summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Remove unused fileKen Raeburn2007-05-181-241/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19550 dc483132-0cff-0310-8789-dd5450dbe970
* Fix various gcc warnings about pointer target signedness and qualifiersKen Raeburn2007-05-1011-36/+54
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19548 dc483132-0cff-0310-8789-dd5450dbe970
* Rewrite weak key check to use a small custom struct instead of wedgingKen Raeburn2007-05-101-10/+12
| | | | | | | data into krb5_data, and use the array size rather than a sentinel for loop control. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19547 dc483132-0cff-0310-8789-dd5450dbe970
* We're requiring that 'inline' work nowadays, so don't conditionalize its useKen Raeburn2007-05-101-7/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19546 dc483132-0cff-0310-8789-dd5450dbe970
* Use new comparison inline fnKen Raeburn2007-05-101-3/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19545 dc483132-0cff-0310-8789-dd5450dbe970
* Define and use some inline helper functions for comparing data and authdata ↵Ken Raeburn2007-05-1014-123/+95
| | | | | | | | structures, instead of open-coding checks of multiple fields everywhere. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19544 dc483132-0cff-0310-8789-dd5450dbe970
* Remove some unused macrosKen Raeburn2007-05-101-4/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19543 dc483132-0cff-0310-8789-dd5450dbe970
* Remove unused fileKen Raeburn2007-05-071-81/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19542 dc483132-0cff-0310-8789-dd5450dbe970
* Modify WIX installer to better support upgrading betasJeffrey Altman2007-05-031-2/+2
| | | | | | | | | | | | | | | | | | The WIX installers did not upgrade previous installations with the same version number as the current package being installed. This would leave multiple installations of KFW x.y.z registered as being installed on the machine even though only the most recent install is being used. This commit instructs the Windows Installer to uninstall previous installations with the same version number (the Maximum Upgrade version) as the package that is being installed while ensuring that the package being installed will not be uninstalled if the installation is being modified or repaired. ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19541 dc483132-0cff-0310-8789-dd5450dbe970
* k5-int.h, gic_opt.cJeffrey Altman2007-05-022-4/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | The krb5_get_init_creds_password() and krb5_get_init_creds_keytab() functions permit the gic_opts parameter to be NULL. This is not taken into account when testing the value with the macros krb5_gic_opt_is_extended() and krb5_gic_opt_is_shadowed(). Nor is it taken into account within krb5int_gic_opte_copy() which is called by krb5int_gic_opt_to_opte() when the input parameter is not a krb5_gic_opt_ext structure. This commit makes two changes: (1) it modifies the macros to ensure that the value is non-NULL before evaluation. (2) it modifies krb5int_gic_opte_copy() to avoid copying the original values with memcpy() when the input is NULL. In addition, the code was audited to ensure that the flag KRB5_GET_INIT_CREDS_OPT_SHADOWED is properly set and that when it is set, that the allocated krb5_gic_opt_ext structure is freed by krb5_get_init_creds_password() and krb5_get_init_creds_keytab(). ticket: 5552 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19537 dc483132-0cff-0310-8789-dd5450dbe970
* rd_req_decoded needs to deal with referral realmsSam Hartman2007-04-291-5/+21
| | | | | | | | | | | * Fix handling of null realm in krb5_rd_req_decoded; now we treat a null realm as a default realm there, as we do in the keytab code. ticket: new Target_Version: 1.6.2 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19536 dc483132-0cff-0310-8789-dd5450dbe970
* Move the code for queueing an outgoing response on a TCP stream into a separateKen Raeburn2007-04-271-13/+13
| | | | | | function. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19535 dc483132-0cff-0310-8789-dd5450dbe970
* Look for unix find command in multiple placesKevin Koch2007-04-261-23/+37
| | | | | | | | | | | | | Not tagged yet in case it should not go in 3.2. Look for the unix find command in a list of directories instead of in only one place. This way Jeff can install cygwin in c:\tools\cygwin and Ken can have it in C:\cygwin. The two places in the list are for those two possibilities. c:\cygwin\bin and c:\tools\cygwin\bin. Move some prints below where logging starts, so the messages will be in the log. Ticket: new Target_Version: 1.6.1 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19534 dc483132-0cff-0310-8789-dd5450dbe970
* profile stores empty string values without double quotesJeffrey Altman2007-04-251-2/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | prof_parse.c (need_double_quotes): The profile library will happily read in right hand values that represent the empty string by parsing "". However, when storing the same empty string back to a file, the empty string is written without the double quotes. This means that [section] foo = "" becomes [section] foo = which is invalid input. A subsequent attempt to parse the profile will result in an invalid input error. KFW and KFM's realm editors can inadvertently produce an invalid krb5 profile if one of the ignored sections of the input profile contains a right hand value that is "". This patch was produced by Asanka Herath and it was reviewed by jaltman and lxs. ticket: new tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19529 dc483132-0cff-0310-8789-dd5450dbe970
* race condition in referrals fallbackTom Yu2007-04-251-0/+1
| | | | | | | | | | | | | | | | | * src/lib/krb5/krb/gc_frm_kdc.c (krb5_get_cred_from_kdc_opt): During referrals fallback, set *tgts to NULL after freeing. This avoids returning a pointer to freed memory when the first call to do_traversal() obtains some TGTs and the subsequent krb5_cc_retrieve_cred() of the final-hop TGT succeeds (due to some other thread or process storing that TGT into the ccache), causing second do_traversal() call (which would re-initialize *tgts) to not execute. Race condition found during KfW-3.2 testing. ticket: new target_version: 1.6.2 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19526 dc483132-0cff-0310-8789-dd5450dbe970
* Optimize file/directory pruningKevin Koch2007-04-235-32/+23
| | | | | | | | | | | | | | | | | Not tagged yet so it can be evaluated first. Consolidate find and rm operations in prunefiles.pl as suggested by Ken. Remove pruning of SDK files. This hasn't been needed since the installer builds moved from staging to temp directories. Remove debug statement not cleaned up previously. Add a troubleshooting tip to the doc. Ticket: new Target_Version: 1.6.1 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19521 dc483132-0cff-0310-8789-dd5450dbe970
* remove debugging code accidentally left in ftp/cmds.cKen Raeburn2007-04-231-11/+0
| | | | | | | | | | | | | | | Debugging code I added months ago in ftp/cmds.c and forgot to remove has apparently escaped notice until now. Markus Moeller reports seeing a bunch of "cmds.c: at line (number)" lines printed when he connects to a server. This patch removes those lines. A couple other debugging statements that test for the debug flag being set on the command line are left in. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19520 dc483132-0cff-0310-8789-dd5450dbe970
* Add /REPOSITORY EXPORT optionKevin Koch2007-04-203-79/+89
| | | | | | | | | | | | | | | | Adjust abbreviations: /svntag is now 't' so /src can be 's' so /repository can have the abbreviation 'r.' Process /NOLOG. Write out ignored command line options as ones being passed to NMAKE (via build.pl). Generate GetOptions argument from the <Config> section of the config.xml file. Ticket: new Tags: Pullup Target_Version: 1.6.1 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19513 dc483132-0cff-0310-8789-dd5450dbe970
* Don't use sendmsg/recvmsg paths if CMSG_SPACE isn't definedKen Raeburn2007-04-201-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19510 dc483132-0cff-0310-8789-dd5450dbe970
* Modify Unix find test to only check the current directory for the ↵Kevin Koch2007-04-191-1/+1
| | | | | | | | | | | | non-existent a.tmp When the pismere area is under the script area (as in Jeff's setup on afs), the find test slogs through 100MB of files and occasionally finds an a.tmp. This correct the erroneous 'unix find not found' errors and improves performance noticeably when using afs. Ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19509 dc483132-0cff-0310-8789-dd5450dbe970
* Rollback previous change. This version is the same as R19472Kevin Koch2007-04-191-61/+261
| | | | | | | | Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19507 dc483132-0cff-0310-8789-dd5450dbe970
* More NIM Developer documentation updatesJeffrey Altman2007-04-185-80/+124
| | | | | | | | | | | | | | Revisions to the plug-in architecture documentation. Adds a graphic showing the plug-in architecture Defines "ALIASES" in the Makefile so that the current NIM API Version number will be used within the docs at build time. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19490 dc483132-0cff-0310-8789-dd5450dbe970
* Factor repository access out of bkw.pl into repository1.plKevin Koch2007-04-184-261/+340
| | | | | | | | | | | | Modify bkw.pl to use an initial config file to fetch the sources and then use the config file from those sources to do the build. This way, the description of how to build the sources is in the config file that is part of the sources. It is possible and probably reasonable for the initial config file to be the same as the tagged version. Output all the options used. Add bootstrap.xml - a sample minimal config file, sufficient to fetch the sources from a repository. Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19489 dc483132-0cff-0310-8789-dd5450dbe970
* kfwlogon corrections for XPJeffrey Altman2007-04-181-9/+11
| | | | | | | | | | | | | | | | | | This patch addresses a problem discovered on some XP systems. After rundll32.exe starts, the CreateProcess can fail to start kfwcpcc.exe if the current directory is not %WinDir%\System32. CreateProcess() should be called with the lpApplicationName parameter set to NULL in order to permit the use of the PATH. Also, in ConfigureLogonScript ensure that the trailing NUL of the constructed command line is processed when producing the wide character version of the string. ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19488 dc483132-0cff-0310-8789-dd5450dbe970
* updates for NIM developer documentationJeffrey Altman2007-04-1718-229/+417
| | | | | | | | | | | | | | | | | | | | | | | | | | | Add the use of Tabs and Frames to the resulting output (doxyfile.cfg) Stylesheet changes to improve readability (stylesheet.css) Copyright updates (all files) Language Editing (all files) Version History (main_page.h) There are still a number of missing sections that need to be filled in as time permits: - Writing the dialog procedure for a cred type panel - Credential messages - configuration provider details - Actions - Menus ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19481 dc483132-0cff-0310-8789-dd5450dbe970
* In testing it has been observed that remote desktop connectionsJeffrey Altman2007-04-173-7/+93
| | | | | | | | | | | | | | | will execute the NPLogonNotify function but if the logon is re-connecting to an existing session, the LogonScript is ignored. This leaves orphaned credential cache files. This commit adds a function, KFW_cleanup_orphaned_caches, which is called by NPLogonNotify to delete any orphaned cache files. An orphaned cache file is one that is older than five minutes. ticket: 5532 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19477 dc483132-0cff-0310-8789-dd5450dbe970
* KFW Network Provider ImprovementsJeffrey Altman2007-04-173-57/+51
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Change event log name from "KFW Logon" to "MIT Kerberos". This is being done to avoid confusion with the "KFW Logon" functionality that was provided by older versions of OpenAFS. (kfwlogon.h) Remove logging of the inability to access the "Debug" registry value. On Vista, kfwlogon.dll is no longer loaded by winlogin.exe. Instead it is loaded by mpnotify.exe which is spawned once for each logon request. (kfwcommon.c) Add a test to ensure that RegisterEventSource succeeded before calling ReportEvent. (kfwcommon.c) Absolutely make sure that krb5_init_context() succeeded before calling any other krb5 functions. (kfwcommon.c) Add a comment explaining why NPGetCaps() says we are a file system even though we are not. "It won't work otherwise." (kfwlogon.c) Change all comparisions for Windows Station and AuthentInfoType names to case insensitive comparisons. Vista does not use the same case as XP. (kfwlogon.c) Change the requested access to the temporary cache file from "All" to "Read | Delete" when importing its contents into the API cache. Otherwise, the access test will fail on Vista. (kfwlogon.c) ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19476 dc483132-0cff-0310-8789-dd5450dbe970
* Add the new kadm5srv function krb5_get_principal_keys to the export listRuss Allbery2007-04-163-5/+17
| | | | | | | | | | Build a separate copy of kadmin/cli/keytab.c for kadmin.local that exposes the -norandkey flag in a way that doesn't require the compiler support -c and -o at the same time. Ticket: 914 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19475 dc483132-0cff-0310-8789-dd5450dbe970
* Add support for extracting existing keys from the KDC with kadmin.local.Russ Allbery2007-04-164-2/+112
| | | | | | | | | | Adds a -norandkey option to the ktadd command only in kadmin.local, and adds a new function to the libkadm5srv library that kadmin.local can call. There is no protocol or network access to this function. Ticket: 914 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19474 dc483132-0cff-0310-8789-dd5450dbe970
* The about dialog box did not respond to Alt-F4 because the Jeffrey Altman2007-04-151-0/+5
| | | | | | | | WM_CLOSE message was not being processed. ticket: 5530 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19473 dc483132-0cff-0310-8789-dd5450dbe970
* Leave built installers in their temp areas and change final copy step to ↵Kevin Koch2007-04-142-18/+17
| | | | | | | | | | copy them into <out> from their new location. Delay cleaning up the temp areas until after that copy Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19472 dc483132-0cff-0310-8789-dd5450dbe970
* Add resource data windows/version.rc for:Jeffrey Altman2007-04-1414-76/+285
| | | | | | | | | | | | | | | | | | | | | kinit.exe, klist.exe, kdestroy.exe, kvno.exe kdeltkt.exe, kcpytkt.exe, kfwlogon.dll, kfwcpcc.exe gss-client.exe, gss-server.exe, kpasswd.exe Remove resource files: kfwcpcc.rc kfwlogon.rc and use windows/version.rc in their place Add resource make rules to Makefile.in files included in this commit Add missing _VC_MANIFEST_EMBED_EXE rule to kpasswd/Makefile.in Comment out addition Windows only make rules with ##WIN32## ticket: 5529 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19471 dc483132-0cff-0310-8789-dd5450dbe970
* Implement environment variable settings from the config xml file. See notes ↵Kevin Koch2007-04-132-2/+8
| | | | | | | | | | in bkwconfig.xml Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19469 dc483132-0cff-0310-8789-dd5450dbe970
* Add vertical scrollbars to realm fields in dialogsJeffrey Altman2007-04-131-2/+2
| | | | | | | | | | | | | | | The obtain new credentials dialog and the change password dialog provide a "Realm" combo-box. These controls were not configured to display a vertical scroll bar if there were more than five realms in the list. Version number remains 1.2.0.2 ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19468 dc483132-0cff-0310-8789-dd5450dbe970
* Add BUILD_KFW=1 & DEBUG_SYMBOL=1 to build.pl invocation.Kevin Koch2007-04-131-8/+8
| | | | | | | | | | Align setting of RELEASE/DEBUG/BETA with release notes. Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19465 dc483132-0cff-0310-8789-dd5450dbe970
* TypoKevin Koch2007-04-131-1/+1
| | | | | | | | Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19464 dc483132-0cff-0310-8789-dd5450dbe970
* Remove redundant check for null pointerKen Raeburn2007-04-131-1/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19462 dc483132-0cff-0310-8789-dd5450dbe970
* Add a few comments on k5_mutex_t handlingKen Raeburn2007-04-131-1/+18
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19460 dc483132-0cff-0310-8789-dd5450dbe970
* update copyrightKen Raeburn2007-04-131-1/+1
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19459 dc483132-0cff-0310-8789-dd5450dbe970
* sdkfiles.xml - add msi-deployment-guide.txtJeffrey Altman2007-04-132-1/+3
| | | | | | | | | copyfiles.xml - add msi-deployment-guide.txt and do not copy netiddev.chm twice ticket: 5527 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19458 dc483132-0cff-0310-8789-dd5450dbe970
* Revert previous change; krb5int_cm_call_select is used by the KDC, and shouldKen Raeburn2007-04-131-7/+8
| | | | | | | | | return when interrupted by a signal. Instead, check for EINTR in service_fds and call krb5int_cm_call_select again. ticket: 5440 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19457 dc483132-0cff-0310-8789-dd5450dbe970
* Produce a more informative error message for KDC_UNREACH with KDC not respondingKen Raeburn2007-04-131-2/+11
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19456 dc483132-0cff-0310-8789-dd5450dbe970
* Provide more detailed error message for 'client not found in kdb'Ken Raeburn2007-04-131-0/+17
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19455 dc483132-0cff-0310-8789-dd5450dbe970
* kfw build - include netidmgr_userdoc.pdf in zip fileJeffrey Altman2007-04-131-0/+1
| | | | | | | | | | | Include netidmgr_userdoc.pdf in zip file. The leash_userdoc.pdf should be pulled from the zip when leash32.exe is removed. ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19454 dc483132-0cff-0310-8789-dd5450dbe970
* Clean up usage message a littleKen Raeburn2007-04-131-3/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19453 dc483132-0cff-0310-8789-dd5450dbe970
* If select returns EINTR, recompute the expiration time and call it againKen Raeburn2007-04-131-1/+5
| | | | | | | ticket: 5440 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19452 dc483132-0cff-0310-8789-dd5450dbe970
* Only copy install/[wix|nsi] areas into install builder temp areas.Kevin Koch2007-04-131-20/+19
| | | | | | | | | | Write site-local files to those temp areas. Now tagged files stay in the staging area and are incorporated into the installers. The substituted files are only in the installer build temp areas. Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19451 dc483132-0cff-0310-8789-dd5450dbe970
* NIM - Fix taskbar button visibility on VistaJeffrey Altman2007-04-123-4465/+4455
| | | | | | | | | | | | | | Although the Platform SDK docs suggest using ITaskbarList to add/remove a taskbar button on the fly, it doesn't work on Vista. Instead we will just set the window style to use WS_EX_APPWINDOW and be done with it. No change in the NIM version number. ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19440 dc483132-0cff-0310-8789-dd5450dbe970
* Locate unixfind correctly in $config, againKevin Koch2007-04-121-1/+1
| | | | | | | | Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19434 dc483132-0cff-0310-8789-dd5450dbe970
* Locate unixfind correctly in $configKevin Koch2007-04-121-1/+1
| | | | | | | | Target_Version: 1.6.1 Ticket: 5521 Tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19433 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-01-20 08:37:23 +0000