~ubuntu-branches/ubuntu/saucy/nfs-utils/saucy-proposed

Viewing changes to utils/gssd/krb5_util.c

Committer: Bazaar Package Importer
Author(s): Luk Claes
Date: 2011-07-09 16:28:32 UTC
mfrom: (1.2.20 upstream)
mto: (71.1.1 ubuntu)
mto: This revision was merged to the branch mainline in revision 41.
Revision ID: james.westby@ubuntu.com-20110709162832-ovaehe77pm3hyy35

Tags: 1:1.2.4-1

http://bugs.debian.org/633155

http://bugs.debian.org/619877

http://bugs.debian.org/626478

* New upstream version
  - Fix host_reliable_addrinfo (Closes: #633155)
  - Allow multiple RPC listeners to share listener port number
  (Closes: #619877)
  - Add --enable-libmount-mount (Closes: #626478)
  - 12-svcgssd-document-n-option.patch applied upstream
  - Refresh 19-exports.man-Fix-comment-syntax.patch
  - 21-anticipate-RLIMIT_FSIZE.patch applied upstream
  - Add nfsidmap binary and manpage
  - Use autoreconf to avoid build failure

files added:
aclocal/keyutils.m4

support/nfs/atomicio.c

support/nfs/strlcat.c

support/nfs/strlcpy.c

utils/gssd/svcgssd_krb5.c

utils/gssd/svcgssd_krb5.h

utils/mount/mount_libmount.c

utils/mount/utils.c

utils/mount/utils.h

utils/nfsidmap

utils/nfsidmap/Makefile.am

utils/nfsidmap/Makefile.in

utils/nfsidmap/nfsidmap.c

utils/nfsidmap/nfsidmap.man

files removed:
.pc/12-svcgssd-document-n-option.patch

.pc/12-svcgssd-document-n-option.patch/utils

.pc/12-svcgssd-document-n-option.patch/utils/gssd

.pc/12-svcgssd-document-n-option.patch/utils/gssd/svcgssd.man

.pc/21-anticipate-RLIMIT_FSIZE.patch

.pc/21-anticipate-RLIMIT_FSIZE.patch/support

.pc/21-anticipate-RLIMIT_FSIZE.patch/support/nfs

.pc/21-anticipate-RLIMIT_FSIZE.patch/support/nfs/nfs_mntent.c

debian/patches/12-svcgssd-document-n-option.patch

debian/patches/21-anticipate-RLIMIT_FSIZE.patch

utils/idmapd/atomicio.c

utils/idmapd/strlcat.c

utils/idmapd/strlcpy.c

files modified:
.gitignore

.pc/03-handle-mtab-symlink.patch/utils/mount/fstab.c

.pc/03-handle-mtab-symlink.patch/utils/mount/mount.c

.pc/11-532048-reduce-verbosity.patch/utils/gssd/gss_util.c

.pc/11-532048-reduce-verbosity.patch/utils/gssd/gssd_proc.c

.pc/13-preserve-explicit-port-2049.patch/utils/mount/stropts.c

.pc/17-Fix-statd.8-manpage-syntax-visible.patch/utils/statd/statd.man

.pc/19-exports.man-Fix-comment-syntax.patch/utils/exportfs/exports.man

.pc/20-nfs.man-Fix-fstab-example.patch/utils/mount/nfs.man

.pc/applied-patches

ChangeLog

Makefile.in

aclocal.m4

aclocal/libnfsidmap.m4

aclocal/libtool.m4

aclocal/ltoptions.m4

aclocal/ltversion.m4

aclocal/lt~obsolete.m4

config.log

configure

configure.ac

debian/changelog

debian/control

debian/nfs-common.install

debian/nfs-common.manpages

debian/patches/19-exports.man-Fix-comment-syntax.patch

debian/patches/series

debian/rules

linux-nfs/Makefile.in

ltmain.sh

support/Makefile.in

support/export/Makefile.in

support/export/client.c

support/export/export.c

support/export/hostname.c

support/export/nfsctl.c

support/include/Makefile.in

support/include/config.h.in

support/include/exportfs.h

support/include/misc.h

support/include/nfs/Makefile.in

support/include/nfslib.h

support/include/rpcmisc.h

support/include/rpcsvc/Makefile.in

support/include/sys/Makefile.in

support/include/sys/fs/Makefile.in

support/misc/Makefile.in

support/nfs/Makefile.am

support/nfs/Makefile.in

support/nfs/conffile.c

support/nfs/exports.c

support/nfs/rpcdispatch.c

support/nfs/svc_create.c

support/nsm/Makefile.in

support/nsm/file.c

tests/Makefile.in

tests/nsm_client/Makefile.in

tests/nsm_client/nsm_client.c

tools/Makefile.in

tools/locktest/Makefile.in

tools/mountstats/Makefile.in

tools/nfs-iostat/Makefile.in

tools/nlmtest/Makefile.in

tools/rpcdebug/Makefile.in

tools/rpcgen/Makefile.in

utils/Makefile.am

utils/Makefile.in

utils/exportfs/Makefile.in

utils/exportfs/exportfs.c

utils/exportfs/exportfs.man

utils/exportfs/exports.man

utils/gssd/Makefile.am

utils/gssd/Makefile.in

utils/gssd/gss_util.c

utils/gssd/gssd.man

utils/gssd/gssd_proc.c

utils/gssd/krb5_util.c

utils/gssd/svcgssd.c

utils/gssd/svcgssd.man

utils/gssd/svcgssd_proc.c

utils/idmapd/Makefile.am

utils/idmapd/Makefile.in

utils/idmapd/idmapd.c

utils/mount/Makefile.am

utils/mount/Makefile.in

utils/mount/fstab.c

utils/mount/mount.c

utils/mount/mount_config.h

utils/mount/mount_constants.h

utils/mount/network.c

utils/mount/network.h

utils/mount/nfs.man

utils/mount/nfsumount.c

utils/mount/parse_opt.c

utils/mount/stropts.c

utils/mount/version.h

utils/mountd/Makefile.in

utils/mountd/cache.c

utils/mountd/mountd.c

utils/mountd/mountd.man

utils/mountd/rmtab.c

utils/mountd/v4root.c

utils/nfsd/Makefile.in

utils/nfsd/nfssvc.c

utils/nfsstat/Makefile.in

utils/nfsstat/nfsstat.c

utils/nfsstat/nfsstat.man

utils/showmount/Makefile.in

utils/statd/Makefile.in

utils/statd/hostname.c

utils/statd/sm-notify.c

utils/statd/statd.man

Show diffs side-by-side

added added

removed removed

utils/gssd/krb5_util.c

768

krb5_error_code code;

769

char **realmnames = NULL;

770

char myhostname[NI_MAXHOST], targethostname[NI_MAXHOST];

771

char myhostad[NI_MAXHOST+1];

771

772

int i, j, retval;

772

773

char *default_realm = NULL;

773

774

char *realm;

789

790

printerr(1, "%s while getting local hostname\n", k5err);

790

791

goto out;

791

792

}

793

794

/* Compute the active directory machine name HOST$ */

795

strcpy(myhostad, myhostname);

796

for (i = 0; myhostad[i] != 0; ++i)

797

myhostad[i] = toupper(myhostad[i]);

798

myhostad[i] = '$';

799

myhostad[i+1] = 0;

800

792

801

retval = get_full_hostname(myhostname, myhostname, sizeof(myhostname));

793

802

if (retval)

794

803

goto out;

833

842

if (strcmp(realm, default_realm) == 0)

834

843

tried_default = 1;

835

844

for (j = 0; svcnames[j] != NULL; j++) {

836

code = krb5_build_principal_ext(context, &princ,

837

strlen(realm),

838

realm,

839

strlen(svcnames[j]),

840

svcnames[j],

841

strlen(myhostname),

842

myhostname,

843

NULL);

845

char spn[300];

846

847

848

* The special svcname "$" means 'try the active

849

* directory machine account'

850

851

if (strcmp(svcnames[j],"$") == 0) {

852

snprintf(spn, sizeof(spn), "%s@%s", myhostad, realm);

853

code = krb5_build_principal_ext(context, &princ,

854

strlen(realm),

855

realm,

856

strlen(myhostad),

857

myhostad,

858

NULL);

859

} else {

860

snprintf(spn, sizeof(spn), "%s/%s@%s",

861

svcnames[j], myhostname, realm);

862

code = krb5_build_principal_ext(context, &princ,

863

strlen(realm),

864

realm,

865

strlen(svcnames[j]),

866

svcnames[j],

867

strlen(myhostname),

868

myhostname,

869

NULL);

870

}

871

844

872

if (code) {

845

873

k5err = gssd_k5_err_msg(context, code);

846

printerr(1, "%s while building principal for "

847

"'%s/%s@%s'\n", k5err, svcnames[j],

848

myhostname, realm);

874

printerr(1, "%s while building principal for '%s'\n",

875

k5err, spn);

849

876

continue;

850

877

}

851

878

code = krb5_kt_get_entry(context, kt, princ, 0, 0, kte);

852

879

krb5_free_principal(context, princ);

853

880

if (code) {

854

881

k5err = gssd_k5_err_msg(context, code);

855

printerr(3, "%s while getting keytab entry for "

856

"'%s/%s@%s'\n", k5err, svcnames[j],

857

myhostname, realm);

882

printerr(3, "%s while getting keytab entry for '%s'\n",

883

k5err, spn);

858

884

} else {

859

printerr(3, "Success getting keytab entry for "

860

"'%s/%s@%s'\n",

861

svcnames[j], myhostname, realm);

885

printerr(3, "Success getting keytab entry for '%s'\n",spn);

862

886

retval = 0;

863

887

goto out;

864

888

}

870

894

871

895

for (j = 0; svcnames[j] != NULL; j++) {

872

896

int found = 0;

897

if (strcmp(svcnames[j],"$") == 0)

898

continue;

873

899

code = gssd_search_krb5_keytab(context, kt, realm,

874

900

svcnames[j], &found, kte);

875

901

if (!code && found) {

1160

1186

krb5_keytab kt = NULL;;

1161

1187

int retval = 0;

1162

1188

char *k5err = NULL;

1163

const char *svcnames[4] = { "root", "nfs", "host", NULL };

1189

const char *svcnames[5] = { "$", "root", "nfs", "host", NULL };

1164

1190

1165

1191

1166

1192

* If a specific service name was specified, use it.

Older »