aboutsummaryrefslogtreecommitdiff
path: root/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c
AgeCommit message (Expand)AuthorFilesLines
2024-03-26Fix OpenSSL 1.0 and 1.1 support in PKINITGreg Hudson1-1/+30
2024-03-18Improve PKCS11 error reporting in PKINITGreg Hudson1-120/+142
2024-03-18Support PKCS11 EC client certs in PKINITGreg Hudson1-113/+206
2024-03-18Correct PKINIT EC cert signature metadataGreg Hudson1-2/+18
2024-03-18Simplify PKINIT cert representationGreg Hudson1-54/+20
2024-02-13Avoid strict-prototype compiler errorsSteffen Kieß1-1/+1
2023-12-12Refactor PKINIT KDF internal interfacesGreg Hudson1-24/+33
2023-11-30Remove PKINIT RSA supportGreg Hudson1-504/+0
2023-11-30In PKINIT, check for null PKCS7 enveloped fieldsGreg Hudson1-1/+3
2023-08-22Get rid of pkinit_crypto_openssl.hGreg Hudson1-3/+82
2023-07-24Eliminate old-style function declarationsKen Hornstein1-2/+2
2023-07-17PKINIT ECDH supportGreg Hudson1-148/+322
2023-06-02Enable PKINIT if at least one group is availableGreg Hudson1-32/+44
2023-03-24Make k5buf more flexible for binary dataGreg Hudson1-7/+1
2023-01-13Fix PKINIT CMS error checking for older OpenSSLGreg Hudson1-11/+3
2022-08-18Update error checking for OpenSSL CMS_verifyJulien Rische1-3/+6
2022-07-20Remove include_certchain parameter in PKINITGreg Hudson1-42/+37
2022-07-13Remove pre-CMS PKINIT compatibility codeGreg Hudson1-42/+5
2022-07-07Set reasonable supportedCMSTypes in PKINITJulien Rische1-24/+25
2022-03-17Use SHA-256 instead of SHA-1 for PKINIT CMS digestJulien Rische1-17/+21
2021-11-15Update PKINIT for OpenSSL 3Robbie Harwood1-36/+161
2021-11-15Use OpenSSL 3 versions of remaining KDFsRobbie Harwood1-161/+169
2021-11-05Use EVP key agreement in PKINITGreg Hudson1-298/+383
2021-11-04Use OpenSSL SubjectPublicKeyInfo parsing in PKINITGreg Hudson1-264/+265
2021-11-02Use pre-encoded DH parameter constants in PKINITGreg Hudson1-301/+45
2021-07-01Fix many unlikely memory leaksRobbie Harwood1-24/+34
2021-07-01Modernize pkinit_get_certs_pkcs11Robbie Harwood1-117/+113
2021-04-07Add additional KRB5_TRACE pointsKen Hornstein1-52/+62
2021-04-07Fix multiple UPN handling in PKINIT client certsKen Hornstein1-3/+2
2021-03-16Use krb5int_open_plugin for PKCS#11 moduleKen Hornstein1-18/+19
2021-02-11Load certs when checking pkinit_identities valuesKen Hornstein1-6/+4
2020-03-26Eliminate redundant PKINIT responder invocationGreg Hudson1-6/+7
2019-06-26Remove PKINIT draft 9 supportGreg Hudson1-165/+56
2019-05-10Simply OpenSSL PKCS7 decryption codeRobbie Harwood1-149/+62
2018-04-25Fix PKINIT rule matching against UPN SANsGreg Hudson1-50/+13
2018-03-07Use libkrb5support hex decoder in PKINITGreg Hudson1-40/+3
2018-03-07Fix hex conversion of PKINIT certid stringsSumit Bose1-11/+44
2018-02-26Improve PKINIT DH output parameter handlingsashan1-57/+69
2018-02-23Fix memory leak in KDC PKINIT codesashan1-0/+1
2017-10-25Fix PKINIT cert matching data constructionGreg Hudson1-42/+25
2017-08-29Fix certauth built-in module returnsGreg Hudson1-21/+18
2017-04-10Port pkinit debug code to OpenSSL 1.1.0 APIJakub Jelen1-3/+5
2017-04-05Convert some pkiDebug messages to TRACE macrosMatt Rogers1-29/+17
2017-03-24Remove some unnecessary PKINIT codeGreg Hudson1-9/+1
2017-03-23Correct error handling bug in prior commitGreg Hudson1-2/+2
2017-03-23Add the certauth dbmatch moduleMatt Rogers1-0/+18
2017-03-23Simplify PKINIT cert iteration and selectionMatt Rogers1-222/+151
2017-03-23Add certauth pluggable interfaceMatt Rogers1-0/+30
2017-01-05Deindent crypto_retrieve_X509_sans()Greg Hudson1-96/+100
2017-01-03Improve PKINIT UPN SAN matchingMatt Rogers1-1/+3
generated by cgit v1.1 at 2024-06-30 14:18:21 +0000