faraphel/chrony
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2649 commits 8 branches 75 tags 4.3 MiB
Commit graph

6 commits

Author SHA1 Message Date
Miroslav Lichvar
6615bb1b78 nts: add support for multiple sets of trusted certificates 
Modify the session, NTS-KE, and NTS-NTP code to support multiple sets of
trusted certificates and identify the sets by a 32-bit ID.
 2021-02-18 17:44:04 +01:00
Miroslav Lichvar
9d88c028e2 test: fix cookie length in nts_ke_client unit test 2020-08-25 11:49:44 +02:00
Miroslav Lichvar
66e097e3e6 nts: improve NTS-KE server/client code 
Add more assertions and comments, refactor initialization of the helper,
and make other changes to make the code more robust.
 2020-07-16 16:02:08 +02:00
Miroslav Lichvar
a3fda9f992 nts: free client cert credentials when not used 
Destroy the client cert credentials when destroying the last NKC
instance instead of NKC_Finalise(). This allows the client to reload the
trusted cert file between NTS-KE sessions.
 2020-05-21 12:42:18 +02:00
Miroslav Lichvar
eace93f2af nts: allow disabling certificate time checks 
Add "nocerttimecheck" directive to specify the number of clock updates
that need to be made before the time validation of certificates is
enabled. This makes NTS usable on machines that don't have a RTC.
 2020-04-16 18:09:32 +02:00
Miroslav Lichvar
50204a125b test: add nts unit tests 2020-03-05 16:02:15 +01:00