oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
24,466 Commits 4 Branches 2 Tags
2f4ca1347fb334fd8b5ae45970e0eeb47b95bf53
Commit Graph

518 Commits

Author SHA1 Message Date
Love Hornquist Astrand 929559ab2c Switch to using krb5_config_get_list() instead of krb5_config_get() 2009-08-19 04:02:25 -07:00
Love Hornquist Astrand c8175f83a3 drop __FUNCTION__ 2009-08-15 05:57:07 +02:00
Love Hornquist Astrand 0a92381e98 clean better 2009-08-06 10:19:28 +02:00
Andrew Bartlett f8c121b282 Add support for user principal names in certificates [HEIMDAL-602] 
This extends the PKINIT code in Heimdal to ask the HDB layer if the
User Principal Name name in the certificate is an alias (perhaps just
by case change) of the name given in the AS-REQ.  (This was a TODO in
the Heimdal KDC)

The testsuite is extended to test this behaviour, and the other PKINIT
certficate (using the standard method to specify a principal name in a
certificate) is updated to use a Administrator (not administrator).
(This fixes the kinit test).
 2009-08-04 09:34:58 +02:00
Love Hornquist Astrand e6c2a70678 Indent some more 2009-08-03 12:10:07 +02:00
Love Hornquist Astrand b2129c0751 Indent the patch from Andrew and make it compile again 2009-08-03 10:54:44 +02:00
Love Hornquist Astrand ada7c73176 Indent the patch from Andrew and make it compile again 2009-08-03 10:50:50 +02:00
Love Hornquist Astrand 788480d28a heimdal Extend the 'hdb as a keytab' code [HEIMDAL-600] 
This extends the hdb_keytab code to allow enumeration of all the keys.

The plan is to allow ktutil's copy command to copy from Samba4's
hdb_samba4 into a file-based keytab used in wireshark.

From Andrew Bartlett
 2009-08-03 10:43:22 +02:00
Love Hornquist Astrand 311ce98d85 (hdb_sqlite_rename): make rename work when there is a prefix 2009-07-19 18:42:02 -07:00
Love Hornquist Astrand bd073cfd72 Limit maxinum retries of BUSY/BLOCK/LOCKED operations to MAX_RETRIES (default 10) 2009-07-19 18:01:51 -07:00
Love Hornquist Astrand 82150be255 allow loading sqlite 2009-07-19 17:58:53 -07:00
Love Hörnquist Åstrand 6a24e13678 Use hdb_get_dbinfo() to find the realms. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25326 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-15 22:17:30 +00:00
Love Hörnquist Åstrand d3f16452e0 make compile 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25320 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:20:10 +00:00
Love Hörnquist Åstrand 5a9dd54e95 drop RCSID 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25319 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:09:16 +00:00
Love Hörnquist Åstrand 6aa38c372c Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25318 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:09:04 +00:00
Love Hörnquist Åstrand ef92d8485a Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25317 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:48 +00:00
Love Hörnquist Åstrand a18db94691 Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25316 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:36 +00:00
Love Hörnquist Åstrand af77ace518 Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25315 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:26 +00:00
Love Hörnquist Åstrand 48a0f6d995 reset iteration query before continuing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25314 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:15 +00:00
Love Hörnquist Åstrand e02d83174c set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25313 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:05 +00:00
Love Hörnquist Åstrand 4ff6ed4652 set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25312 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:07:52 +00:00
Love Hörnquist Åstrand 54b5beeb98 set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25311 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:07:41 +00:00
Love Hörnquist Åstrand 4beac004a1 set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25310 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:07:30 +00:00
Love Hörnquist Åstrand 45ef83f6fd add hdb_check_constrained_delegation 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25302 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:26:25 +00:00
Love Hörnquist Åstrand 5c104ef172 add ->hdb_password and ->hdb_auth_status 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25298 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:25:29 +00:00
Love Hörnquist Åstrand f65f1f26ef add HDBFlags: locked-out 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25297 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:25:01 +00:00
Love Hörnquist Åstrand a28a9a1b30 comment about hdb_capability_flags 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25296 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:24:48 +00:00
Love Hörnquist Åstrand ba04bad361 From Andrew Bartlet via heimdal-bugs@h5l.org 
s4:heimdal Allow KRB5_NT_ENTERPRISE names in all DB lookups

    The previous code only allowed an KRB5_NT_ENTERPRISE name (an e-mail
    list user principal name) in an AS-REQ.  Evidence from the wild
    (Win2k8 reportadely) indicates that this is instead valid for all
    types of requests.

    While this is now handled in heimdal/kdc/misc.c, a flag is now defined
    in Heimdal's hdb so that we can take over this handling in future (once we start
    using a system Heimdal, and if we find out there is more to be done
    here).

    Andrew

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25293 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 03:16:35 +00:00
Love Hörnquist Åstrand b0a3f535bf SQLite3 backend from Pontus Walck and Stockholm Univerity. 
The work was done as part of Pontus's exjobb. Thanks!

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25269 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-03 17:26:08 +00:00
Love Hörnquist Åstrand 11fd4a0cd2 hdb_asn1.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25266 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-03 17:25:38 +00:00
Love Hörnquist Åstrand ecc751b6dd remove #if 0 codeblock 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25196 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:04:38 +00:00
Love Hörnquist Åstrand 0de4182acb drop unused variable 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25189 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:03:11 +00:00
Love Hörnquist Åstrand 03ae51a040 catch read from socket error 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25188 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:03:00 +00:00
Love Hörnquist Åstrand cc988ffd4b use krb5_principal_get_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25115 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-16 08:08:24 +00:00
Love Hörnquist Åstrand 85268de15a use krb5_principal_get_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25114 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-16 08:06:42 +00:00
Love Hörnquist Åstrand e6b3f6f796 document hdb__ functions. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25083 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 17:45:01 +00:00
Love Hörnquist Åstrand 6fac16450a doxygen 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25081 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 17:22:10 +00:00
Love Hörnquist Åstrand 421cb259bd doxygen 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25080 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 17:21:59 +00:00
Love Hörnquist Åstrand 590edb2fe7 add hdb_entry_get_pkinit_cert and sort 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25007 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 20:53:27 +00:00
Love Hörnquist Åstrand 4b25c7c880 add hdb_entry_get_pkinit_cert 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24996 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:04:20 +00:00
Love Hörnquist Åstrand 6fe0364120 cert 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24981 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:01:36 +00:00
Love Hörnquist Åstrand 15d6e41dea add pkinit-cert 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24980 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:01:25 +00:00
Love Hörnquist Åstrand 1a488a85b7 doxygen 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24977 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:57 +00:00
Love Hörnquist Åstrand 597f9dbdfa make module private functions static 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24976 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:46 +00:00
Love Hörnquist Åstrand f90c2b8194 don't use hdb_dbc. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24974 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:21 +00:00
Love Hörnquist Åstrand 7cbcadcb21 document 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24973 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:10 +00:00
Love Hörnquist Åstrand 037366a584 document part of hdb.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24972 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:07:58 +00:00
Love Hörnquist Åstrand 8bb6609db6 unexport more internal symbols 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24971 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:07:42 +00:00
Love Hörnquist Åstrand a5ee0ef10f unexport hdb_db_create 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24970 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:07:29 +00:00
Love Hörnquist Åstrand c3866bd220 add encode_hdb_keyset and length_hdb_keyset 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24966 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-27 14:57:54 +00:00