summaryrefslogtreecommitdiffstats
path: root/src/lib/krb5/krb
Commit message (Collapse)AuthorAgeFilesLines
...
* Merge V1_0_FREEZE_3 into the mainline. (Note this merge does *not*Theodore Tso1996-12-132-1/+19
| | | | | | include the doc subtree!!) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9632 dc483132-0cff-0310-8789-dd5450dbe970
* revert kt_default_name changes; see ChangeLogs for detailsTom Yu1996-11-132-3/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9407 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (krb5_init_context): Oops. Initialize kt_default_nameTom Yu1996-11-132-0/+4
| | | | | | to NULL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9398 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (krb5_free_context): Free kt_default_name if it'sTom Yu1996-11-132-0/+7
| | | | | | non-NULL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9396 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (check-unix): Invoking t_ser requires thatEzra Peisach1996-11-093-1/+13
| | | | | | | | | | | KRB5_CONFIG points to a valid krb5.conf * t_ser.c (main): If verbose flag is set and there is an error, display error message. This would not have been noticed on a system with a valid /etc/krb5.conf... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9352 dc483132-0cff-0310-8789-dd5450dbe970
* Initialize the error tables, so applications don't need to callTheodore Tso1996-11-062-0/+8
| | | | | | krb5_init_ets(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9304 dc483132-0cff-0310-8789-dd5450dbe970
* * serialize.c (krb5_register_serializer): Do not free a NULL pointerEzra Peisach1996-11-052-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9296 dc483132-0cff-0310-8789-dd5450dbe970
* Make it more obvious that default ticket lifetimes is not yetTheodore Tso1996-10-312-2/+9
| | | | | | supported. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9267 dc483132-0cff-0310-8789-dd5450dbe970
* get_in_tkt.c (make_preauth_list): Correctly null-terminate theTheodore Tso1996-09-267-27/+125
| | | | | | | | | | | | | | | | | preauth list generated by make_preauth_list. unparse.c (krb5_unparse_name_ext): Make unparse correctly handle all cases where a principal contains a nulls, backspace, newlines, or tabs. t_kerb.c (test_parse_principal): Add test for checking krb5_parse_principal() parse.c (krb5_parse_name): Set all of the magic field values. Makefile.in, t_ref_kerb.out: Added new tests to test krb5_parse() and krb5_unparse(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9126 dc483132-0cff-0310-8789-dd5450dbe970
* Change type of first argument to be krb5_preauthtype, to eliminateTheodore Tso1996-07-242-3/+8
| | | | | | compiler warnings under Windows. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8802 dc483132-0cff-0310-8789-dd5450dbe970
* Add a call to krb5_win_do_init() on Win16 and Win32 machines. This isTheodore Tso1996-07-112-0/+18
| | | | | | where we do timebomb and version server checking. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8677 dc483132-0cff-0310-8789-dd5450dbe970
* * get_creds.c: (krb5_get_credentials_val_renew_core) CombineEzra Peisach1996-07-073-3/+71
| | | | | | | | | | | common internals needed from krb5_get_credentials_validate() and used by new function krb5_get_credentials_renew() * gc_frm_kdc.c (krb5_get_cred_from_kdc_renew): A wrapper that passes KDC_OPT_RENEW to the static krb5_get_cred_from_kdc_opt so that kinit can use it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8558 dc483132-0cff-0310-8789-dd5450dbe970
* Change const to krb5_const, so that it works on compilers that don'tTheodore Tso1996-06-242-1/+7
| | | | | | support const. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8546 dc483132-0cff-0310-8789-dd5450dbe970
* * str_conv.c (krb5_string_to_timestamp): Ensure that all fields ofEzra Peisach1996-06-182-1/+13
| | | | | | | the timestamp are filled in if strptime does not fill in unspecified fields. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8376 dc483132-0cff-0310-8789-dd5450dbe970
* sendauth.c (krb5_sendauth): If ECCONABORTED is not defined, try usingTheodore Tso1996-06-123-1/+14
| | | | | | | | | the Winsock equivalent (WSAECONNABORTED). parse.c (krb5_parse_name): Change use of _WINDOWS to _MSDOS, and add check for _WIN32. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8315 dc483132-0cff-0310-8789-dd5450dbe970
* cvsignore hackeryTom Yu1996-06-101-1/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8288 dc483132-0cff-0310-8789-dd5450dbe970
* Update .Sanitize files to reflect current file statusTheodore Tso1996-06-061-2/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8246 dc483132-0cff-0310-8789-dd5450dbe970
* A static function must not use the INTERFACE keywordTheodore Tso1996-06-062-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8241 dc483132-0cff-0310-8789-dd5450dbe970
* * mk_req_ext.c mk_safe.c send_tgs.c:Richard Basch1996-05-155-28/+37
| | | | | | | | | set the length field of the krb5_checksum structure before calling krb5_calculate_checksum. * str_conv.c: replaced sha-des3 cksum with hmac-sha. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8021 dc483132-0cff-0310-8789-dd5450dbe970
* ser_ctx.c (krb5_context_size, krb5_context_externalize,Theodore Tso1996-05-148-208/+403
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | krb5_context_internalize): Add missing fields from the serialized context: clockskew, default_kdc_req_sumtype, default_ap_req_sumtype, default_safe_sumtype, kdc_default_options, library_options, profile_secure, fcc_default_format, scc_default_format. ser_actx.c (krb5_auth_context_size, krb5_auth_context_externalize, krb5_auth_context_internalize): Serialize the two fields req_cksumtype and safe_cksumtype, instead of the one cksumtype field. mk_safe.c (krb_mk_safe): Use safe_cksumtype instead of cksumtype in the auth context. mk_req_ext.c (krb5_mk_req_extended): Use req_cksumtype instead of cksumtype in the auth context. init_ctx.c (krb5_init_context): Add support for new profile relations libdefaults/tkt_lifetime, libdefaults/kdc_req_checksum_type, libdefaults/ap_req_cksumtype, libdefaults/safe_checksumtype, and libdefaults/kdc_default_options. auth_con.h: Remove old cksumtype element, and replace it with req_cksumtype and safe_cksumtype. auth_con.c (krb5_auth_con_init): Initialize the req_cksumtype and safe_cksumtype from the context's default req_cksumtype and safe_cksumtype. (krb5_auth_con_set_req_cksumtype, krb5_auth_con_set_safe_cksumtype): New functions, to replace old krb5_auth_con_setcksumtype git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8017 dc483132-0cff-0310-8789-dd5450dbe970
* removed des3-cbc-md5 supportRichard Basch1996-05-102-2/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7977 dc483132-0cff-0310-8789-dd5450dbe970
* Removed des3-md5 supportRichard Basch1996-05-102-4/+14
| | | | | | Added support for sha cksum types and des3-sha. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7971 dc483132-0cff-0310-8789-dd5450dbe970
* Remove unused fileTheodore Tso1996-05-091-30/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7956 dc483132-0cff-0310-8789-dd5450dbe970
* Include the uid in the replay cachenameRichard Basch1996-05-063-1/+29
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7905 dc483132-0cff-0310-8789-dd5450dbe970
* preauth.c: Add const and casts as needed to handle warnings..Ezra Peisach1996-05-052-7/+11
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7901 dc483132-0cff-0310-8789-dd5450dbe970
* * get_creds.c (krb5_get_credentials_core): new function. Common part ofKen Raeburn1996-05-045-28/+197
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | krb5_get_credentials and krb5_get_credentials_validate. Some formerly local variables are now arguments. (krb5_get_credentials): same as before, but calls _core to do some of the work. (krb5_get_credentials_validate): uses krb5_get_cred_from_kdc_validate and only stores the returned credential in the cache, instead of storing all of them. * gc_frm_kdc.c (krb5_get_cred_from_kdc_opt): new function. Same body as krb5_get_cred_from_kdc, but takes one new argument, kdcopts, and combines it with the other kdc options when calling krb5_get_cred_via_tkt. This is static and only called by (krb5_get_cred_from_kdc): a wrapper that provides the same function it did before, and (krb5_get_cred_from_kdc_validate): a wrapper that passes KDC_OPT_VALIDATE, so that kinit can use it. We'll probably need another one for renewing tickets as well. * rd_req_dec.c (krb5_rd_req_decoded_opt): new function. Same body as krb5_rd_req_decoded, but takes one new argument, check_valid_flag, to determine whether or not to check if the "invalid flag" is set in the ticket. Also made static, so that it is only called via: (krb5_rd_req_decoded): wrapper for krb5_rd_req_decoded_opt that specifies the "invalid flag" gets checked, and (krb5_rd_req_decoded_anyflag): wrapper for krb5_rd_req_decoded_opt that specifies that the "invalid flag" doesn't get checked. (This version is only called from kdc_util.c:kdc_process_tgs_req.) * str_conv.c (krb5_string_to_timestamp): double check that strptime at least parsed *some* of the string, avoid degenerate cases from GNU libc strptime. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7890 dc483132-0cff-0310-8789-dd5450dbe970
* * t_ser.c (stuff): New variable.Ken Raeburn1996-04-304-12/+28
| | | | | | | | | | | | | | | (ser_acontext_test, ser_eblock_test, ser_cksum_test): Use it, instead of assuming it's valid to treat &FUNCTION as a data pointer. * conv_princ.c (sconv_list): Now const. (krb5_*_conv_principal): Use pointer to const for it. Tue Apr 23 19:39:59 1996 Mark Eichin <eichin@cygnus.com> * get_creds.c (krb5_get_credentials): this isn't the kernel, so don't return negative errno values. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7875 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed a potentional null dereferenceRichard Basch1996-04-282-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7860 dc483132-0cff-0310-8789-dd5450dbe970
* Added ftp and ecat to the list of services which should be converted.Theodore Tso1996-04-172-0/+8
| | | | | | | This really ought to be something that's configurable in the profile... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7822 dc483132-0cff-0310-8789-dd5450dbe970
* On a Macintosh, turn on kdc_timesync and use the v4 credentials cacheTheodore Tso1996-04-122-2/+15
| | | | | | by default. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7802 dc483132-0cff-0310-8789-dd5450dbe970
* Move time offset code from stash_as_reply to verify_as_reply, and fixTheodore Tso1996-04-122-11/+19
| | | | | | it so that it actually works. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7801 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed the chronology of two of my previous checkinsRichard Basch1996-04-111-6/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7790 dc483132-0cff-0310-8789-dd5450dbe970
* rd_req_dec.c (krb5_rd_req_decoded): Move code which validated theTheodore Tso1996-04-105-15/+87
| | | | | | | | | | | | | ticket times to krb5_validate_times. valid_times.c (krb5_validate_times): New function which determines whether or not the ticket times are valid. mk_req_ext.c (krb5_mk_req_extended): Call krb5_validate_time() to determine whether or not the ticket in passed-in credentials is valid. If it isn't, return an error right away. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7777 dc483132-0cff-0310-8789-dd5450dbe970
* preauth.c: add SAM supportMark Eichin1996-04-093-17/+322
| | | | | | | | | str_conv.c: add AFS3 support init_ctx.c: add processing for default_tkt_enctypes, matching default_tgs_enctypes but client-side (so as not to hard code it, since hard coded values are usually wrong :-) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7773 dc483132-0cff-0310-8789-dd5450dbe970
* * in_tkt_ktb.c (keytab_keyproc): Do not check to see that theRichard Basch1996-03-272-59/+20
| | | | | | | | | | | | | | | enctype of the key is identical; there are several equivalent DES enctypes. * in_tkt_ktb.c (krb5_get_in_tkt_with_keytab): Removed the fancy logic to only request the keytypes that correspond to those in the keytab. There were too many fencepost conditions that could get you into trouble. Either it should be there and *fully* functional, or not in there at all. Besides, there are too many other components in Kerberos that expect the end-service to know all its keys that this sanity check is overkill. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7720 dc483132-0cff-0310-8789-dd5450dbe970
* Added imap service to the conversion list (it is used by some off-the-shelfRichard Basch1996-03-262-0/+7
| | | | | | imap mail packages). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7715 dc483132-0cff-0310-8789-dd5450dbe970
* Fix multiple enctype bug: the enctype for the eblock used to encryptSam Hartman1996-03-242-2/+9
| | | | | | | | the kdc request used the enctype of the tgt, not of the session key. Considering that the request is encrypted in the session key of the tgt, this is incorrect. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7704 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_get_in_tkt_with_keytab(): only request keytypes that have correspondingRichard Basch1996-03-222-5/+57
| | | | | | entries in the keytab. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7702 dc483132-0cff-0310-8789-dd5450dbe970
* walk_rtree.c (krb5_walk_realm_tree): Fix 16bit vs. 32bit error.Theodore Tso1996-03-214-7/+18
| | | | | | | | | | | (cap_code should been a krb5_error_code, not an int!) mk_cred.c (krb5_mk_ncred_basic): Fix windows lint flame. get_in_tkt.c (krb5_get_in_tkt): Fix 16bit vs. 32bit error. (do_more should not have been an int!) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7693 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Add KRB5_RUN_FLAGSEzra Peisach1996-03-193-3/+11
| | | | | | * Makefile.in: Use the run flags. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7665 dc483132-0cff-0310-8789-dd5450dbe970
* malloc the new length, not the old, esp. since we just check that theMark Eichin1996-03-181-1/+1
| | | | | | old length was zero git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7654 dc483132-0cff-0310-8789-dd5450dbe970
* fixes ticket-forwarding crashes on linux..Mark Eichin1996-03-183-3/+13
| | | | | | | | | * copy_addrs.c (krb5_copy_addr): make non-static so we can use it in mk_cred. * mk_cred.c (krb5_mk_ncred_basic): copy local_addr and remote_addr instead of just aliasing them, so we can safely free them ourselves. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7653 dc483132-0cff-0310-8789-dd5450dbe970
* configure.in: Add USE_ANAME and add proper aclocal.m4 functions to properlyEzra Peisach1996-03-183-12/+20
| | | | | | | | | | tell the makefile which libraries to link to. Makefile.in: Get the list of libraries to link from configure. Removes a dependency on layout of build tree and allows for configure to specify other libraries (as in aname conversion databases..) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7650 dc483132-0cff-0310-8789-dd5450dbe970
* Close the keytab if we opened it, not if the caller opened itRichard Basch1996-03-152-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7643 dc483132-0cff-0310-8789-dd5450dbe970
* use AC_HEADER_STDARGKen Raeburn1996-03-132-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7628 dc483132-0cff-0310-8789-dd5450dbe970
* * str_conv.c (krb5_timestamp_to_string): Handle statement notEzra Peisach1996-03-133-1/+10
| | | | | | | | reached warning. * ser_addr.c (krb5_address_internalize): Add magic numbers git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7620 dc483132-0cff-0310-8789-dd5450dbe970
* Use NEED_SOCKETS instead of #including <netdb.h>Theodore Tso1996-03-012-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7580 dc483132-0cff-0310-8789-dd5450dbe970
* Fix memory leak; free enctypes after useTheodore Tso1996-02-282-7/+15
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7566 dc483132-0cff-0310-8789-dd5450dbe970
* Removed outdated comment about mappingSam Hartman1996-01-262-4/+3
| | | | | | | etypes to ktypes--it's a one to one mapping now. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7389 dc483132-0cff-0310-8789-dd5450dbe970
* get_creds.c: Only match on enctype if in_creds.keyblockSam Hartman1996-01-253-3/+23
| | | | | | | | | | has non-null enctype. (I.E. implement as documented) gc_via_tkt.c: If the in_creds.keyblock.enctype !=0 then don't call send_tgs with a null ktypes paramater; instead, explicitally allow only increds.keyblock.enctype. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7385 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-10-02 02:56:55 +0000