summaryrefslogtreecommitdiff
path: root/src/plugins
Commit message (Expand)AuthorAgeFilesLines
* Convey realm names to certauth modulesGreg Hudson2023-04-111-9/+11
* Squash unused variable warnings in kdb5_ldap_utilGreg Hudson2023-04-101-24/+16
* Squash a Berkeley DB warningGreg Hudson2023-04-101-27/+1
* Make k5buf more flexible for binary dataGreg Hudson2023-03-244-18/+10
* Fix PKINIT CMS error checking for older OpenSSLGreg Hudson2023-01-131-11/+3
* Fix policy DB fallback error handlingGreg Hudson2023-01-041-10/+5
* Update error checking for OpenSSL CMS_verifyJulien Rische2022-08-181-3/+6
* Remove include_certchain parameter in PKINITGreg Hudson2022-07-204-51/+40
* Remove pre-CMS PKINIT compatibility codeGreg Hudson2022-07-132-42/+6
* Set reasonable supportedCMSTypes in PKINITJulien Rische2022-07-073-26/+60
* Fix memory leak in OTP kdcpreauth moduleGreg Hudson2022-06-081-2/+4
* Fix uncommon PKINIT memory leaksashan2022-06-081-1/+8
* Fix leaks in KDB test modulesashan2022-05-311-1/+4
* Fix memory leak in SPAKE kdcpreauth modulesashan2022-05-311-0/+1
* Add configure variable for default PKCS#11 moduleJulien Rische2022-04-291-1/+0
* Use SHA-256 instead of SHA-1 for PKINIT CMS digestJulien Rische2022-03-171-17/+21
* Remove unneeded SPAKE free_modreq methodGreg Hudson2022-01-281-9/+0
* Implement replaced_reply_key input to issue_pac()Greg Hudson2022-01-271-0/+8
* Add replace_reply_key kdcpreauth callbackGreg Hudson2022-01-273-69/+47
* Replace AD-SIGNEDPATH with minimal PACsGreg Hudson2022-01-124-454/+94
* Add PAC ticket signature APIsIsaac Boukris2022-01-121-3/+3
* Use 14 instead of 9 for unkeyed SHA-1 checksumGreg Hudson2021-12-293-12/+5
* Update PKINIT for OpenSSL 3Robbie Harwood2021-11-152-36/+165
* Use OpenSSL 3 versions of remaining KDFsRobbie Harwood2021-11-154-193/+186
* Remove pkinit_kdf_constants.cGreg Hudson2021-11-052-61/+2
* Use EVP key agreement in PKINITGreg Hudson2021-11-052-302/+388
* Use OpenSSL SubjectPublicKeyInfo parsing in PKINITGreg Hudson2021-11-047-336/+279
* Use pre-encoded DH parameter constants in PKINITGreg Hudson2021-11-024-303/+357
* Support KRB5_CERTAUTH_HWAUTH_PASS in certauthKen Hornstein2021-10-283-12/+72
* Fix trivial leak in OTP kdcpreauth modulePavel Březina2021-09-151-0/+1
* Fix many unlikely memory leaksRobbie Harwood2021-07-017-50/+57
* Modernize pkinit_get_certs_pkcs11Robbie Harwood2021-07-011-117/+113
* Fix k5tls module for OpenSSL 3Robbie Harwood2021-06-181-3/+14
* Add additional KRB5_TRACE pointsKen Hornstein2021-04-074-78/+129
* Fix multiple UPN handling in PKINIT client certsKen Hornstein2021-04-071-3/+2
* Fix PKINIT memory leaksGreg Hudson2021-03-222-2/+5
* Use krb5int_open_plugin for PKCS#11 moduleKen Hornstein2021-03-164-21/+20
* Only require one valid pkinit anchor/pool valueKen Hornstein2021-03-082-5/+25
* Infer name type when creating principalsFraser Tweedale2021-02-111-0/+4
* Load certs when checking pkinit_identities valuesKen Hornstein2021-02-112-21/+19
* Use PKG_CHECK_MODULES for system library com_errAnonymous Maarten2020-10-227-8/+8
* Fix minor static analysis defectsRobbie Harwood2020-10-222-4/+3
* Set lockdown attribute when creating LDAP KDBGreg Hudson2020-08-181-1/+1
* Don't create hostbased principals in new KDBsGreg Hudson2020-08-041-34/+1
* Add channel bindings testsIsaac Boukris2020-05-201-0/+18
* Fix typos in commentsGreg Hudson2020-04-0816-23/+24
* Make fiat 128-bit typedefs work with older gccGreg Hudson2020-03-262-3/+5
* Eliminate redundant PKINIT responder invocationGreg Hudson2020-03-262-6/+12
* make regenGreg Hudson2020-03-261-4/+4
* Allow deletion of require_auth with LDAP KDBGreg Hudson2020-02-272-11/+22
View Lorry Controller Status