Cross Reference: /sssd-io/src/tests/cmocka/test_cert

History log of /sssd-io/src/tests/cmocka/test_cert_utils.c
Revision	Date	Author	Comments Expand
0dc7f90667df6420bc9e93ae2c8bacd6ea148f0f	09-Mar-2018	Sumit Bose <sbose@redhat.com>	TESTS: replace hardcoded certificates Since the hardcoded certificates have a limited lifetime they are replaces by certificates from the test CA. Related to https://pagure.io/SSSD/sssd/issue/3436 Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> test_cert_utils.c test_pam_srv.c
57c5ea8825c7179fd93382dbcbb07e828e5aec19	29-Jan-2018	René Genz <liebundartig@freenet.de>	Fix minor spelling mistakes in tests/cmocka/* Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> data_provider/test_dp_builtin.c data_provider/test_dp_request.c data_provider/test_dp_request_table.c sbus_internal_tests.c test_ad_access_filter.c test_ad_common.c test_ad_gpo.c test_ad_subdomains.c test_authtok.c test_be_ptask.c test_cert_utils.c test_certmap.c test_child_common.c test_copy_ccache.c test_copy_keytab.c test_data_provider_be.c test_dp_opts.c test_dyndns.c test_fo_srv.c test_fqnames.c test_ifp.c test_inotify.c test_ipa_dn.c test_ipa_idmap.c test_ipa_subdomains_server.c test_ipa_subdomains_utils.c test_kcm_json_marshalling.c test_kcm_queue.c test_krb5_common.c test_krb5_wait_queue.c test_ldap_id_cleanup.c test_nested_groups.c test_nss_srv.c test_pam_srv.c test_resolv_fake.c test_responder_cache_req.c test_responder_common.c test_sbus_opath.c test_sdap.c test_sdap_certmap.c test_sdap_initgr.c test_simple_access.c test_sss_idmap.c test_sss_sifp.c test_sssd_krb5_localauth_plugin.c test_sysdb_certmap.c test_sysdb_domain_resolution_order.c test_sysdb_subdomains.c test_sysdb_sudo.c test_sysdb_ts_cache.c test_sysdb_utils.c test_sysdb_views.c test_tools_colondb.c test_utils.c test_wbc_calls.c
2ccfa9502abf52941d8b6e44b5f7cfdd13311a2d	26-Jun-2017	Sumit Bose <sbose@redhat.com>	tests: update expired certificate This is a short term fix to un-break the unit tests. The proper fix would be to create the certificates at runtime during the tests. Related to https://pagure.io/SSSD/sssd/issue/3436 Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> p11_nssdb/cert9.db p11_nssdb/key4.db test_cert_utils.c test_pam_srv.c
5231ba679402eeb0705a3ecd41f97fdd67d42a69	03-Apr-2017	David Kupka <dkupka@redhat.com>	libsss_certmap: Accept certificate with data before header According to RFC 7468 parser must not fail when some data are present before the encapsulation boundary. sss_cert_pem_to_der didn't respect this and refused valid input. Changing it's code to first locate the certificate header fixes the issue. Resolves: https://pagure.io/SSSD/sssd/issue/3354 Reviewed-by: Sumit Bose <sbose@redhat.com> Reviewed-by: Fabiano Fidêncio <fidencio@redhat.com> test_cert_utils.c /sssd-io/src/util/cert/nss/cert.c
b341ee51cffd98b642b9c68a417f8a7504e303a1	23-Mar-2017	Sumit Bose <sbose@redhat.com>	sss_cert_derb64_to_ldap_filter: add sss_certmap support Use certificate mapping library if available to lookup a user by certificate in LDAP. Related to https://pagure.io/SSSD/sssd/issue/3050 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> /sssd-io/Makefile.am /sssd-io/src/db/sysdb_ops.c /sssd-io/src/db/sysdb_views.c /sssd-io/src/providers/ipa/ipa_views.c /sssd-io/src/providers/ldap/ldap_id.c test_cert_utils.c /sssd-io/src/util/cert.h /sssd-io/src/util/cert/cert_common.c
aa35995ef056aa8ae052a47c62c6750b7adf065e	09-Jun-2016	Sumit Bose <sbose@redhat.com>	p11: add no_verification option Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> /sssd-io/src/man/sssd.conf.5.xml /sssd-io/src/p11_child/p11_child_nss.c /sssd-io/src/responder/ssh/sshsrv_cmd.c test_cert_utils.c test_pam_srv.c /sssd-io/src/util/cert.h /sssd-io/src/util/cert/libcrypto/cert.c /sssd-io/src/util/cert/nss/cert.c /sssd-io/src/util/util.c /sssd-io/src/util/util.h
544a20de7667f05c1a406c4dea0706b0ab507430	26-Nov-2015	Sumit Bose <sbose@redhat.com>	p11: enable ocsp checks This patch enables the Online Certificate Status Protocol in NSS and adds an option to disable it if needed. To make further tuning of certificate verification more easy it is not an option on its own but an option to the new certificate_verification configuration option. Resolves https://fedorahosted.org/sssd/ticket/2812 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> /sssd-io/Makefile.am /sssd-io/src/confdb/confdb.h /sssd-io/src/config/SSSDConfig/__init__.py.in /sssd-io/src/config/SSSDConfigTest.py /sssd-io/src/config/etc/sssd.api.conf /sssd-io/src/man/sssd.conf.5.xml /sssd-io/src/p11_child/p11_child_nss.c /sssd-io/src/responder/pam/pamsrv.h /sssd-io/src/responder/pam/pamsrv_cmd.c /sssd-io/src/responder/pam/pamsrv_p11.c /sssd-io/src/responder/ssh/sshsrv_cmd.c test_cert_utils.c test_pam_srv.c /sssd-io/src/util/cert.h /sssd-io/src/util/cert/libcrypto/cert.c /sssd-io/src/util/cert/nss/cert.c /sssd-io/src/util/util.c /sssd-io/src/util/util.h
4de84af23db74e13e867985c9093f394c9fa8d51	31-Jul-2015	Sumit Bose <sbose@redhat.com>	ssh: generate public keys from certificate Resolves: https://fedorahosted.org/sssd/ticket/2711 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> /sssd-io/Makefile.am /sssd-io/src/confdb/confdb.h /sssd-io/src/config/SSSDConfig/__init__.py.in /sssd-io/src/config/etc/sssd.api.conf /sssd-io/src/man/sssd.conf.5.xml /sssd-io/src/responder/ssh/sshsrv.c /sssd-io/src/responder/ssh/sshsrv_cmd.c /sssd-io/src/responder/ssh/sshsrv_private.h test_cert_utils.c /sssd-io/src/util/cert.h /sssd-io/src/util/cert/libcrypto/cert.c /sssd-io/src/util/cert/nss/cert.c
0d5bb38364a6976e9c85d6349aa13a04d181a090	31-Jul-2015	Sumit Bose <sbose@redhat.com>	utils: add NSS version of cert utils Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> /sssd-io/Makefile.am /sssd-io/configure.ac /sssd-io/contrib/sssd.spec.in test_cert_utils.c /sssd-io/src/util/cert/nss/cert.c
bf01e8179cbb2be476805340636098deda7e1366	19-Jun-2015	Sumit Bose <sbose@redhat.com>	certs: add PEM/DER conversion utilities Related to https://fedorahosted.org/sssd/ticket/2596 Reviewed-by: Pavel Březina <pbrezina@redhat.com> /sssd-io/Makefile.am /sssd-io/configure.ac /sssd-io/contrib/ci/deps.sh /sssd-io/contrib/sssd.spec.in test_cert_utils.c /sssd-io/src/util/cert.h /sssd-io/src/util/cert/cert_common.c /sssd-io/src/util/cert/libcrypto/cert.c