]> git.ipfire.org Git - thirdparty/krb5.git/commit
projects / thirdparty / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2542321) | patch
Remove incomplete PKINIT OCSP support 683/head
authorRobbie Harwood <rharwood@redhat.com>
Mon, 31 Jul 2017 20:03:41 +0000 (16:03 -0400)
committerGreg Hudson <ghudson@mit.edu>
Mon, 7 Aug 2017 19:06:40 +0000 (15:06 -0400)
commit3ff426b9048a8024e5c175256c63cd0ad0572320
treece0fbc8950dcbcf9967d625dd4d5f6bf896da7b4tree
parent25423218ca55b620c62a398dabc2d510cc1eef49commit | diff
Remove incomplete PKINIT OCSP support

pkinit_kdc_ocsp is non-functional in the PKINIT OpenSSL crypto
implementation, so remove most traces of it, including its man page
entry.  If it is present in kdc.conf, error out of PKINIT
initialization instead of silently ignoring the realm entirely.

ticket: 8603 (new)
doc/admin/conf_files/kdc_conf.rst diff | blob | blame | history
src/man/kdc.conf.man diff | blob | blame | history
src/plugins/preauth/pkinit/pkinit.h diff | blob | blame | history
src/plugins/preauth/pkinit/pkinit_identity.c diff | blob | blame | history
src/plugins/preauth/pkinit/pkinit_srv.c diff | blob | blame | history
Mirror of https://github.com/krb5/krb5.git