oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

Commit Graph

  • d5044abac8 Improve gss_store_cred() for cred sets Nicolas Williams 2015-04-01 19:28:08 -05:00
  • e0dd26d963 roken: rand.c needs to include config.h Simon Wilkinson 2015-04-13 08:38:14 +01:00
  • 4cf66ae8e4 roken: use Win32 rand_s() for rk_random() when available Jeffrey Altman 2015-04-11 01:25:55 -04:00
  • 828f4f4fb1 Fix build when OpenSSL has no EGD support Bernard 2015-04-10 22:47:03 +02:00
  • 0de18bdb5f Add missing lib/gssapi/test_add_store_cred.c Nicolas Williams 2015-04-01 20:28:31 -05:00
  • 465483de49 Fix use after free in test_kuserok.c Nicolas Williams 2015-03-23 17:45:08 -05:00
  • 945fe5fb2f Fix leak in fcc_remove_cred() Nicolas Williams 2015-03-23 17:44:21 -05:00
  • 333c6fe95d Fix leak in kinit Nicolas Williams 2015-03-23 17:44:03 -05:00
  • 3d54f93bed Fix leak in kadmin ank Nicolas Williams 2015-03-23 17:43:42 -05:00
  • b81f16abf6 Fix memleak in kswitch rare error Nicolas Williams 2015-03-19 22:10:51 -05:00
  • 86017e8798 Fix leaks in test_kuserok.c Nicolas Williams 2015-03-19 09:29:55 -05:00
  • 2fbd7331a6 Fix error-case leaks in lib/base/db.c Nicolas Williams 2015-03-19 09:29:33 -05:00
  • 2bbf56b2e4 Fix error-case memleak in aname2lname Nicolas Williams 2015-03-19 09:32:28 -05:00
  • 13759fb73f Free kadm5 princ policy Nicolas Williams 2015-03-18 14:23:28 -05:00
  • d07d93ce35 Bounds check in aname2lname Nicolas Williams 2015-03-18 22:25:36 -05:00
  • 89aed008a9 Fix memleak in kswitch Nicolas Williams 2015-03-18 14:23:11 -05:00
  • a318ac86f5 Run tests/gss/check-basic Nicolas Williams 2015-03-19 17:40:43 -05:00
  • f73c4edf69 Fix gss_store_cred() Nicolas Williams 2015-03-19 12:30:26 -05:00
  • df41d53c67 Fix gss_add_cred() (krb5) Nicolas Williams 2015-03-18 22:23:45 -05:00
  • 533578e726 Make gss_store_cred() work Nicolas Williams 2015-03-18 15:22:09 -05:00
  • 3021258f60 Add tests/bin/intr Nicolas Williams 2015-03-18 15:21:55 -05:00
  • e75f790fe6 Use getauxval() for issuid() on Linux Nicolas Williams 2015-03-18 16:22:52 -05:00
  • b48bed5f42 Daemons detach atomically to avoid having to wait Nicolas Williams 2015-03-17 16:03:15 -05:00
  • 0778b19c3f Revive name rule docs Nicolas Williams 2015-03-16 19:18:47 -05:00
  • a7587b08e2 Support hostname:port svc princs Nicolas Williams 2015-03-20 17:42:59 -05:00
  • 5fffc4061f Don't use canon rules in principal name comparison Nicolas Williams 2015-03-24 11:49:05 -05:00
  • 487b6820f6 Revamp name canonicalization code Nicolas Williams 2015-03-15 18:20:05 -05:00
  • a1c87df260 Add guard in krb5_free_creds() Nicolas Williams 2015-03-24 11:47:58 -05:00
  • 902aa4ee02 tests on Windows Jeffrey Altman 2015-03-21 15:44:48 -04:00
  • 2c68305856 hcrypto: Remove w32crypt NTDDI_VERSION checks Jeffrey Altman 2015-03-21 15:43:33 -04:00
  • 540c3273c4 kadmin: improve warnings in ext_keytab Nicolas Williams 2015-03-16 11:36:28 -05:00
  • 15e69fbb58 kadmin: add ext_keytab --random-key switch Jeffrey Altman 2015-03-16 11:28:12 -05:00
  • 34bf7ae162 kadmind: don't send bogus keys to ext_keytab et al Jeffrey Altman 2015-03-16 11:03:58 -05:00
  • 6043cc8c88 kadmind: check for KADM5_PRIV_GET when op GET Jeffrey Altman 2015-03-16 10:47:16 -05:00
  • 9fbbc4cf85 Refactor capath_worker() a bit more Nicolas Williams 2015-03-16 10:40:10 -05:00
  • 69b0a8f4eb kadm5: kadmin modify must refuse bogus keys Nicolas Williams 2015-03-12 00:51:16 -05:00
  • dcbe8ae73b kadmin: do_ext_keytab add bogus key warnings Nicolas Williams 2015-03-12 22:24:24 -04:00
  • 1bfb759a64 kadmin: refactor do_ext_keytab for common cleanup Jeffrey Altman 2015-03-12 22:20:24 -04:00
  • 14195658a4 kadmin: del_enctype check for bogus keys Nicolas Williams 2015-03-12 21:44:59 -04:00
  • 7ab1e01d75 kadmin: add_enctype check for bogus keys Nicolas Williams 2015-03-12 21:42:48 -04:00
  • edb6c1b075 kadmin: del_enctype whitespace Nicolas Williams 2015-03-12 21:41:42 -04:00
  • 6683650337 kadmin: add_enctype fix whitespace Nicolas Williams 2015-03-12 21:39:00 -04:00
  • db72e66eb9 kadm5: Add functions to check for bogus keys Nicolas Williams 2015-03-12 14:42:22 -05:00
  • cfdf6d5cbe gsskrb5: Make krb5 mech use referrals Viktor Dukhovni 2015-03-11 18:27:34 -05:00
  • 8a5d50a328 krb5: do not store TGTs if GC_NO_STORE Nicolas Williams 2015-03-11 16:43:00 -05:00
  • b84bdf213d krb5: improve comments in get_cred_kdc_capath_worker Nicolas Williams 2015-03-12 21:20:09 -04:00
  • 4f074487b4 krb5: reject referrals in capath code paths Nicolas Williams 2015-03-12 21:15:53 -04:00
  • e13c0946f6 krb5: refactor get_cred_kdc_capath_worker Jeffrey Altman 2015-03-12 21:09:47 -04:00
  • c37f1b3e4f krb5: Don't cache/reuse referral TGTs Nicolas Williams 2015-03-11 15:32:05 -05:00
  • d9e3e376a3 tests: Add simple key history test for kdc Nicolas Williams 2015-03-11 12:22:25 -05:00
  • 95e56fa3ae hdb: fix hdb_unseal_keys_kvno return when no history Nicolas Williams 2015-03-10 23:35:32 -05:00
  • 83011252d7 kdc: adjust flags passed to hdb_fetch_kvno() Jeffrey Altman 2015-03-10 15:03:08 -04:00
  • fca6363307 Drop delegated creds when target is NULL Viktor Dukhovni 2015-03-04 02:38:09 +00:00
  • ca052eadd5 Fix gss_inquire_cred_by_mech. Viktor Dukhovni 2015-03-04 02:24:54 +00:00
  • 8485250989 roken: Add memset_s implementation Simon Wilkinson 2015-03-05 10:34:09 +00:00
  • 745eeb1252 Ensure DER form of hxtool ca random serial numbers Viktor Dukhovni 2015-03-05 03:27:15 -05:00
  • b7ca6bbc7a Revert "make sure that serial number is valid DER when done ..." Viktor Dukhovni 2015-03-05 03:56:04 -05:00
  • 35add96d37 make sure that serial number is valid DER when done (found by Viktor Dukhovni) Love Hörnquist Åstrand 2015-03-05 00:26:03 -08:00
  • 920eccc59e X11 tools have outlived their usefulness, use SSH and pam with native locker Love Hörnquist Åstrand 2015-03-04 19:18:00 -08:00
  • d4fda7e4f0 LLVM unused variable warning Viktor Dukhovni 2015-03-04 19:52:58 -05:00
  • 0d52fd607f LLVM enum range warning Viktor Dukhovni 2015-03-04 19:52:26 -05:00
  • ba39f42b81 TBS vs Certificate sigalg consistency for RSA Viktor Dukhovni 2015-03-04 19:51:11 -05:00
  • 08c628b240 BN_is_negative is no longer a macro in OpenSSL master Viktor Dukhovni 2015-03-04 19:49:40 -05:00
  • 529f17bbec OpenSSL master requires more explicit #includes Viktor Dukhovni 2015-03-04 19:46:22 -05:00
  • a71fa7b04d Silence LLVM compiler warnings Viktor Dukhovni 2015-03-04 19:44:20 -05:00
  • c3ddece8d4 Name canon kdc config breaks iprop Viktor Dukhovni 2015-03-04 17:04:20 -05:00
  • e4a8571434 Fix DB: prefix check Viktor Dukhovni 2015-03-04 16:58:36 -05:00
  • 238392809b wincng: Remove trailing space Luke Howard 2015-02-11 20:12:53 +11:00
  • 5023f55208 Add Windows CNG (BCrypt) support to HCrypto EVP API Luke Howard 2015-02-06 16:26:08 +11:00
  • 49861eb2c5 Delay KRB5_KTNAME lookup until keytab resolution. Viktor Dukhovni 2015-02-06 23:14:52 -05:00
  • c1564e2cdb Merge pull request #119 from ktdreyer/ipv6-loopback Jeffrey Altman 2015-01-25 16:19:05 -05:00
  • 59b8f4ff84 ipv6 loopbacks fix for GNU libc getaddrinfo() Rok Papež, ARNES 2013-10-16 15:57:55 -06:00
  • ef8e4da010 only perform dir separator normalization for file paths Jeffrey Altman 2014-10-19 13:49:24 -04:00
  • b3f29170a3 hcrypto: w32crypto crypt provider handle leak Jeffrey Altman 2014-12-24 15:43:03 -05:00
  • 0e93a04c01 arcfour-hmac-md5 is weak Love Hörnquist Åstrand 2014-12-01 15:41:12 -08:00
  • 92aad0fa3d Fix kinit.1's synopsis w.r.t. -f and -F. Roland C. Dowdeswell 2014-12-01 12:40:54 -05:00
  • 5aca37ae55 revert 31be932fe8 Love Hörnquist Åstrand 2014-09-09 18:50:22 +02:00
  • a220ed39eb try using as-is name_canon_rules Love Hörnquist Åstrand 2014-09-09 18:36:57 +02:00
  • 24c8bac3b8 In all_etypes prefer des3-cbc-sha1 over arcfour-hmac-md5 Love Hörnquist Åstrand 2014-09-09 18:15:08 +02:00
  • 44ba0bcd24 no need to make chmod quiet, it supposed to be already because of \ Love Hörnquist Åstrand 2014-08-23 19:29:04 -07:00
  • c68ab04304 update (c) Love Hörnquist Åstrand 2014-08-23 19:14:10 -07:00
  • a7a6771538 merge in changes from #79 Love Hörnquist Åstrand 2014-08-23 19:08:00 -07:00
  • 394a8567fb Merge pull request #87 from jelmer/travis Love Hörnquist Åstrand 2014-08-23 19:04:05 -07:00
  • 4b0121f545 release pool when done Love Hörnquist Åstrand 2014-08-23 18:54:05 -07:00
  • d1cee9a14b now that use used up more then 16 flags and we have been using the right bit order for many years, lets stop dealing with broken bit fields from ticket flags Love Hörnquist Åstrand 2014-08-23 18:48:34 -07:00
  • f05236b202 hush autoconf Love Hörnquist Åstrand 2014-08-22 21:52:27 -07:00
  • e6ed2bc9df use LT_INIT only, fixes #95 Love Hörnquist Åstrand 2014-08-22 21:52:10 -07:00
  • c10e99bead Merge pull request #109 from cg2v/dist-kadmin-version-script Love Hörnquist Åstrand 2014-08-22 21:38:55 -07:00
  • 4569c07522 Merge pull request #110 from cg2v/anonymous-pkinit Love Hörnquist Åstrand 2014-08-22 21:35:22 -07:00
  • 42d4c2b44b Merge pull request #105 from jelmer/compatibility-symlinks Love Hörnquist Åstrand 2014-08-22 21:33:14 -07:00
  • 904324de8f Merge pull request #100 from ktdreyer/kadmin-systemd-setpgid Love Hörnquist Åstrand 2014-08-22 21:31:32 -07:00
  • 8504dce265 make quiet Love Hörnquist Åstrand 2014-08-22 21:26:15 -07:00
  • 30768c75bb make quiet Love Hörnquist Åstrand 2014-08-22 21:25:01 -07:00
  • 95f86ad1b8 remove stray a Love Hörnquist Åstrand 2014-08-22 21:23:30 -07:00
  • 0104a1c6f3 check for JSON perl module and if not found ask developer to install it Love Hörnquist Åstrand 2014-08-22 21:17:05 -07:00
  • 37afa01be3 rename roken base64, fixes #107 Love Hörnquist Åstrand 2014-08-22 20:57:24 -07:00
  • ad9cd6a138 Merge pull request #112 from jhutz/rxkad-kdf Love Hörnquist Åstrand 2014-08-22 20:21:37 -07:00
  • a84b572747 resurrect password change support again Love Hörnquist Åstrand 2014-08-22 20:19:36 -07:00
  • 9d511ea37d libkafs: derivation from non-DES key (rxkad-kdf) Jeffrey Hutzelman 2014-08-21 13:05:59 -04:00
  • 6501ba7e95 Avoid appearance of if if else ambiguity Viktor Dukhovni 2014-07-22 18:02:26 -04:00