Commit Graph

1657 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
02620cbb4e add _gss_free_oid, reverse of _gss_copy_oid
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19398 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-18 13:01:40 +00:00
Love Hörnquist Åstrand
62270350bc try harder to handle names better. handle missing acceptor and initator creds better (ie dont propose/accept mech that there are no credentials for) split NegTokenInit and NegTokenResp in acceptor
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19397 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-18 12:59:50 +00:00
Love Hörnquist Åstrand
471a5b53bb Its very sad, but NegHints its are not part of the NegTokenInit, this
makes SPNEGO acceptor life a lot harder.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19396 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-18 12:56:30 +00:00
Love Hörnquist Åstrand
846ad516e0 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19393 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-16 08:32:18 +00:00
Love Hörnquist Åstrand
b51a41e7d1 Allocate the buffer from the right length.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19392 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-16 08:31:47 +00:00
Love Hörnquist Åstrand
7e1c31e8c2 (init_sec_context): Tell the other side what domain we think we are
talking to.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19388 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 22:50:58 +00:00
Love Hörnquist Åstrand
af03eba4a5 free username and password
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19387 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 22:49:13 +00:00
Love Hörnquist Åstrand
0ccb9c8444 (_gss_ntlm_release_name): free name.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19386 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 22:48:13 +00:00
Love Hörnquist Åstrand
7ccd5835db store username and password in the ntlm_ctx
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19385 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 22:47:31 +00:00
Love Hörnquist Åstrand
d53618b20e Use the target_name to figure out what username/password to use
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19384 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 22:44:14 +00:00
Love Hörnquist Åstrand
c3c1fa1aaa (_gss_ntlm_import_name): add support for GSS_C_NT_HOSTBASED_SERVICE names
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19382 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 22:24:18 +00:00
Love Hörnquist Åstrand
1babec8943 Add ntlm_name.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19381 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 22:23:13 +00:00
Love Hörnquist Åstrand
30cf3d7d07 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19377 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 21:27:42 +00:00
Love Hörnquist Åstrand
ef6b5a7236 Make compile.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19367 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:12:20 +00:00
Love Hörnquist Åstrand
471b9aabbc allow testing of ntlm.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19366 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:09:19 +00:00
Love Hörnquist Åstrand
8f687061ab add __gss_ntlm_initialize
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19365 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:08:25 +00:00
Love Hörnquist Åstrand
5ba324eae7 (handle_type3): verify that the kdc approved of the ntlm exchange too
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19364 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:06:54 +00:00
Love Hörnquist Åstrand
93482a2b67 Add the builtin ntlm mech
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19363 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:05:43 +00:00
Love Hörnquist Åstrand
25e6be673b NTLM test app.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19362 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:04:50 +00:00
Love Hörnquist Åstrand
e4ac6bf6ed Add detection of NTLMSSP.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19361 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:04:14 +00:00
Love Hörnquist Åstrand
a9a686862d add ntlm mech oid
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19360 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:02:54 +00:00
Love Hörnquist Åstrand
792c38eaf4 Switch OID to the ms ntlmssp oid
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19359 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 20:01:48 +00:00
Love Hörnquist Åstrand
76a9750323 Add ntlm gss-api module.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19358 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 19:46:55 +00:00
Love Hörnquist Åstrand
aac9035b3d Catch more error errors.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19351 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 18:49:08 +00:00
Love Hörnquist Åstrand
2ba004edf0 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19347 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 16:40:51 +00:00
Love Hörnquist Åstrand
0188d9ca47 Check after a credential to use.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19346 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 16:40:28 +00:00
Love Hörnquist Åstrand
fbb7a0e925 Don't fail, mech glue layer can't stand that.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19345 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-15 16:33:19 +00:00
Love Hörnquist Åstrand
2e061ed271 ntlm gssapi module, only support context building
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19334 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-14 12:17:34 +00:00
Love Hörnquist Åstrand
ba7418d3aa (GSS_KRB5_SET_DEFAULT_REALM_X): don't fail on success.
Bug report from Stefan Metzmacher.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19333 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-14 11:02:16 +00:00
Love Hörnquist Åstrand
3e591d8e66 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19325 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-13 10:34:28 +00:00
Love Hörnquist Åstrand
fa438f7ca1 (init_auth): only turn on GSS_C_CONF_FLAG and GSS_C_INT_FLAG if the
caller requseted it.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19324 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-13 10:33:20 +00:00
Love Hörnquist Åstrand
f91432b111 remove stuff that should have be commited yet
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19318 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-11 21:27:52 +00:00
Love Hörnquist Åstrand
4a37d22a51 drop include
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19317 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-11 19:40:19 +00:00
Love Hörnquist Åstrand
d70dc49b06 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19316 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-11 19:39:54 +00:00
Love Hörnquist Åstrand
1872e0488a (libgssapi_la_OBJECTS): depends on gssapi_asn1.h spnego_asn1.h.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19315 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-12-11 19:38:25 +00:00
Love Hörnquist Åstrand
240d98f20f x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19079 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-20 18:14:57 +00:00
Love Hörnquist Åstrand
ece5f9603e Make krb5_get_init_creds_opt_free take a context argument.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19078 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-20 18:12:41 +00:00
Love Hörnquist Åstrand
210162ce80 Test that token keys are the same, return actual_mech.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19060 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-16 07:27:07 +00:00
Love Hörnquist Åstrand
07a8f134e8 Make bitfields unsigned, add maybe_open.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19050 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 11:37:25 +00:00
Love Hörnquist Åstrand
a4908290ac x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19049 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 11:10:54 +00:00
Love Hörnquist Åstrand
b60aecaebf Use ASN.1 encoder functions to encode CHOICE structure now that we can handle it.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19048 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 11:10:46 +00:00
Love Hörnquist Åstrand
062328fffc x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19047 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:31:33 +00:00
Love Hörnquist Åstrand
75b517309f (_gss_spnego_accept_sec_context): send back ad accept_completed when
the security context is ->open, w/o this the client doesn't know that
the server have completed the transaction.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19046 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:31:21 +00:00
Love Hörnquist Åstrand
db9e36b915 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19045 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:19:54 +00:00
Love Hörnquist Åstrand
0be2851d8e Add delegate flag and check that the delegated cred works.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19044 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:19:41 +00:00
Love Hörnquist Åstrand
c00799be18 Keep track of the opportunistic token in the inital message, it might
be a complete gss-api context, in that case we'll get back
accept_completed without any token. With this change, krb5 w/o mutual
authentication works.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19043 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 10:18:55 +00:00
Love Hörnquist Åstrand
c8fd5412ce Use ASN.1 encoder functions to encode CHOICE structure now that we can handle it.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19042 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 09:01:45 +00:00
Love Hörnquist Åstrand
774e93dac2 Filter out SPNEGO from the out supported mechs list and make sure we
don't select that for the preferred mechamism.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19039 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-15 08:42:36 +00:00
Love Hörnquist Åstrand
576019c819 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19038 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-14 12:35:04 +00:00
Love Hörnquist Åstrand
f34964d46f (_gss_mech_cred_find): break out the cred finding to its own function
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19037 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-14 12:33:11 +00:00