repo.or.cz
/
heimdal.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
lib/base: Avoid compiler warning about use-after-free on Fedora 36
2022-11-17
Joseph S
u
tton
kd
c
: Check genera
t
e_pac() return code
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-17
Jose
p
h
Sutton
lib/
k
rb5
:
R
e
move __func__
c
ompatibility workarou
n
d
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
Joseph Sutton
gsskrb5: CVE-2022-
3
437 Pass correct
l
ength t
o
_gssap
i
_veri
f
y
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
Josep
h
Sutton
gsskrb5: CV
E
-2022-
3
437
Chec
k
for overf
l
ow in
_
gss
k
r
b
5
_
get
_
mech()
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
Joseph Sutto
n
gsskr
b
5: CVE-20
2
2-343
7
Ch
e
ck buffer lengt
h
against
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
Joseph S
u
tton
gsskrb
5
: CVE-2022-3437 Check t
h
e result of _gs
s
kr
b
5_get_me
c
h
(
)
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
J
o
seph Sut
t
on
gss
k
rb5:
C
VE-202
2
-34
3
7 Avoid
undefine
d
b
ehavio
u
r in
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
Jose
p
h Sutton
gsskrb5: CVE-2022-3437 Don't
p
ass NULL pointe
r
s to
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
J
o
s
eph Sutton
gsskr
b
5: CVE-2022-
3
437 Use constant-time memcmp() in
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
J
o
seph Sutton
gsskr
b
5
: CVE-2022-
3
437 Use constant-t
i
me memc
m
p() for
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-11-15
J
oseph
S
u
tton
k
rb5: CVE-202
2
-42
8
98 PAC p
a
r
s
e
integer o
v
e
rfl
o
ws
Joseph Sutton
<josephsutton@catalyst.net.nz>.
commit
|
commitdiff
|
tree
2022-09-27
Joseph Sutton
lib/k
r
b
5
:
F
ix leak in e
r
ror path
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-16
Joseph Sutton
k
adm5:
C
orrectly set us
e
r
Acc
o
untControl bits
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-09-16
Joseph Sutton
l
i
b/krb5: Avoid
u
n
defined
p
oint
e
r arithm
e
t
ic
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-04-30
Josep
h
Sutton
Use constan
t
-
time me
m
cmp when c
o
mparing s
e
nsitive buffers
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-04-30
Joseph Sutton
hcrypt
o
: Us
e
mem
s
et_s
(
) when clearing sensitive bu
f
fer
s
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-04-30
Joseph Sutton
hcry
p
to: Fi
x
typo when clearin
g
c
o
ntex
t
structure
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-03-12
Joseph
Su
t
t
o
n
roken: Fix time_t overflow
c
h
eck
i
ng
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-03-08
Jo
s
eph Sutton
k
dc: Add fu
n
c
ti
o
n to
add encrypted padata
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-03-08
Joseph Sutto
n
lib/krb5: Make parameters to
P
AC f
u
nction
s
'const'
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-01-18
Jo
s
e
p
h Sutto
n
heimdal:base:
Don't per
f
orm arith
m
e
t
i
c
on
a
NULL p
o
inter
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-01-18
Joseph Sutton
heimdal:
A
v
o
id overf
l
ow when
p
e
rforming bitwise shift
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2022-01-17
Joseph Sutton
kd
c
: Still prefer e
n
crypt
i
on types with "n
o
t default
.
.
.
commit
|
commitdiff
|
tree
2021-12-20
J
os
e
ph Sutt
o
n
kd
c
: Return error code
from
_
kdc_check_pa
c
() w
i
t
h an
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-20
J
oseph S
u
tton
kdc: Fix NULL pointer dereference on fa
i
l
u
re to verify
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-17
Joseph S
u
tton
kd
c
: Ch
e
ck PA
C
o
f
armo
r
tickets
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-17
Josep
h
Sutton
k
d
c
:
Don'
t
re
t
urn P
R
EAUTH_FAILED
i
f encrypted chall
e
nge
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Jos
e
ph Su
t
ton
kdc: Opt
i
o
n
a
l
ly all
o
w missing add
i
tion
a
l t
i
cket PAC
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Joseph S
u
tton
kd
c
: Add
k
rb
5
_is_e
n
ctype_o
l
d() to determine
w
hether
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Joseph Sutto
n
kdc:
V
erify PAC in TGT
p
rov
i
ded for u
s
er-
t
o-user authent
i
c
a
t
i
on
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Josep
h
Su
t
ton
kdc: Check
n
ame in reques
t
against na
m
e in use
r
-t
o
.
.
.
commit
|
commitdiff
|
tree
2021-12-16
J
osep
h
Sutton
kdc: Use
sname from request rather than
user
-
to-
u
ser
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Joseph Sutton
kdc: Move fetching krbtgt entry
t
o bef
o
re encty
p
e se
l
ection
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Joseph Sutton
kdc: Check ret
u
r
n code
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
J
o
seph Sutton
kdc: Av
o
i
d ra
c
es
a
nd multi
p
le DB look
u
ps
i
n s4
u
2
self
.
.
.
commit
|
commitdiff
|
tree
2021-12-16
Jo
s
eph Sutt
o
n
kdc: Opti
o
nall
y
re
q
ui
r
e that PAC be be prese
n
t
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Joseph Sutton
kdc:
Check PA
C
o
f
armor tic
k
e
t
s
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-16
Joseph
Sutton
kdc: Mak
e
check
_
PAC(
)
and verify_flag
s
()
acce
s
sible
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-15
Joseph Sutton
kdc: Don't advertise padata typ
e
s that will not be
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Joseph
S
utto
n
kdc: Don't keep trying k
e
y
s
for encrypted-c
h
alleng
e
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Joseph Sutto
n
kdc: C
h
eck authdata i
n
t
icket rather than in
request
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Joseph S
u
tton
kdc: Add s
u
pport for explicit
armo
r
ing fro
m
M
S-KIL
E
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Joseph Sutton
kdc: All
o
w RODC-iss
u
ed armor tick
e
t
s
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Joseph Sutto
n
heimdal: Make _krb5_pac_
g
et_kdc_check
s
um_info() into
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Jo
s
e
p
h Sutto
n
kdc: Fix leak
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Joseph Su
t
ton
k
r
b5:
Ch
e
ck as
p
rintf r
e
turn
v
alue
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-14
Jos
e
ph Sutton
asn1:
Fix binary sea
r
ch
off-by-one read
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-08
Joseph Sutton
s4/heimdal/lib
/
krb5/
p
ac
.
c: A
l
ign PAC b
u
ffers to m
a
tch
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-07
Joseph Sutton
h
eimdal
:
kd
c
: Match
Win
d
ows error
c
ode for unsu
p
p
o
rte
d
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-07
Jose
p
h Sutton
heimd
a
l
:kdc: Proper
l
y c
h
eck for unsupported critical
.
.
.
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree
2021-12-07
Joseph Sutton
heimdal: Ini
t
ialis
e
KDC repl
y
Signed-off-by:
Joseph Sutton
<josephsutton@catalyst.net.nz>
commit
|
commitdiff
|
tree