HomeFreeBSD
Diffusion FreeBSD src repository - subversion rS365309

Add entries for the OID used for NFS-over-TLS "user@domain".
rS365309
Actions

Description

Add entries for the OID used for NFS-over-TLS "user@domain".

The NFS-over-TLS server daemon (rpc.tlsservd) can optionally replace user
credentials in the RPC header with ones derived from a username specified
by the form "user@domain", if this exists in the client's X.509 v3 certificate.
Specifically, "user@domain" needs to be in the "otherName" component of
subjectjAltName, with a unique OID as assigned by this update.

This patch adds a subtree for the "otherName" component of subjectAltName in
X.509 v3 cerificates and a value for "user@domain" as used by NFS-over-TLS.

Reviewed by: phk, gordon
Differential Revision: https://reviews.freebsd.org/D26225

Details

Provenance
rmacklemAuthored on
Reviewer
phk
Differential Revision
D26225: add an entry for X.509 certificate subjAltName otherName field
Parents
rS365308: mac_framework.h: fix build with DEBUG_VFS_LOCKS and !MAC
Branches
Unknown
Tags
Unknown

Changes (1)

PathSize
head/
share/
snmp/
mibs/

rS365309

View Options

head/share/snmp/mibs/FREEBSD-MIB.txt

Loading...