oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
15,201 Commits 2 Branches 2 Tags
e890ac91be204c8fe78cf0a3ad277c1ea00a7f14
Commit Graph

190 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
fa2d2092a7 (_kdc_as_rep): Pass down the request buffer to _kdc_pk_mk_pa_reply. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15916 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-12 08:24:50 +00:00
Love Hörnquist Åstrand
e6cee493ed (_kdc_as_rep): preserve the error code in the ENC-TS case. 
From: Andrew Bartlett <abartlet@samba.org>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15861 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:34:36 +00:00
Love Hörnquist Åstrand
07e7b59fab (tgs_rep2): only needs to log "Failed to verify authenticator" once, 
its already done by tgs_check_authenticator().


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15860 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:25:40 +00:00
Love Hörnquist Åstrand
d63614824b Indent strings. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15859 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:18:09 +00:00
Love Hörnquist Åstrand
ee163963c6 (log_timestamp): avoid shadow warnings 
From: Andrew Bartlett <abartlet@samba.org>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15858 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-09 21:14:25 +00:00
Love Hörnquist Åstrand
299df4981f (_kdc_as_rep): log what enctypes was using in ENC-TS preauth, both for 
failure and success.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15829 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-28 20:29:39 +00:00
Love Hörnquist Åstrand
7e5e3fbc97 indent printf strings 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15827 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-28 14:11:11 +00:00
Love Hörnquist Åstrand
9af7efed48 prefix pkinit symbols with _kdc 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15544 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-01 15:37:24 +00:00
Love Hörnquist Åstrand
de92125f9d adapt pkinit code to libkdc split 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15540 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-07-01 04:42:59 +00:00
Love Hörnquist Åstrand
7a3fc5e663 Don't pollute namespace, generate public headerfile 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15532 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-30 01:54:49 +00:00
Love Hörnquist Åstrand
7132a9b084 Merge in the libkdc/kdc configuration split from Andrew Bartlet <abartlet@samba.org> 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15529 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-30 01:03:35 +00:00
Love Hörnquist Åstrand
68af583951 Add logging of all timestamps in AS-REQ and TGS-REQ, for auditing 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15523 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-29 00:41:57 +00:00
Love Hörnquist Åstrand
532cfd87e6 (as_req): print the supported encryption types so its possible to know 
what clients to update.
(find_rpath): return const char * and update callers.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15522 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-28 23:06:13 +00:00
Love Hörnquist Åstrand
f790e9089a (make_etype_info2_entry): NUL terminate the string 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15398 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-15 11:34:53 +00:00
Love Hörnquist Åstrand
5e9e3d8374 replace strndup with inline copy, free data on failure 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15394 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-15 11:22:33 +00:00
Love Hörnquist Åstrand
76f6061241 (tgs_rep2): rename one of the tkey to uukey to avoid shadow warning 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15387 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-15 02:36:03 +00:00
Love Hörnquist Åstrand
1207596131 (tgs_rep2): rename loop to nloop to avoid shadow warning 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15386 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-06-15 02:31:56 +00:00
Love Hörnquist Åstrand
5f764ae99f (tgs_make_reply): copy ok-as-delegate flag from server entry to 
encrypted ticket flags


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15308 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-05-30 20:28:19 +00:00
Love Hörnquist Åstrand
2c65e2f431 (as_rep): search for pkinit-9, pkinit-19, and pkinit-25 pa-data, 
return empty pkinit pa-data in the PREAUTH_REQUIRED krb-error


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15115 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-05-10 19:37:44 +00:00
Love Hörnquist Åstrand
bb2ca4b24b use the newly generated units function 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14962 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-25 18:20:50 +00:00
Love Hörnquist Åstrand
f9078126dd spell succeeded correctly, From Sean Chittenden 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14878 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-04-21 13:51:34 +00:00
Love Hörnquist Åstrand
38ed3f09f9 AES is enabled by default, remove ifdefs 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14652 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-03-17 00:28:48 +00:00
Luke Howard
4fdebcb8b9 Don't crash when logging no server etype support if client == NULL 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14523 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-24 10:34:21 +00:00
Love Hörnquist Åstrand
b0767711ce make build, for real this time 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14511 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-09 20:33:00 +00:00
Love Hörnquist Åstrand
4ceacfa1b0 revert part (server) referals draft patch that shouldn't have gone in, 
not tested


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14510 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-09 16:49:38 +00:00
Love Hörnquist Åstrand
2d1c1063ef krb5_enctype_is_disabled is the same thing as krb5_enctype_valid, so 
use the later since its older and the api doesn't really need another
entry point


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14487 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-01-08 20:43:50 +00:00
Love Hörnquist Åstrand
6f41f39523 use private version of principalname 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14424 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-12-29 19:22:28 +00:00
Love Hörnquist Åstrand
2f8082aad8 (find_keys): log what principal is missing enctypes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14355 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-11-15 02:02:30 +00:00
Love Hörnquist Åstrand
071edda84b (get_pa_etype_info{,2}): check for dup enctypes from the client and 
filter them out.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14119 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-08-13 19:08:26 +00:00
Love Hörnquist Åstrand
6c42be48d6 s/krb5_get_host_realm_int/_&/ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13626 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-03-23 12:08:55 +00:00
Love Hörnquist Åstrand
72ca40b845 add missing req argument to pk_mk_pa_reply 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13499 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-03-09 22:34:18 +00:00
Love Hörnquist Åstrand
15af520f64 check if enctype is disabled before using it 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13453 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-03-07 17:06:01 +00:00
Love Hörnquist Åstrand
60e6ffb478 ifdef protect label that is only uesd with pkinit 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13451 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-03-07 16:40:58 +00:00
Love Hörnquist Åstrand
a81af4edb5 add pkinit support 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13143 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-24 04:19:43 +00:00
Love Hörnquist Åstrand
4e48b5550c (tgs_rep2): don't free ticket, krb5_free_ticket does that now 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13103 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-11-09 00:58:03 +00:00
Johan Danielsson
ed1bc5a928 make sure that the server realm and the krbtgt second component are 
identical; get rpath from the capaths section


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13072 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-22 18:48:20 +00:00
Johan Danielsson
1461770557 change logic for when to check transited policy to a tri-state model 
involving per principal flags (to be implemented)


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13070 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-22 18:22:24 +00:00
Johan Danielsson
fb3910cc5a (fix_transited_encoding): always print cross-realm information 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13045 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 16:56:32 +00:00
Love Hörnquist Åstrand
d18d7cea84 (fix_transited_encoding): set transited type 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13043 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 14:53:02 +00:00
Johan Danielsson
357e4592b9 always check transited policy if flag set either globally or on 
principal


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13037 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 11:16:43 +00:00
Johan Danielsson
5d138af639 (fix_transited_encoding): also verify with policy, unless asked not to 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13027 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:45:28 +00:00
Love Hörnquist Åstrand
1d36859dc0 (only_older_enctype_p): check request if the client only supports old 
enctypes, before it used the database


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12787 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-09 02:01:02 +00:00
Love Hörnquist Åstrand
814929f329 (as_rep): remove usused variable 
(tgs_rep2): don't use a temporary ret-variable, ret is reset later


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12568 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-17 16:50:20 +00:00
Love Hörnquist Åstrand
dab18270d4 (*): handle krb5_unparse_name returning non-zero 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12549 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-16 15:59:37 +00:00
Love Hörnquist Åstrand
5b1231ff3a add support for KRB5_PADATA_ETYPE_INFO2 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12512 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-07-23 18:56:59 +00:00
Love Hörnquist Åstrand
b27ea1a8b6 fix some more memory leaks 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12019 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-04-15 11:07:39 +00:00
Love Hörnquist Åstrand
b7a5930e84 (as_rep): when the second enctype_to_string failes, remember to free 
memory from the first enctype_to_string


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11936 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-03-28 17:38:42 +00:00
Jacques A. Vidrine
9849899e7f Validate some counts that may be received from the network: 
Check that they are non-negative, and that they are small enough to
avoid integer overflow when used in memory allocation calculations.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11411 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-09-09 14:03:03 +00:00
Assar Westerlund
73aa6bce70 (encode_reply): correct error logging 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11396 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-09-05 02:55:01 +00:00
Johan Danielsson
9dbccbeb68 use ASN1_MALLOC_ENCODE 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11375 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-09-04 18:42:22 +00:00