summaryrefslogtreecommitdiffstats
path: root/src/plugins/preauth
Commit message (Expand)AuthorAgeFilesLines
* Move OTP sockets to KDC_RUN_DIRNathaniel McCallum2014-02-061-1/+1
* make dependTom Yu2013-12-102-18/+20
* Use protocol error for PKINIT cert expiryGreg Hudson2013-10-171-1/+1
* Use constant-time comparisons for checksumsGreg Hudson2013-10-032-5/+5
* Don't ask empty responder questions in PKINITNalin Dahyabhai2013-07-221-0/+7
* Add the error to some PKINIT NSS debug messagesNalin Dahyabhai2013-07-171-10/+14
* Support PKINIT OpenSSL deferred identity promptingNalin Dahyabhai2013-07-171-55/+159
* Support PKINIT NSS deferred identity promptingNalin Dahyabhai2013-07-171-60/+252
* Pass PKINIT identity prompts to the responder cbNalin Dahyabhai2013-07-172-19/+218
* Make the PKINIT NSS path also check for NULL certsNalin Dahyabhai2013-07-171-1/+6
* Use PKCS11_MODNAME for NSS PKINIT by defaultNalin Dahyabhai2013-07-171-0/+7
* Add support for PKINIT deferring identity promptsNalin Dahyabhai2013-07-176-0/+226
* Split pkinit_identity_initialize into two phasesNalin Dahyabhai2013-07-177-15/+97
* Fix OTP KDC module get_string error handlingGreg Hudson2013-07-171-2/+4
* Fix a leak when parsing PKINIT cert SANs with NSSNalin Dahyabhai2013-07-151-0/+1
* Don't leak PKINIT CMS signed data certs and CRLsNalin Dahyabhai2013-07-151-2/+4
* Don't leak the reply key's memory during PKINITNalin Dahyabhai2013-07-151-1/+3
* Use k5calloc instead of k5alloc where appropriateGreg Hudson2013-07-111-2/+2
* Add server-side otp preauth pluginNathaniel McCallum2013-07-116-0/+1145
* Fix various warningsGreg Hudson2013-06-074-10/+10
* Reduce boilerplate in makefilesGreg Hudson2013-05-164-56/+2
* Fixes for leaking of refcounted resourcesNalin Dahyabhai2013-05-131-11/+22
* In PKINIT NSS crypto, support encrypted PEM keysNalin Dahyabhai2013-05-131-0/+26
* Get better at locating the just-loaded certificateNalin Dahyabhai2013-05-131-58/+35
* In PKINIT NSS crypto code, load certificates firstNalin Dahyabhai2013-05-131-61/+62
* When DEBUG=1, log why we fail to log in to a tokenNalin Dahyabhai2013-05-101-4/+6
* Traverse tokens like we do with OpenSSL for NSSNalin Dahyabhai2013-05-101-15/+14
* Only call SEC_PKCS12DecoderFinish() onceNalin Dahyabhai2013-05-101-1/+0
* Make the text of NSS's prompts look like OpenSSL'sNalin Dahyabhai2013-05-101-4/+8
* Don't fail if a candidate certificate has no SANsNalin Dahyabhai2013-05-101-6/+2
* Make reassembled PKCS11 names parseableNalin Dahyabhai2013-05-082-10/+10
* Fix a typo that caused us to not skip removing "."Nalin Dahyabhai2013-05-081-1/+1
* Remove some apparently-accidental debug whitespaceNalin Dahyabhai2013-05-082-4/+4
* Use macro for IANA assigned PA-AS-CHECKSUM numberZhanna Tsitkov2013-04-182-4/+5
* Allow config of dh_min_bits < 2048Tom Yu2013-04-122-3/+5
* Simplify pkinit_check_dh_paramsTom Yu2013-04-121-67/+47
* Ignore missing Q in dh_paramsTom Yu2013-04-121-4/+4
* Avoid passing null pointers to memcpy/memcmpGreg Hudson2013-04-081-1/+2
* make dependGreg Hudson2013-03-241-4/+3
* Add PEM password prompter callback in PKINITNalin Dahyabhai2013-03-151-3/+45
* Cleaner fix for #7570Ben Kaduk2013-02-151-4/+2
* PKINIT null pointer deref [CVE-2013-1415]Xi Wang2013-02-151-2/+1
* Modernize k5bufGreg Hudson2013-02-142-40/+30
* Add and use k5memdup, k5memdup0 helpersGreg Hudson2013-02-091-2/+2
* make dependGreg Hudson2013-01-101-1/+1
* Fix various result checksNickolai Zeldovich2013-01-071-1/+1
* Separate clpreauth and kdcpreauth interfacesGreg Hudson2012-12-192-11/+21
* PKINIT (draft9) null ptr deref [CVE-2012-1016]Nalin Dahyabhai2012-12-141-2/+3
* Fix various integer issuesGreg Hudson2012-12-101-31/+12
* Don't use PA_PSEUDO in pkinit client codeGreg Hudson2012-10-221-1/+1
generated by cgit (git 2.34.1) at 2024-05-03 15:38:11 +0000