oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
31,101 Commits 4 Branches 2 Tags
kadmin-get-printf-debugging
Commit Graph

5 Commits

Author SHA1 Message Date
Nicolas Williams
7439820618 hcrypto, otp: Remove hcrypto and otp! 
We must switch to OpenSSL 3.x, and getting lib/hcrypto to provide
OpenSSL 3.x APIs is too large an undertaking.  Plus the hcrypto backend
is not safe, not secure (probably has timing leaks galore), and no one
has the resources to make it a world-class crypto library, so it just
has to go.
 2026-01-18 16:09:31 -06:00
Luke Howard
8946f0de9d gss_preauth: remove dead code 
The intent was to map KRB5KRB_AP_ERR_BAD_INTEGRITY and HNTLM_ERR_AUTH to
KRB5KRB_AP_ERR_BAD_INTEGRITY, but this code was never reached.
 2022-01-21 10:09:44 +11:00
Nicolas Williams
005a43da96 gsspa: Quiet GCC fallthrough warning 
Somehow GCC was honoring lower-case "fallthrough" comments elsewhere but
not here.  Anyways, there was no need to fall through, so now we don't.
 2022-01-14 14:47:13 -06:00
Luke Howard
47282cae34 krb5: import Heimdal-597.121.1 AS/TGS client 
Sync with most changes in AS/TGS client from Apple's Heimdal-597.121.1
(opensource.apple.com).

Changes include:

 - FAST support in TGS client
 - Refactored pre-auth client to be more easily extensible
 - Pin KDC host and AD site name in API calls

Note the completely refactored TGS client loop is not imported as that was
considered too intrusive.
 2021-12-14 09:03:42 +11:00
Luke Howard
774f50b28b gss: move GSS pre-auth helpers to convenience lib 
GSS pre-auth helpers do not belong in libgssapi, so move them to a separate
convenience library.
 2021-08-27 15:20:07 +10:00