oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
21,030 Commits 2 Branches 2 Tags
5fed824f372c97454833e489a2714058aac47df6
Commit Graph

51 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
5fed824f37 its vs it\'s etc. From Bjorn Sandell 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22071 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-11-14 20:04:50 +00:00
Love Hörnquist Åstrand
d6efe046f4 make compile. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21865 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 10:35:00 +00:00
Love Hörnquist Åstrand
cb9107c345 (verify_crl): set error strings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21864 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 10:32:50 +00:00
Love Hörnquist Åstrand
321ab99443 (verify_crl): handle with the signer is the CRLsigner (shortjcut). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21861 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 10:26:22 +00:00
Love Hörnquist Åstrand
90b68a672a Update to use CERT_REVOKED error, shortcut out of OCSP checking when OCSP reply is a revocation reply. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21800 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-03 10:12:09 +00:00
Love Hörnquist Åstrand
a52c9be0b2 provide slightly helpful text for unknown CRL extensions. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21798 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-03 00:19:51 +00:00
Love Hörnquist Åstrand
7c0c048abe Search for the right issuer when looking for the issuer of the CRL signer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21795 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-02 22:19:06 +00:00
Love Hörnquist Åstrand
6027754e75 Handle CRL signing certificate better, try to not revalidate invalid 
CRLs over and over.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21793 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-02 21:59:42 +00:00
Love Hörnquist Åstrand
df3a19d174 Avoid stomping on NULL. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21153 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 21:55:46 +00:00
Love Hörnquist Åstrand
b243898000 Avoid reusing i. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21152 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 21:55:06 +00:00
Love Hörnquist Åstrand
72e100cd08 (hx509_crl_*): fix sizeof() mistakes to fix memory corruption. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20871 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 21:22:51 +00:00
Love Hörnquist Åstrand
c08a7ed62f Add lifetime to crls. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20850 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 18:00:29 +00:00
Love Hörnquist Åstrand
04a99a3e5c Add revoking certs. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20848 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 15:31:07 +00:00
Love Hörnquist Åstrand
d44e3c226f Fix hx509_set_error_string calls, add hx509_crl_add_revoked_certs(), 
implement hx509_crl_{alloc,free}.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20838 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 13:46:41 +00:00
Love Hörnquist Åstrand
4f52c4766a (hx509_ocsp_verify): explain what its useful for and provide sane error message. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20808 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 03:18:12 +00:00
Love Hörnquist Åstrand
0d73993576 Support to generate an empty CRL. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20796 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-02 03:27:58 +00:00
Love Hörnquist Åstrand
ee8f651792 Indent. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20788 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-02 01:29:52 +00:00
Love Hörnquist Åstrand
5820ca3c54 switch to sha256 as default digest for signinging 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20017 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-20 23:58:14 +00:00
Love Hörnquist Åstrand
91a0892b93 constify 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19840 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-11 10:36:29 +00:00
Love Hörnquist Åstrand
086e7f3847 use new OCSPSigning. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19590 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-30 17:09:06 +00:00
Love Hörnquist Åstrand
2c0f78e9c0 Handle that _hx509_verify_signature takes a context. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19113 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-25 23:53:05 +00:00
Love Hörnquist Åstrand
dcb53a0099 Sprinkle error strings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18932 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-07 17:19:17 +00:00
Love Hörnquist Åstrand
de70ab808f Return less EINVAL. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18869 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-24 14:36:20 +00:00
Love Hörnquist Åstrand
e9d03bde61 Try to not leak memory. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18792 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-21 21:00:05 +00:00
Love Hörnquist Åstrand
4045ae9f70 Try to not leak memory. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18790 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-21 20:47:13 +00:00
Love Hörnquist Åstrand
96204e40a8 prefix der primitives with der_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18453 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-14 09:42:43 +00:00
Love Hörnquist Åstrand
649f25934c pass context to _hx509_create_signature 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17977 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-04 08:32:19 +00:00
Love Hörnquist Åstrand
1da0ea830b Avoid shadowing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17577 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-13 20:58:18 +00:00
Love Hörnquist Åstrand
1122885754 (hx509_revoke_free): allow free of NULL. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17543 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-12 06:26:59 +00:00
Love Hörnquist Åstrand
3d0bd3bbfe changed signature of _hx509_check_key_usage 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17396 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-01 14:05:35 +00:00
Love Hörnquist Åstrand
9b49a268ec Revert previous patch. 
(hx509_ocsp_verify): new function that returns the expiration of
certificate in ocsp data-blob


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17376 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-30 14:57:29 +00:00
Love Hörnquist Åstrand
0d24f17608 Make compile. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17373 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-30 14:10:15 +00:00
Love Hörnquist Åstrand
38bd0f7fda Add the time the crl/ocsp info expire 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17372 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-30 14:05:57 +00:00
Love Hörnquist Åstrand
e01c6dbc48 (hx509_ocsp_request): comment on why we need to match the issuer too. 
(hx509_revoke_ocsp_print): more verbose printing.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16994 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-03 18:29:37 +00:00
Love Hörnquist Åstrand
0fcc9f43ac (verify_ocsp): spelling. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16992 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-03 15:30:46 +00:00
Love Hörnquist Åstrand
76a4c45ce5 (verify_ocsp): require issuer to match too. 
(free_ocsp): new function
(hx509_revoke_ocsp_print): new function, print ocsp reply


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16986 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-03 15:21:24 +00:00
Love Hörnquist Åstrand
feb71a9269 (load_ocsp): test that we got back a BasicReponse 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16913 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-01 02:15:02 +00:00
Love Hörnquist Åstrand
95d72c00e1 Support OCSPResponderID.byKey, indent. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16910 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-01 02:09:38 +00:00
Love Hörnquist Åstrand
ca809dc7cf (hx509_ocsp_request): Add nonce to ocsp request. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16908 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-01 01:36:21 +00:00
Love Hörnquist Åstrand
16d16befdd refactor code, fix a un-init-ed variable 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16897 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-01 00:29:23 +00:00
Love Hörnquist Åstrand
ba70d7c12d Plug one memory leak. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16895 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-31 22:26:35 +00:00
Love Hörnquist Åstrand
1f876a35cb Renamed generic CRL related errors. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16894 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-31 22:23:30 +00:00
Love Hörnquist Åstrand
bfbc55c6cc Add ocsp checker. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16892 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-31 22:14:12 +00:00
Love Hörnquist Åstrand
4d9b604abe Pick out certs in chain. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16876 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-31 02:45:00 +00:00
Love Hörnquist Åstrand
94e1fd1616 Add code to load OCSPBasicOCSPResponse files, reload crl when its 
changed on disk.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16871 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-31 01:52:33 +00:00
Love Hörnquist Åstrand
099a14e094 hx509_certs_find is now exposed. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16811 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-26 23:49:04 +00:00
Love Hörnquist Åstrand
44b5efca00 Check for unknown extentions in CRLs and CRLEntries. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16623 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-01-19 20:01:48 +00:00
Love Hörnquist Åstrand
4859d1d1eb (hx509_revoke_free): free all memory 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16622 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-01-19 18:33:20 +00:00
Love Hörnquist Åstrand
547c672a56 Make compile again. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16621 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-01-19 18:31:33 +00:00
Love Hörnquist Åstrand
c2cb23d534 Parse and verify CRLs (simplistic). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16610 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-01-19 18:13:11 +00:00