oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
20,053 Commits 2 Branches 2 Tags
9df9f6a9da83c49e8f14d1ee804dd2a06de539bf
Commit Graph

127 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
9df9f6a9da revert 21003 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21004 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-08 01:53:10 +00:00
Love Hörnquist Åstrand
12df8538af use "roken.h" consitantly 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21003 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-08 01:42:05 +00:00
Love Hörnquist Åstrand
9fe3a53f6d Allow turning off sending trustedCertifiers in the request. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20752 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-05-31 20:58:07 +00:00
Love Hörnquist Åstrand
d76d52e01d (_krb5_get_init_creds_opt_free_pkinit): remember to free memory too. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20433 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-19 13:20:18 +00:00
Love Hörnquist Åstrand
2af2d575a3 (pk_rd_pa_reply_dh): free content-type when done. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20431 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-19 13:13:51 +00:00
Love Hörnquist Åstrand
aa3ae69d42 Set error strings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20303 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-11 11:14:26 +00:00
Love Hörnquist Åstrand
f37c85ba61 pass extra flags for detached signatures. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20171 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-03 22:47:25 +00:00
Love Hörnquist Åstrand
90832c9d52 sprinkle more _krb5_pk_copy_error 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19297 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-08 02:48:09 +00:00
Love Hörnquist Åstrand
76a79be26e Copy more hx509 error strings to krb5 error strings 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19295 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-08 02:30:20 +00:00
Love Hörnquist Åstrand
247bb1c42b Store what PK-INIT type we used to know reply to expect, this avoids 
overwriting the real PK-INIT error from just a failed requeat with a
Windows PK-INIT error (that always failes).


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19191 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-29 11:47:29 +00:00
Love Hörnquist Åstrand
997dc9aebb Allow selection of minium bits from the DH parameters. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19167 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-28 04:00:35 +00:00
Love Hörnquist Åstrand
2f4615fcd2 (build_auth_pack): set supportedCMSTypes. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19158 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-27 13:46:04 +00:00
Love Hörnquist Åstrand
0e4b620131 Pass down hx509_peer_info. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19132 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-26 18:09:59 +00:00
Love Hörnquist Åstrand
ddfe47e5e1 Update hx509_cms_create_signed_1. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19120 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-26 15:50:48 +00:00
Love Hörnquist Åstrand
03d0a158b8 (_krb5_pk_create_sign): stuff down the users certs in the pool to make 
sure a path is returned, without this proxy certificates wont work.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19097 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-23 18:13:47 +00:00
Love Hörnquist Åstrand
5b7701514e Make all pkinit options prefixed with pkinit_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19069 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-17 22:27:01 +00:00
Love Hörnquist Åstrand
61623b636c Make app pkinit options prefixed with pkinit_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19068 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-17 22:20:25 +00:00
Love Hörnquist Åstrand
8b1cb25ffc Prefix der primitives with der_. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18455 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-14 09:53:19 +00:00
Love Hörnquist Åstrand
b226d0acf5 Adapt to new signature of hx509_cms_unenvelope. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18065 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-11 06:38:36 +00:00
Love Hörnquist Åstrand
0fbe98fc9c (pk_verify_host): set errorstrings in a sensable way 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18061 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-09 13:39:24 +00:00
Love Hörnquist Åstrand
c360ec2e50 (_krb5_pk_verify_sign): catch the error string from the hx509 lib 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18036 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-06 18:53:39 +00:00
Love Hörnquist Åstrand
d60350c3a1 Avoid more shadowing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17606 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-01 18:17:58 +00:00
Love Hörnquist Åstrand
4c970b550e Avoid shadowing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17579 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-13 21:22:55 +00:00
Love Hörnquist Åstrand
7785a29dbf Hidden field of hx509 prompter is removed. 
Fix a warning.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17554 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-12 10:17:19 +00:00
Love Hörnquist Åstrand
d08f2e3a09 (_krb5_pk_load_id): only use password if its longer then 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17539 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-11 22:56:54 +00:00
Love Hörnquist Åstrand
1e12165c58 (krb5_get_init_creds_opt_set_pkinit): move parsing of the 
configuration file to the library so application doesn't need to deal
with it.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17529 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-11 10:16:01 +00:00
Love Hörnquist Åstrand
66cc779e91 (_krb5_pk_load_id): pass the hx509_lock to when trying to read the 
user certificate.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17526 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-11 07:03:10 +00:00
Love Hörnquist Åstrand
60736cd1ec (hx_pass_prompter): return 0 on success and 1 on failure. Pointed out 
by Douglas E. Engert.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17525 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-11 06:59:56 +00:00
Love Hörnquist Åstrand
64f9c706ec (_krb5_pk_verify_sign): Use hx509_get_one_cert. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17506 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-07 12:32:38 +00:00
Love Hörnquist Åstrand
9f59e70024 Now that hcrypto supports DH, remove check for hx509 null DH. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17491 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-06 13:24:54 +00:00
Love Hörnquist Åstrand
b3fc06db32 Catch using hx509 null DH and print a more useful error message. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17440 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-05 07:33:33 +00:00
Love Hörnquist Åstrand
9b824aa05f Deal with that hx509_prompt.reply is no longer a pointer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17420 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-03 18:56:27 +00:00
Love Hörnquist Åstrand
fa7b5da860 (cert2epi): don't include subject if its null 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17368 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-30 07:36:27 +00:00
Love Hörnquist Åstrand
92ed76e969 Send over what trust anchors the client have configured. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17364 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-29 21:29:28 +00:00
Love Hörnquist Åstrand
03276c9ead (pk_verify_host): set better error string, only check kdc name/address 
when we got a hostname/address passed in the the function.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17349 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-29 15:04:42 +00:00
Love Hörnquist Åstrand
e5194fdc60 (pk_verify_host): verify hostname/address 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17332 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-28 11:23:35 +00:00
Love Hörnquist Åstrand
25f574426e (_krb5_pk_allow_proxy_certificate); less arguments better 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17291 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-26 18:54:16 +00:00
Love Hörnquist Åstrand
53905171a0 (_krb5_pk_allow_proxy_certificates): expose hx509_verify_set_proxy_certificate 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17286 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-26 18:41:40 +00:00
Love Hörnquist Åstrand
2157835b75 Pass down realm to pk_verify_host so the function can verify the 
certificate is from the right realm.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17196 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-24 08:23:47 +00:00
Love Hörnquist Åstrand
4828d9e4e4 (pk_verify_host): Add begining of finding subjectAltName_otherName 
pk-init-san and verifing it.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17192 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-23 21:30:17 +00:00
Love Hörnquist Åstrand
9578393792 Add pkinit_require_eku and pkinit_require_krbtgt_otherName 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17177 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-23 20:07:51 +00:00
Love Hörnquist Åstrand
313fa917d5 Adapt to change in hx509_cms_create_signed_1. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17171 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-22 12:10:16 +00:00
Love Hörnquist Åstrand
e43d859600 Handle diffrences between libhcrypto and libcrypto. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17109 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-20 17:08:46 +00:00
Love Hörnquist Åstrand
19aee3ece1 (_krb5_pk_load_id): Added certificate revoke information, ie CRL's 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17053 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-12 13:19:13 +00:00
Love Hörnquist Åstrand
ff8a601d49 (krb5_get_init_creds_opt_set_pkinit); fix prototype 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16857 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-30 03:36:32 +00:00
Love Hörnquist Åstrand
945efb8a96 Add pool of certificates to help certificate path building for clients 
sending incomplete path in the signedData.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16854 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-28 19:57:25 +00:00
Love Hörnquist Åstrand
cd6acf1200 Allow passing in related certificates used to build the chain. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16850 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-28 04:38:14 +00:00
Love Hörnquist Åstrand
5e82b46be0 Use less openssl, spell chelling. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16823 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-27 04:12:34 +00:00
Love Hörnquist Åstrand
f024392e81 Switch to hx509. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-26 23:55:17 +00:00
Love Hörnquist Åstrand
a603f569c3 (_krb5_pk_rd_pa_reply): pass down the req_buffer in the w2k case 
too. From Douglas E. Engert.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16801 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-23 17:19:14 +00:00