oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Commit Graph

  • bae73d1a95 parse [kdc]use_2b and [gssapi] Love Hörnquist Åstrand 2003-10-06 19:15:04 +00:00
  • 309a5a11fb x Love Hörnquist Åstrand 2003-10-05 00:16:34 +00:00
  • 565b767d29 x Love Hörnquist Åstrand 2003-10-04 05:44:46 +00:00
  • b44cea4ef2 (str2time_t): allow whitespace between date and time From: Bob Beck <beck@cvs.openbsd.org> and adharw@yahoo.com Love Hörnquist Åstrand 2003-10-04 05:36:29 +00:00
  • 7d3afe0d9b let t and n match zero or more whitespaces Love Hörnquist Åstrand 2003-10-04 05:15:29 +00:00
  • 7a45372a17 x Love Hörnquist Åstrand 2003-10-04 00:30:34 +00:00
  • 2b0cf9b3eb add BOOLEAN Love Hörnquist Åstrand 2003-10-03 23:49:41 +00:00
  • 04daad6bca x Love Hörnquist Åstrand 2003-10-03 12:22:43 +00:00
  • f2fe7866d3 When running kinit in "fork mode" do pagsh independent of krb4, also always do krb4 setup of cc. Always try to destroy the v4 cc. Love Hörnquist Åstrand 2003-10-03 12:21:42 +00:00
  • cdeab003ac (check_for_tgt): set client as part of the pattern/match cred Love Hörnquist Åstrand 2003-10-03 12:18:44 +00:00
  • 803a7c3db6 (_krb5_krb_dest_tkt): unlink v4 token (get_krb4_cc_name): move out from _krb5_krb_tf_setup (_krb5_krb_tf_setup): adapt to allocated filename instead of static filename Love Hörnquist Åstrand 2003-10-03 12:03:03 +00:00
  • cbb6dc1b85 add _krb5_krb_dest_tkt and TKT_ROOT Love Hörnquist Åstrand 2003-10-03 12:01:47 +00:00
  • d5acb83777 (*) send PA_PAC_REQUEST when the user have requested either use PAC or not use PAC, if the option not set from the user, leave it up to the kdc to decide. (init_creds_loop): clear error string on success Love Hörnquist Åstrand 2003-10-03 11:53:48 +00:00
  • d341945ac0 add krb5_get_init_creds_opt_set_paq_request break out common part of extended opt functions to require_ext_opt Love Hörnquist Åstrand 2003-10-03 11:51:42 +00:00
  • 989e429cda add enum krb5_get_init_creds_req_pac and use it in struct _krb5_get_init_creds_opt_private Love Hörnquist Åstrand 2003-10-03 11:50:32 +00:00
  • 3af232862a (islocalrealm): exact match is also fine Love Hörnquist Åstrand 2003-10-03 11:16:09 +00:00
  • 11d8f82808 handle some more failure lines Love Hörnquist Åstrand 2003-10-03 10:28:52 +00:00
  • c32350eb60 some diffrences between Heimdal and MIT Kerberos in the API Love Hörnquist Åstrand 2003-10-03 05:00:50 +00:00
  • a358b88c42 document krb5_principal_{get,set}_type Love Hörnquist Åstrand 2003-10-03 04:58:00 +00:00
  • 5e2f96156f add krb5_principal_set_type Love Hörnquist Åstrand 2003-10-03 04:52:06 +00:00
  • b40d499bb7 add Setting up DNS Love Hörnquist Åstrand 2003-10-03 04:03:36 +00:00
  • 97d37d8057 (krb5_rd_req): always free keyblock since its alway used Love Hörnquist Åstrand 2003-10-03 00:39:21 +00:00
  • adaa1fb814 add SAM types and PAC_REQUEST Love Hörnquist Åstrand 2003-10-03 00:33:20 +00:00
  • e01dbe09dd add more preauth types, add PA-PAC-REQUEST Love Hörnquist Åstrand 2003-10-03 00:31:01 +00:00
  • 8b8bcb8c9b add boolan support Love Hörnquist Åstrand 2003-10-03 00:28:29 +00:00
  • 67522cdee3 x Love Hörnquist Åstrand 2003-10-02 14:51:43 +00:00
  • 9aaf686b2a (setpw_send_request): free ap_req_data on failure Love Hörnquist Åstrand 2003-10-02 14:39:22 +00:00
  • 8d633a7083 count preauth failuire too Love Hörnquist Åstrand 2003-10-01 16:56:04 +00:00
  • 3908a59810 count principal and ip addresses using des remove unused stuff Love Hörnquist Åstrand 2003-10-01 16:45:37 +00:00
  • 7c0cd16320 sort count principal using des Love Hörnquist Åstrand 2003-10-01 16:16:58 +00:00
  • 259c3c8b64 remember last address make stats on failed lookups, both principal and andress make output more pretty Love Hörnquist Åstrand 2003-10-01 15:32:23 +00:00
  • 5ff87e582d parse kdc log Love Hörnquist Åstrand 2003-10-01 04:22:45 +00:00
  • 0be565a15f x Love Hörnquist Åstrand 2003-09-30 19:55:52 +00:00
  • bb2f366b8f x Love Hörnquist Åstrand 2003-09-30 18:58:06 +00:00
  • fc82b86bb0 (verify_krb5): set mcred.client too Love Hörnquist Åstrand 2003-09-30 18:57:49 +00:00
  • 7a00e2ac9a (do_connect): use ai_protocol 0 Love Hörnquist Åstrand 2003-09-30 18:56:31 +00:00
  • cf4d77c610 (krb5_afslog_uid_home): be even more friendly to the user and fetch context and id ourself Love Hörnquist Åstrand 2003-09-30 18:55:01 +00:00
  • 81b0402f62 x Love Hörnquist Åstrand 2003-09-30 18:05:52 +00:00
  • 2b7e870bf4 (init_cred_loop): handle KRB5KRB_ERR_RESPONSE_TOO_BIG and loop again, this time requesting LARGE_MSG from send to kdc, and if this is the second time bail out; try to free memory Love Hörnquist Åstrand 2003-09-30 18:05:27 +00:00
  • bce36e1e1e (krb5_sendto_kdc_flags): new function, and then implement the order krb5_sendto_kdc* function with this function. Love Hörnquist Åstrand 2003-09-30 17:39:53 +00:00
  • 9f1541abe3 (krb5_krbhst_init_flags): new function, use it and adapt callers (krbhst_get_default_proto): new function, returns udp, or in case large_msg was requested for the krb5_krbhst_data, use tcp. (*): if the flag KD_LARGE_MSG was set on the krb5_krbhst_data, avoid using udp, use krbhst_get_default_proto Love Hörnquist Åstrand 2003-09-30 17:38:18 +00:00
  • fb67a350b5 flags for krb5_krbhst_init_flags (and krb5_send_to_kdc_flags) Love Hörnquist Åstrand 2003-09-30 17:33:50 +00:00
  • c1cf2654de x Love Hörnquist Åstrand 2003-09-30 10:49:11 +00:00
  • d4500b9840 spelling Love Hörnquist Åstrand 2003-09-30 10:47:58 +00:00
  • bafd53eb2d x Love Hörnquist Åstrand 2003-09-25 15:47:41 +00:00
  • 1836e6e9f7 export Scheduler and scheduler_lockout_tty Love Hörnquist Åstrand 2003-09-25 15:47:24 +00:00
  • 1efd89da9d (my_telnet): if telnet_spin returns failure, complain that the server disconnected and exit Love Hörnquist Åstrand 2003-09-25 15:47:02 +00:00
  • b2b4d18c3e (telnet_spin): if Scheduler() returns failure (-1) propagate to higher level Love Hörnquist Åstrand 2003-09-25 15:45:51 +00:00
  • d841047ce6 stuff to generate headerfile for roken Johan Danielsson 2003-09-25 13:26:56 +00:00
  • 740e4a08a6 x Love Hörnquist Åstrand 2003-09-23 12:13:38 +00:00
  • 13ade7c50c (afslog_uid_int): just belive that realm hint the user passed us Love Hörnquist Åstrand 2003-09-23 12:13:28 +00:00
  • e894162147 Add support for AFS when using Kerberos 5, From: Sergio.Gelato@astro.su.se Love Hörnquist Åstrand 2003-09-23 10:55:41 +00:00
  • 0b393db251 x Love Hörnquist Åstrand 2003-09-23 10:44:12 +00:00
  • 29f526b115 (krb5_rd_req): if we have a keyblock in auth context, use that Love Hörnquist Åstrand 2003-09-23 10:43:50 +00:00
  • ff3a43e965 x Love Hörnquist Åstrand 2003-09-23 10:08:43 +00:00
  • f5f69fb1ba - EC and RRC are big-endian, not little-endian - The default is now to rotate regardless of GSS_C_DCE_STYLE. There are no longer any references to GSS_C_DCE_STYLE. - rrc_rotate() avoids allocating memory on the heap if rrc <= 256 From: Luke Howard <lukeh@padl.com> Love Hörnquist Åstrand 2003-09-23 10:08:24 +00:00
  • c1d6c63391 x Love Hörnquist Åstrand 2003-09-23 02:18:14 +00:00
  • 42005d25bf print authorization data if there are any Love Hörnquist Åstrand 2003-09-23 02:16:57 +00:00
  • 93afdf243c remove boolean for now Love Hörnquist Åstrand 2003-09-22 23:54:23 +00:00
  • cf04eedc31 add TBoolean Love Hörnquist Åstrand 2003-09-22 23:51:59 +00:00
  • 64f54caed8 decode IA5Stringa and UTF8String Love Hörnquist Åstrand 2003-09-22 22:37:17 +00:00
  • e36dcd9b45 x Love Hörnquist Åstrand 2003-09-22 22:00:31 +00:00
  • ee68a1f229 correct token ID for wrap tokens, were accidentally swapped with delete tokens Love Hörnquist Åstrand 2003-09-22 21:48:35 +00:00
  • 7c533af43a rrc_rotate() was untested and broken, fix it set and verify wrap Token->Filler correct token ID for wrap tokens, were accidentally swapped with delete tokens From: Luke Howard <lukeh@PADL.COM> Love Hörnquist Åstrand 2003-09-22 21:46:53 +00:00
  • 42835d4b52 x Love Hörnquist Åstrand 2003-09-21 18:22:35 +00:00
  • 73ebdd39c7 x Love Hörnquist Åstrand 2003-09-21 17:36:10 +00:00
  • 7fa07e336e no ASN.1-ish header on per-message tokens From: Luke Howard <lukeh@PADL.COM> Love Hörnquist Åstrand 2003-09-21 17:35:19 +00:00
  • c8b6c6e038 no longer in use Love Hörnquist Åstrand 2003-09-21 16:57:39 +00:00
  • d3c498eae5 use _krb5_get_init_creds_opt_copy Love Hörnquist Åstrand 2003-09-21 16:51:13 +00:00
  • 9578214707 don't export krb5_get_init_creds_opt_copy Love Hörnquist Åstrand 2003-09-21 16:50:02 +00:00
  • f1e2f5f57a libhdb might depend on LIB_dlopen Love Hörnquist Åstrand 2003-09-21 14:04:55 +00:00
  • f5104e0d11 don't get v4 tickets by default Love Hörnquist Åstrand 2003-09-21 13:15:34 +00:00
  • 9442843786 (process): remove a abort() Love Hörnquist Åstrand 2003-09-20 20:27:22 +00:00
  • 5604878733 add some text about netdom.exe and trusts Love Hörnquist Åstrand 2003-09-20 18:53:47 +00:00
  • 600a32f5f0 gssapi rc4 done Love Hörnquist Åstrand 2003-09-20 18:49:01 +00:00
  • b3ea5d4d2b add arcfour and aes as valid enctypes Love Hörnquist Åstrand 2003-09-20 00:10:33 +00:00
  • 0fcaa671aa x Love Hörnquist Åstrand 2003-09-20 00:09:14 +00:00
  • a87bc35edc add support for Set password protocol as defined by RFC3244 -- Microsoft Windows 2000 Kerberos Change Password and Set Password Protocols Love Hörnquist Åstrand 2003-09-20 00:08:06 +00:00
  • 37e7b7d87f x Love Hörnquist Åstrand 2003-09-19 15:04:58 +00:00
  • 5a87232218 remove depenency on gss_arcfour_mic_token and gss_arcfour_warp_token Love Hörnquist Åstrand 2003-09-19 15:04:35 +00:00
  • 7ec533b6db improve readability of ->open ifdef, check if version >= 4.1 Love Hörnquist Åstrand 2003-09-19 02:38:02 +00:00
  • d1025f77d8 x Love Hörnquist Åstrand 2003-09-19 01:31:33 +00:00
  • 0540f13b86 prefix all struct HDB elements with hdb_ Love Hörnquist Åstrand 2003-09-19 00:25:35 +00:00
  • ef91ed3046 (krb5_get_init_creds_opt_copy): add Love Hörnquist Åstrand 2003-09-18 22:37:59 +00:00
  • 5504e2a00c x Love Hörnquist Åstrand 2003-09-18 22:25:19 +00:00
  • 286019f6cd (krb5_rd_req): allow caller to pass in a key in the auth_context, they way processes that doesn't use the keytab can still pass in the key of the service (matches behavior of MIT Kerberos). Love Hörnquist Åstrand 2003-09-18 22:22:57 +00:00
  • 332e117688 (init_init_creds_ctx): make void since it doesn't return an error, update call sites (krb5_get_init_creds_keytab): add out label again Love Hörnquist Åstrand 2003-09-18 22:20:50 +00:00
  • 21554e0cbb collect all init_creds context into a structure so it can easier be passed around, also, while here, change nonce for every request Love Hörnquist Åstrand 2003-09-18 18:40:44 +00:00
  • 763a230714 x Love Hörnquist Åstrand 2003-09-18 18:06:49 +00:00
  • f6ab4150d5 remove #if 0'ed code Love Hörnquist Åstrand 2003-09-18 18:06:18 +00:00
  • ef95935737 x Love Hörnquist Åstrand 2003-09-18 00:39:38 +00:00
  • 70f79440e5 (init_as_req): don't realloc data before the loop, add_padata() will handle that itself Love Hörnquist Åstrand 2003-09-18 00:38:59 +00:00
  • a453cdbddc (add_addrs): don't increase addr->len until in contains interesting data, use right iteration counter when clearing the addresses Love Hörnquist Åstrand 2003-09-18 00:21:00 +00:00
  • 6e10f776c4 (log_realloc): increase len after realloc returns sucessfully Love Hörnquist Åstrand 2003-09-17 23:56:14 +00:00
  • b6c1d10f6f x Love Hörnquist Åstrand 2003-09-17 04:22:11 +00:00
  • 63904d7af3 (gsskrb5_accept_sec_context): set sequence number when not requesting mutual auth From: Luke Howard <lukeh@PADL.COM> Love Hörnquist Åstrand 2003-09-17 04:20:33 +00:00
  • 2c1317d353 (init_auth): set sequence number when not requesting mutual auth From: Luke Howard <lukeh@PADL.COM> Love Hörnquist Åstrand 2003-09-17 04:15:36 +00:00
  • 851acf88cd x Love Hörnquist Åstrand 2003-09-16 12:12:52 +00:00
  • 6a38642fc0 (*): set minor_status (gss_wrap): set conf_state to conf_req_flags on success From: Luke Howard <lukeh@PADL.COM> Love Hörnquist Åstrand 2003-09-16 12:12:42 +00:00
  • e2a057b359 (gss_wrap_size_limit): use existing function From: Luke Howard <lukeh@PADL.COM> Love Hörnquist Åstrand 2003-09-16 12:00:25 +00:00