summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* fix MITKRB5-SA-2004-002Tom Yu2004-08-319-4/+43
| | | | | | | | | | Fix double-free vulnerabilities [MITKRB5-SA-2004-002]. ticket: new target_version: 1.3.5 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16701 dc483132-0cff-0310-8789-dd5450dbe970
* added private apple pkinit sourcesAlexandra Ellwood2004-08-301-0/+125
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16699 dc483132-0cff-0310-8789-dd5450dbe970
* * prof_file.c (profile_open_file): If an error occurs while updating from theKen Raeburn2004-08-282-0/+8
| | | | | | input file, destroy the mutex only if we're not sharing file data. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16698 dc483132-0cff-0310-8789-dd5450dbe970
* * prof_parse.c (parse_std_line): Rewrite handling of whitespace in and afterKen Raeburn2004-08-282-6/+20
| | | | | | | | | | | | | | tag, to strip trailing whitespace (per current locale, not just ASCII space characters), and prohibit any internal space characters in tag names. (This is not the patch supplied in the bug report; that patch changed the tag handling to allow spaces in tag names, which we haven't previously allowed. On the other hand, we haven't specifically disallowed internal tabs or other whitespace, either, and this patch does so.) ticket: 2614 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16697 dc483132-0cff-0310-8789-dd5450dbe970
* * init_sec_context.c (make_ap_req_v1): Free checksum dataTom Yu2004-08-283-4/+14
| | | | | | | | | allocated by make_gss_checksum() to avoid leak. * k5sealv3.c (gss_krb5int_unseal_token_v3): Free plain.data after checksum is verified, to avoid leak. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16696 dc483132-0cff-0310-8789-dd5450dbe970
* move last patch down a little so it applies to tcp sockets as well as udpKen Raeburn2004-08-281-14/+15
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16695 dc483132-0cff-0310-8789-dd5450dbe970
* * sendto_kdc.c (start_connection) [DEBUG]: Log the local socket addressKen Raeburn2004-08-282-0/+27
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16694 dc483132-0cff-0310-8789-dd5450dbe970
* Finally applied patch from Nalin Dahyabhai at Red Hat to fix 0/NULL bugs inKen Raeburn2004-08-278-7/+31
| | | | | | | | | variadic argument lists to krb5_build_principal{,_ext}. Skipped the stylistic patches that removed casts of NULL. tag: 1850 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16693 dc483132-0cff-0310-8789-dd5450dbe970
* * profile_tcl.c: New file, generated from profile.swg, but checked in to avoidKen Raeburn2004-08-272-0/+2084
| | | | | | requiring swig in order to generate the test program. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16692 dc483132-0cff-0310-8789-dd5450dbe970
* * profile.swg: New file.Ken Raeburn2004-08-274-4/+266
| | | | | | | | | | | * configure.in: Look for Tcl. * Makefile.in (profile_tcl, profile_tcl.c, profile_tcl.o): New targets, not built by default. (PROG_LIBPATH, PROG_RPATH, LOCALINCLUDES): Add Tcl options. (DEFINES): Define. (clean-unix): Delete profile_tcl. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16691 dc483132-0cff-0310-8789-dd5450dbe970
* * run.test (getnwords): Run data through "cat -v", because at least one versionKen Raeburn2004-08-272-1/+11
| | | | | | | of Debian Linux has an English dictionary with Latin-1 characters and a "rev" that seems to default to some sort of Unicode. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16690 dc483132-0cff-0310-8789-dd5450dbe970
* * prof_int.h (struct _prf_data_t): Add a mutex.Ken Raeburn2004-08-275-50/+142
| | | | | | | | | | | | | | * prof_file.c (profile_open_file): Initialize data mutex. (profile_update_file_data, profile_flush_file_data): Lock it while manipulating file data. (profile_lock_global, profile_unlock_global): New functions. * prof_set.c (rw_setup): Acquire global lock while checking flags and adjusting ref count. (profile_update_relation, profile_rename_section, profile_add_relation): Lock data mutex while manipulating profile data. * prof_tree.c (profile_node_iterator): Do more magic number tests. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16689 dc483132-0cff-0310-8789-dd5450dbe970
* Patch from Garry Zacheiss to use krb5_get_init_creds_password in ftpdSam Hartman2004-08-272-6/+12
| | | | | | | | | not krb5_get_in_tkt_password in order to avoid the prompter being called. Ticket: 2682 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16688 dc483132-0cff-0310-8789-dd5450dbe970
* * acquire_cred.c (krb5_gss_acquire_cred): Call gssint_initialize_library.Ken Raeburn2004-08-262-1/+13
| | | | | | Return correct error code on mutex initialization failure. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16687 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Look for uint32_t, not int32_t, since some BSD-ishTom Yu2004-08-263-27/+35
| | | | | | | | | sys/types.h headers have int32_t and u_int32_t, but only have uint32_t in stdint.h. * types.hin: Change int32_t checks to uint32_t checks. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16686 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Don't test for pthread_rwlock_initKen Raeburn2004-08-242-3/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16685 dc483132-0cff-0310-8789-dd5450dbe970
* * aclocal.m4 (KRB5_AC_PRAGMA_WEAK_REF): Fix to work with AIX compiler when ↵Ken Raeburn2004-08-242-1/+6
| | | | | | optimizing git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16684 dc483132-0cff-0310-8789-dd5450dbe970
* * addrinfo-test.c: New fileKen Raeburn2004-08-232-0/+287
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16683 dc483132-0cff-0310-8789-dd5450dbe970
* * fake-addrinfo.h (fai_add_hosts_by_name): Handle case where returned ↵Ken Raeburn2004-08-232-2/+9
| | | | | | ai_canonname is null git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16682 dc483132-0cff-0310-8789-dd5450dbe970
* New commands: kcpytkt and kdeltktJeffrey Altman2004-08-2112-1/+510
| | | | | | | | | | kcpytkt: copies one or more tickets between credential caches kdeltkt: deletes one or mote tickets from a credential cache ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16681 dc483132-0cff-0310-8789-dd5450dbe970
* kvno: add -c ccache command line parameterJeffrey Altman2004-08-212-11/+27
| | | | | | | | | call krb5_free_unparsed_name() instead of free() to prevent crashes on Windows. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16680 dc483132-0cff-0310-8789-dd5450dbe970
* * libkadm5srv.exports: Update for previous renamingTom Yu2004-08-212-4/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16679 dc483132-0cff-0310-8789-dd5450dbe970
* Fix no-auth test to use a config mask flag to ask for no-auth, toTom Yu2004-08-217-25/+38
| | | | | | avoid the icky repeated build of client_init.c git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16678 dc483132-0cff-0310-8789-dd5450dbe970
* whitespaceKen Raeburn2004-08-211-10/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16677 dc483132-0cff-0310-8789-dd5450dbe970
* ChangeLogs for WiX MSI installerJeffrey Altman2004-08-204-0/+12
| | | | | | ticket: 2675 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16676 dc483132-0cff-0310-8789-dd5450dbe970
* New WiX based MSI installer for KFWJeffrey Altman2004-08-2023-0/+3396
| | | | | | | | | | Requires WiX 2.0.1927.1 patched by Asanka. http://prdownloads.sourceforge.net/wix/sources-2.0.1927.1.zip ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16675 dc483132-0cff-0310-8789-dd5450dbe970
* renamed acl_* functions to kadm5int_acl_*Alexandra Ellwood2004-08-206-84/+93
| | | | | | ticket: 2674 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16673 dc483132-0cff-0310-8789-dd5450dbe970
* Added kadmin code to project to make searches easierAlexandra Ellwood2004-08-201-0/+981
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16672 dc483132-0cff-0310-8789-dd5450dbe970
* * shlib.conf: Add support for gnu hurd and for BSD kernels withSam Hartman2004-08-192-1/+6
| | | | | | glibc; use the Linux shared library procedure git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16671 dc483132-0cff-0310-8789-dd5450dbe970
* * aclocal.m4 (KRB5_AC_ENABLE_THREADS): Check for pthread_rwlock_init, with andKen Raeburn2004-08-192-1/+8
| | | | | | without the thread library. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16670 dc483132-0cff-0310-8789-dd5450dbe970
* * svc.c (svc_getreqset): Allocate cred and verf memory toTom Yu2004-08-172-6/+21
| | | | | | | | temporary pointers, and free the temporary pointers on exit. Freeing the actual cred and verf pointers can cause corruption because auth mechanisms can reassign the pointers. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16669 dc483132-0cff-0310-8789-dd5450dbe970
* * svc_auth_gss.c (gssrpc__svcauth_gss): Add some debug messagesTom Yu2004-08-173-5/+21
| | | | | | | | * svc.c (svc_getreqset): Don't allocate either raw or cooked credentials on the stack using the cred_area char array; use mem_alloc() instead. This avoids alignment problems. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16668 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_file.c (struct _krb5_fcc_data): Add new mutex disk_file_lock and flagKen Raeburn2004-08-162-11/+70
| | | | | | | | | | | | | | file_is_locked. (krb5_fcc_close_file): Unlock the mutex and clear the flag. (krb5_fcc_open_file): Acquire the mutex before locking the file, and set the flag after. (krb5_fcc_resolve): Initialize the new mutex and flag. (krb5_fcc_generate_new): Initialize both mutexes and the flag. (dereference): Destroy the new mutex. Also, get rid of some unused variables. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16667 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_file.c: Add buffering on reading.Ken Raeburn2004-08-152-12/+101
| | | | | | | | | | | | | | | (FCC_BUFSIZ): New macro. (struct _krb5_fcc_data): Add new fields buf, valid_bytes, cur_offset. (krb5_fcc_resolve, krb5_fcc_generate_new): Initialize valid_bytes. (invalidate_cache): New function. (krb5_fcc_write, krb5_fcc_open_file, krb5_fcc_destroy): Call invalidate_cache. (fcc_lseek): New function. (krb5_fcc_skip_header, krb5_fcc_destroy, krb5_fcc_start_seq_get, krb5_fcc_next_cred, krb5_fcc_store): Use fcc_lseek instead of lseek. (fcc_read): Use and maybe refill the buffer. (dereference): Zap the contents of the buffer before freeing it. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16666 dc483132-0cff-0310-8789-dd5450dbe970
* * run.test (getnwords): Rewrite to drop blank lines before counting lines, ↵Ken Raeburn2004-08-152-1/+6
| | | | | | not after git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16665 dc483132-0cff-0310-8789-dd5450dbe970
* * cc_file.c (dereference): Lock mutex around call to krb5_fcc_close_fileKen Raeburn2004-08-152-1/+9
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16664 dc483132-0cff-0310-8789-dd5450dbe970
* Fix Tru64 build:Ken Raeburn2004-08-152-6/+13
| | | | | | | | * k5-thread.h (k5_os_nothread_mutex_assert_locked, k5_os_nothread_mutex_assert_unlocked, k5_os_mutex_assert_locked, k5_os_mutex_assert_unlocked): Assertion macros should always have type void. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16663 dc483132-0cff-0310-8789-dd5450dbe970
* Only open a credential cache file once, even if multiple krb5_ccache objectsKen Raeburn2004-08-134-77/+172
| | | | | | | | | | | | | | | | | | | | | | | | | refer to it. (This does NOT yet take care of the problem of multiple threads wanting to use OS-level advisory locks, which at least on UNIX are per-process and not per-thread.) * cc_file.c (krb5_fcc_close_file): Change first argument to be an fcc-data pointer, not a krb5_ccache. All calls changed. (struct fcc_set): Add a refcount member. (Definition accidentally introduced without comment in an earlier patch.) (krb5int_cc_file_mutex, fccs): New variables, for managing a global list of open credential cache files. (dereference): New function, with most of old close/destroy operations. Decrements reference count and only frees the object and removes it from the global list if the refcount hits zero. (krb5_fcc_close, krb5_fcc_destroy): Call dereference. (krb5_fcc_resolve): If a file cache is already open with the same file name, increment its reference count and don't create a new one. When a new one is created, add it to the global list. * cc-int.h (krb5int_cc_file_mutex): Declare. * ccbase.c (krb5int_cc_initialize): Initialize it. (krb5int_cc_finalize): Destroy it, and krb5int_mcc_mutex. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16662 dc483132-0cff-0310-8789-dd5450dbe970
* * k5-thread.h (k5_os_nothread_mutex_finish_init, k5_os_nothread_mutex_init,Ken Raeburn2004-08-132-25/+67
| | | | | | | | | | | | | | k5_os_nothread_mutex_destroy, k5_os_nothread_mutex_lock, k5_os_nothread_mutex_unlock) [!DEBUG_THREADS]: Replace macros with inline functions, to gain type checking and eliminate gratuitous compiler warnings. (k5_pthread_assert_unlocked, k5_pthread_assert_locked): Likewise. (k5_os_mutex_finish_init) [HAVE_PTHREAD && !USE_PTHREAD_LOCK_ONLY_IF_LOADED]: Likewise. (return_after_yield): New inline function. (k5_os_mutex_lock) [HAVE_PTHREAD]: Change back to a macro, calling return_after_yield. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16661 dc483132-0cff-0310-8789-dd5450dbe970
* * run.test (getnwords): New function. Uses sed to get N words from $DICT asKen Raeburn2004-08-122-11/+21
| | | | | | | other functions did before, but discards blank lines. (test1, test2, test12, test13, test20): Call getnwords. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16660 dc483132-0cff-0310-8789-dd5450dbe970
* get_in_tkt.c (get_init_creds): Support ticket_lifetime libdefault. Made ↵Alexandra Ellwood2004-08-122-27/+69
| | | | | | | | | | aware of 32 bit min and max for times. Allow renew_until time < expiration time ticket: 2654 ticket: 2655 ticket: 2656 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16656 dc483132-0cff-0310-8789-dd5450dbe970
* ccdefname.c (krb5_cc_set_default_name, krb5_cc_default_name): Look up the ↵Alexandra Ellwood2004-08-122-41/+64
| | | | | | | | default ccache name in krb5_cc_default_name, not krb5_cc_set_default_name so that krb5_init_context doesn't have to do work it might never use ticket: 2657 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16655 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: Solaris getpwnam_r returns struct passwd*, notTom Yu2004-08-102-1/+6
| | | | | | struct pwd*. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16654 dc483132-0cff-0310-8789-dd5450dbe970
* * ftpd.c (main): Use socklen_t for the size of the address from acceptKen Raeburn2004-08-092-1/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16653 dc483132-0cff-0310-8789-dd5450dbe970
* * krb524d.c (do_connection): Use socklen_t for the size of the address from ↵Ken Raeburn2004-08-092-1/+7
| | | | | | recvfrom git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16652 dc483132-0cff-0310-8789-dd5450dbe970
* * aclocal.m4 (WITH_CC): Log messages when adding AIX compiler optionsKen Raeburn2004-08-082-3/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16651 dc483132-0cff-0310-8789-dd5450dbe970
* * libkrb5.exports: Remove memory ccache symbols except ops tableKen Raeburn2004-08-082-14/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16650 dc483132-0cff-0310-8789-dd5450dbe970
* * aclocal.m4 (KRB5_AC_ENABLE_THREADS): Clear PTHREAD_CFLAGS and PTHREAD_LIBSKen Raeburn2004-08-082-5/+26
| | | | | | | | | after adding them to CFLAGS and LIBS respectively, to avoid duplicating the options later. (WITH_CC): Add -O on AIX also. Don't add options if similar options are already present. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16649 dc483132-0cff-0310-8789-dd5450dbe970
* * threads.c (GET_NO_PTHREAD_TSD) [!HAVE_PRAGMA_WEAK_REF]: Macro result typeKen Raeburn2004-08-082-1/+6
| | | | | | should be pointer to tsd_block. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16648 dc483132-0cff-0310-8789-dd5450dbe970
* * configure.in: If getpwnam_r is available, determine its return typeKen Raeburn2004-08-082-0/+27
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16647 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-03-21 10:06:58 +0000