1. 19 Aug, 2017 2 commits
  2. 18 Aug, 2017 5 commits
  3. 04 Aug, 2017 1 commit
  4. 25 Apr, 2017 1 commit
    • Jim Garlick's avatar
      gssapi: drop unnecessary ifdefs · 53918fc1
      Jim Garlick authored
      Problem: GSSAPI DRAFT code was made conditional on
      ZMQ_BUILD_DRAFT_API, but zmq_draft.h duplicates the DRAFT
      symbols definitions from zmq.h so this is unnecessary.
      
      Solution: drop the extra ifdefs
      53918fc1
  5. 24 Apr, 2017 1 commit
    • Jim Garlick's avatar
      gssapi: move new options to DRAFT section · 9fbf2e2e
      Jim Garlick authored
      Problem: The new GSSAPI NAMESPACE options should have been
      added to the DRAFT section of the API so they can be changed
      until stabilized.
      
      Solution:
      - Move defines to the DRAFT section of zmq.h
      - Duplicate them in zmq_draft.h, as is the local custom
      - Compile only if defined (ZMQ_BUILD_DRAFT_API)
      - Refactor internals slightly to avoid #ifdef hell
      9fbf2e2e
  6. 21 Apr, 2017 1 commit
    • Jim Garlick's avatar
      gssapi: add NAMETYPE socket options · 0b185e82
      Jim Garlick authored
      Problem: principals are looked up unconditionally
      with the GSS_C_NT_HOSTBASED_SERVICE name type.
      
      Solution: Add two new socket options to set the name type
      for ZMQ_GSSAPI_PRINCIPAL and ZMQ_GSSAPI_SERVICE_PRINCIPAL:
      
      ZMQ_GSSAPI_PRINCIPAL_NAMETYPE
      ZMQ_GSSAPI_SERVICE_PRINCIPAL_NAMETYPE
      
      They take an integer argument which must be one of
      ZMQ_GSSAPI_NT_HOSTBASED (0) - default
      ZMQ_GSSAPI_NT_USER_NAME (1)
      ZMQ_GSSAPI_NT_KRB5_PRINCIPAL (2)
      
      These correspond to GSSAPI name types of:
      GSS_C_NT_HOSTBASED_SERVICE
      GSS_C_NT_USER_NAME
      GSS_KRB5_NT_PRINCIPAL_NAME
      
      Fixes #2542
      0b185e82
  7. 20 Apr, 2017 1 commit
    • Jim Garlick's avatar
      gssapi: use GSS_C_BOTH to acquire credentials · f2b579ce
      Jim Garlick authored
      Problem: if client sets the ZMQ_GSSAPI_PRINCIPAL to a valid
      principal, authentication fails.
      
      When an application sets ZMQ_GSSAPI_PRINCIPAL, whether as a
      client or a server, libzmq internally calls gss_acquire_cred()
      with cred_usage=GSS_C_ACCEPT.  This cred_usage setting is for
      acceptors (servers) only, thus it doesn't work for initiators
      (clients).
      
      Solution: Change the cred_usage parameter to GSS_C_BOTH to allow
      initiators to set ZMQ_GSSAPI_PRINCIPAL.
      f2b579ce
  8. 27 Mar, 2017 2 commits
  9. 27 Aug, 2016 1 commit
  10. 14 May, 2016 1 commit
  11. 18 Feb, 2016 1 commit
  12. 07 Feb, 2016 1 commit
  13. 28 Jan, 2016 1 commit
  14. 20 Aug, 2015 1 commit
  15. 24 Jun, 2015 1 commit
  16. 02 Jun, 2015 1 commit
  17. 22 Jan, 2015 1 commit
  18. 05 May, 2014 1 commit
  19. 02 May, 2014 1 commit
  20. 25 Apr, 2014 1 commit
  21. 24 Apr, 2014 14 commits