Luke Howard
8946f0de9d
gss_preauth: remove dead code
...
The intent was to map KRB5KRB_AP_ERR_BAD_INTEGRITY and HNTLM_ERR_AUTH to
KRB5KRB_AP_ERR_BAD_INTEGRITY, but this code was never reached.
2022-01-21 10:09:44 +11:00
Luke Howard
ab042dca36
gss_preauth: use memset rather than {0} to initialize cb
2022-01-17 10:05:59 +11:00
Nicolas Williams
005a43da96
gsspa: Quiet GCC fallthrough warning
...
Somehow GCC was honoring lower-case "fallthrough" comments elsewhere but
not here. Anyways, there was no need to fall through, so now we don't.
2022-01-14 14:47:13 -06:00
Luke Howard
47282cae34
krb5: import Heimdal-597.121.1 AS/TGS client
...
Sync with most changes in AS/TGS client from Apple's Heimdal-597.121.1
(opensource.apple.com).
Changes include:
- FAST support in TGS client
- Refactored pre-auth client to be more easily extensible
- Pin KDC host and AD site name in API calls
Note the completely refactored TGS client loop is not imported as that was
considered too intrusive.
2021-12-14 09:03:42 +11:00
Luke Howard
85a5e5fb30
gss_preauth: remove protocol changes section from README
...
Heimdal implements draft-perez-krb-wg-gss-preauth-03 without protocol changes
(the draft was updated to match the implementation)
2021-09-24 07:38:58 +10:00
Nicolas Williams
7818f44659
gss_preauth: Fix build race
2021-08-29 13:50:39 -05:00
Luke Howard
f43dbb1d25
gss_preauth: fix header dependency
2021-08-28 16:35:05 +10:00
Luke Howard
f551ae3d82
gss_preauth: remove gss_preauth.h
...
Remove gss_preauth.h, it is now auto-generated.
2021-08-27 19:51:32 +10:00
Luke Howard
774f50b28b
gss: move GSS pre-auth helpers to convenience lib
...
GSS pre-auth helpers do not belong in libgssapi, so move them to a separate
convenience library.
2021-08-27 15:20:07 +10:00