Source-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[src/trunk]: src/crypto/dist/heimdal Import heimdal 0.6.3
details: https://anonhg.NetBSD.org/src/rev/741592b0896a
branches: trunk
changeset: 569943:741592b0896a
user: lha <lha%NetBSD.org@localhost>
date: Tue Sep 14 07:45:53 2004 +0000
description:
Import heimdal 0.6.3
Changes in release 0.6.3
* fix vulnerabilities in ftpd
* support for linux AFS /proc "syscalls"
* support for RFC3244 (Windows 2000 Kerberos Change/Set Password) in
kpasswdd
* fix possible KDC denial of service
* bug fixes
diffstat:
crypto/dist/heimdal/ChangeLog | 56 +
crypto/dist/heimdal/NEWS | 13 +
crypto/dist/heimdal/aclocal.m4 | 4529 +-
crypto/dist/heimdal/admin/get.c | 8 +-
crypto/dist/heimdal/appl/ftp/ChangeLog | 26 +
crypto/dist/heimdal/appl/ftp/ftpd/ftpd_locl.h | 5 +-
crypto/dist/heimdal/appl/login/ChangeLog | 5 +
crypto/dist/heimdal/appl/login/login.c | 28 +-
crypto/dist/heimdal/appl/push/ChangeLog | 4 +
crypto/dist/heimdal/appl/push/push.c | 24 +-
crypto/dist/heimdal/appl/telnet/ChangeLog | 12 +
crypto/dist/heimdal/appl/xnlock/ChangeLog | 5 +
crypto/dist/heimdal/appl/xnlock/xnlock.c | 13 +-
crypto/dist/heimdal/compile | 105 +-
crypto/dist/heimdal/config.log | 40402 ++++++++++---------
crypto/dist/heimdal/config.status | 397 +-
crypto/dist/heimdal/configure | 126 +-
crypto/dist/heimdal/doc/heimdal.info-1 | 24 +-
crypto/dist/heimdal/doc/heimdal.info-2 | 67 +-
crypto/dist/heimdal/include/config.h | 32 +-
crypto/dist/heimdal/include/version.h | 4 +-
crypto/dist/heimdal/include/version.h.in | 4 +-
crypto/dist/heimdal/install-sh | 420 +-
crypto/dist/heimdal/lib/asn1/Makefile.am | 5 +-
crypto/dist/heimdal/lib/auth/ChangeLog | 5 +
crypto/dist/heimdal/lib/auth/afskauthlib/verify.c | 84 +-
crypto/dist/heimdal/lib/kafs/ChangeLog | 9 +
crypto/dist/heimdal/lib/kafs/afssys.c | 75 +-
crypto/dist/heimdal/lib/krb5/Makefile.am | 5 +-
crypto/dist/heimdal/lib/krb5/init_creds_pw.c | 10 +-
crypto/dist/heimdal/libtool | 20 +-
crypto/dist/heimdal/missing | 54 +-
crypto/dist/heimdal/mkinstalldirs | 69 +-
33 files changed, 22201 insertions(+), 24444 deletions(-)
diffs (truncated from 50323 to 300 lines):
diff -r 0221217b14e3 -r 741592b0896a crypto/dist/heimdal/ChangeLog
--- a/crypto/dist/heimdal/ChangeLog Tue Sep 14 00:38:37 2004 +0000
+++ b/crypto/dist/heimdal/ChangeLog Tue Sep 14 07:45:53 2004 +0000
@@ -1,3 +1,59 @@
+2004-09-13 Johan Danielsson <joda%pdc.kth.se@localhost>
+
+ * Release 0.6.3
+
+2004-09-05 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/asn1/der_get.c (decode_enumerated): check that the tag
+ length isn't longer the the length
+
+2004-08-31 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/init_creds_pw.c (krb5_get_init_creds_password):
+ kdc_reply can be set in case of failure too, clean on entry and
+ free the exit unconditionally to avoid memory leak
+
+2004-08-20 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/context.c: 1.93: (krb5_get_err_text): if neither of
+ com_right nor strerror finds the error-code, return Unknown error.
+
+2004-08-13 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * kdc/kerberos5.c: based on 1.162: (get_pa_etype_info): check for
+ dup enctypes from the client and filter them out.
+
+2004-06-21 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * admin/get.c: 1.23: (kt_get): catch errors from krb5_parse_name
+
+2004-06-21 Love Hörnquist Åstrand <lha%it.su.se@localhost>
+
+ * lib/krb5/Makefile.am: man_MANS += krb5_set_password.3
+
+ * lib/krb5/krb5_set_password.3: 1.1-1.3: change password manpage
+
+ * lib/krb5/changepw.c: 1.49: implement
+ krb5_set_password_using_ccache 1.47: add tcp support to the set
+ protocol, should be cleaned up to enable sharing code with
+ krb5_sendto 1.46: (process_reply): log into result_string if
+ something goes bad, return 0 (even on failure), not the KPASSWD
+ protocol error code 1.45: krb5_princ_realm ->
+ krb5_principal_get_realm 1.44: (setpw_send_request): free
+ ap_req_data on failure 1.41: ooops, remove cut and paste error
+ 1.40: draft-ietf-cat-kerb-chg-password-02 and rfc3244 share the
+ response packet sure more constants now that they exists 1.39:
+ implement rfc3244, partly from shadow%dementia.org@localhost
+
+ * lib/krb5/krb5.h: 1.211: some defines for rfc3244
+
+ * lib/asn1/Makefile.am: 1.71: (gen_files):
+ asn1_ChangePasswdDataMS.x for RFC3244
+
+ * lib/asn1/k5.asn1: 1.30: add ChangePasswdDataMS, for RFC3244
+
+ * kuser/kinit.c: 1.114: move "setpag if (argc < 1)" to common path
+
2004-05-06 Johan Danielsson <joda%pdc.kth.se@localhost>
* Release 0.6.2
diff -r 0221217b14e3 -r 741592b0896a crypto/dist/heimdal/NEWS
--- a/crypto/dist/heimdal/NEWS Tue Sep 14 00:38:37 2004 +0000
+++ b/crypto/dist/heimdal/NEWS Tue Sep 14 07:45:53 2004 +0000
@@ -1,3 +1,16 @@
+Changes in release 0.6.3
+
+ * fix vulnerabilities in ftpd
+
+ * support for linux AFS /proc "syscalls"
+
+ * support for RFC3244 (Windows 2000 Kerberos Change/Set Password) in
+ kpasswdd
+
+ * fix possible KDC denial of service
+
+ * bug fixes
+
Changes in release 0.6.2
* Fix possible buffer overrun in v4 kadmin (which now defaults to off)
diff -r 0221217b14e3 -r 741592b0896a crypto/dist/heimdal/aclocal.m4
--- a/crypto/dist/heimdal/aclocal.m4 Tue Sep 14 00:38:37 2004 +0000
+++ b/crypto/dist/heimdal/aclocal.m4 Tue Sep 14 07:45:53 2004 +0000
@@ -1,6 +1,6 @@
-# generated automatically by aclocal 1.7.9 -*- Autoconf -*-
-
-# Copyright (C) 1996, 1997, 1998, 1999, 2000, 2001, 2002
+# generated automatically by aclocal 1.8.3 -*- Autoconf -*-
+
+# Copyright (C) 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004
# Free Software Foundation, Inc.
# This file is free software; the Free Software Foundation
# gives unlimited permission to copy and/or distribute it,
@@ -11,1078 +11,6 @@
# even the implied warranty of MERCHANTABILITY or FITNESS FOR A
# PARTICULAR PURPOSE.
-# Like AC_CONFIG_HEADER, but automatically create stamp file. -*- Autoconf -*-
-
-# Copyright 1996, 1997, 2000, 2001 Free Software Foundation, Inc.
-
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2, or (at your option)
-# any later version.
-
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
-# GNU General Public License for more details.
-
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
-# 02111-1307, USA.
-
-AC_PREREQ([2.52])
-
-# serial 6
-
-# AM_CONFIG_HEADER is obsolete. It has been replaced by AC_CONFIG_HEADERS.
-AU_DEFUN([AM_CONFIG_HEADER], [AC_CONFIG_HEADERS($@)])
-
-# Do all the work for Automake. -*- Autoconf -*-
-
-# This macro actually does too much some checks are only needed if
-# your package does certain things. But this isn't really a big deal.
-
-# Copyright (C) 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003
-# Free Software Foundation, Inc.
-
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2, or (at your option)
-# any later version.
-
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
-# GNU General Public License for more details.
-
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
-# 02111-1307, USA.
-
-# serial 10
-
-AC_PREREQ([2.54])
-
-# Autoconf 2.50 wants to disallow AM_ names. We explicitly allow
-# the ones we care about.
-m4_pattern_allow([^AM_[A-Z]+FLAGS$])dnl
-
-# AM_INIT_AUTOMAKE(PACKAGE, VERSION, [NO-DEFINE])
-# AM_INIT_AUTOMAKE([OPTIONS])
-# -----------------------------------------------
-# The call with PACKAGE and VERSION arguments is the old style
-# call (pre autoconf-2.50), which is being phased out. PACKAGE
-# and VERSION should now be passed to AC_INIT and removed from
-# the call to AM_INIT_AUTOMAKE.
-# We support both call styles for the transition. After
-# the next Automake release, Autoconf can make the AC_INIT
-# arguments mandatory, and then we can depend on a new Autoconf
-# release and drop the old call support.
-AC_DEFUN([AM_INIT_AUTOMAKE],
-[AC_REQUIRE([AM_SET_CURRENT_AUTOMAKE_VERSION])dnl
- AC_REQUIRE([AC_PROG_INSTALL])dnl
-# test to see if srcdir already configured
-if test "`cd $srcdir && pwd`" != "`pwd`" &&
- test -f $srcdir/config.status; then
- AC_MSG_ERROR([source directory already configured; run "make distclean" there first])
-fi
-
-# test whether we have cygpath
-if test -z "$CYGPATH_W"; then
- if (cygpath --version) >/dev/null 2>/dev/null; then
- CYGPATH_W='cygpath -w'
- else
- CYGPATH_W=echo
- fi
-fi
-AC_SUBST([CYGPATH_W])
-
-# Define the identity of the package.
-dnl Distinguish between old-style and new-style calls.
-m4_ifval([$2],
-[m4_ifval([$3], [_AM_SET_OPTION([no-define])])dnl
- AC_SUBST([PACKAGE], [$1])dnl
- AC_SUBST([VERSION], [$2])],
-[_AM_SET_OPTIONS([$1])dnl
- AC_SUBST([PACKAGE], ['AC_PACKAGE_TARNAME'])dnl
- AC_SUBST([VERSION], ['AC_PACKAGE_VERSION'])])dnl
-
-_AM_IF_OPTION([no-define],,
-[AC_DEFINE_UNQUOTED(PACKAGE, "$PACKAGE", [Name of package])
- AC_DEFINE_UNQUOTED(VERSION, "$VERSION", [Version number of package])])dnl
-
-# Some tools Automake needs.
-AC_REQUIRE([AM_SANITY_CHECK])dnl
-AC_REQUIRE([AC_ARG_PROGRAM])dnl
-AM_MISSING_PROG(ACLOCAL, aclocal-${am__api_version})
-AM_MISSING_PROG(AUTOCONF, autoconf)
-AM_MISSING_PROG(AUTOMAKE, automake-${am__api_version})
-AM_MISSING_PROG(AUTOHEADER, autoheader)
-AM_MISSING_PROG(MAKEINFO, makeinfo)
-AM_MISSING_PROG(AMTAR, tar)
-AM_PROG_INSTALL_SH
-AM_PROG_INSTALL_STRIP
-# We need awk for the "check" target. The system "awk" is bad on
-# some platforms.
-AC_REQUIRE([AC_PROG_AWK])dnl
-AC_REQUIRE([AC_PROG_MAKE_SET])dnl
-AC_REQUIRE([AM_SET_LEADING_DOT])dnl
-
-_AM_IF_OPTION([no-dependencies],,
-[AC_PROVIDE_IFELSE([AC_PROG_CC],
- [_AM_DEPENDENCIES(CC)],
- [define([AC_PROG_CC],
- defn([AC_PROG_CC])[_AM_DEPENDENCIES(CC)])])dnl
-AC_PROVIDE_IFELSE([AC_PROG_CXX],
- [_AM_DEPENDENCIES(CXX)],
- [define([AC_PROG_CXX],
- defn([AC_PROG_CXX])[_AM_DEPENDENCIES(CXX)])])dnl
-])
-])
-
-
-# When config.status generates a header, we must update the stamp-h file.
-# This file resides in the same directory as the config header
-# that is generated. The stamp files are numbered to have different names.
-
-# Autoconf calls _AC_AM_CONFIG_HEADER_HOOK (when defined) in the
-# loop where config.status creates the headers, so we can generate
-# our stamp files there.
-AC_DEFUN([_AC_AM_CONFIG_HEADER_HOOK],
-[# Compute $1's index in $config_headers.
-_am_stamp_count=1
-for _am_header in $config_headers :; do
- case $_am_header in
- $1 | $1:* )
- break ;;
- * )
- _am_stamp_count=`expr $_am_stamp_count + 1` ;;
- esac
-done
-echo "timestamp for $1" >`AS_DIRNAME([$1])`/stamp-h[]$_am_stamp_count])
-
-# Copyright 2002 Free Software Foundation, Inc.
-
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2, or (at your option)
-# any later version.
-
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
-# GNU General Public License for more details.
-
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
-
-# AM_AUTOMAKE_VERSION(VERSION)
-# ----------------------------
-# Automake X.Y traces this macro to ensure aclocal.m4 has been
-# generated from the m4 files accompanying Automake X.Y.
-AC_DEFUN([AM_AUTOMAKE_VERSION],[am__api_version="1.7"])
-
-# AM_SET_CURRENT_AUTOMAKE_VERSION
-# -------------------------------
-# Call AM_AUTOMAKE_VERSION so it can be traced.
-# This function is AC_REQUIREd by AC_INIT_AUTOMAKE.
-AC_DEFUN([AM_SET_CURRENT_AUTOMAKE_VERSION],
- [AM_AUTOMAKE_VERSION([1.7.9])])
-
-# Helper functions for option handling. -*- Autoconf -*-
-
-# Copyright 2001, 2002 Free Software Foundation, Inc.
-
-# This program is free software; you can redistribute it and/or modify
-# it under the terms of the GNU General Public License as published by
-# the Free Software Foundation; either version 2, or (at your option)
-# any later version.
-
-# This program is distributed in the hope that it will be useful,
-# but WITHOUT ANY WARRANTY; without even the implied warranty of
-# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
-# GNU General Public License for more details.
-
-# You should have received a copy of the GNU General Public License
-# along with this program; if not, write to the Free Software
-# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
-# 02111-1307, USA.
-
-# serial 2
Home |
Main Index |
Thread Index |
Old Index