summaryrefslogtreecommitdiffstats
path: root/src/kdc
Commit message (Collapse)AuthorAgeFilesLines
...
* kerberos_v4.c (process_v4): Check the length of the incoming V4 packetTheodore Tso1998-02-052-8/+40
| | | | | | | | | before copying it into the KTEXT_ST variable. (kerberos_v4): Make sure the strings in the V4 request structures aren't no longer than they are allowed to be. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10402 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5kdc.M: Document V4 mode handling [krb5-kdc/464].Ezra Peisach1998-01-282-14/+25
| | | | | | | Also removed references to kdb5_create and kdb5_stash replacing with kdb5_util. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10382 dc483132-0cff-0310-8789-dd5450dbe970
* main returns int, not void. ANSI X3.159-1989 2.1.2.2.1 says so, andEzra Peisach1998-01-212-1/+6
| | | | | | gcc now warns about it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10369 dc483132-0cff-0310-8789-dd5450dbe970
* * do_tgs_req.c: Add some explicit settings of errcode so that theTom Yu1998-01-162-0/+9
| | | | | | | cleanup code doesn't try to construct a bogus error reply, which was causing coredumps in the lookaside code. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10352 dc483132-0cff-0310-8789-dd5450dbe970
* * kerberos_v4.c: Don't include sys/socket.h or netdb.h, as krb.hTom Yu1997-12-122-2/+6
| | | | | | | already gets those and Ultrix doesn't protect them against multiple inclusion. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10334 dc483132-0cff-0310-8789-dd5450dbe970
* do_tgs_req.c (process_tgs_req): Add check to make sure cname and snameTheodore Tso1997-11-253-1/+15
| | | | | | | | | | are non-NULL when syslogging an error because the principals don't match. kdc_util.c (limit_string): Check to make sure the input string is non-NULL before operating on it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10307 dc483132-0cff-0310-8789-dd5450dbe970
* do_tgs_req.c (process_tgs_req): Only try to return a TGT for aTheodore Tso1997-11-142-1/+7
| | | | | | | "closer" realm if the request was for a TGT in the first place. [krb5-kdc/459] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10280 dc483132-0cff-0310-8789-dd5450dbe970
* * do_as_req.c (process_as_req): Reset master key after closing andEzra Peisach1997-11-122-0/+8
| | | | | | | reopening DB when KDC_UPDATES_KDB compiled in. [krb5-kdc/495 by Tony Mione] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10276 dc483132-0cff-0310-8789-dd5450dbe970
* kdc_util.c (kdc_process_tgs_req): If not using the reply cache,Theodore Tso1997-11-112-1/+9
| | | | | | properly handle a failure return from krb5_rd_req_decode_anyflag(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10270 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (main): Initialize kdc error table withEzra Peisach1997-10-092-0/+8
| | | | | | initialize_kdc_error_table(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10220 dc483132-0cff-0310-8789-dd5450dbe970
* Remove KRB5_USE_INET, HAS_UNISTD_H, HAS_SETVBUF, and replaceTom Yu1997-09-265-7/+17
| | | | | | | with appropriate autoconf-style symbols. See individual ChangeLogs for details. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10202 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_util.c (add_to_transited): Fix up memory leaks, clean outEzra Peisach1997-09-245-36/+110
| | | | | | | | | | | | | | new memory allocated, allocate buffers to max size needed. [based on krb5-kdc/461 by Ken Hornstein]. * rtest.c: Rewrite code to use context and current krb5_principal structure. * configure.in: Add KRB5_RUN_FLAGS * Makefile.in (rtest): Compile rtest and run during make check. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10201 dc483132-0cff-0310-8789-dd5450dbe970
* * kerberos_v4.c (check_princ): Add checks for V5 kdc flagsEzra Peisach1997-09-233-112/+170
| | | | | | | | | | including REQUIRES_PWCHANGE, DISALLOW_ALL_TIX, REQUIRES_PREAUTH. Adds support for parsing the V4 options. [krb5-kdc/464]. * main.c (main): Add option -4 to specify V4 handling mode. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10200 dc483132-0cff-0310-8789-dd5450dbe970
* * do_tgs_req.c (process_tgs_req): Initialize authtime to 0 so itEzra Peisach1997-08-183-5/+8
| | | | | | | | is set before potentially used in case the packet has an error. * kdc_preauth.c (get_sam_edata): Remove unused variables. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10183 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_util.h: Added prototype for setup_server_realm(). This functionEzra Peisach1997-08-183-112/+9
| | | | | | | | | is used in several files. * main.c (get_realm_port): Removed unused function. (setup_server_realm): Moved prototype to kdc_util.h git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10182 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_util.c:Tom Yu1997-07-303-1/+13
| | | | | | * main.c: Don't use an rcache. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10148 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (init_realm): Fix to use new ktkdbTom Yu1997-07-252-6/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10133 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_preauth.c (get_sam_edata): Don't goto cleanup if SAM is notTom Yu1997-07-152-5/+8
| | | | | | used; this prevents freeing an unallocated keyblock. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10115 dc483132-0cff-0310-8789-dd5450dbe970
* * do_as_req.c (process_as_req), do_tgs_req (process_tgs_req): UseTheodore Tso1997-05-305-6/+36
| | | | | | | | | | limit_string() to make sure the length of cname and sname are reasonable. * kdc_util.c (limit_string): New function which limits the strings that will end up in log files to "reasonable" lengths. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10091 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed missing ;Richard Basch1997-02-191-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9911 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_xfree cleanupRichard Basch1997-02-191-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9906 dc483132-0cff-0310-8789-dd5450dbe970
* Replace krb5_xfree with appropriate free routineRichard Basch1997-02-188-31/+27
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9905 dc483132-0cff-0310-8789-dd5450dbe970
* * kerberos_v4.c: Remove include of krb4-proto.hEzra Peisach1997-02-182-1/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9899 dc483132-0cff-0310-8789-dd5450dbe970
* Merge of libhack_branchTom Yu1997-02-093-28/+17
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9831 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: Remove logger.c target before copying over it to avoidRichard Basch1997-02-062-1/+8
| | | | | | permission problems. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9800 dc483132-0cff-0310-8789-dd5450dbe970
* * kdc_preauth.c (get_sam_edata): Use proper interface toEzra Peisach1997-01-022-2/+13
| | | | | | | krb5_db_get_principal. Also if SAM is not an option, do not return as a possible type to client. [krb5-kdc/310] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9712 dc483132-0cff-0310-8789-dd5450dbe970
* Merge V1_0_FREEZE_3 into the mainline. (Note this merge does *not*Theodore Tso1996-12-132-1/+10
| | | | | | include the doc subtree!!) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9632 dc483132-0cff-0310-8789-dd5450dbe970
* * [krb5-libs/149] only generate requests that you can actuallyMark Eichin1996-11-232-3/+21
| | | | | | | | | | | | handle. Tue Sep 3 22:53:56 1996 Mark Eichin <eichin@cygnus.com> * kdc_preauth.c (get_preauth_hint_list): detect ap->get_edata return status and don't pass back hint if it failed. (get_etype_info): malloc one more word in entry for end marker. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9543 dc483132-0cff-0310-8789-dd5450dbe970
* kdc_preauth.c (check_padata): Fixed error handling; in order forTheodore Tso1996-11-073-9/+34
| | | | | | | | | | | | | | check_preauth to return successfully, there must be at least one preauth which succeeded, and no REQUIRED preauth system which failed. If a preauth is marked SUFFICIENT, then the rest of the preauth list aren't checked. Fixed bug where when none of the preauth types were recognized, an error message corresponding to stack garbage was printed. main.c (argv): Check the error return from krb5_init_context(), and print an error message if necessary. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9323 dc483132-0cff-0310-8789-dd5450dbe970
* (initialize_realms): Remove rather pointless use of krb5.conf to findTheodore Tso1996-11-072-344/+323
| | | | | | | | | | the kdc.conf used to get the default port list. It's not useful for anything else, and will just confuse people. (init_realm): Reformat function to be readable. Add error checking to call of krb5_read_realm_params. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9313 dc483132-0cff-0310-8789-dd5450dbe970
* Added magic number to initializer of nolrentryTheodore Tso1996-10-192-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9216 dc483132-0cff-0310-8789-dd5450dbe970
* remove ".so man1/header.doc" and extra args to .THTom Yu1996-09-102-2/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9069 dc483132-0cff-0310-8789-dd5450dbe970
* Tweak to manpage from CygnusJeff Bigler1996-08-291-4/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9013 dc483132-0cff-0310-8789-dd5450dbe970
* Treat 0 time as unexpired for krb4 principalsSam Hartman1996-08-232-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8973 dc483132-0cff-0310-8789-dd5450dbe970
* * Better support for Athena Kerberos if installedSam Hartman1996-08-053-6/+15
| | | | | | * Linux shared lib fix git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8903 dc483132-0cff-0310-8789-dd5450dbe970
* Add -ldyn as kadm5 shared library depends upon itEzra Peisach1996-08-012-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8888 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: Build logger.o from the libkadm5 directory. ThisTheodore Tso1996-07-243-2/+34
| | | | | | | | | | | | is prepatory work towards eliminating the dependency on libkadm5. Ultimately we will probably need to rethink how the library structure for krb5.... configure.in: Add -lgssapi and -lgssrpc to libraries linked with krb5kdc since they are needed for shared libraries. This is a horrible hack.... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8788 dc483132-0cff-0310-8789-dd5450dbe970
* this commit includes all the changes on the OV_9510_INTEGRATION andMarc Horowitz1996-07-222-1/+5
| | | | | | | | | OV_MERGE branches. This includes, but is not limited to, the new openvision admin system, and major changes to gssapi to add functionality, and bring the implementation in line with rfc1964. before committing, the code was built and tested for netbsd and solaris. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8774 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: remove ref to ET_RULESTom Yu1996-06-142-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8360 dc483132-0cff-0310-8789-dd5450dbe970
* cvsignore hackeryTom Yu1996-06-101-1/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8288 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (finish_realm): Do not invoke krb5_finish_key ifEzra Peisach1996-06-102-1/+7
| | | | | | encryption block is not set. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8283 dc483132-0cff-0310-8789-dd5450dbe970
* Mark's changes for ticket validationKen Raeburn1996-05-072-2/+19
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7918 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed the abstraction violation, where the code knew the details about theRichard Basch1996-05-062-12/+15
| | | | | | cryptosystem structure. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7907 dc483132-0cff-0310-8789-dd5450dbe970
* add SAM preauth extensible snk4 supportMark Eichin1996-04-092-1/+436
| | | | | | add AFS3 preauth response and salt hooks git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7766 dc483132-0cff-0310-8789-dd5450dbe970
* Add kdc_preauth.cEzra Peisach1996-03-201-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7680 dc483132-0cff-0310-8789-dd5450dbe970
* Move com_err.h after k5-int.h include so that autoconf.h is includedEzra Peisach1996-02-282-1/+5
| | | | | | which handles the varargs issue. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7571 dc483132-0cff-0310-8789-dd5450dbe970
* *main.c:Richard Basch1996-02-273-19/+31
| | | | | | | | | | | | | | Do not repeat random number generator initializations, as memory is allocated and never reclaimed. Also fixed the V4 random number generator initialization (a DES_CBC_CRC random number is generated and used as a seed for the V4 routine, but the generation function was being called with the wrong arguments). * do_as_req.c: Memory was occassionally being freed twice because the pointer was not re-initialized to NULL after it was freed. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7553 dc483132-0cff-0310-8789-dd5450dbe970
* * main.c (initialize_realms): missing indirection for conf_val inMark Eichin1996-02-252-2/+7
| | | | | | | alternate profile code. (This should really be in a library...) (thanks ezra!) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7544 dc483132-0cff-0310-8789-dd5450dbe970
* Sat Feb 3 22:37:55 1996 Mark Eichin <eichin@cygnus.com>Mark Eichin1996-02-242-3/+10
| | | | | | | * network.c (add_port): sunos realloc doesn't handle a NULL pointer, so protect with a macro. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7508 dc483132-0cff-0310-8789-dd5450dbe970
* one step closer to *really* only depending on krb5.conf. (I don't knowMark Eichin1996-02-242-1/+26
| | | | | | | | | | | | of any others, but this was a big one.) Sat Feb 10 02:46:27 1996 Mark Eichin <eichin@cygnus.com> * main.c (initialize_realms): look for [kdc] profile=path for default alternate kdc profile (environment variable still overrides it.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7507 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-10-01 02:37:18 +0000