krb5.git - MIT Kerberos patches

	Commit message (Collapse)	Author	Age	Files	Lines
...
*	Formatting fixes	Greg Hudson	2011-09-19	2	-10/+9
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25209 dc483132-0cff-0310-8789-dd5450dbe970
*	Protect autoconf #defines (HAVE_FOO, et al) in win-mac.h with #ifdef ↵	Sam Hartman	2011-09-19	1	-0/+4
\| \| \| \| \| \| \| \| \|	KRB5_PRIVATE add -DKRB5_PRIVATE to CPPFLAGS in win-pre.in and to ALL_CXXFLAGS and ALL_CFLAGS in pre.in Signed-off-by: Kevin Wasserman <kevin.wasserman@painless-security.com> Signed-off-by: Sam Hartman <hartmans@debian.org> git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25199 dc483132-0cff-0310-8789-dd5450dbe970
*	Remove the ticket from the pkinit-alg-agility KDF function, to match	Sam Hartman	2011-09-19	1	-1/+0
\| \| \| \| \| \| \| \| \|	agreed changes to the IETF specification. Includes removing a parameter from the KDF function, removing the ticket from the ASN.1 encoder, and updating the test code. Signed-off-by: Margaret Wasserman <mrw@painless-security.com> git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25197 dc483132-0cff-0310-8789-dd5450dbe970
*	* Extend auth_pack	Sam Hartman	2011-09-19	2	-3/+20
\| \| \| \| \| \| \| \| \| \|	* extend dh_rep * add krb5_free_octet_data * extend pkinit free functions pkinit: add supportedKDFs and kdfID to structures git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25194 dc483132-0cff-0310-8789-dd5450dbe970
*	Added underlying ASN.1 structures for pkinit algorithm agility	Sam Hartman	2011-09-19	1	-0/+22
\| \| \| \| \| \| \| \|	Signed-off-by: Margaret Wasserman <mrw@painless-security.com> tested-by: Sam Hartman <hartmans@debian.org> fixes-from: Sam Hartman <hartmans@debian.org> git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25190 dc483132-0cff-0310-8789-dd5450dbe970
*	Split signal setup into loop_setup_signals()	Greg Hudson	2011-09-14	1	-1/+3
\| \| \| \| \| \| \|	In the KDC, set up signals in the worker process child after forking from the monitor process. From npmccallum@redhat.com. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25176 dc483132-0cff-0310-8789-dd5450dbe970
*	Add krb5_cc_select() API and pluggable interface	Greg Hudson	2011-09-05	4	-2/+170
\| \| \| \| \| \| \| \| \| \| \|	The interface has two built-in modules. The realm module guesses a cache based on the server realm if it is known. The k5identity module (Unix only) chooses a client principal based on rules in a .k5identity file in the user's homedir. ticket: 6957 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25158 dc483132-0cff-0310-8789-dd5450dbe970
*	Add new cache collection APIs	Greg Hudson	2011-09-05	2	-0/+70
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* krb5_cc_get_full_name retrieves the full type:name of a cache. * krb5_cc_switch makes a cache the primary cache. * krb5_cc_cache_match searches the collection for a client principal. * krb5_free_string releases a string (for the krb5_cc_get_full_name result). All of these are from Heimdal except for krb5_free_string (Heimdal uses krb5_xfree). ticket: 6954 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25155 dc483132-0cff-0310-8789-dd5450dbe970
*	Add fnmatch support to libkrb5support	Greg Hudson	2011-09-05	1	-0/+19
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25153 dc483132-0cff-0310-8789-dd5450dbe970
*	Reindent per krb5-batch-reindent.el.	Ken Raeburn	2011-09-04	1	-2/+2
\| \| \| \| \| \| \|	Some minor reformatting added in places to avoid exceeding 80 columns. Used Emacs 22.1 built-in C mode. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25144 dc483132-0cff-0310-8789-dd5450dbe970
*	Reindent per krb5-batch-reindent.el.	Ken Raeburn	2011-09-04	1	-117/+117
\| \| \| \| \| \|	Mostly changes column choice for backslashes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25143 dc483132-0cff-0310-8789-dd5450dbe970
*	Migrate net-server loop to use libverto	Greg Hudson	2011-09-02	1	-7/+11
\| \| \| \| \| \|	From npmccallum@redhat.com. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25132 dc483132-0cff-0310-8789-dd5450dbe970
*	Add a loop_ prefix to net-server.c functions	Greg Hudson	2011-09-02	1	-9/+10
\| \| \| \| \| \|	From npmccallum@redhat.com. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25128 dc483132-0cff-0310-8789-dd5450dbe970
*	Make data_eq_string work with const strings	Greg Hudson	2011-08-15	1	-8/+7
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25101 dc483132-0cff-0310-8789-dd5450dbe970
*	Removed unused "db_modules" and "preauth_module_dir" configuration options	Zhanna Tsitkov	2011-08-12	1	-2/+0
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25099 dc483132-0cff-0310-8789-dd5450dbe970
*	Clean up some ldap #define's	Zhanna Tsitkov	2011-08-10	1	-4/+5
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25092 dc483132-0cff-0310-8789-dd5450dbe970
*	In last-resort fallback va_copy change 'memcmp' to 'memcpy'	Sam Hartman	2011-08-09	1	-1/+1
\| \| \| \| \| \| \|	Signed-off-by: Kevin Wasserman <kevin.wasserman@painless-security.com> Signed-off-by: Sam Hartman <hartmans@painless-security.com> git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25080 dc483132-0cff-0310-8789-dd5450dbe970
*	Add internal APIs for portable path manipulation	Greg Hudson	2011-08-07	1	-0/+22
\| \| \| \| \| \| \| \| \| \| \| \| \|	k5_path_split separates a path into dirname and basename. k5_path_join joins two paths. k5_path_isabs determines if a path is absolute. All three functions follow the Python path function semantics. Currently the test module doesn't run in the Windows build, but the Windows path semantics are tested in the Unix build using specially built objects. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25074 dc483132-0cff-0310-8789-dd5450dbe970
*	Minor comment correction	Zhanna Tsitkov	2011-08-01	1	-2/+2
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25064 dc483132-0cff-0310-8789-dd5450dbe970
*	Define KRB5_TL_DB_ARGS unconditionally in kdb.h	Greg Hudson	2011-07-26	1	-1/+2
\| \| \| \| \| \| \| \| \|	Due to an apparent merge bug, KRB5_TL_DB_ARGS was defined in a SECURID conditional block, and several source files worked around the problem by defining the constant themselves or defining SECURID. Move the definition and remove the workarounds. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25055 dc483132-0cff-0310-8789-dd5450dbe970
*	Better x-ref for simple macro's in doxygen comments	Zhanna Tsitkov	2011-07-25	1	-159/+178
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25051 dc483132-0cff-0310-8789-dd5450dbe970
*	Added documentation for the encrypt/decrypt API functions	Zhanna Tsitkov	2011-07-25	1	-26/+204
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25049 dc483132-0cff-0310-8789-dd5450dbe970
*	Fix build without KRB5_DNS_LOOKUP	Greg Hudson	2011-07-25	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \|	Define MAX_DNS_NAMELEN unconditionally in k5-int.h as we use it unconditionally in kdc_util.c. Don't define it in locate_kdc.c. Conditionalize dns_locate_server() in locate_kdc.c as its only call site (in k5_locate_server) and its helper function (locate_srv_dns_1) are conditional. From Chris Hecker with minor changes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25042 dc483132-0cff-0310-8789-dd5450dbe970
*	Add krb5_init_context_profile API	Greg Hudson	2011-07-20	2	-1/+25
\| \| \| \| \| \|	ticket: 6929 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25026 dc483132-0cff-0310-8789-dd5450dbe970
*	Added documentation for krb5_decode_authdata_container and ↵	Zhanna Tsitkov	2011-07-20	1	-2/+27
\| \| \| \| \| \|	krb5_encode_authdata_container API functions git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25023 dc483132-0cff-0310-8789-dd5450dbe970
*	Added documentation for cred cache (un)lock, checksum and crypto length APIs	Zhanna Tsitkov	2011-07-11	1	-23/+275
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25016 dc483132-0cff-0310-8789-dd5450dbe970
*	C90 doesn't allow commas at the ends of enumeration lists	Ken Raeburn	2011-07-01	1	-2/+2
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25012 dc483132-0cff-0310-8789-dd5450dbe970
*	Don't destroy dst on error in krb5_cc_move	Greg Hudson	2011-06-23	1	-1/+1
\| \| \| \| \| \| \| \|	Although destroying any partial contents of dst on error isn't a bad idea, invalidating the handle would be an incompatible change. So revert that part of r24754. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24988 dc483132-0cff-0310-8789-dd5450dbe970
*	Cosmetic fixes to preauth_plugin.h from Linus Nordberg	Greg Hudson	2011-06-22	1	-2/+2
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24975 dc483132-0cff-0310-8789-dd5450dbe970
*	Fix the build and doxygen markup	Zhanna Tsitkov	2011-06-22	1	-6/+4
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24974 dc483132-0cff-0310-8789-dd5450dbe970
*	Formatting and editorial pass over krb5.hin doxygen markup	Greg Hudson	2011-06-22	1	-2356/+2482
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24973 dc483132-0cff-0310-8789-dd5450dbe970
*	Document that e_data can be used by KDB modules internally	Greg Hudson	2011-06-20	1	-0/+9
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24972 dc483132-0cff-0310-8789-dd5450dbe970
*	Convert preauth_plugin.h to new plugin framework	Greg Hudson	2011-06-17	2	-416/+357
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	The preauth plugin interface was introduced in 1.6 but was never made a public API. In preparation for making it public in 1.10, convert it to use the new plugin framework. This will require changes to any existing preauth plugins. A number of symbols were renamed for namespace cleanliness, and abstract types were introduced for module data and module per-request data for better type safety. On the consumer end (preauth2.c and kdc_preauth.c), this is a pretty rough conversion. Eventually we should create proper consumer APIs with module handles, and the flat lists of preauth types should hold pointers to module handles rather than copies of the vtables. The built-in preauth type handlers should then be converted to built-in module providers linked into the consumer code (as should encrypted challenge, since it has no external dependencies). None of this will impact the provider API for preauth plugins, so it can wait. ticket: 6921 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24970 dc483132-0cff-0310-8789-dd5450dbe970
*	Add k5_plugin_register_dyn internal API	Greg Hudson	2011-06-17	3	-2/+17
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24969 dc483132-0cff-0310-8789-dd5450dbe970
*	Add localization infrastructure	Greg Hudson	2011-06-10	2	-7/+18
\| \| \| \| \| \| \| \| \|	Adds build system logic, translation macros in k5-platform.h, and bindtextdomain calls in libkrb5 initialization. ticket: 6918 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24959 dc483132-0cff-0310-8789-dd5450dbe970
*	Revert r5233 and mark get_age as deprecated in the DAL documentation.	Greg Hudson	2011-05-20	1	-7/+2
\| \| \| \| \| \| \| \|	We do not need to check reply retransmissions for staleness any more than TCP needs to. A genuinely new request will have a different nonce. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24936 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated documentation for krb5_c_ and sensauth API.	Zhanna Tsitkov	2011-05-19	1	-525/+328
\| \| \| \| \| \|	Also, removed the second declaration of krb5_c_string_to_key_with_params() from string_to_key.c git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24935 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated documentation for krb5_rd_ API	Zhanna Tsitkov	2011-05-16	1	-168/+161
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24933 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated documentation for PAC API. Moved PAC type definitions into krb5.hin	Zhanna Tsitkov	2011-05-13	1	-0/+106
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24928 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated documentation for krb5_mk_ functions	Zhanna Tsitkov	2011-05-12	1	-176/+190
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24927 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated documentation for krb5_init_creds_ function family	Zhanna Tsitkov	2011-05-09	1	-18/+112
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24920 dc483132-0cff-0310-8789-dd5450dbe970
*	Use internal crypto functions directly from util_crypt.c, avoiding a	Greg Hudson	2011-05-09	1	-2/+0
\| \| \| \| \| \|	dependency on the accessor. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24918 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated documentation: added usage example for krb5_tkt_creds family, ↵	Zhanna Tsitkov	2011-05-05	1	-91/+105
\| \| \| \| \| \|	removed "(unused)" string from the comments and other cleanup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24913 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated API documentation with the comments mostly related to verify and ↵	Zhanna Tsitkov	2011-05-03	1	-250/+172
\| \| \| \| \| \|	convert routines git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24910 dc483132-0cff-0310-8789-dd5450dbe970
*	Add poll support to sendto_kdc.c so that it can work in processes with	Greg Hudson	2011-05-02	1	-3/+12
\| \| \| \| \| \| \| \| \| \|	large numbers of open files. Move krb5int_cm_call_select() to a separate file so that the poll support doesn't interfere with net-server.c's continuing use of select. ticket: 6905 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24908 dc483132-0cff-0310-8789-dd5450dbe970
*	r24899 moved the declarations of krb5int_mk_chpw_req and related	Greg Hudson	2011-05-02	1	-29/+0
\| \| \| \| \| \| \| \| \| \|	functions from k5-int.h to int-proto.h. The removal of those declarations from k5-int.h was accidentally omitted from the commit; commit it now. ticket: 6893 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24907 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated documentation of krb5_copy_ , krb5_free_ and krb5_kt_ functions	Zhanna Tsitkov	2011-05-01	1	-191/+206
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24906 dc483132-0cff-0310-8789-dd5450dbe970
*	Updated the documentation for API related to the credentials caches and ↵	Zhanna Tsitkov	2011-04-28	1	-137/+140
\| \| \| \| \| \|	their collections git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24905 dc483132-0cff-0310-8789-dd5450dbe970
*	Do not reference krb5_chpw_result_code_string in	Greg Hudson	2011-04-25	1	-3/+1
\| \| \| \| \| \| \|	krb5_change_password() documentation, as it is not a public function. Do not falsely claim that the result_code_string parameter is unused. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24898 dc483132-0cff-0310-8789-dd5450dbe970
*	Close comment in #endif for KRB5_DEPRECATED to avoid warning of	Ezra Peisach	2011-04-22	1	-1/+1
\| \| \| \| \| \|	/* in open comment. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24894 dc483132-0cff-0310-8789-dd5450dbe970