krb5.git
24 years ago * kpasswd.0/changing.exp: Add a sleep to avoid a race with the
Tom Yu [Wed, 23 Feb 2000 05:18:48 +0000 (05:18 +0000)]
* kpasswd.0/changing.exp: Add a sleep to avoid a race with the
setup script.  If this isn't here, it is possible that the initial
change of pol2's password may happen too soon.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12064 dc483132-0cff-0310-8789-dd5450dbe970

24 years agofix for vpath and du4.0 make
Ken Raeburn [Tue, 22 Feb 2000 21:15:46 +0000 (21:15 +0000)]
fix for vpath and du4.0 make

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12063 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago Makefile.in (clean-unix): Add clean-libobjs
Ezra Peisach [Tue, 22 Feb 2000 15:24:36 +0000 (15:24 +0000)]
 Makefile.in (clean-unix): Add clean-libobjs

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12062 dc483132-0cff-0310-8789-dd5450dbe970

24 years agofrom Bear Giles:
Ken Raeburn [Mon, 21 Feb 2000 21:39:11 +0000 (21:39 +0000)]
from  Bear Giles:

* fetch_mkey.c (krb5_db_fetch_mkey): Don't attempt to override type of key read
from stash file.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12061 dc483132-0cff-0310-8789-dd5450dbe970

24 years agofrom Bear Giles:
Ken Raeburn [Mon, 21 Feb 2000 21:38:01 +0000 (21:38 +0000)]
from Bear Giles:

* alt_prof.c (krb5_read_realm_params): Permit realm supported enctypes to be
unspecified, letting the KDC produce defaults.  Don't look up enctypes at all
if an error is to be returned.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12060 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoFrom Bear Giles:
Ken Raeburn [Mon, 21 Feb 2000 21:36:53 +0000 (21:36 +0000)]
From Bear Giles:
* telnetd.c (doit): Provide a more useful error message than
"authentication failed" if no authentication was even attempted.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12059 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoVolatile decls as needed.
Ken Raeburn [Sat, 19 Feb 2000 02:34:19 +0000 (02:34 +0000)]
Volatile decls as needed.
Format attribute declarations for gcc.
Deleting some unused variables.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12058 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * kadm_rpc_svc.c (kadm_1): Update to include new api functions
Tom Yu [Sat, 19 Feb 2000 02:05:53 +0000 (02:05 +0000)]
* kadm_rpc_svc.c (kadm_1): Update to include new api functions

* ovsec_kadmd.c (log_badverf): Update proc_names.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12057 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * keytab.c (add_usage): Update usage message.
Tom Yu [Sat, 19 Feb 2000 01:57:07 +0000 (01:57 +0000)]
* keytab.c (add_usage): Update usage message.
(kadmin_keytab_add): Update to deal with explicit keysalt lists.
(add_principal): Update to deal with explicit keysalt lists.

* kadmin.c (kadmin_cpw): Add support for new api.
(kadmin_parse_princ_args): Add support for new api, particularly
-keepold to keep old keys around and -e to explicitly specify
key-salt tuples.
(kadmin_addprinc_usage): Update usage accordingly.
(kadmin_addprinc): Add support for new api.
(kadmin_modprinc): Update to call new parse_princ_args reasonably.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12056 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * kadm_rpc_xdr.c (xdr_chpass3_arg):
Tom Yu [Sat, 19 Feb 2000 01:50:53 +0000 (01:50 +0000)]
* kadm_rpc_xdr.c (xdr_chpass3_arg):
(xdr_chrand3_arg): Fix up calls to xdr_array.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12055 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * kdb_cpw.c (krb5_dbe_crk):
Tom Yu [Sat, 19 Feb 2000 01:49:31 +0000 (01:49 +0000)]
* kdb_cpw.c (krb5_dbe_crk):
(krb5_dbe_cpw): Fix to actually save old keys.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12054 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * server_stubs.c: Add create_principal3_1, chpass_principal3_1,
Tom Yu [Fri, 18 Feb 2000 01:07:54 +0000 (01:07 +0000)]
* server_stubs.c: Add create_principal3_1, chpass_principal3_1,
setkey_principal3_1, and chrand_principal3_1 to do the obvious
things.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12053 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * svc_auth_gssapi.c (_svcauth_gssapi): Don't explicitly free
Tom Yu [Fri, 18 Feb 2000 00:14:12 +0000 (00:14 +0000)]
* svc_auth_gssapi.c (_svcauth_gssapi): Don't explicitly free
call_arg on error, since svc_getargs should do that now.

* svc_udp.c (svcudp_getargs): Free args on xdr decode error to
avoid leaks.

* svc_tcp.c (svctcp_getargs): Free args on xdr decode error to
avoid leaks.

* svc_raw.c (svcraw_getargs): Free args on xdr decode error to
avoid leaks.

* auth_gssapi.c (auth_gssapi_create): Don't explicitly free
call_res anymore, since clnt_call should deal now.

* clnt_udp.c (clntudp_call): Free stuff on error from
xdr_replymsg() to prevent leaking.

* clnt_tcp.c (clnttcp_call): Free stuff on error from
xdr_replymsg() to avoid leaking.

* clnt_raw.c (clntraw_call): Free stuff on error from
xdr_replymsg() to avoid leaking.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12052 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * auth_gssapi.c (auth_gssapi_create): Free call_res because
Tom Yu [Thu, 17 Feb 2000 00:33:38 +0000 (00:33 +0000)]
* auth_gssapi.c (auth_gssapi_create): Free call_res because
xdr_authgssapi_init_res can potentially allocate memory.  Perhaps
clnt_call should really deal with this, though.  It is not at all
clear whether clnt_call or svc_getargs should actually end up
freeing allocated memory themselves.

* svc_auth_gssapi.c (_svcauth_gssapi): Call gssrpc_xdr_free() if
xdr_authgssapi_creds() or xdr_authgssapi_init_arg() fails.

* auth_gssapi_misc.c (xdr_authgssapi_creds):
(xdr_authgssapi_init_arg):
(xdr_authgssapi_init_res): Revert prior change.  The caller should
be the one dealing.  Additionally, it was probably wrong to
unconditionally free the object regardless of whether the mode is
XDR_DECODE.
(auth_gssapi_unwrap_data): Use temp_xdrs rather than in_xdrs to
force XDR_FREE operation.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12051 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoDocument that -s is not applicable to Kerberos 4
Danilo Almeida [Wed, 16 Feb 2000 21:16:43 +0000 (21:16 +0000)]
Document that -s is not applicable to Kerberos 4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12050 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kinit.c: Nicer usage message. Better checking for illegal
Danilo Almeida [Wed, 16 Feb 2000 21:11:07 +0000 (21:11 +0000)]
* kinit.c: Nicer usage message.  Better checking for illegal
options.  Do not output error when doing Kerberos 4 if we will be
trying 524 afterwards.  Add hooks for future support for
specifying the Kerberos 4 cache name.  Fix GET_PROGNAME macro to
properly return program name under Win32.  Re-indent, turning
spaces that should be tabs into tabs.

* kinit.M: Document new Kerberos 4 kinit behavior.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12049 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kdestroy.c: Fix GET_PROGNAME macro to properly return program
Danilo Almeida [Wed, 16 Feb 2000 21:10:34 +0000 (21:10 +0000)]
* kdestroy.c: Fix GET_PROGNAME macro to properly return program
name under Win32.  Re-indent, turning spaces that should be tabs
into tabs.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12048 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* klist.c: Fix GET_PROGNAME macro to properly return program name
Danilo Almeida [Wed, 16 Feb 2000 21:10:15 +0000 (21:10 +0000)]
* klist.c: Fix GET_PROGNAME macro to properly return program name
under Win32.  Re-indent, turning spaces that should be tabs into
tabs.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12047 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoMove include of libtelnet/auth.h earlier to provide
Ezra Peisach [Wed, 16 Feb 2000 20:11:03 +0000 (20:11 +0000)]
Move include of libtelnet/auth.h earlier to provide
prototype for auth_cmd()

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12046 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* preauth2.c (pa_sam): In send-encrypted-sad mode, check for magic salt length
Ken Raeburn [Wed, 16 Feb 2000 18:29:50 +0000 (18:29 +0000)]
* preauth2.c (pa_sam): In send-encrypted-sad mode, check for magic salt length
and generate a salt from the principal name if found; use the password and salt
to generate a key.  Provide timestamp if nonce is zero, regardless of preauth
mode.  (Patch from Chas Williams.)

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12045 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* localaddr.c (krb5_os_localaddr): Dynamically grow buffer used for SIOCGIFCONF
Ken Raeburn [Wed, 16 Feb 2000 08:35:46 +0000 (08:35 +0000)]
* localaddr.c (krb5_os_localaddr): Dynamically grow buffer used for SIOCGIFCONF
until it appears to have been big enough.  Dynamically grow internal address
pointer array as needed.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12044 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * libobj.in: Fix up .c.so and .c.po rules to include $(CFLAGS),
Tom Yu [Tue, 15 Feb 2000 05:14:28 +0000 (05:14 +0000)]
* libobj.in: Fix up .c.so and .c.po rules to include $(CFLAGS),
which were previously missing.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12043 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * server.c: Add code to set a signal handler for SIGHUP and a few
Tom Yu [Tue, 15 Feb 2000 05:13:30 +0000 (05:13 +0000)]
* server.c: Add code to set a signal handler for SIGHUP and a few
others so that purify will actually generate memory leak reports.

* configure.in: Add CHECK_SIGNALS.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12042 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * svc.c (xprt_register): Zero out xports after allocating
Tom Yu [Tue, 15 Feb 2000 05:12:30 +0000 (05:12 +0000)]
* svc.c (xprt_register): Zero out xports after allocating

* auth_gssapi_misc.c (xdr_authgssapi_creds):
(xdr_authgssapi_init_arg):
(xdr_authgssapi_init_res):
(auth_gssapi_unwrap_data): If xdr_gss_buf or xdr_bytes fails, call
again with XDR_FREE set so that allocated memory doesn't leak.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12041 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoAdd client-side stubs and functions with additional capabilities to
Tom Yu [Mon, 14 Feb 2000 00:07:10 +0000 (00:07 +0000)]
Add client-side stubs and functions with additional capabilities to
take key_salt_tuples and optionally keep old keys around.  Add
server-side functionality for setkey with key_salt_tuple and "keepold"
functionality.  Update rpc stubs and xdr functions/headers
appropriately.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12040 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * README, gss-client.c, gss-misc.c, gss-misc.h, gss-server.c:
Tom Yu [Fri, 11 Feb 2000 23:06:47 +0000 (23:06 +0000)]
* README, gss-client.c, gss-misc.c, gss-misc.h, gss-server.c:
Patches from jik to make gss-sample more versatile.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12039 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoAdded "Kerberos Preferences" as valid config file on Mac OS. Others will be removed...
Marshall Vale [Fri, 11 Feb 2000 20:51:00 +0000 (20:51 +0000)]
Added "Kerberos Preferences" as valid config file on Mac OS. Others will be removed at a later date

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12037 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* init_os_ctx.c: Added "Kerberos Preferences" as valid config file on Mac OS
Marshall Vale [Fri, 11 Feb 2000 20:50:58 +0000 (20:50 +0000)]
* init_os_ctx.c: Added "Kerberos Preferences" as valid config file on Mac OS

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12036 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoFixed lxs' fix: strlen (x) + 1 instead of strlen (x+1)
Miro Jurisic [Fri, 11 Feb 2000 01:57:36 +0000 (01:57 +0000)]
Fixed lxs' fix: strlen (x) + 1 instead of strlen (x+1)

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12035 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoAdded comments to remove some calls in the next releas
Miro Jurisic [Fri, 11 Feb 2000 01:57:12 +0000 (01:57 +0000)]
Added comments to remove some calls in the next releas

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12034 dc483132-0cff-0310-8789-dd5450dbe970

24 years agochangelog updated for stdcc_util.c change
Alexandra Ellwood [Thu, 10 Feb 2000 20:04:44 +0000 (20:04 +0000)]
changelog updated for stdcc_util.c change

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12033 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoAdded +1 to strlens so that null terminator will fit in the buffer ;-P
Alexandra Ellwood [Thu, 10 Feb 2000 20:02:36 +0000 (20:02 +0000)]
Added +1 to strlens so that null terminator will fit in the buffer ;-P

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12032 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* login.c (main): Only destroy xtra_creds if non-null. (Patch from Richard Basch.)
Ken Raeburn [Thu, 10 Feb 2000 09:31:45 +0000 (09:31 +0000)]
* login.c (main): Only destroy xtra_creds if non-null.  (Patch from Richard Basch.)

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12031 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoUpdated for 3.0d1
Miro Jurisic [Thu, 10 Feb 2000 01:53:10 +0000 (01:53 +0000)]
Updated for 3.0d1

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12030 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* init_os_ctx.c: Added changes for the Mac for limited support of Application Support...
Marshall Vale [Tue, 8 Feb 2000 23:21:27 +0000 (23:21 +0000)]
* init_os_ctx.c: Added changes for the Mac for limited support of Application Support folder as a location for the krb5 configuration file

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12027 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoLimited support for Applicaiton Support folder as location for krb5.ini on the Mac...
Marshall Vale [Tue, 8 Feb 2000 23:02:47 +0000 (23:02 +0000)]
Limited support for Applicaiton Support folder as location for krb5.ini on the Mac added

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12026 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * api.1/lock.exp: Since a "wait" directive to the command list of
Tom Yu [Tue, 8 Feb 2000 05:28:12 +0000 (05:28 +0000)]
* api.1/lock.exp: Since a "wait" directive to the command list of
the lock_test procedures does not wait for any synchronization,
change lock9 to acquire and release a lock before the "wait"
directive in order to avoid a race condition where lock9 spawns
the ./lock-test but the program has not opened the database prior
to lock9_1 acquiring a permanent lock.  This was causing
difficult-to-reproduce failures.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12025 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * aclocal.m4: Kludge in the old test for tcl so that we have some
Tom Yu [Tue, 8 Feb 2000 01:18:04 +0000 (01:18 +0000)]
* aclocal.m4: Kludge in the old test for tcl so that we have some
prayer of pulling in tcl from the funky installation that goes
along with dejagnu.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12024 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * lib/helpers.exp: Fix to call kinit and kdestroy with the -5 flag
Tom Yu [Tue, 8 Feb 2000 00:17:59 +0000 (00:17 +0000)]
* lib/helpers.exp: Fix to call kinit and kdestroy with the -5 flag
to accomodate new program behavior.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12023 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * lib/lib.t: Call kinit and kdestroy with -5 flag to accomodate
Tom Yu [Tue, 8 Feb 2000 00:09:43 +0000 (00:09 +0000)]
* lib/lib.t: Call kinit and kdestroy with -5 flag to accomodate
new behavior.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12022 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * config/unix.exp: Call send_error instead of fail to prevent
Tom Yu [Mon, 7 Feb 2000 23:51:13 +0000 (23:51 +0000)]
* config/unix.exp: Call send_error instead of fail to prevent
referencing variables not yet set up by the test framework.

* lib/helpers.exp: Call kinit and kdestroy with the -5 flag to
deal with new program behavior.  Also call perror rather than
error to avoid spewing a stack trace.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12021 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * kadmin.exp: Use $KDESTROY -5 to deal with changed behavior
Tom Yu [Mon, 7 Feb 2000 21:53:04 +0000 (21:53 +0000)]
* kadmin.exp: Use $KDESTROY -5 to deal with changed behavior

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12020 dc483132-0cff-0310-8789-dd5450dbe970

24 years agochangepw.c (krb5_locate_kpasswd): fixed memory trashing caused by incorrect pointer...
Scott McGuire [Mon, 7 Feb 2000 21:36:32 +0000 (21:36 +0000)]
changepw.c (krb5_locate_kpasswd): fixed memory trashing caused by incorrect pointer arithmetic when assigning DEFAULT_KPASSWD_PORT in DNS code

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12019 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * default.exp: Remove default_tgs_enctypes for now as it was
Tom Yu [Mon, 7 Feb 2000 16:25:53 +0000 (16:25 +0000)]
* default.exp: Remove default_tgs_enctypes for now as it was
causing tests to fail when the tgt is DES3.  Need to investigate
further.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12018 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* aclocal.m4 (AC_KRB5_TCL_FIND_CONFIG): Change test syntax a little to keep bash...
Ken Raeburn [Mon, 7 Feb 2000 16:25:47 +0000 (16:25 +0000)]
* aclocal.m4 (AC_KRB5_TCL_FIND_CONFIG): Change test syntax a little to keep bash happy

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12017 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* configure.in: Check for inet_ntop and getipnodebyaddr, both used in klist
Ken Raeburn [Mon, 7 Feb 2000 11:33:57 +0000 (11:33 +0000)]
* configure.in: Check for inet_ntop and getipnodebyaddr, both used in klist

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12016 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kdc_preauth.c (return_sam_data): Just return 0 if no input preauth data is available
Ken Raeburn [Mon, 7 Feb 2000 11:23:16 +0000 (11:23 +0000)]
* kdc_preauth.c (return_sam_data): Just return 0 if no input preauth data is available

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12015 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kinit.c (try_convert524): Avoid duplicate free calls
Ken Raeburn [Mon, 7 Feb 2000 11:21:26 +0000 (11:21 +0000)]
* kinit.c (try_convert524): Avoid duplicate free calls

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12014 dc483132-0cff-0310-8789-dd5450dbe970

24 years agofix my email address in log header
Ken Raeburn [Mon, 7 Feb 2000 10:33:31 +0000 (10:33 +0000)]
fix my email address in log header

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12013 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* gic_pwd.c (krb5_get_as_key_password): If the as_key enctype is already set to
Ken Raeburn [Mon, 7 Feb 2000 10:32:45 +0000 (10:32 +0000)]
* gic_pwd.c (krb5_get_as_key_password): If the as_key enctype is already set to
the correct type, do continue and ask for the password anyways.  (Patch from
Chas Williams, PR krb5-libs/730.)

* preauth2.c (pa_sam): If no sam_flags were set, return KRB5_PREAUTH_BAD_TYPE,
because we don't currently handle that case.

* preauth2.c (pa_sam): Remove unused variable use_sam_key.
(SAMDATA): Cast first result to int, which is what sprintf needs.
(pa_salt): Delete unused variable ret.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12012 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kdc_preauth.c (get_preauth_hint_list): Log a message if preauth is required
Ken Raeburn [Mon, 7 Feb 2000 10:22:58 +0000 (10:22 +0000)]
* kdc_preauth.c (get_preauth_hint_list): Log a message if preauth is required
but no preauth types are available.
(return_sam_data): Fix typo in figuring length of data to XOR when merging
keys.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12011 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoFrank Cusack's patches, first two sets. Should be no incompatible changes,
Ken Raeburn [Mon, 7 Feb 2000 04:15:58 +0000 (04:15 +0000)]
Frank Cusack's patches, first two sets.  Should be no incompatible changes,
except perhaps for a client talking to both a new and old KDC?  Several
improvements to guard against replay attacks when hardware preauth is in use,
though they require re-enabling the USE_RCACHE code, which I haven't done yet.

Several changes of mine for silencing a few compiler warnings, and adding some
debugging log messages while I track what's going on with the preauth code.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12010 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoupdated some comments (fcusack)
Ken Raeburn [Mon, 7 Feb 2000 03:55:12 +0000 (03:55 +0000)]
updated some comments (fcusack)

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12009 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoadded flags field to predicted_sam_response (fcusack)
Ken Raeburn [Mon, 7 Feb 2000 03:54:51 +0000 (03:54 +0000)]
added flags field to predicted_sam_response (fcusack)

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12008 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoAdd documentation about debug vs. release builds
Danilo Almeida [Mon, 7 Feb 2000 03:16:55 +0000 (03:16 +0000)]
Add documentation about debug vs. release builds

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12007 dc483132-0cff-0310-8789-dd5450dbe970

24 years agomore fcusack changes - rest of first set
Ken Raeburn [Mon, 7 Feb 2000 00:26:40 +0000 (00:26 +0000)]
more fcusack changes - rest of first set

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12006 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoFrank Cusack changes, set 1, diffs 1-3 of 4
Ken Raeburn [Mon, 7 Feb 2000 00:18:02 +0000 (00:18 +0000)]
Frank Cusack changes, set 1, diffs 1-3 of 4

Rename "sam_passcode" field to "sam_sad".  Add data to predicted-sam-response
structure, in part to (prepare to) help with replay detection.
Fix some memory allocation problems.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12005 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * standalone.exp: Use $KLIST -5 and $KDESTROY -5 to deal with
Tom Yu [Sun, 6 Feb 2000 23:04:52 +0000 (23:04 +0000)]
* standalone.exp: Use $KLIST -5 and $KDESTROY -5 to deal with
changed behavior in these programs.  Wait for eof in some cases to
avoid hanging.

* rsh.exp: Wait for eof to prevent hanging.

* gssapi.exp: Use $KINIT -5 to deal with new kinit behavior.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12004 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * default.exp: Use $KINIT -5 to deal with modified kinit
Tom Yu [Sun, 6 Feb 2000 23:02:43 +0000 (23:02 +0000)]
* default.exp: Use $KINIT -5 to deal with modified kinit
behavior.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12003 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * login.c (main): Reorder some control flow to avoid security hole
Tom Yu [Sun, 6 Feb 2000 21:57:32 +0000 (21:57 +0000)]
* login.c (main): Reorder some control flow to avoid security hole
if KRB4_GET_TICKETS is not defined.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12001 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kinit.c: Only free stuff if it's not NULL. (Note: The krb5_free_*
Danilo Almeida [Fri, 4 Feb 2000 23:55:21 +0000 (23:55 +0000)]
* kinit.c: Only free stuff if it's not NULL. (Note: The krb5_free_*
routines probably should be fixed check for NULL pointers...)

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@12000 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * Makefile.in (klist): Fix to build under Unix again
Tom Yu [Fri, 4 Feb 2000 22:42:39 +0000 (22:42 +0000)]
* Makefile.in (klist): Fix to build under Unix again

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11999 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * Makefile.in (kinit): Fix to build on Unix again
Tom Yu [Fri, 4 Feb 2000 22:42:02 +0000 (22:42 +0000)]
* Makefile.in (kinit): Fix to build on Unix again

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11998 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago(krb5_locate_kpasswd): fixed memory trashing caused by incorrect pointer arithmetic...
Scott McGuire [Fri, 4 Feb 2000 22:41:21 +0000 (22:41 +0000)]
(krb5_locate_kpasswd): fixed memory trashing caused by incorrect pointer arithmetic when assigning DEFAULT_KPASSWD_PORT in non-DNS code

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11997 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * aclocal.m4: Add support to substitute KRB524_LIB in places
Tom Yu [Fri, 4 Feb 2000 22:40:43 +0000 (22:40 +0000)]
* aclocal.m4: Add support to substitute KRB524_LIB in places

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11996 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * pre.in: Add KRB524_DEPLIB and KRB524_LIB
Tom Yu [Fri, 4 Feb 2000 22:40:35 +0000 (22:40 +0000)]
* pre.in: Add KRB524_DEPLIB and KRB524_LIB

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11995 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoRemoved calls that destroyed and recreated ccapi_data->NamedCache if it exists in...
Scott McGuire [Fri, 4 Feb 2000 21:55:56 +0000 (21:55 +0000)]
Removed calls that destroyed and recreated ccapi_data->NamedCache if it exists in krb5_stdcc_initialize(); instead close and call create on it again

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11994 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kinit.c: Major revamp to support Kerberos 4 compatibility. Code
Danilo Almeida [Fri, 4 Feb 2000 21:26:02 +0000 (21:26 +0000)]
* kinit.c: Major revamp to support Kerberos 4 compatibility.  Code
restructured to allow changes to support Kerberos 4 or Kerberos 5
only operation depending on whether dynamic libraries are
avialable.  Explicit documentation and support files to make it
easy to do this will be forthcoming.

* Makefile.in: On Windows, use getopt.lib instead of getopt.obj,
and add support for getopt_long.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11993 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* klist.c: Major revamp to support Kerberos 4 compatibility. Code
Danilo Almeida [Fri, 4 Feb 2000 21:24:18 +0000 (21:24 +0000)]
* klist.c: Major revamp to support Kerberos 4 compatibility.  Code
restructured to allow changes to support Kerberos 4 or Kerberos 5
only operation depending on whether dynamic libraries are
avialable.  Explicit documentation and support files to make it
easy to do this will be forthcoming.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11992 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kdestroy.c: Major revamp to support Kerberos 4 compatibility. Code
Danilo Almeida [Fri, 4 Feb 2000 21:23:59 +0000 (21:23 +0000)]
* kdestroy.c: Major revamp to support Kerberos 4 compatibility.  Code
restructured to allow changes to support Kerberos 4 or Kerberos 5
only operation depending on whether dynamic libraries are
avialable.  Explicit documentation and support files to make it
easy to do this will be forthcoming.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11991 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* getopt.c, getopt_long.c, getopt.h: Update to latest BSD code
Danilo Almeida [Fri, 4 Feb 2000 20:14:56 +0000 (20:14 +0000)]
* getopt.c, getopt_long.c, getopt.h: Update to latest BSD code
found (from NetBSD).
* Makefile.in: Build getopt.lib which includes getopt.obj and
getopt_long.obj.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11990 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* listen.c (ss_listen): Local var END should be volatile
Ken Raeburn [Wed, 2 Feb 2000 04:01:34 +0000 (04:01 +0000)]
* listen.c (ss_listen): Local var END should be volatile

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11987 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* Makefile.in: Build gss-sample on Windows
Danilo Almeida [Wed, 2 Feb 2000 00:51:17 +0000 (00:51 +0000)]
* Makefile.in: Build gss-sample on Windows

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11986 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* kvno.c (main): Use krb5_decode_ticket() instead of
Danilo Almeida [Wed, 2 Feb 2000 00:46:23 +0000 (00:46 +0000)]
* kvno.c (main): Use krb5_decode_ticket() instead of
decode_krb5_ticket(), which is not part of API.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11985 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* krb5_32.def: Replace decode_krb5_ticket with krb5_decode_ticket.
Danilo Almeida [Wed, 2 Feb 2000 00:44:45 +0000 (00:44 +0000)]
* krb5_32.def: Replace decode_krb5_ticket with krb5_decode_ticket.
Add documentation about adding things to DEF file.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11984 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* krb5_decode.c (krb5_decode_ticket): Add function to provide
Danilo Almeida [Wed, 2 Feb 2000 00:43:48 +0000 (00:43 +0000)]
* krb5_decode.c (krb5_decode_ticket): Add function to provide
decode_krb5_ticket functionality as part of krb5 API.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11983 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* krb5.hin (krb5_decode_ticket): Declare
Danilo Almeida [Tue, 1 Feb 2000 23:55:21 +0000 (23:55 +0000)]
* krb5.hin (krb5_decode_ticket): Declare

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11982 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* gss-client.c, gss-server.c, gss-misc.c: Include Windows headers
Danilo Almeida [Tue, 1 Feb 2000 20:49:25 +0000 (20:49 +0000)]
* gss-client.c, gss-server.c, gss-misc.c: Include Windows headers
instead of Unix headers under Windows.

* gss-server.c (usage): Fix usage info to reflect that service_name is
required.

* gss-misc.c (read_all, write_all): Change write to send and read
to recv for portability.
(gettimeofday): Add an implementation of gettimeofday() for
Windows.

* Makefile.in: Build under Windows.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11981 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * kts_g_ent.c, ktsrvtab.h (krb5_ktsrvtab_get_entry): Change the
Ezra Peisach [Sat, 29 Jan 2000 00:56:34 +0000 (00:56 +0000)]
* kts_g_ent.c, ktsrvtab.h (krb5_ktsrvtab_get_entry): Change the
  third argument to krb5_const_principal (from krb5_principal) to
  agree with krb5_kts_ops entries.

gcc warning about incompatible pointer types.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11980 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoleft date line off last log entry
Ken Raeburn [Fri, 28 Jan 2000 17:42:46 +0000 (17:42 +0000)]
left date line off last log entry

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11979 dc483132-0cff-0310-8789-dd5450dbe970

24 years agodidn't have date line on last log entry
Ken Raeburn [Fri, 28 Jan 2000 08:35:10 +0000 (08:35 +0000)]
didn't have date line on last log entry

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11978 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* dispatch.c (dispatch): Log address and port number of detected retransmits
Ken Raeburn [Thu, 27 Jan 2000 22:14:45 +0000 (22:14 +0000)]
* dispatch.c (dispatch): Log address and port number of detected retransmits

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11977 dc483132-0cff-0310-8789-dd5450dbe970

24 years agopermit use of non-des session keys now
Ken Raeburn [Thu, 27 Jan 2000 22:13:14 +0000 (22:13 +0000)]
permit use of non-des session keys now

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11976 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* pre.in (KADM_COMM_LIBS): Drop krb5util library
Ken Raeburn [Thu, 27 Jan 2000 22:09:24 +0000 (22:09 +0000)]
* pre.in (KADM_COMM_LIBS): Drop krb5util library

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11975 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* krlogin.c (speeds): Added some comments from net recommending not extending the...
Ken Raeburn [Thu, 27 Jan 2000 22:08:14 +0000 (22:08 +0000)]
* krlogin.c (speeds): Added some comments from net recommending not extending the list to higher values

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11974 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* main.c (print_status): Now static. Add format attribute if using GNU C
Ken Raeburn [Thu, 27 Jan 2000 22:06:52 +0000 (22:06 +0000)]
* main.c (print_status): Now static.  Add format attribute if using GNU C

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11973 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoDon't use obsolete autoconf macros. Fix up output formatting a little.
Ken Raeburn [Thu, 27 Jan 2000 22:02:58 +0000 (22:02 +0000)]
Don't use obsolete autoconf macros.  Fix up output formatting a little.
Rewrote tcl config handling to extract info from installed tclConfig.sh.
Configure-time option to control IPv6 configuration.
Configure-time option to enable DNS lookups.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11972 dc483132-0cff-0310-8789-dd5450dbe970

24 years agolimit kadm5 net interface to des for now until gssapi mech is fixed
Ken Raeburn [Thu, 27 Jan 2000 21:38:34 +0000 (21:38 +0000)]
limit kadm5 net interface to des for now until gssapi mech is fixed

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11971 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* init_ctx.c (get_profile_etype_list): Discard DESONLY changes from 1999-09-01,
Ken Raeburn [Thu, 27 Jan 2000 21:05:59 +0000 (21:05 +0000)]
* init_ctx.c (get_profile_etype_list): Discard DESONLY changes from 1999-09-01,
and revert call sites.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11970 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* init_sec_context.c (krb5_gss_init_sec_context): Default to des-cbc-crc
Ken Raeburn [Thu, 27 Jan 2000 21:02:32 +0000 (21:02 +0000)]
* init_sec_context.c (krb5_gss_init_sec_context): Default to des-cbc-crc

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11969 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* k5-int.h [!NEED_SOCKETS]: Declare (but do not define) struct sockaddr if
Ken Raeburn [Thu, 27 Jan 2000 00:56:27 +0000 (00:56 +0000)]
* k5-int.h [!NEED_SOCKETS]: Declare (but do not define) struct sockaddr if
SOCK_DGRAM hasn't been defined yet.
(krb5_locate_srv_conf, krb5_locate_srv_dns): Declare.
(struct krb5_keytypes, struct krb5_cksumtypes): enc, hash, and keyhash provider
structures pointed to are now const.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11968 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * kpasswd.0/changing.exp: Fix y2k bug
Tom Yu [Mon, 24 Jan 2000 22:58:38 +0000 (22:58 +0000)]
* kpasswd.0/changing.exp: Fix y2k bug

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11967 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * get_myaddress.c (gssrpc_get_myaddress): Copy in from NetBSD;
Tom Yu [Mon, 24 Jan 2000 21:53:43 +0000 (21:53 +0000)]
* get_myaddress.c (gssrpc_get_myaddress): Copy in from NetBSD;
use loopback address only.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11966 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * krb5_libinit.c: Conditionalize call to stdcc_shutdown()
Tom Yu [Mon, 24 Jan 2000 20:42:45 +0000 (20:42 +0000)]
* krb5_libinit.c: Conditionalize call to stdcc_shutdown()

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11965 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * configure.in: Fix to build library objects in this directory
Tom Yu [Mon, 24 Jan 2000 20:38:38 +0000 (20:38 +0000)]
* configure.in: Fix to build library objects in this directory

* Makefile.in (STOBJLISTS): Fix to actually build krb5_libinit.o.

* krb5_libinit.c: Fix to use 0 and 1 instead of false and true.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11964 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * Makefile.in (STLIBOBJS): Properly add gss_libinit.o to permit
Tom Yu [Mon, 24 Jan 2000 20:08:42 +0000 (20:08 +0000)]
* Makefile.in (STLIBOBJS): Properly add gss_libinit.o to permit
compiling.

* configure.in: Add libobj to Makefile frags.

* gss_libinit.c: Add terminating newline.  Use 0 and 1 instead of
false and true.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11963 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago * crypto_libinit.c: Add terminating newline; use 0 and 1 instead
Tom Yu [Mon, 24 Jan 2000 19:50:27 +0000 (19:50 +0000)]
* crypto_libinit.c: Add terminating newline; use 0 and 1 instead
of false and true.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11962 dc483132-0cff-0310-8789-dd5450dbe970

24 years ago* krb5.conf: Put primary KDC for Cygnus first. Add GNU.ORG realm
Ken Raeburn [Sat, 22 Jan 2000 04:30:57 +0000 (04:30 +0000)]
* krb5.conf: Put primary KDC for Cygnus first.  Add GNU.ORG realm

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11961 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoMoved krb5, gss, and crypto library initialization/cleanup code into new dedicated...
Miro Jurisic [Sat, 22 Jan 2000 04:04:36 +0000 (04:04 +0000)]
Moved krb5, gss, and crypto library initialization/cleanup code into new dedicated functions; added code to release global state allocated in prng.c

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11960 dc483132-0cff-0310-8789-dd5450dbe970

24 years agoVarious changes to:
Ken Raeburn [Sat, 22 Jan 2000 03:49:56 +0000 (03:49 +0000)]
Various changes to:
 * make most non-changing data const
 * silence "gcc -Wall -Werror" complaints on sparc-solaris2.6
 ** delete unused functions and variables
 ** change if(a=b) ... to if((a=b)) or if((a=b)!=0) [yeah, kinda gratuitous]
 ** insert extra braces for 2-D arrays
 * some basic thread safety checks

Not changing afsstring2key.c until I make sure I've got some tests for it.
Currently, prng.c and afsstring2key.c, at least, still aren't thread-safe.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@11959 dc483132-0cff-0310-8789-dd5450dbe970