summaryrefslogtreecommitdiffstats
path: root/src/lib
Commit message (Collapse)AuthorAgeFilesLines
...
* * locate_kdc.c (struct srv_dns_entry): Moved to k5-int.h.Ken Raeburn2003-06-063-20/+34
| | | | | | | | | | | | | | (krb5int_make_srv_query_realm): Renamed from make_srv_query_realm. (krb5int_free_srv_dns_data): New function. (krb5_locate_srv_dns_1): Use it. * accessor.c (krb5int_accessor): Fill in make_srv_query_realm and free_srv_dns_data fields. ticket: 1550 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15596 dc483132-0cff-0310-8789-dd5450dbe970
* Don't allow renewable_ok to be set if the renew liftime is greaterSam Hartman2003-06-062-0/+7
| | | | | | | | | | than the ticket lifetime. Ticket: 1576 Tags: pullup Status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15590 dc483132-0cff-0310-8789-dd5450dbe970
* * g_cnffile.c (krb__get_srvtabname): Make retname be a staticTom Yu2003-06-062-7/+12
| | | | | | | | | | | | | array rather than a static pointer, to avoid callers' possible retention of free()d pointers. Yes, this may cause difficulty with making this function thread-safe. ticket: 1563 target_version: 1.3 version_fixed: 1.3 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15589 dc483132-0cff-0310-8789-dd5450dbe970
* Static function krb5_generate_authenticator should take unsigned sequence ↵Ezra Peisach2003-06-062-2/+7
| | | | | | | | | | | | number argument * mk_req_ext.c (krb5_generate_authenticator): Sequence numbers are unsigned now. Ticket: new tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15585 dc483132-0cff-0310-8789-dd5450dbe970
* If krb5_c_string_to_key isSam Hartman2003-06-052-0/+19
| | | | | | | | | | | called with an afs3 salt length for a non-DES enctype, return KRB5_CRYPTO_INTERNAL. Ticket: 1521 Status: open Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15576 dc483132-0cff-0310-8789-dd5450dbe970
* * locate_kdc.c (make_srv_query_realm): Punt if strdup fails. Always returnKen Raeburn2003-06-052-24/+34
| | | | | | | | | | | | | what data we can, even if memory allocation or other problems prevent us from returning more. (krb5_locate_srv_dns_1): Always return what data we can. Fix memory leak. Free up temporary storage as quickly as possible, while building up address list to return. ticket: 1549 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15574 dc483132-0cff-0310-8789-dd5450dbe970
* * password_to_key.c (mit_passwd_to_key, afs_passwd_to_key): DeleteTom Yu2003-06-052-2/+7
| | | | | | | | spurious space from prompt. ticket: 1560 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15569 dc483132-0cff-0310-8789-dd5450dbe970
* Put krb5int_locate_server back in the accessor "export" listKen Raeburn2003-06-042-0/+4
| | | | | | | ticket: 1549 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15561 dc483132-0cff-0310-8789-dd5450dbe970
* Handle SRV RR target of "." by returning a new error code.Ken Raeburn2003-06-042-29/+65
| | | | | | | | | | | | | | | | May have memory leaks -- needs checking before pullup. * locate_kdc.c (struct srv_dns_entry): Move to top level. (make_srv_query_realm): Separate from krb5_locate_srv_dns_1; just do query and return results. (krb5_locate_srv_dns_1): Call it, and build addlist entries. Check for one RR with a target of ".", and return an error. (krb5_locate_srv_dns): Deleted. ticket: 1549 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15560 dc483132-0cff-0310-8789-dd5450dbe970
* * t_locate_kdc.c (main): Call krb5_locate_srv_dns_1Ken Raeburn2003-06-042-1/+3
| | | | | | | ticket: 1549 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15559 dc483132-0cff-0310-8789-dd5450dbe970
* * locate_kdc.c (get_port): Revert last changeKen Raeburn2003-06-042-7/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15558 dc483132-0cff-0310-8789-dd5450dbe970
* * changepw.c (krb5_locate_kpasswd): Check specifically for certain errorsKen Raeburn2003-06-042-1/+4
| | | | | | | | | before using fallback heuristics. ticket: 1549 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15557 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5_err.et (KRB5_ERR_NO_SERVICE): New error codeKen Raeburn2003-06-042-0/+6
| | | | | | | ticket: 1549 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15556 dc483132-0cff-0310-8789-dd5450dbe970
* * locate_kdc.c (get_port): Replace function with macroKen Raeburn2003-06-032-3/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15554 dc483132-0cff-0310-8789-dd5450dbe970
* * RealmsConfig-glue.c (get_krbhst_default): Deleted.Ken Raeburn2003-06-032-19/+5
| | | | | | | | | (krb_get_krbhst): Don't call it. ticket: 1551 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15553 dc483132-0cff-0310-8789-dd5450dbe970
* Yet more double colon password promptsSam Hartman2003-06-033-3/+8
| | | | | | | | | | | More places in the code with password prompts needing fixing to not include colon. Ticket: new Target_Version: 1.3 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15552 dc483132-0cff-0310-8789-dd5450dbe970
* Save a copy of the ciphertext from the kdc rather than trying toSam Hartman2003-06-032-0/+9
| | | | | | | | | decrypt the already decrypted text each time through the loop. Ticket: 1554 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15551 dc483132-0cff-0310-8789-dd5450dbe970
* * init_os_ctx.c: Included header to get __KLAllowHomeDirectoryAccess()Alexandra Ellwood2003-06-032-0/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15547 dc483132-0cff-0310-8789-dd5450dbe970
* Drop default_kdc_enctypes and all related codeTom Yu2003-06-032-21/+7
| | | | | | | | | ticket: 1553 target_version: 1.3 status: open tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15544 dc483132-0cff-0310-8789-dd5450dbe970
* * change_password.c (krb_change_password): Explicitly zero theTom Yu2003-06-033-4/+15
| | | | | | | | | | | | | | | session key. Zero the key derived from the new password. * mk_req.c (krb_mk_req): Explicitly zero the session key. (krb_mk_req_creds_prealm): Don't zero the session key, in case the caller wants to make use of it. ticket: 1546 status: open target_version: 1.3 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15543 dc483132-0cff-0310-8789-dd5450dbe970
* * api.2/init-v2.exp (test117): Update lifetime expected for new defaultsKen Raeburn2003-06-022-2/+7
| | | | | | | ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15542 dc483132-0cff-0310-8789-dd5450dbe970
* * alt_prof.c (kadm5_get_config_params): Change default max_life to one dayKen Raeburn2003-05-312-1/+6
| | | | | | | ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15539 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c (krb5_get_init_creds): Change hardcoded default ticket lifetimeKen Raeburn2003-05-302-1/+4
| | | | | | | | | from 10 hours to 24 hours. ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15533 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (DEFAULT_KDC_TIMESYNC): Define as 1 always.Ken Raeburn2003-05-302-8/+5
| | | | | | | | | (DEFAULT_CCACHE_TYPE): Define as 4 always. ticket: 1190 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15529 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c: (verify_as_reply) Only check the renewable lifetime of ↵Alexandra Ellwood2003-05-302-0/+8
| | | | | | tickets whose request options included KDC_OPT_RENEWABLE_OK if those options did not also include KDC_OPT_RENEWABLE. Otherwise verify_as_reply() will fail for all renewable tickets git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15524 dc483132-0cff-0310-8789-dd5450dbe970
* Rename interface to krb5_524_convert_creds, export it from krb5 library.Ken Raeburn2003-05-286-7/+44
| | | | | | | | | | | | Provide old names as functions for UNIX/MacOS binary compatibility, and deprecated macros for source code compatibility. (For Windows, we'll still need a krb524.dll, and it can worry about providing the old names.) Enable support on Windows always. ticket: 1491 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15513 dc483132-0cff-0310-8789-dd5450dbe970
* Avoid memory leak of server and client principal inSam Hartman2003-05-273-1/+52
| | | | | | | | | krb5_get_in_tkt_with{_password,_keytab} Ticket: 1525 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15498 dc483132-0cff-0310-8789-dd5450dbe970
* Big step towards integrating libkrb524 into libkrb5:Ken Raeburn2003-05-2418-110/+655
| | | | | | | | | | | | | | | | | | | | | | | Move libkrb524 code, including error table, into libkrb5. Now libkrb5 initialization pulls in the krb524 error table, so krb524_init_ets is gone; all calls deleted. Move krb4 life/time conversion functions into libkrb5 under new names, using accessor hooks to get at them from libkrb4. Move declarations from krb524.h into krb5.h, k5-int.h, or krb524d.h; the last doesn't get copied into the include directory. Changed inclusions of krb524.h to the appropriate files, if any were needed. Rebuilt dependencies in Makefiles. These changes are likely to break the Windows build; I'll look into that soon. ticket: 1491 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15491 dc483132-0cff-0310-8789-dd5450dbe970
* make-depend updatesKen Raeburn2003-05-2430-856/+845
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15490 dc483132-0cff-0310-8789-dd5450dbe970
* When generating etype_info2 for DES style keys, use s2kparams toSam Hartman2003-05-242-2/+21
| | | | | | | | | | | | communicate the type if the key has afs3 salt. If such s2kparams are received by the client, use the afs string2key function to process the key. Ticket: 1512 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15489 dc483132-0cff-0310-8789-dd5450dbe970
* Populate etype_info_entry.s2kparams.dataSam Hartman2003-05-242-1/+7
| | | | | | | | | | | The ASN.1 decoder for etype_info_entry accidentally throws away the pointer to s2kparams data. Don't Correctly store the pointer. Ticket: new Target_Version: 1.3 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15488 dc483132-0cff-0310-8789-dd5450dbe970
* use kdc_default_optionsSam Hartman2003-05-232-1/+5
| | | | | | | | | | | The documentation and context initialization supports an option called kdc_default_options which is an integer that sets the default KDC request flags. Make the code actually use the option. Ticket: new Component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15485 dc483132-0cff-0310-8789-dd5450dbe970
* * gen_seqnum.c (krb5_generate_seq_number): Fix think-o on sequenceTom Yu2003-05-232-1/+4
| | | | | | | | | number mask. ticket: 1262 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15480 dc483132-0cff-0310-8789-dd5450dbe970
* Implement heuristic for matching broken Heimdal sequence number encodingsTom Yu2003-05-235-2/+184
| | | | | | | | | ticket: 1263 target_version: 1.3 tags: pullup status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15479 dc483132-0cff-0310-8789-dd5450dbe970
* * kt_file.c (krb5_ktfile_get_entry): Check principal name prior toTom Yu2003-05-222-8/+13
| | | | | | | | | | checking enctype. Suggested by Wyllys Ingersoll. ticket: 1229 status: open tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15470 dc483132-0cff-0310-8789-dd5450dbe970
* Cross realm checks can check beyond end of bufferEzra Peisach2003-05-222-1/+6
| | | | | | | | | | | * keytab.c (is_xrealm_tgt): Use strncmp instead of strcmp - as principal and realm name do not need to be null terminated. ticket: new tags: pullup target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15466 dc483132-0cff-0310-8789-dd5450dbe970
* krb5int_populate_gic_opt should return voidSam Hartman2003-05-222-1/+5
| | | | | | | | | | | Since none of the functions it calls can return an error, this should return void. Ticket: new Target_Version: 1.3 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15465 dc483132-0cff-0310-8789-dd5450dbe970
* Set length correctly in krb5_get_in_tkt_with_password if password isTom Yu2003-05-215-8/+23
| | | | | | | | | | actually passed in. Also, fix test suite to be more lenient about password prompts, which changed under the previous patches for this ticket. ticket: 1480 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15463 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_get_in_tkt now only supports old (non-etype-info2) enctypesSam Hartman2003-05-202-1/+18
| | | | | | | Ticket: 1480 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15462 dc483132-0cff-0310-8789-dd5450dbe970
* Implement krb5_get_in_tkt_with_password andSam Hartman2003-05-207-257/+155
| | | | | | | | | | | | krb5_get_in_tkt_with_keytab in terms of krb5_get_init_creds. It turns out that these do in fact need to use get_init_creds not get_init_creds_{password,keytab} because of those functions do not allow the AS request to be returned. Ticket: 1480 Status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15461 dc483132-0cff-0310-8789-dd5450dbe970
* * asn1_k_encode.c (asn1_encode_krb_safe_body): UseEzra Peisach2003-05-203-2/+11
| | | | | | | | | | | | asn1_encode_unsigned_integer for sequence number. * asn1_k_decode.c (asn1_decode_krb_safe_body): Use asn1_decode_seqnum to decode sequence number. ticket: 1262 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15460 dc483132-0cff-0310-8789-dd5450dbe970
* Register writable keytabs by defaultSam Hartman2003-05-192-1/+10
| | | | | | | | | | | | | | | | We have a customer requirement to support writable keytabs using the public API in 1.3 Discussion on krbcore indicates there is no good reason why these are not registered by default. So, they are now registered by default. Also adjust other code in the tree not to try and register them. Ticket: new Target_Version: 1.3 Component: krb5-libs Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15459 dc483132-0cff-0310-8789-dd5450dbe970
* Sequence numbers are now unsigned. Implement lenient parser forTom Yu2003-05-1810-11/+115
| | | | | | | | | | | sequence numbers which folds received negative sequence numbers into positive unsigned numbers. Constrain the space of initial sequence numbers to facilitate backwards compatibility. ticket: 1262 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15457 dc483132-0cff-0310-8789-dd5450dbe970
* * chpw.c (krb5int_rd_chpw_rep): Allow new kpasswd error codes up throughKen Raeburn2003-05-172-1/+4
| | | | | | | | | _INITIAL_FLAG_NEEDED. ticket: 1441 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15455 dc483132-0cff-0310-8789-dd5450dbe970
* * ser_ctx.c (krb5_context_internalize): Copy read-in OS context data intoKen Raeburn2003-05-172-6/+22
| | | | | | | | | krb5_context and free up the newly allocated OS context. ticket: 1497 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15453 dc483132-0cff-0310-8789-dd5450dbe970
* Only allow combine_keys to work on des and 3des enctypes. It is notSam Hartman2003-05-152-0/+26
| | | | | | | | | supported for rc4 or AES until we implement the crypto framework PRF. Ticket: 1248 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15448 dc483132-0cff-0310-8789-dd5450dbe970
* Be more friendly towards parallel buildsKen Raeburn2003-05-142-5/+17
| | | | | | | | | | * Makefile.in ($(EHDRDIR)$(S)timestamp): New target, used for ensuring $(EHDRDIR) exists. (clean-unix): Delete the dummy file. ($(EHDRDIR)$(S)gssapi.h): Depend on it, instead of creating the directory here. ($(EHDRDIR)$(S)gssapi_generic.h): Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15443 dc483132-0cff-0310-8789-dd5450dbe970
* provide shorthand aliases for AES enctypesKen Raeburn2003-05-132-0/+15
| | | | | | | | | | | * etypes.c (krb5_enctypes_list): Add names aes128-cts and aes256-cts as aliases. ticket: new target_version: 1.3 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15433 dc483132-0cff-0310-8789-dd5450dbe970
* Try forwarding with no enctype restriction if forwarding with anSam Hartman2003-05-132-3/+12
| | | | | | | | enctype restriction fails. This is sufficient for 1.3. Ticket: 1473 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15431 dc483132-0cff-0310-8789-dd5450dbe970
* * gssapi_krb5.h: Remove check for GSS_RFC_COMPLIANT_OIDSTom Yu2003-05-132-3/+4
| | | | | | | | | ticket: 1482 status: open tags: pullup target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15429 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-15 21:42:28 +0000