Source-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[src/trunk]: src/crypto/dist/heimdal Import heimdal-0.6.1
details: https://anonhg.NetBSD.org/src/rev/f7c2ab02b3a6
branches: trunk
changeset: 565244:f7c2ab02b3a6
user: lha <lha%NetBSD.org@localhost>
date: Fri Apr 02 14:47:00 2004 +0000
description:
Import heimdal-0.6.1
Changes in release 0.6.1
* Fixed ARCFOUR suppport
* Cross realm vulnerability
* kdc: fix denial of service attack
* kdc: stop clients from renewing kerberos 4 tickets into the future
* bug fixes
diffstat:
crypto/dist/heimdal/ChangeLog | 279 +
crypto/dist/heimdal/Makefile | 846 +
crypto/dist/heimdal/NEWS | 12 +
crypto/dist/heimdal/aclocal.m4 | 7884 ++-
crypto/dist/heimdal/admin/Makefile | 793 +
crypto/dist/heimdal/appl/Makefile | 762 +
crypto/dist/heimdal/appl/afsutil/ChangeLog | 5 +
crypto/dist/heimdal/appl/afsutil/Makefile | 790 +
crypto/dist/heimdal/appl/afsutil/afslog.c | 6 +-
crypto/dist/heimdal/appl/dceutils/Makefile | 748 +
crypto/dist/heimdal/appl/ftp/ChangeLog | 28 +
crypto/dist/heimdal/appl/ftp/Makefile | 743 +
crypto/dist/heimdal/appl/ftp/common/Makefile | 691 +
crypto/dist/heimdal/appl/ftp/ftp/Makefile | 813 +
crypto/dist/heimdal/appl/ftp/ftp/gssapi.c | 93 +-
crypto/dist/heimdal/appl/ftp/ftp/security.h | 5 +-
crypto/dist/heimdal/appl/ftp/ftpd/Makefile | 896 +
crypto/dist/heimdal/appl/kf/Makefile | 869 +
crypto/dist/heimdal/appl/kx/ChangeLog | 24 +
crypto/dist/heimdal/appl/kx/Makefile | 954 +
crypto/dist/heimdal/appl/kx/krb5.c | 142 +-
crypto/dist/heimdal/appl/kx/kxd.c | 12 +-
crypto/dist/heimdal/appl/login/Makefile | 850 +
crypto/dist/heimdal/appl/otp/Makefile | 781 +
crypto/dist/heimdal/appl/popper/ChangeLog | 6 +
crypto/dist/heimdal/appl/popper/Makefile | 821 +
crypto/dist/heimdal/appl/popper/pop_init.c | 9 +-
crypto/dist/heimdal/appl/push/Makefile | 861 +
crypto/dist/heimdal/appl/rcp/Makefile | 717 +
crypto/dist/heimdal/appl/rsh/Makefile | 898 +
crypto/dist/heimdal/appl/rsh/rshd.c | 6 +-
crypto/dist/heimdal/appl/su/Makefile | 725 +
crypto/dist/heimdal/appl/telnet/ChangeLog | 6 +
crypto/dist/heimdal/appl/telnet/Makefile | 749 +
crypto/dist/heimdal/appl/telnet/libtelnet/Makefile | 705 +
crypto/dist/heimdal/appl/telnet/telnet/Makefile | 793 +
crypto/dist/heimdal/appl/telnet/telnetd/Makefile | 797 +
crypto/dist/heimdal/appl/test/Makefile | 800 +
crypto/dist/heimdal/appl/xnlock/ChangeLog | 9 +
crypto/dist/heimdal/appl/xnlock/Makefile | 789 +
crypto/dist/heimdal/appl/xnlock/xnlock.c | 10 +-
crypto/dist/heimdal/cf/ChangeLog | 5 +
crypto/dist/heimdal/cf/Makefile.am.common | 6 +-
crypto/dist/heimdal/cf/auth-modules.m4 | 6 +-
crypto/dist/heimdal/cf/broken-getaddrinfo.m4 | 6 +-
crypto/dist/heimdal/cf/broken-glob.m4 | 6 +-
crypto/dist/heimdal/cf/broken-snprintf.m4 | 8 +-
crypto/dist/heimdal/cf/c-attribute.m4 | 6 +-
crypto/dist/heimdal/cf/c-function.m4 | 6 +-
crypto/dist/heimdal/cf/capabilities.m4 | 6 +-
crypto/dist/heimdal/cf/check-compile-et.m4 | 20 +-
crypto/dist/heimdal/cf/check-declaration.m4 | 6 +-
crypto/dist/heimdal/cf/check-getpwnam_r-posix.m4 | 6 +-
crypto/dist/heimdal/cf/check-man.m4 | 6 +-
crypto/dist/heimdal/cf/check-netinet-ip-and-tcp.m4 | 6 +-
crypto/dist/heimdal/cf/check-type-extra.m4 | 6 +-
crypto/dist/heimdal/cf/check-x.m4 | 6 +-
crypto/dist/heimdal/cf/check-xau.m4 | 6 +-
crypto/dist/heimdal/cf/find-func-no-libs.m4 | 6 +-
crypto/dist/heimdal/cf/find-func-no-libs2.m4 | 6 +-
crypto/dist/heimdal/cf/find-func.m4 | 6 +-
crypto/dist/heimdal/cf/find-if-not-broken.m4 | 6 +-
crypto/dist/heimdal/cf/have-pragma-weak.m4 | 6 +-
crypto/dist/heimdal/cf/have-struct-field.m4 | 6 +-
crypto/dist/heimdal/cf/have-type.m4 | 6 +-
crypto/dist/heimdal/cf/have-types.m4 | 6 +-
crypto/dist/heimdal/cf/krb-bigendian.m4 | 6 +-
crypto/dist/heimdal/cf/krb-func-getcwd-broken.m4 | 6 +-
crypto/dist/heimdal/cf/krb-func-getlogin.m4 | 6 +-
crypto/dist/heimdal/cf/krb-ipv6.m4 | 6 +-
crypto/dist/heimdal/cf/krb-prog-ln-s.m4 | 6 +-
crypto/dist/heimdal/cf/krb-prog-ranlib.m4 | 6 +-
crypto/dist/heimdal/cf/krb-prog-yacc.m4 | 6 +-
crypto/dist/heimdal/cf/krb-struct-spwd.m4 | 6 +-
crypto/dist/heimdal/cf/krb-struct-winsize.m4 | 6 +-
crypto/dist/heimdal/cf/krb-sys-aix.m4 | 6 +-
crypto/dist/heimdal/cf/krb-sys-nextstep.m4 | 6 +-
crypto/dist/heimdal/cf/krb-version.m4 | 6 +-
crypto/dist/heimdal/cf/mips-abi.m4 | 6 +-
crypto/dist/heimdal/cf/need-proto.m4 | 6 +-
crypto/dist/heimdal/cf/osfc2.m4 | 6 +-
crypto/dist/heimdal/cf/proto-compat.m4 | 6 +-
crypto/dist/heimdal/cf/test-package.m4 | 6 +-
crypto/dist/heimdal/cf/wflags.m4 | 6 +-
crypto/dist/heimdal/config.guess | 317 +-
crypto/dist/heimdal/config.log | 43769 +++++++++++++++++++
crypto/dist/heimdal/config.status | 1887 +
crypto/dist/heimdal/config.sub | 191 +-
crypto/dist/heimdal/configure | 40714 ++++++++++++-----
crypto/dist/heimdal/doc/Makefile | 703 +
crypto/dist/heimdal/doc/Makefile.am | 6 +-
crypto/dist/heimdal/doc/ack.texi | 4 +-
crypto/dist/heimdal/doc/heimdal.info-1 | 302 +-
crypto/dist/heimdal/doc/heimdal.info-2 | 116 +-
crypto/dist/heimdal/include/Makefile | 890 +
crypto/dist/heimdal/include/config.h | 1428 +
crypto/dist/heimdal/include/config.h.in | 6 +-
crypto/dist/heimdal/include/kadm5/Makefile | 595 +
crypto/dist/heimdal/include/stamp-h1 | 1 +
crypto/dist/heimdal/include/version.h | 2 +
crypto/dist/heimdal/include/version.h.in | 2 +
crypto/dist/heimdal/install-sh | 151 +-
crypto/dist/heimdal/kadmin/Makefile | 918 +
crypto/dist/heimdal/kdc/Makefile | 939 +
crypto/dist/heimdal/kpasswd/Makefile | 901 +
crypto/dist/heimdal/kuser/Makefile | 860 +
crypto/dist/heimdal/lib/45/Makefile | 718 +
crypto/dist/heimdal/lib/Makefile | 750 +
crypto/dist/heimdal/lib/asn1/Makefile | 1049 +
crypto/dist/heimdal/lib/asn1/Makefile.am | 6 +-
crypto/dist/heimdal/lib/asn1/der_free.c | 9 +-
crypto/dist/heimdal/lib/asn1/der_length.c | 61 +-
crypto/dist/heimdal/lib/asn1/der_locl.h | 7 +-
crypto/dist/heimdal/lib/auth/Makefile | 743 +
crypto/dist/heimdal/lib/auth/afskauthlib/Makefile | 652 +
crypto/dist/heimdal/lib/auth/pam/Makefile | 663 +
crypto/dist/heimdal/lib/auth/sia/Makefile | 713 +
crypto/dist/heimdal/lib/com_err/Makefile | 835 +
crypto/dist/heimdal/lib/des/Makefile | 1101 +
crypto/dist/heimdal/lib/editline/Makefile | 864 +
crypto/dist/heimdal/lib/gssapi/ChangeLog | 69 +
crypto/dist/heimdal/lib/gssapi/Makefile | 857 +
crypto/dist/heimdal/lib/gssapi/Makefile.am | 7 +-
crypto/dist/heimdal/lib/gssapi/add_cred.c | 56 +-
crypto/dist/heimdal/lib/gssapi/arcfour.c | 624 +
crypto/dist/heimdal/lib/gssapi/arcfour.h | 99 +
crypto/dist/heimdal/lib/gssapi/decapsulate.c | 83 +-
crypto/dist/heimdal/lib/gssapi/encapsulate.c | 24 +-
crypto/dist/heimdal/lib/hdb/Makefile | 817 +
crypto/dist/heimdal/lib/hdb/Makefile.am | 6 +-
crypto/dist/heimdal/lib/hdb/hdb-ldap.c | 209 +-
crypto/dist/heimdal/lib/hdb/hdb_locl.h | 7 +-
crypto/dist/heimdal/lib/kadm5/ChangeLog | 16 +
crypto/dist/heimdal/lib/kadm5/Makefile | 1009 +
crypto/dist/heimdal/lib/kadm5/chpass_s.c | 14 +-
crypto/dist/heimdal/lib/kadm5/ipropd_slave.c | 14 +-
crypto/dist/heimdal/lib/kafs/Makefile | 904 +
crypto/dist/heimdal/lib/kdfs/Makefile | 716 +
crypto/dist/heimdal/lib/krb5/Makefile | 1345 +
crypto/dist/heimdal/lib/krb5/Makefile.am | 6 +-
crypto/dist/heimdal/lib/krb5/config_file.c | 19 +-
crypto/dist/heimdal/lib/krb5/fcache.c | 285 +-
crypto/dist/heimdal/lib/krb5/get_for_creds.c | 134 +-
crypto/dist/heimdal/lib/krb5/krb5-private.h | 33 +
crypto/dist/heimdal/lib/krb5/mk_req_ext.c | 13 +-
crypto/dist/heimdal/lib/krb5/mk_safe.c | 6 +-
crypto/dist/heimdal/lib/krb5/parse-name-test.c | 6 +-
crypto/dist/heimdal/lib/krb5/rd_req.c | 80 +-
crypto/dist/heimdal/lib/krb5/store.c | 71 +-
crypto/dist/heimdal/lib/krb5/ticket.c | 13 +-
crypto/dist/heimdal/lib/krb5/transited.c | 55 +-
crypto/dist/heimdal/lib/krb5/verify_krb5_conf.c | 13 +-
crypto/dist/heimdal/lib/otp/Makefile | 821 +
crypto/dist/heimdal/lib/roken/ChangeLog | 15 +-
crypto/dist/heimdal/lib/roken/Makefile | 1198 +
crypto/dist/heimdal/lib/roken/Makefile.am | 80 +-
crypto/dist/heimdal/lib/roken/gai_strerror.c | 8 +-
crypto/dist/heimdal/lib/roken/ndbm_wrap.c | 9 +-
crypto/dist/heimdal/lib/sl/Makefile | 891 +
crypto/dist/heimdal/lib/vers/Makefile | 728 +
crypto/dist/heimdal/libtool | 7331 +++
crypto/dist/heimdal/ltconfig | 1437 +-
crypto/dist/heimdal/ltmain.sh | 2969 +-
crypto/dist/heimdal/missing | 14 +-
crypto/dist/heimdal/mkinstalldirs | 119 +-
crypto/dist/heimdal/tools/Makefile | 691 +
166 files changed, 137486 insertions(+), 17308 deletions(-)
diffs (truncated from 173562 to 300 lines):
diff -r c424f9867db7 -r f7c2ab02b3a6 crypto/dist/heimdal/ChangeLog
--- a/crypto/dist/heimdal/ChangeLog Fri Apr 02 14:41:59 2004 +0000
+++ b/crypto/dist/heimdal/ChangeLog Fri Apr 02 14:47:00 2004 +0000
@@ -1,3 +1,282 @@
+2004-04-01 Johan Danielsson <joda%pdc.kth.se@localhost>
+
+ * Release 0.6.1
+
+2004-03-30 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * kdc/kerberos4.c: 1.46: stop the client from renewing tickets
+ into the future From: Jeffrey Hutzelman <jhutz%cmu.edu@localhost>
+
+2004-03-10 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/fcache.c: 1.43: (fcc_store_cred): NULL terminate
+ krb5_config_get_bool_default' arglist
+
+2004-03-09 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/krb5.conf.5: 1.44: document
+ [libdefaults]fcc-mit-ticketflags=boolean 1.43: don't use path's in
+ first .Nm, it confuses some locate.updatedb, use FILES section to
+ describe where the file is instead.
+
+ * lib/krb5/fcache.c (fcc_store_cred): default to use old format
+
+ * lib/krb5/fcache.c: 1.42: (fcc_store_cred): use
+ [libdefaults]fcc-mit-ticketflags=boolean to decide what format to
+ write the fcc in. Default to mit format (aka heimdal 0.7 format)
+ 1.41: (_krb5_xlock): handle that everything was ok, and don't put
+ an error in the error strings then
+
+ * lib/krb5/store.c: 1.43: add _krb5_store_creds_heimdal_0_7 and
+ _krb5_store_creds_heimdal_pre_0_7 that store the creds in just
+ that format make krb5_store_creds default to mit format 1.42:
+ (krb5_ret_creds): Runtime detect the what is the higher bits of
+ the bitfield 1.41: (krb5_store_creds): add disabled code that
+ store the ticket flags in reverse order (bitswap32): new function
+ 1.40: (krb5_ret_creds): if the higher ticket flags are set, its a
+ mit cache, reverse the bits, bug pointed out by Sergio Gelato
+ <Sergio.Gelato%astro.su.se@localhost>
+
+ delta modfied to not change the behavior of krb5_store_creds
+
+2004-03-07 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/mk_safe.c (krb5_mk_safe): fix assignment of usec2
+
+2004-03-06 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/mcache.c: patch based on 1.17 and 1.18 but with
+ threading code pulled out;
+
+ 1.18: (mcc_get_principal): also check for primary_principal ==
+ NULL now that that isn't used as dead flag 1.17: don't overload
+ the primary_principal == NULL as dead since that doesn't always
+ work Based on patch from Jeffrey Hutzelman <jhutz%cmu.edu@localhost>, but
+ tweek by me
+
+ * lib/krb5/crypto.c: 1.94: (decrypt_internal_special): do not not
+ modify the original data test case from Ronnie Sahlberg
+ <ronnie_sahlberg%ozemail.com.au@localhost>
+
+2004-02-13 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/verify_krb5_conf.c: 1.22->1.23: (check_host): don't
+ check for EAI_NODATA, because its depricated in RFC3493 Pointed
+ out by Hajimu UMEMOTO <ume%mahoroba.org@localhost> on heimdal-discuss
+
+ * lib/krb5/eai_to_heim_errno.c: 1.3->1.4: EAI_ADDRFAMILY and
+ EAI_NODATA is deprecated in RFC3493
+
+2004-02-09 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/asn1/der_length.c: 1.16: Fix len_unsigned for certain
+ negative integers, it got the length wrong, fix from Panasas, Inc.
+
+ * lib/asn1/der_locl.h: 1.5: add _heim_len_unsigned, _heim_len_int
+
+2004-01-26 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/asn1/gen_length.c: 1.14: (length_type): TSequenceOf: add up
+ the size of all the elements, don't use just the size of the last
+ element.
+
+ * lib/krb5/fcache.c: 1.40: (_krb5_xlock): catch EINVAL and assume
+ that it means that the filesystem doesn't support locking 1.39:
+ (_krb5_xlock): fix compile error in last commit 1.38: internally
+ export x{,un}lock and thus prefix them with _krb5_
+
+2004-01-13 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * kuser/kinit.c: 1.106: (renew_validate): if renewable_flag and
+ not time specifed, use "1 month"
+ 1.105: make -9 work again
+
+2004-01-09 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/get_for_creds.c: 1.36: (add_addrs): don't increase
+ addr->len until in contains interesting data, use right iteration
+ counter when clearing the addresses 1.39: krb5_princ_realm ->
+ krb5_principal_get_realm 1.38: (krb5_get_forwarded_creds): use
+ KRB5_AUTH_CONTEXT_DO_TIME if we want timestamp in forwarded
+ krb-cred 1.39: (krb5_get_forwarded_creds): If tickets are
+ address-less, forward address-less tickets. 1.40:
+ (krb5_get_forwarded_creds): try to handle errors better for
+ previous commit 1.41: (add_addrs): don't add same address multiple
+ times
+
+ * lib/krb5/get_cred.c: 1.96->1.97: rename get_krbtgt to
+ _krb5_get_krbtgt and export it
+
+2003-12-14 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * kdc/kerberos5.c: part of 1.146->1.147: handle NULL client/server
+ names
+
+2003-12-03 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/crypto.c: 1.90->1.91: require cipher-text to be padded
+ to padsize 1.91->1.92: (decrypt_internal_derived): move up padsize
+ check to avoid memory leak
+
+2003-12-01 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * kuser/kinit.c: 1.103->1.104: (main): return the return value
+ from simple_execvp
+
+2003-10-22 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/transited.c: 1.13->1.14: (krb5_domain_x500_encode):
+ always zero out encoding to make sure it have a defined value on
+ failure
+
+ * lib/krb5/transited.c: 1.12->1.13: (krb5_domain_x500_encode): if
+ num_realms == 0, set encoding and return (avoids malloc(0)) check
+ return value from malloc
+
+2003-10-21 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * doc/setup.texi: 1.35->1.36: spelling
+
+ * kdc/kdc_locl.h: 1.58->1.59: add flag to always check transited
+ policy
+
+ * doc/setup.texi: 1.27->1.35: many changes
+
+ * lib/krb5/get_cred.c: 1.95->1.96: get capath info from [capaths]
+ section
+
+ * lib/krb5/rd_req.c: 1.50->1.51: (krb5_decrypt_ticket): try to
+ verify transited realms, unless the transited-policy-checked flag
+ is set
+
+ * lib/krb5/transited.c:
+ 1.12: (krb5_domain_x500_decode): set *num_realms to zero not num_realms
+ 1.11: (krb5_domain_x500_decode): handle zero length tr data;
+ (krb5_check_transited): new function that does more useful stuff
+
+ * kdc/kdc.8: 1.23->1.24: document enforce-transited-policy
+
+ * kdc/config.c: 1.47->1.48: add flag to always check transited
+ policy
+
+ * kdc/kerberos5.c:
+ 1.150: (fix_transited_encoding): also verify with policy,
+ unless asked not to
+ 1.151: always check transited policy if flag set either globally
+ (on principal part of patch not pulled up)
+ 1.152: (fix_transited_encoding): set transited type
+ 1.153: (fix_transited_encoding): always print cross-realm information
+
+2003-10-06 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/config_file.c: 1.48->1.49:
+ (krb5_config_parse_file_debug): punt if there is binding before a
+ section declaration.
+ Bug found by Arkadiusz Miskiewicz <arekm%pld-linux.org@localhost>
+
+ * kdc/kaserver.c: 1.21->1.23:
+ (do_getticket): if times data is shorter then 8 bytes, request is
+ malformed.
+ (do_authenticate): if request length is less then 8 bytes, its a
+ bad request and fail. Pointed out by Marco Foglia <marco%foglia.org@localhost>
+
+2003-09-22 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/verify_krb5_conf.c: 1.17->1.18: add missing " within
+ #if 0 From: stefan sokoll <stefansokoll%yahoo.de@localhost>
+
+2003-09-19 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/rd_req.c:
+ 1.47->1.48: (krb5_rd_req): allow caller to pass in a key
+ in the auth_context, they way processes that doesn't use the
+ keytab can still pass in the key of the service (matches behavior
+ of MIT Kerberos).
+
+2003-09-18 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/crypto.c:
+ 1.87->1.88: (usage2arcfour): simplify, only
+ include special cases From: Luke Howard <lukeh%PADL.COM@localhost>
+ 1.86->1.87: (arcfour_checksum_p): return true when is arcfour,
+ not when its not pointed out by Luke Howard
+ 1.82->1.83: Do the arcfour checksum mapping for
+ krb5_create_checksum and krb5_verify_checksum, From: Luke Howard
+ <lukeh%PADL.COM@localhost>
+ 1.81->1.82: (hmac): make it return an error
+ when out of memory, update callsites to either return error or use
+ krb5_abortx
+ (krb5_hmac): expose hmac
+ * lib/krb5/mk_req_ext.c: 1.26->1.27: (krb5_mk_req_internal):
+ when using arcfour-hmac-md5, use an unkeyed checksum
+ (rsa-md5), since Microsoft calculates the keyed checksum with
+ the subkey of the authenticator.
+
+ * lib/krb5/get_cred.c:
+ 1.93->1.94 (init_tgs_req): make generation of subkey
+ optional on configuration parameter
+ [realms]realm={tgs_require_subkey=bool}
+ defaults to off. The RFC1510 weakly defines the correct behavior,
+ so old DCE secd apparently required the subkey to be there, and MS
+ will use it when its there. But the request isn't encrypted in the
+ subkey, so you get to choose if you want to talk to a MS mdc or a
+ old DCE secd.
+
+ partly 1.91->1.92: (init_tgs_req): in case of error, don't
+ free in the req_body addresses since they where pass in by caller
+
+ lib/krb5/get_in_tkt.c:
+ 1.108->1.1.09: (krb5_get_in_tkt): for compatibility with with
+ the mit implemtation, don't free `creds' argument when done, its up
+ the the caller to do that, also allow a NULL ccache.
+
+ * doc/ack.texi
+ 1.16->1.17: update Luke Howard email address
+
+ * lib/hdb/hdb-ldap.c:
+ 1.13->1.14: code rewrite from Luke Howard <lukeh%PADL.COM@localhost>
+ 1.12->1.13: (LDAP_store): log what principal/dn failed
+ 1.11->1.12: use int2HDBFlags/HDBFlags2int
+ From: Alberto Patino <jalbertop%aranea.com.mx@localhost>,
+ Luke Howard <lukeh%PADL.COM@localhost>
+ Pointed out by Andrew Bartlett of Samba
+ 1.10->1.11: (LDAP__connect): bind sasl "EXTERNAL" to ldap connection
+ (LDAP_store): remove superfluous argument to asprintf
+ From Alberto Patino <jalbertop%aranea.com.mx@localhost>
+
+ * lib/krb5/krb5.h:
+ 1.214->1.2015: add KEYTYPE_ARCFOUR_56
+
+2003-09-12 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/config_file.c: fix prototypes Fredrik Ljungberg
+ <flag%pobox.se@localhost>
+
+2003-09-11 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/hdb/hdb_locl.h: 1.18->1.19: include <limits.h> for ULONG_MAX
+ noted by Wissler Magnus <M.Wissler%abalon.se@localhost> on heimdal-discuss
+
+2003-08-29 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/hdb/db3.c: 1.8->1.9: patch for working with DB4 on
+ heimdal-discuss From: Luke Howard <lukeh%PADL.COM@localhost> 1.9->1.10: try
+ to include more db headers
+
+2003-08-25 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * kdc/connect.c: 1.92->1.93 (handle_tcp): handle recvfrom
+ returning 0 (connection closed) 1.91->1.92: (grow_descr):
+ increment the size after we succeed to allocate the space
+
+2003-08-15 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/principal.c: 1.83->1.85: (unparse_name): len can't be
+ zero, so, don't check for that
+ (unparse_name): make sure there are space for a NUL, set *name to NULL
+ when there is a failure (so caller can't get hold of a freed
+ pointer)
+
2003-05-08 Johan Danielsson <joda%ratatosk.pdc.kth.se@localhost>
* Release 0.6
diff -r c424f9867db7 -r f7c2ab02b3a6 crypto/dist/heimdal/Makefile
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/crypto/dist/heimdal/Makefile Fri Apr 02 14:47:00 2004 +0000
@@ -0,0 +1,846 @@
+# Makefile.in generated by automake 1.7.9 from Makefile.am.
+# Makefile. Generated from Makefile.in by configure.
+
+# Copyright 1994, 1995, 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003
+# Free Software Foundation, Inc.
+# This Makefile.in is free software; the Free Software Foundation
+# gives unlimited permission to copy and/or distribute it,
+# with or without modifications, as long as this notice is preserved.
+
+# This program is distributed in the hope that it will be useful,
Home |
Main Index |
Thread Index |
Old Index