Commit Graph

891 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
70a00b7fab Only send KRB_ERROR token when there is clock skew, limits when we
send KRB-ERROR for non-MUTUAL tokens.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23541 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-16 22:59:26 +00:00
Love Hörnquist Åstrand
55aa5f1680 provide slightly better error codes
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23539 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-16 22:58:59 +00:00
Love Hörnquist Åstrand
cd784ac2dc provide slightly better error codes
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23538 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-16 22:58:49 +00:00
Love Hörnquist Åstrand
84199f34d1 provide slightly better error codes
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23537 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-16 22:58:41 +00:00
Love Hörnquist Åstrand
b3c213ae68 provide slightly better error codes
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23536 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-16 22:58:33 +00:00
Love Hörnquist Åstrand
f2a2070e19 make acquire_initiator_cred work again
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23534 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-16 22:58:12 +00:00
Love Hörnquist Åstrand
a48756092c If there is a initiator subkey, copy that to acceptor subkey to match
windows behavior. From Metze.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23528 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-14 23:29:40 +00:00
Love Hörnquist Åstrand
3b3ffff06d Only strip DELEG_FLAG if there is a realm setting, simplify the
GSS_C_DELEG_POLICY_FLAG handling.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23527 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-14 23:29:29 +00:00
Love Hörnquist Åstrand
9407642396 catch error
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23513 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-11 10:01:07 +00:00
Love Hörnquist Åstrand
78b0cb1d12 remove unread assignment
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23510 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-11 10:00:52 +00:00
Love Hörnquist Åstrand
fe4424b80e check right error variable.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23503 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-11 10:00:15 +00:00
Love Hörnquist Åstrand
df987a3b03 Catch store failure.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23492 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-11 09:58:56 +00:00
Love Hörnquist Åstrand
c69717db61 If we used GSS_C_DELEG_POLICY_FLAG, trust KDC, still trust realm configuration.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23481 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-08-11 09:57:56 +00:00
Love Hörnquist Åstrand
6fcc601db9 update (c)
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23435 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 20:49:35 +00:00
Love Hörnquist Åstrand
f9dc9da0a9 No reply in non-MUTUAL mode, but we don't know that its non-MUTUAL
mode yet, thats inside the 8003 checksum.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23433 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 18:44:26 +00:00
Love Hörnquist Åstrand
d847a7a67f Reset minor_status to 0.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23431 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 18:41:36 +00:00
Love Hörnquist Åstrand
9ca267f328 Always return GSS_S_CONTINUE_NEEDED, pointed out from Metze.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23430 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 18:41:16 +00:00
Love Hörnquist Åstrand
e0168633ea Break on failure
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23422 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 18:38:29 +00:00
Love Hörnquist Åstrand
39fe446983 Support parsing KRB-ERROR passed back from windows server when the time is out of sync, modify krb5_cc_[sg]et_config interface to handle principals too, add tests for this
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23420 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 18:37:48 +00:00
Love Hörnquist Åstrand
d4d7d06749 realm-config > 0
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23404 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 18:30:35 +00:00
Love Hörnquist Åstrand
c2442955f0 Check for realm-config in the ccache configuration, and use that.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23400 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-26 18:28:59 +00:00
Love Hörnquist Åstrand
1ef0828640 Match the orignal patch I got from metze, seems that DCE-STYLE is even
more weirer then what I though when I merged the patch.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23388 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-25 09:07:49 +00:00
Love Hörnquist Åstrand
eec537e94b restore flags after mk_rep is done. Prompted by comments from metze
and abartlet.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23387 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-07-25 08:23:32 +00:00
Love Hörnquist Åstrand
aff206f494 fix gss_krb5_cred_no_ci_flags_x_oid_desc variable name
From Stefan Metzmacher

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23331 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-06-27 12:01:48 +00:00
Love Hörnquist Åstrand
aad8c2b04d krb5: just don't force, but allow the flags when GSS_CF_NO_CI_FLAGS is given
From Stefan Metzmacher

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23330 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-06-27 12:01:23 +00:00
Love Hörnquist Åstrand
7fcd266fdd use krb5_set_error_message
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23316 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-06-23 04:32:32 +00:00
Love Hörnquist Åstrand
9972ce7b46 Don't add asn1 wrapping to token when using DCE_STYLE.
Patch from Stefan Metze.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23255 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-06-03 05:29:21 +00:00
Love Hörnquist Åstrand
81d68d4ee2 use DES_set_key_unchecked()
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23112 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-04-27 18:51:26 +00:00
Love Hörnquist Åstrand
795ee939ea Add declspec for Windows
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23025 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-04-17 10:01:57 +00:00
Love Hörnquist Åstrand
ab06e765d6 Use tmp to read ac->flags value to avoid warning.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22997 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-04-15 19:36:25 +00:00
Love Hörnquist Åstrand
2d405842ad (init_auth): use right variable to detect if we want to free or not.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22671 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-03-09 23:57:54 +00:00
Love Hörnquist Åstrand
27a3ca100e Add flag to not add gss-api INT|CONF to the negotiation
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22655 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-02-26 12:40:35 +00:00
Love Hörnquist Åstrand
088ad9f97d (acquire_initiator_cred): handle the credential cache better, use
destroy/close when appriate and for all cases. Thanks to Michael Allen
for point out the memory-leak that I also fixed.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22596 ec53bebd-3082-4978-b11e-865c3cabbd6b
2008-02-18 18:05:55 +00:00
Love Hörnquist Åstrand
e53ec599a7 global krb5_context no longer used.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22128 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-12-04 00:56:55 +00:00
Love Hörnquist Åstrand
bf772f42e4 (acquire_acceptor_cred): Check if there is at least one entry in the
keytab before declaring it as an useful keytab.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22124 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-12-04 00:03:52 +00:00
Love Hörnquist Åstrand
5fed824f37 its vs it\'s etc. From Bjorn Sandell
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22071 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-11-14 20:04:50 +00:00
Love Hörnquist Åstrand
717464b9fa (acquire_acceptor_cred): don't claim everything is well on failure.
From Phil Fisher.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21221 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-06-20 08:42:10 +00:00
Love Hörnquist Åstrand
3a5f005244 (_gsskrb5_pseudo_random): add missing break.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21129 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-06-18 20:28:44 +00:00
Love Hörnquist Åstrand
c0661b67f2 Set *minor_status unconditionallty, its done later anyway.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21128 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-06-18 20:26:50 +00:00
Love Hörnquist Åstrand
a8699b8454 Use KRB5_PRINCIPAL_UNPARSE_DISPLAY, this is not ment for machine consumption.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21077 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-06-12 22:42:56 +00:00
Love Hörnquist Åstrand
cc4333b758 remove cvs ignore files
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21026 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-06-09 03:09:59 +00:00
Love Hörnquist Åstrand
786db415e8 Give an minor_status argument to gss_release_oid_set.
From Rafa? Malinowski


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20753 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-05-31 22:50:06 +00:00
Love Hörnquist Åstrand
ee246ab9ac Use gss oid_set functions from mechglue
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20688 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-05-17 18:44:31 +00:00
Love Hörnquist Åstrand
99df08ed7e switched MIN to min to make compile on solaris.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20679 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-05-14 03:12:05 +00:00
Love Hörnquist Åstrand
ad2854bcfc Fill in all of the variables if they are passed in. Pointed out by Phil Fisher.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20634 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-05-09 15:33:01 +00:00
Love Hörnquist Åstrand
54ca9c0da6 Fix copy and paste error, bug spotted by from Phil Fisher.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20629 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-05-08 14:01:46 +00:00
Love Hörnquist Åstrand
98b5a48e90 reimplement
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20617 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-05-08 12:10:53 +00:00
Love Hörnquist Åstrand
ccada1f55a add lib/gssapi/krb5/external.c
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20386 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-04-18 08:52:08 +00:00
Love Hörnquist Åstrand
9a9abce471 refactor code, implement GSS_KRB5_CCACHE_NAME_X
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20384 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-04-18 08:51:06 +00:00
Love Hörnquist Åstrand
031692fe75 Free list of limit enctypes if there is one.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20327 ec53bebd-3082-4978-b11e-865c3cabbd6b
2007-04-12 16:51:00 +00:00