oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
22,132 Commits 2 Branches 2 Tags
41f3c8369b7f17bf8e49ee69a3040738f4e8cafc
Commit Graph

125 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
5f7508dfc1 Use subject name as friendly name if there is no friendly name for certificate. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23072 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-04-23 11:11:20 +00:00
Love Hörnquist Åstrand
00f8b507cb rename to be more consistent, export for teting 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22679 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-14 14:52:48 +00:00
Love Hörnquist Åstrand
7776ed30a9 Add language to support querying certificates to find a match. Support constructs like "1.3.6.1.5.2.3.5" IN %{certificate.eku} AND %{certificate.subject} TAILMATCH "C=SE"". 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22677 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-13 17:35:49 +00:00
Love Hörnquist Åstrand
8b9c6c4121 Use ldap-prep (with libwind) to compare names 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22583 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-02-11 20:46:21 +00:00
Love Hörnquist Åstrand
b5cdbe6fa5 (hx509_query_match_eku): update to support the NULL eku (reset), 
clearify the old behaivor with regards repetitive calls.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22539 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-27 13:15:07 +00:00
Love Hörnquist Åstrand
0ff6dbc8bb Add matching on EKU, validate EKUs, add hxtool matching glue, add check. Adapted from pach from Tim Miller of Mitre 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22538 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-27 13:05:47 +00:00
Love Hörnquist Åstrand
b012ef1902 Spelling. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22450 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-15 19:39:14 +00:00
Love Hörnquist Åstrand
5e11811360 Add hx509_cert_get_SPKI_AlgorithmIdentifier, remove unused stuff, add hx509_context to some functions. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22449 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-15 19:38:09 +00:00
Love Hörnquist Åstrand
c9f443454e Add a PKCS11 provider supporting signing and verifing sigatures. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22435 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-14 20:53:56 +00:00
Love Hörnquist Åstrand
8fa8981654 More documentation. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22430 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-13 14:02:58 +00:00
Love Hörnquist Åstrand
5e7f1ac78f add hx509_xfree 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22346 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-26 19:14:33 +00:00
Love Hörnquist Åstrand
b3efcbda59 more documentation 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22327 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-15 04:49:37 +00:00
Love Hörnquist Åstrand
d651f2187d More documentation 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22275 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-11 11:02:11 +00:00
Love Hörnquist Åstrand
3d4ced794a handle refcount on NULL 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22265 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-09 20:49:31 +00:00
Love Hörnquist Åstrand
4c2829cc01 document flags 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22239 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 22:48:14 +00:00
Love Hörnquist Åstrand
f431301de7 Move HX509_VHN_F_ALLOW_NO_MATCH to hx509.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22238 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 22:43:46 +00:00
Love Hörnquist Åstrand
b32b8bf381 make work the doxygen. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22219 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 07:57:11 +00:00
Love Hörnquist Åstrand
c971923d5f Add doxygen. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22215 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 07:38:32 +00:00
Love Hörnquist Åstrand
5fed824f37 its vs it\'s etc. From Bjorn Sandell 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22071 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-11-14 20:04:50 +00:00
Love Hörnquist Åstrand
e12f8a96f8 match rfc822 contrains better, provide better error strings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21899 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-09 14:05:47 +00:00
Love Hörnquist Åstrand
93707ec4e3 "self-signed doesn't count" doesn't apply to trust anchor certificate. 
make trust anchor check consistant.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21869 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 11:52:52 +00:00
Love Hörnquist Åstrand
0836763de3 Fix NC, comment on how to use _hx509_check_key_usage. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21860 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 10:25:18 +00:00
Love Hörnquist Åstrand
72ed17d841 Rename proxyCertInfo oid. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21380 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-28 07:38:38 +00:00
Love Hörnquist Åstrand
311d4992f2 Match is first component is in a CN=. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21294 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:37:15 +00:00
Love Hörnquist Åstrand
9341a7ec42 Verify hostname and max-depth. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21275 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 04:50:10 +00:00
Love Hörnquist Åstrand
0d64623642 (match_general_name): more strict rfc822Name matching. 
(hx509_verify_hostname): add hostname type for matching.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21265 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-24 19:20:11 +00:00
Love Hörnquist Åstrand
3be06f138f Provide __attribute__ for _hx509_abort. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21150 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 21:51:52 +00:00
Love Hörnquist Åstrand
e051a8a3c4 Don't expose freed pointer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21136 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 21:13:27 +00:00
Love Hörnquist Åstrand
f622a16e97 Add hx509_cert_init_data and use everywhere 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21085 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-13 06:39:53 +00:00
Love Hörnquist Åstrand
22eaa9a658 Fix logic for allow_default_trust_anchors 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21069 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-12 21:04:32 +00:00
Love Hörnquist Åstrand
28ec0adc8b Change logic for default trust anchors, make it be either default 
trust anchor, the user supplied, or non at all.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21066 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-12 19:29:56 +00:00
Love Hörnquist Åstrand
8a865fee2e Read in and use default trust anchors if they exists. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20915 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-05 03:58:56 +00:00
Love Hörnquist Åstrand
b3c3aabd9f Register NULL and KEYCHAIN. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20902 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-04 23:14:53 +00:00
Love Hörnquist Åstrand
b96343ee7b Reset name before parsing it. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20884 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-04 21:12:38 +00:00
Love Hörnquist Åstrand
eb75f79fe2 (hx509_context_free): free querystat 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20824 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 05:01:52 +00:00
Love Hörnquist Åstrand
8bd94acbdd Sort and print more info. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20785 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-02 01:03:14 +00:00
Love Hörnquist Åstrand
e3909014e4 If there are no querystat file, whine. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20783 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-02 00:47:21 +00:00
Love Hörnquist Åstrand
98c0802377 Statistics printing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20772 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-01 21:53:41 +00:00
Love Hörnquist Åstrand
7e32c2becf Fix printing and plug leak-on-error. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20154 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-03 09:03:01 +00:00
Love Hörnquist Åstrand
bb82e186fd indent 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20078 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-31 11:29:11 +00:00
Love Hörnquist Åstrand
c86d7c38d6 (is_proxy_cert): free info if we wont return it. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20077 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-31 11:24:45 +00:00
Love Hörnquist Åstrand
7e631d7fda (hx509_cert_binary): return binary encoded certificate (DER format) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19910 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-14 23:20:43 +00:00
Love Hörnquist Åstrand
2dfb044b10 Export more stuff from certificate. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19893 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-14 18:13:44 +00:00
Love Hörnquist Åstrand
80977a02f6 Factor out private key operation out of the signing, operations, support import, export, and generation of private keys. Add support for writing PEM and PKCS12 files with private keys in them. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19778 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-09 10:52:13 +00:00
Love Hörnquist Åstrand
b4ca985700 Fix test for proxy certs chain length, it was too restrictive. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19608 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-31 01:31:28 +00:00
Love Hörnquist Åstrand
3f121e484c Locally export _hx509_find_extension_subject_key_id. 
Handle AuthorityKeyIdentifier where only authorityCertSerialNumber and
authorityCertSerialNumber is set.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19587 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-30 15:57:14 +00:00
Love Hörnquist Åstrand
e0462bfd82 Add HX509_QUERY_OPTION_KU_KEYCERTSIGN. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19561 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-29 15:51:22 +00:00
Love Hörnquist Åstrand
53256a007f make a note that we MUST check info.proxyPolicy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19291 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-08 00:02:10 +00:00
Love Hörnquist Åstrand
71e4dc1497 Clairfy and make proxy cert handling work for multiple levels, before 
it was too restrictive. More helpful error message.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19283 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-07 23:39:26 +00:00
Love Hörnquist Åstrand
7ea26d8dc4 (check_key_usage): print subject, not issuer 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19280 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-07 22:41:26 +00:00