beb5cf017d
add --random-key
Love Hörnquist Åstrand
2004-12-09 12:15:20 +00:00
60aee951a8
x
Love Hörnquist Åstrand
2004-12-08 18:00:16 +00:00
0a5afe8034
spelling, from openbsd
Love Hörnquist Åstrand
2004-12-08 17:52:41 +00:00
3525e279f2
use keeps around options, spelling, from openbsd
Love Hörnquist Åstrand
2004-12-08 17:40:10 +00:00
8e99ff463e
use .
Love Hörnquist Åstrand
2004-12-08 17:36:48 +00:00
42a68b1326
use keeps around options, from OpenBSD
Love Hörnquist Åstrand
2004-12-08 17:36:18 +00:00
e1db83a8e4
x
Love Hörnquist Åstrand
2004-12-08 17:33:02 +00:00
8af76a97f0
use keeps around options, from OpenBSD
Love Hörnquist Åstrand
2004-12-08 17:20:21 +00:00
fa0ce23e4f
use keeps around options, "improve" spelling, from openbsd
Love Hörnquist Åstrand
2004-12-08 17:18:12 +00:00
dbd1867aae
x
Love Hörnquist Åstrand
2004-12-07 22:44:28 +00:00
ea30cafd8e
x
Love Hörnquist Åstrand
2004-12-06 14:43:30 +00:00
3b2a7cb15f
s/KEYTYPE_DES/ETYPE_DES_CBC_CRC/
Love Hörnquist Åstrand
2004-12-06 14:43:13 +00:00
7ebc8b4962
x
Love Hörnquist Åstrand
2004-12-04 16:30:51 +00:00
7419e11eee
x
Love Hörnquist Åstrand
2004-12-02 19:49:36 +00:00
1518fc1da8
x
Love Hörnquist Åstrand
2004-12-02 16:13:26 +00:00
4df8612614
x
Love Hörnquist Åstrand
2004-11-30 19:27:55 +00:00
08bb397dbc
Reverse order of HEIMDAL_MUTEX_unlock and gss_release_cred to avoid deadlock, from Luke Howard <lukeh@padl.com>.
Love Hörnquist Åstrand
2004-11-30 19:27:11 +00:00
96f866ff05
x
Love Hörnquist Åstrand
2004-11-30 07:11:35 +00:00
899e9ce83d
(krb5_free_context): clear error string before destroying mutex (krb5_init_context): don't call krb5_free_context before there is a mutex initialized
Love Hörnquist Åstrand
2004-11-30 07:02:01 +00:00
ce43a2bcc3
x
Love Hörnquist Åstrand
2004-11-23 21:24:27 +00:00
af89d92dfe
(get_new_tickets): only complain about ticket renewable lifetime when the user asked for a specific renewable lifetime
Love Hörnquist Åstrand
2004-11-18 03:39:22 +00:00
2f8082aad8
(find_keys): log what principal is missing enctypes
Love Hörnquist Åstrand
2004-11-15 02:02:30 +00:00
00fd1e3851
(krb5_get_in_cred): clear pointer after freeing data
Love Hörnquist Åstrand
2004-11-13 21:08:17 +00:00
9e77275d72
x
Love Hörnquist Åstrand
2004-11-13 21:06:23 +00:00
ef868c62a1
(change_password): handle old_options being NULL From Guenther Deschner on samba-technical.
Love Hörnquist Åstrand
2004-11-13 20:41:54 +00:00
75912c3d7f
add more text describing the krb5_get_init_creds functions
Love Hörnquist Åstrand
2004-11-12 01:56:56 +00:00
5157d50fe5
x
Love Hörnquist Åstrand
2004-11-11 17:52:18 +00:00
993e8c9eea
make krb5_get_init_creds_keytab work again
Love Hörnquist Åstrand
2004-11-11 17:50:43 +00:00
d8b99337de
x
Love Hörnquist Åstrand
2004-11-10 20:50:35 +00:00
0ad5864fc4
x
Love Hörnquist Åstrand
2004-11-10 19:20:53 +00:00
9fd91474ad
use constrained integers
Love Hörnquist Åstrand
2004-11-10 18:50:27 +00:00
559b2ceca4
x
Love Hörnquist Åstrand
2004-11-09 21:32:41 +00:00
24c3bcd18f
document some more functions
Love Hörnquist Åstrand
2004-11-09 21:19:16 +00:00
125e0b9541
x
Love Hörnquist Åstrand
2004-11-09 18:57:46 +00:00
735376035c
add description for opt_init, opt_alloc, opt_free
Love Hörnquist Åstrand
2004-11-09 18:55:40 +00:00
3e732e53ea
unexport krb5_get_init_creds_opt_free_pkinit
Love Hörnquist Åstrand
2004-11-09 18:52:03 +00:00
fbd7b2787a
fold init_init_creds_ctx into get_init_creds_common
Love Hörnquist Åstrand
2004-11-09 16:10:57 +00:00
fb7b2586bc
(_krb5_get_init_creds_opt_copy): if the in options NULL, just make a clean copy
Love Hörnquist Åstrand
2004-11-09 15:30:34 +00:00
d1972b5179
x
Love Hörnquist Åstrand
2004-11-08 18:14:50 +00:00
76437eeb5a
x
Love Hörnquist Åstrand
2004-11-01 17:07:42 +00:00
d466d67e0e
(krb5_rd_rep): free ap_rep message earlier so we don't leak it on error
Love Hörnquist Åstrand
2004-11-01 09:04:40 +00:00
192b125577
(add_one_principal): catch error from UI_UTIL_read_pw_string
Love Hörnquist Åstrand
2004-11-01 08:41:00 +00:00
34f0f13bbc
x
Love Hörnquist Åstrand
2004-10-31 22:33:16 +00:00
4414774aa6
unbreak 2b entry
Love Hörnquist Åstrand
2004-10-31 22:32:27 +00:00
b8a248474d
x
Love Hörnquist Åstrand
2004-10-31 14:14:34 +00:00
6956494a09
(del_enctype): fix off-by-one error in del_enctype From: <ragge@ludd.luth.se>
Love Hörnquist Åstrand
2004-10-31 14:13:17 +00:00
6554996344
(make_cred_from_ccred): the address isn't a sockaddr but rather a kerberos address, deal with that. Based on bug report from Jakob Schlyter <jakob@rfc.se>.
Love Hörnquist Åstrand
2004-10-31 14:10:46 +00:00
ed1d06e42a
x
Love Hörnquist Åstrand
2004-10-30 22:35:37 +00:00
4e9d2f6a5b
update .Dd
Love Hörnquist Åstrand
2004-10-30 22:34:28 +00:00
78e5e11b1a
Change the behavior of the parse_unit code to return the number of bytes needed to print the whole string (minus the trailing '\0'), just like snprintf. Idea from bugreport from Gabriel Kihlman <gk@stacken.kth.se>.
Love Hörnquist Åstrand
2004-10-30 22:33:08 +00:00
9f27ea17bf
test parse_time
Love Hörnquist Åstrand
2004-10-30 22:26:50 +00:00
7816000f45
Make sure argument passed to ctype isn't signed char
Love Hörnquist Åstrand
2004-10-30 20:55:14 +00:00
01267b8096
x
Love Hörnquist Åstrand
2004-10-16 13:21:28 +00:00
236be3a565
put dns_type_to_string and dns_string_to_type in the abi
Love Hörnquist Åstrand
2004-10-16 12:19:13 +00:00
0641d8970d
add ds_record
Love Hörnquist Åstrand
2004-10-16 12:17:47 +00:00
9f52383628
match new error names
Love Hörnquist Åstrand
2004-10-14 15:49:51 +00:00
f0ca6d74a5
x
Love Hörnquist Åstrand
2004-10-14 15:31:48 +00:00
c56917439e
match new error names
Love Hörnquist Åstrand
2004-10-14 15:31:25 +00:00
42ab8cc9aa
make error messages sane again
Love Hörnquist Åstrand
2004-10-14 15:30:29 +00:00
063c7a71e6
x
Love Hörnquist Åstrand
2004-10-13 20:29:29 +00:00
2011850a53
use KRB5_KT_BADNAME
Love Hörnquist Åstrand
2004-10-13 20:10:09 +00:00
a18ab28ed1
x
Love Hörnquist Åstrand
2004-10-13 19:15:22 +00:00
a8f507a1ac
sync with mit krb5_err.et (require major version bump) add KRB5_DELTAT_BADFORMAT
Love Hörnquist Åstrand
2004-10-13 19:14:42 +00:00
1f5182ef5d
time defaults to "s"
Love Hörnquist Åstrand
2004-10-13 18:13:16 +00:00
8311097ae4
(krb5_string_to_deltat): default to "s" again, MIT's behavior was actually that it failed to parse the number (and thus used the default). Even better, ticket_lifetime (that was a consumer supposed a of the interface) was documented but never implemented, when it was implemented, people configuraiton files started to fail. Also, use KRB5_DELTAT_BADFORMAT as a failure code.
Love Hörnquist Åstrand
2004-10-13 17:57:11 +00:00
adf9706ec8
x
Love Hörnquist Åstrand
2004-10-13 17:43:18 +00:00
d1c56fd683
sync enctypes with pkinit branch
Love Hörnquist Åstrand
2004-10-13 17:42:37 +00:00
111de1cb5e
(readd) support negative numbers
Love Hörnquist Åstrand
2004-10-13 17:41:48 +00:00
54bf17b263
support hex numbers
Love Hörnquist Åstrand
2004-10-13 17:40:21 +00:00
ff2612b608
euthanise {get,set}_progname
Johan Danielsson
2004-10-13 12:15:23 +00:00
4feb3c1abd
use ETYPE_DES3_CBC_NONE_CMS
Love Hörnquist Åstrand
2004-10-12 21:25:43 +00:00
6c3270b0eb
add enctype_des3_cbc_none_cms add cms padding for rc2 don't to padding for blocksize 1
Love Hörnquist Åstrand
2004-10-12 21:23:48 +00:00
e72a36c030
x
Love Hörnquist Åstrand
2004-10-12 08:25:40 +00:00
140a5d502f
(parse_file): use hdb_generate_key_set
Love Hörnquist Åstrand
2004-10-12 08:24:42 +00:00
3648640294
x
Love Hörnquist Åstrand
2004-10-11 23:52:25 +00:00
c61ef0d7ab
Move keyset parsing and password based keyset generation into hdb. Requested by Andrew Bartlett <abartlet@samba.org> for hdb-ldb backend
Love Hörnquist Åstrand
2004-10-11 23:50:25 +00:00
2ecb91f6fe
x
Love Hörnquist Åstrand
2004-10-07 10:21:03 +00:00
c4cacd7a06
adapt to new signature of krb5_get_init_creds_opt_set_pkinit
Love Hörnquist Åstrand
2004-10-07 10:20:41 +00:00
aa710fc27f
free openssl engine deal with RecipientIdentifier -> CMSIdentifier and heim_any -> name change improve error messages
Love Hörnquist Åstrand
2004-10-06 22:38:21 +00:00
1212f664ea
free openssl engine deal with RecipientIdentifier -> CMSIdentifier and heim_any -> name change
Love Hörnquist Åstrand
2004-10-06 22:37:46 +00:00
d2c815eb6f
x
Love Hörnquist Åstrand
2004-10-06 17:49:24 +00:00
fd60854bb0
undefine open so this works on solaris with large file support From netbsd's pkgsrc via Gavan Fantom
Love Hörnquist Åstrand
2004-10-06 17:45:07 +00:00
4b14764156
x
Johan Danielsson
2004-10-04 15:11:52 +00:00
0326089c9f
use rtbl_set_separator
Johan Danielsson
2004-10-04 15:10:20 +00:00
8bf2948cf1
x
Love Hörnquist Åstrand
2004-10-03 17:46:09 +00:00
ee9f6e571b
filter out dup openssl engine keys, parse user options first
Love Hörnquist Åstrand
2004-10-03 17:46:01 +00:00
0ce5cfb84d
x
Love Hörnquist Åstrand
2004-10-03 17:20:56 +00:00
c80a3c8ebc
stop using AlgorithmIdentifierNonOpt, add openssl engine support for private key
Love Hörnquist Åstrand
2004-10-03 17:20:38 +00:00
d6cb6af31e
support padding as its done in CMS
Love Hörnquist Åstrand
2004-10-03 17:19:53 +00:00
31b9ad59ba
improve error logging
Love Hörnquist Åstrand
2004-10-03 16:54:11 +00:00
0b6e1d6012
x
Love Hörnquist Åstrand
2004-10-03 16:43:45 +00:00
15994aadba
stop using AlgorithmIdentifierNonOpt
Love Hörnquist Åstrand
2004-10-03 16:43:24 +00:00
56c4df08f7
x
Love Hörnquist Åstrand
2004-09-30 11:27:42 +00:00
84c67cadf0
assume minutes for time
Love Hörnquist Åstrand
2004-09-30 11:27:20 +00:00
c9fb7b3e5c
(krb5_config_vget_time_default): use krb5_string_to_deltat
Love Hörnquist Åstrand
2004-09-30 11:22:48 +00:00
30001db317
(krb5_appdefault_time): use krb5_string_to_deltat
Love Hörnquist Åstrand
2004-09-30 11:21:21 +00:00
00e45867e6
(krb5_string_to_deltat): set default unit to minute for compatibility with MIT Kerberos.
Love Hörnquist Åstrand
2004-09-30 11:19:46 +00:00
91a4130b2a
x
Love Hörnquist Åstrand
2004-09-29 12:52:07 +00:00
Love Hörnquist Åstrand