summaryrefslogtreecommitdiffstats
path: root/src/kdc
Commit message (Expand)AuthorAgeFilesLines
* Remove some declarations from kdc_preauth.c which are no longer neededGreg Hudson2011-03-021-9/+0
* Make dependGreg Hudson2011-02-251-50/+43
* KDC denial of service attacks [MITKRB5-SA-2011-002 CVE-2011-0281 CVE-2011-028...Tom Yu2011-02-091-1/+2
* Implement restrict_anonymous_to_tgt realm flagGreg Hudson2010-12-013-5/+43
* krb5_get_error_message cannot return NULL, and returns "Success" onGreg Hudson2010-11-012-18/+12
* securID code fixesSam Hartman2010-10-191-0/+1
* Remove KDC replay cacheGreg Hudson2010-10-196-111/+3
* CVE-2010-1322 KDC uninitialized pointer crash in authorization data handling ...Tom Yu2010-10-051-4/+4
* Add an error to be returned by a preauth mechanism indicating that the KDC sh...Sam Hartman2010-10-012-1/+4
* Remove support for the old pa-sam-challenge and pa-sam-responseSam Hartman2010-10-011-725/+0
* Slight revisions to create_workers() in the KDC:Greg Hudson2010-09-191-6/+9
* KDC worker processes featureGreg Hudson2010-09-174-7/+160
* kdb: store mkey list in context and permit NULL mkey for kdb_dbe_decrypt_key_...Sam Hartman2010-09-155-152/+10
* Make dependGreg Hudson2010-09-081-36/+43
* Properly search for MANDATORY-FOR-KDC authdata elements. Reported byGreg Hudson2010-09-021-1/+1
* Fix an account lockout error-handling regression by converting theGreg Hudson2010-08-291-11/+23
* In AS replies, set the key-expiration field to the minimum of accountGreg Hudson2010-08-121-1/+12
* Add check_allowed_to_delegate to the DAL with a corresponding libkdb5Greg Hudson2010-07-151-33/+4
* Add refresh_config to the DAL with a corresponding libkdb5 API,Greg Hudson2010-07-151-3/+1
* Addendum to r24185: make audit_as_req return void, since it's anGreg Hudson2010-07-131-2/+2
* Add audit_as_req to the DAL with a corresponding libkdb5 API,Greg Hudson2010-07-131-27/+2
* Add check_policy_as and check_policy_tgs to the DAL table withGreg Hudson2010-07-132-79/+16
* Add check_transited_realms to the DAL table with a correspondingGreg Hudson2010-07-121-25/+4
* Add sign_authdata to the DAL table with a corresponding libkdb5 API,Greg Hudson2010-07-123-83/+7
* Create a KRB5_KDB_FLAG_ALIAS_OK to control whether plugin modulesGreg Hudson2010-07-082-0/+3
* Add a missing break in the parsing of krb5kdc's -P option. ReportedGreg Hudson2010-07-071-0/+1
* Remove count parameters from get_principal, put_principal,Greg Hudson2010-07-065-305/+173
* Use KRB5_PLUGIN_OP_NOTSUPP uniformly as the error code for operationsGreg Hudson2010-07-033-5/+5
* Remove verify_master_key from the DAL table, as well as its associatedGreg Hudson2010-07-021-17/+0
* Rename krb5_dbekd_encrypt_key_data and krb5_dbekd_decrypt_key_data toGreg Hudson2010-07-024-23/+20
* Remove the set_master_key and get_master_key DAL interfaces and theirGreg Hudson2010-07-021-5/+0
* make dependGreg Hudson2010-06-071-62/+66
* Don't include nul characters in the text we send with krb-errorGreg Hudson2010-05-242-2/+2
* Eliminate the unused realm_dbname field from krb5_realm_paramsGreg Hudson2010-05-042-3/+0
* memory leak in process_tgs_req in r23724Tom Yu2010-04-301-1/+3
* Eliminate a non-useful NULL check in the KDC's dispatch() function.Greg Hudson2010-04-221-1/+1
* Fix CVE-2010-1230 (MITKRB5-SA-2010-004) double-free in KDC triggeredTom Yu2010-04-201-0/+2
* Merge users/raeburn/branches/network-mergeKen Raeburn2010-03-179-1829/+177
* handle NT_SRV_INST in service principal referralsTom Yu2010-03-161-0/+1
* Ignore improperly encoded signedpath AD elementsGreg Hudson2010-03-051-1/+5
* The TGS code was not freeing authdata. This is an old leak which wasGreg Hudson2010-02-181-2/+3
* MITKRB5-SA-2010-001 CVE-2010-0283 KDC denial of serviceTom Yu2010-02-163-1/+8
* Followon fixes to r23712:Greg Hudson2010-02-105-9/+14
* enc_padata can include empty sequenceSam Hartman2010-02-095-84/+61
* Fix cross-realm handling of AD-SIGNEDPATHGreg Hudson2010-02-053-7/+19
* Get rid of kdb_ext.h and allow out-of-tree KDB pluginsGreg Hudson2010-01-272-56/+48
* Simplify and fix FAST check for keyed checksum typeGreg Hudson2010-01-121-15/+4
* Always treat anonymous as preauth requiredSam Hartman2010-01-071-0/+1
* Make preauth_module_dir override, rather than supplement, theGreg Hudson2010-01-071-33/+10
* Add preauth_module_dir support to the KDC preauth module loaderGreg Hudson2010-01-041-3/+44
generated by cgit (git 2.34.1) at 2026-01-07 07:21:46 +0000