oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
26,371 Commits 2 Branches 2 Tags
2a8dc252b61ed34cc07844a445f6487bea88f265
Commit Graph

60 Commits

Author SHA1 Message Date
Luke Howard
2a8dc252b6 add gss_acquire_cred_with_password test to test_context 2011-05-14 16:26:14 +02:00
Love Hornquist Astrand
d8b5246607 catch error from gsskrb5_register_acceptor_identity 2011-04-14 12:54:16 -07:00
Asanka C. Herath
7ba01bda98 Deal with possibly non-const initializers 2010-12-02 01:18:03 -05:00
Love Hornquist Astrand
1021099f3d rename external so that they can be included in array and struct initializer 2010-07-22 20:47:04 -07:00
Love Hornquist Astrand
01a1e1baef check that gss_krb5_set_allowable_enctypes works 2009-11-30 17:19:13 -08:00
Stefan Metzmacher
2f1a370cd3 hack for gss-wrap-iov to it work 
Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2009-08-28 13:31:12 -07:00
Love Hornquist Astrand
45cfe3f971 Fix server context client context order to match callee 2009-08-27 18:30:28 -07:00
Love Hornquist Astrand
1999c85670 Make mech glue layer aware of composite mechs that uses mech glue layer credentials 
This make it possible to use krb5/ntlm credentials with SPNEGO.
Needs some more work to avoid double fetching credentials.
 2009-08-27 12:12:44 -07:00
Love Hornquist Astrand
32ee735d73 drop RCSID 2009-08-26 23:15:35 -07:00
Love Hornquist Astrand
a2820df666 spelling 2009-08-26 22:53:38 -07:00
Love Hornquist Astrand
ebb2e72c61 make error message more unique 2009-08-26 22:43:25 -07:00
Love Hornquist Astrand
022e7d4319 Return unwrapped delegated credentials if the actual mech is not the called mech 
Assumes that pseudo mechs are are of how mechglue credentails look like and
return credentials like that.

Pointed out on krbdev by Nicolas Williams
 2009-08-26 22:32:50 -07:00
Stefan Metzmacher
03998aeccb gsskrb5: fix test_context. after gss_wrap_iov changes 
metze

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2009-08-25 23:34:38 -07:00
Love Hornquist Astrand
fa502c6648 Add support for gss_{import,export}_cred() as requested by metze 
Works for krb5 and SPNEGO mechanisms. Kerberos credentials are passed as
credential cache names, or if there are memory based credentials, inband in the protocol. This means that the credentials buffers must be keep secret.

As documented by IBM (they have the wrong prototype though)
and GGF (GSS-API Extensions) back in 2001
 2009-07-29 13:36:02 +02:00
Love Hörnquist Åstrand
c99b2003e2 Implement gss_wrap_iov, gss_unwrap_iov for CFX type encryption types. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25286 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-22 17:56:41 +00:00
Love Hörnquist Åstrand
67ae620a5d no conf_state test, no wrap-ex test 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24995 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:04:10 +00:00
Love Hörnquist Åstrand
a50bf41078 test gss_wrap_iov 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24786 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-22 23:26:48 +00:00
Love Hörnquist Åstrand
e3a51ec732 test conf state 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24785 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-22 23:26:37 +00:00
Love Hörnquist Åstrand
76dbf57e30 add gsspi_ntml.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24551 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-30 16:49:16 +00:00
Love Hörnquist Åstrand
0357e392d4 indent 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24401 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:38:09 +00:00
Love Hörnquist Åstrand
925f30f3f2 test free(NULL) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24400 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:37:59 +00:00
Love Hörnquist Åstrand
e81ddb40d7 flatten includes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24388 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:35:58 +00:00
Love Hörnquist Åstrand
d8b8a85def fix header files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24379 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:34:29 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
abf2e95bdf add missing flag policy-delegate 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23533 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-16 22:58:04 +00:00
Love Hörnquist Åstrand
dfb1db9505 delegate policy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23486 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-11 09:58:24 +00:00
Love Hörnquist Åstrand
04b69a4a76 add GSS_C_DELEG_POLICY_FLAG 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23482 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-11 09:58:01 +00:00
Love Hörnquist Åstrand
a826abbbbc check max looops 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23425 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:39:39 +00:00
Love Hörnquist Åstrand
39fe446983 Support parsing KRB-ERROR passed back from windows server when the time is out of sync, modify krb5_cc_[sg]et_config interface to handle principals too, add tests for this 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23420 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:37:48 +00:00
Love Hörnquist Åstrand
ef1b20b339 check for creds 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23405 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:30:56 +00:00
Love Hörnquist Åstrand
8c09b251fd Check keyblock instead of keyblock2, doesn't matter which, they will 
be the same

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23385 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-24 20:04:07 +00:00
Love Hörnquist Åstrand
d260d2aca0 indent 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23381 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-24 20:03:00 +00:00
Love Hörnquist Åstrand
8cb7ec4b64 Allow checking the session enctype 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23380 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-24 20:02:45 +00:00
Love Hörnquist Åstrand
49dffae447 Add test for gsskrb5_register_acceptor_identity. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22681 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-14 21:10:43 +00:00
Love Hörnquist Åstrand
9ceb72abd5 split out the error printing function and try to return better errors 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20075 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-31 06:05:19 +00:00
Love Hörnquist Åstrand
4526d9e313 Checks for gss_pseudo_random. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20050 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-24 01:29:38 +00:00
Love Hörnquist Åstrand
bb112dddd6 Don't assume bufer from gss_display_status is ok. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19971 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-17 17:13:39 +00:00
Love Hörnquist Åstrand
db4922b209 request INT and CONF from the gss layer, test get and verify MIC. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19448 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-19 15:40:45 +00:00
Love Hörnquist Åstrand
d2946a3c8e add --wrapunwrap flag 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19419 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-18 18:07:15 +00:00
Love Hörnquist Åstrand
22d5c1f397 allow asserting return mech 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19402 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-18 13:04:53 +00:00
Love Hörnquist Åstrand
471b9aabbc allow testing of ntlm. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19366 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-15 20:09:19 +00:00
Love Hörnquist Åstrand
210162ce80 Test that token keys are the same, return actual_mech. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19060 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-16 07:27:07 +00:00
Love Hörnquist Åstrand
0be2851d8e Add delegate flag and check that the delegated cred works. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19044 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-15 10:19:41 +00:00
Love Hörnquist Åstrand
a16e0b633c Create our own krb5_context. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19030 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-13 18:01:39 +00:00
Love Hörnquist Åstrand
adeeb5222e rename krb5_[gs]et_time_wrap to krb5_[gs]et_max_time_skew 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18953 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-08 02:56:28 +00:00
Love Hörnquist Åstrand
69eaa1a026 use krb5_get_time_wrap 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18952 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-08 02:51:46 +00:00
Love Hörnquist Åstrand
f46e738880 Check that authtime is sane, From Andrew Bartlet 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18951 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-08 02:49:40 +00:00
Love Hörnquist Åstrand
cc68fac9fe test wrap/unwrap, add flag for dce-style and mutual auth, 
also support multi-roundtrip sessions


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18936 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-07 19:02:54 +00:00
Love Hörnquist Åstrand
acaa0b8655 Test gsskrb5_extract_service_keyblock, needed in PAC valication. 
From Andrew Bartlett


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18917 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-05 00:46:21 +00:00