aboutsummaryrefslogtreecommitdiff
path: root/src/kdc
AgeCommit message (Expand)AuthorFilesLines
2023-03-27Add pac_privsvr_enctype string attributeGreg Hudson4-13/+78
2023-03-24Make k5buf more flexible for binary dataGreg Hudson1-2/+2
2023-01-27Fix t_ndr to return a define value from main()Greg Hudson1-0/+1
2023-01-23Don't issue session keys with deprecated enctypesGreg Hudson1-0/+10
2023-01-23In KDC, assume all services support aes256-sha1Greg Hudson1-0/+4
2022-11-03Fix null deref in KDC when decoding invalid NDRGreg Hudson2-10/+36
2022-10-03Refactor KDC TGS processing codeGreg Hudson8-824/+872
2022-08-12Avoid protocol error constants in KDC codeGreg Hudson5-126/+103
2022-07-20Remove kdc_context, tgs_server macros in KDCGreg Hudson10-581/+495
2022-06-08Free verto context later in KDC cleanupGreg Hudson1-1/+1
2022-05-18Remove krb5_aprof_init() and krb5_aprof_finish()Greg Hudson1-36/+32
2022-01-27Pass client flag to KDB for client preauth matchGreg Hudson1-1/+1
2022-01-27Implement replaced_reply_key input to issue_pac()Greg Hudson4-14/+22
2022-01-27Add replace_reply_key kdcpreauth callbackGreg Hudson3-5/+23
2022-01-12Replace AD-SIGNEDPATH with minimal PACsGreg Hudson8-659/+669
2022-01-12Add minimal KDC MS-RPCE (NDR) encoder/decoderGreg Hudson4-2/+515
2021-12-05Issue an error from KDC on S4U2Self failuresAndreas Schneider1-3/+2
2021-10-12Always use platform PRNGGreg Hudson2-48/+0
2021-08-19Fix KDC null deref on TGS inner body null serverGreg Hudson1-0/+5
2021-07-15Modernize kdc_preauth_ec.cGreg Hudson1-110/+109
2021-07-12Fix KDC null deref on bad encrypted challengeJoseph Sutton1-1/+2
2021-07-01Fix many unlikely memory leaksRobbie Harwood1-14/+13
2021-05-21Rewrite not-yet-covered dejagnu tests in PythonGreg Hudson1-0/+14
2021-02-17Synchronize command-line option documentationRobbie Harwood1-2/+2
2020-12-07Reduce warnings from mainline autoconfGreg Hudson1-14/+2
2020-10-29Move more KDC checks to validate_tgs_request()Greg Hudson4-245/+275
2020-10-02Minimize usage of tgs_server in KDCGreg Hudson5-78/+46
2020-09-30Avoid passing DB entry structures in KDCGreg Hudson5-40/+41
2020-09-22Allow aliases when matching U2U second ticketIsaac Boukris1-1/+1
2020-09-22Adjust KDC alias helper function contractIsaac Boukris2-7/+11
2020-09-14Improve KDC alias checking for S4U requestsIsaac Boukris1-49/+25
2020-07-06Avoid using LMDB environments across forksGreg Hudson1-4/+7
2020-06-29Fix KDC choice to send encrypted S4U_X509_USERGreg Hudson1-2/+1
2020-05-15Add KDC helpers for current key and kvnoGreg Hudson7-67/+44
2020-05-14Prevent use of invalid local TGT keyGreg Hudson1-5/+5
2020-05-07Omit KDC indicator check for S4U2Self requestsGreg Hudson1-7/+7
2020-04-08Fix typos in commentsGreg Hudson3-3/+3
2020-03-09Change KDC constrained-delegation precedence orderIsaac Boukris1-91/+76
2020-02-21Fix AS-REQ checking of KDB-modified indicatorsGreg Hudson1-7/+7
2020-02-11Always use S4U2Proxy second ticket parsed authdataIsaac Boukris1-3/+9
2020-02-06Refactor KDC authdata list management helpersGreg Hudson3-127/+62
2020-02-05Put KDB authdata firstIsaac Boukris1-3/+6
2020-01-22Allow cross-realm RBCD with PAC and other authdataIsaac Boukris1-13/+8
2020-01-17Fix KDC crash in handle_signticketIsaac Boukris2-15/+16
2020-01-13Check cross-realm TGT name for RBCD requestsIsaac Boukris1-2/+4
2020-01-07Work around macOS SIP in the test suiteGreg Hudson2-1/+2
2019-12-28Remove KRB5_KDB_FLAG_ALIAS_OKIsaac Boukris4-11/+4
2019-12-28Do not always canonicalize enterprise principalsIsaac Boukris1-5/+4
2019-11-03Simplify AS request time handling in KDCGreg Hudson2-25/+3
2019-11-03Record start time of AS requests earlier in KDCAndreas Schneider1-4/+5
generated by cgit v1.1 at 2024-07-18 01:03:34 +0000