]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9240a5b) | patch
Simplify PKINIT cert representation
authorGreg Hudson <ghudson@mit.edu>
Fri, 9 Feb 2024 22:32:40 +0000 (17:32 -0500)
committerGreg Hudson <ghudson@mit.edu>
Tue, 19 Mar 2024 01:05:34 +0000 (21:05 -0400)
commitf95dfb7908456f9563cee66706216a21df8d791f
tree9a6d377d5249f576bc698d1d00c86109481c7e6etree | snapshot
parent9240a5b07876e0306057faab9291ace554fb0c3ecommit | diff
Simplify PKINIT cert representation

In the _pkinit_identity_crypto_context structure, the my_certs field
is a stack which only ever contains one cert and is only ever used to
retrieve that one cert.  The cert_index field is always 0.  Replace
these fields with a my_cert field pointing directly to the X509
certificate.

Simplify crypto_cert_select_default() by making it call
crypto_cert_select() with index 0 after verifying the certificate
count.
src/plugins/preauth/pkinit/pkinit_crypto_openssl.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git