summaryrefslogtreecommitdiffstats
path: root/src/lib/gssapi/krb5
Commit message (Collapse)AuthorAgeFilesLines
...
* merge from 1.2 branchKen Raeburn2000-06-301-0/+274
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12471 dc483132-0cff-0310-8789-dd5450dbe970
* pullup from 1.2 branchKen Raeburn2000-06-2715-2110/+1138
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12442 dc483132-0cff-0310-8789-dd5450dbe970
* Check for existance of <memory.h>.Wilfredo Sanchez2000-06-018-0/+21
| | | | | | (from Nathan Neulinger <nneul@umr.edu>) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12332 dc483132-0cff-0310-8789-dd5450dbe970
* Change wsanchez@apple -> tritan@mitWilfredo Sanchez2000-06-011-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12331 dc483132-0cff-0310-8789-dd5450dbe970
* 2000-5-19 Alexandra Ellwood <lxs@mit.edu>Alexandra Ellwood2000-05-192-1/+10
| | | | | | | | | | | * acquire_cred.c: Changed to use krb5int_cc_default. This function supports the Kerberos Login Library and pops up a dialog if the cache does not contain valid tickets. This is used to automatically get a tgt before obtaining service tickets. Note that this should be an internal function because callers don't expect krb5_cc_default to pop up a dialog! (We found this out the hard way :-) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12293 dc483132-0cff-0310-8789-dd5450dbe970
* * wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix upTom Yu2000-04-082-5/+11
| | | | | | | | wrap_size_limit() to deal with integrity wrap tokens properly. The rfc1964 mech always pads and confounds regardless of whether confidentiality is requested. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12155 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c (krb5_gss_init_sec_context): Default to des-cbc-crcKen Raeburn2000-01-272-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11969 dc483132-0cff-0310-8789-dd5450dbe970
* * accept_sec_context.c (krb5_gss_accept_sec_context): get rid of unused varsKen Raeburn1999-10-272-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11884 dc483132-0cff-0310-8789-dd5450dbe970
* * k5seal.c (make_integ_token_v2): Set 'code' when malloc failsKen Raeburn1999-10-262-1/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11882 dc483132-0cff-0310-8789-dd5450dbe970
* log tritan's changesTom Yu1999-10-261-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11877 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up usage of CFLAGS, CPPFLAGS, DEFS, DEFINES, LOCAL_INCLUDES suchWilfredo Sanchez1999-10-261-1/+1
| | | | | | | that one can override CFLAGS from the command line without losing CPP search patchs and defines. Some associated Makefile cleanup. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11876 dc483132-0cff-0310-8789-dd5450dbe970
* copyright notice updates from 1.1 branchKen Raeburn1999-09-249-9/+36
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11853 dc483132-0cff-0310-8789-dd5450dbe970
* Improve rule to create gssapi include dir under windowsDanilo Almeida1999-05-192-7/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11466 dc483132-0cff-0310-8789-dd5450dbe970
* These are a bunch of intertwined changes to the windows build.Danilo Almeida1999-05-192-3/+12
| | | | | | | | | | | | | | | | | | | | | | | | This log message includes all of the different changes across several Makefile.in files (and win-pre.in and win-post.in): - Remove "-" from recursive windows make invocations so that we can bail on a build error. New MIGNORE option restores the previous bailing behavior. - Update windows readme to reflect current practices. - Add NO_OUTDIR synonym for NO_OUTPRE in windows build. - Top-level windows Makefile now builds util which now builds util/windows, util/et, and util/profile (instead of building them directly). - Remove trailing backslash from rule that creates the windows output dir. This backslash would cause the rule to always be invoked. - Move WCONFIG and WCONFIG_EXE definitions into win-pre.in. - Remove rules in include directory that blindly copy include header files from gssapi, et, and profile. Instead, use/add build rules to the components that generate them that copy only when the file changes. - Use dependencies in include/krb5 to copy header files instead of blindly copying them. Add !if 0/!endif wrapper to Unix version of the rules. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11464 dc483132-0cff-0310-8789-dd5450dbe970
* Do win32 build in subdirDanilo Almeida1999-05-102-46/+50
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11432 dc483132-0cff-0310-8789-dd5450dbe970
* set_ccache.c (gss_krb5_ccache_name): Add call to free the defaultTheodore Tso1999-04-302-0/+7
| | | | | | credential changing the ccache name. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11413 dc483132-0cff-0310-8789-dd5450dbe970
* Removed #include for gssapi_generic.h from gssapi_krb5.hMiro Jurisic1999-04-292-5/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11405 dc483132-0cff-0310-8789-dd5450dbe970
* wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix wrap_size limit soTheodore Tso1999-04-232-6/+20
| | | | | | | | that it correctly calculates its results, and underestimates the correct size instead of overestimating it, and not returning zero all the time. (Which it used to do after the March 25 fix.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11380 dc483132-0cff-0310-8789-dd5450dbe970
* gssapi_krb5.h, copy_ccache.c, get_tkt_flags.c, set_ccache.c: Make theTheodore Tso1999-04-175-20/+18
| | | | | | krb5 extension functions exportable in a Windows DLL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11367 dc483132-0cff-0310-8789-dd5450dbe970
* Built the krb5 specific extension function which allows an applicationTheodore Tso1999-04-171-0/+1
| | | | | | program to set the ccache location. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11366 dc483132-0cff-0310-8789-dd5450dbe970
* acquire_cred.c (krb5_gss_acquire_cred): Don't use strcmp to compareTheodore Tso1999-03-272-6/+21
| | | | | | against principal components (they aren't null terminated!) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11320 dc483132-0cff-0310-8789-dd5450dbe970
* gssapi_krb5.c: Rearrange OID's so that the V1V2 mechanism set returnsTheodore Tso1999-03-267-19/+51
| | | | | | | | | | | | | | | | | | | | | | | | all three mechanism ID's recognized by this implementation, with the RFC1964 OID first (and thus preferred). import_sec_context.c (krb5_gss_convert_static_mech_oid): Make the old convert_static_oid() function globally accessible with a namespace compliant name, since init_sec_context() needs to be able to use this function. indicate_mechs.c (krb5_gss_indicate_mechs): Return the v1v2 mechanism set OID, since we should return all the mechanisms that we support. init_sec_context.c (krb5_gss_init_sec_context): Make ctx->mech_used use a static OID, since it is returned by gss_inquire_context which must return a static OID. wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix bug where we would overestimate the size of the allowable input message by one byte, because we weren't passing the right estimate of the wrapped data to g_token_size(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11315 dc483132-0cff-0310-8789-dd5450dbe970
* Added extern "C" to gssapi_krb5.hMiro Jurisic1999-03-152-0/+13
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11289 dc483132-0cff-0310-8789-dd5450dbe970
* Now actually compilesMiro Jurisic1999-03-152-3/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11286 dc483132-0cff-0310-8789-dd5450dbe970
* Fix obviously missing variable declarationTheodore Tso1999-03-141-0/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11283 dc483132-0cff-0310-8789-dd5450dbe970
* Check in prototype for gss_krb5_ccache_name()Theodore Tso1999-03-141-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11280 dc483132-0cff-0310-8789-dd5450dbe970
* set_ccache.c (gss_krb5_ccache_name): Added new Krb5 specific interfaceTheodore Tso1999-03-123-0/+32
| | | | | | to set the default credentials cache name. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11266 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in (DLL_FILE_DEF): Tell the Makefile template that we areTheodore Tso1999-03-123-40/+49
| | | | | | | | building object files for the GSSAPI DLL. krb5_gss_glue.c: Change use of KRB5_DLLIMP to be GSS_DLLIMP. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11261 dc483132-0cff-0310-8789-dd5450dbe970
* accept_sec_context.c (krb5_gss_accept_sec_context): Eliminate doubleTheodore Tso1998-12-223-232/+219
| | | | | | | | | | | | | | | free of ap_req.data, and initialize ctypes to be NULL to avoid freeing a pointer to stack garbage when doing a V1 mechanism accept_sec_contxt. init_sec_context.c: Re-arrange program logic to simplify and factor out code; fix gss_init_sec_context() so that if the default OID is passed to the init_sec_context, it will use the V1 mechanism if a single DES enctype is used. Error handling was revamped to make it simpler and cleaner, and to assure that we don't have memory leaks on error returns. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11093 dc483132-0cff-0310-8789-dd5450dbe970
* Makefile.in: Set the myfulldir and mydir variables (which are relativeTheodore Tso1998-12-052-0/+7
| | | | | | to buildtop and thisconfigdir, respectively.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11084 dc483132-0cff-0310-8789-dd5450dbe970
* * k5unseal.c (kg2_unwrap_integ): Handle case of malloc(0)Ezra Peisach1998-11-062-13/+20
| | | | | | returning NULL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11018 dc483132-0cff-0310-8789-dd5450dbe970
* pull up 3des implementation from the marc-3des branchMarc Horowitz1998-10-3025-954/+3102
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11001 dc483132-0cff-0310-8789-dd5450dbe970
* * wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix to round downTom Yu1998-07-252-1/+8
| | | | | | | | by 8 even if the req_output_size-ohlen is a multiple of 8, since the wrap token is always padded regardless of whether it's a mutiple of 8 bytes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10737 dc483132-0cff-0310-8789-dd5450dbe970
* Replaced preprocessor symbol _MACINTOSH with macintosh, since macintosh is ↵Miro Jurisic1998-07-173-5/+5
| | | | | | the standard symbol defined by all Mac compiler (oh, sure, it doesn't have _. but at least it's always there) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10653 dc483132-0cff-0310-8789-dd5450dbe970
* k5unseal.c (kg_unseal): Clean up lint warningsTheodore Tso1998-07-026-29/+66
| | | | | | | | | | | | | | | accept_sec_context.c (krb5_gss_accept_sec_context): Don't return an error token if we can't provide the server name to the KRB5 error structure (because cred isn't initialized). gssapi_krb5.c, gssapi_krb5.h: Export the oid of static arrays as krb5_gss_oid_array since it's needed by gss_import_sec_context. import_sec_context.c: Fix up the OID of the mechanism in the imported security context so that we use the static OID if at all possible. This is needed since gss_inquire_context() must return a static OID. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10618 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo which caused import_name to incorrectly import names producedTheodore Tso1998-05-252-1/+7
| | | | | | by gss_export_name(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10579 dc483132-0cff-0310-8789-dd5450dbe970
* copy_ccache.c (gss_krb5_copy_ccache): Fix bugs in copy_ccache.c, whichTheodore Tso1998-05-254-10/+19
| | | | | | | | | never compiled cleanly (since it wasn't added to the Makefile correctly originally). k5seal.c (make_seal_token): Clean up -Wall flames git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10578 dc483132-0cff-0310-8789-dd5450dbe970
* inq_cred.c (krb5_gss_inquire_cred):Theodore Tso1998-05-2510-37/+58
| | | | | | | | | | | | | inq_context.c (krb5_gss_inquire_context): import_name.c (krb5_gss_import_name): export_name.c (krb5_gss_export_name): disp_name.c (krb5_gss_display_name): context_time.c (krb5_gss_context_time): acquire_cred.c (krb5_gss_acquire_cred): Clean up -Wall flames. indicate_mechs.c (krb5_gss_indicate_mechs): Return a dynamic OID set. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10577 dc483132-0cff-0310-8789-dd5450dbe970
* export_name.c (krb5_gss_export_name): Fix bug in gss_export_name. TheTheodore Tso1998-02-282-1/+7
| | | | | | | 2nd length field in the ASN.1 was 2 bytes bigger than it should have been. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10475 dc483132-0cff-0310-8789-dd5450dbe970
* Remove trailing slash from thisconfigdir. Change directory syntaxTom Yu1998-02-182-2/+7
| | | | | | used in BUILDTOP. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10464 dc483132-0cff-0310-8789-dd5450dbe970
* Change patch so that either mechanism is acceptedTheodore Tso1998-02-132-5/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10434 dc483132-0cff-0310-8789-dd5450dbe970
* accept_sec_context.c (krb5_gss_accept_sec_context): Always allow useTheodore Tso1998-02-132-0/+7
| | | | | | of the pre-RFC mechanism when accepting contexts. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10433 dc483132-0cff-0310-8789-dd5450dbe970
* * accept_sec_context.c (krb5_gss_accept_sec_context): Add lots ofTom Yu1998-02-132-15/+32
| | | | | | | | | | explicit assignments to major_status to ensure that we actually return an error when we mean to. This was previously preventing gssrpc authentication with the old ovsec_kadm interface from working because the gssrpc server side functions were failing to loop over a set of supplied credentials. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10428 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c: KLUDGE!! Add global variableTom Yu1998-02-122-1/+11
| | | | | | | krb5_gss_dbg_client_expcreds to allow the client library to send expired credentials for testing and debugging purposes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10426 dc483132-0cff-0310-8789-dd5450dbe970
* Mass makefile/configure.in build system revampTheodore Tso1998-02-123-8/+23
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10424 dc483132-0cff-0310-8789-dd5450dbe970
* wrap_size_limit.c (krb5_gss_wrap_size_limit): Fix bug where if theTheodore Tso1998-02-062-2/+15
| | | | | | | output header size is greater than the maximum requested output size, return 0 rather than a very large unsigned number. :-) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10413 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c (krb5_gss_init_sec_context): ActuallyTom Yu1998-01-312-5/+10
| | | | | | initialize now before calling make_ap_req. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10396 dc483132-0cff-0310-8789-dd5450dbe970
* * accept_sec_context.c (rd_and_store_for_creds): Don't mess withDan Winship1998-01-305-3/+74
| | | | | | | | | | | | krb5_cc_default--use a new mem-based ccache. * Makefile.in: * gssapi_krb5.h: * copy_ccache.c (gss_krb5_copy_ccache): Routine to copy a gss_cred_id_t (such as a forwarded creds) into an existing krb5_ccache. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10389 dc483132-0cff-0310-8789-dd5450dbe970
* accept_sec_context.c (krb5_gss_accept_sec_context): Will now obtainTheodore Tso1998-01-242-25/+38
| | | | | | default credentials if no credentials are given. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10375 dc483132-0cff-0310-8789-dd5450dbe970
* init_sec_context.c (make_ap_req): Enforce a stricter requirement onTheodore Tso1998-01-242-2/+27
| | | | | | | | | | the ticket expiration time of the credentials, since accept_sec_context doesn't use the timeskew fudge for checking ticket expirations. (krb5_gss_init_sec_context): Return GSS_S_NO_CRED when appropriate. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10374 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-09-29 07:28:18 +0000