oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity
30,029 Commits 2 Branches 2 Tags
ef9bb8850e46dcdca2d2c74b89b5fb249b914807
Commit Graph

115 Commits

Author SHA1 Message Date
Luke Howard
fcff5933ad kdc: rename windc to kdc plugin 
Rename the "windc" plugin API to the more general "kdc" plugin API, for two
reasons: the Heimdal KDC uses the Windows PAC even when not emulating a domain
controller, and the plugin API has accreted methods that are not specific to
emulating a domain controller (such as referral_policy and finalize_reply).
 2022-01-03 16:17:01 +11:00
Nicolas Williams
90899b2361 kdc: parse_bytes() returns ssize_t 2021-12-18 11:34:12 +11:00
Nicolas Williams
1ae941af9b roken_detach_prep() should return fd 2019-10-03 13:09:18 -05:00
Nicolas Williams
5f2e4fb368 kdc: add --testing option for leak testing 
The kdc nowadays forks and restarts worker children.  This is nice, but
for leak checking in tests on OS X with leak(1) we really need the
worker to be the one process.
 2016-12-06 22:44:23 -06:00
Viktor Dukhovni
529a91d69a MacOS/X fixes 2016-06-09 01:13:14 -04:00
Nicolas Williams
b48bed5f42 Daemons detach atomically to avoid having to wait 
Tests that start daemons have to "wait" for them to start.

This commit makes Heimdal daemons prep to detach (when requested) by
forking early, then having the child signal readiness to the parent when
the child really is ready.  The parent exits only which the child is
ready.  This means that tests will no longer need to wait for daemons.

However, tests will still need a pidfile or such so they can stop the
daemons.

Note that the --detach options should not be used on OS X from launchd,
only from tests.
 2015-03-24 11:49:59 -05:00
Roland C. Dowdeswell
cc47c8fa7b Turn on -Wextra -Wno-sign-compare -Wno-unused-paramter and fix issues. 
We turn on a few extra warnings and fix the fallout that occurs
when building with --enable-developer.  Note that we get different
warnings on different machines and so this will be a work in
progress.  So far, we have built on NetBSD/amd64 5.99.64 (which
uses gcc 4.5.3) and Ubuntu 10.04.3 LTS (which uses gcc 4.4.3).

Notably, we fixed

	1.  a lot of missing structure initialisers,

	2.  unchecked return values for functions that glibc
	    marks as __attribute__((warn-unused-result)),

	3.  made minor modifications to slc and asn1_compile
	    which can generate code which generates warnings,
	    and

	4.  a few stragglers here and there.

We turned off the extended warnings for many programs in appl/ as
they are nearing the end of their useful lifetime, e.g.  rsh, rcp,
popper, ftp and telnet.

Interestingly, glibc's strncmp() macro needed to be worked around
whereas the function calls did not.

We have not yet tried this on 32 bit platforms, so there will be
a few more warnings when we do.
 2012-02-20 19:45:41 +00:00
Love Hörnquist Åstrand
503266c4a3 use json to drive kdc-tester 2011-11-21 20:34:35 -08:00
Love Hornquist Astrand
0879b9831a remove trailing whitespace 2011-05-21 11:57:31 -07:00
Love Hornquist Astrand
657297a738 clean the last bits of KRB4 support in KDC 2011-05-07 11:44:15 -07:00
Love Hornquist Astrand
f5f9014c90 Warning fixes from Christos Zoulas 
- shadowed variables
- signed/unsigned confusion
- const lossage
- incomplete structure initializations
- unused code
 2011-04-29 20:25:05 -07:00
Andrew Bartlett
b819f1fe2b Push PKINIT configuration into default_config.c 
The interaction with Samba4 is subtle - it calls
krb5_kdc_get_config(), but not configure() - but must have PKINIT set
up.

Andrew Bartlett

Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2010-11-28 19:45:18 -08:00
Asanka C. Herath
880d728e02 Un-const as necessary to silence compiler warnings 2010-11-24 15:33:07 -05:00
Joerg Pulz
03dfe132d0 Make build w/o PKINIT 
Signed-off-by: Love Hornquist Astrand <lha@h5l.org>
 2010-10-18 08:28:42 -07:00
Love Hornquist Astrand
dde9ae659b drop RCSID 2010-03-16 12:50:09 -07:00
Love Hornquist Astrand
55db6909fe _kdc_pk_initialize needs to be exported for kdc-replay 
prompted by patch from Gabor Gombas <gombasg@sztaki.hu>
 2009-11-25 05:08:44 -08:00
Love Hornquist Astrand
2c14216733 don't override configuration if there is one 2009-11-22 08:41:10 -08:00
Love Hornquist Astrand
4d48b172ab add pkinit configration for btmm 2009-11-22 00:28:13 -08:00
Love Hornquist Astrand
6fada85f78 if the UDP packet is truncated, return too packet large 2009-09-16 16:06:11 -07:00
Love Hornquist Astrand
6061cb5ee7 use max_request_str instead of max_request 2009-09-16 16:00:47 -07:00
Love Hornquist Astrand
3634423f36 Allow specifying runing user and chroot() enviroment 
Allow the admin to switch the user the kdc is running under and
specify the chroot() directory to run in.

Please note you need a very special setup to get this working.
 2009-07-16 22:15:26 -07:00
Love Hörnquist Åstrand
62f1b2e2dd wrap detach 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24412 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2009-01-25 00:39:55 +00:00
Love Hörnquist Åstrand
6937d41a02 remove trailing whitespace 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23815 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 09:21:03 +00:00
Love Hörnquist Åstrand
e172367898 switch to utf8 encoding of all files 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@23814 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2008-09-13 08:53:55 +00:00
Love Hörnquist Åstrand
7499adde08 Use hdb_db_dir(). 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@22248 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-12-08 23:52:12 +00:00
Love Hörnquist Åstrand
c561d08c04 export get_dbinfo as krb5_kdc_set_dbinfo and call from users. This to allows libkdc users to to specify their own databases 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@21110 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-18 10:52:20 +00:00
Love Hörnquist Åstrand
35a6f8ed22 Pick up request_log from [kdc]kdc-request-log. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20951 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-06-07 03:08:39 +00:00
Love Hörnquist Åstrand
628db42656 rename windc_init to krb5_kdc_windc_init 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20559 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-24 16:00:07 +00:00
Love Hörnquist Åstrand
ea47402577 Use krb5_kdc_get_config and just fill in what the users wanted differently. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20533 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-23 07:47:56 +00:00
Love Hörnquist Åstrand
6f469b4af4 remove code that depend on kerberos 4 library 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20456 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-19 20:29:42 +00:00
Love Hörnquist Åstrand
7a339bab7d revert 20447, it doesnt pass the regression tests, exports too much 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20454 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-19 20:21:51 +00:00
Love Hörnquist Åstrand
0c2182a3ba Call out to Heimdal's krb5.conf processing to configure many aspects 
of KDC behaviour.  This should allow PKINIT to be turned on and
managed with reasonable sanity.

From Andrew Bartlet



git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@20447 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-04-19 18:22:41 +00:00
Love Hörnquist Åstrand
2df6875132 Parse kx509/kca configuration. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19908 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-14 23:12:51 +00:00
Love Hörnquist Åstrand
809368fb9e spelling 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19641 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-03 18:52:45 +00:00
Love Hörnquist Åstrand
69bd8c0b81 Init callbacks for emulating a Windows Domain Controller. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19628 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2007-01-03 15:35:31 +00:00
Love Hörnquist Åstrand
c4b7508854 code to parse [kdc]enable-kx509 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19550 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-28 21:07:35 +00:00
Love Hörnquist Åstrand
fb1c8392d1 Prefix internal symbol with _kdc_. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19507 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-26 17:18:14 +00:00
Love Hörnquist Åstrand
b54d2595c5 Parse digest acl's 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19500 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-12-26 12:49:34 +00:00
Love Hörnquist Åstrand
c4cd047939 Make all pkinit options prefixed with pkinit_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19089 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-21 19:57:33 +00:00
Love Hörnquist Åstrand
8466eac79d revert the enable-pkinit change, and make it consistant with all other 
other enable- options


git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19075 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-19 04:16:49 +00:00
Love Hörnquist Åstrand
5b7701514e Make all pkinit options prefixed with pkinit_ 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19069 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-11-17 22:27:01 +00:00
Love Hörnquist Åstrand
3f3792b7a7 check for [kdc]max-kdc-datagram-reply-length 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@18383 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-10-09 15:35:36 +00:00
Love Hörnquist Åstrand
2efd79caef (configure): Add enable_digest, default off 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17911 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-08-24 08:51:40 +00:00
Love Hörnquist Åstrand
4c970b550e Avoid shadowing. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17579 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-13 21:22:55 +00:00
Love Hörnquist Åstrand
a276f37c56 read [kdc]pki-kdc-ocsp 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17412 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-05-03 12:02:55 +00:00
Love Hörnquist Åstrand
538658a4e5 unbreak 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17113 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-20 18:17:16 +00:00
Love Hörnquist Åstrand
45fd105a52 Rename pki-chain to pki-pool to match rest of code. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17106 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-20 17:00:18 +00:00
Love Hörnquist Åstrand
6815452550 Added certificate revoke information from configuration file. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17054 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-04-12 13:21:46 +00:00
Love Hörnquist Åstrand
cd6acf1200 Allow passing in related certificates used to build the chain. 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16850 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-03-28 04:38:14 +00:00
Love Hörnquist Åstrand
ca3745e9a4 Fix spelling of "Kungliga Tekniska Högskolan". 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16665 ec53bebd-3082-4978-b11e-865c3cabbd6b
 2006-01-27 13:30:57 +00:00