oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
27,266 Commits 2 Branches 2 Tags
f0f07ff408031a76cf892515f5f72a0d5e30fabf
Commit Graph

43 Commits

Author SHA1 Message Date
Nicolas Williams
82f1c1f391 Encrypt keys in change password code even when !keepold 2012-06-14 13:46:20 -05:00
Roland C. Dowdeswell
c2cd2395bb chpass_s.c must set KADM5_ATTRIBUTES when writing the log entry... 
...because we may have cleared the requires_pwchange flag.
 2012-06-08 16:08:25 +01:00
Roland C. Dowdeswell
5b2d65fa2b We need to remove +requires_pwchange on passwd changes. 2012-02-27 11:04:24 +00:00
Roland C. Dowdeswell
af011f57fc Provide server side kadm5_chpass_principal_3() with ks_tuple implementation. 
We enable kadm5_chpass_principal_3() in the server side of the
library.  The client kadm5 library calls will still return the
error KAMD5_KS_TUPLE_NO_SUPP.

Signed-off-by: Nicolas Williams <nico@cryptonector.com>
 2011-11-29 14:47:37 -06:00
Nicolas Williams
104bb8ef53 Fix unitialized HDB_extension problem (specifically the mandatory field) 2011-10-31 00:20:05 -05:00
Nicolas Williams
dfc7ec92fa Make kadm5_lock() and unlock work, and add kadmin commands for them. 
The libkadm5 functions hdb_open() and close around all HDB ops.  This
meant the previous implementation of kadm5_lock() and unlock would
always result in a core dump.  Now we hdb_open() for write in
kadm5_lock() and hdb_close() in kadm5_unlock(), with all kadm5_s_*()
functions now not opening nor closing the HDB when the server context
keep_open flag is set.

Also, there's now kadmin(8) lock and unlock commands.  These are there
primarily as a way to test the kadm5_lock()/unlock() operations, but
MIT's kadmin.local also has lock/unlock commands, and these can be
useful for scripting (though they require much care).
 2011-07-22 21:07:48 -05:00
Nicolas Williams
784e6a69df Avoid useless work related to keepold. 2011-07-22 16:07:07 -05:00
Nicolas Williams
0d90e0c4d0 Complete --keepold support and fix crasher in kadmin cpw -r --keepold. 2011-07-22 16:07:06 -05:00
Nicolas Williams
e16360e2db Add --keepold option to cpw. 2011-07-22 16:07:05 -05:00
Nicolas Williams
51e9da4a66 Fixed (preemptively) a double free and added password history based on key history. 2011-07-22 16:04:52 -05:00
Nicolas Williams
fca53990e4 Initial commit for second approach for multiple kvno. NOT TESTED! 2011-07-22 16:04:51 -05:00
Love Hornquist Astrand
0879b9831a remove trailing whitespace 2011-05-21 11:57:31 -07:00
Love Hornquist Astrand
965836509b switch to hdb_fetch_kvno 2010-11-28 11:43:02 -08:00
Love Hornquist Astrand
ff87429593 Make LDAP code fetch less attributes from LDAP server when KDC is asking 
Johan Gadsjö did a awesome analysis of the LDAP access pattens
and sent us a patch that reduced the calls the ldap server by 4
times as many. The patch was adopted and change to avoid compile
time depencies and make the determination runtime instead. Thanks!
 2009-10-03 13:20:41 -07:00
Love Hörnquist Åstrand
e28e7b2c45 check for hdb->hdb_password 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@25301 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-07-03 04:26:12 +00:00
Love Hörnquist Åstrand
bbd689d3b3 Reject if any key in old keys are in the new keyset, the list of enctypes might have changed. Pointed out by David Markey 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24024 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-11-12 04:17:47 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
7fcd266fdd use krb5_set_error_message 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23316 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-06-23 04:32:32 +00:00
Love Hörnquist Åstrand
18480ebd4b Write log entry after store is successful. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20608 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-05-08 07:11:48 +00:00
Love Hörnquist Åstrand
eea5f34855 Pass in HDB_F_GET_ANY to all ->hdb fetch to hint what entries we are looking for 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17313 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-27 11:18:52 +00:00
Love Hörnquist Åstrand
e4adaa6783 Break out the that we request from principal from the entry and pass 
it in as a seprate argument.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17309 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-27 11:06:57 +00:00
Love Hörnquist Åstrand
50fbd27e73 memset hdb_entry_ex before use 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16394 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-12-13 11:46:05 +00:00
Love Hörnquist Åstrand
0c2369acd0 Wrap hdb_entry with hdb_entry_ex, patch originally from Andrew Bartlet 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16378 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-12-12 12:40:12 +00:00
Love Hörnquist Åstrand
ee050659b1 Constify password 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16044 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-09-08 11:30:53 +00:00
Love Hörnquist Åstrand
753fb8e651 Operations modify extensions, mark that with TL_DATA. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@15882 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2005-08-11 13:22:36 +00:00
Love Hörnquist Åstrand
03b4ecc9bd deal with changed prototype for _kadm5_free_keys 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@14219 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-09-12 12:10:35 +00:00
Love Hörnquist Åstrand
a3beff27cb (change): bump kvno 
(kadm5_s_chpass_principal_with_key): bump kvno


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13407 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2004-02-29 06:00:56 +00:00
Love Hörnquist Åstrand
db2b1a8fc9 (change): fix same-password-again by decrypting keys and setting an error code 
From: Buck Huppmann <buckh@pobox.com>


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@13246 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-12-30 15:49:55 +00:00
Love Hörnquist Åstrand
0540f13b86 prefix all struct HDB elements with hdb_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@12880 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2003-09-19 00:25:35 +00:00
Assar Westerlund
c7c19f07f3 adapt to new hdb_seal_keys and hdb_unseal_keys 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@9595 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2001-01-30 01:24:29 +00:00
Assar Westerlund
c0e31d8fba call _kadm5_bump_pw_expire 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8800 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-24 04:29:34 +00:00
Assar Westerlund
ff33a64774 (kadm5_s_chpass_principal_cond): new function 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8763 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-22 05:50:13 +00:00
Johan Danielsson
bb90aecaee pass context to seal/unseal_keys 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8551 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-07-05 13:17:32 +00:00
Assar Westerlund
e30b1fc5d9 comment-ize and change calling convention for _kadm5_set_keys* 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@8057 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2000-03-23 22:57:56 +00:00
Johan Danielsson
c5b916ca6f remove advertising clause 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@7464 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-12-02 17:05:13 +00:00
Johan Danielsson
415367a914 fix arguments to _kadm5_set_keys2 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6108 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-05-03 18:07:59 +00:00
Johan Danielsson
c3e59002fe add flags to fetch and store; seal keys before logging 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6097 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-05-03 17:09:58 +00:00
Johan Danielsson
fe34d99057 add kadm5_s_chpass_principal_with_key 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@6073 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1999-05-03 16:38:48 +00:00
Assar Westerlund
9278b7caa0 (kadm5_s_chpass_principal): add change to log 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@4309 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1998-01-20 22:03:15 +00:00
Johan Danielsson
0e9fb80fbb Return values. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@3780 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-11-05 23:23:12 +00:00
Johan Danielsson
6468475655 Use _kadm5_set_keys(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@3725 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-11-01 00:41:08 +00:00
Johan Danielsson
68d77a285f Beginning of a kadm5-library 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@3662 ec53bebd-3082-4978-b11e-865c3cabbd6b
 1997-10-25 06:19:27 +00:00