]>
git.ipfire.org Git - thirdparty/krb5.git/log
Luke Howard [Wed, 11 Nov 2009 17:54:50 +0000 (17:54 +0000)]
more work
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23150
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 2 Nov 2009 10:57:38 +0000 (10:57 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23119
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sun, 1 Nov 2009 00:27:21 +0000 (00:27 +0000)]
refactor
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23110
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 31 Oct 2009 09:56:09 +0000 (09:56 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23108
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 30 Oct 2009 08:50:51 +0000 (08:50 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23094
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 29 Oct 2009 22:00:34 +0000 (22:00 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23091
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 29 Oct 2009 14:24:47 +0000 (14:24 +0000)]
more work
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23085
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 29 Oct 2009 09:17:51 +0000 (09:17 +0000)]
ongoing work
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23083
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 23:06:23 +0000 (23:06 +0000)]
preliminary SAML+S4U2Self plumbing
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23074
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 12:32:59 +0000 (12:32 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23072
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 12:28:33 +0000 (12:28 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23071
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 12:26:45 +0000 (12:26 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23070
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 11:40:09 +0000 (11:40 +0000)]
add KRB_AP_ERR_REALM_UNKNOWN and KRB_AP_ERR_PRINCIPAL_RESERVED
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23069
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 11:38:13 +0000 (11:38 +0000)]
add KRB_AP_ERR_PRINCIPAL_UNKNOWN
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23068
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 11:35:59 +0000 (11:35 +0000)]
add KRB_NT_WELLKNOWN
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23067
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 27 Oct 2009 07:18:48 +0000 (07:18 +0000)]
ignore KDC issued authdata in AP-REQ
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23063
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 23:53:43 +0000 (23:53 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23058
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 22:38:58 +0000 (22:38 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23057
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 22:26:31 +0000 (22:26 +0000)]
add conditions
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23056
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 22:01:30 +0000 (22:01 +0000)]
add C++ build targets
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23055
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 22:01:24 +0000 (22:01 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23054
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 22:01:04 +0000 (22:01 +0000)]
cleanup constness
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23053
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 22:00:45 +0000 (22:00 +0000)]
mark KRB5_AUTHDATA_SAML as KDC issued
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23052
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 22:00:08 +0000 (22:00 +0000)]
use common PRF for SAML signing key
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23051
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 21:27:21 +0000 (21:27 +0000)]
more work on SAML backends
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23050
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 18:20:58 +0000 (18:20 +0000)]
some work on LDAP backend
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23048
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 18:14:54 +0000 (18:14 +0000)]
add krb5_ldap_is_kerberos_attr
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23047
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 18:00:43 +0000 (18:00 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23046
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 17:05:43 +0000 (17:05 +0000)]
add some schema introspection APIs
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23045
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 26 Oct 2009 00:18:51 +0000 (00:18 +0000)]
some preliminary work on SAML backend
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23041
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sun, 25 Oct 2009 14:03:55 +0000 (14:03 +0000)]
convert to C++
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23037
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sun, 25 Oct 2009 13:13:41 +0000 (13:13 +0000)]
add some more plumbing
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23036
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sun, 25 Oct 2009 00:55:59 +0000 (00:55 +0000)]
add skeletal LDAP file
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23033
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sun, 25 Oct 2009 00:49:54 +0000 (00:49 +0000)]
add some magic
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23032
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sun, 25 Oct 2009 00:44:21 +0000 (00:44 +0000)]
Stash the LDAP result in e_data. We're going to use it to construct a
SAML assertion in another plugin.
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23031
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 24 Oct 2009 22:15:46 +0000 (22:15 +0000)]
merge r23013:23025 of s4u2proxy into saml branch
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23026
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 24 Oct 2009 15:58:25 +0000 (15:58 +0000)]
add KRB5_PADATA_S4U_SAML
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23013
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 24 Oct 2009 15:56:50 +0000 (15:56 +0000)]
merge r23002:r23011 of s4u2proxy into saml branch
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23012
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 21:33:17 +0000 (21:33 +0000)]
merge r23004:23007 from s4u2proxy to saml branch
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23008
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 21:22:51 +0000 (21:22 +0000)]
merge s4u2proxy at r22987:23000 into saml branch (ignore last commit)
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23004
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 21:21:42 +0000 (21:21 +0000)]
merge s4u2proxy at r22987:23000 into saml branch
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@23003
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 19:39:38 +0000 (19:39 +0000)]
fix a spelling error
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@22994
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 19:39:27 +0000 (19:39 +0000)]
Determine which authdata sources to interrogate based on the
module's usage. This is important if the authdata is signed
by the KDC with the TGT key (as the user can forge that in
the AP-REQ).
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@22993
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 15:26:49 +0000 (15:26 +0000)]
s/greet/saml
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@22990
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 15:19:34 +0000 (15:19 +0000)]
use greet sample code as a starting point for saml plugins
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@22989
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 15:18:47 +0000 (15:18 +0000)]
add KRB5_AUTHDATA_SAML
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@22988
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 15:02:14 +0000 (15:02 +0000)]
Creating a branch off s4u2proxy@22967 for investigating SAML
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/saml@22987
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 04:37:09 +0000 (04:37 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22986
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 04:22:07 +0000 (04:22 +0000)]
don't allocate more than necessary for delegated path
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22985
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 02:09:32 +0000 (02:09 +0000)]
plug leak
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22984
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 01:41:12 +0000 (01:41 +0000)]
update copyright
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22983
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 01:40:19 +0000 (01:40 +0000)]
update schema for krbAllowedToDelegateTo
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22982
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 01:34:16 +0000 (01:34 +0000)]
refactor, improve code readability
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22981
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 00:32:14 +0000 (00:32 +0000)]
Change is_kdc_issued_authdatum() to use new krb5int_get_authdata_containee_types() API
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22980
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Fri, 23 Oct 2009 00:26:27 +0000 (00:26 +0000)]
Add krb5int_get_authdata_containee_types() API for peeking into
authdata containers
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22979
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 22:51:36 +0000 (22:51 +0000)]
Separate propagation of TGT issued authorization data from KDB
managed authorization data: they are logically distinct. They
were previously combined because we didn't have the ability to
filter out KDC issued authorization data.
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22978
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 21:01:51 +0000 (21:01 +0000)]
merge 22964:22974 into s4u2proxy branch
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22975
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 16:36:13 +0000 (16:36 +0000)]
s/delegatee/transited_service/g
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22972
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 16:18:31 +0000 (16:18 +0000)]
refactor
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22971
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 15:36:23 +0000 (15:36 +0000)]
cleanup greet authdata plugin not to clobber authdata
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22970
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 15:35:53 +0000 (15:35 +0000)]
Fix a logic error
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22969
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 15:10:55 +0000 (15:10 +0000)]
add sample constrained delegation ACL backend for LDAP
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22968
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 14:54:20 +0000 (14:54 +0000)]
filter KDC-issued authdata
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22967
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 14:53:57 +0000 (14:53 +0000)]
Workaround for ASN.1 library difficulties
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22966
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 03:56:05 +0000 (03:56 +0000)]
some very preliminary work on PAC-less constrained delegation
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22965
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 22 Oct 2009 01:17:53 +0000 (01:17 +0000)]
Creating a branch for PAC-less constrained delegation implementation
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/s4u2proxy@22964
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 21 Oct 2009 18:21:50 +0000 (18:21 +0000)]
Allow the constrained delegation authorization method to use the evidence ticket client name as input to the authorization decision
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22963
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 21 Oct 2009 17:24:37 +0000 (17:24 +0000)]
simplify logic fix introduced in r22960 for S4U2Self
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22962
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 21 Oct 2009 16:03:40 +0000 (16:03 +0000)]
remove some unneeded extensions from the Novell backend authdata SPI
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22961
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 21 Oct 2009 16:00:08 +0000 (16:00 +0000)]
ensure that forwardable flag is propagated along S4U2Self referral path
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22960
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 21 Oct 2009 00:53:47 +0000 (00:53 +0000)]
Increment authdata SPI to V2 (V1 was experimental) to account for additional
krbtgt key parameter.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22959
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 21 Oct 2009 00:50:08 +0000 (00:50 +0000)]
Increment authdata SPI to V2 (V1 was experimental) to account
for additional krbtgt key parameter. This was at Sam's suggestion.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22958
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 20 Oct 2009 15:40:47 +0000 (15:40 +0000)]
For naming extensions draft compliance, s/mspac:/urn:mspac:/
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22957
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Tue, 20 Oct 2009 14:23:32 +0000 (14:23 +0000)]
Make some gss-krb5 utility functions take enctypes instead of keys,
and adjust callers. Fixes a bug where kg_arcfour_docrypt_iov was
passing a keyblock instead of a key to kg_translate_iov after the
enc-perf merge.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22956
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 20 Oct 2009 14:14:46 +0000 (14:14 +0000)]
use ANSI prototypes for acquire_XXX_cred, and fix cast to calling acquire_accept_cred()
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22955
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 20 Oct 2009 13:51:40 +0000 (13:51 +0000)]
correct indirection of minor status code when calling displayStatus()
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22954
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Tue, 20 Oct 2009 13:49:48 +0000 (13:49 +0000)]
In k5_hmac_md5_hash_iov, initialize keyblock.contents so that we don't
free it prior to initialization if krb5_hmac fails.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22953
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Tue, 20 Oct 2009 13:47:40 +0000 (13:47 +0000)]
In krb5_k_make_checksum, check for a null key passed with a keyed
checksum instead of just crashing.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22952
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 20 Oct 2009 10:56:21 +0000 (10:56 +0000)]
Clean up memory leaks by releasing key at end
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22951
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 20 Oct 2009 10:21:01 +0000 (10:21 +0000)]
Include des_int.h for mit_des_fixup_key_parity prototype
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22950
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Tue, 20 Oct 2009 02:07:22 +0000 (02:07 +0000)]
Fix memory leaks in enc-perf work
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22949
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 20 Oct 2009 00:48:46 +0000 (00:48 +0000)]
fix some Coverity reported defects in naming extensions
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22948
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 19 Oct 2009 20:04:21 +0000 (20:04 +0000)]
Implement new APIs to allow improved crypto performance
Merge branches/enc-perf to trunk. Adds the krb5_key opaque type, the
krb5_k_* APIs to use them, and caching of derived keys when krb5_k_*
functions are used. Updates the krb5 auth context and GSS id-rec to
use krb5_keys.
ticket: 6576
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22944
dc483132 -0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 19 Oct 2009 18:14:35 +0000 (18:14 +0000)]
Update prototype files to conform with newer whitespace rules
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22937
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 18 Oct 2009 11:55:53 +0000 (11:55 +0000)]
Include des_int.h for mit_des_fixup_key_parity prototype. Adjust Makefile.in
to find the proper header.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22912
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 18 Oct 2009 11:22:22 +0000 (11:22 +0000)]
Remove adb.h as it is not used in the source tree
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22911
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Fri, 16 Oct 2009 17:32:15 +0000 (17:32 +0000)]
Properly handle ivec for chaining ops
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22906
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Fri, 16 Oct 2009 17:14:14 +0000 (17:14 +0000)]
Fix the value of ivec in aes_decrypt_iov
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22905
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Thu, 15 Oct 2009 19:57:29 +0000 (19:57 +0000)]
Enable t_cts test
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22902
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Thu, 15 Oct 2009 16:27:19 +0000 (16:27 +0000)]
Fixed aes to handle the input buffers of the various sizes
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22900
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Tue, 13 Oct 2009 19:43:17 +0000 (19:43 +0000)]
Fix preauth looping in krb5_get_init_creds
In 1.7, krb5_get_init_creds will continue attempting the same built-in
preauth mechanism (e.g. encrypted timestamp) until the loop counter
maxes out. Until the preauth framework can remember not to retry
built-in mechanisms, only continue with preauth after a PREAUTH_FAILED
error resulting from optimistic preauth.
ticket: 6573
tags: pullup
target_version: 1.7.1
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22890
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Tue, 13 Oct 2009 19:38:16 +0000 (19:38 +0000)]
Revert a small part of r22736 which incorrectly fixed a preauth
looping bug in krb5_get_init_creds. A more correct fix will follow.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22888
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 10 Oct 2009 11:33:01 +0000 (11:33 +0000)]
Fix memory leak and init those magic number fields to prevent compiler warning
when structure copied.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22879
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 10 Oct 2009 11:32:25 +0000 (11:32 +0000)]
Clean nfold.o on make clean
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22878
dc483132 -0cff-0310-8789-
dd5450dbe970
Tom Yu [Sat, 10 Oct 2009 03:57:45 +0000 (03:57 +0000)]
Move destest to builtin/des, because it depends on overriding some
internals.
Make depend.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22877
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 10 Oct 2009 01:49:38 +0000 (01:49 +0000)]
Remove krb5.conf, bigendian.o, and bigendian on make clean
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22876
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Fri, 9 Oct 2009 18:29:34 +0000 (18:29 +0000)]
Implement GSS naming extensions and authdata verification
Merge Luke's users/lhoward/authdata branch to trunk. Implements GSS naming
extensions and verification of authorization data.
ticket: 6572
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22875
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Fri, 9 Oct 2009 17:18:50 +0000 (17:18 +0000)]
Get aes-gen to build again (for the default back end, at least)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22873
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Fri, 9 Oct 2009 14:21:04 +0000 (14:21 +0000)]
In asn1_decode_enc_kdc_rep_part, don't leak the enc_padata field on
invalid representations.
ticket: 6571
tags: pullup
target_version: 1.7.1
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22872
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Thu, 8 Oct 2009 16:11:01 +0000 (16:11 +0000)]
In anticipation of a new version of OpenSSL 1.0.0, support renamed API: EVP_PKEY_decrypt -> EVP_PKEY_decrypt_old
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22871
dc483132 -0cff-0310-8789-
dd5450dbe970
projects / thirdparty / krb5.git / log
