Tom Yu [Mon, 6 Dec 2004 23:26:34 +0000 (23:26 +0000)]
allow build with KRB5_DNS_LOOKUP undefined
* locate_kdc.c (krb5_locate_srv_dns_1): Don't compile if
KRB5_DNS_LOOKUP is not defined.
ticket: new
target_version: 1.4
tags: pullup
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16915
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 6 Dec 2004 22:06:09 +0000 (22:06 +0000)]
* libkrb5support.exports: Add krb5int_in6addr_any
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16914
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 6 Dec 2004 22:00:26 +0000 (22:00 +0000)]
hooks for recording statistics on locking behavior
Finish the hooks (left disabled by default) for logging somewhere the recorded
timing behavior relating to the use of locks in the krb5 code.
Currently, "reporting" means writing to /dev/tty or stderr, and the data is the
number of times a mutex is locked, file and line where it was created,
min/avg/max/stddev wait times to acquire the lock and hold times, and stats are
only written out for locks that were locked a certain minimum number of times
and with a minimum average wait time.
The criteria are all controlled in threads.c, and k5-thread.h just has the
hooks for gathering data. So turning on/off the data gathering requires a full
rebuild, but tweaking the reporting is mostly just a relinking pass. (May also
require adding a dependence on the math library to the support library; for a
static build that may impact a lot of makefiles.)
* include/k5-thread.h [DEBUG_THREADS_STATS]: Include string.h and inttypes.h.
(get_current_time) [DEBUG_THREADS_STATS]: Define as inline.
(k5_mutex_init_stats) [DEBUG_THREADS_STATS]: Save away current time as creation
time.
(k5_mutex_stats_tmp): New typedef, k5_debug_time_t if recording stats, dummy
int otherwise.
(k5_mutex_stats_start): New macro, get current time if recording, zero
otherwise.
(krb5int_mutex_lock_update_stats, krb5int_mutex_unlock_update_stats,
krb5int_mutex_report_stats) [DEBUG_THREADS_STATS]: Declare.
(krb5int_mutex_report_stats) [! DEBUG_THREADS_STATS]: New macro, does nothing.
(k5_mutex_lock_update_stats, k5_mutex_unlock_update_stats): New macros, map to
krb5int_ functions if recording, dummy statements otherwise.
(k5_mutex_destroy): Call krb5int_mutex_report_stats.
(k5_mutex_lock, k5_mutex_lock_1): Call k5_mutex_stats_start and
k5_mutex_lock_update_stats.
(k5_mutex_unlock_1): Call k5_mutex_unlock_update_stats.
* util/support/threads.c [DEBUG_THREADS_STATS]: Include stdio.h.
(stats_logfile) [DEBUG_THREADS_STATS]: New variable.
(krb5int_thread_support_init) [DEBUG_THREADS_STATS]: Set it to point to a file
on /dev/tty or stderr.
(krb5int_thread_support_fini) [DEBUG_THREADS_STATS]: Flush it.
(k5_mutex_lock_update_stats, krb5int_mutex_unlock_update_stats, get_stddev,
krb5int_mutex_report_stats) [DEBUG_THREADS_STATS]: New functions.
* util/support/libkrb5support.exports: Add krb5int_mutex_*_stats.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16913
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Fri, 26 Nov 2004 23:30:28 +0000 (23:30 +0000)]
ticket: new
subject: ftpcmds.y: nbby should be 8
* ftpcmd.y: nbby should be 8 for anything platform we care about.
The previous test broke on Debian BSD, so the test has been
removed.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16909
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 26 Nov 2004 06:03:24 +0000 (06:03 +0000)]
fix missing mutex initialization in keytab file code
Missed a case in the checked-in (and pulled-up) fix to 2781.
* kt_file.c (krb5_ktfile_wresolve): Initialize mutex here too.
ticket: new
status: open
target_version: 1.4
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16908
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 24 Nov 2004 02:39:44 +0000 (02:39 +0000)]
fix missing locking in keytab; fix stdio handling too
The keytab type list lock was implemented, but I missed the per-keytab lock.
Since I was in there, I ripped out the bogus stdio buffer mangling that the
code was doing, and set up a buffer to be used that we can sanitize later.
* kt_file.c (struct _krb5_ktfile_data): Add mutex and buffer.
(KTFILEBUFP, KTLOCK, KTUNLOCK, KTCHECKLOCK): New macros.
(krb5_ktfile_resolve): Initialize mutex.
(krb5_ktfile_close): Zap data buffer before freeing.
(krb5_ktfile_get_entry, krb5_ktfile_start_seq_get, krb5_ktfile_get_next,
krb5_ktfile_end_get, krb5_ktfile_add, krb5_ktfile_remove): Lock and unlock the
mutex.
(krb5_ktfileint_open): Check that the mutex is locked. Set the stdio buffer to
the new buffer in the ktfile data.
(krb5_ktfileint_write_entry, krb5_ktfileint_find_slot): Check that the mutex is
locked. Don't call setbuf. Flush the stdio buffer after writing.
ticket: new
target_version: 1.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16905
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Wed, 24 Nov 2004 01:28:03 +0000 (01:28 +0000)]
set errno=0 prior to fopen in kt_file
* kt_file.c (krb5_ktfileint_open): Update previous change by
explicitly setting errno=0 prior to calling fopen(). Also, return
EMFILE, not ENFILE, for compatibility with Solaris 8, which does
set errno when out of file descriptors.
ticket: new
target_version: 1.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16904
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 23 Nov 2004 03:15:12 +0000 (03:15 +0000)]
KDC on Tru64 was hanging because of another case where Yarrow code
assumes locks are recursive. Probably didn't trigger on Linux,
Solaris, or NetBSD because they have /dev/random and Tru64 does not.
* yarrow.c (yarrow_input_maybe_locking): Renamed from
yarrow_input_maybe_locking, made static. New argument indicates whether or not
to do locking.
(krb5int_yarrow_input): New wrapper function.
(yarrow_input_locked): New wrapper function.
(Yarrow_detect_fork): Call yarrow_input_locked.
ticket: 2755
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16903
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Sat, 20 Nov 2004 02:06:55 +0000 (02:06 +0000)]
document Solaris patches for pty-close bug
* build.texinfo (Solaris 9): Document Solaris patches for pty
close bug.
ticket: new
version_reported: 1.4
target_version: 1.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16901
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 19 Nov 2004 22:12:50 +0000 (22:12 +0000)]
* locate_kdc.c (krb5int_add_host_to_list): If debugging, log the requested
family and socket type. If AI_NUMERICSERV is defined, set it in ai_flags. If
getaddrinfo returns an error with debugging enabled, log the error.
(krb5_locate_srv_conf_1): When logging an error from add_host_to_list, include
the corresponding error string.
* t_locate_kdc.c: Include port-sockets.h, instead of sys/socket.h, netdb.h,
netinet/in.h, and arpa/inet.h.
* Makefile.in ($(OUTPRE)t_locate_kdc.exe): New target.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16899
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 19 Nov 2004 22:12:32 +0000 (22:12 +0000)]
* kt_file.c (krb5_ktfileint_open): Patch from Roland Dowdeswell to
return ENFILE when fopen() returns NULL but doesn't set errno.
ticket: 2760
target_version: 1.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16898
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 19 Nov 2004 21:46:59 +0000 (21:46 +0000)]
create rpc header install directory
* pre.in (KRB5_INCSUBDIRS): Add KRB5_INCDIR/gssrpc.
ticket: new
version_reported: 1.4
target_version: 1.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16896
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 19 Nov 2004 21:39:48 +0000 (21:39 +0000)]
* cc_mslsa.c (MSCredToMITCred): Don't create an empty array for addresses, just
use a null pointer now.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16895
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 19 Nov 2004 21:09:45 +0000 (21:09 +0000)]
* fake-addrinfo.c (HAVE_GETADDRINFO, HAVE_GETNAMEINFO)[_WIN32]: Don't define
here.
(protoname): Handle IPPROTO_IGMP.
(debug_dump_addrinfo_args): Update for current interfaces to socktypename and
familyname.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16893
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 19 Nov 2004 21:03:03 +0000 (21:03 +0000)]
* win-mac.h (HAVE_GETADDRINFO, HAVE_GETNAMEINFO): Define
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16892
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 19 Nov 2004 20:36:45 +0000 (20:36 +0000)]
* aclocal.m4 (KRB5_AC_PRIOCNTL_HACK): Check for Solaris patch
117171-11 (sparc) or 117172-11 (x86), which fixes the Solaris 9
bug which can cause final pty output to be on close.
ticket: 2776
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16891
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 19 Nov 2004 00:26:37 +0000 (00:26 +0000)]
after 1.4 branch, trunk is effectively krb5-1.5-prerelease
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16890
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 18 Nov 2004 21:07:05 +0000 (21:07 +0000)]
* Makefile.in (SHLIB_EXPLIBS): Remove -ldl accidentally added in last change
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16888
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 18 Nov 2004 20:46:45 +0000 (20:46 +0000)]
install rpc headers into correct directory
RPC headers need to be installed into PREFIX/include/gssrpc, not PREFIX/include
ticket: new
target_version: 1.4
version_reported: 1.4
tags: pullup
component: krb5-build
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16887
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Nov 2004 08:03:51 +0000 (08:03 +0000)]
* prng.c (do_yarrow_init): Move mutex initialization here.
(krb5int_prng_init): Don't do it here.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16880
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Nov 2004 07:56:05 +0000 (07:56 +0000)]
* Makefile.in (SHLIB_EXPDEPS, SHLIB_EXPLIBS): Add support library
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16879
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 16 Nov 2004 07:04:03 +0000 (07:04 +0000)]
oops, bad update
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16877
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 16 Nov 2004 07:03:33 +0000 (07:03 +0000)]
make depend
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16876
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 16 Nov 2004 06:51:16 +0000 (06:51 +0000)]
make depend
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16875
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 16 Nov 2004 06:01:08 +0000 (06:01 +0000)]
* k5-int.h (struct _krb5_cc_ops): Add new function pointer field get_flags
ticket: 2763
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16874
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 16 Nov 2004 05:28:38 +0000 (05:28 +0000)]
Now a kvno invocation will only open the ccache file a small number of
times, but there's still excessive seeking and re-reading of data
happening.
* cc_retr.c (krb5_cc_retrieve_cred_seq): Temporarily clear the
KRB5_TC_OPENCLOSE flag on the credentials cache while reading multiple entries
from it.
ticket: 2763
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16873
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 16 Nov 2004 05:06:34 +0000 (05:06 +0000)]
* krb5.hin (krb5_cc_get_flags): Declare
ticket: 2763
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16872
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 16 Nov 2004 05:04:56 +0000 (05:04 +0000)]
Create a ccache get-flags operation.
The MSLSA and CCAPI versions are untested!
* cc_file.c (krb5_fcc_get_flags): New function.
(krb5_fcc_ops, krb5_cc_file_ops): Add it.
* cc_memory.c (krb5_mcc_get_flags): New function.
(krb5_mcc_ops): Add it.
* cc_mslsa.c (krb5_lcc_get_flags): New function.
(krb5_lcc_ops): Add it.
* ccfns.c (krb5_cc_get_flags): New function.
* ccapi/stdcc.c (krb5_stdcc_get_flags): New function.
(krb5_cc_stdcc_ops): Add it.
* ccapi/stdcc.h (krb5_stdcc_get_flags): Declare.
ticket: 2763
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16871
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Tue, 16 Nov 2004 03:28:08 +0000 (03:28 +0000)]
Convert Yarrow to use AES not 3des. Update test vectors
ticket: 2410
Tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16870
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 15 Nov 2004 22:16:02 +0000 (22:16 +0000)]
Make static linking not require -lsocket, -lnsl, etc.
Don't duplicate macro definitions.
Header files and comments still need some cleanup.
* cache-addrinfo.h, init-addrinfo.c: New files, split out from fake-addrinfo.c.
* fake-addrinfo.c: Include cache-addrinfo.h.
(FAI_CACHE, struct face, struct fac): Moved to cache-addrinfo.h.
(krb5int_fac, krb5int_init_fac, krb5int_fini_fac): Moved to init-addrinfo.c.
(addrinfo, struct addrinfo): Don't define.
(AI_* and NI_* and EAI_* macros): Don't define.
* threads.c: Include cache-addrinfo.h.
(krb5int_init_fac, krb5int_fini_fac): Don't declare.
* Makefile.in (SRCS, STLIBOBJS, LIBOBJS): Updated.
ticket: 2761
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16867
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 15 Nov 2004 21:25:41 +0000 (21:25 +0000)]
Merge Athena changes for requiring encrypted connections
ticket: 841
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16866
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 5 Nov 2004 21:23:23 +0000 (21:23 +0000)]
* et_h.awk: Declare initialize_*_error_table as taking no arguments.
* et_h.pl: Regenerated.
ticket: 2770
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16865
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 4 Nov 2004 19:35:33 +0000 (19:35 +0000)]
Added new exported symbols to profile and GSS and updated project file to include more robust header paths
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16862
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 4 Nov 2004 19:27:24 +0000 (19:27 +0000)]
* prof_init.c, profile.hin: added profile_is_modified and profile_is_writable so that callers can check to see if profile_release() will fail before calling it
ticket: 2751
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16860
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 4 Nov 2004 19:18:23 +0000 (19:18 +0000)]
* prof_set.c: profile calls which set values should not fail if file is not writable. You can now write to a different file with profile_flush_to_file() or buffer with profile_flush_to_buffer()
ticket: 2750
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16858
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Wed, 3 Nov 2004 22:50:15 +0000 (22:50 +0000)]
merge athena ftpd changes for requiring encrypted passwords
* ftpcmd.y (getline): Merge Athena change to reject MICed
password.
* ftpd.M: Document '-E'.
* ftpd.c (main): Merge Athena's '-E' changes to prohibit
unencrypted passwords.
ticket: new
target_version: 1.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16857
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 3 Nov 2004 09:22:39 +0000 (09:22 +0000)]
Fix typo in last change
ticket: 2761
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16856
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 3 Nov 2004 08:44:41 +0000 (08:44 +0000)]
* Makefile.in (SRCS): Define
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16855
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 3 Nov 2004 08:40:53 +0000 (08:40 +0000)]
move getaddrinfo hacks into support lib for easier maintenance
With the cache on Mac OS X, and likely to be enabled eventually on other
platforms, this is going to wind up being a non-trivial amount of code on most
platforms, and updating the cache code to work on other configurations is
likely to take a few rounds. Rather than recompile the world and add a bunch
of code to each object file doing name lookups, moving the code into the
support library that already defines the static data (list head, mutex) should
make things simpler.
(TODO: Fix calling conventions for Windows?)
* include/fake-addrinfo.h: Move most of code content into
util/support/fake-addrinfo.c.
(krb5int_getaddrinfo, krb5int_freeaddrinfo, krb5int_getnameinfo,
krb5int_gai_strerror): Declare.
(getaddrinfo, freeaddrinfo, getnameinfo, gai_strerror): Define as macros
mapping to the krb5int_ function names.
* util/support/fake-addrinfo.c: Import most of the contents of
include/fake-addrinfo.h, so we only compile it once.
(krb5int_getaddrinfo, krb5int_freeaddrinfo, krb5int_getnameinfo,
krb5int_gai_strerror): New functions, always defined and exported.
* util/support/libkrb5support.exports: Export the new functions, not the old
_fac symbols.
ticket: new
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16854
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 1 Nov 2004 21:33:05 +0000 (21:33 +0000)]
* yarrow.c (krb5int_yarrow_input, krb5int_yarrow_final): Don't check for
forking here.
(yarrow_output_locked): Split out from krb5int_yarrow_output, without locking.
(krb5int_yarrow_output): Do locking and call yarrow_output_locked.
(yarrow_gate_locked): New function; uses yarrow_output_locked.
(krb5int_yarrow_output_Block): Use yarrow_gate_locked.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16853
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Sun, 31 Oct 2004 18:05:04 +0000 (18:05 +0000)]
fix mkrel's RELTAIL handling
* mkrel: Rework quoting for RELTAIL check. Don't check RELTAIL if
doing a "-current" snapshot.
ticket: new
target_version: 1.4
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16850
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 30 Oct 2004 05:43:18 +0000 (05:43 +0000)]
call stat less often on krb5.conf
Changes suggested by lxs to reduce stat frequency to once per second.
In parallel loops creating and destroying krb5 contexts on Mac OS X, this
seems to improve performance by 10%, though it's hard to be sure because
the times are variable.
* prof_int.h (STAT_ONCE_PER_SECOND): Define.
(struct _prf_data_t) [STAT_ONCE_PER_SECOND]: New field LAST_STAT.
* prof_file.c (scan_shared_trees_locked, scan_shared_trees_unlocked): Redefine
to do nothing for now.
(profile_update_file_data) [STAT_ONCE_PER_SECOND]: If the current time is the
same time as the last stat of the file, just return; otherwise, save away the
current time.
ticket: new
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16847
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 30 Oct 2004 00:56:30 +0000 (00:56 +0000)]
push yarrow locking down into the yarrow code to reduce contention
This seems to speed up creating a krb5_context a little bit, when it happens
a lot in multiple threads.
* prng.c (yarrow_lock): Rename to krb5int_yarrow_lock via macro, and change to
be non-static.
(krb5int_prng_init): Call do_yarrow_init here.
(krb5_c_random_add_entropy): Don't call it here. Don't lock the mutex, either.
(krb5_c_random_make_octets): Don't lock the mutex.
* yarrow/ylock.h: Include k5-thread.h.
(krb5int_yarrow_lock): Declare.
(LOCK, UNLOCK): Define as macros using the k5_mutex_ macros.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16846
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 29 Oct 2004 22:41:45 +0000 (22:41 +0000)]
* fake-addrinfo.h: Include errno.h earlier
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16845
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 28 Oct 2004 23:41:10 +0000 (23:41 +0000)]
* misc.c (check_min_life): Actually return a value on success
ticket: 1335
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16843
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 28 Oct 2004 05:40:00 +0000 (05:40 +0000)]
* k5-thread.h (return_after_yield, k5_mutex_lock) [__GNUC__]: Add macro
versions so debugging line numbers will be useful.
(DEBUG_THREADS_SLOW): Don't define.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16842
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Wed, 27 Oct 2004 22:12:48 +0000 (22:12 +0000)]
* misc.c, misc.h: New function check_min_life(), containing common
code from wrapper functions. New function chpass_util_wrapper(),
which does min_life checking prior to calling
kadm5_chpass_principal_util().
* schpw.c (process_chpw_request): Call chpass_util_wrapper().
ticket: 1335
component: krb5-admin
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16841
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Wed, 27 Oct 2004 20:48:07 +0000 (20:48 +0000)]
* Initial commit of C CCAPI implementation
ticket: 2753
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16840
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Wed, 27 Oct 2004 20:39:30 +0000 (20:39 +0000)]
Create new C CCAPI implementation
ticket:new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16839
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 27 Oct 2004 00:07:20 +0000 (00:07 +0000)]
Permit exporting profile file data into a buffer
* prof_file.c (profile_flush_file_data_to_buffer): New function.
* profi_init.c (profile_flush_to_buffer, profile_free_buffer): New functions.
* prof_parse.c (output_quoted_string): Use a callback instead of stdio calls.
(dump_profile): Renamed from dump_profile_to_file. Use a callback instead of
stdio calls.
(dump_profile_to_file_cb): New function.
(profile_write_tree_file): Updated to new internal interface.
(struct prof_buf): New type.
(add_data_to_buffer, dump_profile_to_buffer_cb, profile_write_tree_to_buffer):
New functions.
* prof_int.h (profile_write_tree_to_buffer, profile_flush_file_data_to_buffer):
Declare.
* profile.hin (profile_flush_to_buffer, profile_free_buffer): Declare.
* libprofile.exports: Export profile_flush_to_buffer and profile_free_buffer.
* profile.swg (profile_flush_to_buffer): Declare.
* profile_tcl.c: Regenerated.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16838
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 26 Oct 2004 23:01:14 +0000 (23:01 +0000)]
* mk_req_ext.c (krb5_mk_req_extended): Free keyblock before
copying new one in.
ticket: 2725
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16837
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 26 Oct 2004 00:14:53 +0000 (00:14 +0000)]
Kevin Coffman's patches to support passing gss context state to kernel
ticket: 2743
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16836
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 25 Oct 2004 19:09:54 +0000 (19:09 +0000)]
* libkrb5support.exports: Export krb5int_fac, _lock_fac, _unlock_fac
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16835
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 22 Oct 2004 19:07:45 +0000 (19:07 +0000)]
* prof_file.c (profile_update_file_data): When resetting flags, preserve SHARED
flag.
(scan_shared_trees_locked, scan_shared_trees_unlocked): Convert to macros, so
line numbers reported by assert will be useful.
* prof_test1 (test2): Run new test of modifications with other existing open
profile handles.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16834
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 21 Oct 2004 00:27:14 +0000 (00:27 +0000)]
* locate_kdc.c: Include stdarg.h.
(Tprintf): New function, prints to stderr or not depending on TEST macro.
(add_addrinfo_to_list, krb5int_add_host_to_list, krb5_locate_srv_conf_1,
krb5_locate_srv_dns_1, krb5int_locate_server): Call it instead of conditionally
calling fprintf.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16833
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 19 Oct 2004 21:39:53 +0000 (21:39 +0000)]
* dnssrv.c (krb5int_make_srv_query_realm): Append a dot to the hostname, if
there's room in the buffer, to avoid domain search paths.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16832
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 19 Oct 2004 18:09:53 +0000 (18:09 +0000)]
* dnsglue.c (initparse): Skip query type and class when we lack
ns_initparse().
(krb5int_dns_nextans) [!HAVE_NS_INITPARSE]: Pass correct pointer
to dn_skipname(). Actually skip the RR name.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16831
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 19 Oct 2004 10:24:47 +0000 (10:24 +0000)]
* libprofile.exports: Add profile_flush_to_file
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16830
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 19 Oct 2004 02:27:49 +0000 (02:27 +0000)]
add dependencies for t_*.c test programs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16829
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 19 Oct 2004 02:24:36 +0000 (02:24 +0000)]
make depend
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16828
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 19 Oct 2004 02:22:31 +0000 (02:22 +0000)]
ignore t_locate_kdc
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16827
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 19 Oct 2004 02:15:37 +0000 (02:15 +0000)]
* Makefile.in (TEST_PROGS): Add t_locate_kdc.
(check-unix): Run t_locate_kdc to test fetching DNS SRV records.
We probably don't want this test to be part of this test suite long-term, since
it relies on external DNS data rather than being self-contained.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16826
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 18 Oct 2004 23:14:51 +0000 (23:14 +0000)]
Allow profile library caller to write the modified data to a different
file than was originally read.
* prof_file.c (write_data_to_file): New function, split out from
profile_flush_file_data. Add argument can_create indicating whether the old
file should already exist or not.
(profile_flush_file_data): Call it.
(profile_flush_file_data_to_file): New function.
* prof_int.h (profile_flush_file_data_to_file): Declare it.
(profile_flush_file_to_file): New macro.
* prof_init.c (profile_flush_to_file): New function.
* profile.hin (profile_flush_to_file): Declare.
* profile.swg (profile_flush_to_file): Declare.
* profile_tcl.c: Regenerated.
* prof_test1: Use profile_flush_to_file instead of profile_flush, and reload
from the new filename.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16825
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 18 Oct 2004 21:01:01 +0000 (21:01 +0000)]
* Makefile.in (install-unix): Install headers
ticket: 2743
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16824
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 15 Oct 2004 23:58:17 +0000 (23:58 +0000)]
* prof_file.c, prof_int.h, prof_set.c: Remove support for non-SHARE_TREE_DATA
case.
* prof_int.h (struct _prf_data_t): Change filespec to a trailing char array.
Add a length field for the filespec.
(profile_make_prf_data): Declare.
(profile_lock_global, profile_unlock_global): Prototypes need argument lists.
* prof_file.c: Include stddef.h.
(scan_shared_trees_locked, scan_shared_trees_unlocked): New functions.
(r_access, rw_access): Now take const_profile_filespec_t arg.
(profile_make_prf_data): New function.
(profile_open_file): Scan trees at beginning and end. Use
profile_make_prf_data to allocate and initialize storage.
(profile_dereference_data, profile_free_file_data): Scan trees.
(profile_ser_size, profile_ser_externalize): Filespec is never null.
* prof_set.c (rw_setup): Use profile_make_prf_data to allocate and initialize
storage.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16822
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 14 Oct 2004 21:43:29 +0000 (21:43 +0000)]
* t_deltat.c (main): Unadorned integer no longer fails now that we
default to seconds.
ticket: 2734
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16819
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 13 Oct 2004 17:55:25 +0000 (17:55 +0000)]
* prof_file.c (profile_library_initializer, profile_library_finalizer): Added macros to avoid adding error tables on platforms that don't use them (ie: OSX)
ticket: 2741
version_fixed: 1.4
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16818
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 13 Oct 2004 17:49:11 +0000 (17:49 +0000)]
Need prototypes for profile_lock_global and profile_unlock_global
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16817
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Wed, 13 Oct 2004 16:18:27 +0000 (16:18 +0000)]
krb5_string_to_deltat should default to seconds if no unit is provided. If the format is invalid, it should return a distinct error (KRB5_DELTAT_BADFORMAT, not EINVAL)
ticket: 2734
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16816
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 13 Oct 2004 02:22:41 +0000 (02:22 +0000)]
Fix small memory leak in repeated krb5 context creation and deletion:
* prof_init.c (profile_init): Don't add error table here.
* prof_file.c (profile_library_initializer): Add it here.
(profile_library_finalizer): Remove it here.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16815
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Fri, 8 Oct 2004 03:57:45 +0000 (03:57 +0000)]
Fix the forced setting of the Initial Ticket Flag on Win2000 and
add the functionality to XP and 2003 SP1.
ticket: 2735
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16814
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 7 Oct 2004 21:11:29 +0000 (21:11 +0000)]
* et_c.awk, et_h.awk: Fix off-by-one error.
* et_c.pl, et_h.pl: Regenerated.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16813
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 7 Oct 2004 01:16:21 +0000 (01:16 +0000)]
* implementor.texinfo, thread-safe.txt, threads.txt: Various updates relating to
thread support.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16812
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 7 Oct 2004 00:21:38 +0000 (00:21 +0000)]
* et_c.awk, et_h.awk: Complain if the error table is too large.
* et_c.pl, et_h.pl: Regenerated.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16811
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 7 Oct 2004 00:00:25 +0000 (00:00 +0000)]
Install example config files
ticket: 249
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16810
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Oct 2004 23:51:21 +0000 (23:51 +0000)]
* localaddr.c (print_addr): If getnameinfo returns EAI_SYSTEM, report what the
system error is.
Also fix a fencepost error in the last change.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16809
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Oct 2004 23:39:12 +0000 (23:39 +0000)]
* localaddr.c (foreach_localaddr): Be more careful not to walk past the end of
the ifreq array.
(get_ifreq_array): Return 0 in success case, not errno.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16808
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Oct 2004 04:21:27 +0000 (04:21 +0000)]
* localaddr.c (get_ifreq_array): Split out from foreach_localaddr general
version.
(foreach_localaddr): Call it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16807
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Oct 2004 01:10:09 +0000 (01:10 +0000)]
* aclocal.m4 (KRB5_AC_ENABLE_THREADS): On HP-UX, define some preprocessor
symbols that -pthread defines, but don't use -pthread so we can avoid forcing
linking against pthread libraries.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16806
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Oct 2004 01:07:35 +0000 (01:07 +0000)]
forgot to check in with fake-addrinfo.h
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16805
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 5 Oct 2004 21:24:01 +0000 (21:24 +0000)]
* localaddr.c (foreach_localaddr) [HAVE_STRUCT_IF_LADDRCONF && 0]: Fix
if_laddrreq.iflr_name field name not properly adjusted. The iflr_addr field is
an HP-UX specific sockaddr_ext with sa_ field name prefixes.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16804
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 5 Oct 2004 21:04:04 +0000 (21:04 +0000)]
* fake-addrinfo.h (AI_ADDRCONFIG, AI_V4MAPPED, AI_ALL): If not defined, or when
completely faking getaddrinfo, define them as zero.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16803
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Mon, 4 Oct 2004 17:51:23 +0000 (17:51 +0000)]
Added new files used by krb5-1.4
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16802
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 1 Oct 2004 23:44:49 +0000 (23:44 +0000)]
* localaddr.c (get_if_laddrconf, foreach_localaddr): New implementation for
HP-UX 11, based on Solaris support and information from Doug Engert. Disabled
for now, until it can be tested.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16801
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 1 Oct 2004 23:43:05 +0000 (23:43 +0000)]
* configure.in: Check for struct if_laddrconf, as for struct lifconf
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16800
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 1 Oct 2004 22:08:14 +0000 (22:08 +0000)]
* kcmd.c (kcmd_connect): Set *addrfamilyp with the address family actually used
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16799
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Fri, 1 Oct 2004 04:25:43 +0000 (04:25 +0000)]
* update the include paths to allow patchlevel.h to be found
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16798
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Fri, 1 Oct 2004 04:23:34 +0000 (04:23 +0000)]
* update Changelog
ticket: 2729
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16797
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Fri, 1 Oct 2004 04:22:07 +0000 (04:22 +0000)]
* Add new conditional resource strings
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16796
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Fri, 1 Oct 2004 04:18:22 +0000 (04:18 +0000)]
* hst_realm.c: provide definition for MAXDNAME if
KRB5_DNS_LOOKUP is not defined.
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16795
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 30 Sep 2004 19:36:29 +0000 (19:36 +0000)]
* start_servers_local: If one of the servers failed to start, log info about
which start file was not found.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16794
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 28 Sep 2004 17:36:59 +0000 (17:36 +0000)]
* vbaxam.doc: File deleted
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16793
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 28 Sep 2004 16:38:12 +0000 (16:38 +0000)]
* prof_file.c (profile_dereference_data_locked): New function.
(profile_dereference_data): Call it.
* prof_set.c (rw_setup): Likewise.
* prof_int.h (profile_dereference_data_locked): Declare it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16792
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Sun, 26 Sep 2004 13:21:01 +0000 (13:21 +0000)]
* Makefile.in (check-unix-tcl-ok): Use KRB5_RUN_ENV
* configure.in: Use KRB5_RUN_FLAGS.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16791
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Sat, 25 Sep 2004 01:00:55 +0000 (01:00 +0000)]
Make patchlevel.h be the master version file
ticket: 1345
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16790
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 24 Sep 2004 02:21:47 +0000 (02:21 +0000)]
* network.c (closedown_network): Free each connection data structure while
closing file descriptors.
ticket: 1210
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16789
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 24 Sep 2004 02:19:42 +0000 (02:19 +0000)]
* kdc_util.h (sockaddr2p): Don't declare
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16788
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 24 Sep 2004 01:56:21 +0000 (01:56 +0000)]
* configure.in: Use AC_MSG_NOTICE for krb4 messages instead of AC_MSG_RESULT,
because there's no corresponding AC_MSG_CHECKING.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16787
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 24 Sep 2004 01:50:12 +0000 (01:50 +0000)]
* xdr_rec.c (LAST_FRAG): Use 1L in case int is small
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16786
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 24 Sep 2004 01:15:44 +0000 (01:15 +0000)]
make depend
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16785
dc483132-0cff-0310-8789-
dd5450dbe970