summaryrefslogtreecommitdiffstats
path: root/src/lib/gssapi/krb5
Commit message (Collapse)AuthorAgeFilesLines
...
* log tritan's changesTom Yu1999-10-261-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11877 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up usage of CFLAGS, CPPFLAGS, DEFS, DEFINES, LOCAL_INCLUDES suchWilfredo Sanchez1999-10-261-1/+1
| | | | | | | that one can override CFLAGS from the command line without losing CPP search patchs and defines. Some associated Makefile cleanup. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11876 dc483132-0cff-0310-8789-dd5450dbe970
* copyright notice updates from 1.1 branchKen Raeburn1999-09-249-9/+36
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11853 dc483132-0cff-0310-8789-dd5450dbe970
* Improve rule to create gssapi include dir under windowsDanilo Almeida1999-05-192-7/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11466 dc483132-0cff-0310-8789-dd5450dbe970
* These are a bunch of intertwined changes to the windows build.Danilo Almeida1999-05-192-3/+12
| | | | | | | | | | | | | | | | | | | | | | | | This log message includes all of the different changes across several Makefile.in files (and win-pre.in and win-post.in): - Remove "-" from recursive windows make invocations so that we can bail on a build error. New MIGNORE option restores the previous bailing behavior. - Update windows readme to reflect current practices. - Add NO_OUTDIR synonym for NO_OUTPRE in windows build. - Top-level windows Makefile now builds util which now builds util/windows, util/et, and util/profile (instead of building them directly). - Remove trailing backslash from rule that creates the windows output dir. This backslash would cause the rule to always be invoked. - Move WCONFIG and WCONFIG_EXE definitions into win-pre.in. - Remove rules in include directory that blindly copy include header files from gssapi, et, and profile. Instead, use/add build rules to the components that generate them that copy only when the file changes. - Use dependencies in include/krb5 to copy header files instead of blindly copying them. Add !if 0/!endif wrapper to Unix version of the rules. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11464 dc483132-0cff-0310-8789-dd5450dbe970
* Do win32 build in subdirDanilo Almeida1999-05-102-46/+50
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11432 dc483132-0cff-0310-8789-dd5450dbe970
* set_ccache.c (gss_krb5_ccache_name): Add call to free the defaultTheodore Tso1999-04-302-0/+7
| | | | | | credential changing the ccache name. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11413 dc483132-0cff-0310-8789-dd5450dbe970
* Removed #include for gssapi_generic.h from gssapi_krb5.hMiro Jurisic1999-04-292-5/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11405 dc483132-0cff-0310-8789-dd5450dbe970
* wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix wrap_size limit soTheodore Tso1999-04-232-6/+20
| | | | | | | | that it correctly calculates its results, and underestimates the correct size instead of overestimating it, and not returning zero all the time. (Which it used to do after the March 25 fix.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11380 dc483132-0cff-0310-8789-dd5450dbe970
* gssapi_krb5.h, copy_ccache.c, get_tkt_flags.c, set_ccache.c: Make theTheodore Tso1999-04-175-20/+18
| | | | | | krb5 extension functions exportable in a Windows DLL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11367 dc483132-0cff-0310-8789-dd5450dbe970
* Built the krb5 specific extension function which allows an applicationTheodore Tso1999-04-171-0/+1
| | | | | | program to set the ccache location. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11366 dc483132-0cff-0310-8789-dd5450dbe970
* acquire_cred.c (krb5_gss_acquire_cred): Don't use strcmp to compareTheodore Tso1999-03-272-6/+21
| | | | | | against principal components (they aren't null terminated!) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11320 dc483132-0cff-0310-8789-dd5450dbe970
* gssapi_krb5.c: Rearrange OID's so that the V1V2 mechanism set returnsTheodore Tso1999-03-267-19/+51
| | | | | | | | | | | | | | | | | | | | | | | | all three mechanism ID's recognized by this implementation, with the RFC1964 OID first (and thus preferred). import_sec_context.c (krb5_gss_convert_static_mech_oid): Make the old convert_static_oid() function globally accessible with a namespace compliant name, since init_sec_context() needs to be able to use this function. indicate_mechs.c (krb5_gss_indicate_mechs): Return the v1v2 mechanism set OID, since we should return all the mechanisms that we support. init_sec_context.c (krb5_gss_init_sec_context): Make ctx->mech_used use a static OID, since it is returned by gss_inquire_context which must return a static OID. wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix bug where we would overestimate the size of the allowable input message by one byte, because we weren't passing the right estimate of the wrapped data to g_token_size(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11315 dc483132-0cff-0310-8789-dd5450dbe970
* Added extern "C" to gssapi_krb5.hMiro Jurisic1999-03-152-0/+13
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11289 dc483132-0cff-0310-8789-dd5450dbe970
* Now actually compilesMiro Jurisic1999-03-152-3/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11286 dc483132-0cff-0310-8789-dd5450dbe970
* Fix obviously missing variable declarationTheodore Tso1999-03-141-0/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11283 dc483132-0cff-0310-8789-dd5450dbe970
* Check in prototype for gss_krb5_ccache_name()Theodore Tso1999-03-141-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11280 dc483132-0cff-0310-8789-dd5450dbe970
* set_ccache.c (gss_krb5_ccache_name): Added new Krb5 specific interfaceTheodore Tso1999-03-123-0/+32
| | | | | | to set the default credentials cache name. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11266 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in (DLL_FILE_DEF): Tell the Makefile template that we areTheodore Tso1999-03-123-40/+49
| | | | | | | | building object files for the GSSAPI DLL. krb5_gss_glue.c: Change use of KRB5_DLLIMP to be GSS_DLLIMP. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11261 dc483132-0cff-0310-8789-dd5450dbe970
* accept_sec_context.c (krb5_gss_accept_sec_context): Eliminate doubleTheodore Tso1998-12-223-232/+219
| | | | | | | | | | | | | | | free of ap_req.data, and initialize ctypes to be NULL to avoid freeing a pointer to stack garbage when doing a V1 mechanism accept_sec_contxt. init_sec_context.c: Re-arrange program logic to simplify and factor out code; fix gss_init_sec_context() so that if the default OID is passed to the init_sec_context, it will use the V1 mechanism if a single DES enctype is used. Error handling was revamped to make it simpler and cleaner, and to assure that we don't have memory leaks on error returns. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11093 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: Set the myfulldir and mydir variables (which are relativeTheodore Tso1998-12-052-0/+7
| | | | | | to buildtop and thisconfigdir, respectively.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11084 dc483132-0cff-0310-8789-dd5450dbe970
* * k5unseal.c (kg2_unwrap_integ): Handle case of malloc(0)Ezra Peisach1998-11-062-13/+20
| | | | | | returning NULL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11018 dc483132-0cff-0310-8789-dd5450dbe970
* pull up 3des implementation from the marc-3des branchMarc Horowitz1998-10-3025-954/+3102
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11001 dc483132-0cff-0310-8789-dd5450dbe970
* * wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix to round downTom Yu1998-07-252-1/+8
| | | | | | | | by 8 even if the req_output_size-ohlen is a multiple of 8, since the wrap token is always padded regardless of whether it's a mutiple of 8 bytes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10737 dc483132-0cff-0310-8789-dd5450dbe970
* Replaced preprocessor symbol _MACINTOSH with macintosh, since macintosh is ↵Miro Jurisic1998-07-173-5/+5
| | | | | | the standard symbol defined by all Mac compiler (oh, sure, it doesn't have _. but at least it's always there) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10653 dc483132-0cff-0310-8789-dd5450dbe970
* k5unseal.c (kg_unseal): Clean up lint warningsTheodore Tso1998-07-026-29/+66
| | | | | | | | | | | | | | | accept_sec_context.c (krb5_gss_accept_sec_context): Don't return an error token if we can't provide the server name to the KRB5 error structure (because cred isn't initialized). gssapi_krb5.c, gssapi_krb5.h: Export the oid of static arrays as krb5_gss_oid_array since it's needed by gss_import_sec_context. import_sec_context.c: Fix up the OID of the mechanism in the imported security context so that we use the static OID if at all possible. This is needed since gss_inquire_context() must return a static OID. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10618 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo which caused import_name to incorrectly import names producedTheodore Tso1998-05-252-1/+7
| | | | | | by gss_export_name(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10579 dc483132-0cff-0310-8789-dd5450dbe970
* copy_ccache.c (gss_krb5_copy_ccache): Fix bugs in copy_ccache.c, whichTheodore Tso1998-05-254-10/+19
| | | | | | | | | never compiled cleanly (since it wasn't added to the Makefile correctly originally). k5seal.c (make_seal_token): Clean up -Wall flames git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10578 dc483132-0cff-0310-8789-dd5450dbe970
* inq_cred.c (krb5_gss_inquire_cred):Theodore Tso1998-05-2510-37/+58
| | | | | | | | | | | | | inq_context.c (krb5_gss_inquire_context): import_name.c (krb5_gss_import_name): export_name.c (krb5_gss_export_name): disp_name.c (krb5_gss_display_name): context_time.c (krb5_gss_context_time): acquire_cred.c (krb5_gss_acquire_cred): Clean up -Wall flames. indicate_mechs.c (krb5_gss_indicate_mechs): Return a dynamic OID set. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10577 dc483132-0cff-0310-8789-dd5450dbe970
* export_name.c (krb5_gss_export_name): Fix bug in gss_export_name. TheTheodore Tso1998-02-282-1/+7
| | | | | | | 2nd length field in the ASN.1 was 2 bytes bigger than it should have been. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10475 dc483132-0cff-0310-8789-dd5450dbe970
* Remove trailing slash from thisconfigdir. Change directory syntaxTom Yu1998-02-182-2/+7
| | | | | | used in BUILDTOP. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10464 dc483132-0cff-0310-8789-dd5450dbe970
* Change patch so that either mechanism is acceptedTheodore Tso1998-02-132-5/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10434 dc483132-0cff-0310-8789-dd5450dbe970
* accept_sec_context.c (krb5_gss_accept_sec_context): Always allow useTheodore Tso1998-02-132-0/+7
| | | | | | of the pre-RFC mechanism when accepting contexts. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10433 dc483132-0cff-0310-8789-dd5450dbe970
* * accept_sec_context.c (krb5_gss_accept_sec_context): Add lots ofTom Yu1998-02-132-15/+32
| | | | | | | | | | explicit assignments to major_status to ensure that we actually return an error when we mean to. This was previously preventing gssrpc authentication with the old ovsec_kadm interface from working because the gssrpc server side functions were failing to loop over a set of supplied credentials. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10428 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c: KLUDGE!! Add global variableTom Yu1998-02-122-1/+11
| | | | | | | krb5_gss_dbg_client_expcreds to allow the client library to send expired credentials for testing and debugging purposes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10426 dc483132-0cff-0310-8789-dd5450dbe970
* Mass makefile/configure.in build system revampTheodore Tso1998-02-123-8/+23
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10424 dc483132-0cff-0310-8789-dd5450dbe970
* wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix bug where if theTheodore Tso1998-02-062-2/+15
| | | | | | | output header size is greater than the maximum requested output size, return 0 rather than a very large unsigned number. :-) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10413 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c (krb5_gss_init_sec_context): ActuallyTom Yu1998-01-312-5/+10
| | | | | | initialize now before calling make_ap_req. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10396 dc483132-0cff-0310-8789-dd5450dbe970
* * accept_sec_context.c (rd_and_store_for_creds): Don't mess withDan Winship1998-01-305-3/+74
| | | | | | | | | | | | krb5_cc_default--use a new mem-based ccache. * Makefile.in: * gssapi_krb5.h: * copy_ccache.c (gss_krb5_copy_ccache): Routine to copy a gss_cred_id_t (such as a forwarded creds) into an existing krb5_ccache. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10389 dc483132-0cff-0310-8789-dd5450dbe970
* accept_sec_context.c (krb5_gss_accept_sec_context): Will now obtainTheodore Tso1998-01-242-25/+38
| | | | | | default credentials if no credentials are given. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10375 dc483132-0cff-0310-8789-dd5450dbe970
* init_sec_context.c (make_ap_req): Enforce a stricter requirement onTheodore Tso1998-01-242-2/+27
| | | | | | | | | | the ticket expiration time of the credentials, since accept_sec_context doesn't use the timeskew fudge for checking ticket expirations. (krb5_gss_init_sec_context): Return GSS_S_NO_CRED when appropriate. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10374 dc483132-0cff-0310-8789-dd5450dbe970
* * gssapiP_krb5.h: Add rcache member to the credsTom Yu1998-01-226-2/+46
| | | | | | | | | | | | | | | | | | | structure. [krb5-libs/370] * accept_sec_context.c (krb5_gss_accept_sec_context): Actually set an rcache in auth context from the one saved in the creds structure. [krb5-libs/370] * acquire_cred.c (acquire_accept_cred): Set up an rcache for use later. [krb5-libs/370] * delete_sec_context.c (krb5_gss_delete_sec_context): Don't delete the rcache when freeing the auth_context. [krb5-libs/370] * rel_cred.c (krb5_gss_release_cred): Properly close the rcache. [krb5-libs/370] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10371 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (OBJS): Changed val_cred.$(OBJECT) toEzra Peisach1997-12-292-1/+6
| | | | | | val_cred.$(OBJEXT) for windows building. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10343 dc483132-0cff-0310-8789-dd5450dbe970
* * val_cred.c (krb5_gss_validate_cred): Free principal extractedEzra Peisach1997-12-072-0/+6
| | | | | | from credential cache when finished. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10330 dc483132-0cff-0310-8789-dd5450dbe970
* * accept_sec_context.c (krb5_gss_accept_sec_context),Theodore Tso1997-11-167-12/+99
| | | | | | | | | | | | | | | | init_sec_context.c (krb5_gss_init_sec_context), inq_cred.c (krb5_gss_inquire_cred): Call krb5_gss_validate_cred to make sure the credential handle is still valid. * val_cred.c (krb5_gss_validate_cred): New file which validates the credential to make sure it is valid, including checking to make sure the credentials cache still points at the same krb5 principal as it did before. * accept_sec_context.c (krb5_gss_accept_sec_context): Return GSS_S_FAILURE if a non-NULL context handle is passed to it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10285 dc483132-0cff-0310-8789-dd5450dbe970
* (Wrong version of Changelog committed previously)Theodore Tso1997-11-161-1/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10284 dc483132-0cff-0310-8789-dd5450dbe970
* Return GSS_S_FAILURE if a non-NULL context handle is passed to itTheodore Tso1997-11-162-3/+11
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10283 dc483132-0cff-0310-8789-dd5450dbe970
* remove occurences of USE_STRING_H, HAS_STRDUP, and HAS_LABSTom Yu1997-09-193-2/+8
| | | | | | (see ChangeLogs for details) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10199 dc483132-0cff-0310-8789-dd5450dbe970
* inq_names.c (krb5_gss_inquire_names_for_mech): Add the the new OIDTheodore Tso1997-07-303-1/+20
| | | | | | | | | | value for the host-based service name and the exported name OID to the list of OID's supported by this mechanism. import_name.c (krb5_gss_import_name): Add support for the new OID value for the host-based service name. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10141 dc483132-0cff-0310-8789-dd5450dbe970
* (krb5_gss_accept_sec_context): Initialize ctx before it is referenced ↵Ezra Peisach1997-07-222-1/+6
| | | | | | without being set in failure cases git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10123 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-09-28 17:26:18 +0000