Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Branch: plugins2
Commits on Sep 1, 2010
  1. Expand the pwqual_plugin.h documentation to tell module implementors

    ghudson authored
    what a pwqual initvt function should look like.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24283 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Aug 31, 2010
  1. Adjust password quality interface documentation slightly.

    ghudson authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24281 dc483132-0cff-0310-8789-dd5450dbe970
  2. Add documentation of the plugins section to krb5.conf.M and

    ghudson authored
    krb5-admin.texinfo, along with documentation of the pwqual interface
    and built-in modules.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24280 dc483132-0cff-0310-8789-dd5450dbe970
  3. For the password quality interface:

    ghudson authored
      * Add a languages argument to the check method to allow localization
        of error messages (currently no languages are ever passed, though).
      * Add an error code KADM5_PASS_Q_GENERIC.
      * In most built-in modules and the combo module, set an error message
        with krb5_set_error_message.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24279 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Aug 30, 2010
  1. Bring back <kadm5/admin.h> as a dependency of <krb5/pwqual_plugin.h> so

    ghudson authored
    that modules can return appropriate error codes.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24278 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Aug 29, 2010
  1. Update the plugins2 branch documentation.

    ghudson authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24271 dc483132-0cff-0310-8789-dd5450dbe970
  2. Update sample password quality module to match new interface. Work

    ghudson authored
    around unresolved issue with error codes by including <kadm5/admin.h>
    for now.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24270 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Aug 28, 2010
  1. Revise the password quality pluggable interface to match the project

    ghudson authored
    page:
    
    * Modules receive the policy name but not the policy object.
    * Enforcement of password policy is out of the interface's scope.
    * Built-in modules are: empty, dict, hesiod, princ.
    * The consumer API loader takes care of open/close, so there is only
      a wrapper function for check.
    
    The project page is at:
    http://k5wiki.kerberos.org/wiki/Projects/Password_quality_pluggable_interface
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24266 dc483132-0cff-0310-8789-dd5450dbe970
  2. Pull in r24264 from trunk to fix a make check build issue.

    ghudson authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24265 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Aug 27, 2010
  1. Add documentation to k5-int.h aimed at developers of new pluggable

    ghudson authored
    interfaces.  Add documentation to pwqual_plugin.h aimed at developers
    of password quality modules.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24262 dc483132-0cff-0310-8789-dd5450dbe970
  2. In the design section of the plugins2 branch documentation, mention

    ghudson authored
    wrapper functions as a component of a pluggable interface consumer
    API.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24261 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Aug 26, 2010
  1. Create specific error codes for plugin-related failures, now that we

    ghudson authored
    have an expansion error table to hold them in.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24260 dc483132-0cff-0310-8789-dd5450dbe970
  2. Merge trunk changes from r24202 to r24258 to plugins2 branch.

    ghudson authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24259 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Aug 24, 2010
  1. k5_ as an internal prefix is now formally okay, so remove that bullet

    ghudson authored
    point in the plugins2 branch README.BRANCH.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24251 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 29, 2010
  1. On the plugins2 branch, improve the generic plugin support so that it

    ghudson authored
    does not dlopen/dlsym modules which would later be filtered out.  Also
    edit README.BRANCH a little.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24217 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 26, 2010
  1. On the plugins2 branch, use function typedefs in pwqual_plugin.h so

    ghudson authored
    that the vtable declaration is tidier.  (This is consistent with the
    preauth plugin interface; the old way was consistent with the DAL.)
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24215 dc483132-0cff-0310-8789-dd5450dbe970
  2. In the plugins2 branch, untabify new files which accidentally used

    ghudson authored
    tabs in indentation.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24214 dc483132-0cff-0310-8789-dd5450dbe970
  3. In the plugins2 branch, rename "init" to "initvt" in all reference to

    ghudson authored
    module vtable initializer functions.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24213 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 23, 2010
  1. Add another note to the "What's wrong with this branch" section of the

    ghudson authored
    plugins2 branch readme.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24206 dc483132-0cff-0310-8789-dd5450dbe970
  2. On the plugins2 branch, add a comment to pwqual_dict.c labeling that

    ghudson authored
    file as a password quality module.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24205 dc483132-0cff-0310-8789-dd5450dbe970
  3. Fix a typo in the plugins2 README.BRANCH file and flesh out the

    ghudson authored
    "what's wrong with" section a bit.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24204 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 22, 2010
  1. Proof of concept code for a candidate plugin framework.

    ghudson authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24203 dc483132-0cff-0310-8789-dd5450dbe970
  2. Create a branch for a proof of concept of a second candidate plugin

    ghudson authored
    framework.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/plugins2@24202 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 21, 2010
  1. ticket: 6749

    ghudson authored
    Addendum to r24200: fix kdb5_ldap_util call site of
    krb5_ldap_lib_init.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24201 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 6749

    ghudson authored
    Revert the part of r24157 which added the dal_version argument to the
    init_library interface.  Instead use the already existing maj_ver
    field of the DAL vtable to detect incompatibilities.  Since maj_ver
    is a short int, use an incrementing number instead of a date for the
    major version.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24200 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 20, 2010
  1. ticket: 6749

    ghudson authored
    Get the kdb_hdb module to compile again.  Probably still buggy,
    particularly around the master key logic.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24193 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 19, 2010
  1. ticket: 6749

    ghudson authored
    In kdb5_util's kdb5_ldap_create(), add back the assignment of
    rblock.key which was erroneously removed in r24162.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24192 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 6751

    ghudson authored
    subject: Allow Microsoft HMAC-MD5 checksum types to use non-RC4 keys
    target_version: 1.8.3
    tags: pullup
    
    In PAC signatures, the hmac-md5 checksum type can be used with AES
    keys.  Make this work by removing the enc field from the hmac-md5 and
    md5-hmac checksum types, and adding a check in
    krb5int_hmacmd5_checksum() for a null key or a key which is longer
    than the hash block size (64 bytes for MD5).  The checksum algorithm
    only uses the key bits; it does invoke the cipher.
    
    The checksum type names are kind of wrong, but we'll leave them alone
    for compatibility.  The descriptions are updated.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24191 dc483132-0cff-0310-8789-dd5450dbe970
  3. In the DAL documentation, describe how a module can supply referral

    ghudson authored
    encrypted padata.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24190 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 15, 2010
  1. ticket: 6749

    ghudson authored
    Add check_allowed_to_delegate to the DAL with a corresponding libkdb5
    API, replacing the last method (CHECK_ALLOWED_TO_DELEGATE) of
    db_invoke.  Remove db_invoke since it no longer has any methods.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24189 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 6749

    ghudson authored
    status: open
    
    Addendum to r24182: Fix a comment referencing the db_invoke
    SIGN_DB_AUTHDATA method.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24188 dc483132-0cff-0310-8789-dd5450dbe970
  3. ticket: 6749

    ghudson authored
    status: open
    
    Add refresh_config to the DAL with a corresponding libkdb5 API,
    replacing the REFRESH_POLICY method of db_invoke.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24187 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jul 13, 2010
  1. ticket: 6749

    ghudson authored
    status: open
    
    Addendum to r24185: make audit_as_req return void, since it's an
    informational method and we're not going to do anything with the
    result.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24186 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 6749

    ghudson authored
    status: open
    
    Add audit_as_req to the DAL with a corresponding libkdb5 API,
    replacing the AUDIT_AS_REQ method of db_invoke.  Remove the
    AUDIT_TGS_REQ method of db_invoke without adding a replacement, as
    there was no KDC support for it.  (It can be added at a later time if
    necessary.)
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24185 dc483132-0cff-0310-8789-dd5450dbe970
  3. ticket: 6749

    ghudson authored
    status: open
    
    Add check_policy_as and check_policy_tgs to the DAL table with
    corresponding libkdb5 APIs, replacing the CHECK_POLICY_AS and
    CHECK_POLICY_TGS methods of db_invoke.
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24184 dc483132-0cff-0310-8789-dd5450dbe970
Something went wrong with that request. Please try again.