oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
12,789 Commits 2 Branches 2 Tags
5e5a56079afc2ecfda3b011d4524c33a96783e98
Commit Graph

2304 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
52330937a3 krb5_free_ticket free the whole ticket 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13101 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-09 00:48:40 +00:00
Love Hörnquist Åstrand
c8d290d46d add krb5_padata_add 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13098 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 09:36:35 +00:00
Love Hörnquist Åstrand
5e15b4e031 krb5_context_data.pkinit_win2k_compatible 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13097 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 09:34:54 +00:00
Love Hörnquist Åstrand
8260bb511d add pkinit.c 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13096 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 09:32:47 +00:00
Love Hörnquist Åstrand
61cd5b101e add support for pkinit 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13093 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 08:52:07 +00:00
Love Hörnquist Åstrand
bb6a4a2b80 rename krb5_pk_init_openssl_ctx to krb5_pk_init_ctx 
fix win2k error handling


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13092 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 08:49:02 +00:00
Love Hörnquist Åstrand
acc61addac make compile again 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13091 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 08:46:58 +00:00
Love Hörnquist Åstrand
f955c2a095 add the opaque krb5_pk_init_ctx to _krb5_get_init_creds_opt_private 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13090 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 08:42:03 +00:00
Love Hörnquist Åstrand
0c7a0277a1 PKINIT patch from Daniel Kouril and Petr Holub, I removed the 
dependency on valicert asn1 parser, remove smartcard and globus
support (for now). Work to be done on this: DH support, Globus
support, Smartcard support, windows support (MS implements -09 of the
draft), verify that it conforms the new draft


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13089 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 08:32:11 +00:00
Johan Danielsson
7448fcfe7c document capaths section 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13077 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-27 11:14:55 +00:00
Love Hörnquist Åstrand
731fab1b47 (krb5_domain_x500_encode): always zero out encoding to make sure it 
have a defined value on failure


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13066 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-22 06:04:35 +00:00
Love Hörnquist Åstrand
4cd19e3fe3 (krb5_domain_x500_encode): if num_realms == 0, set encoding and return 
(avoids malloc(0)), check return value for malloc


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13062 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 23:06:50 +00:00
Johan Danielsson
da0880581b [capaths] section 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13040 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 11:59:16 +00:00
Love Hörnquist Åstrand
b446b9833f (krb5_domain_x500_decode): set *num_realms to zero not num_realms 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13033 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 10:16:39 +00:00
Johan Danielsson
88e4f61f85 (krb5_decrypt_ticket): try to verify transited realms, unless the 
transited-policy-checked flag is set


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13026 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:43:30 +00:00
Johan Danielsson
df034198d5 (krb5_domain_x500_decode): handle zero length tr data; 
(krb5_check_transited): new function that does more useful stuff


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13025 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:41:27 +00:00
Johan Danielsson
e7a40f2d44 get capath info from [capaths] section 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13024 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:40:14 +00:00
Johan Danielsson
7bfff16231 krb5_princ_realm -> krb5_principal_get_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13023 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:38:53 +00:00
Johan Danielsson
744bd74233 krb5_princ_realm -> krb5_principal_get_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13022 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:14:02 +00:00
Johan Danielsson
8ad04cfa43 Sleep forever waiting for lock. Previous method doesn't work well with 
a large number of clients accessing the cache at the same time, and
there is no simple way to add a timeout to the lock.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13019 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-16 09:06:39 +00:00
Love Hörnquist Åstrand
002f25a217 print the error value krb5_init_context failed with 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13001 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-13 13:33:40 +00:00
Love Hörnquist Åstrand
c5bd98ca49 (krb5_config_parse_file_debug): punt if there is binding before a 
section declaration. Bug found by Arkadiusz Miskiewicz <arekm@pld-linux.org>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12999 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-13 13:20:46 +00:00
Johan Danielsson
41d0b9d1bd (erase_file): revert a change in previous; if the ccache is a symlink, 
kdestroy should remove it


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12995 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-13 13:03:12 +00:00
Johan Danielsson
14bfec3d54 implement locking 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12993 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-13 12:21:15 +00:00
Love Hörnquist Åstrand
0c7a5a4563 add some help function that is common between ENC_TS and SAM2 
free the etype{,2}-infos on failure
move the pa counter into krb5_get_init_creds_ctx


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12984 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-07 07:48:51 +00:00
Love Hörnquist Åstrand
911c773668 add flag --warn-mit-syntax that warns for mit syntax is used and just 
ignore the mit syntax when its used


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12969 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-06 19:27:35 +00:00
Love Hörnquist Åstrand
bae73d1a95 parse [kdc]use_2b and [gssapi] 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12968 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-06 19:15:04 +00:00
Love Hörnquist Åstrand
803a7c3db6 (_krb5_krb_dest_tkt): unlink v4 token 
(get_krb4_cc_name): move out from _krb5_krb_tf_setup
(_krb5_krb_tf_setup): adapt to allocated filename instead of static filename


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12958 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 12:03:03 +00:00
Love Hörnquist Åstrand
cbb6dc1b85 add _krb5_krb_dest_tkt and TKT_ROOT 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12957 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 12:01:47 +00:00
Love Hörnquist Åstrand
d5acb83777 (*) send PA_PAC_REQUEST when the user have requested either use PAC or 
not use PAC, if the option not set from the user, leave it up to the
kdc to decide.
(init_creds_loop): clear error string on success


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12956 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 11:53:48 +00:00
Love Hörnquist Åstrand
d341945ac0 add krb5_get_init_creds_opt_set_paq_request 
break out common part of extended opt functions to require_ext_opt


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12955 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 11:51:42 +00:00
Love Hörnquist Åstrand
989e429cda add enum krb5_get_init_creds_req_pac 
and use it in struct _krb5_get_init_creds_opt_private


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12954 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 11:50:32 +00:00
Love Hörnquist Åstrand
a358b88c42 document krb5_principal_{get,set}_type 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12950 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 04:58:00 +00:00
Love Hörnquist Åstrand
5e2f96156f add krb5_principal_set_type 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12949 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 04:52:06 +00:00
Love Hörnquist Åstrand
97d37d8057 (krb5_rd_req): always free keyblock since its alway used 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12947 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 00:39:21 +00:00
Love Hörnquist Åstrand
9aaf686b2a (setpw_send_request): free ap_req_data on failure 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12942 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-02 14:39:22 +00:00
Love Hörnquist Åstrand
2b7e870bf4 (init_cred_loop): handle KRB5KRB_ERR_RESPONSE_TOO_BIG and loop again, 
this time requesting LARGE_MSG from send to kdc, and if this is the
second time bail out; try to free memory


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12930 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-30 18:05:27 +00:00
Love Hörnquist Åstrand
bce36e1e1e (krb5_sendto_kdc_flags): new function, and then implement the order 
krb5_sendto_kdc* function with this function.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12929 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-30 17:39:53 +00:00
Love Hörnquist Åstrand
9f1541abe3 (krb5_krbhst_init_flags): new function, use it and adapt callers 
(krbhst_get_default_proto): new function, returns udp, or in case
large_msg was requested for the krb5_krbhst_data, use tcp.
(*): if the flag KD_LARGE_MSG was set on the krb5_krbhst_data, avoid
using udp, use krbhst_get_default_proto


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12928 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-30 17:38:18 +00:00
Love Hörnquist Åstrand
fb67a350b5 flags for krb5_krbhst_init_flags (and krb5_send_to_kdc_flags) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12927 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-30 17:33:50 +00:00
Love Hörnquist Åstrand
29f526b115 (krb5_rd_req): if we have a keyblock in auth context, use that 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12914 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-23 10:43:50 +00:00
Love Hörnquist Åstrand
d3c498eae5 use _krb5_get_init_creds_opt_copy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12897 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-21 16:51:13 +00:00
Love Hörnquist Åstrand
9578214707 don't export krb5_get_init_creds_opt_copy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12896 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-21 16:50:02 +00:00
Love Hörnquist Åstrand
b3ea5d4d2b add arcfour and aes as valid enctypes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12890 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-20 00:10:33 +00:00
Love Hörnquist Åstrand
ef91ed3046 (krb5_get_init_creds_opt_copy): add 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12877 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 22:37:59 +00:00
Love Hörnquist Åstrand
286019f6cd (krb5_rd_req): allow caller to pass in a key in the auth_context, they 
way processes that doesn't use the keytab can still pass in the key of
the service (matches behavior of MIT Kerberos).


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12875 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 22:22:57 +00:00
Love Hörnquist Åstrand
332e117688 (init_init_creds_ctx): make void since it doesn't return an error, 
update call sites
(krb5_get_init_creds_keytab): add out label again


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12874 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 22:20:50 +00:00
Love Hörnquist Åstrand
21554e0cbb collect all init_creds context into a structure so it can easier be 
passed around, also, while here, change nonce for every request


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12847 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 18:40:44 +00:00
Love Hörnquist Åstrand
70f79440e5 (init_as_req): don't realloc data before the loop, add_padata() will 
handle that itself


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12843 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 00:38:59 +00:00
Love Hörnquist Åstrand
a453cdbddc (add_addrs): don't increase addr->len until in contains interesting 
data, use right iteration counter when clearing the addresses


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12842 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 00:21:00 +00:00