krb5.git/src/plugins/kdb, branch keyring MIT Kerberos patches Improve LDAP KDB initialization error messages 2013-10-30T16:38:03+00:00 Greg Hudson ghudson@mit.edu 2013-10-28T15:23:11+00:00 5a77bb85294f37d1dfa4c7faedfdfb0d7faaf8dc In krb5_ldap_initialize, don't just blat the LDAP error into the extended message; give an indication of which LDAP operation we were trying to do and show what parameters we gave to it. (Also, krb5_set_error_message can handle a null context argument, so don't bother to check before calling.) ticket: 7739 (new) target_version: 1.12 tags: pullup 
In krb5_ldap_initialize, don't just blat the LDAP error into the
extended message; give an indication of which LDAP operation we were
trying to do and show what parameters we gave to it.

(Also, krb5_set_error_message can handle a null context argument, so
don't bother to check before calling.)

ticket: 7739 (new)
target_version: 1.12
tags: pullup
Avoid allocating zero key_data structures 2013-07-15T16:20:26+00:00 Greg Hudson ghudson@mit.edu 2013-07-15T16:20:26+00:00 d9457b501cbab535e5968dbdf195ca334b9fa555 When we allocate space for an array of key_data structures, make sure we allocate at least one, so we don't spuriously fail on platforms where malloc(0) returns NULL. Where we use malloc, use k5calloc instead. Where we use krb5_db_alloc or realloc, just allocate an extra entry. 
When we allocate space for an array of key_data structures, make sure
we allocate at least one, so we don't spuriously fail on platforms
where malloc(0) returns NULL.  Where we use malloc, use k5calloc
instead.  Where we use krb5_db_alloc or realloc, just allocate an
extra entry.
Use k5calloc instead of k5alloc where appropriate 2013-07-12T00:39:51+00:00 Greg Hudson ghudson@mit.edu 2013-07-12T00:39:51+00:00 443ce5fef316e3dc324fe84557a06b069dbe33f9 Wherever we use k5alloc with a multiplication in the size parameter,, use the new k5calloc helper function instead. 
Wherever we use k5alloc with a multiplication in the size parameter,,
use the new k5calloc helper function instead.
Fix various warnings 2013-06-07T19:19:37+00:00 Greg Hudson ghudson@mit.edu 2013-06-07T19:17:31+00:00 e51c089b745161dd6e1d64998e99d065fc22377e 






Fix warnings in dbtest.c
2013-05-31T17:04:58+00:00

Gilles Espinasse
g.esp@free.fr

2013-05-31T17:04:36+00:00

3662723a2857a3ad42cb267044e29f516232cdf7

Check return values of read() and write().  Avoid some unsigned
comparisons.  Cast a ptrdiff_t value to int for use with %d in a
format string.

[ghudson@mit.edu: rewrap long lines; fix one more warning; commit
message]





Check return values of read() and write().  Avoid some unsigned
comparisons.  Cast a ptrdiff_t value to int for use with %d in a
format string.

[ghudson@mit.edu: rewrap long lines; fix one more warning; commit
message]







Link dbtest with libkrb5support
2013-05-31T16:47:34+00:00

Greg Hudson
ghudson@mit.edu

2013-05-31T16:47:34+00:00

ea20e248dc2ba4d843a1e536e649c901c1c3f5b2

In a static build, linking dbtest could fail on platforms where libdb2
depends on krb5support (platforms without a native mkstemp).  Reported
by Gilles Espinasse <g.esp@free.fr>.

ticket: 7651





In a static build, linking dbtest could fail on platforms where libdb2
depends on krb5support (platforms without a native mkstemp).  Reported
by Gilles Espinasse <g.esp@free.fr>.

ticket: 7651







Reduce boilerplate in makefiles
2013-05-17T00:09:27+00:00

Greg Hudson
ghudson@mit.edu

2013-05-16T18:21:12+00:00

4b0985f8573840838bcfa8ec1df3dcd39a3dbf15

Provide default values in pre.in for PROG_LIBPATH, PROG_RPATH,
SHLIB_DIRS, SHLIB_RDIRS, and STOBJLISTS so that they don't have to be
specified in the common case.  Rename KRB5_RUN_ENV and KRB5_RUN_VARS
to RUN_SETUP (already the most commonly used name) and RUN_VARS.  Make
sure to use DEFINES for local defines (not DEFS).  Remove some other
unnecessary makefile content.





Provide default values in pre.in for PROG_LIBPATH, PROG_RPATH,
SHLIB_DIRS, SHLIB_RDIRS, and STOBJLISTS so that they don't have to be
specified in the common case.  Rename KRB5_RUN_ENV and KRB5_RUN_VARS
to RUN_SETUP (already the most commonly used name) and RUN_VARS.  Make
sure to use DEFINES for local defines (not DEFS).  Remove some other
unnecessary makefile content.







Assume mutex locking cannot fail
2013-05-14T17:31:41+00:00

Greg Hudson
ghudson@mit.edu

2013-05-10T18:01:48+00:00

6350fd0c909d84c00200885e722cc902049ada05

Locking and unlocking a non-recursive mutex is a simple memory
operation and should not fail on any reasonable platform with correct
usage.  A pthread mutex can return EDEADLK on lock or EPERM on unlock,
or EINVAL if the mutex is uninitialized, but all of these conditions
would reflect serious bugs in the calling code.

Change the k5_mutex_lock and k5_mutex_unlock wrappers to return void
and adjust all call sites.  Propagate this change through
k5_cc_mutex_lock and k5_cc_mutex_unlock as well.





Locking and unlocking a non-recursive mutex is a simple memory
operation and should not fail on any reasonable platform with correct
usage.  A pthread mutex can return EDEADLK on lock or EPERM on unlock,
or EINVAL if the mutex is uninitialized, but all of these conditions
would reflect serious bugs in the calling code.

Change the k5_mutex_lock and k5_mutex_unlock wrappers to return void
and adjust all call sites.  Propagate this change through
k5_cc_mutex_lock and k5_cc_mutex_unlock as well.







Fix type mismatch in db2_exp.c
2013-05-10T19:03:25+00:00

Greg Hudson
ghudson@mit.edu

2013-05-10T19:03:25+00:00

1e8ec647b9c3ee20298245fb7958fe6fbeb81619

The locking wrapper for audit_as_req used the wrong function
signature, which was harmless but produced a couple of warnings.  Fix
it.





The locking wrapper for audit_as_req used the wrong function
signature, which was harmless but produced a couple of warnings.  Fix
it.







Improve LDAP password file error messages
2013-05-08T19:55:58+00:00

Greg Hudson
ghudson@mit.edu

2013-05-08T19:55:58+00:00

0a4b14260ca6a99b91558bb9fd8ecea32004a5c8

If we cannot open the LDAP password file or cannot find the bind DN in
it, include the filename and DN in the error message.

ticket: 7632





If we cannot open the LDAP password file or cannot find the bind DN in
it, include the filename and DN in the error message.

ticket: 7632