string[] { storePassword });
 
                 byte[] storeBytes = remoteHandler.DownloadCertificateFile($"{storePath}{tempCertFile}");
                 store.Load(new MemoryStream(storeBytes), string.IsNullOrEmpty(storePassword) ? new char[0] : storePassword.ToCharArray());
@@ -84,7 +84,7 @@ public List<SerializedStoreInfo> SerializeRemoteCertificateStore(Pkcs12Store cer
                     certificateStore.Save(ms, string.IsNullOrEmpty(storePassword) ? new char[0] : storePassword.ToCharArray(), new Org.BouncyCastle.Security.SecureRandom());
                     remoteHandler.UploadCertificateFile(storePath, tempCertFile, ms.ToArray());
                 }
-                remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, null);
+                remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, new string[] { storePassword });
                 byte[] storeContents = remoteHandler.DownloadCertificateFile($"{storePath}{tempStoreFile}");
 
                 storeInfo.Add(new SerializedStoreInfo() { Contents = storeContents, FilePath = storePath+storeFileName });

Original file line number	Diff line number	Diff line change
`@@ -46,7 +46,7 @@ public Pkcs12Store DeserializeRemoteCertificateStore(byte[] storeContentBytes, s`
`46`	`46`
`47`	`47`	`try`
`48`	`48`	`{`
`49`		`- remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, null);`
	`49`	`+ remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, new string[] { storePassword });`
`50`	`50`
`51`	`51`	`byte[] storeBytes = remoteHandler.DownloadCertificateFile($"{storePath}{tempCertFile}");`
`52`	`52`	`store.Load(new MemoryStream(storeBytes), string.IsNullOrEmpty(storePassword) ? new char[0] : storePassword.ToCharArray());`
`@@ -84,7 +84,7 @@ public List<SerializedStoreInfo> SerializeRemoteCertificateStore(Pkcs12Store cer`
`84`	`84`	`certificateStore.Save(ms, string.IsNullOrEmpty(storePassword) ? new char[0] : storePassword.ToCharArray(), new Org.BouncyCastle.Security.SecureRandom());`
`85`	`85`	`remoteHandler.UploadCertificateFile(storePath, tempCertFile, ms.ToArray());`
`86`	`86`	`}`
`87`		`- remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, null);`
	`87`	`+ remoteHandler.RunCommand(command, null, ApplicationSettings.UseSudo, new string[] { storePassword });`
`88`	`88`	`byte[] storeContents = remoteHandler.DownloadCertificateFile($"{storePath}{tempStoreFile}");`
`89`	`89`
`90`	`90`	`storeInfo.Add(new SerializedStoreInfo() { Contents = storeContents, FilePath = storePath+storeFileName });`