summaryrefslogtreecommitdiffstats
path: root/src/lib/krb5/krb
Commit message (Collapse)AuthorAgeFilesLines
...
* update profile section name in comments to reflect reality and other docsKen Raeburn2001-06-151-3/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13349 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (t_walk_rtree, t_kerb): Do not link against kdb librariesEzra Peisach2001-06-125-11/+27
| | | | | | | | | | | | | | | for these test executables. * srv_rcache.c (krb5_get_server_rcache): Cast argument to isgraph() to int. * init_ctx.c: Cast arguments to isspace() to int. If unix is defined, include ../krb5_libinit.h. There has to be a better was for windows. * conv_princ.c (krb5_425_conv_principal): Cast argument to isupper(). to int. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13340 dc483132-0cff-0310-8789-dd5450dbe970
* * str_conv.c: If strptime() is present on system without aEzra Peisach2001-06-112-1/+6
| | | | | | prototype, provide one. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13327 dc483132-0cff-0310-8789-dd5450dbe970
* * vfy_increds.c (krb5_verify_init_creds): Get rid of a variableEzra Peisach2001-06-072-5/+9
| | | | | | that was set in a conditional and never used afterwards. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13290 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (get_profile_etype_list): Zero out multiple separator charactersKen Raeburn2001-06-022-2/+8
| | | | | | between tokens, so the second can be recognized properly. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13258 dc483132-0cff-0310-8789-dd5450dbe970
* * mk_safe.c (krb5_mk_safe): Only use safe_cksumtype from theTom Yu2001-04-052-1/+33
| | | | | | | | auth_context (derived from the config file or hardcoded default) if it's suitable for the enctype of the key we're going to use. [pullup from krb5-1-2-2-branch] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13144 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (DEFAULT_ETYPE_LIST): New macro. Old etype list, plus des-md4,Ken Raeburn2001-03-312-3/+17
| | | | | | | with des-crc before des-mdX for now. (get_profile_etype_list): Use DEFAULT_ETYPE_LIST. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13126 dc483132-0cff-0310-8789-dd5450dbe970
* reindent for readabilityKen Raeburn2001-03-312-277/+277
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13125 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c: Provide a full prototype for init_common()Ezra Peisach2001-03-117-12/+27
| | | | | | | | | | | * recvauth.c (recvauth_common): Declare recvauth_common as static. * parse.c, sendauth.c: Changes to prevent shadowing of local variables. * get_in_tkt.c, tgtname.c: Include int-proto.h for prototypes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13073 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth2.c (pa_sam): Return an error if no prompter was providedKen Raeburn2001-03-032-0/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13049 dc483132-0cff-0310-8789-dd5450dbe970
* * t_deltat.c (main): Test of overflow and underflow of krb5_int32Ezra Peisach2001-02-165-118/+308
| | | | | | | | | | | | * x-deltat.y: Test for over/underflow of krb5_int32 for a krb5_deltat. Return EINVAL. [krb5-libs/922] * deltat.c: Regenerated from x-deltat.y * str_conv.c (krb5_string_to_timestamp): Do not accept a time format that only partially matches the input string. [krb5-lib/922] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@13007 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth.c (krb5_obtain_padata): Don't dereference a NULL pointerTom Yu2001-01-303-0/+19
| | | | | | | | | | | if we receive an empty ETYPE_INFO preauth. [krb5-libs/903 from craziboy77@hotmail.com] * preauth2.c (krb5_do_preauth): Don't dereference a NULL pointer if we receive an empty ETYPE_INFO preauth. [krb5-libs/903 from craziboy77@hotmail.com] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12977 dc483132-0cff-0310-8789-dd5450dbe970
* * rd_req_dec.c (krb5_rd_req_decrypt_tkt_part): FreeEzra Peisach2001-01-302-2/+8
| | | | | | | | | krb5_keytab_entry if call to krb5_decrypt_tkt_part() fails. [krb5-libs/855 reported by guy@packeteer.com] Pullup from krb5-1-2 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12975 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth.c: Don't use PROTOTYPE macro, just always use the prototypesKen Raeburn2001-01-202-10/+15
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12923 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth.c: Remove uses of KRB5_NPROTOTYPE() macroTom Yu2001-01-202-44/+48
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12922 dc483132-0cff-0310-8789-dd5450dbe970
* * t_ser.c: Cast getpid() calls to int as arguments to sprintfEzra Peisach2000-10-2610-23/+48
| | | | | | | | | | | | | | | | | | * ser_actx.c: Move prototypes (listed below) to int-proto.h * int-proto.h: Add prototypes for krb5_ser_authdata_init, krb5_ser_address_init, krb5_ser_authenticator_init, krb5_ser_checksum_init, krb5_ser_keyblock_init, krb5_ser_principal_init. * ser_adata.c, ser_addr.c, ser_auth.c, ser_cksum.c, ser_key.c, ser_princ.c: Include int-proto.h for prototypes. By moving the prototypes to int-proto.h, it ndles the gcc warning on missing prototypes. These functions are intenal and all used by krb5_ser_auth_context_init() git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12814 dc483132-0cff-0310-8789-dd5450dbe970
* * bld_pr_ext.c, bld_princ.c (krb5_build_principal_ext,Ezra Peisach2000-10-1717-36/+84
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | krb5_build_principal_va, krb5_build_principal): Take an unsigned int realm length. * get_in_tkt.c (krb5_get_init_creds): Use SALT_TYPE_AFS_LENGTH instead of -1. * gic_pwd.c (krb5_get_as_key_password): Use SALT_TYPE_AFS_LENGTH instead of -1. * in_tkt_pwd.c (pwd_keyproc): Argument to krb5_read_password is unsigned int. * pr_to_salt.c (krb5_principal2salt_internal): Declare as static. Unsigned int fix. * preauth.c (krb5_obtain_padata): Use SALT_TYPE_AFS_LENGTH instead of -1. * preauth2.c (pa_salt): Use SALT_TYPE_AFS_LENGTH instead of -1. * conv_princ.c, copy_auth.c, copy_princ.c, gc_frm_kdc.c, parse.c, send_tgs.c, srv_rcache.c: Unsigned/signed int cleanup. * unparse.c (krb5_unparse_name_ext): size parameter changed to unsigned int *. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12782 dc483132-0cff-0310-8789-dd5450dbe970
* * rd_req_dec.c (krb5_rd_req_decrypt_tkt_part): Fix memory leak ifEzra Peisach2000-10-042-2/+7
| | | | | | krb5_decrypt_tkt_part() fails. (krb5-libs/855) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12720 dc483132-0cff-0310-8789-dd5450dbe970
* * copy_addrs.c (krb5_copy_addresses): Cleanup unsigned vs signedEzra Peisach2000-10-032-2/+7
| | | | | | warnings as arguments to malloc(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12718 dc483132-0cff-0310-8789-dd5450dbe970
* * conv_princ.c (krb5_425_conv_principal): Call profile_free_listEzra Peisach2000-09-262-5/+15
| | | | | | | | | on v4realms during the iteration loop. Do not call profile_release_string with a NULL pointer. Fixes a memory leak. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12678 dc483132-0cff-0310-8789-dd5450dbe970
* * t_kerb.c: Add prototypes for test functionsEzra Peisach2000-09-252-3/+14
| | | | | | Cleans up gcc warnings. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12669 dc483132-0cff-0310-8789-dd5450dbe970
* * get_creds.c (krb5_get_credentials_core): If the supplied enctype is notKen Raeburn2000-08-292-7/+25
| | | | | | | | supported, return an error; can't satisfy both TC_SUPPORTED_KTYPES and TC_MATCH_KTYPE that way. Delete unused arguments CCACHE and OUT_CREDS; fix callers. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12636 dc483132-0cff-0310-8789-dd5450dbe970
* * vfy_increds.c: include int-proto.h for krb5_libdefault_booleanEzra Peisach2000-07-187-2/+35
| | | | | | | | | | | | | | | | | | | prototype. * t_ser.c (ser_eblock_test): ifdef out old eblock serialization test which is no longer called. (see 1999-09-01 ChangeLog) * t_kerb.c: Cast argument to fprintf to long to agree with format string. * t_deltat.c: If MIN is defined, undef before redefined as 60. * str_conv.c: Provide strptime prototype if the system header files fail to provide a prototype. * int-proto.h: Add prototype for krb5_libdefault_boolean() git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12555 dc483132-0cff-0310-8789-dd5450dbe970
* pullup from 1.2.1 releaseKen Raeburn2000-07-012-0/+16
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12502 dc483132-0cff-0310-8789-dd5450dbe970
* * t_walk_rtree.c (main): Declare as returning intEzra Peisach2000-06-3018-94/+120
| | | | | | | | | | | | | | | | | | | | | * get_in_tkt.c (_krb5_conf_boolean): Declare as taking a const char * * str_conv.c (krb5_timestamp_to_string): Work around gcc's warning that %c format in strftime might return only two digits for the year. * mk_safe.c, rd_rep.c, send_tgs.c: Remove unused goto label. * kdc_rep_dc.c (krb5_kdc_rep_decrypt_proc): Remove code with no effect. * init_ctx.c: Make krb5_brand[] look used. * chpw.c, decode_kdc.c, decrypt_tk.c, enc_helper.c, get_creds.c, get_in_tkt.c, gic_keytab.c, gic_pwd.c, preauth2.c, vfy_increds.c: Add parentheses around assignment used as truth value git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12483 dc483132-0cff-0310-8789-dd5450dbe970
* * conv_princ.c, get_creds.c, get_in_tkt.c, mk_rep.c, parse.c,Ezra Peisach2000-06-297-10/+7
| | | | | | send_tgs.c: Remove unused variable. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12457 dc483132-0cff-0310-8789-dd5450dbe970
* pullup from 1.2 branchKen Raeburn2000-06-2716-153/+477
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12442 dc483132-0cff-0310-8789-dd5450dbe970
* Check for existance of <memory.h>.Wilfredo Sanchez2000-06-012-0/+7
| | | | | | (from Nathan Neulinger <nneul@umr.edu>) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12332 dc483132-0cff-0310-8789-dd5450dbe970
* Change wsanchez@apple -> tritan@mitWilfredo Sanchez2000-06-011-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12331 dc483132-0cff-0310-8789-dd5450dbe970
* 2000-5-19 Alexandra Ellwood <lxs@mit.edu>Alexandra Ellwood2000-05-193-2/+11
| | | | | | | | | | | * sendauth.c, fwd_tgt.c: Changed to use krb5int_cc_default. This function supports the Kerberos Login Library and pops up a dialog if the cache does not contain valid tickets. This is used to automatically get a tgt before obtaining service tickets. Note that this should be an internal function because callers don't expect krb5_cc_default to pop up a dialog! (We found this out the hard way :-) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12291 dc483132-0cff-0310-8789-dd5450dbe970
* 2000-05-15 Jeffrey Altman <jaltman@columbia.edu>Jeffrey Altman2000-05-163-0/+194
| | | | | | | | | | * Added new source file appdefault.c Implements new public functions krb5_appdefault_string krb5_appdefault_boolean git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12261 dc483132-0cff-0310-8789-dd5450dbe970
* 2000-04-28 Alexandra Ellwood <lxs@mit.edu>Alexandra Ellwood2000-04-282-0/+10
| | | | | | | * gic_pwd.c (krb5_init_creds_password) added code to return to login library if the password is expired (login library handles this error appropriately). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12201 dc483132-0cff-0310-8789-dd5450dbe970
* * vfy_increds.c (krb5_verify_init_creds): appdefault_boolean ->Tom Yu2000-04-082-1/+6
| | | | | | libdefault_boolean; it somehow got missed earlier. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12156 dc483132-0cff-0310-8789-dd5450dbe970
* 2000-04-07 Jeffrey Altman <jaltman@columbia.edu>Jeffrey Altman2000-04-073-4/+14
| | | | | | | | | | * gic_pwd.c (krb5_get_init_creds_keytab), gic_pwd.c (krb5_get_init_creds_password) when determining whether or not to retry with a "master kdc" do not retry if the return value from the first attempt was KRB5_REALM_CANT_RESOLV. Also, do not overwrite the return code if the return value from the access to the "master kdc" was KRB5_REALM_CANT_RESOLV. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12154 dc483132-0cff-0310-8789-dd5450dbe970
* jaltman@columbia.edu Mar 24, 2000:Jeffrey Altman2000-03-243-28/+28
| | | | | | | | | | | | | | | | | | | | | | | | | | In 1.0.6, the code was altered to provide a fallback mechanism to try the "master" kdc's in case the normal kdc's did not have the most up to date password information. The original implementation had significant conflicts with the use of DNS SRV records. In addition, it often performed a lot of unneeded work. The new code still performs a fallback to the "master" kdc but only does the computation of the "master kdc list" if we are in fact going to attempt to use a master. For DNS SRV we introduce a new _kerberos-master.<proto>.<REALM> record to list the master kdc's and the priorities to be used when contacting a master. This allows for a multi-tiered implementation. --- The other change is local to krb/get_in_tkt.c. In preparation for adding public krb5_appdefault_boolean and krb5_appdefault_string functions, the static functions by that name in get_in_tkt.c are renamed to krb5_libdefault_xxxxx since they currently access the [libdefault] section of the code. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12137 dc483132-0cff-0310-8789-dd5450dbe970
* Add krb5_get_prompt_types() functionalityDanilo Almeida2000-03-164-2/+30
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12118 dc483132-0cff-0310-8789-dd5450dbe970
* Fix one of the bugs discovered at Connectathon: etype specified in preauthKen Raeburn2000-03-133-5/+68
| | | | | | data is ignored under get_in_tkt interface. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12104 dc483132-0cff-0310-8789-dd5450dbe970
* Change function prototypes to match the entries in krb5.hin - specificallyEzra Peisach2000-03-129-13/+20
| | | | | | use krb5_const instead of const. Under ultrix they are not the same. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12101 dc483132-0cff-0310-8789-dd5450dbe970
* get_in_tkt.c (krb5_get_init_creds): Always initialize local_as_reply to ↵Miro Jurisic2000-03-102-0/+7
| | | | | | avoid returning garbage on error returns git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12097 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth2.c (krb5_do_preauth): Check paorder[h] not h for PA_REAL. Fix ↵Ken Raeburn2000-02-262-1/+6
| | | | | | from Matt Crawford git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12077 dc483132-0cff-0310-8789-dd5450dbe970
* * preauth2.c (pa_sam): In send-encrypted-sad mode, check for magic salt lengthKen Raeburn2000-02-162-7/+51
| | | | | | | | and generate a salt from the principal name if found; use the password and salt to generate a key. Provide timestamp if nonce is zero, regardless of preauth mode. (Patch from Chas Williams.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12045 dc483132-0cff-0310-8789-dd5450dbe970
* * gic_pwd.c (krb5_get_as_key_password): If the as_key enctype is already set toKen Raeburn2000-02-073-15/+35
| | | | | | | | | | | | | | the correct type, do continue and ask for the password anyways. (Patch from Chas Williams, PR krb5-libs/730.) * preauth2.c (pa_sam): If no sam_flags were set, return KRB5_PREAUTH_BAD_TYPE, because we don't currently handle that case. * preauth2.c (pa_sam): Remove unused variable use_sam_key. (SAMDATA): Cast first result to int, which is what sprintf needs. (pa_salt): Delete unused variable ret. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12012 dc483132-0cff-0310-8789-dd5450dbe970
* updated some comments (fcusack)Ken Raeburn2000-02-072-6/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12009 dc483132-0cff-0310-8789-dd5450dbe970
* more fcusack changes - rest of first setKen Raeburn2000-02-071-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12006 dc483132-0cff-0310-8789-dd5450dbe970
* Frank Cusack changes, set 1, diffs 1-3 of 4Ken Raeburn2000-02-074-9/+22
| | | | | | | | Rename "sam_passcode" field to "sam_sad". Add data to predicted-sam-response structure, in part to (prepare to) help with replay detection. Fix some memory allocation problems. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12005 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (get_profile_etype_list): Discard DESONLY changes from 1999-09-01,Ken Raeburn2000-01-272-19/+10
| | | | | | and revert call sites. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11970 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (get_profile_etype_list): Report an error if noKen Raeburn1999-12-062-0/+11
| | | | | | recognized enctypes are found in the config file. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11949 dc483132-0cff-0310-8789-dd5450dbe970
* merge 1.1 branch, to 12/1/99Ken Raeburn1999-12-0613-398/+2450
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11948 dc483132-0cff-0310-8789-dd5450dbe970
* * t_ref_kerb.out: Fix expected zephyr/zephyr outputKen Raeburn1999-11-032-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11900 dc483132-0cff-0310-8789-dd5450dbe970
* log tritan's changesTom Yu1999-10-261-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11877 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-10-03 21:46:54 +0000