oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
23,030 Commits 2 Branches 2 Tags
85de455dde7465d6558b1554ce45f3d524bf7192
Commit Graph

126 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
85de455dde support split processing of AS and add support for keytab/keyblock 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24174 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 05:12:30 +00:00
Love Hörnquist Åstrand
c8d75e3e34 use krb5_get_init_creds_opt_alloc 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24074 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:54:18 +00:00
Love Hörnquist Åstrand
136c41e4cf truncate the number so it will if in a signed 32bit integer, apples pkinit uses signed int32 for the pkinit nonce 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24053 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-11-29 19:34:23 +00:00
Love Hörnquist Åstrand
03babea1e3 switch to krb5_clear_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23911 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-10-14 02:55:39 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
200afe7d19 N_()ify 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23764 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-07 21:19:02 +00:00
Love Hörnquist Åstrand
7fcd266fdd use krb5_set_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23316 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-23 04:32:32 +00:00
Love Hörnquist Åstrand
da8b5d7a22 use krb5_set_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23285 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-23 03:27:07 +00:00
Love Hörnquist Åstrand
a197d33362 switch to krb5_set_password(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23275 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-23 03:25:18 +00:00
Love Hörnquist Åstrand
fbae90e671 Tell _krb5_extract_ticket that this is an AS-REQ. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22763 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-24 12:09:02 +00:00
Love Hörnquist Åstrand
fb540c9646 Move client referral checking to _krb5_extract_ticket(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22749 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-24 12:08:09 +00:00
Love Hörnquist Åstrand
0fd74cc5e4 remove lost bits from using krb5_principal_set_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22731 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-24 12:06:57 +00:00
Love Hörnquist Åstrand
3d935af61d use krb5_principal_set_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22727 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-03-24 12:06:42 +00:00
Love Hörnquist Åstrand
7cac139e10 (krb5_get_init_creds_password): init the creds_opt too. Reported by Hai Zaar. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21931 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-08-27 14:11:55 +00:00
Love Hörnquist Åstrand
2dd77ab1fc update (c) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21428 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-07-10 12:31:58 +00:00
Love Hörnquist Åstrand
2511fccfe3 Use krb5_sendto_context to talk to KDC. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21061 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-12 17:56:30 +00:00
Love Hörnquist Åstrand
4446053e7b use the new merged flags field. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20262 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-18 00:33:01 +00:00
Love Hörnquist Åstrand
a6b9228d3a (find_pa_data): if there is no list, there is no entry. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20255 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-17 11:30:00 +00:00
Love Hörnquist Åstrand
3d3e828726 Verify client referral data. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20244 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-17 00:08:04 +00:00
Love Hörnquist Åstrand
fbfd45f8e4 Use EXTRACT_TICKET_* flags, support canonicalize. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20228 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-02-16 03:33:25 +00:00
Love Hörnquist Åstrand
69c37b6cc7 Make sure we don't sent both ENC-TS and PK-INIT pa data, no need to 
expose our password protecting our PKCS12 key.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19776 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-09 10:44:59 +00:00
Love Hörnquist Åstrand
7bf56b0e3f (free_paid): free the krb5_data structure too. 
Bug report from Stefan Metzmacher.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19331 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-14 10:49:56 +00:00
Love Hörnquist Åstrand
7624883fb4 Make krb5_get_init_creds_opt_free take a context argument. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19080 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-20 18:41:57 +00:00
Love Hörnquist Åstrand
ece5f9603e Make krb5_get_init_creds_opt_free take a context argument. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19078 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-20 18:12:41 +00:00
Love Hörnquist Åstrand
b110e33a3f minimize layering and remove krb5_kdc_flags 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18202 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-02 12:00:59 +00:00
Love Hörnquist Åstrand
204118e4d1 Always use the kdc_flags in the right bit order. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18200 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-02 11:54:45 +00:00
Love Hörnquist Åstrand
88182a75ce (init_cred_loop): try to catch the error when we actually have an 
error to catch.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17995 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-04 13:46:45 +00:00
Love Hörnquist Åstrand
fe562592c6 Remove debug printfs. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17989 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-04 11:04:35 +00:00
Love Hörnquist Åstrand
03b6a76a85 use new addressless, convert pa-pac option to use the same tri-state 
option as the new addressless option.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17985 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-04 10:57:02 +00:00
Love Hörnquist Åstrand
a65edfb82d Save KRB-ERROR on error. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17672 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-22 02:40:25 +00:00
Love Hörnquist Åstrand
88a91a9441 (get_init_creds_common): drop cred argument, its unused 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17657 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-15 14:43:16 +00:00
Love Hörnquist Åstrand
4049e76902 make compile 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17199 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-24 08:49:08 +00:00
Love Hörnquist Åstrand
a49278a8b4 Pass down realm to _krb5_pk_rd_pa_reply 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17195 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-24 08:21:52 +00:00
Love Hörnquist Åstrand
fd1ea1cc54 (init_creds_init_as_req): in AS-REQ the cname must always be given, 
don't avoid that fact and remove a cname == NULL case. Plugs a memory
leak found by IBM checker.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16940 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-02 01:20:15 +00:00
Love Hörnquist Åstrand
0c29fd2ed1 (default_s2k_func): avoid exposing free-ed memory on error. Found by 
IBM checker.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16939 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-02 01:10:35 +00:00
Love Hörnquist Åstrand
e42d007ce9 Rename private to opt_private. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16169 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-10-12 12:45:27 +00:00
Love Hörnquist Åstrand
ffa6f55bd4 Prepare to pass down a krb5_krbhst_info into the pre-auth mechs 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16152 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-10-08 15:34:53 +00:00
Love Hörnquist Åstrand
d78bed5eaa Save the request buffer so that pre-auth mechanism that needs it can 
verify the reply.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15933 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-13 08:25:32 +00:00
Love Hörnquist Åstrand
7b778a173b (default_s2k_func): unconst password 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15464 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-17 04:15:20 +00:00
Love Hörnquist Åstrand
098ce70bd4 rename variable to avoid shadowing 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15390 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-15 02:57:09 +00:00
Love Hörnquist Åstrand
0ec6d0d363 (process_pa_data_to_md): add comment that the caller always free 
out_md; remove comment about memory, it doesn't happen.
(init_cred_loop): free ctx->as_req.padata when its reset (From Wynn
Wilkes <wwilkes@vintela.com>), move a comment close the the code


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15178 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-05-19 07:42:06 +00:00
Love Hörnquist Åstrand
9f219c721d Now that we fixed the signed-ness of nonce for windows, remove the 
code that removed the signed bit. Instead add comment that they still
need to be the same (Kerberos protocol nonce and pk-init nonce) for Windows.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15055 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-05-02 14:52:57 +00:00
Love Hörnquist Åstrand
a8f9738a23 if we are using PKINIT, strip of the highest bit to make windows 
PK-INIT happy. Also make the nonces the same, again for windows, they
are using pk-init-9.

XXX check if it isn't the that nonce is an unsigned variable so its
just a asn1 mismatch.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15043 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-30 16:24:00 +00:00
Love Hörnquist Åstrand
9dd70b312a (process_pa_data_to_key): also check for KRB5_PADATA_PK_AS_REP_19, 
From: Douglas Engert


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14757 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-07 20:15:18 +00:00
Luke Howard
4de42cbbbb add krb5_get_init_creds_keyblock (for now - subject to change) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14531 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-02-02 07:30:25 +00:00
Luke Howard
240da19de0 Allow NULL in_options to be passed to krb5_get_init_creds_password() 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14522 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-24 10:32:43 +00:00
Love Hörnquist Åstrand
69b55bfa0b use private version of principalname 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14423 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-12-29 18:56:43 +00:00
Love Hörnquist Åstrand
ef868c62a1 (change_password): handle old_options being NULL 
From Guenther Deschner on samba-technical.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14351 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-11-13 20:41:54 +00:00
Love Hörnquist Åstrand
993e8c9eea make krb5_get_init_creds_keytab work again 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14347 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-11-11 17:50:43 +00:00