Commit Graph

15272 Commits

Author SHA1 Message Date
Asanka C. Herath
f159cef78a Rename get_entry() -> _krb5_config_get_entry() 2010-11-24 15:32:11 -05:00
Asanka C. Herath
d247242f63 Windows: Registry based configuration
Load configuration data in the registry into a krb5_config_section.
Each registry key corresponds to a krb5_config_section and each
registry value becomes a bound string value.

The set of values contained in the root Heimdal registry key is
treated as if they were defined in the [libdefaults] section.

E.g. the configuration file:

[libdefaults]
foo = bar

[Foo]
x = y
y = {
  baz = quux
}

is equivalent to the registry keys:

[HKEY_CURRENT_USER\Software\Heimdal]
"foo"="bar"

[HKEY_CURRENT_USER\Software\Heimdal\Foo]
"x"="y"

[HKEY_CURRENT_USER\Software\Heimdal\Foo\y]
"baz"="quux"
2010-11-24 15:32:08 -05:00
Asanka C. Herath
392f9541f1 Override existing plug-ins by default when loading cache plug-ins 2010-11-24 15:32:08 -05:00
Asanka C. Herath
8f7a1311e1 Windows: Construct search string from directory name
The implementation of opendir() in lib/roken/dirent.c takes as input a
directory name.  For the contents of the specified directory to be
enumerated correctly, this directory name must be converted to a
wildcard.
2010-11-24 15:32:07 -05:00
Asanka C. Herath
6abe08a0a3 Validate plug-in names before loading
On Windows, we only want to load .dll files are plug-ins, even though
there might be other support files present in the plug-in directory.
2010-11-24 15:32:06 -05:00
Asanka C. Herath
7fea5ff69a Use expanded path names when loading plug-ins 2010-11-24 15:32:05 -05:00
Simon Wilkinson
5b91f58f35 hcrypto: Remove getarg.h include from validate.c
None of the functions prototyped in getarg.h are used by validate.c,
so simplify out-of-tree builds by removing the header from the file.
2010-11-24 10:55:27 +00:00
Simon Wilkinson
9fc90e01b5 roken: Remove multiple prototype for hstrerror
hsterror had two prototypes, one with the Windows magic, and one
without. Remove the one without so Windows can build again.
2010-11-24 10:32:55 +00:00
Jeffrey Altman
f317b91b1b roken: Prototype getopt
Add a prototype for getopt to the roken.h header, and fix the function
definition in getopt.c to be ANSI, rather than K&Rs style.
2010-11-24 09:43:04 +00:00
Asanka C. Herath
0cc7b890e2 Windows: Build getopt.c in roken 2010-11-23 02:25:34 -05:00
Asanka C. Herath
e266044cc4 Declarations for getopt externs 2010-11-23 02:25:24 -05:00
Asanka C. Herath
904d779d06 Windows: Support building roken as a DLL 2010-11-23 02:25:17 -05:00
Asanka C. Herath
1f2dc24b5d Annotate exported variables in getopt.c 2010-11-23 02:24:43 -05:00
Asanka C. Herath
0ee4597aed Always include <config.h> in roken implementation
Remove unnecessary ifdefs and add <config.h> to dlfcn_w32.c.  This is
required for correct export declarations when building roken as a DLL.
2010-11-23 02:24:38 -05:00
Simon Wilkinson
bbd724dad0 roken: getopt should include roken.h
In order to correctly rename the function, getopt.c needs to include
roken.h
2010-11-22 23:33:46 +00:00
Jeffrey Altman
bd78baf668 Windows: Include winsock2.h before ws2tcpip.h
Before we can include ws2tcpip.h, we must have already included
winsock2.h. The latest SDK does this by including winsock2 within
the ws2tcpip header, but the older SDKs do not, and fail to build.
2010-11-22 23:09:07 +00:00
Love Hornquist Astrand
2514d45803 add basekey 2010-11-22 10:57:01 -08:00
Love Hornquist Astrand
2202e9b126 no info target heim_ntlm_calculate_lm2 2010-11-22 10:56:43 -08:00
Love Hornquist Astrand
46f10ca9c6 remove -template dependencies 2010-11-21 13:00:20 -08:00
Love Hornquist Astrand
b1cfe43834 use right variable 2010-11-21 12:53:28 -08:00
Love Hornquist Astrand
663548b9e5 remove libauth since either is krb4 only, or non longer existing operating systems 2010-11-20 14:56:11 -08:00
Love Hornquist Astrand
6920fbbef1 remove krb5 support 2010-11-20 14:39:20 -08:00
Love Hornquist Astrand
fae3d127a2 remove krb4 support 2010-11-20 14:38:21 -08:00
Love Hornquist Astrand
8f2e0a7010 export internal functions so we dont need private headers 2010-11-20 14:05:54 -08:00
Love Hornquist Astrand
6ce02c45a3 use --one-code-file 2010-11-20 13:52:28 -08:00
Love Hornquist Astrand
37fcf33d7c document hdb_entry_ex 2010-11-18 23:40:09 -08:00
Love Hornquist Astrand
c71d2bf0d3 spelling, From Kaiting Chen <kaitocracy@gmail.com> 2010-11-18 23:25:18 -08:00
Andrew Tridgell
157d60a0eb heimdal: fixed a shadowed variable warning for error_message
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-11-08 22:27:32 -08:00
Love Hornquist Astrand
457c2d6d2c use md4 to verify md4 2010-11-08 14:39:26 -08:00
Andrew Bartlett
2e34d7cf6e heimdal: fixed the use of error_message() in heimdal
the lex code in heimdal had a function error_message() which is
confusingly the ame as a core function from the com_err library. This
replaces it with lex_error_message(), and allows Samba4 to have a
stricter check for duplicate symbols between it's components.

Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-11-08 13:43:25 -08:00
Love Hornquist Astrand
2e31740f62 always check for error token in case of a failure 2010-11-08 13:40:01 -08:00
Andrew Bartlett
526aeef0c7 heimdal Add clock-skew handling to DCE-style GSSAPI
The clock skew handling was previously only on properly wrapped
GSSAPI, and was skipped for DCE-style.  This allows the ASN.1 errors
from the krb5_rd_req to suggest parsing as a kerberos error packet.

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-11-08 13:36:52 -08:00
Love Hornquist Astrand
f178458310 use krb5_data_ct_cmp 2010-11-06 20:53:04 +01:00
Love Hornquist Astrand
5a801c8f4a use krb5_data_ct_cmp 2010-11-06 20:52:53 +01:00
Love Hornquist Astrand
2d1ca83efa use krb5_data_ct_cmp 2010-11-06 20:52:33 +01:00
Love Hornquist Astrand
15f0adad02 add krb5_data_ct_cmp 2010-11-06 20:36:12 +01:00
Love Hornquist Astrand
0be50bf118 add krb5_data_ct_cmp 2010-11-06 20:36:08 +01:00
Love Hornquist Astrand
55c4979df2 Now pac from christian passes since we make hmac checksums always use the raw key 2010-11-06 20:23:49 +01:00
Love Hornquist Astrand
d6b93cec1e internal function _krb5_HMAC_MD5_checksum 2010-11-06 20:11:19 +01:00
Love Hornquist Astrand
55ccd5ff9c use _krb5_enomem and indent 2010-11-06 20:10:26 +01:00
Love Hornquist Astrand
a1f749f4af add _krb5_enomem 2010-11-06 20:09:07 +01:00
Love Hornquist Astrand
5ab43b8520 plug memory leak 2010-11-06 20:01:02 +01:00
Andrew Bartlett
a42b77fb22 heimdal Add handling for PAC signatures over all encryption types
There are exceptions from the expected behaviour of 'checksum type
matches key type' that we must deal with here, or else we can't serve
DES-only servers.

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-11-06 19:56:48 +01:00
Simon Wilkinson
1d9072f026 krb5: reorganise crypto.c
lib/krb5/crypto.c was a large, monolithic block of code which made
it very difficult to selectively enable and disable particular
alogrithms.

Reorganise crypto.c into individual files for each encryption and
salt time, and place the structures which tie everything together
into their own file (crypto-algs.c)

Add a non-installed library (librfc3961) and test program
(test_rfc3961) which builds a minimal rfc3961 crypto library, and
checks that it is usable.
2010-11-03 11:12:24 +00:00
Love Hornquist Astrand
6184422fef compare the value of the client realm now that it might not be the same pointer
fixes the check-delegate test that the new direct hop patch broke
2010-11-01 13:46:56 -07:00
Love Hornquist Astrand
a16f7ea0ab add missing
prototype
2010-10-31 01:09:24 -07:00
Asanka C. Herath
a73d30e619 get_cred_kdc_capath() always try direct cross-realm first 2010-10-31 01:04:27 -07:00
Joerg Pulz
ef90819a9a rename PTHREADS_LIBADD to PTHREAD_LIBADD
Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2010-10-31 00:29:54 -07:00
Love Hornquist Astrand
aceab099f2 add ntlm_err.h 2010-10-30 22:18:34 -07:00
Love Hornquist Astrand
6f9a423c0a add libheimbase.la 2010-10-30 13:59:19 -07:00