krb5.git - MIT Kerberos patches

	Commit message (Collapse)	Author	Age	Files	Lines
...
*	* stdcc.h, stdcc_util.h: Removed Mac header goober	Alexandra Ellwood	2003-03-06	3	-4/+8
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15257 dc483132-0cff-0310-8789-dd5450dbe970
*	* ccdefault.c: Remove Mac header goober and include k5-int.h after ↵	Alexandra Ellwood	2003-03-06	2	-2/+8
\| \| \| \| \| \|	KerberosLoginPrivate.h git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15256 dc483132-0cff-0310-8789-dd5450dbe970
*	* krb5_libinit.c: Removed Mac OS X header goober. Conditionalize CCAPI ↵	Alexandra Ellwood	2003-03-06	2	-5/+12
\| \| \| \| \| \|	calls on USE_CCAPI so Darwin builds work git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15255 dc483132-0cff-0310-8789-dd5450dbe970
*	* CCache-glue.c: Added prototypes for deprecated functions. Made internal ↵	Alexandra Ellwood	2003-03-06	13	-145/+94
\| \| \| \| \| \|	functions static. Removed unused CoreServices include. Changed TICKET_GRANTING_TICKET to new macro: KRB_TICKET_GRANTING_TICKET. * change_password.c: Added check of inputs to krb_change_password so we don't crash on bad inputs. Call des_string_to_key not mit_password_to_key on all platforms because we don't want to prompt for a password. * FSp-glue.c: Added prototypes for deprecated functions. Changed to use KfM's FSSpecToPOSIXPath which correctly handles FSSpecs where the file does not exist. * g_in_tkt.c: Added explanatory comments. Made TARGET_OS_MAC sections a little smaller and easier to read. * g_pw_in_tkt.c: Only prompt when we are not using the login library. This is so that Darwin builds do prompt but KfM builds don't. * g_svc_in_tkt.c, g_tkt_svc.c: Changed to use KRB_TICKET_GRANTING_TICKET. * kadm_net.c: Use autoconf variable krb5_sigtype instead of sigtype, which doesn't seem to be defined on Mac OS X. * krb4int.h, RealmsConfig-glue.c: Removed krb_get_stk(). * rd_req.c: Added #ifdef KRB4_USE_KEYTAB to avoid unused variable warning when KRB4_USE_KEYTAB is not defined. * sendauth.c: Fixed warnings with casts git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15254 dc483132-0cff-0310-8789-dd5450dbe970
*	* disp_status.c, gssapi_krb5.h, gssapiP_krb5.h: Removed Mac header goober	Alexandra Ellwood	2003-03-06	4	-20/+8
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15253 dc483132-0cff-0310-8789-dd5450dbe970
*	* disp_com_err_status.c, gssapi_generic.h: Removed Mac header goober. * ↵	Alexandra Ellwood	2003-03-06	5	-19/+12
\| \| \| \| \| \|	gssapiP_generic.h, gssapi.hin: Removed macintosh check because we don't build on OS 9 anymore. * gssapi.hin: Removed enumsalwaysint because there are no typed enums in this header. Removed duplicate CFM-68K magic git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15252 dc483132-0cff-0310-8789-dd5450dbe970
*	* gss_libinit.c: Removed Mac header goober. Fixed ↵	Alexandra Ellwood	2003-03-06	3	-8/+13
\| \| \| \| \| \|	USE_HARDCODED_FALLBACK_ERROR_TABLES macro used by KfM. * gss_libinit.h: do not use the same multiple include protection macro as krb5_libinit.h. Changed to GSSAPI_LIBINIT_H git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15251 dc483132-0cff-0310-8789-dd5450dbe970
*	* mac_des_glue.c, des.c, enc_dec.c, key_sched.c, str_to_key.c: Move KfM des ↵	Alexandra Ellwood	2003-03-06	8	-78/+113
\| \| \| \| \| \|	functions into their own file. They are all deprecated on KfM and shouldn't even get built on stock krb5 builds. * read_passwd.c: Added warning comment that des_read_pw_string is an exported function on KfM, so we should not change its ABI git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15250 dc483132-0cff-0310-8789-dd5450dbe970
*	* prng.c: use Unix randomness sources on Mac OS X	Alexandra Ellwood	2003-03-06	2	-4/+7
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15249 dc483132-0cff-0310-8789-dd5450dbe970
*	* des_int.h: Added prototype for mit_afs_crypt which is used by the ↵	Alexandra Ellwood	2003-03-06	2	-0/+7
\| \| \| \| \| \|	deprecated KfM des_crypt function git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15248 dc483132-0cff-0310-8789-dd5450dbe970
*	use kdb keytab for kadmind	Tom Yu	2003-03-06	4	-8/+49
\| \| \| \| \| \| \| \| \| \| \| \| \|	kadmind previously required a file-based keytab to support its use of gssapi. For ease of administration, a kdb-based keytab would be beneficial. This commit includes changes to the kdb library to support this goal, as well as actual changes in the kadmind itself. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15237 dc483132-0cff-0310-8789-dd5450dbe970
*	* acquire_cred.c (krb5_gss_register_acceptor_identity): New	Tom Yu	2003-03-06	3	-19/+61
\| \| \| \| \| \| \| \| \| \| \| \|	function. Allows global override of default keytab for gss_acquire_cred() purposes. (acquire_accept_cred): Implement override. * gssapi_krb5.h: Add krb5_gss_register_acceptor_identity. ticket: 880 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15236 dc483132-0cff-0310-8789-dd5450dbe970
*	* Makefile.in (OBJFILELIST, OBJFILEDEP) [##DOS]: Add aes.lst.	Ken Raeburn	2003-03-05	2	-2/+17
\| \| \| \| \| \|	(all-windows, clean-windows, check-windows): Process aes directory. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15233 dc483132-0cff-0310-8789-dd5450dbe970
*	* password_to_key.c (mit_passwd_to_key, afs_passwd_to_key): Comment out pragmas	Ken Raeburn	2003-03-05	2	-0/+7
\| \| \| \| \| \|	not recognized by gcc or cl. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15232 dc483132-0cff-0310-8789-dd5450dbe970
*	string_to_key.c (krb5_c_string_to_key_with_params): Declare before use	Ken Raeburn	2003-03-05	2	-1/+12
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15231 dc483132-0cff-0310-8789-dd5450dbe970
*	Reduce local configure script's work by removing static defines and header and	Ken Raeburn	2003-03-05	18	-29/+48
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	function info available in krb5/autoconf.h. * gethostname.c, getst.c, kadm_net.c, klog.c, kparse.c: Include krb5/autoconf.h. * kuserok.c, log.c, memcache.c, mk_preauth.c, netread.c: Ditto. * netwrite.c, put_svc_key.c, recvauth.c, send_to_kdc.c: Ditto. * tkt_string.c: Ditto. * Makefile.in: Update dependencies. (DEFINES): Define KRB4_USE_KEYTAB. * configure.in: Don't define KRB4_USE_KEYTAB. Don't check for any headers or functions; include/configure.in already does it. Don't invoke AC_C_CONST explicitly; CONFIG_RULES does that. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15230 dc483132-0cff-0310-8789-dd5450dbe970
*	Clean up PBKDF2 interface. Add s2k-params to string-to-key interface, except	Ken Raeburn	2003-03-05	16	-76/+114
\| \| \| \| \| \| \|	no new decl in krb5.h yet; rename changed s2k functions to use krb5int_ prefix. Add AES to etype table. Delete some unused declarations. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15229 dc483132-0cff-0310-8789-dd5450dbe970
*	* aes.c (krb5int_aes_init_state): Implement.	Ken Raeburn	2003-03-05	3	-3/+14
\| \| \| \| \| \|	* enc_provider.h (krb5int_enc_aes128, krb5int_enc_aes256): Declare. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15228 dc483132-0cff-0310-8789-dd5450dbe970
*	* krb5_err.et (KRB5_ERR_BAD_S2K_PARAMS): New error code	Ken Raeburn	2003-03-05	2	-0/+6
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15227 dc483132-0cff-0310-8789-dd5450dbe970
*	Add AES string-to-key function	Ken Raeburn	2003-03-05	4	-9/+84
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15226 dc483132-0cff-0310-8789-dd5450dbe970
*	Delete some unused declarations from old-crypto API	Ken Raeburn	2003-03-05	8	-21/+22
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15225 dc483132-0cff-0310-8789-dd5450dbe970
*	* srv_rcache.c (krb5_get_server_rcache): Fix missed	Tom Yu	2003-03-05	2	-1/+6
\| \| \| \| \| \|	isinvalidrcname -> isvalidrcname. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15224 dc483132-0cff-0310-8789-dd5450dbe970
*	Fix rcache character test introduced in last commit	Sam Hartman	2003-03-05	1	-2/+2
\| \| \| \| \| \|	Ticket: 1370 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15222 dc483132-0cff-0310-8789-dd5450dbe970
*	Don't call shutdown after finishing writing	Sam Hartman	2003-03-04	2	-1/+6
\| \| \| \| \| \|	to TCP socket as doing so causes interop problems. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15220 dc483132-0cff-0310-8789-dd5450dbe970
*	Do not expect sequence number in encrypted krb_cred	Sam Hartman	2003-03-04	2	-1/+5
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15219 dc483132-0cff-0310-8789-dd5450dbe970
*	GSS_C_NO_CREDENTIAL should accept any principal	Sam Hartman	2003-03-04	8	-42/+75
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	If a context is accepted with GSS_C_NO_CREDENTIAL or if a credential is acquired with GSS_C_NO_NAME as the acceptor name then allow any principal in the keytab to be used as the acceptor name. This means that gss_inquire_cred can return GSS_C_NO_NAME from a credential. ticket: new Tags: enhancement cc: nicolas.williams@sun.com cc: krbdev@mit.edu git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15218 dc483132-0cff-0310-8789-dd5450dbe970
*	* pbkdf2.c (F): Now takes krb5_data for password and salt.	Ken Raeburn	2003-03-03	3	-42/+53
\| \| \| \| \| \| \| \| \|	(krb5int_pbkdf2, krb5int_pbkdf2_hmac_sha1, krb5int_pbkdf2_hmac_sha1_128, krb5int_pbkdf2_hmac_sha1_256): Likewise, and for output also. * vectors.c (test_pbkdf2): Calls updated. (main): Run pbkdf2 tests. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15216 dc483132-0cff-0310-8789-dd5450dbe970
*	* g_cnffile.c (krb__get_srvtabname): Keep strdup()ed string in a	Tom Yu	2003-03-03	2	-1/+11
\| \| \| \| \| \| \| \| \|	static variable and free it called again; this prevents a memory leak. ticket: 1357 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15215 dc483132-0cff-0310-8789-dd5450dbe970
*	Use com_err_deplib rather than an explicit path so we do not have our	Sam Hartman	2003-03-02	5	-5/+5
\| \| \| \| \| \| \|	shared libraries depend at a make level on com_err if we use the system com_err library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15212 dc483132-0cff-0310-8789-dd5450dbe970
*	There isn't really a point to validating cred_handle if it was just	Tom Yu	2003-03-01	2	-6/+11
\| \| \| \| \| \| \| \| \| \| \| \|	acquired by acquire_cred(), so instead of the suggested patch, validate verifier_cred_handle only if we didn't acquire_cred(). * accept_sec_context.c (krb5_gss_accept_sec_context): Don't validate verifier_cred_handle if GSS_C_NO_CREDENTIAL is passed in. ticket: 1356 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15211 dc483132-0cff-0310-8789-dd5450dbe970
*	Ignore krb_err_txt.c	Ken Raeburn	2003-02-28	1	-0/+1
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15210 dc483132-0cff-0310-8789-dd5450dbe970
*	* Makefile.in (clean-unix): Remove krb_err_txt.c on clean. Update	Ezra Peisach	2003-02-28	3	-3/+15
\| \| \| \| \| \| \| \|	dependencies * g_pw_in_tkt.c: Include krb4int.h for krb_get_keyprocs() prototype. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15209 dc483132-0cff-0310-8789-dd5450dbe970
*	* Makefile.in (clean): Cleanup testing objects and outputs	Ezra Peisach	2003-02-28	2	-0/+7
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15208 dc483132-0cff-0310-8789-dd5450dbe970
*	remove wrong comment	Ken Raeburn	2003-02-26	1	-1/+0
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15206 dc483132-0cff-0310-8789-dd5450dbe970
*	Thanks, similar patch applied	Tom Yu	2003-02-25	2	-6/+52
\| \| \| \| \| \| \| \| \|	* set_ccache.c (gss_krb5_ccache_name): Don't return a pointer to freed memory. ticket: 1346 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15205 dc483132-0cff-0310-8789-dd5450dbe970
*	Handle NULL result_string->data returned from error in	Tom Yu	2003-02-25	2	-2/+8
\| \| \| \| \| \| \| \| \| \| \| \|	krb5_change_password(). The SAMDATA() macro in lib/krb5/krb/preauth2.c seems to already be fixed. KfM's kpasswd equivalent still needs to be dealt with. ticket: 1055 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15204 dc483132-0cff-0310-8789-dd5450dbe970
*	* in_tkt.c: Include k5-util.h.	Ken Raeburn	2003-02-25	3	-27/+11
\| \| \| \| \| \| \| \|	(do_seteuid): Define as krb5_seteuid instead of testing system characteristics here. * dest_tkt.c: Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15203 dc483132-0cff-0310-8789-dd5450dbe970
*	* change_password.c (krb_change_password): Use int, not KRB_INT32, for krb4	Ken Raeburn	2003-02-25	2	-1/+9
\| \| \| \| \| \|	error codes. Check for malloc failure allocating sendStream. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15202 dc483132-0cff-0310-8789-dd5450dbe970
*	* gssapi_krb5.c (kg_get_defcred): Revert previous; it's probably	Tom Yu	2003-02-24	3	-32/+34
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	not appropriate for inquire_cred() to cause new credentials to be fetched. * init_sec_context.c (krb5_gss_init_sec_context): Explicitly release default cred in the NO_CREDENTIAL case, so it is always refreshed. ticket: 1305 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15201 dc483132-0cff-0310-8789-dd5450dbe970
*	Fix typo pointed out by jenselby in doc pass	Sam Hartman	2003-02-24	1	-1/+1
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15200 dc483132-0cff-0310-8789-dd5450dbe970
*	This should fix things, but I don't have an easy way to test	Tom Yu	2003-02-21	2	-15/+37
\| \| \| \| \| \| \| \| \| \|	* gssapi_krb5.c (kg_get_defcred): Check for invalid or expired defcred if it exists, and call acquire_cred() again if necessary. ticket: 1305 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15199 dc483132-0cff-0310-8789-dd5450dbe970
*	The client sorts the enctype list returned by etype_info ordering	Sam Hartman	2003-02-15	2	-1/+77
\| \| \| \| \| \| \| \| \| \| \| \|	enctypes that it requested or that are similar to ones it requested first. The KDC only includes enctypes in etype_info if they were requested by the client. ticket: 1006 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15191 dc483132-0cff-0310-8789-dd5450dbe970
*	* Makefile.in ($(GSSAPI_KRB5_HDR)): Use $(S) to avoid problems on	Tom Yu	2003-02-14	2	-1/+6
\| \| \| \| \| \|	windows. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15189 dc483132-0cff-0310-8789-dd5450dbe970
*	Fix double free of AS key	Sam Hartman	2003-02-13	2	-1/+6
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15188 dc483132-0cff-0310-8789-dd5450dbe970
*	Oops, add $(GSSAPI_KRB5_HDR) to all-unix	Tom Yu	2003-02-13	2	-2/+3
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15186 dc483132-0cff-0310-8789-dd5450dbe970
*	More tweaks to deal with parallel builds	Tom Yu	2003-02-13	4	-28/+32
\| \| \| \|	git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15185 dc483132-0cff-0310-8789-dd5450dbe970
*	* Makefile.in: Update dependencies.	Tom Yu	2003-02-12	4	-28/+78
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	(KRB_ERR_TXT): Set by configure to be either empty (on Darwin) or krb_err_txt.c (on other platforms). This avoids building krb_err_txt.c on Darwin, as the type of krb_err_txt is a pointer there, so we don't need another copy of the array. (DEFINES): Remove. It wasn't doing anything useful and was cluttering up the compile command line. * configure.in: On Darwin, don't use krb_err_txt.c. * err_txt.c: On Darwin, actually use the array generated by compile_et, and assign it to krb_err_txt, which is a pointer, not an array, on that platform. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15183 dc483132-0cff-0310-8789-dd5450dbe970
*	* CCache-glue.c: Delete in_tkt()	Tom Yu	2003-02-12	4	-12/+9
\| \| \| \| \| \| \| \| \|	* change_password.c: Fix incorrect filename in comment. * g_in_tkt.c (krb_get_in_tkt_preauth): Call krb_in_tkt() rather than in_tkt(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15182 dc483132-0cff-0310-8789-dd5450dbe970
*	Support credentials encrypted in the session key rather than	Sam Hartman	2003-02-11	2	-4/+25
\| \| \| \| \| \|	the subsession key. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15181 dc483132-0cff-0310-8789-dd5450dbe970
*	* CCache-glue.c (krb_in_tkt): Rename from in_tkt().	Tom Yu	2003-02-11	2	-2/+19
\| \| \| \| \| \| \| \|	(in_tkt): Implement in terms of krb_in_tkt() to match existing Unix and Windows API. This shouldn't be a problem because it appears to be considered an internal API on Mac. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15180 dc483132-0cff-0310-8789-dd5450dbe970