oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
28,871 Commits 2 Branches 2 Tags
a2db5caebfb2bf05cd6ec526b5ad94e3a33c4dd6
Commit Graph

84 Commits

Author SHA1 Message Date
Nicolas Williams
859c587dc2 Add more hxtool EKU options, and KeyUsage too 
This is necessary in order to have more control over, e.g., template
certificates for kx509.  But also it's good to have this more generally.

Some batteries not included.  Specifically: no attempt is made to validate that
given KeyUsage values are compatible with the subjectPublicKey's alrogithm and
parameters.
 2019-10-03 13:09:18 -05:00
Jelmer Vernooij
70e43e9808 Fix some typos. 2014-04-25 02:42:17 +02:00
Love Hörnquist Åstrand
c69c4634ad allow setting signature algorithm 2014-02-12 09:46:02 -08:00
Love Hornquist Astrand
bcbd477a20 support parsing PEM CRL files and printing revoke contexts 2013-04-27 12:42:12 -07:00
Roland C. Dowdeswell
67d9094665 Allow hxtool to process multiple --pk-init-principal args. 2012-04-05 20:20:19 +01:00
Love Hornquist Astrand
b11217838e --no-embedded-certs and --embed-leaf-only 2010-08-10 10:20:13 -07:00
Love Hornquist Astrand
92075b8825 add allow wrong oid flag, short for trust anchors 2009-09-23 00:02:46 -07:00
Love Hornquist Astrand
30aa8a7166 there is already one verify, don't make two 2009-08-21 13:42:22 -07:00
Love Hornquist Astrand
03cb3aa56b use EVP_MD_CTX_create 2009-08-20 17:13:09 -07:00
Love Hornquist Astrand
e3da85a4ab add aliases to commands 2009-08-20 14:05:18 -07:00
Love Hornquist Astrand
f0aec0e637 allow one argument 2009-08-20 10:20:09 -07:00
Love Hörnquist Åstrand
d17fab3f7b add --never-fail flag to print 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25222 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-25 23:43:36 +00:00
Love Hörnquist Åstrand
7c796daa23 add allow weak crypto flag 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24959 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-26 23:12:24 +00:00
Love Hörnquist Åstrand
74ed9683a6 handle unsigned SignedData in cms-create-sd and cms-verify-sd 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24587 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:05:41 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
8327309499 make it clear that ca --type can be used more then once. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23344 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-14 13:43:03 +00:00
Love Hörnquist Åstrand
7776ed30a9 Add language to support querying certificates to find a match. Support constructs like "1.3.6.1.5.2.3.5" IN %{certificate.eku} AND %{certificate.subject} TAILMATCH "C=SE"". 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22677 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-13 17:35:49 +00:00
Love Hörnquist Åstrand
8348b37a6b Add --pem to cms-verify-sd. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22653 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-02-26 12:29:39 +00:00
Love Hörnquist Åstrand
0ff6dbc8bb Add matching on EKU, validate EKUs, add hxtool matching glue, add check. Adapted from pach from Tim Miller of Mitre 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22538 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-27 13:05:47 +00:00
Love Hörnquist Åstrand
c2164a1781 Adapt to new request handling. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21343 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-26 14:21:55 +00:00
Love Hörnquist Åstrand
ddc4a41685 (cms-create-signed): add --pem 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21302 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 16:44:55 +00:00
Love Hörnquist Åstrand
c5e18ae5eb add --hostname add --max-depth 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21276 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 04:50:40 +00:00
Love Hörnquist Åstrand
a3fec27a13 add cms-create-sd --id-by-name 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21269 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-24 19:25:28 +00:00
Love Hörnquist Åstrand
c9d85b6204 Add content-type. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21167 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-19 00:11:03 +00:00
Love Hörnquist Åstrand
9d1bb9e015 Add cms-create-sd --peer-alg. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20935 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-06 20:21:54 +00:00
Love Hörnquist Åstrand
baee263bda Default path-length to -1. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20905 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-05 01:59:19 +00:00
Love Hörnquist Åstrand
9ccb8e8d8b Add lifetime to crls. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20851 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 18:00:59 +00:00
Love Hörnquist Åstrand
1e223ee1a9 argument is certificates.. for crl-sign 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20847 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 15:30:36 +00:00
Love Hörnquist Åstrand
ac5c46095d New command ocsp-verify. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20805 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 03:08:39 +00:00
Love Hörnquist Åstrand
5f546a763e Add crl-sign commands. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20797 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-02 03:28:26 +00:00
Love Hörnquist Åstrand
d2d30f8b2a Add statistics hook. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20773 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-01 21:58:56 +00:00
Love Hörnquist Åstrand
27cd38c109 make ca and alias of certificate-sign 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20725 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-05-31 13:14:55 +00:00
Love Hörnquist Åstrand
499cb7937a Add ca --ms-upn. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20722 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-05-31 02:45:11 +00:00
Love Hörnquist Åstrand
9081ac940b add ca --domain-controller 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20711 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-05-30 22:58:21 +00:00
Love Hörnquist Åstrand
64ff82a9eb add test-crypto command 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20666 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-05-10 23:18:58 +00:00
Love Hörnquist Åstrand
56b26bb2cc Add options to generate detached signatures. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20169 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-03 22:45:55 +00:00
Love Hörnquist Åstrand
f2b0cd7d5a add ca --crl-uri 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20104 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-31 15:54:40 +00:00
Love Hörnquist Åstrand
884b0179aa Add certificate template processing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19895 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-14 18:15:53 +00:00
Love Hörnquist Åstrand
1739d7acbe (certificate-sign): add --jid 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19862 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-12 08:44:58 +00:00
Love Hörnquist Åstrand
80977a02f6 Factor out private key operation out of the signing, operations, support import, export, and generation of private keys. Add support for writing PEM and PKCS12 files with private keys in them. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19778 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-09 10:52:13 +00:00
Love Hörnquist Åstrand
22133f82f9 (issue-certificate): Allow setting serialNumber (needed for reissuing 
certificates), Change --key argument to --out-key.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19725 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-05 18:35:39 +00:00
Love Hörnquist Åstrand
d0c2319998 add generate key commands 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19704 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-04 20:52:37 +00:00
Love Hörnquist Åstrand
2ce57212dc Spelling. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19682 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-04 11:32:08 +00:00
Love Hörnquist Åstrand
7a0bda61c8 Allow setting path length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19610 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-31 01:37:10 +00:00
Love Hörnquist Åstrand
760f9d2de4 add --lifetime to ca command. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19604 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-31 01:10:00 +00:00
Love Hörnquist Åstrand
623c3467da Add bits to allow issuing self-signed and CA certificates. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19592 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-30 17:50:39 +00:00
Love Hörnquist Åstrand
2ad9f89060 Add dnsname and rfc822 SANs. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19585 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-30 15:03:10 +00:00
Love Hörnquist Åstrand
b5c3feb43f Add --type and --pk-init-principal 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19579 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-30 14:45:49 +00:00
Love Hörnquist Åstrand
694955c3a8 Add the sign-certificate tool. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19562 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-29 15:52:35 +00:00
Love Hörnquist Åstrand
dce9cb1dd3 add hex 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19542 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-28 20:30:30 +00:00