summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* fix resource leak in USE_PASSWORD_SERVER codeKen Raeburn2008-08-281-34/+27
| | | | | | | | | Don't leak file descriptors in error cases. Remove limit from length of passwords. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20702 dc483132-0cff-0310-8789-dd5450dbe970
* Fix resource leakKen Raeburn2008-08-281-0/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20701 dc483132-0cff-0310-8789-dd5450dbe970
* Additional code for KerberosAgent. Checking in so Justin can work on itAlexandra Ellwood2008-08-284-312/+168
| | | | | | ticket: 6055 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20700 dc483132-0cff-0310-8789-dd5450dbe970
* compile-time flag to disable ipropKen Raeburn2008-08-271-3/+12
| | | | | | | | | | If DISABLE_IPROP is defined at compile time, don't listen for connections and don't register the service. (Doesn't currently disable compilation of all of the code.) ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20699 dc483132-0cff-0310-8789-dd5450dbe970
* Some helper rules for running Coverity PreventKen Raeburn2008-08-271-0/+30
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20698 dc483132-0cff-0310-8789-dd5450dbe970
* Based on patch from lxs, with some changes:Ken Raeburn2008-08-2769-206/+263
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add several new gcc warning flags, used in the KfM build process. Put declarations before code. Fix a bunch of signed/unsigned type mixes, mostly by changing variable types to unsigned int. Fix constness in handling name of default ccache name. Make sure functions get declared with prototypes: krb5int_pthread_loaded krb5int_gmt_mktime krb5int_aes_encrypt krb5int_aes_decrypt gssint_mecherrmap_init gssint_mecherramp_get. Don't shadow global names: stat accept index open encrypt. Fix variable shadowing in LDAP ASN.1 support. Don't define unused krb5int_local_addresses. Don't export internal krb5_change_set_password. Fix error return indications from gssint_oid_to_mech. Create and use k5-gmt_mktime.h to provide one global declaration of krb5int_gmt_mktime, needed before we've generated krb5.h on some platforms. Not incorporated from initial patch: const changes in function signatures. ticket: 6096 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20697 dc483132-0cff-0310-8789-dd5450dbe970
* r820@NOME-KING: raeburn | 2008-08-26 18:37:41 -0400Ken Raeburn2008-08-274-515/+47
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | x r821@NOME-KING: raeburn | 2008-08-26 18:51:10 -0400 Remove disabled statistics gathering support. r822@NOME-KING: raeburn | 2008-08-26 18:57:20 -0400 Remove source location tracking. r823@NOME-KING: raeburn | 2008-08-26 19:05:35 -0400 Delete DEBUG_THREADS code. r824@NOME-KING: raeburn | 2008-08-26 19:18:59 -0400 Remove now-no-op assertion checks. r825@NOME-KING: raeburn | 2008-08-26 19:29:49 -0400 Simplify some wrappers. r826@NOME-KING: raeburn | 2008-08-26 19:38:23 -0400 Remove redundant comment. r827@NOME-KING: raeburn | 2008-08-26 19:49:20 -0400 When pthreads must be checked for at run time, don't include the no-op _nothread_mutex stuff too. r828@NOME-KING: raeburn | 2008-08-26 19:54:05 -0400 Remove remaining DEBUG_THREADS bits. r829@NOME-KING: raeburn | 2008-08-26 20:00:22 -0400 fix up initializer r830@NOME-KING: raeburn | 2008-08-26 20:10:37 -0400 Flatten a couple of structs wrapping single elements. r831@NOME-KING: raeburn | 2008-08-26 20:14:01 -0400 Remove k5_pthread_mutex_*lock macros. r832@NOME-KING: raeburn | 2008-08-26 20:19:14 -0400 Update comments a bit for lack of debug support. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20696 dc483132-0cff-0310-8789-dd5450dbe970
* Change non-debug version of k5_debug_log to int to silence someKen Raeburn2008-08-261-1/+1
| | | | | | compiler warnings. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20695 dc483132-0cff-0310-8789-dd5450dbe970
* whitespaceTom Yu2008-08-261-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20694 dc483132-0cff-0310-8789-dd5450dbe970
* Fix PROG_LIBPATH so in-tree tests workTom Yu2008-08-251-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20693 dc483132-0cff-0310-8789-dd5450dbe970
* Update description of -k option: From the code it appears the defaultKen Raeburn2008-08-251-3/+3
| | | | | | | | is des-cbc-crc, and it applies to entering passwords with -m. ticket: 5565 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20692 dc483132-0cff-0310-8789-dd5450dbe970
* Incorporate Apple's patchKen Raeburn2008-08-2514-2/+612
| | | | | | | | | | | | | | | | | | | | | | Add a test authorization data scheme, in both built-in and plugin forms; built-in version is #ifdef'ed out. Update configury to create the build directory for the plugin, but don't build or install it by default. Create the new (and normally empty) authorization data plugin directory at install time. Add some (normally disabled) code to log authz data from rd_req. Fix up some comments that still refer to preauth plugins. Add some details in comments on the API, and why it's private for now. Make the plugin init context support work, by not passing null pointers. ticket: 5565 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20691 dc483132-0cff-0310-8789-dd5450dbe970
* Fix sense of test of lock call preparing to update debug info inKen Raeburn2008-08-251-1/+1
| | | | | | | | | k5_mutex_destroy. Thanks, Ezra. ticket: 6090 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20690 dc483132-0cff-0310-8789-dd5450dbe970
* CCAPI is leaking mach portsAlexandra Ellwood2008-08-221-2/+6
| | | | | | | | | | | Need to destroy the mach ports instead of deallocating because we requested notifications on the port so just deallocating won't actually destroy the port. Also deallocate any port which was previously registered for notifications. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20688 dc483132-0cff-0310-8789-dd5450dbe970
* Let walk_realm_tree tests fail for now, ignore them and keep goingKen Raeburn2008-08-221-1/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20687 dc483132-0cff-0310-8789-dd5450dbe970
* Use capaths unconditionally. Update copyrightKen Raeburn2008-08-221-12/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20686 dc483132-0cff-0310-8789-dd5450dbe970
* New macro for testing whether the compiler supports a givenKen Raeburn2008-08-221-15/+43
| | | | | | | | | | | | | | command-line flag or not, and adding it to CFLAGS only if supported. Use it for GCC flag -Wno-format-zero-length, which we were testing for before, and for some additional flags: -Woverflow -Wstrict-overflow -Wmissing-format-attribute -Werror=declaration-after-statement -Wdeclaration-after-statement -Werror=variadic-macros -Wvariadic-macros. (The last few are because we've had some code contributions that assumed full C99 support, and our baseline is currently C89+, so if possible we want certain newer constructs flagged as errors.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20685 dc483132-0cff-0310-8789-dd5450dbe970
* KIM should not provide keytab functions when building lite frameworkAlexandra Ellwood2008-08-223-0/+158
| | | | | | ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20684 dc483132-0cff-0310-8789-dd5450dbe970
* Updated documentation to be more specific about TLS impactAlexandra Ellwood2008-08-221-5/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20683 dc483132-0cff-0310-8789-dd5450dbe970
* Removed warnings of unused variableAlexandra Ellwood2008-08-221-1/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20682 dc483132-0cff-0310-8789-dd5450dbe970
* Check for struct sockaddr_storage only in top-level configure script, notKen Raeburn2008-08-222-30/+1
| | | | | | | | | in code common to all. Use an existing AC_CHECK_TYPES invocation, not a special-purpose test. Eliminate now-unused KRB5_AC_CHECK_TYPE_WITH_HEADERS and KRB5_AC_CHECK_SOCKADDR_STORAGE macros. Merge KRB5_AC_CHECK_INET6 into the one place where it gets used. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20681 dc483132-0cff-0310-8789-dd5450dbe970
* lean client changesZhanna Tsitkov2008-08-2035-51/+237
| | | | | | | | | All changes are under LEAN_CLIENT macro. Application server functionality is disabled. Ticket:new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20680 dc483132-0cff-0310-8789-dd5450dbe970
* Add support to send CFNotifications on ccache and cache collection changesAlexandra Ellwood2008-08-205-0/+139
| | | | | | ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20679 dc483132-0cff-0310-8789-dd5450dbe970
* Notify clients on ccache deletionAlexandra Ellwood2008-08-203-7/+20
| | | | | | | | | Clients watching a ccache or the cache collection should get a notification when the ccache is destroyed. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20678 dc483132-0cff-0310-8789-dd5450dbe970
* Added some carriage returns to decrease line lengthAlexandra Ellwood2008-08-201-1/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20677 dc483132-0cff-0310-8789-dd5450dbe970
* Update krb4 test to use aclocal.m4 macro and default to disabledKen Raeburn2008-08-191-9/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20676 dc483132-0cff-0310-8789-dd5450dbe970
* Fix broken build -- conditionalize some stuff on DISABLE_PKINIT that IKen Raeburn2008-08-192-1/+5
| | | | | | | | missed last time. ticket: 6076 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20675 dc483132-0cff-0310-8789-dd5450dbe970
* profile write code should only quote empty stringsAlexandra Ellwood2008-08-191-1/+1
| | | | | | | | | Assigned to Ken for review. ticket: new owner: raeburn git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20674 dc483132-0cff-0310-8789-dd5450dbe970
* Get KerberosAgent building again after KIM changesAlexandra Ellwood2008-08-194-12/+23
| | | | | | | ticket: 6055 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20673 dc483132-0cff-0310-8789-dd5450dbe970
* Default to not building krb4 supportKen Raeburn2008-08-191-3/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20672 dc483132-0cff-0310-8789-dd5450dbe970
* Fixed export list for new hints functionsAlexandra Ellwood2008-08-193-16/+9
| | | | | | | | | and fixed calls to set error message. ticket: 6055 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20671 dc483132-0cff-0310-8789-dd5450dbe970
* Modified hints APIs to be a single API that takes string keys.Alexandra Ellwood2008-08-1932-892/+683
| | | | | | | | | | | Removed error object. Changed error message API to use thread specific data. Split out debugging API into separate files. ticket: 6055 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20670 dc483132-0cff-0310-8789-dd5450dbe970
* Updated bindings. Incomplete but commiting to avoid losing changesAlexandra Ellwood2008-08-181-44/+46
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20669 dc483132-0cff-0310-8789-dd5450dbe970
* Using gcov, it was noted that the tests were never including authdataEzra Peisach2008-08-171-8/+86
| | | | | | | in the test credential - and a segment of code was never tested. Add some fake authdata to the test creds. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20668 dc483132-0cff-0310-8789-dd5450dbe970
* In parsing authorization data, if run out of memory, the authorizationEzra Peisach2008-08-162-2/+6
| | | | | | | data was released, but the pointer not zeroed. This resulted in higher level code trying to free it again. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20667 dc483132-0cff-0310-8789-dd5450dbe970
* In copying a credential - if we run out memory - the cleanup code failed to ↵Ezra Peisach2008-08-161-3/+5
| | | | | | clear the second_ticket git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20666 dc483132-0cff-0310-8789-dd5450dbe970
* Move internal cccursor structures/prototypes to the ccache private includeEzra Peisach2008-08-164-22/+23
| | | | | | | file. Functions are not exported from library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20665 dc483132-0cff-0310-8789-dd5450dbe970
* Conditionalize building of CCAPI ccache type on USE_CCAPIAlexandra Ellwood2008-08-154-13/+22
| | | | | | | | | Still refer to Windows by OS macro because KfW builds do not set USE_CCAPI. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20664 dc483132-0cff-0310-8789-dd5450dbe970
* mac port of kim should not depend on kipcAlexandra Ellwood2008-08-152-2/+6
| | | | | | | | kipc is not necessarily built ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20663 dc483132-0cff-0310-8789-dd5450dbe970
* Move prototype for krb5int_random_string from k5-int.h to cc-int.h asEzra Peisach2008-08-155-6/+6
| | | | | | | it is private to the ccache code. Include cc-int.h where needed, and update Makefile.in dependencies. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20662 dc483132-0cff-0310-8789-dd5450dbe970
* a stash file is not a keytabWill Fiveash2008-08-1529-155/+513
| | | | | | | | | Note, this is the commit for the associated Krb Consortium project: Projects/Masterkey Keytab Stash ticket: 194 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20661 dc483132-0cff-0310-8789-dd5450dbe970
* Only add -Os for size optimizations if CFLAGS wasn't specified already. IfKen Raeburn2008-08-141-2/+6
| | | | | | | | the configure-generated CFLAGS string is one of the usual ones with -O2, replace -O2 rather than appending, since -Os will override previously specified optimization levels anyways. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20660 dc483132-0cff-0310-8789-dd5450dbe970
* If the LDAP KDB back end is being built, define ENABLE_LDAP. IfKen Raeburn2008-08-143-2/+13
| | | | | | | | ENABLE_LDAP is not defined, don't build the LDAP KDB ASN.1 encoding and decoding functions, and use null pointers for them in the accessor function table. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20659 dc483132-0cff-0310-8789-dd5450dbe970
* In parsing principal - if run out memory - clean up after ourselves. Ezra Peisach2008-08-142-2/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20658 dc483132-0cff-0310-8789-dd5450dbe970
* In krb5int_copy_creds_contents - if we run out of memory, do notEzra Peisach2008-08-141-1/+2
| | | | | | release pointer to output creds structure that is passed in by caller. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20657 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up memory leak in krb5_build_principal if we run out of memoryEzra Peisach2008-08-141-0/+3
| | | | | | while building pricipal. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20656 dc483132-0cff-0310-8789-dd5450dbe970
* Error return from krb5int_random_string not tested in ccache codeEzra Peisach2008-08-142-2/+13
| | | | | | | | | krb5int_random_string should probably only fail on malloc failure. Test for an error return from the function and cleanup properly (release mutex, return error instead of using uninitialized memory). git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20655 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_fcc_read_addrs returns pointer to released memory on malloc failreEzra Peisach2008-08-141-0/+1
| | | | | | | | In cleanup code on malloc failure, addresses are released including pointer to the krb5_address * - but the freed value is returned to caller. Clear pointer. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20654 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_fcc_resolve file locking error on malloc failuerEzra Peisach2008-08-141-1/+2
| | | | | | | | | | | | | | | | | In krb5_fcc_resolve, on malloc failure, the data->lock mutex needs to be destroyed. Unfortunately, this is done with the mutex is still locked. When thread debugging code is enabled, this results in aeg fault. Also - in krb5_fcc_generate_new, a strdup failure would result in the krb5int_cc_file_mutex being unlocked twice. [I have a modified version of valgrind in which I can signal after a certain number of mallocs for it to fail - I vary the allocation number from 1300 to 0 - and see what breaks - some memory leaks will be fixed separately] ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20653 dc483132-0cff-0310-8789-dd5450dbe970
* Don't build PKINIT ASN.1 support code if not building PKINIT pluginKen Raeburn2008-08-134-51/+74
| | | | | | | | | | | | | | | | | | | If --disable-pkinit is given at configure time, don't build the PKINIT plugin. If the PKINIT plugin is not going to be built, define DISABLE_PKINIT. If DISABLE_PKINIT is defined, don't build the PKINIT-related ASN.1 encoding and decoding routines, and fill their slots in the accessor function table with null pointers. Tweak the accessor table initialization to use conditionally-varying macros rather than conditionally selecting between two blocks of invocations of fixed macros. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20652 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-14 21:06:40 +0000