summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Added ANL changes to support configuration authentication pathsTheodore Tso1995-11-152-0/+137
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7106 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_util.h: Added new prototypes for return_padata() and check_padata()Theodore Tso1995-11-144-110/+214
| | | | | | | | | | | | | | * kdc_preauth.c (return_padata): New function which calls out to each preauth type to see if it is necessary to return preauth data or not. (return_pw_salt): New function responsible for returning the KRB5_PW_SALT preauth information. * do_as_req.c (process_as_req): Move creation of the PW_SALT preauthentication step into kdc_preauth.c. Call return_pdata() which is responsible for all padata info which is returned by the KDC in the KRB_AS_REP message. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7103 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth.c (krb5_process_padata): Added generalized processing forTheodore Tso1995-11-133-76/+121
| | | | | | | | | | | | | | | preauth information which is returned by the KDC. This should be general enough to support the AFS3_SALT preauth type, the SNK4 preauth type, and the public-key mods to Kerberos. (process_pw_salt): New function for processing the KRB5_PW_SALT preauthentication type. * get_in_tkt.c (decrypt_as_reply): Removed temporary kludge for processing the PW_SALT preauth type; that's now done in preauth.c (krb5_get_in_tkt): Call krb5_process_padata with new arguments so that the preauth code can set the decryption_key if necessary. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7102 dc483132-0cff-0310-8789-dd5450dbe970
* Added typedef for krb5_preauth_proces_proc, and changed the prototypeTheodore Tso1995-11-132-5/+33
| | | | | | | | | of krb5_process_padata() to take additional arguments for returning the decryption key to use for decrypting the as_reply, as well as passing in the decrypt_proc procedure in case some preauth types want to call decrypt_proc themselves. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7101 dc483132-0cff-0310-8789-dd5450dbe970
* * encrypt_data.c (krb5_encrypt_data): New file. A generic routineTheodore Tso1995-11-134-0/+153
| | | | | | | | | | | | | | for encrypting data in a krb5_data structure. Fills in a krb5_enc_data structure. * decrypt_data.c (krb5_decrypt_data): New file. A generic routine for decrypting data in a krb5_enc_data structure. Fills in a krb5_data structure. * Makefile.in (SRCS): Added decrypt_data.c and encrypt_data.c to list of files to be compiled. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7100 dc483132-0cff-0310-8789-dd5450dbe970
* Add prototypes for krb5_encrypt_data(), krb5_decrypt_data()Theodore Tso1995-11-131-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7099 dc483132-0cff-0310-8789-dd5450dbe970
* Add prototypes for krb5_encrypt_data(), krb5_decrypt_data()Theodore Tso1995-11-132-0/+18
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7098 dc483132-0cff-0310-8789-dd5450dbe970
* * def_realm.c (krb5_get_default_realm): check for PROF_NO_PROFILEMark Eichin1995-11-132-1/+10
| | | | | | | and return KRB5_CONFIG_CANTOPEN instead of BADFORMAT so that the user in the end knows what is going on. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7097 dc483132-0cff-0310-8789-dd5450dbe970
* * g_cnffile.c (krb__get_srvtabname): new function, looks upMark Eichin1995-11-132-4/+76
| | | | | | | | | | | | [libdefaults]krb4_srvtab for use where KEYFILE used to be. * g_cnffile.c (krb__v5_get_file): new function, looks up argument in [libdefaults] and tries to open it as a filename. Returns filehandle (or NULL, if fopen failed.) (krb__get_cnffile, krb__get_realmsfile): use krb__v5_get_file to look up "krb4_config" or "krb4_realms" respectively. Also add $KRB_REALMS override for realms file. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7096 dc483132-0cff-0310-8789-dd5450dbe970
* * conv_creds.c (krb524_convert_creds_kdc): loop through all of theMark Eichin1995-11-133-5/+46
| | | | | | | | | addresses returned by krb5_locate_kdc, don't just try the first one. * krb524d.c (do_connection): check for particular failures of decode_krb5_ticket, as well as for messages that are one int long (which will eliminate our own error replies.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7095 dc483132-0cff-0310-8789-dd5450dbe970
* * krb.h (KEYFILE): change to call krb__get_srvtabname with aMark Eichin1995-11-132-1/+6
| | | | | | default of the old hardcoded value "/etc/srvtab". git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7094 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5.conf[libdefaults]: add krb4_config, krb4_realmsMark Eichin1995-11-132-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7093 dc483132-0cff-0310-8789-dd5450dbe970
* * telnetd.8: source tmac.doc for correct parsingMark Eichin1995-11-132-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7092 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c: initialize line (to avoid splitting up forward.c.)Mark Eichin1995-11-132-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7091 dc483132-0cff-0310-8789-dd5450dbe970
* * forward.c: set KRB5_DEFAULT_LIFE to 10 hours, not 8.Mark Eichin1995-11-133-3/+19
| | | | | | | | | | * forward.c (rd_and_store_for_creds): construct correct cache name for forwarded tickets (based on tty name if available) and drop it into the environment so login notices it. also, fix typo in comment in kerberos5.c git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7090 dc483132-0cff-0310-8789-dd5450dbe970
* * krshd.c (doit): drag TZ= from parent environment into envinit toMark Eichin1995-11-132-2/+21
| | | | | | | pass to child. (envinit, TZENV): add one more slot for optional TZ, and mark it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7089 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (install-mkdirs): bash needs a semicolon between fiMark Eichin1995-11-132-1/+6
| | | | | | and done. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7088 dc483132-0cff-0310-8789-dd5450dbe970
* Comment out encrypted telnet testsEzra Peisach1995-11-112-62/+66
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7087 dc483132-0cff-0310-8789-dd5450dbe970
* * TODO : Remove krb5_enctype argument from string_to_key() is doneChris Provenzano1995-11-092-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7086 dc483132-0cff-0310-8789-dd5450dbe970
* * t_cksum.c : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-5/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7085 dc483132-0cff-0310-8789-dd5450dbe970
* * string2key.c : Remove krb5_enctype from krb5_string_to_key() args.Chris Provenzano1995-11-093-3/+9
| | | | | | | * string2key.c, des_int.h : Remove krb5_enctype from mit_des_string_to_key() args. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7084 dc483132-0cff-0310-8789-dd5450dbe970
* * fetch_mkey.c, kdb_cpw.c, t_kdb.c :Chris Provenzano1995-11-094-12/+11
| | | | | | Remove krb5_enctype from krb5_string_to_key() args. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7083 dc483132-0cff-0310-8789-dd5450dbe970
* * in_tkt_pwd.c : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7082 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb5_verify.c : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-10/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7081 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc5_hammer.c : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-2/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7080 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb5_mkdums.c : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-3/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7079 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5.hin : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-2/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7078 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb5_edit.c : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-1/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7077 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb5_create.c : Remove krb5_enctype from krb5_string_to_key() argsChris Provenzano1995-11-092-10/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7076 dc483132-0cff-0310-8789-dd5450dbe970
* sim_client.c (main): Use krb5_get_server_rcache instead of duplicatingEzra Peisach1995-11-092-21/+12
| | | | | | code. Remove use of krb5_clockskew variable. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7074 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_preauth.c (get_etype_info): Added function to return theTheodore Tso1995-11-096-18/+171
| | | | | | | | | | | | etype_info preauth hint to the client. * kdc_util.c (get_salt_from_key): Added new function which determines the salting information from the krb5_key_data structure. * main.c (kdc_initialize_rcache): Replace use of krb5_clockskew with context->clockskew. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7073 dc483132-0cff-0310-8789-dd5450dbe970
* Remove etype_info from the argument list of krb5_obtain_padataTheodore Tso1995-11-092-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7072 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c (krb5_get_in_tkt): Remove the etype_info argument fromTheodore Tso1995-11-093-7/+29
| | | | | | | | | | the call to krb5_obtain_padata. * preauth.c (krb5_obtain_padata): Use the PADATA_ETYPE_INFO preauth, if it exists, to determine which salt type to use when encrypting the preauthentication data. Remove the etype_info argument. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7071 dc483132-0cff-0310-8789-dd5450dbe970
* Don't require val->salt to be non-zero if val->lenth is zeroTheodore Tso1995-11-091-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7070 dc483132-0cff-0310-8789-dd5450dbe970
* Fix stupid typo when creating functionTheodore Tso1995-11-091-2/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7069 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_encode_test.c (main): In case of an error in the encodingTheodore Tso1995-11-093-7/+36
| | | | | | | | | | | | routines, exit. Otherwise, calling the print routines will often lead to a coredump. * ktest.c (ktest_make_sample_etype_info): Set etype.length to -1 to mean that the optional salt string is missing. (This is change in the convention used by the ASN.1 encoder and decoder for this ASN.1 structure.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7068 dc483132-0cff-0310-8789-dd5450dbe970
* * asn1_k_decode.c (asn1_decode_etype_info_entry): If the optionalTheodore Tso1995-11-093-3/+13
| | | | | | | | | | | salt element is not present, set etype.length to -1. * asn1_k_encode.c (asn1_encode_etype_info_entry): When encoding the etype_info_entry structure, use length == -1 to mean that the optional salt structure should not be sent. (It used to be if length == -1.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7067 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5.hin: Add preauthentication type KRB5_PADATA_ETYPE_INFOTheodore Tso1995-11-083-0/+8
| | | | | | * k5-int.h: Add declaration for krb5_free_etype_info. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7066 dc483132-0cff-0310-8789-dd5450dbe970
* Added new function to free a krb5_etype_info structureTheodore Tso1995-11-083-0/+46
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7065 dc483132-0cff-0310-8789-dd5450dbe970
* Change use of krb5_clockskew to be context->clockskewTheodore Tso1995-11-082-4/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7064 dc483132-0cff-0310-8789-dd5450dbe970
* * krbconfig.c: Removed the krb5_clockskew variableTheodore Tso1995-11-0810-20/+23
| | | | | | | | | | | | | * srv_rcache.c (krb5_get_server_rcache): * rd_safe.c (krb5_rd_safe): * rd_req_dec.c (krb5_rd_req_decoded): * rd_priv.c (krb5_rd_priv): * rd_cred.c (krb5_rd_cred): * gc_via_tkt.c (krb5_get_cred_via_tkt): * get_in_tkt.c (verify_as_reply): Replace use of krb5_clockskew with context->clockskew. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7063 dc483132-0cff-0310-8789-dd5450dbe970
* Updated reference files for the new structures now supported by the ASN.1Theodore Tso1995-11-082-0/+31
| | | | | | encoders and decoders. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7062 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_util.c (): Added new helper functionsTheodore Tso1995-11-087-195/+467
| | | | | | | | | | | | | | | | | | | | | | dbentry_has_key_for_enctype(), dbentry_supports_enctype(), and select_session_keytype(). * kdc_preauth.c: Added support for the ENC_TIMESTAMP preauthentication scheme. * do_tgs_req.c (process_tgs_req): Fixed the keytype/enctype selection criteria for the server key, and the ticket session key. * do_as_req.c (process_as_req): Added calls to the kdc preauthentication verification routines. Fixed the keytype/enctype selection criteria for the client key, the server key, and the ticket session key. * main.c (finish_realm): Make sure all parts of the realm structure are freed properly. (main): Free the kcontext krb5_context. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7058 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5.hin: Removed internal functions krb5_encrypt_tkt_part,Theodore Tso1995-11-083-49/+81
| | | | | | | | | | krb5_verify_padta, and krb5_obtain_padata from the public header file. * k5-int.h: Removed old preauthentication declarations and added new ones. Changed function prototype of krb5_encrypt_tkt_part. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7057 dc483132-0cff-0310-8789-dd5450dbe970
* * encrypt_tk.c (cleanup_scratch): Changed interface to no longer requireTheodore Tso1995-11-084-409/+224
| | | | | | | | | | | an eblock; we can use our own and figure out the enctype from the passed-in key. * get_in_tkt.c (krb5_get_in_tkt): Added calls to krb5_obtain_padata(). * preauth.c: Completely restructured file to support preauthentication. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7056 dc483132-0cff-0310-8789-dd5450dbe970
* Free the realm_kdc_ports element of the structureTheodore Tso1995-11-082-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7055 dc483132-0cff-0310-8789-dd5450dbe970
* Added magic number for krb5_preauth_opsTheodore Tso1995-11-082-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7054 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_decode.c (decode_krb5_pa_enc_ts, decode_krb5_enc_data): AddedTheodore Tso1995-11-084-3/+76
| | | | | | | | | | | | new functions. * krb5_encode.c (encode_krb5_pa_enc_ts, encode_krb5_enc_data): Added new functions. KRB5-asn.py (PA-ENC-TS-ENC): Added new definition for the krb5_pa_enc_ts structure. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7053 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_decode_test.c (main): Add tests for decode_krb5_enc_dataTheodore Tso1995-11-087-2/+74
| | | | | | | | | | | | | | | and decode_krb5_pa_enc_ts. * krb5_encode_test.c (main): Add tests for encode_krb5_enc_data and encode_krb5_pa_enc_ts. * ktest.c (ktest_make_sample_pa_enc_ts): New functions to test {encode,decode}_krb5_pa_enc_ts(). * ktest_equal.c (ktest_equal_krb5_pa_enc_ts): New functions to test {encode,decode}_krb5_pa_enc_ts(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7052 dc483132-0cff-0310-8789-dd5450dbe970
* Updated TODO listTheodore Tso1995-11-081-14/+81
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7051 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-09-26 20:02:04 +0000