aboutsummaryrefslogtreecommitdiff
path: root/src/lib/gssapi
AgeCommit message (Expand)AuthorFilesLines
2011-04-09fix regression in mech SPI availability checklhoward/moonshot-mechglue-fixesLuke Howard1-2/+5
2011-04-09remove user_ok outparam from gss_authorize_localnameLuke Howard4-54/+39
2011-04-09return GSS_S_NAME_NOT_MN if name not mechnameLuke Howard1-3/+2
2011-04-09Merge branch 'master' into users/lhoward/moonshot-mechglue-fixesLuke Howard1-3/+19
2011-04-09in gss_userok, import name as GSS_C_NT_USER_NAMELuke Howard1-1/+1
2011-04-09update for new authorize_localname SPILuke Howard1-0/+6
2011-04-09Cleanup, add mech type to authorize_localname SPILuke Howard3-23/+30
2011-04-08remove redundant import_name callLuke Howard1-31/+15
2011-04-08make SPI entrypoint for authorize_localname gssspi_authorize_localnameLuke Howard3-5/+7
2011-04-07implement gss_authorize_localnameLuke Howard6-64/+102
2011-04-06Merge branch 'master' into users/lhoward/moonshot-mechglue-fixesLuke Howard1-0/+32
2011-04-04Merge branch 'master' into users/lhoward/moonshot-mechglue-fixesLuke Howard6-17/+15
2011-04-03allow empty names when importing GSS_C_NT_ANONYMOUSLuke Howard1-4/+11
2011-04-03make const_attrs buffer staticLuke Howard1-1/+1
2011-04-03add a symbolic name, GSS_C_ATTR_LOCAL_LOGIN_USER, for local-login-user attributeLuke Howard5-10/+12
2011-04-01Support for transiting attributes between mechanismsLuke Howard1-2/+68
2011-04-01verify desired and actual mech OIDs are equal before trying gss_duplicate_nameLuke Howard1-2/+7
2011-03-28gss_userok() naming extensions wrapper need not check for completeLuke Howard1-1/+1
2011-03-22log plugin load errors to stderrLuke Howard1-7/+3
2011-03-22compesenate for missing TOK_ID when calculating encap sizeLuke Howard1-0/+3
2011-03-22Fix order of operations bug in token size calculationLuke Howard1-2/+2
2011-03-22fix a couple of nits in draft-josefsson-gss-capsulate-01Luke Howard3-2/+3
2011-03-22Implement draft-josefsson-gss-capsulate-01Luke Howard6-0/+165
2011-03-21Allow absolute paths for mechglue librariesLuke Howard1-1/+5
2011-03-21return GSS_S_UNAVAILABLE on localname lookup errorLuke Howard1-4/+10
2011-03-21add attribute-based implementation of gssd_pname_to_uidLuke Howard2-17/+121
2011-03-20set minor_status to KRB5_NO_LOCALNAME if pname_to_uid failsLuke Howard1-3/+3
2011-03-20Use PADL rather than MIT copyright for userok extensions (workLuke Howard1-18/+26
2011-03-17allow mechanisms to export a gss_duplicate_name SPI that supportsLuke Howard7-54/+45
2011-03-17Use pointer test to avoid mechglue symbol loopbackLuke Howard1-54/+67
2011-03-17implement attribute-based userok authorisation logic as suggestedLuke Howard1-24/+121
2011-03-17avoid unnecessary call to gssint_get_mechanism() in case of error pathLuke Howard1-6/+6
2011-03-17plug introduced leak in gss_acquire_credLuke Howard1-0/+2
2011-03-17If calling gss_accept_sec_context with non-NULL credentials, ensureLuke Howard1-5/+10
2011-03-17make gss_acquire_cred(GSS_C_NO_OID_SET) acquire credentials for allLuke Howard1-42/+32
2011-03-17look for gss_{wrap_size_limit,pname_to_uid} when dynamically loading mechs by...Luke Howard1-0/+2
2011-03-17Reinstate gss_userok and gss_pname_to_uidLuke Howard8-50/+173
2011-03-11Although it can't actually happen, make it more explicit that we won'tGreg Hudson1-1/+2
2011-03-09Adjust most C source files to match the new standards for copyrightGreg Hudson50-211/+77
2011-03-08Fix a memory leak independently found by Tim Pozdeev and Arlene BerryTom Yu1-0/+1
2011-03-08SPNEGO's accept_sec_context and init_sec_context produce a null contextGreg Hudson1-2/+6
2011-02-25Make dependGreg Hudson3-264/+217
2011-02-22Fix a memory leak introduced in r23926 where k_cred was not freed onGreg Hudson1-30/+24
2011-02-22Don't leak the mechanism internal context when we get an error in theGreg Hudson1-1/+6
2011-02-14In kg_acceptor_princ, make Coverity happy by using a different test toGreg Hudson1-1/+1
2011-02-07Improve acceptor name flexibilityGreg Hudson7-58/+207
2011-02-04Change flow control in krb5_gss_import_name to better match currentGreg Hudson1-95/+60
2011-02-03Remove an unnecessary statement in acquire_init_cred(). We never setGreg Hudson1-7/+1
2011-01-25Make gss_krb5_set_allowable_enctypes work for the acceptorGreg Hudson1-0/+9
2011-01-12Don't call memset with a zero lengthKen Raeburn1-1/+2
generated by cgit v1.1 at 2024-07-08 21:22:21 +0000