oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
17,867 Commits 2 Branches 2 Tags
bf5a3666963cc27b2f9f1d2524a1cec6da833fd1
Commit Graph

969 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
1b9fae5253 more files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18653 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-20 15:52:20 +00:00
Love Hörnquist Åstrand
a54f56a729 remove stale comment 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18489 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-17 02:22:17 +00:00
Love Hörnquist Åstrand
cf5ac5cacc Prefix asn1 primitives with der_. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18488 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-17 02:16:29 +00:00
Love Hörnquist Åstrand
69883abf62 Prefix der primitives with der_. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18460 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-14 10:16:45 +00:00
Love Hörnquist Åstrand
ca35d60f1e (pk_mk_pa_reply_enckey): add missing break. From Olga Kornievskaia. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18427 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-12 20:00:25 +00:00
Love Hörnquist Åstrand
fb5806c7f5 document max-kdc-datagram-reply-length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18419 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-12 10:05:57 +00:00
Love Hörnquist Åstrand
247cda7f2f (loop): Log that the kdc have started. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18392 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-10 10:13:36 +00:00
Love Hörnquist Åstrand
3128010cc2 (do_request): tell krb5_kdc_process_request if its a datagram reply or not 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18386 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:41:01 +00:00
Love Hörnquist Åstrand
35cbc4ce07 Reply KRB5KRB_ERR_RESPONSE_TOO_BIG error if its a datagram reply and 
the datagram reply length limit is reached.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18385 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:38:59 +00:00
Love Hörnquist Åstrand
6a5f157cb9 Rename krb5_kdc_process_generic_request to krb5_kdc_process_request 
Add datagram_reply argument.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18384 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:37:39 +00:00
Love Hörnquist Åstrand
3f3792b7a7 check for [kdc]max-kdc-datagram-reply-length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18383 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:35:36 +00:00
Love Hörnquist Åstrand
6e093638af (krb5_kdc_config): Add max_datagram_reply_length. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18382 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:34:07 +00:00
Love Hörnquist Åstrand
8b981cc040 (tgs_parse_request): set cusec, not csec from auth->cusec. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18366 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 06:51:57 +00:00
Love Hörnquist Åstrand
562c2aced2 Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18349 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-08 13:43:52 +00:00
Love Hörnquist Åstrand
aa75a633ee (handle_vanilla_tcp): shorten length when we shorten the buffer, this 
matter im the PK-INIT encKey case where a checksum is done over the
whole packet. Reported by Olga Kornievskaia


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18345 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-08 09:01:36 +00:00
Love Hörnquist Åstrand
ddf7f8db2a Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18273 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-07 07:03:13 +00:00
Love Hörnquist Åstrand
c7b54c3372 Adapt to signature change of _krb5_principalname2krb5_principal. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18270 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-06 17:06:30 +00:00
Love Hörnquist Åstrand
7c8ba97fe4 (_krb5_principalname2krb5_principal): adapt to signature change 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18268 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-06 17:00:21 +00:00
Love Hörnquist Åstrand
a01d3c5a98 Make digest argument o MD5_final unsigned char to help OpenSSL. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18259 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-06 12:06:45 +00:00
Love Hörnquist Åstrand
760f9f5bee Sign the request in the encKey case. 
Bug reported by Olga Kornievskaia of Umich.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18220 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-04 20:54:25 +00:00
Love Hörnquist Åstrand
cafd935d88 Check the adtkt in the constrained delegation case too. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18101 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-18 17:30:19 +00:00
Love Hörnquist Åstrand
a10e7216d6 (sigterm): don't _exit, let loop() catch the signal instead. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18095 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-16 17:28:05 +00:00
Love Hörnquist Åstrand
ce1b1b08af Signing outgoing tickets. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18075 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-11 13:39:48 +00:00
Love Hörnquist Åstrand
2db346fb7d Add signing and checking of tickets to s4u2self works securely. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18074 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-09-11 13:39:13 +00:00
Love Hörnquist Åstrand
647c78fdc2 indent. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17951 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-28 14:41:49 +00:00
Love Hörnquist Åstrand
1bb5708e19 Catch more error, add SASL DIGEST MD5. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17945 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-28 12:38:44 +00:00
Love Hörnquist Åstrand
687cb26c9e Remove _kdc_find_etype(), its no longer used. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17934 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 11:52:29 +00:00
Love Hörnquist Åstrand
821b7e5e20 Remove local error label and have just one exit label, set error 
strings properly.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17932 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 11:27:42 +00:00
Love Hörnquist Åstrand
38bccc6e79 Simply the disabled-service case. 
Check the allow-digest flag in the HDB entry for the client.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17930 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 11:05:55 +00:00
Love Hörnquist Åstrand
3e319eda30 (krb5_kdc_process_generic_request): check if we got a digest request 
and process it.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17922 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 10:41:28 +00:00
Love Hörnquist Åstrand
99b5923af8 Register hdb keytab operations. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17921 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 10:40:40 +00:00
Love Hörnquist Åstrand
5033989d9b document [kdc]enable-digest=boolean 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17919 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 10:11:00 +00:00
Love Hörnquist Åstrand
72f5dab088 add digest to libkdc 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17918 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 10:08:20 +00:00
Love Hörnquist Åstrand
195903697a Make a return a goto to avoid freeing un-inited memory in cleanup code. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17917 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 10:06:26 +00:00
Love Hörnquist Åstrand
e26ef8b690 First revision of the digest (CHAP so far) code. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17913 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:53:55 +00:00
Love Hörnquist Åstrand
dfcd435953 (krb5_kdc_default_config): default to all bits set to zero. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17912 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:52:53 +00:00
Love Hörnquist Åstrand
2efd79caef (configure): Add enable_digest, default off 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17911 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:51:40 +00:00
Love Hörnquist Åstrand
7ae6f1fbd6 (krb5_kdc_configuration): Add enable_digest 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17910 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:51:15 +00:00
Love Hörnquist Åstrand
1bdc073a65 Include <digest_asn1.h>. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17909 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:46:48 +00:00
Love Hörnquist Åstrand
3ffb120454 (_kdc_get_preferred_key): new function, Use the order list of 
preferred encryption types and sort the available keys and return the
most preferred key.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17907 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:40:56 +00:00
Love Hörnquist Åstrand
fb086a0312 Adapt to the new sigature of _kdc_find_keys(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17906 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:33:53 +00:00
Love Hörnquist Åstrand
c97d034ed3 Handle session key etype separately from the tgt etype, now the krbtgt 
can be a aes-only key without the need to support not-as-good etypes
for the krbtgt.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17905 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:33:09 +00:00
Love Hörnquist Åstrand
599d3cf216 Change _kdc_db_fetch() to return the database pointer too if needed by 
the consumer.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17904 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-23 11:45:16 +00:00
Love Hörnquist Åstrand
615106f750 (_kdc_pk_check_client): make it not crash when there are no acl 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17831 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-07-13 18:37:58 +00:00
Love Hörnquist Åstrand
fea203a708 (_kdc_pk_check_client): use the acl in the kerberos database 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17830 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-07-13 18:32:45 +00:00
Love Hörnquist Åstrand
ce5ef410ee (tgs_build_reply): when checking for removed principals, check the 
second component of the krbtgt, otherwise cross realm wont work.
Prompted by report from Mattias Amnefelt.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17806 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-07-06 15:38:31 +00:00
Love Hörnquist Åstrand
5f62c460c3 (handle_vanilla_tcp): use unsigned integer for for length( 
(handle_tcp): if the high bit it set in the unknown case, send back a
KRB_ERR_FIELD_TOOLONG


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17798 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-07-05 12:00:16 +00:00
Love Hörnquist Åstrand
45067d5a62 Use enable_v4_per_principal and check the new hdb flag. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17647 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-14 18:27:28 +00:00
Love Hörnquist Åstrand
8e6754870a Add enable_v4_per_principal 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17646 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-14 18:26:18 +00:00
Love Hörnquist Åstrand
0f10ba4f2b (_kdc_as_rep): if kdc_time + config->kdc_warn_pwexpire is past pw_end, 
add expiration message. From Bernard Antoine.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17643 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-12 21:42:01 +00:00