oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
27,084 Commits 2 Branches 2 Tags
cc47c8fa7b0f4567bb9dd7e692c32a558a166d5c
Commit Graph

52 Commits

Author SHA1 Message Date
Andrew Bartlett
5ce504c1fb use ETYPE_DES3_CBC_SHA1 for the verify step in verify_mic_des3 
This allows a strict link between checksum types and key types to be
enforced.

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2012-01-10 22:54:16 +01:00
Love Hörnquist Åstrand
8060a561db switch to KRB5_ENCTYPE 2011-07-24 16:02:22 -07:00
Love Hornquist Astrand
f5f9014c90 Warning fixes from Christos Zoulas 
- shadowed variables
- signed/unsigned confusion
- const lossage
- incomplete structure initializations
- unused code
 2011-04-29 20:25:05 -07:00
Asanka Herath
5dcc605f6b Fix calling conventions for Windows 2010-08-20 13:14:10 -04:00
Love Hornquist Astrand
56f90c5b19 switch to EVP_MD_CTX_create() and thus make smaller 2009-08-21 07:16:28 -07:00
Love Hornquist Astrand
88d55a1d06 Make compile for weak crypto global (HEIM_WEAK_CRYPTO) and use it for GSSAPI too 2009-08-17 18:06:42 +02:00
Love Hornquist Astrand
fc702a97f5 switch to use EVP interface instead of old crypto interface 2009-08-17 17:30:59 +02:00
Love Hornquist Astrand
fcfa32b0b9 Use constant time memcmp 2009-08-17 12:04:51 +02:00
Love Hornquist Astrand
13c3b9b1c6 switch to use EVP interface instead of old MDX_ style interface 2009-08-17 10:15:31 +02:00
Love Hörnquist Åstrand
c99b2003e2 Implement gss_wrap_iov, gss_unwrap_iov for CFX type encryption types. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25286 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-22 17:56:41 +00:00
Love Hörnquist Åstrand
269a7a057b flatten include headers 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24382 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:35:00 +00:00
Love Hörnquist Åstrand
9586101a49 use the krb5_crypto directly, skipping some per packet calculation, make cfx handling simpler 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24067 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-12-11 04:52:10 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
81d68d4ee2 use DES_set_key_unchecked() 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23112 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-04-27 18:51:26 +00:00
Love Hörnquist Åstrand
00bcd44370 Switch from using a specific error message context in the TLS to have 
a whole krb5_context in TLS. This have some interestion side-effekts
for the configruration setting options since they operate on
per-thread basis now.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19031 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-13 18:02:57 +00:00
Love Hörnquist Åstrand
b391925d80 try new subkey handling 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18559 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-18 15:59:33 +00:00
Love Hörnquist Åstrand
dfa6f7b248 reference all include files using krb5/ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18334 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-07 22:16:04 +00:00
Love Hörnquist Åstrand
ee09f98c15 Rename local include file, remove global files. 
Stop exposing global gssapi symbols.
Rename gss_context_id_t and gss_cred_id_t to local names.
Remove SPNEGO code, its now in its own gssapi module.
Add mechglue inquire functions.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17697 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-06-28 08:54:04 +00:00
Love Hörnquist Åstrand
0e90681917 Less pointer signedness warnings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17564 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-13 15:35:54 +00:00
Love Hörnquist Åstrand
d0443e2058 prefix all sequence symbols with _, they are not part of the GSS-API api. By comment from Wynn Wilkes <wynnw@vintela.com> 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14989 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-27 17:51:27 +00:00
Luke Howard
ebc3e1a658 support KEYTYPE_ARCFOUR_56 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14460 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-05 02:52:12 +00:00
Luke Howard
847cb0fa5b use gss_krb5_get_subkey() instead of gss_krb5_get_{local,remote}key() 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14450 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-05 02:32:44 +00:00
Love Hörnquist Åstrand
f3dbe53b49 support cfx 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13522 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-03-14 16:36:30 +00:00
Love Hörnquist Åstrand
33efaf1f26 switch from the des_ to the DES_ api 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12752 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-03 09:29:36 +00:00
Love Hörnquist Åstrand
6a722501fe (gss_verify_mic_internal): switch type and key argument 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12713 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-31 19:50:34 +00:00
Love Hörnquist Åstrand
9673c61169 prefix cfx symbols with _gssapi_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12692 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-28 10:54:06 +00:00
Love Hörnquist Åstrand
f74f70a4a7 hook in arcfour verify_mic 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12672 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-28 00:06:36 +00:00
Love Hörnquist Åstrand
bb7b50eba4 encap/decap now takes a oid 
if the enctype/keytype is arcfour, return error
add hook for cfx


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12640 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-25 20:06:04 +00:00
Love Hörnquist Åstrand
5b4a741593 reorder code so sequence numbers can can be used 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12371 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-06-17 04:08:20 +00:00
Love Hörnquist Åstrand
ee6c2cbd71 make sure minor_status is always set, pointed out by Luke Howard <lukeh@PADL.COM> 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12343 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-06-03 14:58:51 +00:00
Love Hörnquist Åstrand
42f3fc029a - do some basic locking (no reference counting so contexts can be 
removed while still used)
- don't export gss_ctx_id_t_desc_struct and gss_cred_id_t_desc_struct
- make sure all lifetime are returned in seconds left until expired,
  not in unix epoch


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12317 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-05-21 14:52:14 +00:00
Love Hörnquist Åstrand
952b7e4ad6 (verify_mic_des3): always check if the mic is the correct mic or the 
mic that old heimdal would have generated


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12179 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-04-30 09:41:21 +00:00
Jacques A. Vidrine
5773846f71 verify_mic_des3: If MIC verification fails, retry using the `old' MIC 
computation (with zero IV).


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12168 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-04-28 15:19:12 +00:00
Love Hörnquist Åstrand
19d67f3356 (gss_verify_mic_internal): rename verify_mic to 
gss_verify_mic_internal and let it take the type as an argument,
(gss_verify_mic): call gss_verify_mic_internal
set minor_status


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11761 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-03-16 17:56:26 +00:00
Love Hörnquist Åstrand
1be5e6bcc6 (verify_mic_des3): fix 3des verify_mic to conform to rfc (and mit 
kerberos), provide backward compat hook


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11624 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-01-27 14:12:15 +00:00
Jacques A. Vidrine
5d8e2e5a3c In gss_verify_mic and gss_unwrap, initialize the qop_state parameter 
if non-NULL.  We do this prior to calling the encryption-system specific
functions in case some day they set qop_state.

Doug Rabson <dfr@nlsystems.com> encountered this bug while working on
RPCSEC_GSS code from UMich's NFSv4 project.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11015 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-05-20 15:14:00 +00:00
Assar Westerlund
e129105771 handle minor_status more consistently 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10533 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-08-23 04:35:55 +00:00
Assar Westerlund
5a6138360e update krb5_auth_con function names 
use gss_krb5_get_remotekey


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10099 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-06-18 02:52:54 +00:00
Assar Westerlund
e55eee640b try to return the error string from krb5 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9902 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-11 09:16:47 +00:00
Assar Westerlund
59a594bad4 use the openssl api for md4/md5/sha. handle openssl/*.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9559 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-01-29 02:09:01 +00:00
Assar Westerlund
8180bca1d4 re-organize and add 3DES code 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9004 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-08-27 04:26:12 +00:00
Assar Westerlund
eba6c2d786 be compatible with libdes's des_cbc_* prototypes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8856 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-27 10:30:12 +00:00
Assar Westerlund
1799ccfdaf update to pseudo-standard APIs for md4,md5,sha. 
some changes to libdes calls to make them more portable.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7820 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-01-25 23:15:44 +00:00
Johan Danielsson
c5b916ca6f remove advertising clause 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7464 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-12-02 17:05:13 +00:00
Johan Danielsson
259d89264a changes for modified auth_context 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4156 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-12-07 15:43:18 +00:00
Johan Danielsson
5a32a5c8e7 Add copyright notice. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@2389 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-07-16 21:40:05 +00:00
Assar Westerlund
88e55002dc Call `gssapi_krb5_verify_header' 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@2282 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-07-14 11:44:38 +00:00
Assar Westerlund
420b334bba adapt to krb5 changes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@1935 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-06-29 08:40:23 +00:00
Assar Westerlund
18d72f2bd9 Add sequence number. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@1916 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-06-16 03:45:10 +00:00