]>
git.ipfire.org Git - thirdparty/krb5.git/log
Luke Howard [Sun, 30 Aug 2009 15:34:32 +0000 (15:34 +0000)]
add KDCIssued helpers
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22660
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 14:53:54 +0000 (14:53 +0000)]
plug some memory leaks
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22656
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 13:50:40 +0000 (13:50 +0000)]
debug re-imported name string
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22655
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 13:48:40 +0000 (13:48 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22654
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 13:47:16 +0000 (13:47 +0000)]
cleanup, ensure code is initialized
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22653
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 13:43:01 +0000 (13:43 +0000)]
krb5_authdata_get_attribute_types should not return an error if no attributes
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22652
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 13:41:50 +0000 (13:41 +0000)]
use correct OID release function
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22651
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 13:34:42 +0000 (13:34 +0000)]
if no authdata attributes present, gss_export_composite_name() should emit a downlevel name token
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22650
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 29 Aug 2009 07:51:51 +0000 (07:51 +0000)]
harmonize get_attribute_types SPI with naming_exts; cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22649
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 27 Aug 2009 14:18:06 +0000 (14:18 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22637
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Thu, 27 Aug 2009 10:59:38 +0000 (10:59 +0000)]
AP_REQ attributes belong on initiator name, notiator not target GSS name
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22633
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 17:40:16 +0000 (17:40 +0000)]
fix bounds checking macro
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22630
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 17:36:27 +0000 (17:36 +0000)]
comment out composite name hack for now
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22629
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 17:08:02 +0000 (17:08 +0000)]
make SPNEGO test conditional by USE_SPNEGO, because we have unrelated mechglue bugs that make it difficult to test
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22628
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 16:59:17 +0000 (16:59 +0000)]
Add some assertion checks, deal with cred->princ == NULL for acceptor creds
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22627
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 15:56:30 +0000 (15:56 +0000)]
remove unused file
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22626
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 13:01:34 +0000 (13:01 +0000)]
don't return any PAC attributes if we don't have a PAC
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22625
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:49:01 +0000 (12:49 +0000)]
add greet authdata client plugin test
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22624
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:48:28 +0000 (12:48 +0000)]
try to preserve extended attributes with stacked mechanisms
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22623
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:47:13 +0000 (12:47 +0000)]
don't return EINVAL if PAC is empty
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22622
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:26:35 +0000 (12:26 +0000)]
add greet_client plugin
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22621
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:26:16 +0000 (12:26 +0000)]
update AD plugin type enumeration
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22620
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:25:46 +0000 (12:25 +0000)]
fix some issues with client-set attributes
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22619
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:24:51 +0000 (12:24 +0000)]
sample authdata client plugin
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22618
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 12:16:19 +0000 (12:16 +0000)]
don't free caller owned memory if krb5_generate_authenticator/encode_krb5_authenticator fails
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22617
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 11:00:29 +0000 (11:00 +0000)]
copy greet to greet_client
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22616
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 10:58:11 +0000 (10:58 +0000)]
lock source name on duplicate
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22615
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 06:30:22 +0000 (06:30 +0000)]
separate import and verify callbacks for authdata plugin
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22614
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 06:08:14 +0000 (06:08 +0000)]
test import/export name
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22613
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 06:06:47 +0000 (06:06 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22612
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 05:55:41 +0000 (05:55 +0000)]
add support for importing composite names, and bounds checking to krb5_gss_import_name
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22611
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Wed, 26 Aug 2009 05:47:00 +0000 (05:47 +0000)]
set authdata context when calling mk_req_extended
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22610
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 23:06:25 +0000 (23:06 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22609
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 23:01:59 +0000 (23:01 +0000)]
lessen distinction between importing and verifying authdata
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22608
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 22:40:17 +0000 (22:40 +0000)]
implement krb5_gss_export_name_composite
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22607
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 22:07:10 +0000 (22:07 +0000)]
plug leak
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22606
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 22:05:52 +0000 (22:05 +0000)]
include context authdata in AP-REQ
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22605
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 22:03:43 +0000 (22:03 +0000)]
plug leak
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22604
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 21:54:55 +0000 (21:54 +0000)]
refactor authdata context copying
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22603
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 18:14:57 +0000 (18:14 +0000)]
don't copy auth data context, take ownership of it from auth context
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22602
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 18:02:06 +0000 (18:02 +0000)]
access krb5_authdata_context via krb5_auth_context
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22601
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 17:37:11 +0000 (17:37 +0000)]
indicate how we might ignore PAC verification failures
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22600
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 17:10:38 +0000 (17:10 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22599
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 16:58:52 +0000 (16:58 +0000)]
serialize access to ad_context member of krb5_gss_name_t, and create contexts on demand
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22598
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 16:52:28 +0000 (16:52 +0000)]
plug a leak
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22597
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 13:57:48 +0000 (13:57 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22596
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 13:26:38 +0000 (13:26 +0000)]
cleanup, test naming exts
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22595
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 13:20:29 +0000 (13:20 +0000)]
add naming extension SPI to SPNEFGO mech
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22594
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 12:58:23 +0000 (12:58 +0000)]
preliminary naming extensions mechglue
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22593
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 12:00:16 +0000 (12:00 +0000)]
Add methods for naming extensions
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22592
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 06:14:28 +0000 (06:14 +0000)]
combine request and plugin context initialization, for now
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22589
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Tue, 25 Aug 2009 05:45:40 +0000 (05:45 +0000)]
careful to de-internalize names when releasing them
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22588
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 24 Aug 2009 22:33:46 +0000 (22:33 +0000)]
preliminary implementation of GSS naming SPI krb5 backend
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22587
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 24 Aug 2009 21:33:09 +0000 (21:33 +0000)]
embed authdata accessor in krb5_gss_name_t
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22586
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 24 Aug 2009 17:01:58 +0000 (17:01 +0000)]
add some code for copying ad contexts
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22584
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 24 Aug 2009 13:40:07 +0000 (13:40 +0000)]
more work on naming extensions
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22583
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Mon, 24 Aug 2009 06:05:08 +0000 (06:05 +0000)]
more work on authdata API
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22582
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sun, 23 Aug 2009 21:52:29 +0000 (21:52 +0000)]
preliminary implementation of pluggable authdata verifiers
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22581
dc483132 -0cff-0310-8789-
dd5450dbe970
Luke Howard [Sat, 22 Aug 2009 16:36:11 +0000 (16:36 +0000)]
Creating branch for VerifyAuthData project
git-svn-id: svn://anonsvn.mit.edu/krb5/users/lhoward/authdata@22578
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 21 Aug 2009 22:37:55 +0000 (22:37 +0000)]
Rename db2 header files db.h and db-config.h in the source tree, so
that there will always be only one version of each name in the include
path (namely, the copy made in the build tree, or the generated db.h
if not using the in-tree one). This should fix some minor problems
with different dependency lists generated on different systems.
Sort and uniquify dependency header names before doing substitutions,
as well as after. Look for the db2 headers listed in sorted order.
Don't copy db-ndbm.h into the build tree; let libdb2 find it from the
source tree only.
Update dependencies.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22572
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 21 Aug 2009 22:30:43 +0000 (22:30 +0000)]
update dependencies
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22571
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 21 Aug 2009 18:32:53 +0000 (18:32 +0000)]
Use load_32_be processing length in TCP reply
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22570
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 21 Aug 2009 18:32:50 +0000 (18:32 +0000)]
Change "vague-errors" compile-time conditionals into run-time
conditionals, based on a variable initialized based on the
compile-time conditional (but probably eventually set from the config
file or command line).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22569
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 21 Aug 2009 18:32:46 +0000 (18:32 +0000)]
Use {load,store}_{16,32}_be for big-endian integers
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22568
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Tue, 18 Aug 2009 03:05:16 +0000 (03:05 +0000)]
Minor code cleanups in pkinit plugin, mostly around malloc/free
invocations. No functional changes.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22534
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 17 Aug 2009 20:07:21 +0000 (20:07 +0000)]
Bump sonames of libkadm5 libraries, since r22527 changed their ABIs
ticket: 6547
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22528
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 17 Aug 2009 19:40:48 +0000 (19:40 +0000)]
Modify kadm5 initializers to accept krb5 contexts
Add krb5_context parameters to all kadm5 initialization functions.
This allows extended error information to be retrieved by the caller
when an error is returned.
ticket: 6547
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22527
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 17 Aug 2009 14:39:44 +0000 (14:39 +0000)]
Remove unused variables resulting from r22521, and also remove the
unused file svr_misc_free.c.
ticket: 6544
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22523
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Fri, 14 Aug 2009 16:24:36 +0000 (16:24 +0000)]
In doc/Makefile, specify the new location of the kpasswd man page (the
old one was removed in r22521.
ticket: 6544
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22522
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Thu, 13 Aug 2009 21:25:54 +0000 (21:25 +0000)]
Remove kadmin v1 API support
The kadmin v1 API and the even older ovsec_kadm_* API were legacy when
kadmin was first incorporated in 1996, and compatibility with them is
no longer believed to be necessary.
The uninstalled kadmin/passwd has been removed (since it used the ovsec
API). The test suite has been updated to use the v2 API where
appropriate, and the parts specifically designed to test the old API
have been excised.
ticket: 6544
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22521
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Thu, 13 Aug 2009 18:48:46 +0000 (18:48 +0000)]
Fix lib/crypto/krb/dk/Makefile.in mydir value
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22520
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Wed, 12 Aug 2009 18:53:47 +0000 (18:53 +0000)]
Reply message ordering bug in ftpd
user() was replying to the user command and then calling login(),
which could send a continuation reply if it fails to chdir to the
user's homedir. Continuation replies must come before the actual
reply; the mis-ordering was causing ftp and ftpd to deadlock. To fix
the bug, invoke login() before reply() so that the continuation reply
comes first.
ticket: 6543
tags: pullup
target_version: 1.7
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22519
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 12 Aug 2009 17:58:24 +0000 (17:58 +0000)]
r22529@squish: raeburn | 2009-08-12 13:49:45 -0400
.
r22530@squish: raeburn | 2009-08-12 13:55:57 -0400
Change KRBCONF_KDC_MODIFIES_KDB to a mostly run-time option.
Change all code conditionals to test a new global variable, the
initial value of which is based on KRBCONF_KDC_MODIFIES_KDB. There is
currently no way to alter the value from the command line; that will
presumably be desired later.
Change initialize_realms to store db_args in a global variable. In
process_as_req, call db_open instead of the old set_name + init.
Don't reopen if an error is reported by krb5_db_fini.
Add a test of running kinit with an incorrect password, to trigger a
kdb update if enabled.
r22531@squish: raeburn | 2009-08-12 13:58:13 -0400
Fix trailing whitespace.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22518
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Aug 2009 19:35:34 +0000 (19:35 +0000)]
Correct the t_nfold build rules again. We don't have a simple way of
plucking object files from other directories (we don't know for sure
what extension to use), so build an nfold.o in this directory from the
nfold.c in the ../krb source directory.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22517
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Aug 2009 19:12:47 +0000 (19:12 +0000)]
Check for null characters in pkinit cert fields
When processing DNS names or MS UPNs in pkinit certs, disallow
embedded null characters.
ticket: 6542
tags: pullup
target_version: 1.7
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22516
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Aug 2009 05:26:05 +0000 (05:26 +0000)]
Narrow the contract of pkinit_client_profile by passing in the realm
instead of the whole request.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22515
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Aug 2009 05:16:24 +0000 (05:16 +0000)]
In pkinit_clnt.c, make private functions static. There and in
pkinit_srv.c, only declare static functions when necessary for forward
references (as is consistent with the other pkinit sources). Remove
the empty functions pkinit_init_client_profile and
pkinit_fini_client_profile.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22514
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Aug 2009 05:02:43 +0000 (05:02 +0000)]
Convert all uses of strtok() in libraries to strtok_r() for thread
safety.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22513
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Aug 2009 04:42:44 +0000 (04:42 +0000)]
Remove pkinit_identity_process_option, which wasn't doing anything
besides picking a subsidiary function based on the (constant) input
argument. Remove the associated constants from pkinit.h as well. No
functional change.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22512
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Fri, 7 Aug 2009 19:17:57 +0000 (19:17 +0000)]
Fix the LDAP build, which was broken by the build reordering in
r22406. Build kdb5_util's getdate from the kadmin/cli getdate
source, instead of borrowing the object file from the kadmin/cli
build directory.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22501
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Aug 2009 23:18:42 +0000 (23:18 +0000)]
In crypto_tests: for t_nfold, link against an nfold object file in the
build directory, not the source directory. Remove the nfold object
from the t_encrypt dependency list since we don't directly use it in
the linking rule.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22489
dc483132 -0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 3 Aug 2009 21:58:15 +0000 (21:58 +0000)]
Be a little more verbose about errors from mit_des_key_sched(), and
remember to print newlines.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22488
dc483132 -0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 3 Aug 2009 21:19:46 +0000 (21:19 +0000)]
Fix deplibs for t_crc
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22487
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Aug 2009 20:27:03 +0000 (20:27 +0000)]
Get "make depend" to work in an unbuilt source tree, since bad deps
files can make it difficult to build the tree. To do this, make the
depends target depend on generated header files and on header file
copies or links into the main include directory.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22486
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Aug 2009 18:40:22 +0000 (18:40 +0000)]
Re-run make depend. (I am not certain why the dependencies from
r22477 didn't work for me.)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22482
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Aug 2009 18:00:18 +0000 (18:00 +0000)]
In the crypto-tests check target, refer to t_cf2.expected in the
source tree (where it lives) instead of the cwd.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22481
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Aug 2009 17:57:05 +0000 (17:57 +0000)]
In configure.in's list of Makefiles to generate, remove the trailing
slash from lib/crypto/krb as it breaks Makefile auto-regeneration.
While here, wrap the list to fit within 80 columns and use tab indents
to match the surrounding lines.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22480
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Mon, 3 Aug 2009 14:19:16 +0000 (14:19 +0000)]
Crypto modularity proj: Separate files under crypto directory based on their functionality. Move Kerberos specific files into krb subdir and MIT specific - into builtin subdir. Place all tests into crypto_tests subfolder.
bigredbutton: whitespace
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22477
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Sat, 1 Aug 2009 02:25:56 +0000 (02:25 +0000)]
Fix of the test cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22476
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Thu, 30 Jul 2009 19:06:37 +0000 (19:06 +0000)]
Include <assert.h> in k5-platform.h, since we use assertions in some
of the macros defined there, as well as in many source files which do
not themselves include <assert.h>. Report and fix by Rainer Weikusat.
ticket: 6533
tags: pullup
target_version: 1.7
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22475
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Thu, 30 Jul 2009 17:22:28 +0000 (17:22 +0000)]
Fix memory leak in k5_pac_verify_server_checksum
k5_pac_verify_server_checksum was leaking memory when the checksum was valid.
t_pac.c: Fix memory leak by forgetting to release memory.
ticket: 6541
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22474
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Thu, 30 Jul 2009 17:12:20 +0000 (17:12 +0000)]
memory leak in test code t_authdata
Free the krb5_context at the end to release memory.
ticket: 6540
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22473
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Thu, 30 Jul 2009 01:07:03 +0000 (01:07 +0000)]
Fix memory leak by release context at end of test code
ticket: 6539
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22470
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Wed, 29 Jul 2009 16:10:32 +0000 (16:10 +0000)]
Enctype list configuration enhancements
In the processing code for enctype lists, add support for "DEFAULT"
to indicate the default list, for families (des/des3/aes/rc4), and
for removing entries from the current list (-foo). Also add unit
tests and document.
ticket: 6539
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22469
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Tue, 28 Jul 2009 16:21:19 +0000 (16:21 +0000)]
Crypto Modularity proj: Added an option --with-crypto-impl to configure.in to specify crypto impl
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22460
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 27 Jul 2009 17:41:19 +0000 (17:41 +0000)]
Use zero-terminated enctype lists in the context structure instead of
counted lists, to reduce impedance mismatches.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22456
dc483132 -0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 17 Jul 2009 01:35:58 +0000 (01:35 +0000)]
include win-mac.h in gssftp/ftp/cmds.c for HAVE_STDLIB_H
gssftp/ftp/cmds.c had a preprocessor conditional on HAVE_STDLIB_H that
will not evaluate correctly on WIN32 unless win-mac.h is included first.
ticket: 6531
target_version: 1.6.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22443
dc483132 -0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 10 Jul 2009 19:46:20 +0000 (19:46 +0000)]
check for slogin failure in setup_root_shell
Add a check for a slogin message that indicates an unknown public key
fingerprint, as rlogin looks like it points to slogin by default on
Debian Lenny.
ticket: 6530
target_version: 1.7.1
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22435
dc483132 -0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 10 Jul 2009 19:20:26 +0000 (19:20 +0000)]
Add a new '-W' option to kadmind and kdb5_util create to allow reading
weak random numbers on startup, to avoid long delays in testing
situations. Use only for testing.
Update testing scripts accordingly.
ticket: 1233
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22434
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Fri, 10 Jul 2009 19:13:17 +0000 (19:13 +0000)]
In the dejagnu test suite, remove the no-longer-used check_klogin
function.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@22433
dc483132 -0cff-0310-8789-
dd5450dbe970
projects / thirdparty / krb5.git / log
