oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
24,532 Commits 2 Branches 2 Tags
022e7d431935479a0e1090d4131cd498d28bf273
Commit Graph

49 Commits

Author SHA1 Message Date
Love Hornquist Astrand
022e7d4319 Return unwrapped delegated credentials if the actual mech is not the called mech 
Assumes that pseudo mechs are are of how mechglue credentails look like and
return credentials like that.

Pointed out on krbdev by Nicolas Williams
 2009-08-26 22:32:50 -07:00
Stefan Metzmacher
03998aeccb gsskrb5: fix test_context. after gss_wrap_iov changes 
metze

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2009-08-25 23:34:38 -07:00
Love Hornquist Astrand
fa502c6648 Add support for gss_{import,export}_cred() as requested by metze 
Works for krb5 and SPNEGO mechanisms. Kerberos credentials are passed as
credential cache names, or if there are memory based credentials, inband in the protocol. This means that the credentials buffers must be keep secret.

As documented by IBM (they have the wrong prototype though)
and GGF (GSS-API Extensions) back in 2001
 2009-07-29 13:36:02 +02:00
Love Hörnquist Åstrand
c99b2003e2 Implement gss_wrap_iov, gss_unwrap_iov for CFX type encryption types. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25286 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-22 17:56:41 +00:00
Love Hörnquist Åstrand
67ae620a5d no conf_state test, no wrap-ex test 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24995 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:04:10 +00:00
Love Hörnquist Åstrand
a50bf41078 test gss_wrap_iov 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24786 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-22 23:26:48 +00:00
Love Hörnquist Åstrand
e3a51ec732 test conf state 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24785 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-22 23:26:37 +00:00
Love Hörnquist Åstrand
76dbf57e30 add gsspi_ntml.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24551 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-30 16:49:16 +00:00
Love Hörnquist Åstrand
0357e392d4 indent 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24401 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:38:09 +00:00
Love Hörnquist Åstrand
925f30f3f2 test free(NULL) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24400 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:37:59 +00:00
Love Hörnquist Åstrand
e81ddb40d7 flatten includes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24388 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:35:58 +00:00
Love Hörnquist Åstrand
d8b8a85def fix header files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24379 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:34:29 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
abf2e95bdf add missing flag policy-delegate 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23533 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-16 22:58:04 +00:00
Love Hörnquist Åstrand
dfb1db9505 delegate policy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23486 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-11 09:58:24 +00:00
Love Hörnquist Åstrand
04b69a4a76 add GSS_C_DELEG_POLICY_FLAG 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23482 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-11 09:58:01 +00:00
Love Hörnquist Åstrand
a826abbbbc check max looops 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23425 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:39:39 +00:00
Love Hörnquist Åstrand
39fe446983 Support parsing KRB-ERROR passed back from windows server when the time is out of sync, modify krb5_cc_[sg]et_config interface to handle principals too, add tests for this 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23420 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:37:48 +00:00
Love Hörnquist Åstrand
ef1b20b339 check for creds 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23405 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:30:56 +00:00
Love Hörnquist Åstrand
8c09b251fd Check keyblock instead of keyblock2, doesn't matter which, they will 
be the same

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23385 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-24 20:04:07 +00:00
Love Hörnquist Åstrand
d260d2aca0 indent 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23381 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-24 20:03:00 +00:00
Love Hörnquist Åstrand
8cb7ec4b64 Allow checking the session enctype 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23380 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-24 20:02:45 +00:00
Love Hörnquist Åstrand
49dffae447 Add test for gsskrb5_register_acceptor_identity. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22681 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-14 21:10:43 +00:00
Love Hörnquist Åstrand
9ceb72abd5 split out the error printing function and try to return better errors 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20075 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-31 06:05:19 +00:00
Love Hörnquist Åstrand
4526d9e313 Checks for gss_pseudo_random. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20050 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-24 01:29:38 +00:00
Love Hörnquist Åstrand
bb112dddd6 Don't assume bufer from gss_display_status is ok. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19971 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-17 17:13:39 +00:00
Love Hörnquist Åstrand
db4922b209 request INT and CONF from the gss layer, test get and verify MIC. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19448 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-19 15:40:45 +00:00
Love Hörnquist Åstrand
d2946a3c8e add --wrapunwrap flag 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19419 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-18 18:07:15 +00:00
Love Hörnquist Åstrand
22d5c1f397 allow asserting return mech 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19402 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-18 13:04:53 +00:00
Love Hörnquist Åstrand
471b9aabbc allow testing of ntlm. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19366 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-15 20:09:19 +00:00
Love Hörnquist Åstrand
210162ce80 Test that token keys are the same, return actual_mech. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19060 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-16 07:27:07 +00:00
Love Hörnquist Åstrand
0be2851d8e Add delegate flag and check that the delegated cred works. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19044 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-15 10:19:41 +00:00
Love Hörnquist Åstrand
a16e0b633c Create our own krb5_context. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19030 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-13 18:01:39 +00:00
Love Hörnquist Åstrand
adeeb5222e rename krb5_[gs]et_time_wrap to krb5_[gs]et_max_time_skew 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18953 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-08 02:56:28 +00:00
Love Hörnquist Åstrand
69eaa1a026 use krb5_get_time_wrap 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18952 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-08 02:51:46 +00:00
Love Hörnquist Åstrand
f46e738880 Check that authtime is sane, From Andrew Bartlet 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18951 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-08 02:49:40 +00:00
Love Hörnquist Åstrand
cc68fac9fe test wrap/unwrap, add flag for dce-style and mutual auth, 
also support multi-roundtrip sessions


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18936 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-07 19:02:54 +00:00
Love Hörnquist Åstrand
acaa0b8655 Test gsskrb5_extract_service_keyblock, needed in PAC valication. 
From Andrew Bartlett


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18917 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-05 00:46:21 +00:00
Love Hörnquist Åstrand
0cd59b2fa5 Rename various routines and constants from canonize to canonicalize. 
From Andrew Bartlett


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18903 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-04 03:12:46 +00:00
Love Hörnquist Åstrand
1ad6535a1d (loop): free target_name 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18894 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-25 03:32:08 +00:00
Love Hörnquist Åstrand
6f3ca67165 make compile 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18884 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-24 21:17:10 +00:00
Love Hörnquist Åstrand
204ee001a8 Free the security contexts when done. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18883 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-24 21:15:24 +00:00
Love Hörnquist Åstrand
f2192a206e Call setprogname. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18730 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-21 06:42:28 +00:00
Love Hörnquist Åstrand
0c93c7650d update (c) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18587 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-19 07:17:13 +00:00
Love Hörnquist Åstrand
c46f38c4ae Allow specifing mech. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18586 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-19 07:12:35 +00:00
Love Hörnquist Åstrand
4a4cebb24c Support switching on name type oid's 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18543 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-17 20:01:38 +00:00
Love Hörnquist Åstrand
aaa8262c03 add test for dns canon flag 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18515 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-17 09:46:40 +00:00
Love Hörnquist Åstrand
f0134201ee a tests for gss lucid interface 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18423 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-12 11:15:26 +00:00