~ubuntu-branches/ubuntu/saucy/krb5/saucy-proposed

« back to all changes in this revision

Viewing changes to src/include/krb5/krb5.hin

Committer: Package Import Robot
Author(s): Sam Hartman
Date: 2012-05-10 16:32:13 UTC
mfrom: (1.4.9)
Revision ID: package-import@ubuntu.com-20120510163213-3rqu31molrskmj67

Tags: 1.10.1+dfsg-1

http://bugs.debian.org/658514

http://bugs.debian.org/670457

http://bugs.debian.org/670918

http://bugs.debian.org/657027

http://bugs.debian.org/660869

http://bugs.debian.org/672075

http://bugs.debian.org/642229

http://bugs.debian.org/659072

http://bugs.debian.org/658437

*  New Upstream Version
  - Set display_name in gss_get_name_attribute, Closes: #658514
* Fix use counts on preauthentication, Closes: #670457
* Fix kadmin access controls, Closes: #670918
* Accept NMU with longer hostname, Closes: #657027
* Fix history from old databases, Closes: #660869
* Fix gcc 4.6.2 may be used uninitialized warnings/errors, Closes: #672075
* Check all keys in keytab for verifying credentials, Possibly fixes:
  #669127
* Avoid multi-arch libpath in krb5-config, Closes: #642229
    * Debconf translations:
  - Turkish debconf Translation, Thanks Atila KOC, Closes: #659072
  - Polish, thanks Michal/ Kul/ach, Closes: #658437

files added:
.pc/0006-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch

.pc/0006-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch/src

.pc/0006-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch/src/slave

.pc/0006-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch/src/slave/kprop.c

.pc/0009-Debian-.gbp.conf.patch

.pc/0009-Debian-.gbp.conf.patch/.gbp.conf

.pc/0010-autoreconf.patch

.pc/0010-autoreconf.patch/src

.pc/0010-autoreconf.patch/src/configure

.pc/debian-local/0007-debian-suppress-usr-lib-in-krb5-config.patch

.pc/debian-local/0007-debian-suppress-usr-lib-in-krb5-config.patch/src

.pc/debian-local/0007-debian-suppress-usr-lib-in-krb5-config.patch/src/krb5-config.in

.pc/debian-local/0008-debian-osconf.hin-path-changes.patch

.pc/debian-local/0008-debian-osconf.hin-path-changes.patch/src

.pc/debian-local/0008-debian-osconf.hin-path-changes.patch/src/include

.pc/debian-local/0008-debian-osconf.hin-path-changes.patch/src/include/osconf.hin

.pc/upstream

.pc/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch

.pc/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch/src

.pc/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch/src/lib

.pc/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch/src/lib/krb5

.pc/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch/src/lib/krb5/krb

.pc/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch/src/lib/krb5/krb/fwd_tgt.c

.pc/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch/src/lib/krb5/krb/tgtname.c

.pc/upstream/0012-Clear-preauth-use-counts-for-each-AS-request.patch

.pc/upstream/0012-Clear-preauth-use-counts-for-each-AS-request.patch/src

.pc/upstream/0012-Clear-preauth-use-counts-for-each-AS-request.patch/src/lib

.pc/upstream/0012-Clear-preauth-use-counts-for-each-AS-request.patch/src/lib/krb5

.pc/upstream/0012-Clear-preauth-use-counts-for-each-AS-request.patch/src/lib/krb5/krb

.pc/upstream/0012-Clear-preauth-use-counts-for-each-AS-request.patch/src/lib/krb5/krb/preauth2.c

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/lib

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/lib/kadm5

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/lib/kadm5/server_internal.h

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/lib/kadm5/srv

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/lib/kadm5/srv/server_kdb.c

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/lib/kadm5/srv/svr_principal.c

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/tests

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/tests/Makefile.in

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/tests/hist.c

.pc/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch/src/tests/t_pwhist.py

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/kdc

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/kdc/do_as_req.c

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/lib

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/lib/kadm5

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/lib/kadm5/srv

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/lib/kadm5/srv/svr_iters.c

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/slave

.pc/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch/src/slave/kprop.c

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/include

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/include/krb5

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/include/krb5/krb5.hin

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/lib

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/lib/krb5

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/lib/krb5/krb

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/lib/krb5/krb/t_vfy_increds.c

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/lib/krb5/krb/t_vfy_increds.py

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/lib/krb5/krb/vfy_increds.c

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/util

.pc/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch/src/util/k5test.py

.pc/upstream/0016-ticket-7080.patch

.pc/upstream/0016-ticket-7080.patch/src

.pc/upstream/0016-ticket-7080.patch/src/lib

.pc/upstream/0016-ticket-7080.patch/src/lib/krb5

.pc/upstream/0016-ticket-7080.patch/src/lib/krb5/krb

.pc/upstream/0016-ticket-7080.patch/src/lib/krb5/krb/deltat.c

.pc/upstream/0016-ticket-7080.patch/src/lib/krb5/krb/x-deltat.y

debian/patches/0006-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch

debian/patches/0009-Debian-.gbp.conf.patch

debian/patches/0010-autoreconf.patch

debian/patches/debian-local/0007-debian-suppress-usr-lib-in-krb5-config.patch

debian/patches/debian-local/0008-debian-osconf.hin-path-changes.patch

debian/patches/upstream

debian/patches/upstream/0011-yUse-correct-name-type-in-TGS-REQs-for-2008R2-RODCs.patch

debian/patches/upstream/0012-Clear-preauth-use-counts-for-each-AS-request.patch

debian/patches/upstream/0013-Try-all-history-keys-to-decrypt-password-history.patch

debian/patches/upstream/0014-Suppress-some-gcc-uninitialized-variable-warnings.patch

debian/patches/upstream/0015-Try-all-host-keys-by-default-in-vfy_increds.patch

debian/patches/upstream/0016-ticket-7080.patch

debian/po/pl.po

debian/po/tr.po

src/tests/hist.c

src/tests/t_pwhist.py

files removed:
.pc/0008-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch

.pc/0008-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch/src

.pc/0008-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch/src/slave

.pc/0008-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch/src/slave/kprop.c

.pc/0009-debian-suppress-usr-lib-in-krb5-config.patch

.pc/0009-debian-suppress-usr-lib-in-krb5-config.patch/src

.pc/0009-debian-suppress-usr-lib-in-krb5-config.patch/src/krb5-config.in

.pc/0011-Debian-.gbp.conf.patch

.pc/0011-Debian-.gbp.conf.patch/.gbp.conf

.pc/0012-autoreconf.patch

.pc/0012-autoreconf.patch/src

.pc/0012-autoreconf.patch/src/configure

.pc/debian-local/0010-debian-osconf.hin-path-changes.patch

.pc/debian-local/0010-debian-osconf.hin-path-changes.patch/src

.pc/debian-local/0010-debian-osconf.hin-path-changes.patch/src/include

.pc/debian-local/0010-debian-osconf.hin-path-changes.patch/src/include/osconf.hin

.pc/install_po

.pc/install_po/src

.pc/install_po/src/po

.pc/install_po/src/po/Makefile.in

.pc/pkinit_libs

.pc/pkinit_libs/src

.pc/pkinit_libs/src/configure.in

debian/patches/0008-Debian-set-AI_ADDRCONFIG-for-kprop-slave.patch

debian/patches/0009-debian-suppress-usr-lib-in-krb5-config.patch

debian/patches/0011-Debian-.gbp.conf.patch

debian/patches/0012-autoreconf.patch

debian/patches/debian-local/0010-debian-osconf.hin-path-changes.patch

debian/patches/install_po

debian/patches/pkinit_libs

files modified:
.pc/applied-patches

README

debian/.git-dpm

debian/changelog

debian/patches/0004-Debian-HURD-compatibility.patch

debian/patches/debian-local/0001-debian-install-ldap-library-in-subdirectory.patch

debian/patches/debian-local/0002-Debian-manpage-patch.patch

debian/patches/ksu_environment_fix

debian/patches/series

debian/patches/time_locale

debian/rules

doc/CHANGES

doc/admin-guide.pdf

doc/admin-guide.ps

doc/install-guide.pdf

doc/install-guide.ps

doc/user-guide.pdf

doc/user-guide.ps

src/configure

src/configure.in

src/include/autoconf.h.in

src/include/krb5/krb5.hin

src/kadmin/server/server_stubs.c

src/kdc/dispatch.c

src/kdc/do_as_req.c

src/krb5-config.in

src/lib/gssapi/krb5/inq_cred.c

src/lib/gssapi/krb5/naming_exts.c

src/lib/gssapi/mechglue/g_get_name_attr.c

src/lib/gssapi/spnego/spnego_mech.c

src/lib/kadm5/server_internal.h

src/lib/kadm5/srv/server_kdb.c

src/lib/kadm5/srv/svr_iters.c

src/lib/kadm5/srv/svr_principal.c

src/lib/krb5/asn.1/asn1_k_encode.c

src/lib/krb5/krb/deltat.c

src/lib/krb5/krb/fwd_tgt.c

src/lib/krb5/krb/gic_pwd.c

src/lib/krb5/krb/preauth2.c

src/lib/krb5/krb/t_vfy_increds.c

src/lib/krb5/krb/t_vfy_increds.py

src/lib/krb5/krb/tgtname.c

src/lib/krb5/krb/vfy_increds.c

src/lib/krb5/krb/x-deltat.y

src/patchlevel.h

src/plugins/kdb/db2/kdb_db2.c

src/plugins/kdb/ldap/libkdb_ldap/kdb_ldap.c

src/slave/kprop.c

src/tests/Makefile.in

src/tests/asn.1/krb5_decode_test.c

src/tests/asn.1/krb5_encode_test.c

src/tests/asn.1/reference_encode.out

src/tests/asn.1/trval.c

src/tests/asn.1/trval_reference.out

src/util/k5test.py

Show diffs side-by-side

added added

removed removed

src/include/krb5/krb5.hin

7049

7050

* @param [in] context Library context

7051

* @param [in] creds Initial credentials to be verified

7052

* @param [in] server_arg Server principal (or NULL)

7053

* @param [in] keytab_arg Key table (NULL to use default keytab)

7054

* @param [in,out] ccache_arg Credential cache for fetched creds (or NULL)

7052

* @param [in] server Server principal (or NULL)

7053

* @param [in] keytab Key table (NULL to use default keytab)

7054

* @param [in,out] ccache Credential cache for fetched creds (or NULL)

7055

* @param [in] options Verification options (NULL for default options)

7056

7057

* This function attempts to verify that @a creds were obtained from a KDC with

7058

* knowledge of a key in @a keytab_arg. If @a server_arg is provided, the

7059

* highest-kvno key entry for that principal name is used to verify the

7060

* credentials; otherwise, the highest-kvno key entry for the first principal

7061

* listed in @a keytab_arg is used.

7058

* knowledge of a key in @a keytab, or the default keytab if @a keytab is NULL.

7059

* If @a server is provided, the highest-kvno key entry for that principal name

7060

* is used to verify the credentials; otherwise, all unique "host" service

7061

* principals in the keytab are tried.

7062

7063

* If the specified keytab does not exist, or is empty, or cannot be read, or

7064

* does not contain an entry for @a server_arg, then credential verification

7065

* may be skipped unless configuration demands that it succeed. The caller can

7064

* does not contain an entry for @a server, then credential verification may be

7065

* skipped unless configuration demands that it succeed. The caller can

7066

* control this behavior by providing a verification options structure; see

7067

* krb5_verify_init_creds_opt_init() and

7068

* krb5_verify_init_creds_opt_set_ap_req_nofail().

7069

7070

* If @a ccache_arg is NULL, any additional credentials fetched during the

7071

* verification process will be destroyed. If @a ccache_arg points to NULL, a

7070

* If @a ccache is NULL, any additional credentials fetched during the

7071

* verification process will be destroyed. If @a ccache points to NULL, a

7072

* memory ccache will be created for the additional credentials and returned in

7073

* @a ccache_arg. If @a ccache_arg points to a valid credential cache handle,

7074

* the additional credentials will be stored in that cache.

7073

* @a ccache. If @a ccache points to a valid credential cache handle, the

7074

* additional credentials will be stored in that cache.

7075

7076

* @retval 0 Success; otherwise - Kerberos error codes

7077

7078

krb5_error_code KRB5_CALLCONV

7079

krb5_verify_init_creds(krb5_context context, krb5_creds *creds,

7080

krb5_principal server_arg, krb5_keytab keytab_arg,

7081

krb5_ccache *ccache_arg, krb5_verify_init_creds_opt *options);

7080

krb5_principal server, krb5_keytab keytab,

7081

krb5_ccache *ccache,

7082

krb5_verify_init_creds_opt *options);

7082

7083

7084

/**

7084

7085

* Get validated credentials from the KDC.

Older »