oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
21,596 Commits 2 Branches 2 Tags
68c7f7560e86635dfad15f85fd64c6670b1e30b6
Commit Graph

1176 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
8888b88979 kdc: Provide extended error information in AS-REP error replies. 
This change utilizes the addition of the e_data parameter to the
   windc_plugin in the heimdal code to pass extended information back
   to the client.  The extended information is provided in an e-data
   block as part of the kerberos error message, and allows the client
   to determine which specific error condition occurred.

From Andrew Kroeger and Andrew Bartlet


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22693 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-19 08:57:49 +00:00
Love Hörnquist Åstrand
6541305988 Adapt to hx509_env changes. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22686 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-14 21:29:37 +00:00
Love Hörnquist Åstrand
d2387e033f drop CHECK_SYMBOLS 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22489 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-21 11:49:06 +00:00
Love Hörnquist Åstrand
9a0cc41169 Update link. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22434 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-01-14 09:21:37 +00:00
Love Hörnquist Åstrand
8eafb063b6 Log probe message, add NTLM_TARGET_DOMAIN to the type2 message. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22374 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-28 18:36:52 +00:00
Love Hörnquist Åstrand
577565901a Use hdb_db_dir(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22254 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-09 06:01:05 +00:00
Love Hörnquist Åstrand
7499adde08 Use hdb_db_dir(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22248 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 23:52:12 +00:00
Love Hörnquist Åstrand
0b448d3e3d add KDC_LOG_FILE 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22247 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 23:49:41 +00:00
Love Hörnquist Åstrand
4ae3998346 Use hdb_default_db(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22245 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 23:48:52 +00:00
Love Hörnquist Åstrand
c89e9af8ec Use hdb_db_dir(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22244 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 23:47:42 +00:00
Love Hörnquist Åstrand
71ec989edb Adapt to hx509 changes, use hdb_db_dir(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22243 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 23:39:30 +00:00
Love Hörnquist Åstrand
0db626f9e3 Implement supportedMechs request. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22151 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-04 19:58:55 +00:00
Love Hörnquist Åstrand
5fed824f37 its vs it\'s etc. From Bjorn Sandell 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22071 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-11-14 20:04:50 +00:00
Love Hörnquist Åstrand
be8c8799d8 Should pass different key usage constants depending on whether or not 
optional sub-session key was passed by the client for the check of
authorization data. The constant is used to derive "specific key" and
its values are specified in 7.5.1 of RFC4120.

Patch from Andy Polyakov.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22068 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-11-14 19:56:15 +00:00
Love Hörnquist Åstrand
86e58a1b60 Don't send auth data in referrals, microsoft clients have started to 
not like that. Thanks to Andy Polyakov for excellent research.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22066 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-11-14 19:49:24 +00:00
Love Hörnquist Åstrand
6f7200b830 Adding same enctype is enough one time. From Andy Polyakov and Bjorn Sandell. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22016 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-10-24 20:41:20 +00:00
Love Hörnquist Åstrand
8b335a5c13 (get_pa_etype_info2): more paranoia, avoid sending warning about pruned etypes. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21974 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-10-18 19:45:03 +00:00
Love Hörnquist Åstrand
6a5e6b676a (older_enctype): old windows enctypes (arcfour based) "old", this to support windows 2000 clients (unjoined to a domain). From Andy Polyakov. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21964 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-10-18 18:23:22 +00:00
Love Hörnquist Åstrand
4808b585af More prettier printing of enctype, from KAMADA Ken'ichi. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21949 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-10-04 18:49:27 +00:00
Love Hörnquist Åstrand
aca3c91fab Catch KRB5_PROG_ATYPE_NOSUPP from krb5_addr2sockaddr and igore thte 
test is that case.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21945 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-10-03 21:52:24 +00:00
Love Hörnquist Åstrand
8d40c2994b check return value of alloc functions, from Charles Longeau 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21745 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-31 16:11:25 +00:00
Love Hörnquist Åstrand
1cab519af1 Don't print realm, its probably NULL anyway. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21675 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-22 11:51:06 +00:00
Love Hörnquist Åstrand
483558eeff Don't ovewrite the error code, from Peter Meinecke. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21654 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-21 17:30:18 +00:00
Love Hörnquist Åstrand
9bb34fefc3 Use unsigned char * as argument to MD5_Update to please OpenSSL and gcc. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21607 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-17 07:04:52 +00:00
Love Hörnquist Åstrand
73ba3c2493 Use unsigned char * as argument to MD5_Update to please OpenSSL and gcc. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21606 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-17 07:03:25 +00:00
Love Hörnquist Åstrand
26df780b8c Print acl file too. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21579 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-16 08:34:35 +00:00
Love Hörnquist Åstrand
ed5760cbdf Error codes are just fine, remove XXX now. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21577 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-16 08:14:06 +00:00
Love Hörnquist Åstrand
03dc69b9c2 switch to ET errors. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21574 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-16 07:44:18 +00:00
Love Hörnquist Åstrand
525a60ea59 Java 1.6 expects the name to be the same type, lets allow that 
uncomplicated name-types.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21529 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-13 12:37:14 +00:00
Love Hörnquist Åstrand
45637f2bcc Don't send newer enctypes in ETYPE-INFO. 
(get_pa_etype_info2): return the enctypes as sorted in the database


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21496 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-11 09:20:21 +00:00
Love Hörnquist Åstrand
a9ccb1a578 New library version. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21429 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-10 12:36:43 +00:00
Love Hörnquist Åstrand
59f03abf38 Improve the default salt detection to avoid returning v4 password 
salting to java that doesn't look at the returning padata for salting.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21411 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-04 20:13:29 +00:00
Love Hörnquist Åstrand
007d16660b Split out krb5_kdc_set_dbinfo, From Andrew Bartlett 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21405 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-04 10:35:45 +00:00
Love Hörnquist Åstrand
27425a5654 Try harder to provide better error message for digest messages. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21398 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-02 17:17:14 +00:00
Love Hörnquist Åstrand
cd291596a6 On success, print username, not ip-adress. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21389 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-28 09:03:03 +00:00
Love Hörnquist Åstrand
36bcc8529e Rename require_binding to win2k_require_binding to match client 
configuration.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21296 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:49:11 +00:00
Love Hörnquist Åstrand
ea8a0d2891 Add [kdc]pkinit_require_binding option. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21291 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:14:41 +00:00
Love Hörnquist Åstrand
b64da39b5f (pk_mk_pa_reply_enckey): only allow non-bound reply if its not required. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21290 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:13:23 +00:00
Love Hörnquist Åstrand
cd83aef979 rename pkinit_princ_in_cert and add pkinit_require_binding 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21288 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:09:55 +00:00
Love Hörnquist Åstrand
ced5a6d55f rename pkinit_princ_in_cert and add pkinit_require_binding 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21287 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:09:03 +00:00
Love Hörnquist Åstrand
c2da08186b rename pkinit_princ_in_cert 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21286 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-25 14:08:34 +00:00
Love Hörnquist Åstrand
4ad305a90c Drop unused variable. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21262 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-21 15:18:37 +00:00
Love Hörnquist Åstrand
6c4ad61bd4 disable anonyous tgs requests 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21260 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-21 14:48:42 +00:00
Love Hörnquist Åstrand
85acea1b76 Don't check PAC on cross realm for now. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21258 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-21 14:11:01 +00:00
Love Hörnquist Åstrand
a0320981ed Return an error message instead of dropping the packet for more 
failure cases.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21241 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-20 11:30:19 +00:00
Love Hörnquist Åstrand
4b3ea33a6a Factor out fetching of password and move it to the code that uses 
it. This code would not hurt by factoring out some more code...


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21181 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-19 20:52:29 +00:00
Love Hörnquist Åstrand
dd6d82336b Remove extra \n. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21166 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-19 00:05:50 +00:00
Love Hörnquist Åstrand
50f2521922 Remove printing of ntlmv2 hash, was running wrong version of the kdc. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21114 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 13:17:23 +00:00
Love Hörnquist Åstrand
2ee2c22b2e More logging for ntlm v2 digest hash mismatch case. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21112 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 12:59:12 +00:00
Love Hörnquist Åstrand
c561d08c04 export get_dbinfo as krb5_kdc_set_dbinfo and call from users. This to allows libkdc users to to specify their own databases 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21110 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 10:52:20 +00:00