sssd.git/src/util/crypto/libcrypto, branch subdomfo sssd with jhrozek's patches CRYPTO: Use unprefixed version of function stpncpy 2014-05-18T03:40:57+00:00 Lukas Slebodnik lslebodn@redhat.com 2014-05-17T16:34:23+00:00 83e1ea9e24aabe6ade180649ecfc9c253ad19395 glibc contains two versions of finction stpncpy sh-4.2$ nm --dynamic --defined-only /lib64/libc.so.6 | grep stpncpy 0000003ce1c89b00 i stpncpy 0000003ce1c89b00 i __stpncpy 0000003ce1d040a0 T __stpncpy_chk We should use more portable version of stpncpy without prefix with underscores. The function __stpncpy was used in initial veersion e65c65fc710fa030bfb8319efc43fcdc9ce5a26f, which was based on http://people.redhat.com/drepper/SHA-crypt.txt Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> 
glibc contains two versions of finction stpncpy
sh-4.2$ nm --dynamic --defined-only /lib64/libc.so.6 | grep stpncpy
0000003ce1c89b00 i stpncpy
0000003ce1c89b00 i __stpncpy
0000003ce1d040a0 T __stpncpy_chk

We should use more portable version of stpncpy without prefix with underscores.

The function __stpncpy was used in initial veersion
e65c65fc710fa030bfb8319efc43fcdc9ce5a26f, which was based on
http://people.redhat.com/drepper/SHA-crypt.txt

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
CRYPTO: Fix access to uninitialized data 2014-04-28T20:14:23+00:00 Lukas Slebodnik lslebodn@redhat.com 2014-03-18T17:29:43+00:00 9faab6d48145d3a0d7b9a225ed35bdcaa32eca2c The size of output buffer(obufsize) was longer than initialised data. In calculation, uint32_t was used for length of the cryptotext, but uint16_t was written into buffer. The end of buffer was not initialised and it caused valgrind warning. Use of uninitialised value of size 8 at 0x37AE40F363: pl_base64_encode_buffer (nssb64e.c:180) by 0x37AE40F6ED: NSSBase64_EncodeItem_Util (nssb64e.c:482) by 0x37AE40F87A: BTOA_DataToAscii_Util (nssb64e.c:721) by 0x40208A: sss_base64_encode (nss_base64.c:47) by 0x403305: sss_password_encrypt (nss_obfuscate.c:358) Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> 
The size of output buffer(obufsize) was longer than initialised data.
In calculation, uint32_t was used for length of the cryptotext,
but uint16_t was written into buffer. The end of buffer was not initialised
and it caused valgrind warning.

 Use of uninitialised value of size 8
    at 0x37AE40F363: pl_base64_encode_buffer (nssb64e.c:180)
    by 0x37AE40F6ED: NSSBase64_EncodeItem_Util (nssb64e.c:482)
    by 0x37AE40F87A: BTOA_DataToAscii_Util (nssb64e.c:721)
    by 0x40208A: sss_base64_encode (nss_base64.c:47)
    by 0x403305: sss_password_encrypt (nss_obfuscate.c:358)

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Make DEBUG macro invocations variadic 2014-02-12T21:30:55+00:00 Nikolai Kondrashov Nikolai.Kondrashov@redhat.com 2014-02-12T15:12:04+00:00 a3c8390d19593b1e5277d95bfb4ab206d4785150 Use a script to update DEBUG macro invocations to use it as a variadic macro, supplying format string and its arguments directly, instead of wrapping them in parens. This script was used to update the code: grep -rwl --include '*.[hc]' DEBUG . | while read f; do mv "$f"{,.orig} perl -e \ 'use strict; use File::Slurp; my $text=read_file(\*STDIN); $text=~s#(\bDEBUG\s*\([^(]+)\((.*?)\)\s*\)\s*;#$1$2);#gs; print $text;' < "$f.orig" > "$f" rm "$f.orig" done Reviewed-by: Jakub Hrozek <jhrozek@redhat.com> Reviewed-by: Stephen Gallagher <sgallagh@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com> 
Use a script to update DEBUG macro invocations to use it as a variadic
macro, supplying format string and its arguments directly, instead of
wrapping them in parens.

This script was used to update the code:

grep -rwl --include '*.[hc]' DEBUG . |
    while read f; do
        mv "$f"{,.orig}
        perl -e \
            'use strict;
             use File::Slurp;
             my $text=read_file(\*STDIN);
             $text=~s#(\bDEBUG\s*\([^(]+)\((.*?)\)\s*\)\s*;#$1$2);#gs;
             print $text;' < "$f.orig" > "$f"
        rm "$f.orig"
    done

Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Stephen Gallagher <sgallagh@redhat.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Include header file in implementation module. 2013-09-24T13:15:41+00:00 Lukas Slebodnik lslebodn@redhat.com 2013-09-21T17:10:13+00:00 5cd4414fce1e0eb4133dfc6fc828bf25c8a959f9 Declarations of public functions was in header files, but header files was not included in implementation file. 
Declarations of public functions was in header files,
but header files was not included in implementation file.
UTIL: Create new wraper header file sss_endian.h 2013-08-28T20:02:49+00:00 Lukas Slebodnik lslebodn@redhat.com 2013-08-28T06:31:17+00:00 1658c567191c35beaddffafdb079abe33248037b Some platform have header file endian.h and anothers have sys/endian.h. We nedd to use conditional build to handle it correctly, therefore new header file sss_endian.h was created. 
Some platform have header file endian.h and anothers have sys/endian.h.
We nedd to use conditional build to handle it correctly, therefore new header
file sss_endian.h was created.
libcrypto fully implemented 2012-06-26T13:01:26+00:00 George McCollister George.McCollister@gmail.com 2012-06-19T17:36:28+00:00 e07a94a66985b674c5df11ca466792902164c4e2 Implemented working versions of the following functions for libcrypto: sss_base64_encode sss_base64_decode sss_hmac_sha1 sss_password_encrypt sss_password_decrypt test_encrypt_decrypt now expects EOK from libcrypto. test_hmac_sha1 now expects EOK from libcrypto. Added test_base64_encode to test base64 encoding implementation. Added test_base64_decode to test base64 decoding implementation. Signed-off-by: George McCollister <George.McCollister@gmail.com> 
Implemented working versions of the following functions for libcrypto:
 sss_base64_encode
 sss_base64_decode
 sss_hmac_sha1
 sss_password_encrypt
 sss_password_decrypt

test_encrypt_decrypt now expects EOK from libcrypto.
test_hmac_sha1 now expects EOK from libcrypto.
Added test_base64_encode to test base64 encoding implementation.
Added test_base64_decode to test base64 decoding implementation.

Signed-off-by: George McCollister <George.McCollister@gmail.com>
UTIL: Add HMAC-SHA-1 function 2012-04-24T13:50:56+00:00 Jan Cholasta jcholast@redhat.com 2012-04-17T15:03:23+00:00 b35f20cd8ecdc8308a3201e55752fb0443ec6ae4 






UTIL: Provide base64 encoding and decoding functions
2012-02-06T23:26:57+00:00

Jan Cholasta
jcholast@redhat.com

2012-02-03T21:10:17+00:00

c7919a4fe41133cc466aa3d9431bfceee5784e7b












Set _GNU_SOURCE globally
2011-05-23T14:57:44+00:00

Sumit Bose
sbose@redhat.com

2011-05-19T07:58:09+00:00

324fb26ba803a999bedc29e93c46c84f27abf5b7












Password obfuscation utility functions
2010-09-08T13:36:21+00:00

Jakub Hrozek
jhrozek@redhat.com

2010-08-02T14:53:28+00:00

69aaef8719c5cf33ed1c4090fa313ba281bf8a02

Adds two utility functions to obfuscate a password and inverse to
extract the cleartext password back.

So far, only NSS-based implementation is provided.





Adds two utility functions to obfuscate a password and inverse to
extract the cleartext password back.

So far, only NSS-based implementation is provided.