summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* 1.0.8nfs-utils-1-0-8originneilbrown2006-04-123-11/+15
|
* 2006-04-10 NeilBrown <neilb@suse.de>neilbrown2006-04-104-7/+21
| | | | | | | | | | | | | Various paranoia checks: gssd_proc.c: pass max_field sizes to sscanf to avoid buffer overflow svcgssd_proc.c: range_check name.length, to ensure name.length+1 doesn't wrap idmapd.c(nfsdcb): make sure at least one byte is read before zeroing the last byte that was read, otherwise memory corruption is possible. Found by SuSE security audit.
* 2006-04-10 "Kevin Coffman" <kwc@citi.umich.edu>neilbrown2006-04-1033-36/+225
| | | | | Check for sufficient version of librpcsecgss and libgssapi in configure.in
* 2006-04-10 "Kevin Coffman" <kwc@citi.umich.edu>neilbrown2006-04-1034-25/+113
| | | | | Update aclocal/tcp-wrappers.m4 to define HAVE_LIBWRAP and HAVE_TCP_WRAPPERS as appropriate.
* Add checking for innetgr back to configure.inneilbrown2006-04-104-2/+9
|
* 2006-04-10 kwc@citi.umich.eduneilbrown2006-04-093-2/+8
| | | | | | | Update calls to gss_export_lucid_sec_context() Change the calls to gss_export_lucid_sec_context() to match the corrected interface definition in libgssapi-0.9.
* 2006-04-10 kwc@citi.umich.eduneilbrown2006-04-092-0/+18
| | | | | | Plug memory leaks in svcgssd Various memory leaks in the svcgssd context processing are eliminated.
* 2006-04-10 kwc@citi.umich.eduneilbrown2006-04-092-33/+53
| | | | | | | Fix memory leak of the AUTH structure on context negotiations Free AUTH structure after completing context negotiation and sending context information to the kernel.
* 2006-04-10 kwc@citi.umich.eduneilbrown2006-04-092-0/+34
| | | | Fix support/include/config.h.in such as would be done be running autoheader.
* aclocal/autoconf/automake, properly this time.neilbrown2006-03-2835-64/+522
|
* Update version, autoconf, automakeneilbrown2006-03-284-71/+125
|
* Use PKGCONFIG to locate gssapi and rpcsecgss header filesneilbrown2006-03-2820-3149/+25
| | | | | | | | | | | Instead of having separate copies of the gssapi and rpcsecgss header files, or depending on the Kerberos gssapi header, locate the headers now installed with the libgssapi and librpcsecgss libraries. Remove local copies of the gssapi and rpcsecgss header files. This depends on the configure_use_autotools patch.
* Add debugging to better detect negotiation of enctype not supported by kernelneilbrown2006-03-282-0/+18
| | | | | | | Print debugging message indicating the type of encryption keys being sent down to the kernel. This should make it easier to detect cases where unsupported encryption types are being negotiated. (really this time)
* Don't close and reopen all pipes on every DNOTIFY signal.neilbrown2006-03-282-36/+99
| | | | | | | | | | From: Vince Busam <vbusam@google.com> Signed-off-by: Kevin Coffman <kwc@citi.umich.edu> Don't unnecessarily close and re-open all pipes after every DNOTIFY signal. These unnecessary closes were triggering a kernel Oops. Original patch modified to correct segfault when unmounting last NFSv4 mount.
* Add option to specify directory to search for credentials cache filesneilbrown2006-03-285-9/+31
| | | | | | | | | From: Vince Busam <vbusam@google.com> Signed-off-by: Kevin Coffman <kwc@citi.umich.edu> Add command line option to specify which directory should be searched to find credentials caches. (really this time)
* Must still use knowledge of the glue context for pre-1.4 versions of MIT krb5neilbrown2006-03-282-1/+21
| | | | | | | | We need to get access to the internal krb5 context pointer for older (pre-1.4) versions of MIT Kerberos. We get a pointer to the gss glue's context. Get the right pointer before accessing the context information. (really this time)
* Remove unused groups variable from get_ids() which was causing a compiler ↵neilbrown2006-03-282-1/+5
| | | | | | warning. (really this time)
* Update krb5 code to use glue routine lucid context functionsneilbrown2006-03-286-19/+43
| | | | | | | | | | | The gssd code should not know about the glue layer's context structure. A previous patch added gss_export_lucid_sec_context() and gss_free_lucid_sec_context() functions to the gssapi glue layer. Use these functions rather than calling directly to the Kerberos gssapi code (which requires the Kerberos context handle rather than the glue's context handle). (really this time)
* add missing files from previous updateneilbrown2006-03-282-0/+514
|
* Separate out context handling code for MIT Kerberos and SPKM3neilbrown2006-03-284-450/+11
| | | | | into their own file. (Really this time)
* User-selectable idmapping cache lifetimeneilbrown2006-03-282-3/+45
| | | | | | Read and process new configuration option, Cache-Expiration, and use the value to determine how long idmapping entries are cached. (Really this time)
* autoconf/automakeneilbrown2006-03-271-10/+10
|
* update version to -rc3neilbrown2006-03-272-1/+4
|
* Fix up the svcgss mess I made, and run autoconf/automakeneilbrown2006-03-2717-3521/+1925
|
* run autoconfneilbrown2006-03-271-0/+2
|
* Add debugging to better detect negotiation of enctype not supported by kernelneilbrown2006-03-261-0/+7
| | | | | | Print debugging message indicating the type of encryption keys being sent down to the kernel. This should make it easier to detect cases where unsupported encryption types are being negotiated.
* Don't close and reopen all pipes on every DNOTIFY signal.neilbrown2006-03-261-0/+8
| | | | | | | Don't unnecessarily close and re-open all pipes after every DNOTIFY signal. These unnecessary closes were triggering a kernel Oops. Original patch modified to correct segfault when unmounting last NFSv4 mount.
* Add option to specify directory to search for credentials cache filesneilbrown2006-03-261-0/+6
| | | | | Add command line option to specify which directory should be searched to find credentials caches.
* Must still use knowledge of the glue context for pre-1.4 versions of MIT krb5neilbrown2006-03-261-0/+8
| | | | | | | We need to get access to the internal krb5 context pointer for older (pre-1.4) versions of MIT Kerberos. We get a pointer to the gss glue's context. Get the right pointer before accessing the context information.
* Remove unused variable causing compile warningneilbrown2006-03-261-0/+5
| | | | Remove unused groups variable from get_ids() which was causing a compiler warning.
* Update krb5 code to use glue routine lucid context functionsneilbrown2006-03-261-0/+10
| | | | | | | | | The gssd code should not know about the glue layer's context structure. A previous patch added gss_export_lucid_sec_context() and gss_free_lucid_sec_context() functions to the gssapi glue layer. Use these functions rather than calling directly to the Kerberos gssapi code (which requires the Kerberos context handle rather than the glue's context handle).
* Separate out context handling code for MIT Kerberos and SPKM3neilbrown2006-03-261-0/+4
| | | | into their own file.
* Consolidate gssd and svcgssd since they share much codeneilbrown2006-03-261-0/+12
| | | | | | | | | | | Remove directory svcgssd which was only created because the old build system could not handle building two daemons in the same directory. This eliminates build complications since gssd and svcgssd also share many source files. This patch effectively removes the utils/svcgssd directory, moving all its files to the utils/gssd directory. File utils/gssd/Makefile.am is modified with directions to build both gssd and svcgssd.
* Use PKGCONFIG to locate gssapi and rpcsecgss header filesneilbrown2006-03-261-0/+12
| | | | | | | | | | | Instead of having separate copies of the gssapi and rpcsecgss header files, or depending on the Kerberos gssapi header, locate the headers now installed with the libgssapi and librpcsecgss libraries. Remove local copies of the gssapi and rpcsecgss header files. This depends on the configure_use_autotools patch.
* User-selectable idmapping cache lifetimeneilbrown2006-03-261-0/+6
| | | | | Read and process new configuration option, Cache-Expiration, and use the value to determine how long idmapping entries are cached.
* Set libnfsidmap library debugging level and logging function.neilbrown2006-03-262-1/+14
| | | | | | This patch adds a call to the new libnfsidmap library function nfs4_set_debug(), which defines the verbosity level libnfsidmap should use as well as the logging function.
* Don't close file descriptor until after calling event_del().neilbrown2006-03-262-2/+8
| | | | | Delete event processing for a file descriptor before closing it. This was causing hangs when used in combination with libevent-1.0b.
* Find krb5-config on SuSE 10neilbrown2006-03-262-0/+8
| | | | | SuSE 10.0 puts krb5-config in yet another obscure location. Look for it there and use it if found.
* Update debian package information.neilbrown2006-03-263-1/+11
|
* Install /var/lib/nfs files using DESTDIR and add rpcsec headers to distributionneilbrown2006-03-263-20/+74
| | | | | | | Add "$(DESTDIR)" to the paths for the "$(statedir)" files so they are put in the right place when DESTDIR is defined. Add the rpcsec header files to EXTRA_DIST list.
* head/tail fixesneilbrown2005-12-213-3/+6
|
* Handle new-style quotactl.neilbrown2005-12-212-36/+108
|
* release 1.0.8-rc2nfs-utils-1-0-8-rc2neilbrown2005-12-201-10/+10
|
* release 1.0.8-rc2neilbrown2005-12-202-10/+12
|
* Complete makefile/configure updateneilbrown2005-12-203-2/+9
|
* Add some missing files needed for ./configure;makeneilbrown2005-12-205-0/+7752
|
* Remove all the Makefilesneilbrown2005-12-2029-795/+0
|
* More automake stuffneilbrown2005-12-2036-2382/+53394
|
* Autogen updateneilbrown2005-12-2099-246/+1912
|
* Correct documentation of defautl export optionsnfs-utils-1-0-8-rc1aneilbrown2005-12-202-1/+3
|
View Lorry Controller Status