Ezra Peisach [Wed, 13 Mar 1996 18:08:23 +0000 (18:08 +0000)]
* krb5_decode.c (decode_krb5_ticket, decode_krb5_enc_tkt_part,
decode_krb5_authenticator, decode_krb5_error,
decode_krb5_ap_req, decode_krb5_ap_rep,
decode_krb5_ap_rep_enc_part, decode_krb5_safe,
decode_krb5_priv, decode_krb5_enc_priv_part,
decode_krb5_cred, decode_krb5_enc_part): Add magic values.
* asn1_k_decode.c (asn1_decode_passwdsequence): Set magic values
in structures.
(asn1_decode_kdc_req_body): Set magic in
authorization_data if not sent OTW.
I believe all magic number fields now being properly initialized in the
asn.1 layer.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7619
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 13 Mar 1996 18:06:52 +0000 (18:06 +0000)]
* kv5m_err.et: Add KV5M_PASSWD_PHRASE_ELEMENT
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7618
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 13 Mar 1996 04:56:22 +0000 (04:56 +0000)]
* pre.in (SRCTOP, BUILDTOP): Don't define
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7617
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 13 Mar 1996 04:55:41 +0000 (04:55 +0000)]
* aclocal.m4 (V5_MAKE_SHARED_LIB): If the cache variables for
selecting shared v. archive library support haven't been set,
complain, instead of generating a broken Makefile.
(WITH_CC): Default to value from cache, if available. If it
differs from name supplied on command line, complain. When not
using a value from the cache, verify that it's a working compiler
before proceeding. At end, use AC_PROG_CC to see if it's gcc
we're using.
(SubdirLibraryRule): Make DONE depend on Makefile.in, so it
doesn't keep getting regenerated in the case of no object files.
(CHECK_WAIT_TYPE): Make sure that union wait is acceptable to
WEXITSTATUS if that macro is defined.
Permit a single configure.in to build multiple makefiles, e.g., when a
subtree contains a program that must be considered a single package, and might
as well get configured that way. (The Cygnus tree handles xdm this way.)
Should be more efficient.
* aclocal.m4 (V5_SET_TOPDIR): Don't substitute BUILDTOP, SRCTOP.
(CONFIG_RULES): In makefile dependencies, use $(thisconfigdir).
(V5_AC_OUTPUT_MAKEFILE): If arguments are given, treat as
directories and build pre/Makefile/post in each. Set
thisconfigdir, SRCTOP, BUILDTOP separately in each directory.
Tweak Makefile dependencies appropriately.
Permit compilation on hpux, where stdarg.h exists, but the use of "..." in
new-style definitions does not work. (Needs changes to configure.in files.)
* aclocal.m4 (AC_HEADER_STDARG): New macro. Try compiling some
sources with variadic functions; set HAVE_STDARG_H or
HAVE_VARARGS_H, or bomb.
* acconfig.h (HAVE_STDARG_H, HAVE_VARARGS_H): Undef.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7616
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 13 Mar 1996 04:48:12 +0000 (04:48 +0000)]
* gss-server.c (timeval_subtract): Use old-style function definition
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7615
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 13 Mar 1996 04:35:37 +0000 (04:35 +0000)]
remove cvs conflict marker, wrap some long lines
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7614
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 13 Mar 1996 04:32:43 +0000 (04:32 +0000)]
regenerated
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7613
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 13 Mar 1996 02:53:21 +0000 (02:53 +0000)]
New telnet authentication type pair to indicate whether we should be
encrypting.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7612
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 12 Mar 1996 23:06:52 +0000 (23:06 +0000)]
Check in ChangeLog for last change..
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7611
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 12 Mar 1996 23:03:58 +0000 (23:03 +0000)]
* krshd.c (doit): For encrypted rcp, fix logic in determining
executable to run.
The real bug was that for encrypted rcp, it was checking (with stat) if
"-x ....../rcp" existed instead of "..../rcp"
Another change is so that freed memory is not accessed.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7610
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Mar 1996 19:04:45 +0000 (19:04 +0000)]
* kprop.c: Write a byte to the last-prop file to ensure the file
modtime is updated. Simply opening the file isn't sufficient.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7609
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 12 Mar 1996 19:04:14 +0000 (19:04 +0000)]
Additional bugs needing to be addressed
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7608
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Tue, 12 Mar 1996 10:43:00 +0000 (10:43 +0000)]
use KRB5_PROTOTYPE
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7607
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Tue, 12 Mar 1996 10:22:59 +0000 (10:22 +0000)]
convert __gss_get_mechanism to k&r style definition
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7606
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Tue, 12 Mar 1996 10:16:23 +0000 (10:16 +0000)]
use PROTOTYPE and K&R style definitions, per krb5 style
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7605
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Mon, 11 Mar 1996 21:59:39 +0000 (21:59 +0000)]
Fixed mispelling of Doug Engert's name
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7604
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Mon, 11 Mar 1996 04:51:50 +0000 (04:51 +0000)]
* aclocal.m4 (KRB5_SIGTYPE): quote the body correctly, so the test
happens when it should.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7603
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 9 Mar 1996 02:37:38 +0000 (02:37 +0000)]
Change sizeof(long) to sizeof(krb5_int32)
Yet another piece of code that was assuming that longs are 32 bits...
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7602
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Fri, 8 Mar 1996 14:44:23 +0000 (14:44 +0000)]
Add comments about the DejaGnu tests
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7599
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Wed, 6 Mar 1996 21:41:22 +0000 (21:41 +0000)]
* kprop.c: The credentials cache should be destroyed after any error
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7598
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Wed, 6 Mar 1996 21:39:17 +0000 (21:39 +0000)]
POSIX requires a file be opened read-write for locking
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7597
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Wed, 6 Mar 1996 21:37:24 +0000 (21:37 +0000)]
* dumpv4.c:
The V4 master key & schedule was never initialized,
so the dump created by dump_v4db was garbage. Read the V4
master key from /.k or prompt for the V4 master key password.
If there is no V4-salt key in the database, but there is a DES
key, include it in the V4 dump, in case it is merely a random
service key for which there is no associated password.
Skip over K/M in the V5 database (use the entered V4 master key).
Both krbtgt and afs keys often have domain-qualifed instances.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7596
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Mar 1996 17:31:01 +0000 (17:31 +0000)]
* kprop.c: Call krb5_sname_to_principal rather than doing the OS calls.
Removed a trailing ; that caused a spurious message to be printed
even upon success.
* kpropd.c: Call krb5_sname_to_principal rather than doing the OS calls.
Open the lock file read-write, as required by POSIX.
Downgrade the lock to a shared lock prior to the execution
of kdb5_edit (it also tries to place a shared lock on the dump file).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7595
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 5 Mar 1996 17:28:52 +0000 (17:28 +0000)]
kdb5_edit has been moved to PREFIX/sbin
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7594
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Tue, 5 Mar 1996 07:33:42 +0000 (07:33 +0000)]
* kdb5_edit.c: new command line option -f stashfile.
* kdb5_edit.M: document stashfile option.
(also fixed some indentation, diff -w shows no difference.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7593
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Tue, 5 Mar 1996 07:29:29 +0000 (07:29 +0000)]
now the keys actually *work* when you load an old dump (a real one,
not the fake one the test case creates.)
* dump.c (process_k5beta_record): since V4 salt type has no data
either, only set key_data_ver to 1 for data_type 0 with 0-length
salt. Also, don't include alternate key if akey has all-zero type
and length in both fields.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7592
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 5 Mar 1996 01:51:23 +0000 (01:51 +0000)]
* default.exp: Log krb5kdc to stderr so that test can detect
properly when server has started. Change
start_kerberos_daemons to take advantage of this.
Before, every time the server was started, the test would have to wait
for the standard timeout (100 sec) before continuing with the test.
The standalone tests used to take 15.5 min and now take 4.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7591
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 3 Mar 1996 21:01:45 +0000 (21:01 +0000)]
Changes to start up kshd (not krshd) with new arguments
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7590
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 3 Mar 1996 21:00:57 +0000 (21:00 +0000)]
Change to execute with new program name and arguments
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7589
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 3 Mar 1996 18:14:54 +0000 (18:14 +0000)]
* krb5_decode_test.c (main): In krb5_enc_tkt_part (optionals NULL)
test, set starttime to authtime. Matches change to
lib/krb5/asn.1/krb5_decode.c.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7588
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 3 Mar 1996 17:55:45 +0000 (17:55 +0000)]
* srv_main.c: Move inclusion of k5-int.h before testing if
HAVE_STDARG_H is defined.
This is because configure.in does not test for stdarg.h, but autoconf.h does have it defined.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7587
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 3 Mar 1996 17:50:13 +0000 (17:50 +0000)]
* g_imp_sec_context.c, g_exp_sec_context.c: Include string.h
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7586
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 3 Mar 1996 17:25:22 +0000 (17:25 +0000)]
* gss-server.c (test_import_export_context): Add second argument
to gettimeofday.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7585
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sun, 3 Mar 1996 15:42:17 +0000 (15:42 +0000)]
configure.in: Change WITH_DB to WITH_KDB_DB
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7584
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 2 Mar 1996 08:08:14 +0000 (08:08 +0000)]
gss-server.c (sign_server): Do better import/export security checking.
If the received message to be signed is not printable (at least the
first two characters are not), display the message in hex. Print the
hex values of the incoming and outcoming packets, for your
information.
gss-misc.c (print_token, display_buffer): Two new tokens for
displaying GSSAPI buffers, either has hex or as a printable string.
gss-client.c (call_server): Add option to support reading in the
message to be signed from a file.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7583
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 2 Mar 1996 08:02:16 +0000 (08:02 +0000)]
k5mech.c (krb5_gss_get_context): Initialize the serializers here,
instead of in export and import security context. This will speed
things up a little.
export_sec_context.c (krb5_gss_export_sec_context):
import_sec_context.c (krb5_gss_import_sec_context): Don't create
a serialization context just for importing/exporting credentials.
Use the passed-in gssapi context. This speeds things up
significantly. Assume the serializers are initialized in
krb5_gss_get_context.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7582
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Mar 1996 05:06:19 +0000 (05:06 +0000)]
g_glue.c (__gss_get_mech_type): Fix code to properly parse token
headers. It was working only by serendipity....
g_accept_sec_context.c (gss_accept_sec_context): Add error checking
and memory cleanup. Make gss_accept_sec_context work for mechanisms
that use multiple token roundtrips.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7581
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Mar 1996 05:04:46 +0000 (05:04 +0000)]
Use NEED_SOCKETS instead of #including <netdb.h>
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7580
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Mar 1996 05:04:16 +0000 (05:04 +0000)]
Add closeoscket() call so that program properly cleans up the socket
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7579
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Mar 1996 00:45:51 +0000 (00:45 +0000)]
Added note: Note that calls to WSAStartup and WSACleanup must be in
matched pairs. If there is a missing WSACleanup call when a program
exits, under Lan Workplace, the name resolver will stop working.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7578
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Mar 1996 00:42:29 +0000 (00:42 +0000)]
Take out calls to SOCKET_INITIALIZE and SOCKET_CLEANUP. This gets
done in win_glue.c, and we only need to do this once. (XXX What about
Macintosh?)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7577
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Fri, 1 Mar 1996 00:40:43 +0000 (00:40 +0000)]
Fix to work on 16-bit platforms (we don't allow greater than 64k
tokens on these platforms).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7576
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Thu, 29 Feb 1996 21:50:45 +0000 (21:50 +0000)]
Make sure WSACleanup() is called when the DLL exits
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7575
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Thu, 29 Feb 1996 06:27:31 +0000 (06:27 +0000)]
mglueP.h: For MS-DOS, add #include of malloc.h
g_acquire_cred.c (gss_acquire_cred): Fix so that the call works when
desired_name is NULL (meaning use the default credentials).
g_imp_sec_context.c (gss_import_sec_context):
g_exp_sec_context.c (gss_export_sec_context): Fix to import/export the
framing security context (so that this call actually works!).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7574
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Thu, 29 Feb 1996 06:25:11 +0000 (06:25 +0000)]
Added support for users to enter the GSSAPI target name into the
combobox. The syntax is: "host port gssapi_target_name"
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7573
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 28 Feb 1996 18:08:51 +0000 (18:08 +0000)]
Move com_err.h after k5-int.h include so that autoconf.h is included
which handles the varargs issue.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7571
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 16:44:07 +0000 (16:44 +0000)]
Get the nametype OID from gss_display_name, print it, and then release
the nametype OID. This tests gss_display_name()'s ability to return a
valid nametype, which can then be freed successfully.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7570
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 05:47:23 +0000 (05:47 +0000)]
Update TODO list
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7568
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 05:36:40 +0000 (05:36 +0000)]
Build the gssapi tests directory
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7567
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 05:35:06 +0000 (05:35 +0000)]
Fix memory leak; free enctypes after use
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7566
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 05:18:50 +0000 (05:18 +0000)]
Windows has strerror()
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7565
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 05:05:58 +0000 (05:05 +0000)]
Add Windows 95/NT time function. (Does this time function work under
Windows? We'll find out....)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7564
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 05:05:24 +0000 (05:05 +0000)]
We have implemented gss_inquire_names_for_mech, not
gss_inquire_mechs_for_name.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7563
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 05:04:36 +0000 (05:04 +0000)]
Modify windows build procedure to include the gssapi/mechglue
directory.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7562
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 04:38:54 +0000 (04:38 +0000)]
g_initialize.c (gss_initialize): Don't fprintf to stderr on
Macintoshes and Windows.
g_inq_context.c: Add INTERFACE keyword for Windows.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7561
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 03:11:30 +0000 (03:11 +0000)]
Add mechglue to the list of directories which are recursively handled
for Windows.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7560
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 02:33:34 +0000 (02:33 +0000)]
Fix stupid typo
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7559
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Wed, 28 Feb 1996 00:26:25 +0000 (00:26 +0000)]
If starttime is not set, then use authtime as a default. (This fixes
the bug where if you try to immediately use a TGT to get a ticket, you
get a time skew error.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7558
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Tue, 27 Feb 1996 23:53:10 +0000 (23:53 +0000)]
Protect include of unistd.h with HAVE_UNISTD_H
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7557
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Tue, 27 Feb 1996 23:52:38 +0000 (23:52 +0000)]
Make sure size_t and uid_t are defined under MS-DOS
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7556
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Tue, 27 Feb 1996 23:50:45 +0000 (23:50 +0000)]
accept_sec_context.c (krb5_gss_accept_sec_context): Remove dead code
which used geteuid().
Makefile.in (gssapi_err_krb5.$(OBJEXT)): Add Windows production to add
file to library.
pname_to_uid.c: Don't try to compile pname_to_uid.c for MS-DOS
or Macintosh.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7555
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Tue, 27 Feb 1996 23:48:59 +0000 (23:48 +0000)]
Use #define NEED_SOCKETS instead of #including <netdb.h> (this breaks
under windows).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7554
dc483132-0cff-0310-8789-
dd5450dbe970
Richard Basch [Tue, 27 Feb 1996 22:37:56 +0000 (22:37 +0000)]
*main.c:
Do not repeat random number generator initializations, as memory
is allocated and never reclaimed. Also fixed the V4 random number
generator initialization (a DES_CBC_CRC random number is generated
and used as a seed for the V4 routine, but the generation function
was being called with the wrong arguments).
* do_as_req.c:
Memory was occassionally being freed twice because the pointer was
not re-initialized to NULL after it was freed.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7553
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 27 Feb 1996 22:29:12 +0000 (22:29 +0000)]
Add USE_ANAME for dbm library (if needed)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7552
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 26 Feb 1996 23:32:59 +0000 (23:32 +0000)]
Remoe static declaration of kg_context,
which is global elsewhere and extern in gssapiP_krb5.h
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7551
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Mon, 26 Feb 1996 22:07:51 +0000 (22:07 +0000)]
Don't compile promptusr for Windows or Macintosh
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7550
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 26 Feb 1996 08:36:47 +0000 (08:36 +0000)]
Use MAXDNAME for the maximum length of a domain,
*not* MAXHOSTNAMELEN, which is the maximum length
of an argument to gethostname or sethostname.
Look for arpa/nameser.h to find this constant,
defining it to 256 inf not present in an included file.
Call USE_ANAME in the configure.in, so db library is included.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7549
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 26 Feb 1996 08:35:56 +0000 (08:35 +0000)]
Use MAXDNAME for the maximum length of a domain,
*not* MAXHOSTNAMELEN, which is the maximum length
of an argument to gethostname or sethostname.
Look for arpa/nameser.h to find this constant,
defining it to 256 inf not present in an included file.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7548
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 26 Feb 1996 08:32:46 +0000 (08:32 +0000)]
Call USE_ANAME so we get the right
db libraries under Linux.
(I'm not quite sure I understand Richard's db changes,
but if I do understand them, this is correct.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7547
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 26 Feb 1996 02:31:03 +0000 (02:31 +0000)]
Remove space from #endif line
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7546
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 26 Feb 1996 00:14:35 +0000 (00:14 +0000)]
Fix the server side of the krlogin bug detecting eof in connection close
Also, import the ops changes to do with enable-athena.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7545
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Sun, 25 Feb 1996 21:07:18 +0000 (21:07 +0000)]
* main.c (initialize_realms): missing indirection for conf_val in
alternate profile code. (This should really be in a library...)
(thanks ezra!)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7544
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Sun, 25 Feb 1996 20:44:06 +0000 (20:44 +0000)]
* g_acquire_cred.c, g_delete_sec_context.c, g_dsp_name.c,
g_dsp_status.c, g_exp_sec_context.c, g_glue.c, g_imp_name.c,
g_imp_sec_context.c, g_indicate_mechs.c, g_init_sec_context.c,
g_inq_cred.c, g_rel_buffer.c, g_rel_cred.c, g_rel_name.c,
g_rel_oid_set.c: include stdio.h to actually get NULL.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7543
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 02:58:18 +0000 (02:58 +0000)]
Makefile.in, g_inquire_cred.c, g_inquire_names.c, g_inquire_context.c:
Renamed files to g_inq_cred.c, g_inq_names.c, and g_inq_context.c,
respectively. To make files be unqiue to DOS's 8.3 restrictions.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7539
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 02:47:20 +0000 (02:47 +0000)]
hpux make doesn't grok $@, so I'm told. Use explicit target names for
building errortable include files.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7538
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 02:35:35 +0000 (02:35 +0000)]
Don't do call vhangup() if system doesn't have it
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7537
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 02:33:59 +0000 (02:33 +0000)]
g_acquire_cred.c (gss_add_cred): New GSSAPI V2 function
g_inquire_cred.c (gss_inquire_cred_by_mech): New GSSAPI V2 function.
g_init_sec_context.c (gss_init_sec_context): Make sure we convert the
union credential into a mechanism specific credential.
g_glue.c (__gss_get_mechanism_cred): New function for returning the
mechanism-specific credential from a union credential.
g_inquire_names.c (gss_inquire_names_for_mech):
g_oid_ops.c (gss_str_to_oid, gss_oid_to_str, ss_test_oid_set_member,
gss_add_oid_set_member, gss_create_empty_oid_set, gss_release_oid):
g_imp_sec_context.c (gss_import_sec_context):
g_exp_sec_context.c (gss_export_sec_context):
g_inquire_cred.c (gss_inquire_cred):
g_rel_oid_set.c (gss_release_oid_set):
g_rel_buffer.c (gss_release_buffer):
g_rel_name.c (gss_release_name):
g_imp_name.c (gss_import_name):
g_dsp_name.c (gss_display_name):
g_compare_name.c (gss_compare_name):
g_indicate_mechs.c (gss_indicate_mechs):
g_dsp_status.c (gss_display_status):
g_unseal.c (gss_unseal, gss_unwrap):
g_seal.c (gss_seal, gss_wrap):
g_verify.c (gss_verify, gss_verify_mic):
g_sign.c (gss_sign, gss_get_mic):
g_context_time.c (gss_context_time):
g_delete_sec_context.c (gss_delete_sec_context):
g_process_context.c (gss_process_context):
g_accept_sec_context.c (gss_accept_sec_context):
g_init_sec_context.c (gss_init_sec_context):
g_rel_cred.c (gss_release_cred):
g_acquire_cred.c (gss_acquire_cred): Added INTERFACE keyword for Windows.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7536
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 02:31:42 +0000 (02:31 +0000)]
New error code function
XXX Need to square number assigment with official C-binds draft once
it is issued.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7535
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Sun, 25 Feb 1996 01:35:18 +0000 (01:35 +0000)]
With this change, lddb -old actually *works* on old dumps..
* dump.c (process_k5beta_record): encrypted keys used to have 4
byte lengths in MSB order, need to convert to 2 byte LSB order
lengths before storing. Handle primary key and alternate key.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7534
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 00:27:59 +0000 (00:27 +0000)]
Add support for new V2 call gss_wrap_size_limit
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7533
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 00:27:20 +0000 (00:27 +0000)]
Add support for new V2 call gss_wrap_size_limit()
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7532
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 00:17:39 +0000 (00:17 +0000)]
For MS-DOS filesystems, you must close the file before unlinking it,
otherwise the unlink() will fail.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7531
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 00:08:27 +0000 (00:08 +0000)]
Add support for shared libraries under HPUX and Sinix (SysVR4 under mips)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7530
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 00:05:32 +0000 (00:05 +0000)]
Add support for HPUX and Sinix (sys5r4 on mips)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7529
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 00:01:14 +0000 (00:01 +0000)]
Under Windows, assume that the keytab file is located in the Windows
directory.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7528
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sun, 25 Feb 1996 00:00:39 +0000 (00:00 +0000)]
Under windows, let it be %s\v5srvtab. It will be filled in by the
krb5_kt_default_name with the name of windows directory.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7527
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 24 Feb 1996 23:55:04 +0000 (23:55 +0000)]
Use Windows path separator, if appropriate. Under Windows also use
the environment variables TEMP and TMP for the replay cache.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7526
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 24 Feb 1996 23:48:32 +0000 (23:48 +0000)]
Add new GSSAPI V2 calls. (XXX we still need to get the official
function numbers defined for them.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7525
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 24 Feb 1996 23:46:36 +0000 (23:46 +0000)]
No longer need to call name-type/mechanism registration function.
This is now done for us by the generic intialization function.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7524
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 24 Feb 1996 23:45:13 +0000 (23:45 +0000)]
g_mechname.c (gss_add_mech_name_type): Only mark a name-type as being
non-mechanism-specific if the mechanism doesn't match the type
currently associated with the name-type.
g_init_sec_context.c (gss_init_security_context): If we are using a
mechanism-specific name, use the mechanism-specific name directly,
instead of calling __gss_internal_import() on the external form of the
name. If the mechanism_type is unspecified, use the type of the
mechanism-specific name. If the mechanism_type is specified, it must
match the type of the supplied name.
g_acquire_cred.c (gss_acquire_cred): If we are acquiring credentials
for a mechanism-specific name, use the name directly, instead of doing
an __gss_internal_import() on the name. Also, if the
desired_mechanisms oid is NULL, default to using the mechanism-type of
the mechanism-specific name.
g_compare_name.c (gss_compare_name): Add logic for comparing
mechanism-specific names.
g_accept_sec_context.c (gss_accept_sec_context): Use
__gss_convert_name_to_union_name() to take the gss_name_t returned by
the mechanism accept_sec_context(), and convert it into a
mechanism-specific union name.
g_inquire_context.c (gss_inquire_context): Removed local static
function convert_name_to_union_name(), and changed references to it
use the generalized __gss_convert_name_to_union_name() call.
g_glue.c (__gss_convert_name_to_union_name): New function which takes
gss_name_t returned by a particular mechanism, and converts it into a
gss_union_name.
g_rel_oid_set.c (gss_release_oid_set): Manually free the oids in an
OID set, since the containing structure is allocated as an array.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7523
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 24 Feb 1996 18:47:17 +0000 (18:47 +0000)]
* mglueP.h (gss_config): Change int fields to OM_uint32 to match
arguments to procedure calls in gss_init_sec_context,
gss_accept_sec_context, and gss_display_status.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7522
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 24 Feb 1996 17:07:25 +0000 (17:07 +0000)]
* import_sec_context.c (krb5_gss_import_sec_context): Do not
shadow parameter ctx.
* inq_context.c (krb5_gss_inquire_context): Do not shadow
parameter ctx.
The variable ctx was used both as an argument to the function (and put
into the variabel context) and declared as a local variable.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7521
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 24 Feb 1996 16:56:48 +0000 (16:56 +0000)]
* rel_oid.c (krb5_gss_internal_release_oid): Change to match prototype
* process_context_token.c (krb5_gss_process_context_token): Change
to match prototype.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7520
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 24 Feb 1996 14:32:04 +0000 (14:32 +0000)]
* ext.h, utility.c (fatalperror, fatal): Add const to argument
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7519
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Sat, 24 Feb 1996 14:29:32 +0000 (14:29 +0000)]
Declare krb__get_srvtabname()
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7518
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Sat, 24 Feb 1996 06:25:31 +0000 (06:25 +0000)]
remove errno correctly
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7517
dc483132-0cff-0310-8789-
dd5450dbe970
Mark Eichin [Sat, 24 Feb 1996 06:24:48 +0000 (06:24 +0000)]
remove extraneous second include of stdlib.h
remove extra ; from previous merge
remove declaration of errno
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7516
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 24 Feb 1996 05:14:23 +0000 (05:14 +0000)]
Simple test program for testing how GSSAPI import name works. (May be
made into a more full-fledged test program later.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7515
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 24 Feb 1996 05:10:47 +0000 (05:10 +0000)]
gssapiP_krb5.h: Changed most krb5 gssapi functions to take a void * as
their first argument, instead of a krb5_context. Makes for a cleaner
interface to the mechanism glue layer.
k5mech.c (krb5_gss_initialize): Call name-type/mechanism registration
function so that mechanism glue layer knows whether or not a name
needs to be lazy evaluated or not.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7514
dc483132-0cff-0310-8789-
dd5450dbe970
Theodore Tso [Sat, 24 Feb 1996 05:05:48 +0000 (05:05 +0000)]
g_imp_name.c (gss_import_name): If the user passes in a name-type
which is mechanism specific, then import it immediately; don't lazy
evaluate it.
g_mechname.c (gss_add_mech_name_type): New file for maintaining a
registry of name-types which are mechanism specific.
g_dsp_name.c (gss_display_name): If there is a mechanism specific
name, use it when displaying the name.
oid_ops.c (generic_gss_copy_oid): New function used to copy an OID
object.
g_rel_name.c (gss_release_name): Release the OID in the mechanism
name, as it is now allocated. Release the mechanism-specific name if
it is present.
g_imp_name.c (gss_import_name): Copy the input OID, so we don't
have to worry about memory allocation problems later.
oid_ops.c (generic_gss_copy_oid): Added new function to copy OIDs.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@7513
dc483132-0cff-0310-8789-
dd5450dbe970