heimdal/kdc at 678f9f9f070134f62b49b833b2f5364c660a530f - heimdal - PVV Git

oysteikt/heimdal

Files

History

Love Hornquist Astrand 678f9f9f07 [HEIMDAL-533] KDC sends TGS-REP encrypted in session key not authenticator

From RFC 4120, page 35

   In preparing the authentication header, the client can select a sub-
   session key under which the response from the Kerberos server will be
   encrypted.  If the client selects a sub-session key, care must be
   taken to ensure the randomness of the selected sub-session key.

The client library alread handle this case.

Thanks to Sam Hartman to report this though Debian

2009-10-11 08:46:53 -07:00

..

524.c

use asn1 decoder function directly

2008-12-11 04:51:39 +00:00

config.c

if the UDP packet is truncated, return too packet large

2009-09-16 16:06:11 -07:00

connect.c

if the UDP packet is truncated, return too packet large

2009-09-16 16:06:11 -07:00

default_config.c

make digest, kx509 and krb4

2009-01-25 20:50:15 +00:00

digest.c

switch to EVP_MD_CTX_create() and thus make smaller

2009-08-21 07:15:06 -07:00

headers.h

Patch from Andrew bartlett via heimdal-bugs@h5l.org

2009-07-03 03:16:46 +00:00

hprop.8

Use line continuation for line in hprop.8 manual page. The line is

2008-09-28 05:14:21 +00:00

hprop.c

disable deprecated warning since this module uses 425 function and we

2009-04-04 17:11:26 +00:00

hprop.h

remove trailing whitespace

2008-09-13 09:21:03 +00:00

hpropd.8

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

hpropd.c

openlog failed, exit

2009-03-22 17:23:54 +00:00

kadb.h

remove trailing whitespace

2008-09-13 09:21:03 +00:00

kaserver.c

sync check flags

2009-07-03 04:25:46 +00:00

kdc_locl.h

if the UDP packet is truncated, return too packet large

2009-09-16 16:06:11 -07:00

kdc-replay.c

remove trailing whitespace

2008-09-13 09:21:03 +00:00

kdc.8

The man page for kdc(8) says --disable-DES, the source says --disable-des.

2008-10-20 23:34:19 +00:00

kdc.h

add proxy bit

2009-03-29 09:04:50 +00:00

kerberos4.c

sync check flags

2009-07-03 04:26:00 +00:00

kerberos5.c

[HEIMDAL-533] KDC sends TGS-REP encrypted in session key not authenticator

2009-10-11 08:46:53 -07:00

krb5tgs.c

[HEIMDAL-533] KDC sends TGS-REP encrypted in session key not authenticator

2009-10-11 08:46:53 -07:00

kstash.8

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

kstash.c

remove trailing whitespace

2008-09-13 09:21:03 +00:00

kx509.c

Use hx509_context that build from krb5_context

2009-09-29 13:13:32 -07:00

log.c

remove trailing whitespace

2008-09-13 09:21:03 +00:00

main.c

Indent

2009-07-16 22:56:59 -07:00

Makefile.am

finish support for libintl

2008-09-07 21:13:13 +00:00

misc.c

Free ent on failure [CID-171]

2009-07-30 09:59:23 +02:00

mit_dump.c

don't set unused variables

2009-02-27 03:34:06 +00:00

pkinit.c

Use hx509_context that build from krb5_context

2009-09-29 13:13:21 -07:00

process.c

force submodules to claim the package

2009-01-26 01:30:42 +00:00

rx.h

remove trailing whitespace

2008-09-13 09:21:03 +00:00

set_dbinfo.c

remove trailing whitespace

2008-09-13 09:21:03 +00:00

string2key.8

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

string2key.c

remove trailing whitespace

2008-09-13 09:21:03 +00:00

v4_dump.c

remove trailing whitespace

2008-09-13 09:21:03 +00:00

version-script.map

export get_dbinfo as krb5_kdc_set_dbinfo and call from users. This to allows libkdc users to to specify their own databases

2007-06-18 10:52:20 +00:00

windc_plugin.h

Patch from Andrew bartlett via heimdal-bugs@h5l.org

2009-07-03 03:16:46 +00:00

windc.c

heimdal kerberos - fix memory leak (free the plugin list always - not only in error cases)

2009-10-03 11:13:09 -07:00