Lines Matching +refs:cc +refs:check +refs:function +refs:in +refs:lib
3 * lib/krb5/context.c: remove ktype_is_etype
5 * lib/krb5/crypto.c, lib/krb5/krb5.h, acconfig.h: NEW_DES3_CODE
7 * configure.in: fix for AIX install; better tests for AIX dynamic
18 * lib/krb5/get_addrs.c (krb5_get_all_server_addrs): add. almost
25 * lib/krb5/addr_families.c (addr2sockaddr, print_addr): new
29 * configure.in: add hesiod
33 * lib/krb5/krb5_err.et: add some codes from kerberos-revisions-03
37 * lib/kadm5/log.c: rename delete -> remove
39 * lib/kadm5/delete_s.c: rename delete -> remove
41 * lib/hdb/common.c: rename delete -> remove
45 * configure.in: check for environ and `struct spwd'
52 * lib/krb5/encrypt.c (krb5_keytype_to_etypes): zero terminate
58 * lib/krb5/init_creds_pw.c: more type correctness
60 * lib/krb5/get_cred.c: re-structure code. remove limits on ASN1
69 * lib/krb5/verify_init.c (fail_verify_is_ok): new function
76 * lib/krb5/free.c (krb5_xfree): new function
78 * lib/krb5/creds.c (krb5_free_creds_contents): new function
80 * lib/krb5/context.c: more type correctness
82 * lib/krb5/checksum.c: more type correctness
84 * lib/krb5/auth_context.c (krb5_auth_con_init): more type
87 * lib/asn1/der_get.c (der_get_length): fix test of len
107 * configure.in, acconfig.h: test for hesiod
111 * lib/krb5/crypto.c: add some crypto debug code
113 * lib/krb5/get_in_tkt.c (_krb5_extract_ticket): don't use fixed
116 * lib/krb5/auth_context.c (re-)implement `krb5_auth_setenctype'
125 * lib/krb5/krb5.h (KRB5_TGS_NAME, KRB5_TGS_NAME_SIZE): added
129 * lib/krb5/get_cred.c (add_cred): add termination NULL pointer
133 * lib/krb5/rd_req.c: adapt to new crypto api
135 * lib/krb5/rd_rep.c: adapt to new crypto api
137 * lib/krb5/rd_priv.c: adopt to new crypto api
139 * lib/krb5/rd_cred.c: adopt to new crypto api
141 * lib/krb5/principal.c: ENOMEM -> ERANGE
143 * lib/krb5/mk_safe.c: cleanup and adopt to new crypto api
145 * lib/krb5/mk_req_ext.c: adopt to new crypto api
147 * lib/krb5/mk_req.c: get enctype from auth_context keyblock
149 * lib/krb5/mk_rep.c: cleanup and adopt to new crypto api
151 * lib/krb5/mk_priv.c: adopt to new crypto api
153 * lib/krb5/keytab.c: adopt to new crypto api
155 * lib/krb5/get_in_tkt_with_skey.c: adopt to new crypto api
157 * lib/krb5/get_in_tkt_with_keytab.c: adopt to new crypto api
159 * lib/krb5/get_in_tkt_pw.c: adopt to new crypto api
161 * lib/krb5/get_in_tkt.c: adopt to new crypto api
163 * lib/krb5/get_cred.c: adopt to new crypto api
165 * lib/krb5/generate_subkey.c: use new crypto api
167 * lib/krb5/context.c: rename etype functions to enctype ditto
169 * lib/krb5/build_auth.c: use new crypto api
171 * lib/krb5/auth_context.c: remove enctype and cksumtype from
184 * lib/kadm5/set_keys.c: add KEYTYPE_USE_AFS3_SALT to keytype if
189 * lib/krb5/send_to_kdc.c (krb5_sendto_kdc): care about
192 * lib/krb5/changepw.c (get_kdc_address): use
195 * lib/krb5/krbhst.c (krb5_get_krb_admin_hst): new function
197 * lib/krb5/krb5.h (krb5_context_data): add `use_admin_kdc'
199 * lib/krb5/context.c (krb5_get_use_admin_kdc,
204 * lib/krb5/crypto.c: remove all calls to abort(); check return
213 * lib/krb5/mk_req_ext.c (krb5_mk_req_internal): new function
215 * lib/krb5/get_host_realm.c (krb5_get_host_realm): if the hostname
219 * lib/krb5/get_cred.c (make_pa_tgs_req): use krb5_mk_req_internal
222 * lib/krb5/crypto.c (verify_checksum): make static
230 * kadmin/ank.c (ank): print principal name in prompt
232 * lib/krb5/crypto.c (hmac): always allocate space for checksum.
238 * lib/krb5/crypto.c (hmac): fix some peculiarities and bugs
253 * lib/krb5/crypto.c: merge x-*.[ch] into one file
255 * lib/krb5/cache.c: remove residual from krb5_ccache_data
259 * lib/krb5/x-crypto.c (derive_key): move DES3 specific code to
260 separate function (will eventually end up someplace else)
262 * lib/krb5/x-crypto.c (krb5_string_to_key_derived): allocate key
264 * configure.in, acconfig.h: test for four valued krb_put_int
272 * lib/krb5/config_file.c (parse_binding): remove trailing
277 * lib/krb5/x-checksum.c (krb5_verify_checksum): pass checksum type
280 * lib/krb5/x-key.c: implement DES3_string_to_key_derived; fix a
289 * lib/krb5/mk_error.c (krb5_mk_error): realloc until you die
295 * configure.in: test for four valued el_init
320 * lib/gssapi/init_sec_context.c: get enctype from auth_context
323 * lib/hdb/hdb.c: remove hdb_*_keytype2key
325 * lib/kadm5/set_keys.c: adapt to new crypto api
327 * lib/kadm5/rename_s.c: adapt to new crypto api
329 * lib/kadm5/get_s.c: adapt to new crypto api
331 * lib/kadm5/create_s.c: add keys for des-cbc-crc, des-cbc-md4,
334 * lib/krb5/heim_err.et: error message for unsupported salt
336 * lib/krb5/codec.c: short-circuit these functions, since they are
339 * lib/krb5/rd_safe.c: cleanup and adapt to new crypto api
343 * lib/krb5/send_to_kdc.c (krb5_sendto_kdc): don't advance
348 * lib/krb5/config_file.c (parse_binding, parse_section): make sure
351 * lib/krb5/config_file.c: skip ws before checking for comment
355 * lib/asn1/k5.asn1: hmac-sha1-des3 = 12
359 * lib/krb5/send_to_kdc.c (krb5_sendto_kdc): do not close the
362 * lib/krb5/mk_priv.c: realloc correctly
364 * lib/krb5/get_addrs.c (find_all_addresses): init j
366 * lib/krb5/context.c (krb5_init_context): print error if parsing
369 * lib/krb5/config_file.c (parse_list, krb5_config_parse_file):
372 * lib/krb5/codec.c (krb5_encode_EncKrbCredPart,
375 * lib/krb5/build_auth.c (krb5_build_authenticator): realloc
378 * lib/kadm5/set_keys.c (_kadm5_set_keys): initialize `ret'
380 * lib/kadm5/init_c.c (get_cred_cache): try to do the right thing
388 * kdc/connect.c (do_request): check for errors from `sendto'
404 * lib/krb5/addr_families.c: fall-back definition of
407 * configure.in: only set CFLAGS if it wasn't set look for
412 * configure.in: remove duplicate seteuid
416 * lib/krb5/convert_creds.c: import _krb_time_to_life, to avoid
432 * lib/krb5/init_creds_pw.c (get_init_creds_common): if the
433 forwardable or proxiable flags are set in options, set the
439 in ticket.
448 * lib/kadm5/create_s.c: possibly make DES keys version 4 salted
450 * lib/kadm5/set_keys.c: check config file for kadmin/use_v4_salt
457 * lib/krb5/aname_to_localname.c: new file
459 * lib/gssapi/init_sec_context.c (repl_mutual): no output token
461 * lib/gssapi/display_name.c (gss_display_name): zero terminate
466 * lib/gssapi/display_status.c: new file
470 * configure.in: remove duplicate setenv
480 * lib/kadm5/init_c.c: Implement init_with_{skey,creds}*. Make use
483 * lib/kadm5/init_s.c: implement init_with_{skey,creds}*
485 * lib/kadm5/server.c: Better arguments for
493 * configure.in: new option `--enable-kaserver-db'
497 * lib/krb5/get_cred.c: Better error if local tgt couldn't be
504 * lib/krb5/mk_req_ext.c (krb5_mk_req_extended): only set
505 encryption type in auth_context if it's compatible with the type
516 * configure.in: don't test for winsock.h
524 * lib/krb5/sock_principal.c: Save hostname.
528 * lib/krb5/mk_req_ext.c: Use same enctype as in ticket.
534 * lib/krb5/str2key.c: Fix DES3 string-to-key.
536 * lib/krb5/keytab.c: Get default keytab name from context.
538 * lib/krb5/context.c: Get `default_keytab_name' value.
545 * lib/kadm5/server.c: Replace several other functions with
550 * lib/krb5/keytab.c (fkt_add_entry): use an explicit seek instead
553 * configure.in: generate ftp Makefiles
555 * kuser/klist.c (print_cred_verbose): print IPv4-address in a
562 * lib/krb5/keytab.c: MIT compatible changes: add and use sizes to
567 * lib/gssapi/wrap.c: Use `gss_krb5_getsomekey'.
569 * lib/gssapi/unwrap.c: Implement and use `gss_krb5_getsomekey'.
570 Fix bug in checking of pad.
572 * lib/gssapi/{un,}wrap.c: Add support for just integrity
575 * lib/gssapi/accept_sec_context.c: Use
578 * lib/gssapi/8003.c: Implement `gssapi_krb5_verify_8003_checksum'.
580 * lib/gssapi/init_sec_context.c: Zero cred, and store session key
581 properly in auth-context.
585 * lib/kadm5/delete_s.c: Check immutable bit.
589 * lib/kadm5/init_c.c: Get creds for client name passed in.
595 * lib/krb5/mk_error.c: Verify that error_code is in the range
599 function `check_flags'.
603 * lib/kadm5/get_s.c (kadm5_s_get_principal): handle an empty salt
605 * configure.in: define SunOS if running solaris
609 * lib/kadm5/server.c: Unifdef test for same principal when
616 * lib/kadm5/init_c.c: Try to get ticket via initial request, if
619 * lib/kadm5/server.c: Check for principals changing their own
622 * kdc/kerberos5.c (tgs_rep2): check for interesting flags on
637 * lib/krb5/get_in_tkt_with_keytab.c (krb5_keytab_key_proc): don't
650 * lib/gssapi/{accept_sec_context,release_cred}.c: Use
653 * lib/krb5/principal.c (krb5_425_conv_principal_ext): Use resolver
656 * lib/krb5/send_to_kdc.c (krb5_sendto_kdc, send_and_recv_http):
659 * lib/krb5/context.c: Initialize `http_proxy' from
662 * lib/krb5/krb5.h: Add `http_proxy' to context.
664 * lib/krb5/send_to_kdc.c: Recognize `http/' and `udp/' as protocol
672 * lib/krb5/keytab.c: Implement remove with files. Add memory
677 * lib/krb5/keytab.c: Use function pointers.
683 * lib/kadm5/dump_log.c: print operation names
687 * configure.in: add X-tests, and {bin,...}dir appl/{kx,kauth}
689 * lib/krb5/build_auth.c,mk_priv.c,rd_safe.c,mk_safe.c,mk_rep.c:
694 * lib/kadm5/ipropd_master.c (send_diffs): more careful use
697 * lib/kadm5/ipropd_slave.c (get_creds): get credentials for
714 * kadmin/util.c: Add function `foreach_principal', that loops over
719 * lib/kadm5/get_princs_s.c: Also try to match aganist the
722 * lib/krb5/principal.c: Add `krb5_unparse_name_fixed_short', that
727 * configure.in: more WFLAGS and WFLAGS_NOUNUSED added missing
732 * lib/krb5/get_in_tkt_with_keytab.c: make `krb5_keytab_key_proc'
735 * lib/kadm5/marshall.c (ret_principal_ent): set `n_tl_data'
737 * lib/hdb/ndbm.c: use `struct ndbm_db' everywhere.
741 * lib/krb5/mk_priv.c (krb5_mk_priv): bump static limit to 10240.
744 * lib/kadm5/ipropd_master.c (check_acl:) truncate buf correctly
748 * lib/kadm5/log.c (kadm5_log_previous): avoid bad type conversion
752 * lib/kadm5/ipropd_{slave,master}.c: new files
754 * lib/kadm5/log.c (kadm5_log_get_version): take an `fd' as
757 * lib/krb5/krb5.h (krb5_context_data): `et_list' should be `struct
764 * lib/krb5/krb5_locl.h: Remove <error.h> (it gets included via
769 * lib/krb5/get_in_tkt.c (_krb5_extract_ticket): if time difference
772 * lib/kadm5/log.c (get_version): globalize
774 * lib/kadm5/kadm5_locl.h: include <sys/file.h>
776 * lib/asn1/Makefile.am: add PA_KEY_INFO and PA_KEY_INFO_ENTRY
779 initializing local struct in declaration.
790 * lib/krb5/rd_req.c: Use krb5_decode_EncTicketPart, and
793 * lib/krb5/rd_rep.c: Use krb5_decode_EncAPRepPart.
795 * lib/krb5/rd_cred.c: Use krb5_decode_EncKrbCredPart.
797 * lib/krb5/mk_rep.c: Make sure enc_part.etype is an encryption
800 * lib/krb5/init_creds_pw.c: Use krb5_decode_PA_KEY_INFO.
802 * lib/krb5/get_in_tkt.c: Use krb5_decode_Enc{AS,TGS}RepPart.
804 * lib/krb5/get_for_creds.c: Use krb5_encode_EncKrbCredPart.
806 * lib/krb5/get_cred.c: Use krb5_decode_Enc{AS,TGS}RepPart.
808 * lib/krb5/build_auth.c: Use krb5_encode_Authenticator.
810 * lib/krb5/codec.c: Enctype conversion stuff.
812 * lib/krb5/context.c: Ignore KRB5_CONFIG if *not* running
816 * lib/krb5/encrypt.c: Add krb5_string_to_etype, rename
822 * lib/krb5/{get_in_tkt,rd_req}.c: Use krb5_convert_etype.
824 * lib/krb5/encrypt.c: Add krb5_convert_etype function - converts
830 * lib/asn1/k5.asn1: Add PA-KEY-INFO structure to hold information
831 on keys in the database; and also a new `pa-key-info' padata-type.
836 * lib/krb5/init_creds_pw.c: Add better support for
839 * lib/krb5/get_in_tkt.c: Add better support for specifying what
842 * lib/krb5/str2key.c: Merge entries for KEYTYPE_DES and
845 * lib/krb5/krb5.h: Add pre-authentication structures.
851 * lib/kadm5/init_s.c (kadm5_s_init_with_password_ctx): initialize
854 * lib/kadm5/log.c (kadm5_log_flush): send a unix domain datagram
859 * lib/krb5/get_in_tkt.c: Return error-packet to caller.
861 * lib/krb5/free.c (krb5_free_kdc_rep): Free krb5_kdc_rep->error.
866 * lib/krb5/get_cred.c: Fixes to send authorization-data to the
869 * lib/krb5/build_auth.c: Only generate local subkey if there is
872 * lib/krb5/krb5.h: Add krb5_authdata type.
874 * lib/krb5/auth_context.c: Add
877 * lib/krb5/init_creds_pw.c: Return some error if prompter
890 * lib/kadm5/kadm5_locl.h: add kadm5_log_context and
893 * lib/kadm5/create_s.c (kadm5_s_create_principal): add change to
896 * lib/kadm5/rename_s.c (kadm5_s_rename_principal): add change to
899 * lib/kadm5/init_s.c (kadm5_s_init_with_password_ctx): initialize
902 * lib/kadm5/delete_s.c (kadm5_s_delete_principal): add change to
905 * lib/kadm5/modify_s.c (kadm5_s_modify_principal): add change to
908 * lib/kadm5/randkey_s.c (kadm5_s_randkey_principal): add change to
911 * lib/kadm5/chpass_s.c (kadm5_s_chpass_principal): add change to
914 * lib/kadm5/Makefile.am: add log.c, dump_log and replay_log
916 * lib/kadm5/replay_log.c: new file
918 * lib/kadm5/dump_log.c: new file
920 * lib/kadm5/log.c: new file
922 * lib/krb5/str2key.c (get_str): initialize pad space to zero
924 * lib/krb5/config_file.c (krb5_config_vget_next): handle c == NULL
938 * lib/asn1/gen_copy.c: Don't return ENOMEM if allocating 0 bytes.
940 * lib/krb5/mcache.c (mcc_store_cred): restore linked list if
945 * lib/kadm5/server.c: add kadm5_server_{send,recv}{,_sp}
947 * lib/kadm5/marshall.c: add kadm5_{store,ret}_principal_ent_mask.
949 * lib/kadm5/init_c.c (kadm5_c_init_with_password_ctx): use
960 * lib/hdb/ndbm.c: Implement locking of database.
968 * lib/krb5/get_in_tkt.c: Handle pa-afs3-salt case.
970 * lib/krb5/krb5.h: Add value for AFS salts.
972 * lib/krb5/str2key.c: Add support for AFS string-to-key.
974 * lib/kadm5/rename_s.c: Use correct salt.
976 * lib/kadm5/ent_setup.c: Always enable client. Only set max-life
979 * lib/krb5/config_file.c: Add context to all krb5_config_*get_*.
990 * lib/kadm5/ent_setup.c (attr_to_flags): try to set `client'
1002 (get_response): check NULL from fgets
1022 * lib/krb5/get_cred.c (init_tgs_req): use krb5_keytype_to_enctypes
1024 * lib/krb5/encrypt.c (krb5_keytype_to_enctypes): new function.
1026 * lib/krb5/build_auth.c (krb5_build_authenticator): use
1031 * lib/krb5/{mk,rd}_priv.c: fix check for local/remote subkey
1035 * lib/krb5/context.c: don't look at KRB5_CONFIG if running setuid
1039 * lib/krb5/keyblock.c (krb5_free_keyblock): check for NULL
1048 * lib/krb5/send_to_kdc.c: Add TCP client support.
1050 * lib/krb5/store.c: Add k_{put,get}_int.
1058 * lib/krb5/rd_req.c (krb5_rd_req): fixed obvious bug
1060 * kdc/kaserver.c (create_reply_ticket): use a random nonce in the
1069 * lib/krb5/get_default_principal.c: More guessing.
1073 * lib/krb5/rd_req.c: Use principal from ticket if no server is
1087 * lib/krb5/mk_req_ext.c (krb5_mk_req_ext): figure out the correct
1090 * lib/krb5/mk_req.c (krb5_mk_req): use `(*auth_context)->enctype'
1093 * lib/krb5/get_cred.c: handle the case of a specific keytype
1095 * lib/krb5/build_auth.c (krb5_build_authenticator): enctype as a
1098 * lib/krb5/build_ap_req.c (krb5_build_ap_req): new parameter
1103 * lib/krb5/keytab.c (krb5_kt_copy_entry_contents): new function
1106 * lib/krb5/krb5.h: define KRB5_TC_MATCH_KEYTYPE
1108 * lib/krb5/creds.c (krb5_compare_creds): check for
1111 * lib/gssapi/8003.c (gssapi_krb5_create_8003_checksum): remove
1114 * lib/krb5/creds.c (krb5_copy_creds_contents): only free the
1122 * lib/asn1/{der_get,gen_decode}.c: Allow passing NULL size.
1126 * lib/krb5/get_for_creds.c (krb5_get_forwarded_creds):
1129 * lib/krb5/addr_families.c (krb5_h_addr2addr): new function.
1133 * lib/krb5/get_addrs.c: Fall back to hostname's addresses if other
1140 * lib/kadm5/acl.c: Use KADM5_PRIV_ALL.
1142 * lib/kadm5: Use function pointer trampoline for easier dual use
1147 * lib/krb5/encrypt.c (krb5_etype_valid): new function
1149 * lib/krb5/creds.c (krb5_copy_creds_contents): zero target
1151 * lib/krb5/context.c (valid_etype): remove
1153 * lib/krb5/checksum.c: remove dead code
1155 * lib/krb5/changepw.c (send_request): free memory on error.
1157 * lib/krb5/build_ap_req.c (krb5_build_ap_req): check return value
1160 * lib/krb5/auth_context.c (krb5_auth_con_init): free memory on
1164 * lib/krb5/get_in_tkt_with_{keytab,skey}.c: new files
1168 * lib/krb5/auth_context.c: Implement auth_con_setuserkey.
1170 * lib/gssapi/init_sec_context.c: Use krb5_auth_con_getkey.
1172 * lib/krb5/keyblock.c: Rename krb5_free_keyblock to
1175 * lib/krb5/rd_req.c: Use auth_context->keyblock if
1180 * lib/krb5/net_{read,write}.c: change `int fd' to `void *p_fd'.
1183 * lib/krb5/krb5_locl.h: include <asn1.h> and <der.h>
1189 * lib/krb5/get_cred.c: Implement krb5_get_cred_from_kdc.
1193 * lib/krb5/ticket.c: Implement copy_ticket.
1195 * lib/krb5/get_in_tkt.c: Make `options' parameter MIT-compatible.
1197 * lib/krb5/data.c: Implement free_data and copy_data.
1201 * lib/kadm5: Implement kadm5_get_privs, and kadm5_get_principals.
1203 * kadmin/kadmin.c: Add get_privileges function.
1205 * lib/kadm5: Rename KADM5_ACL_* -> KADM5_PRIV_* to conform with
1212 * lib/kadm5,kadmin: Fix memory leaks.
1216 * lib/kadm5/create_s.c: Get some default values from `default'
1219 * lib/kadm5/ent_setup.c: Add optional default entry to get some
1224 * lib/error/compile_et.awk: Remove generated destroy_*_error_table
1233 * lib/kadm5: Add client support.
1235 * lib/kadm5/error.c: Error code mapping.
1237 * lib/kadm5/server.c: Kadmind support function.
1239 * lib/kadm5/marshall.c: Kadm5 marshalling.
1241 * lib/kadm5/acl.c: Simple acl system.
1243 * lib/kadm5/kadm5_locl.h: Add client stuff.
1245 * lib/kadm5/init_s.c: Initialize acl.
1247 * lib/kadm5/*: Return values.
1249 * lib/kadm5/create_s.c: Correct kvno.
1253 * lib/krb5/log.c: Fix parsing of log destinations.
1257 * lib/krb5/principal.c: Reduce number of reallocs in unparse_name.
1265 * lib/kadm5/get_s.c: Set correct n_key_data.
1267 * lib/kadm5/init_s.c: Add kadm5_s_init_with_password_ctx. Use
1270 * lib/kadm5/destroy_s.c: Check for allocated context.
1272 * lib/kadm5/{create,chpass}_s.c: Use _kadm5_set_keys().
1276 * configure.in: test for readv, writev
1280 * lib/krb5/warn.c (_warnerr): handle the case of an illegal error
1294 * lib/krb5/context.c (krb5_init_context): support `KRB5_CONFIG'
1300 * configure.in: add --{enable,disable}-otp. check for compatible
1310 * kdc/kerberos5.c: Move stuff that's in common between as_rep and
1315 * lib/krb5/get_cred.c: Some restructuring of krb5_get_credentials:
1321 * lib/krb5/rd_req.c: Move parts of krb5_verify_ap_req into a new
1322 function, krb5_decrypt_ticket, so it is easier to decrypt and
1323 check a ticket without having an ap-req.
1325 * lib/krb5/krb5.h: Add KRB5_GC_CACHED, and KRB5_GC_USER_USER
1328 * lib/krb5/crc.c (crc_init_table): Check if table is already
1333 * lib/asn1/der_get.c (der_get_length, fix_dce): Special-case
1336 * lib/asn1/gen_glue.c (generate_units): Check for empty
1341 * lib/error/compile_et.awk: Allow specifying table-base.
1349 * lib/krb5/prompter_posix.c (krb5_prompter_posix): implement the
1352 * lib/krb5/str2key.c (string_to_key_internal): return error
1362 * kpasswd/kpasswdd.c: change all the keys in the database
1366 * lib/hdb/hdb.c: new functions `hdb_create', `hdb_set_master_key'
1383 * lib/krb5/get_cred.c: Get the subkey from mk_req so it can be
1386 * lib/krb5/auth_context.c: Add {get,set}enctype.
1388 * lib/krb5/get_cred.c: Fix for DCE secd.
1390 * lib/krb5/store.c: Store keytype twice, as MIT does.
1392 * lib/krb5/get_in_tkt.c: Use etype from reply.
1396 * kdc/connect.c: check for leading '/' in http request
1404 * lib/krb5/rd_req.c (krb5_rd_req): redone because we don't know
1407 * lib/krb5/mk_safe.c (krb5_mk_safe): figure out what cksumtype to
1410 * lib/krb5/mk_req_ext.c (krb5_mk_req_extended): figure out what
1413 * lib/krb5/mk_priv.c (krb5_mk_priv): figure out what etype to use
1416 * lib/krb5/keytab.c (krb5_kt_get_entry): check the keytype
1418 * lib/krb5/get_for_creds.c (krb5_get_forwarded_creds): figure out
1421 * lib/krb5/generate_seq_number.c (krb5_generate_seq_number):
1424 * lib/krb5/encrypt.c (key_type): add `best_cksumtype'
1425 (krb5_keytype_to_cksumtype): new function
1427 * lib/krb5/build_auth.c (krb5_build_authenticator): figure out
1430 * lib/krb5/auth_context.c (krb5_auth_con_init): set `cksumtype'
1437 * configure.in: check for <netinet6/in6.h>. check for -linet6
1441 * lib/krb5/encrypt.c: fix checksumtype for des3-cbc-sha1
1443 * lib/krb5/rd_safe.c: fix check for keyed and collision-proof
1446 * lib/krb5/context.c (valid_etype): remove hard-coded constants
1449 * kdc/kerberos5.c: fix check for keyed and collision-proof
1454 * lib/krb/send_to_kdc.c (krb5_sendto_kdc): no data returned means
1457 * lib/krb5/addr_families.c: fix typo in `ipv6_anyaddr'
1463 (in case of as-req), and with the server info to select the
1465 purely on the keys in the database.
1470 * lib/krb5/get_in_tkt.c: Fix a lot of etype/keytype misuse.
1472 * lib/krb5/encrypt.c: Add des3-cbc-md5, and des3-cbc-sha1. Add
1475 * lib/krb5/str2key.c: Add des3 string-to-key. Add ktype argument
1478 * lib/krb5/checksum.c: Some cleanup, and added:
1484 * lib/krb5/generate_subkey.c: Use krb5_generate_random_keyblock.
1495 * lib/krb5/sock_principal.c: use new addr_families functions
1497 * lib/krb5/send_to_kdc.c: use new addr_families functions
1499 * lib/krb5/krb5.h: add KRB5_ADDRESS_INET6
1501 * lib/krb5/get_addrs.c: use new addr_families functions
1503 * lib/krb5/changepw.c: use new addr_families functions. Now works
1506 * lib/krb5/auth_context.c: use new addr_families functions
1508 * lib/krb5/addr_families.c: new file
1528 * lib/krb5/context.c: new configuration variable `max_retries'
1530 * lib/krb5/get_addrs.c: fixes and better #ifdef's
1532 * lib/krb5/config_file.c: implement krb5_config_get_int
1534 * lib/krb5/auth_context.c, send_to_kdc.c, sock_principal.c:
1541 * configure.in: test for gethostbyname2 and struct sockaddr_in6
1545 * lib/asn1/k5.asn1: Use `METHOD-DATA' instead of `SEQUENCE OF
1552 - allow client to be non-existant (should probably check for
1559 * lib/krb5/get_cred.c: Several fixes for cross-realm.
1565 * lib/krb5/encrypt.c: krb5_key_to_string
1569 * lib/krb5/get_addrs.c: rewrote. Now should be able to handle
1576 * configure.in: check for <netinet/in6_var.h>
1585 * admin/mod.c (doit2): check the return value from `set_password'
1592 * lib/krb5/verify_init.c: fix ap_req_nofail semantics
1594 * lib/krb5/transited.c: something that might resemble
1599 * kdc/hpropd.c (main): check number of arguments
1601 * appl/popper/pop_init.c (pop_init): check number of arguments
1603 * kpasswd/kpasswd.c (main): check number of arguments
1605 * kdc/string2key.c (main): check number of arguments
1607 * kuser/kdestroy.c (main): check number of arguments
1609 * kuser/kinit.c (main): check number of arguments
1632 * lib/roken/roken.h: include <fcntl.h>
1634 * kdc/kerberos5.c (set_salt_padata): new function
1650 * lib/krb5/verify_user.c: Use get_init_creds/verify_init_creds.
1652 * lib/kafs: Move functions common to krb/krb5 modules to new file,
1655 * lib/krb5/krb5.h: rename STRING -> krb5_config_string, and LIST
1660 * lib/krb5/get_addrs.c: Fix loopback test.
1664 * lib/roken/roken.h: fallback definition of `O_ACCMODE'
1666 * lib/krb5/get_in_tkt.c (krb5_get_in_cred): be more careful when
1673 * lib/hdb/hdb.c: new {seal,unseal}_keys functions
1690 * include/bits.c: Don't generate ifndef's in bits.h. Instead, use
1694 * configure.in: test for sigaction
1704 * lib/krb5/data.c: don't return ENOMEM if len == 0
1708 * lib/hdb/hdb.asn1: Include salt type in salt.
1716 * lib/krb5/get_port.c: Add context parameter. Now takes port in
1728 * lib/hdb/{db,ndbm}.c: Use common routines.
1730 * lib/hdb/common.c: Implement more generic fetch/store/delete
1733 * lib/hdb/hdb.h: Add `replace' parameter to store.
1740 * lib/krb5/get_in_tkt.c: extract_ticket -> _krb5_extract_ticket
1746 * lib/45/mk_req.c: implementation of krb_mk_req that uses 524
1749 * lib/krb5/init_creds_pw.c: make change_password and
1752 * lib/krb5/krb5.h: Merge stuff from removed headerfiles.
1754 * lib/krb5/fcache.c: fcc_ops -> krb5_fcc_ops
1756 * lib/krb5/mcache.c: mcc_ops -> krb5_mcc_ops
1760 * lib/krb5/krb5.h: Remove all prototypes.
1762 * lib/krb5/convert_creds.c: Use `struct credentials' instead of
1767 * lib/asn1/gen_glue.c: new file. generates 2int and int2 functions
1773 * lib/roken/parse_units.c: generalised `parse_units' and
1777 * lib/krb5/krb5_locl.h: moved krb5_data* functions to krb5.h
1784 * lib/krb5/get_addrs.c: restructured
1786 * lib/krb5/warn.c (_warnerr): leak less memory
1788 * lib/hdb/hdb.c (hdb_free_entry): zero keys
1791 * lib/hdb/ndbm.c (NDBM_seq): check for valid hdb_entries implement
1794 * lib/hdb/db.c (DB_seq): check for valid hdb_entries
1798 * lib/krb5/send_to_kdc.c: Don't use sendto on connected sockets.
1829 * lib/krb5/{get_cred,get_in_tkt}.c: Check for v4 reply.
1831 * lib/roken/base64.c: Add base64 functions.
1833 * kdc/connect.c lib/krb5/send_to_kdc.c: Add http support.
1841 * lib/hdb: Include version number in database.
1849 * lib/roken/roken.h: add F_OK
1851 * lib/gssapi/acquire_creds.c: fix typo
1853 * configure.in: call AC_TYPE_MODE_T
1871 * lib/krb5/init_creds_pw.c (krb5_get_init_creds_password): If
1874 * lib/krb5/get_in_tkt.c (krb5_get_in_cred): don't print out
1877 * lib/gssapi/import_name.c (input_name): more names types.
1887 * configure.in: add --enable-kaserver
1891 * lib/krb5/principal.c: fix krb5_build_principal_ext & c:o
1895 * lib/krb5/{get_in_tkt,mk_safe,mk_priv}.c: Fix some Cray specific
1898 * lib/krb5/{get_cred,get_in_tkt}.c: Mask nonce to 32 bits.
1900 * lib/des/{md4,md5,sha}.c: Now works on Crays.
1909 * lib/gssapi/v1.c: new file with v1 compatibility functions.
1913 * lib/kafs/afskrb5.c: Don't check ticket file for afs ticket.
1917 * kdc/kerberos5.c: Include kvno in Ticket.
1919 * lib/krb5/encrypt.c: Add kvno parameter to encrypt_EncryptedData.
1926 * lib/kafs/afskrb5.c (get_cred): Check cached afs tickets for
1931 * lib/krb5/recvauth.c (krb5_recvauth): Send a KRB-ERROR iff
1934 * lib/krb5/sendauth.c (krb5_sendauth): correct the protocol
1939 * kdc/kerberos4.c: Fix memory leak in v4 protocol handler.
1943 * lib/gssapi/accept_sec_context.c: Added
1948 * lib/gssapi/accept_sec_context.c (gss_accept_sec_context): don't
1951 * lib/gssapi: new files: canonicalize_name.c export_name.c
1955 * lib/krb5/config_file.c: Add netinfo support from Luke Howard
1958 * lib/editline/sysunix.c: sgtty-support from Luke Howard
1961 * lib/krb5/principal.c: krb5_sname_to_principal fix from Luke
1972 * lib/kafs/afskrb5.c: Get AFS tokens via 524 protocol.
1974 * lib/krb5/warn.c: Fix format string for *x type.
1980 * lib/des/Makefile.am: build destest, mdtest, des, rpw, speed
1982 * lib/krb5/config_file.c: new functions `krb5_config_get_time' and
1989 * lib/krb5/keytab.c: Return sane values from resolve and
1994 * lib/45/get_ad_tkt.c: Kerberos 4 get_ad_tkt using
1997 * lib/krb5/convert_creds.c: Implementation of
2000 * lib/asn1/k5.asn1: Make kdc-req-body.till OPTIONAL
2007 * lib/krb5/context.c: Fix kdc_timeout.
2009 * lib/hdb/{ndbm,db}.c: Free name in close.
2015 * kdc/kerberos5.c (tgs_make_reply): Fix endtime in reply.
2017 * lib/krb5/store_emem.c: Fix reallocation bug.
2023 krb5_rd_req/krb5_recvauth. Set addresses in auth_context.
2025 * lib/krb5/recvauth.c: Set addresses in auth_context if there
2028 * lib/krb5/auth_context.c: New function
2031 * lib/krb5/sock_principal.c: new function
2034 * lib/krb5/time.c: new file with `krb5_timeofday' and
2039 * lib/krb5/get_in_tkt.c: implement KDC time offset and use it if
2042 * lib/krb5/fcache.c: Implement version 4 of the ccache format.
2046 * lib/krb5/rd_rep.c (krb5_free_ap_rep_enc_part): free all memory
2048 * lib/krb5/principal.c (krb5_unparse_name): allocate memory
2053 * lib/krb5/init_creds_pw.c (init_cred): set realm of server
2056 * lib/krb5/init_creds_pw.c: support changing of password when it
2059 * lib/krb5/changepw.c: new file
2067 * lib/krb5/get_cred.c: Make get_credentials handle cross-realm.
2071 * lib/krb5/config_file.c: implement support for #-comments
2081 * lib/otp: resurrected from krb4
2085 * appl/popper/popper.h: new include files. new fields in `POP'
2095 * configure.in: check for inline and <netinet/tcp.h> generate
2096 files in appl/popper, appl/push, and lib/otp
2100 * lib/krb5/get_cred.c: clean-up and try to free memory even when
2103 * lib/krb5/get_cred.c: adapt to new `extract_ticket'
2105 * lib/krb5/get_in_tkt.c: reorganize. check everything and try to
2110 * lib/krb5/free_host_realm.c: new file
2112 * lib/krb5/principal.c (krb5_sname_to_principal): implement
2115 * lib/krb5/verify_init.c: more functionality
2117 * lib/krb5/mk_req_ext.c (krb5_mk_req_extended): free the checksum
2119 * lib/krb5/get_in_tkt.c (extract_ticket): don't copy over the
2120 principals in creds. Should also compare them with that received
2123 * lib/krb5/cache.c (krb5_cc_gen_new): copy the newly allocated
2130 * lib/krb5/log.c: Allow better control of destinations of logging
2135 * lib/krb5/get_default_principal.c: new file
2141 * lib/krb5/init_creds_pw.c: Implement krb5_get_init_creds_keytab.
2145 * lib/krb5/init_creds_pw.c: Use `krb5_get_default_principal'.
2154 * lib/krb5/mcache.c: new file
2156 * admin/gettime.c: new function puttime. Use it.
2158 * lib/krb5/keyblock.c: Added krb5_free_keyblock and
2161 * lib/krb5/init_creds_pw.c: more functionality
2163 * lib/krb5/creds.c: Added krb5_free_creds_contents and
2166 * lib/krb5/config_file.c: new functions krb5_config_get and
2169 * lib/krb5/cache.c: cleanup added mcache
2176 * lib/krb5/log.c: New parameter `log-level'. Default to `SYSLOG'.
2180 * lib/krb5/verify_init.c, init_creds_pw.c, init_creds.c,
2184 * lib/krb5/get_in_tkt_pw.c: make `krb5_password_key_proc' global
2186 * lib/krb5/get_in_tkt.c (krb5_get_in_cred): new function that is
2188 Small fixes in krb5_get_in_tkt
2190 * lib/krb5/get_addrs.c (krb5_get_all_client_addrs): don't include
2201 * lib/roken/flock.c: new file
2203 * kuser/kinit.c: check for and print expiry information in the
2206 * lib/krb5/get_in_tkt.c: Set `ret_as_reply' if != NULL
2214 * lib/hdb/hdb.asn1: new flags `require_preauth' and `change_pw'
2220 * lib/hdb: Add some simple locking.
2224 * lib/krb5/log.c: Add some general logging functions.
2227 for this to work is that all involved principals has a des key in
2232 * lib/krb5/principal.c: Quick patch to make 425_conv work
2235 * lib/hdb/hdb.c: Add keytype->key and next key functions.
2239 * lib/krb5/build_auth.c (krb5_build_authenticator): don't free
2242 * lib/krb5/get_cred.c (krb5_get_kdc_cred): Don't free `addresses'.
2254 * lib/roken/getarg.c: Handle `-f arg' correctly.
2260 * lib/roken/parse_units.c, parse_time.c: new files
2268 addresses in auth_context bind one socket per interface.
2272 * lib/krb5/rd_req.c (krb5_verify_ap_req): do abs when verifying
2275 * lib/krb5/rd_priv.c (krb5_rd_priv): Fetch the correct session key
2278 * lib/krb5/mk_priv.c (krb5_mk_priv): Fetch the correct session key
2281 * lib/krb5/mk_error.c (krb5_mk_error): return an error number and
2284 * lib/krb5/get_in_tkt.c (krb5_get_in_tkt): interpret the error
2285 number in KRB-ERROR correctly.
2287 * lib/krb5/get_cred.c (krb5_get_kdc_cred): interpret the error
2288 number in KRB-ERROR correctly.
2290 * lib/asn1/k5.asn1: Add `METHOD-DATA'
2298 * lib/krb5/rd_cred.c, get_for_creds.c: new files
2300 * lib/krb5/get_host_realm.c: try default realm as last chance
2312 * admin/dump.c: Include salt in dump.
2319 * lib/hdb/hdb.c: Use generated encode and decode functions.
2321 * lib/hdb/hdb.h: Get hdb_entry from ASN.1 generated code.
2323 * lib/krb5/get_cred.c: Get addresses from krbtgt if there are none
2324 in the reply.
2349 * lib/krb5/keytab.c (krb5_kt_get_entry): check return from
2354 * lib/asn1/k5.asn1: Update with more pa-data types from
2362 * lib/krb5/get_in_tkt.c: Pass both version5 and version4 salted
2363 pa-data. DTRT if there is any pa-data in the reply.
2365 * lib/krb5/str2key.c: XOR with some sane value.
2367 * lib/hdb/hdb.h: Add `version 4 salted key' flag.
2375 * lib/asn1/gen_copy.c: copy_* functions now returns an int (0 or
2380 * lib/krb5/get_host_realm.c (krb5_get_host_realm): do the
2383 * kdc/misc.c: check result of hdb_open
2387 * lib/sl: sl_func now returns an int. != 0 means to exit.
2401 * lib/krb5/get_cred.c: Move most of contents of get_creds to new
2402 function get_kdc_cred, that always contacts the kdc and doesn't
2403 save in the cache. This is a hack.
2405 * lib/krb5/get_in_tkt.c: Pass starttime and renew_till in request
2408 * lib/krb5/mk_req_ext.c: Make an auth_context if none passed in.
2410 * lib/krb5/send_to_kdc.c: Get timeout from context.
2412 * lib/krb5/context.c: Add kdc_timeout to context struct.
2418 * lib/krb5/get_host_realm.c: Return error if no realm was found.
2434 * lib/krb5/auth_context.c (krb5_auth_con_free): Free remote
2437 * lib/krb5/principal.c (krb5_free_principal): Check for NULL.
2439 * lib/krb5/send_to_kdc.c: Check for NULL return from
2442 * lib/krb5/set_default_realm.c: Try to get realm of local host if
2449 * kdc/kerberos5.c: Split tgs_rep in smaller functions. Add better
2459 * lib/krb5/mk_error.c: Add more fields.
2461 * lib/krb5/get_cred.c: Print normal error code if no e_text is
2466 * lib/krb5/get_in_tkt.c: implement `krb5_init_etype'.
2469 * lib/krb5/context.c: recognize all encryption types actually
2472 * lib/krb5/auth_context.c (krb5_auth_con_init): Change default
2475 * lib/krb5/read_message.c, write_message.c: new files
2479 * lib/asn1: replaced asn1_locl.h by `der_locl.h' and `gen_locl.h'.
2481 * lib/error/compile_et.awk: generate a prototype for the
2482 `destroy_foo_error_table' function.
2486 * lib/krb5/krbhst.c (krb5_get_krbhst): Get all kdc's and try also
2489 * kdc/kerberos5.c, lib/krb5/rd_priv.c, lib/krb5/rd_safe.c: use
2492 * lib/krb5/rd_req.c (krb5_verify_ap_req): record authenticator
2495 * lib/krb5/build_auth.c (krb5_build_authenticator): always
2498 * lib/krb5/address.c: implement `krb5_address_order'
2500 * lib/gssapi/import_name.c: Implement `gss_import_name'
2502 * lib/gssapi/external.c: Use new OID
2504 * lib/gssapi/encapsulate.c: New functions
2508 * lib/gssapi/decapsulate.c: New function
2511 * lib/asn1/gen*.c: Give tags to generated structs.
2523 * lib/krb5/rd_req.c (krb5_rd_req_with_keyblock): Split up.
2527 * lib/krb5/rd_safe.c, mk_safe.c: made bug-compatible with MIT
2529 * lib/krb5/encrypt.c: new functions `DES_encrypt_null_ivec' and
2532 * lib/krb5/checksum.c: implement rsa-md4-des and rsa-md5-des
2536 * lib/krb5/creds.c: new file
2538 * lib/krb5/get_in_tkt.c: better freeing
2540 * lib/krb5/context.c (krb5_free_context): more freeing
2542 * lib/krb5/config_file.c: New function `krb5_config_file_free'
2544 * lib/error/compile_et.awk: Generate a `destroy_' function.
2550 * kdc/connect.c: Check filedescriptor in select.
2554 * lib/krb5/rd_req.c: Free allocated data.
2556 * lib/krb5/auth_context.c (krb5_auth_con_free): Free a lot of
2563 * configure.in: Test for krb4
2567 * kdc/kerberos5.c: check if the pre-auth was decrypted properly.
2570 * lib/krb5/get_cred.c, lib/krb5/get_in_tkt.c: generate a random nonce.
2572 * lib/krb5/encrypt.c: Made `generate_random_block' global.
2576 * lib/krb5/data.c: Add `krb5_data_zero'
2584 * lib/krb5/get_addrs.c: Fix for systems that has sa_len, but
2591 * lib/krb5/rd_req.c: add address compare
2593 * lib/krb5/mk_req_ext.c: allow no checksum
2595 * lib/krb5/keytab.c (krb5_kt_ret_string): 0-terminate string
2597 * lib/krb5/address.c: fix `krb5_address_compare'
2601 * lib/krb5/get_addrs.c: Fix ip4 address extraction.
2606 * lib/krb5/fcache.c: Save ticket flags.
2608 * lib/krb5/get_in_tkt.c (extract_ticket): Extract addresses and
2611 * lib/krb5/krb5.h: Add ticket_flags to krb5_creds.
2615 * configure.in: Call `AC_KRB_PROG_LN_S'
2621 * lib/krb5/get_in_tkt.c: Use union of krb5_flags and KDCOptions to
2628 * lib/krb5/config_file.c: Added krb5_config_v?get_list Fixed
2642 * lib/error/compile_et.awk: Remove usage of sub, gsub, and
2647 * lib/krb5/context.c: Move krb5_get_err_text, and krb5_init_ets
2650 * lib/error/error.c: Replace krb5_get_err_text with new function
2653 * lib/error/compile_et.awk: Avoid using static variables.
2655 * lib/error/error.c: Don't use krb5_locl.h
2657 * lib/error/error.h: Move definitions of error_table and
2660 * lib/error: Moved from lib/krb5.
2664 * lib/krb5/encrypt.c: Temporary hack to avoid des_rand_data.
2668 * lib/krb5/{rd,mk}_{*}.c: more checking for addresses and stuff
2673 * lib/hdb/hdb.c: Add hdb_etype2key.
2680 * lib/asn1/k5.asn1: Made all `s_address' OPTIONAL according to
2683 * lib/krb5/principal.c (krb5_parse_name): default to local realm
2690 * lib/krb5/keyblock.c: Keyblock generation functions.
2692 * lib/krb5/encrypt.c: Use functions from checksum.c.
2694 * lib/krb5/checksum.c: Move checksum functions here. Add
2695 krb5_cksumsize function.
2699 * lib/krb5/get_host_realm.c: implemented
2701 * lib/krb5/config_file.c: Redid part. New functions:
2708 * lib/asn1/k5.asn1: Made HostAddresses = SEQUENCE OF HostAddress
2712 * lib/krb5/krb5.h: krb5_addresses == HostAddresses. Changed all
2715 * lib/krb5/get_addrs.c: figure out all local addresses, possibly
2718 * lib/krb5/checksum.c: table-driven checksum
2722 * lib/krb5/encrypt.c: Make krb5_decrypt use the same struct as
2727 * lib/roken/vsyslog.c: new file
2729 * lib/krb5/encrypt.c: add des-cbc-md4.
2734 * lib/krb5/encrypt.c: Implement as a vector of function pointers.
2736 * lib/krb5/{decrypt,encrypt}.c: Implement des-cbc-crc, and
2737 des-cbc-md5 in separate functions.
2739 * lib/krb5/krb5.h: Add more checksum and encryption types.
2741 * lib/krb5/krb5_locl.h: Add etype to krb5_decrypt.
2745 * lib/krb5/[gs]et_default_realm.c, kuserok.c: new files
2747 * lib/krb5/config_file.[ch]: new c-based configuration reading
2752 * configure.in: Set WFLAGS if using gcc
2756 * lib/asn1/der_put.c (der_put_int): Return size correctly.
2762 * lib/asn1: Now all decode_* and encode_* functions now take a
2763 final size_t* argument, that they return the size in. Return
2769 * lib/krb5/keytab.c (krb5_kt_add_entry): change open mode to
2772 * lib/krb5/get_cred.c: removed stale prototype for
2775 * lib/asn1/gen_length.c (length_type): Make the length functions
2782 * lib/gssapi/wrap.c, unwrap.c: do encrypt and add sequence number
2784 * lib/gssapi/get_mic.c, verify_mic.c: Add sequence number.
2786 * lib/gssapi/accept_sec_context.c (gss_accept_sec_context): Set
2789 * lib/gssapi/8003.c: New file.
2791 * lib/krb/krb5.h: Define a `krb_authenticator' as an ASN.1
2794 * lib/krb5/auth_context.c: New functions
2799 * lib/krb5: Preapre for use of some asn1-types.
2801 * lib/asn1/*.c (copy_*): Constness.
2803 * lib/krb5/krb5.h: Include asn1.h; krb5_data is now an
2806 * lib/asn1/der*,gen.c: krb5_data -> octet_string, char * ->
2809 * lib/asn1/libasn1.h: Moved stuff from asn1_locl.h that doesn't
2812 * lib/asn1/asn1_locl.h: Remove der.h. Add some prototypes.
2820 * lib/krb5/get_in_tkt.c: Do PA-ENC-TS-ENC the correct way.
2822 * lib: Added editline,sl,roken.
2826 * lib/krb5/fcache.c: Move file cache from cache.c.
2828 * lib/krb5/cache.c: Allow more than one cache type.
2838 * lib/krb5/get_in_tkt.c: redone to enable pre-authentication
2842 * lib/hdb/db.c: Merge fetch and store.
2846 * lib/krb5/str2key.c: Fill in keytype and length.
2850 * lib/krb5/rd_safe.c, lib/krb5/rd_priv.c, lib/krb5/mk_rep.c,
2851 lib/krb5/mk_priv.c, lib/krb5/build_auth.c: Some support for
2854 * lib/krb5/get_in_tkt.c (get_in_tkt): be prepared to parse an
2857 * lib/krb5/auth_context.c: implemented seq_number functions
2859 * lib/krb5/generate_subkey.c, generate_seq_number.c: new files
2861 * lib/gssapi/gssapi.h: avoid including <krb5.h>
2863 * lib/asn1/Makefile.am: SUFFIXES as a variable to make automake
2868 * configure.in: adapted to automake 1.1p
2872 * lib/krb5/principal.c: Add contexts to many functions.
2876 * lib/krb5/verify_user.c: First stab at a verify user.
2878 * lib/auth/sia/sia5.c: SIA module for Kerberos 5.
2882 * lib/gssapi: Enough of a gssapi-over-krb5 implementation to be
2885 * lib/krb5/keytab.c: implemented krb5_kt_add_entry,
2888 * lib/des/md5.[ch], sha.[ch]: new files
2890 * lib/asn1/der_get.c (generalizedtime2time): use `timegm'
2892 * lib/asn1/timegm.c: new file
2900 * configure.in: moved config to include
2902 added lib/gssapi and admin
2910 * lib/asn1/Makefile.am: Try to not always rebuild generated files.
2912 * lib/asn1/der_put.c: Add fix_dce().
2914 * lib/asn1/der_{get,length,put}.c: Fix include files.
2916 * lib/asn1/der_free.c: Remove unused functions.
2918 * lib/asn1/gen.c: Split into gen_encode, gen_decode, gen_free,
2923 * lib/krb5/sendauth.c: implemented functionality
2925 * lib/krb5/rd_rep.c: Use `krb5_decrypt'
2927 * lib/krb5/cache.c (krb5_cc_get_name): return default if `id' ==
2930 * lib/krb5/principal.c (krb5_free_principal): added `context'
2933 (krb5_sname_to_principal): new function
2935 * lib/krb5/auth_context.c (krb5_free_authenticator): add `context'
2938 * lib/krb5/{net_write.c,net_read.c,recvauth.c}: new files
2940 * lib/asn1/gen.c: Fix encoding and decoding of BitStrings
2944 * configure.in: look for *dbm?
2946 * lib/asn1/gen.c: Fix filename in generated files. Check fopens.
2947 Put trailing newline in asn1_files.
2951 * lib/krb5/get_in_tkt.c: Fix some memory leaks.
2953 * lib/krb5/krbhst.c: Properly free hostlist.
2955 * lib/krb5/decrypt.c: CRCs are 32 bits.
2959 * lib/asn1/gen.c: Generate one file for each type.
2963 * lib/asn1/gen.c: Generate `length_FOO' functions
2965 * lib/asn1/der_length.c: new file
2972 * lib/hdb/ndbm.c: Return NOENTRY if fetch fails. Don't free
2983 * lib/hdb: New database routine library.
2985 * lib/krb5/error/Makefile.am: Add hdb_err.
2991 * lib/asn1/gen.c: Generate free functions.
2997 * lib/krb5/krb5_mk_req_ext.c: new file
2999 * lib/asn1/gen.c: optimize the case with a simple type
3001 * lib/krb5/get_cred.c (krb5_get_credentials): Use
3004 * lib/krb5/get_in_tkt.c (decrypt_tkt): First try with an
3009 * lib/krb5/store_emem.c: New resizable memory storage.
3011 * lib/krb5/{store.c, store_fd.c, store_mem.c}: Split of store.c
3013 * lib/krb5/krb5.h: Add free entry to krb5_storage.
3015 * lib/krb5/decrypt.c: Make keyblock const.
3019 * lib/krb5/krb5.h: Add EncTicketPart to krb5_ticket.
3021 * lib/krb5/rd_req.c: Return whole asn.1 ticket in
3024 * lib/krb5/get_in_tkt.c: TGS -> AS
3032 * lib/asn1/gen.c: reduced generated code by 1/5
3034 * lib/asn1/der_put.c: (der_put_length_and_tag): new function
3036 * lib/asn1/der_get.c (der_match_tag_and_length): new function
3038 * lib/asn1/der.h: added prototypes
3042 * lib/krb5/krb5.h: Include <asn1_err.h>. Add prototype for
3045 * lib/krb5/rd_req.c: Add function krb5_rd_req_with_keyblock that
3048 * lib/krb5/get_cred.c: Use krb5_mk_req rather than inlined code.
3050 * lib/krb5/mk_req.c: Calculate checksum of in_data.
3054 * lib/krb5/error/compile_et.awk: Add a declaration of struct
3059 * lib/krb5/rd_req.c: do some checks on times
3061 * lib/krb/{mk_priv.c, rd_priv.c, sendauth.c, decrypt.c,
3064 * lib/krb5/auth_context.c: more code
3066 * configure.in: try to figure out timezone
3070 * lib/krb5/error/error.c: Try strerror if error code wasn't found.
3072 * lib/krb5/get_in_tkt.c: Remove realm parameter from
3075 * lib/krb5/context.c: Initialize error table.
3081 * lib/krb5/rd_safe.c: new file
3083 * lib/krb5/checksum.c (krb5_verify_checksum): New function
3085 * lib/krb5/get_cred.c: use krb5_create_checksum
3087 * lib/krb5/checksum.c: new file
3089 * lib/krb5/store.c: no more arithmetic with void*
3091 * lib/krb5/cache.c: now seems to work again
3095 * lib/krb5/Makefile.am: Add asn1_glue.c and error/*.c to libkrb5.
3097 * lib/krb5/get_in_tkt.c: Moved some functions to asn1_glue.c.
3099 * lib/krb5/asn1_glue.c: Moved some asn1-stuff here.
3101 * lib/krb5/{cache,keytab}.c: Use new storage functions.
3103 * lib/krb5/krb5.h: Protypes for new storage functions.
3105 * lib/krb5/krb5.h: Make krb5_{ret,store}_* functions able to write
3110 * lib/krb5/encrypt.c: New file.
3112 * lib/krb5/Makefile.am: More -I
3114 * configure.in: Test for big endian, random, rand, setitimer
3116 * lib/asn1/gen.c: perhaps even decodes bitstrings
3120 * lib/krb5/config_file.y: Better return values on error.
3124 * lib/asn1/parse.y: ifdef HAVE_STRDUP
3126 * lib/asn1/lex.l: ifdef strdup
3130 * lib/asn1/gen.c: A DER integer should really be a `unsigned'
3132 * lib/asn1/der_put.c: A DER integer should really be a `unsigned'
3134 * lib/asn1/der_get.c: A DER integer should really be a `unsigned'
3136 * lib/krb5/error/Makefile.am: It seems "$(SHELL) ./compile_et" is
3139 * lib/krb/mk_rep.c, lib/krb/rd_req.c, lib/krb/store.c,
3140 lib/krb/store.h: new files.
3142 * lib/krb5/keytab.c: now even with some functionality.
3144 * lib/asn1/gen.c: changed paramater from void * to Foo *
3146 * lib/asn1/der_get.c (der_get_octet_string): Fixed bug with empty
3151 * lib/krb5/get_cred.c (krb5_get_credentials): Check for creds in
3152 cc before getting new ones.
3154 * lib/krb5/krb5.h (krb5_free_keyblock): Fix prototype.
3156 * lib/krb5/build_auth.c (krb5_build_authenticator): It seems the
3159 * lib/krb5/auth_context.c: Implement `krb5_auth_con_getkey' and
3162 * lib/**/Makefile.am: Rename foo libfoo.a
3164 * include/Makefile.in: Use test instead of [
3167 * configure.in: Search for awk
3168 create lib/krb/error/compile_et
3172 * lib/krb5/Makefile.am: replaced mit-crc.c by crc.c
3178 * lib/krb5/error/compile_et.awk: Don't include krb5.h. Fix some
3181 * lib/krb5/error/asn1_err.et: Add ASN.1 error messages.
3183 * lib/krb5/mk_req.c: Get client from cache.
3185 * lib/krb5/cache.c: Add better error checking some useful return
3188 * lib/krb5/krb5.h: Fix krb5_auth_context.
3190 * lib/asn1/der.h: Make krb5_data compatible with krb5.h
3194 * lib/krb5/error: Add primitive error library.
3198 * lib/krb5/cache.c: Get correct address type from cache.
3200 * lib/krb5/krb5.h: Change int16 to int to be compatible with asn1.