summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Use KRB5_RUN_FLAGS in configure.in, and use appropriate run flags forSam Hartman1996-05-233-6/+21
| | | | | | | | | | each test so shared libraries are happy. Also, for tests that use weak or zero keys, make sure we link in enough object modules to allow us to overide parts of libcrypto even on systems with early binding in shared libs lik AIX. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8118 dc483132-0cff-0310-8789-dd5450dbe970
* * Ignore the error if we cannot make ksu set-uid; we don't want toSam Hartman1996-05-232-1/+7
| | | | | | abort make install in this situation. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8117 dc483132-0cff-0310-8789-dd5450dbe970
* Use secure context for loginSam Hartman1996-05-232-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8116 dc483132-0cff-0310-8789-dd5450dbe970
* md4crypto.c:Richard Basch1996-05-222-2/+12
| | | | | | | | | The incorrect size was being used to compare the computed message digest and the supplied checksum for the "fixed" md4 case, causing decryption integrity failures. [Fixed by epeisach/audited by basch; fixes 'make check'] git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8099 dc483132-0cff-0310-8789-dd5450dbe970
* Update use of libupdate to use the new command line argumentsTheodore Tso1996-05-212-8/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8086 dc483132-0cff-0310-8789-dd5450dbe970
* Remove vestigal ODBM supportTheodore Tso1996-05-202-32/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8085 dc483132-0cff-0310-8789-dd5450dbe970
* Remove support for ODBMTheodore Tso1996-05-202-8/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8084 dc483132-0cff-0310-8789-dd5450dbe970
* Remove vestigal support for ODBMTheodore Tso1996-05-202-12/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8083 dc483132-0cff-0310-8789-dd5450dbe970
* Update autoconf to version 2.10. This will fix the reported bugs ofTheodore Tso1996-05-2023-2020/+11668
| | | | | | | the install-sh script getting cached with the wrong values, as well as bringing us to a more recent version of autoconf. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8078 dc483132-0cff-0310-8789-dd5450dbe970
* krb5.conf.M: Document kdc_req_checksumtype, as_req_checksum_type, andTheodore Tso1996-05-203-2/+23
| | | | | | | | | safe_checksum_type. krb5.conf: Remove the tkt_lifetime parameter altogether. We may end up doing it slightly differently post-Beta 6... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8067 dc483132-0cff-0310-8789-dd5450dbe970
* md5crypto.c, md5crypto.h: Change use of RSA_MD5_DES_CKSUM_LENGTH toTheodore Tso1996-05-204-125/+73
| | | | | | | | | | | use OLD_RSA_MD5_DES_CKSUM_LENGTH and NEW_RSA_MD5_DES_CKSUM_LENGTH, as appropriate. t_cksum.c (main): Use proper header file constants to get the correct checksum length for the MD4 and MD5 old-style and new-style checksum functions. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8066 dc483132-0cff-0310-8789-dd5450dbe970
* Change use of RSA_MD4_DES_CKSUM_LENGTH to useTheodore Tso1996-05-203-36/+36
| | | | | | | OLD_RSA_MD4_DES_CKSUM_LENGTH and NEW_RSA_MD4_DES_CKSUM_LENGTH, as appropriate. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8065 dc483132-0cff-0310-8789-dd5450dbe970
* Don't do timing tests; it takes too long!Theodore Tso1996-05-202-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8064 dc483132-0cff-0310-8789-dd5450dbe970
* update Makefile.in for new libupdateTom Yu1996-05-206-26/+26
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8060 dc483132-0cff-0310-8789-dd5450dbe970
* fix libupdate and allow it to deal with multiple directoriesTom Yu1996-05-202-7/+15
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8059 dc483132-0cff-0310-8789-dd5450dbe970
* Fixes so krb5_seteuid compiles on UltrixSam Hartman1996-05-205-5/+20
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8058 dc483132-0cff-0310-8789-dd5450dbe970
* Fix up some annoying pre-processor typosSam Hartman1996-05-201-6/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8057 dc483132-0cff-0310-8789-dd5450dbe970
* document changes to libupdate.shTom Yu1996-05-201-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8056 dc483132-0cff-0310-8789-dd5450dbe970
* * libupdate.sh: do the shift before the assignmentsTom Yu1996-05-201-18/+12
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8055 dc483132-0cff-0310-8789-dd5450dbe970
* Fix for HPUxSam Hartman1996-05-202-1/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8054 dc483132-0cff-0310-8789-dd5450dbe970
* Do not keep source cache open if we are going to useSam Hartman1996-05-202-5/+10
| | | | | | it as the target cache. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8053 dc483132-0cff-0310-8789-dd5450dbe970
* As per mail describing the ksu problem, invent a krb5utilSam Hartman1996-05-195-3/+65
| | | | | | | function to properly set the euid on all systems where it is possible. Ksu cannot be used without this function in a secure manner. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8052 dc483132-0cff-0310-8789-dd5450dbe970
* Check for uid_t so that new prototype worksSam Hartman1996-05-192-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8051 dc483132-0cff-0310-8789-dd5450dbe970
* Prototype new function: krb5_seteuidSam Hartman1996-05-192-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8050 dc483132-0cff-0310-8789-dd5450dbe970
* Significant security fixes to ksuSam Hartman1996-05-197-73/+148
| | | | | | | | | | | | | | | | * Use source euid all throughout procedure of opening source ccache, Richard's code had a race condition. * Use target euid while looking up .k5login and constructing target ccache. * Avoid chowns completely; they create race conditions. Fchown could have been used if we wanted to be really careful, but they aren't necessary and we would have to violate abstractions. * Clean up several conditions that would allow users to delete arbitrary files of the user they were ksuing to without authorization. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8049 dc483132-0cff-0310-8789-dd5450dbe970
* * kdb_dbm.c: Do not provide prototypes for dbm_error orEzra Peisach1996-05-182-2/+7
| | | | | | | | dbm_clearerr if they are really macros. Required for Ultrix... git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8048 dc483132-0cff-0310-8789-dd5450dbe970
* * des3_sha.c: Add static keywords in function declarartions toEzra Peisach1996-05-182-2/+7
| | | | | | match earlier declarations. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8047 dc483132-0cff-0310-8789-dd5450dbe970
* Define $library from the positional arguments before --force uses $libraryTheodore Tso1996-05-182-4/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8046 dc483132-0cff-0310-8789-dd5450dbe970
* Fix memory leak. Free tempbuf before returningTheodore Tso1996-05-182-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8045 dc483132-0cff-0310-8789-dd5450dbe970
* Define MD5_K5BETA_COMPAT and MD5_K5BETA_COMP_DEF so that we continueTheodore Tso1996-05-183-4/+20
| | | | | | | | | | | | doing things the wrong (broken) way. All hail backwards compatibility.... The code now generates the old checksum, but it will verify both the old and the correct checksum formats. Also fixed two bugs in the "correct" MD5_CRYPTO implementation; use a zero initialization vector, and calculate the confounder at the beginning of the message, not at the end. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8044 dc483132-0cff-0310-8789-dd5450dbe970
* Define MD4_K5BETA_COMPAT and MD4_K5BETA_COMP_DEF so that we continueTheodore Tso1996-05-183-6/+22
| | | | | | | | | | | | doing things the wrong (broken) way. All hail backwards compatibility.... The code now generates the old checksum, but it will verify both the old and the correct checksum formats. Also fixed two bugs in the "correct" MD4_CRYPTO implementation; use a zero initialization vector, and calculate the confounder at the beginning of the message, not at the end. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8043 dc483132-0cff-0310-8789-dd5450dbe970
* Correctly implement getsockname(), so it does getsockname(), notTheodore Tso1996-05-172-10/+41
| | | | | | getpeername(), and add the function getpeername(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8040 dc483132-0cff-0310-8789-dd5450dbe970
* (AC_CHECK_DBM_PROTOS): If the test had already been run and the resultEzra Peisach1996-05-152-2/+8
| | | | | | cached, arguments $3 and $4 were never executed. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8030 dc483132-0cff-0310-8789-dd5450dbe970
* * k5seal.c k5unseal.c util_cksum.c:Richard Basch1996-05-154-11/+14
| | | | | | | setup krb5_checksum "contents" and "length" field prior to calling krb5_calculate_checksum(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8029 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed changelog to reflect previous checkinRichard Basch1996-05-151-0/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8028 dc483132-0cff-0310-8789-dd5450dbe970
* * des_crc.c des_md5.c:Richard Basch1996-05-155-49/+66
| | | | | | | | | | | | | set the length field of the cksum structure. * des3_sha.c: Increase the confounder length to 24 bytes. Set the length of the cksum structure. * cryptoconf.c: sha-des3 cksum has been replaced by hmac-sha git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8027 dc483132-0cff-0310-8789-dd5450dbe970
* * .Sanitize: reflect current filesRichard Basch1996-05-157-164/+135
| | | | | | | | | | * Makefile.in: added hmac-sha * hmac_sha.c: implement HMAC-SHA * sha_crypto.c: use hmac-sha * sha_glue.c: sanity check the passed in checksum length * shs.h: replaced sha-des3 with hmac-sha git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8026 dc483132-0cff-0310-8789-dd5450dbe970
* * md5crypto.c md5glue.c:Richard Basch1996-05-154-2/+16
| | | | | | | | ensure the cksum content length is sufficient. * t_cksum.c: initialize cksum.length git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8025 dc483132-0cff-0310-8789-dd5450dbe970
* * md4crypto.c md4glue.c:Richard Basch1996-05-153-1/+11
| | | | | | ensure the cksum content length is sufficient git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8024 dc483132-0cff-0310-8789-dd5450dbe970
* * des_int.h: the cs_entry routines in cbc_cksum.c are now staticRichard Basch1996-05-155-60/+36
| | | | | | | | | | | | * Makefile.in: removed cs_entry.c * cbc_cksum.c: caller is responsible for allocating cksum->contents and indicate the allocated amount in cksum->length. the cs_entry routines are now static and the cs_entry structure is now in this file to enforce proper use. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8023 dc483132-0cff-0310-8789-dd5450dbe970
* crc.c: ensure the cksum length is sufficientRichard Basch1996-05-153-4/+14
| | | | | | crc-test.c: set the cksum length field git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8022 dc483132-0cff-0310-8789-dd5450dbe970
* * mk_req_ext.c mk_safe.c send_tgs.c:Richard Basch1996-05-155-28/+37
| | | | | | | | | set the length field of the krb5_checksum structure before calling krb5_calculate_checksum. * str_conv.c: replaced sha-des3 cksum with hmac-sha. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8021 dc483132-0cff-0310-8789-dd5450dbe970
* replaced CKSUMTYPE_SHA_DES3 with CKSUMTYPE_HMAC_SHARichard Basch1996-05-152-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8020 dc483132-0cff-0310-8789-dd5450dbe970
* Remove old, outdated libraryTheodore Tso1996-05-1428-3056/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8019 dc483132-0cff-0310-8789-dd5450dbe970
* Change call to krb5_auth_con_setcksumtype to useTheodore Tso1996-05-142-1/+7
| | | | | | krb5_auth_con_set_req_cksumtype by default instead. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8018 dc483132-0cff-0310-8789-dd5450dbe970
* ser_ctx.c (krb5_context_size, krb5_context_externalize,Theodore Tso1996-05-148-208/+403
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | krb5_context_internalize): Add missing fields from the serialized context: clockskew, default_kdc_req_sumtype, default_ap_req_sumtype, default_safe_sumtype, kdc_default_options, library_options, profile_secure, fcc_default_format, scc_default_format. ser_actx.c (krb5_auth_context_size, krb5_auth_context_externalize, krb5_auth_context_internalize): Serialize the two fields req_cksumtype and safe_cksumtype, instead of the one cksumtype field. mk_safe.c (krb_mk_safe): Use safe_cksumtype instead of cksumtype in the auth context. mk_req_ext.c (krb5_mk_req_extended): Use req_cksumtype instead of cksumtype in the auth context. init_ctx.c (krb5_init_context): Add support for new profile relations libdefaults/tkt_lifetime, libdefaults/kdc_req_checksum_type, libdefaults/ap_req_cksumtype, libdefaults/safe_checksumtype, and libdefaults/kdc_default_options. auth_con.h: Remove old cksumtype element, and replace it with req_cksumtype and safe_cksumtype. auth_con.c (krb5_auth_con_init): Initialize the req_cksumtype and safe_cksumtype from the context's default req_cksumtype and safe_cksumtype. (krb5_auth_con_set_req_cksumtype, krb5_auth_con_set_safe_cksumtype): New functions, to replace old krb5_auth_con_setcksumtype git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8017 dc483132-0cff-0310-8789-dd5450dbe970
* k5-int.h: Added new field values for ap_req_sumtype and safe_sumtype.Theodore Tso1996-05-143-1/+24
| | | | | | | | | | | Added new convenience function for verifying magic numbers: KRB5_VERIFY_MAGIC. krb5.hin (krb5_auth_con_set_req_cksumtype, rb5_auth_con_set_safe_cksumtype): Added prototypes of new functions, to replace old krb5_auth_con_setcksumtype. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8016 dc483132-0cff-0310-8789-dd5450dbe970
* Change the default ticket lifetime to something reasonable (10 hours,Theodore Tso1996-05-142-1/+7
| | | | | | | instead of 10 minutes). Also change the label of this parameter to be tkt_lifetime. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8015 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (SHLIB_LIBS): For shared library, add dependency onEzra Peisach1996-05-133-2/+13
| | | | | | | | | libkrb5.so * configure.in (CRYPTO_SH_VERS): Pass krb5 shared library version to Makefile. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8014 dc483132-0cff-0310-8789-dd5450dbe970
* configure.in heuristic.c:Richard Basch1996-05-134-866/+853
| | | | | | | | | | | | | Change the euid before opening the source ccache, so we don't use someone else's ccache. authorization.c: users only in /.k5login were not permitted to use the '-e cmd' feature. The man page does not indicate that this should not be permitted... Also, lots of indentation cleanup was done... I couldn't read the code before. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@8013 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-04-08 13:47:17 +0000