oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Commit Graph

  • becd133799 Break out the that we request from principal from the entry and pass it in as a seprate argument. Love Hörnquist Åstrand 2006-04-27 11:00:29 +00:00
  • 47d79a7568 Break out the that we request from principal from the entry and pass it in as a seprate argument. Add more flags to ->hdb_get(). Re-indent. Love Hörnquist Åstrand 2006-04-27 10:59:32 +00:00
  • 4170a1fe6e x Love Hörnquist Åstrand 2006-04-27 09:18:09 +00:00
  • 390feff0cb rshd_SOURCES += add limits_conf.c Love Hörnquist Åstrand 2006-04-27 09:17:54 +00:00
  • b927ccbbf1 Include "loginpaths.h" Love Hörnquist Åstrand 2006-04-27 09:17:01 +00:00
  • 94731a9251 Read limits from limits.conf, patch from Daniel Ahlin on non-root login. Love Hörnquist Åstrand 2006-04-27 09:16:11 +00:00
  • 97d0c9dd3c x Love Hörnquist Åstrand 2006-04-27 09:15:05 +00:00
  • 7f951c53d0 Shared paths between login and rshd. Love Hörnquist Åstrand 2006-04-27 09:14:20 +00:00
  • 9f74e254e8 CRL delta support Love Hörnquist Åstrand 2006-04-27 08:01:04 +00:00
  • bbe32e832c x Love Hörnquist Åstrand 2006-04-26 20:11:13 +00:00
  • f9889e9eab ignore leftover from OpenSSL generation Love Hörnquist Åstrand 2006-04-26 20:10:14 +00:00
  • 01da7f3a0c x Love Hörnquist Åstrand 2006-04-26 20:09:34 +00:00
  • 5a305af6a1 Add name malformated error Love Hörnquist Åstrand 2006-04-26 20:09:02 +00:00
  • 1047c39f0d (hx509_parse_name): don't abort on error, rather return error Love Hörnquist Åstrand 2006-04-26 20:08:36 +00:00
  • 378ecba935 Test failure parsing name. Love Hörnquist Åstrand 2006-04-26 20:07:48 +00:00
  • 25f574426e (_krb5_pk_allow_proxy_certificate); less arguments better Love Hörnquist Åstrand 2006-04-26 18:54:16 +00:00
  • 61be59e8c7 make compile Love Hörnquist Åstrand 2006-04-26 18:53:52 +00:00
  • 2e299e21c3 x Love Hörnquist Åstrand 2006-04-26 18:44:01 +00:00
  • b4cb62bc99 document pki-allow-proxy-certificate Love Hörnquist Åstrand 2006-04-26 18:43:45 +00:00
  • 459f0648f1 Add option [kdc]pki-allow-proxy-certificate=bool to allow using proxy certificate. Love Hörnquist Åstrand 2006-04-26 18:42:48 +00:00
  • 53905171a0 (_krb5_pk_allow_proxy_certificates): expose hx509_verify_set_proxy_certificate Love Hörnquist Åstrand 2006-04-26 18:41:40 +00:00
  • d7bc1efbc8 (_kdc_pk_check_client): Use hx509_cert_get_base_subject to get subject name of the certificate, needed for proxy certificates. Love Hörnquist Åstrand 2006-04-26 18:36:22 +00:00
  • c7b6f93485 When verifying certificates, store subject basename for later consumption. Love Hörnquist Åstrand 2006-04-26 18:33:55 +00:00
  • 4035c1117d regen Love Hörnquist Åstrand 2006-04-26 17:18:11 +00:00
  • dcbc344ca5 Add test_name to regression tests Love Hörnquist Åstrand 2006-04-26 17:17:33 +00:00
  • 3a3a774e1e x Love Hörnquist Åstrand 2006-04-26 17:16:52 +00:00
  • 0117efb5aa test to parse and print name and check that they are the same. Love Hörnquist Åstrand 2006-04-26 17:16:44 +00:00
  • d9f7944c9b (hx509_parse_name): fix length argument to printf string Love Hörnquist Åstrand 2006-04-26 17:15:57 +00:00
  • fe9bb14be8 (hx509_parse_name): fix length argument to stringtooid, 1 too short. Love Hörnquist Åstrand 2006-04-26 17:12:36 +00:00
  • 70552d3ed2 remove debug printf's Love Hörnquist Åstrand 2006-04-26 16:59:52 +00:00
  • e944135b02 (hx509_parse_name): make compile pre c99 Love Hörnquist Åstrand 2006-04-26 16:56:26 +00:00
  • b55c0fbc9c OpenSSL have a serious issue of user confusion -subj in -ca takes the arguments in LDAP order. -subj for x509 takes it in x509 order. Love Hörnquist Åstrand 2006-04-26 16:49:23 +00:00
  • b1139e02d0 (hx509_verify_path): handle the case where the where two proxy certs in a chain. Love Hörnquist Åstrand 2006-04-26 16:47:45 +00:00
  • 5cf4bf36f0 enable two proxy certificates in a chain test Love Hörnquist Åstrand 2006-04-26 16:45:01 +00:00
  • d7839a8c50 x Love Hörnquist Åstrand 2006-04-26 16:17:18 +00:00
  • 05e08f62a6 regen Love Hörnquist Åstrand 2006-04-26 16:16:38 +00:00
  • c76ab3bc40 build proxy certificates Love Hörnquist Åstrand 2006-04-26 16:16:01 +00:00
  • d1b6d05cdc add def for proxy10_cert Love Hörnquist Åstrand 2006-04-26 16:15:33 +00:00
  • dfe29472cd add more certs Love Hörnquist Åstrand 2006-04-26 16:15:12 +00:00
  • dfd46eaeaa x Love Hörnquist Åstrand 2006-04-26 15:46:22 +00:00
  • ce731322d7 Add another proxy certificate error. Love Hörnquist Åstrand 2006-04-26 15:45:48 +00:00
  • f591c22c1f Now that find_keys speaks for it self, remove extra logging. Love Hörnquist Åstrand 2006-04-26 15:27:25 +00:00
  • f9d85a2590 (find_keys): add client_name and server_name argument and use them, and adapt callers. Love Hörnquist Åstrand 2006-04-26 15:22:57 +00:00
  • 0c3cff7fec x Love Hörnquist Åstrand 2006-04-26 15:03:02 +00:00
  • 56b18c1385 (hx509_verify_path): Need to mangle name to remove the CN of the subject, copying issuer only works for one level but is better then doing no checking at all. Love Hörnquist Åstrand 2006-04-26 15:02:48 +00:00
  • 05557b9ae9 Add verify --allow-proxy-certificate. Love Hörnquist Åstrand 2006-04-26 14:43:14 +00:00
  • 5a3e4a1865 add verify --allow-proxy-certificate Love Hörnquist Åstrand 2006-04-26 14:42:45 +00:00
  • d82349fba1 Add proxy certificate errors. Love Hörnquist Åstrand 2006-04-26 14:41:14 +00:00
  • db9e1df818 Fix comment about subject name of proxy certificate. Love Hörnquist Åstrand 2006-04-26 13:49:27 +00:00
  • cf3c9e7986 Make proxy certificate work. Love Hörnquist Åstrand 2006-04-26 13:35:20 +00:00
  • e9a7ef8057 tests for proxy certs Love Hörnquist Åstrand 2006-04-26 13:32:17 +00:00
  • 104b2bda39 gen proxy and non-proxy tests certificates Love Hörnquist Åstrand 2006-04-26 13:31:58 +00:00
  • a52db0479d Add definition for proxy certs Love Hörnquist Åstrand 2006-04-26 13:31:26 +00:00
  • 0c10f202f4 proxy certs Love Hörnquist Åstrand 2006-04-26 13:30:50 +00:00
  • 1b98d3a6ff (hx509_verify_path): verify proxy certificate have no san or ian Love Hörnquist Åstrand 2006-04-26 12:36:49 +00:00
  • 253352539c (hx509_verify_set_proxy_certificate): Add (*): rename policy cert to proxy cert Love Hörnquist Åstrand 2006-04-26 12:21:20 +00:00
  • 3d4b238a8b Initial support for policy certificates. Love Hörnquist Åstrand 2006-04-26 12:05:10 +00:00
  • a487250048 x Love Hörnquist Åstrand 2006-04-26 08:03:10 +00:00
  • e03eee6809 Add definitions from RFC 3820, Proxy Certificate Profile. Love Hörnquist Åstrand 2006-04-26 08:02:56 +00:00
  • 9176358a8f x Love Hörnquist Åstrand 2006-04-25 21:24:13 +00:00
  • 43c959fd1d document option password-file Love Hörnquist Åstrand 2006-04-25 21:24:04 +00:00
  • 594b3f5d86 Add option password-file, read password from the first line of a file. Love Hörnquist Åstrand 2006-04-25 21:21:23 +00:00
  • a2380d5c14 x Love Hörnquist Åstrand 2006-04-25 16:20:55 +00:00
  • 9632fbb0b3 ignore Makefile.in Love Hörnquist Åstrand 2006-04-25 16:17:49 +00:00
  • 64f262a5d1 x Love Hörnquist Åstrand 2006-04-25 16:15:55 +00:00
  • 0571f5c745 Try to detect another KDC running. Love Hörnquist Åstrand 2006-04-25 16:15:41 +00:00
  • 30503ce62c x Love Hörnquist Åstrand 2006-04-25 16:11:50 +00:00
  • fc2dc04d5c more tests regarding doing AS-REQ and TGS-REQ Love Hörnquist Åstrand 2006-04-25 14:23:58 +00:00
  • 31617a6385 x Love Hörnquist Åstrand 2006-04-25 13:04:36 +00:00
  • 3586978011 krb5.conf template Love Hörnquist Åstrand 2006-04-25 13:04:15 +00:00
  • d9e41b6d6b make tests/kdc/Makefile Love Hörnquist Åstrand 2006-04-25 12:51:23 +00:00
  • 6f6bb91306 x Love Hörnquist Åstrand 2006-04-25 12:49:22 +00:00
  • d7014d06a9 check that the keytab have the right kvno Love Hörnquist Åstrand 2006-04-25 12:49:11 +00:00
  • a680a138f2 (create_principal*): If client doesnt send kvno, make sure to set it to 1. Love Hörnquist Åstrand 2006-04-25 12:38:45 +00:00
  • 2edcff9efa Catch the case where the client sends no encryption types or no pa-types. Love Hörnquist Åstrand 2006-04-25 12:23:04 +00:00
  • 96eaf2075c create a server too Love Hörnquist Åstrand 2006-04-25 10:53:48 +00:00
  • 5530c158df check kdc too Love Hörnquist Åstrand 2006-04-25 10:50:40 +00:00
  • 1a4ace0238 Add add-modify-delete Love Hörnquist Åstrand 2006-04-25 10:30:41 +00:00
  • 6ab72dde33 basic kadmin tests Love Hörnquist Åstrand 2006-04-25 10:30:10 +00:00
  • a6b897ef0d (hdb_replace_extension): set error message on failure, not success. Love Hörnquist Åstrand 2006-04-25 10:20:22 +00:00
  • 1c567ba114 SUBDIR += kdc Love Hörnquist Åstrand 2006-04-25 08:58:53 +00:00
  • 97a3f9b3ca x Love Hörnquist Åstrand 2006-04-25 08:58:35 +00:00
  • e8ee222d4e Test framework for getting and checking tickets, start kdc on localhost:8888. Love Hörnquist Åstrand 2006-04-25 08:58:19 +00:00
  • 45d5ba491f Test framework for getting and checking tickets. Love Hörnquist Åstrand 2006-04-25 08:57:47 +00:00
  • 36dfd3e386 log all message to localhost Love Hörnquist Åstrand 2006-04-25 08:14:51 +00:00
  • 74b4df65c7 clean messages file Love Hörnquist Åstrand 2006-04-25 08:14:27 +00:00
  • 520d13e506 (parse_key_set): handle error case better (hdb_generate_key_set): return better error Love Hörnquist Åstrand 2006-04-25 08:09:38 +00:00
  • f5d20ae666 (hdb_create): print out what we don't support Love Hörnquist Åstrand 2006-04-24 20:57:58 +00:00
  • c00bcb52eb x Love Hörnquist Åstrand 2006-04-24 20:30:06 +00:00
  • 54f16d4f4c x Love Hörnquist Åstrand 2006-04-24 15:23:48 +00:00
  • 1a4fa0bb22 include <krb5-types.h> Love Hörnquist Åstrand 2006-04-24 15:23:38 +00:00
  • 2894e05a71 Remove a double free introduced in 1.93 Love Hörnquist Åstrand 2006-04-24 15:16:14 +00:00
  • b24395ffde (log_file): reset pointer to freed memory Love Hörnquist Åstrand 2006-04-24 15:09:27 +00:00
  • 4ba57d49e9 (get_cell_and_realm): reset d->cell to make sure its not refereced Love Hörnquist Åstrand 2006-04-24 15:06:57 +00:00
  • f98cb94d4e Sprinkel some assertions. Love Hörnquist Åstrand 2006-04-24 14:36:28 +00:00
  • d0bfcde47f Move assertion and add another restriction, used as hint to beam that its ok Love Hörnquist Åstrand 2006-04-24 14:26:19 +00:00
  • cfb3a670d7 x Love Hörnquist Åstrand 2006-04-24 11:12:39 +00:00
  • bdf6508cbf some error checking Love Hörnquist Åstrand 2006-04-24 11:09:56 +00:00
  • 8e39cadc48 Switch over to asn1 generaed oids. Love Hörnquist Åstrand 2006-04-24 10:29:16 +00:00
  • 92764f2109 libhcrypto might depend on libasn1, switch order Love Hörnquist Åstrand 2006-04-24 10:25:18 +00:00