summaryrefslogtreecommitdiffstats
path: root/src/lib
Commit message (Collapse)AuthorAgeFilesLines
...
* This commit merges the RPCSEC_GSS integration branch onto the trunk.Tom Yu2004-06-1671-1135/+3682
| | | | | | | | | | | | | | | | | | | Remaining work includes: * Default to using kadmin/fqdn for SEAM compatibility * Namespace cleanups and other API tweaks -- this API is not stable yet * Fix lib/rpc/unit-test testsuite to test RPCSEC_GSS in addition to AUTH_GSSAPI Additional work will be tracked in separate tickets. This merge is bracketed between the tags "tlyu-umich-rpc-merge-pre" and "tlyu-umich-rpc-merge-post". ticket: 2578 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16467 dc483132-0cff-0310-8789-dd5450dbe970
* ok, let's try this again..Tom Yu2004-06-164-4/+21
| | | | | | | | | | | | | | | | | * accept_sec_context.c (krb5_gss_accept_sec_context): Only null out the auth_context's rcache if it was provided by acceptor creds; this prevents a leak. * delete_sec_context.c (krb5_gss_delete_sec_context): Only null out the auth_context's rcache if it was provided by acceptor creds; this prevents a leak. * gssapiP_krb5.h (krb5_gss_ctx_id_rec): Add cred_rcache to track whether acceptor creds provided an rcache. ticket: 2600 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16465 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (LOCALINCLUDES): Add $srcdir/osKen Raeburn2004-06-162-1/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16464 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_libinit.c: Include os-proto.hKen Raeburn2004-06-162-2/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16463 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_RDIRS): SetKen Raeburn2004-06-162-0/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16462 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_libinit.c (krb5int_lib_init): Initialize krb5int_us_time_mutexKen Raeburn2004-06-152-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16455 dc483132-0cff-0310-8789-dd5450dbe970
* Localize the OS-specific bits of retrieving the current time a bit more.Ken Raeburn2004-06-153-44/+78
| | | | | | | | | | | | | | | | ** not yet tested on Windows ** * c_ustime.c: Include k5-thread.h. (get_time_now): New function, holds system-dependent code. (krb5int_us_time_mutex): New mutex. (struct time_now): New type. (last_time): New variable, replaces old last_tv, last_sec, last_usec. (krb5_crypto_us_timeofday): Rewrite. Do locking around access to previously returned value, and ensure that we don't return duplicate values. * os-proto.h: Include k5-thread.h. (krb5int_us_time_mutex): Declare. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16454 dc483132-0cff-0310-8789-dd5450dbe970
* don't leak rcaches in accept_sec_contextTom Yu2004-06-151-1/+5
| | | | | | | | | | | | * accept_sec_context.c (krb5_gss_accept_sec_context): Don't null out rcache of auth_context prior to free if rcache was temporarily allocated; this prevents leaking rcaches. ticket: new version_reported: 1.3.4 component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16453 dc483132-0cff-0310-8789-dd5450dbe970
* * libkrb5.exports: Drop krb5_init_ets, krb5_free_ets, krb5_kt_default_vno, andKen Raeburn2004-06-152-4/+5
| | | | | | krb5int_profile_shared_data. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16452 dc483132-0cff-0310-8789-dd5450dbe970
* * exports.crypto, exports.des425, exports.kdb5, exports.krb5: Unused files ↵Ken Raeburn2004-06-155-383/+5
| | | | | | deleted git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16451 dc483132-0cff-0310-8789-dd5450dbe970
* * rc_io.c (dir, dirlen): Top-level variables deleted.Ken Raeburn2004-06-152-10/+19
| | | | | | | | (getdir): Now returns the pointer, doesn't set top-level variables. (GETDIR): Set local variables dir and dirlen using the function's return value. (krb5_rc_io_creat, krb5_rc_io_open_internal): Add the new local variables. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16450 dc483132-0cff-0310-8789-dd5450dbe970
* * kt_file.c (krb5_kt_default_vno): Replaced variable with macroKen Raeburn2004-06-152-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16449 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_EXPLIBS): Add $(LIBS)Ken Raeburn2004-06-152-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16448 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_DIRS, SHLIB_EXPLIBS, SHLIB_EXPDEPLIBS): Set to depend onKen Raeburn2004-06-153-2/+12
| | | | | | | | the new support library. (SHLIB_LIBS): Don't define. * configure.in: Use BUILD_LIBRARY_WITH_DEPS instead of the no-deps version. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16447 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c (krb5_gss_init_sec_context): Fix pointerTom Yu2004-06-142-1/+7
| | | | | | | assignment when retrieving k5_context from existing context_handle. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16440 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (gssapi_krb5.h): Add Windows version of generation ruleKen Raeburn2004-06-112-0/+11
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16432 dc483132-0cff-0310-8789-dd5450dbe970
* * asn1_encode.c (asn1_encode_generaltime): Fix memcpy argument to actuallyKen Raeburn2004-06-113-12/+24
| | | | | | | | | | | | be a pointer. (asn1_encode_enumerated): Drop "const" from scalar argument type. * asn1_encode.h (asn1_encode_integer, asn1_encode_enumerated, asn1_encode_unsigned_integer, asn1_encode_octetstring, asn1_encode_charstring, asn1_encode_printablestring, asn1_encode_ia5string, asn1_encode_generaltime, asn1_encode_generalstring): Drop "const" from scalar argument types. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16431 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (krb5/gssapi_krb5.h): Depend on recursion ruleKen Raeburn2004-06-102-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16429 dc483132-0cff-0310-8789-dd5450dbe970
* Install gssapi_krb5.h from build dir not srcdirSam Hartman2004-06-102-1/+4
| | | | | | | ticket: 2587 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16428 dc483132-0cff-0310-8789-dd5450dbe970
* If channel bindings are supplied to server require them to be matchedSam Hartman2004-06-092-15/+11
| | | | | | | | | | | | | | | | | | Based on discussion on kerberos@mit.edu, the decision to allow null channel bindings from a client to match even when server channel bindings are supplied is flawed. This decision assumes that we cannot get server implementations to change even though we are able to deploy a new Kerberos implementation on the server. In practice the server implementations in question have actually changed and so the only part of revision 1.54 of accept_sec_context.c we actually need is the code to ignore channel bindings if null channel bindings are passed into the server. Thus the change to allow null channel bindings from the client to match against any channel bindings on the server is backed out. Ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16427 dc483132-0cff-0310-8789-dd5450dbe970
* ugh. revert last changeKen Raeburn2004-06-092-6/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16426 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c (krb5int_sendtokdc_debug_handler) [!DEBUG]: Define as a macro,Ken Raeburn2004-06-092-1/+6
| | | | | | not a variable. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16425 dc483132-0cff-0310-8789-dd5450dbe970
* Run make dependSam Hartman2004-06-084-11/+17
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16424 dc483132-0cff-0310-8789-dd5450dbe970
* Patch from kwc@citi.umich.edu to supportSam Hartman2004-06-0815-116/+803
| | | | | | | | | | | | gss_krb5_export_lucid_sec_context and other facilities for NFSv4 implementations. In order to apply this patch gss_krb5.h needs to be auto-generated so we can expose a 64-bit type for sequence numbers. Ticket: 2587 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16423 dc483132-0cff-0310-8789-dd5450dbe970
* * yarrow.c (yarrow_str_error): Now constKen Raeburn2004-06-042-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16415 dc483132-0cff-0310-8789-dd5450dbe970
* * asn1_encode.c (asn1_encode_generaltime): Use gmtime_r if availableKen Raeburn2004-06-042-3/+16
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16414 dc483132-0cff-0310-8789-dd5450dbe970
* * str_conv.c (krb5_string_to_timestamp): Use localtime_r if available.Ken Raeburn2004-06-042-2/+21
| | | | | | (krb5_timestamp_to_string, krb5_timestamp_to_sfstring): Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16413 dc483132-0cff-0310-8789-dd5450dbe970
* * parse.c (krb5_parse_name): Use assert and abort, not exitKen Raeburn2004-06-042-5/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16412 dc483132-0cff-0310-8789-dd5450dbe970
* Change all uses of LIB in UNIX makefiles to LIBBASE, for better WindowsKen Raeburn2004-06-0420-10/+50
| | | | | | | | | compatibility. (Windows nmake exports make variables into the environment, and LIB is treated by the Windows linker as a search path for libraries, thus breaking the linking on Windows of anything needing libraries from the search path in directories where we build libraries on UNIX.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16411 dc483132-0cff-0310-8789-dd5450dbe970
* OopsKen Raeburn2004-06-042-1/+9
| | | | | | | * srv_rcache.c (krb5_get_server_rcache): Don't forget to actually include the cache type in the cache name, after looking it up. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16410 dc483132-0cff-0310-8789-dd5450dbe970
* * kuserok.c (krb5_kuserok): Handle draft POSIX versions of getpwnam_rKen Raeburn2004-06-042-2/+20
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16409 dc483132-0cff-0310-8789-dd5450dbe970
* * prng.c (init_once): Variable deleted.Ken Raeburn2004-06-022-9/+13
| | | | | | | (krb5_c_random_add_entropy): Do the initialization once, using the yarrow_lock mutex instead of k5_once to protect it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16392 dc483132-0cff-0310-8789-dd5450dbe970
* * disp_com_err_status.c (init_et): Variable deleted.Ken Raeburn2004-06-022-5/+7
| | | | | | | (g_display_com_err_status): Don't call initialize_ggss_error_table conditionally; instead, always call gssint_initialize_library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16391 dc483132-0cff-0310-8789-dd5450dbe970
* * gss_libinit.c (gssint_lib_init): Initialize error tables here.Ken Raeburn2004-06-022-28/+18
| | | | | | | | | | (gssint_initialize_library): Don't do it directly here. Make sure gssint_lib_init has been called, and return the status. (gssint_lib_fini): Remove error tables here. (gssint_cleanup_library): Function deleted. (initialized): Variable deleted. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16390 dc483132-0cff-0310-8789-dd5450dbe970
* Oops. Add and remove k524 error table tooKen Raeburn2004-06-022-1/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16389 dc483132-0cff-0310-8789-dd5450dbe970
* Add/remove error tables in library initialization/termination, not per context.Ken Raeburn2004-06-026-23/+28
| | | | | | | | | | | | | | Use only one library initialization scheme, and install the error tables in only one place. * krb5_libinit.c (initialized): Variable deleted, all references removed. (krb5int_lib_init): Initialize error tables here. (krb5int_initialize_library): Don't do it here. * error_tables/Makefile.in (STLIBOBJS, OBJS, SRCS): Drop init_ets code. * krb/init_ctx.c (init_common): Don't call krb5_init_ets. (krb5_free_context): Don't call krb5_free_ets. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16388 dc483132-0cff-0310-8789-dd5450dbe970
* * srv_rcache.c (krb5_get_server_rcache): Use krb5_rc_resolve_full instead ofKen Raeburn2004-06-022-13/+13
| | | | | | constructing an rcache object locally. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16387 dc483132-0cff-0310-8789-dd5450dbe970
* Move definitions of struct krb5_rc_st, struct _krb5_rc_ops, krb5_rc_ops, andKen Raeburn2004-06-026-1/+49
| | | | | | | declarations of krb5_rc_register_type, krb5_rc_dfl_ops from k5-int.h to rc-int.h. Include rc-int.h in the krb5/rcache files that need it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16386 dc483132-0cff-0310-8789-dd5450dbe970
* fix missing braces in an_to_ln.c security patchTom Yu2004-06-022-1/+7
| | | | | | | | | | | | | * an_to_ln.c (do_replacement): Patch from Bill Dodd to fix missing braces in previous security patch. ticket: new tags: pullup target_version: 1.3.4 version_reported: 1.3.4 component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16384 dc483132-0cff-0310-8789-dd5450dbe970
* fix buffer overflow in an_to_ln.cTom Yu2004-06-012-4/+48
| | | | | | | | | | | | | | | * an_to_ln.c (rule_an_to_ln): Fix buffer overflow when parsing principal names into components. (do_replacement): likewise (aname_replacer): Support error return from do_replacement ticket: new version_reported: 1.3.3 target_version: 1.3.4 tags: pullup component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16381 dc483132-0cff-0310-8789-dd5450dbe970
* * clnt_tcp.c: Include string.hKen Raeburn2004-05-302-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16374 dc483132-0cff-0310-8789-dd5450dbe970
* Add prototypes for library init and fini functions. Makefile dependenciesEzra Peisach2004-05-2815-6/+129
| | | | | | updated. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16371 dc483132-0cff-0310-8789-dd5450dbe970
* * yarrow.c (krb5int_yarrow_final): CallEzra Peisach2004-05-264-0/+23
| | | | | | | | | | | | krb5int_yarrow_cipher_final before zeroing out reference to memory. * ycipher.[ch] (krb5int_yarrow_cipher_final): Free CIPHER_CTX memory allocated by krb5int_yarrpw_cipher_init(). These cleanup handlers are now invoked in the library "fini" handlers. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16368 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_mslsa.c: GetMSTGT(). Add krb5_contextJeffrey Altman2004-05-262-32/+26
| | | | | | | | | | | parameter to allow krb5_get_permitted_enctype() to be called instead of using a hardcoded list of enctypes which may change in the future. krb5_lcc_get_name(): fix return value if Kerberos is not supported. ticket: 2574 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16364 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_mslsa.c: GetMSTGT() Initialize pTicketRequest to NULL to preventJeffrey Altman2004-05-262-1/+6
| | | | | | | | inadvertant deallocation. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16363 dc483132-0cff-0310-8789-dd5450dbe970
* * aesopt.h (PLATFORM_BYTE_ORDER): Treat _WIN32 as alwaysTom Yu2004-05-252-11/+23
| | | | | | | | | | | little-endian. Default to little-endian if there's no other compile-time way to detect endianness, noting it as a guess. (SAFE_IO): Error out if SAFE_IO is not set and endianness was guessed. ticket: 2564 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16362 dc483132-0cff-0310-8789-dd5450dbe970
* * keytab.c (krb5_ktkdb_get_entry): Change local variable rom intEzra Peisach2004-05-252-1/+7
| | | | | | | to krb5_boolean to match prototype for as argument to krb5_c_enctype_compare. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16361 dc483132-0cff-0310-8789-dd5450dbe970
* * conv_creds.c (krb5int_encode_v4tkt): Unsigned vs signed warning fixEzra Peisach2004-05-252-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16360 dc483132-0cff-0310-8789-dd5450dbe970
* * aes.c (krb5int_aes_encrypt): Signed/unsigned warning fixEzra Peisach2004-05-252-2/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16359 dc483132-0cff-0310-8789-dd5450dbe970
* * t_encrypt.c (compare_results): Declare static.Ezra Peisach2004-05-243-3/+12
| | | | | | | | (main): Free allocated memory before exit. * t_nfold.c (fold_kerberos): Change nbytes argument to unsigned. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16358 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-12 16:42:19 +0000