oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
27,818 Commits 2 Branches 2 Tags
d5044abac8e60e6b78b4237b51f3751fbd3a45c2
Commit Graph

339 Commits

Author SHA1 Message Date
Nicolas Williams
487b6820f6 Revamp name canonicalization code 2015-03-24 11:49:58 -05:00
Jeffrey Altman
c1f822f7af rename struct krb5_name_canon_* name collisions 
C++ does not permit struct names and typedef names to be the same.
Rename

  struct krb5_name_canon_rule to struct krb5_name_canon_rule_data

and

  struct krb5_name_canon_iterator to struct krb5_name_canon_iterator_data

Change-Id: I92766e0878bf0beef92de1649baf9e5cafbf86aa
 2013-10-06 16:42:05 -04:00
Love Hornquist Astrand
b4d1168557 add auth_data 2013-07-16 15:13:31 +02:00
Love Hornquist Astrand
060474df16 quel 64bit warnings, fixup implicit encoding for template, fix spelling 2013-06-03 21:46:20 -07:00
Viktor Dukhovni
4fcad71a3a Two new flags for krb5_parse_name_flags_realm(): 
- KRB5_PRINCIPAL_PARSE_IGNORE_REALM: MIT compatible

    - KRB5_PRINCIPAL_PARSE_NO_DEF_REALM: Don't default the realm

The first ignores the realm if present.

The second does not impute the default realm if no realm is given and
leaves the realm NULL.  This will be used in kinit to determine whether
the user provided a realm or not, and if not we may use the user_realm,
or find the realm via the keytab.
 2013-05-16 00:32:08 -04:00
Love Hornquist Astrand
de61953108 handle creation of DIR caches 2013-04-29 22:54:11 -07:00
Love Hornquist Astrand
a7e86affd8 add basic DIR support for file caches 2013-04-29 12:30:21 -07:00
Nicolas Williams
d4f23fe2ae Revert c1423a8 and fix things up 
Also, we were stopping as soon as one registered plugin returned
something other than KRB5_PLUGIN_NO_HANDLE, but we weren't doing the
same for discovered plugins.  Add KRB5_PLUGIN_INVOKE_ALL flag to deal
with this; by default we'll stop at the first plugin that returns
anything other than KRB5_PLUGIN_NO_HANDLE.

Other buglets fixed as in c1423a8.
 2013-03-05 21:44:43 -06:00
Love Hornquist Astrand
58ff480763 rewrite send to kdc to be more agressive, try kdcs in paralell and easier to configure behavior 2013-02-10 19:02:52 -08:00
Love Hörnquist Åstrand
1a1bd736c0 merge support for FAST in as-req codepath 2011-10-28 19:25:48 -07:00
Nicolas Williams
5c54736678 Removed "weak" option and implemented use-referrals/no-referrals 2011-10-22 14:54:26 -05:00
Nicolas Williams
2f03603d6b Cleanups: s/krb5int_/_krb5_/ and moved priv stuff from krb5.h 2011-10-22 14:54:25 -05:00
Nicolas Williams
001fc24102 Removed vestiges of no-reverse-lookup/reverse-lookup option that was never implemented 2011-10-22 14:54:24 -05:00
Nicolas Williams
a5e77c578e Deferred hostname canon using name canon rules 2011-10-22 14:54:13 -05:00
Love Hörnquist Åstrand
0941d6dbce add constant for WELLKNOWN:ORG.H5L realm 2011-07-24 21:29:27 -07:00
Love Hörnquist Åstrand
e9053800f1 add Fast cookie 2011-07-24 20:24:39 -07:00
Love Hornquist Astrand
f76cf44d82 add KRB5_ANON_REALM 2011-07-24 20:24:38 -07:00
Love Hornquist Astrand
7bc5fe72fb more keyusage 2011-07-24 20:24:36 -07:00
Love Hornquist Astrand
91fce795af add more key usage for fast 2011-07-24 20:24:35 -07:00
Love Hornquist Astrand
580ba6aa72 KU bits for fast 2011-07-24 20:24:34 -07:00
Love Hörnquist Åstrand
8fccb51d49 Merge pull request #12 from nicowilliams/krb5_admin_patches_2nd 
Krb5 admin patches 2nd

This has all the patches needed for krb5_admind to build and pass most tests, that includes:
- more kadm5 API compatibility (including very basic profile functionality)
- multi-kvno support (useful for key rollovers) (a test for this is included in tests/db/check-kdc)

Unfinished:
- password history (currently uses key history, needs to be separated and use digests)
- policies (only default policy allowed)
- mit kdb changes not tested yet


Signed-off-by: Love Hörnquist Åstrand <lha@h5l.org>
 2011-07-24 15:41:36 -07:00
Love Hörnquist Åstrand
f60ec15834 partly unify enctype/keytype since there is only enctypes 2011-07-24 14:03:08 -07:00
Nicolas Williams
6e04b05e9d Initial support for kadm5_randkey_principal_3(), needed by krb5_admin. 
NOT TESTED YET.
 2011-07-22 16:04:52 -05:00
Nicolas Williams
2fbad6432b Initial support for default_{as, tgs}_etypes. 
Signed-off-by: Love Hörnquist Åstrand <lha@h5l.org>
 2011-06-14 20:35:19 -07:00
Love Hörnquist Åstrand
48a91b7fc5 change prefix ETYPE_ to KRB5_ENCTYPE_ and provide compat symbols 2011-05-22 14:06:40 -07:00
Love Hornquist Astrand
305596d9ad Rename subsystem_DEPRECATED to subsystem_DEPRECATED_FUNCTION(X) 
Start to explain what the replacement function is.
Generate the #define/#undef logic in generated header files.
Use gcc style where the deprecation warning is after the prototype.
 2011-05-17 23:12:51 -07:00
Love Hornquist Astrand
2fb63b37e7 add KRB5_KU_AS_REQ 2011-02-06 16:35:10 -08:00
Love Hornquist Astrand
2ec1c3fbec use int32_t for krb5_kvno 2010-11-28 11:18:55 -08:00
Love Hornquist Astrand
8f2e0a7010 export internal functions so we dont need private headers 2010-11-20 14:05:54 -08:00
Asanka Herath
80599fcd94 Define KRB5_TC_OPENCLOSE and KRB5_TC_NOTICKET in krb5.h 2010-09-14 08:04:18 -04:00
Asanka Herath
a7ccfa0717 Define KRB5_TC_NOTICKET 2010-09-14 08:04:15 -04:00
Asanka Herath
5dcc605f6b Fix calling conventions for Windows 2010-08-20 13:14:10 -04:00
Russ Allbery
811d9003c1 Remove remnants of srvtab support 
Support for manipulating srvtabs was previously removed, but there
were still remnants in command documentation in the ktutil man page
and some declared and exported variables for the keytab ops
definitions for srvtab manipulation.  Remove these additional
remnants.

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2010-08-03 09:09:32 -07:00
Love Hornquist Astrand
aa371571f9 insert _FLAG into the name 2010-03-29 19:08:00 -07:00
Love Hornquist Astrand
cf35620ecf name flag 1 as KRB5_INIT_CREDS_STEP_CONTINUE 2010-03-29 18:55:41 -07:00
Love Hornquist Astrand
687db64c56 Patch from Secure Endpoints/Asanka Herath for windows support 2009-12-21 08:45:28 +01:00
Love Hornquist Astrand
826c14833f make cpp safe, from Allan McRae 2009-11-23 07:19:00 -08:00
Love Hornquist Astrand
e515f73e2c [gs]et kdc offset per ccache, add kcm as api cache 2009-11-22 00:09:25 -08:00
Love Hörnquist Åstrand
6c56033e6f improve msft compiler case 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25335 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-16 18:28:12 +00:00
Love Hörnquist Åstrand
6a85bbcc65 More tests for KRB5_DEPRECATED 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25334 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-16 18:27:52 +00:00
Love Hörnquist Åstrand
e85dfe0ce5 KRB5_GET_INIT_CREDS_OPT_SALT is not supported 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25181 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:01:39 +00:00
Love Hörnquist Åstrand
fd46c01a0b rename scache to scc 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25066 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 04:08:40 +00:00
Love Hörnquist Åstrand
3fd4a7262c use constants for memory types 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25036 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 04:03:07 +00:00
Love Hörnquist Åstrand
e7b7dfaae6 add timeout to krb5_send_to_kdc_func, from metze 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24968 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-27 15:01:35 +00:00
Love Hörnquist Åstrand
9ba2b611ef add KRB5_KU_PA_PKINIT_KX 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24950 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:38:36 +00:00
Love Hörnquist Åstrand
0a426e075f fix spelling 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24595 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:07:02 +00:00
Love Hörnquist Åstrand
59232b3083 Add KRB5_WELLKNOWN_NAME and KRB5_ANON_NAME 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24568 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-02-04 22:02:23 +00:00
Love Hörnquist Åstrand
3c2f66b284 add destroy 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24433 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:43:14 +00:00
Love Hörnquist Åstrand
bb9b7fd612 add krb5_principals (and add it to krb5_keytab_entry) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24430 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:42:45 +00:00
Love Hörnquist Åstrand
c4bf65b9e4 keytypes are really the same as enctypes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24307 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-11 21:52:56 +00:00