summaryrefslogtreecommitdiffstats
path: root/src/appl
Commit message (Collapse)AuthorAgeFilesLines
* Remove setpgrp() call from krlogindSam Hartman1996-04-153-10/+20
| | | | | | | | | as libpty deals. Use setsid() instead of setpgrp() in krshd if possible. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7812 dc483132-0cff-0310-8789-dd5450dbe970
* Store the forwarded credentials in /tmp/krb5cc_p<pid> (like krlogind)Richard Basch1996-04-132-11/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7811 dc483132-0cff-0310-8789-dd5450dbe970
* Destroy any forwarded credentials when we cleanup. (They were stored inRichard Basch1996-04-132-1/+15
| | | | | | an unusual location, so they are not likely to be reused by other sessions.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7810 dc483132-0cff-0310-8789-dd5450dbe970
* forward.c: Use a saner naming convention for the credentials cache.Richard Basch1996-04-123-8/+45
| | | | | | kerberos5.c: Add a cleanup function to destroy the credentials cache. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7799 dc483132-0cff-0310-8789-dd5450dbe970
* Call a krb5 cleanup routine to cleanup forwarded credentials, if necessaryRichard Basch1996-04-123-15/+25
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7798 dc483132-0cff-0310-8789-dd5450dbe970
* * kcmd.c: Cleaned up whitespace and removed commented & unused cruftRichard Basch1996-04-114-39/+35
| | | | | | | | | | | * krlogind.c, krshd.c: Allow the recvauth routine to find any key in the keytab for which the user is trying to login. The host may be known as many names. Additionally, for krlogind, clean up the error handling for bad authentication (potential null dereference and a misleading message because of the wrong authentication system being used) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7791 dc483132-0cff-0310-8789-dd5450dbe970
* some fixes changes from marc. changelogs will be merged laterMark Eichin1996-04-093-28/+47
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7760 dc483132-0cff-0310-8789-dd5450dbe970
* Add an option -L to pass an environment variable to a client.Ezra Peisach1996-04-082-10/+53
| | | | | | | This is used by the DejaGnu test suite to pass the shared library paths to start up rcp properly. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7752 dc483132-0cff-0310-8789-dd5450dbe970
* * krlogind.c: Under Solaris, when the connection pipe goes away,Richard Basch1996-04-032-1/+9
| | | | | | | | | zero bytes are returned. Since we are using blocking read calls, and the net_read function deals with interrupted/resumed reads, consider zero bytes to be be a terminated connection, so as not to spin. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7749 dc483132-0cff-0310-8789-dd5450dbe970
* Leading/trailing colons should not be there based on the variable usage.Richard Basch1996-04-012-17/+23
| | | | | | Solaris test was incorrect. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7746 dc483132-0cff-0310-8789-dd5450dbe970
* Whitespace cleanup for readabilityRichard Basch1996-04-011-12/+14
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7745 dc483132-0cff-0310-8789-dd5450dbe970
* * telnetd.c: remove inclusion of netdb.h; it's already in defs.h,Tom Yu1996-03-272-1/+6
| | | | | | | and #$%&* ultrix doesn't protect it from multiple inclusions. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7718 dc483132-0cff-0310-8789-dd5450dbe970
* Add a couple missing log entries for stuff Mark checked inKen Raeburn1996-03-251-1/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7711 dc483132-0cff-0310-8789-dd5450dbe970
* krshd.c: use the library routines to do v4 to v5 principal translationRichard Basch1996-03-252-9/+14
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7710 dc483132-0cff-0310-8789-dd5450dbe970
* * krshd no longer does non-blocking IO. It never really needed itSam Hartman1996-03-243-7/+12
| | | | | | | | | | | * krcp works correctly even if not all data is written in a single request. * Implement temporary patch to make sure des_outbuf is big enough. Proven should be sending the Cygnus patch once he decides how to handle this permanently. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7706 dc483132-0cff-0310-8789-dd5450dbe970
* * Apply patch from Ken Raeburn to get telnetd compiling on the SGISam Hartman1996-03-246-160/+57
| | | | | | | | | | | * Force telnetd not to use streams on the SGI; it doesn't support pushing modules onto a pty. * Remove old utmpx crud from sys_term.c because it was getting called inadvertently, didn't compile on the SGI, and libpty already does something reasonable with utmpx. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7705 dc483132-0cff-0310-8789-dd5450dbe970
* use the library routines to do the v4 to v5 principal translationRichard Basch1996-03-222-8/+13
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7698 dc483132-0cff-0310-8789-dd5450dbe970
* * kcmd.c (ruserok): declare the function as taking const char *Richard Basch1996-03-202-2/+7
| | | | | | instead of char * (Solaris 2.5 refuses to compile it, otherwise). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7672 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: Added flags which turn on the encryption optionTheodore Tso1996-03-193-3/+51
| | | | | | | | telnetd.c (getterminaltype): If the authentication option which was negotiated requires that encryption be turned on, then enforce this here. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7663 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: Added flags to turn on the encryption optionTheodore Tso1996-03-197-10/+102
| | | | | | | | | | | | | | | | | | | | | | | | | authenc.c (telnet_spin): Implemented the telnet spin function, which works by calling the Scheduler with the tty_lockout flag set. main.c (main): If the -x option is given, set the autologin, wantencryption, and auth_enable_encrypt flag. They enable authentication, enforcement of the encryption option, and a flag to the auth layer to negotiate authentication with mandatory encryption option. telnet.c (telnet): If the wantencryption flag is set (because the user has given the -x option, then we enforce that encryption must be turned on. The user will not be able to type to the network stream until encryption is enabled, and if encryption is refused, the client will print an error message. (Scheduler): If the tty_lockout flag is set, then don't process keyboard read events. This prevents the user from typing over the network until encryption is enabled. utilities.c (printsub): Added print support for the authentication must-encrypt option. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7662 dc483132-0cff-0310-8789-dd5450dbe970
* Mon Mar 18 20:56:37 1996 Theodore Y. Ts'o <tytso@dcl>Theodore Tso1996-03-197-113/+246
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * kerberos5.c (kerberos5_send): Send in as input the authentication type pair (ap->type, ap->way) to be checksumed in the authenticator. (kerberos5_is): If the checksum is present in the authenticator, then validate the authentication type pair against the checksum. (kerberos5_reply): If we didn't do mutual authentication, and we receive a KRB_ACCEPT, then stash away the session key anyway. This way we have a chance of doing encryption even if mutual authentication wasn't done. * encrypt.c (EncryptStartInput, EncryptStartOutput): Added conditional around printf so that these two functions can be called by the server. (encrypt_is_encrypting): New function which returns true only if both sides of the telnet stream is encrypted. Fri Mar 15 18:19:44 1996 Theodore Y. Ts'o <tytso@dcl> * auth.c: Added new authentication scheme for Krb5 mutual authentication with mandatory encryption. (auth_send, auth_send_retry): Split auth_send() so that the functionality done by auth_send_retry() is separate. This avoids a really dodgy pointer comparison which was caused by auth_send() being used for two purposes. If the client has not requested encryption, then don't use the authentication systems which require encryption. (auth_must_encrypt): New function which returns whether or not encryption must be negotiated. * auth-proto.h: Added prototype for new option auth_must_encrypt(). * Makefile.in (ENCRYPTION, DES_ENCRYPTION): Added defines to turn on encryption and des encryption. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7661 dc483132-0cff-0310-8789-dd5450dbe970
* Use AC_HEADER_STDARG and use that test to set STDARG.Ezra Peisach1996-03-199-5/+21
| | | | | | | The old test assumed that either STDARG was defined or __STDC__ - which is not sufficient. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7660 dc483132-0cff-0310-8789-dd5450dbe970
* changelogs entries from cygnus changesMark Eichin1996-03-181-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7655 dc483132-0cff-0310-8789-dd5450dbe970
* Add USE_ANAME for aname conversion dbEzra Peisach1996-03-182-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7649 dc483132-0cff-0310-8789-dd5450dbe970
* Remove declaration of krb5_kdc_default_optionsEzra Peisach1996-03-162-2/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7647 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (auth_data): Do not fail if last gss_service is notEzra Peisach1996-03-152-2/+13
| | | | | | | present in keytab. If no services present, return a useful minor error status. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7642 dc483132-0cff-0310-8789-dd5450dbe970
* Added shadow password supportRichard Basch1996-03-153-0/+30
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7640 dc483132-0cff-0310-8789-dd5450dbe970
* telnet needs USE_ANAME because libtelnet/kerberos.c isn't splitMark Eichin1996-03-142-2/+7
| | | | | | if setupterm is in curses, grab it git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7630 dc483132-0cff-0310-8789-dd5450dbe970
* use AC_HEADER_STDARGKen Raeburn1996-03-132-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7629 dc483132-0cff-0310-8789-dd5450dbe970
* variable HE is a name collision with an hp/ux register mask in the hp/uxMark Eichin1996-03-131-4/+4
| | | | | | header files. Sigh. rename to HEstr. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7624 dc483132-0cff-0310-8789-dd5450dbe970
* minor hp fixMark Eichin1996-03-132-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7623 dc483132-0cff-0310-8789-dd5450dbe970
* update from cygnus sources. Get local hostname in a consistent manner,Mark Eichin1996-03-134-1/+13
| | | | | | so we ask for the right local service name. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7622 dc483132-0cff-0310-8789-dd5450dbe970
* * gss-server.c (timeval_subtract): Use old-style function definitionKen Raeburn1996-03-132-2/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7615 dc483132-0cff-0310-8789-dd5450dbe970
* remove cvs conflict marker, wrap some long linesKen Raeburn1996-03-131-14/+16
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7614 dc483132-0cff-0310-8789-dd5450dbe970
* New telnet authentication type pair to indicate whether we should beTheodore Tso1996-03-131-0/+7
| | | | | | encrypting. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7612 dc483132-0cff-0310-8789-dd5450dbe970
* Check in ChangeLog for last change..Ezra Peisach1996-03-121-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7611 dc483132-0cff-0310-8789-dd5450dbe970
* * krshd.c (doit): For encrypted rcp, fix logic in determiningEzra Peisach1996-03-122-15/+16
| | | | | | | | | | | executable to run. The real bug was that for encrypted rcp, it was checking (with stat) if "-x ....../rcp" existed instead of "..../rcp" Another change is so that freed memory is not accessed. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7610 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed mispelling of Doug Engert's nameTheodore Tso1996-03-111-4/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7604 dc483132-0cff-0310-8789-dd5450dbe970
* * gss-server.c (test_import_export_context): Add second argumentEzra Peisach1996-03-032-3/+8
| | | | | | to gettimeofday. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7585 dc483132-0cff-0310-8789-dd5450dbe970
* gss-server.c (sign_server): Do better import/export security checking.Theodore Tso1996-03-024-38/+219
| | | | | | | | | | | | | | | If the received message to be signed is not printable (at least the first two characters are not), display the message in hex. Print the hex values of the incoming and outcoming packets, for your information. gss-misc.c (print_token, display_buffer): Two new tokens for displaying GSSAPI buffers, either has hex or as a printable string. gss-client.c (call_server): Add option to support reading in the message to be signed from a file. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7583 dc483132-0cff-0310-8789-dd5450dbe970
* Get the nametype OID from gss_display_name, print it, and then releaseTheodore Tso1996-02-282-2/+21
| | | | | | | the nametype OID. This tests gss_display_name()'s ability to return a valid nametype, which can then be freed successfully. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7570 dc483132-0cff-0310-8789-dd5450dbe970
* Add USE_ANAME for dbm library (if needed)Ezra Peisach1996-02-272-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7552 dc483132-0cff-0310-8789-dd5450dbe970
* Use MAXDNAME for the maximum length of a domain,Sam Hartman1996-02-263-6/+22
| | | | | | | | | | | *not* MAXHOSTNAMELEN, which is the maximum length of an argument to gethostname or sethostname. Look for arpa/nameser.h to find this constant, defining it to 256 inf not present in an included file. Call USE_ANAME in the configure.in, so db library is included. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7549 dc483132-0cff-0310-8789-dd5450dbe970
* Use MAXDNAME for the maximum length of a domain,Sam Hartman1996-02-263-4/+14
| | | | | | | | | *not* MAXHOSTNAMELEN, which is the maximum length of an argument to gethostname or sethostname. Look for arpa/nameser.h to find this constant, defining it to 256 inf not present in an included file. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7548 dc483132-0cff-0310-8789-dd5450dbe970
* Call USE_ANAME so we get the rightSam Hartman1996-02-262-0/+6
| | | | | | | | db libraries under Linux. (I'm not quite sure I understand Richard's db changes, but if I do understand them, this is correct.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7547 dc483132-0cff-0310-8789-dd5450dbe970
* Remove space from #endif lineSam Hartman1996-02-261-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7546 dc483132-0cff-0310-8789-dd5450dbe970
* Fix the server side of the krlogin bug detecting eof in connection closeSam Hartman1996-02-266-6/+29
| | | | | | Also, import the ops changes to do with enable-athena. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7545 dc483132-0cff-0310-8789-dd5450dbe970
* * ext.h, utility.c (fatalperror, fatal): Add const to argumentEzra Peisach1996-02-243-4/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7519 dc483132-0cff-0310-8789-dd5450dbe970
* remove errno correctlyMark Eichin1996-02-241-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7517 dc483132-0cff-0310-8789-dd5450dbe970
* remove extraneous second include of stdlib.hMark Eichin1996-02-241-6/+1
| | | | | | | remove extra ; from previous merge remove declaration of errno git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7516 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2024-10-10 17:16:12 +0000