]>
git.ipfire.org Git - thirdparty/krb5.git/log
Sam Hartman [Mon, 1 Dec 2008 20:57:06 +0000 (20:57 +0000)]
des-hmac-sha1 does not support AEAD
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21259
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:45:15 +0000 (16:45 +0000)]
Omit CTS length check
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21257
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:45:10 +0000 (16:45 +0000)]
Update t_encrypt to do some black-box testing of the iov API
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21256
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:59 +0000 (16:44 +0000)]
type in krb5_c_crypto_length is the crypto type not the enctype
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21255
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:55 +0000 (16:44 +0000)]
Add stream cryptotype
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21254
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:50 +0000 (16:44 +0000)]
Fix extern declaration
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21253
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:45 +0000 (16:44 +0000)]
Use return value of get/put block to indicate termination condition
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21252
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:41 +0000 (16:44 +0000)]
Cleanup; stream processing is done now by krb5_c_decrypt_iov()
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21251
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:36 +0000 (16:44 +0000)]
Cleanup IOV code
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21250
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:31 +0000 (16:44 +0000)]
Add krb5_c_crypto_length_iov() and krb5_c_padding_length() APIs
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21249
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:26 +0000 (16:44 +0000)]
Change the behaviour of KRB5_CRYPTO_TYPE_STREAM slightly: STREAM should
be the concatenation of HEADER | DATA | PADDING | TRAILER (without any
SIGN_ONLY buffers). When passing STREAM into decrypt, any additional
SIGN_ONLY buffers should be included as input, ordered relative to the
(output) DATA buffer as they were on encrypt.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21248
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:21 +0000 (16:44 +0000)]
Only a single padding buffer is required
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21247
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:16 +0000 (16:44 +0000)]
Cleanup code on the assumption HEADER buffer is always first
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21246
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:12 +0000 (16:44 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21245
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:07 +0000 (16:44 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21244
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:44:02 +0000 (16:44 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21243
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:57 +0000 (16:43 +0000)]
KRB5_CRYPTO_TYPE_STREAM handling code was in wrong file
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21242
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:52 +0000 (16:43 +0000)]
When pad_to_boundary is set (as it is for CCM), don't pad between
buffers of the same type.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21241
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:47 +0000 (16:43 +0000)]
Initialize PADDING buffers that are not preceeded by DATA buffers to
zero length
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21240
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:43 +0000 (16:43 +0000)]
Ensure padding is initialized on return from krb5_c_encrypt_iov()
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21239
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:38 +0000 (16:43 +0000)]
Add some notes regarding block IOV APIs
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21238
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:33 +0000 (16:43 +0000)]
CTR mode and associated data do not require explicit padding in the
output message
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21237
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:29 +0000 (16:43 +0000)]
Cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21236
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:24 +0000 (16:43 +0000)]
Provisional implementation of CCM mode for AES
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21235
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:19 +0000 (16:43 +0000)]
RC4 has a header length that includes the confounder and checksum.
The trailer length is 0
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21234
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:15 +0000 (16:43 +0000)]
Reformat
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21233
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:10 +0000 (16:43 +0000)]
Careful not to overwrite mit_des_zeroblock
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21232
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:05 +0000 (16:43 +0000)]
Don't reset iov_pos to current index after reading header; found by Sam
Hartman
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21231
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:43:00 +0000 (16:43 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21230
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:55 +0000 (16:42 +0000)]
support KRB5_CRYPTO_TYPE_STREAM
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21229
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:50 +0000 (16:42 +0000)]
fix some more pointer adjustment errors
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21228
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:46 +0000 (16:42 +0000)]
Don't encrypt checksum!
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21227
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:42 +0000 (16:42 +0000)]
For RC4, checksum is in header, not trailer
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21226
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:37 +0000 (16:42 +0000)]
No padding for rc4 at krb5 layer
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21225
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:32 +0000 (16:42 +0000)]
Expose krb5_hmac_iov via accessor
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21224
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:22 +0000 (16:42 +0000)]
Include padding in to be signed data
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21223
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:18 +0000 (16:42 +0000)]
Don't require KRB5_CRYPTO_TPYE_HEADER to come before data
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21222
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:13 +0000 (16:42 +0000)]
Validate input lengths correctly for CTS ciphers
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21221
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:07 +0000 (16:42 +0000)]
KRB5_CRYPTO_TYPE_CHECKSUM should be 96 bits
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21220
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:42:03 +0000 (16:42 +0000)]
Fix some bugs in AEAD code
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21219
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:58 +0000 (16:41 +0000)]
Implement 3DES IOV routines
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21218
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:52 +0000 (16:41 +0000)]
Initial implementation of krb5int_aes_decrypt_iov()
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21217
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:47 +0000 (16:41 +0000)]
Begin work on AES IOV APIs
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21216
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:42 +0000 (16:41 +0000)]
preliminary implementation of krb5int_dk_{en,de}crypt_iov
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21215
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:36 +0000 (16:41 +0000)]
preliminary implementation of krb5int_arcfour_decrypt_iov
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21214
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:31 +0000 (16:41 +0000)]
implement k5_hmac_md5_hash_iov
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21213
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:26 +0000 (16:41 +0000)]
Some work on checksum code for AEAD
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21212
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:20 +0000 (16:41 +0000)]
Begin work on rc4 krb5 AEAD
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21211
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:41:08 +0000 (16:41 +0000)]
Beginnings of work on AEAD support in libk5crypto
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21210
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:09:13 +0000 (16:09 +0000)]
Branch trunk to record series of commits pulled from mskrb-integ to implement Projects/AEAD encryption API
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21209
dc483132 -0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 1 Dec 2008 16:05:36 +0000 (16:05 +0000)]
Create a branch for the series of commits that define the merge of crypto iov code on the trunk
in response to Projects/AEAD encryption API.
These are a subset ]of the commits to the mskrb-integ branch.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/mskrb-integ-crypto-iov@21207
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Mon, 1 Dec 2008 12:22:12 +0000 (12:22 +0000)]
make depend
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21206
dc483132 -0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Mon, 1 Dec 2008 12:16:33 +0000 (12:16 +0000)]
Move cc_mutex code from k5-int.h - where it is globally available to cc-int.h
where it is declared and used. The functions are not exported by the library -
nor are they used outside lib/krb5/ccache... For cc_file.h - include cc-int.h.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21205
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 1 Dec 2008 06:48:54 +0000 (06:48 +0000)]
Shawn's fix for some iprop bugs, with some tweaks
Adds an alarm while waiting for kprop connection or authentication in
iprop mode; on timeout, close down the active file descriptor to force
us to bail out and return to the iprop main loop (which may try a full
resync again next time around).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21204
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 24 Nov 2008 21:06:55 +0000 (21:06 +0000)]
fix tiny overrun
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21183
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 24 Nov 2008 21:06:20 +0000 (21:06 +0000)]
Simplify memory management a bit in places, by allocating and freeing
separately, instead of reallocating arrays of pointers to themselves
be reallocated. Do a better job of initializing arrays of which we
only use a variable-sized part.
Use a temp var instead of lots of long macro invocations.
Fix some overrun-by-one errors in buffer copying.
Clean up some possible leaks.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21182
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 24 Nov 2008 20:27:44 +0000 (20:27 +0000)]
Test with varying numbers of principal name components, of varying lengths.
Test principal modifications, not just additions.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21181
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 24 Nov 2008 19:40:23 +0000 (19:40 +0000)]
Use profile_free_list as appropriate. Fix memory leaks
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21180
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 24 Nov 2008 19:19:14 +0000 (19:19 +0000)]
Fix memory leak caught by valgrind
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21179
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 17 Nov 2008 22:19:26 +0000 (22:19 +0000)]
Note kprop doesn't do IPv6 yet either
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21135
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 17 Nov 2008 21:34:48 +0000 (21:34 +0000)]
Set krb4 and priocntl flags via site.exp instead of command line
Update set of files to clean out at test suite startup, or when
deleting the database.
Improve support for setting up slave test environment. Don't set
KRB5_KDC_PROFILE except in KDC master and slave environments. Create
distinct env.sh and env.csh files for different configurations. Move
kpropd setup proc into common initialization.
Add incremental propagation test: Create new kiprop/$host principal,
update kproplog test for the new data. "Propagate" the master
database to the slave, add a new principal, start up kpropd, watch for
the "OK" message, and check to see if the new principal exists on the
slave.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21134
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 17 Nov 2008 21:28:04 +0000 (21:28 +0000)]
Fix a memory management bug
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21133
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 17 Nov 2008 21:24:29 +0000 (21:24 +0000)]
Don't stick '<null>' in log messages. Run kdb5_util dump with input explicitly from /dev/null
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21132
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 17 Nov 2008 21:14:03 +0000 (21:14 +0000)]
Log more info if ulog_replay fails. Correctly use supplied keytab name
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21131
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 17 Nov 2008 21:12:01 +0000 (21:12 +0000)]
Use correct update log file name in messages
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21130
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Mon, 17 Nov 2008 21:04:06 +0000 (21:04 +0000)]
Lite Client - the following calls are server-side functions:
decode_krb5_authenticator,
krb5_auth_con_getauthenticator,
krb5_copy_authenticator,
krb5_ser_authenticator_init
Take them out for the Lite CLient.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21129
dc483132 -0cff-0310-8789-
dd5450dbe970
Zhanna Tsitkov [Mon, 17 Nov 2008 19:28:24 +0000 (19:28 +0000)]
PERF: Introduced a new function krb5_is_permitted_enctype_ext to replace multiple calls to krb5_is_permitted_enctype
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21128
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 12 Nov 2008 22:11:43 +0000 (22:11 +0000)]
Fix test bug: kpropd -S exits after success
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21079
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 12 Nov 2008 21:49:35 +0000 (21:49 +0000)]
Add basic kprop test, and a little more debugging support
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21078
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 10 Nov 2008 23:34:50 +0000 (23:34 +0000)]
Delete replay cache before exiting with success indication
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21068
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 10 Nov 2008 22:43:21 +0000 (22:43 +0000)]
Generate separate master-KDC and slave-KDC config files, with
different names for the database files. (Slave config files unused as
yet.) Ensure that the master-KDC environment is used when running
kadmin.local or kdb5_util. Define and use a new proc for deleting all
KDC database and keytab files.
Set KPASSWD in default.exp.
Run kadmin, pwchange, pwhist, gssftp, telnet, v4gssftp tests only once each.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21067
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Nov 2008 18:45:17 +0000 (18:45 +0000)]
Fix a krsh bug introduced in r21001 which could cause garbage at the
beginning of the command string.
ticket: 6200
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21065
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 10 Nov 2008 18:27:42 +0000 (18:27 +0000)]
Delete the pass (one of twelve) that does all KDC exchanges with TCP;
add a test case that sets that up and runs kinit.
Add a new support proc that allows running a test only once despite
multiple passes; use it for the tcp and iprop tests.
According to one totally unscientific measurement, this reduces the
tests/dejagnu tests run from ~4200 to ~3800, and cuts over 8% off the
run time of those tests, without IMNSHO reducing the effectiveness of
the testing.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21064
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Nov 2008 17:18:56 +0000 (17:18 +0000)]
In pa_sam(), free the outer krb5_data structure returned by
encode_krb5_sam_response.
ticket: 6211
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21063
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 10 Nov 2008 16:59:59 +0000 (16:59 +0000)]
Properly free sam_challenge in pa_sam()
ticket: 6210
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21062
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 7 Nov 2008 23:51:42 +0000 (23:51 +0000)]
Re-add repaired iprop (really, update-log creation) test case
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21044
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 7 Nov 2008 23:12:18 +0000 (23:12 +0000)]
Back out iprop test; it's not working right after all
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21043
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 7 Nov 2008 21:56:40 +0000 (21:56 +0000)]
Test that an iprop update log gets properly created and updated
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21042
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 7 Nov 2008 19:44:10 +0000 (19:44 +0000)]
fix typo in 'file delete' change
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21041
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 7 Nov 2008 00:15:50 +0000 (00:15 +0000)]
Use 'file delete' instead of spawning an 'rm' process
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21026
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 6 Nov 2008 23:54:16 +0000 (23:54 +0000)]
Recognize 'ticket expired' when trying to get a root shell
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21025
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Thu, 6 Nov 2008 15:49:00 +0000 (15:49 +0000)]
Fix a kadmin bug introduced in a recent set of string handling
conversions.
ticket: 6200
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21019
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 5 Nov 2008 17:47:00 +0000 (17:47 +0000)]
Only look for IPv4 addresses for the kpasswd server. This is just a
workaround for other parts of the code failing to cope with IPv6
addresses, and won't work in an IPv6-only environment; the problem
should still be fixed for real.
ticket: 5595
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21004
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Wed, 5 Nov 2008 17:08:47 +0000 (17:08 +0000)]
Rename krb5int_buf_cstr to krb5int_buf_data, since k5bufs can be used
for binary data as well as C string data. The buffer will always have
a null byte at krb5int_buf_len bytes regardless of whether it contains
C string data.
ticket: 6200
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21003
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Wed, 5 Nov 2008 16:47:24 +0000 (16:47 +0000)]
Add more svn:ignore entries for generated files
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21002
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Wed, 5 Nov 2008 16:19:01 +0000 (16:19 +0000)]
Convert many uses of strcpy/strcat (and sometimes sprintf) to accepted
string-handling functions.
ticket: 6200
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21001
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Wed, 5 Nov 2008 16:09:22 +0000 (16:09 +0000)]
Replace strcpy/strcat/sprintf uses in a couple of sample code files
with strncpy/strncat. Since this is sample code, we can't rely on
build system support for asprintf/strlcpy/strlcat.
ticket: 6200
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21000
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 4 Nov 2008 01:50:02 +0000 (01:50 +0000)]
Check in Nalin's patch, and a test case for changing passwords via kinit
when +needchange is set. Update dependencies.
ticket: 5867
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20966
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 4 Nov 2008 01:46:06 +0000 (01:46 +0000)]
Don't build dependencies for fakeka.c
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20965
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 4 Nov 2008 01:19:59 +0000 (01:19 +0000)]
Don't build dependencies for v4rcp.c.
Rebuild dependencies for k5-buf.h, and without krb4 support.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20964
dc483132 -0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 3 Nov 2008 22:50:08 +0000 (22:50 +0000)]
Add _with_password credential acquisition functions to KIM API
Needed for kinit password option.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20963
dc483132 -0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 3 Nov 2008 22:47:10 +0000 (22:47 +0000)]
BIND_8_COMPAT no longer needed in Leopard
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20962
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Nov 2008 21:05:25 +0000 (21:05 +0000)]
Apply Apple patch to null out key->contents after freeing on failure,
eliminating the possibility that the pointer will be used after free.
ticket: 6247
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20961
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 3 Nov 2008 20:50:42 +0000 (20:50 +0000)]
Fix conditionals from last change
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20960
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 3 Nov 2008 20:48:04 +0000 (20:48 +0000)]
Maybe include printf.o in t_k5buf build
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20959
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Nov 2008 19:47:40 +0000 (19:47 +0000)]
Apply a patch from Apple to correct a few memory leaks
ticket: 6201
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20958
dc483132 -0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 3 Nov 2008 18:41:33 +0000 (18:41 +0000)]
If we're not making asn1buf_insert_octet an inline function, then make
asn1buf_size, asn1buf_ensure_space, and asn1buf_expand static in
asn1buf.c, for better optimization.
Recode asn1buf_ensure_space to directly return the result of asn1buf_expand.
Don't check for NULL before malloc/realloc in asn1buf_expand.
Fix a couple minor signedness warnings.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20957
dc483132 -0cff-0310-8789-
dd5450dbe970
Greg Hudson [Mon, 3 Nov 2008 18:22:18 +0000 (18:22 +0000)]
Apply an adapted Sun patch to fix error string leaks in kadmind
ticket: 6202
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20956
dc483132 -0cff-0310-8789-
dd5450dbe970
Justin Anderson [Fri, 31 Oct 2008 19:37:18 +0000 (19:37 +0000)]
KerberosAgent bindings causing crashes
Attempting to fix a hard to reproduce bug with bindings by handling not applicable keys a little better.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20945
dc483132 -0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 31 Oct 2008 19:35:22 +0000 (19:35 +0000)]
No . at end of strings
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20944
dc483132 -0cff-0310-8789-
dd5450dbe970
projects / thirdparty / krb5.git / log
