45984d2d2c
x
Love Hörnquist Åstrand
2003-09-12 21:18:09 +00:00
07970b6175
(gss_indicate_mechs): in case of error, free mech_set
Love Hörnquist Åstrand
2003-09-12 21:15:42 +00:00
2a072a6aeb
(gss_indicate_mechs): add SPNEGO
Love Hörnquist Åstrand
2003-09-12 21:12:52 +00:00
9b76026dab
x
Love Hörnquist Åstrand
2003-09-12 16:19:23 +00:00
8f56b409d0
fix another int vs krb5_error_code
Love Hörnquist Åstrand
2003-09-12 15:12:08 +00:00
3f1d0789af
x
Love Hörnquist Åstrand
2003-09-12 15:05:13 +00:00
c82cfd62b2
fix prototypes
Love Hörnquist Åstrand
2003-09-12 15:04:43 +00:00
1bc0573626
x
Love Hörnquist Åstrand
2003-09-12 02:37:10 +00:00
b84f7ecd80
x
Love Hörnquist Åstrand
2003-09-10 21:55:58 +00:00
497233da66
include <limits.h> for ULONG_MAX noted by Wissler Magnus <M.Wissler@abalon.se> on heimdal-discuss
Love Hörnquist Åstrand
2003-09-10 21:54:58 +00:00
ceb75e1f48
x
Love Hörnquist Åstrand
2003-09-10 20:50:15 +00:00
b1576251e1
(spnego_initial): add #if 0 out version of the CHOICE branch encoding, also where here, free no longer used memory
Love Hörnquist Åstrand
2003-09-10 20:49:11 +00:00
b291ac9e96
close socket when we are done, don't allow the server to restart gssapi negotiation
Love Hörnquist Åstrand
2003-09-10 19:39:05 +00:00
322de9cac3
x
Love Hörnquist Åstrand
2003-09-10 09:34:08 +00:00
2d4baf01e7
(proto): use select_mech
Love Hörnquist Åstrand
2003-09-10 09:32:42 +00:00
192371fcb2
use getarg
Love Hörnquist Åstrand
2003-09-10 09:31:54 +00:00
70bc6483ae
prototype for select_mech
Love Hörnquist Åstrand
2003-09-10 09:30:51 +00:00
29cede4fb6
(select_mech): return the gss_OID from a mech name
Love Hörnquist Åstrand
2003-09-10 09:29:59 +00:00
48146f86c9
x
Love Hörnquist Åstrand
2003-09-10 00:46:46 +00:00
d1855bdb24
print both source and target
Love Hörnquist Åstrand
2003-09-10 00:32:25 +00:00
7bd531f305
x
Love Hörnquist Åstrand
2003-09-10 00:22:26 +00:00
42555fd011
build http_client
Love Hörnquist Åstrand
2003-09-10 00:21:55 +00:00
a697958544
A simplistic client implementing draft-brezak-spnego-http-04.txt
Love Hörnquist Åstrand
2003-09-10 00:20:09 +00:00
bb22f358b1
(spnego_initial): catch errors and return them
Love Hörnquist Åstrand
2003-09-09 23:44:25 +00:00
d28e2d0ebc
add support for printing Enumerated
Love Hörnquist Åstrand
2003-09-09 16:08:56 +00:00
36c72f770b
update .Dd
Love Hörnquist Åstrand
2003-09-09 10:57:48 +00:00
dd9620c56f
now support for GSS_SPNEGO_MECHANISM
Love Hörnquist Åstrand
2003-09-09 10:57:08 +00:00
1448ad988f
SPNEGO doesn't include gss wrapping on SubsequentContextToken like the Kerberos 5 mech does.
Love Hörnquist Åstrand
2003-09-09 10:54:09 +00:00
c65c7ace38
(spnego_reply): SPNEGO doesn't include gss wrapping on SubsequentContextToken like the Kerberos 5 mech does. Lets check for it anyway.
Love Hörnquist Åstrand
2003-09-09 10:40:12 +00:00
2754625103
x
Love Hörnquist Åstrand
2003-09-09 03:49:30 +00:00
250a05b38c
x
Love Hörnquist Åstrand
2003-09-09 03:44:26 +00:00
2d9a9adcf4
allow user to select mech; krb5, spnego, and no-oid
Love Hörnquist Åstrand
2003-09-09 03:41:37 +00:00
85ebaac05f
add mech
Love Hörnquist Åstrand
2003-09-09 03:38:51 +00:00
3882d88c8c
add --mech,-m argument
Love Hörnquist Åstrand
2003-09-09 03:38:04 +00:00
ef50c9d3cc
print the mech that was used
Love Hörnquist Åstrand
2003-09-09 03:36:59 +00:00
aa2eabd394
Add support for SPNEGO on the initator side. Implementation initially from Assar Westerlund, passes though quite a lot of hands before I commited it.
Love Hörnquist Åstrand
2003-09-09 03:28:54 +00:00
790b9ab1bd
x
Love Hörnquist Åstrand
2003-09-09 02:33:49 +00:00
c94bb7e568
Add support for SPNEGO on the initator side. Tested with ldap server on a Windows 2000 DC. Implementation initially from Assar Westerlund, passes though quite a lot of hands before I commited it.
Love Hörnquist Åstrand
2003-09-09 02:31:47 +00:00
db4289a379
export GSS_SPNEGO_MECHANISM
Love Hörnquist Åstrand
2003-09-09 02:11:21 +00:00
c3326093b4
include spnego_as.h add prototype for gssapi_krb5_get_mech
Love Hörnquist Åstrand
2003-09-09 02:10:00 +00:00
a3139e092e
(gssapi_krb5_get_mech): make non static
Love Hörnquist Åstrand
2003-09-09 02:09:03 +00:00
50d2a24176
build SPNEGO file
Love Hörnquist Åstrand
2003-09-09 02:05:51 +00:00
1d36859dc0
(only_older_enctype_p): check request if the client only supports old enctypes, before it used the database
Love Hörnquist Åstrand
2003-09-09 02:01:02 +00:00
73e27ffc4c
SPENGO and IAKERB oids
Love Hörnquist Åstrand
2003-09-08 15:34:19 +00:00
ca2733de49
x
Love Hörnquist Åstrand
2003-09-08 15:32:39 +00:00
5d190295aa
add context argument to krb5_get_init_creds_opt_alloc
Love Hörnquist Åstrand
2003-09-08 15:28:20 +00:00
fd1c450a9c
x
Johan Danielsson
2003-09-04 14:30:54 +00:00
b647dd453c
document -d
Johan Danielsson
2003-09-04 14:30:43 +00:00
6a621def0e
document appdefaults/{forward,encrypt}
Johan Danielsson
2003-09-04 14:30:04 +00:00
e264c26f0c
(doit): remove leftover sockets
Johan Danielsson
2003-09-04 13:42:05 +00:00
e7f2346d0c
x
Love Hörnquist Åstrand
2003-09-04 06:23:23 +00:00
9c604bf8c2
add SAM types
Love Hörnquist Åstrand
2003-09-04 05:37:17 +00:00
646ee1b761
break out the encrypt timestamp preauth to its function break out the pa_data_to_key_plain to its own function make more variables const
Love Hörnquist Åstrand
2003-09-04 05:30:48 +00:00
e44d866589
s/des_read_pw_string/UI_UTIL_read_pw_string/
Love Hörnquist Åstrand
2003-09-04 01:14:12 +00:00
a05b82b0e5
use $DATEDVERSION as version number
Johan Danielsson
2003-09-03 15:56:27 +00:00
612ba5c47a
x
Love Hörnquist Åstrand
2003-09-03 11:55:08 +00:00
3cd7e6c162
Add key usage for encryption of the SAM-NONCE-OR-SAD field.
Love Hörnquist Åstrand
2003-09-03 11:53:25 +00:00
b6b6ef861a
use new DES_ api
Love Hörnquist Åstrand
2003-09-03 11:48:53 +00:00
4a7a8019a7
include <openssl/ui.h> in the openssl case
Love Hörnquist Åstrand
2003-09-03 11:48:20 +00:00
8b66e46474
s/des_read_pw_string/UI_UTIL_read_pw_string/
Love Hörnquist Åstrand
2003-09-03 11:47:30 +00:00
ce72892e20
x
Love Hörnquist Åstrand
2003-09-03 11:11:20 +00:00
eac04f34dc
assume session key is a char array of length 8
Love Hörnquist Åstrand
2003-09-03 11:11:07 +00:00
bf6845d115
x
Love Hörnquist Åstrand
2003-09-03 09:38:40 +00:00
ca12cabf2f
check for DES_, AES_, and if openssl UI_
Love Hörnquist Åstrand
2003-09-03 09:38:26 +00:00
03f9a30177
use new DES_ api
Love Hörnquist Åstrand
2003-09-03 09:37:27 +00:00
54fc57ccb5
s/des_read_pw_string/UI_UTIL_read_pw_string/
Love Hörnquist Åstrand
2003-09-03 09:37:03 +00:00
33efaf1f26
switch from the des_ to the DES_ api
Love Hörnquist Åstrand
2003-09-03 09:29:36 +00:00
efb37e15c6
x
Love Hörnquist Åstrand
2003-09-03 09:27:55 +00:00
70a309f60b
(MD4_Final): make the function threadsafe by removing static on the local variable zeros
Love Hörnquist Åstrand
2003-09-03 09:27:42 +00:00
c9681ae897
(MD5_Final): make the function threadsafe by removing static on the local variable zeros
Love Hörnquist Åstrand
2003-09-03 09:27:16 +00:00
49e0243cc5
switch to the DES_ api, dont provide any compat glue
Love Hörnquist Åstrand
2003-09-03 09:26:03 +00:00
992f32ca35
x
Love Hörnquist Åstrand
2003-09-03 08:42:04 +00:00
6cdb4003eb
EC is not included in the checksum since the length might change depending on the data. From: Luke Howard <lukeh@PADL.COM>
Love Hörnquist Åstrand
2003-09-03 08:36:57 +00:00
3779c3d612
use DES_KEY_SZ instead of sizeof(des_block)
Love Hörnquist Åstrand
2003-09-03 03:12:32 +00:00
74967d603a
x
Love Hörnquist Åstrand
2003-09-03 00:59:12 +00:00
1ce5a9d550
(krb5_to4): set client princ of the mcred
Love Hörnquist Åstrand
2003-09-03 00:58:08 +00:00
6caf92684d
x
Love Hörnquist Åstrand
2003-09-03 00:47:00 +00:00
06bf61ec4a
add and enable check program default_keys
Love Hörnquist Åstrand
2003-09-03 00:46:50 +00:00
c92c24750f
test program for _kadm5_generate_key_set
Love Hörnquist Åstrand
2003-09-03 00:46:17 +00:00
eb6fcf70a4
x
Love Hörnquist Åstrand
2003-09-03 00:43:03 +00:00
9f96a0e10d
x
Love Hörnquist Åstrand
2003-09-03 00:31:52 +00:00
61e14619de
use krb5_get_init_creds_opt_alloc/krb5_get_init_creds_opt_free
Love Hörnquist Åstrand
2003-09-03 00:31:42 +00:00
f287772b22
x
Love Hörnquist Åstrand
2003-09-03 00:23:34 +00:00
d1bbbff72f
use krb5_get_init_creds_opt_alloc/krb5_get_init_creds_opt_free compare a uint32_t with 0xffffffff instead of -1
Love Hörnquist Åstrand
2003-09-03 00:17:09 +00:00
0d372b0a5b
fix [Gt]
Love Hörnquist Åstrand
2003-09-03 00:13:07 +00:00
ae9f3656f7
use krb5_get_init_creds_opt_alloc/krb5_get_init_creds_opt_free
Love Hörnquist Åstrand
2003-09-02 23:45:38 +00:00
eb2c032414
(krb5_get_init_creds_password): handle password passed in though context
Love Hörnquist Åstrand
2003-09-02 23:41:34 +00:00
90b82c4533
(TESTS): += test_config
Love Hörnquist Åstrand
2003-09-02 23:21:23 +00:00
1752eb97e0
move variable thats used within a #ifdef to be defined within that #ifdef
Love Hörnquist Åstrand
2003-09-02 23:20:46 +00:00
9582b9fe1a
(krb5_data_free): reset whole krb5_data when freeing it
Love Hörnquist Åstrand
2003-09-02 23:19:17 +00:00
70efc47aa7
(krb5_keyblock_zero): new function, zeros out a keyblock
Love Hörnquist Åstrand
2003-09-02 23:17:59 +00:00
Love Hörnquist Åstrand