summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* * get_in_tkt.c (krb5_get_init_creds): Change hardcoded default ticket lifetimeKen Raeburn2003-05-302-1/+4
| | | | | | | | | from 10 hours to 24 hours. ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15533 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (init_realm): Use KRB5_KDB_MAX_RLIFE, not KRB5_KDB_MAX_LIFE, asKen Raeburn2003-05-302-1/+6
| | | | | | | | | | | default for realm's max renewable lifetime. (KRB5_KDB_MAX_RLIFE is currently one week) ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15532 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (DEFAULT_KDC_TIMESYNC): Define as 1 always.Ken Raeburn2003-05-302-8/+5
| | | | | | | | | (DEFAULT_CCACHE_TYPE): Define as 4 always. ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15529 dc483132-0cff-0310-8789-dd5450dbe970
* * osconf.h (DEFAULT_KDC_ENCTYPE): Default to des3 nowKen Raeburn2003-05-302-1/+5
| | | | | | | ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15528 dc483132-0cff-0310-8789-dd5450dbe970
* update kinit krb4 fallback lifetime defaultKen Raeburn2003-05-302-1/+5
| | | | | | | | | * kinit.c (KRB4_BACKUP_DEFAULT_LIFE_SECS): Update to one day. ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15527 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c: (verify_as_reply) Only check the renewable lifetime of ↵Alexandra Ellwood2003-05-302-0/+8
| | | | | | tickets whose request options included KDC_OPT_RENEWABLE_OK if those options did not also include KDC_OPT_RENEWABLE. Otherwise verify_as_reply() will fail for all renewable tickets git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15524 dc483132-0cff-0310-8789-dd5450dbe970
* update path for kdc.conf in man pageKen Raeburn2003-05-302-1/+6
| | | | | | | | | | | | | | The man page puts kdc.conf in lib/krb5kdc, but it should be var/krb5kdc. (It's also hardcoded as being in /usr/local, but that's another bug...) * kdc.conf.M (FILES): Refer to correct location for kdc.conf in the default installation path. ticket: new target_version: 1.3 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15523 dc483132-0cff-0310-8789-dd5450dbe970
* krb524d.h: removed invalid Mac pragmas [RT 1533]Alexandra Ellwood2003-05-292-7/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15520 dc483132-0cff-0310-8789-dd5450dbe970
* Rename interface to krb5_524_convert_creds, export it from krb5 library.Ken Raeburn2003-05-2812-15/+71
| | | | | | | | | | | | Provide old names as functions for UNIX/MacOS binary compatibility, and deprecated macros for source code compatibility. (For Windows, we'll still need a krb524.dll, and it can worry about providing the old names.) Enable support on Windows always. ticket: 1491 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15513 dc483132-0cff-0310-8789-dd5450dbe970
* * schpw.c (process_chpw_request): Log chpw requestsTom Yu2003-05-272-1/+18
| | | | | | | | ticket: 1519 tags: pullup status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15502 dc483132-0cff-0310-8789-dd5450dbe970
* * win-pre.in (CPPFLAGS): Define KRB5_DEPRECATED=1Ken Raeburn2003-05-272-1/+5
| | | | | | | ticket: 1528 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15500 dc483132-0cff-0310-8789-dd5450dbe970
* Avoid memory leak of server and client principal inSam Hartman2003-05-273-1/+52
| | | | | | | | | krb5_get_in_tkt_with{_password,_keytab} Ticket: 1525 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15498 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (KRBHDEP): Add krb524_err headerKen Raeburn2003-05-272-1/+5
| | | | | | | ticket: 1491 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15497 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (clean-windows): Remove new "timestamp" file whenKen Raeburn2003-05-272-1/+6
| | | | | | cleaning up. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15496 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5.hin: Sequence number of krb5_replay_data should be unsignedEzra Peisach2003-05-252-1/+5
| | | | | | | ticket: 1262 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15493 dc483132-0cff-0310-8789-dd5450dbe970
* Missing prototype for krb5_db_iterate_extEzra Peisach2003-05-252-0/+8
| | | | | | | | * kdb.h: Add prototype for krb5_db_iterate_ext. Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15492 dc483132-0cff-0310-8789-dd5450dbe970
* Big step towards integrating libkrb524 into libkrb5:Ken Raeburn2003-05-2454-881/+758
| | | | | | | | | | | | | | | | | | | | | | | Move libkrb524 code, including error table, into libkrb5. Now libkrb5 initialization pulls in the krb524 error table, so krb524_init_ets is gone; all calls deleted. Move krb4 life/time conversion functions into libkrb5 under new names, using accessor hooks to get at them from libkrb4. Move declarations from krb524.h into krb5.h, k5-int.h, or krb524d.h; the last doesn't get copied into the include directory. Changed inclusions of krb524.h to the appropriate files, if any were needed. Rebuilt dependencies in Makefiles. These changes are likely to break the Windows build; I'll look into that soon. ticket: 1491 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15491 dc483132-0cff-0310-8789-dd5450dbe970
* make-depend updatesKen Raeburn2003-05-2446-1015/+1003
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15490 dc483132-0cff-0310-8789-dd5450dbe970
* When generating etype_info2 for DES style keys, use s2kparams toSam Hartman2003-05-244-12/+58
| | | | | | | | | | | | communicate the type if the key has afs3 salt. If such s2kparams are received by the client, use the afs string2key function to process the key. Ticket: 1512 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15489 dc483132-0cff-0310-8789-dd5450dbe970
* Populate etype_info_entry.s2kparams.dataSam Hartman2003-05-242-1/+7
| | | | | | | | | | | The ASN.1 decoder for etype_info_entry accidentally throws away the pointer to s2kparams data. Don't Correctly store the pointer. Ticket: new Target_Version: 1.3 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15488 dc483132-0cff-0310-8789-dd5450dbe970
* use kdc_default_optionsSam Hartman2003-05-232-1/+5
| | | | | | | | | | | The documentation and context initialization supports an option called kdc_default_options which is an integer that sets the default KDC request flags. Make the code actually use the option. Ticket: new Component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15485 dc483132-0cff-0310-8789-dd5450dbe970
* Memory leak in kdc etype_info2 preauthEzra Peisach2003-05-232-2/+14
| | | | | | | | | | | | * kdc_preauth.c (return_etype_info2): After encoding the etype_info2 and copying the pointers to the pa_data, free the krb5_data pointer. Ticket: new Target_Version: 1.3 Tags: pickup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15483 dc483132-0cff-0310-8789-dd5450dbe970
* * gen_seqnum.c (krb5_generate_seq_number): Fix think-o on sequenceTom Yu2003-05-232-1/+4
| | | | | | | | | number mask. ticket: 1262 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15480 dc483132-0cff-0310-8789-dd5450dbe970
* Implement heuristic for matching broken Heimdal sequence number encodingsTom Yu2003-05-237-2/+188
| | | | | | | | | ticket: 1263 target_version: 1.3 tags: pullup status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15479 dc483132-0cff-0310-8789-dd5450dbe970
* * kt_file.c (krb5_ktfile_get_entry): Check principal name prior toTom Yu2003-05-222-8/+13
| | | | | | | | | | checking enctype. Suggested by Wyllys Ingersoll. ticket: 1229 status: open tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15470 dc483132-0cff-0310-8789-dd5450dbe970
* Default KRB5_DEPRECATED to 0, but force it to 1 for in-tree stuffTom Yu2003-05-224-15/+16
| | | | | | | | ticket: 1483 tags: pullup status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15469 dc483132-0cff-0310-8789-dd5450dbe970
* Log transited checkd not done as info not errorSam Hartman2003-05-222-1/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15468 dc483132-0cff-0310-8789-dd5450dbe970
* Provide an explicit list of options not to be allowed in AS requestsSam Hartman2003-05-222-5/+10
| | | | | | | | | rather than disallowing all unknown options. Ticket: 1202 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15467 dc483132-0cff-0310-8789-dd5450dbe970
* Cross realm checks can check beyond end of bufferEzra Peisach2003-05-222-1/+6
| | | | | | | | | | | * keytab.c (is_xrealm_tgt): Use strncmp instead of strcmp - as principal and realm name do not need to be null terminated. ticket: new tags: pullup target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15466 dc483132-0cff-0310-8789-dd5450dbe970
* krb5int_populate_gic_opt should return voidSam Hartman2003-05-224-2/+10
| | | | | | | | | | | Since none of the functions it calls can return an error, this should return void. Ticket: new Target_Version: 1.3 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15465 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb5_mkdums.c (main): When attempting to register writableEzra Peisach2003-05-222-2/+9
| | | | | | | | | | keytab, do not fail if error is KRB5_KT_TYPE_EXISTS. Ticket: 1501 Target_Version: 1.3 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15464 dc483132-0cff-0310-8789-dd5450dbe970
* Set length correctly in krb5_get_in_tkt_with_password if password isTom Yu2003-05-219-25/+50
| | | | | | | | | | actually passed in. Also, fix test suite to be more lenient about password prompts, which changed under the previous patches for this ticket. ticket: 1480 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15463 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_get_in_tkt now only supports old (non-etype-info2) enctypesSam Hartman2003-05-202-1/+18
| | | | | | | Ticket: 1480 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15462 dc483132-0cff-0310-8789-dd5450dbe970
* Implement krb5_get_in_tkt_with_password andSam Hartman2003-05-209-258/+165
| | | | | | | | | | | | krb5_get_in_tkt_with_keytab in terms of krb5_get_init_creds. It turns out that these do in fact need to use get_init_creds not get_init_creds_{password,keytab} because of those functions do not allow the AS request to be returned. Ticket: 1480 Status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15461 dc483132-0cff-0310-8789-dd5450dbe970
* * asn1_k_encode.c (asn1_encode_krb_safe_body): UseEzra Peisach2003-05-203-2/+11
| | | | | | | | | | | | asn1_encode_unsigned_integer for sequence number. * asn1_k_decode.c (asn1_decode_krb_safe_body): Use asn1_decode_seqnum to decode sequence number. ticket: 1262 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15460 dc483132-0cff-0310-8789-dd5450dbe970
* Register writable keytabs by defaultSam Hartman2003-05-196-14/+19
| | | | | | | | | | | | | | | | We have a customer requirement to support writable keytabs using the public API in 1.3 Discussion on krbcore indicates there is no good reason why these are not registered by default. So, they are now registered by default. Also adjust other code in the tree not to try and register them. Ticket: new Target_Version: 1.3 Component: krb5-libs Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15459 dc483132-0cff-0310-8789-dd5450dbe970
* * depgen.sed: Put print command on separate lines from substitution commands,Ken Raeburn2003-05-182-3/+20
| | | | | | | | instead of using s///p form. ticket: 1364 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15458 dc483132-0cff-0310-8789-dd5450dbe970
* Sequence numbers are now unsigned. Implement lenient parser forTom Yu2003-05-1816-41/+333
| | | | | | | | | | | sequence numbers which folds received negative sequence numbers into positive unsigned numbers. Constrain the space of initial sequence numbers to facilitate backwards compatibility. ticket: 1262 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15457 dc483132-0cff-0310-8789-dd5450dbe970
* * schpw.c (process_chpw_request): Return KRB5_KPASSWD_BAD_VERSION if theKen Raeburn2003-05-172-1/+6
| | | | | | | | | version number isn't 1. ticket: 1441 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15456 dc483132-0cff-0310-8789-dd5450dbe970
* * chpw.c (krb5int_rd_chpw_rep): Allow new kpasswd error codes up throughKen Raeburn2003-05-172-1/+4
| | | | | | | | | _INITIAL_FLAG_NEEDED. ticket: 1441 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15455 dc483132-0cff-0310-8789-dd5450dbe970
* Define the new error codesKen Raeburn2003-05-172-0/+11
| | | | | | | | | * krb5.hin (KRB5_KPASSWD_ACCESSDENIED): New macro. (KRB5_KPASSWD_BAD_VERSION, KRB5_KPASSWD_INITIAL_FLAG_NEEDED): New macros. ticket: 1441 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15454 dc483132-0cff-0310-8789-dd5450dbe970
* * ser_ctx.c (krb5_context_internalize): Copy read-in OS context data intoKen Raeburn2003-05-172-6/+22
| | | | | | | | | krb5_context and free up the newly allocated OS context. ticket: 1497 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15453 dc483132-0cff-0310-8789-dd5450dbe970
* * default.exp (spawn_xterm): Add KPASSWD and REALMNAME to the list of exportedKen Raeburn2003-05-172-1/+6
| | | | | | variables. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15452 dc483132-0cff-0310-8789-dd5450dbe970
* * mkrel: Remote autom4te.cache filesTom Yu2003-05-152-0/+5
| | | | | | | | ticket: 1492 target_version: 1.3 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15449 dc483132-0cff-0310-8789-dd5450dbe970
* Only allow combine_keys to work on des and 3des enctypes. It is notSam Hartman2003-05-152-0/+26
| | | | | | | | | supported for rc4 or AES until we implement the crypto framework PRF. Ticket: 1248 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15448 dc483132-0cff-0310-8789-dd5450dbe970
* KfM should export krb5_c_string_to_key_with_paramsAlexandra Ellwood2003-05-151-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15446 dc483132-0cff-0310-8789-dd5450dbe970
* Be more friendly towards parallel buildsKen Raeburn2003-05-142-5/+17
| | | | | | | | | | * Makefile.in ($(EHDRDIR)$(S)timestamp): New target, used for ensuring $(EHDRDIR) exists. (clean-unix): Delete the dummy file. ($(EHDRDIR)$(S)gssapi.h): Depend on it, instead of creating the directory here. ($(EHDRDIR)$(S)gssapi_generic.h): Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15443 dc483132-0cff-0310-8789-dd5450dbe970
* Allow the KDC to return bad integrity errors to the client on preauthSam Hartman2003-05-142-0/+5
| | | | | | | | | | | | failure. This will be translated by the client into password incorrect. Ticket: 1488 Target_Version: 1.3 Tags: pullup Component: krb5-kdc git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15439 dc483132-0cff-0310-8789-dd5450dbe970
* * start_servers_local: Set KRB5RCACHEDIR.Ken Raeburn2003-05-143-1/+12
| | | | | | | * stop_servers_local: Set KRB5RCACHEDIR. Use the correct filename when deleting the replay cache file. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15434 dc483132-0cff-0310-8789-dd5450dbe970
* provide shorthand aliases for AES enctypesKen Raeburn2003-05-132-0/+15
| | | | | | | | | | | * etypes.c (krb5_enctypes_list): Add names aes128-cts and aes256-cts as aliases. ticket: new target_version: 1.3 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15433 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-23 04:45:08 +0000