summaryrefslogtreecommitdiffstats
path: root/src/lib
Commit message (Collapse)AuthorAgeFilesLines
...
* * cc_mslsa.c:Jeffrey Altman2004-06-302-63/+358
| | | | | | | | | | | | | | | | | | | | | | | | - is_windows_2000() indicates the OS is Windows 2000 or higher - is_windows_xp() indicates the OS is Windows XP or higher which indicates that PKERB_QUERY_TKT_CACHE_EX_RESPONSE and PKERB_TICKET_CACHE_INFO_EX are available. - does_retrieve_ticket_cache_ticket() checks to see if a Microsoft private fix is available which adds a new Cache Flag, KERB_RETRIEVE_TICKET_CACHE_TICKET, which when set causes the requested ticket to be stored in the LSA cache even when the TicketFlags and EncType are not set to 0. - KerbExternalTicketMatch() is a test to determine if two Microsoft External Tickets are identical + use the KerbQueryTicketCacheExMessage LSA call on XP or higher + specify the KERB_RETRIEVE_TICKET_CACHE_TICKET flag when it is available = The combination of both + items will cause the ClientRealm to be displayed properly for all cross realm tickets obtained via the MSLSA ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16528 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_memory.c (krb5_mcc_free): Don't free the mutex hereKen Raeburn2004-06-292-2/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16527 dc483132-0cff-0310-8789-dd5450dbe970
* Lots of signedness and argument-casting fixes. Some arithmeticTom Yu2004-06-2812-53/+118
| | | | | | paranoia for seasoning. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16526 dc483132-0cff-0310-8789-dd5450dbe970
* Missed some log data with last checkin:Ken Raeburn2004-06-281-0/+5
| | | | | | | | | | * cc_memory.c (struct _krb5_mcc_data): Delete 'next' pointer. Add a mutex. (krb5_mcc_*): Lock and unlock the mutex as appropriate. (struct krb5_mcc_list_node): New type, separates the linked-list container from the data for individual nodes. (mcc_head): Now points to krb5_mcc_list_node. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16525 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_memory.c: Include k5-thread.h.Ken Raeburn2004-06-284-173/+231
| | | | | | | | | | | (krb5int_mcc_mutex): New lock. (krb5_mcc_store): Rewrite. (NEED_WINDOWS): Don't define. (krb5_mcc_*): All functions now static. * cc-int.h (krb5int_mcc_mutex): Declare. * ccbase.c (krb5int_cc_initialize): Initialize it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16524 dc483132-0cff-0310-8789-dd5450dbe970
* more namespace cleanup: remove uses of rpc_int32 and rpc_u_int32Tom Yu2004-06-255-17/+23
| | | | | | | ticket: 2601 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16522 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Fix typo in setting krb5_cv_header_sys_param_h_maxhostnamelenKen Raeburn2004-06-252-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16517 dc483132-0cff-0310-8789-dd5450dbe970
* Use null pointer as service name to request host-based service nameTom Yu2004-06-242-2/+17
| | | | | | ticket: 2613 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16515 dc483132-0cff-0310-8789-dd5450dbe970
* update copyright, fix comment typoKen Raeburn2004-06-241-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16514 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_file.c (krb5_fcc_read_data): Combine stdio and posix versions of code withKen Raeburn2004-06-242-32/+24
| | | | | | | | | | | gratuitous minor differences. (krb5_fcc_read_int32, krb5_fcc_next_cred): Likewise. (krb5_fcc_read_addr): Likewise. Check that filled-in length field matches the value we tried to store (i.e., that type conversion didn't throw away information). (krb5_fcc_read_authdatum): Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16513 dc483132-0cff-0310-8789-dd5450dbe970
* * alt_prof.c (kadm5_get_admin_service_name): Fix call toTom Yu2004-06-242-3/+15
| | | | | | kadm5_get_config_params(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16509 dc483132-0cff-0310-8789-dd5450dbe970
* * client_init.c (_kadm5_init_any)[DEBUG]: Print error fromTom Yu2004-06-242-0/+8
| | | | | | clnttcp_create(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16508 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_file.c (my_fopen): Function deleted.Ken Raeburn2004-06-222-9/+3
| | | | | | (krb5_fcc_open_file): Use fopen, not my_fopen. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16507 dc483132-0cff-0310-8789-dd5450dbe970
* Delete preprocessor tests for macintosh, __MWERKS__, applec, and THINK_C, allKen Raeburn2004-06-2229-103/+66
| | | | | | | part of the pre-Mac OS X support. (Except the bits in the Yarrow code, where it was part of the upstream source.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16506 dc483132-0cff-0310-8789-dd5450dbe970
* cc_mslsa.c: Comment out calls to FormatMessage and do not terminateJeffrey Altman2004-06-222-0/+17
| | | | | | | | | | | | the program on a failure to generate a message. The existing code fails on non-English systems. We do not need this code in a library unless we are logging to the Event Log which is currently not done. Ignore this for the time being until such time as we decide Event Log entries are important to us. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16503 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_mslsa.c: Enforce acceptable enctypes by checking againstJeffrey Altman2004-06-192-56/+121
| | | | | | | | | | | | | | the default_tgs_enctypes list instead of the permitted_enctypes list; only enforce the desired enctype when retrieving tickets to deliver to an application. do not enforce when attempting to determine the current principal name. this is important because specifying an enctype results in a TGS_REQ being sent to the KDC; close memory leak of krb5_cred objects in krb5_lcc_retrieve(). ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16500 dc483132-0cff-0310-8789-dd5450dbe970
* fix some 64-bit bugs in RPCSEC_GSSTom Yu2004-06-196-23/+63
| | | | | | | | | | | | | | | | | | | | | | | * auth_gss.h: Add prototype for xdr_rpc_gss_buf. * authgss_prot.c (xdr_rpc_gss_buf): New function. (xdr_rpc_gss_cred, xdr_rpc_gss_init_args, xdr_rpc_gss_init_res): (xdr_rpc_gss_wrap_data, xdr_rpc_gss_unwrap_data): Use xdr_rpc_gss_buf, to avoid passing a (size_t *) to a xdr_bytes(), which expects (u_int *). (xdr_rpc_gss_wrap_data): Use tmplen to avoid passing (size_t *) to xdr_u_int. * libgssrpc.exports: * rename.h: Add xdr_rpc_gss_buf. * xdr.c (xdr_enum): Fix (kind of) for 64-bit. Still inherently bogus, due to casting of (enum foo *) to (enum_t *) by callers. ticket: new component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16499 dc483132-0cff-0310-8789-dd5450dbe970
* ignore generated file krb5support32.defKen Raeburn2004-06-191-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16497 dc483132-0cff-0310-8789-dd5450dbe970
* ignore generated file gssapi_krb5.hKen Raeburn2004-06-191-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16496 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SLIBS, SDEF, S_GLUE, COMERR_GLUE, PROF_GLUE, SGLUE): NewKen Raeburn2004-06-183-31/+125
| | | | | | | | | | | | | | | | | | | | variables. (NO_GLUE): Deleted. (CGLUE, PGLUE): Use new separate glue files instead of no_glue. (SRES) [WIN32]: New variable. ($(SRES), $(SLIB)) [WIN32]: New targets. ($(CLIB), $(PLIB), $(KLIB), $(GLIB)) [WIN32]: Depend on and link against $(SLIB) too. ($(SDEF)): New target. Generate Windows export list from common symbol list. ($(COMERR_GLUE), $(PROF_GLUE), $(S_GLUE)): New targets. * win_glue.c (control): Reference add/remove_error_table only if building for krb4 library. Add calls to library init/fini functions for other libraries. For support library, also call a hook function on DLL_THREAD_DETACH. If no recognized library-specific macro is defined, don't compile. (DllMain): Do call control() on DLL_THREAD_DETACH. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16487 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (OBJFILEDEP, OBJFILELIST) [DOS]: Include locally built objectKen Raeburn2004-06-182-2/+11
| | | | | | | files. (OBJFILE, LIBOBJS, LOCALINCLUDES) [DOS]: Define. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16486 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (OBJFILELIST, OBJFILEDEP) [DOS]: Depend on locally built objectsKen Raeburn2004-06-182-2/+17
| | | | | | | | | | too. (OBJFILE, LIBOBJS) [DOS]: Define. ($(BUILDTOP)/include/gssapi/gssapi.h, generic/gssapi.h, krb5/gssapi_err_krb5.h, generic/gssapi_err_generic.h, krb5/gssapi_krb5.h) [DOS]: Disable dependencies on Windows. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16485 dc483132-0cff-0310-8789-dd5450dbe970
* oops, forgot somethingTom Yu2004-06-172-3/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16479 dc483132-0cff-0310-8789-dd5450dbe970
* * ser_sctx.c (kg_ctx_size, kg_ctx_externalize): Adjust for newTom Yu2004-06-172-1/+10
| | | | | | field cred_rcache. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16477 dc483132-0cff-0310-8789-dd5450dbe970
* * libgssrpc.exports: UpdateTom Yu2004-06-172-31/+57
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16476 dc483132-0cff-0310-8789-dd5450dbe970
* * util_validate.c (g_save): Call gssint_initialize_libraryKen Raeburn2004-06-172-0/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16475 dc483132-0cff-0310-8789-dd5450dbe970
* Purge make targets and variables (and a few files) relating to the old,Ken Raeburn2004-06-1724-28/+49
| | | | | | unmaintained Mac OS 9 (and earlier) support. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16473 dc483132-0cff-0310-8789-dd5450dbe970
* more rpc namespace cleanupTom Yu2004-06-163-12/+38
| | | | | | | | | | | | | * auth_gss.h: Conditionalize log_debug, log_status, log_hexdump prototypes on GSSRPC__IMPL. * rename.h: More namespace fixes. ticket: new status: open component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16471 dc483132-0cff-0310-8789-dd5450dbe970
* make dependTom Yu2004-06-165-350/+453
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16470 dc483132-0cff-0310-8789-dd5450dbe970
* This commit merges the RPCSEC_GSS integration branch onto the trunk.Tom Yu2004-06-1671-1135/+3682
| | | | | | | | | | | | | | | | | | | Remaining work includes: * Default to using kadmin/fqdn for SEAM compatibility * Namespace cleanups and other API tweaks -- this API is not stable yet * Fix lib/rpc/unit-test testsuite to test RPCSEC_GSS in addition to AUTH_GSSAPI Additional work will be tracked in separate tickets. This merge is bracketed between the tags "tlyu-umich-rpc-merge-pre" and "tlyu-umich-rpc-merge-post". ticket: 2578 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16467 dc483132-0cff-0310-8789-dd5450dbe970
* ok, let's try this again..Tom Yu2004-06-164-4/+21
| | | | | | | | | | | | | | | | | * accept_sec_context.c (krb5_gss_accept_sec_context): Only null out the auth_context's rcache if it was provided by acceptor creds; this prevents a leak. * delete_sec_context.c (krb5_gss_delete_sec_context): Only null out the auth_context's rcache if it was provided by acceptor creds; this prevents a leak. * gssapiP_krb5.h (krb5_gss_ctx_id_rec): Add cred_rcache to track whether acceptor creds provided an rcache. ticket: 2600 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16465 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (LOCALINCLUDES): Add $srcdir/osKen Raeburn2004-06-162-1/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16464 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_libinit.c: Include os-proto.hKen Raeburn2004-06-162-2/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16463 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_RDIRS): SetKen Raeburn2004-06-162-0/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16462 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_libinit.c (krb5int_lib_init): Initialize krb5int_us_time_mutexKen Raeburn2004-06-152-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16455 dc483132-0cff-0310-8789-dd5450dbe970
* Localize the OS-specific bits of retrieving the current time a bit more.Ken Raeburn2004-06-153-44/+78
| | | | | | | | | | | | | | | | ** not yet tested on Windows ** * c_ustime.c: Include k5-thread.h. (get_time_now): New function, holds system-dependent code. (krb5int_us_time_mutex): New mutex. (struct time_now): New type. (last_time): New variable, replaces old last_tv, last_sec, last_usec. (krb5_crypto_us_timeofday): Rewrite. Do locking around access to previously returned value, and ensure that we don't return duplicate values. * os-proto.h: Include k5-thread.h. (krb5int_us_time_mutex): Declare. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16454 dc483132-0cff-0310-8789-dd5450dbe970
* don't leak rcaches in accept_sec_contextTom Yu2004-06-151-1/+5
| | | | | | | | | | | | * accept_sec_context.c (krb5_gss_accept_sec_context): Don't null out rcache of auth_context prior to free if rcache was temporarily allocated; this prevents leaking rcaches. ticket: new version_reported: 1.3.4 component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16453 dc483132-0cff-0310-8789-dd5450dbe970
* * libkrb5.exports: Drop krb5_init_ets, krb5_free_ets, krb5_kt_default_vno, andKen Raeburn2004-06-152-4/+5
| | | | | | krb5int_profile_shared_data. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16452 dc483132-0cff-0310-8789-dd5450dbe970
* * exports.crypto, exports.des425, exports.kdb5, exports.krb5: Unused files ↵Ken Raeburn2004-06-155-383/+5
| | | | | | deleted git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16451 dc483132-0cff-0310-8789-dd5450dbe970
* * rc_io.c (dir, dirlen): Top-level variables deleted.Ken Raeburn2004-06-152-10/+19
| | | | | | | | (getdir): Now returns the pointer, doesn't set top-level variables. (GETDIR): Set local variables dir and dirlen using the function's return value. (krb5_rc_io_creat, krb5_rc_io_open_internal): Add the new local variables. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16450 dc483132-0cff-0310-8789-dd5450dbe970
* * kt_file.c (krb5_kt_default_vno): Replaced variable with macroKen Raeburn2004-06-152-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16449 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_EXPLIBS): Add $(LIBS)Ken Raeburn2004-06-152-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16448 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_DIRS, SHLIB_EXPLIBS, SHLIB_EXPDEPLIBS): Set to depend onKen Raeburn2004-06-153-2/+12
| | | | | | | | the new support library. (SHLIB_LIBS): Don't define. * configure.in: Use BUILD_LIBRARY_WITH_DEPS instead of the no-deps version. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16447 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c (krb5_gss_init_sec_context): Fix pointerTom Yu2004-06-142-1/+7
| | | | | | | assignment when retrieving k5_context from existing context_handle. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16440 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (gssapi_krb5.h): Add Windows version of generation ruleKen Raeburn2004-06-112-0/+11
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16432 dc483132-0cff-0310-8789-dd5450dbe970
* * asn1_encode.c (asn1_encode_generaltime): Fix memcpy argument to actuallyKen Raeburn2004-06-113-12/+24
| | | | | | | | | | | | be a pointer. (asn1_encode_enumerated): Drop "const" from scalar argument type. * asn1_encode.h (asn1_encode_integer, asn1_encode_enumerated, asn1_encode_unsigned_integer, asn1_encode_octetstring, asn1_encode_charstring, asn1_encode_printablestring, asn1_encode_ia5string, asn1_encode_generaltime, asn1_encode_generalstring): Drop "const" from scalar argument types. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16431 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (krb5/gssapi_krb5.h): Depend on recursion ruleKen Raeburn2004-06-102-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16429 dc483132-0cff-0310-8789-dd5450dbe970
* Install gssapi_krb5.h from build dir not srcdirSam Hartman2004-06-102-1/+4
| | | | | | | ticket: 2587 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16428 dc483132-0cff-0310-8789-dd5450dbe970
* If channel bindings are supplied to server require them to be matchedSam Hartman2004-06-092-15/+11
| | | | | | | | | | | | | | | | | | Based on discussion on kerberos@mit.edu, the decision to allow null channel bindings from a client to match even when server channel bindings are supplied is flawed. This decision assumes that we cannot get server implementations to change even though we are able to deploy a new Kerberos implementation on the server. In practice the server implementations in question have actually changed and so the only part of revision 1.54 of accept_sec_context.c we actually need is the code to ignore channel bindings if null channel bindings are passed into the server. Thus the change to allow null channel bindings from the client to match against any channel bindings on the server is backed out. Ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16427 dc483132-0cff-0310-8789-dd5450dbe970
* ugh. revert last changeKen Raeburn2004-06-092-6/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16426 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-14 13:33:48 +0000