Lines Matching +full:chg +full:- +full:done
8 AFS libs; `--enable-new-des3-code'
33 * lib/krb5/krb5_err.et: add some codes from kerberos-revisions-03
37 * lib/kadm5/log.c: rename delete -> remove
39 * lib/kadm5/delete_s.c: rename delete -> remove
41 * lib/hdb/common.c: rename delete -> remove
60 * lib/krb5/get_cred.c: re-structure code. remove limits on ASN1
90 * kuser/klist.c (usage): void-ize
98 * kuser/kinit.c: remove extra `--cache' option, add `--enctypes'
116 * lib/krb5/auth_context.c (re-)implement `krb5_auth_setenctype'
118 * kdc/kerberos5.c: allow mis-match of tgt session key, and service
121 * admin/ktutil.c: keytype -> enctype
141 * lib/krb5/principal.c: ENOMEM -> ERANGE
241 functions here, both take `formatted' key-usages
253 * lib/krb5/crypto.c: merge x-*.[ch] into one file
259 * lib/krb5/x-crypto.c (derive_key): move DES3 specific code to
262 * lib/krb5/x-crypto.c (krb5_string_to_key_derived): allocate key
277 * lib/krb5/x-checksum.c (krb5_verify_checksum): pass checksum type
280 * lib/krb5/x-key.c: implement DES3_string_to_key_derived; fix a
297 * kuser/klist.c: keytype -> enctype
318 * admin/ktutil.c: keytype -> enctype
331 * lib/kadm5/create_s.c: add keys for des-cbc-crc, des-cbc-md4,
332 des-cbc-md5, and des3-cbc-sha1
336 * lib/krb5/codec.c: short-circuit these functions, since they are
344 hostent->h_addr_list, use a copy instead
355 * lib/asn1/k5.asn1: hmac-sha1-des3 = 12
404 * lib/krb5/addr_families.c: fall-back definition of
428 * kdc/kerberos5.c (check_tgs_flags): make sure kdc-req-body->rtime
434 kdc-flags to the value specified, and not always to one
468 * Makefile.am: send -I to aclocal
490 * kdc/hprop.c: conditionalize ka-server reading support on
493 * configure.in: new option `--enable-kaserver-db'
510 * kdc/hprop.c: add support for ka-server databases
512 * appl/ftp/ftpd: link with -lcrypt, if needed
534 * lib/krb5/str2key.c: Fix DES3 string-to-key.
555 * kuser/klist.c (print_cred_verbose): print IPv4-address in a
581 properly in auth-context.
670 `--keytab' a global option.
687 * configure.in: add X-tests, and {bin,...}dir appl/{kx,kauth}
692 * kdc/hprop-common.c: use krb5_{read,write}_message
710 * kadmin/init.c: Max-life and max-renew can, infact, be zero.
720 expression appended with `@default-realm'.
728 headers and functions error -> com_err
760 * aux/make-proto.pl: Should work with perl4
778 * kdc/kerberos5.c (get_pa_etype_info): remove gcc-ism of
787 and kdc-rep as well as `keytype' for session key. Fix some obvious
824 * lib/krb5/encrypt.c: Add krb5_convert_etype function - converts
830 * lib/asn1/k5.asn1: Add PA-KEY-INFO structure to hold information
831 on keys in the database; and also a new `pa-key-info' padata-type.
833 * kdc/kerberos5.c: If pre-authentication fails, return a list of
837 pre-authentication, by looking at hints from the KDC.
840 pre-authentication to use.
845 * lib/krb5/krb5.h: Add pre-authentication structures.
859 * lib/krb5/get_in_tkt.c: Return error-packet to caller.
861 * lib/krb5/free.c (krb5_free_kdc_rep): Free krb5_kdc_rep->error.
866 * lib/krb5/get_cred.c: Fixes to send authorization-data to the
888 * kuser/kinit.c: rename `-s' to `-S' to be MIT-compatible.
891 kadm5_log*-functions
966 * kdc/string2key.c: Use AFS string-to-key from libkrb5.
968 * lib/krb5/get_in_tkt.c: Handle pa-afs3-salt case.
972 * lib/krb5/str2key.c: Add support for AFS string-to-key.
976 * lib/kadm5/ent_setup.c: Always enable client. Only set max-life
977 and max-renew if != 0.
983 * kadmin/ank.c (ank): don't zero password if --random-key was
1054 * kdc/connect.c: Send version 5 TCP-reply as length+data.
1090 * lib/krb5/mk_req.c (krb5_mk_req): use `(*auth_context)->enctype'
1138 * kadmin/kadmin.c: Add `-l' flag to use local database.
1143 (without radiation-hardening capability).
1175 * lib/krb5/rd_req.c: Use auth_context->keyblock if
1195 * lib/krb5/get_in_tkt.c: Make `options' parameter MIT-compatible.
1205 * lib/kadm5: Rename KADM5_ACL_* -> KADM5_PRIV_* to conform with
1297 * *: use the roken_get*-macros from roken.h for the benefit of
1300 * configure.in: add --{enable,disable}-otp. check for compatible
1313 * kdc/kerberos5.c: Fix user-to-user authentication.
1316 - add a kdc-options argument to krb5_get_credentials, and rename
1318 - honour the KRB5_GC_CACHED, and KRB5_GC_USER_USER options
1319 - add some more user-to-user glue
1323 check a ticket without having an ap-req.
1333 * lib/asn1/der_get.c (der_get_length, fix_dce): Special-case
1337 member-list.
1341 * lib/error/compile_et.awk: Allow specifying table-base.
1364 * kdc: removed all unsealing, now done by the hdb layer
1405 the kvno or keytype before receiving the AP-REQ
1437 * configure.in: check for <netinet6/in6.h>. check for -linet6
1441 * lib/krb5/encrypt.c: fix checksumtype for des3-cbc-sha1
1443 * lib/krb5/rd_safe.c: fix check for keyed and collision-proof
1446 * lib/krb5/context.c (valid_etype): remove hard-coded constants
1449 * kdc/kerberos5.c: fix check for keyed and collision-proof
1463 (in case of as-req), and with the server info to select the
1472 * lib/krb5/encrypt.c: Add des3-cbc-md5, and des3-cbc-sha1. Add
1475 * lib/krb5/str2key.c: Add des3 string-to-key. Add ktype argument
1479 - rsa-md5-des3
1480 - hmac-sha1-des3
1481 - keyed and collision proof flags to each checksum method
1482 - checksum<->string functions.
1510 * acconfig.h: AC_SOCKADDR_IN6 -> AC_STRUCT_SOCKADDR_IN6. Updated
1517 * kdc/hprop.c: Don't encrypt twice. Complain on non-convertable
1537 * kuser/klist.c: support for printing IPv6-addresses
1545 * lib/asn1/k5.asn1: Use `METHOD-DATA' instead of `SEQUENCE OF
1546 PA-DATA'
1550 * kdc/kerberos5.c: Fixes for cross-realm, including (but not
1552 - allow client to be non-existant (should probably check for
1554 - if server isn't found and it is a request for a krbtgt, try to
1556 - update the transited encoding iff
1557 client-realm != server-realm != tgt-realm
1559 * lib/krb5/get_cred.c: Several fixes for cross-realm.
1583 (set_password): return -1 if `des_read_pw_string' failed
1595 domain-x500-compress
1617 * kdc/kstash.c: default to HDB_DB_DIR "/m-key"
1619 * kdc/config.c (configure): add `--version'. Check the number of
1637 conflict with cpp symbols on HP-UX 10.20
1655 * lib/krb5/krb5.h: rename STRING -> krb5_config_string, and LIST
1656 -> krb5_config_list
1671 * kdc/hprop.c: Add `--decrypt' and `--encrypt' flags.
1735 * kdc/connect.c: Set filedecriptor to -1 on allocated decriptor
1740 * lib/krb5/get_in_tkt.c: extract_ticket -> _krb5_extract_ticket
1742 * aux/make-proto.pl: fix __P for stone age mode
1754 * lib/krb5/fcache.c: fcc_ops -> krb5_fcc_ops
1756 * lib/krb5/mcache.c: mcc_ops -> krb5_mcc_ops
1823 * admin/ank.c: re-organized and abstracted.
1867 * kpasswd/kpasswd.c: removed `-p'
1869 * kuser/kinit.c: removed `-p'
1875 krb-error text
1885 * kdc/kerberos4.c: Make `db-fetch4' global
1887 * configure.in: add --enable-kaserver
1931 * lib/krb5/recvauth.c (krb5_recvauth): Send a KRB-ERROR iff
1935 documentation and process KRB-ERROR's
1958 * lib/editline/sysunix.c: sgtty-support from Luke Howard
2000 * lib/asn1/k5.asn1: Make kdc-req-body.till OPTIONAL
2002 * kdc/524.c: A somewhat working 524-protocol module.
2067 * lib/krb5/get_cred.c: Make get_credentials handle cross-realm.
2071 * lib/krb5/config_file.c: implement support for #-comments
2100 * lib/krb5/get_cred.c: clean-up and try to free memory even when
2131 (like passing explicit destinations, and log-functions).
2171 * kdc/kerberos5.c: include last-req's of type 6 and 7, if
2176 * lib/krb5/log.c: New parameter `log-level'. Default to `SYSLOG'.
2182 initial-ticket API.
2228 the database, and that the client has a version 4 (un-)salted
2235 * lib/hdb/hdb.c: Add keytype->key and next key functions.
2245 `client' to return as part of the KRB-ERROR
2254 * lib/roken/getarg.c: Handle `-f arg' correctly.
2258 * kuser/kinit.c: implement `-l' aka `--lifetime'
2264 * kdc/kerberos5.c (as_rep): Use `METHOD-DATA' when sending
2265 KRB5KDC_ERR_PREAUTH_REQUIRED, not PA-DATA.
2285 number in KRB-ERROR correctly.
2288 number in KRB-ERROR correctly.
2290 * lib/asn1/k5.asn1: Add `METHOD-DATA'
2314 * admin: Mostly updated for new db-format.
2333 krb-error break if des_read_pw_string() != 0
2345 * kpasswd/kpasswd.c: Avoid using non-standard struct names.
2354 * lib/asn1/k5.asn1: Update with more pa-data types from
2355 draft-ietf-cat-kerberos-revisions-00.txt
2357 * admin/load.c: Update to match current db-format.
2359 * kdc/kerberos5.c (as_rep): Try all valid pa-datas before giving
2360 up. Send back an empty pa-data if the client has the v4 flag set.
2363 pa-data. DTRT if there is any pa-data in the reply.
2373 version 4, and AFS string-to-key of a password.
2390 of `draft-ietf-cat-kerb-chg-password-00.txt'
2399 * kuser/kinit.c: Add `-r' flag.
2422 * kpasswd: non-working kpasswd added
2428 * kdc/main.c: Add -p flag to disable pa-enc-timestamp requirement.
2457 tgs_rep. Send KRB-ERROR.
2467 Change encryption type of pa_enc_timestamp to DES-CBC-MD5
2527 * lib/krb5/rd_safe.c, mk_safe.c: made bug-compatible with MIT
2532 * lib/krb5/checksum.c: implement rsa-md4-des and rsa-md5-des
2561 * appl/telnet: Conditionalize the krb4-support.
2567 * kdc/kerberos5.c: check if the pre-auth was decrypted properly.
2595 * lib/krb5/keytab.c (krb5_kt_ret_string): 0-terminate string
2681 draft-ietf-cat-kerberos-r-00.txt
2686 * kuser/kinit.c: New option `-p' and prompt
2706 * kuser/kinit.c: new flag `-f'
2718 * lib/krb5/checksum.c: table-driven checksum
2729 * lib/krb5/encrypt.c: add des-cbc-md4.
2736 * lib/krb5/{decrypt,encrypt}.c: Implement des-cbc-crc, and
2737 des-cbc-md5 in separate functions.
2747 * lib/krb5/config_file.[ch]: new c-based configuration reading
2776 for SequenceOf non-destructive
2799 * lib/krb5: Preapre for use of some asn1-types.
2806 * lib/asn1/der*,gen.c: krb5_data -> octet_string, char * ->
2816 * kdc/kerberos5.c: Fix PA-ENC-TS-ENC
2820 * lib/krb5/get_in_tkt.c: Do PA-ENC-TS-ENC the correct way.
2836 * kdc/kdc.c: more support for ENC-TS-ENC
2838 * lib/krb5/get_in_tkt.c: redone to enable pre-authentication
2882 * lib/gssapi: Enough of a gssapi-over-krb5 implementation to be
2883 able to (mostly) run gss-client and gss-server.
2967 * kuser/klist.c: renamed stime -> printable_time to avoid conflict
3022 krb5_ticket->tkt.
3024 * lib/krb5/get_in_tkt.c: TGS -> AS
3028 * kdc/kdc.c: Some kind of non-working TGS support.
3099 * lib/krb5/asn1_glue.c: Moved some asn1-stuff here.
3112 * lib/krb5/Makefile.am: More -I
3127 brange-dead version of list of special characters to make stupid
3165 -e does not work with /bin/sh on psoriasis
3172 * lib/krb5/Makefile.am: replaced mit-crc.c by crc.c