69eaa1a026
use krb5_get_time_wrap
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18952 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-08 02:51:46 +00:00
f46e738880
Check that authtime is sane, From Andrew Bartlet
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18951 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-08 02:49:40 +00:00
0ed5fc55f9
_gsskrb5_extract_authz_data_from_sec_context no longer used, bye bye
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18950 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-08 02:42:50 +00:00
785e4c09a4
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18949 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-08 00:30:51 +00:00
0868717d3c
Add krb5_storage_from_readonly_mem that is safe to use on
...
const/readonly buffers (it doesn't support write).
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18948 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 23:02:53 +00:00
9b4cecc20f
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18947 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 22:16:28 +00:00
c978e4fb68
No depenency of the krb5 gssapi mech.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18946 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 22:15:52 +00:00
3dd9bbd06d
(gsskrb5_extract_authtime_from_sec_context): use _gsskrb5_decode_om_uint32
...
From Andrew Bartlet
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18945 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 22:03:29 +00:00
79be8d802d
Add dummy gss_krb5_set_allowable_enctypes for now.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18944 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 21:57:47 +00:00
0b2f6c4188
Add GSS_KRB5_SET_ALLOWABLE_ENCTYPES_X.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18943 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 21:05:03 +00:00
425b04dbb4
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18942 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 20:04:46 +00:00
4fc6a5e397
Include <roken.h> for compatiblity.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18941 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 19:53:40 +00:00
145d124f97
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18940 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 19:27:09 +00:00
c284a8900a
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18939 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 19:19:28 +00:00
2cba3dc5ce
Test mutual contexts and a commited out dce-style test
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18938 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 19:06:49 +00:00
4806754426
Use IS_DCE_STYLE flag. There is no padding in DCE-STYLE, don't try to use to.
...
From Andrew Bartlett.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18937 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 19:05:16 +00:00
cc68fac9fe
test wrap/unwrap, add flag for dce-style and mutual auth,
...
also support multi-roundtrip sessions
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18936 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 19:02:54 +00:00
893d903659
Add IS_DCE_STYLE macro.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18935 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 17:57:43 +00:00
1a7ec40448
(init_auth): There is no OID wrapping on the reply token. From Andrew Bartlett
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18934 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 17:40:01 +00:00
9956ae0200
Catch error string from hx509_cms_verify_signed.
...
Check for id-pKKdcEkuOID and warn if its not there.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18933 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 17:24:57 +00:00
dcb53a0099
Sprinkle error strings.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18932 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 17:19:17 +00:00
a04ab012c3
Add more krb5_rd_req_out_get functions.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18931 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 17:11:31 +00:00
3dced0866c
(gsskrb5_acceptor_start): use krb5_rd_req_ctx
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18930 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 14:52:05 +00:00
b38b62d51a
(gsskrb5_get_subkey): return the per message token subkey
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18929 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 14:41:35 +00:00
439286c150
check if there is any key at all
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18928 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 14:34:35 +00:00
3a849ff08d
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18927 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 00:20:20 +00:00
ef33b12686
krb5_rd_req_{in,out}_ctx.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18926 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 00:17:42 +00:00
3c84029aba
(krb5_rd_req_ctx): Add context all singing-all dancing version of the
...
krb5_rd_req and implement krb5_rd_req and krb5_rd_req_with_keyblock
using it.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18925 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-07 00:13:58 +00:00
8e0530bcee
Set more error strings, use right enum for acceptor subkey.
...
From Andrew Bartlett.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18924 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-06 18:21:23 +00:00
d3938b5abb
(krb5_ticket_get_authorization_data_type): unbreak.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18923 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-06 17:57:18 +00:00
7dc5946f3c
Fix extraction of authz data from the AuthorizationData sequence:
...
Where we had
IF-RELEVENT::
WIN2K-PAC
IF-RELEVENT::
SIGNED-PATH
The recursion into find_type_in_ad() for the second element would set
ret = ENOENT, and therefore the tail would set *found = FALSE, despite
the data already being found.
From Andrew Bartlett
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18922 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-06 17:53:58 +00:00
6c898c9c9f
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18921 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-06 17:36:25 +00:00
7ca637df72
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18920 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-06 17:16:10 +00:00
16679f8174
A few fixes to have Heimdal pass the make check under socket_wrapper.
...
The first is a missing 'break' before the (heimdal specific) IPv6 support.
The second works around the fact that sendto() *may* object to a
destination being specified. It appears to be that on Linux, this
objects (with EISCONN) for unix stream sockets, but not for TCP
sockets.
The alternate fix would be to have the KDC use 'send()' in this case.
Andrew Bartlett
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18919 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-06 17:12:34 +00:00
fc9d24c7de
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18918 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-05 00:50:49 +00:00
acaa0b8655
Test gsskrb5_extract_service_keyblock, needed in PAC valication.
...
From Andrew Bartlett
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18917 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-05 00:46:21 +00:00
15ffd5b195
Add keyblock extraction functions, set more errorstrings
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18916 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-05 00:35:32 +00:00
d3eeb37f3d
Add gsskrb5_extract_authz_data_from_sec_context and keyblock
...
extraction functions.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18915 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-05 00:23:01 +00:00
51c7ede9d6
Add extraction of keyblock function, from Andrew Bartlett.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18914 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-05 00:06:09 +00:00
e4947d8944
Add GSS_KRB5_GET_SERVICE_KEYBLOCK_X
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18913 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-05 00:03:15 +00:00
62430a07d1
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18912 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 23:55:26 +00:00
343b2cb1c2
(hx509_query_match_cmp_func): return 0
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18911 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 23:43:24 +00:00
159fc828ab
add context variable to cmp function.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18910 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 23:31:41 +00:00
c226612caa
(hx509_query_match_cmp_func): allow setting the match function.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18909 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 23:27:49 +00:00
6cf72f998b
(_kdc_as_rep): More verbose time skew logging.
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18908 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 17:05:28 +00:00
23e43c8e78
x
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18907 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 03:41:23 +00:00
ccbbd474e1
Rename various routines and constants from canonize to canonicalize.
...
From Andrew Bartlett
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18906 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 03:34:57 +00:00
b15281a864
Add krb5_[gs]et_time_wrap
...
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18905 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 03:27:47 +00:00
c9ccbb40f2
Rename various routines and constants from canonize to canonicalize.
...
From Andrew Bartlett
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18904 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 03:20:57 +00:00
0cd59b2fa5
Rename various routines and constants from canonize to canonicalize.
...
From Andrew Bartlett
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18903 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-11-04 03:12:46 +00:00
Love Hörnquist Åstrand