summaryrefslogtreecommitdiffstats
path: root/src/lib/krb5/krb/ChangeLog
Commit message (Collapse)AuthorAgeFilesLines
* Remove ChangeLog files from the source tree. From now on, theSam Hartman2006-04-111-3633/+0
| | | | | | | subversion commit log entry needs to include information that would have been in the changelog. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17893 dc483132-0cff-0310-8789-dd5450dbe970
* include autoconf.h in a few more placesKen Raeburn2006-04-031-0/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17835 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (DEFS): Make emptyKen Raeburn2006-04-021-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17833 dc483132-0cff-0310-8789-dd5450dbe970
* Initial enhanced error message support, similar to what I sent toKen Raeburn2006-03-261-0/+8
| | | | | | | | | | | | | | | | krbdev except for some function renaming (krb5_free_error was already in use, so added _message to everything), and the context is allowed to be NULL (in which case we fall back to error_message() and storing no strings) to simplify some code. Low-level routines in the support library, using a private data structure; higher-level routines in libkrb5, using a krb5_context. Added error info strings to the KRB_ERR_GENERIC case in gc_via_tkt.c and the python sample service location plugin. Added code to kinit and kvno to look up and display the strings. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17776 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (check-unix): Use RUN_SETUP for t_deltatKen Raeburn2006-03-131-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17737 dc483132-0cff-0310-8789-dd5450dbe970
* Include the support library when linking various test programs, because onKen Raeburn2006-01-181-0/+4
| | | | | | | | | Solaris, with the vendor compiler, we'll always get references to krb5int_pthread_loaded due to unused inline functions not being eliminated. (Also inclued it in dependencies, and use CC_LINK when it wasn't used before.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17592 dc483132-0cff-0310-8789-dd5450dbe970
* * gc_frm_kdc.c: Rewrite to modularize significantly. (~400-lineTom Yu2005-12-301-0/+10
| | | | | | | | | | | functions do not deserve to live.) The outer loop no longer explicitly attempts the direct path to the target; that attempt has been folded into the inner loop. Remove some redundant credential lookups present in the old code. Treat unexpected realm referrals as soft errors, in case some intermediate KDC disagrees with client regarding a transit path. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17579 dc483132-0cff-0310-8789-dd5450dbe970
* * gc_frm_kdc.c (krb5_get_cred_from_kdc_opt): Cause free_tgt andTom Yu2005-12-281-0/+8
| | | | | | | | | | | | free_otgt to track the states of tgt and otgt correctly, to avoid a double-free condition which previously happened when this function returned to krb5_get_credentials(), which proceeded to free a previously freed TGT in the returned TGT list. ticket: 3313 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17578 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (t_ser): Add dl library and thread link options, since kdb5Ken Raeburn2005-10-191-0/+5
| | | | | | library is linked in and needs them. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17436 dc483132-0cff-0310-8789-dd5450dbe970
* fix krb5_mk_rep subkey leaksTom Yu2005-09-221-0/+6
| | | | | | | | | | | | | * mk_req_ext.c (krb5int_generate_and_save_subkey): Check for and free pre-existing subkeys before clobbering the pointers. This fixes some memory leaks. ticket: new target_version: 1.4.3 tags: pullup component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17387 dc483132-0cff-0310-8789-dd5450dbe970
* * t_ser.c (ser_kcontext_test): Remove statement declaring anEzra Peisach2005-08-231-0/+5
| | | | | | unused variable using a non-portable gcc extension. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17346 dc483132-0cff-0310-8789-dd5450dbe970
* * get_in_tkt.c (krb5_get_init_creds): Free tempstr on non-errorTom Yu2005-08-161-0/+5
| | | | | | | | | returns from krb5_string_to_deltat() to avoid memory leak. ticket: 3147 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17330 dc483132-0cff-0310-8789-dd5450dbe970
* fix MITKRB5-SA-2005-003 krb5_recvauth double-freeTom Yu2005-07-121-0/+4
| | | | | | | | | | | | | * recvauth.c (recvauth_common): Avoid double-free on invalid version string. Thanks to Magnus Hagander. Fix for MITKRB5-SA-2005-003 [CAN-2005-1689, VU#623332]. ticket: new target_version: 1.4.2 tags: pullup component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17299 dc483132-0cff-0310-8789-dd5450dbe970
* fix MITKRB5-SA-2005-002 KDC double-free and heap overflowTom Yu2005-07-121-0/+7
| | | | | | | | | | | | | | | Fix for MITKRB5-SA-2005-002 * KDC double-free [CAN-2005-1174, VU#259798] * krb5_unparse_name heap overflow [CAN-2005-1175, VU#885830] Thanks to Daniel Wachdorf. ticket: new flags: pullup target_version: 1.4.2 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17298 dc483132-0cff-0310-8789-dd5450dbe970
* * t_ser.c (ser_data): Don't initialize db serialization code that doesn't existKen Raeburn2005-06-301-0/+6
| | | | | | | any more. (ser_kcontext_test): Don't create and destroy databases. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17279 dc483132-0cff-0310-8789-dd5450dbe970
* Implement RFC 3961 PRFSam Hartman2005-05-201-0/+6
| | | | | | | | | | | | | | Add krb5_c_prf, a function that implements the RFC 3961 PRF. As part of this change, the krb5_init_keyblock and krb5 free routines move to libk5crypto. Public stubs remain in libkrb5, but the actual implementation is an internal interface in libk5crypto ticket: new Tags: enhancement git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17219 dc483132-0cff-0310-8789-dd5450dbe970
* the purpose of the krb5_get_credentials call is toJeffrey Altman2005-04-251-0/+10
| | | | | | | | | | | obtain a set of credentials for the caller. the krb5_cc_store_cred() call is to optimize performance for future calls. Ignore any errors, since the credentials are still valid even if we fail to store them in the cache. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17201 dc483132-0cff-0310-8789-dd5450dbe970
* * Makefile.in (BISONFLAGS): Drop -v.Ken Raeburn2005-04-131-0/+4
| | | | | | | | | ($(srcdir)/deltat.c): Change to source directory before rebuilding, so path to source tree doesn't get inserted. (deltat.c rebuilt) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17178 dc483132-0cff-0310-8789-dd5450dbe970
* Delete definitions of unused macros NEED_SOCKETS and NEED_LOWLEVEL_IOKen Raeburn2005-04-131-0/+6
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17177 dc483132-0cff-0310-8789-dd5450dbe970
* * x-deltat.y (wsnum): Add missing semicolon following YYERROR,Tom Yu2005-03-231-0/+4
| | | | | | | | | | | | which was preventing bison-1.75 from producing compilable C output. ticket: new version_reported: 1.4 target_version: 1.4.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17140 dc483132-0cff-0310-8789-dd5450dbe970
* * gic_keytab.c (krb5_get_init_creds_keytab): When callingTom Yu2005-03-221-0/+8
| | | | | | | | | | | | krb5_get_init_creds() for the second time (with use_master=1), also accept KRB5_REALM_UNKNOWN as a soft error, and use the result from the first call to krb5_get_init_creds(). This can happen when no master KDC is configured. ticket: 2974 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17132 dc483132-0cff-0310-8789-dd5450dbe970
* The current wconfig.c does not treat @MAINT@ as a comment. Until weJeffrey Altman2005-03-151-0/+5
| | | | | | | | have one that does, override the use of @MAINT@ on Windows. ticket: 2962 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17128 dc483132-0cff-0310-8789-dd5450dbe970
* time-delta parser doesn't work on HP-UX 10Ken Raeburn2005-03-031-0/+9
| | | | | | | | | | | | | | | | | | | | A build on Lenny's machine (built with gcc 2.7, thread support disabled, static libraries only) is failing tests because the HP header files define "WS" as a macro that expands to 2, while the delta-t grammar uses "WS" as the name of a terminal symbol (which under bison turns into a C macro). Renaming the terminal in the grammar (and custom lexer) fixes the problem. * x-deltat.y (tok_WS): Renamed terminal from "WS", which conflicts with HP-UX 10 header files. Updated all productions. (mylex): Updated. * Makefile.in ($(srcdir)/deltat.c): Enable dependencies in maintainer mode. * deltat.c: Updated. ticket: new target_version: 1.4.1 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17110 dc483132-0cff-0310-8789-dd5450dbe970
* * init_ctx.c (init_common): Delete redundant library initialization call thatKen Raeburn2005-02-161-0/+6
| | | | | | | was run only on UNIX. Test assertion that krb5_ui_8 really did get a proper 64-bit type. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17103 dc483132-0cff-0310-8789-dd5450dbe970
* * gic_pwd.c (krb5_get_init_creds_password): Fix so empty passwordTom Yu2005-02-101-0/+6
| | | | | | | | | | | string causes prompting and doesn't cause truncation of password to zero characters. ticket: 2918 target_version: 1.4.1 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17098 dc483132-0cff-0310-8789-dd5450dbe970
* * t_walk_rtree.c (main): Free context at end to allow searchingEzra Peisach2005-01-281-0/+5
| | | | | | for memory leaks. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17072 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_unparse_name(), krb5_unparse_name_ext():Jeffrey Altman2005-01-171-0/+5
| | | | | | | | | | prevent dereferencing of pointer if 'name' or 'size' are NULL ticket: new tags: pullup target_version: 1.4 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17049 dc483132-0cff-0310-8789-dd5450dbe970
* * gc_frm_kdc.c (krb5_get_cred_from_kdc_opt): More memory leaksEzra Peisach2005-01-171-0/+7
| | | | | | | | | | | | | | fixed as introduced in ticket #2541. Do not rely on knowledge that upon failure from krb5_cc_retrieve_cred, returned credential data is untouched. Testsuite passes all tests, but would like another set of eyes to look over code before closing ticket. ticket: 2885 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17048 dc483132-0cff-0310-8789-dd5450dbe970
* subject; krb5_do_preauth could attempt to free NULL pointerEzra Peisach2005-01-171-0/+6
| | | | | | | | | | | | | | | | * preauth2.c (krb5_do_preauth): Upon error in decoding krb5_type_info{,2}, on failure, do not call krb5_free_type_info with a null pointer. The only way to reach this code is to set a preauth list requesting for ETYPE_INFO or ETYPE_INFO2 in a call to krb5_get_in_tkt_with_password. Before sending the request, krb5_do_preauth tries to parse a NULL length asn1 buffer, fails and tries to free a null pointer. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17047 dc483132-0cff-0310-8789-dd5450dbe970
* * cp_key_cnt.c, copy_princ.c:Jeffrey Altman2005-01-151-0/+8
| | | | | | | | | | | | prevent krb5_copy_principal() and krb5_copy_keyblock() from calling malloc(0). On platforms in which malloc(0) returns NULL, these functions will return an ENOMEM error the way they were written. ticket: 2881 target_version: 1.4 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17045 dc483132-0cff-0310-8789-dd5450dbe970
* * gc_frm_kdc.c (krb5_get_cred_from_kdc_opt): Free credentials retrieved fromKen Raeburn2005-01-121-0/+6
| | | | | | | | | | | ccache before returning. Based on patch from fumihiko kakuma <kakuma@valinux.co.jp>. Also whitespace changes for readability. ticket: 2541 tags: pullup target_version: 1.4 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17014 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_parse_name not thread-safe, not responsive to environment changesKen Raeburn2005-01-031-0/+4
| | | | | | | | | | | | | | | | | | | | As Ezra noted, krb5_parse_name saves away the default realm the first time it looks it up, and will never look it up again, even if the config file has changed, the context isn't the same one, etc. It also used a static variable which wasn't thread-safe. With this patch, we still won't catch changes in the config file specification after the default realm has been looked up for a given krb5_context, because it's cached in the context too, but this will at least be more responsive, and thread safe. * parse.c (krb5_parse_name): Don't cache the default realm name. ticket: new target_version: 1.4 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16988 dc483132-0cff-0310-8789-dd5450dbe970
* * mk_req_ext.c (krb5_mk_req_extended): Free keyblock beforeTom Yu2004-10-261-0/+5
| | | | | | | | | copying new one in. ticket: 2725 component: krb5-libs git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16837 dc483132-0cff-0310-8789-dd5450dbe970
* * t_deltat.c (main): Unadorned integer no longer fails now that weTom Yu2004-10-141-0/+5
| | | | | | | | default to seconds. ticket: 2734 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16819 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_string_to_deltat should default to seconds if no unit is provided. If ↵Alexandra Ellwood2004-10-131-0/+4
| | | | | | | | the format is invalid, it should return a distinct error (KRB5_DELTAT_BADFORMAT, not EINVAL) ticket: 2734 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16816 dc483132-0cff-0310-8789-dd5450dbe970
* Make patchlevel.h be the master version fileTom Yu2004-09-251-0/+6
| | | | | | | ticket: 1345 status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16790 dc483132-0cff-0310-8789-dd5450dbe970
* memory leak in rd_cred.cTom Yu2004-09-211-0/+5
| | | | | | | | | * rd_cred.c (decrypt_credencdata): Clear and free ppart to avoid leak. Reported by Derrick Schommer. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16772 dc483132-0cff-0310-8789-dd5450dbe970
* oops, forgot changelogTom Yu2004-08-311-0/+5
| | | | | | ticket: 2686 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16703 dc483132-0cff-0310-8789-dd5450dbe970
* Finally applied patch from Nalin Dahyabhai at Red Hat to fix 0/NULL bugs inKen Raeburn2004-08-271-0/+6
| | | | | | | | | variadic argument lists to krb5_build_principal{,_ext}. Skipped the stylistic patches that removed casts of NULL. tag: 1850 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16693 dc483132-0cff-0310-8789-dd5450dbe970
* get_in_tkt.c (get_init_creds): Support ticket_lifetime libdefault. Made ↵Alexandra Ellwood2004-08-121-0/+7
| | | | | | | | | | aware of 32 bit min and max for times. Allow renew_until time < expiration time ticket: 2654 ticket: 2655 ticket: 2656 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16656 dc483132-0cff-0310-8789-dd5450dbe970
* * srv_rcache.c (krb5_get_server_rcache): Call krb5_rc_recover_or_initializeKen Raeburn2004-08-041-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16641 dc483132-0cff-0310-8789-dd5450dbe970
* Delete preprocessor tests for macintosh, __MWERKS__, applec, and THINK_C, allKen Raeburn2004-06-221-0/+4
| | | | | | | part of the pre-Mac OS X support. (Except the bits in the Yarrow code, where it was part of the upstream source.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16506 dc483132-0cff-0310-8789-dd5450dbe970
* * str_conv.c (krb5_string_to_timestamp): Use localtime_r if available.Ken Raeburn2004-06-041-0/+4
| | | | | | (krb5_timestamp_to_string, krb5_timestamp_to_sfstring): Likewise. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16413 dc483132-0cff-0310-8789-dd5450dbe970
* * parse.c (krb5_parse_name): Use assert and abort, not exitKen Raeburn2004-06-041-0/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16412 dc483132-0cff-0310-8789-dd5450dbe970
* OopsKen Raeburn2004-06-041-0/+5
| | | | | | | * srv_rcache.c (krb5_get_server_rcache): Don't forget to actually include the cache type in the cache name, after looking it up. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16410 dc483132-0cff-0310-8789-dd5450dbe970
* Add/remove error tables in library initialization/termination, not per context.Ken Raeburn2004-06-021-0/+3
| | | | | | | | | | | | | | Use only one library initialization scheme, and install the error tables in only one place. * krb5_libinit.c (initialized): Variable deleted, all references removed. (krb5int_lib_init): Initialize error tables here. (krb5int_initialize_library): Don't do it here. * error_tables/Makefile.in (STLIBOBJS, OBJS, SRCS): Drop init_ets code. * krb/init_ctx.c (init_common): Don't call krb5_init_ets. (krb5_free_context): Don't call krb5_free_ets. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16388 dc483132-0cff-0310-8789-dd5450dbe970
* * srv_rcache.c (krb5_get_server_rcache): Use krb5_rc_resolve_full instead ofKen Raeburn2004-06-021-0/+5
| | | | | | constructing an rcache object locally. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16387 dc483132-0cff-0310-8789-dd5450dbe970
* * conv_creds.c (krb5int_encode_v4tkt): Unsigned vs signed warning fixEzra Peisach2004-05-251-0/+4
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16360 dc483132-0cff-0310-8789-dd5450dbe970
* * t_ser.c (ser_keytab_test): Cleanup memory leak of forgetting toEzra Peisach2004-05-241-0/+7
| | | | | | | | close keytab. * chpw.c: Add parenthesis around assignments in conditionals. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16356 dc483132-0cff-0310-8789-dd5450dbe970
* * send_tgs.c: krb5_send_tgs() was broken in the case of a KRB_ERRORJeffrey Altman2004-05-131-0/+8
| | | | | | | | | | | message. The krb5_response message_type field was never set resulting in stack garbage being used instead. This would break code which used transitive cross-realm to obtain service tickets. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@16331 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-01-05 22:02:52 +0000