1*5e9cd1aeSAssar Westerlund2000-12-31 Assar Westerlund <assar@sics.se> 2*5e9cd1aeSAssar Westerlund 3*5e9cd1aeSAssar Westerlund * lib/krb5/test_get_addrs.c (main): handle krb5_init_context 4*5e9cd1aeSAssar Westerlund failure consistently 5*5e9cd1aeSAssar Westerlund * lib/krb5/string-to-key-test.c (main): handle krb5_init_context 6*5e9cd1aeSAssar Westerlund failure consistently 7*5e9cd1aeSAssar Westerlund * lib/krb5/prog_setup.c (krb5_program_setup): handle 8*5e9cd1aeSAssar Westerlund krb5_init_context failure consistently 9*5e9cd1aeSAssar Westerlund * lib/hdb/convert_db.c (main): handle krb5_init_context failure 10*5e9cd1aeSAssar Westerlund consistently 11*5e9cd1aeSAssar Westerlund * kuser/kverify.c (main): handle krb5_init_context failure 12*5e9cd1aeSAssar Westerlund consistently 13*5e9cd1aeSAssar Westerlund * kuser/klist.c (main): handle krb5_init_context failure 14*5e9cd1aeSAssar Westerlund consistently 15*5e9cd1aeSAssar Westerlund * kuser/kinit.c (main): handle krb5_init_context failure 16*5e9cd1aeSAssar Westerlund consistently 17*5e9cd1aeSAssar Westerlund * kuser/kgetcred.c (main): handle krb5_init_context failure 18*5e9cd1aeSAssar Westerlund consistently 19*5e9cd1aeSAssar Westerlund * kuser/kdestroy.c (main): handle krb5_init_context failure 20*5e9cd1aeSAssar Westerlund consistently 21*5e9cd1aeSAssar Westerlund * kuser/kdecode_ticket.c (main): handle krb5_init_context failure 22*5e9cd1aeSAssar Westerlund consistently 23*5e9cd1aeSAssar Westerlund * kuser/generate-requests.c (generate_requests): handle 24*5e9cd1aeSAssar Westerlund krb5_init_context failure consistently 25*5e9cd1aeSAssar Westerlund * kpasswd/kpasswd.c (main): handle krb5_init_context failure 26*5e9cd1aeSAssar Westerlund consistently 27*5e9cd1aeSAssar Westerlund * kpasswd/kpasswd-generator.c (generate_requests): handle 28*5e9cd1aeSAssar Westerlund krb5_init_context failure consistently 29*5e9cd1aeSAssar Westerlund * kdc/main.c (main): handle krb5_init_context failure consistently 30*5e9cd1aeSAssar Westerlund * appl/test/uu_client.c (proto): handle krb5_init_context failure 31*5e9cd1aeSAssar Westerlund consistently 32*5e9cd1aeSAssar Westerlund * appl/kf/kf.c (main): handle krb5_init_context failure 33*5e9cd1aeSAssar Westerlund consistently 34*5e9cd1aeSAssar Westerlund * admin/ktutil.c (main): handle krb5_init_context failure 35*5e9cd1aeSAssar Westerlund consistently 36*5e9cd1aeSAssar Westerlund 37*5e9cd1aeSAssar Westerlund * admin/get.c (kt_get): more error checking 38*5e9cd1aeSAssar Westerlund 39*5e9cd1aeSAssar Westerlund2000-12-29 Assar Westerlund <assar@sics.se> 40*5e9cd1aeSAssar Westerlund 41*5e9cd1aeSAssar Westerlund * lib/asn1/asn1_print.c (loop): check for length longer than data. 42*5e9cd1aeSAssar Westerlund inspired by lha@stacken.kth.se 43*5e9cd1aeSAssar Westerlund 44*5e9cd1aeSAssar Westerlund2000-12-16 Johan Danielsson <joda@pdc.kth.se> 45*5e9cd1aeSAssar Westerlund 46*5e9cd1aeSAssar Westerlund * admin/ktutil.8: reflect recent changes 47*5e9cd1aeSAssar Westerlund 48*5e9cd1aeSAssar Westerlund * admin/copy.c: don't copy an entry that already exists in the 49*5e9cd1aeSAssar Westerlund keytab, and warn if the keyblock differs 50*5e9cd1aeSAssar Westerlund 51*5e9cd1aeSAssar Westerlund2000-12-15 Johan Danielsson <joda@pdc.kth.se> 52*5e9cd1aeSAssar Westerlund 53*5e9cd1aeSAssar Westerlund * admin/Makefile.am: merge srvconvert and srvcreate with copy 54*5e9cd1aeSAssar Westerlund 55*5e9cd1aeSAssar Westerlund * admin/copy.c: merge srvconvert and srvcreate with copy 56*5e9cd1aeSAssar Westerlund 57*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: always build keytab_krb4.c 58*5e9cd1aeSAssar Westerlund 59*5e9cd1aeSAssar Westerlund * lib/krb5/context.c: always register the krb4 keytab functions 60*5e9cd1aeSAssar Westerlund 61*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: declare krb4_ftk_ops 62*5e9cd1aeSAssar Westerlund 63*5e9cd1aeSAssar Westerlund * lib/krb5/keytab_krb4.c: We don't really need to include krb.h 64*5e9cd1aeSAssar Westerlund here, since we only use the principal size macros, so define these 65*5e9cd1aeSAssar Westerlund here. Theoretically someone could have a krb4 system where these 66*5e9cd1aeSAssar Westerlund values are != 40, but this is unlikely, and 67*5e9cd1aeSAssar Westerlund krb5_524_conv_principal also assume they are 40. 68*5e9cd1aeSAssar Westerlund 69*5e9cd1aeSAssar Westerlund2000-12-13 Johan Danielsson <joda@pdc.kth.se> 70*5e9cd1aeSAssar Westerlund 71*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: s/krb5_donot_reply/krb5_donot_replay/ 72*5e9cd1aeSAssar Westerlund 73*5e9cd1aeSAssar Westerlund * lib/krb5/replay.c: fix query-replace-o from MD5 API change, and 74*5e9cd1aeSAssar Westerlund the struct is called krb5_donot_replay 75*5e9cd1aeSAssar Westerlund 76*5e9cd1aeSAssar Westerlund2000-12-12 Assar Westerlund <assar@sics.se> 77*5e9cd1aeSAssar Westerlund 78*5e9cd1aeSAssar Westerlund * admin/srvconvert.c (srvconvert): do not use data after free:ing 79*5e9cd1aeSAssar Westerlund it 80*5e9cd1aeSAssar Westerlund 81*5e9cd1aeSAssar Westerlund2000-12-11 Assar Westerlund <assar@sics.se> 82*5e9cd1aeSAssar Westerlund 83*5e9cd1aeSAssar Westerlund * Release 0.3d 84*5e9cd1aeSAssar Westerlund 85*5e9cd1aeSAssar Westerlund2000-12-11 Assar Westerlund <assar@sics.se> 86*5e9cd1aeSAssar Westerlund 87*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am (libkrb5_la_LDFLAGS): set version to 14:0:0 88*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am (libhdb_la_LDFLAGS): update to 6:3:0 89*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am (libkrb5_la_LIBADD): add library 90*5e9cd1aeSAssar Westerlund dependencies 91*5e9cd1aeSAssar Westerlund 92*5e9cd1aeSAssar Westerlund2000-12-10 Johan Danielsson <joda@pdc.kth.se> 93*5e9cd1aeSAssar Westerlund 94*5e9cd1aeSAssar Westerlund * lib/krb5/auth_context.c: implement krb5_auth_con_{get,set}rcache 95*5e9cd1aeSAssar Westerlund 96*5e9cd1aeSAssar Westerlund2000-12-08 Assar Westerlund <assar@sics.se> 97*5e9cd1aeSAssar Westerlund 98*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (krb5_enctype): add ETYPE_DES3_CBC_NONE_IVEC as 99*5e9cd1aeSAssar Westerlund a new pseudo-type 100*5e9cd1aeSAssar Westerlund 101*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c (DES_AFS3_CMU_string_to_key): always treat 102*5e9cd1aeSAssar Westerlund cell names as lower case 103*5e9cd1aeSAssar Westerlund (krb5_encrypt_ivec, krb5_decrypt_ivec): new functions that allow an 104*5e9cd1aeSAssar Westerlund explicit ivec to be specified. fix all sub-functions. 105*5e9cd1aeSAssar Westerlund (DES3_CBC_encrypt_ivec): new function that takes an explicit ivec 106*5e9cd1aeSAssar Westerlund 107*5e9cd1aeSAssar Westerlund2000-12-06 Johan Danielsson <joda@pdc.kth.se> 108*5e9cd1aeSAssar Westerlund 109*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: actually build replay cache code 110*5e9cd1aeSAssar Westerlund 111*5e9cd1aeSAssar Westerlund * lib/krb5/replay.c: implement krb5_get_server_rcache 112*5e9cd1aeSAssar Westerlund 113*5e9cd1aeSAssar Westerlund * kpasswd/kpasswdd.c: de-pointerise auth_context parameter to 114*5e9cd1aeSAssar Westerlund krb5_mk_rep 115*5e9cd1aeSAssar Westerlund 116*5e9cd1aeSAssar Westerlund * lib/krb5/recvauth.c: de-pointerise auth_context parameter to 117*5e9cd1aeSAssar Westerlund krb5_mk_rep 118*5e9cd1aeSAssar Westerlund 119*5e9cd1aeSAssar Westerlund * lib/krb5/mk_rep.c: auth_context should not be a pointer 120*5e9cd1aeSAssar Westerlund 121*5e9cd1aeSAssar Westerlund * lib/krb5/auth_context.c: implement krb5_auth_con_genaddrs, and 122*5e9cd1aeSAssar Westerlund make setaddrs_from_fd use that 123*5e9cd1aeSAssar Westerlund 124*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: add some more KRB5_AUTH_CONTEXT_* flags 125*5e9cd1aeSAssar Westerlund 126*5e9cd1aeSAssar Westerlund2000-12-05 Johan Danielsson <joda@pdc.kth.se> 127*5e9cd1aeSAssar Westerlund 128*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: add kerberos.8 manpage 129*5e9cd1aeSAssar Westerlund 130*5e9cd1aeSAssar Westerlund * lib/krb5/cache.c: check for NULL remove_cred function 131*5e9cd1aeSAssar Westerlund 132*5e9cd1aeSAssar Westerlund * lib/krb5/fcache.c: pretend that empty files are non-existant 133*5e9cd1aeSAssar Westerlund 134*5e9cd1aeSAssar Westerlund * lib/krb5/get_addrs.c (find_all_addresses): use getifaddrs, from 135*5e9cd1aeSAssar Westerlund Jason Thorpe <thorpej@netbsd.org> 136*5e9cd1aeSAssar Westerlund 137*5e9cd1aeSAssar Westerlund2000-12-01 Assar Westerlund <assar@sics.se> 138*5e9cd1aeSAssar Westerlund 139*5e9cd1aeSAssar Westerlund * configure.in: remove configure-time generation of krb5-config 140*5e9cd1aeSAssar Westerlund * tools/Makefile.am: add generation of krb5-config at make-time 141*5e9cd1aeSAssar Westerlund instead of configure-time 142*5e9cd1aeSAssar Westerlund 143*5e9cd1aeSAssar Westerlund * tools/krb5-config.in: add --prefix and --exec-prefix 144*5e9cd1aeSAssar Westerlund 145*5e9cd1aeSAssar Westerlund2000-11-30 Assar Westerlund <assar@sics.se> 146*5e9cd1aeSAssar Westerlund 147*5e9cd1aeSAssar Westerlund * tools/Makefile.am: add krb5-config.1 148*5e9cd1aeSAssar Westerlund * tools/krb5-config.in: add kadm-client and kadm5-server as 149*5e9cd1aeSAssar Westerlund libraries 150*5e9cd1aeSAssar Westerlund 151*5e9cd1aeSAssar Westerlund2000-11-29 Assar Westerlund <assar@sics.se> 152*5e9cd1aeSAssar Westerlund 153*5e9cd1aeSAssar Westerlund * tools/krb5-config.in: add --prefix, --exec-prefix and gssapi 154*5e9cd1aeSAssar Westerlund 155*5e9cd1aeSAssar Westerlund2000-11-29 Johan Danielsson <joda@pdc.kth.se> 156*5e9cd1aeSAssar Westerlund 157*5e9cd1aeSAssar Westerlund * configure.in: add roken/Makefile here, since it can't live in 158*5e9cd1aeSAssar Westerlund rk_ROKEN 159*5e9cd1aeSAssar Westerlund 160*5e9cd1aeSAssar Westerlund2000-11-16 Assar Westerlund <assar@sics.se> 161*5e9cd1aeSAssar Westerlund 162*5e9cd1aeSAssar Westerlund * configure.in: use the libtool -rpath, do not rely on ld 163*5e9cd1aeSAssar Westerlund understanding -rpath 164*5e9cd1aeSAssar Westerlund 165*5e9cd1aeSAssar Westerlund * configure.in: fix the -Wl stuff for krb4 linking add some 166*5e9cd1aeSAssar Westerlund gratuitous extra options when linking with an existing libdes 167*5e9cd1aeSAssar Westerlund 168*5e9cd1aeSAssar Westerlund2000-11-15 Assar Westerlund <assar@sics.se> 169*5e9cd1aeSAssar Westerlund 170*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.c (hdb_next_enctype2key): const-ize a little bit 171*5e9cd1aeSAssar Westerlund * lib/Makefile.am (SUBDIRS): try to only build des when needed 172*5e9cd1aeSAssar Westerlund * kuser/klist.c: print key versions numbers of v4 tickets in 173*5e9cd1aeSAssar Westerlund verbose mode 174*5e9cd1aeSAssar Westerlund 175*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c (tgs_rep2): adapt to new krb5_verify_ap_req2 176*5e9cd1aeSAssar Westerlund * appl/test/gss_common.c (read_token): remove unused variable 177*5e9cd1aeSAssar Westerlund 178*5e9cd1aeSAssar Westerlund * configure.in (krb4): add -Wl 179*5e9cd1aeSAssar Westerlund (MD4Init et al): look for these in more libraries 180*5e9cd1aeSAssar Westerlund (getmsg): only run test if we have the function 181*5e9cd1aeSAssar Westerlund (AC_OUTPUT): create tools/krb5-config 182*5e9cd1aeSAssar Westerlund 183*5e9cd1aeSAssar Westerlund * tools/krb5-config.in: new script for storing flags to use 184*5e9cd1aeSAssar Westerlund * Makefile.am (SUBDIRS): add tools 185*5e9cd1aeSAssar Westerlund 186*5e9cd1aeSAssar Westerlund * lib/krb5/get_cred.c (make_pa_tgs_req): update to new 187*5e9cd1aeSAssar Westerlund krb5_mk_req_internal 188*5e9cd1aeSAssar Westerlund * lib/krb5/mk_req_ext.c (krb5_mk_req_internal): allow different 189*5e9cd1aeSAssar Westerlund usages for the encryption. change callers 190*5e9cd1aeSAssar Westerlund * lib/krb5/rd_req.c (decrypt_authenticator): add an encryption 191*5e9cd1aeSAssar Westerlund `usage'. also try the old 192*5e9cd1aeSAssar Westerlund (and wrong) usage of KRB5_KU_AP_REQ_AUTH for backwards compatibility 193*5e9cd1aeSAssar Westerlund (krb5_verify_ap_req2): new function for specifying the usage different 194*5e9cd1aeSAssar Westerlund from the default (KRB5_KU_AP_REQ_AUTH) 195*5e9cd1aeSAssar Westerlund * lib/krb5/build_auth.c (krb5_build_authenticator): add a `usage' 196*5e9cd1aeSAssar Westerlund parameter to permit the generation of authenticators with 197*5e9cd1aeSAssar Westerlund different crypto usage 198*5e9cd1aeSAssar Westerlund 199*5e9cd1aeSAssar Westerlund * lib/krb5/mk_req.c (krb5_mk_req_exact): new function that takes a 200*5e9cd1aeSAssar Westerlund krb5_principal 201*5e9cd1aeSAssar Westerlund (krb5_mk_req): use krb5_mk_req_exact 202*5e9cd1aeSAssar Westerlund 203*5e9cd1aeSAssar Westerlund * lib/krb5/mcache.c (mcc_close): free data 204*5e9cd1aeSAssar Westerlund (mcc_destroy): don't free data 205*5e9cd1aeSAssar Westerlund 206*5e9cd1aeSAssar Westerlund2000-11-13 Assar Westerlund <assar@sics.se> 207*5e9cd1aeSAssar Westerlund 208*5e9cd1aeSAssar Westerlund * lib/hdb/ndbm.c: handle both ndbm.h and gdbm/ndbm.h 209*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.c: handle both ndbm.h and gdbm/ndbm.h 210*5e9cd1aeSAssar Westerlund 211*5e9cd1aeSAssar Westerlund2000-11-12 Johan Danielsson <joda@pdc.kth.se> 212*5e9cd1aeSAssar Westerlund 213*5e9cd1aeSAssar Westerlund * kdc/hpropd.8: remove extra .Xc 214*5e9cd1aeSAssar Westerlund 215*5e9cd1aeSAssar Westerlund2000-10-27 Johan Danielsson <joda@pdc.kth.se> 216*5e9cd1aeSAssar Westerlund 217*5e9cd1aeSAssar Westerlund * kuser/kinit.c: fix v4 fallback lifetime calculation 218*5e9cd1aeSAssar Westerlund 219*5e9cd1aeSAssar Westerlund2000-10-10 Johan Danielsson <joda@pdc.kth.se> 220*5e9cd1aeSAssar Westerlund 221*5e9cd1aeSAssar Westerlund * kdc/524.c: fix log messge 222*5e9cd1aeSAssar Westerlund 223*5e9cd1aeSAssar Westerlund2000-10-08 Assar Westerlund <assar@sics.se> 224*5e9cd1aeSAssar Westerlund 225*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c (krb5_change_password): check for fd's being 226*5e9cd1aeSAssar Westerlund too large to select on 227*5e9cd1aeSAssar Westerlund * kpasswd/kpasswdd.c (add_new_tcp): check for the socket fd being 228*5e9cd1aeSAssar Westerlund too large to select on 229*5e9cd1aeSAssar Westerlund * kdc/connect.c (add_new_tcp): check for the socket fd being too 230*5e9cd1aeSAssar Westerlund large to selct on 231*5e9cd1aeSAssar Westerlund * kdc/connect.c (loop): check that the socket fd is not too large 232*5e9cd1aeSAssar Westerlund to select on 233*5e9cd1aeSAssar Westerlund * lib/krb5/send_to_kdc.c (recv_loop): check `fd' for being too 234*5e9cd1aeSAssar Westerlund large to be able to select on 235*5e9cd1aeSAssar Westerlund 236*5e9cd1aeSAssar Westerlund * kdc/kaserver.c (do_authenticate): check for time skew 237*5e9cd1aeSAssar Westerlund 238*5e9cd1aeSAssar Westerlund2000-10-01 Assar Westerlund <assar@sics.se> 239*5e9cd1aeSAssar Westerlund 240*5e9cd1aeSAssar Westerlund * kdc/524.c (set_address): allocate memory for storing addresses 241*5e9cd1aeSAssar Westerlund in if the original request had an empty set of addresses 242*5e9cd1aeSAssar Westerlund * kdc/524.c (set_address): fix bad return of pointer to automatic 243*5e9cd1aeSAssar Westerlund data 244*5e9cd1aeSAssar Westerlund 245*5e9cd1aeSAssar Westerlund * config.sub: update to version 2000-09-11 (aka 1.181) from 246*5e9cd1aeSAssar Westerlund subversions.gnu.org 247*5e9cd1aeSAssar Westerlund 248*5e9cd1aeSAssar Westerlund * config.guess: update to version 2000-09-05 (aka 1.156) from 249*5e9cd1aeSAssar Westerlund subversions.gnu.org plus some minor tweaks 250*5e9cd1aeSAssar Westerlund 251*5e9cd1aeSAssar Westerlund2000-09-20 Assar Westerlund <assar@juguete.sics.se> 252*5e9cd1aeSAssar Westerlund 253*5e9cd1aeSAssar Westerlund * Release 0.3c 254*5e9cd1aeSAssar Westerlund 255*5e9cd1aeSAssar Westerlund2000-09-19 Assar Westerlund <assar@sics.se> 256*5e9cd1aeSAssar Westerlund 257*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am (libkrb5_la_LDFLAGS): bump version to 258*5e9cd1aeSAssar Westerlund 13:1:0 259*5e9cd1aeSAssar Westerlund 260*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am (libhdb_la_LDFLAGS): bump version to 6:2:0 261*5e9cd1aeSAssar Westerlund 262*5e9cd1aeSAssar Westerlund2000-09-17 Assar Westerlund <assar@sics.se> 263*5e9cd1aeSAssar Westerlund 264*5e9cd1aeSAssar Westerlund * lib/krb5/rd_req.c (krb5_decrypt_ticket): plug some memory leak 265*5e9cd1aeSAssar Westerlund (krb5_rd_req): try not to return an allocated auth_context on error 266*5e9cd1aeSAssar Westerlund 267*5e9cd1aeSAssar Westerlund * lib/krb5/log.c (krb5_vlog_msg): fix const-ness 268*5e9cd1aeSAssar Westerlund 269*5e9cd1aeSAssar Westerlund2000-09-10 Assar Westerlund <assar@sics.se> 270*5e9cd1aeSAssar Westerlund 271*5e9cd1aeSAssar Westerlund * kdc/524.c: re-organize 272*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c (tgs_rep2): try to avoid leaking auth_context 273*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c (valid_princ): check return value of functions 274*5e9cd1aeSAssar Westerlund (encode_v4_ticket): add some const 275*5e9cd1aeSAssar Westerlund * kdc/misc.c (db_fetch): check malloc 276*5e9cd1aeSAssar Westerlund (free_ent): new function 277*5e9cd1aeSAssar Westerlund 278*5e9cd1aeSAssar Westerlund * lib/krb5/log.c (krb5_vlog_msg): log just the format string it we 279*5e9cd1aeSAssar Westerlund fail to allocate the actual string to log, should at least provide 280*5e9cd1aeSAssar Westerlund some hint as to where things went wrong 281*5e9cd1aeSAssar Westerlund 282*5e9cd1aeSAssar Westerlund2000-09-10 Johan Danielsson <joda@pdc.kth.se> 283*5e9cd1aeSAssar Westerlund 284*5e9cd1aeSAssar Westerlund * kdc/log.c: use DEFAULT_LOG_DEST 285*5e9cd1aeSAssar Westerlund 286*5e9cd1aeSAssar Westerlund * kdc/config.c: use _PATH_KDC_CONF 287*5e9cd1aeSAssar Westerlund 288*5e9cd1aeSAssar Westerlund * kdc/kdc_locl.h: add macro constants for kdc.conf, and kdc.log 289*5e9cd1aeSAssar Westerlund 290*5e9cd1aeSAssar Westerlund2000-09-09 Assar Westerlund <assar@sics.se> 291*5e9cd1aeSAssar Westerlund 292*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c (_key_schedule): re-use an existing schedule 293*5e9cd1aeSAssar Westerlund 294*5e9cd1aeSAssar Westerlund2000-09-06 Johan Danielsson <joda@pdc.kth.se> 295*5e9cd1aeSAssar Westerlund 296*5e9cd1aeSAssar Westerlund * configure.in: fix dpagaix test 297*5e9cd1aeSAssar Westerlund 298*5e9cd1aeSAssar Westerlund2000-09-05 Assar Westerlund <assar@sics.se> 299*5e9cd1aeSAssar Westerlund 300*5e9cd1aeSAssar Westerlund * configure.in: with_dce -> enable_dce. noticed by Ake Sandgren 301*5e9cd1aeSAssar Westerlund <ake@cs.umu.se> 302*5e9cd1aeSAssar Westerlund 303*5e9cd1aeSAssar Westerlund2000-09-01 Johan Danielsson <joda@pdc.kth.se> 304*5e9cd1aeSAssar Westerlund 305*5e9cd1aeSAssar Westerlund * kdc/kstash.8: update manual page 306*5e9cd1aeSAssar Westerlund 307*5e9cd1aeSAssar Westerlund * kdc/kstash.c: fix typo, and remove unused option 308*5e9cd1aeSAssar Westerlund 309*5e9cd1aeSAssar Westerlund * lib/krb5/kerberos.7: short kerberos intro page 310*5e9cd1aeSAssar Westerlund 311*5e9cd1aeSAssar Westerlund2000-08-27 Assar Westerlund <assar@sics.se> 312*5e9cd1aeSAssar Westerlund 313*5e9cd1aeSAssar Westerlund * include/bits.c: add __attribute__ for gcc's pleasure 314*5e9cd1aeSAssar Westerlund * lib/hdb/keytab.c: re-write to delay the opening of the database 315*5e9cd1aeSAssar Westerlund till it's known which principal is being sought, thereby allowing 316*5e9cd1aeSAssar Westerlund the usage of multiple databases, however they need to be specified 317*5e9cd1aeSAssar Westerlund in /etc/krb5.conf since all the programs using this keytab do not 318*5e9cd1aeSAssar Westerlund read kdc.conf 319*5e9cd1aeSAssar Westerlund 320*5e9cd1aeSAssar Westerlund * appl/test/test_locl.h (keytab): add 321*5e9cd1aeSAssar Westerlund * appl/test/common.c: add --keytab 322*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c: remove trailing commas 323*5e9cd1aeSAssar Westerlund (KRB5_KU_USAGE_SEQ): renamed from KRB5_KU_USAGE_MIC 324*5e9cd1aeSAssar Westerlund 325*5e9cd1aeSAssar Westerlund2000-08-26 Assar Westerlund <assar@sics.se> 326*5e9cd1aeSAssar Westerlund 327*5e9cd1aeSAssar Westerlund * lib/krb5/send_to_kdc.c (send_via_proxy): handle `http://' at the 328*5e9cd1aeSAssar Westerlund beginning of the proxy specification. use getaddrinfo correctly 329*5e9cd1aeSAssar Westerlund (krb5_sendto): always return a return code 330*5e9cd1aeSAssar Westerlund 331*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (KRB5_KU_USAGE_MIC): rename to KRB5_KU_USAGE_SEQ 332*5e9cd1aeSAssar Westerlund * lib/krb5/auth_context.c (krb5_auth_con_free): handle 333*5e9cd1aeSAssar Westerlund auth_context == NULL 334*5e9cd1aeSAssar Westerlund 335*5e9cd1aeSAssar Westerlund2000-08-23 Assar Westerlund <assar@sics.se> 336*5e9cd1aeSAssar Westerlund 337*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c (find_type): make sure of always setting 338*5e9cd1aeSAssar Westerlund `ret_etype' correctly. clean-up structure some 339*5e9cd1aeSAssar Westerlund 340*5e9cd1aeSAssar Westerlund2000-08-23 Johan Danielsson <joda@pdc.kth.se> 341*5e9cd1aeSAssar Westerlund 342*5e9cd1aeSAssar Westerlund * lib/krb5/mcache.c: implement resolve 343*5e9cd1aeSAssar Westerlund 344*5e9cd1aeSAssar Westerlund2000-08-18 Assar Westerlund <assar@sics.se> 345*5e9cd1aeSAssar Westerlund 346*5e9cd1aeSAssar Westerlund * kuser/kdecode_ticket.c: check return value from krb5_crypto_init 347*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c, kdc/524.c: check return value from krb5_crypto_init 348*5e9cd1aeSAssar Westerlund * lib/krb5/*.c: check return value from krb5_crypto_init 349*5e9cd1aeSAssar Westerlund 350*5e9cd1aeSAssar Westerlund2000-08-16 Assar Westerlund <assar@sics.se> 351*5e9cd1aeSAssar Westerlund 352*5e9cd1aeSAssar Westerlund * Release 0.3b 353*5e9cd1aeSAssar Westerlund 354*5e9cd1aeSAssar Westerlund2000-08-16 Assar Westerlund <assar@sics.se> 355*5e9cd1aeSAssar Westerlund 356*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: bump version to 13:0:0 357*5e9cd1aeSAssar Westerlund 358*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am: set version to 6:1:0 359*5e9cd1aeSAssar Westerlund 360*5e9cd1aeSAssar Westerlund * configure.in: do getmsg testing the same way as in krb4 361*5e9cd1aeSAssar Westerlund 362*5e9cd1aeSAssar Westerlund * lib/krb5/config_file.c (krb5_config_parse_file_debug): make sure 363*5e9cd1aeSAssar Westerlund of closing the file on error 364*5e9cd1aeSAssar Westerlund 365*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c (encrypt_internal_derived): free the checksum 366*5e9cd1aeSAssar Westerlund after use 367*5e9cd1aeSAssar Westerlund 368*5e9cd1aeSAssar Westerlund * lib/krb5/warn.c (_warnerr): initialize args to make third, 369*5e9cd1aeSAssar Westerlund purify et al happy 370*5e9cd1aeSAssar Westerlund 371*5e9cd1aeSAssar Westerlund2000-08-13 Assar Westerlund <assar@sics.se> 372*5e9cd1aeSAssar Westerlund 373*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c: re-write search for keys code. loop over all 374*5e9cd1aeSAssar Westerlund supported enctypes in order, looping over all keys of each type, 375*5e9cd1aeSAssar Westerlund and picking the one with the v5 default salt preferably 376*5e9cd1aeSAssar Westerlund 377*5e9cd1aeSAssar Westerlund2000-08-10 Assar Westerlund <assar@sics.se> 378*5e9cd1aeSAssar Westerlund 379*5e9cd1aeSAssar Westerlund * appl/test/gss_common.c (enet_read): add and use 380*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (heimdal_version, heimdal_long_version): make 381*5e9cd1aeSAssar Westerlund const 382*5e9cd1aeSAssar Westerlund 383*5e9cd1aeSAssar Westerlund * lib/krb5/mk_req_ext.c (krb5_mk_req_internal): add comment on 384*5e9cd1aeSAssar Westerlund checksum type selection 385*5e9cd1aeSAssar Westerlund 386*5e9cd1aeSAssar Westerlund * lib/krb5/context.c (krb5_init_context): do not leak memory on 387*5e9cd1aeSAssar Westerlund failure 388*5e9cd1aeSAssar Westerlund (default_etypes): prefer arcfour-hmac-md5 to des-cbc-md5 389*5e9cd1aeSAssar Westerlund 390*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c: add fnmatch.h 391*5e9cd1aeSAssar Westerlund 392*5e9cd1aeSAssar Westerlund2000-08-09 Assar Westerlund <assar@sics.se> 393*5e9cd1aeSAssar Westerlund 394*5e9cd1aeSAssar Westerlund * configure.in: call AC_PROG_CC and AC_PROG_CPP to make sure later 395*5e9cd1aeSAssar Westerlund checks that should require them don't fail 396*5e9cd1aeSAssar Westerlund * acconfig.h: add HAVE_UINT17_T 397*5e9cd1aeSAssar Westerlund 398*5e9cd1aeSAssar Westerlund2000-08-09 Johan Danielsson <joda@pdc.kth.se> 399*5e9cd1aeSAssar Westerlund 400*5e9cd1aeSAssar Westerlund * kdc/mit_dump.c: handle all sorts of weird MIT salt types 401*5e9cd1aeSAssar Westerlund 402*5e9cd1aeSAssar Westerlund2000-08-08 Johan Danielsson <joda@pdc.kth.se> 403*5e9cd1aeSAssar Westerlund 404*5e9cd1aeSAssar Westerlund * doc/setup.texi: port 212 -> 2121 405*5e9cd1aeSAssar Westerlund 406*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c: krb5_principal_match 407*5e9cd1aeSAssar Westerlund 408*5e9cd1aeSAssar Westerlund2000-08-04 Johan Danielsson <joda@pdc.kth.se> 409*5e9cd1aeSAssar Westerlund 410*5e9cd1aeSAssar Westerlund * lib/asn1/der_get.c: add comment on *why* DCE sometimes used BER 411*5e9cd1aeSAssar Westerlund encoding 412*5e9cd1aeSAssar Westerlund 413*5e9cd1aeSAssar Westerlund * kpasswd/Makefile.am: link with pidfile library 414*5e9cd1aeSAssar Westerlund 415*5e9cd1aeSAssar Westerlund * kpasswd/kpasswdd.c: write a pid file 416*5e9cd1aeSAssar Westerlund 417*5e9cd1aeSAssar Westerlund * kpasswd/kpasswd_locl.h: util.h 418*5e9cd1aeSAssar Westerlund 419*5e9cd1aeSAssar Westerlund * kdc/Makefile.am: link with pidfile library 420*5e9cd1aeSAssar Westerlund 421*5e9cd1aeSAssar Westerlund * kdc/main.c: write a pid file 422*5e9cd1aeSAssar Westerlund 423*5e9cd1aeSAssar Westerlund * kdc/headers.h: util.h 424*5e9cd1aeSAssar Westerlund 425*5e9cd1aeSAssar Westerlund2000-08-04 Assar Westerlund <assar@sics.se> 426*5e9cd1aeSAssar Westerlund 427*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_425_conv_principal_ext): always put 428*5e9cd1aeSAssar Westerlund hostnames in lower case 429*5e9cd1aeSAssar Westerlund (default_v4_name_convert): add imap 430*5e9cd1aeSAssar Westerlund 431*5e9cd1aeSAssar Westerlund2000-08-03 Assar Westerlund <assar@sics.se> 432*5e9cd1aeSAssar Westerlund 433*5e9cd1aeSAssar Westerlund * lib/krb5/crc.c (_krb5_crc_update): const-ize (finally) 434*5e9cd1aeSAssar Westerlund 435*5e9cd1aeSAssar Westerlund2000-07-31 Johan Danielsson <joda@pdc.kth.se> 436*5e9cd1aeSAssar Westerlund 437*5e9cd1aeSAssar Westerlund * configure.in: check for uint*_t 438*5e9cd1aeSAssar Westerlund * include/bits.c: define uint*_t 439*5e9cd1aeSAssar Westerlund 440*5e9cd1aeSAssar Westerlund2000-07-29 Assar Westerlund <assar@sics.se> 441*5e9cd1aeSAssar Westerlund 442*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c (check_tgs_flags): set endtime correctly when 443*5e9cd1aeSAssar Westerlund renewing, From Derrick J Brashear <shadow@dementia.org> 444*5e9cd1aeSAssar Westerlund 445*5e9cd1aeSAssar Westerlund2000-07-28 Assar Westerlund <assar@juguete.sics.se> 446*5e9cd1aeSAssar Westerlund 447*5e9cd1aeSAssar Westerlund * Release 0.3a 448*5e9cd1aeSAssar Westerlund 449*5e9cd1aeSAssar Westerlund2000-07-27 Assar Westerlund <assar@sics.se> 450*5e9cd1aeSAssar Westerlund 451*5e9cd1aeSAssar Westerlund * kdc/hprop.c (dump_database): write an empty message to signal 452*5e9cd1aeSAssar Westerlund end of dump 453*5e9cd1aeSAssar Westerlund 454*5e9cd1aeSAssar Westerlund2000-07-26 Assar Westerlund <assar@sics.se> 455*5e9cd1aeSAssar Westerlund 456*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c (krb5_change_password): try to be more 457*5e9cd1aeSAssar Westerlund careful when not to resend 458*5e9cd1aeSAssar Westerlund 459*5e9cd1aeSAssar Westerlund * lib/hdb/db3.c: always create a cursor with db3. From Derrick J 460*5e9cd1aeSAssar Westerlund Brashear <shadow@dementia.org> 461*5e9cd1aeSAssar Westerlund 462*5e9cd1aeSAssar Westerlund2000-07-25 Johan Danielsson <joda@pdc.kth.se> 463*5e9cd1aeSAssar Westerlund 464*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am: bump version to 6:0:0 465*5e9cd1aeSAssar Westerlund 466*5e9cd1aeSAssar Westerlund * lib/asn1/Makefile.am: bump version to 3:0:1 467*5e9cd1aeSAssar Westerlund 468*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: bump version to 12:0:1 469*5e9cd1aeSAssar Westerlund 470*5e9cd1aeSAssar Westerlund * lib/krb5/krb5_config.3: manpage 471*5e9cd1aeSAssar Westerlund 472*5e9cd1aeSAssar Westerlund * lib/krb5/krb5_appdefault.3: manpage 473*5e9cd1aeSAssar Westerlund 474*5e9cd1aeSAssar Westerlund * lib/krb5/appdefault.c: implementation of the krb5_appdefault set 475*5e9cd1aeSAssar Westerlund of functions 476*5e9cd1aeSAssar Westerlund 477*5e9cd1aeSAssar Westerlund2000-07-23 Assar Westerlund <assar@sics.se> 478*5e9cd1aeSAssar Westerlund 479*5e9cd1aeSAssar Westerlund * lib/krb5/init_creds_pw.c (change_password): reset forwardable 480*5e9cd1aeSAssar Westerlund and proxiable. copy preauthentication list correctly from 481*5e9cd1aeSAssar Westerlund supplied options 482*5e9cd1aeSAssar Westerlund 483*5e9cd1aeSAssar Westerlund * kdc/hpropd.c (main): check that the ticket was for `hprop/' for 484*5e9cd1aeSAssar Westerlund paranoid reasons 485*5e9cd1aeSAssar Westerlund 486*5e9cd1aeSAssar Westerlund * lib/krb5/sock_principal.c (krb5_sock_to_principal): look in 487*5e9cd1aeSAssar Westerlund aliases for the real name 488*5e9cd1aeSAssar Westerlund 489*5e9cd1aeSAssar Westerlund2000-07-22 Johan Danielsson <joda@pdc.kth.se> 490*5e9cd1aeSAssar Westerlund 491*5e9cd1aeSAssar Westerlund * doc/setup.texi: say something about starting kadmind from the 492*5e9cd1aeSAssar Westerlund command line 493*5e9cd1aeSAssar Westerlund 494*5e9cd1aeSAssar Westerlund2000-07-22 Assar Westerlund <assar@sics.se> 495*5e9cd1aeSAssar Westerlund 496*5e9cd1aeSAssar Westerlund * kpasswd/kpasswdd.c: use kadm5_s_chpass_principal_cond instead of 497*5e9cd1aeSAssar Westerlund mis-doing it here 498*5e9cd1aeSAssar Westerlund 499*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c (krb5_change_password): make timeout 1 + 500*5e9cd1aeSAssar Westerlund 2^{0,1,...}. also keep track if we got an old packet back and 501*5e9cd1aeSAssar Westerlund then just wait without sending a new packet 502*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c: use a datagram socket and remove the 503*5e9cd1aeSAssar Westerlund sequence numbers 504*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c (krb5_change_password): clarify an 505*5e9cd1aeSAssar Westerlund expression, avoiding a warning 506*5e9cd1aeSAssar Westerlund 507*5e9cd1aeSAssar Westerlund2000-07-22 Johan Danielsson <joda@pdc.kth.se> 508*5e9cd1aeSAssar Westerlund 509*5e9cd1aeSAssar Westerlund * kuser/klist.c: make -a and -n aliases for -v 510*5e9cd1aeSAssar Westerlund 511*5e9cd1aeSAssar Westerlund * lib/krb5/write_message.c: ws 512*5e9cd1aeSAssar Westerlund 513*5e9cd1aeSAssar Westerlund * kdc/hprop-common.c: nuke extra definitions of 514*5e9cd1aeSAssar Westerlund krb5_read_priv_message et.al 515*5e9cd1aeSAssar Westerlund 516*5e9cd1aeSAssar Westerlund * lib/krb5/read_message.c (krb5_read_message): return error if EOF 517*5e9cd1aeSAssar Westerlund 518*5e9cd1aeSAssar Westerlund2000-07-20 Assar Westerlund <assar@sics.se> 519*5e9cd1aeSAssar Westerlund 520*5e9cd1aeSAssar Westerlund * kpasswd/kpasswd.c: print usage consistently 521*5e9cd1aeSAssar Westerlund * kdc/hprop.h (HPROP_KEYTAB): use HDB for the keytab 522*5e9cd1aeSAssar Westerlund * kdc/hpropd.c: add --keytab 523*5e9cd1aeSAssar Westerlund * kdc/hpropd.c: don't care what principal we recvauth as 524*5e9cd1aeSAssar Westerlund 525*5e9cd1aeSAssar Westerlund * lib/krb5/get_cred.c: be more careful of not returning creds at 526*5e9cd1aeSAssar Westerlund all when an error is returned 527*5e9cd1aeSAssar Westerlund * lib/krb5/fcache.c (fcc_gen_new): do mkstemp correctly 528*5e9cd1aeSAssar Westerlund 529*5e9cd1aeSAssar Westerlund2000-07-19 Johan Danielsson <joda@pdc.kth.se> 530*5e9cd1aeSAssar Westerlund 531*5e9cd1aeSAssar Westerlund * fix-export: use autoreconf 532*5e9cd1aeSAssar Westerlund 533*5e9cd1aeSAssar Westerlund * configure.in: remove stuff that belong in roken, and remove some 534*5e9cd1aeSAssar Westerlund obsolete constructs 535*5e9cd1aeSAssar Westerlund 536*5e9cd1aeSAssar Westerlund2000-07-18 Johan Danielsson <joda@pdc.kth.se> 537*5e9cd1aeSAssar Westerlund 538*5e9cd1aeSAssar Westerlund * configure.in: fix some typos 539*5e9cd1aeSAssar Westerlund 540*5e9cd1aeSAssar Westerlund * appl/Makefile.am: dceutil*s* 541*5e9cd1aeSAssar Westerlund 542*5e9cd1aeSAssar Westerlund * missing: update to missing from automake 1.4a 543*5e9cd1aeSAssar Westerlund 544*5e9cd1aeSAssar Westerlund2000-07-17 Johan Danielsson <joda@pdc.kth.se> 545*5e9cd1aeSAssar Westerlund 546*5e9cd1aeSAssar Westerlund * configure.in: try to get xlc flags from ibmcxx.cfg use 547*5e9cd1aeSAssar Westerlund conditional for X use readline cf macro 548*5e9cd1aeSAssar Westerlund 549*5e9cd1aeSAssar Westerlund * configure.in: subst AIX compiler flags 550*5e9cd1aeSAssar Westerlund 551*5e9cd1aeSAssar Westerlund2000-07-15 Johan Danielsson <joda@pdc.kth.se> 552*5e9cd1aeSAssar Westerlund 553*5e9cd1aeSAssar Westerlund * configure.in: pass sixth parameter to test-package; use some 554*5e9cd1aeSAssar Westerlund newer autoconf constructs 555*5e9cd1aeSAssar Westerlund 556*5e9cd1aeSAssar Westerlund * ltmain.sh: update to libtool 1.3c 557*5e9cd1aeSAssar Westerlund 558*5e9cd1aeSAssar Westerlund * ltconfig: update to libtool 1.3c 559*5e9cd1aeSAssar Westerlund 560*5e9cd1aeSAssar Westerlund * configure.in: update this to newer auto*/libtool 561*5e9cd1aeSAssar Westerlund 562*5e9cd1aeSAssar Westerlund * appl/Makefile.am: use conditional for dce 563*5e9cd1aeSAssar Westerlund 564*5e9cd1aeSAssar Westerlund * lib/Makefile.am: use conditional for dce 565*5e9cd1aeSAssar Westerlund 566*5e9cd1aeSAssar Westerlund2000-07-11 Johan Danielsson <joda@pdc.kth.se> 567*5e9cd1aeSAssar Westerlund 568*5e9cd1aeSAssar Westerlund * lib/krb5/write_message.c: krb5_write_{priv,save}_message 569*5e9cd1aeSAssar Westerlund * lib/krb5/read_message.c: krb5_read_{priv,save}_message 570*5e9cd1aeSAssar Westerlund * lib/krb5/convert_creds.c: try port kerberos/88 if no response on 571*5e9cd1aeSAssar Westerlund krb524/4444 572*5e9cd1aeSAssar Westerlund 573*5e9cd1aeSAssar Westerlund * lib/krb5/convert_creds.c: use krb5_sendto 574*5e9cd1aeSAssar Westerlund 575*5e9cd1aeSAssar Westerlund * lib/krb5/send_to_kdc.c: add more generic krb5_sendto that send 576*5e9cd1aeSAssar Westerlund to a port at arbitrary list of hosts 577*5e9cd1aeSAssar Westerlund 578*5e9cd1aeSAssar Westerlund2000-07-10 Johan Danielsson <joda@pdc.kth.se> 579*5e9cd1aeSAssar Westerlund 580*5e9cd1aeSAssar Westerlund * doc/misc.texi: language; say something about kadmin del_enctype 581*5e9cd1aeSAssar Westerlund 582*5e9cd1aeSAssar Westerlund2000-07-10 Assar Westerlund <assar@sics.se> 583*5e9cd1aeSAssar Westerlund 584*5e9cd1aeSAssar Westerlund * appl/kf/Makefile.am: actually install 585*5e9cd1aeSAssar Westerlund 586*5e9cd1aeSAssar Westerlund2000-07-08 Assar Westerlund <assar@sics.se> 587*5e9cd1aeSAssar Westerlund 588*5e9cd1aeSAssar Westerlund * configure.in (AM_INIT_AUTOMAKE): bump to 0.3a-pre 589*5e9cd1aeSAssar Westerlund (AC_ROKEN): roken is now at 10 590*5e9cd1aeSAssar Westerlund 591*5e9cd1aeSAssar Westerlund * lib/krb5/string-to-key-test.c: add a arcfour-hmac-md5 test case 592*5e9cd1aeSAssar Westerlund * kdc/Makefile.am (INCLUDES): add ../lib/krb5 593*5e9cd1aeSAssar Westerlund * configure.in: update for standalone roken 594*5e9cd1aeSAssar Westerlund * lib/Makefile.am (SUBDIRS): make roken conditional 595*5e9cd1aeSAssar Westerlund * kdc/hprop.c: update to new hdb_seal_keys_mkey 596*5e9cd1aeSAssar Westerlund * lib/hdb/mkey.c (_hdb_unseal_keys_int, _hdb_seal_keys_int): 597*5e9cd1aeSAssar Westerlund rename and export them 598*5e9cd1aeSAssar Westerlund 599*5e9cd1aeSAssar Westerlund * kdc/headers.h: add krb5_locl.h (since we just use some stuff 600*5e9cd1aeSAssar Westerlund from there) 601*5e9cd1aeSAssar Westerlund 602*5e9cd1aeSAssar Westerlund2000-07-08 Johan Danielsson <joda@pdc.kth.se> 603*5e9cd1aeSAssar Westerlund 604*5e9cd1aeSAssar Westerlund * kuser/klist.1: update for -f and add some more text for -v 605*5e9cd1aeSAssar Westerlund 606*5e9cd1aeSAssar Westerlund * kuser/klist.c: use rtbl to format cred listing, add -f and -s 607*5e9cd1aeSAssar Westerlund 608*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c: fix type in des3-cbc-none 609*5e9cd1aeSAssar Westerlund 610*5e9cd1aeSAssar Westerlund * lib/hdb/mkey.c: add key usage 611*5e9cd1aeSAssar Westerlund 612*5e9cd1aeSAssar Westerlund * kdc/kstash.c: remove writing of old keyfile, and treat 613*5e9cd1aeSAssar Westerlund --convert-file as just reading and writing the keyfile without 614*5e9cd1aeSAssar Westerlund asking for a new key 615*5e9cd1aeSAssar Westerlund 616*5e9cd1aeSAssar Westerlund * lib/hdb/mkey.c (read_master_encryptionkey): handle old keytype 617*5e9cd1aeSAssar Westerlund based files, and convert the key to cfb64 618*5e9cd1aeSAssar Westerlund 619*5e9cd1aeSAssar Westerlund * lib/hdb/mkey.c (hdb_read_master_key): set mkey to NULL before 620*5e9cd1aeSAssar Westerlund doing anything else 621*5e9cd1aeSAssar Westerlund 622*5e9cd1aeSAssar Westerlund * lib/krb5/send_to_kdc.c: use krb5_eai_to_heim_errno 623*5e9cd1aeSAssar Westerlund 624*5e9cd1aeSAssar Westerlund * lib/krb5/get_for_creds.c: use krb5_eai_to_heim_errno 625*5e9cd1aeSAssar Westerlund 626*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c: use krb5_eai_to_heim_errno 627*5e9cd1aeSAssar Westerlund 628*5e9cd1aeSAssar Westerlund * lib/krb5/addr_families.c: use krb5_eai_to_heim_errno 629*5e9cd1aeSAssar Westerlund 630*5e9cd1aeSAssar Westerlund * lib/krb5/eai_to_heim_errno.c: convert getaddrinfo error codes to 631*5e9cd1aeSAssar Westerlund something that can be passed to get_err_text 632*5e9cd1aeSAssar Westerlund 633*5e9cd1aeSAssar Westerlund2000-07-07 Assar Westerlund <assar@sics.se> 634*5e9cd1aeSAssar Westerlund 635*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.c (hdb_next_enctype2key): make sure of skipping 636*5e9cd1aeSAssar Westerlund `*key' 637*5e9cd1aeSAssar Westerlund 638*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c (get_des_key): rewrite some, be more careful 639*5e9cd1aeSAssar Westerlund 640*5e9cd1aeSAssar Westerlund2000-07-06 Assar Westerlund <assar@sics.se> 641*5e9cd1aeSAssar Westerlund 642*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c (as_rep): be careful as to now overflowing when 643*5e9cd1aeSAssar Westerlund calculating the end of lifetime of a ticket. 644*5e9cd1aeSAssar Westerlund 645*5e9cd1aeSAssar Westerlund * lib/krb5/context.c (default_etypes): add ETYPE_ARCFOUR_HMAC_MD5 646*5e9cd1aeSAssar Westerlund 647*5e9cd1aeSAssar Westerlund * lib/hdb/db3.c: only use a cursor when needed, from Derrick J 648*5e9cd1aeSAssar Westerlund Brashear <shadow@dementia.org> 649*5e9cd1aeSAssar Westerlund 650*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c: introduce the `special' encryption methods 651*5e9cd1aeSAssar Westerlund that are not like all other encryption methods and implement 652*5e9cd1aeSAssar Westerlund arcfour-hmac-md5 653*5e9cd1aeSAssar Westerlund 654*5e9cd1aeSAssar Westerlund2000-07-05 Johan Danielsson <joda@pdc.kth.se> 655*5e9cd1aeSAssar Westerlund 656*5e9cd1aeSAssar Westerlund * kdc/mit_dump.c: set initial master key version number to 0 657*5e9cd1aeSAssar Westerlund instead of 1; if we lated bump the mkvno we don't risk using the 658*5e9cd1aeSAssar Westerlund wrong key to decrypt 659*5e9cd1aeSAssar Westerlund 660*5e9cd1aeSAssar Westerlund * kdc/hprop.c: only get master key if we're actually going to use 661*5e9cd1aeSAssar Westerlund it; enable reading of MIT krb5 dump files 662*5e9cd1aeSAssar Westerlund 663*5e9cd1aeSAssar Westerlund * kdc/mit_dump.c: read MIT krb5 dump files 664*5e9cd1aeSAssar Westerlund 665*5e9cd1aeSAssar Westerlund * lib/hdb/mkey.c (read_master_mit): fix this 666*5e9cd1aeSAssar Westerlund 667*5e9cd1aeSAssar Westerlund * kdc/kstash.c: make this work with the new mkey code 668*5e9cd1aeSAssar Westerlund 669*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am: add mkey.c, and bump version number 670*5e9cd1aeSAssar Westerlund 671*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.h: rewrite master key handling 672*5e9cd1aeSAssar Westerlund 673*5e9cd1aeSAssar Westerlund * lib/hdb/mkey.c: rewrite master key handling 674*5e9cd1aeSAssar Westerlund 675*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c: add some more pseudo crypto types 676*5e9cd1aeSAssar Westerlund 677*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: change some funny etypes to use negative 678*5e9cd1aeSAssar Westerlund numbers, and add some more 679*5e9cd1aeSAssar Westerlund 680*5e9cd1aeSAssar Westerlund2000-07-04 Assar Westerlund <assar@sics.se> 681*5e9cd1aeSAssar Westerlund 682*5e9cd1aeSAssar Westerlund * lib/krb5/krbhst.c (get_krbhst): only try SRV lookup if there are 683*5e9cd1aeSAssar Westerlund none in the configuration file 684*5e9cd1aeSAssar Westerlund 685*5e9cd1aeSAssar Westerlund2000-07-02 Assar Westerlund <assar@sics.se> 686*5e9cd1aeSAssar Westerlund 687*5e9cd1aeSAssar Westerlund * lib/krb5/keytab_keyfile.c (akf_add_entry): remove unused 688*5e9cd1aeSAssar Westerlund variable 689*5e9cd1aeSAssar Westerlund 690*5e9cd1aeSAssar Westerlund * kpasswd/kpasswd-generator.c: new test program 691*5e9cd1aeSAssar Westerlund * kpasswd/Makefile.am: add kpasswd-generator 692*5e9cd1aeSAssar Westerlund 693*5e9cd1aeSAssar Westerlund * include/Makefile.am (CLEANFILES): add rc4.h 694*5e9cd1aeSAssar Westerlund 695*5e9cd1aeSAssar Westerlund * kuser/generate-requests.c: new test program 696*5e9cd1aeSAssar Westerlund * kuser/Makefile.am (noinst_PROGRAMS): add generate-requests 697*5e9cd1aeSAssar Westerlund 698*5e9cd1aeSAssar Westerlund2000-07-01 Assar Westerlund <assar@sics.se> 699*5e9cd1aeSAssar Westerlund 700*5e9cd1aeSAssar Westerlund * configure.in: add --enable-dce and related stuff 701*5e9cd1aeSAssar Westerlund * appl/Makefile.am (SUBDIRS): add $(APPL_dce) 702*5e9cd1aeSAssar Westerlund 703*5e9cd1aeSAssar Westerlund2000-06-29 Assar Westerlund <assar@sics.se> 704*5e9cd1aeSAssar Westerlund 705*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c (get_des_key): fix thinkos/typos 706*5e9cd1aeSAssar Westerlund 707*5e9cd1aeSAssar Westerlund2000-06-29 Johan Danielsson <joda@pdc.kth.se> 708*5e9cd1aeSAssar Westerlund 709*5e9cd1aeSAssar Westerlund * admin/purge.c: use parse_time to parse age 710*5e9cd1aeSAssar Westerlund 711*5e9cd1aeSAssar Westerlund * lib/krb5/log.c (krb5_vlog_msg): use krb5_format_time 712*5e9cd1aeSAssar Westerlund 713*5e9cd1aeSAssar Westerlund * admin/list.c: add printing of timestamp and key data; some 714*5e9cd1aeSAssar Westerlund cleanup 715*5e9cd1aeSAssar Westerlund 716*5e9cd1aeSAssar Westerlund * lib/krb5/time.c (krb5_format_time): new function to format time 717*5e9cd1aeSAssar Westerlund 718*5e9cd1aeSAssar Westerlund * lib/krb5/context.c (init_context_from_config_file): init 719*5e9cd1aeSAssar Westerlund date_fmt, also do some cleanup 720*5e9cd1aeSAssar Westerlund 721*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: add date_fmt to context 722*5e9cd1aeSAssar Westerlund 723*5e9cd1aeSAssar Westerlund2000-06-28 Johan Danielsson <joda@pdc.kth.se> 724*5e9cd1aeSAssar Westerlund 725*5e9cd1aeSAssar Westerlund * kdc/{kerberos4,kaserver,524}.c (get_des_key): change to return 726*5e9cd1aeSAssar Westerlund v4 or afs keys if possible 727*5e9cd1aeSAssar Westerlund 728*5e9cd1aeSAssar Westerlund2000-06-25 Johan Danielsson <joda@pdc.kth.se> 729*5e9cd1aeSAssar Westerlund 730*5e9cd1aeSAssar Westerlund * kdc/hprop.c (ka_convert): allow using null salt, and treat 0 731*5e9cd1aeSAssar Westerlund pw_expire as never (from Derrick Brashear) 732*5e9cd1aeSAssar Westerlund 733*5e9cd1aeSAssar Westerlund2000-06-24 Johan Danielsson <joda@pdc.kth.se> 734*5e9cd1aeSAssar Westerlund 735*5e9cd1aeSAssar Westerlund * kdc/connect.c (add_standard_ports): only listen to port 750 if 736*5e9cd1aeSAssar Westerlund serving v4 requests 737*5e9cd1aeSAssar Westerlund 738*5e9cd1aeSAssar Westerlund2000-06-22 Assar Westerlund <assar@sics.se> 739*5e9cd1aeSAssar Westerlund 740*5e9cd1aeSAssar Westerlund * lib/asn1/lex.l: fix includes, and lex stuff 741*5e9cd1aeSAssar Westerlund * lib/asn1/lex.h (error_message): update prototype 742*5e9cd1aeSAssar Westerlund (yylex): add 743*5e9cd1aeSAssar Westerlund * lib/asn1/gen_length.c (length_type): fail on malloc error 744*5e9cd1aeSAssar Westerlund * lib/asn1/gen_decode.c (decode_type): fail on malloc error 745*5e9cd1aeSAssar Westerlund 746*5e9cd1aeSAssar Westerlund2000-06-21 Assar Westerlund <assar@sics.se> 747*5e9cd1aeSAssar Westerlund 748*5e9cd1aeSAssar Westerlund * lib/krb5/get_for_creds.c: be more compatible with MIT code. 749*5e9cd1aeSAssar Westerlund From Daniel Kouril <kouril@ics.muni.cz> 750*5e9cd1aeSAssar Westerlund * lib/krb5/rd_cred.c: be more compatible with MIT code. From 751*5e9cd1aeSAssar Westerlund Daniel Kouril <kouril@ics.muni.cz> 752*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c (get_pa_etype_info): do not set salttype if it's 753*5e9cd1aeSAssar Westerlund vanilla pw-salt, that keeps win2k happy. also do the malloc check 754*5e9cd1aeSAssar Westerlund correctly. From Daniel Kouril <kouril@ics.muni.cz> 755*5e9cd1aeSAssar Westerlund 756*5e9cd1aeSAssar Westerlund2000-06-21 Johan Danielsson <joda@pdc.kth.se> 757*5e9cd1aeSAssar Westerlund 758*5e9cd1aeSAssar Westerlund * kdc/hprop.c: add hdb keytabs 759*5e9cd1aeSAssar Westerlund 760*5e9cd1aeSAssar Westerlund2000-06-20 Johan Danielsson <joda@pdc.kth.se> 761*5e9cd1aeSAssar Westerlund 762*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c: back out rev. 1.64 763*5e9cd1aeSAssar Westerlund 764*5e9cd1aeSAssar Westerlund2000-06-19 Johan Danielsson <joda@pdc.kth.se> 765*5e9cd1aeSAssar Westerlund 766*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c: pa_* -> KRB5_PADATA_* 767*5e9cd1aeSAssar Westerlund 768*5e9cd1aeSAssar Westerlund * kdc/hpropd.c: add realm override flag 769*5e9cd1aeSAssar Westerlund 770*5e9cd1aeSAssar Westerlund * kdc/v4_dump.c: code for reading krb4 dump files 771*5e9cd1aeSAssar Westerlund 772*5e9cd1aeSAssar Westerlund * kdc/hprop.c: generalize source database handing, add support for 773*5e9cd1aeSAssar Westerlund non-standard local realms (from by Daniel Kouril 774*5e9cd1aeSAssar Westerlund <kouril@ics.muni.cz> and Miroslav Ruda <ruda@ics.muni.cz>), and 775*5e9cd1aeSAssar Westerlund support for using different ports (requested by the Czechs, but 776*5e9cd1aeSAssar Westerlund implemented differently) 777*5e9cd1aeSAssar Westerlund 778*5e9cd1aeSAssar Westerlund * lib/krb5/get_cred.c: pa_* -> KRB5_PADATA_* 779*5e9cd1aeSAssar Westerlund 780*5e9cd1aeSAssar Westerlund * lib/krb5/get_in_tkt.c: pa_* -> KRB5_PADATA_* 781*5e9cd1aeSAssar Westerlund 782*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: use some definitions from asn1.h 783*5e9cd1aeSAssar Westerlund 784*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.asn1: use new import syntax 785*5e9cd1aeSAssar Westerlund 786*5e9cd1aeSAssar Westerlund * lib/asn1/k5.asn1: use distinguished value integers 787*5e9cd1aeSAssar Westerlund 788*5e9cd1aeSAssar Westerlund * lib/asn1/gen_length.c: support for distinguished value integers 789*5e9cd1aeSAssar Westerlund 790*5e9cd1aeSAssar Westerlund * lib/asn1/gen_encode.c: support for distinguished value integers 791*5e9cd1aeSAssar Westerlund 792*5e9cd1aeSAssar Westerlund * lib/asn1/gen_decode.c: support for distinguished value integers 793*5e9cd1aeSAssar Westerlund 794*5e9cd1aeSAssar Westerlund * lib/asn1/gen.c: support for distinguished value integers 795*5e9cd1aeSAssar Westerlund 796*5e9cd1aeSAssar Westerlund * lib/asn1/lex.l: add support for more standards like import 797*5e9cd1aeSAssar Westerlund statements 798*5e9cd1aeSAssar Westerlund 799*5e9cd1aeSAssar Westerlund * lib/asn1/parse.y: add support for more standards like import 800*5e9cd1aeSAssar Westerlund statements, and distinguished value integers 801*5e9cd1aeSAssar Westerlund 802*5e9cd1aeSAssar Westerlund2000-06-11 Assar Westerlund <assar@sics.se> 803*5e9cd1aeSAssar Westerlund 804*5e9cd1aeSAssar Westerlund * lib/krb5/get_for_creds.c (add_addrs): ignore addresses of 805*5e9cd1aeSAssar Westerlund unknown type 806*5e9cd1aeSAssar Westerlund * lib/krb5/get_for_creds.c (add_addrs): zero memory before 807*5e9cd1aeSAssar Westerlund starting to copy memory 808*5e9cd1aeSAssar Westerlund 809*5e9cd1aeSAssar Westerlund2000-06-10 Assar Westerlund <assar@sics.se> 810*5e9cd1aeSAssar Westerlund 811*5e9cd1aeSAssar Westerlund * lib/krb5/test_get_addrs.c: test program for get_addrs 812*5e9cd1aeSAssar Westerlund * lib/krb5/get_addrs.c (find_all_addresses): remember to add in 813*5e9cd1aeSAssar Westerlund the size of ifr->ifr_name when using SA_LEN. noticed by Ken 814*5e9cd1aeSAssar Westerlund Raeburn <raeburn@MIT.EDU> 815*5e9cd1aeSAssar Westerlund 816*5e9cd1aeSAssar Westerlund2000-06-07 Assar Westerlund <assar@sics.se> 817*5e9cd1aeSAssar Westerlund 818*5e9cd1aeSAssar Westerlund * configure.in: add db3 detection stuff do not use streamsptys on 819*5e9cd1aeSAssar Westerlund HP-UX 11 820*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.h (HDB): add dbc for db3 821*5e9cd1aeSAssar Westerlund * kdc/connect.c (add_standard_ports): also listen on krb524 aka 822*5e9cd1aeSAssar Westerlund 4444 823*5e9cd1aeSAssar Westerlund * etc/services.append (krb524): add 824*5e9cd1aeSAssar Westerlund * lib/hdb/db3.c: add berkeley db3 interface. contributed by 825*5e9cd1aeSAssar Westerlund Derrick J Brashear <shadow@dementia.org> 826*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.h (struct HDB): add 827*5e9cd1aeSAssar Westerlund 828*5e9cd1aeSAssar Westerlund2000-06-07 Johan Danielsson <joda@pdc.kth.se> 829*5e9cd1aeSAssar Westerlund 830*5e9cd1aeSAssar Westerlund * kdc/524.c: if 524 is not enabled, just generate error reply and 831*5e9cd1aeSAssar Westerlund exit 832*5e9cd1aeSAssar Westerlund 833*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c: if v4 is not enabled, just generate error reply 834*5e9cd1aeSAssar Westerlund and exit 835*5e9cd1aeSAssar Westerlund 836*5e9cd1aeSAssar Westerlund * kdc/connect.c: only listen to port 4444 if 524 is enabled 837*5e9cd1aeSAssar Westerlund 838*5e9cd1aeSAssar Westerlund * kdc/config.c: add options to enable/disable v4 and 524 requests 839*5e9cd1aeSAssar Westerlund 840*5e9cd1aeSAssar Westerlund2000-06-06 Johan Danielsson <joda@pdc.kth.se> 841*5e9cd1aeSAssar Westerlund 842*5e9cd1aeSAssar Westerlund * kdc/524.c: handle non-existant server principals (from Daniel 843*5e9cd1aeSAssar Westerlund Kouril) 844*5e9cd1aeSAssar Westerlund 845*5e9cd1aeSAssar Westerlund2000-06-03 Assar Westerlund <assar@sics.se> 846*5e9cd1aeSAssar Westerlund 847*5e9cd1aeSAssar Westerlund * admin/ktutil.c: print name when failing to open keytab 848*5e9cd1aeSAssar Westerlund 849*5e9cd1aeSAssar Westerlund * kuser/kinit.c: try also to fallback to v4 when no KDC is found 850*5e9cd1aeSAssar Westerlund 851*5e9cd1aeSAssar Westerlund2000-05-28 Assar Westerlund <assar@sics.se> 852*5e9cd1aeSAssar Westerlund 853*5e9cd1aeSAssar Westerlund * kuser/klist.c: continue even we have no v5 ccache. make showing 854*5e9cd1aeSAssar Westerlund your krb4 tickets the default (if build with krb4 support) 855*5e9cd1aeSAssar Westerlund * kuser/kinit.c: add a fallback that tries to get a v4 ticket if 856*5e9cd1aeSAssar Westerlund built with krb4 support and we got back a version error from the 857*5e9cd1aeSAssar Westerlund KDC 858*5e9cd1aeSAssar Westerlund 859*5e9cd1aeSAssar Westerlund2000-05-23 Johan Danielsson <joda@pdc.kth.se> 860*5e9cd1aeSAssar Westerlund 861*5e9cd1aeSAssar Westerlund * lib/krb5/keytab_keyfile.c: make this actually work 862*5e9cd1aeSAssar Westerlund 863*5e9cd1aeSAssar Westerlund2000-05-19 Assar Westerlund <assar@sics.se> 864*5e9cd1aeSAssar Westerlund 865*5e9cd1aeSAssar Westerlund * lib/krb5/store_emem.c (emem_store): make it write-compatible 866*5e9cd1aeSAssar Westerlund * lib/krb5/store_fd.c (fd_store): make it write-compatible 867*5e9cd1aeSAssar Westerlund * lib/krb5/store_mem.c (mem_store): make it write-compatible 868*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (krb5_storage): make store write-compatible 869*5e9cd1aeSAssar Westerlund 870*5e9cd1aeSAssar Westerlund2000-05-18 Assar Westerlund <assar@sics.se> 871*5e9cd1aeSAssar Westerlund 872*5e9cd1aeSAssar Westerlund * configure.in: add stdio.h in dbopen test 873*5e9cd1aeSAssar Westerlund 874*5e9cd1aeSAssar Westerlund2000-05-16 Assar Westerlund <assar@assaris.sics.se> 875*5e9cd1aeSAssar Westerlund 876*5e9cd1aeSAssar Westerlund * Release 0.2t 877*5e9cd1aeSAssar Westerlund 878*5e9cd1aeSAssar Westerlund2000-05-16 Assar Westerlund <assar@sics.se> 879*5e9cd1aeSAssar Westerlund 880*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am (libkrb5_la_LDFLAGS): set version to 11:1:0 881*5e9cd1aeSAssar Westerlund * lib/krb5/fcache.c: fix second lseek 882*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_524_conv_principal): fix typo 883*5e9cd1aeSAssar Westerlund 884*5e9cd1aeSAssar Westerlund2000-05-15 Assar Westerlund <assar@sics.se> 885*5e9cd1aeSAssar Westerlund 886*5e9cd1aeSAssar Westerlund * Release 0.2s 887*5e9cd1aeSAssar Westerlund 888*5e9cd1aeSAssar Westerlund2000-05-15 Assar Westerlund <assar@sics.se> 889*5e9cd1aeSAssar Westerlund 890*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am (libkrb5_la_LDFLAGS): set version to 11:0:0 891*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am (libhdb_la_LDFLAGS): set version to 4:2:1 892*5e9cd1aeSAssar Westerlund * lib/asn1/Makefile.am (libasn1_la_LDFLAGS): bump to 2:0:0 893*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_524_conv_principal): comment-ize, and 894*5e9cd1aeSAssar Westerlund simplify string copying 895*5e9cd1aeSAssar Westerlund 896*5e9cd1aeSAssar Westerlund2000-05-12 Assar Westerlund <assar@sics.se> 897*5e9cd1aeSAssar Westerlund 898*5e9cd1aeSAssar Westerlund * lib/krb5/fcache.c (scrub_file): new function 899*5e9cd1aeSAssar Westerlund (erase_file): re-write, use scrub_file 900*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (KRB5_DEFAULT_CCFILE_ROOT): add 901*5e9cd1aeSAssar Westerlund 902*5e9cd1aeSAssar Westerlund * configure.in (dbopen): add header files 903*5e9cd1aeSAssar Westerlund 904*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (krb5_key_usage): add some more 905*5e9cd1aeSAssar Westerlund * lib/krb5/fcache.c (erase_file): try to detect symlink games. 906*5e9cd1aeSAssar Westerlund also call revoke. 907*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c (krb5_change_password): remember to close 908*5e9cd1aeSAssar Westerlund the socket on error 909*5e9cd1aeSAssar Westerlund 910*5e9cd1aeSAssar Westerlund * kdc/main.c (main): also call sigterm on SIGTERM 911*5e9cd1aeSAssar Westerlund 912*5e9cd1aeSAssar Westerlund2000-05-06 Assar Westerlund <assar@sics.se> 913*5e9cd1aeSAssar Westerlund 914*5e9cd1aeSAssar Westerlund * lib/krb5/config_file.c (krb5_config_vget_string_default, 915*5e9cd1aeSAssar Westerlund krb5_config_get_string_default): add 916*5e9cd1aeSAssar Westerlund 917*5e9cd1aeSAssar Westerlund2000-04-25 Assar Westerlund <assar@sics.se> 918*5e9cd1aeSAssar Westerlund 919*5e9cd1aeSAssar Westerlund * lib/krb5/fcache.c (fcc_initialize): just forget about 920*5e9cd1aeSAssar Westerlund over-writing the old cred cache. it's too much of a hazzle trying 921*5e9cd1aeSAssar Westerlund to do this safely. 922*5e9cd1aeSAssar Westerlund 923*5e9cd1aeSAssar Westerlund2000-04-11 Assar Westerlund <assar@sics.se> 924*5e9cd1aeSAssar Westerlund 925*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c (krb5_get_wrapped_length): rewrite into 926*5e9cd1aeSAssar Westerlund different parts for the derived and non-derived cases 927*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c (krb5_get_wrapped_length): the padding should 928*5e9cd1aeSAssar Westerlund be done after having added confounder and checksum 929*5e9cd1aeSAssar Westerlund 930*5e9cd1aeSAssar Westerlund2000-04-09 Assar Westerlund <assar@sics.se> 931*5e9cd1aeSAssar Westerlund 932*5e9cd1aeSAssar Westerlund * lib/krb5/get_addrs.c (find_all_addresses): apperently solaris 933*5e9cd1aeSAssar Westerlund can return EINVAL when the buffer is too small. cope. 934*5e9cd1aeSAssar Westerlund * lib/asn1/Makefile.am (gen_files): add asn1_UNSIGNED.x 935*5e9cd1aeSAssar Westerlund * lib/asn1/gen_locl.h (filename): add prototype 936*5e9cd1aeSAssar Westerlund (init_generate): const-ize 937*5e9cd1aeSAssar Westerlund * lib/asn1/gen.c (filename): new function clean-up a little bit. 938*5e9cd1aeSAssar Westerlund * lib/asn1/parse.y: be more tolerant in ranges 939*5e9cd1aeSAssar Westerlund * lib/asn1/lex.l: count lines correctly. 940*5e9cd1aeSAssar Westerlund (error_message): print filename in messages 941*5e9cd1aeSAssar Westerlund 942*5e9cd1aeSAssar Westerlund2000-04-08 Assar Westerlund <assar@sics.se> 943*5e9cd1aeSAssar Westerlund 944*5e9cd1aeSAssar Westerlund * lib/krb5/rd_safe.c (krb5_rd_safe): increment sequence number 945*5e9cd1aeSAssar Westerlund after comparing 946*5e9cd1aeSAssar Westerlund * lib/krb5/rd_priv.c (krb5_rd_priv): increment sequence number 947*5e9cd1aeSAssar Westerlund after comparing 948*5e9cd1aeSAssar Westerlund * lib/krb5/mk_safe.c (krb5_mk_safe): make `tmp_seq' unsigned 949*5e9cd1aeSAssar Westerlund * lib/krb5/mk_priv.c (krb5_mk_priv): make `tmp_seq' unsigned 950*5e9cd1aeSAssar Westerlund * lib/krb5/generate_seq_number.c (krb5_generate_seq_number): make 951*5e9cd1aeSAssar Westerlund `seqno' be unsigned 952*5e9cd1aeSAssar Westerlund * lib/krb5/mk_safe.c (krb5_mk_safe): increment local sequence 953*5e9cd1aeSAssar Westerlund number after the fact and only increment it if we were successful 954*5e9cd1aeSAssar Westerlund * lib/krb5/mk_priv.c (krb5_mk_priv): increment local sequence 955*5e9cd1aeSAssar Westerlund number after the fact and only increment it if we were successful 956*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (krb5_auth_context_data): make sequence number 957*5e9cd1aeSAssar Westerlund unsigned 958*5e9cd1aeSAssar Westerlund 959*5e9cd1aeSAssar Westerlund * lib/krb5/init_creds_pw.c (krb5_get_init_creds_password): 960*5e9cd1aeSAssar Westerlund `in_tkt_service' can be NULL 961*5e9cd1aeSAssar Westerlund 962*5e9cd1aeSAssar Westerlund2000-04-06 Assar Westerlund <assar@sics.se> 963*5e9cd1aeSAssar Westerlund 964*5e9cd1aeSAssar Westerlund * lib/asn1/parse.y: regonize INTEGER (0..UNIT_MAX). 965*5e9cd1aeSAssar Westerlund (DOTDOT): add 966*5e9cd1aeSAssar Westerlund * lib/asn1/lex.l (DOTDOT): add 967*5e9cd1aeSAssar Westerlund * lib/asn1/k5.asn1 (UNSIGNED): add. use UNSIGNED for all sequence 968*5e9cd1aeSAssar Westerlund numbers. 969*5e9cd1aeSAssar Westerlund * lib/asn1/gen_length.c (length_type): add TUInteger 970*5e9cd1aeSAssar Westerlund * lib/asn1/gen_free.c (free_type): add TUInteger 971*5e9cd1aeSAssar Westerlund * lib/asn1/gen_encode.c (encode_type, generate_type_encode): add 972*5e9cd1aeSAssar Westerlund TUInteger 973*5e9cd1aeSAssar Westerlund * lib/asn1/gen_decode.c (decode_type, generate_type_decode): add 974*5e9cd1aeSAssar Westerlund TUInteger 975*5e9cd1aeSAssar Westerlund * lib/asn1/gen_copy.c (copy_type): add TUInteger 976*5e9cd1aeSAssar Westerlund * lib/asn1/gen.c (define_asn1): add TUInteger 977*5e9cd1aeSAssar Westerlund * lib/asn1/der_put.c (encode_unsigned): add 978*5e9cd1aeSAssar Westerlund * lib/asn1/der_length.c (length_unsigned): add 979*5e9cd1aeSAssar Westerlund * lib/asn1/der_get.c (decode_unsigned): add 980*5e9cd1aeSAssar Westerlund * lib/asn1/der.h (decode_unsigned, encode_unsigned, 981*5e9cd1aeSAssar Westerlund length_unsigned): add prototypes 982*5e9cd1aeSAssar Westerlund 983*5e9cd1aeSAssar Westerlund * lib/asn1/k5.asn1: update pre-authentication types 984*5e9cd1aeSAssar Westerlund * lib/krb5/krb5_err.et: add some error codes from pkinit 985*5e9cd1aeSAssar Westerlund 986*5e9cd1aeSAssar Westerlund2000-04-05 Assar Westerlund <assar@sics.se> 987*5e9cd1aeSAssar Westerlund 988*5e9cd1aeSAssar Westerlund * lib/hdb/hdb.c: add support for hdb methods (aka back-ends). 989*5e9cd1aeSAssar Westerlund include ldap. 990*5e9cd1aeSAssar Westerlund * lib/hdb/hdb-ldap.c: tweak the ifdef to OPENLDAP 991*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am: add hdb-ldap.c and openldap 992*5e9cd1aeSAssar Westerlund * kdc/Makefile.am, kpasswd/Makefile.am, kadmin/Makefile.am: add 993*5e9cd1aeSAssar Westerlund * configure.in: bump version to 0.2s-pre add options and testing 994*5e9cd1aeSAssar Westerlund for (open)ldap 995*5e9cd1aeSAssar Westerlund 996*5e9cd1aeSAssar Westerlund2000-04-04 Assar Westerlund <assar@sics.se> 997*5e9cd1aeSAssar Westerlund 998*5e9cd1aeSAssar Westerlund * configure.in (krb4): fix the krb_mk_req test 999*5e9cd1aeSAssar Westerlund 1000*5e9cd1aeSAssar Westerlund2000-04-03 Assar Westerlund <assar@sics.se> 1001*5e9cd1aeSAssar Westerlund 1002*5e9cd1aeSAssar Westerlund * configure.in (krb4): add test for const arguments to krb_mk_req 1003*5e9cd1aeSAssar Westerlund * lib/45/mk_req.c (krb_mk_req): conditionalize const-ness of 1004*5e9cd1aeSAssar Westerlund arguments 1005*5e9cd1aeSAssar Westerlund 1006*5e9cd1aeSAssar Westerlund2000-04-03 Assar Westerlund <assar@sics.se> 1007*5e9cd1aeSAssar Westerlund 1008*5e9cd1aeSAssar Westerlund * Release 0.2r 1009*5e9cd1aeSAssar Westerlund 1010*5e9cd1aeSAssar Westerlund2000-04-03 Assar Westerlund <assar@sics.se> 1011*5e9cd1aeSAssar Westerlund 1012*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: set version to 10:0:0 1013*5e9cd1aeSAssar Westerlund * lib/45/mk_req.c (krb_mk_req): const-ize the arguments 1014*5e9cd1aeSAssar Westerlund 1015*5e9cd1aeSAssar Westerlund2000-03-30 Assar Westerlund <assar@sics.se> 1016*5e9cd1aeSAssar Westerlund 1017*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_425_conv_principal_ext): add some 1018*5e9cd1aeSAssar Westerlund comments. add fall-back on adding the realm name in lower case. 1019*5e9cd1aeSAssar Westerlund 1020*5e9cd1aeSAssar Westerlund2000-03-29 Assar Westerlund <assar@sics.se> 1021*5e9cd1aeSAssar Westerlund 1022*5e9cd1aeSAssar Westerlund * kdc/connect.c: remember to repoint all descr->sa to _ss after 1023*5e9cd1aeSAssar Westerlund realloc as this might have moved the memory around. problem 1024*5e9cd1aeSAssar Westerlund discovered and diagnosed by Brandon S. Allbery 1025*5e9cd1aeSAssar Westerlund 1026*5e9cd1aeSAssar Westerlund2000-03-27 Assar Westerlund <assar@sics.se> 1027*5e9cd1aeSAssar Westerlund 1028*5e9cd1aeSAssar Westerlund * configure.in: recognize solaris 2.8 1029*5e9cd1aeSAssar Westerlund * config.guess, config.sub: update to current version from 1030*5e9cd1aeSAssar Westerlund :pserver:anoncvs@subversions.gnu.org:/home/cvs 1031*5e9cd1aeSAssar Westerlund 1032*5e9cd1aeSAssar Westerlund * lib/krb5/init_creds_pw.c (print_expire): do not assume anything 1033*5e9cd1aeSAssar Westerlund about the size of time_t, i.e. make it 64-bit happy 1034*5e9cd1aeSAssar Westerlund 1035*5e9cd1aeSAssar Westerlund2000-03-13 Assar Westerlund <assar@sics.se> 1036*5e9cd1aeSAssar Westerlund 1037*5e9cd1aeSAssar Westerlund * kuser/klist.c: add support for display v4 tickets 1038*5e9cd1aeSAssar Westerlund 1039*5e9cd1aeSAssar Westerlund2000-03-11 Assar Westerlund <assar@sics.se> 1040*5e9cd1aeSAssar Westerlund 1041*5e9cd1aeSAssar Westerlund * kdc/kaserver.c (do_authenticate, do_getticket): call check_flags 1042*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c (do_version4): call check_flags. 1043*5e9cd1aeSAssar Westerlund * kdc/kerberos5.c (check_flags): make global 1044*5e9cd1aeSAssar Westerlund 1045*5e9cd1aeSAssar Westerlund2000-03-10 Assar Westerlund <assar@sics.se> 1046*5e9cd1aeSAssar Westerlund 1047*5e9cd1aeSAssar Westerlund * lib/krb5/init_creds_pw.c (krb5_get_init_creds_password): evil 1048*5e9cd1aeSAssar Westerlund hack to avoid recursion 1049*5e9cd1aeSAssar Westerlund 1050*5e9cd1aeSAssar Westerlund2000-03-04 Assar Westerlund <assar@sics.se> 1051*5e9cd1aeSAssar Westerlund 1052*5e9cd1aeSAssar Westerlund * kuser/kinit.c: add `krb4_get_tickets' per realm. add --anonymous 1053*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (krb5_get_init_creds_opt): add `anonymous' and 1054*5e9cd1aeSAssar Westerlund KRB5_GET_INIT_CREDS_OPT_ANONYMOUS 1055*5e9cd1aeSAssar Westerlund * lib/krb5/init_creds_pw.c (get_init_creds_common): set 1056*5e9cd1aeSAssar Westerlund request_anonymous flag appropriatly 1057*5e9cd1aeSAssar Westerlund * lib/krb5/init_creds.c (krb5_get_init_creds_opt_set_anonymous): 1058*5e9cd1aeSAssar Westerlund add 1059*5e9cd1aeSAssar Westerlund 1060*5e9cd1aeSAssar Westerlund * lib/krb5/get_in_tkt.c (_krb5_extract_ticket): new parameter to 1061*5e9cd1aeSAssar Westerlund determine whetever to ignore client name of not. always copy 1062*5e9cd1aeSAssar Westerlund client name from kdc. fix callers. 1063*5e9cd1aeSAssar Westerlund 1064*5e9cd1aeSAssar Westerlund * kdc: add support for anonymous tickets 1065*5e9cd1aeSAssar Westerlund 1066*5e9cd1aeSAssar Westerlund * kdc/string2key.8: add man-page for string2key 1067*5e9cd1aeSAssar Westerlund 1068*5e9cd1aeSAssar Westerlund2000-03-03 Assar Westerlund <assar@sics.se> 1069*5e9cd1aeSAssar Westerlund 1070*5e9cd1aeSAssar Westerlund * kdc/hpropd.c (dump_krb4): get expiration date from `valid_end' 1071*5e9cd1aeSAssar Westerlund and not `pw_end' 1072*5e9cd1aeSAssar Westerlund 1073*5e9cd1aeSAssar Westerlund * kdc/kadb.h (ka_entry): fix name pw_end -> valid_end. add some 1074*5e9cd1aeSAssar Westerlund more fields 1075*5e9cd1aeSAssar Westerlund 1076*5e9cd1aeSAssar Westerlund * kdc/hprop.c (v4_prop): set the `valid_end' from the v4 1077*5e9cd1aeSAssar Westerlund expiration date instead of the `pw_expire' 1078*5e9cd1aeSAssar Westerlund (ka_convert): set `valid_end' from ka expiration data and `pw_expire' 1079*5e9cd1aeSAssar Westerlund from pw_change + pw_expire 1080*5e9cd1aeSAssar Westerlund (main): add a default database for ka dumping 1081*5e9cd1aeSAssar Westerlund 1082*5e9cd1aeSAssar Westerlund2000-02-28 Assar Westerlund <assar@sics.se> 1083*5e9cd1aeSAssar Westerlund 1084*5e9cd1aeSAssar Westerlund * lib/krb5/context.c (init_context_from_config_file): change 1085*5e9cd1aeSAssar Westerlund rfc2052 default to no. 2782 says that underscore should be used. 1086*5e9cd1aeSAssar Westerlund 1087*5e9cd1aeSAssar Westerlund2000-02-24 Assar Westerlund <assar@sics.se> 1088*5e9cd1aeSAssar Westerlund 1089*5e9cd1aeSAssar Westerlund * lib/krb5/fcache.c (fcc_initialize, fcc_store_cred): verify that 1090*5e9cd1aeSAssar Westerlund stores and close succeed 1091*5e9cd1aeSAssar Westerlund * lib/krb5/store.c (krb5_store_creds): check to see that the 1092*5e9cd1aeSAssar Westerlund stores are succesful. 1093*5e9cd1aeSAssar Westerlund 1094*5e9cd1aeSAssar Westerlund2000-02-23 Assar Westerlund <assar@sics.se> 1095*5e9cd1aeSAssar Westerlund 1096*5e9cd1aeSAssar Westerlund * Release 0.2q 1097*5e9cd1aeSAssar Westerlund 1098*5e9cd1aeSAssar Westerlund2000-02-22 Assar Westerlund <assar@sics.se> 1099*5e9cd1aeSAssar Westerlund 1100*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: set version to 9:2:0 1101*5e9cd1aeSAssar Westerlund 1102*5e9cd1aeSAssar Westerlund * lib/krb5/expand_hostname.c (krb5_expand_hostname_realms): copy 1103*5e9cd1aeSAssar Westerlund the correct hostname 1104*5e9cd1aeSAssar Westerlund 1105*5e9cd1aeSAssar Westerlund * kdc/connect.c (add_new_tcp): use the correct entries in the 1106*5e9cd1aeSAssar Westerlund descriptor table 1107*5e9cd1aeSAssar Westerlund * kdc/connect.c: initialize `descr' uniformly and correctly 1108*5e9cd1aeSAssar Westerlund 1109*5e9cd1aeSAssar Westerlund2000-02-20 Assar Westerlund <assar@sics.se> 1110*5e9cd1aeSAssar Westerlund 1111*5e9cd1aeSAssar Westerlund * Release 0.2p 1112*5e9cd1aeSAssar Westerlund 1113*5e9cd1aeSAssar Westerlund2000-02-19 Assar Westerlund <assar@sics.se> 1114*5e9cd1aeSAssar Westerlund 1115*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: set version to 9:1:0 1116*5e9cd1aeSAssar Westerlund 1117*5e9cd1aeSAssar Westerlund * lib/krb5/expand_hostname.c (krb5_expand_hostname): make sure 1118*5e9cd1aeSAssar Westerlund that realms is filled in even when getaddrinfo fails or does not 1119*5e9cd1aeSAssar Westerlund return any canonical name 1120*5e9cd1aeSAssar Westerlund 1121*5e9cd1aeSAssar Westerlund * kdc/connect.c (descr): add sockaddr and string representation 1122*5e9cd1aeSAssar Westerlund (*): re-write to use the above mentioned 1123*5e9cd1aeSAssar Westerlund 1124*5e9cd1aeSAssar Westerlund2000-02-16 Assar Westerlund <assar@sics.se> 1125*5e9cd1aeSAssar Westerlund 1126*5e9cd1aeSAssar Westerlund * lib/krb5/addr_families.c (krb5_parse_address): use 1127*5e9cd1aeSAssar Westerlund krb5_sockaddr2address to copy the result from getaddrinfo. 1128*5e9cd1aeSAssar Westerlund 1129*5e9cd1aeSAssar Westerlund2000-02-14 Assar Westerlund <assar@sics.se> 1130*5e9cd1aeSAssar Westerlund 1131*5e9cd1aeSAssar Westerlund * Release 0.2o 1132*5e9cd1aeSAssar Westerlund 1133*5e9cd1aeSAssar Westerlund2000-02-13 Assar Westerlund <assar@sics.se> 1134*5e9cd1aeSAssar Westerlund 1135*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: set version to 9:0:0 1136*5e9cd1aeSAssar Westerlund 1137*5e9cd1aeSAssar Westerlund * kdc/kaserver.c (do_authenticate): return the kvno of the server 1138*5e9cd1aeSAssar Westerlund and not the client. Thanks to Brandon S. Allbery KF8NH 1139*5e9cd1aeSAssar Westerlund <allbery@kf8nh.apk.net> and Chaskiel M Grundman 1140*5e9cd1aeSAssar Westerlund <cg2v@andrew.cmu.edu> for debugging. 1141*5e9cd1aeSAssar Westerlund 1142*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c (do_version4): if an tgs-req is received with an 1143*5e9cd1aeSAssar Westerlund old kvno, return an error reply and write a message in the log. 1144*5e9cd1aeSAssar Westerlund 1145*5e9cd1aeSAssar Westerlund2000-02-12 Assar Westerlund <assar@sics.se> 1146*5e9cd1aeSAssar Westerlund 1147*5e9cd1aeSAssar Westerlund * appl/test/gssapi_server.c (proto): with `--fork', create a child 1148*5e9cd1aeSAssar Westerlund and send over/receive creds with export/import_sec_context 1149*5e9cd1aeSAssar Westerlund * appl/test/gssapi_client.c (proto): with `--fork', create a child 1150*5e9cd1aeSAssar Westerlund and send over/receive creds with export/import_sec_context 1151*5e9cd1aeSAssar Westerlund * appl/test/common.c: add `--fork' / `-f' (only used by gssapi) 1152*5e9cd1aeSAssar Westerlund 1153*5e9cd1aeSAssar Westerlund2000-02-11 Assar Westerlund <assar@sics.se> 1154*5e9cd1aeSAssar Westerlund 1155*5e9cd1aeSAssar Westerlund * kdc/kdc_locl.h: remove keyfile add explicit_addresses 1156*5e9cd1aeSAssar Westerlund * kdc/connect.c (init_sockets): pay attention to 1157*5e9cd1aeSAssar Westerlund explicit_addresses some more comments. better error messages. 1158*5e9cd1aeSAssar Westerlund * kdc/config.c: add some comments. 1159*5e9cd1aeSAssar Westerlund remove --key-file. 1160*5e9cd1aeSAssar Westerlund add --addresses. 1161*5e9cd1aeSAssar Westerlund 1162*5e9cd1aeSAssar Westerlund * lib/krb5/context.c (krb5_set_extra_addresses): const-ize and use 1163*5e9cd1aeSAssar Westerlund proper abstraction 1164*5e9cd1aeSAssar Westerlund 1165*5e9cd1aeSAssar Westerlund2000-02-07 Johan Danielsson <joda@pdc.kth.se> 1166*5e9cd1aeSAssar Westerlund 1167*5e9cd1aeSAssar Westerlund * lib/krb5/changepw.c: use roken_getaddrinfo_hostspec 1168*5e9cd1aeSAssar Westerlund 1169*5e9cd1aeSAssar Westerlund2000-02-07 Assar Westerlund <assar@sics.se> 1170*5e9cd1aeSAssar Westerlund 1171*5e9cd1aeSAssar Westerlund * Release 0.2n 1172*5e9cd1aeSAssar Westerlund 1173*5e9cd1aeSAssar Westerlund2000-02-07 Assar Westerlund <assar@sics.se> 1174*5e9cd1aeSAssar Westerlund 1175*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: set version to 8:0:0 1176*5e9cd1aeSAssar Westerlund * lib/krb5/keytab.c (krb5_kt_default_name): use strlcpy 1177*5e9cd1aeSAssar Westerlund (krb5_kt_add_entry): set timestamp 1178*5e9cd1aeSAssar Westerlund 1179*5e9cd1aeSAssar Westerlund2000-02-06 Assar Westerlund <assar@sics.se> 1180*5e9cd1aeSAssar Westerlund 1181*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: add macros for accessing krb5_realm 1182*5e9cd1aeSAssar Westerlund * lib/krb5/time.c (krb5_timeofday): use `krb5_timestamp' instead 1183*5e9cd1aeSAssar Westerlund of `int32_t' 1184*5e9cd1aeSAssar Westerlund 1185*5e9cd1aeSAssar Westerlund * lib/krb5/replay.c (checksum_authenticator): update to new API 1186*5e9cd1aeSAssar Westerlund for md5 1187*5e9cd1aeSAssar Westerlund 1188*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h: remove des.h, it's not needed and applications 1189*5e9cd1aeSAssar Westerlund should not have to make sure to find it. 1190*5e9cd1aeSAssar Westerlund 1191*5e9cd1aeSAssar Westerlund2000-02-03 Assar Westerlund <assar@sics.se> 1192*5e9cd1aeSAssar Westerlund 1193*5e9cd1aeSAssar Westerlund * lib/krb5/rd_req.c (get_key_from_keytab): rename parameter to 1194*5e9cd1aeSAssar Westerlund `out_key' to avoid conflicting with label. reported by Sean Doran 1195*5e9cd1aeSAssar Westerlund <smd@ebone.net> 1196*5e9cd1aeSAssar Westerlund 1197*5e9cd1aeSAssar Westerlund2000-02-02 Assar Westerlund <assar@sics.se> 1198*5e9cd1aeSAssar Westerlund 1199*5e9cd1aeSAssar Westerlund * lib/krb5/expand_hostname.c: remember to lower-case host names. 1200*5e9cd1aeSAssar Westerlund bug reported by <amu@mit.edu> 1201*5e9cd1aeSAssar Westerlund 1202*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c (do_version4): look at check_ticket_addresses 1203*5e9cd1aeSAssar Westerlund and emulate that by setting krb_ignore_ip_address (not a great 1204*5e9cd1aeSAssar Westerlund interface but it doesn't seem like the time to go around fixing 1205*5e9cd1aeSAssar Westerlund libkrb stuff now) 1206*5e9cd1aeSAssar Westerlund 1207*5e9cd1aeSAssar Westerlund2000-02-01 Johan Danielsson <joda@pdc.kth.se> 1208*5e9cd1aeSAssar Westerlund 1209*5e9cd1aeSAssar Westerlund * kuser/kinit.c: change --noaddresses into --no-addresses 1210*5e9cd1aeSAssar Westerlund 1211*5e9cd1aeSAssar Westerlund2000-01-28 Assar Westerlund <assar@sics.se> 1212*5e9cd1aeSAssar Westerlund 1213*5e9cd1aeSAssar Westerlund * kpasswd/kpasswd.c (main): make sure the ticket is not 1214*5e9cd1aeSAssar Westerlund forwardable and not proxiable 1215*5e9cd1aeSAssar Westerlund 1216*5e9cd1aeSAssar Westerlund2000-01-26 Assar Westerlund <assar@sics.se> 1217*5e9cd1aeSAssar Westerlund 1218*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c: update to pseudo-standard APIs for 1219*5e9cd1aeSAssar Westerlund md4,md5,sha. some changes to libdes calls to make them more 1220*5e9cd1aeSAssar Westerlund portable. 1221*5e9cd1aeSAssar Westerlund 1222*5e9cd1aeSAssar Westerlund2000-01-21 Assar Westerlund <assar@sics.se> 1223*5e9cd1aeSAssar Westerlund 1224*5e9cd1aeSAssar Westerlund * lib/krb5/verify_init.c (krb5_verify_init_creds): make sure to 1225*5e9cd1aeSAssar Westerlund clean up the correct creds. 1226*5e9cd1aeSAssar Westerlund 1227*5e9cd1aeSAssar Westerlund2000-01-16 Assar Westerlund <assar@sics.se> 1228*5e9cd1aeSAssar Westerlund 1229*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (append_component): change parameter to 1230*5e9cd1aeSAssar Westerlund `const char *'. check malloc 1231*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (append_component, va_ext_princ, va_princ): 1232*5e9cd1aeSAssar Westerlund const-ize 1233*5e9cd1aeSAssar Westerlund * lib/krb5/mk_req.c (krb5_mk_req): make `service' and `hostname' 1234*5e9cd1aeSAssar Westerlund const 1235*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (replace_chars): also add space here 1236*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c: (quotable_chars): add space 1237*5e9cd1aeSAssar Westerlund 1238*5e9cd1aeSAssar Westerlund2000-01-12 Assar Westerlund <assar@sics.se> 1239*5e9cd1aeSAssar Westerlund 1240*5e9cd1aeSAssar Westerlund * kdc/kerberos4.c (do_version4): check if preauth was required and 1241*5e9cd1aeSAssar Westerlund bail-out if so since there's no way that could be done in v4. 1242*5e9cd1aeSAssar Westerlund Return NULL_KEY as an error to the client (which is non-obvious, 1243*5e9cd1aeSAssar Westerlund but what can you do?) 1244*5e9cd1aeSAssar Westerlund 1245*5e9cd1aeSAssar Westerlund2000-01-09 Assar Westerlund <assar@sics.se> 1246*5e9cd1aeSAssar Westerlund 1247*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_sname_to_principal): use 1248*5e9cd1aeSAssar Westerlund krb5_expand_hostname_realms 1249*5e9cd1aeSAssar Westerlund * lib/krb5/mk_req.c (krb5_km_req): use krb5_expand_hostname_realms 1250*5e9cd1aeSAssar Westerlund * lib/krb5/expand_hostname.c (krb5_expand_hostname_realms): new 1251*5e9cd1aeSAssar Westerlund variant of krb5_expand_hostname that tries until it expands into 1252*5e9cd1aeSAssar Westerlund something that's digestable by krb5_get_host_realm, returning also 1253*5e9cd1aeSAssar Westerlund the result from that function. 1254*5e9cd1aeSAssar Westerlund 1255*5e9cd1aeSAssar Westerlund2000-01-08 Assar Westerlund <assar@sics.se> 1256*5e9cd1aeSAssar Westerlund 1257*5e9cd1aeSAssar Westerlund * Release 0.2m 1258*5e9cd1aeSAssar Westerlund 1259*5e9cd1aeSAssar Westerlund2000-01-08 Assar Westerlund <assar@sics.se> 1260*5e9cd1aeSAssar Westerlund 1261*5e9cd1aeSAssar Westerlund * configure.in: replace AC_C_BIGENDIAN with KRB_C_BIGENDIAN 1262*5e9cd1aeSAssar Westerlund 1263*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: bump version to 7:1:0 1264*5e9cd1aeSAssar Westerlund 1265*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_sname_to_principal): use 1266*5e9cd1aeSAssar Westerlund krb5_expand_hostname 1267*5e9cd1aeSAssar Westerlund * lib/krb5/expand_hostname.c (krb5_expand_hostname): handle 1268*5e9cd1aeSAssar Westerlund ai_canonname being set in any of the addresses returnedby 1269*5e9cd1aeSAssar Westerlund getaddrinfo. glibc apparently returns the reverse lookup of every 1270*5e9cd1aeSAssar Westerlund address in ai_canonname. 1271*5e9cd1aeSAssar Westerlund 1272*5e9cd1aeSAssar Westerlund2000-01-06 Assar Westerlund <assar@sics.se> 1273*5e9cd1aeSAssar Westerlund 1274*5e9cd1aeSAssar Westerlund * Release 0.2l 1275*5e9cd1aeSAssar Westerlund 1276*5e9cd1aeSAssar Westerlund2000-01-06 Assar Westerlund <assar@sics.se> 1277*5e9cd1aeSAssar Westerlund 1278*5e9cd1aeSAssar Westerlund * lib/krb5/Makefile.am: set version to 7:0:0 1279*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_sname_to_principal): remove `hp' 1280*5e9cd1aeSAssar Westerlund 1281*5e9cd1aeSAssar Westerlund * lib/hdb/Makefile.am: set version to 4:1:1 1282*5e9cd1aeSAssar Westerlund 1283*5e9cd1aeSAssar Westerlund * kdc/hpropd.c (dump_krb4): use `krb5_get_default_realms' 1284*5e9cd1aeSAssar Westerlund * lib/krb5/get_in_tkt.c (add_padata): change types to make 1285*5e9cd1aeSAssar Westerlund everything work out 1286*5e9cd1aeSAssar Westerlund (krb5_get_in_cred): remove const to make types match 1287*5e9cd1aeSAssar Westerlund * lib/krb5/crypto.c (ARCFOUR_string_to_key): correct signature 1288*5e9cd1aeSAssar Westerlund * lib/krb5/principal.c (krb5_sname_to_principal): handle not 1289*5e9cd1aeSAssar Westerlund getting back a canonname 1290*5e9cd1aeSAssar Westerlund 1291*5e9cd1aeSAssar Westerlund2000-01-06 Assar Westerlund <assar@sics.se> 1292*5e9cd1aeSAssar Westerlund 1293*5e9cd1aeSAssar Westerlund * Release 0.2k 1294*5e9cd1aeSAssar Westerlund 1295*5e9cd1aeSAssar Westerlund2000-01-06 Assar Westerlund <assar@sics.se> 1296*5e9cd1aeSAssar Westerlund 1297*5e9cd1aeSAssar Westerlund * lib/krb5/send_to_kdc.c (krb5_sendto_kdc): advance colon so that 1298*5e9cd1aeSAssar Westerlund we actually parse the port number. based on a patch from Leif 1299*5e9cd1aeSAssar Westerlund Johansson <leifj@it.su.se> 1300*5e9cd1aeSAssar Westerlund 1301*5e9cd1aeSAssar Westerlund2000-01-02 Assar Westerlund <assar@sics.se> 1302*5e9cd1aeSAssar Westerlund 1303*5e9cd1aeSAssar Westerlund * admin/purge.c: remove all non-current and old entries from a 1304*5e9cd1aeSAssar Westerlund keytab 1305*5e9cd1aeSAssar Westerlund 1306*5e9cd1aeSAssar Westerlund * admin: break up ktutil.c into files 1307*5e9cd1aeSAssar Westerlund 1308*5e9cd1aeSAssar Westerlund * admin/ktutil.c (list): support --verbose (also listning time 1309*5e9cd1aeSAssar Westerlund stamps) 1310*5e9cd1aeSAssar Westerlund (kt_add, kt_get): set timestamp in newly created entries 1311*5e9cd1aeSAssar Westerlund (kt_change): add `change' command 1312*5e9cd1aeSAssar Westerlund 1313*5e9cd1aeSAssar Westerlund * admin/srvconvert.c (srvconv): set timestamp in newly created 1314*5e9cd1aeSAssar Westerlund entries 1315*5e9cd1aeSAssar Westerlund * lib/krb5/keytab_keyfile.c (akf_next_entry): set timetsamp, 1316*5e9cd1aeSAssar Westerlund always go the a predicatble position on error 1317*5e9cd1aeSAssar Westerlund * lib/krb5/keytab.c (krb5_kt_copy_entry_contents): copy timestamp 1318*5e9cd1aeSAssar Westerlund * lib/krb5/keytab_file.c (fkt_add_entry): store timestamp 1319*5e9cd1aeSAssar Westerlund (fkt_next_entry_int): return timestamp 1320*5e9cd1aeSAssar Westerlund * lib/krb5/krb5.h (krb5_keytab_entry): add timestamp 1321