oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
23,845 Commits 2 Branches 2 Tags
5bfb2c6578cf1d8a79853d83f567ea32b02b4e36
Commit Graph

1278 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
5ee06ffbff Make one verify context per client, this way we can add our own trust 
anchors for each client, so that self registed/special certificate are
allowed as trust anchors.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24987 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:02:44 +00:00
Love Hörnquist Åstrand
4205308775 Always generate session key 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24975 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:31 +00:00
Love Hörnquist Åstrand
f4f623e7d8 comment on what to add 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24942 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:36:58 +00:00
Love Hörnquist Åstrand
033c14110f simplify 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24941 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:36:47 +00:00
Love Hörnquist Åstrand
3aa4a14ef3 move generation of session key to preauth hook. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24940 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:36:36 +00:00
Love Hörnquist Åstrand
eb32e1f0ff add generation of session key here 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24939 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:36:26 +00:00
Love Hörnquist Åstrand
7665dbc0be openlog failed, exit 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24922 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-22 17:23:54 +00:00
Love Hörnquist Åstrand
9eedf9e4f3 don't set unused variables 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24873 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-27 03:34:06 +00:00
Love Hörnquist Åstrand
a4b0d218d9 make db NULL to make it not pass undefined value to hdb_print_entry(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24862 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-27 03:31:41 +00:00
Love Hörnquist Åstrand
143101e825 better printing of keyex mech 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24704 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-14 20:14:07 +00:00
Love Hörnquist Åstrand
985e9f898d mrore DH bits 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24697 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-14 20:12:55 +00:00
Love Hörnquist Åstrand
b86374c262 Implement ECDH in the KDC. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24695 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-14 20:12:36 +00:00
Love Hörnquist Åstrand
11876749d4 more bits for ECDH 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24688 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-14 04:17:05 +00:00
Love Hörnquist Åstrand
b370260466 Abstract out use of DH 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24687 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-14 04:16:54 +00:00
Love Hörnquist Åstrand
4aebfb78c0 Remove extra anonymous check. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24600 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:07:52 +00:00
Love Hörnquist Åstrand
3bea35ccc5 Disable anonymous code. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24598 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:07:32 +00:00
Love Hörnquist Åstrand
c1e6b65501 use is_anonymous(), extra new argument to _krb5_pk_load_id() 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24593 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:06:42 +00:00
Love Hörnquist Åstrand
c8dfcede53 intern export is_anonymous() 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24592 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:06:32 +00:00
Love Hörnquist Åstrand
64748478da Move the check client/anonoymous logic to pkinit.c 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24578 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:04:08 +00:00
Love Hörnquist Åstrand
7f61137222 Use HX509_CMS_VS_ALLOW_ZERO_SIGNER for anonymous requests. 
Move the check client/anonoymous logic here

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24577 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:03:58 +00:00
Love Hörnquist Åstrand
cc20011567 deny non valid use of anonymous requests. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24574 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:03:27 +00:00
Love Hörnquist Åstrand
c1bfc5bd1d Only send etype-info{,2} for the enctype we selected. 
Process pkinit anon requests.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24569 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:02:34 +00:00
Love Hörnquist Åstrand
b744467bb7 Check windc access after check_flags. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24566 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:01:55 +00:00
Love Hörnquist Åstrand
6561b13ccb Verify flags after the user been required to prove its identity * with 
in a preauth mech, matches windows AD behavior.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24563 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-31 22:10:37 +00:00
Love Hörnquist Åstrand
065ff8fae9 collect enctype printing into one statement 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24560 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-31 21:07:13 +00:00
Love Hörnquist Åstrand
9ec7eb49c4 force submodules to claim the package 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24531 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:30:59 +00:00
Love Hörnquist Åstrand
2ba9e9214c force submodules to claim the package 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24530 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:30:42 +00:00
Love Hörnquist Åstrand
5ca7ee453e drop name 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24529 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:30:25 +00:00
Love Hörnquist Åstrand
ab94b8cc72 drop name 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24528 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:30:02 +00:00
Love Hörnquist Åstrand
8d3b69871c fix length bits 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24527 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:19:48 +00:00
Love Hörnquist Åstrand
c74df06f20 fix length bits 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24526 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:19:27 +00:00
Love Hörnquist Åstrand
2437f18d3b add krb5_kdc_service 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24492 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:08:35 +00:00
Love Hörnquist Åstrand
66a2335696 wrap with krb4 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24491 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:08:21 +00:00
Love Hörnquist Åstrand
0c7bd19591 split into probe functions 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24489 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:07:52 +00:00
Love Hörnquist Åstrand
a3a2568e95 wrap with krb4 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24488 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-26 01:07:36 +00:00
Love Hörnquist Åstrand
2c12867d3e use struct 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24485 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 20:50:24 +00:00
Love Hörnquist Åstrand
89edf1be0e make digest, kx509 and krb4 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24484 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 20:50:15 +00:00
Love Hörnquist Åstrand
905c0d6bc6 compile errors 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24444 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:45:08 +00:00
Love Hörnquist Åstrand
489710f0ce s/KRB5SignedPathPrincipals/Principals/ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24439 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:44:17 +00:00
Love Hörnquist Åstrand
44e0556a12 make compie 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24423 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:41:38 +00:00
Love Hörnquist Åstrand
415e779f94 make digest and kx509 optional 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24420 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:41:09 +00:00
Love Hörnquist Åstrand
37adb33d31 make digest and kx509 optional, wrap detach 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24419 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:41:00 +00:00
Love Hörnquist Åstrand
808af9fc06 make digest and kx509 optional 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24414 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:40:14 +00:00
Love Hörnquist Åstrand
27ee616b53 wrap detach 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24413 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:40:04 +00:00
Love Hörnquist Åstrand
62f1b2e2dd wrap detach 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24412 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:39:55 +00:00
Love Hörnquist Åstrand
f8e4039ea3 make digest and kx509 optional 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24409 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:39:26 +00:00
Love Hörnquist Åstrand
973386c9ca make digest and kx509 optional 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24408 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:39:16 +00:00
Love Hörnquist Åstrand
6d2fc59777 - Add switch to select friendly_name of the certificate. 
- Use HX509_CMS_VS_ALLOW_DATA_OID_MISMATCH some CMS implementestions get the oid
wrong when they do evelopeddata.
- Use HX509_CMS_EV_NO_KU_CHECK since some clients send certs that are
not enveloped certs.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24196 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-15 04:31:32 +00:00
Love Hörnquist Åstrand
0c4d8d3a16 Add switch to select friendly_name of the certificate. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24195 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-15 04:31:22 +00:00
Love Hörnquist Åstrand
f4aeb0d5cf better error message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24194 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-15 04:31:12 +00:00