d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
145,120 Commits 72 Branches 135 Tags 3.2 GiB
82369f9166
Commit Graph

21 Commits

Author SHA1 Message Date
Doug Rabson
8f55a568f6 Add an implementation of the RPCSEC_GSS authentication protocol for RPC. This 
is based on an old implementation from the University of Michigan with lots of
changes and fixes by me and the addition of a Solaris-compatible API.

Sponsored by:	Isilon Systems
Reviewed by:	alfred
 2008-08-06 14:02:05 +00:00
Doug Rabson
33f1219925 Fix conflicts after heimdal-1.1 import and add build infrastructure. Import 
all non-style changes made by heimdal to our own libgssapi.
 2008-05-07 13:53:12 +00:00
Doug Rabson
e1a0d9eff3 When receiving delegated credentials, initialise our cred's linked list. 
Add a bit more sanity checking for GSS-API mechanisms that claim to have
delegated creds but don't actually return a cred handle.

MFC after: 2 weeks
 2008-04-30 11:29:22 +00:00
Doug Rabson
8294c41328 Use global implementation of _gss_oid_equal. 
MFC after: 2 weeks
 2008-04-30 11:27:15 +00:00
Doug Rabson
733704ea52 Allow null oids in _gss_oid_equal(). 
MFC after: 2 weeks
 2008-04-30 11:25:34 +00:00
Doug Rabson
bfd85d3fbe Make sure GSS-API mechanisms are loaded if gss_acquire_cred is called 
with a null mechanism list.

PR:		misc/117349
Submitted by:	Sean McNeil <sean at mcneil dot com>
 2007-11-28 08:50:20 +00:00
Ken Smith
c0bb7d9461 While checking over the libraries for 7.0-REL Kris found the following 
libraries had not had their versions bumped relative to 6.3-REL but
had indeed been changed.  We need to bump their version so they can be
properly added to the compat6x port:

	libasn1.so.8 libgssapi.so.8 libhdb.so.8 libkadm5clnt.so.8
	libkadm5srv.so.8 libkafs5.so.8 libkrb5.so.8 libobjc.so.2

MFC After:	1 day
 2007-11-20 04:20:32 +00:00
Giorgos Keramidas
98eb34a74c Remove an extra (commented out) .Sh HISTORY section heading, to avoid 
the risk of "shadowing" the following .El request, and delete an empty
line to fix mdoc warnings.

MFC after:	3 days
 2007-10-30 16:05:40 +00:00
Giorgos Keramidas
6f1743c543 Remove an extra (commented out) .Sh HISTORY section heading, to avoid 
the risk of "shadowing" the following .El request, strip eol spaces
and delete an empty line to fix mdoc warnings.

MFC after:	3 days
 2007-10-30 15:58:39 +00:00
Giorgos Keramidas
81c0ade6b6 Change a .PP request to a valid .Pp mdoc request, and remove an extra 
(but commented out) .Sh HISTORY section heading.

MFC after:	3 days
 2007-10-30 15:56:12 +00:00
Giorgos Keramidas
22b9ec401b Remove duplicate (but commented out) .Sh HISTORY section heading. 
It almost "shadows" the ending .El request of a list, which seems
to have caused mdoc buglets in some gss_*.3 manpages.

MFC after:	3 days
 2007-10-30 15:52:55 +00:00
Giorgos Keramidas
2b39bec3a7 Remove duplicate (but commented out) .Sh HISTORY section heading 
and add a missing .El request.

MFC after:	3 days
 2007-10-30 15:45:19 +00:00
Doug Rabson
41ec374660 If the mech_type argument to gss_display_status is null, use a default 
mechanism.

Approved by: re (kensmith)
 2007-07-05 13:40:07 +00:00
Doug Rabson
22a25490ab Merge fixes back from heimdal. 
Approved by: re (kensmith)
 2007-06-30 07:47:45 +00:00
Hartmut Brandt
513edbb8b0 According to the documentation mech_type for gss_init_sec_context() may 
be passed as GSS_C_NO_OID in which case a default mech should be used.
This case was not handled and leads to core dumps when using nss_ldap.
Now use the first mech in this case. When there is no mechanism available
return an error (this part is taken from the PR).

PR:		113266
Submitted by:	Eirik Nygaard <eirikald@pvv.ntnu.no> (partly)
 2007-06-14 19:58:24 +00:00
Alexander Kabaev
3aebdb89ad Add include directives for string.h and stdlib.h to get proper function 
prototypess of memset, memcpy and malloc respectively.
 2007-04-04 02:40:59 +00:00
Alexander Kabaev
84da49ceb2 Include string.h to get proper memcpy prototype. 2007-04-04 02:28:48 +00:00
Doug Rabson
73aba427fe The function isspace does not take a string argument. I have no idea how 
this compiled before; it only worked by accident.
 2006-02-04 09:40:21 +00:00
Doug Rabson
60b9f20a48 Move the Internet Society copyright message so that it appears in the 
formatted page as well as the source.
 2006-01-25 10:06:28 +00:00
Doug Rabson
0606b9944a Use the correct shared-library version number (the same as the one used 
by the standalone version of heimdal GSS-API). If any compat issues
arise, I may increment the version number once more.
 2006-01-01 11:01:01 +00:00
Doug Rabson
c0b9f4fe65 Add a new extensible GSS-API layer which can support GSS-API plugins, 
similar the the Solaris implementation. Repackage the krb5 GSS mechanism
as a plugin library for the new implementation. This also includes a
comprehensive set of manpages for the GSS-API functions with text mostly
taken from the RFC.

Reviewed by: Love Hörnquist Åstrand <lha@it.su.se>, ru (build system), des (openssh parts)
 2005-12-29 14:40:22 +00:00