1*f59d82ffSelricSat Dec 5 19:49:34 1998 Johan Danielsson <joda@hella.pdc.kth.se> 2*f59d82ffSelric 3*f59d82ffSelric * lib/krb5/context.c: remove ktype_is_etype 4*f59d82ffSelric 5*f59d82ffSelric * lib/krb5/crypto.c, lib/krb5/krb5.h, acconfig.h: NEW_DES3_CODE 6*f59d82ffSelric 7*f59d82ffSelric * configure.in: fix for AIX install; better tests for AIX dynamic 8*f59d82ffSelric AFS libs; `--enable-new-des3-code' 9*f59d82ffSelric 10*f59d82ffSelricTue Dec 1 14:44:44 1998 Johan Danielsson <joda@hella.pdc.kth.se> 11*f59d82ffSelric 12*f59d82ffSelric * appl/afsutil/Makefile.am: link with extra libs for aix 13*f59d82ffSelric 14*f59d82ffSelric * kuser/Makefile.am: link with extra libs for aix 15*f59d82ffSelric 16*f59d82ffSelricSun Nov 29 01:56:21 1998 Assar Westerlund <assar@sics.se> 17*f59d82ffSelric 18*f59d82ffSelric * lib/krb5/get_addrs.c (krb5_get_all_server_addrs): add. almost 19*f59d82ffSelric the same as krb5_get_all_client_addrs except that it includes 20*f59d82ffSelric loopback addresses 21*f59d82ffSelric 22*f59d82ffSelric * kdc/connect.c (init_socket): bind to a particular address 23*f59d82ffSelric (init_sockets): get all local addresses and bind to them all 24*f59d82ffSelric 25*f59d82ffSelric * lib/krb5/addr_families.c (addr2sockaddr, print_addr): new 26*f59d82ffSelric methods 27*f59d82ffSelric (find_af, find_atype): new functions. use them. 28*f59d82ffSelric 29*f59d82ffSelric * configure.in: add hesiod 30*f59d82ffSelric 31*f59d82ffSelricWed Nov 25 11:37:48 1998 Johan Danielsson <joda@hella.pdc.kth.se> 32*f59d82ffSelric 33*f59d82ffSelric * lib/krb5/krb5_err.et: add some codes from kerberos-revisions-03 34*f59d82ffSelric 35*f59d82ffSelricMon Nov 23 12:53:48 1998 Assar Westerlund <assar@sics.se> 36*f59d82ffSelric 37*f59d82ffSelric * lib/kadm5/log.c: rename delete -> remove 38*f59d82ffSelric 39*f59d82ffSelric * lib/kadm5/delete_s.c: rename delete -> remove 40*f59d82ffSelric 41*f59d82ffSelric * lib/hdb/common.c: rename delete -> remove 42*f59d82ffSelric 43*f59d82ffSelricSun Nov 22 12:26:26 1998 Assar Westerlund <assar@sics.se> 44*f59d82ffSelric 45*f59d82ffSelric * configure.in: check for environ and `struct spwd' 46*f59d82ffSelric 47*f59d82ffSelricSun Nov 22 11:42:45 1998 Johan Danielsson <joda@blubb.pdc.kth.se> 48*f59d82ffSelric 49*f59d82ffSelric * kdc/kerberos5.c (as_rep): set keytype to sess_ktype if 50*f59d82ffSelric ktype_is_etype 51*f59d82ffSelric 52*f59d82ffSelric * lib/krb5/encrypt.c (krb5_keytype_to_etypes): zero terminate 53*f59d82ffSelric etypes 54*f59d82ffSelric (em): sort entries 55*f59d82ffSelric 56*f59d82ffSelricSun Nov 22 06:54:48 1998 Assar Westerlund <assar@sics.se> 57*f59d82ffSelric 58*f59d82ffSelric * lib/krb5/init_creds_pw.c: more type correctness 59*f59d82ffSelric 60*f59d82ffSelric * lib/krb5/get_cred.c: re-structure code. remove limits on ASN1 61*f59d82ffSelric generated bits. 62*f59d82ffSelric 63*f59d82ffSelricSun Nov 22 01:49:50 1998 Johan Danielsson <joda@hella.pdc.kth.se> 64*f59d82ffSelric 65*f59d82ffSelric * kdc/hprop.c (v4_prop): fix bogus indexing 66*f59d82ffSelric 67*f59d82ffSelricSat Nov 21 21:39:20 1998 Assar Westerlund <assar@sics.se> 68*f59d82ffSelric 69*f59d82ffSelric * lib/krb5/verify_init.c (fail_verify_is_ok): new function 70*f59d82ffSelric (krb5_verify_init_creds): if we cannot get a ticket for 71*f59d82ffSelric host/`hostname` and fail_verify_is_ok just return. use 72*f59d82ffSelric krb5_rd_req 73*f59d82ffSelric 74*f59d82ffSelricSat Nov 21 23:12:27 1998 Assar Westerlund <assar@sics.se> 75*f59d82ffSelric 76*f59d82ffSelric * lib/krb5/free.c (krb5_xfree): new function 77*f59d82ffSelric 78*f59d82ffSelric * lib/krb5/creds.c (krb5_free_creds_contents): new function 79*f59d82ffSelric 80*f59d82ffSelric * lib/krb5/context.c: more type correctness 81*f59d82ffSelric 82*f59d82ffSelric * lib/krb5/checksum.c: more type correctness 83*f59d82ffSelric 84*f59d82ffSelric * lib/krb5/auth_context.c (krb5_auth_con_init): more type 85*f59d82ffSelric correctness 86*f59d82ffSelric 87*f59d82ffSelric * lib/asn1/der_get.c (der_get_length): fix test of len 88*f59d82ffSelric (der_get_tag): more type correctness 89*f59d82ffSelric 90*f59d82ffSelric * kuser/klist.c (usage): void-ize 91*f59d82ffSelric 92*f59d82ffSelric * admin/ktutil.c (kt_remove): some more type correctness. 93*f59d82ffSelric 94*f59d82ffSelricSat Nov 21 16:49:20 1998 Johan Danielsson <joda@hella.pdc.kth.se> 95*f59d82ffSelric 96*f59d82ffSelric * kuser/klist.c: try to list enctypes as keytypes 97*f59d82ffSelric 98*f59d82ffSelric * kuser/kinit.c: remove extra `--cache' option, add `--enctypes' 99*f59d82ffSelric to set list of enctypes to use 100*f59d82ffSelric 101*f59d82ffSelric * kadmin/load.c: load strings as hex 102*f59d82ffSelric 103*f59d82ffSelric * kadmin/dump.c: dump hex as string is possible 104*f59d82ffSelric 105*f59d82ffSelric * admin/ktutil.c: use print_version() 106*f59d82ffSelric 107*f59d82ffSelric * configure.in, acconfig.h: test for hesiod 108*f59d82ffSelric 109*f59d82ffSelricSun Nov 15 17:28:19 1998 Johan Danielsson <joda@hella.pdc.kth.se> 110*f59d82ffSelric 111*f59d82ffSelric * lib/krb5/crypto.c: add some crypto debug code 112*f59d82ffSelric 113*f59d82ffSelric * lib/krb5/get_in_tkt.c (_krb5_extract_ticket): don't use fixed 114*f59d82ffSelric buffer when encoding ticket 115*f59d82ffSelric 116*f59d82ffSelric * lib/krb5/auth_context.c (re-)implement `krb5_auth_setenctype' 117*f59d82ffSelric 118*f59d82ffSelric * kdc/kerberos5.c: allow mis-match of tgt session key, and service 119*f59d82ffSelric session key 120*f59d82ffSelric 121*f59d82ffSelric * admin/ktutil.c: keytype -> enctype 122*f59d82ffSelric 123*f59d82ffSelricFri Nov 13 05:35:48 1998 Assar Westerlund <assar@sics.se> 124*f59d82ffSelric 125*f59d82ffSelric * lib/krb5/krb5.h (KRB5_TGS_NAME, KRB5_TGS_NAME_SIZE): added 126*f59d82ffSelric 127*f59d82ffSelricSat Nov 7 19:56:31 1998 Assar Westerlund <assar@sics.se> 128*f59d82ffSelric 129*f59d82ffSelric * lib/krb5/get_cred.c (add_cred): add termination NULL pointer 130*f59d82ffSelric 131*f59d82ffSelricMon Nov 2 01:15:06 1998 Assar Westerlund <assar@sics.se> 132*f59d82ffSelric 133*f59d82ffSelric * lib/krb5/rd_req.c: adapt to new crypto api 134*f59d82ffSelric 135*f59d82ffSelric * lib/krb5/rd_rep.c: adapt to new crypto api 136*f59d82ffSelric 137*f59d82ffSelric * lib/krb5/rd_priv.c: adopt to new crypto api 138*f59d82ffSelric 139*f59d82ffSelric * lib/krb5/rd_cred.c: adopt to new crypto api 140*f59d82ffSelric 141*f59d82ffSelric * lib/krb5/principal.c: ENOMEM -> ERANGE 142*f59d82ffSelric 143*f59d82ffSelric * lib/krb5/mk_safe.c: cleanup and adopt to new crypto api 144*f59d82ffSelric 145*f59d82ffSelric * lib/krb5/mk_req_ext.c: adopt to new crypto api 146*f59d82ffSelric 147*f59d82ffSelric * lib/krb5/mk_req.c: get enctype from auth_context keyblock 148*f59d82ffSelric 149*f59d82ffSelric * lib/krb5/mk_rep.c: cleanup and adopt to new crypto api 150*f59d82ffSelric 151*f59d82ffSelric * lib/krb5/mk_priv.c: adopt to new crypto api 152*f59d82ffSelric 153*f59d82ffSelric * lib/krb5/keytab.c: adopt to new crypto api 154*f59d82ffSelric 155*f59d82ffSelric * lib/krb5/get_in_tkt_with_skey.c: adopt to new crypto api 156*f59d82ffSelric 157*f59d82ffSelric * lib/krb5/get_in_tkt_with_keytab.c: adopt to new crypto api 158*f59d82ffSelric 159*f59d82ffSelric * lib/krb5/get_in_tkt_pw.c: adopt to new crypto api 160*f59d82ffSelric 161*f59d82ffSelric * lib/krb5/get_in_tkt.c: adopt to new crypto api 162*f59d82ffSelric 163*f59d82ffSelric * lib/krb5/get_cred.c: adopt to new crypto api 164*f59d82ffSelric 165*f59d82ffSelric * lib/krb5/generate_subkey.c: use new crypto api 166*f59d82ffSelric 167*f59d82ffSelric * lib/krb5/context.c: rename etype functions to enctype ditto 168*f59d82ffSelric 169*f59d82ffSelric * lib/krb5/build_auth.c: use new crypto api 170*f59d82ffSelric 171*f59d82ffSelric * lib/krb5/auth_context.c: remove enctype and cksumtype from 172*f59d82ffSelric auth_context 173*f59d82ffSelric 174*f59d82ffSelricMon Nov 2 01:15:06 1998 Assar Westerlund <assar@sics.se> 175*f59d82ffSelric 176*f59d82ffSelric * kdc/connect.c (handle_udp, handle_tcp): correct type of `n' 177*f59d82ffSelric 178*f59d82ffSelricTue Sep 15 18:41:38 1998 Johan Danielsson <joda@hella.pdc.kth.se> 179*f59d82ffSelric 180*f59d82ffSelric * admin/ktutil.c: fix printing of unrecognized keytypes 181*f59d82ffSelric 182*f59d82ffSelricTue Sep 15 17:02:33 1998 Johan Danielsson <joda@hella.pdc.kth.se> 183*f59d82ffSelric 184*f59d82ffSelric * lib/kadm5/set_keys.c: add KEYTYPE_USE_AFS3_SALT to keytype if 185*f59d82ffSelric using AFS3 salt 186*f59d82ffSelric 187*f59d82ffSelricTue Aug 25 23:30:52 1998 Assar Westerlund <assar@sics.se> 188*f59d82ffSelric 189*f59d82ffSelric * lib/krb5/send_to_kdc.c (krb5_sendto_kdc): care about 190*f59d82ffSelric `use_admin_kdc' 191*f59d82ffSelric 192*f59d82ffSelric * lib/krb5/changepw.c (get_kdc_address): use 193*f59d82ffSelric krb5_get_krb_admin_hst 194*f59d82ffSelric 195*f59d82ffSelric * lib/krb5/krbhst.c (krb5_get_krb_admin_hst): new function 196*f59d82ffSelric 197*f59d82ffSelric * lib/krb5/krb5.h (krb5_context_data): add `use_admin_kdc' 198*f59d82ffSelric 199*f59d82ffSelric * lib/krb5/context.c (krb5_get_use_admin_kdc, 200*f59d82ffSelric krb5_set_use_admin_kdc): new functions 201*f59d82ffSelric 202*f59d82ffSelricTue Aug 18 22:24:12 1998 Johan Danielsson <joda@emma.pdc.kth.se> 203*f59d82ffSelric 204*f59d82ffSelric * lib/krb5/crypto.c: remove all calls to abort(); check return 205*f59d82ffSelric value from _key_schedule; 206*f59d82ffSelric (RSA_MD[45]_DES_verify): zero tmp and res; 207*f59d82ffSelric (RSA_MD5_DES3_{verify,checksum}): implement 208*f59d82ffSelric 209*f59d82ffSelricMon Aug 17 20:18:46 1998 Assar Westerlund <assar@sics.se> 210*f59d82ffSelric 211*f59d82ffSelric * kdc/kerberos4.c (swap32): conditionalize 212*f59d82ffSelric 213*f59d82ffSelric * lib/krb5/mk_req_ext.c (krb5_mk_req_internal): new function 214*f59d82ffSelric 215*f59d82ffSelric * lib/krb5/get_host_realm.c (krb5_get_host_realm): if the hostname 216*f59d82ffSelric returned from gethostby*() isn't a FQDN, try with the original 217*f59d82ffSelric hostname 218*f59d82ffSelric 219*f59d82ffSelric * lib/krb5/get_cred.c (make_pa_tgs_req): use krb5_mk_req_internal 220*f59d82ffSelric and correct key usage 221*f59d82ffSelric 222*f59d82ffSelric * lib/krb5/crypto.c (verify_checksum): make static 223*f59d82ffSelric 224*f59d82ffSelric * admin/ktutil.c (kt_list): use krb5_enctype_to_string 225*f59d82ffSelric 226*f59d82ffSelricSun Aug 16 20:57:56 1998 Assar Westerlund <assar@sics.se> 227*f59d82ffSelric 228*f59d82ffSelric * kadmin/cpw.c (do_cpw_entry): use asprintf for the prompt 229*f59d82ffSelric 230*f59d82ffSelric * kadmin/ank.c (ank): print principal name in prompt 231*f59d82ffSelric 232*f59d82ffSelric * lib/krb5/crypto.c (hmac): always allocate space for checksum. 233*f59d82ffSelric never trust c.checksum.length 234*f59d82ffSelric (_get_derived_key): try to return the derived key 235*f59d82ffSelric 236*f59d82ffSelricSun Aug 16 19:48:42 1998 Johan Danielsson <joda@emma.pdc.kth.se> 237*f59d82ffSelric 238*f59d82ffSelric * lib/krb5/crypto.c (hmac): fix some peculiarities and bugs 239*f59d82ffSelric (get_checksum_key): assume usage is `formatted' 240*f59d82ffSelric (create_checksum,verify_checksum): moved the guts of the krb5_* 241*f59d82ffSelric functions here, both take `formatted' key-usages 242*f59d82ffSelric (encrypt_internal_derived): fix various bogosities 243*f59d82ffSelric (derive_key): drop key_type parameter (already given by the 244*f59d82ffSelric encryption_type) 245*f59d82ffSelric 246*f59d82ffSelric * kdc/kerberos5.c (check_flags): handle case where client is NULL 247*f59d82ffSelric 248*f59d82ffSelric * kdc/connect.c (process_request): return zero after processing 249*f59d82ffSelric kerberos 4 request 250*f59d82ffSelric 251*f59d82ffSelricSun Aug 16 18:38:15 1998 Johan Danielsson <joda@blubb.pdc.kth.se> 252*f59d82ffSelric 253*f59d82ffSelric * lib/krb5/crypto.c: merge x-*.[ch] into one file 254*f59d82ffSelric 255*f59d82ffSelric * lib/krb5/cache.c: remove residual from krb5_ccache_data 256*f59d82ffSelric 257*f59d82ffSelricFri Aug 14 16:28:23 1998 Johan Danielsson <joda@emma.pdc.kth.se> 258*f59d82ffSelric 259*f59d82ffSelric * lib/krb5/x-crypto.c (derive_key): move DES3 specific code to 260*f59d82ffSelric separate function (will eventually end up someplace else) 261*f59d82ffSelric 262*f59d82ffSelric * lib/krb5/x-crypto.c (krb5_string_to_key_derived): allocate key 263*f59d82ffSelric 264*f59d82ffSelric * configure.in, acconfig.h: test for four valued krb_put_int 265*f59d82ffSelric 266*f59d82ffSelricThu Aug 13 23:46:29 1998 Assar Westerlund <assar@emma.pdc.kth.se> 267*f59d82ffSelric 268*f59d82ffSelric * Release 0.0t 269*f59d82ffSelric 270*f59d82ffSelricThu Aug 13 22:40:17 1998 Assar Westerlund <assar@sics.se> 271*f59d82ffSelric 272*f59d82ffSelric * lib/krb5/config_file.c (parse_binding): remove trailing 273*f59d82ffSelric whitespace 274*f59d82ffSelric 275*f59d82ffSelricWed Aug 12 20:15:11 1998 Johan Danielsson <joda@emma.pdc.kth.se> 276*f59d82ffSelric 277*f59d82ffSelric * lib/krb5/x-checksum.c (krb5_verify_checksum): pass checksum type 278*f59d82ffSelric to krb5_create_checksum 279*f59d82ffSelric 280*f59d82ffSelric * lib/krb5/x-key.c: implement DES3_string_to_key_derived; fix a 281*f59d82ffSelric few typos 282*f59d82ffSelric 283*f59d82ffSelricWed Aug 5 12:39:54 1998 Assar Westerlund <assar@emma.pdc.kth.se> 284*f59d82ffSelric 285*f59d82ffSelric * Release 0.0s 286*f59d82ffSelric 287*f59d82ffSelricThu Jul 30 23:12:17 1998 Assar Westerlund <assar@sics.se> 288*f59d82ffSelric 289*f59d82ffSelric * lib/krb5/mk_error.c (krb5_mk_error): realloc until you die 290*f59d82ffSelric 291*f59d82ffSelricThu Jul 23 19:49:03 1998 Johan Danielsson <joda@emma.pdc.kth.se> 292*f59d82ffSelric 293*f59d82ffSelric * kdc/kdc_locl.h: proto for `get_des_key' 294*f59d82ffSelric 295*f59d82ffSelric * configure.in: test for four valued el_init 296*f59d82ffSelric 297*f59d82ffSelric * kuser/klist.c: keytype -> enctype 298*f59d82ffSelric 299*f59d82ffSelric * kpasswd/kpasswdd.c (change): use new `krb5_string_to_key*' 300*f59d82ffSelric 301*f59d82ffSelric * kdc/hprop.c (v4_prop, ka_convert): convert to a set of keys 302*f59d82ffSelric 303*f59d82ffSelric * kdc/kaserver.c: use `get_des_key' 304*f59d82ffSelric 305*f59d82ffSelric * kdc/524.c: use new crypto api 306*f59d82ffSelric 307*f59d82ffSelric * kdc/kerberos4.c: use new crypto api 308*f59d82ffSelric 309*f59d82ffSelric * kdc/kerberos5.c: always treat keytypes as enctypes; use new 310*f59d82ffSelric crypto api 311*f59d82ffSelric 312*f59d82ffSelric * kdc/kstash.c: adapt to new crypto api 313*f59d82ffSelric 314*f59d82ffSelric * kdc/string2key.c: adapt to new crypto api 315*f59d82ffSelric 316*f59d82ffSelric * admin/srvconvert.c: add keys for all possible enctypes 317*f59d82ffSelric 318*f59d82ffSelric * admin/ktutil.c: keytype -> enctype 319*f59d82ffSelric 320*f59d82ffSelric * lib/gssapi/init_sec_context.c: get enctype from auth_context 321*f59d82ffSelric keyblock 322*f59d82ffSelric 323*f59d82ffSelric * lib/hdb/hdb.c: remove hdb_*_keytype2key 324*f59d82ffSelric 325*f59d82ffSelric * lib/kadm5/set_keys.c: adapt to new crypto api 326*f59d82ffSelric 327*f59d82ffSelric * lib/kadm5/rename_s.c: adapt to new crypto api 328*f59d82ffSelric 329*f59d82ffSelric * lib/kadm5/get_s.c: adapt to new crypto api 330*f59d82ffSelric 331*f59d82ffSelric * lib/kadm5/create_s.c: add keys for des-cbc-crc, des-cbc-md4, 332*f59d82ffSelric des-cbc-md5, and des3-cbc-sha1 333*f59d82ffSelric 334*f59d82ffSelric * lib/krb5/heim_err.et: error message for unsupported salt 335*f59d82ffSelric 336*f59d82ffSelric * lib/krb5/codec.c: short-circuit these functions, since they are 337*f59d82ffSelric not needed any more 338*f59d82ffSelric 339*f59d82ffSelric * lib/krb5/rd_safe.c: cleanup and adapt to new crypto api 340*f59d82ffSelric 341*f59d82ffSelricMon Jul 13 23:00:59 1998 Assar Westerlund <assar@sics.se> 342*f59d82ffSelric 343*f59d82ffSelric * lib/krb5/send_to_kdc.c (krb5_sendto_kdc): don't advance 344*f59d82ffSelric hostent->h_addr_list, use a copy instead 345*f59d82ffSelric 346*f59d82ffSelricMon Jul 13 15:00:31 1998 Johan Danielsson <joda@emma.pdc.kth.se> 347*f59d82ffSelric 348*f59d82ffSelric * lib/krb5/config_file.c (parse_binding, parse_section): make sure 349*f59d82ffSelric everything is ok before adding to linked list 350*f59d82ffSelric 351*f59d82ffSelric * lib/krb5/config_file.c: skip ws before checking for comment 352*f59d82ffSelric 353*f59d82ffSelricWed Jul 8 10:45:45 1998 Johan Danielsson <joda@emma.pdc.kth.se> 354*f59d82ffSelric 355*f59d82ffSelric * lib/asn1/k5.asn1: hmac-sha1-des3 = 12 356*f59d82ffSelric 357*f59d82ffSelricTue Jun 30 18:08:05 1998 Assar Westerlund <assar@sics.se> 358*f59d82ffSelric 359*f59d82ffSelric * lib/krb5/send_to_kdc.c (krb5_sendto_kdc): do not close the 360*f59d82ffSelric unopened file 361*f59d82ffSelric 362*f59d82ffSelric * lib/krb5/mk_priv.c: realloc correctly 363*f59d82ffSelric 364*f59d82ffSelric * lib/krb5/get_addrs.c (find_all_addresses): init j 365*f59d82ffSelric 366*f59d82ffSelric * lib/krb5/context.c (krb5_init_context): print error if parsing 367*f59d82ffSelric of config file produced an error. 368*f59d82ffSelric 369*f59d82ffSelric * lib/krb5/config_file.c (parse_list, krb5_config_parse_file): 370*f59d82ffSelric ignore more spaces 371*f59d82ffSelric 372*f59d82ffSelric * lib/krb5/codec.c (krb5_encode_EncKrbCredPart, 373*f59d82ffSelric krb5_encode_ETYPE_INFO): initialize `ret' 374*f59d82ffSelric 375*f59d82ffSelric * lib/krb5/build_auth.c (krb5_build_authenticator): realloc 376*f59d82ffSelric correctly 377*f59d82ffSelric 378*f59d82ffSelric * lib/kadm5/set_keys.c (_kadm5_set_keys): initialize `ret' 379*f59d82ffSelric 380*f59d82ffSelric * lib/kadm5/init_c.c (get_cred_cache): try to do the right thing 381*f59d82ffSelric with default_client 382*f59d82ffSelric 383*f59d82ffSelric * kuser/kinit.c (main): initialize `ticket_life' 384*f59d82ffSelric 385*f59d82ffSelric * kdc/kerberos5.c (get_pa_etype_info): initialize `ret' 386*f59d82ffSelric (tgs_rep2): initialize `krbtgt' 387*f59d82ffSelric 388*f59d82ffSelric * kdc/connect.c (do_request): check for errors from `sendto' 389*f59d82ffSelric 390*f59d82ffSelric * kdc/524.c (do_524): initialize `ret' 391*f59d82ffSelric 392*f59d82ffSelric * kadmin/util.c (foreach_principal): don't clobber `ret' 393*f59d82ffSelric 394*f59d82ffSelric * kadmin/del.c (del_entry): don't apply on zeroth argument 395*f59d82ffSelric 396*f59d82ffSelric * kadmin/cpw.c (do_cpw_entry): initialize `ret' 397*f59d82ffSelric 398*f59d82ffSelricSat Jun 13 04:14:01 1998 Assar Westerlund <assar@juguete.sics.se> 399*f59d82ffSelric 400*f59d82ffSelric * Release 0.0r 401*f59d82ffSelric 402*f59d82ffSelricSun Jun 7 04:13:14 1998 Assar Westerlund <assar@sics.se> 403*f59d82ffSelric 404*f59d82ffSelric * lib/krb5/addr_families.c: fall-back definition of 405*f59d82ffSelric IN6_ADDR_V6_TO_V4 406*f59d82ffSelric 407*f59d82ffSelric * configure.in: only set CFLAGS if it wasn't set look for 408*f59d82ffSelric dn_expand and res_search 409*f59d82ffSelric 410*f59d82ffSelricMon Jun 1 21:28:07 1998 Assar Westerlund <assar@sics.se> 411*f59d82ffSelric 412*f59d82ffSelric * configure.in: remove duplicate seteuid 413*f59d82ffSelric 414*f59d82ffSelricSat May 30 00:19:51 1998 Johan Danielsson <joda@emma.pdc.kth.se> 415*f59d82ffSelric 416*f59d82ffSelric * lib/krb5/convert_creds.c: import _krb_time_to_life, to avoid 417*f59d82ffSelric runtime dependencies on libkrb with some shared library 418*f59d82ffSelric implementations 419*f59d82ffSelric 420*f59d82ffSelricFri May 29 00:09:02 1998 Johan Danielsson <joda@emma.pdc.kth.se> 421*f59d82ffSelric 422*f59d82ffSelric * kuser/kinit_options.c: Default options for kinit. 423*f59d82ffSelric 424*f59d82ffSelric * kuser/kauth_options.c: Default options for kauth. 425*f59d82ffSelric 426*f59d82ffSelric * kuser/kinit.c: Implement lots a new options. 427*f59d82ffSelric 428*f59d82ffSelric * kdc/kerberos5.c (check_tgs_flags): make sure kdc-req-body->rtime 429*f59d82ffSelric is not NULL; set endtime to min of new starttime + old_life, and 430*f59d82ffSelric requested endtime 431*f59d82ffSelric 432*f59d82ffSelric * lib/krb5/init_creds_pw.c (get_init_creds_common): if the 433*f59d82ffSelric forwardable or proxiable flags are set in options, set the 434*f59d82ffSelric kdc-flags to the value specified, and not always to one 435*f59d82ffSelric 436*f59d82ffSelricThu May 28 21:28:06 1998 Johan Danielsson <joda@emma.pdc.kth.se> 437*f59d82ffSelric 438*f59d82ffSelric * kdc/kerberos5.c: Optionally compare client address to addresses 439*f59d82ffSelric in ticket. 440*f59d82ffSelric 441*f59d82ffSelric * kdc/connect.c: Pass client address to as_rep() and tgs_rep(). 442*f59d82ffSelric 443*f59d82ffSelric * kdc/config.c: Add check_ticket_addresses, and 444*f59d82ffSelric allow_null_ticket_addresses variables. 445*f59d82ffSelric 446*f59d82ffSelricTue May 26 14:03:42 1998 Johan Danielsson <joda@emma.pdc.kth.se> 447*f59d82ffSelric 448*f59d82ffSelric * lib/kadm5/create_s.c: possibly make DES keys version 4 salted 449*f59d82ffSelric 450*f59d82ffSelric * lib/kadm5/set_keys.c: check config file for kadmin/use_v4_salt 451*f59d82ffSelric before zapping version 4 salts 452*f59d82ffSelric 453*f59d82ffSelricSun May 24 05:22:17 1998 Assar Westerlund <assar@sics.se> 454*f59d82ffSelric 455*f59d82ffSelric * Release 0.0q 456*f59d82ffSelric 457*f59d82ffSelric * lib/krb5/aname_to_localname.c: new file 458*f59d82ffSelric 459*f59d82ffSelric * lib/gssapi/init_sec_context.c (repl_mutual): no output token 460*f59d82ffSelric 461*f59d82ffSelric * lib/gssapi/display_name.c (gss_display_name): zero terminate 462*f59d82ffSelric output. 463*f59d82ffSelric 464*f59d82ffSelricSat May 23 19:11:07 1998 Assar Westerlund <assar@sics.se> 465*f59d82ffSelric 466*f59d82ffSelric * lib/gssapi/display_status.c: new file 467*f59d82ffSelric 468*f59d82ffSelric * Makefile.am: send -I to aclocal 469*f59d82ffSelric 470*f59d82ffSelric * configure.in: remove duplicate setenv 471*f59d82ffSelric 472*f59d82ffSelricSat May 23 04:55:19 1998 Johan Danielsson <joda@emma.pdc.kth.se> 473*f59d82ffSelric 474*f59d82ffSelric * kadmin/util.c (foreach_principal): Check for expression before 475*f59d82ffSelric wading through the whole database. 476*f59d82ffSelric 477*f59d82ffSelric * kadmin/kadmin.c: Pass NULL password to 478*f59d82ffSelric kadm5_*_init_with_password. 479*f59d82ffSelric 480*f59d82ffSelric * lib/kadm5/init_c.c: Implement init_with_{skey,creds}*. Make use 481*f59d82ffSelric of `password' parameter to init_with_password. 482*f59d82ffSelric 483*f59d82ffSelric * lib/kadm5/init_s.c: implement init_with_{skey,creds}* 484*f59d82ffSelric 485*f59d82ffSelric * lib/kadm5/server.c: Better arguments for 486*f59d82ffSelric kadm5_init_with_password. 487*f59d82ffSelric 488*f59d82ffSelricSat May 16 07:10:36 1998 Assar Westerlund <assar@sics.se> 489*f59d82ffSelric 490*f59d82ffSelric * kdc/hprop.c: conditionalize ka-server reading support on 491*f59d82ffSelric KASERVER_DB 492*f59d82ffSelric 493*f59d82ffSelric * configure.in: new option `--enable-kaserver-db' 494*f59d82ffSelric 495*f59d82ffSelricFri May 15 19:39:18 1998 Johan Danielsson <joda@blubb.pdc.kth.se> 496*f59d82ffSelric 497*f59d82ffSelric * lib/krb5/get_cred.c: Better error if local tgt couldn't be 498*f59d82ffSelric found. 499*f59d82ffSelric 500*f59d82ffSelricTue May 12 21:11:02 1998 Assar Westerlund <assar@sics.se> 501*f59d82ffSelric 502*f59d82ffSelric * Release 0.0p 503*f59d82ffSelric 504*f59d82ffSelric * lib/krb5/mk_req_ext.c (krb5_mk_req_extended): only set 505*f59d82ffSelric encryption type in auth_context if it's compatible with the type 506*f59d82ffSelric of the session key 507*f59d82ffSelric 508*f59d82ffSelricMon May 11 21:11:14 1998 Johan Danielsson <joda@emma.pdc.kth.se> 509*f59d82ffSelric 510*f59d82ffSelric * kdc/hprop.c: add support for ka-server databases 511*f59d82ffSelric 512*f59d82ffSelric * appl/ftp/ftpd: link with -lcrypt, if needed 513*f59d82ffSelric 514*f59d82ffSelricFri May 1 07:29:52 1998 Assar Westerlund <assar@sics.se> 515*f59d82ffSelric 516*f59d82ffSelric * configure.in: don't test for winsock.h 517*f59d82ffSelric 518*f59d82ffSelricSat Apr 18 21:43:11 1998 Johan Danielsson <joda@puffer.pdc.kth.se> 519*f59d82ffSelric 520*f59d82ffSelric * Release 0.0o 521*f59d82ffSelric 522*f59d82ffSelricSat Apr 18 00:31:11 1998 Johan Danielsson <joda@blubb.pdc.kth.se> 523*f59d82ffSelric 524*f59d82ffSelric * lib/krb5/sock_principal.c: Save hostname. 525*f59d82ffSelric 526*f59d82ffSelricSun Apr 5 11:29:45 1998 Johan Danielsson <joda@emma.pdc.kth.se> 527*f59d82ffSelric 528*f59d82ffSelric * lib/krb5/mk_req_ext.c: Use same enctype as in ticket. 529*f59d82ffSelric 530*f59d82ffSelric * kdc/hprop.c (v4_prop): Check for null key. 531*f59d82ffSelric 532*f59d82ffSelricFri Apr 3 03:54:54 1998 Johan Danielsson <joda@blubb.pdc.kth.se> 533*f59d82ffSelric 534*f59d82ffSelric * lib/krb5/str2key.c: Fix DES3 string-to-key. 535*f59d82ffSelric 536*f59d82ffSelric * lib/krb5/keytab.c: Get default keytab name from context. 537*f59d82ffSelric 538*f59d82ffSelric * lib/krb5/context.c: Get `default_keytab_name' value. 539*f59d82ffSelric 540*f59d82ffSelric * kadmin/util.c (foreach_principal): Print error message if 541*f59d82ffSelric `kadm5_get_principals' fails. 542*f59d82ffSelric 543*f59d82ffSelric * kadmin/kadmind.c: Use `kadmind_loop'. 544*f59d82ffSelric 545*f59d82ffSelric * lib/kadm5/server.c: Replace several other functions with 546*f59d82ffSelric `kadmind_loop'. 547*f59d82ffSelric 548*f59d82ffSelricSat Mar 28 09:49:18 1998 Assar Westerlund <assar@sics.se> 549*f59d82ffSelric 550*f59d82ffSelric * lib/krb5/keytab.c (fkt_add_entry): use an explicit seek instead 551*f59d82ffSelric of O_APPEND 552*f59d82ffSelric 553*f59d82ffSelric * configure.in: generate ftp Makefiles 554*f59d82ffSelric 555*f59d82ffSelric * kuser/klist.c (print_cred_verbose): print IPv4-address in a 556*f59d82ffSelric portable way. 557*f59d82ffSelric 558*f59d82ffSelric * admin/srvconvert.c (srvconv): return 0 if successful 559*f59d82ffSelric 560*f59d82ffSelricTue Mar 24 00:40:33 1998 Johan Danielsson <joda@emma.pdc.kth.se> 561*f59d82ffSelric 562*f59d82ffSelric * lib/krb5/keytab.c: MIT compatible changes: add and use sizes to 563*f59d82ffSelric keytab entries, and change default keytab to `/etc/krb5.keytab'. 564*f59d82ffSelric 565*f59d82ffSelricMon Mar 23 23:43:59 1998 Johan Danielsson <joda@emma.pdc.kth.se> 566*f59d82ffSelric 567*f59d82ffSelric * lib/gssapi/wrap.c: Use `gss_krb5_getsomekey'. 568*f59d82ffSelric 569*f59d82ffSelric * lib/gssapi/unwrap.c: Implement and use `gss_krb5_getsomekey'. 570*f59d82ffSelric Fix bug in checking of pad. 571*f59d82ffSelric 572*f59d82ffSelric * lib/gssapi/{un,}wrap.c: Add support for just integrity 573*f59d82ffSelric protecting data. 574*f59d82ffSelric 575*f59d82ffSelric * lib/gssapi/accept_sec_context.c: Use 576*f59d82ffSelric `gssapi_krb5_verify_8003_checksum'. 577*f59d82ffSelric 578*f59d82ffSelric * lib/gssapi/8003.c: Implement `gssapi_krb5_verify_8003_checksum'. 579*f59d82ffSelric 580*f59d82ffSelric * lib/gssapi/init_sec_context.c: Zero cred, and store session key 581*f59d82ffSelric properly in auth-context. 582*f59d82ffSelric 583*f59d82ffSelricSun Mar 22 00:47:22 1998 Johan Danielsson <joda@emma.pdc.kth.se> 584*f59d82ffSelric 585*f59d82ffSelric * lib/kadm5/delete_s.c: Check immutable bit. 586*f59d82ffSelric 587*f59d82ffSelric * kadmin/kadmin.c: Pass client name to kadm5_init. 588*f59d82ffSelric 589*f59d82ffSelric * lib/kadm5/init_c.c: Get creds for client name passed in. 590*f59d82ffSelric 591*f59d82ffSelric * kdc/hprop.c (v4_prop): Check for `changepw.kerberos'. 592*f59d82ffSelric 593*f59d82ffSelricSat Mar 21 22:57:13 1998 Johan Danielsson <joda@emma.pdc.kth.se> 594*f59d82ffSelric 595*f59d82ffSelric * lib/krb5/mk_error.c: Verify that error_code is in the range 596*f59d82ffSelric [0,127]. 597*f59d82ffSelric 598*f59d82ffSelric * kdc/kerberos5.c: Move checking of principal flags to new 599*f59d82ffSelric function `check_flags'. 600*f59d82ffSelric 601*f59d82ffSelricSat Mar 21 14:38:51 1998 Assar Westerlund <assar@sics.se> 602*f59d82ffSelric 603*f59d82ffSelric * lib/kadm5/get_s.c (kadm5_s_get_principal): handle an empty salt 604*f59d82ffSelric 605*f59d82ffSelric * configure.in: define SunOS if running solaris 606*f59d82ffSelric 607*f59d82ffSelricSat Mar 21 00:26:34 1998 Johan Danielsson <joda@emma.pdc.kth.se> 608*f59d82ffSelric 609*f59d82ffSelric * lib/kadm5/server.c: Unifdef test for same principal when 610*f59d82ffSelric changing password. 611*f59d82ffSelric 612*f59d82ffSelric * kadmin/util.c: If kadm5_get_principals failes, we might still be 613*f59d82ffSelric able to perform the requested opreration (for instance someone if 614*f59d82ffSelric trying to change his own password). 615*f59d82ffSelric 616*f59d82ffSelric * lib/kadm5/init_c.c: Try to get ticket via initial request, if 617*f59d82ffSelric not possible via tgt. 618*f59d82ffSelric 619*f59d82ffSelric * lib/kadm5/server.c: Check for principals changing their own 620*f59d82ffSelric passwords. 621*f59d82ffSelric 622*f59d82ffSelric * kdc/kerberos5.c (tgs_rep2): check for interesting flags on 623*f59d82ffSelric involved principals. 624*f59d82ffSelric 625*f59d82ffSelric * kadmin/util.c: Fix order of flags. 626*f59d82ffSelric 627*f59d82ffSelricThu Mar 19 16:54:10 1998 Johan Danielsson <joda@emma.pdc.kth.se> 628*f59d82ffSelric 629*f59d82ffSelric * kdc/kerberos4.c: Return sane error code if krb_rd_req fails. 630*f59d82ffSelric 631*f59d82ffSelricWed Mar 18 17:11:47 1998 Assar Westerlund <assar@sics.se> 632*f59d82ffSelric 633*f59d82ffSelric * acconfig.h: rename HAVE_STRUCT_SOCKADDR_IN6 to HAVE_IPV6 634*f59d82ffSelric 635*f59d82ffSelricWed Mar 18 09:58:18 1998 Johan Danielsson <joda@emma.pdc.kth.se> 636*f59d82ffSelric 637*f59d82ffSelric * lib/krb5/get_in_tkt_with_keytab.c (krb5_keytab_key_proc): don't 638*f59d82ffSelric free keyseed; use correct keytab 639*f59d82ffSelric 640*f59d82ffSelricTue Mar 10 09:56:16 1998 Assar Westerlund <assar@sics.se> 641*f59d82ffSelric 642*f59d82ffSelric * acinclude.m4 (AC_KRB_IPV6): rewrote to avoid false positives 643*f59d82ffSelric 644*f59d82ffSelricMon Mar 16 23:58:23 1998 Johan Danielsson <joda@emma.pdc.kth.se> 645*f59d82ffSelric 646*f59d82ffSelric * Release 0.0n 647*f59d82ffSelric 648*f59d82ffSelricFri Mar 6 00:41:30 1998 Johan Danielsson <joda@emma.pdc.kth.se> 649*f59d82ffSelric 650*f59d82ffSelric * lib/gssapi/{accept_sec_context,release_cred}.c: Use 651*f59d82ffSelric krb5_kt_close/krb5_kt_resolve. 652*f59d82ffSelric 653*f59d82ffSelric * lib/krb5/principal.c (krb5_425_conv_principal_ext): Use resolver 654*f59d82ffSelric to lookup hosts, so CNAMEs can be ignored. 655*f59d82ffSelric 656*f59d82ffSelric * lib/krb5/send_to_kdc.c (krb5_sendto_kdc, send_and_recv_http): 657*f59d82ffSelric Add support for using proxy. 658*f59d82ffSelric 659*f59d82ffSelric * lib/krb5/context.c: Initialize `http_proxy' from 660*f59d82ffSelric `libdefaults/http_proxy'. 661*f59d82ffSelric 662*f59d82ffSelric * lib/krb5/krb5.h: Add `http_proxy' to context. 663*f59d82ffSelric 664*f59d82ffSelric * lib/krb5/send_to_kdc.c: Recognize `http/' and `udp/' as protocol 665*f59d82ffSelric specifications. 666*f59d82ffSelric 667*f59d82ffSelricWed Mar 4 01:47:29 1998 Johan Danielsson <joda@emma.pdc.kth.se> 668*f59d82ffSelric 669*f59d82ffSelric * admin/ktutil.c: Implement `add' and `remove' functions. Make 670*f59d82ffSelric `--keytab' a global option. 671*f59d82ffSelric 672*f59d82ffSelric * lib/krb5/keytab.c: Implement remove with files. Add memory 673*f59d82ffSelric operations. 674*f59d82ffSelric 675*f59d82ffSelricTue Mar 3 20:09:59 1998 Johan Danielsson <joda@emma.pdc.kth.se> 676*f59d82ffSelric 677*f59d82ffSelric * lib/krb5/keytab.c: Use function pointers. 678*f59d82ffSelric 679*f59d82ffSelric * admin: Remove kdb_edit. 680*f59d82ffSelric 681*f59d82ffSelricSun Mar 1 03:28:42 1998 Assar Westerlund <assar@sics.se> 682*f59d82ffSelric 683*f59d82ffSelric * lib/kadm5/dump_log.c: print operation names 684*f59d82ffSelric 685*f59d82ffSelricSun Mar 1 03:04:12 1998 Assar Westerlund <assar@sics.se> 686*f59d82ffSelric 687*f59d82ffSelric * configure.in: add X-tests, and {bin,...}dir appl/{kx,kauth} 688*f59d82ffSelric 689*f59d82ffSelric * lib/krb5/build_auth.c,mk_priv.c,rd_safe.c,mk_safe.c,mk_rep.c: 690*f59d82ffSelric remove arbitrary limit 691*f59d82ffSelric 692*f59d82ffSelric * kdc/hprop-common.c: use krb5_{read,write}_message 693*f59d82ffSelric 694*f59d82ffSelric * lib/kadm5/ipropd_master.c (send_diffs): more careful use 695*f59d82ffSelric krb5_{write,read}_message 696*f59d82ffSelric 697*f59d82ffSelric * lib/kadm5/ipropd_slave.c (get_creds): get credentials for 698*f59d82ffSelric `iprop/master' directly. 699*f59d82ffSelric (main): use `krb5_read_message' 700*f59d82ffSelric 701*f59d82ffSelricSun Mar 1 02:05:11 1998 Johan Danielsson <joda@emma.pdc.kth.se> 702*f59d82ffSelric 703*f59d82ffSelric * kadmin/kadmin.c: Cleanup commands list, and add help strings. 704*f59d82ffSelric 705*f59d82ffSelric * kadmin/get.c: Add long, short, and terse (equivalent to `list') 706*f59d82ffSelric output formats. Short is the default. 707*f59d82ffSelric 708*f59d82ffSelric * kadmin/util.c: Add `include_time' flag to timeval2str. 709*f59d82ffSelric 710*f59d82ffSelric * kadmin/init.c: Max-life and max-renew can, infact, be zero. 711*f59d82ffSelric 712*f59d82ffSelric * kadmin/{cpw,del,ext,get}.c: Use `foreach_principal'. 713*f59d82ffSelric 714*f59d82ffSelric * kadmin/util.c: Add function `foreach_principal', that loops over 715*f59d82ffSelric all principals matching an expression. 716*f59d82ffSelric 717*f59d82ffSelric * kadmin/kadmin.c: Add usage string to `privileges'. 718*f59d82ffSelric 719*f59d82ffSelric * lib/kadm5/get_princs_s.c: Also try to match aganist the 720*f59d82ffSelric expression appended with `@default-realm'. 721*f59d82ffSelric 722*f59d82ffSelric * lib/krb5/principal.c: Add `krb5_unparse_name_fixed_short', that 723*f59d82ffSelric excludes the realm if it's the same as the default realm. 724*f59d82ffSelric 725*f59d82ffSelricFri Feb 27 05:02:21 1998 Assar Westerlund <assar@sics.se> 726*f59d82ffSelric 727*f59d82ffSelric * configure.in: more WFLAGS and WFLAGS_NOUNUSED added missing 728*f59d82ffSelric headers and functions error -> com_err 729*f59d82ffSelric 730*f59d82ffSelric (krb5_get_init_creds_keytab): use krb5_keytab_key_proc 731*f59d82ffSelric 732*f59d82ffSelric * lib/krb5/get_in_tkt_with_keytab.c: make `krb5_keytab_key_proc' 733*f59d82ffSelric global 734*f59d82ffSelric 735*f59d82ffSelric * lib/kadm5/marshall.c (ret_principal_ent): set `n_tl_data' 736*f59d82ffSelric 737*f59d82ffSelric * lib/hdb/ndbm.c: use `struct ndbm_db' everywhere. 738*f59d82ffSelric 739*f59d82ffSelricFri Feb 27 04:49:24 1998 Assar Westerlund <assar@sics.se> 740*f59d82ffSelric 741*f59d82ffSelric * lib/krb5/mk_priv.c (krb5_mk_priv): bump static limit to 10240. 742*f59d82ffSelric This should be fixed the correct way. 743*f59d82ffSelric 744*f59d82ffSelric * lib/kadm5/ipropd_master.c (check_acl:) truncate buf correctly 745*f59d82ffSelric (send_diffs): compare versions correctly 746*f59d82ffSelric (main): reorder handling of events 747*f59d82ffSelric 748*f59d82ffSelric * lib/kadm5/log.c (kadm5_log_previous): avoid bad type conversion 749*f59d82ffSelric 750*f59d82ffSelricThu Feb 26 02:22:35 1998 Assar Westerlund <assar@sics.se> 751*f59d82ffSelric 752*f59d82ffSelric * lib/kadm5/ipropd_{slave,master}.c: new files 753*f59d82ffSelric 754*f59d82ffSelric * lib/kadm5/log.c (kadm5_log_get_version): take an `fd' as 755*f59d82ffSelric argument 756*f59d82ffSelric 757*f59d82ffSelric * lib/krb5/krb5.h (krb5_context_data): `et_list' should be `struct 758*f59d82ffSelric et_list *' 759*f59d82ffSelric 760*f59d82ffSelric * aux/make-proto.pl: Should work with perl4 761*f59d82ffSelric 762*f59d82ffSelricMon Feb 16 17:20:22 1998 Johan Danielsson <joda@emma.pdc.kth.se> 763*f59d82ffSelric 764*f59d82ffSelric * lib/krb5/krb5_locl.h: Remove <error.h> (it gets included via 765*f59d82ffSelric {asn1,krb5}_err.h). 766*f59d82ffSelric 767*f59d82ffSelricThu Feb 12 03:28:40 1998 Assar Westerlund <assar@sics.se> 768*f59d82ffSelric 769*f59d82ffSelric * lib/krb5/get_in_tkt.c (_krb5_extract_ticket): if time difference 770*f59d82ffSelric is larger than max_skew, return KRB5KRB_AP_ERR_SKEW 771*f59d82ffSelric 772*f59d82ffSelric * lib/kadm5/log.c (get_version): globalize 773*f59d82ffSelric 774*f59d82ffSelric * lib/kadm5/kadm5_locl.h: include <sys/file.h> 775*f59d82ffSelric 776*f59d82ffSelric * lib/asn1/Makefile.am: add PA_KEY_INFO and PA_KEY_INFO_ENTRY 777*f59d82ffSelric 778*f59d82ffSelric * kdc/kerberos5.c (get_pa_etype_info): remove gcc-ism of 779*f59d82ffSelric initializing local struct in declaration. 780*f59d82ffSelric 781*f59d82ffSelricSat Jan 31 17:28:58 1998 Johan Danielsson <joda@emma.pdc.kth.se> 782*f59d82ffSelric 783*f59d82ffSelric * kdc/524.c: Use krb5_decode_EncTicketPart. 784*f59d82ffSelric 785*f59d82ffSelric * kdc/kerberos5.c: Check at runtime whether to use enctypes 786*f59d82ffSelric instead of keytypes. If so use the same value to encrypt ticket, 787*f59d82ffSelric and kdc-rep as well as `keytype' for session key. Fix some obvious 788*f59d82ffSelric bugs with the handling of additional tickets. 789*f59d82ffSelric 790*f59d82ffSelric * lib/krb5/rd_req.c: Use krb5_decode_EncTicketPart, and 791*f59d82ffSelric krb5_decode_Authenticator. 792*f59d82ffSelric 793*f59d82ffSelric * lib/krb5/rd_rep.c: Use krb5_decode_EncAPRepPart. 794*f59d82ffSelric 795*f59d82ffSelric * lib/krb5/rd_cred.c: Use krb5_decode_EncKrbCredPart. 796*f59d82ffSelric 797*f59d82ffSelric * lib/krb5/mk_rep.c: Make sure enc_part.etype is an encryption 798*f59d82ffSelric type, and not a key type. Use krb5_encode_EncAPRepPart. 799*f59d82ffSelric 800*f59d82ffSelric * lib/krb5/init_creds_pw.c: Use krb5_decode_PA_KEY_INFO. 801*f59d82ffSelric 802*f59d82ffSelric * lib/krb5/get_in_tkt.c: Use krb5_decode_Enc{AS,TGS}RepPart. 803*f59d82ffSelric 804*f59d82ffSelric * lib/krb5/get_for_creds.c: Use krb5_encode_EncKrbCredPart. 805*f59d82ffSelric 806*f59d82ffSelric * lib/krb5/get_cred.c: Use krb5_decode_Enc{AS,TGS}RepPart. 807*f59d82ffSelric 808*f59d82ffSelric * lib/krb5/build_auth.c: Use krb5_encode_Authenticator. 809*f59d82ffSelric 810*f59d82ffSelric * lib/krb5/codec.c: Enctype conversion stuff. 811*f59d82ffSelric 812*f59d82ffSelric * lib/krb5/context.c: Ignore KRB5_CONFIG if *not* running 813*f59d82ffSelric setuid. Get configuration for libdefaults ktype_is_etype, and 814*f59d82ffSelric default_etypes. 815*f59d82ffSelric 816*f59d82ffSelric * lib/krb5/encrypt.c: Add krb5_string_to_etype, rename 817*f59d82ffSelric krb5_convert_etype to krb5_decode_keytype, and add 818*f59d82ffSelric krb5_decode_keyblock. 819*f59d82ffSelric 820*f59d82ffSelricFri Jan 23 00:32:09 1998 Johan Danielsson <joda@emma.pdc.kth.se> 821*f59d82ffSelric 822*f59d82ffSelric * lib/krb5/{get_in_tkt,rd_req}.c: Use krb5_convert_etype. 823*f59d82ffSelric 824*f59d82ffSelric * lib/krb5/encrypt.c: Add krb5_convert_etype function - converts 825*f59d82ffSelric from protocol keytypes (that really are enctypes) to internal 826*f59d82ffSelric representation. 827*f59d82ffSelric 828*f59d82ffSelricThu Jan 22 21:24:36 1998 Johan Danielsson <joda@emma.pdc.kth.se> 829*f59d82ffSelric 830*f59d82ffSelric * lib/asn1/k5.asn1: Add PA-KEY-INFO structure to hold information 831*f59d82ffSelric on keys in the database; and also a new `pa-key-info' padata-type. 832*f59d82ffSelric 833*f59d82ffSelric * kdc/kerberos5.c: If pre-authentication fails, return a list of 834*f59d82ffSelric keytypes, salttypes, and salts. 835*f59d82ffSelric 836*f59d82ffSelric * lib/krb5/init_creds_pw.c: Add better support for 837*f59d82ffSelric pre-authentication, by looking at hints from the KDC. 838*f59d82ffSelric 839*f59d82ffSelric * lib/krb5/get_in_tkt.c: Add better support for specifying what 840*f59d82ffSelric pre-authentication to use. 841*f59d82ffSelric 842*f59d82ffSelric * lib/krb5/str2key.c: Merge entries for KEYTYPE_DES and 843*f59d82ffSelric KEYTYPE_DES_AFS3. 844*f59d82ffSelric 845*f59d82ffSelric * lib/krb5/krb5.h: Add pre-authentication structures. 846*f59d82ffSelric 847*f59d82ffSelric * kdc/connect.c: Don't fail if realloc(X, 0) returns NULL. 848*f59d82ffSelric 849*f59d82ffSelricWed Jan 21 06:20:40 1998 Assar Westerlund <assar@sics.se> 850*f59d82ffSelric 851*f59d82ffSelric * lib/kadm5/init_s.c (kadm5_s_init_with_password_ctx): initialize 852*f59d82ffSelric `log_context.socket_name' and `log_context.socket_fd' 853*f59d82ffSelric 854*f59d82ffSelric * lib/kadm5/log.c (kadm5_log_flush): send a unix domain datagram 855*f59d82ffSelric to inform the possible running ipropd of an update. 856*f59d82ffSelric 857*f59d82ffSelricWed Jan 21 01:34:09 1998 Johan Danielsson <joda@emma.pdc.kth.se> 858*f59d82ffSelric 859*f59d82ffSelric * lib/krb5/get_in_tkt.c: Return error-packet to caller. 860*f59d82ffSelric 861*f59d82ffSelric * lib/krb5/free.c (krb5_free_kdc_rep): Free krb5_kdc_rep->error. 862*f59d82ffSelric 863*f59d82ffSelric * kdc/kerberos5.c: Add some support for using enctypes instead of 864*f59d82ffSelric keytypes. 865*f59d82ffSelric 866*f59d82ffSelric * lib/krb5/get_cred.c: Fixes to send authorization-data to the 867*f59d82ffSelric KDC. 868*f59d82ffSelric 869*f59d82ffSelric * lib/krb5/build_auth.c: Only generate local subkey if there is 870*f59d82ffSelric none. 871*f59d82ffSelric 872*f59d82ffSelric * lib/krb5/krb5.h: Add krb5_authdata type. 873*f59d82ffSelric 874*f59d82ffSelric * lib/krb5/auth_context.c: Add 875*f59d82ffSelric krb5_auth_con_set{,localsub,remotesub}key. 876*f59d82ffSelric 877*f59d82ffSelric * lib/krb5/init_creds_pw.c: Return some error if prompter 878*f59d82ffSelric functions return failure. 879*f59d82ffSelric 880*f59d82ffSelricWed Jan 21 01:16:13 1998 Assar Westerlund <assar@sics.se> 881*f59d82ffSelric 882*f59d82ffSelric * kpasswd/kpasswd.c: detect bad password. use krb5_err. 883*f59d82ffSelric 884*f59d82ffSelric * kadmin/util.c (edit_entry): remove unused variables 885*f59d82ffSelric 886*f59d82ffSelricTue Jan 20 22:58:31 1998 Assar Westerlund <assar@sics.se> 887*f59d82ffSelric 888*f59d82ffSelric * kuser/kinit.c: rename `-s' to `-S' to be MIT-compatible. 889*f59d82ffSelric 890*f59d82ffSelric * lib/kadm5/kadm5_locl.h: add kadm5_log_context and 891*f59d82ffSelric kadm5_log*-functions 892*f59d82ffSelric 893*f59d82ffSelric * lib/kadm5/create_s.c (kadm5_s_create_principal): add change to 894*f59d82ffSelric log 895*f59d82ffSelric 896*f59d82ffSelric * lib/kadm5/rename_s.c (kadm5_s_rename_principal): add change to 897*f59d82ffSelric log 898*f59d82ffSelric 899*f59d82ffSelric * lib/kadm5/init_s.c (kadm5_s_init_with_password_ctx): initialize 900*f59d82ffSelric log_context 901*f59d82ffSelric 902*f59d82ffSelric * lib/kadm5/delete_s.c (kadm5_s_delete_principal): add change to 903*f59d82ffSelric log 904*f59d82ffSelric 905*f59d82ffSelric * lib/kadm5/modify_s.c (kadm5_s_modify_principal): add change to 906*f59d82ffSelric log 907*f59d82ffSelric 908*f59d82ffSelric * lib/kadm5/randkey_s.c (kadm5_s_randkey_principal): add change to 909*f59d82ffSelric log 910*f59d82ffSelric 911*f59d82ffSelric * lib/kadm5/chpass_s.c (kadm5_s_chpass_principal): add change to 912*f59d82ffSelric log 913*f59d82ffSelric 914*f59d82ffSelric * lib/kadm5/Makefile.am: add log.c, dump_log and replay_log 915*f59d82ffSelric 916*f59d82ffSelric * lib/kadm5/replay_log.c: new file 917*f59d82ffSelric 918*f59d82ffSelric * lib/kadm5/dump_log.c: new file 919*f59d82ffSelric 920*f59d82ffSelric * lib/kadm5/log.c: new file 921*f59d82ffSelric 922*f59d82ffSelric * lib/krb5/str2key.c (get_str): initialize pad space to zero 923*f59d82ffSelric 924*f59d82ffSelric * lib/krb5/config_file.c (krb5_config_vget_next): handle c == NULL 925*f59d82ffSelric 926*f59d82ffSelric * kpasswd/kpasswdd.c: rewritten to use the kadm5 API 927*f59d82ffSelric 928*f59d82ffSelric * kpasswd/Makefile.am: link with kadm5srv 929*f59d82ffSelric 930*f59d82ffSelric * kdc/kerberos5.c (tgs_rep): initialize `i' 931*f59d82ffSelric 932*f59d82ffSelric * kadmin/kadmind.c (main): use kadm5_server_{send,recv}_sp 933*f59d82ffSelric 934*f59d82ffSelric * include/Makefile.am: added admin.h 935*f59d82ffSelric 936*f59d82ffSelricSun Jan 18 01:41:34 1998 Johan Danielsson <joda@blubb.pdc.kth.se> 937*f59d82ffSelric 938*f59d82ffSelric * lib/asn1/gen_copy.c: Don't return ENOMEM if allocating 0 bytes. 939*f59d82ffSelric 940*f59d82ffSelric * lib/krb5/mcache.c (mcc_store_cred): restore linked list if 941*f59d82ffSelric copy_creds fails. 942*f59d82ffSelric 943*f59d82ffSelricTue Jan 6 04:17:56 1998 Assar Westerlund <assar@sics.se> 944*f59d82ffSelric 945*f59d82ffSelric * lib/kadm5/server.c: add kadm5_server_{send,recv}{,_sp} 946*f59d82ffSelric 947*f59d82ffSelric * lib/kadm5/marshall.c: add kadm5_{store,ret}_principal_ent_mask. 948*f59d82ffSelric 949*f59d82ffSelric * lib/kadm5/init_c.c (kadm5_c_init_with_password_ctx): use 950*f59d82ffSelric krb5_getportbyname 951*f59d82ffSelric 952*f59d82ffSelric * kadmin/kadmind.c (main): htons correctly. 953*f59d82ffSelric moved kadm5_server_{recv,send} 954*f59d82ffSelric 955*f59d82ffSelric * kadmin/kadmin.c (main): only set admin_server if explicitly 956*f59d82ffSelric given 957*f59d82ffSelric 958*f59d82ffSelricMon Jan 5 23:34:44 1998 Johan Danielsson <joda@emma.pdc.kth.se> 959*f59d82ffSelric 960*f59d82ffSelric * lib/hdb/ndbm.c: Implement locking of database. 961*f59d82ffSelric 962*f59d82ffSelric * kdc/kerberos5.c: Process AuthorizationData. 963*f59d82ffSelric 964*f59d82ffSelricSat Jan 3 22:07:07 1998 Johan Danielsson <joda@blubb.pdc.kth.se> 965*f59d82ffSelric 966*f59d82ffSelric * kdc/string2key.c: Use AFS string-to-key from libkrb5. 967*f59d82ffSelric 968*f59d82ffSelric * lib/krb5/get_in_tkt.c: Handle pa-afs3-salt case. 969*f59d82ffSelric 970*f59d82ffSelric * lib/krb5/krb5.h: Add value for AFS salts. 971*f59d82ffSelric 972*f59d82ffSelric * lib/krb5/str2key.c: Add support for AFS string-to-key. 973*f59d82ffSelric 974*f59d82ffSelric * lib/kadm5/rename_s.c: Use correct salt. 975*f59d82ffSelric 976*f59d82ffSelric * lib/kadm5/ent_setup.c: Always enable client. Only set max-life 977*f59d82ffSelric and max-renew if != 0. 978*f59d82ffSelric 979*f59d82ffSelric * lib/krb5/config_file.c: Add context to all krb5_config_*get_*. 980*f59d82ffSelric 981*f59d82ffSelricThu Dec 25 17:03:25 1997 Assar Westerlund <assar@sics.se> 982*f59d82ffSelric 983*f59d82ffSelric * kadmin/ank.c (ank): don't zero password if --random-key was 984*f59d82ffSelric given. 985*f59d82ffSelric 986*f59d82ffSelricTue Dec 23 01:56:45 1997 Assar Westerlund <assar@sics.se> 987*f59d82ffSelric 988*f59d82ffSelric * Release 0.0m 989*f59d82ffSelric 990*f59d82ffSelric * lib/kadm5/ent_setup.c (attr_to_flags): try to set `client' 991*f59d82ffSelric 992*f59d82ffSelric * kadmin/util.c (edit_time): only set mask if != 0 993*f59d82ffSelric (edit_attributes): only set mask if != 0 994*f59d82ffSelric 995*f59d82ffSelric * kadmin/init.c (init): create `default' 996*f59d82ffSelric 997*f59d82ffSelricSun Dec 21 09:44:05 1997 Assar Westerlund <assar@sics.se> 998*f59d82ffSelric 999*f59d82ffSelric * kadmin/util.c (str2deltat, str2attr, get_deltat): return value 1000*f59d82ffSelric as pointer and have return value indicate success. 1001*f59d82ffSelric 1002*f59d82ffSelric (get_response): check NULL from fgets 1003*f59d82ffSelric 1004*f59d82ffSelric (edit_time, edit_attributes): new functions for reading values and 1005*f59d82ffSelric offering list of answers on '?' 1006*f59d82ffSelric 1007*f59d82ffSelric (edit_entry): use edit_time and edit_attributes 1008*f59d82ffSelric 1009*f59d82ffSelric * kadmin/ank.c (add_new_key): test the return value of 1010*f59d82ffSelric `krb5_parse_name' 1011*f59d82ffSelric 1012*f59d82ffSelric * kdc/kerberos5.c (tgs_check_authenticator): RFC1510 doesn't say 1013*f59d82ffSelric that the checksum has to be keyed, even though later drafts do. 1014*f59d82ffSelric Accept unkeyed checksums to be compatible with MIT. 1015*f59d82ffSelric 1016*f59d82ffSelric * kadmin/kadmin_locl.h: add some prototypes. 1017*f59d82ffSelric 1018*f59d82ffSelric * kadmin/util.c (edit_entry): return a value 1019*f59d82ffSelric 1020*f59d82ffSelric * appl/afsutil/afslog.c (main): return a exit code. 1021*f59d82ffSelric 1022*f59d82ffSelric * lib/krb5/get_cred.c (init_tgs_req): use krb5_keytype_to_enctypes 1023*f59d82ffSelric 1024*f59d82ffSelric * lib/krb5/encrypt.c (krb5_keytype_to_enctypes): new function. 1025*f59d82ffSelric 1026*f59d82ffSelric * lib/krb5/build_auth.c (krb5_build_authenticator): use 1027*f59d82ffSelric krb5_{free,copy}_keyblock instead of the _contents versions 1028*f59d82ffSelric 1029*f59d82ffSelricFri Dec 12 14:20:58 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1030*f59d82ffSelric 1031*f59d82ffSelric * lib/krb5/{mk,rd}_priv.c: fix check for local/remote subkey 1032*f59d82ffSelric 1033*f59d82ffSelricMon Dec 8 08:48:09 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1034*f59d82ffSelric 1035*f59d82ffSelric * lib/krb5/context.c: don't look at KRB5_CONFIG if running setuid 1036*f59d82ffSelric 1037*f59d82ffSelricSat Dec 6 10:09:40 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1038*f59d82ffSelric 1039*f59d82ffSelric * lib/krb5/keyblock.c (krb5_free_keyblock): check for NULL 1040*f59d82ffSelric keyblock 1041*f59d82ffSelric 1042*f59d82ffSelricSat Dec 6 08:26:10 1997 Assar Westerlund <assar@sics.se> 1043*f59d82ffSelric 1044*f59d82ffSelric * Release 0.0l 1045*f59d82ffSelric 1046*f59d82ffSelricThu Dec 4 03:38:12 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1047*f59d82ffSelric 1048*f59d82ffSelric * lib/krb5/send_to_kdc.c: Add TCP client support. 1049*f59d82ffSelric 1050*f59d82ffSelric * lib/krb5/store.c: Add k_{put,get}_int. 1051*f59d82ffSelric 1052*f59d82ffSelric * kadmin/ank.c: Set initial kvno to 1. 1053*f59d82ffSelric 1054*f59d82ffSelric * kdc/connect.c: Send version 5 TCP-reply as length+data. 1055*f59d82ffSelric 1056*f59d82ffSelricSat Nov 29 07:10:11 1997 Assar Westerlund <assar@sics.se> 1057*f59d82ffSelric 1058*f59d82ffSelric * lib/krb5/rd_req.c (krb5_rd_req): fixed obvious bug 1059*f59d82ffSelric 1060*f59d82ffSelric * kdc/kaserver.c (create_reply_ticket): use a random nonce in the 1061*f59d82ffSelric reply packet. 1062*f59d82ffSelric 1063*f59d82ffSelric * kdc/connect.c (init_sockets): less reallocing. 1064*f59d82ffSelric 1065*f59d82ffSelric * **/*.c: changed `struct fd_set' to `fd_set' 1066*f59d82ffSelric 1067*f59d82ffSelricSat Nov 29 05:12:01 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1068*f59d82ffSelric 1069*f59d82ffSelric * lib/krb5/get_default_principal.c: More guessing. 1070*f59d82ffSelric 1071*f59d82ffSelricThu Nov 20 02:55:09 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1072*f59d82ffSelric 1073*f59d82ffSelric * lib/krb5/rd_req.c: Use principal from ticket if no server is 1074*f59d82ffSelric given. 1075*f59d82ffSelric 1076*f59d82ffSelricTue Nov 18 02:58:02 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1077*f59d82ffSelric 1078*f59d82ffSelric * kuser/klist.c: Use krb5_err*(). 1079*f59d82ffSelric 1080*f59d82ffSelricSun Nov 16 11:57:43 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1081*f59d82ffSelric 1082*f59d82ffSelric * kadmin/kadmin.c: Add local `init', `load', `dump', and `merge' 1083*f59d82ffSelric commands. 1084*f59d82ffSelric 1085*f59d82ffSelricSun Nov 16 02:52:20 1997 Assar Westerlund <assar@sics.se> 1086*f59d82ffSelric 1087*f59d82ffSelric * lib/krb5/mk_req_ext.c (krb5_mk_req_ext): figure out the correct 1088*f59d82ffSelric `enctype' 1089*f59d82ffSelric 1090*f59d82ffSelric * lib/krb5/mk_req.c (krb5_mk_req): use `(*auth_context)->enctype' 1091*f59d82ffSelric if set. 1092*f59d82ffSelric 1093*f59d82ffSelric * lib/krb5/get_cred.c: handle the case of a specific keytype 1094*f59d82ffSelric 1095*f59d82ffSelric * lib/krb5/build_auth.c (krb5_build_authenticator): enctype as a 1096*f59d82ffSelric parameter instead of guessing it. 1097*f59d82ffSelric 1098*f59d82ffSelric * lib/krb5/build_ap_req.c (krb5_build_ap_req): new parameter 1099*f59d82ffSelric `enctype' 1100*f59d82ffSelric 1101*f59d82ffSelric * appl/test/common.c (common_setup): don't use `optarg' 1102*f59d82ffSelric 1103*f59d82ffSelric * lib/krb5/keytab.c (krb5_kt_copy_entry_contents): new function 1104*f59d82ffSelric (krb5_kt_get_entry): retrieve the latest version if kvno == 0 1105*f59d82ffSelric 1106*f59d82ffSelric * lib/krb5/krb5.h: define KRB5_TC_MATCH_KEYTYPE 1107*f59d82ffSelric 1108*f59d82ffSelric * lib/krb5/creds.c (krb5_compare_creds): check for 1109*f59d82ffSelric KRB5_TC_MATCH_KEYTYPE 1110*f59d82ffSelric 1111*f59d82ffSelric * lib/gssapi/8003.c (gssapi_krb5_create_8003_checksum): remove 1112*f59d82ffSelric unused variable 1113*f59d82ffSelric 1114*f59d82ffSelric * lib/krb5/creds.c (krb5_copy_creds_contents): only free the 1115*f59d82ffSelric contents if we fail. 1116*f59d82ffSelric 1117*f59d82ffSelricSun Nov 16 00:32:48 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1118*f59d82ffSelric 1119*f59d82ffSelric * kpasswd/kpasswdd.c: Get password expiration time from config 1120*f59d82ffSelric file. 1121*f59d82ffSelric 1122*f59d82ffSelric * lib/asn1/{der_get,gen_decode}.c: Allow passing NULL size. 1123*f59d82ffSelric 1124*f59d82ffSelricWed Nov 12 02:35:57 1997 Assar Westerlund <assar@sics.se> 1125*f59d82ffSelric 1126*f59d82ffSelric * lib/krb5/get_for_creds.c (krb5_get_forwarded_creds): 1127*f59d82ffSelric restructured and fixed. 1128*f59d82ffSelric 1129*f59d82ffSelric * lib/krb5/addr_families.c (krb5_h_addr2addr): new function. 1130*f59d82ffSelric 1131*f59d82ffSelricWed Nov 12 01:36:01 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1132*f59d82ffSelric 1133*f59d82ffSelric * lib/krb5/get_addrs.c: Fall back to hostname's addresses if other 1134*f59d82ffSelric methods fail. 1135*f59d82ffSelric 1136*f59d82ffSelricTue Nov 11 22:22:12 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1137*f59d82ffSelric 1138*f59d82ffSelric * kadmin/kadmin.c: Add `-l' flag to use local database. 1139*f59d82ffSelric 1140*f59d82ffSelric * lib/kadm5/acl.c: Use KADM5_PRIV_ALL. 1141*f59d82ffSelric 1142*f59d82ffSelric * lib/kadm5: Use function pointer trampoline for easier dual use 1143*f59d82ffSelric (without radiation-hardening capability). 1144*f59d82ffSelric 1145*f59d82ffSelricTue Nov 11 05:15:22 1997 Assar Westerlund <assar@sics.se> 1146*f59d82ffSelric 1147*f59d82ffSelric * lib/krb5/encrypt.c (krb5_etype_valid): new function 1148*f59d82ffSelric 1149*f59d82ffSelric * lib/krb5/creds.c (krb5_copy_creds_contents): zero target 1150*f59d82ffSelric 1151*f59d82ffSelric * lib/krb5/context.c (valid_etype): remove 1152*f59d82ffSelric 1153*f59d82ffSelric * lib/krb5/checksum.c: remove dead code 1154*f59d82ffSelric 1155*f59d82ffSelric * lib/krb5/changepw.c (send_request): free memory on error. 1156*f59d82ffSelric 1157*f59d82ffSelric * lib/krb5/build_ap_req.c (krb5_build_ap_req): check return value 1158*f59d82ffSelric from malloc. 1159*f59d82ffSelric 1160*f59d82ffSelric * lib/krb5/auth_context.c (krb5_auth_con_init): free memory on 1161*f59d82ffSelric failure correctly. 1162*f59d82ffSelric (krb5_auth_con_setaddrs_from_fd): return error correctly. 1163*f59d82ffSelric 1164*f59d82ffSelric * lib/krb5/get_in_tkt_with_{keytab,skey}.c: new files 1165*f59d82ffSelric 1166*f59d82ffSelricTue Nov 11 02:53:19 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1167*f59d82ffSelric 1168*f59d82ffSelric * lib/krb5/auth_context.c: Implement auth_con_setuserkey. 1169*f59d82ffSelric 1170*f59d82ffSelric * lib/gssapi/init_sec_context.c: Use krb5_auth_con_getkey. 1171*f59d82ffSelric 1172*f59d82ffSelric * lib/krb5/keyblock.c: Rename krb5_free_keyblock to 1173*f59d82ffSelric krb5_free_keyblock_contents, and reimplement krb5_free_keyblock. 1174*f59d82ffSelric 1175*f59d82ffSelric * lib/krb5/rd_req.c: Use auth_context->keyblock if 1176*f59d82ffSelric ap_options.use_session_key. 1177*f59d82ffSelric 1178*f59d82ffSelricTue Nov 11 02:35:17 1997 Assar Westerlund <assar@sics.se> 1179*f59d82ffSelric 1180*f59d82ffSelric * lib/krb5/net_{read,write}.c: change `int fd' to `void *p_fd'. 1181*f59d82ffSelric fix callers. 1182*f59d82ffSelric 1183*f59d82ffSelric * lib/krb5/krb5_locl.h: include <asn1.h> and <der.h> 1184*f59d82ffSelric 1185*f59d82ffSelric * include/Makefile.am: add xdbm.h 1186*f59d82ffSelric 1187*f59d82ffSelricTue Nov 11 01:58:22 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1188*f59d82ffSelric 1189*f59d82ffSelric * lib/krb5/get_cred.c: Implement krb5_get_cred_from_kdc. 1190*f59d82ffSelric 1191*f59d82ffSelricMon Nov 10 22:41:53 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1192*f59d82ffSelric 1193*f59d82ffSelric * lib/krb5/ticket.c: Implement copy_ticket. 1194*f59d82ffSelric 1195*f59d82ffSelric * lib/krb5/get_in_tkt.c: Make `options' parameter MIT-compatible. 1196*f59d82ffSelric 1197*f59d82ffSelric * lib/krb5/data.c: Implement free_data and copy_data. 1198*f59d82ffSelric 1199*f59d82ffSelricSun Nov 9 02:17:27 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1200*f59d82ffSelric 1201*f59d82ffSelric * lib/kadm5: Implement kadm5_get_privs, and kadm5_get_principals. 1202*f59d82ffSelric 1203*f59d82ffSelric * kadmin/kadmin.c: Add get_privileges function. 1204*f59d82ffSelric 1205*f59d82ffSelric * lib/kadm5: Rename KADM5_ACL_* -> KADM5_PRIV_* to conform with 1206*f59d82ffSelric specification. 1207*f59d82ffSelric 1208*f59d82ffSelric * kdc/connect.c: Exit if no sockets could be bound. 1209*f59d82ffSelric 1210*f59d82ffSelric * kadmin/kadmind.c: Check return value from krb5_net_read(). 1211*f59d82ffSelric 1212*f59d82ffSelric * lib/kadm5,kadmin: Fix memory leaks. 1213*f59d82ffSelric 1214*f59d82ffSelricFri Nov 7 02:45:26 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1215*f59d82ffSelric 1216*f59d82ffSelric * lib/kadm5/create_s.c: Get some default values from `default' 1217*f59d82ffSelric principal. 1218*f59d82ffSelric 1219*f59d82ffSelric * lib/kadm5/ent_setup.c: Add optional default entry to get some 1220*f59d82ffSelric values from. 1221*f59d82ffSelric 1222*f59d82ffSelricThu Nov 6 00:20:41 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1223*f59d82ffSelric 1224*f59d82ffSelric * lib/error/compile_et.awk: Remove generated destroy_*_error_table 1225*f59d82ffSelric prototype 1226*f59d82ffSelric 1227*f59d82ffSelric * kadmin/kadmind.c: Crude admin server. 1228*f59d82ffSelric 1229*f59d82ffSelric * kadmin/kadmin.c: Update to use remote protocol. 1230*f59d82ffSelric 1231*f59d82ffSelric * kadmin/get.c: Fix principal formatting. 1232*f59d82ffSelric 1233*f59d82ffSelric * lib/kadm5: Add client support. 1234*f59d82ffSelric 1235*f59d82ffSelric * lib/kadm5/error.c: Error code mapping. 1236*f59d82ffSelric 1237*f59d82ffSelric * lib/kadm5/server.c: Kadmind support function. 1238*f59d82ffSelric 1239*f59d82ffSelric * lib/kadm5/marshall.c: Kadm5 marshalling. 1240*f59d82ffSelric 1241*f59d82ffSelric * lib/kadm5/acl.c: Simple acl system. 1242*f59d82ffSelric 1243*f59d82ffSelric * lib/kadm5/kadm5_locl.h: Add client stuff. 1244*f59d82ffSelric 1245*f59d82ffSelric * lib/kadm5/init_s.c: Initialize acl. 1246*f59d82ffSelric 1247*f59d82ffSelric * lib/kadm5/*: Return values. 1248*f59d82ffSelric 1249*f59d82ffSelric * lib/kadm5/create_s.c: Correct kvno. 1250*f59d82ffSelric 1251*f59d82ffSelricWed Nov 5 22:06:50 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1252*f59d82ffSelric 1253*f59d82ffSelric * lib/krb5/log.c: Fix parsing of log destinations. 1254*f59d82ffSelric 1255*f59d82ffSelricMon Nov 3 20:33:55 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1256*f59d82ffSelric 1257*f59d82ffSelric * lib/krb5/principal.c: Reduce number of reallocs in unparse_name. 1258*f59d82ffSelric 1259*f59d82ffSelricSat Nov 1 01:40:53 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1260*f59d82ffSelric 1261*f59d82ffSelric * kadmin: Simple kadmin utility. 1262*f59d82ffSelric 1263*f59d82ffSelric * admin/ktutil.c: Print keytype. 1264*f59d82ffSelric 1265*f59d82ffSelric * lib/kadm5/get_s.c: Set correct n_key_data. 1266*f59d82ffSelric 1267*f59d82ffSelric * lib/kadm5/init_s.c: Add kadm5_s_init_with_password_ctx. Use 1268*f59d82ffSelric master key. 1269*f59d82ffSelric 1270*f59d82ffSelric * lib/kadm5/destroy_s.c: Check for allocated context. 1271*f59d82ffSelric 1272*f59d82ffSelric * lib/kadm5/{create,chpass}_s.c: Use _kadm5_set_keys(). 1273*f59d82ffSelric 1274*f59d82ffSelricSat Nov 1 00:21:00 1997 Assar Westerlund <assar@sics.se> 1275*f59d82ffSelric 1276*f59d82ffSelric * configure.in: test for readv, writev 1277*f59d82ffSelric 1278*f59d82ffSelricWed Oct 29 23:41:26 1997 Assar Westerlund <assar@sics.se> 1279*f59d82ffSelric 1280*f59d82ffSelric * lib/krb5/warn.c (_warnerr): handle the case of an illegal error 1281*f59d82ffSelric code 1282*f59d82ffSelric 1283*f59d82ffSelric * kdc/kerberos5.c (encode_reply): return success 1284*f59d82ffSelric 1285*f59d82ffSelricWed Oct 29 18:01:59 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1286*f59d82ffSelric 1287*f59d82ffSelric * kdc/kerberos5.c (find_etype) Return correct index of selected 1288*f59d82ffSelric etype. 1289*f59d82ffSelric 1290*f59d82ffSelricWed Oct 29 04:07:06 1997 Assar Westerlund <assar@sics.se> 1291*f59d82ffSelric 1292*f59d82ffSelric * Release 0.0k 1293*f59d82ffSelric 1294*f59d82ffSelric * lib/krb5/context.c (krb5_init_context): support `KRB5_CONFIG' 1295*f59d82ffSelric environment variable 1296*f59d82ffSelric 1297*f59d82ffSelric * *: use the roken_get*-macros from roken.h for the benefit of 1298*f59d82ffSelric Crays. 1299*f59d82ffSelric 1300*f59d82ffSelric * configure.in: add --{enable,disable}-otp. check for compatible 1301*f59d82ffSelric prototypes for gethostbyname, gethostbyaddr, getservbyname, and 1302*f59d82ffSelric openlog (they have strange prototypes on Crays) 1303*f59d82ffSelric 1304*f59d82ffSelric * acinclude.m4: new macro `AC_PROTO_COMPAT' 1305*f59d82ffSelric 1306*f59d82ffSelricTue Oct 28 00:11:22 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1307*f59d82ffSelric 1308*f59d82ffSelric * kdc/connect.c: Log bad requests. 1309*f59d82ffSelric 1310*f59d82ffSelric * kdc/kerberos5.c: Move stuff that's in common between as_rep and 1311*f59d82ffSelric tgs_rep to separate functions. 1312*f59d82ffSelric 1313*f59d82ffSelric * kdc/kerberos5.c: Fix user-to-user authentication. 1314*f59d82ffSelric 1315*f59d82ffSelric * lib/krb5/get_cred.c: Some restructuring of krb5_get_credentials: 1316*f59d82ffSelric - add a kdc-options argument to krb5_get_credentials, and rename 1317*f59d82ffSelric it to krb5_get_credentials_with_flags 1318*f59d82ffSelric - honour the KRB5_GC_CACHED, and KRB5_GC_USER_USER options 1319*f59d82ffSelric - add some more user-to-user glue 1320*f59d82ffSelric 1321*f59d82ffSelric * lib/krb5/rd_req.c: Move parts of krb5_verify_ap_req into a new 1322*f59d82ffSelric function, krb5_decrypt_ticket, so it is easier to decrypt and 1323*f59d82ffSelric check a ticket without having an ap-req. 1324*f59d82ffSelric 1325*f59d82ffSelric * lib/krb5/krb5.h: Add KRB5_GC_CACHED, and KRB5_GC_USER_USER 1326*f59d82ffSelric flags. 1327*f59d82ffSelric 1328*f59d82ffSelric * lib/krb5/crc.c (crc_init_table): Check if table is already 1329*f59d82ffSelric inited. 1330*f59d82ffSelric 1331*f59d82ffSelricSun Oct 26 04:51:02 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1332*f59d82ffSelric 1333*f59d82ffSelric * lib/asn1/der_get.c (der_get_length, fix_dce): Special-case 1334*f59d82ffSelric indefinite encoding. 1335*f59d82ffSelric 1336*f59d82ffSelric * lib/asn1/gen_glue.c (generate_units): Check for empty 1337*f59d82ffSelric member-list. 1338*f59d82ffSelric 1339*f59d82ffSelricSat Oct 25 07:24:57 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1340*f59d82ffSelric 1341*f59d82ffSelric * lib/error/compile_et.awk: Allow specifying table-base. 1342*f59d82ffSelric 1343*f59d82ffSelricTue Oct 21 20:21:40 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1344*f59d82ffSelric 1345*f59d82ffSelric * kdc/kerberos5.c: Check version number of krbtgt. 1346*f59d82ffSelric 1347*f59d82ffSelricMon Oct 20 01:14:53 1997 Assar Westerlund <assar@sics.se> 1348*f59d82ffSelric 1349*f59d82ffSelric * lib/krb5/prompter_posix.c (krb5_prompter_posix): implement the 1350*f59d82ffSelric case of unhidden prompts. 1351*f59d82ffSelric 1352*f59d82ffSelric * lib/krb5/str2key.c (string_to_key_internal): return error 1353*f59d82ffSelric instead of aborting. always free memory 1354*f59d82ffSelric 1355*f59d82ffSelric * admin/ktutil.c: add `help' command 1356*f59d82ffSelric 1357*f59d82ffSelric * admin/kdb_edit.c: implement new commands: add_random_key(ark), 1358*f59d82ffSelric change_password(cpw), change_random_key(crk) 1359*f59d82ffSelric 1360*f59d82ffSelricThu Oct 16 05:16:36 1997 Assar Westerlund <assar@sics.se> 1361*f59d82ffSelric 1362*f59d82ffSelric * kpasswd/kpasswdd.c: change all the keys in the database 1363*f59d82ffSelric 1364*f59d82ffSelric * kdc: removed all unsealing, now done by the hdb layer 1365*f59d82ffSelric 1366*f59d82ffSelric * lib/hdb/hdb.c: new functions `hdb_create', `hdb_set_master_key' 1367*f59d82ffSelric and `hdb_clear_master_key' 1368*f59d82ffSelric 1369*f59d82ffSelric * admin/misc.c: removed 1370*f59d82ffSelric 1371*f59d82ffSelricWed Oct 15 22:47:31 1997 Assar Westerlund <assar@sics.se> 1372*f59d82ffSelric 1373*f59d82ffSelric * kuser/klist.c: print year as YYYY iff verbose 1374*f59d82ffSelric 1375*f59d82ffSelricWed Oct 15 20:02:13 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1376*f59d82ffSelric 1377*f59d82ffSelric * kuser/klist.c: print etype from ticket 1378*f59d82ffSelric 1379*f59d82ffSelricMon Oct 13 17:18:57 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1380*f59d82ffSelric 1381*f59d82ffSelric * Release 0.0j 1382*f59d82ffSelric 1383*f59d82ffSelric * lib/krb5/get_cred.c: Get the subkey from mk_req so it can be 1384*f59d82ffSelric used to decrypt the reply from DCE secds. 1385*f59d82ffSelric 1386*f59d82ffSelric * lib/krb5/auth_context.c: Add {get,set}enctype. 1387*f59d82ffSelric 1388*f59d82ffSelric * lib/krb5/get_cred.c: Fix for DCE secd. 1389*f59d82ffSelric 1390*f59d82ffSelric * lib/krb5/store.c: Store keytype twice, as MIT does. 1391*f59d82ffSelric 1392*f59d82ffSelric * lib/krb5/get_in_tkt.c: Use etype from reply. 1393*f59d82ffSelric 1394*f59d82ffSelricFri Oct 10 00:39:48 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1395*f59d82ffSelric 1396*f59d82ffSelric * kdc/connect.c: check for leading '/' in http request 1397*f59d82ffSelric 1398*f59d82ffSelricTue Sep 30 21:50:18 1997 Assar Westerlund <assar@assaris.pdc.kth.se> 1399*f59d82ffSelric 1400*f59d82ffSelric * Release 0.0i 1401*f59d82ffSelric 1402*f59d82ffSelricMon Sep 29 15:58:43 1997 Assar Westerlund <assar@sics.se> 1403*f59d82ffSelric 1404*f59d82ffSelric * lib/krb5/rd_req.c (krb5_rd_req): redone because we don't know 1405*f59d82ffSelric the kvno or keytype before receiving the AP-REQ 1406*f59d82ffSelric 1407*f59d82ffSelric * lib/krb5/mk_safe.c (krb5_mk_safe): figure out what cksumtype to 1408*f59d82ffSelric use from the keytype. 1409*f59d82ffSelric 1410*f59d82ffSelric * lib/krb5/mk_req_ext.c (krb5_mk_req_extended): figure out what 1411*f59d82ffSelric cksumtype to use from the keytype. 1412*f59d82ffSelric 1413*f59d82ffSelric * lib/krb5/mk_priv.c (krb5_mk_priv): figure out what etype to use 1414*f59d82ffSelric from the keytype. 1415*f59d82ffSelric 1416*f59d82ffSelric * lib/krb5/keytab.c (krb5_kt_get_entry): check the keytype 1417*f59d82ffSelric 1418*f59d82ffSelric * lib/krb5/get_for_creds.c (krb5_get_forwarded_creds): figure out 1419*f59d82ffSelric what etype to use from the keytype. 1420*f59d82ffSelric 1421*f59d82ffSelric * lib/krb5/generate_seq_number.c (krb5_generate_seq_number): 1422*f59d82ffSelric handle other key types than DES 1423*f59d82ffSelric 1424*f59d82ffSelric * lib/krb5/encrypt.c (key_type): add `best_cksumtype' 1425*f59d82ffSelric (krb5_keytype_to_cksumtype): new function 1426*f59d82ffSelric 1427*f59d82ffSelric * lib/krb5/build_auth.c (krb5_build_authenticator): figure out 1428*f59d82ffSelric what etype to use from the keytype. 1429*f59d82ffSelric 1430*f59d82ffSelric * lib/krb5/auth_context.c (krb5_auth_con_init): set `cksumtype' 1431*f59d82ffSelric and `enctype' to 0 1432*f59d82ffSelric 1433*f59d82ffSelric * admin/extkeytab.c (ext_keytab): extract all keys 1434*f59d82ffSelric 1435*f59d82ffSelric * appl/telnet/telnet/commands.c: INET6_ADDRSTRLEN kludge 1436*f59d82ffSelric 1437*f59d82ffSelric * configure.in: check for <netinet6/in6.h>. check for -linet6 1438*f59d82ffSelric 1439*f59d82ffSelricTue Sep 23 03:00:53 1997 Assar Westerlund <assar@sics.se> 1440*f59d82ffSelric 1441*f59d82ffSelric * lib/krb5/encrypt.c: fix checksumtype for des3-cbc-sha1 1442*f59d82ffSelric 1443*f59d82ffSelric * lib/krb5/rd_safe.c: fix check for keyed and collision-proof 1444*f59d82ffSelric checksum 1445*f59d82ffSelric 1446*f59d82ffSelric * lib/krb5/context.c (valid_etype): remove hard-coded constants 1447*f59d82ffSelric (default_etypes): include DES3 1448*f59d82ffSelric 1449*f59d82ffSelric * kdc/kerberos5.c: fix check for keyed and collision-proof 1450*f59d82ffSelric checksum 1451*f59d82ffSelric 1452*f59d82ffSelric * admin/util.c (init_des_key, set_password): DES3 keys also 1453*f59d82ffSelric 1454*f59d82ffSelric * lib/krb/send_to_kdc.c (krb5_sendto_kdc): no data returned means 1455*f59d82ffSelric no contact? 1456*f59d82ffSelric 1457*f59d82ffSelric * lib/krb5/addr_families.c: fix typo in `ipv6_anyaddr' 1458*f59d82ffSelric 1459*f59d82ffSelricMon Sep 22 11:44:27 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1460*f59d82ffSelric 1461*f59d82ffSelric * kdc/kerberos5.c: Somewhat fix the etype usage. The list sent by 1462*f59d82ffSelric the client is used to select wich key to encrypt the kdc rep with 1463*f59d82ffSelric (in case of as-req), and with the server info to select the 1464*f59d82ffSelric session key type. The server key the ticket is encrypted is based 1465*f59d82ffSelric purely on the keys in the database. 1466*f59d82ffSelric 1467*f59d82ffSelric * kdc/string2key.c: Add keytype support. Default to version 5 1468*f59d82ffSelric keys. 1469*f59d82ffSelric 1470*f59d82ffSelric * lib/krb5/get_in_tkt.c: Fix a lot of etype/keytype misuse. 1471*f59d82ffSelric 1472*f59d82ffSelric * lib/krb5/encrypt.c: Add des3-cbc-md5, and des3-cbc-sha1. Add 1473*f59d82ffSelric many *_to_* functions. 1474*f59d82ffSelric 1475*f59d82ffSelric * lib/krb5/str2key.c: Add des3 string-to-key. Add ktype argument 1476*f59d82ffSelric to krb5_string_to_key(). 1477*f59d82ffSelric 1478*f59d82ffSelric * lib/krb5/checksum.c: Some cleanup, and added: 1479*f59d82ffSelric - rsa-md5-des3 1480*f59d82ffSelric - hmac-sha1-des3 1481*f59d82ffSelric - keyed and collision proof flags to each checksum method 1482*f59d82ffSelric - checksum<->string functions. 1483*f59d82ffSelric 1484*f59d82ffSelric * lib/krb5/generate_subkey.c: Use krb5_generate_random_keyblock. 1485*f59d82ffSelric 1486*f59d82ffSelricSun Sep 21 15:19:23 1997 Assar Westerlund <assar@sics.se> 1487*f59d82ffSelric 1488*f59d82ffSelric * kdc/connect.c: use new addr_families functions 1489*f59d82ffSelric 1490*f59d82ffSelric * kpasswd/kpasswdd.c: use new addr_families functions. Now works 1491*f59d82ffSelric over IPv6 1492*f59d82ffSelric 1493*f59d82ffSelric * kuser/klist.c: use correct symbols for address families 1494*f59d82ffSelric 1495*f59d82ffSelric * lib/krb5/sock_principal.c: use new addr_families functions 1496*f59d82ffSelric 1497*f59d82ffSelric * lib/krb5/send_to_kdc.c: use new addr_families functions 1498*f59d82ffSelric 1499*f59d82ffSelric * lib/krb5/krb5.h: add KRB5_ADDRESS_INET6 1500*f59d82ffSelric 1501*f59d82ffSelric * lib/krb5/get_addrs.c: use new addr_families functions 1502*f59d82ffSelric 1503*f59d82ffSelric * lib/krb5/changepw.c: use new addr_families functions. Now works 1504*f59d82ffSelric over IPv6 1505*f59d82ffSelric 1506*f59d82ffSelric * lib/krb5/auth_context.c: use new addr_families functions 1507*f59d82ffSelric 1508*f59d82ffSelric * lib/krb5/addr_families.c: new file 1509*f59d82ffSelric 1510*f59d82ffSelric * acconfig.h: AC_SOCKADDR_IN6 -> AC_STRUCT_SOCKADDR_IN6. Updated 1511*f59d82ffSelric uses. 1512*f59d82ffSelric 1513*f59d82ffSelric * acinclude.m4: new macro `AC_KRB_IPV6'. Use it. 1514*f59d82ffSelric 1515*f59d82ffSelricSat Sep 13 23:04:23 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1516*f59d82ffSelric 1517*f59d82ffSelric * kdc/hprop.c: Don't encrypt twice. Complain on non-convertable 1518*f59d82ffSelric principals. 1519*f59d82ffSelric 1520*f59d82ffSelricSat Sep 13 00:59:36 1997 Assar Westerlund <assar@sics.se> 1521*f59d82ffSelric 1522*f59d82ffSelric * Release 0.0h 1523*f59d82ffSelric 1524*f59d82ffSelric * appl/telnet/telnet/commands.c: AF_INET6 support 1525*f59d82ffSelric 1526*f59d82ffSelric * admin/misc.c: new file 1527*f59d82ffSelric 1528*f59d82ffSelric * lib/krb5/context.c: new configuration variable `max_retries' 1529*f59d82ffSelric 1530*f59d82ffSelric * lib/krb5/get_addrs.c: fixes and better #ifdef's 1531*f59d82ffSelric 1532*f59d82ffSelric * lib/krb5/config_file.c: implement krb5_config_get_int 1533*f59d82ffSelric 1534*f59d82ffSelric * lib/krb5/auth_context.c, send_to_kdc.c, sock_principal.c: 1535*f59d82ffSelric AF_INET6 support 1536*f59d82ffSelric 1537*f59d82ffSelric * kuser/klist.c: support for printing IPv6-addresses 1538*f59d82ffSelric 1539*f59d82ffSelric * kdc/connect.c: support AF_INET6 1540*f59d82ffSelric 1541*f59d82ffSelric * configure.in: test for gethostbyname2 and struct sockaddr_in6 1542*f59d82ffSelric 1543*f59d82ffSelricThu Sep 11 07:25:28 1997 Assar Westerlund <assar@sics.se> 1544*f59d82ffSelric 1545*f59d82ffSelric * lib/asn1/k5.asn1: Use `METHOD-DATA' instead of `SEQUENCE OF 1546*f59d82ffSelric PA-DATA' 1547*f59d82ffSelric 1548*f59d82ffSelricWed Sep 10 21:20:17 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1549*f59d82ffSelric 1550*f59d82ffSelric * kdc/kerberos5.c: Fixes for cross-realm, including (but not 1551*f59d82ffSelric limited to): 1552*f59d82ffSelric - allow client to be non-existant (should probably check for 1553*f59d82ffSelric "local realm") 1554*f59d82ffSelric - if server isn't found and it is a request for a krbtgt, try to 1555*f59d82ffSelric find a realm on the way to the requested realm 1556*f59d82ffSelric - update the transited encoding iff 1557*f59d82ffSelric client-realm != server-realm != tgt-realm 1558*f59d82ffSelric 1559*f59d82ffSelric * lib/krb5/get_cred.c: Several fixes for cross-realm. 1560*f59d82ffSelric 1561*f59d82ffSelricTue Sep 9 15:59:20 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1562*f59d82ffSelric 1563*f59d82ffSelric * kdc/string2key.c: Fix password handling. 1564*f59d82ffSelric 1565*f59d82ffSelric * lib/krb5/encrypt.c: krb5_key_to_string 1566*f59d82ffSelric 1567*f59d82ffSelricTue Sep 9 07:46:05 1997 Assar Westerlund <assar@sics.se> 1568*f59d82ffSelric 1569*f59d82ffSelric * lib/krb5/get_addrs.c: rewrote. Now should be able to handle 1570*f59d82ffSelric aliases and IPv6 addresses 1571*f59d82ffSelric 1572*f59d82ffSelric * kuser/klist.c: try printing IPv6 addresses 1573*f59d82ffSelric 1574*f59d82ffSelric * kdc/kerberos5.c: increase the arbitrary limit from 1024 to 8192 1575*f59d82ffSelric 1576*f59d82ffSelric * configure.in: check for <netinet/in6_var.h> 1577*f59d82ffSelric 1578*f59d82ffSelricMon Sep 8 02:57:14 1997 Assar Westerlund <assar@sics.se> 1579*f59d82ffSelric 1580*f59d82ffSelric * doc: fixes 1581*f59d82ffSelric 1582*f59d82ffSelric * admin/util.c (init_des_key): increase kvno 1583*f59d82ffSelric (set_password): return -1 if `des_read_pw_string' failed 1584*f59d82ffSelric 1585*f59d82ffSelric * admin/mod.c (doit2): check the return value from `set_password' 1586*f59d82ffSelric 1587*f59d82ffSelric * admin/ank.c (doit): don't add a new entry if `set_password' 1588*f59d82ffSelric failed 1589*f59d82ffSelric 1590*f59d82ffSelricMon Sep 8 02:20:16 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1591*f59d82ffSelric 1592*f59d82ffSelric * lib/krb5/verify_init.c: fix ap_req_nofail semantics 1593*f59d82ffSelric 1594*f59d82ffSelric * lib/krb5/transited.c: something that might resemble 1595*f59d82ffSelric domain-x500-compress 1596*f59d82ffSelric 1597*f59d82ffSelricMon Sep 8 01:24:42 1997 Assar Westerlund <assar@sics.se> 1598*f59d82ffSelric 1599*f59d82ffSelric * kdc/hpropd.c (main): check number of arguments 1600*f59d82ffSelric 1601*f59d82ffSelric * appl/popper/pop_init.c (pop_init): check number of arguments 1602*f59d82ffSelric 1603*f59d82ffSelric * kpasswd/kpasswd.c (main): check number of arguments 1604*f59d82ffSelric 1605*f59d82ffSelric * kdc/string2key.c (main): check number of arguments 1606*f59d82ffSelric 1607*f59d82ffSelric * kuser/kdestroy.c (main): check number of arguments 1608*f59d82ffSelric 1609*f59d82ffSelric * kuser/kinit.c (main): check number of arguments 1610*f59d82ffSelric 1611*f59d82ffSelric * kpasswd/kpasswdd.c (main): use sigaction without SA_RESTART to 1612*f59d82ffSelric break out of select when a signal arrives 1613*f59d82ffSelric 1614*f59d82ffSelric * kdc/main.c (main): use sigaction without SA_RESTART to break out 1615*f59d82ffSelric of select when a signal arrives 1616*f59d82ffSelric 1617*f59d82ffSelric * kdc/kstash.c: default to HDB_DB_DIR "/m-key" 1618*f59d82ffSelric 1619*f59d82ffSelric * kdc/config.c (configure): add `--version'. Check the number of 1620*f59d82ffSelric arguments. Handle the case of there being no specification of port 1621*f59d82ffSelric numbers. 1622*f59d82ffSelric 1623*f59d82ffSelric * admin/util.c: seal and unseal key at appropriate places 1624*f59d82ffSelric 1625*f59d82ffSelric * admin/kdb_edit.c (main): parse arguments, config file and read 1626*f59d82ffSelric master key iff there's one. 1627*f59d82ffSelric 1628*f59d82ffSelric * admin/extkeytab.c (ext_keytab): unseal key while extracting 1629*f59d82ffSelric 1630*f59d82ffSelricSun Sep 7 20:41:01 1997 Assar Westerlund <assar@sics.se> 1631*f59d82ffSelric 1632*f59d82ffSelric * lib/roken/roken.h: include <fcntl.h> 1633*f59d82ffSelric 1634*f59d82ffSelric * kdc/kerberos5.c (set_salt_padata): new function 1635*f59d82ffSelric 1636*f59d82ffSelric * appl/telnet/telnetd/telnetd.c: Rename some variables that 1637*f59d82ffSelric conflict with cpp symbols on HP-UX 10.20 1638*f59d82ffSelric 1639*f59d82ffSelric * change all calls of `gethostbyaddr' to cast argument 1 to `const 1640*f59d82ffSelric char *' 1641*f59d82ffSelric 1642*f59d82ffSelric * acconfig.h: only use SGTTY on nextstep 1643*f59d82ffSelric 1644*f59d82ffSelricSun Sep 7 14:33:50 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1645*f59d82ffSelric 1646*f59d82ffSelric * kdc/kerberos5.c: Check invalid flag. 1647*f59d82ffSelric 1648*f59d82ffSelricFri Sep 5 14:19:38 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1649*f59d82ffSelric 1650*f59d82ffSelric * lib/krb5/verify_user.c: Use get_init_creds/verify_init_creds. 1651*f59d82ffSelric 1652*f59d82ffSelric * lib/kafs: Move functions common to krb/krb5 modules to new file, 1653*f59d82ffSelric and make things more modular. 1654*f59d82ffSelric 1655*f59d82ffSelric * lib/krb5/krb5.h: rename STRING -> krb5_config_string, and LIST 1656*f59d82ffSelric -> krb5_config_list 1657*f59d82ffSelric 1658*f59d82ffSelricThu Sep 4 23:39:43 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1659*f59d82ffSelric 1660*f59d82ffSelric * lib/krb5/get_addrs.c: Fix loopback test. 1661*f59d82ffSelric 1662*f59d82ffSelricThu Sep 4 04:45:49 1997 Assar Westerlund <assar@sics.se> 1663*f59d82ffSelric 1664*f59d82ffSelric * lib/roken/roken.h: fallback definition of `O_ACCMODE' 1665*f59d82ffSelric 1666*f59d82ffSelric * lib/krb5/get_in_tkt.c (krb5_get_in_cred): be more careful when 1667*f59d82ffSelric checking for a v4 reply 1668*f59d82ffSelric 1669*f59d82ffSelricWed Sep 3 18:20:14 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1670*f59d82ffSelric 1671*f59d82ffSelric * kdc/hprop.c: Add `--decrypt' and `--encrypt' flags. 1672*f59d82ffSelric 1673*f59d82ffSelric * lib/hdb/hdb.c: new {seal,unseal}_keys functions 1674*f59d82ffSelric 1675*f59d82ffSelric * kdc/{hprop,hpropd}.c: Add support to dump database to stdout. 1676*f59d82ffSelric 1677*f59d82ffSelric * kdc/hprop.c: Don't use same master key as version 4. 1678*f59d82ffSelric 1679*f59d82ffSelric * admin/util.c: Don't dump core if no `default' is found. 1680*f59d82ffSelric 1681*f59d82ffSelricWed Sep 3 16:01:07 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1682*f59d82ffSelric 1683*f59d82ffSelric * kdc/connect.c: Allow run time port specification. 1684*f59d82ffSelric 1685*f59d82ffSelric * kdc/config.c: Add flags for http support, and port 1686*f59d82ffSelric specifications. 1687*f59d82ffSelric 1688*f59d82ffSelricTue Sep 2 02:00:03 1997 Assar Westerlund <assar@sics.se> 1689*f59d82ffSelric 1690*f59d82ffSelric * include/bits.c: Don't generate ifndef's in bits.h. Instead, use 1691*f59d82ffSelric them when building the program. This makes it possible to include 1692*f59d82ffSelric bits.h without having defined all HAVE_INT17_T symbols. 1693*f59d82ffSelric 1694*f59d82ffSelric * configure.in: test for sigaction 1695*f59d82ffSelric 1696*f59d82ffSelric * doc: updated documentation. 1697*f59d82ffSelric 1698*f59d82ffSelricTue Sep 2 00:20:31 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1699*f59d82ffSelric 1700*f59d82ffSelric * Release 0.0g 1701*f59d82ffSelric 1702*f59d82ffSelricMon Sep 1 17:42:14 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1703*f59d82ffSelric 1704*f59d82ffSelric * lib/krb5/data.c: don't return ENOMEM if len == 0 1705*f59d82ffSelric 1706*f59d82ffSelricSun Aug 31 17:15:49 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1707*f59d82ffSelric 1708*f59d82ffSelric * lib/hdb/hdb.asn1: Include salt type in salt. 1709*f59d82ffSelric 1710*f59d82ffSelric * kdc/hprop.h: Change port to 754. 1711*f59d82ffSelric 1712*f59d82ffSelric * kdc/hpropd.c: Verify who tries to transmit a database. 1713*f59d82ffSelric 1714*f59d82ffSelric * appl/popper: Use getarg and krb5_log. 1715*f59d82ffSelric 1716*f59d82ffSelric * lib/krb5/get_port.c: Add context parameter. Now takes port in 1717*f59d82ffSelric host byte order. 1718*f59d82ffSelric 1719*f59d82ffSelricSat Aug 30 18:48:19 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1720*f59d82ffSelric 1721*f59d82ffSelric * kdc/connect.c: Add timeout to select, and log about expired tcp 1722*f59d82ffSelric connections. 1723*f59d82ffSelric 1724*f59d82ffSelric * kdc/config.c: Add `database' option. 1725*f59d82ffSelric 1726*f59d82ffSelric * kdc/hpropd.c: Log about duplicate entries. 1727*f59d82ffSelric 1728*f59d82ffSelric * lib/hdb/{db,ndbm}.c: Use common routines. 1729*f59d82ffSelric 1730*f59d82ffSelric * lib/hdb/common.c: Implement more generic fetch/store/delete 1731*f59d82ffSelric functions. 1732*f59d82ffSelric 1733*f59d82ffSelric * lib/hdb/hdb.h: Add `replace' parameter to store. 1734*f59d82ffSelric 1735*f59d82ffSelric * kdc/connect.c: Set filedecriptor to -1 on allocated decriptor 1736*f59d82ffSelric entries. 1737*f59d82ffSelric 1738*f59d82ffSelricFri Aug 29 03:13:23 1997 Assar Westerlund <assar@sics.se> 1739*f59d82ffSelric 1740*f59d82ffSelric * lib/krb5/get_in_tkt.c: extract_ticket -> _krb5_extract_ticket 1741*f59d82ffSelric 1742*f59d82ffSelric * aux/make-proto.pl: fix __P for stone age mode 1743*f59d82ffSelric 1744*f59d82ffSelricFri Aug 29 02:45:46 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1745*f59d82ffSelric 1746*f59d82ffSelric * lib/45/mk_req.c: implementation of krb_mk_req that uses 524 1747*f59d82ffSelric protocol 1748*f59d82ffSelric 1749*f59d82ffSelric * lib/krb5/init_creds_pw.c: make change_password and 1750*f59d82ffSelric get_init_creds_common static 1751*f59d82ffSelric 1752*f59d82ffSelric * lib/krb5/krb5.h: Merge stuff from removed headerfiles. 1753*f59d82ffSelric 1754*f59d82ffSelric * lib/krb5/fcache.c: fcc_ops -> krb5_fcc_ops 1755*f59d82ffSelric 1756*f59d82ffSelric * lib/krb5/mcache.c: mcc_ops -> krb5_mcc_ops 1757*f59d82ffSelric 1758*f59d82ffSelricFri Aug 29 01:45:25 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1759*f59d82ffSelric 1760*f59d82ffSelric * lib/krb5/krb5.h: Remove all prototypes. 1761*f59d82ffSelric 1762*f59d82ffSelric * lib/krb5/convert_creds.c: Use `struct credentials' instead of 1763*f59d82ffSelric `CREDENTIALS'. 1764*f59d82ffSelric 1765*f59d82ffSelricFri Aug 29 00:08:18 1997 Assar Westerlund <assar@sics.se> 1766*f59d82ffSelric 1767*f59d82ffSelric * lib/asn1/gen_glue.c: new file. generates 2int and int2 functions 1768*f59d82ffSelric and units for bit strings. 1769*f59d82ffSelric 1770*f59d82ffSelric * admin/util.c: flags2int, int2flags, and flag_units are now 1771*f59d82ffSelric generated by asn1_compile 1772*f59d82ffSelric 1773*f59d82ffSelric * lib/roken/parse_units.c: generalised `parse_units' and 1774*f59d82ffSelric `unparse_units' and added new functions `parse_flags' and 1775*f59d82ffSelric `unparse_flags' that use these 1776*f59d82ffSelric 1777*f59d82ffSelric * lib/krb5/krb5_locl.h: moved krb5_data* functions to krb5.h 1778*f59d82ffSelric 1779*f59d82ffSelric * admin/util.c: Use {un,}parse_flags for printing and parsing 1780*f59d82ffSelric hdbflags. 1781*f59d82ffSelric 1782*f59d82ffSelricThu Aug 28 03:26:12 1997 Assar Westerlund <assar@sics.se> 1783*f59d82ffSelric 1784*f59d82ffSelric * lib/krb5/get_addrs.c: restructured 1785*f59d82ffSelric 1786*f59d82ffSelric * lib/krb5/warn.c (_warnerr): leak less memory 1787*f59d82ffSelric 1788*f59d82ffSelric * lib/hdb/hdb.c (hdb_free_entry): zero keys 1789*f59d82ffSelric (hdb_check_db_format): leak less memory 1790*f59d82ffSelric 1791*f59d82ffSelric * lib/hdb/ndbm.c (NDBM_seq): check for valid hdb_entries implement 1792*f59d82ffSelric NDBM__get, NDBM__put 1793*f59d82ffSelric 1794*f59d82ffSelric * lib/hdb/db.c (DB_seq): check for valid hdb_entries 1795*f59d82ffSelric 1796*f59d82ffSelricThu Aug 28 02:06:58 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1797*f59d82ffSelric 1798*f59d82ffSelric * lib/krb5/send_to_kdc.c: Don't use sendto on connected sockets. 1799*f59d82ffSelric 1800*f59d82ffSelricThu Aug 28 01:13:17 1997 Assar Westerlund <assar@sics.se> 1801*f59d82ffSelric 1802*f59d82ffSelric * kuser/kinit.1, klist.1, kdestroy.1: new man pages 1803*f59d82ffSelric 1804*f59d82ffSelric * kpasswd/kpasswd.1, kpasswdd.8: new man pages 1805*f59d82ffSelric 1806*f59d82ffSelric * kdc/kstash.8, hprop.8, hpropd.8: new man pages 1807*f59d82ffSelric 1808*f59d82ffSelric * admin/ktutil.8, admin/kdb_edit.8: new man pages 1809*f59d82ffSelric 1810*f59d82ffSelric * admin/mod.c: new file 1811*f59d82ffSelric 1812*f59d82ffSelric * admin/life.c: renamed gettime and puttime to getlife and putlife 1813*f59d82ffSelric and moved them to life.c 1814*f59d82ffSelric 1815*f59d82ffSelric * admin/util.c: add print_flags, parse_flags, init_entry, 1816*f59d82ffSelric set_created_by, set_modified_by, edit_entry, set_password. Use 1817*f59d82ffSelric them. 1818*f59d82ffSelric 1819*f59d82ffSelric * admin/get.c: use print_flags 1820*f59d82ffSelric 1821*f59d82ffSelric * admin: removed unused stuff. use krb5_{warn,err}* 1822*f59d82ffSelric 1823*f59d82ffSelric * admin/ank.c: re-organized and abstracted. 1824*f59d82ffSelric 1825*f59d82ffSelric * admin/gettime.c: removed 1826*f59d82ffSelric 1827*f59d82ffSelricThu Aug 28 00:37:39 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1828*f59d82ffSelric 1829*f59d82ffSelric * lib/krb5/{get_cred,get_in_tkt}.c: Check for v4 reply. 1830*f59d82ffSelric 1831*f59d82ffSelric * lib/roken/base64.c: Add base64 functions. 1832*f59d82ffSelric 1833*f59d82ffSelric * kdc/connect.c lib/krb5/send_to_kdc.c: Add http support. 1834*f59d82ffSelric 1835*f59d82ffSelricWed Aug 27 00:29:20 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1836*f59d82ffSelric 1837*f59d82ffSelric * include/Makefile.am: Don't make links to built files. 1838*f59d82ffSelric 1839*f59d82ffSelric * admin/kdb_edit.c: Add command to set the database path. 1840*f59d82ffSelric 1841*f59d82ffSelric * lib/hdb: Include version number in database. 1842*f59d82ffSelric 1843*f59d82ffSelricTue Aug 26 20:14:54 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1844*f59d82ffSelric 1845*f59d82ffSelric * admin/ktutil: Merged v4 srvtab conversion. 1846*f59d82ffSelric 1847*f59d82ffSelricMon Aug 25 23:02:18 1997 Assar Westerlund <assar@sics.se> 1848*f59d82ffSelric 1849*f59d82ffSelric * lib/roken/roken.h: add F_OK 1850*f59d82ffSelric 1851*f59d82ffSelric * lib/gssapi/acquire_creds.c: fix typo 1852*f59d82ffSelric 1853*f59d82ffSelric * configure.in: call AC_TYPE_MODE_T 1854*f59d82ffSelric 1855*f59d82ffSelric * acinclude.m4: Add AC_TYPE_MODE_T 1856*f59d82ffSelric 1857*f59d82ffSelricSun Aug 24 16:46:53 1997 Assar Westerlund <assar@sics.se> 1858*f59d82ffSelric 1859*f59d82ffSelric * Release 0.0f 1860*f59d82ffSelric 1861*f59d82ffSelricSun Aug 24 08:06:54 1997 Assar Westerlund <assar@sics.se> 1862*f59d82ffSelric 1863*f59d82ffSelric * appl/popper/pop_pass.c: log poppers 1864*f59d82ffSelric 1865*f59d82ffSelric * kdc/kaserver.c: some more checks 1866*f59d82ffSelric 1867*f59d82ffSelric * kpasswd/kpasswd.c: removed `-p' 1868*f59d82ffSelric 1869*f59d82ffSelric * kuser/kinit.c: removed `-p' 1870*f59d82ffSelric 1871*f59d82ffSelric * lib/krb5/init_creds_pw.c (krb5_get_init_creds_password): If 1872*f59d82ffSelric KDC_ERR_PREUATH_REQUIRED, add preauthentication and try again. 1873*f59d82ffSelric 1874*f59d82ffSelric * lib/krb5/get_in_tkt.c (krb5_get_in_cred): don't print out 1875*f59d82ffSelric krb-error text 1876*f59d82ffSelric 1877*f59d82ffSelric * lib/gssapi/import_name.c (input_name): more names types. 1878*f59d82ffSelric 1879*f59d82ffSelric * admin/load.c (parse_keys): handle the case of an empty salt 1880*f59d82ffSelric 1881*f59d82ffSelric * kdc/kaserver.c: fix up memory deallocation 1882*f59d82ffSelric 1883*f59d82ffSelric * kdc/kaserver.c: quick hack at talking kaserver protocol 1884*f59d82ffSelric 1885*f59d82ffSelric * kdc/kerberos4.c: Make `db-fetch4' global 1886*f59d82ffSelric 1887*f59d82ffSelric * configure.in: add --enable-kaserver 1888*f59d82ffSelric 1889*f59d82ffSelric * kdc/rx.h, kdc/kerberos4.h: new header files 1890*f59d82ffSelric 1891*f59d82ffSelric * lib/krb5/principal.c: fix krb5_build_principal_ext & c:o 1892*f59d82ffSelric 1893*f59d82ffSelricSun Aug 24 03:52:44 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1894*f59d82ffSelric 1895*f59d82ffSelric * lib/krb5/{get_in_tkt,mk_safe,mk_priv}.c: Fix some Cray specific 1896*f59d82ffSelric type conflicts. 1897*f59d82ffSelric 1898*f59d82ffSelric * lib/krb5/{get_cred,get_in_tkt}.c: Mask nonce to 32 bits. 1899*f59d82ffSelric 1900*f59d82ffSelric * lib/des/{md4,md5,sha}.c: Now works on Crays. 1901*f59d82ffSelric 1902*f59d82ffSelricSat Aug 23 18:15:01 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1903*f59d82ffSelric 1904*f59d82ffSelric * appl/afsutil/afslog.c: If no cells or files specified, get 1905*f59d82ffSelric tokens for all local cells. Better test for files. 1906*f59d82ffSelric 1907*f59d82ffSelricThu Aug 21 23:33:38 1997 Assar Westerlund <assar@sics.se> 1908*f59d82ffSelric 1909*f59d82ffSelric * lib/gssapi/v1.c: new file with v1 compatibility functions. 1910*f59d82ffSelric 1911*f59d82ffSelricThu Aug 21 20:36:13 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1912*f59d82ffSelric 1913*f59d82ffSelric * lib/kafs/afskrb5.c: Don't check ticket file for afs ticket. 1914*f59d82ffSelric 1915*f59d82ffSelric * kdc/kerberos4.c: Check database when converting v4 principals. 1916*f59d82ffSelric 1917*f59d82ffSelric * kdc/kerberos5.c: Include kvno in Ticket. 1918*f59d82ffSelric 1919*f59d82ffSelric * lib/krb5/encrypt.c: Add kvno parameter to encrypt_EncryptedData. 1920*f59d82ffSelric 1921*f59d82ffSelric * kuser/klist.c: Print version number of ticket, include more 1922*f59d82ffSelric flags. 1923*f59d82ffSelric 1924*f59d82ffSelricWed Aug 20 21:26:58 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 1925*f59d82ffSelric 1926*f59d82ffSelric * lib/kafs/afskrb5.c (get_cred): Check cached afs tickets for 1927*f59d82ffSelric expiration. 1928*f59d82ffSelric 1929*f59d82ffSelricWed Aug 20 17:40:31 1997 Assar Westerlund <assar@sics.se> 1930*f59d82ffSelric 1931*f59d82ffSelric * lib/krb5/recvauth.c (krb5_recvauth): Send a KRB-ERROR iff 1932*f59d82ffSelric there's an error. 1933*f59d82ffSelric 1934*f59d82ffSelric * lib/krb5/sendauth.c (krb5_sendauth): correct the protocol 1935*f59d82ffSelric documentation and process KRB-ERROR's 1936*f59d82ffSelric 1937*f59d82ffSelricTue Aug 19 20:41:30 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1938*f59d82ffSelric 1939*f59d82ffSelric * kdc/kerberos4.c: Fix memory leak in v4 protocol handler. 1940*f59d82ffSelric 1941*f59d82ffSelricMon Aug 18 05:15:09 1997 Assar Westerlund <assar@sics.se> 1942*f59d82ffSelric 1943*f59d82ffSelric * lib/gssapi/accept_sec_context.c: Added 1944*f59d82ffSelric `gsskrb5_register_acceptor_identity' 1945*f59d82ffSelric 1946*f59d82ffSelricSun Aug 17 01:40:20 1997 Assar Westerlund <assar@sics.se> 1947*f59d82ffSelric 1948*f59d82ffSelric * lib/gssapi/accept_sec_context.c (gss_accept_sec_context): don't 1949*f59d82ffSelric always pass server == NULL to krb5_rd_req. 1950*f59d82ffSelric 1951*f59d82ffSelric * lib/gssapi: new files: canonicalize_name.c export_name.c 1952*f59d82ffSelric context_time.c compare_name.c release_cred.c acquire_cred.c 1953*f59d82ffSelric inquire_cred.c, from Luke Howard <lukeh@xedoc.com.au> 1954*f59d82ffSelric 1955*f59d82ffSelric * lib/krb5/config_file.c: Add netinfo support from Luke Howard 1956*f59d82ffSelric <lukeh@xedoc.com.au> 1957*f59d82ffSelric 1958*f59d82ffSelric * lib/editline/sysunix.c: sgtty-support from Luke Howard 1959*f59d82ffSelric <lukeh@xedoc.com.au> 1960*f59d82ffSelric 1961*f59d82ffSelric * lib/krb5/principal.c: krb5_sname_to_principal fix from Luke 1962*f59d82ffSelric Howard <lukeh@xedoc.com.au> 1963*f59d82ffSelric 1964*f59d82ffSelricSat Aug 16 00:44:47 1997 Assar Westerlund <assar@koi.pdc.kth.se> 1965*f59d82ffSelric 1966*f59d82ffSelric * Release 0.0e 1967*f59d82ffSelric 1968*f59d82ffSelricSat Aug 16 00:23:46 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1969*f59d82ffSelric 1970*f59d82ffSelric * appl/afsutil/afslog.c: Use new libkafs. 1971*f59d82ffSelric 1972*f59d82ffSelric * lib/kafs/afskrb5.c: Get AFS tokens via 524 protocol. 1973*f59d82ffSelric 1974*f59d82ffSelric * lib/krb5/warn.c: Fix format string for *x type. 1975*f59d82ffSelric 1976*f59d82ffSelricFri Aug 15 22:15:01 1997 Assar Westerlund <assar@sics.se> 1977*f59d82ffSelric 1978*f59d82ffSelric * admin/get.c (get_entry): print more information about the entry 1979*f59d82ffSelric 1980*f59d82ffSelric * lib/des/Makefile.am: build destest, mdtest, des, rpw, speed 1981*f59d82ffSelric 1982*f59d82ffSelric * lib/krb5/config_file.c: new functions `krb5_config_get_time' and 1983*f59d82ffSelric `krb5_config_vget_time'. Use them. 1984*f59d82ffSelric 1985*f59d82ffSelricFri Aug 15 00:09:37 1997 Johan Danielsson <joda@emma.pdc.kth.se> 1986*f59d82ffSelric 1987*f59d82ffSelric * admin/ktutil.c: Keytab manipulation program. 1988*f59d82ffSelric 1989*f59d82ffSelric * lib/krb5/keytab.c: Return sane values from resolve and 1990*f59d82ffSelric start_seq_get. 1991*f59d82ffSelric 1992*f59d82ffSelric * kdc/kerberos5.c: Fix for old clients passing 0 for `no endtime'. 1993*f59d82ffSelric 1994*f59d82ffSelric * lib/45/get_ad_tkt.c: Kerberos 4 get_ad_tkt using 1995*f59d82ffSelric krb524_convert_creds_kdc. 1996*f59d82ffSelric 1997*f59d82ffSelric * lib/krb5/convert_creds.c: Implementation of 1998*f59d82ffSelric krb524_convert_creds_kdc. 1999*f59d82ffSelric 2000*f59d82ffSelric * lib/asn1/k5.asn1: Make kdc-req-body.till OPTIONAL 2001*f59d82ffSelric 2002*f59d82ffSelric * kdc/524.c: A somewhat working 524-protocol module. 2003*f59d82ffSelric 2004*f59d82ffSelric * kdc/kerberos4.c: Add version 4 ticket encoding and encryption 2005*f59d82ffSelric functions. 2006*f59d82ffSelric 2007*f59d82ffSelric * lib/krb5/context.c: Fix kdc_timeout. 2008*f59d82ffSelric 2009*f59d82ffSelric * lib/hdb/{ndbm,db}.c: Free name in close. 2010*f59d82ffSelric 2011*f59d82ffSelric * kdc/kerberos5.c (tgs_check_autenticator): Return error code 2012*f59d82ffSelric 2013*f59d82ffSelricThu Aug 14 21:29:03 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2014*f59d82ffSelric 2015*f59d82ffSelric * kdc/kerberos5.c (tgs_make_reply): Fix endtime in reply. 2016*f59d82ffSelric 2017*f59d82ffSelric * lib/krb5/store_emem.c: Fix reallocation bug. 2018*f59d82ffSelric 2019*f59d82ffSelricTue Aug 12 01:29:46 1997 Assar Westerlund <assar@sics.se> 2020*f59d82ffSelric 2021*f59d82ffSelric * appl/telnet/libtelnet/kerberos5.c, appl/popper/pop_init.c: Use 2022*f59d82ffSelric `krb5_sock_to_principal'. Send server parameter to 2023*f59d82ffSelric krb5_rd_req/krb5_recvauth. Set addresses in auth_context. 2024*f59d82ffSelric 2025*f59d82ffSelric * lib/krb5/recvauth.c: Set addresses in auth_context if there 2026*f59d82ffSelric aren't any 2027*f59d82ffSelric 2028*f59d82ffSelric * lib/krb5/auth_context.c: New function 2029*f59d82ffSelric `krb5_auth_con_setaddrs_from_fd' 2030*f59d82ffSelric 2031*f59d82ffSelric * lib/krb5/sock_principal.c: new function 2032*f59d82ffSelric `krb5_sock_to_principal' 2033*f59d82ffSelric 2034*f59d82ffSelric * lib/krb5/time.c: new file with `krb5_timeofday' and 2035*f59d82ffSelric `krb5_us_timeofday'. Use these functions. 2036*f59d82ffSelric 2037*f59d82ffSelric * kuser/klist.c: print KDC offset iff verbose 2038*f59d82ffSelric 2039*f59d82ffSelric * lib/krb5/get_in_tkt.c: implement KDC time offset and use it if 2040*f59d82ffSelric [libdefaults]kdc_timesync is set. 2041*f59d82ffSelric 2042*f59d82ffSelric * lib/krb5/fcache.c: Implement version 4 of the ccache format. 2043*f59d82ffSelric 2044*f59d82ffSelricMon Aug 11 05:34:43 1997 Assar Westerlund <assar@sics.se> 2045*f59d82ffSelric 2046*f59d82ffSelric * lib/krb5/rd_rep.c (krb5_free_ap_rep_enc_part): free all memory 2047*f59d82ffSelric 2048*f59d82ffSelric * lib/krb5/principal.c (krb5_unparse_name): allocate memory 2049*f59d82ffSelric properly 2050*f59d82ffSelric 2051*f59d82ffSelric * kpasswd/kpasswd.c: Use `krb5_change_password' 2052*f59d82ffSelric 2053*f59d82ffSelric * lib/krb5/init_creds_pw.c (init_cred): set realm of server 2054*f59d82ffSelric correctly. 2055*f59d82ffSelric 2056*f59d82ffSelric * lib/krb5/init_creds_pw.c: support changing of password when it 2057*f59d82ffSelric has expired 2058*f59d82ffSelric 2059*f59d82ffSelric * lib/krb5/changepw.c: new file 2060*f59d82ffSelric 2061*f59d82ffSelric * kuser/klist.c: use getarg 2062*f59d82ffSelric 2063*f59d82ffSelric * admin/init.c (init): add `kadmin/changepw' 2064*f59d82ffSelric 2065*f59d82ffSelricMon Aug 11 04:30:47 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2066*f59d82ffSelric 2067*f59d82ffSelric * lib/krb5/get_cred.c: Make get_credentials handle cross-realm. 2068*f59d82ffSelric 2069*f59d82ffSelricMon Aug 11 00:03:24 1997 Assar Westerlund <assar@sics.se> 2070*f59d82ffSelric 2071*f59d82ffSelric * lib/krb5/config_file.c: implement support for #-comments 2072*f59d82ffSelric 2073*f59d82ffSelricSat Aug 9 02:21:46 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2074*f59d82ffSelric 2075*f59d82ffSelric * kdc/hprop*.c: Add database propagation programs. 2076*f59d82ffSelric 2077*f59d82ffSelric * kdc/connect.c: Max request size. 2078*f59d82ffSelric 2079*f59d82ffSelricSat Aug 9 00:47:28 1997 Assar Westerlund <assar@sics.se> 2080*f59d82ffSelric 2081*f59d82ffSelric * lib/otp: resurrected from krb4 2082*f59d82ffSelric 2083*f59d82ffSelric * appl/push: new program for fetching mail with POP. 2084*f59d82ffSelric 2085*f59d82ffSelric * appl/popper/popper.h: new include files. new fields in `POP' 2086*f59d82ffSelric 2087*f59d82ffSelric * appl/popper/pop_pass.c: Implement both v4 and v5. 2088*f59d82ffSelric 2089*f59d82ffSelric * appl/popper/pop_init.c: Implement both v4 and v5. 2090*f59d82ffSelric 2091*f59d82ffSelric * appl/popper/pop_debug.c: use getarg. Talk both v4 and v5 2092*f59d82ffSelric 2093*f59d82ffSelric * appl/popper: Popper from krb4. 2094*f59d82ffSelric 2095*f59d82ffSelric * configure.in: check for inline and <netinet/tcp.h> generate 2096*f59d82ffSelric files in appl/popper, appl/push, and lib/otp 2097*f59d82ffSelric 2098*f59d82ffSelricFri Aug 8 05:51:02 1997 Assar Westerlund <assar@sics.se> 2099*f59d82ffSelric 2100*f59d82ffSelric * lib/krb5/get_cred.c: clean-up and try to free memory even when 2101*f59d82ffSelric there're errors 2102*f59d82ffSelric 2103*f59d82ffSelric * lib/krb5/get_cred.c: adapt to new `extract_ticket' 2104*f59d82ffSelric 2105*f59d82ffSelric * lib/krb5/get_in_tkt.c: reorganize. check everything and try to 2106*f59d82ffSelric return memory even if there are errors. 2107*f59d82ffSelric 2108*f59d82ffSelric * kuser/kverify.c: new file 2109*f59d82ffSelric 2110*f59d82ffSelric * lib/krb5/free_host_realm.c: new file 2111*f59d82ffSelric 2112*f59d82ffSelric * lib/krb5/principal.c (krb5_sname_to_principal): implement 2113*f59d82ffSelric different nametypes. Also free memory. 2114*f59d82ffSelric 2115*f59d82ffSelric * lib/krb5/verify_init.c: more functionality 2116*f59d82ffSelric 2117*f59d82ffSelric * lib/krb5/mk_req_ext.c (krb5_mk_req_extended): free the checksum 2118*f59d82ffSelric 2119*f59d82ffSelric * lib/krb5/get_in_tkt.c (extract_ticket): don't copy over the 2120*f59d82ffSelric principals in creds. Should also compare them with that received 2121*f59d82ffSelric from the KDC 2122*f59d82ffSelric 2123*f59d82ffSelric * lib/krb5/cache.c (krb5_cc_gen_new): copy the newly allocated 2124*f59d82ffSelric krb5_ccache 2125*f59d82ffSelric (krb5_cc_destroy): call krb5_cc_close 2126*f59d82ffSelric (krb5_cc_retrieve_cred): delete the unused creds 2127*f59d82ffSelric 2128*f59d82ffSelricFri Aug 8 02:30:40 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2129*f59d82ffSelric 2130*f59d82ffSelric * lib/krb5/log.c: Allow better control of destinations of logging 2131*f59d82ffSelric (like passing explicit destinations, and log-functions). 2132*f59d82ffSelric 2133*f59d82ffSelricFri Aug 8 01:20:39 1997 Assar Westerlund <assar@sics.se> 2134*f59d82ffSelric 2135*f59d82ffSelric * lib/krb5/get_default_principal.c: new file 2136*f59d82ffSelric 2137*f59d82ffSelric * kpasswd/kpasswdd.c: use krb5_log* 2138*f59d82ffSelric 2139*f59d82ffSelricFri Aug 8 00:37:47 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2140*f59d82ffSelric 2141*f59d82ffSelric * lib/krb5/init_creds_pw.c: Implement krb5_get_init_creds_keytab. 2142*f59d82ffSelric 2143*f59d82ffSelricFri Aug 8 00:37:17 1997 Assar Westerlund <assar@sics.se> 2144*f59d82ffSelric 2145*f59d82ffSelric * lib/krb5/init_creds_pw.c: Use `krb5_get_default_principal'. 2146*f59d82ffSelric Print password expire information. 2147*f59d82ffSelric 2148*f59d82ffSelric * kdc/config.c: new variable `kdc_warn_pwexpire' 2149*f59d82ffSelric 2150*f59d82ffSelric * kpasswd/kpasswd.c: converted to getarg and get_init_creds 2151*f59d82ffSelric 2152*f59d82ffSelricThu Aug 7 22:17:09 1997 Assar Westerlund <assar@sics.se> 2153*f59d82ffSelric 2154*f59d82ffSelric * lib/krb5/mcache.c: new file 2155*f59d82ffSelric 2156*f59d82ffSelric * admin/gettime.c: new function puttime. Use it. 2157*f59d82ffSelric 2158*f59d82ffSelric * lib/krb5/keyblock.c: Added krb5_free_keyblock and 2159*f59d82ffSelric krb5_copy_keyblock 2160*f59d82ffSelric 2161*f59d82ffSelric * lib/krb5/init_creds_pw.c: more functionality 2162*f59d82ffSelric 2163*f59d82ffSelric * lib/krb5/creds.c: Added krb5_free_creds_contents and 2164*f59d82ffSelric krb5_copy_creds. Changed callers. 2165*f59d82ffSelric 2166*f59d82ffSelric * lib/krb5/config_file.c: new functions krb5_config_get and 2167*f59d82ffSelric krb5_config_vget 2168*f59d82ffSelric 2169*f59d82ffSelric * lib/krb5/cache.c: cleanup added mcache 2170*f59d82ffSelric 2171*f59d82ffSelric * kdc/kerberos5.c: include last-req's of type 6 and 7, if 2172*f59d82ffSelric applicable 2173*f59d82ffSelric 2174*f59d82ffSelricWed Aug 6 20:38:23 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2175*f59d82ffSelric 2176*f59d82ffSelric * lib/krb5/log.c: New parameter `log-level'. Default to `SYSLOG'. 2177*f59d82ffSelric 2178*f59d82ffSelricTue Aug 5 22:53:54 1997 Assar Westerlund <assar@sics.se> 2179*f59d82ffSelric 2180*f59d82ffSelric * lib/krb5/verify_init.c, init_creds_pw.c, init_creds.c, 2181*f59d82ffSelric prompter_posix.c: the beginning of an implementation of the cygnus 2182*f59d82ffSelric initial-ticket API. 2183*f59d82ffSelric 2184*f59d82ffSelric * lib/krb5/get_in_tkt_pw.c: make `krb5_password_key_proc' global 2185*f59d82ffSelric 2186*f59d82ffSelric * lib/krb5/get_in_tkt.c (krb5_get_in_cred): new function that is 2187*f59d82ffSelric almost krb5_get_in_tkt but doesn't write the creds to the ccache. 2188*f59d82ffSelric Small fixes in krb5_get_in_tkt 2189*f59d82ffSelric 2190*f59d82ffSelric * lib/krb5/get_addrs.c (krb5_get_all_client_addrs): don't include 2191*f59d82ffSelric loopback. 2192*f59d82ffSelric 2193*f59d82ffSelricMon Aug 4 20:20:48 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2194*f59d82ffSelric 2195*f59d82ffSelric * kdc: Make context global. 2196*f59d82ffSelric 2197*f59d82ffSelricFri Aug 1 17:23:56 1997 Assar Westerlund <assar@sics.se> 2198*f59d82ffSelric 2199*f59d82ffSelric * Release 0.0d 2200*f59d82ffSelric 2201*f59d82ffSelric * lib/roken/flock.c: new file 2202*f59d82ffSelric 2203*f59d82ffSelric * kuser/kinit.c: check for and print expiry information in the 2204*f59d82ffSelric `kdc_rep' 2205*f59d82ffSelric 2206*f59d82ffSelric * lib/krb5/get_in_tkt.c: Set `ret_as_reply' if != NULL 2207*f59d82ffSelric 2208*f59d82ffSelric * kdc/kerberos5.c: Check the valid times on client and server. 2209*f59d82ffSelric Check the password expiration. 2210*f59d82ffSelric Check the require_preauth flag. 2211*f59d82ffSelric Send an lr_type == 6 with pw_end. 2212*f59d82ffSelric Set key.expiration to min(valid_end, pw_end) 2213*f59d82ffSelric 2214*f59d82ffSelric * lib/hdb/hdb.asn1: new flags `require_preauth' and `change_pw' 2215*f59d82ffSelric 2216*f59d82ffSelric * admin/util.c, admin/load.c: handle the new flags. 2217*f59d82ffSelric 2218*f59d82ffSelricFri Aug 1 16:56:12 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2219*f59d82ffSelric 2220*f59d82ffSelric * lib/hdb: Add some simple locking. 2221*f59d82ffSelric 2222*f59d82ffSelricSun Jul 27 04:44:31 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2223*f59d82ffSelric 2224*f59d82ffSelric * lib/krb5/log.c: Add some general logging functions. 2225*f59d82ffSelric 2226*f59d82ffSelric * kdc/kerberos4.c: Add version 4 protocol handler. The requrement 2227*f59d82ffSelric for this to work is that all involved principals has a des key in 2228*f59d82ffSelric the database, and that the client has a version 4 (un-)salted 2229*f59d82ffSelric key. Furthermore krb5_425_conv_principal has to do it's job, as 2230*f59d82ffSelric present it's not very clever. 2231*f59d82ffSelric 2232*f59d82ffSelric * lib/krb5/principal.c: Quick patch to make 425_conv work 2233*f59d82ffSelric somewhat. 2234*f59d82ffSelric 2235*f59d82ffSelric * lib/hdb/hdb.c: Add keytype->key and next key functions. 2236*f59d82ffSelric 2237*f59d82ffSelricFri Jul 25 17:32:12 1997 Assar Westerlund <assar@sics.se> 2238*f59d82ffSelric 2239*f59d82ffSelric * lib/krb5/build_auth.c (krb5_build_authenticator): don't free 2240*f59d82ffSelric `cksum'. It's allocated and freed by the caller 2241*f59d82ffSelric 2242*f59d82ffSelric * lib/krb5/get_cred.c (krb5_get_kdc_cred): Don't free `addresses'. 2243*f59d82ffSelric 2244*f59d82ffSelric * kdc/kerberos5.c (tgs_rep2): make sure we also have an defined 2245*f59d82ffSelric `client' to return as part of the KRB-ERROR 2246*f59d82ffSelric 2247*f59d82ffSelricThu Jul 24 08:13:59 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2248*f59d82ffSelric 2249*f59d82ffSelric * kdc/kerberos5.c: Unseal keys from database before use. 2250*f59d82ffSelric 2251*f59d82ffSelric * kdc/misc.c: New functions set_master_key, unseal_key and 2252*f59d82ffSelric free_key. 2253*f59d82ffSelric 2254*f59d82ffSelric * lib/roken/getarg.c: Handle `-f arg' correctly. 2255*f59d82ffSelric 2256*f59d82ffSelricThu Jul 24 01:54:43 1997 Assar Westerlund <assar@sics.se> 2257*f59d82ffSelric 2258*f59d82ffSelric * kuser/kinit.c: implement `-l' aka `--lifetime' 2259*f59d82ffSelric 2260*f59d82ffSelric * lib/roken/parse_units.c, parse_time.c: new files 2261*f59d82ffSelric 2262*f59d82ffSelric * admin/gettime.c (gettime): use `parse_time' 2263*f59d82ffSelric 2264*f59d82ffSelric * kdc/kerberos5.c (as_rep): Use `METHOD-DATA' when sending 2265*f59d82ffSelric KRB5KDC_ERR_PREAUTH_REQUIRED, not PA-DATA. 2266*f59d82ffSelric 2267*f59d82ffSelric * kpasswd/kpasswdd.c: fix freeing bug use sequence numbers set 2268*f59d82ffSelric addresses in auth_context bind one socket per interface. 2269*f59d82ffSelric 2270*f59d82ffSelric * kpasswd/kpasswd.c: use sequence numbers 2271*f59d82ffSelric 2272*f59d82ffSelric * lib/krb5/rd_req.c (krb5_verify_ap_req): do abs when verifying 2273*f59d82ffSelric the timestamps 2274*f59d82ffSelric 2275*f59d82ffSelric * lib/krb5/rd_priv.c (krb5_rd_priv): Fetch the correct session key 2276*f59d82ffSelric from auth_context 2277*f59d82ffSelric 2278*f59d82ffSelric * lib/krb5/mk_priv.c (krb5_mk_priv): Fetch the correct session key 2279*f59d82ffSelric from auth_context 2280*f59d82ffSelric 2281*f59d82ffSelric * lib/krb5/mk_error.c (krb5_mk_error): return an error number and 2282*f59d82ffSelric not a comerr'd number. 2283*f59d82ffSelric 2284*f59d82ffSelric * lib/krb5/get_in_tkt.c (krb5_get_in_tkt): interpret the error 2285*f59d82ffSelric number in KRB-ERROR correctly. 2286*f59d82ffSelric 2287*f59d82ffSelric * lib/krb5/get_cred.c (krb5_get_kdc_cred): interpret the error 2288*f59d82ffSelric number in KRB-ERROR correctly. 2289*f59d82ffSelric 2290*f59d82ffSelric * lib/asn1/k5.asn1: Add `METHOD-DATA' 2291*f59d82ffSelric 2292*f59d82ffSelric * removed some memory leaks. 2293*f59d82ffSelric 2294*f59d82ffSelricWed Jul 23 07:53:18 1997 Assar Westerlund <assar@sics.se> 2295*f59d82ffSelric 2296*f59d82ffSelric * Release 0.0c 2297*f59d82ffSelric 2298*f59d82ffSelric * lib/krb5/rd_cred.c, get_for_creds.c: new files 2299*f59d82ffSelric 2300*f59d82ffSelric * lib/krb5/get_host_realm.c: try default realm as last chance 2301*f59d82ffSelric 2302*f59d82ffSelric * kpasswd/kpasswdd.c: updated to hdb changes 2303*f59d82ffSelric 2304*f59d82ffSelric * appl/telnet/libtelnet/kerberos5.c: Implement forwarding 2305*f59d82ffSelric 2306*f59d82ffSelric * appl/telnet/libtelnet: removed totally unused files 2307*f59d82ffSelric 2308*f59d82ffSelric * admin/ank.c: fix prompts and generation of random keys 2309*f59d82ffSelric 2310*f59d82ffSelricWed Jul 23 04:02:32 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2311*f59d82ffSelric 2312*f59d82ffSelric * admin/dump.c: Include salt in dump. 2313*f59d82ffSelric 2314*f59d82ffSelric * admin: Mostly updated for new db-format. 2315*f59d82ffSelric 2316*f59d82ffSelric * kdc/kerberos5.c: Update to use new db format. Better checking of 2317*f59d82ffSelric flags and such. More logging. 2318*f59d82ffSelric 2319*f59d82ffSelric * lib/hdb/hdb.c: Use generated encode and decode functions. 2320*f59d82ffSelric 2321*f59d82ffSelric * lib/hdb/hdb.h: Get hdb_entry from ASN.1 generated code. 2322*f59d82ffSelric 2323*f59d82ffSelric * lib/krb5/get_cred.c: Get addresses from krbtgt if there are none 2324*f59d82ffSelric in the reply. 2325*f59d82ffSelric 2326*f59d82ffSelricSun Jul 20 16:22:30 1997 Assar Westerlund <assar@sics.se> 2327*f59d82ffSelric 2328*f59d82ffSelric * kuser/kinit.c: break if des_read_pw_string() != 0 2329*f59d82ffSelric 2330*f59d82ffSelric * kpasswd/kpasswdd.c: send a reply 2331*f59d82ffSelric 2332*f59d82ffSelric * kpasswd/kpasswd.c: restructured code. better report on 2333*f59d82ffSelric krb-error break if des_read_pw_string() != 0 2334*f59d82ffSelric 2335*f59d82ffSelric * kdc/kerberos5.c: Check `require_enc_timestamp' malloc space for 2336*f59d82ffSelric starttime and renew_till 2337*f59d82ffSelric 2338*f59d82ffSelric * appl/telnet/libtelnet/kerberos5.c (kerberos5_is): Send a 2339*f59d82ffSelric keyblock to krb5_verify_chekcsum 2340*f59d82ffSelric 2341*f59d82ffSelricSun Jul 20 06:35:46 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2342*f59d82ffSelric 2343*f59d82ffSelric * Release 0.0b 2344*f59d82ffSelric 2345*f59d82ffSelric * kpasswd/kpasswd.c: Avoid using non-standard struct names. 2346*f59d82ffSelric 2347*f59d82ffSelricSat Jul 19 19:26:23 1997 Assar Westerlund <assar@sics.se> 2348*f59d82ffSelric 2349*f59d82ffSelric * lib/krb5/keytab.c (krb5_kt_get_entry): check return from 2350*f59d82ffSelric `krb5_kt_start_seq_get'. From <map@stacken.kth.se> 2351*f59d82ffSelric 2352*f59d82ffSelricSat Jul 19 04:07:39 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2353*f59d82ffSelric 2354*f59d82ffSelric * lib/asn1/k5.asn1: Update with more pa-data types from 2355*f59d82ffSelric draft-ietf-cat-kerberos-revisions-00.txt 2356*f59d82ffSelric 2357*f59d82ffSelric * admin/load.c: Update to match current db-format. 2358*f59d82ffSelric 2359*f59d82ffSelric * kdc/kerberos5.c (as_rep): Try all valid pa-datas before giving 2360*f59d82ffSelric up. Send back an empty pa-data if the client has the v4 flag set. 2361*f59d82ffSelric 2362*f59d82ffSelric * lib/krb5/get_in_tkt.c: Pass both version5 and version4 salted 2363*f59d82ffSelric pa-data. DTRT if there is any pa-data in the reply. 2364*f59d82ffSelric 2365*f59d82ffSelric * lib/krb5/str2key.c: XOR with some sane value. 2366*f59d82ffSelric 2367*f59d82ffSelric * lib/hdb/hdb.h: Add `version 4 salted key' flag. 2368*f59d82ffSelric 2369*f59d82ffSelric * kuser/kinit.c: Ask for password before calling get_in_tkt. This 2370*f59d82ffSelric makes it possible to call key_proc more than once. 2371*f59d82ffSelric 2372*f59d82ffSelric * kdc/string2key.c: Add flags to output version 5 (DES only), 2373*f59d82ffSelric version 4, and AFS string-to-key of a password. 2374*f59d82ffSelric 2375*f59d82ffSelric * lib/asn1/gen_copy.c: copy_* functions now returns an int (0 or 2376*f59d82ffSelric ENOMEM). 2377*f59d82ffSelric 2378*f59d82ffSelricFri Jul 18 02:54:58 1997 Assar Westerlund <assar@sics.se> 2379*f59d82ffSelric 2380*f59d82ffSelric * lib/krb5/get_host_realm.c (krb5_get_host_realm): do the 2381*f59d82ffSelric name2name thing 2382*f59d82ffSelric 2383*f59d82ffSelric * kdc/misc.c: check result of hdb_open 2384*f59d82ffSelric 2385*f59d82ffSelric * admin/kdb_edit: updated to new sl 2386*f59d82ffSelric 2387*f59d82ffSelric * lib/sl: sl_func now returns an int. != 0 means to exit. 2388*f59d82ffSelric 2389*f59d82ffSelric * kpasswd/kpasswdd: A crude (but somewhat working) implementation 2390*f59d82ffSelric of `draft-ietf-cat-kerb-chg-password-00.txt' 2391*f59d82ffSelric 2392*f59d82ffSelricFri Jul 18 00:55:39 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2393*f59d82ffSelric 2394*f59d82ffSelric * kuser/krenew.c: Crude ticket renewing program. 2395*f59d82ffSelric 2396*f59d82ffSelric * kdc/kerberos5.c: Rewritten flags parsing, it now might work to 2397*f59d82ffSelric get forwarded and renewed tickets. 2398*f59d82ffSelric 2399*f59d82ffSelric * kuser/kinit.c: Add `-r' flag. 2400*f59d82ffSelric 2401*f59d82ffSelric * lib/krb5/get_cred.c: Move most of contents of get_creds to new 2402*f59d82ffSelric function get_kdc_cred, that always contacts the kdc and doesn't 2403*f59d82ffSelric save in the cache. This is a hack. 2404*f59d82ffSelric 2405*f59d82ffSelric * lib/krb5/get_in_tkt.c: Pass starttime and renew_till in request 2406*f59d82ffSelric (a bit kludgy). 2407*f59d82ffSelric 2408*f59d82ffSelric * lib/krb5/mk_req_ext.c: Make an auth_context if none passed in. 2409*f59d82ffSelric 2410*f59d82ffSelric * lib/krb5/send_to_kdc.c: Get timeout from context. 2411*f59d82ffSelric 2412*f59d82ffSelric * lib/krb5/context.c: Add kdc_timeout to context struct. 2413*f59d82ffSelric 2414*f59d82ffSelricThu Jul 17 20:35:45 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2415*f59d82ffSelric 2416*f59d82ffSelric * kuser/klist.c: Print start time of ticket if available. 2417*f59d82ffSelric 2418*f59d82ffSelric * lib/krb5/get_host_realm.c: Return error if no realm was found. 2419*f59d82ffSelric 2420*f59d82ffSelricThu Jul 17 20:28:21 1997 Assar Westerlund <assar@sics.se> 2421*f59d82ffSelric 2422*f59d82ffSelric * kpasswd: non-working kpasswd added 2423*f59d82ffSelric 2424*f59d82ffSelricThu Jul 17 00:21:22 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2425*f59d82ffSelric 2426*f59d82ffSelric * Release 0.0a 2427*f59d82ffSelric 2428*f59d82ffSelric * kdc/main.c: Add -p flag to disable pa-enc-timestamp requirement. 2429*f59d82ffSelric 2430*f59d82ffSelricWed Jul 16 03:37:41 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2431*f59d82ffSelric 2432*f59d82ffSelric * kdc/kerberos5.c (tgs_rep2): Free ticket and ap_req. 2433*f59d82ffSelric 2434*f59d82ffSelric * lib/krb5/auth_context.c (krb5_auth_con_free): Free remote 2435*f59d82ffSelric subkey. 2436*f59d82ffSelric 2437*f59d82ffSelric * lib/krb5/principal.c (krb5_free_principal): Check for NULL. 2438*f59d82ffSelric 2439*f59d82ffSelric * lib/krb5/send_to_kdc.c: Check for NULL return from 2440*f59d82ffSelric gethostbyname. 2441*f59d82ffSelric 2442*f59d82ffSelric * lib/krb5/set_default_realm.c: Try to get realm of local host if 2443*f59d82ffSelric no default realm is available. 2444*f59d82ffSelric 2445*f59d82ffSelric * Remove non ASN.1 principal code. 2446*f59d82ffSelric 2447*f59d82ffSelricWed Jul 16 03:17:30 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2448*f59d82ffSelric 2449*f59d82ffSelric * kdc/kerberos5.c: Split tgs_rep in smaller functions. Add better 2450*f59d82ffSelric error handing. Do some logging. 2451*f59d82ffSelric 2452*f59d82ffSelric * kdc/log.c: Some simple logging facilities. 2453*f59d82ffSelric 2454*f59d82ffSelric * kdc/misc.c (db_fetch): Take a krb5_principal. 2455*f59d82ffSelric 2456*f59d82ffSelric * kdc/connect.c: Pass address of request to as_rep and 2457*f59d82ffSelric tgs_rep. Send KRB-ERROR. 2458*f59d82ffSelric 2459*f59d82ffSelric * lib/krb5/mk_error.c: Add more fields. 2460*f59d82ffSelric 2461*f59d82ffSelric * lib/krb5/get_cred.c: Print normal error code if no e_text is 2462*f59d82ffSelric available. 2463*f59d82ffSelric 2464*f59d82ffSelricWed Jul 16 03:07:50 1997 Assar Westerlund <assar@sics.se> 2465*f59d82ffSelric 2466*f59d82ffSelric * lib/krb5/get_in_tkt.c: implement `krb5_init_etype'. 2467*f59d82ffSelric Change encryption type of pa_enc_timestamp to DES-CBC-MD5 2468*f59d82ffSelric 2469*f59d82ffSelric * lib/krb5/context.c: recognize all encryption types actually 2470*f59d82ffSelric implemented 2471*f59d82ffSelric 2472*f59d82ffSelric * lib/krb5/auth_context.c (krb5_auth_con_init): Change default 2473*f59d82ffSelric encryption type to `DES_CBC_MD5' 2474*f59d82ffSelric 2475*f59d82ffSelric * lib/krb5/read_message.c, write_message.c: new files 2476*f59d82ffSelric 2477*f59d82ffSelricTue Jul 15 17:14:21 1997 Assar Westerlund <assar@sics.se> 2478*f59d82ffSelric 2479*f59d82ffSelric * lib/asn1: replaced asn1_locl.h by `der_locl.h' and `gen_locl.h'. 2480*f59d82ffSelric 2481*f59d82ffSelric * lib/error/compile_et.awk: generate a prototype for the 2482*f59d82ffSelric `destroy_foo_error_table' function. 2483*f59d82ffSelric 2484*f59d82ffSelricMon Jul 14 12:24:40 1997 Assar Westerlund <assar@sics.se> 2485*f59d82ffSelric 2486*f59d82ffSelric * lib/krb5/krbhst.c (krb5_get_krbhst): Get all kdc's and try also 2487*f59d82ffSelric with `kerberos.REALM' 2488*f59d82ffSelric 2489*f59d82ffSelric * kdc/kerberos5.c, lib/krb5/rd_priv.c, lib/krb5/rd_safe.c: use 2490*f59d82ffSelric `max_skew' 2491*f59d82ffSelric 2492*f59d82ffSelric * lib/krb5/rd_req.c (krb5_verify_ap_req): record authenticator 2493*f59d82ffSelric subkey 2494*f59d82ffSelric 2495*f59d82ffSelric * lib/krb5/build_auth.c (krb5_build_authenticator): always 2496*f59d82ffSelric generate a subkey. 2497*f59d82ffSelric 2498*f59d82ffSelric * lib/krb5/address.c: implement `krb5_address_order' 2499*f59d82ffSelric 2500*f59d82ffSelric * lib/gssapi/import_name.c: Implement `gss_import_name' 2501*f59d82ffSelric 2502*f59d82ffSelric * lib/gssapi/external.c: Use new OID 2503*f59d82ffSelric 2504*f59d82ffSelric * lib/gssapi/encapsulate.c: New functions 2505*f59d82ffSelric `gssapi_krb5_encap_length' and `gssapi_krb5_make_header'. Changed 2506*f59d82ffSelric callers. 2507*f59d82ffSelric 2508*f59d82ffSelric * lib/gssapi/decapsulate.c: New function 2509*f59d82ffSelric `gssaspi_krb5_verify_header'. Changed callers. 2510*f59d82ffSelric 2511*f59d82ffSelric * lib/asn1/gen*.c: Give tags to generated structs. 2512*f59d82ffSelric Use `err' and `asprintf' 2513*f59d82ffSelric 2514*f59d82ffSelric * appl/test/gss_common.c: new file 2515*f59d82ffSelric 2516*f59d82ffSelric * appl/test/gssapi_server.c: removed all krb5 calls 2517*f59d82ffSelric 2518*f59d82ffSelric * appl/telnet/libtelnet/kerberos5.c: Add support for genering and 2519*f59d82ffSelric verifying checksums. Also start using session subkeys. 2520*f59d82ffSelric 2521*f59d82ffSelricMon Jul 14 12:08:25 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2522*f59d82ffSelric 2523*f59d82ffSelric * lib/krb5/rd_req.c (krb5_rd_req_with_keyblock): Split up. 2524*f59d82ffSelric 2525*f59d82ffSelricSun Jul 13 03:07:44 1997 Assar Westerlund <assar@sics.se> 2526*f59d82ffSelric 2527*f59d82ffSelric * lib/krb5/rd_safe.c, mk_safe.c: made bug-compatible with MIT 2528*f59d82ffSelric 2529*f59d82ffSelric * lib/krb5/encrypt.c: new functions `DES_encrypt_null_ivec' and 2530*f59d82ffSelric `DES_encrypt_key_ivec' 2531*f59d82ffSelric 2532*f59d82ffSelric * lib/krb5/checksum.c: implement rsa-md4-des and rsa-md5-des 2533*f59d82ffSelric 2534*f59d82ffSelric * kdc/kerberos5.c (tgs_rep): support keyed checksums 2535*f59d82ffSelric 2536*f59d82ffSelric * lib/krb5/creds.c: new file 2537*f59d82ffSelric 2538*f59d82ffSelric * lib/krb5/get_in_tkt.c: better freeing 2539*f59d82ffSelric 2540*f59d82ffSelric * lib/krb5/context.c (krb5_free_context): more freeing 2541*f59d82ffSelric 2542*f59d82ffSelric * lib/krb5/config_file.c: New function `krb5_config_file_free' 2543*f59d82ffSelric 2544*f59d82ffSelric * lib/error/compile_et.awk: Generate a `destroy_' function. 2545*f59d82ffSelric 2546*f59d82ffSelric * kuser/kinit.c, klist.c: Don't leak memory. 2547*f59d82ffSelric 2548*f59d82ffSelricSun Jul 13 02:46:27 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2549*f59d82ffSelric 2550*f59d82ffSelric * kdc/connect.c: Check filedescriptor in select. 2551*f59d82ffSelric 2552*f59d82ffSelric * kdc/kerberos5.c: Remove most of the most common memory leaks. 2553*f59d82ffSelric 2554*f59d82ffSelric * lib/krb5/rd_req.c: Free allocated data. 2555*f59d82ffSelric 2556*f59d82ffSelric * lib/krb5/auth_context.c (krb5_auth_con_free): Free a lot of 2557*f59d82ffSelric fields. 2558*f59d82ffSelric 2559*f59d82ffSelricSun Jul 13 00:32:16 1997 Assar Westerlund <assar@sics.se> 2560*f59d82ffSelric 2561*f59d82ffSelric * appl/telnet: Conditionalize the krb4-support. 2562*f59d82ffSelric 2563*f59d82ffSelric * configure.in: Test for krb4 2564*f59d82ffSelric 2565*f59d82ffSelricSat Jul 12 17:14:12 1997 Assar Westerlund <assar@sics.se> 2566*f59d82ffSelric 2567*f59d82ffSelric * kdc/kerberos5.c: check if the pre-auth was decrypted properly. 2568*f59d82ffSelric set the `pre_authent' flag 2569*f59d82ffSelric 2570*f59d82ffSelric * lib/krb5/get_cred.c, lib/krb5/get_in_tkt.c: generate a random nonce. 2571*f59d82ffSelric 2572*f59d82ffSelric * lib/krb5/encrypt.c: Made `generate_random_block' global. 2573*f59d82ffSelric 2574*f59d82ffSelric * appl/test: Added gssapi_client and gssapi_server. 2575*f59d82ffSelric 2576*f59d82ffSelric * lib/krb5/data.c: Add `krb5_data_zero' 2577*f59d82ffSelric 2578*f59d82ffSelric * appl/test/tcp_client.c: try `mk_safe' and `mk_priv' 2579*f59d82ffSelric 2580*f59d82ffSelric * appl/test/tcp_server.c: try `rd_safe' and `rd_priv' 2581*f59d82ffSelric 2582*f59d82ffSelricSat Jul 12 16:45:58 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2583*f59d82ffSelric 2584*f59d82ffSelric * lib/krb5/get_addrs.c: Fix for systems that has sa_len, but 2585*f59d82ffSelric returns zero length from SIOCGIFCONF. 2586*f59d82ffSelric 2587*f59d82ffSelricSat Jul 12 16:38:34 1997 Assar Westerlund <assar@sics.se> 2588*f59d82ffSelric 2589*f59d82ffSelric * appl/test: new programs 2590*f59d82ffSelric 2591*f59d82ffSelric * lib/krb5/rd_req.c: add address compare 2592*f59d82ffSelric 2593*f59d82ffSelric * lib/krb5/mk_req_ext.c: allow no checksum 2594*f59d82ffSelric 2595*f59d82ffSelric * lib/krb5/keytab.c (krb5_kt_ret_string): 0-terminate string 2596*f59d82ffSelric 2597*f59d82ffSelric * lib/krb5/address.c: fix `krb5_address_compare' 2598*f59d82ffSelric 2599*f59d82ffSelricSat Jul 12 15:03:16 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2600*f59d82ffSelric 2601*f59d82ffSelric * lib/krb5/get_addrs.c: Fix ip4 address extraction. 2602*f59d82ffSelric 2603*f59d82ffSelric * kuser/klist.c: Add verbose flag, and split main into smaller 2604*f59d82ffSelric pieces. 2605*f59d82ffSelric 2606*f59d82ffSelric * lib/krb5/fcache.c: Save ticket flags. 2607*f59d82ffSelric 2608*f59d82ffSelric * lib/krb5/get_in_tkt.c (extract_ticket): Extract addresses and 2609*f59d82ffSelric flags. 2610*f59d82ffSelric 2611*f59d82ffSelric * lib/krb5/krb5.h: Add ticket_flags to krb5_creds. 2612*f59d82ffSelric 2613*f59d82ffSelricSat Jul 12 13:12:48 1997 Assar Westerlund <assar@sics.se> 2614*f59d82ffSelric 2615*f59d82ffSelric * configure.in: Call `AC_KRB_PROG_LN_S' 2616*f59d82ffSelric 2617*f59d82ffSelric * acinclude.m4: Add `AC_KRB_PROG_LN_S' from krb4 2618*f59d82ffSelric 2619*f59d82ffSelricSat Jul 12 00:57:01 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2620*f59d82ffSelric 2621*f59d82ffSelric * lib/krb5/get_in_tkt.c: Use union of krb5_flags and KDCOptions to 2622*f59d82ffSelric pass options. 2623*f59d82ffSelric 2624*f59d82ffSelricFri Jul 11 15:04:22 1997 Assar Westerlund <assar@sics.se> 2625*f59d82ffSelric 2626*f59d82ffSelric * appl/telnet: telnet & telnetd seems to be working. 2627*f59d82ffSelric 2628*f59d82ffSelric * lib/krb5/config_file.c: Added krb5_config_v?get_list Fixed 2629*f59d82ffSelric krb5_config_vget_next 2630*f59d82ffSelric 2631*f59d82ffSelric * appl/telnet/libtelnet/kerberos5.c: update to current API 2632*f59d82ffSelric 2633*f59d82ffSelricThu Jul 10 14:54:39 1997 Assar Westerlund <assar@sics.se> 2634*f59d82ffSelric 2635*f59d82ffSelric * appl/telnet/libtelnet/kerberos5.c (kerberos5_status): call 2636*f59d82ffSelric `krb5_kuserok' 2637*f59d82ffSelric 2638*f59d82ffSelric * appl/telnet: Added. 2639*f59d82ffSelric 2640*f59d82ffSelricThu Jul 10 05:09:25 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2641*f59d82ffSelric 2642*f59d82ffSelric * lib/error/compile_et.awk: Remove usage of sub, gsub, and 2643*f59d82ffSelric functions for compatibility with awk. 2644*f59d82ffSelric 2645*f59d82ffSelric * include/bits.c: Must use signed char. 2646*f59d82ffSelric 2647*f59d82ffSelric * lib/krb5/context.c: Move krb5_get_err_text, and krb5_init_ets 2648*f59d82ffSelric here. 2649*f59d82ffSelric 2650*f59d82ffSelric * lib/error/error.c: Replace krb5_get_err_text with new function 2651*f59d82ffSelric com_right. 2652*f59d82ffSelric 2653*f59d82ffSelric * lib/error/compile_et.awk: Avoid using static variables. 2654*f59d82ffSelric 2655*f59d82ffSelric * lib/error/error.c: Don't use krb5_locl.h 2656*f59d82ffSelric 2657*f59d82ffSelric * lib/error/error.h: Move definitions of error_table and 2658*f59d82ffSelric error_list from krb5.h. 2659*f59d82ffSelric 2660*f59d82ffSelric * lib/error: Moved from lib/krb5. 2661*f59d82ffSelric 2662*f59d82ffSelricWed Jul 9 07:42:04 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2663*f59d82ffSelric 2664*f59d82ffSelric * lib/krb5/encrypt.c: Temporary hack to avoid des_rand_data. 2665*f59d82ffSelric 2666*f59d82ffSelricWed Jul 9 06:58:00 1997 Assar Westerlund <assar@sics.se> 2667*f59d82ffSelric 2668*f59d82ffSelric * lib/krb5/{rd,mk}_{*}.c: more checking for addresses and stuff 2669*f59d82ffSelric according to pseudocode from 1510 2670*f59d82ffSelric 2671*f59d82ffSelricWed Jul 9 06:06:06 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2672*f59d82ffSelric 2673*f59d82ffSelric * lib/hdb/hdb.c: Add hdb_etype2key. 2674*f59d82ffSelric 2675*f59d82ffSelric * kdc/kerberos5.c: Check authenticator. Use more general etype 2676*f59d82ffSelric functions. 2677*f59d82ffSelric 2678*f59d82ffSelricWed Jul 9 03:51:12 1997 Assar Westerlund <assar@sics.se> 2679*f59d82ffSelric 2680*f59d82ffSelric * lib/asn1/k5.asn1: Made all `s_address' OPTIONAL according to 2681*f59d82ffSelric draft-ietf-cat-kerberos-r-00.txt 2682*f59d82ffSelric 2683*f59d82ffSelric * lib/krb5/principal.c (krb5_parse_name): default to local realm 2684*f59d82ffSelric if none given 2685*f59d82ffSelric 2686*f59d82ffSelric * kuser/kinit.c: New option `-p' and prompt 2687*f59d82ffSelric 2688*f59d82ffSelricWed Jul 9 02:30:06 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2689*f59d82ffSelric 2690*f59d82ffSelric * lib/krb5/keyblock.c: Keyblock generation functions. 2691*f59d82ffSelric 2692*f59d82ffSelric * lib/krb5/encrypt.c: Use functions from checksum.c. 2693*f59d82ffSelric 2694*f59d82ffSelric * lib/krb5/checksum.c: Move checksum functions here. Add 2695*f59d82ffSelric krb5_cksumsize function. 2696*f59d82ffSelric 2697*f59d82ffSelricWed Jul 9 01:15:38 1997 Assar Westerlund <assar@sics.se> 2698*f59d82ffSelric 2699*f59d82ffSelric * lib/krb5/get_host_realm.c: implemented 2700*f59d82ffSelric 2701*f59d82ffSelric * lib/krb5/config_file.c: Redid part. New functions: 2702*f59d82ffSelric krb5_config_v?get_next 2703*f59d82ffSelric 2704*f59d82ffSelric * kuser/kdestroy.c: new program 2705*f59d82ffSelric 2706*f59d82ffSelric * kuser/kinit.c: new flag `-f' 2707*f59d82ffSelric 2708*f59d82ffSelric * lib/asn1/k5.asn1: Made HostAddresses = SEQUENCE OF HostAddress 2709*f59d82ffSelric 2710*f59d82ffSelric * acinclude.m4: Added AC_KRB_STRUCT_SOCKADDR_SA_LEN 2711*f59d82ffSelric 2712*f59d82ffSelric * lib/krb5/krb5.h: krb5_addresses == HostAddresses. Changed all 2713*f59d82ffSelric users. 2714*f59d82ffSelric 2715*f59d82ffSelric * lib/krb5/get_addrs.c: figure out all local addresses, possibly 2716*f59d82ffSelric even IPv6! 2717*f59d82ffSelric 2718*f59d82ffSelric * lib/krb5/checksum.c: table-driven checksum 2719*f59d82ffSelric 2720*f59d82ffSelricMon Jul 7 21:13:28 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2721*f59d82ffSelric 2722*f59d82ffSelric * lib/krb5/encrypt.c: Make krb5_decrypt use the same struct as 2723*f59d82ffSelric krb5_encrypt. 2724*f59d82ffSelric 2725*f59d82ffSelricMon Jul 7 11:15:51 1997 Assar Westerlund <assar@sics.se> 2726*f59d82ffSelric 2727*f59d82ffSelric * lib/roken/vsyslog.c: new file 2728*f59d82ffSelric 2729*f59d82ffSelric * lib/krb5/encrypt.c: add des-cbc-md4. 2730*f59d82ffSelric adjust krb5_encrypt and krb5_decrypt to reality 2731*f59d82ffSelric 2732*f59d82ffSelricMon Jul 7 02:46:31 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2733*f59d82ffSelric 2734*f59d82ffSelric * lib/krb5/encrypt.c: Implement as a vector of function pointers. 2735*f59d82ffSelric 2736*f59d82ffSelric * lib/krb5/{decrypt,encrypt}.c: Implement des-cbc-crc, and 2737*f59d82ffSelric des-cbc-md5 in separate functions. 2738*f59d82ffSelric 2739*f59d82ffSelric * lib/krb5/krb5.h: Add more checksum and encryption types. 2740*f59d82ffSelric 2741*f59d82ffSelric * lib/krb5/krb5_locl.h: Add etype to krb5_decrypt. 2742*f59d82ffSelric 2743*f59d82ffSelricSun Jul 6 23:02:59 1997 Assar Westerlund <assar@sics.se> 2744*f59d82ffSelric 2745*f59d82ffSelric * lib/krb5/[gs]et_default_realm.c, kuserok.c: new files 2746*f59d82ffSelric 2747*f59d82ffSelric * lib/krb5/config_file.[ch]: new c-based configuration reading 2748*f59d82ffSelric stuff 2749*f59d82ffSelric 2750*f59d82ffSelricWed Jul 2 23:12:56 1997 Assar Westerlund <assar@sics.se> 2751*f59d82ffSelric 2752*f59d82ffSelric * configure.in: Set WFLAGS if using gcc 2753*f59d82ffSelric 2754*f59d82ffSelricWed Jul 2 17:47:03 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2755*f59d82ffSelric 2756*f59d82ffSelric * lib/asn1/der_put.c (der_put_int): Return size correctly. 2757*f59d82ffSelric 2758*f59d82ffSelric * admin/ank.c: Be compatible with the asn1 principal format. 2759*f59d82ffSelric 2760*f59d82ffSelricWed Jul 1 23:52:20 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2761*f59d82ffSelric 2762*f59d82ffSelric * lib/asn1: Now all decode_* and encode_* functions now take a 2763*f59d82ffSelric final size_t* argument, that they return the size in. Return 2764*f59d82ffSelric values are zero for success, and anything else (such as some 2765*f59d82ffSelric ASN1_* constant) for error. 2766*f59d82ffSelric 2767*f59d82ffSelricMon Jun 30 06:08:14 1997 Assar Westerlund <assar@sics.se> 2768*f59d82ffSelric 2769*f59d82ffSelric * lib/krb5/keytab.c (krb5_kt_add_entry): change open mode to 2770*f59d82ffSelric O_WRONLY | O_APPEND 2771*f59d82ffSelric 2772*f59d82ffSelric * lib/krb5/get_cred.c: removed stale prototype for 2773*f59d82ffSelric `extract_ticket' and corrected call. 2774*f59d82ffSelric 2775*f59d82ffSelric * lib/asn1/gen_length.c (length_type): Make the length functions 2776*f59d82ffSelric for SequenceOf non-destructive 2777*f59d82ffSelric 2778*f59d82ffSelric * admin/ank.c (doit): Fix reading of `y/n'. 2779*f59d82ffSelric 2780*f59d82ffSelricMon Jun 16 05:41:43 1997 Assar Westerlund <assar@sics.se> 2781*f59d82ffSelric 2782*f59d82ffSelric * lib/gssapi/wrap.c, unwrap.c: do encrypt and add sequence number 2783*f59d82ffSelric 2784*f59d82ffSelric * lib/gssapi/get_mic.c, verify_mic.c: Add sequence number. 2785*f59d82ffSelric 2786*f59d82ffSelric * lib/gssapi/accept_sec_context.c (gss_accept_sec_context): Set 2787*f59d82ffSelric KRB5_AUTH_CONTEXT_DO_SEQUENCE. Verify 8003 checksum. 2788*f59d82ffSelric 2789*f59d82ffSelric * lib/gssapi/8003.c: New file. 2790*f59d82ffSelric 2791*f59d82ffSelric * lib/krb/krb5.h: Define a `krb_authenticator' as an ASN.1 2792*f59d82ffSelric Authenticator. 2793*f59d82ffSelric 2794*f59d82ffSelric * lib/krb5/auth_context.c: New functions 2795*f59d82ffSelric `krb5_auth_setlocalseqnumber' and `krb5_auth_setremoteseqnumber' 2796*f59d82ffSelric 2797*f59d82ffSelricTue Jun 10 00:35:54 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2798*f59d82ffSelric 2799*f59d82ffSelric * lib/krb5: Preapre for use of some asn1-types. 2800*f59d82ffSelric 2801*f59d82ffSelric * lib/asn1/*.c (copy_*): Constness. 2802*f59d82ffSelric 2803*f59d82ffSelric * lib/krb5/krb5.h: Include asn1.h; krb5_data is now an 2804*f59d82ffSelric octet_string. 2805*f59d82ffSelric 2806*f59d82ffSelric * lib/asn1/der*,gen.c: krb5_data -> octet_string, char * -> 2807*f59d82ffSelric general_string 2808*f59d82ffSelric 2809*f59d82ffSelric * lib/asn1/libasn1.h: Moved stuff from asn1_locl.h that doesn't 2810*f59d82ffSelric have anything to do with asn1_compile. 2811*f59d82ffSelric 2812*f59d82ffSelric * lib/asn1/asn1_locl.h: Remove der.h. Add some prototypes. 2813*f59d82ffSelric 2814*f59d82ffSelricSun Jun 8 03:51:55 1997 Assar Westerlund <assar@sics.se> 2815*f59d82ffSelric 2816*f59d82ffSelric * kdc/kerberos5.c: Fix PA-ENC-TS-ENC 2817*f59d82ffSelric 2818*f59d82ffSelric * kdc/connect.c(process_request): Set `new' 2819*f59d82ffSelric 2820*f59d82ffSelric * lib/krb5/get_in_tkt.c: Do PA-ENC-TS-ENC the correct way. 2821*f59d82ffSelric 2822*f59d82ffSelric * lib: Added editline,sl,roken. 2823*f59d82ffSelric 2824*f59d82ffSelricMon Jun 2 00:37:48 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2825*f59d82ffSelric 2826*f59d82ffSelric * lib/krb5/fcache.c: Move file cache from cache.c. 2827*f59d82ffSelric 2828*f59d82ffSelric * lib/krb5/cache.c: Allow more than one cache type. 2829*f59d82ffSelric 2830*f59d82ffSelricSun Jun 1 23:45:33 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2831*f59d82ffSelric 2832*f59d82ffSelric * admin/extkeytab.c: Merged with kdb_edit. 2833*f59d82ffSelric 2834*f59d82ffSelricSun Jun 1 23:23:08 1997 Assar Westerlund <assar@sics.se> 2835*f59d82ffSelric 2836*f59d82ffSelric * kdc/kdc.c: more support for ENC-TS-ENC 2837*f59d82ffSelric 2838*f59d82ffSelric * lib/krb5/get_in_tkt.c: redone to enable pre-authentication 2839*f59d82ffSelric 2840*f59d82ffSelricSun Jun 1 22:45:11 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2841*f59d82ffSelric 2842*f59d82ffSelric * lib/hdb/db.c: Merge fetch and store. 2843*f59d82ffSelric 2844*f59d82ffSelric * admin: Merge to one program. 2845*f59d82ffSelric 2846*f59d82ffSelric * lib/krb5/str2key.c: Fill in keytype and length. 2847*f59d82ffSelric 2848*f59d82ffSelricSun Jun 1 16:31:23 1997 Assar Westerlund <assar@sics.se> 2849*f59d82ffSelric 2850*f59d82ffSelric * lib/krb5/rd_safe.c, lib/krb5/rd_priv.c, lib/krb5/mk_rep.c, 2851*f59d82ffSelric lib/krb5/mk_priv.c, lib/krb5/build_auth.c: Some support for 2852*f59d82ffSelric KRB5_AUTH_CONTEXT_DO_SEQUENCE 2853*f59d82ffSelric 2854*f59d82ffSelric * lib/krb5/get_in_tkt.c (get_in_tkt): be prepared to parse an 2855*f59d82ffSelric KRB_ERROR. Some support for PA_ENC_TS_ENC. 2856*f59d82ffSelric 2857*f59d82ffSelric * lib/krb5/auth_context.c: implemented seq_number functions 2858*f59d82ffSelric 2859*f59d82ffSelric * lib/krb5/generate_subkey.c, generate_seq_number.c: new files 2860*f59d82ffSelric 2861*f59d82ffSelric * lib/gssapi/gssapi.h: avoid including <krb5.h> 2862*f59d82ffSelric 2863*f59d82ffSelric * lib/asn1/Makefile.am: SUFFIXES as a variable to make automake 2864*f59d82ffSelric happy 2865*f59d82ffSelric 2866*f59d82ffSelric * kdc/kdc.c: preliminary PREAUTH_ENC_TIMESTAMP 2867*f59d82ffSelric 2868*f59d82ffSelric * configure.in: adapted to automake 1.1p 2869*f59d82ffSelric 2870*f59d82ffSelricMon May 26 22:26:21 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2871*f59d82ffSelric 2872*f59d82ffSelric * lib/krb5/principal.c: Add contexts to many functions. 2873*f59d82ffSelric 2874*f59d82ffSelricThu May 15 20:25:37 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2875*f59d82ffSelric 2876*f59d82ffSelric * lib/krb5/verify_user.c: First stab at a verify user. 2877*f59d82ffSelric 2878*f59d82ffSelric * lib/auth/sia/sia5.c: SIA module for Kerberos 5. 2879*f59d82ffSelric 2880*f59d82ffSelricMon Apr 14 00:09:03 1997 Assar Westerlund <assar@sics.se> 2881*f59d82ffSelric 2882*f59d82ffSelric * lib/gssapi: Enough of a gssapi-over-krb5 implementation to be 2883*f59d82ffSelric able to (mostly) run gss-client and gss-server. 2884*f59d82ffSelric 2885*f59d82ffSelric * lib/krb5/keytab.c: implemented krb5_kt_add_entry, 2886*f59d82ffSelric krb5_kt_store_principal, krb5_kt_store_keyblock 2887*f59d82ffSelric 2888*f59d82ffSelric * lib/des/md5.[ch], sha.[ch]: new files 2889*f59d82ffSelric 2890*f59d82ffSelric * lib/asn1/der_get.c (generalizedtime2time): use `timegm' 2891*f59d82ffSelric 2892*f59d82ffSelric * lib/asn1/timegm.c: new file 2893*f59d82ffSelric 2894*f59d82ffSelric * admin/extkeytab.c: new program 2895*f59d82ffSelric 2896*f59d82ffSelric * admin/admin_locl.h: new file 2897*f59d82ffSelric 2898*f59d82ffSelric * admin/Makefile.am: Added extkeytab 2899*f59d82ffSelric 2900*f59d82ffSelric * configure.in: moved config to include 2901*f59d82ffSelric removed timezone garbage 2902*f59d82ffSelric added lib/gssapi and admin 2903*f59d82ffSelric 2904*f59d82ffSelric * Makefile.am: Added admin 2905*f59d82ffSelric 2906*f59d82ffSelricMon Mar 17 11:34:05 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2907*f59d82ffSelric 2908*f59d82ffSelric * kdc/kdc.c: Use new copying functions, and free some data. 2909*f59d82ffSelric 2910*f59d82ffSelric * lib/asn1/Makefile.am: Try to not always rebuild generated files. 2911*f59d82ffSelric 2912*f59d82ffSelric * lib/asn1/der_put.c: Add fix_dce(). 2913*f59d82ffSelric 2914*f59d82ffSelric * lib/asn1/der_{get,length,put}.c: Fix include files. 2915*f59d82ffSelric 2916*f59d82ffSelric * lib/asn1/der_free.c: Remove unused functions. 2917*f59d82ffSelric 2918*f59d82ffSelric * lib/asn1/gen.c: Split into gen_encode, gen_decode, gen_free, 2919*f59d82ffSelric gen_length, and gen_copy. 2920*f59d82ffSelric 2921*f59d82ffSelricSun Mar 16 18:13:52 1997 Assar Westerlund <assar@sics.se> 2922*f59d82ffSelric 2923*f59d82ffSelric * lib/krb5/sendauth.c: implemented functionality 2924*f59d82ffSelric 2925*f59d82ffSelric * lib/krb5/rd_rep.c: Use `krb5_decrypt' 2926*f59d82ffSelric 2927*f59d82ffSelric * lib/krb5/cache.c (krb5_cc_get_name): return default if `id' == 2928*f59d82ffSelric NULL 2929*f59d82ffSelric 2930*f59d82ffSelric * lib/krb5/principal.c (krb5_free_principal): added `context' 2931*f59d82ffSelric argument. Changed all callers. 2932*f59d82ffSelric 2933*f59d82ffSelric (krb5_sname_to_principal): new function 2934*f59d82ffSelric 2935*f59d82ffSelric * lib/krb5/auth_context.c (krb5_free_authenticator): add `context' 2936*f59d82ffSelric argument. Changed all callers 2937*f59d82ffSelric 2938*f59d82ffSelric * lib/krb5/{net_write.c,net_read.c,recvauth.c}: new files 2939*f59d82ffSelric 2940*f59d82ffSelric * lib/asn1/gen.c: Fix encoding and decoding of BitStrings 2941*f59d82ffSelric 2942*f59d82ffSelricFri Mar 14 11:29:00 1997 Assar Westerlund <assar@sics.se> 2943*f59d82ffSelric 2944*f59d82ffSelric * configure.in: look for *dbm? 2945*f59d82ffSelric 2946*f59d82ffSelric * lib/asn1/gen.c: Fix filename in generated files. Check fopens. 2947*f59d82ffSelric Put trailing newline in asn1_files. 2948*f59d82ffSelric 2949*f59d82ffSelricFri Mar 14 05:06:44 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2950*f59d82ffSelric 2951*f59d82ffSelric * lib/krb5/get_in_tkt.c: Fix some memory leaks. 2952*f59d82ffSelric 2953*f59d82ffSelric * lib/krb5/krbhst.c: Properly free hostlist. 2954*f59d82ffSelric 2955*f59d82ffSelric * lib/krb5/decrypt.c: CRCs are 32 bits. 2956*f59d82ffSelric 2957*f59d82ffSelricFri Mar 14 04:39:15 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2958*f59d82ffSelric 2959*f59d82ffSelric * lib/asn1/gen.c: Generate one file for each type. 2960*f59d82ffSelric 2961*f59d82ffSelricFri Mar 14 04:13:47 1997 Assar Westerlund <assar@sics.se> 2962*f59d82ffSelric 2963*f59d82ffSelric * lib/asn1/gen.c: Generate `length_FOO' functions 2964*f59d82ffSelric 2965*f59d82ffSelric * lib/asn1/der_length.c: new file 2966*f59d82ffSelric 2967*f59d82ffSelric * kuser/klist.c: renamed stime -> printable_time to avoid conflict 2968*f59d82ffSelric on HP/UX 2969*f59d82ffSelric 2970*f59d82ffSelricFri Mar 14 03:37:23 1997 Johan Danielsson <joda@emma.pdc.kth.se> 2971*f59d82ffSelric 2972*f59d82ffSelric * lib/hdb/ndbm.c: Return NOENTRY if fetch fails. Don't free 2973*f59d82ffSelric datums. Don't add .db to filename. 2974*f59d82ffSelric 2975*f59d82ffSelricFri Mar 14 02:49:51 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2976*f59d82ffSelric 2977*f59d82ffSelric * kdc/dump.c: Database dump program. 2978*f59d82ffSelric 2979*f59d82ffSelric * kdc/ank.c: Trivial database editing program. 2980*f59d82ffSelric 2981*f59d82ffSelric * kdc/{kdc.c, load.c}: Use libhdb. 2982*f59d82ffSelric 2983*f59d82ffSelric * lib/hdb: New database routine library. 2984*f59d82ffSelric 2985*f59d82ffSelric * lib/krb5/error/Makefile.am: Add hdb_err. 2986*f59d82ffSelric 2987*f59d82ffSelricWed Mar 12 17:41:14 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 2988*f59d82ffSelric 2989*f59d82ffSelric * kdc/kdc.c: Rewritten AS, and somewhat more working TGS support. 2990*f59d82ffSelric 2991*f59d82ffSelric * lib/asn1/gen.c: Generate free functions. 2992*f59d82ffSelric 2993*f59d82ffSelric * Some specific free functions. 2994*f59d82ffSelric 2995*f59d82ffSelricWed Mar 12 12:30:13 1997 Assar Westerlund <assar@sics.se> 2996*f59d82ffSelric 2997*f59d82ffSelric * lib/krb5/krb5_mk_req_ext.c: new file 2998*f59d82ffSelric 2999*f59d82ffSelric * lib/asn1/gen.c: optimize the case with a simple type 3000*f59d82ffSelric 3001*f59d82ffSelric * lib/krb5/get_cred.c (krb5_get_credentials): Use 3002*f59d82ffSelric `mk_req_extended' and remove old code. 3003*f59d82ffSelric 3004*f59d82ffSelric * lib/krb5/get_in_tkt.c (decrypt_tkt): First try with an 3005*f59d82ffSelric EncASRepPart, then with an EncTGSRepPart. 3006*f59d82ffSelric 3007*f59d82ffSelricWed Mar 12 08:26:04 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 3008*f59d82ffSelric 3009*f59d82ffSelric * lib/krb5/store_emem.c: New resizable memory storage. 3010*f59d82ffSelric 3011*f59d82ffSelric * lib/krb5/{store.c, store_fd.c, store_mem.c}: Split of store.c 3012*f59d82ffSelric 3013*f59d82ffSelric * lib/krb5/krb5.h: Add free entry to krb5_storage. 3014*f59d82ffSelric 3015*f59d82ffSelric * lib/krb5/decrypt.c: Make keyblock const. 3016*f59d82ffSelric 3017*f59d82ffSelricTue Mar 11 20:22:17 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 3018*f59d82ffSelric 3019*f59d82ffSelric * lib/krb5/krb5.h: Add EncTicketPart to krb5_ticket. 3020*f59d82ffSelric 3021*f59d82ffSelric * lib/krb5/rd_req.c: Return whole asn.1 ticket in 3022*f59d82ffSelric krb5_ticket->tkt. 3023*f59d82ffSelric 3024*f59d82ffSelric * lib/krb5/get_in_tkt.c: TGS -> AS 3025*f59d82ffSelric 3026*f59d82ffSelric * kuser/kfoo.c: Print error string rather than number. 3027*f59d82ffSelric 3028*f59d82ffSelric * kdc/kdc.c: Some kind of non-working TGS support. 3029*f59d82ffSelric 3030*f59d82ffSelricMon Mar 10 01:43:22 1997 Assar Westerlund <assar@sics.se> 3031*f59d82ffSelric 3032*f59d82ffSelric * lib/asn1/gen.c: reduced generated code by 1/5 3033*f59d82ffSelric 3034*f59d82ffSelric * lib/asn1/der_put.c: (der_put_length_and_tag): new function 3035*f59d82ffSelric 3036*f59d82ffSelric * lib/asn1/der_get.c (der_match_tag_and_length): new function 3037*f59d82ffSelric 3038*f59d82ffSelric * lib/asn1/der.h: added prototypes 3039*f59d82ffSelric 3040*f59d82ffSelricMon Mar 10 01:15:43 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 3041*f59d82ffSelric 3042*f59d82ffSelric * lib/krb5/krb5.h: Include <asn1_err.h>. Add prototype for 3043*f59d82ffSelric krb5_rd_req_with_keyblock. 3044*f59d82ffSelric 3045*f59d82ffSelric * lib/krb5/rd_req.c: Add function krb5_rd_req_with_keyblock that 3046*f59d82ffSelric takes a precomputed keyblock. 3047*f59d82ffSelric 3048*f59d82ffSelric * lib/krb5/get_cred.c: Use krb5_mk_req rather than inlined code. 3049*f59d82ffSelric 3050*f59d82ffSelric * lib/krb5/mk_req.c: Calculate checksum of in_data. 3051*f59d82ffSelric 3052*f59d82ffSelricSun Mar 9 21:17:58 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 3053*f59d82ffSelric 3054*f59d82ffSelric * lib/krb5/error/compile_et.awk: Add a declaration of struct 3055*f59d82ffSelric error_list, and multiple inclusion block to header files. 3056*f59d82ffSelric 3057*f59d82ffSelricSun Mar 9 21:01:12 1997 Assar Westerlund <assar@sics.se> 3058*f59d82ffSelric 3059*f59d82ffSelric * lib/krb5/rd_req.c: do some checks on times 3060*f59d82ffSelric 3061*f59d82ffSelric * lib/krb/{mk_priv.c, rd_priv.c, sendauth.c, decrypt.c, 3062*f59d82ffSelric address.c}: new files 3063*f59d82ffSelric 3064*f59d82ffSelric * lib/krb5/auth_context.c: more code 3065*f59d82ffSelric 3066*f59d82ffSelric * configure.in: try to figure out timezone 3067*f59d82ffSelric 3068*f59d82ffSelricSat Mar 8 11:41:07 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 3069*f59d82ffSelric 3070*f59d82ffSelric * lib/krb5/error/error.c: Try strerror if error code wasn't found. 3071*f59d82ffSelric 3072*f59d82ffSelric * lib/krb5/get_in_tkt.c: Remove realm parameter from 3073*f59d82ffSelric krb5_get_salt. 3074*f59d82ffSelric 3075*f59d82ffSelric * lib/krb5/context.c: Initialize error table. 3076*f59d82ffSelric 3077*f59d82ffSelric * kdc: The beginnings of a kdc. 3078*f59d82ffSelric 3079*f59d82ffSelricSat Mar 8 08:16:28 1997 Assar Westerlund <assar@sics.se> 3080*f59d82ffSelric 3081*f59d82ffSelric * lib/krb5/rd_safe.c: new file 3082*f59d82ffSelric 3083*f59d82ffSelric * lib/krb5/checksum.c (krb5_verify_checksum): New function 3084*f59d82ffSelric 3085*f59d82ffSelric * lib/krb5/get_cred.c: use krb5_create_checksum 3086*f59d82ffSelric 3087*f59d82ffSelric * lib/krb5/checksum.c: new file 3088*f59d82ffSelric 3089*f59d82ffSelric * lib/krb5/store.c: no more arithmetic with void* 3090*f59d82ffSelric 3091*f59d82ffSelric * lib/krb5/cache.c: now seems to work again 3092*f59d82ffSelric 3093*f59d82ffSelricSat Mar 8 06:58:09 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 3094*f59d82ffSelric 3095*f59d82ffSelric * lib/krb5/Makefile.am: Add asn1_glue.c and error/*.c to libkrb5. 3096*f59d82ffSelric 3097*f59d82ffSelric * lib/krb5/get_in_tkt.c: Moved some functions to asn1_glue.c. 3098*f59d82ffSelric 3099*f59d82ffSelric * lib/krb5/asn1_glue.c: Moved some asn1-stuff here. 3100*f59d82ffSelric 3101*f59d82ffSelric * lib/krb5/{cache,keytab}.c: Use new storage functions. 3102*f59d82ffSelric 3103*f59d82ffSelric * lib/krb5/krb5.h: Protypes for new storage functions. 3104*f59d82ffSelric 3105*f59d82ffSelric * lib/krb5/krb5.h: Make krb5_{ret,store}_* functions able to write 3106*f59d82ffSelric data to more than file descriptors. 3107*f59d82ffSelric 3108*f59d82ffSelricSat Mar 8 01:01:17 1997 Assar Westerlund <assar@sics.se> 3109*f59d82ffSelric 3110*f59d82ffSelric * lib/krb5/encrypt.c: New file. 3111*f59d82ffSelric 3112*f59d82ffSelric * lib/krb5/Makefile.am: More -I 3113*f59d82ffSelric 3114*f59d82ffSelric * configure.in: Test for big endian, random, rand, setitimer 3115*f59d82ffSelric 3116*f59d82ffSelric * lib/asn1/gen.c: perhaps even decodes bitstrings 3117*f59d82ffSelric 3118*f59d82ffSelricThu Mar 6 19:05:29 1997 Johan Danielsson <joda@blubb.pdc.kth.se> 3119*f59d82ffSelric 3120*f59d82ffSelric * lib/krb5/config_file.y: Better return values on error. 3121*f59d82ffSelric 3122*f59d82ffSelricSat Feb 8 15:59:56 1997 Assar Westerlund <assar@pdc.kth.se> 3123*f59d82ffSelric 3124*f59d82ffSelric * lib/asn1/parse.y: ifdef HAVE_STRDUP 3125*f59d82ffSelric 3126*f59d82ffSelric * lib/asn1/lex.l: ifdef strdup 3127*f59d82ffSelric brange-dead version of list of special characters to make stupid 3128*f59d82ffSelric lex accept it. 3129*f59d82ffSelric 3130*f59d82ffSelric * lib/asn1/gen.c: A DER integer should really be a `unsigned' 3131*f59d82ffSelric 3132*f59d82ffSelric * lib/asn1/der_put.c: A DER integer should really be a `unsigned' 3133*f59d82ffSelric 3134*f59d82ffSelric * lib/asn1/der_get.c: A DER integer should really be a `unsigned' 3135*f59d82ffSelric 3136*f59d82ffSelric * lib/krb5/error/Makefile.am: It seems "$(SHELL) ./compile_et" is 3137*f59d82ffSelric needed. 3138*f59d82ffSelric 3139*f59d82ffSelric * lib/krb/mk_rep.c, lib/krb/rd_req.c, lib/krb/store.c, 3140*f59d82ffSelric lib/krb/store.h: new files. 3141*f59d82ffSelric 3142*f59d82ffSelric * lib/krb5/keytab.c: now even with some functionality. 3143*f59d82ffSelric 3144*f59d82ffSelric * lib/asn1/gen.c: changed paramater from void * to Foo * 3145*f59d82ffSelric 3146*f59d82ffSelric * lib/asn1/der_get.c (der_get_octet_string): Fixed bug with empty 3147*f59d82ffSelric string. 3148*f59d82ffSelric 3149*f59d82ffSelricSun Jan 19 06:17:39 1997 Assar Westerlund <assar@pdc.kth.se> 3150*f59d82ffSelric 3151*f59d82ffSelric * lib/krb5/get_cred.c (krb5_get_credentials): Check for creds in 3152*f59d82ffSelric cc before getting new ones. 3153*f59d82ffSelric 3154*f59d82ffSelric * lib/krb5/krb5.h (krb5_free_keyblock): Fix prototype. 3155*f59d82ffSelric 3156*f59d82ffSelric * lib/krb5/build_auth.c (krb5_build_authenticator): It seems the 3157*f59d82ffSelric CRC should be stored LSW first. (?) 3158*f59d82ffSelric 3159*f59d82ffSelric * lib/krb5/auth_context.c: Implement `krb5_auth_con_getkey' and 3160*f59d82ffSelric `krb5_free_keyblock' 3161*f59d82ffSelric 3162*f59d82ffSelric * lib/**/Makefile.am: Rename foo libfoo.a 3163*f59d82ffSelric 3164*f59d82ffSelric * include/Makefile.in: Use test instead of [ 3165*f59d82ffSelric -e does not work with /bin/sh on psoriasis 3166*f59d82ffSelric 3167*f59d82ffSelric * configure.in: Search for awk 3168*f59d82ffSelric create lib/krb/error/compile_et 3169*f59d82ffSelric 3170*f59d82ffSelricTue Jan 14 03:46:26 1997 Assar Westerlund <assar@pdc.kth.se> 3171*f59d82ffSelric 3172*f59d82ffSelric * lib/krb5/Makefile.am: replaced mit-crc.c by crc.c 3173*f59d82ffSelric 3174*f59d82ffSelricWed Dec 18 00:53:55 1996 Johan Danielsson <joda@emma.pdc.kth.se> 3175*f59d82ffSelric 3176*f59d82ffSelric * kuser/kinit.c: Guess principal. 3177*f59d82ffSelric 3178*f59d82ffSelric * lib/krb5/error/compile_et.awk: Don't include krb5.h. Fix some 3179*f59d82ffSelric warnings. 3180*f59d82ffSelric 3181*f59d82ffSelric * lib/krb5/error/asn1_err.et: Add ASN.1 error messages. 3182*f59d82ffSelric 3183*f59d82ffSelric * lib/krb5/mk_req.c: Get client from cache. 3184*f59d82ffSelric 3185*f59d82ffSelric * lib/krb5/cache.c: Add better error checking some useful return 3186*f59d82ffSelric values. 3187*f59d82ffSelric 3188*f59d82ffSelric * lib/krb5/krb5.h: Fix krb5_auth_context. 3189*f59d82ffSelric 3190*f59d82ffSelric * lib/asn1/der.h: Make krb5_data compatible with krb5.h 3191*f59d82ffSelric 3192*f59d82ffSelricTue Dec 17 01:32:36 1996 Johan Danielsson <joda@emma.pdc.kth.se> 3193*f59d82ffSelric 3194*f59d82ffSelric * lib/krb5/error: Add primitive error library. 3195*f59d82ffSelric 3196*f59d82ffSelricMon Dec 16 16:30:20 1996 Johan Danielsson <joda@emma.pdc.kth.se> 3197*f59d82ffSelric 3198*f59d82ffSelric * lib/krb5/cache.c: Get correct address type from cache. 3199*f59d82ffSelric 3200*f59d82ffSelric * lib/krb5/krb5.h: Change int16 to int to be compatible with asn1. 3201*f59d82ffSelric 3202