| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
| |
Remove krb4 build system references and conditionals.
Move des425 header stuff referenced by des_int.h into des_int.h.
Remove krb4 test cases.
ticket: 6303
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21544 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@18706 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
session key. Zero the key derived from the new password.
* mk_req.c (krb_mk_req): Explicitly zero the session key.
(krb_mk_req_creds_prealm): Don't zero the session key, in case the
caller wants to make use of it.
ticket: 1546
status: open
target_version: 1.3
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15543 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Implement *_in_tkt_creds, mk_req_creds, and rd_req_int functions.
Implement KfM krb4 kadm password changing, mostly by pulling in the
client side of the kadm library into the krb4 library.
Do some more header file cleanup of des.h and krb.h.
Remove some ancient krb4 dead weight.
Some Mac-specific functionality still needs to be merged.
ticket: 1189
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15014 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14644 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
| |
FAR/NEAR specs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13786 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13775 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
krb_svc_init_preauth, krb_get_svc_in_tkt_preauth, kset_logfile,
krb_log, krb_set_logfile, krb_set_lifetime, month_sname,
krb_rd_preauth, krb_net_rd_preauth, krb_net_rd_sendauth,
krb_stime, krb_start_session, krb_end_session,
krb_get_default_user, krb_set_default_user.
* ad_print.c, g_svc_in_tkt.c, klog.c, log.c, mk_req.c,
month_sname.c, rd_preauth.c, sendauth.c, stime.c, unix_glue.c:
Include krb4int.h for prototypes.
* decomp_tkt.c: Include krb54proto.h for decomp_tkt_krb5()
prototype.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13517 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
string triples for principals.
* prot_kdc.c: New file; contains encoders and decoders
(eventually) for the KDC's use.
* Makefile.in (OBJS, SRCS): Add prot_common.o, prot_kdc.o.
* cr_auth_repl.c: KRB4_PUT{16,32} -> KRB4_PUT{16,32}BE.
* cr_ciph.c: Include prot.h. KRB4_PUT32 -> KRB4_PUT32BE.
* cr_err_repl.c: KRB4_PUT32 -> KRB4_PUT32BE.
* cr_tkt.c: KRB4_PUT32 -> KRB4_PUT32BE.
* decomp_tkt.c: krb_strnlen -> krb4int_strnlen.
* g_ad_tkt.c: krb_strnlen -> krb4int_strnlen. KRB4_PUT32 ->
KRB4_PUT32BE. Properly skip date while parsing error.
* g_in_tkt.c: krb_strnlen -> krb4int_strnlen. KRB4_PUT32 ->
KRB4_PUT32BE. Properly skip date while parsing error.
* g_phost.c: Changes from audit. Actually bail out instead of
failing silently if h->h_name is too long.
* kname_parse.c: Changes from audit. Check overrun per character
processed.
* mk_auth.c: krb_strnlen -> krb4int_strnlen. KRB4_PUT32 ->
KRB4_PUT32BE. Include prot.h.
* mk_err.c: KRB4_PUT32 -> KRB4_PUT32BE.
* mk_priv.c: KRB4_PUT32 -> KRB4_PUT32BE.
* mk_req.c: KRB4_PUT32 -> KRB4_PUT32BE.
* mk_safe.c: KRB4_PUT32 -> KRB4_PUT32BE.
* rd_req.c: krb_strnlen -> krb4int_strnlen.
* strnlen.c: Rename to krb4int_strnlen. Also include prot.h,
which is where strnlen is declared now.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12932 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* cr_auth_repl.c: Audit. Fix up copyright. Use new KRB4_PUT*
macros for encoding so output is always big-endian. Precompute
string lengths for better length-checking.
* cr_ciph.c: Audit. Fix up copyright. Use new KRB4_PUT* macros
for encoding so that output is always big-endian. Precompute
string lengths for better length-checking. Zero out the key
schedule after encrypting.
* cr_death_pkt.c: Audit. Fix up copyright. Precompute string
lengths for better length-checking.
* cr_err_repl.c: Audit. Fix up copyright. Use moving pointer to
do encoding. Precompute string lengths for better
length-checking. Use KRB4_PUT* macros so that output is always
big-endian.
* cr_tkt.c: Audit. Fix up copyright. Use KRB4_PUT* macros for
encoding so that output is always big-endian. Zero out the key
schedule after encrypting.
* decomp_tkt.c: Audit. Fix up copyright. Use krb_strnlen() for
actually detecting string length errors. Use a struct in_addr to
retrieve the IP address and assign it to paddress for return. Use
KRB4_GET* macros for decoding to avoid byteswapping problems.
Zero out session key and decrypted ticket on error.
* g_ad_tkt.c: Audit. Fix up copyright. Break out parsing of
decrypted KDC reply packet into a separate function to simplify
error handling somewhat. Precompute string lengths for better
length-checking. Use KRB4_PUT* macros for encoding so that output
is always big-endian. Use KRB4_GET* macros for decoding to avoid
byteswapping problems. Stomp on session key on error conditions.
* g_in_tkt.c: Audit. Fix up copyright. Precompute string lengths
for better length-checking. Use KRB4_PUT* macros for encoding so
output is always big-endian. Use KRB4_GET* macros for decoding to
avoid byteswapping problems. Use krb_strnlen() to actually detect
string length errors. Zero out session key and decrypted KDC
reply once they're no longer useful.
* mk_auth.c: Audit. Fix up copyright. Use moving pointer for
encoding. Use KRB4_PUT* macros for encoding to avoid alignment
issues with using memcpy(). Use KRB4_GET* macros for decoding to
avoid alignment issues with using memcpy().
* mk_err.c: Audit. Fix up copyright. Precompute string length.
Use KRB4_PUT* macros to always encode as big-endian.
* mk_preauth.c: Audit. Zero out key schedule after encryption.
* mk_priv.c: Audit. Fix up copyright. Use KRB4_PUT* macros for
encoding so output is always big-endian.
* mk_req.c: Audit. Fix up copyright. Use moving pointer for
encoding. Precompute string lengths for better length-checking.
Use KRB4_PUT* macros for encoding so output is always big-endian.
Zero out session key after encryption.
* mk_safe.c: Audit. Fix up copyright. Use KRB4_PUT* macros for
encoding so output is always big-endian.
* rd_err.c: Audit. Fix up copyright. Use KRB4_GET* macros to
avoid alignment issues.
* rd_preauth.c: Audit. Zero key schedule after decrypting.
* rd_priv.c: Audit. Fix up copyright. Use KRB4_GET* macros to
avoid alignment issues.
* rd_req.c: Audit. Fix up copyright.
* send_to_kdc.c (send_recv): Actually set rpkt->length, since some
callers actually use it now to do length-checking.
* strnlen.c: New file; compute string length, bounded by a
maximum. If the maximum number of characters has been read
without encountering a NUL character, return -1. This makes
overflow checking of strings in buffers much easier.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12859 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12442 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* mk_priv.c (krb_mk_priv): Fix up call to pcbc_encrypt.
* mk_safe.c (krb_mk_safe): Fix up call to quad_cksum.
* mk_req.c (krb_mk_req): Fix up call to pcbc_encrypt.
* rd_req.c (krb_rd_req): Fix up call to pcbc_encrypt.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10295 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
| |
(including application server routines, such as krb_rd_req)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9883 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@5537 dc483132-0cff-0310-8789-dd5450dbe970
|
