oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Commit Graph

  • 28b05924c5 roken: Add URL-safe base64 Nicolas Williams 2025-12-27 16:01:16 -06:00
  • 788e2ee3c3 roken: Fix getarg run-on help bug Nicolas Williams 2026-01-05 17:06:30 -06:00
  • 5fa7d6edd8 roken: Add getdelim()/getline() Nicolas Williams 2025-12-31 13:42:58 -06:00
  • e60f02aed1 roken: Use secure_getenv() in socket_wrapper Nicolas Williams 2025-12-21 15:00:32 -06:00
  • 771fb1c367 roken: Split up mini_inetd_addrinfo() Nicolas Williams 2025-12-09 23:28:13 -06:00
  • 0d2ee355ee tests: Fix intr --version Nicolas Williams 2025-12-10 22:55:34 -06:00
  • 7cc3f3bbc8 cf: Add support for using Helgrind Nicolas Williams 2025-12-21 01:40:38 -06:00
  • f052cdc8e5 cf: Use valgrind w/ --show-leak-kinds=definite to reduce noise Nicolas Williams 2025-12-19 18:41:52 -06:00
  • c3a88a61b7 include: Fix leak in bits.c Nicolas Williams 2025-12-27 15:57:47 -06:00
  • 7c8ef887d4 doc: Obsolete the Layman's Guide to ASN.1 Nicolas Williams 2025-10-26 00:15:36 -05:00
  • 907d6195f5 GHA: Set core pattern on Linux Nicolas Williams 2025-12-19 23:10:47 -06:00
  • 55a8949f2a GHA: Always grab the test logs, core dumps Nicolas Williams 2025-12-08 21:26:02 -06:00
  • 1c9f184561 GHA: Get GHA working again Nicolas Williams 2025-12-08 18:41:54 -06:00
  • 7510cc5ba2 cf/largefile.m4: improve compatibility with autoconf 2.72 Jan Palus 2025-01-16 18:34:28 +01:00
  • de6776e66b appl/test: AUTOMAKE_OPTIONS = subdir-objects Jeffrey Altman 2025-10-09 12:05:19 -04:00
  • 5cf652bf35 kdc: Fix memory leak of encrypted preauthentication data Ivan Korytov 2025-02-21 14:41:17 +03:00
  • de065a739b update workflow artifacts to v4 to get the check infrastructure working again Daria Phoebe Brashear 2025-10-09 10:46:05 -04:00
  • 7e4950042c update artifacts version to v4 for github workflows Daria Phoebe Brashear 2025-10-09 10:23:24 -04:00
  • 14c78d8837 Update copyright.texi with LibTomMath Unlicense (#1283) abstrm 2025-10-09 15:56:02 +02:00
  • 8c3c97bdf6 gsskrb5: let GSS_C_DCE_STYLE imply GSS_C_MUTUAL_FLAG as acceptor Stefan Metzmacher 2024-10-16 14:44:56 +02:00
  • f0fd2d51b6 Link tests with -lresolv that depend on it Ihar Hrachyshka 2024-10-15 16:06:33 -04:00
  • 50067e8171 kdc: clear et->flags.ok_as_delegate if cross-realm krbtgt does not have it Stefan Metzmacher 2025-03-21 13:09:37 +01:00
  • 225d1c4c0e kdc: Constrained delegation requires a local delegating server Stefan Metzmacher 2025-03-20 00:22:34 +01:00
  • c0f63fba5c kdc: KRB5_ANON_REALM needs 'const Realm' Stefan Metzmacher 2025-03-20 01:38:07 +01:00
  • c3bd400fa2 base: heim_config_parse_file_multi fix plist config parsing Jeffrey Altman 2025-04-16 10:08:23 -04:00
  • fd85f7ccb6 base: parse_plist_config CFReadStreamCreateWithFile fail errors Jeffrey Altman 2025-04-16 09:50:16 -04:00
  • caf18a8ef4 cf: dns_search test requires resolv library Jeffrey Altman 2025-04-15 21:47:11 -04:00
  • cea03aebfb asdf sd-notify h7x4 2025-03-29 17:30:49 +01:00
  • 161e2b8ed7 fixup! WIP: find libsystemd with autoconfig h7x4 2025-03-29 16:25:48 +01:00
  • 3761a26a59 WIP: find libsystemd with autoconfig h7x4 2025-03-26 13:01:01 +01:00
  • 5b9d81284c Set up nix tooling h7x4 2025-03-26 12:25:38 +01:00
  • 3fba586bf5 zed: set tab width h7x4 2025-03-26 09:35:05 +01:00
  • fd2d434dd3 libtommath: Fix possible integer overflow CVE-2023-36328 czurnieden 2024-09-10 08:51:41 -04:00
  • 614bc16130 update .gitignore Jeffrey Altman 2024-09-04 10:24:44 -04:00
  • 305ab03155 krb5: Fix DNS SRV name collision handling Nicolas Williams 2024-01-09 21:09:33 -06:00
  • 8d20888e09 krb5: Red Hat gssproxy FILE ccache remove cred compatibility Jeffrey Altman 2024-06-17 12:36:32 -04:00
  • b7e699597e krb5: MIT krb5 FILE ccache remove cred compatibility Jeffrey Altman 2024-06-17 11:53:36 -04:00
  • 68dbf1ba10 krb5: fcc_next_cred do not return removed creds Jeffrey Altman 2024-06-17 11:16:28 -04:00
  • ec37879038 appl/tests: auditdns eliminate use of 'restrict' keyword if !C99 Jeffrey Altman 2024-09-03 10:16:05 -04:00
  • 2262e19a40 lib/gssapi/krb5: don't ignore _gsskrb5_decapsulate() result in init_sec_context responses Stefan Metzmacher 2024-03-11 14:12:46 +01:00
  • 99a53d76e6 krb5: Correct inverted conditions Jo Sutton 2024-02-14 12:42:29 +13:00
  • 347822cf76 ENABLE_AFS_STRING_TO_KEY requires crypt() Jeffrey Altman 2024-06-17 11:09:07 -04:00
  • b09f3b3c28 otp: prevent implicit function declarations if HAVE_DB_NDBM Jeffrey Altman 2024-09-03 12:50:11 -04:00
  • 323d555c82 cf: Do not use headers and argument lists in AC_FIND_FUNC_NO_LIBS2 Florian Weimer 2023-04-13 13:26:29 +02:00
  • c711cbf7cc cf: Include <string.h> for memset in AC_HAVE_STRUCT_FIELD Florian Weimer 2023-04-13 13:13:59 +02:00
  • 78f017fe01 krb5/fast.c: fix copying source/dest for copy_KrbFastArmor Robert Manner 2024-08-28 15:03:37 +02:00
  • ba8c3dbc62 lib/gssapi/krb5: implement GSS_C_CHANNEL_BOUND_FLAG for gss_init_sec_context() Stefan Metzmacher 2024-03-01 13:17:41 +01:00
  • 6b08c05258 kdc: Enforce hardware authentication for accounts requiring it Jo Sutton 2022-04-29 12:18:37 +12:00
  • a2a765f88e lib/krb5: initialize kdc_offset in the memory ccache from the krb5_context Ralph Boehme 2024-07-04 15:03:19 +02:00
  • c2e68593a5 lib/krb5: use check_fast() in _krb5_fast_unwrap_error() Ralph Boehme 2024-07-04 14:59:54 +02:00
  • 2f7a9d9530 gssapi: Fix ordering logic in _gssapi_msg_order_check Simon Wilkinson 2024-06-15 09:35:05 +01:00
  • 05e292e1af gssapi: Sequence errors should not be fatal Simon Wilkinson 2024-06-15 09:33:21 +01:00
  • 1b57b62d82 cf/largefile.m4: Fix build with autoconf-2.72 Bernd Kuhls 2024-02-10 09:33:48 +01:00
  • aff90c322e Fix spelling Minsoo Choo 2024-01-27 17:52:39 -05:00
  • c80c04b235 spelling fixes (underun prefered relase encyption confunder) Michael Tokarev 2024-02-27 14:31:09 +13:00
  • c753ed5b7f kdc: APPLE disable enable-pkinit by default as documented Jeffrey Altman 2024-06-15 07:52:25 -04:00
  • 5ba8b7f177 gssapi/mech: -Wcalloc-transposed args Jeffrey Altman 2024-06-03 22:26:56 -04:00
  • 2d89b4c27c kdc: -Wcalloc-transposed args Jeffrey Altman 2024-06-03 22:26:22 -04:00
  • 1ffff7e4ff kadmin: ext.c -Wcalloc-transposed args Jeffrey Altman 2024-06-03 22:25:24 -04:00
  • b74ab765c7 sl: osad -Wcalloc-transposed args Jeffrey Altman 2024-06-03 14:19:45 -04:00
  • 17402aef07 roken: warning: ‘line’ defined but not used [-Wunused-variable] Jeffrey Altman 2024-06-03 14:17:31 -04:00
  • 17f31adbff gssapi/krb5: _gsskrb5_display_name return GSS_C_NT_ANONYMOUS Jeffrey Altman 2024-06-03 14:05:37 -04:00
  • d8c10e68a6 kdc: per-target CPPFLAGS do not have an _AM in the variable name Daria Phoebe Brashear 2024-05-20 21:44:00 -04:00
  • 1b62220778 tests: Use here-doc kadmin in Java test Nicolas Williams 2024-01-20 16:12:59 -06:00
  • 366016b1f6 tests: Speed up tests/gss/check-gssmask Nicolas Williams 2024-01-17 16:55:27 -06:00
  • 1aa0a495c2 tests: Use kadmin w/ here-document to speed up tests Nicolas Williams 2024-01-16 11:08:30 -06:00
  • 016373931d tests: Kill daemons on ^C Nicolas Williams 2024-01-16 14:22:55 -06:00
  • 7a0915c630 tests: Make check-hdb-mitdb a bit more verbose Nicolas Williams 2024-01-16 11:32:15 -06:00
  • 408a62a7b4 cf: Add --with-mitdb=PATH option Nicolas Williams 2024-01-16 12:25:38 -06:00
  • 2e94b7855c doc: Clarify kdc --ports / [kdc] ports (fix #1223) Nicolas Williams 2024-01-16 11:28:35 -06:00
  • cb9a130322 auditdns: Cover getnameinfo and gethostbyaddr too. Taylor R Campbell 2024-01-10 01:25:02 +00:00
  • e0aeef2bd3 krb5_sock_to_principal: Respect option [libdefaults] block_dns. Taylor R Campbell 2024-01-10 01:23:56 +00:00
  • f051c36471 Pass NI_NUMERICSERV|NI_NUMERICSCOPE if NI_NUMERICHOST to getnameinfo. Taylor R Campbell 2024-01-10 01:20:02 +00:00
  • 4d39fe8d04 libroken: Fill in NI_NUMERICSCOPE as 0 if not defined. Taylor R Campbell 2024-01-10 02:49:35 +00:00
  • d73910c588 auditdns: Tidy up minor issues. Taylor R Campbell 2024-01-09 23:25:51 +00:00
  • e75e549252 Use AI_NUMERICSERV if block_dns, and use local getaddrinfo to audit. Taylor R Campbell 2024-01-09 04:23:24 +00:00
  • 1d8f4347bb lib/krb5: Fix error message typo Joseph Sutton 2022-11-21 14:01:47 +13:00
  • 597b59dfb7 kdc: Return NEVER_VALID error code if ticket will never be valid Joseph Sutton 2023-04-14 11:47:08 +12:00
  • baf1930b6a kdc: don't fail salt_fastuser_crypto with r->req.req_body.cname == NULL for TGS-REQ Stefan Metzmacher 2022-02-25 04:09:47 +01:00
  • 4de8b3564e kdc: Fix leak with PK-INIT-Win2k Joseph Sutton 2023-07-04 12:43:43 +12:00
  • 71fd391036 kdc: Fix spelling Joseph Sutton 2023-07-04 12:46:38 +12:00
  • 13d3bcf1d0 cf/make-proto.pl: make JSON:PP optional Stefan Metzmacher 2023-08-01 14:40:33 +02:00
  • ad23636db8 Add a test for potential DNS leaks via symbol interposition. Taylor R Campbell 2024-01-07 21:44:29 +00:00
  • e2c0d98965 lib/roken/syslog.c: Initialize hostname to avoid DNS lookups. Taylor R Campbell 2023-06-09 00:28:41 +00:00
  • 19505537fd Ensure all calls to rk_dns_lookup are headed by a block_dns check. Taylor R Campbell 2023-06-09 00:09:59 +00:00
  • fd77c4000d Ensure all calls to getaddrinfo are headed by a block_dns check. Taylor R Campbell 2023-06-09 00:08:21 +00:00
  • fa4c4430f6 krb5.conf(5): New block_dns option. Taylor R Campbell 2023-06-09 00:06:32 +00:00
  • 42e23b1777 roken: Export rk_getpwnam_r() (fix #1097) Nicolas Williams 2024-01-05 11:38:12 -06:00
  • ff41f2ae7c cf: link libatomic if needed Jan Palus 2024-01-04 14:05:58 +01:00
  • 3171398867 krb5: Fix use-after-free when debug is enabled with http_proxy. Taylor R Campbell 2024-01-02 13:46:43 +00:00
  • f455ea9834 tests: Make make -j8 check work Nicolas Williams 2024-01-03 18:47:45 -06:00
  • 3253c49544 hx509: Add support for CSRs w/ BasicConstraints (fix) Nicolas Williams 2023-11-29 13:16:16 -06:00
  • 1baceedb87 krb5: Clarify documentation for ‘pkinit_revoke’ parameter Joseph Sutton 2023-07-05 15:50:32 +12:00
  • 13dbc0a667 krb5: Fix typos in documentation Joseph Sutton 2023-07-05 15:28:33 +12:00
  • 3c62b6f5d7 kadm5: allow setting password_lifetime to 0 to clear Daria Phoebe Brashear 2023-11-13 14:42:33 -05:00
  • 12ed86de90 wind: Fix incorrect coding lines Joseph Sutton 2023-08-01 17:05:59 +12:00
  • ff079377f2 wind: Do not use invalid escape sequences Joseph Sutton 2023-08-01 16:54:32 +12:00
  • a9f21ebdac roken: Const-qualify sys_errlist Joseph Sutton 2023-07-06 10:48:16 +12:00
  • db5c8711b4 kuser: Fix error produced by compiling with FORTIFY_SOURCE=2 Joseph Sutton 2022-12-15 16:04:51 +13:00
  • 744678eb03 krb5: Use NULL pointer constant Joseph Sutton 2023-06-23 12:42:53 +12:00