oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
25,676 Commits 2 Branches 2 Tags
bd795255aaeeed9bf1be74c5dcad1cb0f3466d67
Commit Graph

990 Commits

Author SHA1 Message Date
Love Hornquist Astrand
8b71d0b93f Prefer the realm of the user when doing referrals style ISC krb5-get-creds 
The the realm of the user's principal and prefer that when doing a lookup.
This code still need to be smarter can cache the "initial value" -> positive result
to avoid roundtrips to the KDC.
 2009-07-17 15:43:19 -07:00
Love Hörnquist Åstrand
de5f912e02 Contributed by Andrew Bartlett: 
When Samba4's 'fake' GSSAPI client contacts Windows 2008, and does not
request AP_MUTUAL_REQUIRED, it does not elicit a response packet.

We had previously assumed it was unconditional.  Samba3 didn't mind
very much, but Samba4's samba3-like client did, and the behaviour
differed to Win2008 behaviour.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25328 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-15 22:18:00 +00:00
Love Hörnquist Åstrand
8be9f44602 rename find_buffer 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25289 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-23 03:45:56 +00:00
Love Hörnquist Åstrand
2ca3492e42 remove stream bits for now 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25288 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-23 03:45:37 +00:00
Love Hörnquist Åstrand
769f86eb33 start of unpack stream if there is one. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25287 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-23 03:45:02 +00:00
Love Hörnquist Åstrand
c99b2003e2 Implement gss_wrap_iov, gss_unwrap_iov for CFX type encryption types. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25286 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-22 17:56:41 +00:00
Love Hörnquist Åstrand
74af14affc disable code 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25284 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-12 19:05:42 +00:00
Love Hörnquist Åstrand
9e9258e2b8 comment out unsupported options 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25183 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:02:03 +00:00
Love Hörnquist Åstrand
cae7efb522 Make KRB5KRB_AP_ERR_TKT_NYV trigger error_token too. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25128 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-16 08:31:15 +00:00
Love Hörnquist Åstrand
8efe3cee79 use krb5_cc_new_unique, use constants for cache types 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25054 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 04:06:31 +00:00
Love Hörnquist Åstrand
66167a029f use krb5_cc_new_unique, use constants for cache types 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25053 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 04:06:21 +00:00
Love Hörnquist Åstrand
6243aee99a use krb5_cc_new_unique, use constants for cache types 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25052 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 04:06:10 +00:00
Love Hörnquist Åstrand
06e0f0d12f use krb5_cc_new_unique, use constants for cache types 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25051 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 04:05:59 +00:00
Love Hörnquist Åstrand
f6de1a0ed0 make compile (missing implementation) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24951 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 23:29:56 +00:00
Love Hörnquist Åstrand
ac45625cb1 basic implementation 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24930 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:34:42 +00:00
Love Hörnquist Åstrand
6bff91ac85 qop_state is not used any more, remove 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24918 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-22 17:23:10 +00:00
Love Hörnquist Åstrand
2bd838c5ac ops is not used any more, remove 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24917 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-22 17:23:00 +00:00
Love Hörnquist Åstrand
277e354944 less errors 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24792 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-22 23:27:47 +00:00
Love Hörnquist Åstrand
41b829003c add conf_state to iov_length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24772 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-22 23:24:15 +00:00
Love Hörnquist Åstrand
43ed47f3fe no longer used 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24746 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-16 19:12:12 +00:00
Love Hörnquist Åstrand
1eb329c605 sign_only do not contribute to length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24721 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-16 18:35:49 +00:00
Love Hörnquist Åstrand
d7aefee1ab Switch arguments. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24720 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-16 18:35:38 +00:00
Love Hörnquist Åstrand
269a7a057b flatten include headers 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24382 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:35:00 +00:00
Love Hörnquist Åstrand
8b8e3af545 check return values 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24141 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 05:06:44 +00:00
Love Hörnquist Åstrand
bb8485b49c check return value from krb5_decrypt_iov_ivec 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24129 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 05:04:39 +00:00
Love Hörnquist Åstrand
62965c76dd free krb5_storage 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24124 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 05:03:48 +00:00
Love Hörnquist Åstrand
bedf5bc77e init content before use coverity #146 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24095 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:58:48 +00:00
Love Hörnquist Åstrand
c5ff97dc5b init content before use coverity #147 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24094 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:58:38 +00:00
Love Hörnquist Åstrand
f964fe1beb init content before use coverity #148 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24093 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:58:28 +00:00
Love Hörnquist Åstrand
d24b24e07e init content before use coverity #149 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24092 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:58:18 +00:00
Love Hörnquist Åstrand
63d1d155f2 switch from unsigned int to int for iov_count 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24083 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:55:56 +00:00
Love Hörnquist Åstrand
9586101a49 use the krb5_crypto directly, skipping some per packet calculation, make cfx handling simpler 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24067 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:52:10 +00:00
Love Hörnquist Åstrand
9c1460fe80 dont need cfx flag here 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24058 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:50:38 +00:00
Love Hörnquist Åstrand
d4f5c19c1d make IS_CFX a more_flag 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24057 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:50:22 +00:00
Love Hörnquist Åstrand
691da91d10 pass back header/trailer sizes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24056 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:50:10 +00:00
Love Hörnquist Åstrand
7f6d448621 implement the new gss_*_iov interfaces 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24055 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:49:37 +00:00
Love Hörnquist Åstrand
ada58d9cd3 Additional patch from Christan Krause to handle asprintf better 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24041 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-11-15 04:43:42 +00:00
Love Hörnquist Åstrand
25a7b258ea make sure we dont print off the end of the gss_buffer_t, they are defined to not included NULL, in heimdal they are but thats an implementation detail, dont teach people about that. From: Christian Krause 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24035 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-11-12 04:19:52 +00:00
Love Hörnquist Åstrand
6ae0927545 Use wrapping of the error message. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23973 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-10-26 18:23:45 +00:00
Love Hörnquist Åstrand
2de2b05fcb switch to krb5_clear_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23915 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-10-14 02:56:28 +00:00
Love Hörnquist Åstrand
fe1a976ae2 new krb5_cc_cache_match 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23905 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-10-13 03:03:21 +00:00
Love Hörnquist Åstrand
2d85294ede Default to use the username as passed in by the user. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23843 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-14 15:27:42 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
1f6d6bb605 spelling 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23702 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-27 11:24:33 +00:00
Love Hörnquist Åstrand
541c7a5d2b allow registration of krb5_plugins though the gss-api layer 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23698 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-27 11:13:48 +00:00
Love Hörnquist Åstrand
227aca963e Avoid dns canonlisation for hosts, until we know what client credential we are going to use, and when we know that, lets check if the user really want to use canonlision, XXX should be able to configure per target realm too 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23678 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-25 02:34:24 +00:00
Love Hörnquist Åstrand
3a00ceaf3d krb5_sname_to_principal gets the hostname if we tell is host = NULL. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23674 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-25 02:33:08 +00:00
Love Hörnquist Åstrand
a65167e3ce Copy the krb5 context error. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23543 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-16 22:59:45 +00:00
Love Hörnquist Åstrand
70a00b7fab Only send KRB_ERROR token when there is clock skew, limits when we 
send KRB-ERROR for non-MUTUAL tokens.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23541 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-08-16 22:59:26 +00:00