krb5.git
19 years agoFix some potential resource leaks in dnsglue.c
Tom Yu [Wed, 12 Jan 2005 17:18:28 +0000 (17:18 +0000)]
Fix some potential resource leaks in dnsglue.c

ticket: 2872
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17018 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago2005-01-11 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Wed, 12 Jan 2005 04:57:22 +0000 (04:57 +0000)]
2005-01-11  Jeffrey Altman <jaltman@mit.edu>

        * cc_mslsa.c:
          - do not free krb5_creds if krb5_copy_creds fails
          - cause MSTicketToMITTicket to return failure if
            krb5_copy_data fails

ticket: 2870
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17017 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* krb-root/rlogin.exp (start_rlogin_daemon): Use built-in sleep command.
Ken Raeburn [Wed, 12 Jan 2005 03:47:58 +0000 (03:47 +0000)]
* krb-root/rlogin.exp (start_rlogin_daemon): Use built-in sleep command.
* krb-root/telnet.exp (start_telnet_daemon): Likewise.
* krb-standalone/gssftp.exp (start_ftp_daemon): Use built-in sleep command.
* krb-standalone/rcp.exp (start_rsh_daemon): Likewise.
* krb-standalone/rsh.exp (start_rsh_daemon): Likewise.
* krb-standalone/sample.exp (start_sserver_daemon): Likewise.
* krb-standalone/v4gssftp.exp (start_ftp_daemon): Likewise.
* krb-standalone/v4krb524d.exp (start_k524_daemon): Likewise.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17016 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* default.exp (start_kerberos_daemons): Format date internally rather than
Ken Raeburn [Wed, 12 Jan 2005 03:46:51 +0000 (03:46 +0000)]
* default.exp (start_kerberos_daemons): Format date internally rather than
running "date".

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17015 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* gc_frm_kdc.c (krb5_get_cred_from_kdc_opt): Free credentials retrieved from
Ken Raeburn [Wed, 12 Jan 2005 01:06:04 +0000 (01:06 +0000)]
* gc_frm_kdc.c (krb5_get_cred_from_kdc_opt): Free credentials retrieved from
ccache before returning.  Based on patch from fumihiko kakuma
<kakuma@valinux.co.jp>.  Also whitespace changes for readability.

ticket: 2541
tags: pullup
target_version: 1.4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17014 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* k5-int.h (krb5int_zap_data): Fix preprocessor test for Windows
Ken Raeburn [Sun, 9 Jan 2005 06:05:02 +0000 (06:05 +0000)]
* k5-int.h (krb5int_zap_data): Fix preprocessor test for Windows

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17013 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* k5-thread.h (KRB5_CALLCONV, KRB5_CALLCONV_C): Define if not defined.
Ken Raeburn [Sun, 9 Jan 2005 06:03:56 +0000 (06:03 +0000)]
* k5-thread.h (KRB5_CALLCONV, KRB5_CALLCONV_C): Define if not defined.
(krb5int_mutx_lock_update_stats, krb5int_mutex_unlock_update_stats,
krb5int_mutex_report_stats) [!DEBUG_THREADS_STATS]: Declare, with KRB5_CALLCONV.
(k5_debug_make_loc): Change "lineno" to type int.
(k5_debug_make_loc): Likewise for argument "line".

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17012 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* crc-32.h (mit_crc32): Remove gratuitous "const" in argument declaration
Ken Raeburn [Sat, 8 Jan 2005 00:29:19 +0000 (00:29 +0000)]
* crc-32.h (mit_crc32): Remove gratuitous "const" in argument declaration

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17011 dc483132-0cff-0310-8789-dd5450dbe970

19 years agomake depend
Tom Yu [Thu, 6 Jan 2005 20:31:21 +0000 (20:31 +0000)]
make depend

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17007 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago Add new function krb5_boolean krb5_is_thread_safe(void) to library.
Jeffrey Altman [Wed, 5 Jan 2005 07:51:46 +0000 (07:51 +0000)]
  Add new function krb5_boolean krb5_is_thread_safe(void) to library.
  This function simply reports whether or not ENABLE_THREADS was specified
  at compile time.  It is meant to be used by applications which need to
  know whether or not multithread libraries must be initialized OR
  whether or not calls to Kerberos library functions from multi-threaded
  applications must be protected by an application global mutex.

ticket: new
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17003 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago * win-mac.h: define NEED_INSIXADDR_ANY for ipv6 symbol
Jeffrey Altman [Wed, 5 Jan 2005 07:45:21 +0000 (07:45 +0000)]
    * win-mac.h: define NEED_INSIXADDR_ANY for ipv6 symbol

ticket: new

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17002 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago Makefile.in: add krb5 support library to windows klist executable
Jeffrey Altman [Wed, 5 Jan 2005 07:41:30 +0000 (07:41 +0000)]
  Makefile.in: add krb5 support library to windows klist executable

ticket: new

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17001 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* configure.in: Check for uint32_t and int32_t in system headers
Ken Raeburn [Wed, 5 Jan 2005 02:59:53 +0000 (02:59 +0000)]
* configure.in: Check for uint32_t and int32_t in system headers

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16999 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* Makefile.in (krb5.h): Don't pull in autoconf SIZEOF macros
Ken Raeburn [Wed, 5 Jan 2005 02:35:02 +0000 (02:35 +0000)]
* Makefile.in (krb5.h): Don't pull in autoconf SIZEOF macros

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16998 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* threads.c (krb5int_mutex_lock_update_stats,
Ken Raeburn [Wed, 5 Jan 2005 00:50:54 +0000 (00:50 +0000)]
* threads.c (krb5int_mutex_lock_update_stats,
krb5int_mutex_unlock_update_stats, krb5int_mutex_report_stats) [_WIN32
&& !DEBUG_THREADS_STATS]: Define empty versions for Windows.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16997 dc483132-0cff-0310-8789-dd5450dbe970

19 years agofix typo
Tom Yu [Tue, 4 Jan 2005 17:03:48 +0000 (17:03 +0000)]
fix typo

ticket: 2861
version_fixed:

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16996 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* implementor.texinfo (Porting Issues): New chapter with a bunch of notes from
Ken Raeburn [Mon, 3 Jan 2005 21:07:25 +0000 (21:07 +0000)]
* implementor.texinfo (Porting Issues): New chapter with a bunch of notes from
email I sent regarding porting to pSOS.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16992 dc483132-0cff-0310-8789-dd5450dbe970

19 years agoupdate thread support doc
Ken Raeburn [Mon, 3 Jan 2005 20:31:31 +0000 (20:31 +0000)]
update thread support doc

* threads.txt, thread-safety.txt: Updates.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16991 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* build.texinfo (The util Directory): Add the new support library.
Ken Raeburn [Mon, 3 Jan 2005 20:29:58 +0000 (20:29 +0000)]
* build.texinfo (The util Directory): Add the new support library.
(Installing the Binaries): Discuss parallel builds under GNU make.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16990 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* implementor.texinfo (Host Address Lookup): Document Mac OS X issues
Ken Raeburn [Mon, 3 Jan 2005 20:27:16 +0000 (20:27 +0000)]
* implementor.texinfo (Host Address Lookup): Document Mac OS X issues

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16989 dc483132-0cff-0310-8789-dd5450dbe970

19 years agokrb5_parse_name not thread-safe, not responsive to environment changes
Ken Raeburn [Mon, 3 Jan 2005 19:30:18 +0000 (19:30 +0000)]
krb5_parse_name not thread-safe, not responsive to environment changes

As Ezra noted, krb5_parse_name saves away the default realm the first
time it looks it up, and will never look it up again, even if the
config file has changed, the context isn't the same one, etc.  It also
used a static variable which wasn't thread-safe.

With this patch, we still won't catch changes in the config file
specification after the default realm has been looked up for a given
krb5_context, because it's cached in the context too, but this will at
least be more responsive, and thread safe.

* parse.c (krb5_parse_name): Don't cache the default realm name.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16988 dc483132-0cff-0310-8789-dd5450dbe970

19 years agorun "make depend"
Ken Raeburn [Thu, 30 Dec 2004 22:08:18 +0000 (22:08 +0000)]
run "make depend"

In most library directories, this just affects where the line breaks
are.  In most other directories, it's just dropping a trailing blank
line.  One or two files really do have updated dependencies.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16987 dc483132-0cff-0310-8789-dd5450dbe970

19 years agoDo the target object file name hacking in "make depend" earlier, before the
Ken Raeburn [Thu, 30 Dec 2004 22:05:12 +0000 (22:05 +0000)]
Do the target object file name hacking in "make depend" earlier, before the
line breaks are recomputed, instead of after.  This will result in lots of
whitespace changes in dependencies in directories that build library object
files, but the final output is nicer (fewer long lines), and running "make
depend" uses one fewer invocation of sed (balancing out the extra one I added
in another checkin earlier today).

* config/post.in (.depend): Don't do target name munging here.
(.depfix2.sed): Pass extra value $(STLIBOBJS).
* util/depfix.sed: Don't change foo.o to $(OUTPRE)foo.$(OBJEXT) here.
* util/depgen.sed: Add new argument for STLIBOBJS.  Do the OUTPRE/OBJEXT
substitution here, and if STLIBOBJS is non-empty, add foo.so and foo.po while
we're at it.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16986 dc483132-0cff-0310-8789-dd5450dbe970

19 years ago* post.in (.depend): Delete blank lines in generated file.
Ken Raeburn [Thu, 30 Dec 2004 21:12:41 +0000 (21:12 +0000)]
* post.in (.depend): Delete blank lines in generated file.
(DEP_CFG_VERIFY, DEP_VERIFY, depend-verify-*, .depend-verify-*, .depfix2.sed):
Move all the flag files to $(BUILDTOP) so there'll be only one of each.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16985 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoMemory leak in asn1_decode_generaltime
Ezra Peisach [Tue, 28 Dec 2004 13:27:30 +0000 (13:27 +0000)]
Memory leak in asn1_decode_generaltime

When decoding a kerberos time, if the asn1 time is 19700101000000Z (i.e. time_t
of 0) - 15 bytes of memory are lost.

* asn1_decode.c (asn1_decode_generaltime): Fix memory leak when
time sent is "19700101000000Z".

ticket: new
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16983 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoMemory leaks in ccache due to thread integration
Ezra Peisach [Sat, 25 Dec 2004 15:29:39 +0000 (15:29 +0000)]
Memory leaks in ccache due to thread integration

* cc_file.c (krb5_fcc_close): Free the cache id.
(dereference): When removing fcc_set entry from list, free the
pointer as well.

The first was accidently dropped in the dereference code writing.
The cache id pointer is never freed.

The second error is the removal of the krb5_fcc_data from the linked list.
The fcc_set is removed from the chain, but the memory for the removed fcc_set
is never freed.

ticket:new
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16981 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * def-check.pl: Check for PRIVATE or INTERNAL annotations in defs
Tom Yu [Tue, 21 Dec 2004 05:18:12 +0000 (05:18 +0000)]
* def-check.pl: Check for PRIVATE or INTERNAL annotations in defs
file.

ticket: 2796
version_reported: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16976 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * krb5.hin: Flag krb5_principal2salt as KRB5_CALLCONV_WRONG
Tom Yu [Tue, 21 Dec 2004 05:15:25 +0000 (05:15 +0000)]
* krb5.hin: Flag krb5_principal2salt as KRB5_CALLCONV_WRONG

ticket: 2840

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16975 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * kerberos.c (kerberos4_status): Null-terminate the correct
Tom Yu [Mon, 20 Dec 2004 22:02:19 +0000 (22:02 +0000)]
* kerberos.c (kerberos4_status): Null-terminate the correct
string.  Reported by Marcin Garski.

ticket: 2838
tags: pullup
target_version: 1.4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16969 dc483132-0cff-0310-8789-dd5450dbe970

20 years agofix MITKRB5-SA-2004-004
Tom Yu [Mon, 20 Dec 2004 21:15:41 +0000 (21:15 +0000)]
fix MITKRB5-SA-2004-004

ticket: new

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16961 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoMark krb5_principal2salt has being declared with the wrong calling convention
Jeffrey Altman [Mon, 20 Dec 2004 21:11:35 +0000 (21:11 +0000)]
Mark krb5_principal2salt has being declared with the wrong calling convention

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16960 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago Add support for optionally installing Debug Symbols
Jeffrey Altman [Sun, 19 Dec 2004 06:04:41 +0000 (06:04 +0000)]
  Add support for optionally installing Debug Symbols

ticket: new
tags: pullup
target_version: 1.4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16955 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago2004-12-18 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Sat, 18 Dec 2004 12:28:39 +0000 (12:28 +0000)]
2004-12-18  Jeffrey Altman <jaltman@mit.edu>

* kfw-fixed.nsi:
    Add "Debug Symbols" as a new category.  It defaults to on
    in debug builds and off in release builds.

ticket: new
tags: pullup
target_version: 1.4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16954 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago2004-12-17 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Sat, 18 Dec 2004 04:47:50 +0000 (04:47 +0000)]
2004-12-17  Jeffrey Altman <jaltman@mit.edu>

        * win-pre.in: add -debug switch to LOPTS if DEBUG_SYMBOLS

ticket: new
tags: pullup
target_version: 1.4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16953 dc483132-0cff-0310-8789-dd5450dbe970

20 years agocan't build shared libraries on sparc64-netbsd
Ken Raeburn [Fri, 17 Dec 2004 23:58:47 +0000 (23:58 +0000)]
can't build shared libraries on sparc64-netbsd

Current trunk code fails to build shared libraries on sparc64-netbsd
because the generated relocations with -fpic don't have the range
necessary.  In general, any platform with sparc support that we want
to build for should use -fPIC instead of -fpic, with gcc.  (I haven't
checked whether openbsd or freebsd support sparc these days; I think
they're the only ones in our shlib.conf that we might care about.)

* shlib.conf (*-*-netbsd*): Use -fPIC instead of -fpic, which won't work on
sparc64 at least.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16951 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago2004-12-16 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Thu, 16 Dec 2004 19:57:17 +0000 (19:57 +0000)]
2004-12-16  Jeffrey Altman <jaltman@mit.edu>
        * cc_mslsa.c:
          Temporarily deactivate support for KerbSubmitTicketMessage
          and KerbQueryTicketCacheEx2Message until the new Platform SDK
          becomes publicly available.

ticket: new
tags: pullup
target_version: 1.4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16945 dc483132-0cff-0310-8789-dd5450dbe970

20 years agokrb5-config needs to include krb5support library
Ezra Peisach [Thu, 16 Dec 2004 15:48:53 +0000 (15:48 +0000)]
krb5-config needs to include krb5support library

* krb5-config.in: Add krb5support library.

ticket: new
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16944 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoUpdate for WiX 2.1 installer
Jeffrey Altman [Wed, 15 Dec 2004 16:53:29 +0000 (16:53 +0000)]
Update for WiX 2.1 installer

ticket: 2805

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16938 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago remove unnecessary if statement
Jeffrey Altman [Wed, 15 Dec 2004 08:54:16 +0000 (08:54 +0000)]
  remove unnecessary if statement

ticket: 2814

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16937 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago2004-12-15 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Wed, 15 Dec 2004 08:27:13 +0000 (08:27 +0000)]
2004-12-15  Jeffrey Altman <jaltman@mit.edu>

    Add kcpytkt.exe, kdeltkt.exe, k5sprt32.dll, mit2ms.exe

ticket: 2805

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16936 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago2004-12-15 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Wed, 15 Dec 2004 08:25:28 +0000 (08:25 +0000)]
2004-12-15  Jeffrey Altman <jaltman@mit.edu>

        * cc_mslsa.c:
          - Activate support for KerbSubmitTicketMessage
          - Activate support for KerbQueryTicketCacheEx2Message
          - Add locale support for regions which use MultiByte characters

ticket: new
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16935 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago2004-12-15 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Wed, 15 Dec 2004 08:24:03 +0000 (08:24 +0000)]
2004-12-15  Jeffrey Altman <jaltman@mit.edu>

       rename krb5support_32.dll to k5sprt32.dll

ticket: 2804

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16934 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago2004-12-15 Jeffrey Altman <jaltman@mit.edu>
Jeffrey Altman [Wed, 15 Dec 2004 08:20:09 +0000 (08:20 +0000)]
2004-12-15  Jeffrey Altman <jaltman@mit.edu>

        * Makefile.in: build/clean/install/etc kcpytkt,kdeltkt,ms2mit

ticket: 2802

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16933 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoinsufficient locking in profile re-reading case
Ken Raeburn [Wed, 15 Dec 2004 03:02:43 +0000 (03:02 +0000)]
insufficient locking in profile re-reading case

If profiles are open and iterators in use while the on-disk file is being
modified (see tests/threads/prof1.c), the re-reading of the file can cause data
to be freed up.  The iterator code does no locking and assumes that the profile
node tree won't be touched.

During our Monday meeting we discussed changing the iterator code to "snapshot"
the current state of the file if it were modified, so that a more consistent
picture could be returned, essentially by bumping a reference count for the
life of the iterator object.  The reference count I was thinking of turns out
to be used for a different purpose; we'd have to add another layer of
indirection, another ref count, and another mutex to accomplish this.  There
might be a more reasonable way to go about it, but I don't want to tackle it
for 1.4 when we're already shipping beta releases.

This patch just adds locking to the current iterator code so that the file data
can't be replaced while the iterator is being processed.  The inconsistent-view
issue remains.

* prof_tree.c (profile_node_iterator): When the iterator has a current file,
lock it, and unlock it before changing it or returning.

ticket: new
status: resolved
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16932 dc483132-0cff-0310-8789-dd5450dbe970

20 years agonew test prog "prof1" for profile reloading
Ken Raeburn [Sun, 12 Dec 2004 22:55:55 +0000 (22:55 +0000)]
new test prog "prof1" for profile reloading

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16931 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* include/k5-int.h (struct _krb5int_access): Add function pointer field
Ken Raeburn [Wed, 8 Dec 2004 06:04:49 +0000 (06:04 +0000)]
* include/k5-int.h (struct _krb5int_access): Add function pointer field
use_dns_kdc.
* lib/krb5/os/accessor.c (krb5int_accessor): Set new field use_dns_kdc.
* lib/krb4/RealmsConfig-glue.c (krb_get_krbhst): Check if DNS should be used
for getting KDC names before actually using it.

ticket: 2772

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16920 dc483132-0cff-0310-8789-dd5450dbe970

20 years agobump accessor struct version number for 1.4
Ken Raeburn [Wed, 8 Dec 2004 05:14:44 +0000 (05:14 +0000)]
bump accessor struct version number for 1.4

The interface has changed from 1.3 (if nothing else, sendto_udp has a
new argument), so we need to have a new version number for 1.4.

* k5-int.h (KRB5INT_ACCESS_STRUCT_VERSION): Bump to 9.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16919 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoallow build with KRB5_DNS_LOOKUP undefined
Tom Yu [Mon, 6 Dec 2004 23:26:34 +0000 (23:26 +0000)]
allow build with KRB5_DNS_LOOKUP undefined

* locate_kdc.c (krb5_locate_srv_dns_1): Don't compile if
KRB5_DNS_LOOKUP is not defined.

ticket: new
target_version: 1.4
tags: pullup
component: krb5-libs

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16915 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* libkrb5support.exports: Add krb5int_in6addr_any
Ken Raeburn [Mon, 6 Dec 2004 22:06:09 +0000 (22:06 +0000)]
* libkrb5support.exports: Add krb5int_in6addr_any

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16914 dc483132-0cff-0310-8789-dd5450dbe970

20 years agohooks for recording statistics on locking behavior
Ken Raeburn [Mon, 6 Dec 2004 22:00:26 +0000 (22:00 +0000)]
hooks for recording statistics on locking behavior

Finish the hooks (left disabled by default) for logging somewhere the recorded
timing behavior relating to the use of locks in the krb5 code.

Currently, "reporting" means writing to /dev/tty or stderr, and the data is the
number of times a mutex is locked, file and line where it was created,
min/avg/max/stddev wait times to acquire the lock and hold times, and stats are
only written out for locks that were locked a certain minimum number of times
and with a minimum average wait time.

The criteria are all controlled in threads.c, and k5-thread.h just has the
hooks for gathering data.  So turning on/off the data gathering requires a full
rebuild, but tweaking the reporting is mostly just a relinking pass.  (May also
require adding a dependence on the math library to the support library; for a
static build that may impact a lot of makefiles.)

* include/k5-thread.h [DEBUG_THREADS_STATS]: Include string.h and inttypes.h.
(get_current_time) [DEBUG_THREADS_STATS]: Define as inline.
(k5_mutex_init_stats) [DEBUG_THREADS_STATS]: Save away current time as creation
time.
(k5_mutex_stats_tmp): New typedef, k5_debug_time_t if recording stats, dummy
int otherwise.
(k5_mutex_stats_start): New macro, get current time if recording, zero
otherwise.
(krb5int_mutex_lock_update_stats, krb5int_mutex_unlock_update_stats,
krb5int_mutex_report_stats) [DEBUG_THREADS_STATS]: Declare.
(krb5int_mutex_report_stats) [! DEBUG_THREADS_STATS]: New macro, does nothing.
(k5_mutex_lock_update_stats, k5_mutex_unlock_update_stats): New macros, map to
krb5int_ functions if recording, dummy statements otherwise.
(k5_mutex_destroy): Call krb5int_mutex_report_stats.
(k5_mutex_lock, k5_mutex_lock_1): Call k5_mutex_stats_start and
k5_mutex_lock_update_stats.
(k5_mutex_unlock_1): Call k5_mutex_unlock_update_stats.

* util/support/threads.c [DEBUG_THREADS_STATS]: Include stdio.h.
(stats_logfile) [DEBUG_THREADS_STATS]: New variable.
(krb5int_thread_support_init) [DEBUG_THREADS_STATS]: Set it to point to a file
on /dev/tty or stderr.
(krb5int_thread_support_fini) [DEBUG_THREADS_STATS]: Flush it.
(k5_mutex_lock_update_stats, krb5int_mutex_unlock_update_stats, get_stddev,
krb5int_mutex_report_stats) [DEBUG_THREADS_STATS]: New functions.
* util/support/libkrb5support.exports: Add krb5int_mutex_*_stats.

ticket: new

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16913 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoticket: new
Sam Hartman [Fri, 26 Nov 2004 23:30:28 +0000 (23:30 +0000)]
ticket: new
subject: ftpcmds.y: nbby should be 8

* ftpcmd.y: nbby should be 8 for anything platform we care about.
The previous test broke on Debian BSD, so the test has been
removed.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16909 dc483132-0cff-0310-8789-dd5450dbe970

20 years agofix missing mutex initialization in keytab file code
Ken Raeburn [Fri, 26 Nov 2004 06:03:24 +0000 (06:03 +0000)]
fix missing mutex initialization in keytab file code

Missed a case in the checked-in (and pulled-up) fix to 2781.

* kt_file.c (krb5_ktfile_wresolve): Initialize mutex here too.

ticket: new
status: open
target_version: 1.4

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16908 dc483132-0cff-0310-8789-dd5450dbe970

20 years agofix missing locking in keytab; fix stdio handling too
Ken Raeburn [Wed, 24 Nov 2004 02:39:44 +0000 (02:39 +0000)]
fix missing locking in keytab; fix stdio handling too

The keytab type list lock was implemented, but I missed the per-keytab lock.
Since I was in there, I ripped out the bogus stdio buffer mangling that the
code was doing, and set up a buffer to be used that we can sanitize later.

* kt_file.c (struct _krb5_ktfile_data): Add mutex and buffer.
(KTFILEBUFP, KTLOCK, KTUNLOCK, KTCHECKLOCK): New macros.
(krb5_ktfile_resolve): Initialize mutex.
(krb5_ktfile_close): Zap data buffer before freeing.
(krb5_ktfile_get_entry, krb5_ktfile_start_seq_get, krb5_ktfile_get_next,
krb5_ktfile_end_get, krb5_ktfile_add, krb5_ktfile_remove): Lock and unlock the
mutex.
(krb5_ktfileint_open): Check that the mutex is locked.  Set the stdio buffer to
the new buffer in the ktfile data.
(krb5_ktfileint_write_entry, krb5_ktfileint_find_slot): Check that the mutex is
locked.  Don't call setbuf.  Flush the stdio buffer after writing.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16905 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoset errno=0 prior to fopen in kt_file
Tom Yu [Wed, 24 Nov 2004 01:28:03 +0000 (01:28 +0000)]
set errno=0 prior to fopen in kt_file

* kt_file.c (krb5_ktfileint_open): Update previous change by
explicitly setting errno=0 prior to calling fopen().  Also, return
EMFILE, not ENFILE, for compatibility with Solaris 8, which does
set errno when out of file descriptors.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16904 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoKDC on Tru64 was hanging because of another case where Yarrow code
Ken Raeburn [Tue, 23 Nov 2004 03:15:12 +0000 (03:15 +0000)]
KDC on Tru64 was hanging because of another case where Yarrow code
assumes locks are recursive.  Probably didn't trigger on Linux,
Solaris, or NetBSD because they have /dev/random and Tru64 does not.

* yarrow.c (yarrow_input_maybe_locking): Renamed from
yarrow_input_maybe_locking, made static.  New argument indicates whether or not
to do locking.
(krb5int_yarrow_input): New wrapper function.
(yarrow_input_locked): New wrapper function.
(Yarrow_detect_fork): Call yarrow_input_locked.

ticket: 2755
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16903 dc483132-0cff-0310-8789-dd5450dbe970

20 years agodocument Solaris patches for pty-close bug
Tom Yu [Sat, 20 Nov 2004 02:06:55 +0000 (02:06 +0000)]
document Solaris patches for pty-close bug

* build.texinfo (Solaris 9): Document Solaris patches for pty
close bug.

ticket: new
version_reported: 1.4
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16901 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* locate_kdc.c (krb5int_add_host_to_list): If debugging, log the requested
Ken Raeburn [Fri, 19 Nov 2004 22:12:50 +0000 (22:12 +0000)]
* locate_kdc.c (krb5int_add_host_to_list): If debugging, log the requested
family and socket type.  If AI_NUMERICSERV is defined, set it in ai_flags.  If
getaddrinfo returns an error with debugging enabled, log the error.
(krb5_locate_srv_conf_1): When logging an error from add_host_to_list, include
the corresponding error string.

* t_locate_kdc.c: Include port-sockets.h, instead of sys/socket.h, netdb.h,
netinet/in.h, and arpa/inet.h.
* Makefile.in ($(OUTPRE)t_locate_kdc.exe): New target.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16899 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * kt_file.c (krb5_ktfileint_open): Patch from Roland Dowdeswell to
Tom Yu [Fri, 19 Nov 2004 22:12:32 +0000 (22:12 +0000)]
* kt_file.c (krb5_ktfileint_open): Patch from Roland Dowdeswell to
return ENFILE when fopen() returns NULL but doesn't set errno.

ticket: 2760
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16898 dc483132-0cff-0310-8789-dd5450dbe970

20 years agocreate rpc header install directory
Tom Yu [Fri, 19 Nov 2004 21:46:59 +0000 (21:46 +0000)]
create rpc header install directory

* pre.in (KRB5_INCSUBDIRS): Add KRB5_INCDIR/gssrpc.

ticket: new
version_reported: 1.4
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16896 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* cc_mslsa.c (MSCredToMITCred): Don't create an empty array for addresses, just
Ken Raeburn [Fri, 19 Nov 2004 21:39:48 +0000 (21:39 +0000)]
* cc_mslsa.c (MSCredToMITCred): Don't create an empty array for addresses, just
use a null pointer now.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16895 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* fake-addrinfo.c (HAVE_GETADDRINFO, HAVE_GETNAMEINFO)[_WIN32]: Don't define
Ken Raeburn [Fri, 19 Nov 2004 21:09:45 +0000 (21:09 +0000)]
* fake-addrinfo.c (HAVE_GETADDRINFO, HAVE_GETNAMEINFO)[_WIN32]: Don't define
here.
(protoname): Handle IPPROTO_IGMP.
(debug_dump_addrinfo_args): Update for current interfaces to socktypename and
familyname.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16893 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* win-mac.h (HAVE_GETADDRINFO, HAVE_GETNAMEINFO): Define
Ken Raeburn [Fri, 19 Nov 2004 21:03:03 +0000 (21:03 +0000)]
* win-mac.h (HAVE_GETADDRINFO, HAVE_GETNAMEINFO): Define

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16892 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * aclocal.m4 (KRB5_AC_PRIOCNTL_HACK): Check for Solaris patch
Tom Yu [Fri, 19 Nov 2004 20:36:45 +0000 (20:36 +0000)]
* aclocal.m4 (KRB5_AC_PRIOCNTL_HACK): Check for Solaris patch
117171-11 (sparc) or 117172-11 (x86), which fixes the Solaris 9
bug which can cause final pty output to be on close.

ticket: 2776
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16891 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoafter 1.4 branch, trunk is effectively krb5-1.5-prerelease
Tom Yu [Fri, 19 Nov 2004 00:26:37 +0000 (00:26 +0000)]
after 1.4 branch, trunk is effectively krb5-1.5-prerelease

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16890 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* Makefile.in (SHLIB_EXPLIBS): Remove -ldl accidentally added in last change
Ken Raeburn [Thu, 18 Nov 2004 21:07:05 +0000 (21:07 +0000)]
* Makefile.in (SHLIB_EXPLIBS): Remove -ldl accidentally added in last change

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16888 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoinstall rpc headers into correct directory
Tom Yu [Thu, 18 Nov 2004 20:46:45 +0000 (20:46 +0000)]
install rpc headers into correct directory

RPC headers need to be installed into PREFIX/include/gssrpc, not PREFIX/include

ticket: new
target_version: 1.4
version_reported: 1.4
tags: pullup
component: krb5-build

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16887 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* prng.c (do_yarrow_init): Move mutex initialization here.
Ken Raeburn [Wed, 17 Nov 2004 08:03:51 +0000 (08:03 +0000)]
* prng.c (do_yarrow_init): Move mutex initialization here.
(krb5int_prng_init): Don't do it here.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16880 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* Makefile.in (SHLIB_EXPDEPS, SHLIB_EXPLIBS): Add support library
Ken Raeburn [Wed, 17 Nov 2004 07:56:05 +0000 (07:56 +0000)]
* Makefile.in (SHLIB_EXPDEPS, SHLIB_EXPLIBS): Add support library

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16879 dc483132-0cff-0310-8789-dd5450dbe970

20 years agooops, bad update
Ken Raeburn [Tue, 16 Nov 2004 07:04:03 +0000 (07:04 +0000)]
oops, bad update

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16877 dc483132-0cff-0310-8789-dd5450dbe970

20 years agomake depend
Ken Raeburn [Tue, 16 Nov 2004 07:03:33 +0000 (07:03 +0000)]
make depend

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16876 dc483132-0cff-0310-8789-dd5450dbe970

20 years agomake depend
Ken Raeburn [Tue, 16 Nov 2004 06:51:16 +0000 (06:51 +0000)]
make depend

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16875 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* k5-int.h (struct _krb5_cc_ops): Add new function pointer field get_flags
Ken Raeburn [Tue, 16 Nov 2004 06:01:08 +0000 (06:01 +0000)]
* k5-int.h (struct _krb5_cc_ops): Add new function pointer field get_flags

ticket: 2763
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16874 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoNow a kvno invocation will only open the ccache file a small number of
Ken Raeburn [Tue, 16 Nov 2004 05:28:38 +0000 (05:28 +0000)]
Now a kvno invocation will only open the ccache file a small number of
times, but there's still excessive seeking and re-reading of data
happening.

* cc_retr.c (krb5_cc_retrieve_cred_seq): Temporarily clear the
KRB5_TC_OPENCLOSE flag on the credentials cache while reading multiple entries
from it.

ticket: 2763
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16873 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* krb5.hin (krb5_cc_get_flags): Declare
Ken Raeburn [Tue, 16 Nov 2004 05:06:34 +0000 (05:06 +0000)]
* krb5.hin (krb5_cc_get_flags): Declare

ticket: 2763
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16872 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoCreate a ccache get-flags operation.
Ken Raeburn [Tue, 16 Nov 2004 05:04:56 +0000 (05:04 +0000)]
Create a ccache get-flags operation.
The MSLSA and CCAPI versions are untested!

* cc_file.c (krb5_fcc_get_flags): New function.
(krb5_fcc_ops, krb5_cc_file_ops): Add it.
* cc_memory.c (krb5_mcc_get_flags): New function.
(krb5_mcc_ops): Add it.
* cc_mslsa.c (krb5_lcc_get_flags): New function.
(krb5_lcc_ops): Add it.
* ccfns.c (krb5_cc_get_flags): New function.
* ccapi/stdcc.c (krb5_stdcc_get_flags): New function.
(krb5_cc_stdcc_ops): Add it.
* ccapi/stdcc.h (krb5_stdcc_get_flags): Declare.

ticket: 2763
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16871 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoConvert Yarrow to use AES not 3des. Update test vectors
Sam Hartman [Tue, 16 Nov 2004 03:28:08 +0000 (03:28 +0000)]
Convert Yarrow to use AES not 3des.  Update test vectors

ticket: 2410
Tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16870 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoMake static linking not require -lsocket, -lnsl, etc.
Ken Raeburn [Mon, 15 Nov 2004 22:16:02 +0000 (22:16 +0000)]
Make static linking not require -lsocket, -lnsl, etc.
Don't duplicate macro definitions.

Header files and comments still need some cleanup.

* cache-addrinfo.h, init-addrinfo.c: New files, split out from fake-addrinfo.c.
* fake-addrinfo.c: Include cache-addrinfo.h.
(FAI_CACHE, struct face, struct fac): Moved to cache-addrinfo.h.
(krb5int_fac, krb5int_init_fac, krb5int_fini_fac): Moved to init-addrinfo.c.
(addrinfo, struct addrinfo): Don't define.
(AI_* and NI_* and EAI_* macros): Don't define.
* threads.c: Include cache-addrinfo.h.
(krb5int_init_fac, krb5int_fini_fac): Don't declare.
* Makefile.in (SRCS, STLIBOBJS, LIBOBJS): Updated.

ticket: 2761
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16867 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoMerge Athena changes for requiring encrypted connections
Tom Yu [Mon, 15 Nov 2004 21:25:41 +0000 (21:25 +0000)]
Merge Athena changes for requiring encrypted connections

ticket: 841
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16866 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* et_h.awk: Declare initialize_*_error_table as taking no arguments.
Ken Raeburn [Fri, 5 Nov 2004 21:23:23 +0000 (21:23 +0000)]
* et_h.awk: Declare initialize_*_error_table as taking no arguments.
* et_h.pl: Regenerated.

ticket: 2770
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16865 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoAdded new exported symbols to profile and GSS and updated project file to include...
Alexandra Ellwood [Thu, 4 Nov 2004 19:35:33 +0000 (19:35 +0000)]
Added new exported symbols to profile and GSS and updated project file to include more robust header paths

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16862 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* prof_init.c, profile.hin: added profile_is_modified and profile_is_writable so...
Alexandra Ellwood [Thu, 4 Nov 2004 19:27:24 +0000 (19:27 +0000)]
* prof_init.c, profile.hin: added profile_is_modified and profile_is_writable so that callers can check to see if profile_release() will fail before calling it

ticket: 2751

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16860 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * prof_set.c: profile calls which set values should not fail if file is not writable...
Alexandra Ellwood [Thu, 4 Nov 2004 19:18:23 +0000 (19:18 +0000)]
 * prof_set.c: profile calls which set values should not fail if file is not writable.  You can now write to a different file with profile_flush_to_file() or buffer with profile_flush_to_buffer()

ticket: 2750

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16858 dc483132-0cff-0310-8789-dd5450dbe970

20 years agomerge athena ftpd changes for requiring encrypted passwords
Tom Yu [Wed, 3 Nov 2004 22:50:15 +0000 (22:50 +0000)]
merge athena ftpd changes for requiring encrypted passwords

* ftpcmd.y (getline): Merge Athena change to reject MICed
password.

* ftpd.M: Document '-E'.

* ftpd.c (main): Merge Athena's '-E' changes to prohibit
unencrypted passwords.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16857 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoFix typo in last change
Ken Raeburn [Wed, 3 Nov 2004 09:22:39 +0000 (09:22 +0000)]
Fix typo in last change

ticket: 2761
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16856 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* Makefile.in (SRCS): Define
Ken Raeburn [Wed, 3 Nov 2004 08:44:41 +0000 (08:44 +0000)]
* Makefile.in (SRCS): Define

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16855 dc483132-0cff-0310-8789-dd5450dbe970

20 years agomove getaddrinfo hacks into support lib for easier maintenance
Ken Raeburn [Wed, 3 Nov 2004 08:40:53 +0000 (08:40 +0000)]
move getaddrinfo hacks into support lib for easier maintenance

With the cache on Mac OS X, and likely to be enabled eventually on other
platforms, this is going to wind up being a non-trivial amount of code on most
platforms, and updating the cache code to work on other configurations is
likely to take a few rounds.  Rather than recompile the world and add a bunch
of code to each object file doing name lookups, moving the code into the
support library that already defines the static data (list head, mutex) should
make things simpler.

(TODO: Fix calling conventions for Windows?)

* include/fake-addrinfo.h: Move most of code content into
util/support/fake-addrinfo.c.
(krb5int_getaddrinfo, krb5int_freeaddrinfo, krb5int_getnameinfo,
krb5int_gai_strerror): Declare.
(getaddrinfo, freeaddrinfo, getnameinfo, gai_strerror): Define as macros
mapping to the krb5int_ function names.
* util/support/fake-addrinfo.c: Import most of the contents of
include/fake-addrinfo.h, so we only compile it once.
(krb5int_getaddrinfo, krb5int_freeaddrinfo, krb5int_getnameinfo,
krb5int_gai_strerror): New functions, always defined and exported.
* util/support/libkrb5support.exports: Export the new functions, not the old
_fac symbols.

ticket: new
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16854 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* yarrow.c (krb5int_yarrow_input, krb5int_yarrow_final): Don't check for
Ken Raeburn [Mon, 1 Nov 2004 21:33:05 +0000 (21:33 +0000)]
* yarrow.c (krb5int_yarrow_input, krb5int_yarrow_final): Don't check for
forking here.
(yarrow_output_locked): Split out from krb5int_yarrow_output, without locking.
(krb5int_yarrow_output): Do locking and call yarrow_output_locked.
(yarrow_gate_locked): New function; uses yarrow_output_locked.
(krb5int_yarrow_output_Block): Use yarrow_gate_locked.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16853 dc483132-0cff-0310-8789-dd5450dbe970

20 years agofix mkrel's RELTAIL handling
Tom Yu [Sun, 31 Oct 2004 18:05:04 +0000 (18:05 +0000)]
fix mkrel's RELTAIL handling

* mkrel: Rework quoting for RELTAIL check.  Don't check RELTAIL if
doing a "-current" snapshot.

ticket: new
target_version: 1.4
tags: pullup

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16850 dc483132-0cff-0310-8789-dd5450dbe970

20 years agocall stat less often on krb5.conf
Ken Raeburn [Sat, 30 Oct 2004 05:43:18 +0000 (05:43 +0000)]
call stat less often on krb5.conf

Changes suggested by lxs to reduce stat frequency to once per second.
In parallel loops creating and destroying krb5 contexts on Mac OS X, this
seems to improve performance by 10%, though it's hard to be sure because
the times are variable.

* prof_int.h (STAT_ONCE_PER_SECOND): Define.
(struct _prf_data_t) [STAT_ONCE_PER_SECOND]: New field LAST_STAT.
* prof_file.c (scan_shared_trees_locked, scan_shared_trees_unlocked): Redefine
to do nothing for now.
(profile_update_file_data) [STAT_ONCE_PER_SECOND]: If the current time is the
same time as the last stat of the file, just return; otherwise, save away the
current time.

ticket: new
status: open

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16847 dc483132-0cff-0310-8789-dd5450dbe970

20 years agopush yarrow locking down into the yarrow code to reduce contention
Ken Raeburn [Sat, 30 Oct 2004 00:56:30 +0000 (00:56 +0000)]
push yarrow locking down into the yarrow code to reduce contention

This seems to speed up creating a krb5_context a little bit, when it happens
a lot in multiple threads.

* prng.c (yarrow_lock): Rename to krb5int_yarrow_lock via macro, and change to
be non-static.
(krb5int_prng_init): Call do_yarrow_init here.
(krb5_c_random_add_entropy): Don't call it here.  Don't lock the mutex, either.
(krb5_c_random_make_octets): Don't lock the mutex.
* yarrow/ylock.h: Include k5-thread.h.
(krb5int_yarrow_lock): Declare.
(LOCK, UNLOCK): Define as macros using the k5_mutex_ macros.

ticket: new

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16846 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* fake-addrinfo.h: Include errno.h earlier
Ken Raeburn [Fri, 29 Oct 2004 22:41:45 +0000 (22:41 +0000)]
* fake-addrinfo.h: Include errno.h earlier

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16845 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * misc.c (check_min_life): Actually return a value on success
Tom Yu [Thu, 28 Oct 2004 23:41:10 +0000 (23:41 +0000)]
* misc.c (check_min_life): Actually return a value on success

ticket: 1335

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16843 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* k5-thread.h (return_after_yield, k5_mutex_lock) [__GNUC__]: Add macro
Ken Raeburn [Thu, 28 Oct 2004 05:40:00 +0000 (05:40 +0000)]
* k5-thread.h (return_after_yield, k5_mutex_lock) [__GNUC__]: Add macro
versions so debugging line numbers will be useful.
(DEBUG_THREADS_SLOW): Don't define.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16842 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * misc.c, misc.h: New function check_min_life(), containing common
Tom Yu [Wed, 27 Oct 2004 22:12:48 +0000 (22:12 +0000)]
* misc.c, misc.h: New function check_min_life(), containing common
code from wrapper functions.  New function chpass_util_wrapper(),
which does min_life checking prior to calling
kadm5_chpass_principal_util().

* schpw.c (process_chpw_request): Call chpass_util_wrapper().

ticket: 1335
component: krb5-admin

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16841 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * Initial commit of C CCAPI implementation
Jeffrey Altman [Wed, 27 Oct 2004 20:48:07 +0000 (20:48 +0000)]
 * Initial commit of C CCAPI implementation

ticket: 2753

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16840 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago Create new C CCAPI implementation
Jeffrey Altman [Wed, 27 Oct 2004 20:39:30 +0000 (20:39 +0000)]
 Create new C CCAPI implementation

ticket:new

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16839 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoPermit exporting profile file data into a buffer
Ken Raeburn [Wed, 27 Oct 2004 00:07:20 +0000 (00:07 +0000)]
Permit exporting profile file data into a buffer

* prof_file.c (profile_flush_file_data_to_buffer): New function.
* profi_init.c (profile_flush_to_buffer, profile_free_buffer): New functions.
* prof_parse.c (output_quoted_string): Use a callback instead of stdio calls.
(dump_profile): Renamed from dump_profile_to_file.  Use a callback instead of
stdio calls.
(dump_profile_to_file_cb): New function.
(profile_write_tree_file): Updated to new internal interface.
(struct prof_buf): New type.
(add_data_to_buffer, dump_profile_to_buffer_cb, profile_write_tree_to_buffer):
New functions.
* prof_int.h (profile_write_tree_to_buffer, profile_flush_file_data_to_buffer):
Declare.
* profile.hin (profile_flush_to_buffer, profile_free_buffer): Declare.
* libprofile.exports: Export profile_flush_to_buffer and profile_free_buffer.
* profile.swg (profile_flush_to_buffer): Declare.
* profile_tcl.c: Regenerated.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16838 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago * mk_req_ext.c (krb5_mk_req_extended): Free keyblock before
Tom Yu [Tue, 26 Oct 2004 23:01:14 +0000 (23:01 +0000)]
* mk_req_ext.c (krb5_mk_req_extended): Free keyblock before
copying new one in.

ticket: 2725
component: krb5-libs

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16837 dc483132-0cff-0310-8789-dd5450dbe970

20 years agoKevin Coffman's patches to support passing gss context state to kernel
Tom Yu [Tue, 26 Oct 2004 00:14:53 +0000 (00:14 +0000)]
Kevin Coffman's patches to support passing gss context state to kernel

ticket: 2743

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16836 dc483132-0cff-0310-8789-dd5450dbe970

20 years ago* libkrb5support.exports: Export krb5int_fac, _lock_fac, _unlock_fac
Ken Raeburn [Mon, 25 Oct 2004 19:09:54 +0000 (19:09 +0000)]
* libkrb5support.exports: Export krb5int_fac, _lock_fac, _unlock_fac

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16835 dc483132-0cff-0310-8789-dd5450dbe970