libtdeldap

Commit Graph

Author	SHA1	Message	Date
Timothy Pearson	bdf74509a3	OpenSSL 1.1.0 and later use a builtin OID database that conficts with our explicit OID definitions Attempt to detect OpenSSL verisons prior to 1.1.0, and only add explicit OID definitions for those older versions	6 years ago
Timothy Pearson	84485fe607	Fix invalid OpenSSL command syntax	6 years ago
Timothy Pearson	c6be9b0e1a	Merge branch 'master' of http://scm.trinitydesktop.org/scm/git/libtdeldap	8 years ago
Timothy Pearson	3086fd516f	Remove invalid PAM option	8 years ago
Timothy Pearson	1ccfd00cd4	Create the PKCS#11 configuration directory if it does not exist before attempting to write the configuration file into it	8 years ago
Timothy Pearson	e7fe109b39	Add method to get PKCS enablement status	8 years ago
Timothy Pearson	e7d00722ef	Quote filenames when generating or modifying certificates via OpenSSL	8 years ago
Timothy Pearson	2faf4b1c40	Add missing object classes during user creation	8 years ago
Timothy Pearson	cc41b404ca	Fixup prior commit	8 years ago
Timothy Pearson	a12aeff2da	Close cert file handle if already open before opening for write Fixup missing newlines in printf warnings from last commit	8 years ago
Timothy Pearson	68049e4ac8	Don't abort on chown() failure for certificate files	8 years ago
Timothy Pearson	7b0e95f329	Fix missing stirng placeholder in warning message	9 years ago
Timothy Pearson	3fdd5c964a	Fix memory leak on bind failure Fix minor issues with comments	9 years ago
Timothy Pearson	3991980d35	Revert "Fix memory leak on certificate request attempt" Unfortunately this did not fix the leak as I originally thought. This reverts commit `2e9737f118`.	9 years ago
Timothy Pearson	2e9737f118	Fix memory leak on certificate request attempt	9 years ago
Timothy Pearson	ca4c872008	Properly report certificate retrieval failures to calling application	9 years ago
Timothy Pearson	f1b7b0381a	Remove any chance of passwords persisting in deallocated main memory after application termination	9 years ago
Timothy Pearson	2752bfb1d0	Fix FTBFS on ancient Heimdal versions	9 years ago
Timothy Pearson	56c2b5fc9b	Add deactivated krb5 PKCS login line	9 years ago
Timothy Pearson	7ebf958b10	Write out remaining appdefaults entries on client	9 years ago
Timothy Pearson	53a442c926	Allow Kerberos ticket init via cryptographic card	9 years ago
Timothy Pearson	80c65755dc	Write missing appdefaults section on client machines	9 years ago
Timothy Pearson	d9172dad3c	Add PKI subject mapping to user principals Fix long-standing inability to clear user principal attribute fields	9 years ago
Timothy Pearson	c70ce69a08	Convert the last methods using the kadmin utility to the Heimdal C API	9 years ago
Timothy Pearson	11869fce63	Move keytab export to native Heimdal API	9 years ago
Timothy Pearson	e085706825	Convert service add to C API	9 years ago
Timothy Pearson	5ae128fb8b	Remove dead code from prior commit	9 years ago
Timothy Pearson	0fbc17ac57	Convert machine add to kadmin API	9 years ago
Timothy Pearson	3d6055df7b	Fix local kadmin access	9 years ago
Timothy Pearson	bd30e6c655	Start to move away from using the kadmin binary to using the kadmin client API	9 years ago
Timothy Pearson	a619f64455	Fix a few minor issues with PKI certificate generation	9 years ago
Timothy Pearson	6cddf7dd1c	Minor fixup to cert generation code	9 years ago
Timothy Pearson	07d094fd32	Extend PKCS certificate generation routines This breaks the ABI	9 years ago
Timothy Pearson	c6eab472be	Add PKCS methods	9 years ago
Timothy Pearson	30b251b05b	Clean up revoked certificates when done updating CRL	9 years ago
Timothy Pearson	ba7bc5afac	Fix up certificate expiry detection	9 years ago
Timothy Pearson	c714661bc9	Add certificate store attribute access method	9 years ago
Timothy Pearson	521c4ed590	Add additional CRL manipulation methods	9 years ago
Timothy Pearson	0fce8b42b6	Store CRL expiry in LDAP	9 years ago
Timothy Pearson	efb81441de	Add CRL generation	9 years ago
Timothy Pearson	a97c0c3d54	Implement several methods required for PKI certificate management	9 years ago
Timothy Pearson	54d8d2580c	Extend user key and certificate generation methods	9 years ago
Timothy Pearson	0a81ad9d6e	Fix CN/DN ordering	9 years ago
Timothy Pearson	bc95fa92b0	Properly set CRL URL and fix up a few other glitches	9 years ago
Timothy Pearson	f0eeda5dc8	Allow CRL URL to be set via configuration file	9 years ago
Timothy Pearson	6df22c8ca2	Fix up Kerberos PKI certificate generation	9 years ago
Timothy Pearson	d6f004658d	Allow certificate expiry to be set	9 years ago
Timothy Pearson	f4afc1290d	Extend CA expiry to 1 year	9 years ago
Timothy Pearson	8b16aef38d	Fix incorrect login causing PAM fatal error message	9 years ago
Timothy Pearson	bea400f197	Fix security hole when Kerberos credential caching is enabled The prior PAM stack configuration, while unfortunately present in many online examples, allows storing of an arbitrary cached password for non-Kerberos users by simply entering it twice	11 years ago

1 2 3

111 Commits (4737b7c08112793ec2f8101f4c88ea3429f1dedc)