gregory guy
|
6d8d495faf
|
conversion to the cmake building system
Signed-off-by: gregory guy <g-gregory@gmx.fr>
|
6 years ago |
Timothy Pearson
|
dc2d6876ff
|
Remove invalid specification of crlhours in CRL generator when crldays was already given
|
6 years ago |
Michele Calgaro
|
123de33960
|
More changes for bug 2961.
Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
|
6 years ago |
Michele Calgaro
|
8bd9acb7e2
|
Adapted to new KPasswordEdit::password() signature. This relates to bug
2961.
Signed-off-by: Michele Calgaro <michele.calgaro@yahoo.it>
|
6 years ago |
Timothy Pearson
|
bdf74509a3
|
OpenSSL 1.1.0 and later use a builtin OID database that conficts with our explicit OID definitions
Attempt to detect OpenSSL verisons prior to 1.1.0, and only add explicit OID definitions for those older versions
|
6 years ago |
Timothy Pearson
|
84485fe607
|
Fix invalid OpenSSL command syntax
|
6 years ago |
Timothy Pearson
|
c6be9b0e1a
|
Merge branch 'master' of http://scm.trinitydesktop.org/scm/git/libtdeldap
|
8 years ago |
Timothy Pearson
|
3086fd516f
|
Remove invalid PAM option
|
8 years ago |
Timothy Pearson
|
1ccfd00cd4
|
Create the PKCS#11 configuration directory if it does not exist before attempting to write the configuration file into it
|
8 years ago |
Timothy Pearson
|
e7fe109b39
|
Add method to get PKCS enablement status
|
8 years ago |
Timothy Pearson
|
e7d00722ef
|
Quote filenames when generating or modifying certificates via OpenSSL
|
8 years ago |
Timothy Pearson
|
2faf4b1c40
|
Add missing object classes during user creation
|
8 years ago |
Timothy Pearson
|
cc41b404ca
|
Fixup prior commit
|
8 years ago |
Timothy Pearson
|
a12aeff2da
|
Close cert file handle if already open before opening for write
Fixup missing newlines in printf warnings from last commit
|
8 years ago |
Timothy Pearson
|
68049e4ac8
|
Don't abort on chown() failure for certificate files
|
8 years ago |
Timothy Pearson
|
7b0e95f329
|
Fix missing stirng placeholder in warning message
|
9 years ago |
Timothy Pearson
|
3fdd5c964a
|
Fix memory leak on bind failure
Fix minor issues with comments
|
9 years ago |
Timothy Pearson
|
3991980d35
|
Revert "Fix memory leak on certificate request attempt"
Unfortunately this did not fix the leak as I originally thought.
This reverts commit 2e9737f118 .
|
9 years ago |
Timothy Pearson
|
2e9737f118
|
Fix memory leak on certificate request attempt
|
9 years ago |
Timothy Pearson
|
ca4c872008
|
Properly report certificate retrieval failures to calling application
|
9 years ago |
Timothy Pearson
|
f1b7b0381a
|
Remove any chance of passwords persisting in deallocated main memory after application termination
|
9 years ago |
Timothy Pearson
|
2752bfb1d0
|
Fix FTBFS on ancient Heimdal versions
|
9 years ago |
Timothy Pearson
|
56c2b5fc9b
|
Add deactivated krb5 PKCS login line
|
9 years ago |
Timothy Pearson
|
7ebf958b10
|
Write out remaining appdefaults entries on client
|
9 years ago |
Timothy Pearson
|
53a442c926
|
Allow Kerberos ticket init via cryptographic card
|
9 years ago |
Timothy Pearson
|
80c65755dc
|
Write missing appdefaults section on client machines
|
9 years ago |
Timothy Pearson
|
d9172dad3c
|
Add PKI subject mapping to user principals
Fix long-standing inability to clear user principal attribute fields
|
9 years ago |
Timothy Pearson
|
c70ce69a08
|
Convert the last methods using the kadmin utility to the Heimdal C API
|
9 years ago |
Timothy Pearson
|
11869fce63
|
Move keytab export to native Heimdal API
|
9 years ago |
Timothy Pearson
|
e085706825
|
Convert service add to C API
|
9 years ago |
Timothy Pearson
|
5ae128fb8b
|
Remove dead code from prior commit
|
9 years ago |
Timothy Pearson
|
0fbc17ac57
|
Convert machine add to kadmin API
|
9 years ago |
Timothy Pearson
|
3d6055df7b
|
Fix local kadmin access
|
9 years ago |
Timothy Pearson
|
bd30e6c655
|
Start to move away from using the kadmin binary to using the kadmin client API
|
9 years ago |
Timothy Pearson
|
a619f64455
|
Fix a few minor issues with PKI certificate generation
|
9 years ago |
Timothy Pearson
|
6cddf7dd1c
|
Minor fixup to cert generation code
|
9 years ago |
Timothy Pearson
|
07d094fd32
|
Extend PKCS certificate generation routines
This breaks the ABI
|
9 years ago |
Timothy Pearson
|
c6eab472be
|
Add PKCS methods
|
9 years ago |
Timothy Pearson
|
30b251b05b
|
Clean up revoked certificates when done updating CRL
|
9 years ago |
Timothy Pearson
|
ba7bc5afac
|
Fix up certificate expiry detection
|
9 years ago |
Timothy Pearson
|
c714661bc9
|
Add certificate store attribute access method
|
9 years ago |
Timothy Pearson
|
521c4ed590
|
Add additional CRL manipulation methods
|
9 years ago |
Timothy Pearson
|
0fce8b42b6
|
Store CRL expiry in LDAP
|
9 years ago |
Timothy Pearson
|
efb81441de
|
Add CRL generation
|
9 years ago |
Timothy Pearson
|
a97c0c3d54
|
Implement several methods required for PKI certificate management
|
9 years ago |
Timothy Pearson
|
54d8d2580c
|
Extend user key and certificate generation methods
|
9 years ago |
Timothy Pearson
|
0a81ad9d6e
|
Fix CN/DN ordering
|
9 years ago |
Timothy Pearson
|
bc95fa92b0
|
Properly set CRL URL and fix up a few other glitches
|
9 years ago |
Timothy Pearson
|
f0eeda5dc8
|
Allow CRL URL to be set via configuration file
|
9 years ago |
Timothy Pearson
|
6df22c8ca2
|
Fix up Kerberos PKI certificate generation
|
9 years ago |