Commit Graph

17238 Commits

Author SHA1 Message Date
Love Hörnquist Åstrand
615106f750 (_kdc_pk_check_client): make it not crash when there are no acl
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17831 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-13 18:37:58 +00:00
Love Hörnquist Åstrand
fea203a708 (_kdc_pk_check_client): use the acl in the kerberos database
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17830 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-13 18:32:45 +00:00
Love Hörnquist Åstrand
c0c59a96f2 Rename HDB-Ext-PKINIT-certificate to HDB-Ext-PKINIT-hash.
Add trust anchor to HDB-Ext-PKINIT-acl.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17829 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-13 18:22:22 +00:00
Love Hörnquist Åstrand
ae8b26789f rename asn1_HDB_Ext_PKINIT_certificate to asn1_HDB_Ext_PKINIT_hash
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17828 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-13 18:20:31 +00:00
Love Hörnquist Åstrand
5575d427b3 Add hdb_entry_get_pkinit_hash().
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17827 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-13 18:18:50 +00:00
Love Hörnquist Åstrand
2cdda8a767 (_gsskrb5_accept_sec_context): use GSS_C_NO_NAME
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17826 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-10 18:28:22 +00:00
Love Hörnquist Åstrand
c2de386016 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17825 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-10 17:03:52 +00:00
Love Hörnquist Åstrand
ecd86630af x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17824 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-10 14:48:05 +00:00
Love Hörnquist Åstrand
5ea0612ca9 If --password-file gets STDIN, read the password from the standard input.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17823 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-10 14:47:45 +00:00
Love Hörnquist Åstrand
095abbfd38 Document --password-file=STDIN.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17822 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-10 14:46:58 +00:00
Love Hörnquist Åstrand
35097afefd x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17821 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-10 14:29:10 +00:00
Love Hörnquist Åstrand
16de57a5b4 Remove duplicate to.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17820 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-10 14:28:01 +00:00
Love Hörnquist Åstrand
1656b1d9b2 switch order of headerfiles
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17819 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-07 22:21:56 +00:00
Love Hörnquist Åstrand
49f58ef90d Include <krb5-types.h> and "mechqueue.h"
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17818 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-07 15:37:44 +00:00
Love Hörnquist Åstrand
6b8a8dcea1 Add SLIST macros
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17817 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-07 15:36:10 +00:00
Love Hörnquist Åstrand
71d3172ea3 Don't free return values on success.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17816 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-07 01:48:30 +00:00
Love Hörnquist Åstrand
48e418072e (_gsskrb5_inquire_cred): When cred provided is the default cred,
acquire the acceptor cred and initator cred in two diffrent steps and
then query them for the information, this way, the code wont fail if
there are no keytab, but there is a credential cache.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17815 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 22:37:19 +00:00
Love Hörnquist Åstrand
5a56af8c79 move the check if we found any cred where it matter for both cases
(default cred and provided cred)


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17814 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 22:34:05 +00:00
Love Hörnquist Åstrand
323e9bf254 The variable `mechanisms´ might be NULL, use a diffrent counter if we
manged to inquire the underlaying creds or not


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17813 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 22:32:28 +00:00
Love Hörnquist Åstrand
07b69b1028 If the desired mechanism can't convert the name to a MN, fail with
GSS_S_BAD_NAME rather then a NULL de-reference.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17812 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 22:30:09 +00:00
Love Hörnquist Åstrand
fd78f09696 readd gss_spnego_inquire_names_for_mech
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17811 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 19:31:57 +00:00
Love Hörnquist Åstrand
3db3b74783 reimplement gss_spnego_inquire_names_for_mech
add support function _gss_spnego_supported_mechs


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17810 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 19:31:24 +00:00
Love Hörnquist Åstrand
c358d8ccdc x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17809 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 16:49:59 +00:00
Love Hörnquist Åstrand
33112b20c1 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17808 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 15:56:07 +00:00
Love Hörnquist Åstrand
2a2b91e51b Check for cross realm case where remove user doesn't exists in the
database, this is ok assuming the cross realm isn't local. In the
general case this isn't true.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17807 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 15:50:31 +00:00
Love Hörnquist Åstrand
ce5ef410ee (tgs_build_reply): when checking for removed principals, check the
second component of the krbtgt, otherwise cross realm wont work.
Prompted by report from Mattias Amnefelt.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17806 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-06 15:38:31 +00:00
Love Hörnquist Åstrand
0b7b83d732 Only allow exporting MN, reset exported_name.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17805 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 22:41:57 +00:00
Love Hörnquist Åstrand
5f14a70630 drop gss_spnego_indicate_mechs
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17804 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 22:38:02 +00:00
Love Hörnquist Åstrand
1fac73929a if the underlaying mech doesn't support gss_indicate_mechs, use the
oid in the mechswitch structure


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17803 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 22:36:49 +00:00
Love Hörnquist Åstrand
3a8f9143b7 let the mech glue layer implement gss_indicate_mechs
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17802 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 22:35:45 +00:00
Love Hörnquist Åstrand
34d35f83bf (gss_spnego_acquire_cred): don't care about desired_mechs, get our own
list with indicate_mechs and remote ourself.


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17801 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 22:35:02 +00:00
Love Hörnquist Åstrand
909a02791f remove gss_spnego_inquire_names_for_mech, let the mechglue layer implement it
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17800 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 21:32:49 +00:00
Love Hörnquist Åstrand
22ea639a6f x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17799 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 12:00:43 +00:00
Love Hörnquist Åstrand
5f62c460c3 (handle_vanilla_tcp): use unsigned integer for for length(
(handle_tcp): if the high bit it set in the unknown case, send back a
KRB_ERR_FIELD_TOOLONG


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17798 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-05 12:00:16 +00:00
Love Hörnquist Åstrand
02a8293b7e Add get_version_capa, cache target_name.
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17797 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-03 10:53:21 +00:00
Love Hörnquist Åstrand
0822bf8ae4 use utname() to find the local hostname
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17796 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-03 10:52:05 +00:00
Love Hörnquist Åstrand
ede9adf78c include <sys/utsname.h>
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17795 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-03 10:51:37 +00:00
Love Hörnquist Åstrand
be85e19ad5 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17794 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-02 22:36:49 +00:00
Love Hörnquist Åstrand
fffc248c1f break out creation of a client and make handleServer pthread_create compatible
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17793 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-02 22:36:37 +00:00
Love Hörnquist Åstrand
40256ad394 break out out the build context function
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17792 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-02 22:35:41 +00:00
Love Hörnquist Åstrand
a9558a6f9b x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17791 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:48:39 +00:00
Love Hörnquist Åstrand
bf43f47903 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17790 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:47:57 +00:00
Love Hörnquist Åstrand
b18cca48b1 ignore Makefile.in
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17789 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:37:27 +00:00
Love Hörnquist Åstrand
95ee7df071 externalize slave handling, add GetTargetName glue
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17788 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:36:14 +00:00
Love Hörnquist Åstrand
706ef0ecd5 (krb5_parse_name): set *principal to NULL the first thing we do, so
that on failure its set to a known value


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17787 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:30:15 +00:00
Love Hörnquist Åstrand
f409403b7d AcquireCreds: set principal to NULL to avoid memory corruption
GetTargetName: always send a string, even though we don't have a targetname


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17786 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:28:42 +00:00
Love Hörnquist Åstrand
923d63fd9e x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17785 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:20:27 +00:00
Love Hörnquist Åstrand
afd0ce92a8 externalize principal/password handling
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17784 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 09:07:02 +00:00
Love Hörnquist Åstrand
bff708b6c9 x
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17783 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 08:51:06 +00:00
Love Hörnquist Åstrand
f69250b34c fix argument to gss_release_cred
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17782 ec53bebd-3082-4978-b11e-865c3cabbd6b
2006-07-01 08:50:49 +00:00