summaryrefslogtreecommitdiff
path: root/trust/extract-openssl.c
Commit message (Collapse)AuthorAgeFilesLines
* trust: Avoid array overflowDaiki Ueno2018-05-071-1/+1
|
* trust: Suppress dead-assignment warnings from clang-analyzerDaiki Ueno2017-05-291-1/+0
|
* trust: Add pem-directory-hash extract formatAdam Williamson2015-01-141-36/+40
| | | | | | | | | | | | This allows extraction of a directory of standard PEM files with the OpenSSL hash symlinks; this is a format used by some popular platforms (Debian's /etc/ssl/certs is in this form, and OpenSUSE provides it for compatibility). Initially by: Ludwig Nussel <ludwig.nussel@suse.de> Signed-off-by: Stef Walter <stefw@redhat.com> * Added header, fixed compiler warnings
* trust: Use term 'attached extensions' instead of 'stapled'Stef Walter2014-09-101-4/+4
| | | | | | | The term 'stapled extensions' is confusing because it overloads terminology used with OSCP stapling. Suggested by Daniel Kahn Gillmor.
* trust: Refactor enumeration of certificates to extractStef Walter2013-08-291-18/+18
| | | | Because we want to use this same logic for listing trust
* Fix various memory leaks exposed by 'make leakcheck'Stef Walter2013-07-231-0/+1
|
* Add appropriate const qualifiersStef Walter2013-07-181-1/+1
|
* Always pass size_t varargs to p11_hash_xxx() functionsStef Walter2013-07-181-1/+1
| | | | https://bugzilla.redhat.com/show_bug.cgi?id=985421
* Declare static variables const where it makes senseStef Walter2013-07-181-1/+1
| | | | https://bugzilla.redhat.com/show_bug.cgi?id=985337
* Add support for using freebl3 for SHA1 and MD5 hashingStef Walter2013-07-101-5/+5
| | | | | | Since we don't want to link freebl3 to libp11-kit.so where it isn't needed, move the SHA-1 and MD5 digest functionality to the trust/ directory.
* trust: Port to use CKA_PUBLIC_KEY_INFO and updated trust store specStef Walter2013-07-041-16/+21
| | | | | | | | | | * Use the concepts and PKCS#11 objects described in the recently updated (still work in progress) storing trust spec. * Define our own CKA_X_PUBLIC_KEY_INFO define for now, since the the CKA_PUBLIC_KEY_INFO isn't defined yet. * Most notably, the association between certificates and stapled extensions is by public key. * Rework some of the tests to take into account the above.
* trust: Add support for saving files with unique file namesStef Walter2013-07-031-20/+32
|
* Reorganize various componentsStef Walter2013-06-251-0/+674
* p11-kit library and tool in the p11-kit/ subdirectory * trust module and new trust tool in trust/ subdirectory * No more tools/ subdirectory * Lots less in the common/ subdirectory