[auth2.c monitor.c sshconnect2.c auth2-krb5.c]
implement kerberos over ssh2 ("kerberos-2@ssh.com"); tested with jakob@
server interops with commercial client; ok jakob@ djm@
+ - (djm) Make portable build with MIT krb5 (some issues remain)
20030512
- (djm) Redhat spec: Don't install profile.d scripts when not
auth2-none.o auth2-passwd.o auth2-pubkey.o \
monitor_mm.o monitor.o monitor_wrap.o monitor_fdpass.o \
kexdhs.o kexgexs.o \
- auth-krb5.o auth-krb4.o \
+ auth-krb5.o auth2-krb5.o auth-krb4.o \
loginrec.o auth-pam.o auth-sia.o md5crypt.o
MANPAGES = scp.1.out ssh-add.1.out ssh-agent.1.out ssh-keygen.1.out ssh-keyscan.1.out ssh.1.out sshd.8.out sftp-server.8.out sftp.1.out ssh-rand-helper.8.out ssh-keysign.8.out sshd_config.5.out ssh_config.5.out
#include "auth.h"
#ifdef KRB5
+
#include <krb5.h>
#ifndef HEIMDAL
#define krb5_get_err_text(context,code) error_message(code)
#include "includes.h"
RCSID("$OpenBSD: auth2-krb5.c,v 1.1 2003/05/14 02:15:47 markus Exp $");
+#ifdef KRB5
+
#include <krb5.h>
#include "ssh2.h"
userauth_kerberos,
&options.kerberos_authentication
};
+
+#endif /* KRB5 */
#ifdef KRB5
#include <krb5.h>
+#ifndef HEIMDAL
+#define krb5_get_err_text(context,code) error_message(code)
+#endif /* !HEIMDAL */
#endif
+#include "openbsd-compat/sys-queue.h"
+
#include "ssh.h"
#include "ssh2.h"
#include "xmalloc.h"
packet_put_string(ap.data, ap.length);
packet_send();
+#ifdef HEIMDAL
krb5_data_free(&ap);
+#else
+# warning "XXX - leaks ap data on MIT kerberos"
+#endif
+
return (1);
}
#endif