summaryrefslogtreecommitdiffstats
path: root/src/lib
Commit message (Collapse)AuthorAgeFilesLines
...
* There isn't really a point to validating cred_handle if it was justTom Yu2003-03-012-6/+11
| | | | | | | | | | | | acquired by acquire_cred(), so instead of the suggested patch, validate verifier_cred_handle only if we didn't acquire_cred(). * accept_sec_context.c (krb5_gss_accept_sec_context): Don't validate verifier_cred_handle if GSS_C_NO_CREDENTIAL is passed in. ticket: 1356 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15211 dc483132-0cff-0310-8789-dd5450dbe970
* Ignore krb_err_txt.cKen Raeburn2003-02-281-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15210 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (clean-unix): Remove krb_err_txt.c on clean. UpdateEzra Peisach2003-02-283-3/+15
| | | | | | | | dependencies * g_pw_in_tkt.c: Include krb4int.h for krb_get_keyprocs() prototype. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15209 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (clean): Cleanup testing objects and outputsEzra Peisach2003-02-282-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15208 dc483132-0cff-0310-8789-dd5450dbe970
* remove wrong commentKen Raeburn2003-02-261-1/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15206 dc483132-0cff-0310-8789-dd5450dbe970
* Thanks, similar patch appliedTom Yu2003-02-252-6/+52
| | | | | | | | | * set_ccache.c (gss_krb5_ccache_name): Don't return a pointer to freed memory. ticket: 1346 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15205 dc483132-0cff-0310-8789-dd5450dbe970
* Handle NULL result_string->data returned from error inTom Yu2003-02-252-2/+8
| | | | | | | | | | | | krb5_change_password(). The SAMDATA() macro in lib/krb5/krb/preauth2.c seems to already be fixed. KfM's kpasswd equivalent still needs to be dealt with. ticket: 1055 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15204 dc483132-0cff-0310-8789-dd5450dbe970
* * in_tkt.c: Include k5-util.h.Ken Raeburn2003-02-253-27/+11
| | | | | | | | (do_seteuid): Define as krb5_seteuid instead of testing system characteristics here. * dest_tkt.c: Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15203 dc483132-0cff-0310-8789-dd5450dbe970
* * change_password.c (krb_change_password): Use int, not KRB_INT32, for krb4Ken Raeburn2003-02-252-1/+9
| | | | | | error codes. Check for malloc failure allocating sendStream. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15202 dc483132-0cff-0310-8789-dd5450dbe970
* * gssapi_krb5.c (kg_get_defcred): Revert previous; it's probablyTom Yu2003-02-243-32/+34
| | | | | | | | | | | | | | not appropriate for inquire_cred() to cause new credentials to be fetched. * init_sec_context.c (krb5_gss_init_sec_context): Explicitly release default cred in the NO_CREDENTIAL case, so it is always refreshed. ticket: 1305 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15201 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo pointed out by jenselby in doc passSam Hartman2003-02-241-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15200 dc483132-0cff-0310-8789-dd5450dbe970
* This should fix things, but I don't have an easy way to testTom Yu2003-02-212-15/+37
| | | | | | | | | | * gssapi_krb5.c (kg_get_defcred): Check for invalid or expired defcred if it exists, and call acquire_cred() again if necessary. ticket: 1305 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15199 dc483132-0cff-0310-8789-dd5450dbe970
* The client sorts the enctype list returned by etype_info orderingSam Hartman2003-02-152-1/+77
| | | | | | | | | | | | enctypes that it requested or that are similar to ones it requested first. The KDC only includes enctypes in etype_info if they were requested by the client. ticket: 1006 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15191 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in ($(GSSAPI_KRB5_HDR)): Use $(S) to avoid problems onTom Yu2003-02-142-1/+6
| | | | | | windows. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15189 dc483132-0cff-0310-8789-dd5450dbe970
* Fix double free of AS keySam Hartman2003-02-132-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15188 dc483132-0cff-0310-8789-dd5450dbe970
* Oops, add $(GSSAPI_KRB5_HDR) to all-unixTom Yu2003-02-132-2/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15186 dc483132-0cff-0310-8789-dd5450dbe970
* More tweaks to deal with parallel buildsTom Yu2003-02-134-28/+32
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15185 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in: Update dependencies.Tom Yu2003-02-124-28/+78
| | | | | | | | | | | | | | | | | (KRB_ERR_TXT): Set by configure to be either empty (on Darwin) or krb_err_txt.c (on other platforms). This avoids building krb_err_txt.c on Darwin, as the type of krb_err_txt is a pointer there, so we don't need another copy of the array. (DEFINES): Remove. It wasn't doing anything useful and was cluttering up the compile command line. * configure.in: On Darwin, don't use krb_err_txt.c. * err_txt.c: On Darwin, actually use the array generated by compile_et, and assign it to krb_err_txt, which is a pointer, not an array, on that platform. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15183 dc483132-0cff-0310-8789-dd5450dbe970
* * CCache-glue.c: Delete in_tkt()Tom Yu2003-02-124-12/+9
| | | | | | | | | * change_password.c: Fix incorrect filename in comment. * g_in_tkt.c (krb_get_in_tkt_preauth): Call krb_in_tkt() rather than in_tkt(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15182 dc483132-0cff-0310-8789-dd5450dbe970
* Support credentials encrypted in the session key rather thanSam Hartman2003-02-112-4/+25
| | | | | | the subsession key. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15181 dc483132-0cff-0310-8789-dd5450dbe970
* * CCache-glue.c (krb_in_tkt): Rename from in_tkt().Tom Yu2003-02-112-2/+19
| | | | | | | | (in_tkt): Implement in terms of krb_in_tkt() to match existing Unix and Windows API. This shouldn't be a problem because it appears to be considered an internal API on Mac. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15180 dc483132-0cff-0310-8789-dd5450dbe970
* Fix recursion-forcing rules to be more friendly to parallel buildsTom Yu2003-02-114-2/+24
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15179 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in: Another attempt... turns our that the "copy"Tom Yu2003-02-112-8/+15
| | | | | | | | command on Windows preserves modtimes, so spurious rebuilds were happening even with the stamp file, since the target in $(EHDRDIR) is always out of date with respect to the stamp file. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15178 dc483132-0cff-0310-8789-dd5450dbe970
* Fix some things to avoid spurious rebuilds of header filesTom Yu2003-02-114-13/+28
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15177 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (K4LIBS): Revert previousTom Yu2003-02-113-1/+7
| | | | | | | * krb5_32.def: Add afs_string_to_key, which is now needed by the krb4 library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15176 dc483132-0cff-0310-8789-dd5450dbe970
* * password_to_key.c (krb5_passwd_to_key): Replace snprintf() callTom Yu2003-02-113-7/+39
| | | | | | | | | | | with explicit length checking. * memcache.c (krb4int_save_credentials_addr): Renamed from krb_save_credentials(). (krb_save_credentials): Implement in terms of krb4int_save_credentials_addr(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15175 dc483132-0cff-0310-8789-dd5450dbe970
* Various fixes to Windows build of krb4 library. Fix up KRB5_CALLCONVTom Yu2003-02-115-13/+38
| | | | | | | on some new krb4 library functions. Fix up library generation to refer to des425. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15174 dc483132-0cff-0310-8789-dd5450dbe970
* Fix lots of things to compile on Unix. Fix some typosTom Yu2003-02-1111-56/+150
| | | | | | | | | | By means of carrying through local addresses in many places, eliminate or reduce sections of code depending on TARGET_OS_MAC conditionals. Conditionalize some prototypes in krb.h with KRB_PRIVATE, to avoid leakage on Mac. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15173 dc483132-0cff-0310-8789-dd5450dbe970
* Note: these checkins are partial progress for Tom Yu. They probably don't ↵Alexandra Ellwood2003-02-109-142/+186
| | | | | | build; Tom is expecting that. *** CCache-glue.c: Removed copying of the string_to_key type in krb_save_credentials. Saving the string_to_key type is unnecessary and was just for display purposes. Will be removed for KfM 5.0. Updated to use KRB5_CALLCONV instead of INTERFACE and include the krb5's krb4 headers instead of the KfM ones. *** change-password.c: Removed include of CredentialsCache.h and code that switches between string to key types. This doesn't make sense for password changing because the krb4 protocol for password changing implemented here only supports mit's string to key. Bug was in KfM and got ported forward. Should the code call mit_password_to_key for all platforms? *** FSp-glue.c: Removed dependency on MoreFiles and replaced it with code to use FSRefs now that we are Carbon-only. *** g_in_tkt.c: Added loop which calls password to key functions trying each one. This technique was imported from KTH-KRB into KfM. This code still needs to have the TARGET_OS_MAC code made more Unix friendly for Darwin builds. The behavior differences (store the address or not) should be deferred until the very last moment to avoid excessive #ifdefs. *** g_pw_in_tkt.c: Added loop which calls password to key functions trying each one. This technique was imported from KTH-KRB into KfM. *** krb4int.h: Added password-to-key.c functions so they can be used by g_in_tkt.c and g_pw_in_tkt.c. *** password-to-key.c: Removed dependence on the CCAPI so this code can be used on all platforms to implement looping over the password to key functions. *** RealmsConfig-glue.c: Changed to use #ifdef USE_CCAPI like is used elsewhere in the krb5 sources. This is just for consistency in krb5 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15172 dc483132-0cff-0310-8789-dd5450dbe970
* Have g_token_size return unsigned int for signed/unsigned cleanupEzra Peisach2003-02-095-4/+13
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15171 dc483132-0cff-0310-8789-dd5450dbe970
* * prompter.c (krb5_prompter_posix): Kill echo before printingTom Yu2003-02-082-6/+10
| | | | | | prompt to avoid possible race conditions in test suite. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15170 dc483132-0cff-0310-8789-dd5450dbe970
* Change comments to remove the note that we're going to redesign keyTom Yu2003-02-084-5/+12
| | | | | | | | storage architecture for 1.3. ticket: 1193 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15168 dc483132-0cff-0310-8789-dd5450dbe970
* Fix ABI divergence between Unix and Mac krb4 libraries in declarationTom Yu2003-02-074-5/+92
| | | | | | of krb_err_txt by means of a gross hack. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15165 dc483132-0cff-0310-8789-dd5450dbe970
* * prompter.c (krb5_prompter_posix, setup_tty, restore_tty): Fix toTom Yu2003-02-072-12/+22
| | | | | | | | use the actual file descriptor we dup()'ed to in case tcsetattr() doesn't actually change the underlying device modes and instead only affects the specific file descriptor. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15164 dc483132-0cff-0310-8789-dd5450dbe970
* * locate_kdc.c (translate_ai_error): Handle EAI_ADDRFAMILY like EAI_NONAME.Ken Raeburn2003-02-062-7/+11
| | | | | | | | | | (krb5int_add_host_to_list): Translate errors returned from the second getaddrinfo call. ticket: 1339 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15160 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (run-aes-test): Add $(RUN_SETUP) so that ifEzra Peisach2003-02-052-2/+7
| | | | | | compiling only shared libraries, LD_LIBRARY_PATH is set for test. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15155 dc483132-0cff-0310-8789-dd5450dbe970
* commentTom Yu2003-02-052-2/+11
| | | | | | | | | * decomp_tkt.c (dcmp_tkt_int): Patch from Booker Bense to use krb_get_lrealm() instead of copying KRB_REALM into prealm. ticket: 710 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15153 dc483132-0cff-0310-8789-dd5450dbe970
* * prompter.c (krb5_prompter_posix): Rewrite to no longer useTom Yu2003-02-054-87/+173
| | | | | | | | | | | | | longjmp(), as well as to get a non-buffered stdio stream on stdin to avoid passwords staying around in stdio buffers. This does have the side effect of possibly losing pre-buffered input from an application that reads from stdin using stdio functions prior to calling the prompter, but hopefully those are rare. ticket: 673 ticket: 680 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15151 dc483132-0cff-0310-8789-dd5450dbe970
* Get addressless tickets by defaultSam Hartman2003-02-042-2/+6
| | | | | | | | | By default Kerberos obtains addressless tickets. ticket: new Tags: enhancement git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15150 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesKen Raeburn2003-02-032-8/+17
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15147 dc483132-0cff-0310-8789-dd5450dbe970
* *** empty log message ***Ken Raeburn2003-02-031-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15146 dc483132-0cff-0310-8789-dd5450dbe970
* Remove placeholder file that shouldn't have been checked inKen Raeburn2003-02-032-9/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15145 dc483132-0cff-0310-8789-dd5450dbe970
* Build and link in AES crypto code (but don't define the enctype yet).Ken Raeburn2003-02-036-171/+352
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Build and link in PBKDF2 function. Add ciphertext stealing tests. Update various tests to correspond with IETF crypto draft. * aes: New directory, containing AES implementation from Brian Gladstone, tweaked a little for the krb5 build system. * configure.in: Build its makefile. * Makefile.in (LOCAL_SUBDIRS, LOCALINCLUDES, STOBJLISTS, SUBDIROBJLISTS): Add aes entries. * t_cts.c: New test file. * Makefile.in (EXTRADEPSRCS): Add t_cts. (t_cts$(EXEEXT)): New rule. * Makefile.in (SRCS, OBJS, STLIBOBJS): Add pbkdf2. (EXTRADEPSRCS): Remove pbkdf2.c. (t_pkcs5$(EXEEXT)): Don't list pbkdf2.$(OBJEXT). * t_nfold.c (fold_kerberos): New function. (main): Call it with different lengths. * vectors.c: Include ctype.h and hash_provider.h. (test_nfold, test_mit_des_s2k, test_s2k, test_dr_dk): Test case data now static and const. (test_nfold): Add "Q" and "ba" tests from Simon Josefsson. (GCLEF): New macro. (test_mit_des_s2k): Add GCLEF test case. Fill in "key" at run time, not as initialization. (test_s2k): Added GCLEF test case. (krb5int_enc_aes128, krb5int_enc_aes256): Declare. (combine_keys, test_des3_combine, k5_des3_make_key): Functions deleted. (whoami): New variable. (printd, printk): New functions. (test_pbkdf2): New function. (main): Initialize whoami. Test nfold only for now. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15144 dc483132-0cff-0310-8789-dd5450dbe970
* * aes.c: New file.Ken Raeburn2003-02-033-2/+206
| | | | | | | * Makefile.in (STLIBOBJS, OBJS, SRCS): Include it. (LOCALINCLUDE): Add aes source dir. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15143 dc483132-0cff-0310-8789-dd5450dbe970
* Make l40 staticSam Hartman2003-02-032-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15142 dc483132-0cff-0310-8789-dd5450dbe970
* AES implementation by Briad Gladman; tweaked for krb5 treeKen Raeburn2003-02-0331-0/+39436
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15141 dc483132-0cff-0310-8789-dd5450dbe970
* * RealmsConfig-glue.c (get_krbhst_default, krb_get_krbhst, krb_realmofhost):Ken Raeburn2003-01-282-3/+8
| | | | | | | | | Use strcpy instead of strncpy. ticket: 1339 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15135 dc483132-0cff-0310-8789-dd5450dbe970
* krb4 library breaks old krb_get_admhst APIKen Raeburn2003-01-272-2/+7
| | | | | | | | | * RealmsConfig-glue.c (krb_get_admhst): Use strcpy instead of strncpy, and max length of MAX_HSTNM. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15134 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_32.def: Export krb5_rc_close, krb5_free_enc_tkt_part, andKen Raeburn2003-01-172-0/+8
| | | | | | krb5_decrypt_tkt_part, for GSSAPI. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15129 dc483132-0cff-0310-8789-dd5450dbe970
* Use new target create-ehdrdir, defined differently for UNIX and WIN32, toKen Raeburn2003-01-172-6/+11
| | | | | | | conditionally create the target directory $(EHDRDIR) if needed, before copying files into it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15128 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-13 21:17:33 +0000