summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Ensure that a GSS_C_BOTH acquired for GSS_C_NO_NAME still passesLuke Howard2009-10-223-1/+3
| | | | | | | | a NULL server principal to krb5_rd_req(). Without this the name canonicalisation support in 1.7 was broken for GSS_C_BOTH credentials, because cred->name would always be set. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22973 dc483132-0cff-0310-8789-dd5450dbe970
* Allow the constrained delegation authorization method to use the evidence ↵Luke Howard2009-10-212-1/+6
| | | | | | ticket client name as input to the authorization decision git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22963 dc483132-0cff-0310-8789-dd5450dbe970
* simplify logic fix introduced in r22960 for S4U2SelfLuke Howard2009-10-211-4/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22962 dc483132-0cff-0310-8789-dd5450dbe970
* remove some unneeded extensions from the Novell backend authdata SPILuke Howard2009-10-214-43/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22961 dc483132-0cff-0310-8789-dd5450dbe970
* ensure that forwardable flag is propagated along S4U2Self referral pathLuke Howard2009-10-211-1/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22960 dc483132-0cff-0310-8789-dd5450dbe970
* Increment authdata SPI to V2 (V1 was experimental) to account for additionalLuke Howard2009-10-212-4/+4
| | | | | | krbtgt key parameter. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22959 dc483132-0cff-0310-8789-dd5450dbe970
* Increment authdata SPI to V2 (V1 was experimental) to accountLuke Howard2009-10-212-27/+27
| | | | | | for additional krbtgt key parameter. This was at Sam's suggestion. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22958 dc483132-0cff-0310-8789-dd5450dbe970
* For naming extensions draft compliance, s/mspac:/urn:mspac:/Luke Howard2009-10-203-14/+14
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22957 dc483132-0cff-0310-8789-dd5450dbe970
* Make some gss-krb5 utility functions take enctypes instead of keys,Greg Hudson2009-10-208-38/+44
| | | | | | | | and adjust callers. Fixes a bug where kg_arcfour_docrypt_iov was passing a keyblock instead of a key to kg_translate_iov after the enc-perf merge. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22956 dc483132-0cff-0310-8789-dd5450dbe970
* use ANSI prototypes for acquire_XXX_cred, and fix cast to calling ↵Luke Howard2009-10-201-14/+13
| | | | | | acquire_accept_cred() git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22955 dc483132-0cff-0310-8789-dd5450dbe970
* correct indirection of minor status code when calling displayStatus()Luke Howard2009-10-201-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22954 dc483132-0cff-0310-8789-dd5450dbe970
* In k5_hmac_md5_hash_iov, initialize keyblock.contents so that we don'tGreg Hudson2009-10-201-0/+2
| | | | | | free it prior to initialization if krb5_hmac fails. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22953 dc483132-0cff-0310-8789-dd5450dbe970
* In krb5_k_make_checksum, check for a null key passed with a keyedGreg Hudson2009-10-201-1/+1
| | | | | | checksum instead of just crashing. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22952 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up memory leaks by releasing key at endEzra Peisach2009-10-202-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22951 dc483132-0cff-0310-8789-dd5450dbe970
* Include des_int.h for mit_des_fixup_key_parity prototypeEzra Peisach2009-10-201-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22950 dc483132-0cff-0310-8789-dd5450dbe970
* Fix memory leaks in enc-perf workGreg Hudson2009-10-203-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22949 dc483132-0cff-0310-8789-dd5450dbe970
* fix some Coverity reported defects in naming extensionsLuke Howard2009-10-204-25/+27
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22948 dc483132-0cff-0310-8789-dd5450dbe970
* Implement new APIs to allow improved crypto performanceGreg Hudson2009-10-19105-1069/+1876
| | | | | | | | | | | Merge branches/enc-perf to trunk. Adds the krb5_key opaque type, the krb5_k_* APIs to use them, and caching of derived keys when krb5_k_* functions are used. Updates the krb5 auth context and GSS id-rec to use krb5_keys. ticket: 6576 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22944 dc483132-0cff-0310-8789-dd5450dbe970
* Update prototype files to conform with newer whitespace rulesTom Yu2009-10-193-10/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22937 dc483132-0cff-0310-8789-dd5450dbe970
* Include des_int.h for mit_des_fixup_key_parity prototype. Adjust Makefile.inEzra Peisach2009-10-182-1/+2
| | | | | | to find the proper header. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22912 dc483132-0cff-0310-8789-dd5450dbe970
* Remove adb.h as it is not used in the source treeEzra Peisach2009-10-181-134/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22911 dc483132-0cff-0310-8789-dd5450dbe970
* Properly handle ivec for chaining opsZhanna Tsitkov2009-10-161-175/+34
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22906 dc483132-0cff-0310-8789-dd5450dbe970
* Fix the value of ivec in aes_decrypt_iovZhanna Tsitkov2009-10-161-3/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22905 dc483132-0cff-0310-8789-dd5450dbe970
* Enable t_cts testZhanna Tsitkov2009-10-151-4/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22902 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed aes to handle the input buffers of the various sizesZhanna Tsitkov2009-10-151-140/+313
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22900 dc483132-0cff-0310-8789-dd5450dbe970
* Fix preauth looping in krb5_get_init_credsGreg Hudson2009-10-131-2/+16
| | | | | | | | | | | | | | In 1.7, krb5_get_init_creds will continue attempting the same built-in preauth mechanism (e.g. encrypted timestamp) until the loop counter maxes out. Until the preauth framework can remember not to retry built-in mechanisms, only continue with preauth after a PREAUTH_FAILED error resulting from optimistic preauth. ticket: 6573 tags: pullup target_version: 1.7.1 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22890 dc483132-0cff-0310-8789-dd5450dbe970
* Revert a small part of r22736 which incorrectly fixed a preauthGreg Hudson2009-10-131-4/+2
| | | | | | looping bug in krb5_get_init_creds. A more correct fix will follow. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22888 dc483132-0cff-0310-8789-dd5450dbe970
* Fix memory leak and init those magic number fields to prevent compiler warningEzra Peisach2009-10-101-1/+4
| | | | | | when structure copied. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22879 dc483132-0cff-0310-8789-dd5450dbe970
* Clean nfold.o on make cleanEzra Peisach2009-10-101-7/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22878 dc483132-0cff-0310-8789-dd5450dbe970
* Move destest to builtin/des, because it depends on overriding someTom Yu2009-10-1060-1589/+1953
| | | | | | | | internals. Make depend. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22877 dc483132-0cff-0310-8789-dd5450dbe970
* Remove krb5.conf, bigendian.o, and bigendian on make cleanEzra Peisach2009-10-101-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22876 dc483132-0cff-0310-8789-dd5450dbe970
* Implement GSS naming extensions and authdata verificationGreg Hudson2009-10-09106-380/+7739
| | | | | | | | | Merge Luke's users/lhoward/authdata branch to trunk. Implements GSS naming extensions and verification of authorization data. ticket: 6572 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22875 dc483132-0cff-0310-8789-dd5450dbe970
* Get aes-gen to build again (for the default back end, at least)Greg Hudson2009-10-091-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22873 dc483132-0cff-0310-8789-dd5450dbe970
* In asn1_decode_enc_kdc_rep_part, don't leak the enc_padata field onGreg Hudson2009-10-091-0/+1
| | | | | | | | | | invalid representations. ticket: 6571 tags: pullup target_version: 1.7.1 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22872 dc483132-0cff-0310-8789-dd5450dbe970
* In anticipation of a new version of OpenSSL 1.0.0, support renamed API: ↵Zhanna Tsitkov2009-10-081-1/+5
| | | | | | EVP_PKEY_decrypt -> EVP_PKEY_decrypt_old git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22871 dc483132-0cff-0310-8789-dd5450dbe970
* In krb5_c_verify_checksum, avoid the structure copy of *data since weGreg Hudson2009-10-081-1/+2
| | | | | | | don't care about data->magic. Squashes a bunch of unimportant Coverity defects. (May not be the correct long-term solution.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22868 dc483132-0cff-0310-8789-dd5450dbe970
* In krb5_calculate_checksum (a compatibility routine), initializeGreg Hudson2009-10-081-0/+1
| | | | | | | | key.enctype to ENCTYPE_NULL. This will predictably fail to match a keyed hash's enctype, which may not be the best behavior, but is better than unpredictably failing to match it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22867 dc483132-0cff-0310-8789-dd5450dbe970
* In krb5_c_make_checksum, avoid the structure copy of *input since weGreg Hudson2009-10-071-1/+2
| | | | | | | don't care about input->magic. Squashes a bunch of unimportant Coverity defects. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22866 dc483132-0cff-0310-8789-dd5450dbe970
* Fix krb5_c_weak_enctype in the case of invalid enctypes; r22839Greg Hudson2009-10-071-1/+1
| | | | | | simplified it a bit too much. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22865 dc483132-0cff-0310-8789-dd5450dbe970
* In krb5_encrypt_helper, return ENOMEM instead of 0 if we can'tGreg Hudson2009-10-061-1/+1
| | | | | | allocate the ciphertext buffer. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22860 dc483132-0cff-0310-8789-dd5450dbe970
* Crypto modularity proj: Populate openssl/aes dirZhanna Tsitkov2009-10-0610-0/+1546
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22859 dc483132-0cff-0310-8789-dd5450dbe970
* Slightly more comprehensible message for KRB5_RC_IOKen Raeburn2009-10-061-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22857 dc483132-0cff-0310-8789-dd5450dbe970
* Fix object file pathZhanna Tsitkov2009-10-061-5/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22856 dc483132-0cff-0310-8789-dd5450dbe970
* Impl. krb5int_aes_enc/decrypt_iov. Passes t_encrypt testZhanna Tsitkov2009-10-041-149/+144
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22843 dc483132-0cff-0310-8789-dd5450dbe970
* Update the crypto derived key support code to conform to most of theGreg Hudson2009-10-037-481/+334
| | | | | | | current coding practices (except lack of tabs). Use the helper functions k5alloc, zapfree, and find_enctype to reduce code size. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22840 dc483132-0cff-0310-8789-dd5450dbe970
* Update the crypto API glue to conform to most of the current codingGreg Hudson2009-10-0339-976/+736
| | | | | | | practices (except lack of tabs). Use the helper functions k5alloc, zapfree, and find_enctype to reduce code size. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22839 dc483132-0cff-0310-8789-dd5450dbe970
* Add convenience functions zapfree (test for null, zap, free) andGreg Hudson2009-10-031-0/+21
| | | | | | k5alloc (allocate memory, set a krb5_error_code result) to k5-int.h. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22838 dc483132-0cff-0310-8789-dd5450dbe970
* Crypto modularity proj: Populae openssl/arcfour dirZhanna Tsitkov2009-10-015-0/+788
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22825 dc483132-0cff-0310-8789-dd5450dbe970
* Crypto modularity proj: Populate openssl/des dir.Zhanna Tsitkov2009-10-0115-0/+848
| | | | | | To avoid breaking the export list some functions (mostly mit_xxx) are left in place with the disabled functionality. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22821 dc483132-0cff-0310-8789-dd5450dbe970
* Crypto modulrity proj: Basic AES crypto for openssl implZhanna Tsitkov2009-10-011-0/+505
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22820 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-10-08 05:49:30 +0000