d52fe4e20a
(krb5_rd_safe): set length before trying to allocate data
Love Hörnquist Åstrand
2007-01-11 02:54:59 +00:00
7405b522a1
add data/key2.der
Love Hörnquist Åstrand
2007-01-11 02:49:44 +00:00
0bdc57f9c8
add ntlm-user-file.txt
Love Hörnquist Åstrand
2007-01-11 02:49:09 +00:00
f35bfaa82e
(krb5_pac_add_buffer): unbreak buffer handling.
Love Hörnquist Åstrand
2007-01-11 02:08:01 +00:00
acb8c4e906
add data/test-nopw.p12 to EXTRA_DIST
Love Hörnquist Åstrand
2007-01-11 00:20:44 +00:00
ab01c4b0b4
x
Love Hörnquist Åstrand
2007-01-10 22:15:46 +00:00
daf521e1d2
Hint about hxtool validate.
Love Hörnquist Åstrand
2007-01-10 22:14:51 +00:00
e797c5a42c
BasicConstraints vs criticality bit is complicated and not really possible to evaluate on its own, silly RFC3280.
Love Hörnquist Åstrand
2007-01-10 22:11:34 +00:00
72a7e4b1cb
Make basicConstraints critical if this is a CA.
Love Hörnquist Åstrand
2007-01-10 22:07:07 +00:00
f4b0e6fcea
fix the version vs extension test
Love Hörnquist Åstrand
2007-01-10 22:02:10 +00:00
d8423fa525
Even more validation checks.
Love Hörnquist Åstrand
2007-01-10 21:53:45 +00:00
5bf1bd2a7d
More validation checks.
Love Hörnquist Åstrand
2007-01-10 21:45:56 +00:00
5b9b07461e
(hx509_name_cmp): add
Love Hörnquist Åstrand
2007-01-10 21:44:25 +00:00
97be909572
x
Love Hörnquist Åstrand
2007-01-10 20:38:40 +00:00
241e3bfd29
print both "server" and "client"
Love Hörnquist Åstrand
2007-01-10 20:37:29 +00:00
c7ac4cb929
fix --distcheck
Love Hörnquist Åstrand
2007-01-10 20:33:12 +00:00
3c900f4050
add user2user test
Love Hörnquist Åstrand
2007-01-10 20:14:59 +00:00
57744d5fe2
x
Love Hörnquist Åstrand
2007-01-10 19:44:13 +00:00
82f3dca5ec
Rename keys to be more obvious what they do.
Love Hörnquist Åstrand
2007-01-10 19:43:35 +00:00
308b0e53a2
x
Love Hörnquist Åstrand
2007-01-10 19:36:03 +00:00
06ea919aaa
--verify-pac no means verify existance of PAC in ticket, the signature checking is done by the kerberos library.
Love Hörnquist Åstrand
2007-01-10 19:35:45 +00:00
1e9aabbe3d
Add check to verify the windc module as loaded.
Love Hörnquist Åstrand
2007-01-10 19:02:24 +00:00
d7bdb6f04c
Use other keys to sign with.
Love Hörnquist Åstrand
2007-01-10 18:16:42 +00:00
727251e23b
display messages.log and help that that tells us what went wrong.
Love Hörnquist Åstrand
2007-01-10 17:43:28 +00:00
b6d99cd3d5
x
Love Hörnquist Åstrand
2007-01-10 17:35:05 +00:00
3d77ddb771
(s_udiv): make a copy of a and b before we start to make sure there is something un-tainted to print in cause of failure. XXX remove this delta (s_embar): make static
Love Hörnquist Åstrand
2007-01-10 17:28:52 +00:00
28405e8385
x
Love Hörnquist Åstrand
2007-01-10 15:32:33 +00:00
f0bfd625d0
Update to validate function signature change.
Love Hörnquist Åstrand
2007-01-10 15:29:03 +00:00
a295015e44
Spelling.
Love Hörnquist Åstrand
2007-01-10 15:25:09 +00:00
5a65ccd573
indent.
Love Hörnquist Åstrand
2007-01-10 15:24:51 +00:00
7e21610a7c
Pass down server entry to verify_pac function. from Andrew Bartlett <abartlet@samba.org>
Love Hörnquist Åstrand
2007-01-10 15:22:11 +00:00
634d0ca86d
pass down server entry to verify_pac function, from Andrew Bartlett <abartlet@samba.org>
Love Hörnquist Åstrand
2007-01-10 14:22:04 +00:00
e91d63e452
x
Love Hörnquist Åstrand
2007-01-10 14:07:02 +00:00
35ad870f43
Only traverse into plugin if there is shared library support.
Love Hörnquist Åstrand
2007-01-10 13:28:11 +00:00
ce8d2de909
Provide a automake symbol ENABLE_SHARED if shared libraries are built.
Love Hörnquist Åstrand
2007-01-10 13:27:09 +00:00
a84be6224b
(krb5_rd_req_ctx): Use the correct keyblock when verifying the PAC. From Andrew Bartlett.
Love Hörnquist Åstrand
2007-01-10 12:10:17 +00:00
0b44e8aede
x
Love Hörnquist Åstrand
2007-01-09 19:44:52 +00:00
a905f0338c
(collect_private_key): Missing CKA_MODULUS is ok too (XXX why should these be fetched given they are not used).
Love Hörnquist Åstrand
2007-01-09 19:43:35 +00:00
d4b0d11e0a
update (c)
Love Hörnquist Åstrand
2007-01-09 17:46:01 +00:00
312f87ccaf
x
Love Hörnquist Åstrand
2007-01-09 11:47:01 +00:00
6e070754c2
rename all files to PEM files, since that is what they are.
Love Hörnquist Åstrand
2007-01-09 11:46:46 +00:00
6b967f571f
copy out the key with the self signed CA cert
Love Hörnquist Åstrand
2007-01-09 11:45:54 +00:00
e2a0b8d623
x
Love Hörnquist Åstrand
2007-01-09 11:25:23 +00:00
191c1f4ffa
move around to code test on real PAC.
Love Hörnquist Åstrand
2007-01-09 11:25:09 +00:00
217a1f8aaf
A tiny 2 char diffrence that make the code work for real.
Love Hörnquist Åstrand
2007-01-09 11:22:56 +00:00
fe73261177
Test more PAC (note that the values used in this test is wrong, they have to be fixed when the pac code is fixed).
Love Hörnquist Åstrand
2007-01-09 11:09:13 +00:00
c792a0e800
Update to new hxtool issue-certificate usage
Love Hörnquist Åstrand
2007-01-09 10:58:15 +00:00
555c798962
x
Love Hörnquist Åstrand
2007-01-09 10:54:30 +00:00
434a734ae8
Prefix key with FILE:
Love Hörnquist Åstrand
2007-01-09 10:52:54 +00:00
80977a02f6
Factor out private key operation out of the signing, operations, support import, export, and generation of private keys. Add support for writing PEM and PKCS12 files with private keys in them.
Love Hörnquist Åstrand
2007-01-09 10:52:13 +00:00
3fbaf4f844
x
Love Hörnquist Åstrand
2007-01-09 10:45:17 +00:00
69c37b6cc7
Make sure we don't sent both ENC-TS and PK-INIT pa data, no need to expose our password protecting our PKCS12 key.
Love Hörnquist Åstrand
2007-01-09 10:44:59 +00:00
2230b87e17
x
Love Hörnquist Åstrand
2007-01-09 10:04:47 +00:00
0415cd0901
Correct the test if the rsa is a complete RSA private key.
Love Hörnquist Åstrand
2007-01-09 10:04:20 +00:00
de625c0116
regen
Love Hörnquist Åstrand
2007-01-09 09:31:45 +00:00
d009417320
Generate a no password pkcs12 file.
Love Hörnquist Åstrand
2007-01-09 09:31:15 +00:00
e8a5c2c8d4
x
Love Hörnquist Åstrand
2007-01-09 00:04:12 +00:00
9e3b1291f4
(print_cred_verbose): include ticket length in the verbose output
Love Hörnquist Åstrand
2007-01-09 00:03:46 +00:00
f4368cb948
(i2d_RSAPrivateKey): Fail if private key isn't complete.
Love Hörnquist Åstrand
2007-01-08 20:39:44 +00:00
0e65b27793
Check for internal ASN1 encoder error.
Love Hörnquist Åstrand
2007-01-08 18:45:03 +00:00
b7259f0b9d
x
Love Hörnquist Åstrand
2007-01-08 15:39:54 +00:00
3b154f0067
More headerfiles for iruserok prototype check.
Love Hörnquist Åstrand
2007-01-08 15:38:18 +00:00
5c152d34f3
x
Love Hörnquist Åstrand
2007-01-08 15:32:14 +00:00
f3b06c771d
(loadlib): pass RTLD_LAZY to dlopen, without it linux is unhappy.
Love Hörnquist Åstrand
2007-01-08 15:31:01 +00:00
b0f21e1a0e
fix other place "bar" is used.
Love Hörnquist Åstrand
2007-01-08 13:35:49 +00:00
eceb0fc866
x
Love Hörnquist Åstrand
2007-01-08 12:04:08 +00:00
40bb5c5e23
One of the hosts I sometimes uses is named "bar.domain", this make one of the tests pass when it shouldn't.
Love Hörnquist Åstrand
2007-01-08 12:03:46 +00:00
d2f6fecbfb
x
Love Hörnquist Åstrand
2007-01-08 11:46:36 +00:00
1ee06df858
Add fc_softc for AIX as ignore syms.
Love Hörnquist Åstrand
2007-01-08 11:46:08 +00:00
5afe164e80
x
Love Hörnquist Åstrand
2007-01-08 10:17:50 +00:00
fde9807985
More verbose debugging in case of assertion failure. XXX temporary for AIX problem.
Love Hörnquist Åstrand
2007-01-08 10:17:31 +00:00
265ce7ee85
Make sure expression have constant value, for picky compilers.
Love Hörnquist Åstrand
2007-01-08 06:31:24 +00:00
3b387b88b0
add --configure-flags
Love Hörnquist Åstrand
2007-01-07 16:42:54 +00:00
f40a0cb381
document some more options.
Love Hörnquist Åstrand
2007-01-07 16:14:10 +00:00
3ee3af9905
Tell my the pac verification failes.
Love Hörnquist Åstrand
2007-01-07 01:29:23 +00:00
7e00f00832
x
Love Hörnquist Åstrand
2007-01-06 15:31:46 +00:00
2ceeb480a5
try some more loops for check_rsa
Love Hörnquist Åstrand
2007-01-06 13:56:43 +00:00
693d87cfbf
Fix a silly typo, and with that enable CRT since now it works.
Love Hörnquist Åstrand
2007-01-06 13:45:25 +00:00
f2c39a5dd3
x
Love Hörnquist Åstrand
2007-01-06 00:45:10 +00:00
3d31299f48
With this crt works, but something is wrong in the key generation, so keep it turned off for now.
Love Hörnquist Åstrand
2007-01-06 00:44:35 +00:00
abc442b8b4
x
Love Hörnquist Åstrand
2007-01-05 23:31:03 +00:00
8986d97b0c
Allow testing effect of key-blinding
Love Hörnquist Åstrand
2007-01-05 23:30:36 +00:00
dd537ba816
x
Love Hörnquist Åstrand
2007-01-05 23:22:52 +00:00
12d1def6a6
Add timing info to rsa keygen.
Love Hörnquist Åstrand
2007-01-05 23:22:11 +00:00
661cad017c
don't include <imath/rsamath.h>
Love Hörnquist Åstrand
2007-01-05 23:20:48 +00:00
0f47667bfd
x
Love Hörnquist Åstrand
2007-01-05 21:36:27 +00:00
f0f64c5deb
prune off stuff we dont use
Love Hörnquist Åstrand
2007-01-05 21:30:34 +00:00
b6135672df
Use mp_int_compare_zero instead of "MP_SIGN(&u) == MP_NEG"
Love Hörnquist Åstrand
2007-01-05 21:11:57 +00:00
6d95db6ea7
Prune off stuff we don't use from imathsource
Love Hörnquist Åstrand
2007-01-05 21:07:34 +00:00
fed2ec931e
Use mp_int_exptmod directly.
Love Hörnquist Åstrand
2007-01-05 21:04:22 +00:00
f0672f96a0
x
Love Hörnquist Åstrand
2007-01-05 21:01:48 +00:00
cda55ca141
Use a larger table of small primes, cut down genenration in best cases to half compared to using a small table.
Love Hörnquist Åstrand
2007-01-05 20:59:01 +00:00
3010e18998
x
Love Hörnquist Åstrand
2007-01-05 20:26:43 +00:00
b2cafda0f2
add RSA_FLAG_NO_BLINDING
Love Hörnquist Åstrand
2007-01-05 20:26:23 +00:00
Love Hörnquist Åstrand