Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
branch: tags/krb5-1-6-…
Commits on Mar 22, 2008
  1. tag krb5-1.6.4-beta1

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/tags/krb5-1-6-4-beta1@20287 dc483132-0cff-0310-8789-dd5450dbe970
  2. README and patchlevel for krb5-1.6.4-beta1

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20286 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Mar 19, 2008
  1. ticket: 5919

    tlyu authored
    version_fixed: 1.6.4
    
    Apply patch for MITKRB5-SA-2008-001.
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20283 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5918

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20278 from trunk
    
     r20278@cathode-dark-space:  raeburn | 2008-03-18 14:55:26 -0400
     ticket: new
     subject: MITKRB5-SA-2008-002
     target_version: 1.6.4
     tags: pullup
     
     Fix MITKRB5-SA-2008-002: array overrun in libgssrpc.
     
     Don't update the internally-tracked maximum file descriptor value if
     the new one is FD_SETSIZE (or NOFILE) or above.  Reject TCP file
     descriptors of FD_SETSIZE (NOFILE) or above.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20282 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Mar 7, 2008
  1. ticket: 5897

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20254 from trunk
    
     r20254@cathode-dark-space:  jander | 2008-03-04 15:27:19 -0500
     ticket: 5897
     tags: pullup
     
     Fix memory leak by delaying instantiation of lid until it's needed.
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20258 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5893

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20243 from trunk
    
     r20243@cathode-dark-space:  tlyu | 2008-02-29 00:23:56 -0500
     ticket: 5893
     tags: pullup
     target_version: 1.6.4
     
     Make a NUL-terminated copy of realm name before passing to a plugin
     interface that takes a C string rather than krb5_data.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20257 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Feb 23, 2008
  1. ticket: 5892

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20228 from trunk
    
     r20228@cathode-dark-space:  rra | 2008-02-18 23:49:11 -0500
     ticket: new
     subject: man page macro and hyphen fixes
     component: krb5-doc
     Version_Reported: 1.6.3
     Target_Version: 1.6.4
     Tags: pullup
     
     Fix various unescaped hyphens, lines starting with . that shouldn't be
     macros, undefined strings, and misspelled macros in the man pages.
     Found via man --warnings on a current Debian unstable system.
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20237 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5879

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20213 from trunk
    
     r20213@cathode-dark-space:  kpkoch | 2008-01-31 10:51:18 -0500
     TargetVersion: 1.7
     Component: windows
     Ticket: new
     Subj: Build automation
     Tags:  pullup
     
     Actually pass the nmake arguments to nmake.
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20236 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Feb 19, 2008
  1. ticket: 5888

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20222 from trunk
    
     r20222@cathode-dark-space:  tlyu | 2008-02-07 02:07:06 -0500
     ticket: new
     target_version: 1.6.4
     tags: pullup
     subject: more tests for libdb btree page split on zero index
     component: krb5-kdc
     
     Enhance btree debugging output somewhat to limit key printout to the
     key length if the key is not null-terminated.
     
     Add additional test case for the zero-index page split bug; test case
     can create a corrupted btree database with records unreachable by
     random access but reachable by sequential access.  Requires
     recompiling with CPPFLAGS='-DDEBUG -DDEBUG_IDX0SPLIT' to correctly
     model mpool page reuse that would be present in production conditions.
     (CPPFLAGS=-DDEBUG would otherwise explicitly overwrite the contents of
     reused pages.)
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20233 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5875

    tlyu authored
    target_version: 1.6.4
    version_fixed: 1.6.4
    component: windows
    
    pull up r20211 from trunk
    
     r20211@cathode-dark-space:  jaltman | 2008-01-23 17:10:56 -0500
     ticket: new
     subject: Windows: avoid use of cygwin mkdir and rmdir commands
     tags: pullup
     
     Microsoft's nmake versions 8.x and 9.x prefer executables over
     internal shell commands.  This is a change from previous versions.
     Cygwin's mkdir and rmdir commands do not have the same semantics
     as the cmd.exe shell versions.  
     
     Change the definitions of MKDIR and RMDIR to use 'md' and 'rd'
     in order to avoid the use of the cygwin versions.
     
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20232 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Feb 1, 2008
  1. ticket: 5880

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20214 from trunk
    
     r20214@cathode-dark-space:  tlyu | 2008-01-31 20:03:11 -0500
     ticket: new
     target_version: 1.6.4
     tags: pullup
     subject: libdb btree page split on zero index corrupts db
     component: krb5-kdc
     
     Splitting a btree page on index 0 can corrupt the database if the key
     length plus data length is exactly a certain value.  This certain size
     causes the item to get the left page to itself, and causes the right
     page to contain an erroneous additional index "hole" having an
     uninitialized value.  This bug may be one of the remaining causes of
     unexplained database corruption reported over the years.  Shawn Emery
     provided useful data from actual instances of this corruption.
     
     Add a test case for this bug.  (Raw libdb test rather than kdb; the
     latter would be much harder.)
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20215 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Jan 2, 2008
  1. ticket: 5858

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20176 from trunk
    
     r20176@cathode-dark-space:  jaltman | 2007-12-12 17:32:19 -0500
     ticket: new
     subject: KFW: BUG: KRB5CRED: Set identity data before sending notification
     component: windows
     tags: pullup
     
     Call tc_set_ident_data() before kcdb_credset_collect().  Make sure the 
     identity data is set before the credentials change notification is broadcast.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20199 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5852

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20175 from trunk
    
     r20175@cathode-dark-space:  coffman | 2007-12-12 09:10:33 -0500
     ticket: new
     subject: copy correct key for lucid context acceptor_subkey
     component: krb5-libs
     Tags: pullup
     
     Copy the correct key (acceptor_subkey) to lucid context's acceptor_subkey.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20198 dc483132-0cff-0310-8789-dd5450dbe970
  3. ticket: 5851

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20174 from trunk
    
     r20174@cathode-dark-space:  jaltman | 2007-12-11 22:45:42 -0500
     ticket: new
     subject: KFW BUG: WIX: 64-bit installer attempts to uninstall 32-bit NSIS 
     component: windows
     tags: pullup
     
     The 64-bit MSI must examine Win64 registry keys and not the 32-bit registry
     keys which is where the 32-bit NSIS installation will be detected.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20197 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Dec 15, 2007
  1. ticket: 5857

    tlyu authored
    version_fied: 1.6.4
    
    pull up r20179 from trunk
    
     r20179@cathode-dark-space:  tlyu | 2007-12-13 23:38:42 -0500
     ticket: 5857
     target_version: 1.6.4
     tags: pullup
     
     fix CVE-2007-5972: double fclose() in krb5_def_store_mkey()
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20187 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5856

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20180 from trunk
    
     r20180@cathode-dark-space:  tlyu | 2007-12-14 00:01:07 -0500
     ticket: 5856
     target_version: 1.6.4
     tags: pullup
     
     fix CVE-2007-5971: double-free in gss_krb5int_make_seal_token_v3()
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20186 dc483132-0cff-0310-8789-dd5450dbe970
  3. ticket: 5855

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20181 from trunk
    
     r20181@cathode-dark-space:  tlyu | 2007-12-14 00:01:23 -0500
     ticket: 5855
     target_version: 1.6.4
     tags: pullup
     
     fix CVE-2007-5902: integer overflow in svcauth_gss_get_principal()
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20185 dc483132-0cff-0310-8789-dd5450dbe970
  4. ticket: 5854

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20178 from trunk
    
     r20178@cathode-dark-space:  tlyu | 2007-12-13 23:38:28 -0500
     ticket: 5856
     tags: pullup
     target_version: 1.6.4
     
     fix CVE-2007-5971: free of non-heap pointer in gss_indicate_mechs()
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20184 dc483132-0cff-0310-8789-dd5450dbe970
  5. ticket: 5853

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20182 from trunk
    
     r20182@cathode-dark-space:  tlyu | 2007-12-14 00:14:11 -0500
     ticket: 5853
     target_version: 1.6.4
     tags: pullup
     
     fix CVE-2007-5894: apparent uninit length in ftpd.c:reply()
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20183 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Nov 29, 2007
  1. ticket: 5842

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20164 from trunk
    
     r20164@cathode-dark-space:  jaltman | 2007-11-14 17:34:53 -0500
     ticket: 5842
     
     The khm_show_main_window() function is no longer called
     at startup with khm_nCmdShow == SW_SHOWMINIMIZED in order to
     hide the main application by calling khm_hide_main_window().
     Instead, the main application window is simply never shown.
     
     As a result, khm_show_main_window() needs to respond to 
     khm_nCmdShow == SW_SHOWMINIMIZED not by hiding the window
     but by changing the khm_nCmdShow state to SW_SHOW and then
     calling ShowWindow().
     
     This change will address the problem whereby "Show NIM Window"
     had to be triggered twice by the user when the process
     was started in a minimized state.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20172 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5777

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r20111 from trunk
    
     r20111@cathode-dark-space:  raeburn | 2007-10-10 14:27:37 -0400
     ticket: 5777
     
     Add enhanced error messages to new error return cases, explaining the
     (fairly generic) errors codes.
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20171 dc483132-0cff-0310-8789-dd5450dbe970
  3. ticket: 5777

    tlyu authored
    pull up r20109 from trunk
    
     r20109@cathode-dark-space:  raeburn | 2007-10-09 00:03:59 -0400
     ticket: 5777
     
     kt_file.c: Support multiple iterators active simultaneously, using a
     counter.  In get_entry, if the file was already open, rewind it to
     just after the version number, and don't close it when done.  Don't
     allow add or remove calls if any iterator is active.
     
     t_keytab.c: Test mixing two iterators with get_entry calls.
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20170 dc483132-0cff-0310-8789-dd5450dbe970
  4. ticket: 5752

    tlyu authored
    version_fixed: 1.6.4
    
    pull up r19961 from trunk
    
     r19961@cathode-dark-space:  tlyu | 2007-09-18 22:54:56 -0400
     ticket: 5752
     target_version: 1.6.4
     tags: pullup
     
     Ignore dependency lines beginning with '#' to deal with gcc
     -fworking-directory output during make depend.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20169 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Oct 23, 2007
  1. ticket: 5830

    tlyu authored
    version_fixed: 1.6.4
    
    Delete AC_CHECK_FUNCS invocation having empty argument.  Discovered by
    Jeff Blaine.
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20146 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Oct 22, 2007
  1. krb5-1.6.3-postrelease

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20141 dc483132-0cff-0310-8789-dd5450dbe970
  2. patchlevel and winlevel for kfw-3.2.2 final

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20139 dc483132-0cff-0310-8789-dd5450dbe970
  3. patchlevel.h for krb5-1.6.3

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20137 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Oct 19, 2007
  1. update README

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20131 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5823

    tlyu authored
    version_fixed: 1.6.3
    
    pull up r20128 from trunk
    
     r20128@cathode-dark-space:  jaltman | 2007-10-18 11:22:43 -0400
     ticket: new
     subject: KFW: BUG: WIX: Beta value hard coded 
     component: windows
     tags: pullup
     target: 1.6.3
     
     The beta variable value was inadvertantly committed as part of 
     ticket 5820 (Revision 20117).  The build script needs to 
     export this value when appropriate.
     
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20130 dc483132-0cff-0310-8789-dd5450dbe970
  3. ticket: 5692

    tlyu authored
    version_fixed: 1.6.3
    
    pull up r19881 from trunk
    
     r19881@cathode-dark-space:  jaltman | 2007-08-27 03:08:24 -0400
     ticket: new
     subject: Windows 64-bit - avoid missing symbol errors
     component: windows
     
     Microsoft defaults stack checking (/Gs) to on.  This requires
     that bufferoverflowU.lib be included in the link step.  The 
     macro SCLIB in the build system specifies this library on 
     versions of Windows that require it.  Include SCLIB on the 
     link line of the makefile.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20129 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Oct 16, 2007
  1. back to krb5-1.6.3-beta2-postrelease

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20125 dc483132-0cff-0310-8789-dd5450dbe970
  2. patchlevel and readme for kfw-3.2.2-beta2

    tlyu authored
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20123 dc483132-0cff-0310-8789-dd5450dbe970
Commits on Oct 15, 2007
  1. ticket: 5820

    tlyu authored
    version_fixed: 1.6.3
    
    pull up r20119 from trunk
    
     r20119@cathode-dark-space:  jaltman | 2007-10-12 19:08:30 -0400
     ticket: 5820
     
     There appears to be a bug either in the WiX engine or the Windows Installer 3.1.
     The "File" type on the Registry Search property is supposed to provide the full 
     path name.  Instead, we are being given just the directory as if it were being 
     processed with the "Directory" type.
     
     We can avoid this for a REG_SZ value by using the "Raw" type because we are 
     sure that the string is not going to begin with a '#' character.  
     
     Because the full path was not being obtained for the UPGRADENSIS property, the
     Uninstall routine was unable to CreateProcess() the uninstall program.  
     
     This commit also includes addition debugging in the NSIS Uninstall custom
     handler to report the path and the GetLastError() value when the uninstall 
     fails.  This will be logged in the msiexec log file and displayed in a 
     MessageBox.
     
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20122 dc483132-0cff-0310-8789-dd5450dbe970
  2. ticket: 5820

    tlyu authored
    pull up r20118 from trunk
    
     r20118@cathode-dark-space:  jaltman | 2007-10-12 15:18:04 -0400
     ticket: 5820
     
     Set the Shortcut string to match the base product name
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20121 dc483132-0cff-0310-8789-dd5450dbe970
  3. ticket: 5820

    tlyu authored
    pull up r20117 from trunk
    
     r20117@cathode-dark-space:  jaltman | 2007-10-12 15:01:38 -0400
     ticket: new
     subject: KFW: BUG: WIX: Improve Usability of multiple architecture MSI installations, remove non-unique GUID component identifiers, and include Beta ID in the package name
     component: windows
     tags: pullup
     target_version: 1.6.3
     
     The WiX installation package suffered from several problems:
     
      * The Beta ID was not being included in the package name.
        Fixed this by swapping the priority of "Release" and "Beta".
        "Beta" is an official release that has a beta value.
        A non-release has a datestamp as part of the package name.
     
      * There were duplicate GUID values being used for registry components.
        This would prevent proper removal of the components on uninstall.
     
      * 64-bit Installers were being constructed with the 32-bit installer
        schema.  This prevented side-by-side installation of the 64-bit and
        32-bit versions.  This also permitted 64-bit installers to be 
        installed on 32-bit systems.
     
      * The 64-bit and 32-bit installers had the same package name.
        64-bit and 32-bit are now identified in the package name.
     
      * 64-bit files were being installed to the WOW64 environment.
     
     
    
    
    
    git-svn-id: svn://anonsvn.mit.edu/krb5/branches/krb5-1-6@20120 dc483132-0cff-0310-8789-dd5450dbe970
Something went wrong with that request. Please try again.