oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
21,151 Commits 2 Branches 2 Tags
b32b8bf381e0721ddf952698f54fcb51cddaf33d
Commit Graph

109 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
b32b8bf381 make work the doxygen. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22219 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 07:57:11 +00:00
Love Hörnquist Åstrand
c971923d5f Add doxygen. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22215 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 07:38:32 +00:00
Love Hörnquist Åstrand
5fed824f37 its vs it\'s etc. From Bjorn Sandell 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22071 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-11-14 20:04:50 +00:00
Love Hörnquist Åstrand
e12f8a96f8 match rfc822 contrains better, provide better error strings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21899 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-09 14:05:47 +00:00
Love Hörnquist Åstrand
93707ec4e3 "self-signed doesn't count" doesn't apply to trust anchor certificate. 
make trust anchor check consistant.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21869 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 11:52:52 +00:00
Love Hörnquist Åstrand
0836763de3 Fix NC, comment on how to use _hx509_check_key_usage. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21860 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-08 10:25:18 +00:00
Love Hörnquist Åstrand
72ed17d841 Rename proxyCertInfo oid. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21380 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-28 07:38:38 +00:00
Love Hörnquist Åstrand
311d4992f2 Match is first component is in a CN=. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21294 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:37:15 +00:00
Love Hörnquist Åstrand
9341a7ec42 Verify hostname and max-depth. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21275 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 04:50:10 +00:00
Love Hörnquist Åstrand
0d64623642 (match_general_name): more strict rfc822Name matching. 
(hx509_verify_hostname): add hostname type for matching.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21265 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-24 19:20:11 +00:00
Love Hörnquist Åstrand
3be06f138f Provide __attribute__ for _hx509_abort. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21150 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 21:51:52 +00:00
Love Hörnquist Åstrand
e051a8a3c4 Don't expose freed pointer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21136 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 21:13:27 +00:00
Love Hörnquist Åstrand
f622a16e97 Add hx509_cert_init_data and use everywhere 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21085 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-13 06:39:53 +00:00
Love Hörnquist Åstrand
22eaa9a658 Fix logic for allow_default_trust_anchors 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21069 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-12 21:04:32 +00:00
Love Hörnquist Åstrand
28ec0adc8b Change logic for default trust anchors, make it be either default 
trust anchor, the user supplied, or non at all.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21066 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-12 19:29:56 +00:00
Love Hörnquist Åstrand
8a865fee2e Read in and use default trust anchors if they exists. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20915 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-05 03:58:56 +00:00
Love Hörnquist Åstrand
b3c3aabd9f Register NULL and KEYCHAIN. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20902 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-04 23:14:53 +00:00
Love Hörnquist Åstrand
b96343ee7b Reset name before parsing it. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20884 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-04 21:12:38 +00:00
Love Hörnquist Åstrand
eb75f79fe2 (hx509_context_free): free querystat 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20824 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-03 05:01:52 +00:00
Love Hörnquist Åstrand
8bd94acbdd Sort and print more info. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20785 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-02 01:03:14 +00:00
Love Hörnquist Åstrand
e3909014e4 If there are no querystat file, whine. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20783 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-02 00:47:21 +00:00
Love Hörnquist Åstrand
98c0802377 Statistics printing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20772 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-01 21:53:41 +00:00
Love Hörnquist Åstrand
7e32c2becf Fix printing and plug leak-on-error. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20154 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-03 09:03:01 +00:00
Love Hörnquist Åstrand
bb82e186fd indent 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20078 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-31 11:29:11 +00:00
Love Hörnquist Åstrand
c86d7c38d6 (is_proxy_cert): free info if we wont return it. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20077 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-31 11:24:45 +00:00
Love Hörnquist Åstrand
7e631d7fda (hx509_cert_binary): return binary encoded certificate (DER format) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19910 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-14 23:20:43 +00:00
Love Hörnquist Åstrand
2dfb044b10 Export more stuff from certificate. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19893 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-14 18:13:44 +00:00
Love Hörnquist Åstrand
80977a02f6 Factor out private key operation out of the signing, operations, support import, export, and generation of private keys. Add support for writing PEM and PKCS12 files with private keys in them. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19778 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-09 10:52:13 +00:00
Love Hörnquist Åstrand
b4ca985700 Fix test for proxy certs chain length, it was too restrictive. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19608 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-31 01:31:28 +00:00
Love Hörnquist Åstrand
3f121e484c Locally export _hx509_find_extension_subject_key_id. 
Handle AuthorityKeyIdentifier where only authorityCertSerialNumber and
authorityCertSerialNumber is set.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19587 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-30 15:57:14 +00:00
Love Hörnquist Åstrand
e0462bfd82 Add HX509_QUERY_OPTION_KU_KEYCERTSIGN. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19561 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-29 15:51:22 +00:00
Love Hörnquist Åstrand
53256a007f make a note that we MUST check info.proxyPolicy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19291 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-08 00:02:10 +00:00
Love Hörnquist Åstrand
71e4dc1497 Clairfy and make proxy cert handling work for multiple levels, before 
it was too restrictive. More helpful error message.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19283 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-07 23:39:26 +00:00
Love Hörnquist Åstrand
7ea26d8dc4 (check_key_usage): print subject, not issuer 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19280 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-07 22:41:26 +00:00
Love Hörnquist Åstrand
eecdea2e20 (check_key_usage): tell what keyusages are missing 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19279 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-07 22:35:27 +00:00
Love Hörnquist Åstrand
b6b9423a2b (hx509_query_match_issuer_serial): make a copy of the data 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19249 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 13:08:31 +00:00
Love Hörnquist Åstrand
dcf2f6807a (hx509_query_match_issuer_serial): allow matching on issuer and serial num 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19245 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 12:21:35 +00:00
Love Hörnquist Åstrand
8bc1396160 (_hx509_calculate_path): add flag to allow leaving out trust anchor 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19239 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 10:35:16 +00:00
Love Hörnquist Åstrand
0528938895 (find_parent): when checking for certs and its not a trust anchor, 
require time be in range.
(_hx509_query_match_cert): Add time validity-testing to query mask


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19228 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-05 23:46:19 +00:00
Love Hörnquist Åstrand
d3b2e5df80 Don't check the trust anchors expiration time since they are 
transported out of band, from RFC3820.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19176 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-28 17:41:57 +00:00
Love Hörnquist Åstrand
1d8f59cfa1 sprinkle more error strings 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19171 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-28 12:00:08 +00:00
Love Hörnquist Åstrand
35dda6b1b9 Sprinkle more error string and hx509_contexts. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19130 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-26 17:54:18 +00:00
Love Hörnquist Åstrand
2c0f78e9c0 Handle that _hx509_verify_signature takes a context. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19113 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-25 23:53:05 +00:00
Love Hörnquist Åstrand
1a89ccbde3 (_hx509_calculate_path): allow to calculate optimistic path when we 
don't know the trust anchors, just follow the chain upward until we no
longer find a parent or we hit the max limit.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19096 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-23 18:11:22 +00:00
Love Hörnquist Åstrand
343b2cb1c2 (hx509_query_match_cmp_func): return 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18911 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-04 23:43:24 +00:00
Love Hörnquist Åstrand
c226612caa (hx509_query_match_cmp_func): allow setting the match function. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18909 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-04 23:27:49 +00:00
Love Hörnquist Åstrand
e4ce12b8d1 unbreak. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18858 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-24 13:09:49 +00:00
Love Hörnquist Åstrand
23a7e5e2b2 (hx509_cert_get_base_subject): one less EINVAL 
(_hx509_cert_private_decrypt): one less EINVAL


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18854 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-24 12:30:04 +00:00
Love Hörnquist Åstrand
df5da7edfe Try to not leak memory. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18786 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-21 20:12:42 +00:00
Love Hörnquist Åstrand
96204e40a8 prefix der primitives with der_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18453 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-14 09:42:43 +00:00