summaryrefslogtreecommitdiffstats
path: root/src/clients
Commit message (Collapse)AuthorAgeFilesLines
...
* man page macro and hyphen fixesRuss Allbery2008-02-191-2/+1
| | | | | | | | | | | | | | Fix various unescaped hyphens, lines starting with . that shouldn't be macros, undefined strings, and misspelled macros in the man pages. Found via man --warnings on a current Debian unstable system. ticket: new component: krb5-doc Version_Reported: 1.6.3 Target_Version: 1.6.4 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20228 dc483132-0cff-0310-8789-dd5450dbe970
* improve debugging of ticket verification in ksuRuss Allbery2007-12-301-5/+5
| | | | | | | | | | | | | When ksu is built with debugging support and -D is used, print out the principals being compared before doing the verification rather than afterwards so that the principals will be printed when the verification fails. ticket: new Component: krb5-appl Version_Reported: 1.6.2 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20196 dc483132-0cff-0310-8789-dd5450dbe970
* -S sname option for kvnoTom Yu2007-08-292-7/+32
| | | | | | | | | | | | New option to use krb5_sname_to_principal() for building principal names, which is useful for testing referrals. ticket: new target_version: 1.6.3 tags: pullup component: krb5-clients git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19894 dc483132-0cff-0310-8789-dd5450dbe970
* make dependKen Raeburn2007-08-161-27/+31
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19832 dc483132-0cff-0310-8789-dd5450dbe970
* Add PKINIT supportKevin Coffman2007-08-012-3/+29
| | | | | | | | | | | | | | | | Pull up PKINIT support onto the trunk. Changes from the version in branch users/coffman/pkinit are: - Update the preauth plugin interface version to avoid conflict with any existing plugins. - Add a pkcs11.h locally to the pkinit code rather than depending on opensc being installed. ticket: new Target_Version: 1.6.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19745 dc483132-0cff-0310-8789-dd5450dbe970
* make dependKen Raeburn2007-07-271-3/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19737 dc483132-0cff-0310-8789-dd5450dbe970
* Include k5-platform.hKen Raeburn2007-07-221-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19729 dc483132-0cff-0310-8789-dd5450dbe970
* declare xasprintfKen Raeburn2007-07-201-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19721 dc483132-0cff-0310-8789-dd5450dbe970
* Use [v]snprintf or asprintf instead of unchecked sprintf and separate ↵Ken Raeburn2007-07-122-10/+11
| | | | | | allocation size calculations git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19709 dc483132-0cff-0310-8789-dd5450dbe970
* Create and use xasprintf akin to xmalloc, returns pointer on success or ↵Ken Raeburn2007-07-122-5/+17
| | | | | | exits on error git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19708 dc483132-0cff-0310-8789-dd5450dbe970
* Define and use some inline helper functions for comparing data and authdata ↵Ken Raeburn2007-05-102-17/+8
| | | | | | | | structures, instead of open-coding checks of multiple fields everywhere. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19544 dc483132-0cff-0310-8789-dd5450dbe970
* Add resource data windows/version.rc for:Jeffrey Altman2007-04-147-27/+100
| | | | | | | | | | | | | | | | | | | | | kinit.exe, klist.exe, kdestroy.exe, kvno.exe kdeltkt.exe, kcpytkt.exe, kfwlogon.dll, kfwcpcc.exe gss-client.exe, gss-server.exe, kpasswd.exe Remove resource files: kfwcpcc.rc kfwlogon.rc and use windows/version.rc in their place Add resource make rules to Makefile.in files included in this commit Add missing _VC_MANIFEST_EMBED_EXE rule to kpasswd/Makefile.in Comment out addition Windows only make rules with ##WIN32## ticket: 5529 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19471 dc483132-0cff-0310-8789-dd5450dbe970
* remove krb5_get_init_creds_opt_set_pkinit() for nowTom Yu2007-01-311-18/+0
| | | | | | | ticket: 5420 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19130 dc483132-0cff-0310-8789-dd5450dbe970
* get_init_creds_opt extensibilityTom Yu2007-01-303-30/+123
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | r18922@cathode-dark-space: coffman | 2006-12-04 18:30:15 -0500 First cut at making the get_init_creds_opt structure extendable and adding library functions to set options for preauthentication plugins. This does *not* include a compatibility function to work like Heimdal's krb5_get_init_creds_opt_set_pkinit() function. Hopefully, the test code that doesn't belong in kinit.c is obvious. r18929@cathode-dark-space: coffman | 2006-12-07 10:01:20 -0500 Remove extra "user_id" parameter. Add function which duplicates the Heimdal interface (if we can agree on what the matching attribute names should be). r18934@cathode-dark-space: coffman | 2006-12-08 15:28:03 -0500 Update to use the simplified interface for krb5_get_init_creds_opt_set_pa() Add code in kinit to process "-X" options as preauth options and pass them along. r18936@cathode-dark-space: coffman | 2006-12-11 12:04:26 -0500 Move prototypes for get_init_creds_opt_get_pa() and krb5_get_init_creds_opt_free_pa() into the preauth_plugin.h header rather than krb5.hin. ticket: new status: open component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19127 dc483132-0cff-0310-8789-dd5450dbe970
* This commit adds two new functions, krb5_server_decrypt_ticket_keyblock Jeffrey Altman2007-01-161-11/+41
| | | | | | | | | | | | | | | | | (private) and krb5_server_decrypt_ticket_keytab (public). These functions take a krb5_ticket as input and decrypt it using the provided key data. The public function is useful for higher level application protocols such a TLS-KRB5 and AFS RX-KRB5 which exchange a service but do not use the AP-REQ/AP-REP messages. This commit also adds new functionality to kvno which permits kvno when provided a keytab as input to verify whether or not the keytab contains a key that can successfully decrypt the obtains service ticket. ticket: 5349 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19062 dc483132-0cff-0310-8789-dd5450dbe970
* Modifications to support the generation and embedding Jeffrey Altman2006-12-076-0/+6
| | | | | | | | | | | | of library manifests into generated EXEs and DLLs. Manifests are required for Windows XP and above when applications are built with Microsoft Visual Studio 2005 (aka VS8) or above. ticket: 3642 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18930 dc483132-0cff-0310-8789-dd5450dbe970
* make dependTom Yu2006-10-061-16/+18
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18652 dc483132-0cff-0310-8789-dd5450dbe970
* * src/clients/ksu/main.c (sweep_up): Don't check return value ofTom Yu2006-08-151-2/+3
| | | | | | | | | krb5_seteuid(0), as it is not harmful for it to fail, and it will fail after setuid(target_user). Correct error message. ticket: 4137 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18438 dc483132-0cff-0310-8789-dd5450dbe970
* fix MITKRB5-SA-2006-001: multiple local privilege escalation vulnerabilitiesTom Yu2006-08-081-3/+6
| | | | | | | | | | | | | | | | | | | * src/appl/gssftp/ftpd/ftpd.c (getdatasock, passive): * src/appl/bsd/v4rcp.c (main): * src/appl/bsd/krcp.c (main): * src/appl/bsd/krshd.c (doit): * src/appl/bsd/login.c (main): * src/clients/ksu/main.c (sweep_up): * src/lib/krb4/kuserok.c (kuserok): Check return values from setuid() and related functions to avoid privilege escalation vulnerabilities. Fixes MITKRB5-SA-2006-001. [CVE-2006-3083, VU#580124, CVE-2006-3084, VU#401660] ticket: new target_version: 1.5.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18420 dc483132-0cff-0310-8789-dd5450dbe970
* Enable kinit -a to match the man page and add documentationRuss Allbery2006-06-131-3/+3
| | | | | | | | Ticket: 3030 Reported_Version: 1.4.1 Component: krb5-clients git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18125 dc483132-0cff-0310-8789-dd5450dbe970
* Fix minor nroff man page problems (stray space, bad cross reference)Russ Allbery2006-06-121-1/+1
| | | | | | | Ticket: 3010 Version_Reported: 1.4.2 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18107 dc483132-0cff-0310-8789-dd5450dbe970
* Rename locate.h to locate_plugin.h. Change references, update dependenciesKen Raeburn2006-05-241-6/+6
| | | | | | ticket: 3784 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18037 dc483132-0cff-0310-8789-dd5450dbe970
* install headers into include/krb5Ken Raeburn2006-05-236-37/+90
| | | | | | | | | | | Create include/krb5 directory, and put krb5.h and (k5-)locate.h there in the build tree. Stub krb5.h in main include directory just includes krb5/krb5.h. Update dependencies, and add dependencies in a couple Makefiles that didn't have them. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18030 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Set and substitute KSU_LIBS, SETENVOBJ, DO_TCL. GenerateKen Raeburn2006-05-188-38/+14
| | | | | | | | | makefiles for util/et, util/profile, lib/kdb, clients and those clients subdirectories built on UNIX, rather than running configure there. Deleted configure.in scripts for those directories, and changed Makefile.in definitions of thisconfigdir and mydir. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18018 dc483132-0cff-0310-8789-dd5450dbe970
* Fix excessive italics in kinit man page;Sam Hartman2006-04-271-1/+2
| | | | | | thanks Stepan Kasal <kasal@ucw.cz> git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17964 dc483132-0cff-0310-8789-dd5450dbe970
* Include com_err.hKen Raeburn2006-04-141-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17927 dc483132-0cff-0310-8789-dd5450dbe970
* Don't include kdb.h from k5-int.h; instead, include it in the handfulKen Raeburn2006-04-131-18/+14
| | | | | | of places where it's actually needed. Update dependencies. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17898 dc483132-0cff-0310-8789-dd5450dbe970
* make dependKen Raeburn2006-04-111-1/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17894 dc483132-0cff-0310-8789-dd5450dbe970
* Remove ChangeLog files from the source tree. From now on, theSam Hartman2006-04-119-1917/+0
| | | | | | | subversion commit log entry needs to include information that would have been in the changelog. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17893 dc483132-0cff-0310-8789-dd5450dbe970
* Remove .Sanitize and .rconf files, no longer usedKen Raeburn2006-04-115-197/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17888 dc483132-0cff-0310-8789-dd5450dbe970
* * setenv.c: Include autoconf.hKen Raeburn2006-04-042-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17844 dc483132-0cff-0310-8789-dd5450dbe970
* more DEFS=Ken Raeburn2006-04-044-0/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17839 dc483132-0cff-0310-8789-dd5450dbe970
* make depend, now with dependency sortingKen Raeburn2006-03-312-56/+58
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17811 dc483132-0cff-0310-8789-dd5450dbe970
* make dependKen Raeburn2006-03-301-6/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17809 dc483132-0cff-0310-8789-dd5450dbe970
* * klist.c: Include autoconf.h firstKen Raeburn2006-03-302-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17808 dc483132-0cff-0310-8789-dd5450dbe970
* include autoconf.h before krb5.hKen Raeburn2006-03-304-2/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17799 dc483132-0cff-0310-8789-dd5450dbe970
* Include autoconf.h early in sources, and disable use of @DEFS@Ken Raeburn2006-03-2812-0/+28
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17794 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Always pass three arguments to AC_DEFINEKen Raeburn2006-03-282-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17793 dc483132-0cff-0310-8789-dd5450dbe970
* make dependKen Raeburn2006-03-271-18/+22
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17786 dc483132-0cff-0310-8789-dd5450dbe970
* Initial enhanced error message support, similar to what I sent toKen Raeburn2006-03-264-10/+56
| | | | | | | | | | | | | | | | krbdev except for some function renaming (krb5_free_error was already in use, so added _message to everything), and the context is allowed to be NULL (in which case we fall back to error_message() and storing no strings) to simplify some code. Low-level routines in the support library, using a private data structure; higher-level routines in libkrb5, using a krb5_context. Added error info strings to the KRB_ERR_GENERIC case in gc_via_tkt.c and the python sample service location plugin. Added code to kinit and kvno to look up and display the strings. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17776 dc483132-0cff-0310-8789-dd5450dbe970
* Instead of arbitrary division of headers into include and include/krb5, withKen Raeburn2006-03-112-17/+17
| | | | | | | | | | | | include directives sometimes using krb5/foo.h and sometimes using foo.h, and -I options always given for both directories in both source and build trees, push include/krb5/* up a level and drop the krb5 directory (except, for the moment, the change log). Updated #include directives, -I options, and dependencies accordingly, and deleted one or two bits of old, unused code that was noticed in the process. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17730 dc483132-0cff-0310-8789-dd5450dbe970
* make dependKen Raeburn2006-03-081-6/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17708 dc483132-0cff-0310-8789-dd5450dbe970
* add missing $(SCLIB) aka bufferoverflow.lib for 64-bit windowsJeffrey Altman2006-02-281-1/+1
| | | | | | ticket: 3415 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17681 dc483132-0cff-0310-8789-dd5450dbe970
* Qing Dong <dongq@mit.edu> provided a set of changes to allowJeffrey Altman2006-02-272-1/+5
| | | | | | | | | | | | | krb5 to build under the Microsoft Visual Studio 8 compiler in 64-bit mode and produce file names that do not conflict with the names produced by the 32-bit build. That patch was modified to work on Unix and also include processor dependent pre-processor definitions to remove warnings. ticket: 3415 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17680 dc483132-0cff-0310-8789-dd5450dbe970
* make dependTom Yu2005-11-292-27/+19
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17505 dc483132-0cff-0310-8789-dd5450dbe970
* Delete .cvsignore files; contents have already been Sam Hartman2005-08-248-10/+0
| | | | | | set on svn:ignore properties. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17353 dc483132-0cff-0310-8789-dd5450dbe970
* All configure.in scripts: Use K5_AC_INIT instead of AC_INITKen Raeburn2005-08-202-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17342 dc483132-0cff-0310-8789-dd5450dbe970
* Update dependenciesKen Raeburn2005-06-212-19/+27
| | | | | | | | | N.B.: The version of gcc used this time ("gcc version 3.4.3 20041212 (Red Hat 3.4.3-9.EL4)") seems to emit some duplicate dependencies -- some header files get listed twice. This is annoying but shouldn't cause any harm.... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17256 dc483132-0cff-0310-8789-dd5450dbe970
* updated dependencies for socket-utils.h changeKen Raeburn2005-04-281-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17205 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: add krb5 support library to windows klist executableJeffrey Altman2005-01-052-1/+5
| | | | | | ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17001 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-09-27 22:26:46 +0000