summaryrefslogtreecommitdiffstats
path: root/src/lib
Commit message (Collapse)AuthorAgeFilesLines
...
* This commit fixes up the in-tree callers of krb5_read_password() andTom Yu2002-11-062-2/+7
| | | | | | | | | | des_read_password(). We should perhaps tighten up the test suite now. ticket: 1217 status: open target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14972 dc483132-0cff-0310-8789-dd5450dbe970
* * asn1_encode.h (asn1_encode_oid):Tom Yu2002-11-055-0/+48
| | | | | | | | | | | | | * asn1_encode.c (asn1_encode_oid): New function. * asn1_decode.h (asn1_decode_oid): * asn1_decode.c (asn1_decode_oid): New function. ticket: 1223 target_version: 1.3 component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14971 dc483132-0cff-0310-8789-dd5450dbe970
* Calling convention for krb5int_c_combine_keys does not match prototypeKen Hornstein2002-11-032-1/+6
| | | | | | | | | | The Windows calling convention for krb5int_c_combine_keys does not match the prototype in k5-int.h. I missed this during the initial commit since I neglected to test out the build of this code on Windows. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14962 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (check-unix): Don't run t_pkcs5Ken Raeburn2002-10-312-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14956 dc483132-0cff-0310-8789-dd5450dbe970
* * xdr_alloc.c (xdralloc_putlong): Coerce value pointed to by argument to 32Ken Raeburn2002-10-312-2/+9
| | | | | | bits, rather than reading only 32 bits from the supplied address. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14954 dc483132-0cff-0310-8789-dd5450dbe970
* * k5-int.h (krb5_ser_handle): Now points to const.Ken Raeburn2002-10-314-17/+26
| | | | | | | | | | | | | | | (krb5_kt_dfl_ops): Now const. (struct _krb5_kt_ops): Field serializer now points to const krb5_ser_entry instead of void. * krb5.hin (struct _krb5_kt): Field ops now points to const. * kt_file.c (krb5_ktf_ops, krb5_ktf_writable_ops): Now const. Drop cast of serializer entry initializer. (fopen_mode_rbplus, fopen_mode_rb): Now const. * kt_srvtab.c (krb5_kts_ops): Now const. * ktbase.c (krb5_ktf_ops, krb5_kts_ops): Update declarations. (struct krb5_kt_typelist): Field ops now points to const. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14953 dc483132-0cff-0310-8789-dd5450dbe970
* ticket: newSam Hartman2002-10-311-1/+1
| | | | | | | | | | owner: tlyu status: open Fix typo in debugging printf introduced in null handling git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14951 dc483132-0cff-0310-8789-dd5450dbe970
* * chk_trans.c (krb5_check_transited_list): Style nit: checkTom Yu2002-10-302-3/+8
| | | | | | character against '\0' not NULL. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14949 dc483132-0cff-0310-8789-dd5450dbe970
* ticket: 1230Sam Hartman2002-10-302-4/+15
| | | | | | | | | | owner: tlyu status: open Ignore trailing nulls on incoming tr encoding to be compatible with bug in previous versions of krb5 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14946 dc483132-0cff-0310-8789-dd5450dbe970
* Wrong ASN.1 definition and padata type for new hardware preauthKen Hornstein2002-10-302-1/+5
| | | | | | | | | | | | | | | It turned out that early in the development cycle, one of our developers picked the "next" PADATA type in krb5.hin, and we said, "We've got to fix that when we get the real one assigned" ... and we never did. Noticed by Ezra Peisach. Also, the definition for sam-pk-for-sad was changed to OCTET STRING from EncryptionKey in the draft and the code, but we never updated the ASN.1 definition. Also noticed by Ezra Peisach. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14945 dc483132-0cff-0310-8789-dd5450dbe970
* * localaddr.c (print_addr) [TEST]: Don't mix size_t and socklen_t, just assumeKen Raeburn2002-10-282-7/+9
| | | | | | | socklen macro will return a socklen_t value. Cast buffer size to socklen_t in getnameinfo call. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14944 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c (conf_yes, conf_no): Now const. References updated.Ken Raeburn2002-10-284-11/+19
| | | | | | | | * preauth.c (preauth_systems): Now const. References updated. * preauth2.c (pa_types): Now const. (krb5_do_preauth): Local array paorder now const. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14943 dc483132-0cff-0310-8789-dd5450dbe970
* If we get cannot resolve KDC for master but find a slaveSam Hartman2002-10-282-1/+6
| | | | | | | | return the real error from the slave rather than the resolution error. ticket: 1232 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14941 dc483132-0cff-0310-8789-dd5450dbe970
* Client code lacks support for draft-ietf-krb-wg-kerberos-sam-01.txtKen Hornstein2002-10-2418-7/+1134
| | | | | | | | | | | This widely-spread commit implements support for the so-called "new" hardware preauth protocol, defined in the IETF internet-draft draft-ietf-krb-wg-kerberos-sam-01.txt. Note that this code is client-side only. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14939 dc483132-0cff-0310-8789-dd5450dbe970
* No support for negative password expiration last-req hintKen Hornstein2002-10-241-1/+2
| | | | | | | | | Fixing an omission; previous code didn't support a negative value for the password expiration hint (which is legal). Pointed out by Ezra Peisach. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14938 dc483132-0cff-0310-8789-dd5450dbe970
* Implement asn1_encode_enumeratedSam Hartman2002-10-234-4/+51
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14937 dc483132-0cff-0310-8789-dd5450dbe970
* gic_pwd doesn't support password expiration notification via last_req hintKen Hornstein2002-10-232-1/+46
| | | | | | | | | | | | | | In kerberos-clarifications, a new last-req type (6) has been specified that indicates when a principal's password will expire. This code implements support for this last-req type. Note that the intent is that the last-req type will only be included by the KDC when the time until password expiration reaches some threshold (e.g, one week), so this code will display the password expiration anytime the last-req type is included. ticket: 1065 ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14936 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c (service_tcp_fd): If DEBUG defined, ensure thatEzra Peisach2002-10-222-1/+7
| | | | | | initialization of variable not bypassed by goto. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14934 dc483132-0cff-0310-8789-dd5450dbe970
* This commit fixes the test suite aspects. Callers of the variousTom Yu2002-10-193-5/+14
| | | | | | | | | | | | | | | read_password functions still need to be updated. * api.2/init-v2.exp (test106): Make regexp more forgiving of variant password prompts. * api.0/init.exp (test7, test22, test225): Make regexp more forgiving of variant password prompts. ticket: 1217 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14932 dc483132-0cff-0310-8789-dd5450dbe970
* Thanks, (corrected) patch appliedTom Yu2002-10-153-2/+10
| | | | | | | | | | | | * hst_realm.c (krb5_try_realm_txt_rr): Apply patch from Nalin Dahyabhai to bounds-check return value from res_search(). * locate_kdc.c (krb5_locate_srv_dns_1): Apply patch from Nalin Dahyabhai to bounds-check return value from res_search(). ticket: 1216 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14928 dc483132-0cff-0310-8789-dd5450dbe970
* * server_init.c (kadm5_lock, kadm5_unlock): Return KADM5_OKEzra Peisach2002-10-152-0/+9
| | | | | | instead of falling off end of function. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14927 dc483132-0cff-0310-8789-dd5450dbe970
* implement krb5_read_password, des_read_password via krb5_prompter_posixTom Yu2002-10-112-5/+15
| | | | | | | | | | | | | | | | | | This commit fixes one incompatibility introduced when krb5_read_password was reimplemented in terms of krb5_prompter_posix. There is a remaining incompatibility, which is krb5_prompter_posix's appending of the string ": " following a prompt. Callers of krb5_read_password and of des_read_password don't expect this behavior, which results in a double colon prompt, which breaks the libkadm5 test suite. * read_pwd.c (krb5_read_password): Restore name of size_return. Set *size_return after successful call to krb5_prompter_posix, since some callers were actually checking, e.g. kadm5. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14922 dc483132-0cff-0310-8789-dd5450dbe970
* Implement krb5_read_password an des_read_pw_stringSam Hartman2002-10-104-223/+74
| | | | | | | | | in terms of krb5_prompter_posix. Change motivated by the desire for echo foo |kinit -4 bar to work in test scripts, but having one implementation of password read functions on unix is good anyway git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14921 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (EXTRADEPSRCS): New variable.Ken Raeburn2002-10-102-1/+63
| | | | | | | (t_hmac$(EXEEXT), t_pkcs5$(EXEEXT), vectors$(EXEEXT)): New targets. (check-unix): Depend on and run t_hmac and t_pkcs5. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14920 dc483132-0cff-0310-8789-dd5450dbe970
* * string2key.c (mit_des_string_to_key_int): If PRINT_TEST_VECTORS is defined,Ken Raeburn2002-10-102-6/+69
| | | | | | print some of the intermediate results. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14919 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (t_cksum4, t_cksum5): Include com_err library when linkingKen Raeburn2002-10-102-2/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14918 dc483132-0cff-0310-8789-dd5450dbe970
* whitespaceKen Raeburn2002-10-101-3/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14917 dc483132-0cff-0310-8789-dd5450dbe970
* * pbkdf2.c, t_hmac.c, t_pkcs5.c: New filesKen Raeburn2002-10-104-0/+738
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14916 dc483132-0cff-0310-8789-dd5450dbe970
* libkadm5 should allow persistent locksTom Yu2002-10-0810-7/+81
| | | | | | | | | | | libkadm5 should have a way to persistently lock the databases to avoid wasting time on closing and reopening. These patches implement persistent exclusive locks for local access only. ticket: new target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14914 dc483132-0cff-0310-8789-dd5450dbe970
* ASN.1 code passes uninitialized values aroundTom Yu2002-10-084-137/+239
| | | | | | | | | | | | | | | | | | | | | | * asn1_get.c (asn1_get_tag_indef): Stomp on asn1class, construction, retlen, and indef, even if we've hit the end of the buffer, to avoid passing uninitialized values around. * asn1_k_decode.c: Reformat somewhat and add comments to demystify things a little. (opt_field): Fix to explicitly check for end of subbuf before verifying the pre-fetched tag, which may have been stomped on by asn1_get_tag_indef() encountering end-of-buffer. * krb5_decode.c (opt_field, opt_lenfield): Fix to explicitly check for end of subbuf before verifying the pre-fetched tag, which may have been stomped on by asn1_get_tag_indef() encountering end-of-buffer. ticket: new target_version: 1.3 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14913 dc483132-0cff-0310-8789-dd5450dbe970
* Implement an install-headers target to install public headers into KRB5_INCDIR;Sam Hartman2002-10-074-2/+10
| | | | | | | | probably called by setting DESTDIR. ticket: 1208 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14912 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesTom Yu2002-09-283-16/+23
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14906 dc483132-0cff-0310-8789-dd5450dbe970
* Fix DES_INT32 definitionTom Yu2002-09-2715-81/+205
| | | | | | | | | | | | Intial merge of KfM des library API. Update krb.h to use offsets from krb_err.et constants as error codes. Fix up definitions of KRB4_32, KRB_INT32, KRB_UINT32. ticket: 1189 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14904 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c (krb5int_cm_call_select): Fix last changeKen Raeburn2002-09-272-2/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14902 dc483132-0cff-0310-8789-dd5450dbe970
* Add some dependencies on phony build targets to help with cross-directory ↵Ken Raeburn2002-09-244-0/+14
| | | | | | dependencies git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14897 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c (krb5int_cm_call_select): If timeout value has tv_sec==0, treatKen Raeburn2002-09-192-14/+28
| | | | | | | it as meaning "no timeout". (krb5int_debug_fprint): Handle null timeval pointer. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14884 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesKen Raeburn2002-09-181-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14879 dc483132-0cff-0310-8789-dd5450dbe970
* Support reading a list of TCP port numbers from the KDC config file; defaultKen Raeburn2002-09-183-1/+13
| | | | | | to none for now. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14878 dc483132-0cff-0310-8789-dd5450dbe970
* protoizeKen Raeburn2002-09-182-32/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14877 dc483132-0cff-0310-8789-dd5450dbe970
* * client_init.c (_kadm5_init_any): If creating a new ccache, put it in memoryKen Raeburn2002-09-182-0/+14
| | | | | | instead of on disk. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14876 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c: Include cm.h.Ken Raeburn2002-09-182-48/+87
| | | | | | | | | | | | | | | (struct select_state, SSF_READ, SSF_WRITE, SSF_EXCEPTION): Moved to cm.h. (DEBUG): Define. (krb5int_debug_sendto_kdc): Initialize to zero. (default_debug_handler, put, putstr): New functions. (krb5int_sendtokdc_debug_handler): New variable. (krb5int_debug_fprint): Don't write to stderr; instead, pass strings to the debug output handlers above. (struct incoming_krb5_message): Broken out from struct conn_state. (krb5int_cm_call_select): Renamed from call_select; callers updated. Now extern. Display max fd number in debugging call, not nfds. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14875 dc483132-0cff-0310-8789-dd5450dbe970
* Return errno not retval from getpeername failureSam Hartman2002-09-172-1/+6
| | | | | | ticket: 1164 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14871 dc483132-0cff-0310-8789-dd5450dbe970
* * lib/helpers.exp (setup_database): Use "!=" instead of "ne" for string ↵Ken Raeburn2002-09-162-1/+6
| | | | | | comparisons git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14870 dc483132-0cff-0310-8789-dd5450dbe970
* * lib/helpers.exp (expect_tcl_prompt): Use the "-re" flag, andTom Yu2002-09-152-3/+15
| | | | | | | | | match end of output. (expect_kadm_ok): s/error/perror. (setup_database): Work around tcl 8.4's (incorrect?) output EOL translation. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14867 dc483132-0cff-0310-8789-dd5450dbe970
* * api.0/chpass-principal.exp:Tom Yu2002-09-1534-836/+882
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * api.0/crte-policy.exp: * api.0/crte-principal.exp: * api.0/destroy.exp: * api.0/dlte-policy.exp: * api.0/dlte-principal.exp: * api.0/get-policy.exp: * api.0/get-principal.exp: * api.0/init.exp: * api.0/mod-policy.exp: * api.0/mod-principal.exp: * api.0/randkey-principal.exp: * api.0/rename-principal.exp: * api.1/lock.exp: * api.2/chpass-principal-v2.exp: * api.2/chpass-principal.exp: * api.2/crte-policy.exp: * api.2/crte-principal.exp: * api.2/destroy.exp: * api.2/dlte-policy.exp: * api.2/dlte-principal.exp: * api.2/get-policy.exp: * api.2/get-principal-v2.exp: * api.2/get-principal.exp: * api.2/init-v2.exp: * api.2/init.exp: * api.2/mod-policy.exp: * api.2/mod-principal-v2.exp: * api.2/mod-principal.exp: * api.2/randkey-principal-v2.exp: * api.2/randkey-principal.exp: * lib/lib.t: s/error/perror. * config/unix.exp: Work around tcl 8.4's (incorrect?) output EOL translation. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14866 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c (service_fds): Fix bug in last change.Ken Raeburn2002-09-142-30/+36
| | | | | | | | | | (krb5int_debug_fprint): Use 'out' consistently, minimize explicit references to stderr. Flush output before returning. (dperror) [_WIN32]: Shorten message. (start_connection, service_tcp_fd, service_fds, krb5int_sendto): Use dprint instead of dfprintf. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14863 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c (struct conn_state): Add new function pointer field 'service'Ken Raeburn2002-09-142-44/+41
| | | | | | | | | | | | | for the fd service routine. (setup_connection): Initialize it. (service_fd): Deleted. (service_fds): Incorporate debug output from service_fd. Call service routine indicated in connection info. Decrement select fd count for each flag set for a file descriptor. Ensure that the index into the conns array doesn't run off the end. (krb5int_debug_fprint): Fetch correct type for %E. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14862 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesKen Raeburn2002-09-133-28/+16
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14857 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb_db2.c (krb5_db2_db_iterate_ext): Don't call bt_rseq if HAVE_BT_RSEQ isKen Raeburn2002-09-132-0/+15
| | | | | | undefined; instead, just return an error. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14850 dc483132-0cff-0310-8789-dd5450dbe970
* Don't request addresses whenSam Hartman2002-09-112-11/+18
| | | | | | we forward addressless tickets git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@14845 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-16 07:56:38 +0000