Commit Graph

26473 Commits

Author SHA1 Message Date
Love Hornquist Astrand
b6573c69e6 more base 2010-10-27 20:33:57 -07:00
Love Hornquist Astrand
ef78859954 clean heimbase. 2010-10-27 20:31:13 -07:00
Love Hornquist Astrand
e457e87726 add Patrik Lundin 2010-10-27 19:35:04 -07:00
Love Hornquist Astrand
2a2b229efc reap all zombie children, promted by bug report from Patrik Lundin 2010-10-27 19:34:28 -07:00
Love Hornquist Astrand
01e03a1c1e common tailq 2010-10-26 23:42:33 -07:00
Love Hornquist Astrand
b0c19f1a2d more use bits 2010-10-26 23:41:32 -07:00
Love Hornquist Astrand
82d15c0ada define helper macros for __attribute__ 2010-10-26 23:41:05 -07:00
Love Hornquist Astrand
a77070f5b1 define helper macros for __attribute__ 2010-10-26 23:39:42 -07:00
Love Hornquist Astrand
82f7fcc9e9 provide heim_base_once_f 2010-10-24 12:20:14 -07:00
Love Hornquist Astrand
14b5c39f58 pulling heim_threads.h 2010-10-24 12:19:32 -07:00
Chas Williams (CONTRACTOR)
a3afa695ee hcrypto: struct x64 doesn't need bitfields
hcrypto: struct x64 doesn't need bitfields

    The bitfield specifications on the struct x64 members do not actually do
    anything to guarantee/force packing or endian of the members.  Removing
    them allows the code to compile on certain compilers that do not support
    bitfields on 64-bit types.

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-23 17:24:28 -07:00
Love Hornquist Astrand
3e022eeae1 remove unused variable, plug memory leak 2010-10-20 19:42:07 -07:00
Love Hornquist Astrand
2a9d00dd91 add digest and apop support 2010-10-19 18:16:49 -07:00
Love Hornquist Astrand
9f1168b703 add targetinfo and comerr error codes 2010-10-19 18:15:40 -07:00
Jan Rękorajski
99f690fd19 krb5_cc_last_change_time is missing 2010-10-18 16:07:59 -07:00
Love Hornquist Astrand
8ddc462ec1 Add heimbase 2010-10-18 15:00:34 -07:00
Joerg Pulz
03dfe132d0 Make build w/o PKINIT
Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-18 08:28:42 -07:00
Joerg Pulz
4154bb82ce Add libintl for i18n support
Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-18 08:27:33 -07:00
Love Hornquist Astrand
8e7cf16491 Switch to ULL 2010-10-11 20:15:37 -07:00
Love Hornquist Astrand
f5b16cbddb remove tfm 2010-10-11 20:10:24 -07:00
Simon Wilkinson
4dc6b5f259 hcrypto: Flag 64bit bit constants as long long
When using 64bit constants for initialisation flag them as LL, so
the compiler doesn't try to cast them down to a long, and throw away
information, on 32 bit platforms.

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-11 20:08:25 -07:00
Simon Wilkinson
3d7fc1001a Assign a value for HX509_CMS_EV_ID_NAME
667ec8eb81 introduced the flag
HX509_CMS_EV_ID_NAME, without defining a value for that flag.
Assign a value using the next available bit.

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-11 20:05:26 -07:00
Love Hornquist Astrand
20e4f3b9de more glue 2010-10-11 20:04:11 -07:00
Love Hornquist Astrand
8e24a897d7 make code match comment 2010-10-12 04:27:13 +02:00
Love Hornquist Astrand
bf1f62b0a8 Document KCM 2010-10-10 18:18:46 -04:00
Love Hornquist Astrand
667ec8eb81 Use version 0 for issuer name serial number and version 2 for ski
Pointed by subject Michael Wood <esiotrot@gmail.com> on samba-technical
2010-10-07 00:22:09 -07:00
Love Hornquist Astrand
ef543041fc moving on top of ourself is simple 2010-10-07 00:01:24 -07:00
Love Hornquist Astrand
3789b1111e stop if there is not enough data 2010-10-07 00:01:06 -07:00
Love Hornquist Astrand
c50d442375 release cred too 2010-10-06 23:47:37 -07:00
Love Hornquist Astrand
a3746c9f07 handle unix credentials 2010-10-06 23:32:36 -07:00
Love Hornquist Astrand
f225af82c1 if db_create() returns non zero, fail 2010-10-06 21:37:50 -07:00
Love Hornquist Astrand
34e5278ae4 random bits 2010-10-04 00:03:12 -07:00
Love Hornquist Astrand
106689c7a0 add rsakey2048 and rsakey4096 2010-10-03 18:13:58 -07:00
Love Hornquist Astrand
b7b40b1ef9 add more speed (or maybe non speed numbers) 2010-10-03 18:13:16 -07:00
Love Hornquist Astrand
4c1b29346f test rsakey2048 2010-10-03 17:06:48 -07:00
Love Hornquist Astrand
b4181e4560 rsakey2048 2010-10-03 17:04:48 -07:00
Love Hornquist Astrand
48ad3e1e65 add import/export type for private keys 2010-10-03 16:32:01 -07:00
Love Hornquist Astrand
dfc54c6eea now that we use 2k rsa keys, don't make ca keys twise as large 2010-10-03 14:59:43 -07:00
Love Hornquist Astrand
97390e087d default to 2k rsa keys, for performance reasons you might want to generate 1k rsa keys though 2010-10-03 14:58:18 -07:00
Andrew Bartlett
5cc4d5d2bd heimdal Use a seperate krb5_auth_context for the delegated credentials
This makes it much more clear that the timestamp written here is not
used in mutual authentication.

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 20:47:12 -07:00
Andrew Bartlett
b78419f126 heimdal use returned server entry from HDB to compare realms
Some hdb modules (samba4) may change the case of the realm in
a returned result.  Use that to determine if it matches the krbtgt
realm also returned from the DB (the DB will return it in the 'right' case)

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 20:46:49 -07:00
Andrew Bartlett
0225db7152 Don't redefine socket() if socket_wrapper is already in use
In Samba, we may have already included socket_wrapper.h at this point

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 20:46:16 -07:00
Love Hornquist Astrand
c6fb9428dd Drop imath for ltm for speed reasons 2010-10-02 12:28:27 -07:00
Love Hornquist Astrand
0a608964a4 only set error code in case of failure, add comment 2010-10-02 12:13:19 -07:00
Love Hornquist Astrand
6cdf8104f7 do is deprecated, so lets stop using it 2010-10-02 12:05:41 -07:00
Love Hornquist Astrand
0789271ebb indent, return error code 2010-10-02 11:59:53 -07:00
Andrew Bartlett
7ea9ccf737 heimdal: added verbose logging of hemimdal crypto errors
Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 11:56:26 -07:00
Andrew Bartlett
c434086ba0 Add error code to use when a secret is not in this database
This will happen on an RODC, which has the entry, but not the full
secret.

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 11:52:28 -07:00
Andrew Bartlett
1d09e39d45 Don't segfault when in --one-file mode
The problem is that on Linux, fclose() of a NULL pointer segfaults

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 11:51:42 -07:00
Buck Huppmann
799956e9b7 Check if we should enable weak crypto before parsing enctypes list
This since the enctypes lists doesn't include weak crypto alg in the
resulting list.

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-02 11:28:20 -07:00