Skip Menu |
 

From: ghudson@mit.edu
Subject: git commit

Fix S4U client authdata handling

Only send client authdata in the initial request, and note
request authdata in out_creds.

https://github.com/krb5/krb5/commit/ef655640db9ac51979fa4529168aa05a4a8f45e4
Author: Isaac Boukris <iboukris@gmail.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: ef655640db9ac51979fa4529168aa05a4a8f45e4
Branch: master
src/lib/krb5/krb/s4u_creds.c | 19 +++++++++++++++++++
1 files changed, 19 insertions(+), 0 deletions(-)
Subject: git commit
From: ghudson@mit.edu

Add tests for S4U request-authdata handling

In adata.c, look up the server in the keytab by ticket->server (which
has the canonicalized realm), to allow testing of cross-realm RBCD
(although unused for now).

In s4u2proxy.c, set KRB5_GC_CANONICALIZE to support RBCD, and add an
authdata request option. Add an s4u2self test harness with authdata
request option.

[ghudson@mit.edu: minor code simplifications; edited commit message]

https://github.com/krb5/krb5/commit/2d039a2b4c3ba6d71da8fcf76658dc63bc659f0c
Author: Isaac Boukris <iboukris@gmail.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: 2d039a2b4c3ba6d71da8fcf76658dc63bc659f0c
Branch: master
.gitignore | 1 +
src/tests/Makefile.in | 11 +++--
src/tests/adata.c | 4 +-
src/tests/s4u2proxy.c | 37 +++++++++++++-
src/tests/s4u2self.c | 128 +++++++++++++++++++++++++++++++++++++++++++++++
src/tests/t_authdata.py | 22 ++++++++-
6 files changed, 195 insertions(+), 8 deletions(-)
Subject: git commit
From: ghudson@mit.edu

Add tests for cross-realm RBCD request authdata

https://github.com/krb5/krb5/commit/fba01092b7beb097780f2482997c9e6cee0e7ed2
Author: Isaac Boukris <iboukris@gmail.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: fba01092b7beb097780f2482997c9e6cee0e7ed2
Branch: master
src/tests/t_authdata.py | 31 ++++++++++++++++++++++++++++---
1 files changed, 28 insertions(+), 3 deletions(-)
Subject: git commit
From: ghudson@mit.edu

Fix S4U client authdata handling

Only send client authdata in the initial request, and note
request authdata in out_creds.

(cherry picked from commit ef655640db9ac51979fa4529168aa05a4a8f45e4)

https://github.com/krb5/krb5/commit/cad856e8a51c0b22ec2c41db02c6a56c433e5b20
Author: Isaac Boukris <iboukris@gmail.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: cad856e8a51c0b22ec2c41db02c6a56c433e5b20
Branch: krb5-1.18
src/lib/krb5/krb/s4u_creds.c | 19 +++++++++++++++++++
1 files changed, 19 insertions(+), 0 deletions(-)
Subject: git commit
From: ghudson@mit.edu

Add tests for S4U request-authdata handling

In adata.c, look up the server in the keytab by ticket->server (which
has the canonicalized realm), to allow testing of cross-realm RBCD
(although unused for now).

In s4u2proxy.c, set KRB5_GC_CANONICALIZE to support RBCD, and add an
authdata request option. Add an s4u2self test harness with authdata
request option.

[ghudson@mit.edu: minor code simplifications; edited commit message]

(cherry picked from commit 2d039a2b4c3ba6d71da8fcf76658dc63bc659f0c)

https://github.com/krb5/krb5/commit/8642b06696fd7fca68aae475bd4113be5a1658cb
Author: Isaac Boukris <iboukris@gmail.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: 8642b06696fd7fca68aae475bd4113be5a1658cb
Branch: krb5-1.18
.gitignore | 1 +
src/tests/Makefile.in | 11 +++--
src/tests/adata.c | 4 +-
src/tests/s4u2proxy.c | 37 +++++++++++++-
src/tests/s4u2self.c | 128 +++++++++++++++++++++++++++++++++++++++++++++++
src/tests/t_authdata.py | 22 ++++++++-
6 files changed, 195 insertions(+), 8 deletions(-)