summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Fix up some annoying pre-processor typosSam Hartman1996-05-201-6/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8057 dc483132-0cff-0310-8789-dd5450dbe970
* document changes to libupdate.shTom Yu1996-05-201-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8056 dc483132-0cff-0310-8789-dd5450dbe970
* * libupdate.sh: do the shift before the assignmentsTom Yu1996-05-201-18/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8055 dc483132-0cff-0310-8789-dd5450dbe970
* Fix for HPUxSam Hartman1996-05-202-1/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8054 dc483132-0cff-0310-8789-dd5450dbe970
* Do not keep source cache open if we are going to useSam Hartman1996-05-202-5/+10
| | | | | | it as the target cache. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8053 dc483132-0cff-0310-8789-dd5450dbe970
* As per mail describing the ksu problem, invent a krb5utilSam Hartman1996-05-195-3/+65
| | | | | | | function to properly set the euid on all systems where it is possible. Ksu cannot be used without this function in a secure manner. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8052 dc483132-0cff-0310-8789-dd5450dbe970
* Check for uid_t so that new prototype worksSam Hartman1996-05-192-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8051 dc483132-0cff-0310-8789-dd5450dbe970
* Prototype new function: krb5_seteuidSam Hartman1996-05-192-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8050 dc483132-0cff-0310-8789-dd5450dbe970
* Significant security fixes to ksuSam Hartman1996-05-197-73/+148
| | | | | | | | | | | | | | | | * Use source euid all throughout procedure of opening source ccache, Richard's code had a race condition. * Use target euid while looking up .k5login and constructing target ccache. * Avoid chowns completely; they create race conditions. Fchown could have been used if we wanted to be really careful, but they aren't necessary and we would have to violate abstractions. * Clean up several conditions that would allow users to delete arbitrary files of the user they were ksuing to without authorization. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8049 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb_dbm.c: Do not provide prototypes for dbm_error orEzra Peisach1996-05-182-2/+7
| | | | | | | | dbm_clearerr if they are really macros. Required for Ultrix... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8048 dc483132-0cff-0310-8789-dd5450dbe970
* * des3_sha.c: Add static keywords in function declarartions toEzra Peisach1996-05-182-2/+7
| | | | | | match earlier declarations. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8047 dc483132-0cff-0310-8789-dd5450dbe970
* Define $library from the positional arguments before --force uses $libraryTheodore Tso1996-05-182-4/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8046 dc483132-0cff-0310-8789-dd5450dbe970
* Fix memory leak. Free tempbuf before returningTheodore Tso1996-05-182-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8045 dc483132-0cff-0310-8789-dd5450dbe970
* Define MD5_K5BETA_COMPAT and MD5_K5BETA_COMP_DEF so that we continueTheodore Tso1996-05-183-4/+20
| | | | | | | | | | | | doing things the wrong (broken) way. All hail backwards compatibility.... The code now generates the old checksum, but it will verify both the old and the correct checksum formats. Also fixed two bugs in the "correct" MD5_CRYPTO implementation; use a zero initialization vector, and calculate the confounder at the beginning of the message, not at the end. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8044 dc483132-0cff-0310-8789-dd5450dbe970
* Define MD4_K5BETA_COMPAT and MD4_K5BETA_COMP_DEF so that we continueTheodore Tso1996-05-183-6/+22
| | | | | | | | | | | | doing things the wrong (broken) way. All hail backwards compatibility.... The code now generates the old checksum, but it will verify both the old and the correct checksum formats. Also fixed two bugs in the "correct" MD4_CRYPTO implementation; use a zero initialization vector, and calculate the confounder at the beginning of the message, not at the end. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8043 dc483132-0cff-0310-8789-dd5450dbe970
* Correctly implement getsockname(), so it does getsockname(), notTheodore Tso1996-05-172-10/+41
| | | | | | getpeername(), and add the function getpeername(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8040 dc483132-0cff-0310-8789-dd5450dbe970
* (AC_CHECK_DBM_PROTOS): If the test had already been run and the resultEzra Peisach1996-05-152-2/+8
| | | | | | cached, arguments $3 and $4 were never executed. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8030 dc483132-0cff-0310-8789-dd5450dbe970
* * k5seal.c k5unseal.c util_cksum.c:Richard Basch1996-05-154-11/+14
| | | | | | | setup krb5_checksum "contents" and "length" field prior to calling krb5_calculate_checksum(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8029 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed changelog to reflect previous checkinRichard Basch1996-05-151-0/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8028 dc483132-0cff-0310-8789-dd5450dbe970
* * des_crc.c des_md5.c:Richard Basch1996-05-155-49/+66
| | | | | | | | | | | | | set the length field of the cksum structure. * des3_sha.c: Increase the confounder length to 24 bytes. Set the length of the cksum structure. * cryptoconf.c: sha-des3 cksum has been replaced by hmac-sha git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8027 dc483132-0cff-0310-8789-dd5450dbe970
* * .Sanitize: reflect current filesRichard Basch1996-05-157-164/+135
| | | | | | | | | | * Makefile.in: added hmac-sha * hmac_sha.c: implement HMAC-SHA * sha_crypto.c: use hmac-sha * sha_glue.c: sanity check the passed in checksum length * shs.h: replaced sha-des3 with hmac-sha git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8026 dc483132-0cff-0310-8789-dd5450dbe970
* * md5crypto.c md5glue.c:Richard Basch1996-05-154-2/+16
| | | | | | | | ensure the cksum content length is sufficient. * t_cksum.c: initialize cksum.length git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8025 dc483132-0cff-0310-8789-dd5450dbe970
* * md4crypto.c md4glue.c:Richard Basch1996-05-153-1/+11
| | | | | | ensure the cksum content length is sufficient git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8024 dc483132-0cff-0310-8789-dd5450dbe970
* * des_int.h: the cs_entry routines in cbc_cksum.c are now staticRichard Basch1996-05-155-60/+36
| | | | | | | | | | | | * Makefile.in: removed cs_entry.c * cbc_cksum.c: caller is responsible for allocating cksum->contents and indicate the allocated amount in cksum->length. the cs_entry routines are now static and the cs_entry structure is now in this file to enforce proper use. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8023 dc483132-0cff-0310-8789-dd5450dbe970
* crc.c: ensure the cksum length is sufficientRichard Basch1996-05-153-4/+14
| | | | | | crc-test.c: set the cksum length field git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8022 dc483132-0cff-0310-8789-dd5450dbe970
* * mk_req_ext.c mk_safe.c send_tgs.c:Richard Basch1996-05-155-28/+37
| | | | | | | | | set the length field of the krb5_checksum structure before calling krb5_calculate_checksum. * str_conv.c: replaced sha-des3 cksum with hmac-sha. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8021 dc483132-0cff-0310-8789-dd5450dbe970
* replaced CKSUMTYPE_SHA_DES3 with CKSUMTYPE_HMAC_SHARichard Basch1996-05-152-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8020 dc483132-0cff-0310-8789-dd5450dbe970
* Remove old, outdated libraryTheodore Tso1996-05-1428-3056/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8019 dc483132-0cff-0310-8789-dd5450dbe970
* Change call to krb5_auth_con_setcksumtype to useTheodore Tso1996-05-142-1/+7
| | | | | | krb5_auth_con_set_req_cksumtype by default instead. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8018 dc483132-0cff-0310-8789-dd5450dbe970
* ser_ctx.c (krb5_context_size, krb5_context_externalize,Theodore Tso1996-05-148-208/+403
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | krb5_context_internalize): Add missing fields from the serialized context: clockskew, default_kdc_req_sumtype, default_ap_req_sumtype, default_safe_sumtype, kdc_default_options, library_options, profile_secure, fcc_default_format, scc_default_format. ser_actx.c (krb5_auth_context_size, krb5_auth_context_externalize, krb5_auth_context_internalize): Serialize the two fields req_cksumtype and safe_cksumtype, instead of the one cksumtype field. mk_safe.c (krb_mk_safe): Use safe_cksumtype instead of cksumtype in the auth context. mk_req_ext.c (krb5_mk_req_extended): Use req_cksumtype instead of cksumtype in the auth context. init_ctx.c (krb5_init_context): Add support for new profile relations libdefaults/tkt_lifetime, libdefaults/kdc_req_checksum_type, libdefaults/ap_req_cksumtype, libdefaults/safe_checksumtype, and libdefaults/kdc_default_options. auth_con.h: Remove old cksumtype element, and replace it with req_cksumtype and safe_cksumtype. auth_con.c (krb5_auth_con_init): Initialize the req_cksumtype and safe_cksumtype from the context's default req_cksumtype and safe_cksumtype. (krb5_auth_con_set_req_cksumtype, krb5_auth_con_set_safe_cksumtype): New functions, to replace old krb5_auth_con_setcksumtype git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8017 dc483132-0cff-0310-8789-dd5450dbe970
* k5-int.h: Added new field values for ap_req_sumtype and safe_sumtype.Theodore Tso1996-05-143-1/+24
| | | | | | | | | | | Added new convenience function for verifying magic numbers: KRB5_VERIFY_MAGIC. krb5.hin (krb5_auth_con_set_req_cksumtype, rb5_auth_con_set_safe_cksumtype): Added prototypes of new functions, to replace old krb5_auth_con_setcksumtype. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8016 dc483132-0cff-0310-8789-dd5450dbe970
* Change the default ticket lifetime to something reasonable (10 hours,Theodore Tso1996-05-142-1/+7
| | | | | | | instead of 10 minutes). Also change the label of this parameter to be tkt_lifetime. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8015 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_LIBS): For shared library, add dependency onEzra Peisach1996-05-133-2/+13
| | | | | | | | | libkrb5.so * configure.in (CRYPTO_SH_VERS): Pass krb5 shared library version to Makefile. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8014 dc483132-0cff-0310-8789-dd5450dbe970
* configure.in heuristic.c:Richard Basch1996-05-134-866/+853
| | | | | | | | | | | | | Change the euid before opening the source ccache, so we don't use someone else's ccache. authorization.c: users only in /.k5login were not permitted to use the '-e cmd' feature. The man page does not indicate that this should not be permitted... Also, lots of indentation cleanup was done... I couldn't read the code before. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8013 dc483132-0cff-0310-8789-dd5450dbe970
* Back out change to libupdate.sh.Ezra Peisach1996-05-122-6/+1
| | | | | | | | The problem is that for directories containing multiple subdirs, the current procedure is to do a foreach and invoke libupdate --force for each one. This is broken as it caused the library to be removed each time. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8012 dc483132-0cff-0310-8789-dd5450dbe970
* When invoked with --force, do not use variable before being setEzra Peisach1996-05-112-1/+6
| | | | | | NetBSD complained about trying to use the command "rm -f" git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7980 dc483132-0cff-0310-8789-dd5450dbe970
* Copy sizeof(mit_des_cblock), not sizeof(key) so that we are getting theRichard Basch1996-05-112-1/+6
| | | | | | full DES key. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7979 dc483132-0cff-0310-8789-dd5450dbe970
* configure.in: Need to include sys/types.h before regexp.h in test toEzra Peisach1996-05-112-0/+8
| | | | | | | | see if regcomp works. NetBSD required this so that size_t is defined. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7978 dc483132-0cff-0310-8789-dd5450dbe970
* removed des3-cbc-md5 supportRichard Basch1996-05-102-2/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7977 dc483132-0cff-0310-8789-dd5450dbe970
* * shs.c (longReverse): Remove extraneous \.Ezra Peisach1996-05-102-3/+8
| | | | | | (expand): Start #define in first column. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7976 dc483132-0cff-0310-8789-dd5450dbe970
* added des3_raw.c and sha..Richard Basch1996-05-101-0/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7975 dc483132-0cff-0310-8789-dd5450dbe970
* replaced des3_md5.c with des3_sha.cRichard Basch1996-05-101-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7974 dc483132-0cff-0310-8789-dd5450dbe970
* removed des3-md5 support (replaced with des3-sha)Richard Basch1996-05-102-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7973 dc483132-0cff-0310-8789-dd5450dbe970
* replaced des3-md5 with des3-shaRichard Basch1996-05-103-2/+13
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7972 dc483132-0cff-0310-8789-dd5450dbe970
* Removed des3-md5 supportRichard Basch1996-05-102-4/+14
| | | | | | Added support for sha cksum types and des3-sha. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7971 dc483132-0cff-0310-8789-dd5450dbe970
* Replaced des3-md5 with des3-sha (also added sha cksumtype)Richard Basch1996-05-103-5/+11
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7970 dc483132-0cff-0310-8789-dd5450dbe970
* Obsolete file (replaced des3-md5 with des3-sha)Richard Basch1996-05-101-173/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7969 dc483132-0cff-0310-8789-dd5450dbe970
* Replaced des3-md5 with des3-shaRichard Basch1996-05-104-19/+221
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7968 dc483132-0cff-0310-8789-dd5450dbe970
* Replace des3-md5 with des3-shaRichard Basch1996-05-105-4/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7967 dc483132-0cff-0310-8789-dd5450dbe970
* NIST-SHA supportRichard Basch1996-05-1010-0/+890
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7966 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-04-05 02:23:30 +0000