heimdal/gssapi at 40e4a4df09c2d6c3ba7bf14df1dee74a0bc18110 - heimdal - PVV Git

oysteikt/heimdal

Files

History

Nicolas Williams 472509fd46 gsskrb5: Do not leak authenticator on retry

We have a Heimdal special where when the acceptor sends back an error
token for clock skew or ticket-not-yet-valid errors then the acceptor
application will get GSS_S_CONTINUE_NEEDED from gss_accept_sec_context()
so that the initiator may retry with the same context.

But we were retaining the auth_context, which means that when the
initiator does send a new token, the acceptor leaks memory because
krb5_verify_ap_req2() doesn't clean up the auth_context on reuse.  The
end result is that we leak a lot in those cases.

2022-01-07 21:04:19 -06:00

..

gsskrb5: Add simple name attributes support

2022-01-01 23:30:15 -06:00

gsskrb5: Do not leak authenticator on retry

2022-01-07 21:04:19 -06:00

gsskrb5: Add simple name attributes support

2022-01-01 23:30:15 -06:00

Use UTF-8 in KTH copyright notice

2021-11-29 12:50:26 +11:00

Use UTF-8 in KTH copyright notice

2021-11-29 12:50:26 +11:00

gss: pass GSS_C_NO_OID name type through to mechanism

2022-01-02 16:28:20 +11:00

spnego: Minor style cleanup

2021-11-11 22:41:13 -06:00

ChangeLog

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

gen-oid.pl

gss: intern OIDs (#447 )

2018-12-18 23:28:38 -06:00

gss_acquire_cred.3

Fix assorted typos

2018-12-14 17:30:14 -05:00

gss-commands.in

use sl_did_you_mean

2011-11-22 12:18:48 -08:00

gss-token.1

gss-token: implement -m to specify what mech to use.

2020-10-12 21:55:51 +01:00

gss-token.c

Always perform == or != operation on cmp function result

2021-11-24 22:30:44 -05:00

gssapi_mech.h

Add stub for gss_acquire_cred_impersonate_name().

2021-10-19 20:45:40 +11:00

gssapi.3

remove trailing whitespace

2011-05-21 11:57:31 -07:00

gssapi.h

remove trailing whitespace

2008-09-13 09:21:03 +00:00

gsstool.c

use sl_did_you_mean

2011-11-22 12:18:48 -08:00

libgssapi-exports.def

gsskrb5: Add simple name attributes support

2022-01-01 23:30:15 -06:00

libgssapi-version.rc

Windows: Rename libgssapi.dll -> gssapi.dll

2010-08-20 13:14:15 -04:00

Makefile.am

gss: Add way to set authenticator authz-data

2022-01-08 10:38:01 +11:00

NTMakefile

Generate .x source files as .c source files

2022-01-05 17:36:24 -06:00

oid.txt

Document OID arcs delegated to Heimdal by SU

2021-03-25 10:38:28 -05:00

test_acquire_cred.c

gss: Fix some test leaks

2020-04-25 21:22:32 -05:00

test_add_store_cred.c

krb5: Improve cccol sub naming; add gss_store_cred_into2()

2020-03-02 17:48:04 -06:00

test_common.c

More fixes for -Werror (GCC 4.6 catches more stuff)

2011-11-02 23:20:55 -05:00

test_common.h

remove trailing whitespace

2008-09-13 09:21:03 +00:00

test_context.c

gss: Add way to set authenticator authz-data

2022-01-08 10:38:01 +11:00

test_cred.c

gss: SAnon - the Simple Anonymous GSS-API mechanism

2020-04-25 23:19:30 -05:00

test_kcred.c

Add note about racy tests

2019-10-03 13:09:18 -05:00

test_names.c

gss: Fix test_names clang-13 build

2022-01-02 21:19:13 -06:00

test_negoex_mech.c

gss: plug leak in test_negoex_mech

2020-03-02 17:16:58 +11:00

test_ntlm.c

Round #2 of scan-build warnings cleanup

2016-11-16 17:03:14 -06:00

test_oid.c

Always perform == or != operation on cmp function result

2021-11-24 22:30:44 -05:00

version-script.map

gsskrb5: Add simple name attributes support

2022-01-01 23:30:15 -06:00