Lines Matching refs:context
58 get_digest_key(krb5_context context,
67 ret = _kdc_get_preferred_key(context,
75 return krb5_crypto_init(context, &key->key, 0, crypto);
83 get_ntlm_targetname(krb5_context context,
88 targetname = strdup(krb5_principal_get_realm(context,
102 fill_targetinfo(krb5_context context,
117 str = krb5_principal_get_comp_string(context, p, 0);
125 str = krb5_principal_get_comp_string(context, p, 1);
164 get_password_entry(krb5_context context,
175 ret = krb5_parse_name(context, username, &clientprincipal);
179 ret = _kdc_db_fetch(context, config, clientprincipal,
181 krb5_free_principal(context, clientprincipal);
185 ret = hdb_entry_get_password(context, db, &user->entry, password);
189 krb5_set_error_message(context, ret, "password missing");
193 _kdc_free_ent (context, user);
202 _kdc_do_digest(krb5_context context,
226 kdc_log(context, config, 0,
239 kdc_log(context, config, 0, "Digest request from %s", from);
241 ret = krb5_kt_resolve(context, "HDB:", &id);
243 kdc_log(context, config, 0, "Can't open database for digest");
247 ret = krb5_rd_req(context,
262 ret = krb5_ticket_get_server(context, ticket, &principal);
267 krb5_set_error_message(context, ret, "Wrong digest server principal used");
268 p = krb5_principal_get_comp_string(context, principal, 0);
270 krb5_free_principal(context, principal);
274 krb5_free_principal(context, principal);
278 p = krb5_principal_get_comp_string(context, principal, 1);
280 krb5_free_principal(context, principal);
283 rr = krb5_principal_get_realm(context, principal);
285 krb5_free_principal(context, principal);
289 krb5_free_principal(context, principal);
292 krb5_clear_error_message(context);
294 ret = _kdc_db_fetch(context, config, principal,
299 krb5_free_principal(context, principal);
306 ret = krb5_ticket_get_client(context, ticket, &principal);
310 ret = krb5_unparse_name(context, principal, &client_name);
312 krb5_free_principal(context, principal);
316 ret = _kdc_db_fetch(context, config, principal,
318 krb5_free_principal(context, principal);
323 kdc_log(context, config, 0,
328 krb5_set_error_message(context, ret,
338 ret = krb5_auth_con_getremotesubkey(context, ac, &key);
343 krb5_set_error_message(context, ret, "digest: remote subkey not found");
347 ret = krb5_crypto_init(context, key, 0, &crypto);
348 krb5_free_keyblock (context, key);
353 ret = krb5_decrypt_EncryptedData(context, crypto, KRB5_KU_DIGEST_ENCRYPT,
355 krb5_crypto_destroy(context, crypto);
363 krb5_set_error_message(context, ret, "Failed to decode digest inner request");
367 kdc_log(context, config, 0, "Valid digest request from %s (%s)",
391 krb5_set_error_message(context, ret, "Failed to decode server nonce");
398 krb5_set_error_message(context, ret, "malloc: out of memory");
403 krb5_clear_error_message(context);
415 krb5_set_error_message(context, ret,
425 krb5_clear_error_message(context);
434 krb5_set_error_message(context, ret, "malloc: out of memory");
441 krb5_set_error_message(context, ret, "malloc: out of memory");
451 krb5_clear_error_message(context);
458 krb5_clear_error_message(context);
462 ret = get_digest_key(context, config, server, &crypto);
466 ret = krb5_create_checksum(context,
473 krb5_crypto_destroy(context, crypto);
482 krb5_set_error_message(context, ret, "Failed to encode "
487 krb5_abortx(context, "ASN1 internal error");
493 krb5_clear_error_message(context);
498 kdc_log(context, config, 0, "Digest %s init request successful from %s",
507 krb5_set_error_message(context, ret, "malloc: out of memory");
512 krb5_clear_error_message(context);
521 krb5_clear_error_message(context);
530 krb5_set_error_message(context, ret, "malloc: out of memory");
537 krb5_set_error_message(context, ret, "Failed to decode opaque");
546 krb5_set_error_message(context, ret,
553 krb5_clear_error_message(context);
561 krb5_set_error_message(context, ret, "malloc: out of memory");
576 krb5_set_error_message(context, ret, "Failed to decode serverNonce");
582 ret = get_digest_key(context, config, server, &crypto);
586 ret = krb5_verify_checksum(context, crypto,
591 krb5_crypto_destroy(context, crypto);
603 krb5_set_error_message(context, ret, "server nonce too short");
608 if (abs((kdc_time & 0xffffffff) - t) > context->max_skew) {
610 krb5_set_error_message(context, ret, "time screw in server nonce ");
622 kdc_log(context, config, 0, "Digest CHAP MD5 not allowed");
628 krb5_set_error_message(context, ret, "Identifier missing "
635 krb5_set_error_message(context, ret, "failed to decode identifier");
639 ret = get_password_entry(context, config,
657 krb5_clear_error_message(context);
669 kdc_log(context, config, 0,
682 kdc_log(context, config, 0, "Digest SASL MD5 not allowed");
695 ret = get_password_entry(context, config,
730 krb5_set_error_message(context, ret, "malloc: out of memory");
752 krb5_set_error_message(context, ret, "malloc: out of memory");
783 krb5_clear_error_message(context);
794 kdc_log(context, config, 0,
810 kdc_log(context, config, 0, "MS-CHAP-V2 not allowed");
816 krb5_set_error_message(context, ret,
822 krb5_set_error_message(context, ret,
846 krb5_set_error_message(context, ret,
856 krb5_set_error_message(context, ret,
872 ret = krb5_parse_name(context, username, &clientprincipal);
876 ret = _kdc_db_fetch(context, config, clientprincipal,
878 krb5_free_principal(context, clientprincipal);
880 krb5_set_error_message(context, ret,
886 ret = hdb_enctype2key(context, &user->entry,
889 krb5_set_error_message(context, ret,
900 krb5_set_error_message(context, ret, "NTLM missing arcfour key");
907 krb5_clear_error_message(context);
917 kdc_log(context, config, 0,
957 krb5_clear_error_message(context);
966 krb5_clear_error_message(context);
987 krb5_clear_error_message(context);
994 krb5_clear_error_message(context);
1005 krb5_set_error_message(context, ret, "malloc: out of memory");
1011 kdc_log(context, config, 0, "Digest %s request successful %s",
1019 kdc_log(context, config, 0, "NTLM not allowed");
1028 kdc_log(context, config, 0, "NTLM client have no unicode");
1035 kdc_log(context, config, 0, "NTLM client doesn't support NTLM");
1056 get_ntlm_targetname(context, client);
1059 krb5_set_error_message(context, ret, "malloc: out of memory");
1065 krb5_set_error_message(context, ret, "malloc: out of memory");
1073 krb5_set_error_message(context, ret, "out of random error");
1080 krb5_set_error_message(context, ret, "malloc: out of memory");
1084 ret = fill_targetinfo(context,
1090 krb5_set_error_message(context, ret, "malloc: out of memory");
1101 krb5_set_error_message(context, ret, "malloc: out of memory");
1108 krb5_set_error_message(context, ret, "storage write challange");
1113 krb5_clear_error_message(context);
1119 krb5_clear_error_message(context);
1123 ret = get_digest_key(context, config, server, &crypto);
1127 ret = krb5_encrypt(context, crypto, KRB5_KU_DIGEST_OPAQUE,
1130 krb5_crypto_destroy(context, crypto);
1135 kdc_log(context, config, 0, "NTLM init from %s", from);
1154 ret = krb5_parse_name(context,
1160 ret = _kdc_db_fetch(context, config, clientprincipal,
1162 krb5_free_principal(context, clientprincipal);
1164 krb5_set_error_message(context, ret, "NTLM user %s not in database",
1169 ret = get_digest_key(context, config, server, &crypto);
1173 ret = krb5_decrypt(context, crypto, KRB5_KU_DIGEST_OPAQUE,
1176 krb5_crypto_destroy(context, crypto);
1179 kdc_log(context, config, 0,
1187 krb5_set_error_message(context, ret, "malloc: out of memory");
1194 krb5_set_error_message(context, ret, "NTLM storage read challange");
1199 krb5_set_error_message(context, ret, "NTLM storage read flags");
1208 krb5_set_error_message(context, ret, "NTLM not negotiated");
1212 ret = hdb_enctype2key(context, &user->entry,
1215 krb5_set_error_message(context, ret, "NTLM missing arcfour key");
1225 kdc_log(context, config, 0, "NTLM v2 not allowed");
1231 targetname = get_ntlm_targetname(context, client);
1234 krb5_set_error_message(context, ret, "malloc: out of memory");
1252 krb5_set_error_message(context, ret, "NTLM v2 verify failed");
1271 kdc_log(context, config, 0, "NTLM v1-session not allowed");
1278 krb5_set_error_message(context, ret, "LM hash have wrong length "
1296 kdc_log(context, config, 0, "NTLM v1 not allowed");
1305 krb5_set_error_message(context, ret, "NTLM missing arcfour key");
1314 krb5_set_error_message(context, ret, "NTLM hash mismatch");
1341 krb5_set_error_message(context, ret,
1350 krb5_set_error_message(context, ret,
1360 krb5_set_error_message(context, ret,
1361 "NTLM failed to malloc cipher context");
1374 krb5_set_error_message(context, ret, "malloc: out of memory");
1381 krb5_set_error_message(context, ret, "malloc: out of memory");
1387 kdc_log(context, config, 0, "NTLM version %d successful for %s",
1393 kdc_log(context, config, 0, "digest supportedMechs from %s", from);
1415 krb5_set_error_message(context, ret, "unknown operation to digest");
1419 s = krb5_get_error_message(context, ret);
1421 krb5_clear_error_message(context);
1425 kdc_log(context, config, 0, "Digest failed with: %s", s);
1429 krb5_free_error_message(context, s);
1432 krb5_set_error_message(context, ret, "malloc: out of memory");
1442 krb5_set_error_message(context, ret, "Failed to encode inner digest reply");
1446 krb5_abortx(context, "ASN1 internal error");
1448 krb5_auth_con_addflags(context, ac, KRB5_AUTH_CONTEXT_USE_SUBKEY, NULL);
1450 ret = krb5_mk_rep (context, ac, &rep.apRep);
1457 ret = krb5_auth_con_getlocalsubkey(context, ac, &key);
1461 ret = krb5_crypto_init(context, key, 0, &crypto);
1462 krb5_free_keyblock (context, key);
1467 ret = krb5_encrypt_EncryptedData(context, crypto, KRB5_KU_DIGEST_ENCRYPT,
1473 krb5_set_error_message(context, ret, "Failed to encode digest reply");
1477 krb5_abortx(context, "ASN1 internal error");
1482 krb5_auth_con_free(context, ac);
1484 krb5_warn(context, ret, "Digest request from %s failed", from);
1486 krb5_free_ticket(context, ticket);
1488 krb5_kt_close(context, id);
1490 krb5_crypto_destroy(context, crypto);
1494 _kdc_free_ent (context, user);
1496 _kdc_free_ent (context, server);
1498 _kdc_free_ent (context, client);