Commit Graph

4428 Commits

Author SHA1 Message Date
Love Hornquist Astrand 0b80f6e4ec document the rest of the storage functions 2009-08-18 10:46:10 -07:00
Love Hornquist Astrand 977f71c72e most of krb5_storage documented 2009-08-18 19:08:01 +02:00
Love Hornquist Astrand 36440df0e6 document krb5_ret_{u,}int{32,16,8} 2009-08-18 19:05:57 +02:00
Love Hornquist Astrand 695c7e17e1 document krb5_storage_{set,clear}_flags 2009-08-18 19:03:09 +02:00
Love Hornquist Astrand 92a6774227 document more in doxygen 2009-08-18 18:59:42 +02:00
Love Hornquist Astrand 8286ff8ec4 document more 2009-08-18 18:58:53 +02:00
Love Hornquist Astrand 5ea59c80a5 drop krb5_context.3 2009-08-18 18:38:11 +02:00
Love Hornquist Astrand 729a49037d pull the last info from krb5_context.3 2009-08-18 18:37:52 +02:00
Love Hornquist Astrand ca3ef895c3 x 2009-08-18 18:35:26 +02:00
Love Hornquist Astrand bb381aaebf document krb5_config_*_{list,bool} 2009-08-18 18:35:05 +02:00
Love Hornquist Astrand 0c5eeab318 move functions to private space that have no external consumers 2009-08-18 16:29:28 +02:00
Love Hornquist Astrand d8f6c9208b document krb5_config_*_string 2009-08-18 16:10:21 +02:00
Love Hornquist Astrand 574f8b6a6d document krb5_config_get_string 2009-08-18 16:05:21 +02:00
Love Hornquist Astrand 1aa17ecea6 document krb5_config_file_free 2009-08-18 16:01:32 +02:00
Love Hornquist Astrand 65f40a25c3 Always include md5, its needed for HMAC-MD5 that arcfour enctypes uses 2009-08-18 15:57:37 +02:00
Love Hornquist Astrand 6ec1a80772 Don't bother test with testing weak enctypes if not supported in library 2009-08-18 15:56:47 +02:00
Love Hornquist Astrand 1215f80622 Don't bother test with testing weak enctypes if not supported in library 2009-08-18 15:56:29 +02:00
Love Hornquist Astrand 4afb61a24a allow compiling out weak enctype support 2009-08-18 13:54:35 +02:00
Love Hornquist Astrand ee2814c5ff doxygen generates index 2009-08-18 13:29:47 +02:00
Love Hornquist Astrand 13de496f8a moved mdoc to doxygen 2009-08-18 13:28:58 +02:00
Love Hornquist Astrand aaf831a954 spelling 2009-08-18 13:27:07 +02:00
Love Hornquist Astrand d97b539cdf document kuserok ad doxygen 2009-08-18 13:26:07 +02:00
Love Hornquist Astrand 90bbf03216 Document krb5_kuserok() 2009-08-18 13:25:30 +02:00
Love Hornquist Astrand b54b72687e drop krb5_address.3 2009-08-18 13:11:55 +02:00
Love Hornquist Astrand 88d55a1d06 Make compile for weak crypto global (HEIM_WEAK_CRYPTO) and use it for GSSAPI too 2009-08-17 18:06:42 +02:00
Love Hornquist Astrand a6bfd9bb41 use constant time memcmp 2009-08-17 12:01:06 +02:00
Love Hornquist Astrand cdf6c8a199 Don't return void, Solaris CC doesn't like that 2009-08-14 20:07:48 +02:00
Love Hornquist Astrand 0ff7f9ebd2 doxygen 2009-08-14 15:12:05 +02:00
Love Hornquist Astrand 9160374a4c doxygen 2009-08-14 13:47:25 +02:00
Love Hornquist Astrand f01ca1a10e doxygen 2009-08-14 13:46:45 +02:00
Love Hornquist Astrand 550a6c9427 doxygen fixes, include <evp-hcrypto.h> if not using openssl 2009-08-14 11:45:18 +02:00
Love Hornquist Astrand ee68687168 @return, not @param for the return value 2009-08-14 11:43:45 +02:00
Love Hornquist Astrand b0757f7f3f Export krb5_crypto_fx_cf2 2009-08-14 05:49:02 +02:00
Love Hornquist Astrand ede8ad11ad Support IPv6 numeric style addresses, example [2001:10:300::1]:88 2009-08-14 04:34:10 +02:00
Love Hornquist Astrand 33fcc11b3f Replace last SHA1_ with EVP_ replacement 2009-08-11 10:00:30 +02:00
Love Hornquist Astrand 18a4b69b48 Switch more cases to EVP crypto layer 2009-08-10 17:51:17 +02:00
Love Hornquist Astrand 2a17be87ab Remove direct use of MD5 2009-08-10 09:06:50 +02:00
Stefan Metzmacher 5b8a319a7e lib/krb5: fix the build without KRB4
metze

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
2009-08-04 20:19:44 +02:00
Love Hornquist Astrand ff89a727d4 Fix bounced condition 2009-07-30 19:19:35 +02:00
Love Hornquist Astrand 4d200dd2d5 Clean the list in a simpler way 2009-07-30 18:56:23 +02:00
Love Hornquist Astrand ae58266705 More doxygen. 2009-07-30 15:36:25 +02:00
Love Hornquist Astrand 11024751a5 make compile 2009-07-30 14:25:12 +02:00
Love Hornquist Astrand 25b0f731ab Better handling of memory allocation failure [CID-77] 2009-07-30 12:27:19 +02:00
Love Hornquist Astrand dc95a7983d Release ticket on failure [CID-96] 2009-07-30 11:59:15 +02:00
Love Hornquist Astrand e1ecb6f7a6 Catch uninited variable [CID-182] 2009-07-30 09:40:05 +02:00
Love Hornquist Astrand ca6e428093 check that we don't pass negative numbers of memset [CID-169] 2009-07-30 07:53:58 +02:00
Love Hornquist Astrand a1964f4747 use after free [CID-184] [CID-185] 2009-07-30 07:38:24 +02:00
Love Hornquist Astrand 4e516cec33 Pruned to aggressivly 2009-07-29 23:14:44 +02:00
Love Hornquist Astrand 9b710bed81 store is never read again 2009-07-29 22:37:58 +02:00
Love Hornquist Astrand fa502c6648 Add support for gss_{import,export}_cred() as requested by metze
Works for krb5 and SPNEGO mechanisms. Kerberos credentials are passed as
credential cache names, or if there are memory based credentials, inband in the protocol. This means that the credentials buffers must be keep secret.

As documented by IBM (they have the wrong prototype though)
and GGF (GSS-API Extensions) back in 2001
2009-07-29 13:36:02 +02:00