x

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17048 ec53bebd-3082-4978-b11e-865c3cabbd6b

ChangeLog

@@ -1,3 +1,56 @@
+2006-04-10  Love H<>rnquist <20>strand  <lha@it.su.se>
+
+	* lib/krb5/replay.c (krb5_rc_resolve_full): make compile again.
+
+	* lib/krb5/keytab_krb4.c (krb4_kt_start_seq_get_int): make compile
+	again.
+
+	* lib/krb5/transited.c (make_path): make sure we return allocated
+	memory Coverity, NetBSD CID#1892
+
+	* lib/krb5/transited.c (make_path): make sure we return allocated
+	memory Coverity, NetBSD CID#1892
+
+	* lib/krb5/rd_req.c (krb5_verify_authenticator_checksum): on
+	protocol failure, avoid leaking memory Coverity, NetBSD CID#1900
+
+	* lib/krb5/principal.c (krb5_parse_name): remember to free realm
+	in case of error Coverity, NetBSD CID#1883
+
+	* lib/krb5/principal.c (krb5_425_conv_principal_ext2): remove
+	memory leak in case of weird formated dns replys.
+	Coverity, NetBSD CID#1885
+	
+	* lib/krb5/replay.c (krb5_rc_resolve_full): don't return pointer
+	to a allocated krb5_rcache in case of error.
+
+	* lib/krb5/log.c (krb5_addlog_dest): free fn in case of error
+	Coverity, NetBSD CID#1882
+	
+	* lib/krb5/keytab_krb4.c: Fix deref before NULL check, fix error
+	handling.  Coverity, NetBSD CID#2369
+
+	* lib/krb5/get_for_creds.c (krb5_get_forwarded_creds):
+	in_creds->client should always be set, assume so.
+
+	* lib/krb5/keytab_any.c (any_next_entry): restructure to make it
+	easier to read Fixes Coverity, NetBSD CID#625
+
+	* lib/krb5/crypto.c (krb5_string_to_key_derived): deref after NULL
+	check.  Coverity NetBSD CID#2367
+
+	* lib/krb5/build_auth.c (krb5_build_authenticator): use
+	calloc. removed check that was never really used. Coverity NetBSD
+	CID#2370
+	
+2006-04-09  Love H<>rnquist <20>strand  <lha@it.su.se>
+	
+	* lib/krb5/rd_req.c (krb5_verify_ap_req2): make sure `ticket<65>
+	points to NULL in case of error, add error handling, use calloc.
+
+	* kpasswd/kpasswdd.c (doit): when done, close all fd in the
+	sockets array and free it.  Coverity NetBSD CID#1916
+	
 2006-04-08  Love H<>rnquist <20>strand  <lha@it.su.se>
 
 	* lib/krb5/store.c (krb5_ret_principal): fix memory leak Coverity,

lib/gssapi/ChangeLog

@@ -1,3 +1,8 @@
+2006-04-09  Love H<>rnquist <20>strand  <lha@it.su.se>
+
+	* add_cred.c: Check that cred != GSS_C_NO_CREDENTIAL, this is a
+	standard conformance failure, but much better then a crash.
+	
 2006-04-02  Love H<>rnquist <20>strand  <lha@it.su.se>
 	
 	* get_mic.c (get_mic*)_: make sure message_token is cleaned on

lib/gssapi/krb5/ChangeLog

@@ -1,3 +1,8 @@
+2006-04-09  Love H<>rnquist <20>strand  <lha@it.su.se>
+
+	* add_cred.c: Check that cred != GSS_C_NO_CREDENTIAL, this is a
+	standard conformance failure, but much better then a crash.
+	
 2006-04-02  Love H<>rnquist <20>strand  <lha@it.su.se>
 	
 	* get_mic.c (get_mic*)_: make sure message_token is cleaned on

lib/kadm5/ChangeLog

@@ -1,6 +1,23 @@
+2006-04-10  Love H<>rnquist <20>strand  <lha@it.su.se>
+
+	* log.c: (kadm5_log_rename): handle errors better
+	Fixes Coverity, NetBSD CID#628
+
+	* log.c (kadm5_log_delete): add error handling Coverity, NetBSD
+	CID#626
+	(kadm5_log_modify): add error handling Coverity, NetBSD CID#627
+
+	* init_c.c (_kadm5_c_get_cred_cache): handle ccache case better in
+	case no client name was passed in. Coverity, NetBSD CID#919
+	
+	* init_c.c (_kadm5_c_get_cred_cache): Free client principal in
+	case of error. Coverity NetBSD CID#1908
+	
 2006-02-02  Love H<>rnquist <20>strand  <lha@it.su.se>
 	
-	* kadm5_err.et: (PASS_REUSE): Spelling, from V<>clav H?la <ax@natur.cuni.cz>
+	* kadm5_err.et: (PASS_REUSE): Spelling, 
+	from V<>clav H?la <ax@natur.cuni.cz>
+	
 2006-01-25  Love H<>rnquist <20>strand  <lha@it.su.se>
 
 	* send_recv.c: Clear error-string when introducing new errors.