oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
14,356 Commits 2 Branches 2 Tags
a8f9738a23192c4470ec8fd9ae9cee1799230af9
Commit Graph

83 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
a8f9738a23 if we are using PKINIT, strip of the highest bit to make windows 
PK-INIT happy. Also make the nonces the same, again for windows, they
are using pk-init-9.

XXX check if it isn't the that nonce is an unsigned variable so its
just a asn1 mismatch.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15043 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-30 16:24:00 +00:00
Love Hörnquist Åstrand
9dd70b312a (process_pa_data_to_key): also check for KRB5_PADATA_PK_AS_REP_19, 
From: Douglas Engert


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14757 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-07 20:15:18 +00:00
Luke Howard
4de42cbbbb add krb5_get_init_creds_keyblock (for now - subject to change) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14531 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-02-02 07:30:25 +00:00
Luke Howard
240da19de0 Allow NULL in_options to be passed to krb5_get_init_creds_password() 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14522 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-24 10:32:43 +00:00
Love Hörnquist Åstrand
69b55bfa0b use private version of principalname 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14423 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-12-29 18:56:43 +00:00
Love Hörnquist Åstrand
ef868c62a1 (change_password): handle old_options being NULL 
From Guenther Deschner on samba-technical.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14351 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-11-13 20:41:54 +00:00
Love Hörnquist Åstrand
993e8c9eea make krb5_get_init_creds_keytab work again 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14347 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-11-11 17:50:43 +00:00
Love Hörnquist Åstrand
fbd7b2787a fold init_init_creds_ctx into get_init_creds_common 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14338 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-11-09 16:10:57 +00:00
Love Hörnquist Åstrand
64482ff6ab (krb5_get_init_creds): kdc_reply can be set in case of failure too, 
free unconditionally on exit to avoid memory leak


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14179 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-08-30 23:28:10 +00:00
Love Hörnquist Åstrand
91351971f7 add KRB5_LIB_FUNCTION to all exported functions 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13863 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-05-25 21:46:46 +00:00
Johan Danielsson
26457b7135 replace krb5_free_creds_contents by krb5_free_cred_contents 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13790 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-04-25 19:25:35 +00:00
Love Hörnquist Åstrand
0161e447c4 make the pkinit nonce same os the plain nonce for now 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13763 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-04-24 15:17:32 +00:00
Love Hörnquist Åstrand
bfd4bb3a04 (pa_data_add_pac_request): don't increase md->len, krb5_padata_add 
already does that


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13654 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-03-30 15:54:12 +00:00
Love Hörnquist Åstrand
8696c13a7f (process_pa_data_to_key): spelling 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13388 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-02-19 12:41:19 +00:00
Love Hörnquist Åstrand
0d4320db0b (change_password): handle that printf("%.*s", 0, (void*)NULL); doesn't 
work on solaris


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13326 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-02-11 12:30:35 +00:00
Love Hörnquist Åstrand
1d9702acee try handle ts preauth better, still not good, but at least it work 
with older heimdal releases that doesn't send back
KRB5KDC_ERR_PREAUTH_REQUIRED when preauth was sent


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13226 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-12-17 20:44:37 +00:00
Love Hörnquist Åstrand
5c2a1917c0 (init_cred_loop): fix memory leak 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13134 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-23 21:17:52 +00:00
Love Hörnquist Åstrand
61cd5b101e add support for pkinit 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13093 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-08 08:52:07 +00:00
Johan Danielsson
744bd74233 krb5_princ_realm -> krb5_principal_get_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13022 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:14:02 +00:00
Love Hörnquist Åstrand
0c7a5a4563 add some help function that is common between ENC_TS and SAM2 
free the etype{,2}-infos on failure
move the pa counter into krb5_get_init_creds_ctx


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12984 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-07 07:48:51 +00:00
Love Hörnquist Åstrand
d5acb83777 (*) send PA_PAC_REQUEST when the user have requested either use PAC or 
not use PAC, if the option not set from the user, leave it up to the
kdc to decide.
(init_creds_loop): clear error string on success


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12956 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-03 11:53:48 +00:00
Love Hörnquist Åstrand
2b7e870bf4 (init_cred_loop): handle KRB5KRB_ERR_RESPONSE_TOO_BIG and loop again, 
this time requesting LARGE_MSG from send to kdc, and if this is the
second time bail out; try to free memory


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12930 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-30 18:05:27 +00:00
Love Hörnquist Åstrand
d3c498eae5 use _krb5_get_init_creds_opt_copy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12897 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-21 16:51:13 +00:00
Love Hörnquist Åstrand
332e117688 (init_init_creds_ctx): make void since it doesn't return an error, 
update call sites
(krb5_get_init_creds_keytab): add out label again


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12874 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 22:20:50 +00:00
Love Hörnquist Åstrand
21554e0cbb collect all init_creds context into a structure so it can easier be 
passed around, also, while here, change nonce for every request


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12847 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-18 18:40:44 +00:00
Love Hörnquist Åstrand
646ee1b761 break out the encrypt timestamp preauth to its function 
break out the pa_data_to_key_plain to its own function
make more variables const


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12766 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-04 05:30:48 +00:00
Love Hörnquist Åstrand
eb2c032414 (krb5_get_init_creds_password): handle password passed in though context 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12732 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-02 23:41:34 +00:00
Love Hörnquist Åstrand
aa3701f551 rewrite/implement krb5_get_init_creds_password with new preauth 
handing, still it can only work with krb5-pa-enc-timestamp for
preauth, but now it can handle etype-info2


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12727 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-02 23:17:08 +00:00
Love Hörnquist Åstrand
b73e0996b7 (c) year update 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11895 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-03-20 18:07:31 +00:00
Love Hörnquist Åstrand
0d70a9f211 (krb5_get_init_creds_password): if prompter is NULL, don't try to ask 
for a password to change. reported by Iain Moffat @ ufl.edu via Howard
Chu <hyc@highlandsun.com>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11888 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-03-20 17:15:43 +00:00
Johan Danielsson
6c6043ec44 (krb5_get_init_creds_password): const qualify 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10913 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-04-18 09:14:51 +00:00
Assar Westerlund
1c8fadc0af handle LR_PW_EXPTIME and LR_ACCT_EXPTIME in the same way 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10870 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-03-10 23:13:10 +00:00
Johan Danielsson
411a281c4a (krb5_get_init_creds_keytab): free key proc data 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10720 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-09-18 09:36:39 +00:00
Jacques A. Vidrine
9bcf79a769 We can't share the krb5_data structure with multiple prompts. This 
fixes password expiration in krb5_init_creds_password.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10666 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-09-05 17:40:03 +00:00
Johan Danielsson
6d909c2713 set renew-life to some sane value 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10202 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-06-29 16:47:01 +00:00
Assar Westerlund
ddf21c4e3b remove configuration reading that is now done in 
krb5_get_init_creds_opt_set_default_flags


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10006 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-27 23:54:29 +00:00
Assar Westerlund
d27aa3b62e add some krb5_{set,clear}_error_string 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9937 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-14 06:14:52 +00:00
Assar Westerlund
f89ac763ed update to new prompter, use prompter types and send two prompts at 
once when changning password


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9929 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-11 20:29:00 +00:00
Assar Westerlund
900bbe269a (get_init_creds_common): handle options == NULL. noted by 
<marc@mit.edu>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9808 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-04-25 00:48:10 +00:00
Assar Westerlund
b6785bddcc (change_password): reset forwardable and proxiable. copy 
preauthentication list correctly from supplied options


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8796 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-24 03:46:40 +00:00
Assar Westerlund
5d80214b41 (krb5_get_init_creds_password): `in_tkt_service' can be NULL 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8140 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-04-08 21:15:45 +00:00
Assar Westerlund
cb34056dd0 fix typo 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8092 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-04-02 21:43:18 +00:00
Assar Westerlund
33b253a30a (print_expire): do not assume anything about the size of time_t, 
i.e. make it 64-bit happy


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8071 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-03-27 00:30:00 +00:00
Assar Westerlund
fa6ac6f397 (krb5_get_init_creds_password): evil hack to avoid recursion 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8029 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-03-10 19:32:47 +00:00
Assar Westerlund
9e5b6ffc2f (get_init_creds_common): set request_anonymous flag appropriatly 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8017 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-03-04 15:58:44 +00:00
Assar Westerlund
52cde19e4b (change_password): replace strncpy with strlcpy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7878 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-02-07 03:17:20 +00:00
Assar Westerlund
209565763c update to new prototype of krb5_timeofday 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7857 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-02-06 05:20:51 +00:00
Johan Danielsson
c5b916ca6f remove advertising clause 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7464 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-12-02 17:05:13 +00:00
Assar Westerlund
550eada60d remove some unused stuff 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7387 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-11-13 20:37:21 +00:00
Assar Westerlund
57e671a740 (krb5_get_init_creds_password): remove preauthentication generation 
code.  it's now in krb5_get_in_cred


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7357 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-11-12 16:12:04 +00:00