Commit Graph

283 Commits

Author SHA1 Message Date
Assar Westerlund
32975edd28 (tgs_rep2): alloc and free csec and cusec properly
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9996 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-05-22 20:16:22 +00:00
Johan Danielsson
7becb13b02 pass context to krb5_domain_x500_decode
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9948 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-05-14 11:33:19 +00:00
Assar Westerlund
22a4752877 adapt to changing address functions
use LR_TYPE


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9943 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-05-14 06:18:25 +00:00
Assar Westerlund
b507b4516a (tsg_rep): fix typo in variable name
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9933 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-05-12 15:19:40 +00:00
Johan Danielsson
3c09910254 don't use NULL where we mean 0
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9906 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-05-11 11:52:06 +00:00
Johan Danielsson
0cf3d16107 put referral test code in separate function, and test for
KRB5_NT_SRV_INST


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9904 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-05-11 11:30:11 +00:00
Assar Westerlund
06d2baa47b (tgs_rep2): return a reference to a krbtgt for the right realm if we
fail to find a non-krbtgt service in the database and the second
component does a succesful non-dns lookup to get the real realm (which
has to be different from the originally-supplied realm).  this should
help windows 2000 clients that always start their lookups in `their'
realm and do not have any idea of how to map hostnames into realms


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9824 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-04-29 11:02:49 +00:00
Assar Westerlund
b06fd720d9 (is_krbtgt): rename to get_krbtgt_realm
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9823 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-04-29 10:41:48 +00:00
Assar Westerlund
63b7a66e28 (tgs_rep): call tgs_rep2 properly
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9768 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-03-26 03:01:58 +00:00
Assar Westerlund
dd38d687f6 (tgs_rep2): try to set sec and usec in error replies
(*): update callers of krb5_km_error
(check_tgs_flags): handle renews requesting non-renewable tickets


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9763 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-03-26 00:55:15 +00:00
Assar Westerlund
d4263fdf0d adapt to new db_fetch, and try to print useful error messages when it fails
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9600 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-01-30 01:44:08 +00:00
Assar Westerlund
81fbeb826f (as_rep): be paranoid and check krb5_enctype_to_string for failure,
noted by <lha@stacken.kth.se>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9553 ec53bebd-3082-4978-b11e-865c3cabbd6b
2001-01-28 22:57:47 +00:00
Assar Westerlund
f33d7d5bac (tgs_rep2): adapt to new krb5_verify_ap_req2
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9191 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-11-15 23:09:02 +00:00
Assar Westerlund
735d459976 (tgs_rep2): try to avoid leaking auth_context
use free_ent


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9033 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-09-10 14:17:36 +00:00
Assar Westerlund
2fc8e73137 (find_type): make sure of always setting `ret_etype' correctly.
clean-up structure some


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8990 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-08-23 20:25:06 +00:00
Assar Westerlund
accdd87f82 check return value from krb5_crypto_init
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8975 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-08-18 06:50:26 +00:00
Assar Westerlund
5a4cc9eff1 re-write search for keys code. loop over all supported enctypes in
order, looping over all keys of each type, and picking the one with
the v5 default salt preferably


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8938 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-08-13 01:55:59 +00:00
Assar Westerlund
d6ac67fda3 (check_tgs_flags): set endtime correctly when renewing, From Derrick J
Brashear <shadow@dementia.org>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8872 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-07-29 05:19:37 +00:00
Assar Westerlund
63d826a6eb (as_rep): cut-n-pasto
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8666 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-07-11 23:37:17 +00:00
Assar Westerlund
2068afa985 (as_rep): be careful as to now overflowing when calculating the end of
lifetime of a ticket.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8566 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-07-06 22:43:04 +00:00
Assar Westerlund
08da0afa8c (get_pa_etype_info): do not set salttype if it's vanilla pw-salt, that
keeps win2k happy.  also do the malloc check correctly.  From Daniel
Kouril <kouril@ics.muni.cz>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8417 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-06-21 01:54:15 +00:00
Johan Danielsson
328af4c318 pa_* -> KRB5_PADATA_*
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8409 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-06-19 16:11:31 +00:00
Assar Westerlund
86e828c208 (check_flags): make global
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8031 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-03-11 03:27:36 +00:00
Assar Westerlund
653d311970 add support for anonyous tickets
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8013 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-03-04 15:55:38 +00:00
Assar Westerlund
cd61f39853 re-indent a tiny bit
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7811 ec53bebd-3082-4978-b11e-865c3cabbd6b
2000-01-18 03:13:00 +00:00
Johan Danielsson
c5b916ca6f remove advertising clause
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7464 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-12-02 17:05:13 +00:00
Assar Westerlund
57dee8ff47 (find_keys): etypes should be int
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7368 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-11-13 04:14:08 +00:00
Assar Westerlund
89d9ad5354 (find_etype): support null keys
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7154 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-10-17 10:35:33 +00:00
Johan Danielsson
72fc8150f1 be more informative in pa-data error messages
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6991 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-09-20 14:07:31 +00:00
Assar Westerlund
d50e05405a (as_rep): add an empty X500-compress string as transited.
(fix_transited_encoding): check length.
From Miroslav Ruda <ruda@ics.muni.cz>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6722 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-08-04 17:14:27 +00:00
Assar Westerlund
509f66086f (get_pa_etype_info): check return value from malloc
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6392 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-07-03 02:26:52 +00:00
Johan Danielsson
b5697c0ca6 fix arguments to decrypt_ticket
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6055 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-04-27 13:50:07 +00:00
Assar Westerlund
3979b0e513 (check_tgs_flags): starttime of a validate ticket should be > than
current time
(*): send flags to krb5_verify_ap_req and krb5_decrypt_ticket


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6002 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-04-19 14:47:33 +00:00
Johan Danielsson
aaae186ab9 merge new-crypto branch
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@5332 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-02-11 21:03:59 +00:00
Assar Westerlund
34ea75f10f (check_flags): handle NULL client or server
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@5311 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-01-30 19:35:53 +00:00
Assar Westerlund
1ef2bdb96d (tgs_rep2): print the principal with mismatching kvnos
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@5287 ec53bebd-3082-4978-b11e-865c3cabbd6b
1999-01-30 14:28:34 +00:00
Johan Danielsson
1cf9077163 (as_rep): set keytype to sess_ktype if ktype_is_etype
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@5233 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-11-22 10:44:27 +00:00
Assar Westerlund
e80e7f73a0 (get_pa_etype_info): initialize `ret'
(tgs_rep2): initialize `krbtgt'


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@5050 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-06-30 16:09:57 +00:00
Johan Danielsson
40c3be460d (check_tgs_flags): make sure kdc-req-body->rtime is not NULL; set
endtime to min of new starttime + old_life, and requested endtime


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4975 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-05-28 22:33:00 +00:00
Johan Danielsson
beeb25cdac Optionally compare client address to addresses in ticket.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4970 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-05-28 19:29:43 +00:00
Johan Danielsson
f43f1bd246 Check for `encode_as_rep_as_tgs_rep' flag. Emit an error message if no
matching keys where found.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4723 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-04-05 05:07:04 +00:00
Johan Danielsson
21f9d06453 static
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4642 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-03-21 23:30:29 +00:00
Johan Danielsson
d9f69b31b4 fix some XXX comments
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4641 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-03-21 22:16:13 +00:00
Johan Danielsson
3acaa32a3d Move checking of principal flags to new function `check_flags'.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4638 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-03-21 21:57:08 +00:00
Johan Danielsson
5ab42022ca Rename PA-KEY-INFO -> ETYPE-INFO.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4618 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-03-21 00:48:46 +00:00
Johan Danielsson
05a5c19e41 (tgs_rep2): check for interesting flags on involved principals.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4614 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-03-20 23:48:37 +00:00
Assar Westerlund
d8eb5501ca (get_pa_etype_info): remove gcc-ism of initializing local struct in
declaration.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4379 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-02-12 02:28:29 +00:00
Johan Danielsson
41c21a7ca4 Check at runtime whether to use enctypes instead of keytypes. If so
use the same value to encrypt ticket, and kdc-rep as well as `keytype'
for session key. Fix some obvious bugs with the handling of additional
tickets.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4373 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-01-31 16:47:31 +00:00
Johan Danielsson
b978944405 Cleanup some ktype-etype code.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4355 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-01-22 23:34:07 +00:00
Johan Danielsson
5281b7bbfe If pre-authentication fails, return a list of keytypes, salttypes, and
salts.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4350 ec53bebd-3082-4978-b11e-865c3cabbd6b
1998-01-22 22:35:46 +00:00