aboutsummaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)AuthorFilesLines
2009-11-27Allow null keys to be referenced (a no-op) for simpler "copying" ofGreg Hudson1-1/+2
keys which might or might not exist. Consistent with allowing freeing of null keys. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23371 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-27Export krb5_k_reference_key since it's part of the public APIGreg Hudson1-0/+1
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23370 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-27Clean up the flow control in krb5int_send_tgs, and avoid setting theGreg Hudson1-38/+39
subkey output param when success is not guaranteed. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23369 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-27If krb5_init_creds_step is called on an already complete context,Greg Hudson1-1/+1
return 0 rather than uninitialized stack garbage. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23368 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-27Move the arcfour directory from the crypto module dirs into krb. ThisGreg Hudson33-1068/+164
directory contains the token encryption code (similar to dk, old, and raw) which is Kerberos-specific. The actual stream cipher lives in enc_provider/rc4.c, which is still in the module dirs. arcfour/arcfour-int.h contained the definitions of some structures used only in enc_provider/rc4.c. Move those definitions into that source file so that everything in arcfour is at the right level of abstraction to live in krb. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23367 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-27Make dependGreg Hudson1-3/+3
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23366 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-27Add krb5_k_prf, the krb5_key version of krb5_c_prfGreg Hudson3-4/+18
ticket: 6576 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23365 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-26Clean up a few cases where krb5_get_in_tkt_with_keytab would leak theGreg Hudson1-3/+4
options structure. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23363 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-26Pullup to 1.7-branch is only for the test case, as krb5-1.7 behavedTom Yu4-19/+138
correctly for these checksums. Fix regression in MD4-DES and MD5-DES keyed checksums. The original key was being used for the DES encryption, not the "xorkey". (key with each byte XORed with 0xf0) Add a test case that will catch future regressions of this sort, by including a verification of a "known-good" checksum (derived from a known-to-be-interoperable version of the implementation). ticket: 6584 target_version: 1.7.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23361 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-26libkrb5 support for non-blocking AS requestsGreg Hudson11-634/+1293
Merge Luke's iakerb-libkrb5-as-only branch into trunk with several bug fixes. Adds support for the krb5_init_creds APIs (same as Heimdal's) which allow AS requests to be performed via a different transport than the blocking send_to_kdc. ticket: 6586 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23358 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-25Defer the conversion of the gic options structure to the extended formGreg Hudson6-99/+79
until we reach krb5_get_init_creds. Rename that function to krb5int_get_init_creds since it isn't public. Also stop exporting it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23357 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-25Coding Style related fixesZhanna Tsitkov3-414/+379
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23356 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-25In krb5_db2_db_init, make a format string constant to make CoverityGreg Hudson1-3/+2
happy. (Previously it was a disjunction of two constants, which is fine, but not as obviously safe to a static analysis tool.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23355 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-25Mark and reindent the pkinit plugin code, except for the header filesGreg Hudson9-4814/+4820
which are kind of difficult. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23354 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-24Mark and reindent plugins, except for pkinit, which needs a littleGreg Hudson66-11372/+11100
cleanup first. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23353 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-24Remove krb5_ prefix from the name of the static func get_as_key_keytab. ReindentZhanna Tsitkov1-13/+12
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23352 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-24Mark and reindent what's left of the appl directoryGreg Hudson13-1710/+1700
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23342 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-24Fix boilerplate in zap.cGreg Hudson1-2/+2
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23340 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-24Punt the volatile cast in the non-gcc, non-Windows version of zap.Greg Hudson6-3/+51
Use a function call into libkrb5support instead, since that's hard to inline. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23339 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-24KDC MUST NOT accept ap-request armor in FAST TGSSam Hartman1-0/+5
Per the latest preauth framework spec, the working group has decided to forbid ap-request armor in the TGS request because of security problems with that armor type. This commit was tested against an implementation of FAST TGS client to confirm that if explicit armor is sent, the request is rejected. ticket: 6585 target_version: 1.7.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23325 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-24Expand comments around 'zap' codeKen Raeburn1-1/+29
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23319 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-23Simplify depfix.pl by assuming that all files outside of the sourceGreg Hudson2-27/+5
and build directory (after substitutions) are external headers which should not be tracked. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23314 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-23Check return value of gethostname in krb5_klog_initGreg Hudson1-2/+5
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23313 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-22Make zap() work with non-gcc C++ compilers.Greg Hudson1-5/+4
Eliminate the intermediate name krb5int_zap_data. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23311 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-22Consolidate Makefile variables now that we have only a single globalGreg Hudson236-5117/+4965
configure script: $(SRCTOP) --> $(top_srcdir) $(srcdir)/$(thisconfigdir) --> $(top_srcdir) $(thisconfigdir) --> $(BUILDTOP) $(myfulldir) --> $(mydir) ticket: 6583 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23308 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-22Remove functions from aclocal.m4 which are no longer needed now thatGreg Hudson1-81/+0
the applications are unbundled. ticket: 6583 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23306 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-22Unbundle applications into separate repositoryGreg Hudson170-70821/+2
Remove libpty, gssftp, telnet, and the bsd applications from the source tree, build system, and tests. Docs still need to be updated to remove mentions of the applications. The build system should be simplified now that we're down to one configure script and don't need some of the functionality currently in aclocal.m4. ticket: 6583 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23305 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-22In _kadm5_init_any on error - if we created a cache entry, destroy itEzra Peisach1-0/+8
(parallel to kadm5_destroy code). Also - free config_params. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23300 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-22Clean up some memory leaks by releasing contextEzra Peisach2-1/+5
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23299 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-21For the moment, test for nullity of pointers returned by k5allocGreg Hudson1-1/+1
instead of result codes, to make Coverity happy. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23298 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-21Memory leak in _kadm5_init_any introduced with ipropdEzra Peisach1-0/+2
Fix minor memory leak introduced by the ipropd integration. ticket: 6582 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23296 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-20Correct argument to kadm5_get_principal is a pointer to a struct - notEzra Peisach1-2/+6
a pointer to a pointer.... Does not really matter as the field is not used - this test program expects a failer. Clean up memory leaks by freeing principal and releasing context. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23295 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-20The size of kadm5_server_handle_rec differs between the client andEzra Peisach2-4/+11
server code. Valgrind picked up on access past end of allocated structure. Include proper internal header in client/server test. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23294 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-19krb5_free_ad_signedpath must free outer structureLuke Howard1-0/+1
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23293 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-19Put krb5_auth_con_set_req_cksumtype back in the public API, since itGreg Hudson2-4/+4
is needed by the BSD applications which will be unbundled in 1.8. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23292 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-18Minor reindent fixZhanna Tsitkov1-24/+20
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23287 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-18minor reindentZhanna Tsitkov1-24/+16
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23286 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-17Rework using "do { } while (0)" in macro bodies to avoid divergentTom Yu1-4/+8
emacs-22 vs emacs-23 indentation. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23252 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-16Clean up some open-parenthesis problems, and reindentTom Yu8-119/+117
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23246 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-16Typo fixZhanna Tsitkov1-1/+1
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23238 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-16Remove unreferred krb5int_keyhash_aescbc_xxx. Cleaner ↵Zhanna Tsitkov2-2/+2
krb5int_keyhash_md5_hmac init git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23237 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-16Fix coding style in lib/krb5/asn.1, remove from exclusions, andTom Yu9-915/+1080
reindent. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23236 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-16Move prototypes for krb5int_send_tgs and krb5int_decode_tgs_rep to int-proto.h.Ezra Peisach4-29/+30
These functions are not exported by the library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23232 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-15Move krb5int_get_fq_local_hostname to os-proto.h. Not exportedEzra Peisach2-2/+2
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23188 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-15Moved krb5int_sendto prototype to os-proto.h. This function is not exported Ezra Peisach2-11/+11
from libkrb5 - so the rest of the world does not need to see it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23186 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-15Add an exception for include/iprop.h and revert its reformatting,Greg Hudson2-119/+119
since it was generated with rpcgen. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23185 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-14Fix typos in previousTom Yu1-2/+2
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23182 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-14Reindent include directory, reformatting prototypes as necessary.Greg Hudson54-5622/+5219
Exclude include/gssrpc due to its Sun origin and k5-platform.h due to macros too hairy for emacs c-mode to handle. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23180 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-14Remove include/krb54proto.h as it is no longer usedGreg Hudson1-17/+0
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23163 dc483132-0cff-0310-8789-dd5450dbe970
2009-11-14Constrained delegation without PAC supportGreg Hudson27-120/+1263
Merge Luke's users/lhoward/s4u2proxy branch to trunk. Implements a Heimdal-compatible mechanism for allowing constrained delegation without back-end support for PACs. Back-end support exists in LDAP only (via a new krbAllowedToDelegateTo attribute), not DB2. ticket: 6580 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23160 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit v1.1 at 2024-09-08 06:04:46 +0000