summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* GSS_C_NO_CREDENTIAL should accept any principalSam Hartman2003-03-048-42/+75
| | | | | | | | | | | | | | | | If a context is accepted with GSS_C_NO_CREDENTIAL or if a credential is acquired with GSS_C_NO_NAME as the acceptor name then allow any principal in the keytab to be used as the acceptor name. This means that gss_inquire_cred can return GSS_C_NO_NAME from a credential. ticket: new Tags: enhancement cc: nicolas.williams@sun.com cc: krbdev@mit.edu git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15218 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5-config.in (lib_flags): Prune out CFLAGSTom Yu2003-03-032-1/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15217 dc483132-0cff-0310-8789-dd5450dbe970
* * pbkdf2.c (F): Now takes krb5_data for password and salt.Ken Raeburn2003-03-033-42/+53
| | | | | | | | | (krb5int_pbkdf2, krb5int_pbkdf2_hmac_sha1, krb5int_pbkdf2_hmac_sha1_128, krb5int_pbkdf2_hmac_sha1_256): Likewise, and for output also. * vectors.c (test_pbkdf2): Calls updated. (main): Run pbkdf2 tests. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15216 dc483132-0cff-0310-8789-dd5450dbe970
* * g_cnffile.c (krb__get_srvtabname): Keep strdup()ed string in aTom Yu2003-03-032-1/+11
| | | | | | | | | static variable and free it called again; this prevents a memory leak. ticket: 1357 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15215 dc483132-0cff-0310-8789-dd5450dbe970
* Remove ADD_DEF and uses thereof, and move the appropriate symbols toTom Yu2003-03-0311-54/+74
| | | | | | | | | | | AC_DEFINE'ed things or to Makefile.in files. Remove explicit settings of CPPFLAGS. These allow CPPFLAGS to be a user parameter. Also, add CFLAGS to the CC_LINK variables, so they can control usage of the compiler to link programs. ticket: 677 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15214 dc483132-0cff-0310-8789-dd5450dbe970
* Substitute DEPLIBEXT for library buildsSam Hartman2003-03-022-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15213 dc483132-0cff-0310-8789-dd5450dbe970
* Use com_err_deplib rather than an explicit path so we do not have ourSam Hartman2003-03-027-7/+7
| | | | | | | shared libraries depend at a make level on com_err if we use the system com_err library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15212 dc483132-0cff-0310-8789-dd5450dbe970
* There isn't really a point to validating cred_handle if it was justTom Yu2003-03-012-6/+11
| | | | | | | | | | | | acquired by acquire_cred(), so instead of the suggested patch, validate verifier_cred_handle only if we didn't acquire_cred(). * accept_sec_context.c (krb5_gss_accept_sec_context): Don't validate verifier_cred_handle if GSS_C_NO_CREDENTIAL is passed in. ticket: 1356 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15211 dc483132-0cff-0310-8789-dd5450dbe970
* Ignore krb_err_txt.cKen Raeburn2003-02-281-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15210 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (clean-unix): Remove krb_err_txt.c on clean. UpdateEzra Peisach2003-02-283-3/+15
| | | | | | | | dependencies * g_pw_in_tkt.c: Include krb4int.h for krb_get_keyprocs() prototype. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15209 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (clean): Cleanup testing objects and outputsEzra Peisach2003-02-282-0/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15208 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Set and substitute maybe_kerberosIV.Ken Raeburn2003-02-273-1/+9
| | | | | | * Makefile.in (MY_SUBDIRS): Use it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15207 dc483132-0cff-0310-8789-dd5450dbe970
* remove wrong commentKen Raeburn2003-02-261-1/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15206 dc483132-0cff-0310-8789-dd5450dbe970
* Thanks, similar patch appliedTom Yu2003-02-252-6/+52
| | | | | | | | | * set_ccache.c (gss_krb5_ccache_name): Don't return a pointer to freed memory. ticket: 1346 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15205 dc483132-0cff-0310-8789-dd5450dbe970
* Handle NULL result_string->data returned from error inTom Yu2003-02-256-4/+21
| | | | | | | | | | | | krb5_change_password(). The SAMDATA() macro in lib/krb5/krb/preauth2.c seems to already be fixed. KfM's kpasswd equivalent still needs to be dealt with. ticket: 1055 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15204 dc483132-0cff-0310-8789-dd5450dbe970
* * in_tkt.c: Include k5-util.h.Ken Raeburn2003-02-253-27/+11
| | | | | | | | (do_seteuid): Define as krb5_seteuid instead of testing system characteristics here. * dest_tkt.c: Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15203 dc483132-0cff-0310-8789-dd5450dbe970
* * change_password.c (krb_change_password): Use int, not KRB_INT32, for krb4Ken Raeburn2003-02-252-1/+9
| | | | | | error codes. Check for malloc failure allocating sendStream. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15202 dc483132-0cff-0310-8789-dd5450dbe970
* * gssapi_krb5.c (kg_get_defcred): Revert previous; it's probablyTom Yu2003-02-243-32/+34
| | | | | | | | | | | | | | not appropriate for inquire_cred() to cause new credentials to be fetched. * init_sec_context.c (krb5_gss_init_sec_context): Explicitly release default cred in the NO_CREDENTIAL case, so it is always refreshed. ticket: 1305 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15201 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo pointed out by jenselby in doc passSam Hartman2003-02-241-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15200 dc483132-0cff-0310-8789-dd5450dbe970
* This should fix things, but I don't have an easy way to testTom Yu2003-02-212-15/+37
| | | | | | | | | | * gssapi_krb5.c (kg_get_defcred): Check for invalid or expired defcred if it exists, and call acquire_cred() again if necessary. ticket: 1305 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15199 dc483132-0cff-0310-8789-dd5450dbe970
* Fri Feb 21 16:30:00 2003 Alexandra Ellwood <lxs@mit.edu> * Removed Mac OS 9 ↵Alexandra Ellwood2003-02-215-128/+3
| | | | | | files git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15198 dc483132-0cff-0310-8789-dd5450dbe970
* Fri Feb 21 16:30:00 2003 Alexandra Ellwood <lxs@mit.edu> * Removed Mac OS 9 ↵Alexandra Ellwood2003-02-2132-2943/+3
| | | | | | files git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15197 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo that caused infinite loop in previous patchSam Hartman2003-02-212-1/+6
| | | | | | Ticket: 1006 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15195 dc483132-0cff-0310-8789-dd5450dbe970
* * krb5.hin (krb5_princ_component): Return NULL if going off the end of the arrayKen Raeburn2003-02-202-1/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15193 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Check for sys/select.h and time.hKen Raeburn2003-02-202-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15192 dc483132-0cff-0310-8789-dd5450dbe970
* The client sorts the enctype list returned by etype_info orderingSam Hartman2003-02-154-2/+103
| | | | | | | | | | | | enctypes that it requested or that are similar to ones it requested first. The KDC only includes enctypes in etype_info if they were requested by the client. ticket: 1006 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15191 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (ETOUT): Replace $(S) with "/"Ken Raeburn2003-02-142-1/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15190 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in ($(GSSAPI_KRB5_HDR)): Use $(S) to avoid problems onTom Yu2003-02-142-1/+6
| | | | | | windows. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15189 dc483132-0cff-0310-8789-dd5450dbe970
* Fix double free of AS keySam Hartman2003-02-132-1/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15188 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (krb_err.h, kadm_err.h): Rebuild by going to lib/krb4 andKen Raeburn2003-02-132-10/+11
| | | | | | | building "includes". (clean-unix): Don't need to delete copies of .et files any more. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15187 dc483132-0cff-0310-8789-dd5450dbe970
* Oops, add $(GSSAPI_KRB5_HDR) to all-unixTom Yu2003-02-132-2/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15186 dc483132-0cff-0310-8789-dd5450dbe970
* More tweaks to deal with parallel buildsTom Yu2003-02-134-28/+32
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15185 dc483132-0cff-0310-8789-dd5450dbe970
* * post.in (.dtmp): Use -DDEPEND to allow source files to excludeTom Yu2003-02-122-1/+6
| | | | | | inclusions from dependencies. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15184 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in: Update dependencies.Tom Yu2003-02-124-28/+78
| | | | | | | | | | | | | | | | | (KRB_ERR_TXT): Set by configure to be either empty (on Darwin) or krb_err_txt.c (on other platforms). This avoids building krb_err_txt.c on Darwin, as the type of krb_err_txt is a pointer there, so we don't need another copy of the array. (DEFINES): Remove. It wasn't doing anything useful and was cluttering up the compile command line. * configure.in: On Darwin, don't use krb_err_txt.c. * err_txt.c: On Darwin, actually use the array generated by compile_et, and assign it to krb_err_txt, which is a pointer, not an array, on that platform. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15183 dc483132-0cff-0310-8789-dd5450dbe970
* * CCache-glue.c: Delete in_tkt()Tom Yu2003-02-124-12/+9
| | | | | | | | | * change_password.c: Fix incorrect filename in comment. * g_in_tkt.c (krb_get_in_tkt_preauth): Call krb_in_tkt() rather than in_tkt(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15182 dc483132-0cff-0310-8789-dd5450dbe970
* Support credentials encrypted in the session key rather thanSam Hartman2003-02-112-4/+25
| | | | | | the subsession key. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15181 dc483132-0cff-0310-8789-dd5450dbe970
* * CCache-glue.c (krb_in_tkt): Rename from in_tkt().Tom Yu2003-02-112-2/+19
| | | | | | | | (in_tkt): Implement in terms of krb_in_tkt() to match existing Unix and Windows API. This shouldn't be a problem because it appears to be considered an internal API on Mac. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15180 dc483132-0cff-0310-8789-dd5450dbe970
* Fix recursion-forcing rules to be more friendly to parallel buildsTom Yu2003-02-114-2/+24
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15179 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in: Another attempt... turns our that the "copy"Tom Yu2003-02-112-8/+15
| | | | | | | | command on Windows preserves modtimes, so spurious rebuilds were happening even with the stamp file, since the target in $(EHDRDIR) is always out of date with respect to the stamp file. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15178 dc483132-0cff-0310-8789-dd5450dbe970
* Fix some things to avoid spurious rebuilds of header filesTom Yu2003-02-114-13/+28
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15177 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (K4LIBS): Revert previousTom Yu2003-02-113-1/+7
| | | | | | | * krb5_32.def: Add afs_string_to_key, which is now needed by the krb4 library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15176 dc483132-0cff-0310-8789-dd5450dbe970
* * password_to_key.c (krb5_passwd_to_key): Replace snprintf() callTom Yu2003-02-113-7/+39
| | | | | | | | | | | with explicit length checking. * memcache.c (krb4int_save_credentials_addr): Renamed from krb_save_credentials(). (krb_save_credentials): Implement in terms of krb4int_save_credentials_addr(). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15175 dc483132-0cff-0310-8789-dd5450dbe970
* Various fixes to Windows build of krb4 library. Fix up KRB5_CALLCONVTom Yu2003-02-117-16/+46
| | | | | | | on some new krb4 library functions. Fix up library generation to refer to des425. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15174 dc483132-0cff-0310-8789-dd5450dbe970
* Fix lots of things to compile on Unix. Fix some typosTom Yu2003-02-1113-61/+192
| | | | | | | | | | By means of carrying through local addresses in many places, eliminate or reduce sections of code depending on TARGET_OS_MAC conditionals. Conditionalize some prototypes in krb.h with KRB_PRIVATE, to avoid leakage on Mac. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15173 dc483132-0cff-0310-8789-dd5450dbe970
* Note: these checkins are partial progress for Tom Yu. They probably don't ↵Alexandra Ellwood2003-02-109-142/+186
| | | | | | build; Tom is expecting that. *** CCache-glue.c: Removed copying of the string_to_key type in krb_save_credentials. Saving the string_to_key type is unnecessary and was just for display purposes. Will be removed for KfM 5.0. Updated to use KRB5_CALLCONV instead of INTERFACE and include the krb5's krb4 headers instead of the KfM ones. *** change-password.c: Removed include of CredentialsCache.h and code that switches between string to key types. This doesn't make sense for password changing because the krb4 protocol for password changing implemented here only supports mit's string to key. Bug was in KfM and got ported forward. Should the code call mit_password_to_key for all platforms? *** FSp-glue.c: Removed dependency on MoreFiles and replaced it with code to use FSRefs now that we are Carbon-only. *** g_in_tkt.c: Added loop which calls password to key functions trying each one. This technique was imported from KTH-KRB into KfM. This code still needs to have the TARGET_OS_MAC code made more Unix friendly for Darwin builds. The behavior differences (store the address or not) should be deferred until the very last moment to avoid excessive #ifdefs. *** g_pw_in_tkt.c: Added loop which calls password to key functions trying each one. This technique was imported from KTH-KRB into KfM. *** krb4int.h: Added password-to-key.c functions so they can be used by g_in_tkt.c and g_pw_in_tkt.c. *** password-to-key.c: Removed dependence on the CCAPI so this code can be used on all platforms to implement looping over the password to key functions. *** RealmsConfig-glue.c: Changed to use #ifdef USE_CCAPI like is used elsewhere in the krb5 sources. This is just for consistency in krb5 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15172 dc483132-0cff-0310-8789-dd5450dbe970
* Have g_token_size return unsigned int for signed/unsigned cleanupEzra Peisach2003-02-095-4/+13
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15171 dc483132-0cff-0310-8789-dd5450dbe970
* * prompter.c (krb5_prompter_posix): Kill echo before printingTom Yu2003-02-082-6/+10
| | | | | | prompt to avoid possible race conditions in test suite. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15170 dc483132-0cff-0310-8789-dd5450dbe970
* Thanks; equivalent patch appliedTom Yu2003-02-082-0/+5
| | | | | | | | * admin_server.c (kadm_listen): Zero sa_flags to avoid wonkiness. ticket: 1304 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15169 dc483132-0cff-0310-8789-dd5450dbe970
* Change comments to remove the note that we're going to redesign keyTom Yu2003-02-084-5/+12
| | | | | | | | storage architecture for 1.3. ticket: 1193 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15168 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (all-unix): Remove kerberosIV/krb_err.h, as it wasTom Yu2003-02-072-3/+11
| | | | | | | | | | causing spurious rebuilds of lots of stuff because it was depending on all-recurse, which is always out of date. (install-headers-unix): Also, no need to depend on kerberosIV/krb_err.h here, since the kerberosIV subdirectory takes care of it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15167 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-25 16:25:05 +0000