oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
26,275 Commits 2 Branches 2 Tags
4748fc9489183e37c3a758890a1d302aaf4d64dd
Commit Graph

102 Commits

Author SHA1 Message Date
Karolin Seeger
035106be97 s4-krb5: Fix typos in comment. 
Karolin

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2010-09-26 15:12:09 -07:00
Love Hornquist Astrand
d893207413 add check-rd-req-server 2010-09-01 21:56:17 -07:00
Love Hornquist Astrand
687db64c56 Patch from Secure Endpoints/Asanka Herath for windows support 2009-12-21 08:45:28 +01:00
Love Hörnquist Åstrand
942a821fab remove RCSID 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25171 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-04 06:17:40 +00:00
Love Hörnquist Åstrand
8915cd15a7 If caller specified a server, fail on failure to find keytab entry. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24460 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:47:41 +00:00
Love Hörnquist Åstrand
e19011086b drop shadowing variable 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24457 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:47:13 +00:00
Love Hörnquist Åstrand
9b826e1a62 x 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24427 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:42:16 +00:00
Love Hörnquist Åstrand
10269ef2f0 doxygen fixup 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24271 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-11 21:47:05 +00:00
Love Hörnquist Åstrand
4f39ee6fd9 doxygen 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24270 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-11 21:46:55 +00:00
Love Hörnquist Åstrand
e8648d75b0 Use principal not found in keytab code. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24267 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-11 21:46:26 +00:00
Love Hörnquist Åstrand
5112116a84 Allow inctx to be NULL. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24258 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-11 21:44:58 +00:00
Love Hörnquist Åstrand
6239532d9a If no server given, interate over keytab to find a key that can 
decrypt the request. The resulting server principal is what in the
keytab, the real service can be fetched from.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24257 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-11 21:44:48 +00:00
Love Hörnquist Åstrand
b474c84bd9 use the asn1 decoder directly 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24070 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:52:40 +00:00
Love Hörnquist Åstrand
60d35f97bc use asn1 decoder function directly 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24060 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:50:58 +00:00
Love Hörnquist Åstrand
23692ff109 (krb5_rd_req_out_ctx_free): free ticket, from Klas Lindfors 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23998 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-11-01 19:07:27 +00:00
Love Hörnquist Åstrand
03babea1e3 switch to krb5_clear_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23911 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-10-14 02:55:39 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
1b3fa39064 N_()ify 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23796 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-07 21:32:44 +00:00
Love Hörnquist Åstrand
5aa921b4d3 Save the session ticket key when we know everything is fine and the 
ticket was valid.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23415 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-07-26 18:35:44 +00:00
Love Hörnquist Åstrand
7fcd266fdd use krb5_set_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23316 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-23 04:32:32 +00:00
Love Hörnquist Åstrand
f56b0f9866 Use unsigned where appropriate. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22872 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-04-07 18:50:36 +00:00
Love Hörnquist Åstrand
872980ff98 Document krb5_rd_req_in_set_pac_check. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22235 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 21:52:07 +00:00
Love Hörnquist Åstrand
c651661d7f use KRB5_CTX_F_CHECK_PAC to init check_pac field in the krb5_rd_req_in_ctx 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22230 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 21:41:51 +00:00
Love Hörnquist Åstrand
5fed824f37 its vs it\'s etc. From Bjorn Sandell 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22071 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-11-14 20:04:50 +00:00
Love Hörnquist Åstrand
743ccd85cf make work with cpp again, reported by Hai Zaar 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21934 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-27 14:21:04 +00:00
Love Hörnquist Åstrand
9df9f6a9da revert 21003 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21004 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-08 01:53:10 +00:00
Love Hörnquist Åstrand
12df8538af use "roken.h" consitantly 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21003 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-08 01:42:05 +00:00
Love Hörnquist Åstrand
f523c291f5 clear error strings 
.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20305 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-11 11:15:30 +00:00
Love Hörnquist Åstrand
6a8b22c01d Revert previous, the PAC should always be verified using o->keyblock, 
just check on Windows.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19935 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-16 20:51:58 +00:00
Love Hörnquist Åstrand
2ca0d5a961 (krb5_rd_req_ctx): The code failed to consider the enc_tkt_in_skey 
case, from Douglas E. Engert.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19919 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-15 22:40:42 +00:00
Love Hörnquist Åstrand
a84be6224b (krb5_rd_req_ctx): Use the correct keyblock when verifying the PAC. 
From Andrew Bartlett.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19792 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-10 12:10:17 +00:00
Love Hörnquist Åstrand
a03b0ce550 Make it possible to turn off PAC check, its default on. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19680 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-04 11:27:20 +00:00
Love Hörnquist Åstrand
c8c4c730ac (krb5_rd_req_ctx): If there is a PAC, verify its server signature. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19679 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-04 11:23:34 +00:00
Love Hörnquist Åstrand
a04ab012c3 Add more krb5_rd_req_out_get functions. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18931 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-07 17:11:31 +00:00
Love Hörnquist Åstrand
3c84029aba (krb5_rd_req_ctx): Add context all singing-all dancing version of the 
krb5_rd_req and implement krb5_rd_req and krb5_rd_req_with_keyblock
using it.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18925 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-07 00:13:58 +00:00
Love Hörnquist Åstrand
c7b54c3372 Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18270 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-06 17:06:30 +00:00
Love Hörnquist Åstrand
aea29bec78 Add previous ETypeList code again, it was a halfbuilt context that 
broke the code.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18140 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-21 09:00:36 +00:00
Love Hörnquist Åstrand
7c180646d3 disable ETypeList parsing usage for now, cfx seems broken and its not 
good to upgrade to a broken enctype.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18136 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-21 07:44:32 +00:00
Love Hörnquist Åstrand
69dda05a9c (krb5_verify_authenticator_checksum): on protocol failure, avoid leaking memory 
Coverity, NetBSD CID#1900


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17042 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-10 10:14:44 +00:00
Love Hörnquist Åstrand
59aa089d03 (krb5_verify_ap_req2): make sure `ticket´ points to NULL in case of 
error, add error handling, use calloc.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17025 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-09 17:56:10 +00:00
Love Hörnquist Åstrand
56538b207f Update (c) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16310 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-11-29 18:22:51 +00:00
Love Hörnquist Åstrand
755229f6d3 (krb5_verify_ap_re2): check timestamp in authenticator 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16309 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-11-29 15:55:34 +00:00
Love Hörnquist Åstrand
ca1a379a41 (check_transited): explain the TR-type 0 better and why it matters. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16308 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-11-29 14:14:26 +00:00
Love Hörnquist Åstrand
4196a3bb90 (check_transited): Allow empty content of type 0 because that is was 
Microsoft enerates in their TGT.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15994 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-27 05:48:57 +00:00
Love Hörnquist Åstrand
2d1c1063ef krb5_enctype_is_disabled is the same thing as krb5_enctype_valid, so 
use the later since its older and the api doesn't really need another
entry point


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14487 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-08 20:43:50 +00:00
Luke Howard
8dba6bea66 support for enctype negotiation 
(client sends EtypeList in Authenticator authz data)


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14453 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-05 02:34:53 +00:00
Love Hörnquist Åstrand
69b55bfa0b use private version of principalname 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14423 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-12-29 18:56:43 +00:00
Love Hörnquist Åstrand
91351971f7 add KRB5_LIB_FUNCTION to all exported functions 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13863 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-05-25 21:46:46 +00:00
Love Hörnquist Åstrand
1d8257ac92 (krb5_verify_ap_req2): clear the whole ticket, not just a pointer size of it 
From: Luke Howard <lukeh@padl.com>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13822 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-04-29 07:31:45 +00:00