oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
24,380 Commits 2 Branches 2 Tags
ee686871683967c311ed6b098bc13a0f8e0585b5
Commit Graph

516 Commits

Author SHA1 Message Date
Love Hornquist Astrand
0a92381e98 clean better 2009-08-06 10:19:28 +02:00
Andrew Bartlett
f8c121b282 Add support for user principal names in certificates [HEIMDAL-602] 
This extends the PKINIT code in Heimdal to ask the HDB layer if the
User Principal Name name in the certificate is an alias (perhaps just
by case change) of the name given in the AS-REQ.  (This was a TODO in
the Heimdal KDC)

The testsuite is extended to test this behaviour, and the other PKINIT
certficate (using the standard method to specify a principal name in a
certificate) is updated to use a Administrator (not administrator).
(This fixes the kinit test).
 2009-08-04 09:34:58 +02:00
Love Hornquist Astrand
e6c2a70678 Indent some more 2009-08-03 12:10:07 +02:00
Love Hornquist Astrand
b2129c0751 Indent the patch from Andrew and make it compile again 2009-08-03 10:54:44 +02:00
Love Hornquist Astrand
ada7c73176 Indent the patch from Andrew and make it compile again 2009-08-03 10:50:50 +02:00
Love Hornquist Astrand
788480d28a heimdal Extend the 'hdb as a keytab' code [HEIMDAL-600] 
This extends the hdb_keytab code to allow enumeration of all the keys.

The plan is to allow ktutil's copy command to copy from Samba4's
hdb_samba4 into a file-based keytab used in wireshark.

From Andrew Bartlett
 2009-08-03 10:43:22 +02:00
Love Hornquist Astrand
311ce98d85 (hdb_sqlite_rename): make rename work when there is a prefix 2009-07-19 18:42:02 -07:00
Love Hornquist Astrand
bd073cfd72 Limit maxinum retries of BUSY/BLOCK/LOCKED operations to MAX_RETRIES (default 10) 2009-07-19 18:01:51 -07:00
Love Hornquist Astrand
82150be255 allow loading sqlite 2009-07-19 17:58:53 -07:00
Love Hörnquist Åstrand
6a24e13678 Use hdb_get_dbinfo() to find the realms. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25326 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-15 22:17:30 +00:00
Love Hörnquist Åstrand
d3f16452e0 make compile 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25320 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:20:10 +00:00
Love Hörnquist Åstrand
5a9dd54e95 drop RCSID 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25319 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:09:16 +00:00
Love Hörnquist Åstrand
6aa38c372c Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25318 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:09:04 +00:00
Love Hörnquist Åstrand
ef92d8485a Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25317 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:48 +00:00
Love Hörnquist Åstrand
a18db94691 Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25316 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:36 +00:00
Love Hörnquist Åstrand
af77ace518 Push enterprise support into the bdblayer. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25315 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:26 +00:00
Love Hörnquist Åstrand
48a0f6d995 reset iteration query before continuing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25314 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:15 +00:00
Love Hörnquist Åstrand
e02d83174c set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25313 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:08:05 +00:00
Love Hörnquist Åstrand
4ff6ed4652 set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25312 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:07:52 +00:00
Love Hörnquist Åstrand
54b5beeb98 set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25311 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:07:41 +00:00
Love Hörnquist Åstrand
4beac004a1 set hdb_capability_flags = 0 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25310 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-05 05:07:30 +00:00
Love Hörnquist Åstrand
45ef83f6fd add hdb_check_constrained_delegation 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25302 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:26:25 +00:00
Love Hörnquist Åstrand
5c104ef172 add ->hdb_password and ->hdb_auth_status 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25298 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:25:29 +00:00
Love Hörnquist Åstrand
f65f1f26ef add HDBFlags: locked-out 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25297 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:25:01 +00:00
Love Hörnquist Åstrand
a28a9a1b30 comment about hdb_capability_flags 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25296 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:24:48 +00:00
Love Hörnquist Åstrand
ba04bad361 From Andrew Bartlet via heimdal-bugs@h5l.org 
s4:heimdal Allow KRB5_NT_ENTERPRISE names in all DB lookups

    The previous code only allowed an KRB5_NT_ENTERPRISE name (an e-mail
    list user principal name) in an AS-REQ.  Evidence from the wild
    (Win2k8 reportadely) indicates that this is instead valid for all
    types of requests.

    While this is now handled in heimdal/kdc/misc.c, a flag is now defined
    in Heimdal's hdb so that we can take over this handling in future (once we start
    using a system Heimdal, and if we find out there is more to be done
    here).

    Andrew

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25293 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 03:16:35 +00:00
Love Hörnquist Åstrand
b0a3f535bf SQLite3 backend from Pontus Walck and Stockholm Univerity. 
The work was done as part of Pontus's exjobb. Thanks!

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25269 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-03 17:26:08 +00:00
Love Hörnquist Åstrand
11fd4a0cd2 hdb_asn1.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25266 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-06-03 17:25:38 +00:00
Love Hörnquist Åstrand
ecc751b6dd remove #if 0 codeblock 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25196 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:04:38 +00:00
Love Hörnquist Åstrand
0de4182acb drop unused variable 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25189 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:03:11 +00:00
Love Hörnquist Åstrand
03ae51a040 catch read from socket error 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25188 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-05-06 19:03:00 +00:00
Love Hörnquist Åstrand
cc988ffd4b use krb5_principal_get_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25115 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-16 08:08:24 +00:00
Love Hörnquist Åstrand
85268de15a use krb5_principal_get_realm 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25114 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-16 08:06:42 +00:00
Love Hörnquist Åstrand
e6b3f6f796 document hdb__ functions. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25083 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 17:45:01 +00:00
Love Hörnquist Åstrand
6fac16450a doxygen 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25081 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 17:22:10 +00:00
Love Hörnquist Åstrand
421cb259bd doxygen 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25080 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-04-03 17:21:59 +00:00
Love Hörnquist Åstrand
590edb2fe7 add hdb_entry_get_pkinit_cert and sort 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25007 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 20:53:27 +00:00
Love Hörnquist Åstrand
4b25c7c880 add hdb_entry_get_pkinit_cert 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24996 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:04:20 +00:00
Love Hörnquist Åstrand
6fe0364120 cert 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24981 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:01:36 +00:00
Love Hörnquist Åstrand
15d6e41dea add pkinit-cert 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24980 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-29 09:01:25 +00:00
Love Hörnquist Åstrand
1a488a85b7 doxygen 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24977 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:57 +00:00
Love Hörnquist Åstrand
597f9dbdfa make module private functions static 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24976 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:46 +00:00
Love Hörnquist Åstrand
f90c2b8194 don't use hdb_dbc. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24974 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:21 +00:00
Love Hörnquist Åstrand
7cbcadcb21 document 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24973 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:08:10 +00:00
Love Hörnquist Åstrand
037366a584 document part of hdb.h 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24972 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:07:58 +00:00
Love Hörnquist Åstrand
8bb6609db6 unexport more internal symbols 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24971 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:07:42 +00:00
Love Hörnquist Åstrand
a5ee0ef10f unexport hdb_db_create 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24970 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-28 17:07:29 +00:00
Love Hörnquist Åstrand
c3866bd220 add encode_hdb_keyset and length_hdb_keyset 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24966 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-27 14:57:54 +00:00
Love Hörnquist Åstrand
47023f94ff add test_hdbkeys 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24949 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:38:25 +00:00
Love Hörnquist Åstrand
ad63429ea0 Code to print hdb_keysets. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24948 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-03-25 15:38:14 +00:00