Commit Graph

10067 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
03d0a158b8 (_krb5_pk_create_sign): stuff down the users certs in the pool to make
sure a path is returned, without this proxy certificates wont work.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19097 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-23 18:13:47 +00:00
Love Hörnquist Åstrand
1a89ccbde3 (_hx509_calculate_path): allow to calculate optimistic path when we
don't know the trust anchors, just follow the chain upward until we no
longer find a parent or we hit the max limit.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19096 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-23 18:11:22 +00:00
Love Hörnquist Åstrand
b10833408a regen
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19095 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-23 18:09:59 +00:00
Love Hörnquist Åstrand
94d63f5092 (hx509_cms_create_signed_1): provide a best effort path to the trust
anchors to be stored in the SignedData packet, if find parents until
trust anchor or max length.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19094 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-23 18:08:23 +00:00
Love Hörnquist Åstrand
36b3f8b61a Build pk-init proxy cert.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19093 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-23 18:06:10 +00:00
Love Hörnquist Åstrand
976c93b3e6 (krb5_get_init_creds_opt_free): allow free on NULL.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19092 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-23 16:27:36 +00:00
Love Hörnquist Åstrand
473532da2a update (c)
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19088 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-21 08:08:46 +00:00
Love Hörnquist Åstrand
9db7608772 (krb5_get_warn_dest): return warn_dest from krb5_context
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19086 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-21 08:06:40 +00:00
Love Hörnquist Åstrand
7f09ad0520 document krb5_[gs]et_warn_dest
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19085 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-21 07:55:20 +00:00
Love Hörnquist Åstrand
05c87d8f58 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19084 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-21 05:18:06 +00:00
Love Hörnquist Åstrand
24d6d22312 Make KRB5-PADATA-S4U2SELF pa type 129.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19083 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-21 05:17:47 +00:00
Love Hörnquist Åstrand
213255c32a Drop KRB5_KU_TGS_IMPERSONATE.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19082 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-21 05:15:36 +00:00
Love Hörnquist Åstrand
b9624a871d Use KRB5_KU_OTHER_CKSUM for the impersonate checksum.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19081 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-21 05:14:43 +00:00
Love Hörnquist Åstrand
7624883fb4 Make krb5_get_init_creds_opt_free take a context argument.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19080 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-20 18:41:57 +00:00
Love Hörnquist Åstrand
240d98f20f x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19079 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-20 18:14:57 +00:00
Love Hörnquist Åstrand
ece5f9603e Make krb5_get_init_creds_opt_free take a context argument.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19078 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-20 18:12:41 +00:00
Love Hörnquist Åstrand
5b7701514e Make all pkinit options prefixed with pkinit_
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19069 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-17 22:27:01 +00:00
Love Hörnquist Åstrand
61623b636c Make app pkinit options prefixed with pkinit_
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19068 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-17 22:20:25 +00:00
Love Hörnquist Åstrand
e299db5039 (krb5_c_keylengths): make compile again.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19067 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-17 22:17:46 +00:00
Love Hörnquist Åstrand
20a7bd7a29 Update krb5_c_keylengths
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19066 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-17 22:09:25 +00:00
Love Hörnquist Åstrand
0afc3bb28a (krb5_c_keylengths): rename.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19065 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-17 22:06:07 +00:00
Love Hörnquist Åstrand
3719ad0089 (krb5_c_keylength): mit changed the api, deal.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19064 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-17 22:04:54 +00:00
Love Hörnquist Åstrand
4e200bc2d5 Add krb5_enctype_keybits.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19063 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-17 21:58:47 +00:00
Love Hörnquist Åstrand
f6a0b79caf x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19062 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-16 15:08:26 +00:00
Love Hörnquist Åstrand
aaf8aff1c6 (hx509_get_error_string): Put ", " between strings in error message.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19061 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-16 15:08:09 +00:00
Love Hörnquist Åstrand
210162ce80 Test that token keys are the same, return actual_mech.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19060 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-16 07:27:07 +00:00
Love Hörnquist Åstrand
07a8f134e8 Make bitfields unsigned, add maybe_open.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19050 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 11:37:25 +00:00
Love Hörnquist Åstrand
a4908290ac x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19049 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 11:10:54 +00:00
Love Hörnquist Åstrand
b60aecaebf Use ASN.1 encoder functions to encode CHOICE structure now that we can handle it.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19048 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 11:10:46 +00:00
Love Hörnquist Åstrand
062328fffc x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19047 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:31:33 +00:00
Love Hörnquist Åstrand
75b517309f (_gss_spnego_accept_sec_context): send back ad accept_completed when
the security context is ->open, w/o this the client doesn't know that
the server have completed the transaction.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19046 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:31:21 +00:00
Love Hörnquist Åstrand
db9e36b915 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19045 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:19:54 +00:00
Love Hörnquist Åstrand
0be2851d8e Add delegate flag and check that the delegated cred works.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19044 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:19:41 +00:00
Love Hörnquist Åstrand
c00799be18 Keep track of the opportunistic token in the inital message, it might
be a complete gss-api context, in that case we'll get back
accept_completed without any token. With this change, krb5 w/o mutual
authentication works.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19043 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:18:55 +00:00
Love Hörnquist Åstrand
c8fd5412ce Use ASN.1 encoder functions to encode CHOICE structure now that we can handle it.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19042 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 09:01:45 +00:00
Love Hörnquist Åstrand
774e93dac2 Filter out SPNEGO from the out supported mechs list and make sure we
don't select that for the preferred mechamism.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19039 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 08:42:36 +00:00
Love Hörnquist Åstrand
576019c819 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19038 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-14 12:35:04 +00:00
Love Hörnquist Åstrand
f34964d46f (_gss_mech_cred_find): break out the cred finding to its own function
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19037 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-14 12:33:11 +00:00
Love Hörnquist Åstrand
882845f819 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19036 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-14 10:05:56 +00:00
Love Hörnquist Åstrand
92486672bd Better error strings, from Andrew Bartlet.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19035 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-14 09:49:56 +00:00
Love Hörnquist Åstrand
3e0139bc20 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19032 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 18:06:45 +00:00
Love Hörnquist Åstrand
00bcd44370 Switch from using a specific error message context in the TLS to have
a whole krb5_context in TLS. This have some interestion side-effekts
for the configruration setting options since they operate on
per-thread basis now.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19031 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 18:02:57 +00:00
Love Hörnquist Åstrand
a16e0b633c Create our own krb5_context.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19030 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 18:01:39 +00:00
Love Hörnquist Åstrand
073e1a2052 (fill_zeros): stop using MIN.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19029 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 17:45:27 +00:00
Love Hörnquist Åstrand
b88907807b x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19025 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 09:01:20 +00:00
Love Hörnquist Åstrand
d1aeb0f6ce When calling ->gm_set_cred_option and checking for success, use
GSS_S_COMPLETE. From Andrew Bartlet.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19024 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 08:59:43 +00:00
Love Hörnquist Åstrand
3580cf19b8 Change realm to TEST.H5L.SE
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19023 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 08:22:52 +00:00
Love Hörnquist Åstrand
edd8dd277c x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19022 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 08:20:46 +00:00
Love Hörnquist Åstrand
73d8cedc12 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19021 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 08:20:13 +00:00
Love Hörnquist Åstrand
8835bc2f1f Update all strings
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19020 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-13 08:19:07 +00:00