aboutsummaryrefslogtreecommitdiff
AgeCommit message (Expand)AuthorFilesLines
2009-08-21Don't return constrained deleg creds if verifier cred handle doesn't have ini...Luke Howard2-3/+8
2009-08-21When returning constrained delegation creds, don't require theyLuke Howard4-28/+17
2009-08-21set GSS_C_DELEG_FLAG when returning constrained deleg credsLuke Howard2-6/+4
2009-08-21Rename files to reflect API changeLuke Howard3-6/+6
2009-08-21s/{add,acquire}_cred_with_{name,cred}/{$1}_cred_impersonate_{$2}/Luke Howard13-206/+210
2009-08-21Update header file for swapped arugmentsLuke Howard1-2/+2
2009-08-21Invert order of input_cred_handle and impersonator_cred_handleLuke Howard3-11/+11
2009-08-21Fix test breakage when constrained delegation omittedLuke Howard1-2/+2
2009-08-21The Novell S4U patch included some code to disable the forwardableLuke Howard1-0/+9
2009-08-21test with SPNEGO for added complexityLuke Howard1-2/+5
2009-08-21Add some more debugging to testLuke Howard1-4/+12
2009-08-21Implement gss_{acquire,add}_cred_with_{name,cred} as suggested by Nico WilliamsLuke Howard21-669/+2262
2009-08-20Add KRB5_GC_FORWARDABLE and KRB5_GC_NO_TRANSIT_CHECK for compatibility with H...Luke Howard3-1/+16
2009-08-20Move more logic for handling constrained delegation into krb5_get_credentials()Luke Howard3-115/+69
2009-08-20Add KRB5_GC_NO_STORE option, and change GSS S4U callers to use itLuke Howard5-9/+15
2009-08-19GSS_KRB5_NT_ENTERPRISE_NAME is gone nowLuke Howard1-1/+1
2009-08-19remove GSS_KRB5_NT_ENTERPRISE_NAMELuke Howard5-16/+2
2009-08-19merge trunk to 22548 (22458:22548)Luke Howard355-15508/+2655
2009-08-19update comments describing clearing of forwardable flag, againLuke Howard1-3/+5
2009-08-18Use fetch_asn1_field() to avoid re-encoding S4U2Self requestLuke Howard1-9/+27
2009-08-18remove tabsLuke Howard1-10/+10
2009-08-18More comment cleanupsLuke Howard1-2/+3
2009-08-18cleanupLuke Howard1-1/+1
2009-08-18Revise comments on S4U2Self and forwardable tickets. I've removedLuke Howard1-2/+3
2009-08-18cleanupLuke Howard1-11/+5
2009-08-18Format cleanupLuke Howard1-2/+2
2009-08-18Refactor S4U2Self validation path to use validate_as_request(), to avoid dupl...Luke Howard1-55/+7
2009-08-18Refactor code for setting TKT_FLG_FORWARDABLE for S4U2Self. The logic was dif...Luke Howard1-7/+22
2009-08-18Fix errors in flag descriptorsLuke Howard1-3/+3
2009-08-18Fix service principal name qualification so that cross-realm S4U2Self works w...Luke Howard1-15/+55
2009-08-18Allow unkeyed checksums for all non-newer enctypesLuke Howard1-10/+17
2009-08-18Move S4U protocol options into k5-int.hLuke Howard2-3/+3
2009-08-17fix typoLuke Howard1-1/+1
2009-08-17KRB5_S4U_OPTS_CHECK_LOGON_HOURS doesn't appear to be set in the reply, in any...Luke Howard1-2/+1
2009-08-17fix typoLuke Howard1-1/+1
2009-08-17Don't explicitly ask for KDC_OPT_FORWARDABLE when doing S4U2Self;Luke Howard1-1/+1
2009-08-17Fix a logic error in r22525Luke Howard1-1/+1
2009-08-17remove some accidentally committed code from previous commitLuke Howard1-4/+2
2009-08-17avoid a redundant call to is_local_principal()Luke Howard1-3/+5
2009-08-17align handling of forwardable flag in protocol transition with [MS-SFU]Luke Howard1-8/+2
2009-08-09Fix a couple of time of use issues with KDC S4U2Self implementationLuke Howard2-15/+15
2009-08-09Remove dead codeLuke Howard1-2/+1
2009-08-09Ensure enc_padata is actually encodedLuke Howard1-0/+2
2009-08-09Fix regressionLuke Howard1-0/+1
2009-08-07cleanupLuke Howard1-27/+20
2009-08-07remove some debug codeLuke Howard1-18/+0
2009-08-07only return S4U enc_padata if KRB5_S4U_OPTS_USE_REPLY_KEY_USAGE is set in the...Luke Howard2-6/+19
2009-08-07cleanupLuke Howard1-7/+9
2009-08-07cleanupLuke Howard1-8/+8
2009-08-07cleanupLuke Howard1-3/+3
generated by cgit v1.1 at 2024-07-16 13:11:51 +0000