Chris Provenzano [Wed, 13 Dec 1995 09:00:23 +0000 (09:00 +0000)]
* kdb_xdr.c : Remove mkvno for krb5_db_entry
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7220
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Wed, 13 Dec 1995 08:58:43 +0000 (08:58 +0000)]
* kerberos_v4.c : Remove mkvno for krb5_db_entry
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7219
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Wed, 13 Dec 1995 08:57:15 +0000 (08:57 +0000)]
* kadm_funcs.c : Remove mkvno for krb5_db_entry
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7218
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Wed, 13 Dec 1995 08:56:00 +0000 (08:56 +0000)]
* adm_funcs.c : Remove mkvno for krb5_db_entry
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7217
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Wed, 13 Dec 1995 08:53:35 +0000 (08:53 +0000)]
* kdb.h : Remove mkvno for krb5_db_entry
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7216
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Wed, 13 Dec 1995 08:49:20 +0000 (08:49 +0000)]
* dump.c, dumpv4.c, kdb5_edit.c, loadv4.c :
Remove mkvno from krb5_db_entry.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7215
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Wed, 13 Dec 1995 08:48:33 +0000 (08:48 +0000)]
* kdb5_create.c : Remove mkvno from krb5_db_entry
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7214
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 19:47:52 +0000 (19:47 +0000)]
* kdc.conf: Added examples of "supported_enctypes" and "master_key_type"
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7212
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 19:45:23 +0000 (19:45 +0000)]
* krb524d.c: Changed krb5_db_fetch_mkey() such that it will only try
to set the enctype of the keyblock if the keyblock had it
set to ENCTYPE_UNKNOWN.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7211
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 19:45:13 +0000 (19:45 +0000)]
* fetch_mkey: Changed krb5_db_fetch_mkey() such that it will only try
to set the enctype of the keyblock if the keyblock had it
set to ENCTYPE_UNKNOWN.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7210
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 19:45:01 +0000 (19:45 +0000)]
* main.c: Changed krb5_db_fetch_mkey() such that it will only try
to set the enctype of the keyblock if the keyblock had it
set to ENCTYPE_UNKNOWN.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7209
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 19:32:56 +0000 (19:32 +0000)]
* d3_str2ky.c: Updated to include some of the randomness throughout
the entire key. The second 3-DES CBC encryption of the block
should use an ivec of the last cipher block.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7208
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 19:32:45 +0000 (19:32 +0000)]
* 3-des.txt: Updated to include some of the randomness throughout
the entire key. The second 3-DES CBC encryption of the block
should use an ivec of the last cipher block.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7206
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 12 Dec 1995 13:26:13 +0000 (13:26 +0000)]
Clean up repository - don't check in configure add .Sanitize and .cvsignore
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7205
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Tue, 12 Dec 1995 06:44:09 +0000 (06:44 +0000)]
* TODO: Done: keytab routines to access to database.
Todo: Create a real krb5_db_context after 1.0
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7204
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Tue, 12 Dec 1995 06:30:11 +0000 (06:30 +0000)]
New directory for the kdb keytab functions. Currently there is only get and
resolve but these are sufficient to remove the ugly hack where the key is
passed to krb5_rd_req() in the user-to-user field of the auth_context.
These functions do NOT need to be built on the Macintosh or Windows systems.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7203
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Tue, 12 Dec 1995 06:27:13 +0000 (06:27 +0000)]
* configure.in : Added subdirectory db
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7202
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Tue, 12 Dec 1995 06:24:26 +0000 (06:24 +0000)]
* kdb_dbm.c : Move the krb5_db_context to include/krb5/kdb_dbc.h.
* kdb_dbm.c krb5_dbm_db_set_mkey(), krb5_dbm_db_get_mkey():
Functions for associating a master key (krb5_encrypt_block *)
to a krb5_db_context. Currently it associates it to the
krb5_context and will be fixed once the krb5_db_context
is better defined (Post 1.0).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7201
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Tue, 12 Dec 1995 06:18:53 +0000 (06:18 +0000)]
* extern.h: Added a krb5_keytab to the realm context. The keytab
should be associated with a krb5_db_context which will
make having a krb5_context unnecessary in the realm context.
* kdc_util.c kdc_process_tgs_req(): Use the realm keytab instead
of faking up a user-to-user key to pass to krb5_rd_req_decode().
* main.c: Added code to use the new database keytab routines.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7200
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Tue, 12 Dec 1995 06:09:05 +0000 (06:09 +0000)]
* adm.h: Added principal flag keywords KRB5_ADM_KW_SETFLAGS and
KRB5_ADM_KW_UNSETFLAGS because relative flag modification
is just a good idea.
* kdb.h: typedef kdb5_dispatch_table so prototypes that need it
compile even if KDB5_DISPATCH isn't defined.
* kdb_dbc.h: The start of the database context, which should be
removed from the krb5_context.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7199
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 02:34:56 +0000 (02:34 +0000)]
* main.c: Use the master key enctype from the stash file if none
is specified (set the keyblock enctype to NULL).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7198
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 02:34:40 +0000 (02:34 +0000)]
* kdb5_edit.c: Use the master key enctype from the stash file if none
is specified (set the keyblock enctype to NULL).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7197
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 02:32:05 +0000 (02:32 +0000)]
* fetch_mkey.c: If the keyblock is initialized with an enctype of
NULL, simply read in the enctype from the stash file and
don't try to check it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7196
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 02:31:12 +0000 (02:31 +0000)]
* krb524d.c: Rely on stashed master key enctype instead of hardcoding
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7195
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 02:29:45 +0000 (02:29 +0000)]
* d3_str2ky.c: Revised 3-DES String-To-Key algorithm to encrypt the
folded result twice in the folded key. [Courtesy Uri Blumenthal]
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7194
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Dec 1995 02:29:33 +0000 (02:29 +0000)]
* 3-des.txt: Revised 3-DES String-To-Key algorithm to encrypt the
folded result twice in the folded key. [Courtesy Uri Blumenthal]
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7193
dc483132-0cff-0310-8789-
dd5450dbe970
Chris Provenzano [Mon, 11 Dec 1995 22:01:07 +0000 (22:01 +0000)]
* kdc_preauth.c return_padata(): Initialize local variable "size"
to 0 before using it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7192
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Mon, 11 Dec 1995 18:30:09 +0000 (18:30 +0000)]
* adm_proto.h: Moved many string conversion functions to libkrb5
for better support of multiple encryption type selection
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7191
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Mon, 11 Dec 1995 18:29:16 +0000 (18:29 +0000)]
* krb5.hin: Moved string conversion functions from libkadm
for better support of multiple encryption type selection
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7190
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Mon, 11 Dec 1995 17:25:28 +0000 (17:25 +0000)]
* krb5.conf.M: describe new option default_tgs_enctypes
for specifying the default session key types.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7189
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 10 Dec 1995 16:22:10 +0000 (16:22 +0000)]
* kdb5_edit.M: Document that modent exists
* kdb5_edit.c (modent): Add usage as suggested by jhawk@mit.edu.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7188
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 10 Dec 1995 16:19:38 +0000 (16:19 +0000)]
Add new routine krb5_input_flag_to_string to allow an application to
loop over the input flag strings for displaying help messages (i.e.
modent in krb5_edit).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7187
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 10 Dec 1995 16:17:10 +0000 (16:17 +0000)]
* adm_proto.h: Add prototype for krb5_input_flag_to_string
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7186
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Wed, 6 Dec 1995 15:49:04 +0000 (15:49 +0000)]
* krb5.conf Added example use of default_tgs_enctypes
* krb5.conf.M Described new configuration option "default_tgs_enctypes"
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7179
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 02:04:10 +0000 (02:04 +0000)]
* configure.in: Use krb5util library
* login.c (main): Change two-argument call to syslog to three
arguments to handle screw cases in hostnames.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7178
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 02:02:51 +0000 (02:02 +0000)]
Move compat_recvauth to this library so that krb4 can depend on krb5
(for configurable paths support).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7177
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 02:00:43 +0000 (02:00 +0000)]
Commit the removal or compat_recv.o
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7176
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 01:59:16 +0000 (01:59 +0000)]
Move compat_recv.c to krb5util
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7175
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 01:58:05 +0000 (01:58 +0000)]
Removed krb4 dependency in building shared library
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7174
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 01:55:03 +0000 (01:55 +0000)]
* Makefile.in: Shared library depends on krb5 library now
* configure.in: Pass krb5 library version number to Makefile.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7173
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 01:53:00 +0000 (01:53 +0000)]
krb5 is built before krb4. Add krb5util library
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7172
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 6 Dec 1995 01:51:08 +0000 (01:51 +0000)]
Add USE_KRB5UTIL_LIBRARY. Change library link order to -lkrb4 -lkrb5
compat_recvauth is moving to a new library and krb4 now depends on krb5
anyways for the configurable path support.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7171
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:48:32 +0000 (03:48 +0000)]
Added support for matching against a supported app. session key type
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7170
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:47:34 +0000 (03:47 +0000)]
When searching for cached credentials, make sure we are also looking for
credentials that are matching a supported application keytype.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7169
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:45:06 +0000 (03:45 +0000)]
Added two new routines for multiple encryption type support:
krb5_set_default_tgs_ktypes(context, ktypes)
This routine sets the default application session key types to be used.
krb5_get_tgs_ktypes(context, principal, &ktypes)
This routine gets the session key types to be used with "principal".
At the moment, this only uses the krb5_set_default_tgs_ktypes values
or those specified in libdefaults/default_tgs_enctypes (krb5.conf).
It is envisioned that this may later support per-host/per-realm lookup.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7168
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:41:31 +0000 (03:41 +0000)]
Added prototypes for two new routines:
krb5_set_default_tgs_ktypes - sets default app. session key types.
krb5_get_tgs_ktypes - gets app. session key types.
Also added a new flag for testing credential matches (match supported keytype)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7167
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:39:28 +0000 (03:39 +0000)]
Serialize / de-serialize the context structure, which now includes both
TGT session key types and application session key types.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7166
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:38:02 +0000 (03:38 +0000)]
Instead of using the TGT session key type, use the application session
key type.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7165
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:36:11 +0000 (03:36 +0000)]
Extended the context structure to support differing tgt and application
session keys.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7164
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:34:22 +0000 (03:34 +0000)]
The BSD application suite only understands using 1-DES as a session key type
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7163
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:32:11 +0000 (03:32 +0000)]
Use symbolic names for the encryption types.
Support 3-DES, too.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7162
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:30:58 +0000 (03:30 +0000)]
The wrong encryption system was being initialized. The response to the mk_req
should be done using the session key and its encryption system, not the
ticket's encryption system.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7161
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:27:55 +0000 (03:27 +0000)]
There is no longer a dependency on libkadm
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7160
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:24:44 +0000 (03:24 +0000)]
Moved most string-type conversion routines from libkadm to libkrb5 to
reduce the dependencies on libkadm and for better support of multiple
encryption type lookup in krb5.conf.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7159
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Dec 1995 03:13:14 +0000 (03:13 +0000)]
Moved most string-type conversion routines from libkadm to libkrb5 to
reduce the dependencies on libkadm and for better support of multiple
encryption type lookup in krb5.conf.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7158
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Sat, 2 Dec 1995 16:35:47 +0000 (16:35 +0000)]
Fixed the description of the algorithm in the comment
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7157
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Sat, 2 Dec 1995 16:33:40 +0000 (16:33 +0000)]
XOR the last byte of weak keys with 0xf0, according to spec
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7156
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Sat, 2 Dec 1995 16:30:09 +0000 (16:30 +0000)]
XOR the last octet with 0xf0, not the first, analagous to 1-DES
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7155
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:35:35 +0000 (22:35 +0000)]
Applied patch from Scott Schwartz <schwartz@galapagos.cse.psu.edu>
Under SunOS, and maybe other systems, there is a a problem with
krlogind.c and a similar problem with login.c as distributed with
K5.5.
The bug is that rlogind forks a child but retains a controlling tty.
If the child is in the same process group as the parent, which is will
if you don't use a job control shell (chsh /bin/rc), keyboard signals
will kill the daemon. telnetd dissociates itself properly, but then
login.krb5 waits for the shell to finish, but login.krb5 has the same
ctty as the shell and is in the same process group, so it has the same
problem.
In BSD you used to be able to give up your ctty at will, but SunOS
seems to have setsid as the only mechanism to perform that action, and
setsid can only succeed in limited circumstances. Rlogind ought to be
fixed to behave more like telnetd, but independent of that, login.krb5
needs to be patched if kerberos is to work properly under SunOS.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7154
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:28:06 +0000 (22:28 +0000)]
Add rule for building shared object files
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7153
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:24:32 +0000 (22:24 +0000)]
Added Changelog file
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7152
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:16:42 +0000 (22:16 +0000)]
Added temporary definition of KRB5_ADM_M_EXTRADATA so that we have a
tree which (mostly) compiles.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7151
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:15:32 +0000 (22:15 +0000)]
In case of permission problems, don't unlink the old replay cache;
make it a hard (repeatable) error. This also reduces the chance we
accidentally delete valuable data.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7150
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:14:52 +0000 (22:14 +0000)]
Initialize rcache to zero, so that on cleanup we don't try to free
stack garbage.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7149
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:14:10 +0000 (22:14 +0000)]
Changed token ID for KG_TOK_WRAP_MSG to match KG_TOK_SEAL_MSG both
should be 0x0201.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7148
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Dec 1995 22:13:07 +0000 (22:13 +0000)]
* krb5_gss_glue.c (gss_inquire_names_for_mech): Added new context
argument to the call of krb5_gss_inquire_names_for_mech().
* inq_names.c (krb5_gss_inquire_names_for_mech): Added new context
argument to the arg list.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7147
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Fri, 1 Dec 1995 21:25:08 +0000 (21:25 +0000)]
Description of 3-DES algorithms
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7146
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Fri, 1 Dec 1995 19:21:07 +0000 (19:21 +0000)]
Corrected algorithm description at beginning.
Fold input into 168 bits and then expand the result to include odd parity,
so as to avoid potentially weakening the key.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7145
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Fri, 1 Dec 1995 19:10:04 +0000 (19:10 +0000)]
Added 3-DES string translation
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7144
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 1 Dec 1995 02:00:33 +0000 (02:00 +0000)]
* kdc_preauth.c: #@&^(!! Ultrix cc sucks. Typedef to function
pointer rather than function prototype to avoid lossage.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7143
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 29 Nov 1995 18:32:37 +0000 (18:32 +0000)]
Removed extra eblock argument from call to krb5_encode_kdc_rep
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7142
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Wed, 29 Nov 1995 06:08:41 +0000 (06:08 +0000)]
Corrected a bug in the wrap-around carry (found bug by comparing test results
with another implementation).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7141
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 20:08:53 +0000 (20:08 +0000)]
Make sure that each DES key is strong. If not, xor first byte with 0xf0
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7140
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 19:50:53 +0000 (19:50 +0000)]
Corrected bit rotation to match documented algorithm
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7139
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 16:38:53 +0000 (16:38 +0000)]
Removed debugging assert() statement
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7138
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 28 Nov 1995 16:35:30 +0000 (16:35 +0000)]
f_ecb.c, des_int.h (mit_des_ecb_encrypt): Add const declaration to input
cblock.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7137
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 13:18:57 +0000 (13:18 +0000)]
The output block of n-fold should not be a "const"
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7136
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:25:49 +0000 (01:25 +0000)]
Added 3-DES MD5 mode constants
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7135
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:19:37 +0000 (01:19 +0000)]
Compile 3-DES MD5 routine
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7134
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:18:05 +0000 (01:18 +0000)]
Added 3-DES MD5 checksum mode switch
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7133
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:17:10 +0000 (01:17 +0000)]
Added 3-DES MD5 checksum mode
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7132
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:15:23 +0000 (01:15 +0000)]
Added Triple-DES function prototypes and structures
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7131
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:14:53 +0000 (01:14 +0000)]
Compile in Triple-DES routines
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7130
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:12:41 +0000 (01:12 +0000)]
Triple DES shares the same random key initialization routine
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7129
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:09:46 +0000 (01:09 +0000)]
Triple DES support routines
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7128
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 28 Nov 1995 01:09:19 +0000 (01:09 +0000)]
Triple-DES support routines
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7127
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 27 Nov 1995 21:00:40 +0000 (21:00 +0000)]
* state.c: use P properly so it won't break non-ansi compilers
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7126
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 27 Nov 1995 20:51:53 +0000 (20:51 +0000)]
* rc_dfl.c (krb5_rc_dfl_init): default lifespan to
context->clockskew in case some app can't get at the
internals of the context struct.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7125
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 27 Nov 1995 00:37:13 +0000 (00:37 +0000)]
* k5-int.h: Ultrix is broken. Hacked around by redefining the
typedefs of preauth_obtain_data_proc and
preauth_process_proc to be pointers to the functions
rather than the functions themselves. Also made some
things KRB5_NPROTOTYPE.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7124
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 27 Nov 1995 00:36:33 +0000 (00:36 +0000)]
* preauth.c: Ultrix is broken. Prototype obtain_enc_ts_padata()
and process_pw_salt() explicitly rather than using the
typedef in k5-int.h becaus that typedef is to a function
pointer now.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7123
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:42:55 +0000 (03:42 +0000)]
Added missing prototype for krb5_encode_kdc
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7121
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:42:22 +0000 (03:42 +0000)]
Removed extra eblock argument from call to krb5_encode_kdc_rep
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7120
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:41:21 +0000 (03:41 +0000)]
Moved prototype of krb5_encode_kdc to k5-int.h
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7119
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:40:03 +0000 (03:40 +0000)]
Moved prototype for encode_kdc_rep to k5-int.h, and remove the eblock
argument.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7118
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:39:15 +0000 (03:39 +0000)]
get_in_tkt.c (decrypt_as_reply):
preauth.c (process_pw_salt): When fetching the key to decrypting the
encrypted kdc reply, use the etype associated with the etype
reply, not the etype associated with the included ticket.
encode_kdc.c: Remove eblock argument from krb5_encode_kdc_rep;
set the eblock type from the client_key's enctype.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7117
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:22:58 +0000 (03:22 +0000)]
Makefile.in, ChangeLog: Add support to compile shared libraries
gssapi.h: Include sys/types.h, since that's where POSIX says size_t is
defined.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7116
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:20:15 +0000 (03:20 +0000)]
Fixed token type numbers so they conform with the protocol spec. Paul
Park didn't realize that he wasn't allowed to change these
willy-nilly...
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7115
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 18 Nov 1995 03:11:26 +0000 (03:11 +0000)]
Renamed filenames so they would be unique in an 8.3 filesystem. Added
GSSAPI V2 functions to mechglueP.h (now mglueP.h)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7114
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Fri, 17 Nov 1995 02:31:57 +0000 (02:31 +0000)]
Fix bogus duplication of code
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7112
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Fri, 17 Nov 1995 02:28:36 +0000 (02:28 +0000)]
Add IEXTEN to lflags
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7111
dc483132-0cff-0310-8789-
dd5450dbe970