oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
18,502 Commits 2 Branches 2 Tags
a6f5b0d0acd1fd399f901b6ea931ed3d20466607
Commit Graph

1002 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
c7d5dd6b32 Less verbose error message. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19304 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-10 01:12:00 +00:00
Love Hörnquist Åstrand
ed5e62f11c Return error codes on failure, improve error reporting. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19302 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-10 01:03:46 +00:00
Love Hörnquist Åstrand
e1bac0567e (_kdc_as_rep): add AD-INITAL-VERIFIED-CAS to the encrypted ticket 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19262 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 21:24:10 +00:00
Love Hörnquist Åstrand
8300ee6ee2 (_kdc_add_inital_verified_cas): new function, adds an empty (for now) 
AD_INITIAL_VERIFIED_CAS to tell the clients that we vouches for the CA.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19261 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 21:21:11 +00:00
Love Hörnquist Åstrand
9fed7e931e (_kdc_tkt_add_if_relevant_ad): use _kdc_tkt_add_if_relevant_ad to add the SignedPath. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19260 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 21:16:03 +00:00
Love Hörnquist Åstrand
eb2670591c (_kdc_tkt_add_if_relevant_ad): new function. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19259 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 21:15:20 +00:00
Love Hörnquist Åstrand
85bcc19262 (_kdc_pk_rd_padata): leak less memory for ExternalPrincipalIdentifiers 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19250 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 13:10:21 +00:00
Love Hörnquist Åstrand
24ce3844d0 update (c) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19248 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 12:31:09 +00:00
Love Hörnquist Åstrand
a36abf458c Remove unused function. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19247 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 12:25:47 +00:00
Love Hörnquist Åstrand
528e4e53e7 Parse and use PA-PK-AS-REQ.trustedCertifiers 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19244 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 12:21:02 +00:00
Love Hörnquist Åstrand
65d743807c Add comment that the anchors in the signed data really should be the 
trust anchors of the client.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19241 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 10:42:41 +00:00
Love Hörnquist Åstrand
487bcca4e2 Use strcspn to remove \n from fgets result. Prompted by change by Ray 
Lai of OpenBSD via Björn Sandell.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19213 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-04 23:36:36 +00:00
Love Hörnquist Åstrand
c264018278 Add LIB_pkinit to pacify AIX 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19188 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-29 07:39:58 +00:00
Love Hörnquist Åstrand
5b304e5f20 Need better code in the DH parameter rejection case, add comment to 
that effect.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19165 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-28 03:41:55 +00:00
Love Hörnquist Åstrand
772ed07a25 Reply KRB5KRB_ERR_RESPONSE_TOO_BIG for too large packets when using 
datagram based transports.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19163 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-27 14:17:58 +00:00
Love Hörnquist Åstrand
6ff3e7477d Pass down datagram_reply to _kdc_tgs_rep. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19162 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-27 14:16:09 +00:00
Love Hörnquist Åstrand
480aff7f9b (_kdc_pk_rd_padata): Pick up supportedCMSTypes and pass in into 
hx509_cms_create_signed_1 via hx509_peer_info blob.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19125 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-26 16:38:51 +00:00
Love Hörnquist Åstrand
ddfe47e5e1 Update hx509_cms_create_signed_1. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19120 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-26 15:50:48 +00:00
Love Hörnquist Åstrand
c4cd047939 Make all pkinit options prefixed with pkinit_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19089 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-21 19:57:33 +00:00
Love Hörnquist Åstrand
b9624a871d Use KRB5_KU_OTHER_CKSUM for the impersonate checksum. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19081 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-21 05:14:43 +00:00
Love Hörnquist Åstrand
ece5f9603e Make krb5_get_init_creds_opt_free take a context argument. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19078 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-20 18:12:41 +00:00
Love Hörnquist Åstrand
8466eac79d revert the enable-pkinit change, and make it consistant with all other 
other enable- options


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19075 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-19 04:16:49 +00:00
Love Hörnquist Åstrand
5b7701514e Make all pkinit options prefixed with pkinit_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19069 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-17 22:27:01 +00:00
Love Hörnquist Åstrand
61623b636c Make app pkinit options prefixed with pkinit_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19068 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-17 22:20:25 +00:00
Love Hörnquist Åstrand
204ec47405 (_kdc_pk_check_client): drop client_princ as an argument 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18984 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-10 03:37:43 +00:00
Love Hörnquist Åstrand
21ef9de7e6 (_kdc_as_rep): drop client_princ from _kdc_pk_check_client since its 
not valid in canonicalize case


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18983 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-10 03:36:32 +00:00
Love Hörnquist Åstrand
e6e22c2bbd Remove support dumping to a kerberos 4 database. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18957 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-08 18:48:36 +00:00
Love Hörnquist Åstrand
9956ae0200 Catch error string from hx509_cms_verify_signed. 
Check for id-pKKdcEkuOID and warn if its not there.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18933 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-07 17:24:57 +00:00
Love Hörnquist Åstrand
6cf72f998b (_kdc_as_rep): More verbose time skew logging. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18908 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-04 17:05:28 +00:00
Love Hörnquist Åstrand
896bc81f54 Default to always print subject dn for pk-init authorization. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18874 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-24 17:51:33 +00:00
Love Hörnquist Åstrand
0a3bd1b7b8 Try to not leak memory. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18845 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-22 20:13:52 +00:00
Love Hörnquist Åstrand
87500b6c61 (check_KRB5SignedPath): free KRB5SignedPath on successful completion 
too, not just the error cases.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18827 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-22 15:54:37 +00:00
Love Hörnquist Åstrand
826f6e75e3 ignore kdc-protos.h and kdc-private.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18710 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-20 20:42:43 +00:00
Love Hörnquist Åstrand
1b9fae5253 more files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18653 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-20 15:52:20 +00:00
Love Hörnquist Åstrand
a54f56a729 remove stale comment 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18489 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-17 02:22:17 +00:00
Love Hörnquist Åstrand
cf5ac5cacc Prefix asn1 primitives with der_. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18488 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-17 02:16:29 +00:00
Love Hörnquist Åstrand
69883abf62 Prefix der primitives with der_. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18460 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-14 10:16:45 +00:00
Love Hörnquist Åstrand
ca35d60f1e (pk_mk_pa_reply_enckey): add missing break. From Olga Kornievskaia. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18427 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-12 20:00:25 +00:00
Love Hörnquist Åstrand
fb5806c7f5 document max-kdc-datagram-reply-length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18419 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-12 10:05:57 +00:00
Love Hörnquist Åstrand
247cda7f2f (loop): Log that the kdc have started. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18392 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-10 10:13:36 +00:00
Love Hörnquist Åstrand
3128010cc2 (do_request): tell krb5_kdc_process_request if its a datagram reply or not 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18386 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:41:01 +00:00
Love Hörnquist Åstrand
35cbc4ce07 Reply KRB5KRB_ERR_RESPONSE_TOO_BIG error if its a datagram reply and 
the datagram reply length limit is reached.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18385 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:38:59 +00:00
Love Hörnquist Åstrand
6a5f157cb9 Rename krb5_kdc_process_generic_request to krb5_kdc_process_request 
Add datagram_reply argument.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18384 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:37:39 +00:00
Love Hörnquist Åstrand
3f3792b7a7 check for [kdc]max-kdc-datagram-reply-length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18383 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:35:36 +00:00
Love Hörnquist Åstrand
6e093638af (krb5_kdc_config): Add max_datagram_reply_length. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18382 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:34:07 +00:00
Love Hörnquist Åstrand
8b981cc040 (tgs_parse_request): set cusec, not csec from auth->cusec. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18366 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 06:51:57 +00:00
Love Hörnquist Åstrand
562c2aced2 Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18349 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-08 13:43:52 +00:00
Love Hörnquist Åstrand
aa75a633ee (handle_vanilla_tcp): shorten length when we shorten the buffer, this 
matter im the PK-INIT encKey case where a checksum is done over the
whole packet. Reported by Olga Kornievskaia


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18345 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-08 09:01:36 +00:00
Love Hörnquist Åstrand
ddf7f8db2a Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18273 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-07 07:03:13 +00:00
Love Hörnquist Åstrand
c7b54c3372 Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18270 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-06 17:06:30 +00:00