gss-ntlmssp.git/src, branch connectionless

Support connectionless signing and sealing.

2013-10-18T20:29:51+00:00

In connectionless mode (GSS_C_DATAGRAM_FLAG on) sealing keys
ust be rotated for each message.

Add way to set sequence numbres.

2013-10-18T20:29:51+00:00

In NTLMSSP connectionless mode applications are supposed to provide the
sequence number, however GSSAPI's get_mic and verify_mic functions do
not allow to pass an explicit sequence number.

Allow to override the context sequence numbers using a custom oid and
implemnting gss_set_sec_context_option()

Allows the operation only if the context is in connectionless mode.

Add support for connectionless mode

2013-10-18T20:29:51+00:00

This needs a new GSSAPI flag, for now grab a number and define
GSS_C_DATAGRAM_FLAG ourselves.

Add public devel header file

2013-10-18T20:29:50+00:00

This contains definitions for various OIDs and flags needed to
implemented non-standard features like NTLMSSP Connectionless mode.

Add special case for enterprise names

2013-10-18T20:29:15+00:00

When enterprise names are used they need to be passed with the embedded
'@' signed escaped with a '\', when that is done the whole name is used
as the user name and the name is not split on the @ or \ characters.

These forms are now supported:

foo
    USERNAME: foo
    DOMAIN: 

BAR\foo
    USERNAME: foo
    DOMAIN: BAR

foo@BAR
    USERNAME: foo
    DOMAIN: BAR

foo\@bar.example.com
    USERNAME: foo\@bar.example.com
    DOMAIN:

Treat NO OID as GSS_C_NT_USER_NAME on import

2013-10-18T19:29:00+00:00

Fix potential segfault condition in RC4_FREE

2013-10-18T19:26:37+00:00

Fix generation of signing keys and add tests

2013-10-18T19:26:32+00:00

Add support for gss_acquire_cred_with_password()

2013-10-17T06:08:29+00:00

Fix handling of NULL domain

2013-10-17T06:08:29+00:00

Fix segafult in NTOWFv2. When domain is NULL it is just omitted from the
NTOWFv2 computation.

Fix segfault in accept_sec_context, just make dom_name be an empty string.

Fix also memory leaks.