oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
12,589 Commits 2 Branches 2 Tags
ed1bc5a9283a60cc9599e91697471b2e617c18ca
Commit Graph

155 Commits

Author SHA1 Message Date
Johan Danielsson
ed1bc5a928 make sure that the server realm and the krbtgt second component are 
identical; get rpath from the capaths section


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13072 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-22 18:48:20 +00:00
Johan Danielsson
1461770557 change logic for when to check transited policy to a tri-state model 
involving per principal flags (to be implemented)


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13070 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-22 18:22:24 +00:00
Johan Danielsson
fb3910cc5a (fix_transited_encoding): always print cross-realm information 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13045 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 16:56:32 +00:00
Love Hörnquist Åstrand
d18d7cea84 (fix_transited_encoding): set transited type 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13043 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 14:53:02 +00:00
Johan Danielsson
357e4592b9 always check transited policy if flag set either globally or on 
principal


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13037 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-21 11:16:43 +00:00
Johan Danielsson
5d138af639 (fix_transited_encoding): also verify with policy, unless asked not to 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13027 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-10-20 16:45:28 +00:00
Love Hörnquist Åstrand
1d36859dc0 (only_older_enctype_p): check request if the client only supports old 
enctypes, before it used the database


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12787 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-09 02:01:02 +00:00
Love Hörnquist Åstrand
814929f329 (as_rep): remove usused variable 
(tgs_rep2): don't use a temporary ret-variable, ret is reset later


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12568 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-17 16:50:20 +00:00
Love Hörnquist Åstrand
dab18270d4 (*): handle krb5_unparse_name returning non-zero 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12549 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-08-16 15:59:37 +00:00
Love Hörnquist Åstrand
5b1231ff3a add support for KRB5_PADATA_ETYPE_INFO2 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12512 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-07-23 18:56:59 +00:00
Love Hörnquist Åstrand
b27ea1a8b6 fix some more memory leaks 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12019 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-04-15 11:07:39 +00:00
Love Hörnquist Åstrand
b7a5930e84 (as_rep): when the second enctype_to_string failes, remember to free 
memory from the first enctype_to_string


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11936 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-03-28 17:38:42 +00:00
Jacques A. Vidrine
9849899e7f Validate some counts that may be received from the network: 
Check that they are non-negative, and that they are small enough to
avoid integer overflow when used in memory allocation calculations.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11411 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-09-09 14:03:03 +00:00
Assar Westerlund
73aa6bce70 (encode_reply): correct error logging 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11396 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-09-05 02:55:01 +00:00
Johan Danielsson
9dbccbeb68 use ASN1_MALLOC_ENCODE 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11375 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-09-04 18:42:22 +00:00
Johan Danielsson
47b7f07d33 ENOENT -> HDB_ERR_NOENTRY (from Derrick Brashear) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@11063 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-07-31 09:43:20 +00:00
Johan Danielsson
a3ff467dc7 don't free encrypted padata until we're really done with it 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10980 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-05-15 14:24:17 +00:00
Johan Danielsson
f446478772 when decrypting pa-data, try all keys matching enctype 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10974 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-05-07 10:27:35 +00:00
Johan Danielsson
7b3d5dbb6e (get_pa_etype_info): sort ETYPE-INFOs by requested KDC-REQ etypes 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10926 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-04-18 10:24:49 +00:00
Johan Danielsson
e93c997617 (find_etype): unsigned -> krb5_enctype (from Reinoud Zandijk) 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10890 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-03-22 12:12:44 +00:00
Assar Westerlund
9f1c66fe5f use krb5_enctype consistently. From Ben Harris <bjh21@netbsd.org> 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10804 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2002-01-06 23:10:06 +00:00
Assar Westerlund
2fb88a72e0 update to new krb5_auth_con* names 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@10107 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-06-18 04:08:37 +00:00
Assar Westerlund
32975edd28 (tgs_rep2): alloc and free csec and cusec properly 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9996 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-22 20:16:22 +00:00
Johan Danielsson
7becb13b02 pass context to krb5_domain_x500_decode 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9948 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-14 11:33:19 +00:00
Assar Westerlund
22a4752877 adapt to changing address functions 
use LR_TYPE


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9943 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-14 06:18:25 +00:00
Assar Westerlund
b507b4516a (tsg_rep): fix typo in variable name 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9933 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-12 15:19:40 +00:00
Johan Danielsson
3c09910254 don't use NULL where we mean 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9906 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-11 11:52:06 +00:00
Johan Danielsson
0cf3d16107 put referral test code in separate function, and test for 
KRB5_NT_SRV_INST


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9904 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-05-11 11:30:11 +00:00
Assar Westerlund
06d2baa47b (tgs_rep2): return a reference to a krbtgt for the right realm if we 
fail to find a non-krbtgt service in the database and the second
component does a succesful non-dns lookup to get the real realm (which
has to be different from the originally-supplied realm).  this should
help windows 2000 clients that always start their lookups in `their'
realm and do not have any idea of how to map hostnames into realms


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9824 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-04-29 11:02:49 +00:00
Assar Westerlund
b06fd720d9 (is_krbtgt): rename to get_krbtgt_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9823 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-04-29 10:41:48 +00:00
Assar Westerlund
63b7a66e28 (tgs_rep): call tgs_rep2 properly 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9768 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-03-26 03:01:58 +00:00
Assar Westerlund
dd38d687f6 (tgs_rep2): try to set sec and usec in error replies 
(*): update callers of krb5_km_error
(check_tgs_flags): handle renews requesting non-renewable tickets


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9763 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-03-26 00:55:15 +00:00
Assar Westerlund
d4263fdf0d adapt to new db_fetch, and try to print useful error messages when it fails 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9600 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-01-30 01:44:08 +00:00
Assar Westerlund
81fbeb826f (as_rep): be paranoid and check krb5_enctype_to_string for failure, 
noted by <lha@stacken.kth.se>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9553 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-01-28 22:57:47 +00:00
Assar Westerlund
f33d7d5bac (tgs_rep2): adapt to new krb5_verify_ap_req2 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9191 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-11-15 23:09:02 +00:00
Assar Westerlund
735d459976 (tgs_rep2): try to avoid leaking auth_context 
use free_ent


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9033 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-09-10 14:17:36 +00:00
Assar Westerlund
2fc8e73137 (find_type): make sure of always setting `ret_etype' correctly. 
clean-up structure some


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8990 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-08-23 20:25:06 +00:00
Assar Westerlund
accdd87f82 check return value from krb5_crypto_init 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8975 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-08-18 06:50:26 +00:00
Assar Westerlund
5a4cc9eff1 re-write search for keys code. loop over all supported enctypes in 
order, looping over all keys of each type, and picking the one with
the v5 default salt preferably


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8938 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-08-13 01:55:59 +00:00
Assar Westerlund
d6ac67fda3 (check_tgs_flags): set endtime correctly when renewing, From Derrick J 
Brashear <shadow@dementia.org>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8872 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-29 05:19:37 +00:00
Assar Westerlund
63d826a6eb (as_rep): cut-n-pasto 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8666 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-11 23:37:17 +00:00
Assar Westerlund
2068afa985 (as_rep): be careful as to now overflowing when calculating the end of 
lifetime of a ticket.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8566 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-06 22:43:04 +00:00
Assar Westerlund
08da0afa8c (get_pa_etype_info): do not set salttype if it's vanilla pw-salt, that 
keeps win2k happy.  also do the malloc check correctly.  From Daniel
Kouril <kouril@ics.muni.cz>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8417 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-06-21 01:54:15 +00:00
Johan Danielsson
328af4c318 pa_* -> KRB5_PADATA_* 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8409 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-06-19 16:11:31 +00:00
Assar Westerlund
86e828c208 (check_flags): make global 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8031 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-03-11 03:27:36 +00:00
Assar Westerlund
653d311970 add support for anonyous tickets 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8013 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-03-04 15:55:38 +00:00
Assar Westerlund
cd61f39853 re-indent a tiny bit 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7811 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-01-18 03:13:00 +00:00
Johan Danielsson
c5b916ca6f remove advertising clause 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7464 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-12-02 17:05:13 +00:00
Assar Westerlund
57dee8ff47 (find_keys): etypes should be int 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7368 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-11-13 04:14:08 +00:00
Assar Westerlund
89d9ad5354 (find_etype): support null keys 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7154 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-10-17 10:35:33 +00:00