oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
Files
15b2094079631e229de82aa82d7335b2af8340c2
heimdal/lib
History
Nicolas Williams 15b2094079 hx509: Add Heimdal cert ext for ticket max_life 
This adds support for using a Heimdal-specific PKIX extension to derive
a maximum Kerberos ticket lifetime from a client's PKINIT certificate:

 - a `--pkinit-max-life` to the `hxtool ca` command
 - `hx509_ca_tbs_set_pkinit_max_life()`
 - `hx509_cert_get_pkinit_max_life()`
 - `HX509_CA_TEMPLATE_PKINIT_MAX_LIFE`

There are two extensions.  One is an EKU, which if present means that
the maximum ticket lifetime should be derived from the notAfter minus
notBefore.  The other is a certificate extension whose value is a
maximum ticket lifetime in seconds.  The latter is preferred.
2021-03-24 19:12:00 -05:00
..
asn1
asn1: Add Heimdal cert ext for ticket max_life
2021-03-24 19:12:00 -05:00
base
base: Make heim_audit_trail() safer when ENOMEM
2020-09-07 22:04:59 -05:00
com_err
com_err: make error_table_name() thread-safe
2020-04-24 00:11:56 -05:00
gssapi
asn1: X.681/682/683 magic handling of open types
2021-02-28 18:13:08 -06:00
hcrypto
hcrypto: Disable errors for now that should be fixed
2020-09-07 22:04:59 -05:00
hdb
asn1: X.681/682/683 magic handling of open types
2021-02-28 18:13:08 -06:00
heimdal
lib/krb5: krb5_get_instance does not work on Windows 7
2020-05-27 23:22:40 -05:00
hx509
hx509: Add Heimdal cert ext for ticket max_life
2021-03-24 19:12:00 -05:00
ipc
ipc: Get socket dir via secure_getenv()
2019-11-02 18:49:42 -05:00
kadm5
kadm5: Do not apply new service key delay in get
2020-09-19 21:48:49 -05:00
kafs
Generic: Fix warnings (fallthrough mosty)
2020-09-07 22:04:59 -05:00
kdfs
Minor typo/grammar fixes
2017-03-10 15:47:43 -05:00
krb5
krb5: Make q param of DH moduli optional
2021-03-24 17:48:17 -05:00
libedit
[libedit/configure.ac] Refactor tgetent message to reflect libraries searched
2020-05-31 11:59:33 -04:00
ntlm
Generic: Fix warnings (fallthrough mosty)
2020-09-07 22:04:59 -05:00
otp
Prefer BDB3/4/5 to BDB1/2
2016-11-08 15:48:40 -05:00
roken
roken: Take https://github.com/dlfcn-w32/dlfcn-w32
2021-02-22 00:21:45 -06:00
sl
Add more test cases for issue #704
2020-11-06 12:55:31 -05:00
sqlite
sqlite: Upgrade to SQLite3 3.33.0
2020-10-27 13:30:57 -05:00
vers
Fix make dist missing files (#228)
2016-12-15 12:15:56 -06:00
wind
Fix switch fallthrough warnings/errors
2020-09-07 22:04:59 -05:00
Makefile.am
Move some infra bits of lib/krb5/ to lib/base/ (2)
2020-03-02 10:56:13 -06:00
NTMakefile
Move some infra bits of lib/krb5/ to lib/base/ (2)
2020-03-02 10:56:13 -06:00