d3828fe201
Don't depend on that memcmp() have same return value on all platforms
...
BSDish libc returns -14 3 14, while GNU LIBC returns -1 3 1.
2009-08-14 05:34:50 +02:00
21ff5b84a5
Fix symbols renaming for flock
2009-08-14 05:17:51 +02:00
ede8ad11ad
Support IPv6 numeric style addresses, example [2001:10:300::1]:88
2009-08-14 04:34:10 +02:00
833ac10aab
Use unsigned char instead of u_int32_t
2009-08-14 03:59:24 +02:00
57393f7b86
Add <limits.h> for INT_MAX, needed on Solaris
2009-08-14 03:05:18 +02:00
c1a54a5e37
Make KRB5SignedPath less fragile, only sign trivial parts of the encTicketPart
...
Sign the client and auth time (like its done in the PAC) and let that
be ehough for now. Add a Typed hole so that we don't break wireprotocol
next time.
2009-08-12 23:05:36 +02:00
55c9d66d80
Drop md5/md4/rc4 reference and use EVP_ interface
2009-08-11 11:30:04 +02:00
33fcc11b3f
Replace last SHA1_ with EVP_ replacement
2009-08-11 10:00:30 +02:00
18a4b69b48
Switch more cases to EVP crypto layer
2009-08-10 17:51:17 +02:00
21e8270aa2
Support RC4 in EVP
2009-08-10 11:48:12 +02:00
8276a469ab
Add CommonCrypto support, split out all hcrypto specific code to hcrypto module
2009-08-10 09:07:37 +02:00
2a17be87ab
Remove direct use of MD5
2009-08-10 09:06:50 +02:00
da61635b75
Quest Software, Inc. and its contributors waive all copyright claims on
...
the attached getifaddrs test code and dedicate it to the public domain.
Changed to looked to the other heimdal test apps by me
2009-08-07 20:00:09 +02:00
e57f65f563
clean better
2009-08-06 10:53:35 +02:00
658a7b52ca
clean better
2009-08-06 10:19:51 +02:00
0a92381e98
clean better
2009-08-06 10:19:28 +02:00
07f0c8be5d
Clean better
2009-08-06 10:18:52 +02:00
655ee18a17
add missing files, clean better
2009-08-06 10:18:25 +02:00
44709846a0
add ec*.h files
2009-08-06 09:28:08 +02:00
d1eb77fba8
add basic symbol renaming and header prototection
2009-08-06 09:27:35 +02:00
5334dd9702
add basic symbol renaming and header prototection
2009-08-06 09:26:54 +02:00
a9b182bc4e
add basic symbol renaming and header prototection
2009-08-06 09:25:52 +02:00
3ae9834b37
As part of distdir don't build vis.h for platforms that doesn't need it
2009-08-05 15:42:55 +02:00
b8ebf4e245
add wincrypt
2009-08-05 13:48:40 +02:00
95993f222c
Fix order of flags, passes regression test now
2009-08-05 13:42:34 +02:00
3a031244bc
Drop RCSID and HAVE_CONFIG_H
2009-08-05 13:37:37 +02:00
80a62da8de
make depend on config.h, so that we can't avoid symbol renaming
2009-08-05 12:47:11 +02:00
1cbb0e766d
Fix crash in rk_freeifaddrs due to freeing an invalid pointer
...
Crash occurs on Linux systems that support AF_NETLINK but do not have
getifaddrs() in libc (eg. SuSE 8.1).
Signed-off-by: Love Hornquist Astrand <lha@h5l.org >
2009-08-05 12:29:26 +02:00
0ede7ac561
Pass down the use-dce-style flag instead of the while gssapi krb5 context
2009-08-05 12:00:07 +02:00
1fc7af5bcf
Add missing files
2009-08-05 11:13:01 +02:00
ab9e5d13ec
gsskrb5: try to be compatible with windows for gss_wrap* and cfx
...
The good thing is that windows and heimdal both use EC=0
in the non DCE_STYLE case, so we need the windows compat hack
only in DCE_STYLE mode.
metze
Signed-off-by: Love Hornquist Astrand <lha@h5l.org >
2009-08-04 20:22:05 +02:00
0297d047a4
gsskrb5: add support for DCE_STYLE and des and des3 keys
...
Only the des keys are tested as windows doesn't support des3
metze
Signed-off-by: Love Hornquist Astrand <lha@h5l.org >
2009-08-04 20:21:20 +02:00
772dfac438
lib/asn1: remove unused reference to vers.h
...
metze
Signed-off-by: Love Hornquist Astrand <lha@h5l.org >
2009-08-04 20:19:44 +02:00
5b8a319a7e
lib/krb5: fix the build without KRB4
...
metze
Signed-off-by: Love Hornquist Astrand <lha@h5l.org >
2009-08-04 20:19:44 +02:00
abd2f29c44
Pull in roken and use ROKEN_CPP_BEGIN/ROKEN_CPP_END instead of cdecl
2009-08-04 20:19:44 +02:00
513f59dcd4
heimdal:camellia: include roken.h
...
metze
Signed-off-by: Love Hornquist Astrand <lha@h5l.org >
2009-08-04 20:19:44 +02:00
a4287ff403
Include roken.h to fix build of example_evp_cipher test on Linux
...
Signed-off-by: Love Hornquist Astrand <lha@h5l.org >
2009-08-04 20:19:44 +02:00
f8c121b282
Add support for user principal names in certificates [HEIMDAL-602]
...
This extends the PKINIT code in Heimdal to ask the HDB layer if the
User Principal Name name in the certificate is an alias (perhaps just
by case change) of the name given in the AS-REQ. (This was a TODO in
the Heimdal KDC)
The testsuite is extended to test this behaviour, and the other PKINIT
certficate (using the standard method to specify a principal name in a
certificate) is updated to use a Administrator (not administrator).
(This fixes the kinit test).
2009-08-04 09:34:58 +02:00
147184381e
Check for NUL in the middle of the string
2009-08-04 00:57:35 +02:00
3cebc3767f
add more test to test_acquire_cred that removes the need of test_init_creds.c
2009-08-03 13:05:36 +02:00
e6c2a70678
Indent some more
2009-08-03 12:10:07 +02:00
b2129c0751
Indent the patch from Andrew and make it compile again
2009-08-03 10:54:44 +02:00
ada7c73176
Indent the patch from Andrew and make it compile again
2009-08-03 10:50:50 +02:00
788480d28a
heimdal Extend the 'hdb as a keytab' code [HEIMDAL-600]
...
This extends the hdb_keytab code to allow enumeration of all the keys.
The plan is to allow ktutil's copy command to copy from Samba4's
hdb_samba4 into a file-based keytab used in wireshark.
From Andrew Bartlett
2009-08-03 10:43:22 +02:00
ff89a727d4
Fix bounced condition
2009-07-30 19:19:35 +02:00
4d200dd2d5
Clean the list in a simpler way
2009-07-30 18:56:23 +02:00
ae58266705
More doxygen.
2009-07-30 15:36:25 +02:00
11024751a5
make compile
2009-07-30 14:25:12 +02:00
3608b815b4
Don't bother checking usage of minor_status [CID-23]
2009-07-30 14:01:57 +02:00
901bac07e8
Don't need to look check *input_name twice [CID-27].
2009-07-30 14:00:48 +02:00
Love Hornquist Astrand