p11-kit.git - Clone of https://github.com/p11-glue/p11-kit

	Commit message (Collapse)	Author	Age	Files	Lines
*	Implement trust assertion PKCS#11 objects	Stef Walter	2013-02-05	1	-0/+0
\| \| \| \| \| \|	* Implement trust assertions for anchored and distrusted certs * Pinned certificate trust assertions are not implemented yet * Add an internal tool for pulling apart bits of certificates
*	Implement stapled certificate extensions internally	Stef Walter	2013-02-05	1	-0/+0
\| \| \| \| \| \| \| \| \| \| \| \|	* Use stapled certificate extensions to represent loaded trust policy * Build NSS trust objects from stapled certificate extensions * Add further attribute debugging for NSS trust objects * Use a custom certificate extension for the OpenSSL reject purpose data * Use SubjectKeyIdentifier for OpenSSL keyid data * Use ExtendedKeyUsage for OpenSSL trust purpose data * Implement simple way to handle binary DER OIDs, using the DER TLV length. DER OIDs are used in the CKA_OBJECT_ID value, and elsewhere. * Split out the building of NSS trust objects from the main parser
*	Test a TRUSTED CERTIFICATE without any trust OIDs	Stef Walter	2013-02-05	1	-0/+23
\|
*	Add support for openssl TRUSTED CERTIFICATE PEM files	Stef Walter	2013-02-05	1	-0/+43
\|
*	Add support for parsing PEM files	Stef Walter	2013-02-05	1	-0/+42
\|
*	Add basic trust module	Stef Walter	2013-02-05	5	-0/+1
	This is based off the roots-store from gnome-keyring and loads certificates from a root directory and exposes them as PKCS#11 objects.