Alexandra Ellwood [Thu, 2 Oct 2008 17:38:36 +0000 (17:38 +0000)]
Support for change password checkbox in enter and select
identity ui elements.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20812
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Thu, 2 Oct 2008 17:34:17 +0000 (17:34 +0000)]
Resize dialogs better, added progress indicator to show KerberosAgent is working between interactions
Make Identity and Identities classes use NSDictionary representations of kim_options like the rest of KerberosAgent.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20811
dc483132-0cff-0310-8789-
dd5450dbe970
Greg Hudson [Thu, 2 Oct 2008 17:23:54 +0000 (17:23 +0000)]
Increase the default RPC timeout for kadmin from 25 seconds to 120
seconds. Code changes from a patch submitted by umich.
ticket: 6120
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20810
dc483132-0cff-0310-8789-
dd5450dbe970
Greg Hudson [Thu, 2 Oct 2008 16:53:57 +0000 (16:53 +0000)]
In clntudp_call, fix a bug in the handling of an error case (it failed
to set the error status field and generated a dead code warning).
ticket: 6121
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20809
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Thu, 2 Oct 2008 13:20:04 +0000 (13:20 +0000)]
Make enter identity dialog's smarter about matching a string with a set of favorite options
ticket:6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20808
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Thu, 2 Oct 2008 03:48:48 +0000 (03:48 +0000)]
Make Enter Identity dialog have one auto-completing, auto-validating text field for principals drawn from KIM's list of favorites.
Changed options for a favorite identity get saved out to kim_preferences.
Also, include copyright on more files.
ticket:6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20807
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 22:43:19 +0000 (22:43 +0000)]
Updated documentation to reflect new APIs and re-ran Doxygen
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20806
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 22:33:32 +0000 (22:33 +0000)]
Fixed a bug in kim_identity_get_components string where it
would return the first component multiple times.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20805
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 21:59:16 +0000 (21:59 +0000)]
Make unset strings in kim_options and kim_selection_hints
be empty strings rather than NULL. This simplifies the
stream code (and makes it easier to read and debug).
In order to prevent copying tons of NUL bytes around,
special case kim_string functions to use a special
constant kim_empty_string.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20804
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 21:16:44 +0000 (21:16 +0000)]
Fixed crash in kim_options_write_to_stream
when in_options is KIM_OPTIONS_DEFAULT.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20803
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 21:00:49 +0000 (21:00 +0000)]
Reversed sense of checks for NUL character in empty string. Fixed
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20802
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 20:58:56 +0000 (20:58 +0000)]
Correctly parse KIM_IDENTITY_ANY in error handler
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20801
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 20:56:57 +0000 (20:56 +0000)]
Loop on enter identity if auth fails
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20800
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 20:55:49 +0000 (20:55 +0000)]
Correctly translate NULL hints when reading from a stream
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20799
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 20:55:04 +0000 (20:55 +0000)]
Relaunch KerberosAgent more quickly so UI is more responsive
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20798
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Wed, 1 Oct 2008 20:38:26 +0000 (20:38 +0000)]
Update enterIdentity handler to support passing and setting ticket options.
Readded ticket options sheet to Enter Identity dialog.
Added helper methods to convert between kim_option and NSDictionary.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20797
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 19:34:06 +0000 (19:34 +0000)]
Finished KLL to KIM shim.
Switched krb5 code to using it.
ticket: 6134
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20796
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 17:11:22 +0000 (17:11 +0000)]
Fill out credentials when getting tickets with changed password
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20795
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 15:35:48 +0000 (15:35 +0000)]
Support for passing options back and forth for enter_identity and
hints back for select_identity.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20794
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Wed, 1 Oct 2008 14:12:31 +0000 (14:12 +0000)]
A working KIM-based KerberosAgent to handle all of KIM's built-in GUI prompting.
A few outstanding issues remain, like the ability to add duplicate entries to the list of favorite identities.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20793
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Wed, 1 Oct 2008 14:01:03 +0000 (14:01 +0000)]
When kim_options_write_to_stream is given NULL options, create default options in its place instead of erroring out
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20792
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Wed, 1 Oct 2008 14:00:16 +0000 (14:00 +0000)]
kim_selection_hints_get_identity should call kim_ui_fini even when kim_ui_select_identity returns an error, e.g. KIM_USER_CANCELED_ERR
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20791
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Wed, 1 Oct 2008 13:57:19 +0000 (13:57 +0000)]
Check for NULL hints_array passed back from kim_os_selection_hints_get_selection_hints_array in kim_os_selection_hints_lookup_identity
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20790
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 07:56:57 +0000 (07:56 +0000)]
First pass at KLL shim layer. (no private apis)
KIM support for KLL shim layer.
Fixed a bug where the cli support was double freeing a credential
in the change password case.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20789
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 1 Oct 2008 07:53:37 +0000 (07:53 +0000)]
Fixed typo where kpasswd was prompting for the new password
twice rather than once for new and once for verify.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20788
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Tue, 30 Sep 2008 21:23:17 +0000 (21:23 +0000)]
CCAPI should use common ipc and stream code
KIM and CCAPI should share the same IPC and stream object types.
Modified CCAPI to use code in src/util (stream) and src/util/mac (ipc)
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20787
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Tue, 30 Sep 2008 20:05:17 +0000 (20:05 +0000)]
krb5 library-side changes for com_err based error strings
ticket: 6138
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20786
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Tue, 30 Sep 2008 19:26:56 +0000 (19:26 +0000)]
kim_os_identity_get_saved_password should always return an error when
no password is returned.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20785
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Tue, 30 Sep 2008 19:13:30 +0000 (19:13 +0000)]
Check for null saved password in kim_ui_prompter. Just because kim_os_get_saved_password didn't return an error doesn't mean it successfully got a password
ticket:6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20784
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Tue, 30 Sep 2008 05:11:58 +0000 (05:11 +0000)]
Fixed a bug where getting addressless tickets would cause kim
to pass a NULL krb5_context into krb5_os_localaddr
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20783
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 21:39:42 +0000 (21:39 +0000)]
Support legacy KerberosAgent preference for save passwords
and a new preference in the KIM preferences.
Updated test harness for save password arguments.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20782
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 20:48:43 +0000 (20:48 +0000)]
Added support for disabling password saving, both globally
and also per prompt via the UI.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20781
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 18:52:53 +0000 (18:52 +0000)]
UI should lazy init so that init and fini are only called if one
of the UI calls is called. The problem is that when you call
krb5_get_init_creds_* you don't know if it will call the prompter
or not. (It won't if the password is saved in the keychain or
if pkinit succeeds.)
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20780
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 05:25:02 +0000 (05:25 +0000)]
test harness for KerberosAgent IPC layer
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20779
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 05:21:46 +0000 (05:21 +0000)]
Removed useless init and cleanup functions.
Fixed request port list handling.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20778
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 05:20:22 +0000 (05:20 +0000)]
If in_identity is NULL, use the identity the user entered.
(Fixed typo)
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20777
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 05:19:37 +0000 (05:19 +0000)]
Fixed KerberosAgent plists so it is loading the correct server and
so they are both in plist format.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20776
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 29 Sep 2008 02:40:24 +0000 (02:40 +0000)]
kim_credential_create_new should support NULL in_identity.
Prompt for it.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20775
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Sun, 28 Sep 2008 23:51:09 +0000 (23:51 +0000)]
Actually make [Identity -componentsString] use kim_identity_get_components_string
Also, better error handling in Identity and Identities classes.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20774
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Sun, 28 Sep 2008 23:39:25 +0000 (23:39 +0000)]
Place structure in thread specific data to store client connection
port so that multiple services can be supported simultaneously.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20773
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Sun, 28 Sep 2008 22:38:20 +0000 (22:38 +0000)]
Make [Identity -componentsString] use kim_identity_get_components_string
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20772
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Sun, 28 Sep 2008 22:16:09 +0000 (22:16 +0000)]
Flesh out KerberosAgent Select Identity dialog. Can now add, edit, and remove favorite identities
Also, make formatters in KerberosFormatters.[hm] localizable.
Still need to add principal validation and prevent duplicates.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20771
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Sun, 28 Sep 2008 20:53:12 +0000 (20:53 +0000)]
Added kim_selection_hints_create_from_stream and
kim_selection_hints_write_to_stream for client/server
communication.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20770
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Sun, 28 Sep 2008 19:43:47 +0000 (19:43 +0000)]
Create common stream and ipc layer for CCAPI and KIM.
Will switch CCAPI to this new code later though, so as
not to destabilize KfM and the Windows builds.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20769
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Sun, 28 Sep 2008 03:59:55 +0000 (03:59 +0000)]
Make kim_credential_get_options set correct renewal lifetime
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20768
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Sat, 27 Sep 2008 23:14:40 +0000 (23:14 +0000)]
Added launchd plist file for KerberosAgent
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20767
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Sat, 27 Sep 2008 21:31:06 +0000 (21:31 +0000)]
Renamed kim_identity_get_components to kim_identity_get_components_string
to better reflect what it does (a string of everything but the realm, not
an array of components like the old name might imply).
Added private functions which will be used by KLL to shim on top of KIM.
Private functions also reduce memory allocations inside of KIM.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20766
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Sat, 27 Sep 2008 19:22:10 +0000 (19:22 +0000)]
Add kim_preferences_get/set_minimum/maximum_lifetime functions to export lists
ticket:6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20765
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Sat, 27 Sep 2008 19:18:48 +0000 (19:18 +0000)]
kim_credential_get_options was setting the lifetime a second time instead of setting the renewal lifetime
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20764
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Sat, 27 Sep 2008 00:46:39 +0000 (00:46 +0000)]
KerberosAgent MachIPC support
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20763
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Sat, 27 Sep 2008 00:44:39 +0000 (00:44 +0000)]
C90 compliance
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20762
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 26 Sep 2008 20:49:23 +0000 (20:49 +0000)]
kim_options_set_service_name should be able to take a service name of NULL
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20761
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 26 Sep 2008 18:56:51 +0000 (18:56 +0000)]
Added kim_credential_get_options and kim_ccache_get_options
for KerberosAgent to use to create new favorite identities
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20760
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 26 Sep 2008 14:13:32 +0000 (14:13 +0000)]
Removed argument from kipc_client_lookup_server
Removed unused application path argument from kipc_client_lookup_server
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20759
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 26 Sep 2008 14:08:36 +0000 (14:08 +0000)]
Removed application name setting function from kim_selection_hints headers
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20758
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 26 Sep 2008 14:05:55 +0000 (14:05 +0000)]
Initial checkin of Mac OS X ipc support.
Also moved "set application name" functionality to kim_library_
because most applications do not need to call it and their name
doesn't usually change over time or per thread By putting it
in a global setting apps that do need to call it only have to
call it once instead of every time they want to authenticate.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20757
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Thu, 25 Sep 2008 21:17:59 +0000 (21:17 +0000)]
Add test for recently fixed kim_preferences_remove_favorite_identity bug
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20756
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Thu, 25 Sep 2008 21:15:40 +0000 (21:15 +0000)]
Update kim_test to use new error string function
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20755
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 25 Sep 2008 20:29:34 +0000 (20:29 +0000)]
Fixed a typo in kim_preferences.c which prevented
the fix to kim_preferences_remove_favorite_identity
from working.
(Accidentally tested in one source tree and committed
from another. whoops.)
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20754
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 25 Sep 2008 20:25:40 +0000 (20:25 +0000)]
Fixed a bug where kim_preferences_remove_favorite_identity
was removing the first identity which did not match the one
being passed in.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20753
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 25 Sep 2008 19:53:18 +0000 (19:53 +0000)]
Added support to track number of prompts so UIs do not try again unless
there is something the user can do differently the next time.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20752
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 25 Sep 2008 17:47:07 +0000 (17:47 +0000)]
Modified kim_ccache_compare to match the behavior of other kim compare
functions.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20751
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 25 Sep 2008 06:27:21 +0000 (06:27 +0000)]
Removed prototype with no implementation
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20750
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 24 Sep 2008 22:11:20 +0000 (22:11 +0000)]
Fixed bugs in command line change password support.
Removed low level change password functions from export list
because they require a UI context.
Added kim_ccache functions needed by klist to export list.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20749
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Tue, 23 Sep 2008 22:20:04 +0000 (22:20 +0000)]
KIM Identity selection dialog work. Updated to match changes to KIM API
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20748
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Tue, 23 Sep 2008 21:46:12 +0000 (21:46 +0000)]
Renamed error handling files to reflect what they do now.
Moved GUI code into OS-specific directory.
Fixed bugs in cache collection iterator routines where it was mishandling
the magic empty ccache created when the cache collection is empty.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20747
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Tue, 23 Sep 2008 19:40:52 +0000 (19:40 +0000)]
kim_ccache_get_display_name was calling kim_ccache_create_resolve_name with its parameters in the wrong order
kim_ccache_iterator_next wasn't handling the end of iteration correctly.
ticket:6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20746
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 22 Sep 2008 22:13:06 +0000 (22:13 +0000)]
Added command line UI support.
Added change password and acquire credentials UI harness support.
API changes to the change password support to reflect these changes.
Removed callback prompter interfaces since there is now plugin support.
Updated documentation.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20745
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 22 Sep 2008 18:17:38 +0000 (18:17 +0000)]
Merge three patches from Novell, with some updates related to work in
our tree since they were submitted, and reindenting for one source
file that got particularly ugly in the process.
From Savitha R on 2008-02-18 (yes, it was sitting in my queue a while):
Attached patches have fixes for some issues in LDAP backend.
1. patch-mem-pwd.txt
This patch clears the password in memory, fixes some memory leaks (in
common code) and a segfault in eDirectory specific code.
2. patch-princ-attrs.txt
This patch removes some eDirectory specific attributes from the common
code
3. patch-edir-rights.txt
This patch is specific to eDirectory code and fixes some rights issue.
It adds and deletes rights to service objects as required on the kerberos
attributes.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20744
dc483132-0cff-0310-8789-
dd5450dbe970
Justin Anderson [Mon, 22 Sep 2008 17:03:51 +0000 (17:03 +0000)]
Merge 1.7 work on auxiliary ccache functions necessary for KIM. Adds krb5_cc_lock/unlock, krb5_cccol_lock/unlock, krb5_cc_last_change_time, krb5_cccol_last_change_time, krb5_cc_move, and adds pertype cursor support to some cache types
Locking functions work the same as the CCAPI cc_ccache_lock / cc_context_lock functions, though not as read/write locks.
ticket: 6124
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20743
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 22 Sep 2008 16:01:03 +0000 (16:01 +0000)]
Missed some changes for db_context->dal_handle renaming
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20742
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 19 Sep 2008 21:51:03 +0000 (21:51 +0000)]
KIM ui plugin support and gui selection harness
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20740
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 19 Sep 2008 21:03:11 +0000 (21:03 +0000)]
Remove kim_identity_get_gss_name from the export lists
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20739
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 18 Sep 2008 18:57:01 +0000 (18:57 +0000)]
Added functions to save and get password from keychain
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20732
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 18 Sep 2008 15:57:27 +0000 (15:57 +0000)]
makedepend
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20731
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 18 Sep 2008 15:42:34 +0000 (15:42 +0000)]
If unset env(KRB5CCNAME) doesn't work, skip the tests that depend on it
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20730
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 18 Sep 2008 14:56:49 +0000 (14:56 +0000)]
Removed kim_identity_get_gss_name and updated documentation
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20729
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 17 Sep 2008 21:30:54 +0000 (21:30 +0000)]
Added tentative plugin API for KIM UI
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20728
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 17 Sep 2008 21:29:35 +0000 (21:29 +0000)]
Added support for options in favorite identities.
Fixed KLL preference reading support to not read keys
from the wrong locations. Updated prompter function
prototype.
Updated tests to reflect these changes.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20727
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Fri, 12 Sep 2008 22:38:21 +0000 (22:38 +0000)]
Fixed KIM export list for KerberosLite (forgot there were two)
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20713
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 11 Sep 2008 21:30:10 +0000 (21:30 +0000)]
Removed favorite identities object from public API and merged functionality
into the preferences API to reduce function calls. Added options parameter
to favorite identities (Mac OS X support still needed for options though).
Updated test cases to reflect these changes.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20712
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 9 Sep 2008 21:23:35 +0000 (21:23 +0000)]
Untabify; trim trailing whitespace; add emacs local variables to avoid tabs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20711
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 8 Sep 2008 21:53:21 +0000 (21:53 +0000)]
whitespace
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20710
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 8 Sep 2008 21:21:51 +0000 (21:21 +0000)]
Use krb5 threading functions.
Remove use of ECODE since errors are no longer objects.
Fixed bug where bundle error strings were not returned when
homedir access was off.
Switched to using UTF8 unconditionally.
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20709
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 5 Sep 2008 20:46:44 +0000 (20:46 +0000)]
Use braces to repair broken emacs indentation, caused by omission of a
semicolon, caused by use of macros that expand to compound statements.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20708
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 5 Sep 2008 20:39:19 +0000 (20:39 +0000)]
Whitespace changes, mostly horizontal, for consistency with current
style: indentation levels, spacing around if/else/for/while and
braces. Still plenty of inconsistency with current coding standards,
especially for when line breaks are to be used. Didn't touch
multi-line macro definitions, or .h function declarations.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20707
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 4 Sep 2008 18:43:14 +0000 (18:43 +0000)]
CCAPI should only use one pthread key
Use k5 thread functions. Also add destructors so if we ever have a way
to detect application exit that the pthread key is destroyed.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20705
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 3 Sep 2008 17:22:58 +0000 (17:22 +0000)]
Use GSS_S_BAD_STATUS for unknown status codes
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20704
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 29 Aug 2008 17:42:20 +0000 (17:42 +0000)]
Fix vasprintf signed/unsigned mix; separate out duplicated error paths; pull success return path out of guts of loop
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20703
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 28 Aug 2008 18:11:50 +0000 (18:11 +0000)]
fix resource leak in USE_PASSWORD_SERVER code
Don't leak file descriptors in error cases.
Remove limit from length of passwords.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20702
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 28 Aug 2008 17:17:51 +0000 (17:17 +0000)]
Fix resource leak
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20701
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 28 Aug 2008 16:37:34 +0000 (16:37 +0000)]
Additional code for KerberosAgent. Checking in so Justin can work on it
ticket: 6055
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20700
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 27 Aug 2008 22:31:57 +0000 (22:31 +0000)]
compile-time flag to disable iprop
If DISABLE_IPROP is defined at compile time, don't listen for
connections and don't register the service. (Doesn't currently
disable compilation of all of the code.)
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20699
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 27 Aug 2008 16:45:55 +0000 (16:45 +0000)]
Some helper rules for running Coverity Prevent
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20698
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 27 Aug 2008 16:36:00 +0000 (16:36 +0000)]
Based on patch from lxs, with some changes:
Add several new gcc warning flags, used in the KfM build process.
Put declarations before code.
Fix a bunch of signed/unsigned type mixes, mostly by changing variable
types to unsigned int.
Fix constness in handling name of default ccache name.
Make sure functions get declared with prototypes:
krb5int_pthread_loaded krb5int_gmt_mktime krb5int_aes_encrypt
krb5int_aes_decrypt gssint_mecherrmap_init gssint_mecherramp_get.
Don't shadow global names: stat accept index open encrypt. Fix
variable shadowing in LDAP ASN.1 support.
Don't define unused krb5int_local_addresses.
Don't export internal krb5_change_set_password.
Fix error return indications from gssint_oid_to_mech.
Create and use k5-gmt_mktime.h to provide one global declaration of
krb5int_gmt_mktime, needed before we've generated krb5.h on some
platforms.
Not incorporated from initial patch: const changes in function
signatures.
ticket: 6096
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20697
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 27 Aug 2008 00:21:53 +0000 (00:21 +0000)]
r820@NOME-KING: raeburn | 2008-08-26 18:37:41 -0400
x
r821@NOME-KING: raeburn | 2008-08-26 18:51:10 -0400
Remove disabled statistics gathering support.
r822@NOME-KING: raeburn | 2008-08-26 18:57:20 -0400
Remove source location tracking.
r823@NOME-KING: raeburn | 2008-08-26 19:05:35 -0400
Delete DEBUG_THREADS code.
r824@NOME-KING: raeburn | 2008-08-26 19:18:59 -0400
Remove now-no-op assertion checks.
r825@NOME-KING: raeburn | 2008-08-26 19:29:49 -0400
Simplify some wrappers.
r826@NOME-KING: raeburn | 2008-08-26 19:38:23 -0400
Remove redundant comment.
r827@NOME-KING: raeburn | 2008-08-26 19:49:20 -0400
When pthreads must be checked for at run time, don't include the no-op _nothread_mutex stuff too.
r828@NOME-KING: raeburn | 2008-08-26 19:54:05 -0400
Remove remaining DEBUG_THREADS bits.
r829@NOME-KING: raeburn | 2008-08-26 20:00:22 -0400
fix up initializer
r830@NOME-KING: raeburn | 2008-08-26 20:10:37 -0400
Flatten a couple of structs wrapping single elements.
r831@NOME-KING: raeburn | 2008-08-26 20:14:01 -0400
Remove k5_pthread_mutex_*lock macros.
r832@NOME-KING: raeburn | 2008-08-26 20:19:14 -0400
Update comments a bit for lack of debug support.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20696
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 26 Aug 2008 19:34:18 +0000 (19:34 +0000)]
Change non-debug version of k5_debug_log to int to silence some
compiler warnings.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20695
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 26 Aug 2008 18:05:52 +0000 (18:05 +0000)]
whitespace
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20694
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 25 Aug 2008 23:08:16 +0000 (23:08 +0000)]
Fix PROG_LIBPATH so in-tree tests work
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20693
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 25 Aug 2008 20:11:19 +0000 (20:11 +0000)]
Update description of -k option: From the code it appears the default
is des-cbc-crc, and it applies to entering passwords with -m.
ticket: 5565
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20692
dc483132-0cff-0310-8789-
dd5450dbe970