git.ipfire.org Git - thirdparty/krb5.git/commit

author	Nalin Dahyabhai <nalin@dahyabhai.net>
	Mon, 15 Jul 2013 17:11:00 +0000 (13:11 -0400)
committer	Greg Hudson <ghudson@mit.edu>
	Wed, 17 Jul 2013 18:57:11 +0000 (14:57 -0400)
commit	e8b63198029c632d097822104d6e17c9a67ef1a5
tree	ea37cbd8f9593d390db92810ccf2aad96a4b767a	tree
parent	8899397ab78ea09b8d7dbb20347dd12c93eb15ee	commit \| diff

Pass PKINIT identity prompts to the responder cb

Use the list of deferred identity prompts and warnings, which we have
after calling pkinit_identity_initialize(), to build a list of questions
to supply to responder callbacks.

Before calling pkinit_identity_prompt() to actually load identities that
are protected, save any passwords and PINs which a responder callback
may have supplied.

Because pkinit_client_prep_questions() can be called multiple times, and
we don't want to try to load all of our identities each of those times,
take some steps to ensure that we only call pkinit_identity_initialize()
and pkinit_identity_prompt() once per request.

ticket: 7680

src/include/krb5/krb5.hin		diff \| blob \| blame \| history
src/plugins/preauth/pkinit/pkinit.h		diff \| blob \| blame \| history
src/plugins/preauth/pkinit/pkinit_clnt.c		diff \| blob \| blame \| history