Redwax Server
  1. Redwax Server

mod_ca

Public
  1. Redwax Server
  2. mod_ca

Commits

AuthorCommitMessageCommit dateIssues
Graham LeggettGraham Leggett
e7b39a0d586Change CA_POP_SPKAC to CA_POP_SPKI to align with OpenSSL constants.
Graham LeggettGraham Leggett
107e9d61d81mod_ca_disk: When the ca_certstore hook is fired tosave the certificate, but the index has not yet been updated because the ca_makeserial hook was not used, update the index while make sure this happens just once.
Graham LeggettGraham Leggett
b56e5698d83Renewal is not possible when the index is unique, as the oldand new certificates cannot exist at the same time.
Graham LeggettGraham Leggett
0a4fc60fa47Add ca_reqauthz hook to mod_ca_disk to verify the casewhere the renewal or reissue was signed by a previously issued certificate.
Graham LeggettGraham Leggett
beddf47f86dAdd proof of possession constant for challengePassword.
Graham LeggettGraham Leggett
eb2a5e4ba13Add reference to popCertificate.
Graham LeggettGraham Leggett
8b10c4245a8Add constants for proof of possession.
Graham LeggettGraham Leggett
27ca946f774Remove stray engine header file from provider.
Graham LeggettGraham Leggett
bafd6b1313dBit fields are unsigned.
Graham LeggettGraham Leggett
0fbf2dcbc80Detecting engine support is a mess. Only include if bothheader and symbol are present.
Graham LeggettGraham Leggett
cfa97d48728Add RHEL10 builder.
Graham LeggettGraham Leggett
9f0f84d4d52Add mod_ca_provider to the spec file.
Graham LeggettGraham Leggett
8c85d4943cdAdd mod_ca_provider to support the provider mechanismon OpenSSL v3+.
Graham LeggettGraham Leggett
e56e9a8b33bmod_ca_engine: Add workaround to build on RHEL10 wherethe openssl/engine.h file was truncated.
Graham LeggettGraham Leggett
9e91728ae79mod_ca_simple: Remove const warnings.
Graham LeggettGraham Leggett
05f779ac406mod_ca: Remove stray semicolons on macros.
Graham LeggettGraham Leggett
f275e968dcbFedora41 to Rawhide
Graham LeggettGraham Leggett
2f32d973c51mod_ca_engine: Fix signedness warnings related to bitwiseflags.
Graham LeggettGraham Leggett
84ed1b342faRestart needs sudo.
Graham LeggettGraham Leggett
1e7eff7d654mod_ca_engine: Allow the module to build and give a warningwhen OpenSSL ENGINE support is not present in OpenSSL.
Graham LeggettGraham Leggett
3712354a857mod_ca_disk: Fix signedness warnings related to bitwiseflags.
Graham LeggettGraham Leggett
82a6a3cf592mod_ca_ldap: Allow the module to build and give a warningwhen LDAP support is not present in APR-util.
Graham LeggettGraham Leggett
8917562a40dmod_ca_simple: Fix signedness warnings related to bitwiseflags.
Graham LeggettGraham Leggett
a351350057dAdd httpd-restart.
Graham LeggettGraham Leggett
2df1e00736aAdd interop target.
Graham LeggettGraham Leggett
934f31cbe35Add a Fedora build.
Graham LeggettGraham Leggett
2cd4dc51656Remmove macos for now.
Graham LeggettGraham Leggett
f3bcc7d81d3Remove unused checkout step.
Graham LeggettGraham Leggett
9ae2b91a377Pass destdir on the install step.
Graham LeggettGraham Leggett
6b8e111ba26Attempt an install.
Graham LeggettGraham Leggett
942a2209380Add missing colon.
Graham LeggettGraham Leggett
3525c765f80Add a checkout step.
Graham LeggettGraham Leggett
6b83abd3341Add initial Jenkinsfile.
Dirk-Willem van GulikDirk-Willem van Gulik
769210b0c3bB e a bit cautious about key identifiers (as they may be under client control) getting used for filenames.
Graham LeggettGraham Leggett
cd73eeb3f93mod_ca_ldap: Fix a stack overflow when escaping an LDAPdistinguished name with characters outside the ASCII set.
Graham LeggettGraham Leggett
ffce8877049Bump to next version 0.2.4.
Graham LeggettGraham Leggett
cb27477da02Use the AP_DECLARE_MODULE() macro so that per-modulelogging works properly.
Graham LeggettGraham Leggett
9e8b178cdadMake sure the signer certificate is included as the firstintermediate certificate in the chain for mod_ca_simple and mod_ca_engine. Clearly log the certificate chain.
Graham LeggettGraham Leggett
7ee2fe98826Bump the version to 0.2.3.
Graham LeggettGraham Leggett
a07cf595a01This is a note, this does not need fixing.https://jira.redwax.eu/browse/REDWAX-76REDWAX-76
Dirk-Willem van GulikDirk-Willem van Gulik
992b6166dd6Add author files in accodance to governance, etc.
Dirk-Willem van GulikDirk-Willem van Gulik
001884cf914Some algoritms, such as 'X9.42 DH' have a space in them (full list with < openssl list -public-key-algorithms >).So we need to be slightly more careful with tokenizing - and thus vall back of ARGV which understands ticks and double quoted text.
Dirk-Willem van GulikDirk-Willem van Gulik
8ba957e515bMove clear-error (as a non-existent algoritm does not actually set an error - so we get confusing cruft if it is not cleared.
Graham LeggettGraham Leggett
77763a6522dapr_file_link() is not supported on apr < 1.4.
Graham LeggettGraham Leggett
0e6fe9080acRemove further references to ap_state_query().
Graham LeggettGraham Leggett
f779a939d3fRemove reference to APLOG_TRACE1.
Graham LeggettGraham Leggett
08376241ee5Remove references to APLOGNO.
Graham LeggettGraham Leggett
b3c0e7ba60bSet LDFLAGS back to LIBS.
Graham LeggettGraham Leggett
8d8199f4291Go one back on the requirements for APR versions.
Graham LeggettGraham Leggett
692e7de5f70Support platforms where apr_crypto_clear() is not present.