Ken Raeburn [Tue, 4 Oct 2005 20:37:17 +0000 (20:37 +0000)]
* api.1/lock.exp: Temporarily disabled tests
ticket: 3201
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17403
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 4 Oct 2005 20:27:33 +0000 (20:27 +0000)]
* kdb5.c (kdb_get_conf_section): If the default realm is null, return null.
(krb5_db_open): Don't pass null pointer to sprintf if default_realm is null.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17402
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 4 Oct 2005 20:24:14 +0000 (20:24 +0000)]
* create/kdb5_mkdums.c (set_dbname_help): Set default realm and construct an
argument vector describing the database pathname, before calling krb5_db_open.
* verify/kdb5_verify.c (set_dbname_help): Likewise.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17401
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Mon, 3 Oct 2005 21:16:57 +0000 (21:16 +0000)]
* asn1_get.c (asn1_get_tag_2): Patch from Zhihong Zhang to properly
handle tag numbers >= 30.
ticket: 2542
target_version: 1.4.3
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17400
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 27 Sep 2005 23:30:39 +0000 (23:30 +0000)]
* svr_iters.c (glob_to_regexp): Increment pointer, not character,
when handling backslash quoting. Patch from K.G. Gokulavasan.
ticket: 3190
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17399
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 26 Sep 2005 21:04:00 +0000 (21:04 +0000)]
* Makefile.in (fake-install): Do install in modules/kdb/db2. Caught by Michael
Calmer.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17398
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 22 Sep 2005 20:19:30 +0000 (20:19 +0000)]
Move lib/kdb/kdb_db2 to modules/kdb/db2, and patch up pathnames in various
files to compensate.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17395
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 22 Sep 2005 16:46:50 +0000 (16:46 +0000)]
gss_release_buffer can leak zero-length buffers
* rel_buffer.c (generic_gss_release_buffer): Free buffer even if
length is zero. This avoids memory leaks in some cases.
ticket: new
target_version: 1.4.3
tags: pullup
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17388
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 22 Sep 2005 16:44:20 +0000 (16:44 +0000)]
fix krb5_mk_rep subkey leaks
* mk_req_ext.c (krb5int_generate_and_save_subkey): Check for and
free pre-existing subkeys before clobbering the pointers. This
fixes some memory leaks.
ticket: new
target_version: 1.4.3
tags: pullup
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17387
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 22 Sep 2005 02:48:09 +0000 (02:48 +0000)]
fix memory leaks in krb5_gss_import_name() and krb5_gss_inquire_cred()
* import_name.c (krb5_gss_import_name): Add missing free of tmp in
an error case to fix a memory leak.
* inq_cred.c (krb5_gss_inquire_cred): Memory leak fixes: call
krb5_gss_release_cred() with address of cred, not cred; add
missing call to krb5_gss_release_cred() in an error case.
ticket: new
target_version: 1.4.3
tags: pullup
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17386
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Wed, 21 Sep 2005 23:01:26 +0000 (23:01 +0000)]
minor_status not cleared sometimes (gsstest nits)
* duplicate_name.c (krb5_gss_duplicate_name):
* export_name.c (krb5_gss_export_name): Fix gsstest nit by
clearing minor_status if no errors.
ticket: new
target_version: 1.4.3
tags: pullup
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17385
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Wed, 21 Sep 2005 22:58:07 +0000 (22:58 +0000)]
krb5_gss_inquire_cred can copy out uninitialized pointer
* inq_cred.c (krb5_gss_inquire_cred): Initialize ret_name to
NULL. Only call kg_save_name() if ret_name is actually non-NULL.
Return GSS_C_NO_NAME for now if no principal name in the cred.
Reported by Christoph Weizen.
ticket: new
version_reported: 1.4.2
target_version: 1.4.3
tags: pullup
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17384
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Fri, 16 Sep 2005 19:23:41 +0000 (19:23 +0000)]
* dnsglue.c (USE_RES_NINIT): Fix braino: define to 1, not empty
string.
ticket: 3172
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17382
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 15 Sep 2005 03:30:21 +0000 (03:30 +0000)]
* adm_proto.h (krb5_adm_connect, krb5_adm_disconnect, krb5_adm_dbent_to_proto,
krb5_adm_proto_to_dbent, krb5_adm_proto_to_ktent, krb5_adm_ktent_to_proto,
krb5_free_adm_data, krb5_send_adm_cmd, krb5_send_adm_reply, krb5_read_adm_cmd,
krb5_read_adm_reply): Delete declarations, since none of these functions exist.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17381
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 9 Sep 2005 21:33:25 +0000 (21:33 +0000)]
* fake_addrinfo.c (getaddrinfo): AI_NUMERICSERV fix for AIX
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17380
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 9 Sep 2005 21:30:38 +0000 (21:30 +0000)]
mine:
* fake-addrinfo-test.c: New file.
* Makefile.in (check): Do pass arguments to addrinfo-test invocation added by
Marc's patch.
(fake-addrinfo-test): New target.
(all): Depend on it.
(SRCS): Fix typo in last change. Add fake-addrinfo-test.c.
(OBJS): Add fake-addrinfo-test.o.
from Marc Aurele La France:
* Makefile.in: Build addrinfo-test.
* addrinfo-test.c (main): 'numeric' -> 'numerichost'; Add -n option to set
AI_NUMERICSERV (if available); print usage message when no arguments are
given.
ticket: 3176
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17379
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 9 Sep 2005 21:22:18 +0000 (21:22 +0000)]
patch from Marc Aurele La France:
* shlib.conf (case *-*-aix5.3*): Generate proper shared libraries acceptable
to dlopen(3) (as in mechglue, for example). Allows for building both shared
and static libraries in one run. Only done for AIX 5.3, but probably should be
done for earlier versions.
ticket: 3176
status: open
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17378
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 8 Sep 2005 23:13:39 +0000 (23:13 +0000)]
Rework logic for using res_ninit() and friends to fall back to
res_init() if res_ndestroy() isn't available.
ticket: 3172
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17377
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 8 Sep 2005 22:14:08 +0000 (22:14 +0000)]
update mkrel for svn
* mkrel: Update for svn.
ticket: new
target_version: 1.4.3
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17376
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 8 Sep 2005 01:44:53 +0000 (01:44 +0000)]
* default.exp: Initialize can_get_root to yes.
(setup_root_shell): If can_get_root is "no", log a message and return, without
making another attempt. On failing attempts, set can_get_root to "no".
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17375
dc483132-0cff-0310-8789-
dd5450dbe970
Alexandra Ellwood [Thu, 1 Sep 2005 20:48:53 +0000 (20:48 +0000)]
Move KfM-specific build system components to KfM repository
Moved KfM-specific build system components into the KfM repository
to avoid conflicts between kfm and krb5 branch points and commit procedures.
Only KfM developers have been editing these files anyway so there is no
advantage to having them in the krb5 repository.
ticket: new
Component: krb5-build
Target_Version: 1.4.3
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17367
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Mon, 29 Aug 2005 19:22:52 +0000 (19:22 +0000)]
Remove changebar.sty
The changebar.sty file found in the doc directory has questionable
licensing. In particular, it is not the same changebar.sty found in
CTAN and has no well defined license specified in the file. Since we
do not actually need changebar.sty, remove it.
ticket: new
Target_Version: 1.4.3
Tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17363
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 25 Aug 2005 23:48:46 +0000 (23:48 +0000)]
ignore some more generated files
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17362
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 25 Aug 2005 23:46:17 +0000 (23:46 +0000)]
ignore latex-generated files
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17361
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 25 Aug 2005 23:41:34 +0000 (23:41 +0000)]
* kadm5/adb-unit-test.tex: Use RCS Id keyword instead of Header.
* kadm5/api-unit-test.tex: Likewise.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17360
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 25 Aug 2005 23:27:19 +0000 (23:27 +0000)]
* kadm5/api-unit-test.tex (ovsec_kadm_create_principal): Fix missing closing
brace that prevent latex from finishing.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17359
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 25 Aug 2005 23:15:24 +0000 (23:15 +0000)]
Add execute property for man2ps, man2html
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17358
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 25 Aug 2005 22:04:59 +0000 (22:04 +0000)]
fix more executable permissions
Fix some more executable permissions missing from import.
ticket: new
tags: pullup
target_version: 1.4.3
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17357
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Thu, 25 Aug 2005 14:26:37 +0000 (14:26 +0000)]
Make kadmin testing scripts executable
Mark the shell scripts used by lib/rpc and lib/kadm5 executable.
ticket:new
Tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17356
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Wed, 24 Aug 2005 22:14:02 +0000 (22:14 +0000)]
svn:ignore configure and autom4te.cache files
ticket: new
tags: pullup
target_version: 1.4.3
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17355
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Wed, 24 Aug 2005 16:32:24 +0000 (16:32 +0000)]
Set svn:executable for mkinstalldirs - needed during install
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17354
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Wed, 24 Aug 2005 16:20:01 +0000 (16:20 +0000)]
Delete .cvsignore files; contents have already been
set on svn:ignore properties.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17353
dc483132-0cff-0310-8789-
dd5450dbe970
Sam Hartman [Wed, 24 Aug 2005 16:10:17 +0000 (16:10 +0000)]
Make configuration scripts executable
Mark the shell scripts under config and util as executable.
Tom, this probably wants to be pulled up to the 1.3 branch as well.
ticket: new
Tags: pullup
Target_Version: 1.4.3
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17352
dc483132-0cff-0310-8789-
dd5450dbe970
Ezra Peisach [Tue, 23 Aug 2005 20:21:48 +0000 (20:21 +0000)]
* t_ser.c (ser_kcontext_test): Remove statement declaring an
unused variable using a non-portable gcc extension.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17346
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 20 Aug 2005 09:14:59 +0000 (09:14 +0000)]
Rename all RPC functions from _1 to _2 to match current program version number;
likewise _1_svc to _2_svc in the kadmin server. Delete the RPC functions from
the libkadm5clnt export list.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17345
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 20 Aug 2005 08:27:46 +0000 (08:27 +0000)]
* post.in (configure): Depend on patchlevel.h
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17344
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 20 Aug 2005 08:26:36 +0000 (08:26 +0000)]
* aclocal.m4 (PL_KRB5_MAJOR_RELEASE, PL_KRB5_MINOR_RELEASE, PL_KRB5_PATCHLEVEL,
PL_KRB5_RELTAIL): New macros, holding values extracted from patchlevel.h at
autoconf time.
(K5_VERSION): Define in terms of the PL_* macros.
(K5_TOPDIR): If m4exit doesn't work, try builtin(m4exit,1).
* configure.in: Set KRB5_VERSION from K5_VERSION, don't parse patchlevel.h.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17343
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 20 Aug 2005 07:17:17 +0000 (07:17 +0000)]
All configure.in scripts: Use K5_AC_INIT instead of AC_INIT
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17342
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 20 Aug 2005 07:01:37 +0000 (07:01 +0000)]
* aclocal.m4 (K5_AC_INIT, K5_VERSION, K5_BUGADDR): New macros
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17341
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 20 Aug 2005 06:24:48 +0000 (06:24 +0000)]
Minor changes (shouldn't alter semantics) to increase similarity to code output
by modern Solaris rpcgen.
* kadm_rpc.h: Remove krb5_ui_4 casts on RPC defined numbers. Remove argument
names from RPC proc declarations. Reorder declarations, change whitespace.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17340
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 20 Aug 2005 04:22:42 +0000 (04:22 +0000)]
* kdb_db2.c (MAX_LOCK_TRIES): New macro.
(krb5_db2_db_lock): Always make non-blocking attempts to acquire the lock.
Retry up to MAX_LOCK_TRIES times on failure.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17339
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 19 Aug 2005 23:51:24 +0000 (23:51 +0000)]
partial doc of Novell changes
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17338
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Aug 2005 02:22:14 +0000 (02:22 +0000)]
* kdb5.c (kdb_load_library): Look up db_modules>db_module_dir in config file,
and use any indicated directories before the compiled-in directories.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17337
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Aug 2005 01:46:59 +0000 (01:46 +0000)]
* env-setup.shin: Export $libdir.
* init_db: Substitue __MODDIR__ with the fakedest module directory.
* start_servers: Likewise.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17336
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Aug 2005 01:45:25 +0000 (01:45 +0000)]
* krb5.conf.proto: Change db module name to be more obviously not magic. Point
db_module_dir to the fakedest installed version.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17335
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Aug 2005 01:06:31 +0000 (01:06 +0000)]
Fix to last change: Add the new db info lines to krb5.conf files always, not
just kdc file, so kadmin.local (etc) invocations using other config files still
see them.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17334
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Aug 2005 00:39:42 +0000 (00:39 +0000)]
* Makefile.in (site.exp): Write KRB5_DB_MODULE_DIR setting into site.exp.
Depend on Makefile.
* config/default.exp (setup_kerberos_files): Don't write database_name entry
into KDC config file.
(setup_krb5_conf): Write new config lines for the realm into the krb5.conf file
for the KDC.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17333
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Aug 2005 00:31:08 +0000 (00:31 +0000)]
* Makefile.in (fake-install): New target; create a partially populated install
tree.
(check-prerecurse): Depend on it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17332
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 17 Aug 2005 00:28:08 +0000 (00:28 +0000)]
* Makefile.in ($(FAKEPREFIX)/lib): Target deleted.
(all-unix): Don't build it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17331
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 16 Aug 2005 00:38:17 +0000 (00:38 +0000)]
* get_in_tkt.c (krb5_get_init_creds): Free tempstr on non-error
returns from krb5_string_to_deltat() to avoid memory leak.
ticket: 3147
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17330
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Thu, 11 Aug 2005 22:19:41 +0000 (22:19 +0000)]
consistently include stdio.h in lib/gssapi/krb5/import_name.c
* import_name.c: Include stdio.h regardless of presence of
getpwuid_r(), to ensure definition of BUFSIZ. Reported by
Vladimir Terziev.
ticket: new
target_version: 1.4.3
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17327
dc483132-0cff-0310-8789-
dd5450dbe970
Jeffrey Altman [Thu, 28 Jul 2005 23:41:16 +0000 (23:41 +0000)]
Add stub for krb5int_pthread_loaded() for Windows
ticket: new
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17323
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 22 Jul 2005 03:33:00 +0000 (03:33 +0000)]
doc Novell changes
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17318
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 22 Jul 2005 03:27:22 +0000 (03:27 +0000)]
coding style
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17317
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 21 Jul 2005 19:36:35 +0000 (19:36 +0000)]
describe Novell changes
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17316
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 21 Jul 2005 00:06:01 +0000 (00:06 +0000)]
cleanup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17315
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 20 Jul 2005 23:39:56 +0000 (23:39 +0000)]
describe Novell changes in this directory
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17314
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Wed, 20 Jul 2005 00:13:38 +0000 (00:13 +0000)]
* aclocal.m4 (AC_LIBRARY_NET): Special-case AIX 5.x due to broken
res_ninit(), or more precisely, incorrect size of struct
__res_state.
ticket: 2902
tags: pullup
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17309
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 14 Jul 2005 21:55:50 +0000 (21:55 +0000)]
doc novell change
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17303
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 12 Jul 2005 20:07:06 +0000 (20:07 +0000)]
fix MITKRB5-SA-2005-003 krb5_recvauth double-free
* recvauth.c (recvauth_common): Avoid double-free on invalid
version string. Thanks to Magnus Hagander. Fix for
MITKRB5-SA-2005-003 [CAN-2005-1689, VU#623332].
ticket: new
target_version: 1.4.2
tags: pullup
component: krb5-libs
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17299
dc483132-0cff-0310-8789-
dd5450dbe970
Tom Yu [Tue, 12 Jul 2005 19:56:56 +0000 (19:56 +0000)]
fix MITKRB5-SA-2005-002 KDC double-free and heap overflow
Fix for MITKRB5-SA-2005-002
* KDC double-free [CAN-2005-1174, VU#259798]
* krb5_unparse_name heap overflow [CAN-2005-1175, VU#885830]
Thanks to Daniel Wachdorf.
ticket: new
flags: pullup
target_version: 1.4.2
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17298
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Fri, 8 Jul 2005 22:13:15 +0000 (22:13 +0000)]
* api.1/lock.exp (lock_test_continue): After exiting the loop, send the process
a signal before waiting for it to die.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17297
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Jul 2005 23:27:12 +0000 (23:27 +0000)]
* krb5.conf.proto: Add a bunch of db module info that should be in
kdc.conf.proto, but is sought here for now.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17296
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Jul 2005 23:24:29 +0000 (23:24 +0000)]
* kdb5.c (kdb_get_library_name, kdb_load_library): Change default name to "db2".
(kdb_get_library_name): On error reading from the config file, don't just use
the default.
(kdb_load_library): Don't add "lib" prefix on module name.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17295
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Jul 2005 23:22:18 +0000 (23:22 +0000)]
Rename module to "db2"
* Makefile.in (LIBBASE): Change to db2.
(LIBMAJOR): Change to 0.
(all): Deleted explicit dependency.
(all-unix): Added here, without "lib" prefix.
(clean-unix): Drop clean-liblinks.
* db2_exp.c: (krb5_db_vftabl_db2): Renamed from ..._kdb_db2.
* db2.exports: Rename from libkdb_db2.exports, update for symbol name change.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17294
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Jul 2005 23:17:21 +0000 (23:17 +0000)]
Drop "lib" prefix from things intended to be dynamically loaded
* lib.in (LIBPREFIX): New variable.
* libnover.in (LIBPREFIX): New variable.
(LIBLIST, $(LIBBASE)$(SHLIBVEXT), $(TOPLIBD)/$(LIBBASE)$(SHLIBEXT), clean-libs,
install-shared): Drop "lib" from generated shared object name.
* pre.in (SHLIB_EXPORT_FILE): Use $(LIBPREFIX).
* shlib.conf: Use $(LIBPREFIX) in LDCOMBINE.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17293
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 6 Jul 2005 02:28:42 +0000 (02:28 +0000)]
kdb_db2.c change from friday
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17292
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 04:36:07 +0000 (04:36 +0000)]
rename string_to_key.c to arcfour_s2k.c
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17291
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 04:35:05 +0000 (04:35 +0000)]
rename arcfour.c to rc4.c
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17290
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 03:12:08 +0000 (03:12 +0000)]
* Makefile.in (INSTALLMKDIRS): Add KRB5_DB_MODULE_DIR
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17289
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 03:00:13 +0000 (03:00 +0000)]
* err_handle.c (krb5_err_key): Variable deleted.
(init_err_handling, krb5_set_err, krb5_get_err_string, krb5_clr_error): Use k5_
macros for thread-specific data instead of pthread versions.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17288
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 02:56:07 +0000 (02:56 +0000)]
* k5-thread.h (k5_key_t): Add K5_KEY_KDB_ERR_HANDLER and K5_KEY_KADM_CLNT_ERR_HANDLER
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17287
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 02:52:01 +0000 (02:52 +0000)]
* Makefile.in (check-unix): Don't run dyntest automatically
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17286
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 01:53:58 +0000 (01:53 +0000)]
delete functions in '#if 0'
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17285
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 01:51:57 +0000 (01:51 +0000)]
whitespace
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17284
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 01:51:00 +0000 (01:51 +0000)]
Convert to ISO C function declaration style.
Some whitespace and comment changes.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17283
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Sat, 2 Jul 2005 01:41:59 +0000 (01:41 +0000)]
reformat
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17282
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 30 Jun 2005 00:15:33 +0000 (00:15 +0000)]
* Makefile.in (t_kdb, check, clean): Delete t_kdb references
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17281
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 30 Jun 2005 00:13:36 +0000 (00:13 +0000)]
* Makefile.in: Use libnover_frag.
(all-unix): Don't depend on all-liblinks.
(lib$(LIBBASE)$(SO_EXT)): Rule deleted.
(t_kdb, check, clean): Delete t_kdb references.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17280
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Thu, 30 Jun 2005 00:11:07 +0000 (00:11 +0000)]
* t_ser.c (ser_data): Don't initialize db serialization code that doesn't exist
any more.
(ser_kcontext_test): Don't create and destroy databases.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17279
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 23:30:58 +0000 (23:30 +0000)]
* osconf.h (DEFAULT_KDB_LIB_PATH): Use @MODULEDIR. Don't use a fixed global
directory.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17278
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 23:29:38 +0000 (23:29 +0000)]
* Makefile.in (osconf.h): Depend on Makefile. Always display commands executed
for replace-if-newer sequence.
(PROCESS_REPLACE): Replace @MODULEDIR with $(KRB5_DB_MODULE_DIR).
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17277
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 23:28:06 +0000 (23:28 +0000)]
* pre.in (KRB5_DB_MODULE_DIR): New variable
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17276
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 23:27:30 +0000 (23:27 +0000)]
* libnover.in (Makefile): Depend on correct makefile fragment.
(SHLIBVEXT): Fix definition.
(LIBLIST, LIBINSTLIST): Override configured definitions.
(all-liblinks, clean-liblinks): Targets deleted.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17275
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 19:53:10 +0000 (19:53 +0000)]
* aclocal.m4 (libnover_frag): Set and substitute
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17274
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 19:52:37 +0000 (19:52 +0000)]
update comments
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17273
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 19:52:26 +0000 (19:52 +0000)]
* libnover.in: New file
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17272
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Wed, 29 Jun 2005 19:23:01 +0000 (19:23 +0000)]
* Makefile.in (LIB): Variable deleted, uses replaced with LIBBASE.
(SHLIB_EXPDEPS, SHLIB_EXPLIBS): Add gssrpc library and depedencies.
(lib$(LIBBASE)$(SO_EXT)): Don't explicitly link in the gssrpc library.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17271
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Mon, 27 Jun 2005 23:59:43 +0000 (23:59 +0000)]
Fix build problems on AIX, Tru64
* kdb_db2.c: Don't use C++-style comments.
(krb5_db2_db_get_principal): Don't use variables named "try".
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17270
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 04:28:20 +0000 (04:28 +0000)]
* Makefile.in (SHLIB_EXPLIBS): Add $(DL_LIB)
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17269
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 04:11:25 +0000 (04:11 +0000)]
* err_handle.c, kdb5.c: Test ENABLE_THREADS, not just HAVE_PTHREAD_H
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17268
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 03:58:43 +0000 (03:58 +0000)]
reformat
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17267
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 03:14:53 +0000 (03:14 +0000)]
* aclocal.m4 (KRB5_AC_ENABLE_THREADS): Override guessed PTHREAD_CFLAGS with
correct value for solaris+gcc.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17266
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 02:54:15 +0000 (02:54 +0000)]
Use DL_LIB and THREAD_LINKOPTS instead of explicitly specifying the dl
and pthread libraries by name.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17265
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 02:46:33 +0000 (02:46 +0000)]
* pre.in (THREAD_LINKOPTS): New variable
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17264
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 02:22:14 +0000 (02:22 +0000)]
* pre.in (PTHREAD_LIBS, DL_LIB): New variables
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17263
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 02:21:31 +0000 (02:21 +0000)]
* aclocal.m4 (WITH_CC): Don't use -pedantic on Linux.
(KRB5_AC_FIND_DLOPEN): New macro. Set DL_LIB.
(CONFIG_RULES, AC_KRB5_TCL_TRYOLD): Use it.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17262
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 02:05:30 +0000 (02:05 +0000)]
*** empty log message ***
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17261
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 02:04:56 +0000 (02:04 +0000)]
* aclocal.m4 (WITH_CC): Don't use -pedantic on Linux
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17260
dc483132-0cff-0310-8789-
dd5450dbe970
Ken Raeburn [Tue, 21 Jun 2005 01:36:03 +0000 (01:36 +0000)]
Novell Database Abstraction Layer merge.
Will probably break things.
git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@17258
dc483132-0cff-0310-8789-
dd5450dbe970