summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
...
* Even though the passed string never has a %, use an explicit %s format ↵Ken Raeburn2007-06-291-1/+1
| | | | | | string in fprintf call to make analysis simpler git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19652 dc483132-0cff-0310-8789-dd5450dbe970
* Ignore __attribute__Ken Raeburn2007-06-291-0/+5
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19651 dc483132-0cff-0310-8789-dd5450dbe970
* Check for null pointer returns when allocating storage.Ken Raeburn2007-06-283-44/+133
| | | | | | | Clean up some memory leaks in out-of-memory error paths. Use strdup and asprintf when appropriate. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19650 dc483132-0cff-0310-8789-dd5450dbe970
* Update mkstemp and export-list handling for WindowsKen Raeburn2007-06-281-3/+19
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19646 dc483132-0cff-0310-8789-dd5450dbe970
* Implement S_ISDIR from S_IFMT or _S_IFMT if necessary (e.g., on Windows)Ken Raeburn2007-06-281-0/+10
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19645 dc483132-0cff-0310-8789-dd5450dbe970
* For Win32 environment, define CAN_COPY_VA_LIST, and define an inlineKen Raeburn2007-06-271-1/+21
| | | | | | | version of vsnprintf using the MS versions. (Apparently no need for plain snprintf just yet.) git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19644 dc483132-0cff-0310-8789-dd5450dbe970
* If mkstemp is missing, define the mkstemp macro is k5-platform.h, not autoconf.hKen Raeburn2007-06-272-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19643 dc483132-0cff-0310-8789-dd5450dbe970
* * v4rcp.c (error): Use stdarg version always. Call vsnprintf instead of ↵Ken Raeburn2007-06-261-16/+5
| | | | | | | | vsprintf. (strsave): Call strdup. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19642 dc483132-0cff-0310-8789-dd5450dbe970
* * v4rcp.c (kstream_write): Allocate buffer space if it hasn't beenKen Raeburn2007-06-261-9/+4
| | | | | | | | | | | | | | allocated, in the encrypting case, even if outlen is zero. While I don't believe this can ever happen, it requires careful examination of lots of code paths to figure it out. This change doesn't fix a serious bug, but makes the analysis simple. Also, don't bother with separate code paths for malloc vs realloc depending on the previous values; we can just use realloc always. Thanks to Domagoj Babic for pointing out the (false but understandable) null-pointer problem. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19641 dc483132-0cff-0310-8789-dd5450dbe970
* Check malloc return for null in kstream_create_* instead ofKen Raeburn2007-06-261-0/+12
| | | | | | | unconditionally dereferencing. Thanks to Domagoj Babic for finding the bug. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19640 dc483132-0cff-0310-8789-dd5450dbe970
* fix MITKRB5-SA-2007-005 [CVE-2007-2798/VU#554257]Tom Yu2007-06-261-6/+28
| | | | | | | | | | | Truncate the principal names when logging a rename operation to avoid a stack buffer overflow. ticket: new target_version: 1.6.2 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19637 dc483132-0cff-0310-8789-dd5450dbe970
* fix MITKRB5-SA-2007-004 [CVE-2007-2442/VU#356961, CVE-2007-2443/VU#365313]Tom Yu2007-06-262-5/+8
| | | | | | | | | | | | | | | CVE-2007-2442/VU#356961: The RPC library can free an uninitialized pointer. This may lead to execution of arbitrary code. CVE-2007-2443/VU#365313: The RPC library can write past the end of a stack buffer. This may (but is unlikely to) lead to execution of arbitrary code. ticket: new target_version: 1.6.2 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19636 dc483132-0cff-0310-8789-dd5450dbe970
* Update configuration schema in ui\uiconfig.csv to include additionalJeffrey Altman2007-06-221-16/+15
| | | | | | | | documentation for settings and and remove unused values. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19635 dc483132-0cff-0310-8789-dd5450dbe970
* The new credentials window now applies Windows XP theme settings toJeffrey Altman2007-06-222-0/+18
| | | | | | | | dialog panels that are hosted within tab controls. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19634 dc483132-0cff-0310-8789-dd5450dbe970
* 1. Add a '--minimized' option to start NIM in minimized modeJeffrey Altman2007-06-221-1/+9
| | | | | | | | | 2. If the NIM window is requested to open in a minimized state, keep the window hidden until there's a request to show it. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19633 dc483132-0cff-0310-8789-dd5450dbe970
* 1. Use the debug CRT versions of the memory allocation functions inJeffrey Altman2007-06-222-10/+56
| | | | | | | | | | | | | | | util\perfstat.c. These functions allow associating file and line numbers with each allocation. 2. Perform a heap verification periodically to check for heap corruption in the debug build when using util\perfstat.c to manage memory allocations. 3. Change wcscmp() to _wcscmp() for compatibility in util\perfstat.h ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19632 dc483132-0cff-0310-8789-dd5450dbe970
* 1. Fix a malformed line in ui\lang\en_us\khapp.rc in a TEXTINCLUDEJeffrey Altman2007-06-221-3/+4
| | | | | | | | | | | section. 2. Update the dialog template for the "About" dialog to change the size of the dialog box and sort the modules list. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19631 dc483132-0cff-0310-8789-dd5450dbe970
* NetIDMgr:Jeffrey Altman2007-06-223-6/+16
| | | | | | | | | Product version => 1.3.0.0 API version => 9 ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19630 dc483132-0cff-0310-8789-dd5450dbe970
* Be more aggressive about forcing the new credentials dialog to theJeffrey Altman2007-06-222-13/+80
| | | | | | | | | | | | | | | | | top. Many applications call GSSAPI functions from the main GUI thread. Doing so blocks the window message pump for that application. When the GSSAPI call results in the new credentials dialog being displayed, it will be unable to bring itself to the top and grab the user input focus because the foreground window is not responding. This patch makes the new credentials window a top-most window at creation time that results in it being created at the top of the Z-order. It can then flash the window to indicate that it requires user attention. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19629 dc483132-0cff-0310-8789-dd5450dbe970
* If the new credentials window is in the advanced mode and the userJeffrey Altman2007-06-221-0/+7
| | | | | | | | | | tries to switch back to basic mode, we should set the active panel to the identity selector before switching since the basic mode only supports the identity selector panel. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19628 dc483132-0cff-0310-8789-dd5450dbe970
* Don't assume that WM_DESTROY is the last message to be received by aJeffrey Altman2007-06-2222-36/+282
| | | | | | | | | | | | | | window. Since the child windows are still alive and kicking by the time the parent receives WM_DESTROY, it's still possible to receive other messages after WM_DESTROY. If we free any window specific data when handling WM_DESTROY, we should reset the window data field as well, and check if we have a valid pointer when retrieving the window data field later. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19627 dc483132-0cff-0310-8789-dd5450dbe970
* The clean:: target of plugins\common\Makefile should reference theJeffrey Altman2007-06-221-2/+2
| | | | | | | | | target directories using the symbolic names rather than hard coded paths. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19626 dc483132-0cff-0310-8789-dd5450dbe970
* 1. When freeing a message type object, it should also be removed fromJeffrey Altman2007-06-221-2/+8
| | | | | | | | | | | | the all_msg_types list. 2. When a type handler is being removed from a message type, we shouldn't re-create the message type object if it has already been destroyed. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19625 dc483132-0cff-0310-8789-dd5450dbe970
* . Fix formatting in kherr.cJeffrey Altman2007-06-222-90/+186
| | | | | | | | | | | | | | | | 2. The FormatMessage() call needs special handling for 64 bit platforms. Add a compile time check for now until we figure out what to do. 3. Remove unused code from kherr.c. 4. Correct bad references to typedefs. kherr_severity and kherr_suggestion were sometimes referenced as 'enum kherr_severity' and 'enum kherr_suggestion' even though they are typedefs. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19624 dc483132-0cff-0310-8789-dd5450dbe970
* Add new notification flags KHERR_CTX_NEWCHILD, KHERR_CTX_FOLDCHILD,Jeffrey Altman2007-06-222-8/+17
| | | | | | | | | KHERR_CTX_PROGRESS for listeners of error context events to enable them to listen for child context events and progress updates. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19623 dc483132-0cff-0310-8789-dd5450dbe970
* Error context objects should be verified by checking the magic numberJeffrey Altman2007-06-222-41/+105
| | | | | | | | in addition to checking if the pointer to the object is valid. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19622 dc483132-0cff-0310-8789-dd5450dbe970
* Each error context in NIM can maintain a progress counter to indicateJeffrey Altman2007-06-221-9/+84
| | | | | | | | | | | | | | | | the progress of the operation. The progress counter for a context that contains child contexts should be computed by adding the progress counters of its children. This update corrects the behavior of kherr_get_progress() and kherr_get_progress_i() to take child contexts into account. In addition, since the progress counter of a context now depend on the progress counters of its children, kherr_set_progress() will send progress change notifications for any parent context as well. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19621 dc483132-0cff-0310-8789-dd5450dbe970
* Update developer documentationJeffrey Altman2007-06-2211-176/+777
| | | | | | | | | | These updates reflect changes that were made to the new credentials acquisition process and add information to incomplete API documentation. ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19620 dc483132-0cff-0310-8789-dd5450dbe970
* Remove unused file Makefile.w2k from the uilib directoryJeffrey Altman2007-06-221-62/+0
| | | | | | ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19619 dc483132-0cff-0310-8789-dd5450dbe970
* All exports in nidmgr32.dll are declared as __declspec(dllexport)Jeffrey Altman2007-06-2226-11/+54
| | | | | | | | | | | | | | | | | using the KHMEXP macro in the header files. However, since the same header files are used to declare imports when building applications and plug-ins that use nidmgr32.dll, the KHMEXP macro should switch to __declspec(import) so that the relevant import table entries are created. To make this switch, the source files that go into nidmgr32.dll are compiled with the special macro _NIMLIB_ defined that indicates that the KHMEXP should expand to __declspec(dllexport). In the absence of this macro, KHMEXP will expand to __declspec(dllimport). ticket: 5584 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19618 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo in yesterday's change (u_int_8_t -> u_int8_t)Ken Raeburn2007-06-201-2/+2
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19609 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typo and add verbosity in function-capable shell testKen Raeburn2007-06-201-2/+7
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19608 dc483132-0cff-0310-8789-dd5450dbe970
* Remove check-ac-syms rulesKen Raeburn2007-06-202-9/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19607 dc483132-0cff-0310-8789-dd5450dbe970
* Configure libdb2 in top-level configure scriptKen Raeburn2007-06-209-48/+33
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19606 dc483132-0cff-0310-8789-dd5450dbe970
* Add the libdb2 type-existence tests to the top-level configure script.Ken Raeburn2007-06-2014-192/+182
| | | | | | | | | | | Replace the generated header files in db2 with static ones that include autoconf.h and make decisions based on the macros defined there. Omit some tests that test for things we assume now, like "const" working and "size_t" being defined. Update dependencies. The libdb2 configure script now generates no header files. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19605 dc483132-0cff-0310-8789-dd5450dbe970
* Use k5-platform.h instead of local configure to find mkstempKen Raeburn2007-06-203-7/+8
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19604 dc483132-0cff-0310-8789-dd5450dbe970
* Add 'make depend' capability, and dependenciesKen Raeburn2007-06-205-0/+186
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19603 dc483132-0cff-0310-8789-dd5450dbe970
* We have code elsewhere that assumes the existence of memmove andKen Raeburn2007-06-206-243/+4
| | | | | | | strerror, and it builds everywhere we care about. So punt the substitute versions and everything else from libdb2/clib. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19602 dc483132-0cff-0310-8789-dd5450dbe970
* update dependenciesKen Raeburn2007-06-201-0/+3
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19601 dc483132-0cff-0310-8789-dd5450dbe970
* Move (BSD-licensed) mkstemp from libdb2 to libkrb5support, and renameKen Raeburn2007-06-209-18/+46
| | | | | | | | | | | | | the function to krb5int_mkstemp. Generate the symbol export list for libkrb5support at build time. Declare krb5int_mkstemp in k5-platform.h. Change cc_file.c to use mkstemp unconditionally. Make libdb2.so (built for testing only) link against the libkrb5support, and use krb5int_mkstemp if mkstemp is not available. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19600 dc483132-0cff-0310-8789-dd5450dbe970
* set svn:eol-style to native for *.[ch]Ken Raeburn2007-06-20186-82531/+82531
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19596 dc483132-0cff-0310-8789-dd5450dbe970
* provide asprintf functionality for internal useKen Raeburn2007-06-204-14/+138
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | I plan to use asprintf in some gssapi error-message management routines, so let's make sure we have the functionality available, implementing it locally if necessary. This implementation assumes vsnprintf is available, an assumption that the support library is already making at the moment. Since this implementation requires calling vsnprintf potentially multiple times with the same va_list, use va_copy if it's available, or provide a hack version (which should work okay if va_list is a scalar or array type that requires no other special handling, and if va_end does nothing interesting, which is usually the case) if the compiler doesn't provide it. I also changed a couple bits of code to use asprintf, to make sure we exercise our implementation in testing. (C99 requires vsnprintf and va_copy; vasprintf is a GNU/BSD extension, but an oh so useful one....) * configure.in: Check for va_copy, or if va_list objects can be simply assigned. Define HAS_VA_COPY and CAN_COPY_VA_LIST as appropriate. * include/k5-platform.h: Define a va_copy macro if the compiler doesn't provide it. * include/k5-platform.h: If vsnprintf isn't available from the OS, abort compilation. If vasprintf isn't available from the OS, provide k5_{v,}asprintf based on vsnprintf and define {v,}asprintf macros. * lib/krb5/keytab/t_keytab.c (do_test): Use asprintf. * util/support/errors.c (krb5int_vset_error): Use asprintf unconditionally. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19595 dc483132-0cff-0310-8789-dd5450dbe970
* set eol-style and mime-type propertiesKen Raeburn2007-06-191-677/+677
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19594 dc483132-0cff-0310-8789-dd5450dbe970
* krb5_walk_realm_tree leaks in capaths caseTom Yu2007-06-181-0/+3
| | | | | | | | | | | | | | | Markus Moeller reports a leak in krb5_get_credentials() which was then traced down to profile strings leaking from within krb5_walk_realm_tree(). A pointer to a profile string was getting overwritten without the string being freed when *cap_nodes[0] == '.'. Fix is to free the string prior to overwriting the pointer if the pointer is non-null. ticket: new target_version: 1.6.2 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19582 dc483132-0cff-0310-8789-dd5450dbe970
* Corrected the order of the source and modified msi packagesJeffrey Altman2007-06-181-1/+1
| | | | | | | | | in the msitran command line used to produce the transform ticket: 5577 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19580 dc483132-0cff-0310-8789-dd5450dbe970
* don't include time.h in CredentialsCache.h if it's not neededAlexandra Ellwood2007-06-143-12/+11
| | | | | | ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19576 dc483132-0cff-0310-8789-dd5450dbe970
* Disable warnings about #pragma mark - in the right place this timeKevin Koch2007-06-142-2/+1
| | | | | | | | | TargetVersion: 1.7 Component: krb5-libs Ticket: 19569 Subj: Tweaks for 1.7 build on Windows. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19575 dc483132-0cff-0310-8789-dd5450dbe970
* Disable warnings about #pragma markKevin Koch2007-06-142-7/+11
| | | | | | | | | TargetVersion: 1.7 Component: krb5-libs Ticket: 19569 Subj: Tweaks for 1.7 build on Windows. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19574 dc483132-0cff-0310-8789-dd5450dbe970
* Add advisory locking to CCAPIAlexandra Ellwood2007-06-1220-393/+793
| | | | | | | | | | Added code to trash client crashes. Reorganized server launch to make it easier to implement platform specific code. ticket: new status: open git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19573 dc483132-0cff-0310-8789-dd5450dbe970
* This patch adds src/include/krb5/krb5.h to the MSI installer SDK component.Jeffrey Altman2007-06-112-2/+8
| | | | | | | | | (Thanks to Asanka Herath for the patch.) ticket: 5573 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19572 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2026-01-22 08:07:27 +0000