aboutsummaryrefslogtreecommitdiff
path: root/src/plugins/preauth/pkinit/pkinit_crypto_openssl.c
AgeCommit message (Expand)AuthorFilesLines
2018-05-02Fix PKINIT rule matching against UPN SANsGreg Hudson1-50/+13
2018-05-01Fix memory leak in KDC PKINIT codesashan1-0/+1
2017-10-27Fix PKINIT cert matching data constructionGreg Hudson1-42/+25
2017-08-29Fix certauth built-in module returnsGreg Hudson1-21/+18
2017-04-10Port pkinit debug code to OpenSSL 1.1.0 APIJakub Jelen1-3/+5
2017-04-05Convert some pkiDebug messages to TRACE macrosMatt Rogers1-29/+17
2017-03-24Remove some unnecessary PKINIT codeGreg Hudson1-9/+1
2017-03-23Correct error handling bug in prior commitGreg Hudson1-2/+2
2017-03-23Add the certauth dbmatch moduleMatt Rogers1-0/+18
2017-03-23Simplify PKINIT cert iteration and selectionMatt Rogers1-222/+151
2017-03-23Add certauth pluggable interfaceMatt Rogers1-0/+30
2017-01-05Deindent crypto_retrieve_X509_sans()Greg Hudson1-96/+100
2017-01-03Improve PKINIT UPN SAN matchingMatt Rogers1-1/+3
2016-12-15Clean up PKINIT decode_data functionsGreg Hudson1-43/+32
2016-12-15Fix error handling in PKINIT decode_data()Greg Hudson1-10/+7
2016-10-05Set alg param correctly for PKCS1Tom Yu1-2/+1
2016-09-22Add PKINIT support for OpenSSL 1.1.0Greg Hudson1-232/+394
2016-07-19Minimize timing leaks in PKINIT decryptionGreg Hudson1-23/+34
2016-07-19Simplify pkcs7_dataDecode() in PKINITGreg Hudson1-65/+14
2015-09-10Improve PKINIT OpenSSL error reportingGreg Hudson1-61/+85
2014-10-29Remove length limit on PKINIT PKCS#12 promptGreg Hudson1-7/+10
2014-08-15Autodetect OpenSSL CMS for LibreSSL compatibilitymaurerpe1-2/+2
2014-07-30Modify k5buf interfaces for easier useGreg Hudson1-3/+3
2014-07-08Include autoconf.h before system headersGreg Hudson1-9/+2
2014-06-20Fix error checking in PKINIT authdata creationGreg Hudson1-20/+15
2014-06-12Remove PKINIT longhorn compatibility optionGreg Hudson1-174/+25
2014-05-24Properly handle PKCS11 label in PKINITGreg Hudson1-10/+18
2014-05-24Don't blindly use PKCS11 slot IDs in PKINITGreg Hudson1-14/+13
2014-04-15In PKINIT, use library initializer for OpenSSLTomas Kuthan1-15/+10
2014-03-25Use anonymous OIDs in pkinit_crypto_openssl.cGreg Hudson1-53/+43
2014-03-25Stop shadowing id-pkcs7-data OIDGreg Hudson1-71/+45
2013-10-17Use protocol error for PKINIT cert expiryGreg Hudson1-1/+1
2013-07-17Support PKINIT OpenSSL deferred identity promptingNalin Dahyabhai1-55/+159
2013-07-17Add support for PKINIT deferring identity promptsNalin Dahyabhai1-0/+38
2013-07-17Split pkinit_identity_initialize into two phasesNalin Dahyabhai1-1/+2
2013-07-15Don't leak PKINIT CMS signed data certs and CRLsNalin Dahyabhai1-2/+4
2013-06-07Fix various warningsGreg Hudson1-3/+3
2013-05-08Make reassembled PKCS11 names parseableNalin Dahyabhai1-5/+5
2013-05-08Remove some apparently-accidental debug whitespaceNalin Dahyabhai1-2/+2
2013-04-12Simplify pkinit_check_dh_paramsTom Yu1-67/+47
2013-04-12Ignore missing Q in dh_paramsTom Yu1-4/+4
2013-03-15Add PEM password prompter callback in PKINITNalin Dahyabhai1-3/+45
2013-02-15Cleaner fix for #7570Ben Kaduk1-4/+2
2013-02-15PKINIT null pointer deref [CVE-2013-1415]Xi Wang1-2/+1
2013-02-14Modernize k5bufGreg Hudson1-20/+15
2013-01-07Fix various result checksNickolai Zeldovich1-1/+1
2012-10-17Use config storage for client identity selectionNalin Dahyabhai1-3/+101
2012-07-05Fix minor memory leaks in PKINIT codeGreg Hudson1-0/+2
2012-06-22Handle PKINIT DH replies with no certsGreg Hudson1-1/+8
2012-05-08Improve traced error messages from PKINIT clientGreg Hudson1-2/+6
generated by cgit v1.1 at 2024-08-19 03:47:18 +0000