| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
| |
Remove krb4 build system references and conditionals.
Move des425 header stuff referenced by des_int.h into des_int.h.
Remove krb4 test cases.
ticket: 6303
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21544 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15878 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
| |
functions static. Removed unused CoreServices include. Changed TICKET_GRANTING_TICKET to new macro: KRB_TICKET_GRANTING_TICKET. * change_password.c: Added check of inputs to krb_change_password so we don't crash on bad inputs. Call des_string_to_key not mit_password_to_key on all platforms because we don't want to prompt for a password. * FSp-glue.c: Added prototypes for deprecated functions. Changed to use KfM's FSSpecToPOSIXPath which correctly handles FSSpecs where the file does not exist. * g_in_tkt.c: Added explanatory comments. Made TARGET_OS_MAC sections a little smaller and easier to read. * g_pw_in_tkt.c: Only prompt when we are not using the login library. This is so that Darwin builds do prompt but KfM builds don't. * g_svc_in_tkt.c, g_tkt_svc.c: Changed to use KRB_TICKET_GRANTING_TICKET. * kadm_net.c: Use autoconf variable krb5_sigtype instead of sigtype, which doesn't seem to be defined on Mac OS X. * krb4int.h, RealmsConfig-glue.c: Removed krb_get_stk(). * rd_req.c: Added #ifdef KRB4_USE_KEYTAB to avoid unused variable warning when KRB4_USE_KEYTAB is not defined. * sendauth.c: Fixed warnings with casts
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15254 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Implement *_in_tkt_creds, mk_req_creds, and rd_req_int functions.
Implement KfM krb4 kadm password changing, mostly by pulling in the
client side of the kadm library into the krb4 library.
Do some more header file cleanup of des.h and krb.h.
Remove some ancient krb4 dead weight.
Some Mac-specific functionality still needs to be merged.
ticket: 1189
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15014 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
| |
FAR/NEAR specs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13786 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13775 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
KRB5_DLLIMP/KRB5_CALLCONV definitions for function with exported
prototype in krb.h.
* g_cnffile.c (krb__get_srvtabname, krb__v5_get_file): Declare
argument as const.
* g_svc_in_tkt.c, put_svc_key.c, rd_req.c, rd_svc_key.c: Get rid
of krb__get_srvtabname() prototype - in krb.h now.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13418 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* g_svc_in_tkt.c (krb_svc_init, krb_svc_init_preauth): Declare as
returning int.
* gethostname.c: Include unistd.h for gethostname() prototype.
* getst.c: Include unistd.h for read() prototype.
* in_tkt.c (in_tkt): Cast arguments to debugging printf to int
from uid_t to match format statement.
* kname_parse.c: Declare k_isname() and k_isinst() as returning
int. Cleanup assigments in conditionals.
* kuserok.c (kuserok): Cleanup assignment in conditional.
* log.c (krb_set_logfile): Declare function as void.
* klog.c (kset_logfile): Likewise.
* pkt_clen.c (pkt_clen): Declare as returning int.
* kntoln.c (krb_kntoln): Likewise.
* fgetst.c (fgetst): Likewise.
* rd_req.c: Declare local variable only if KRB_CRYPT_DEBUG defined.
* recvauth.c: Include stdlib.h and unistd.h for read() and atoi()
prototypes.
* send_to_kdc.c: Include unistd.h for close() prototype.
* sendauth.c (krb_sendauth): Clean up assignment in conditional.
* tkt_string.c (tkt_string): Likewise
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13256 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
string triples for principals.
* prot_kdc.c: New file; contains encoders and decoders
(eventually) for the KDC's use.
* Makefile.in (OBJS, SRCS): Add prot_common.o, prot_kdc.o.
* cr_auth_repl.c: KRB4_PUT{16,32} -> KRB4_PUT{16,32}BE.
* cr_ciph.c: Include prot.h. KRB4_PUT32 -> KRB4_PUT32BE.
* cr_err_repl.c: KRB4_PUT32 -> KRB4_PUT32BE.
* cr_tkt.c: KRB4_PUT32 -> KRB4_PUT32BE.
* decomp_tkt.c: krb_strnlen -> krb4int_strnlen.
* g_ad_tkt.c: krb_strnlen -> krb4int_strnlen. KRB4_PUT32 ->
KRB4_PUT32BE. Properly skip date while parsing error.
* g_in_tkt.c: krb_strnlen -> krb4int_strnlen. KRB4_PUT32 ->
KRB4_PUT32BE. Properly skip date while parsing error.
* g_phost.c: Changes from audit. Actually bail out instead of
failing silently if h->h_name is too long.
* kname_parse.c: Changes from audit. Check overrun per character
processed.
* mk_auth.c: krb_strnlen -> krb4int_strnlen. KRB4_PUT32 ->
KRB4_PUT32BE. Include prot.h.
* mk_err.c: KRB4_PUT32 -> KRB4_PUT32BE.
* mk_priv.c: KRB4_PUT32 -> KRB4_PUT32BE.
* mk_req.c: KRB4_PUT32 -> KRB4_PUT32BE.
* mk_safe.c: KRB4_PUT32 -> KRB4_PUT32BE.
* rd_req.c: krb_strnlen -> krb4int_strnlen.
* strnlen.c: Rename to krb4int_strnlen. Also include prot.h,
which is where strnlen is declared now.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12932 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* cr_auth_repl.c: Audit. Fix up copyright. Use new KRB4_PUT*
macros for encoding so output is always big-endian. Precompute
string lengths for better length-checking.
* cr_ciph.c: Audit. Fix up copyright. Use new KRB4_PUT* macros
for encoding so that output is always big-endian. Precompute
string lengths for better length-checking. Zero out the key
schedule after encrypting.
* cr_death_pkt.c: Audit. Fix up copyright. Precompute string
lengths for better length-checking.
* cr_err_repl.c: Audit. Fix up copyright. Use moving pointer to
do encoding. Precompute string lengths for better
length-checking. Use KRB4_PUT* macros so that output is always
big-endian.
* cr_tkt.c: Audit. Fix up copyright. Use KRB4_PUT* macros for
encoding so that output is always big-endian. Zero out the key
schedule after encrypting.
* decomp_tkt.c: Audit. Fix up copyright. Use krb_strnlen() for
actually detecting string length errors. Use a struct in_addr to
retrieve the IP address and assign it to paddress for return. Use
KRB4_GET* macros for decoding to avoid byteswapping problems.
Zero out session key and decrypted ticket on error.
* g_ad_tkt.c: Audit. Fix up copyright. Break out parsing of
decrypted KDC reply packet into a separate function to simplify
error handling somewhat. Precompute string lengths for better
length-checking. Use KRB4_PUT* macros for encoding so that output
is always big-endian. Use KRB4_GET* macros for decoding to avoid
byteswapping problems. Stomp on session key on error conditions.
* g_in_tkt.c: Audit. Fix up copyright. Precompute string lengths
for better length-checking. Use KRB4_PUT* macros for encoding so
output is always big-endian. Use KRB4_GET* macros for decoding to
avoid byteswapping problems. Use krb_strnlen() to actually detect
string length errors. Zero out session key and decrypted KDC
reply once they're no longer useful.
* mk_auth.c: Audit. Fix up copyright. Use moving pointer for
encoding. Use KRB4_PUT* macros for encoding to avoid alignment
issues with using memcpy(). Use KRB4_GET* macros for decoding to
avoid alignment issues with using memcpy().
* mk_err.c: Audit. Fix up copyright. Precompute string length.
Use KRB4_PUT* macros to always encode as big-endian.
* mk_preauth.c: Audit. Zero out key schedule after encryption.
* mk_priv.c: Audit. Fix up copyright. Use KRB4_PUT* macros for
encoding so output is always big-endian.
* mk_req.c: Audit. Fix up copyright. Use moving pointer for
encoding. Precompute string lengths for better length-checking.
Use KRB4_PUT* macros for encoding so output is always big-endian.
Zero out session key after encryption.
* mk_safe.c: Audit. Fix up copyright. Use KRB4_PUT* macros for
encoding so output is always big-endian.
* rd_err.c: Audit. Fix up copyright. Use KRB4_GET* macros to
avoid alignment issues.
* rd_preauth.c: Audit. Zero key schedule after decrypting.
* rd_priv.c: Audit. Fix up copyright. Use KRB4_GET* macros to
avoid alignment issues.
* rd_req.c: Audit. Fix up copyright.
* send_to_kdc.c (send_recv): Actually set rpkt->length, since some
callers actually use it now to do length-checking.
* strnlen.c: New file; compute string length, bounded by a
maximum. If the maximum number of characters has been read
without encountering a NUL character, return -1. This makes
overflow checking of strings in buffers much easier.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12859 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
| |
* g_tkt_svc.c (CredIsExpired): Call life_to_time().
* lifetime.c: Add comments for lifetimes[]. Add provisions for
compile-time switching of short lifetimes. Fix sign bug in
time_to_life().
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12727 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12442 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
| |
compiles cleanly when KRB4_USE_KEYTAB is not defined.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11158 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
the appropaite krb5 keytab file for the key to be used by the krb4
library.
rd_req.c (krb_rd_req): If the appropriate key cannot be found in the
krb4 srvtab file, try calling krb54_get_service_keyblock.
decomp_tkt.c (dcmp_tkt_int):
g_in_tkt.c (krb_mk_in_tkt_preauth):
g_ad_tkt.c (get_ad_tkt):
pkt_clen.c (pkt_clen):
rd_err.c (krb_rd_err):
rd_priv.c (krb_rd_priv):
rd_req.c (krb_rd_req):
rd_safe.c (krb_rd_safe): Use krb4_swab32 and krb4_swab16 instead of
swap_u_long and swap_u_short. The new byte swapping routines are
faster and cleaner.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11067 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11001 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
| |
* mk_priv.c (krb_mk_priv): Fix up call to pcbc_encrypt.
* mk_safe.c (krb_mk_safe): Fix up call to quad_cksum.
* mk_req.c (krb_mk_req): Fix up call to pcbc_encrypt.
* rd_req.c (krb_rd_req): Fix up call to pcbc_encrypt.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@10295 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
| |
(including application server routines, such as krb_rd_req)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@9883 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
| |
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7518 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
| |
KRB4_32 instead of long.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@6177 dc483132-0cff-0310-8789-dd5450dbe970
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
(it's a char[] and takint address of it is redundant)
* recvauth.c (krb_recvauth): remove spurious & in front of
reference to kdata->session
* rd_req.c (krb_rd_req): remove spurious & in front of reference
to ad->session
* g_in_tkt.c(decrypt_tkt): remove spurious & in front of reference
to key (it is a C_Block and taking address of it is
redundant)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@5719 dc483132-0cff-0310-8789-dd5450dbe970
|
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@5537 dc483132-0cff-0310-8789-dd5450dbe970
|
