summaryrefslogtreecommitdiffstats
path: root/src/lib/krb5/krb
Commit message (Collapse)AuthorAgeFilesLines
...
* Red Hat's krb5_princ_size fixesKen Raeburn2003-04-014-4/+23
| | | | | | | | ticket: 1397 status: open tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15312 dc483132-0cff-0310-8789-dd5450dbe970
* If the auth context does not have the DO_TIME flag set and no replaySam Hartman2003-04-012-1/+8
| | | | | | | | | cache is available, do not generate one. ticket: 1400 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15311 dc483132-0cff-0310-8789-dd5450dbe970
* * t_kerb.c: Only include krb.h if krb4 support compiled in,Ezra Peisach2003-03-092-0/+12
| | | | | | otherwise define ANAME_SZ, INST_SZ and REALM_SZ. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15271 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth2.c (pa_sam_2): Add intermediate size_t variable to holdTom Yu2003-03-062-1/+8
| | | | | | | | output of krb5_c_encrypt_length(). ticket: 1373 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15264 dc483132-0cff-0310-8789-dd5450dbe970
* * appdefault.c: Fix constness to avoid warning. * init_ctx.c: Do the same ↵Alexandra Ellwood2003-03-064-3/+11
| | | | | | stuff on the Mac as on Unix. * preauth2.c: Added cast to fix warning git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15258 dc483132-0cff-0310-8789-dd5450dbe970
* * srv_rcache.c (krb5_get_server_rcache): Fix missedTom Yu2003-03-052-1/+6
| | | | | | isinvalidrcname -> isvalidrcname. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15224 dc483132-0cff-0310-8789-dd5450dbe970
* Fix rcache character test introduced in last commitSam Hartman2003-03-051-2/+2
| | | | | | Ticket: 1370 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15222 dc483132-0cff-0310-8789-dd5450dbe970
* GSS_C_NO_CREDENTIAL should accept any principalSam Hartman2003-03-043-2/+13
| | | | | | | | | | | | | | | | If a context is accepted with GSS_C_NO_CREDENTIAL or if a credential is acquired with GSS_C_NO_NAME as the acceptor name then allow any principal in the keytab to be used as the acceptor name. This means that gss_inquire_cred can return GSS_C_NO_NAME from a credential. ticket: new Tags: enhancement cc: nicolas.williams@sun.com cc: krbdev@mit.edu git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15218 dc483132-0cff-0310-8789-dd5450dbe970
* Handle NULL result_string->data returned from error inTom Yu2003-02-252-2/+8
| | | | | | | | | | | | krb5_change_password(). The SAMDATA() macro in lib/krb5/krb/preauth2.c seems to already be fixed. KfM's kpasswd equivalent still needs to be dealt with. ticket: 1055 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15204 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo pointed out by jenselby in doc passSam Hartman2003-02-241-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15200 dc483132-0cff-0310-8789-dd5450dbe970
* The client sorts the enctype list returned by etype_info orderingSam Hartman2003-02-152-1/+77
| | | | | | | | | | | | enctypes that it requested or that are similar to ones it requested first. The KDC only includes enctypes in etype_info if they were requested by the client. ticket: 1006 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15191 dc483132-0cff-0310-8789-dd5450dbe970
* Fix double free of AS keySam Hartman2003-02-132-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15188 dc483132-0cff-0310-8789-dd5450dbe970
* Support credentials encrypted in the session key rather thanSam Hartman2003-02-112-4/+25
| | | | | | the subsession key. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15181 dc483132-0cff-0310-8789-dd5450dbe970
* Get addressless tickets by defaultSam Hartman2003-02-042-2/+6
| | | | | | | | | By default Kerberos obtains addressless tickets. ticket: new Tags: enhancement git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15150 dc483132-0cff-0310-8789-dd5450dbe970
* Memory leak in krb5_send_tgs()Ezra Peisach2003-01-122-0/+6
| | | | | | | | * send_tgs.c (krb5_send_tgs): Free memory leak of TGS_REQ. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15115 dc483132-0cff-0310-8789-dd5450dbe970
* Use markers in Makefile.in rather than rules in configure.in to indicate whenKen Raeburn2003-01-102-0/+7
| | | | | | | | to use the lib.in and libobj.in makefile fragments. Pushing this per-directory info into Makefile.in will make it a little easier to work on combining configure scripts for multiple directories. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15107 dc483132-0cff-0310-8789-dd5450dbe970
* Patch to get new service tickets in preference to using expiredSam Hartman2003-01-102-1/+15
| | | | | | | | service tickets in krb5_get_credentials. Ticket: 1260 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15106 dc483132-0cff-0310-8789-dd5450dbe970
* Previously fwd_tgt_creds required either that the hostname be passedSam Hartman2003-01-082-14/+25
| | | | | | | | | | | in or that the principal be a host-based service. This means you cannot for example forward tickets to a GSSAPI user-based service. The requirement to get the hostname is only needed in cases where addressless tickets are not used. So when addressless tickets are used, do not require the hostname. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15099 dc483132-0cff-0310-8789-dd5450dbe970
* * appdefault.c (conf_yes, conf_no): Now constKen Raeburn2003-01-082-2/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15093 dc483132-0cff-0310-8789-dd5450dbe970
* For new encryption types and for RC4, encrypt the krb_cred message inSam Hartman2003-01-082-9/+10
| | | | | | | | | | the initial gssapi token if credentials are being delegated. For consistency with Microsoft, we encrypt the credentials using the session key not the subsession key. Ticket: 1054 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15091 dc483132-0cff-0310-8789-dd5450dbe970
* Fix logic error in previous patch that broke gss_init_sec_contextSam Hartman2003-01-072-9/+14
| | | | | | | ticket: 1054 Status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15087 dc483132-0cff-0310-8789-dd5450dbe970
* Implement krb5_auth_con_set_checksum_func, an API for setting aSam Hartman2003-01-064-0/+49
| | | | | | | | | | callback to specify the data to be checksummed by krb5_mk_req after the auth_context has been set up. Mainly useful for GSSAPI. Ticket: 1054 Status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15084 dc483132-0cff-0310-8789-dd5450dbe970
* Replace dependencies on generated krb524 and krb4 headers withTom Yu2002-12-231-1/+1
| | | | | | | | | variables, to allow correct behavior when krb4 is disabled. ticket: 1276 owner: tlyu git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15070 dc483132-0cff-0310-8789-dd5450dbe970
* * t_kerb.c: Include string.h for strcmp prototypeEzra Peisach2002-12-232-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15067 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up some broken uses of "const" in function interfacesKen Raeburn2002-12-192-2/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15058 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesTom Yu2002-11-271-1/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15016 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c (krb5_get_in_tkt): Do not pass NULL when anEzra Peisach2002-11-142-1/+6
| | | | | | integer 0 is intended to send_as_request(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14998 dc483132-0cff-0310-8789-dd5450dbe970
* * conv_princ.c (strnchr): Make length argument unsigned intEzra Peisach2002-11-073-9/+18
| | | | | | | * preauth2.c: Add parentheses around assignment used as truth value. Cleanup unused variable. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14976 dc483132-0cff-0310-8789-dd5450dbe970
* ticket: newSam Hartman2002-10-311-1/+1
| | | | | | | | | | owner: tlyu status: open Fix typo in debugging printf introduced in null handling git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14951 dc483132-0cff-0310-8789-dd5450dbe970
* * chk_trans.c (krb5_check_transited_list): Style nit: checkTom Yu2002-10-302-3/+8
| | | | | | character against '\0' not NULL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14949 dc483132-0cff-0310-8789-dd5450dbe970
* ticket: 1230Sam Hartman2002-10-302-4/+15
| | | | | | | | | | owner: tlyu status: open Ignore trailing nulls on incoming tr encoding to be compatible with bug in previous versions of krb5 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14946 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c (conf_yes, conf_no): Now const. References updated.Ken Raeburn2002-10-284-11/+19
| | | | | | | | * preauth.c (preauth_systems): Now const. References updated. * preauth2.c (pa_types): Now const. (krb5_do_preauth): Local array paorder now const. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14943 dc483132-0cff-0310-8789-dd5450dbe970
* If we get cannot resolve KDC for master but find a slaveSam Hartman2002-10-282-1/+6
| | | | | | | | return the real error from the slave rather than the resolution error. ticket: 1232 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14941 dc483132-0cff-0310-8789-dd5450dbe970
* Client code lacks support for draft-ietf-krb-wg-kerberos-sam-01.txtKen Hornstein2002-10-244-2/+468
| | | | | | | | | | | This widely-spread commit implements support for the so-called "new" hardware preauth protocol, defined in the IETF internet-draft draft-ietf-krb-wg-kerberos-sam-01.txt. Note that this code is client-side only. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14939 dc483132-0cff-0310-8789-dd5450dbe970
* No support for negative password expiration last-req hintKen Hornstein2002-10-241-1/+2
| | | | | | | | | Fixing an omission; previous code didn't support a negative value for the password expiration hint (which is legal). Pointed out by Ezra Peisach. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14938 dc483132-0cff-0310-8789-dd5450dbe970
* gic_pwd doesn't support password expiration notification via last_req hintKen Hornstein2002-10-232-1/+46
| | | | | | | | | | | | | | In kerberos-clarifications, a new last-req type (6) has been specified that indicates when a principal's password will expire. This code implements support for this last-req type. Note that the intent is that the last-req type will only be included by the KDC when the time until password expiration reaches some threshold (e.g, one week), so this code will display the password expiration anytime the last-req type is included. ticket: 1065 ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14936 dc483132-0cff-0310-8789-dd5450dbe970
* Don't request addresses whenSam Hartman2002-09-112-11/+18
| | | | | | we forward addressless tickets git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14845 dc483132-0cff-0310-8789-dd5450dbe970
* protoizeKen Raeburn2002-09-0388-1857/+1123
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14812 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in: Revert $(S)=>/ change, for Windows supportKen Raeburn2002-08-292-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14786 dc483132-0cff-0310-8789-dd5450dbe970
* Ignore a bunch of files generated by building in the source tree, excludingKen Raeburn2002-08-291-0/+5
| | | | | | | | | those covered by CVSROOT/cvsignore patterns. Static UNIX build only, at the moment, may need updates for other configurations. (Second try; this time, deal with the cases where "cvs add"/"cvs ci" choked on previously deleted versions numbered 5.x.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14785 dc483132-0cff-0310-8789-dd5450dbe970
* Change $(S)=>/ and $(U)=>.. globallyKen Raeburn2002-08-232-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14761 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (init_common): Initialize udp_pref_limit fieldKen Raeburn2002-08-232-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14746 dc483132-0cff-0310-8789-dd5450dbe970
* * t_ser.c (ser_ccache_test): Remove references to STDIO ccachesTom Yu2002-08-152-19/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14722 dc483132-0cff-0310-8789-dd5450dbe970
* update depsKen Raeburn2002-08-151-2/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14716 dc483132-0cff-0310-8789-dd5450dbe970
* * unparse.c (krb5_unparse_name_ext): Error out if passed a NULLTom Yu2002-08-022-0/+8
| | | | | | pointer. Patch from Mark Levinson; fixes [krb5-admin/1140]. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14679 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesKen Raeburn2002-07-091-85/+170
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14621 dc483132-0cff-0310-8789-dd5450dbe970
* * appdefault.c (conf_boolean): Change variable from char ** toEzra Peisach2002-06-263-2/+9
| | | | | | | | const char ** to prevent warning of const to non-const. * get_in_tkt.c (_krb5_conf_boolean): Same git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14586 dc483132-0cff-0310-8789-dd5450dbe970
* * appdefault.c, get_in_tkt.c: made conf_yes and conf_no const toTom Yu2002-06-269-12/+28
| | | | | | | | | | | | | | | improve load time on Mach-O * init_ctx: fixed Mac OS macros [pullups from 1-2-2-branch] * rd_safe.c, rd_priv.c, rd_cred.c, preauth.c, mk_safe.c, mk_cred.c, appdefault.c: use "" includes for krb5.h, k5-int.h and syslog.h [pullup from 1-2-2-branch] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14583 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesKen Raeburn2002-06-211-1/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14553 dc483132-0cff-0310-8789-dd5450dbe970
* avoid redundant definitions of socket-related error codes for WindowsKen Raeburn2002-06-182-3/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14539 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-10-03 07:00:39 +0000