summaryrefslogtreecommitdiffstats
path: root/src/kdc/ChangeLog
Commit message (Collapse)AuthorAgeFilesLines
...
* this commit includes all the changes on the OV_9510_INTEGRATION andMarc Horowitz1996-07-221-0/+4
| | | | | | | | | OV_MERGE branches. This includes, but is not limited to, the new openvision admin system, and major changes to gssapi to add functionality, and bring the implementation in line with rfc1964. before committing, the code was built and tested for netbsd and solaris. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8774 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: remove ref to ET_RULESTom Yu1996-06-141-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8360 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (finish_realm): Do not invoke krb5_finish_key ifEzra Peisach1996-06-101-0/+5
| | | | | | encryption block is not set. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8283 dc483132-0cff-0310-8789-dd5450dbe970
* Mark's changes for ticket validationKen Raeburn1996-05-071-0/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7918 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed the abstraction violation, where the code knew the details about theRichard Basch1996-05-061-0/+5
| | | | | | cryptosystem structure. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7907 dc483132-0cff-0310-8789-dd5450dbe970
* Move com_err.h after k5-int.h include so that autoconf.h is includedEzra Peisach1996-02-281-0/+4
| | | | | | which handles the varargs issue. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7571 dc483132-0cff-0310-8789-dd5450dbe970
* *main.c:Richard Basch1996-02-271-0/+13
| | | | | | | | | | | | | | Do not repeat random number generator initializations, as memory is allocated and never reclaimed. Also fixed the V4 random number generator initialization (a DES_CBC_CRC random number is generated and used as a seed for the V4 routine, but the generation function was being called with the wrong arguments). * do_as_req.c: Memory was occassionally being freed twice because the pointer was not re-initialized to NULL after it was freed. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7553 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (initialize_realms): missing indirection for conf_val inMark Eichin1996-02-251-0/+5
| | | | | | | alternate profile code. (This should really be in a library...) (thanks ezra!) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7544 dc483132-0cff-0310-8789-dd5450dbe970
* Sat Feb 3 22:37:55 1996 Mark Eichin <eichin@cygnus.com>Mark Eichin1996-02-241-0/+5
| | | | | | | * network.c (add_port): sunos realloc doesn't handle a NULL pointer, so protect with a macro. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7508 dc483132-0cff-0310-8789-dd5450dbe970
* one step closer to *really* only depending on krb5.conf. (I don't knowMark Eichin1996-02-241-0/+6
| | | | | | | | | | | | of any others, but this was a big one.) Sat Feb 10 02:46:27 1996 Mark Eichin <eichin@cygnus.com> * main.c (initialize_realms): look for [kdc] profile=path for default alternate kdc profile (environment variable still overrides it.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7507 dc483132-0cff-0310-8789-dd5450dbe970
* kerberos_v4.c: Better DES key validation.Richard Basch1996-02-221-0/+8
| | | | | | | main.c: Don't assume master key is DES for initializing the V4 randkey generator; use a random key from the DES_CBC_CRC generator as the seed. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7499 dc483132-0cff-0310-8789-dd5450dbe970
* kerberos_v4.c (kerberos_v4): Use strong random number generatorTheodore Tso1996-02-211-0/+6
| | | | | | main.c (main): Initialize Kerberos V4's random number generator. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7491 dc483132-0cff-0310-8789-dd5450dbe970
* * network.c (setup_network): strtol is good enough for portMark Eichin1996-01-271-0/+7
| | | | | | | | number, and sunos doesn't have strtoul (and nothing else in the tree uses it.) (add_port): use proper old-style definition. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7398 dc483132-0cff-0310-8789-dd5450dbe970
* * kerberos_v4.c : Remove mkvno for krb5_db_entryChris Provenzano1995-12-131-0/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7219 dc483132-0cff-0310-8789-dd5450dbe970
* * extern.h: Added a krb5_keytab to the realm context. The keytabChris Provenzano1995-12-121-0/+10
| | | | | | | | | | should be associated with a krb5_db_context which will make having a krb5_context unnecessary in the realm context. * kdc_util.c kdc_process_tgs_req(): Use the realm keytab instead of faking up a user-to-user key to pass to krb5_rd_req_decode(). * main.c: Added code to use the new database keytab routines. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7200 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_preauth.c return_padata(): Initialize local variable "size"Chris Provenzano1995-12-111-0/+5
| | | | | | to 0 before using it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7192 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_preauth.c: #@&^(!! Ultrix cc sucks. Typedef to functionTom Yu1995-12-011-0/+5
| | | | | | pointer rather than function prototype to avoid lossage. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7143 dc483132-0cff-0310-8789-dd5450dbe970
* Removed extra eblock argument from call to krb5_encode_kdc_repTheodore Tso1995-11-291-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7142 dc483132-0cff-0310-8789-dd5450dbe970
* Removed extra eblock argument from call to krb5_encode_kdc_repTheodore Tso1995-11-181-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7120 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_util.h: Added new prototypes for return_padata() and check_padata()Theodore Tso1995-11-141-0/+17
| | | | | | | | | | | | | | * kdc_preauth.c (return_padata): New function which calls out to each preauth type to see if it is necessary to return preauth data or not. (return_pw_salt): New function responsible for returning the KRB5_PW_SALT preauth information. * do_as_req.c (process_as_req): Move creation of the PW_SALT preauthentication step into kdc_preauth.c. Call return_pdata() which is responsible for all padata info which is returned by the KDC in the KRB_AS_REP message. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7103 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_preauth.c (get_etype_info): Added function to return theTheodore Tso1995-11-091-0/+12
| | | | | | | | | | | | etype_info preauth hint to the client. * kdc_util.c (get_salt_from_key): Added new function which determines the salting information from the krb5_key_data structure. * main.c (kdc_initialize_rcache): Replace use of krb5_clockskew with context->clockskew. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7073 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_util.c (): Added new helper functionsTheodore Tso1995-11-081-0/+22
| | | | | | | | | | | | | | | | | | | | | | dbentry_has_key_for_enctype(), dbentry_supports_enctype(), and select_session_keytype(). * kdc_preauth.c: Added support for the ENC_TIMESTAMP preauthentication scheme. * do_tgs_req.c (process_tgs_req): Fixed the keytype/enctype selection criteria for the server key, and the ticket session key. * do_as_req.c (process_as_req): Added calls to the kdc preauthentication verification routines. Fixed the keytype/enctype selection criteria for the client key, the server key, and the ticket session key. * main.c (finish_realm): Make sure all parts of the realm structure are freed properly. (main): Free the kcontext krb5_context. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7058 dc483132-0cff-0310-8789-dd5450dbe970
* kdc_preauth.c (get_preauth_hint_list): Fix missing indirection inTheodore Tso1995-10-111-1/+9
| | | | | | | | | | | | | get_hint_list. kdc_util.c (validate_as_request): Remove preauthentication check; this is handled in do_as_req.c do_as_req.c (process_as_request): Pass e_data to prepare_as_error so that the proper preauthentication hint list can be passed back to the client. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6960 dc483132-0cff-0310-8789-dd5450dbe970
* do_tgs_req.c (process_tgs_req): Use a slightly more compressed loggingTheodore Tso1995-10-061-0/+9
| | | | | | | | | | format. do_as_req.c (process_as_req): Unify the logging and error packet production, to make sure that both logging and an error packet is returned for each error condition. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6939 dc483132-0cff-0310-8789-dd5450dbe970
* network.c (setup_network):Theodore Tso1995-10-061-0/+21
| | | | | | | | | | | | | | | | | | | | | main.c (initialize_realms): Massive revamp of how the network ports are setup. The default port list for a realm is read from [kdcdefaults]/kdc_ports from the kdc.conf file. For each realm, a list of ports can be specified in [realms]/<realm>/kdc_ports. extern.h (kdc_realm_t): Remove realm_pport and realm_sport, and added realm_ports. do_tgs_req.c (process_tgs_req): do_as_req.c (process_as_req): dispatch.c (dispatch): Pass the portnumber of the incoming request down to process_as_req and process_tgs_req, instead of the boolean "is_secondary". kerberos_v4.c (kerb_get_principal, kerberos_v4): Fix gcc -Wall flames, by fixing signed vs. unsigned types. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6937 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (init_realm): strdup KRB5_KDB_M_NAME if we use it, toMark Eichin1995-09-181-0/+5
| | | | | | avoid free'ing a constant later. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6810 dc483132-0cff-0310-8789-dd5450dbe970
* Stop after finding the first TGS key which matches an entry in theTheodore Tso1995-09-151-0/+6
| | | | | | key/salt list. (Typo; added missing '!') git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6790 dc483132-0cff-0310-8789-dd5450dbe970
* When checking for master in tthe list of valid encryption types, do notEzra Peisach1995-09-101-0/+5
| | | | | | stop after checking the first one. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6748 dc483132-0cff-0310-8789-dd5450dbe970
* * do_as_req.c, do_tgs_req.c, kdc_util.c, kerberos_v4.c, main.c :Chris Provenzano1995-09-061-0/+4
| | | | | | s/keytype/enctype/g, s/KEYTYPE/ENCTYPE/g git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6709 dc483132-0cff-0310-8789-dd5450dbe970
* * do_as_req.c, do_tgs_req.c, kerberos_v4.c, main.c: Remove krb5_enctypeChris Provenzano1995-09-061-0/+6
| | | | | | references, and replace with krb5_keytype where appropriate. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6673 dc483132-0cff-0310-8789-dd5450dbe970
* Add const declarations to make remove warnings about convertingEzra Peisach1995-09-041-0/+6
| | | | | | | a pointer to const string to a non-const type. Make this change consistant throughout the sources. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6657 dc483132-0cff-0310-8789-dd5450dbe970
* kdc_preauth.c: New file, to contain the server-side preauthenticationTheodore Tso1995-09-021-0/+12
| | | | | | | | | | | | | routines. do_as_req.c (process_as_req): Move preauthentication code to kdc_preauth.c, for better modularity. do_as_req.c (prepare_error_as): Add new argument to this function so that the e_data field may be passed in and included in the KRB_ERROR messsage which is passed back to the user. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6656 dc483132-0cff-0310-8789-dd5450dbe970
* Use libkadm string handling routinesPaul Park1995-08-211-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6563 dc483132-0cff-0310-8789-dd5450dbe970
* Close and re-open the database after updating principal statsPaul Park1995-08-171-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6543 dc483132-0cff-0310-8789-dd5450dbe970
* Pass fds to krb5_lock_file() and krb5_unlock_file()Chris Provenzano1995-08-161-0/+5
| | | | | | | Add a missing #ifdef KRBCONF_KDC_MODIFIES_KDB for update_client and updating the database. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6536 dc483132-0cff-0310-8789-dd5450dbe970
* Describe previous changesPaul Park1995-08-151-0/+14
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6531 dc483132-0cff-0310-8789-dd5450dbe970
* Add missing variable when KRBCONF_KDC_MODIFIES_KDB onPaul Park1995-08-101-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6498 dc483132-0cff-0310-8789-dd5450dbe970
* do_as_req.c : Fix bug from new kdb changes.Chris Provenzano1995-08-031-0/+5
| | | | | | kerberos_v4.c : Use new db format. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6400 dc483132-0cff-0310-8789-dd5450dbe970
* Describe previous changesPaul Park1995-08-031-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6394 dc483132-0cff-0310-8789-dd5450dbe970
* Fix compiler complaints and remove dependence on mit-des.hPaul Park1995-07-271-0/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6337 dc483132-0cff-0310-8789-dd5450dbe970
* Use new kdb formatChris Provenzano1995-07-271-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6329 dc483132-0cff-0310-8789-dd5450dbe970
* git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6306 ↵Paul Park1995-07-171-0/+8
| | | | dc483132-0cff-0310-8789-dd5450dbe970
* Include netinet/in.hSam Hartman1995-07-141-0/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6293 dc483132-0cff-0310-8789-dd5450dbe970
* Reorganize KDC profile and network port handlingPaul Park1995-07-121-0/+15
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6287 dc483132-0cff-0310-8789-dd5450dbe970
* Add prototype for set_tgtkey. kdc now compiles cleanly withEzra Peisach1995-07-111-0/+4
| | | | | | -Wmissing_prototypes git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6275 dc483132-0cff-0310-8789-dd5450dbe970
* kerberos_v4.c: Add prototypes for compat_decrypt_key,Ezra Peisach1995-07-101-0/+16
| | | | | | | | | | | | | | | kerb_get_principal, check_princ, v4_klog network.c (process_packet): Make prog a const char * main.c: Add prototypes for find_realm_data, setup_server_realm, usage, request_exit, setup_signal_handlers, initialize_realms, finish_realms. kdc_util.h: Add prototypes for against_local_policy_as, against_local_policy_tgs, validate_as_request, validate_tgs_request, fetch_asn1_field, kdc_initialize_rcache, process_packet. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6274 dc483132-0cff-0310-8789-dd5450dbe970
* Also log L_KRB_PERR error messages, so we know when there are protocolTheodore Tso1995-07-081-0/+4
| | | | | | problems. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6269 dc483132-0cff-0310-8789-dd5450dbe970
* Describe previous changesPaul Park1995-07-071-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6263 dc483132-0cff-0310-8789-dd5450dbe970
* Add ability to switch between Berkeley and DBM for KDC databasePaul Park1995-06-301-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6214 dc483132-0cff-0310-8789-dd5450dbe970
* * kerberos_v4.c (check_princ): delete master_key_version check,Mark Eichin1995-06-291-0/+8
| | | | | | | | | | since we never actually set it. (main): elide original V4 server code to avoid confusion when looking for variable references. (type_2_v5err): reformat for 79 columns instead of 80 and conditionalize out since it is unused (though still informative.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6198 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-08 15:14:34 +0000