oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
Files
66769e82997ea142940468c35b752eda485f9e16
heimdal/kdc
History
James Lee 750a09bca2 kx509: Create certs for principals with slashes 
kx509 fails to create certs for principals with slashes in them.  For
example:

    client% kinit foo/admin
    foo/admin@EXAMPLE.COM's Password:
    client% kx509
    Timed out waiting on KCA

The KCA reports: "Principal is not a user."  However, there is a use
case set out in this post:

https://thestaticvoid.com/post/2012/10/25/protecting-puppet-with-kerberos/

that would create a kx509 cert for a host principal for authenticating
against a secure HTTP service.  This commit modifies the certificate
creation code to allow principals with slashes in them.
2013-12-04 13:49:38 -05:00
..
announce.c
cast to avoid size_t vs int issue
2011-07-24 13:07:07 -07:00
config.c
Turn on -Wextra -Wno-sign-compare -Wno-unused-paramter and fix issues.
2012-02-20 19:45:41 +00:00
connect.c
Fix typo with return values in realloc_descrs.
2012-11-22 17:24:40 -08:00
default_config.c
Rename and fix as/tgs-use-strongest-key config parameters
2011-11-25 17:21:04 -06:00
digest-service.c
Initial patch for dealing with AD x-realm key rollover
2011-11-15 21:53:33 -06:00
digest.c
add HDBGET: that only supports get, iteration doesnt really make sense for the HDB keytab except when dumping
2013-10-15 12:40:39 +02:00
fast.c
Initial patch for dealing with AD x-realm key rollover
2011-11-15 21:53:33 -06:00
headers.h
Create a request structure
2011-07-24 20:24:37 -07:00
hprop-version.rc
Windows: Version information for binaries
2010-08-20 13:06:54 -04:00
hprop.8
remove trailing whitespace
2011-05-21 11:57:31 -07:00
hprop.c
add HDBGET: that only supports get, iteration doesnt really make sense for the HDB keytab except when dumping
2013-10-15 12:40:39 +02:00
hprop.h
add HDBGET: that only supports get, iteration doesnt really make sense for the HDB keytab except when dumping
2013-10-15 12:40:39 +02:00
hpropd-version.rc
Windows: Version information for binaries
2010-08-20 13:06:54 -04:00
hpropd.8
remove trailing whitespace
2011-05-21 11:57:31 -07:00
hpropd.c
add HDBGET: that only supports get, iteration doesnt really make sense for the HDB keytab except when dumping
2013-10-15 12:40:39 +02:00
kdc_locl.h
use json to drive kdc-tester
2011-11-21 20:34:35 -08:00
kdc-replay.c
Turn on -Wextra -Wno-sign-compare -Wno-unused-paramter and fix issues.
2012-02-20 19:45:41 +00:00
kdc-tester.c
add HDBGET: that only supports get, iteration doesnt really make sense for the HDB keytab except when dumping
2013-10-15 12:40:39 +02:00
kdc-version.rc
Windows: Version information for binaries
2010-08-20 13:06:54 -04:00
kdc.8
fix typo, from Robert Simmons
2011-11-13 10:01:41 -08:00
kdc.h
Rename and fix as/tgs-use-strongest-key config parameters
2011-11-25 17:21:04 -06:00
kerberos5.c
_kdc_find_etype: prefer default salt for preauth
2013-07-30 14:16:19 -04:00
krb5tgs.c
Fix never valid error condition in KDC
2013-11-26 16:57:19 -06:00
kstash-version.rc
Windows: Version information for binaries
2010-08-20 13:06:54 -04:00
kstash.8
remove trailing whitespace
2011-05-21 11:57:31 -07:00
kstash.c
Add -Wshadow and deal with the warnings.
2012-02-21 11:17:55 +00:00
kx509.c
kx509: Create certs for principals with slashes
2013-12-04 13:49:38 -05:00
libkdc-exports.def
Windows: Fix export lists
2010-11-29 10:53:49 -05:00
libkdc-version.rc
Windows: Version information for binaries
2010-08-20 13:06:54 -04:00
log.c
Error/warning cleanups for clang (LLVM)
2011-11-28 14:42:06 -06:00
main.c
add HDBGET: that only supports get, iteration doesnt really make sense for the HDB keytab except when dumping
2013-10-15 12:40:39 +02:00
Makefile.am
Make concurrent builds work.
2012-08-08 00:04:04 +01:00
misc.c
Really bug in KDC handling of enterprise princs
2013-08-01 20:17:17 -05:00
mit_dump.c
Fix MIT dump entry parsing bug that forced 2048 sz
2013-11-20 01:08:22 -06:00
NTMakefile
Windows: ktutil.exe requires libkadmsrv and libhdb
2013-09-13 22:17:43 -04:00
pkinit.c
don't bother seeing q if not sent
2013-04-29 11:42:46 -07:00
process.c
drain pool for each request
2012-04-05 22:55:01 -07:00
rx.h
remove trailing whitespace
2008-09-13 09:21:03 +00:00
set_dbinfo.c
remove trailing whitespace
2011-05-21 11:57:31 -07:00
string2key-version.rc
Windows: Version information for binaries
2010-08-20 13:06:54 -04:00
string2key.8
remove trailing whitespace
2011-05-21 11:57:31 -07:00
string2key.c
catch error value from krb5_ functions and exit
2013-06-28 08:40:49 +02:00
version-script.map
add _kdc_db_fetch and _kdc_free_ent for digest-service
2011-01-30 12:12:30 -08:00
windc_plugin.h
change client access message
2011-07-24 20:24:35 -07:00
windc.c
switch to new plugin handler
2013-06-04 00:04:16 -07:00