git.ipfire.org Git - thirdparty/krb5.git/commit

]> git.ipfire.org Git - thirdparty/krb5.git/commit

projects / thirdparty / krb5.git / commit

author	Greg Hudson <ghudson@mit.edu>
	Tue, 31 Jan 2017 22:02:34 +0000 (17:02 -0500)
committer	Greg Hudson <ghudson@mit.edu>
	Mon, 19 Mar 2018 20:10:42 +0000 (16:10 -0400)
commit	085785362e01467cb25c79a90dcebfba9ea019d8
tree	92a4f144f5770b8a4129210885b33068748cba8b	tree
parent	b38e318cea18fd65647189eed64aef83bf1cb772	commit \| diff

Add PKINIT client support for freshness token

Send an empty PA_AS_FRESHNESS padata item in unauthenticated AS
requests to indicate support for RFC 8070. If the KDC includes a
PA_AS_FRESHNESS value in its method data, echo it back in the new
freshnessToken field of pkAuthenticator

ticket: 8648

13 files changed:

doc/user/user_commands/kinit.rst		diff \| blob \| blame \| history
src/include/k5-int-pkinit.h		diff \| blob \| blame \| history
src/include/krb5/krb5.hin		diff \| blob \| blame \| history
src/lib/krb5/asn.1/asn1_k_encode.c		diff \| blob \| blame \| history
src/lib/krb5/krb/get_in_tkt.c		diff \| blob \| blame \| history
src/lib/krb5/krb/init_creds_ctx.h		diff \| blob \| blame \| history
src/plugins/preauth/pkinit/pkinit.h		diff \| blob \| blame \| history
src/plugins/preauth/pkinit/pkinit_clnt.c		diff \| blob \| blame \| history
src/plugins/preauth/pkinit/pkinit_lib.c		diff \| blob \| blame \| history
src/plugins/preauth/pkinit/pkinit_trace.h		diff \| blob \| blame \| history
src/tests/asn.1/ktest.c		diff \| blob \| blame \| history
src/tests/asn.1/pkinit_encode.out		diff \| blob \| blame \| history
src/tests/asn.1/pkinit_trval.out		diff \| blob \| blame \| history

Mirror of https://github.com/krb5/krb5.git

RSS Atom