oysteikt/heimdal

Go to file

Taylor R Campbell f051c36471 Pass NI_NUMERICSERV|NI_NUMERICSCOPE if NI_NUMERICHOST to getnameinfo.

This addresses part of https://github.com/heimdal/heimdal/issues/1214
to audit potential network leaks with [libdefaults] block_dns = yes.

NI_NUMERICHOST is _probably_ sufficient -- we probably won't see many
systems using NIS to look up service names by number if we fail to
specify NI_NUMERICSERV, and such systems probably require careful
auditing of their own.  And I don't know of any way NI_NUMERICSCOPE
could trigger network leaks.  But named scope ids are such a niche
option with IPv6 that setting it to forestall concerns can't hurt
much, and it makes reviewing easier if we just unconditionally flip
on all the numeric-only options.

2024-01-09 21:19:30 -06:00

GHA: Upgrade to Python 3

2023-05-26 12:42:22 -05:00

ktutil: Avoid even doing arithmetic on res after realloc(res, ...).

2023-11-07 14:20:40 -06:00

Pass NI_NUMERICSERV|NI_NUMERICSCOPE if NI_NUMERICHOST to getnameinfo.

2024-01-09 21:19:30 -06:00

cf/make-proto.pl: make JSON:PP optional

2024-01-08 10:23:25 -06:00

doc: Document KRB5CCNAME and KRB5_KTNAME

2023-05-26 13:24:06 -05:00

add NTMakefile and windows directories

2011-07-17 12:16:59 -07:00

krb5: Make heimdal_version and heimdal_long_version const.

2023-06-20 12:19:48 -05:00

Use AI_NUMERICSERV if block_dns, and use local getaddrinfo to audit.

2024-01-09 16:06:32 -06:00

kcm,kdc/config.c: detect too big max_request sizes (>= 64 MB)

2023-06-20 12:57:28 -05:00

kdc: Return NEVER_VALID error code if ticket will never be valid

2024-01-09 16:06:06 -06:00

kpasswdd: Fix out-of-bounds read (#1058 )

2023-01-04 01:36:02 -06:00

Add a test for potential DNS leaks via symbol interposition.

2024-01-08 10:22:02 -06:00

Pass NI_NUMERICSERV|NI_NUMERICSCOPE if NI_NUMERICHOST to getnameinfo.

2024-01-09 21:19:30 -06:00

hcrypto: Remove dead MD2 code

2022-11-17 19:20:08 -06:00

krb5: Fix spelling of error messages

2023-11-28 21:34:35 -05:00

Add a test for potential DNS leaks via symbol interposition.

2024-01-08 10:22:02 -06:00

Improve coverage script a bit

2020-04-15 19:05:21 -05:00

Documentation changes for the Windows Build

2022-09-24 20:21:09 +10:00

.gitignore

update .gitignore

2022-01-20 12:49:19 -05:00

.travis.yml

travis: Do not brew update [harder]

2021-03-27 01:08:56 -05:00

acinclude.m4

use m4_define, over-quote string

2004-02-12 14:19:16 +00:00

appveyor.yml

appveyor: Use VS 2019 image to get working msys2

2022-01-05 12:59:35 -06:00

autogen.sh

check for JSON perl module and if not found ask developer to install it

2014-08-22 21:17:16 -07:00

ChangeLog

We stop writing change logs, see the source code version control systems history log instead

2008-11-12 04:17:33 +00:00

ChangeLog.1998

changes upto 1998

2000-06-07 10:01:25 +00:00

ChangeLog.1999

move older stuff over to ChangeLog.1999

2000-11-17 01:27:17 +00:00

ChangeLog.2000

move older entries to ChangeLog.2000

2001-01-03 01:50:47 +00:00

ChangeLog.2001

changes from 2001

2002-08-21 13:29:08 +00:00

ChangeLog.2002

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

ChangeLog.2003

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

ChangeLog.2004

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

ChangeLog.2005

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

ChangeLog.2006

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

ChangeLog.2007

switch to utf8 encoding of all files

2008-09-13 08:53:55 +00:00

CODE_OF_CONDUCT.md

Create CODE_OF_CONDUCT.md

2019-06-07 22:03:05 -04:00

configure.ac

cf: link libatomic if needed

2024-01-04 14:23:17 -06:00

krb5.conf

Update krb5.conf

2023-01-12 10:19:35 -06:00

LICENSE

update (c)

2014-08-23 19:14:10 -07:00

Makefile.am

Fix make dist

2022-01-14 20:10:19 -06:00

Makefile.am.common

move check-local target to cf/Makefile.am.common

2002-05-19 18:35:37 +00:00

NEWS

Update NEWS

2022-11-15 17:53:54 -06:00

NTMakefile

Don't build the docs on appveyor

2019-11-20 18:14:44 -05:00

README

Update README mailing lists and links

2020-06-26 11:29:15 -04:00

README.fast

krb5: note GSS-API can be used as PA plugin interface

2021-12-17 19:42:35 +11:00

README.md

Update badges at bottom of README.md

2022-02-12 15:00:59 -06:00

SECURITY.md

Update SECURITY.md

2019-06-09 13:43:47 -04:00

TODO

need to fix lib/krb5/expand_path_w32.c

2010-01-05 19:21:45 +01:00

README.md

Heimdal

Heimdal is an implementation of:

ASN.1/DER,
PKIX, and
Kerberos.

For information how to install see here.

There are man pages for most of the commands.

Bug reports and bugs are appreciated. Use GitHub issues.

For more information see the project homepage https://heimdal.software/heimdal/ or the mailing lists:

heimdal-announce@heimdal.software low-volume announcement heimdal-discuss@heimdal.software high-volume discussion

send mail to heimdal-announce-subscribe@heimdal.software and heimdal-discuss-subscribe@heimdal.software respectively to subscribe.

Build Status

Languages

C 92.1%

Roff 2.8%

Shell 2.3%

Makefile 0.7%

M4 0.5%

Other 1.4%