oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
18,502 Commits 2 Branches 2 Tags
a6f5b0d0acd1fd399f901b6ea931ed3d20466607
Commit Graph

227 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
e1bac0567e (_kdc_as_rep): add AD-INITAL-VERIFIED-CAS to the encrypted ticket 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19262 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 21:24:10 +00:00
Love Hörnquist Åstrand
eb2670591c (_kdc_tkt_add_if_relevant_ad): new function. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19259 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-06 21:15:20 +00:00
Love Hörnquist Åstrand
21ef9de7e6 (_kdc_as_rep): drop client_princ from _kdc_pk_check_client since its 
not valid in canonicalize case


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18983 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-10 03:36:32 +00:00
Love Hörnquist Åstrand
6cf72f998b (_kdc_as_rep): More verbose time skew logging. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18908 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-04 17:05:28 +00:00
Love Hörnquist Åstrand
cf5ac5cacc Prefix asn1 primitives with der_. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18488 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-17 02:16:29 +00:00
Love Hörnquist Åstrand
35cbc4ce07 Reply KRB5KRB_ERR_RESPONSE_TOO_BIG error if its a datagram reply and 
the datagram reply length limit is reached.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18385 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:38:59 +00:00
Love Hörnquist Åstrand
ddf7f8db2a Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18273 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-07 07:03:13 +00:00
Love Hörnquist Åstrand
ce1b1b08af Signing outgoing tickets. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18075 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-11 13:39:48 +00:00
Love Hörnquist Åstrand
687cb26c9e Remove _kdc_find_etype(), its no longer used. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17934 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 11:52:29 +00:00
Love Hörnquist Åstrand
c97d034ed3 Handle session key etype separately from the tgt etype, now the krbtgt 
can be a aes-only key without the need to support not-as-good etypes
for the krbtgt.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17905 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:33:09 +00:00
Love Hörnquist Åstrand
599d3cf216 Change _kdc_db_fetch() to return the database pointer too if needed by 
the consumer.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17904 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-23 11:45:16 +00:00
Love Hörnquist Åstrand
0f10ba4f2b (_kdc_as_rep): if kdc_time + config->kdc_warn_pwexpire is past pw_end, 
add expiration message. From Bernard Antoine.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17643 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-12 21:42:01 +00:00
Love Hörnquist Åstrand
12b46a7841 indent. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17641 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-12 21:31:23 +00:00
Love Hörnquist Åstrand
372b23bf06 constify 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17634 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-07 06:03:34 +00:00
Love Hörnquist Åstrand
379d35fc8f split out krb5 tgs req to make it easier to reorganize the code. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17598 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-01 11:15:20 +00:00
Love Hörnquist Åstrand
1d2a17eca0 (tgs_rep2): check for memory alloc failure 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17597 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-01 10:55:28 +00:00
Love Hörnquist Åstrand
76ee5cb311 (tgs_rep2): check that the client exists in the kerberos database if 
its local request.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17317 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-27 12:01:09 +00:00
Love Hörnquist Åstrand
5c9982831b pass down HDB_F_GET_ flags as appropriate 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17316 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-27 11:33:21 +00:00
Love Hörnquist Åstrand
f591c22c1f Now that find_keys speaks for it self, remove extra logging. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17265 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-26 15:27:25 +00:00
Love Hörnquist Åstrand
f9d85a2590 (find_keys): add client_name and server_name argument and use them, 
and adapt callers.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17264 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-26 15:22:57 +00:00
Love Hörnquist Åstrand
2edcff9efa Catch the case where the client sends no encryption types or no pa-types. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17232 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-25 12:23:04 +00:00
Love Hörnquist Åstrand
b6fdc26556 (check_addresses): treat netbios as no addresses 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16949 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-02 01:54:38 +00:00
Love Hörnquist Åstrand
b3f8381a4d (_kdc_check_flags): make it take hdb_entry_ex to avoid ?:'s at callers 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16947 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-02 01:52:32 +00:00
Love Hörnquist Åstrand
905242765a (log_patype): Add case for KRB5_PADATA_PA_PK_OCSP_RESPONSE. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16844 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-27 22:54:50 +00:00
Love Hörnquist Åstrand
137d218e79 (log_patypes): log the patypes requested by the client 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16804 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-24 22:50:02 +00:00
Love Hörnquist Åstrand
5a7da8cf52 (tgs_make_reply): less const on hdb_entry_ex to make samba happy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16410 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-12-15 20:26:31 +00:00
Love Hörnquist Åstrand
40386c602d (tgs_rep2): also print the principal for which the enctype was missing 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16407 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-12-14 12:17:58 +00:00
Love Hörnquist Åstrand
83c3fb4698 Finish up transition from hdb_entry with hdb_entry_ex. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16401 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-12-13 19:10:44 +00:00
Love Hörnquist Åstrand
294b954cdd (tgs_make_reply): there are no such things a keytypes any more, just 
use enctypes.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16374 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-12-12 12:25:33 +00:00
Love Hörnquist Åstrand
1e5120ac02 (_kdc_as_rep): add comment when we send ETYPE-INFO and ETYPE-INFO2, 
from Andrew Bartlett


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16298 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-11-28 20:33:57 +00:00
Love Hörnquist Åstrand
b5204f4584 Print the time the principal expired, based on patch from Andrew Bartlett. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16287 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-11-08 03:32:25 +00:00
Love Hörnquist Åstrand
911c099056 Remove leftover pkinit-19 bits. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16212 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-10-21 17:48:30 +00:00
Love Hörnquist Åstrand
388b0ffca4 More verbose PK-INIT logging. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16099 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-09-25 15:23:21 +00:00
Love Hörnquist Åstrand
d0af14e4fe (make_etype_info2_entry): When its a afs3-salted key, use send the 
opaque, length 1 (with content set to 0x01) in ETYPE-INFO2-ENTRY.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16077 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-09-19 22:01:04 +00:00
Love Hörnquist Åstrand
74c8063ed4 (make_etype_info_entry): Dont send salttype at all, use KRB5-PADATA-AFS3-SALT 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16002 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-09-01 11:17:41 +00:00
Love Hörnquist Åstrand
37bd48c497 (log_timestamp): endtime, not endtype 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16001 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-31 06:16:45 +00:00
Love Hörnquist Åstrand
3f4ccfbc67 (fix_transited_encoding): Allow empty content of type 0 because that 
is was Microsoft enerates in their TGT.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15993 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-27 05:46:07 +00:00
Love Hörnquist Åstrand
fa2d2092a7 (_kdc_as_rep): Pass down the request buffer to _kdc_pk_mk_pa_reply. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15916 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-12 08:24:50 +00:00
Love Hörnquist Åstrand
e6cee493ed (_kdc_as_rep): preserve the error code in the ENC-TS case. 
From: Andrew Bartlett <abartlet@samba.org>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15861 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:34:36 +00:00
Love Hörnquist Åstrand
07e7b59fab (tgs_rep2): only needs to log "Failed to verify authenticator" once, 
its already done by tgs_check_authenticator().


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15860 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:25:40 +00:00
Love Hörnquist Åstrand
d63614824b Indent strings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15859 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:18:09 +00:00
Love Hörnquist Åstrand
ee163963c6 (log_timestamp): avoid shadow warnings 
From: Andrew Bartlett <abartlet@samba.org>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15858 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:14:25 +00:00
Love Hörnquist Åstrand
299df4981f (_kdc_as_rep): log what enctypes was using in ENC-TS preauth, both for 
failure and success.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15829 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-28 20:29:39 +00:00
Love Hörnquist Åstrand
7e5e3fbc97 indent printf strings 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15827 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-28 14:11:11 +00:00
Love Hörnquist Åstrand
9af7efed48 prefix pkinit symbols with _kdc 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15544 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-01 15:37:24 +00:00
Love Hörnquist Åstrand
de92125f9d adapt pkinit code to libkdc split 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15540 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-01 04:42:59 +00:00
Love Hörnquist Åstrand
7a3fc5e663 Don't pollute namespace, generate public headerfile 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15532 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-30 01:54:49 +00:00
Love Hörnquist Åstrand
7132a9b084 Merge in the libkdc/kdc configuration split from Andrew Bartlet <abartlet@samba.org> 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15529 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-30 01:03:35 +00:00
Love Hörnquist Åstrand
68af583951 Add logging of all timestamps in AS-REQ and TGS-REQ, for auditing 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15523 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-29 00:41:57 +00:00
Love Hörnquist Åstrand
532cfd87e6 (as_req): print the supported encryption types so its possible to know 
what clients to update.
(find_rpath): return const char * and update callers.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15522 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-28 23:06:13 +00:00