Age | Commit message (Collapse) | Author | Files | Lines |
|
FUDGE_FACTOR is wrong, then badness can happen. Also, if
out_buf.length != nbytes+FUDGE_FACTOR, heap corruption could
happen. We really should be using gss_wrap_size_limit() or
something like that, but doing so would require substantial
amounts of reworking. [krb5-appl/685]
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11229 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* tf_util.c (tf_init): Fixed a potential race condition in the opening
of v4 ticket files. tf_init() was calling lstat() followed by fopen().
Now it calls fopen() and then calls lstat() and fstat() to check file
ownership and to check that it opened the file it thought it did. I
patched the shared memory code similarly, but since nothing uses it I
don't have a good way to test it properly.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11224 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* telnetd.c: Rework flags controlling hostname logging.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11223 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* krlogind.c: Rework flags for hostname logging.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11221 dc483132-0cff-0310-8789-dd5450dbe970
|
|
all the addresses in hp have been iterated through to avoid
smashing. [krb5-appl/516]
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11212 dc483132-0cff-0310-8789-dd5450dbe970
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11210 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* telnetd.c: Add options to control logging of remote hostname to
login(1).
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11209 dc483132-0cff-0310-8789-dd5450dbe970
|
|
by 8 even if the req_output_size-ohlen is a multiple of 8, since
the wrap token is always padded regardless of whether it's a
mutiple of 8 bytes.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11206 dc483132-0cff-0310-8789-dd5450dbe970
|
|
number lower than 1024; this prevents some nasty ftp
"bounce attacks" to SMTP ports, etc.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11205 dc483132-0cff-0310-8789-dd5450dbe970
|
|
[krb5-appl/399]
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11204 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* configure.in: Add check for setluid().
* main.c (main): Add call to setluid() on systems that have it.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11188 dc483132-0cff-0310-8789-dd5450dbe970
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11185 dc483132-0cff-0310-8789-dd5450dbe970
|
|
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11184 dc483132-0cff-0310-8789-dd5450dbe970
|
|
"char *scratch".
* sane_hostname.c: Re-order so that pty-int.h precedes libpty.h to
prevent conflicting definitions of struct sockaddr_in
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11179 dc483132-0cff-0310-8789-dd5450dbe970
|
|
options controlling hostname manipulation.
* krlogind.c: Make use of pty_make_sane_hostname() for purposes of
manipulating hostname to pass to login. Also unconditionally
syslog IP address and full hostname of remote host. Add command
line options to control such behavior.
* configure.in: Add arpa/nameser.h to CHECK_HEADERS.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11177 dc483132-0cff-0310-8789-dd5450dbe970
|
|
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11173 dc483132-0cff-0310-8789-dd5450dbe970
|
|
/etc/environment. [krb5-appl/691]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11171 dc483132-0cff-0310-8789-dd5450dbe970
|
|
since otherwise a numeric IP address won't fit.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11170 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* libpty.h: Add prototype for make_sane_hostname.
* sane_hostname.c: New file; add function to "sanitize" hostname
for logging purposes.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11167 dc483132-0cff-0310-8789-dd5450dbe970
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11166 dc483132-0cff-0310-8789-dd5450dbe970
|
|
to the hard-coded list.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11150 dc483132-0cff-0310-8789-dd5450dbe970
|
|
sized tickets from Microsoft. [telnet/686]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11147 dc483132-0cff-0310-8789-dd5450dbe970
|
|
mongo-gram tickets from Microsoft. [telnet/688]
Pull-up from mainline.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11146 dc483132-0cff-0310-8789-dd5450dbe970
|
|
mongo-gram tickets from Microsoft. [telnet/686]
Pull-up from mainline.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11145 dc483132-0cff-0310-8789-dd5450dbe970
|
|
know how much stuff to free upon cleanup. Fix the up cleanup
code.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11138 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* krshd.c (doit): Call setluid().
* configure.in: Check for setluid() rather than main() in
libsecurity.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11112 dc483132-0cff-0310-8789-dd5450dbe970
|
|
properly left-justify bit strings less than 32 bits.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11058 dc483132-0cff-0310-8789-dd5450dbe970
|
|
BIT STRING values that are not exactly 32 bits. Throw away bits
beyond number 31 in a bit string for now. Deal with masking out
unused bits.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11056 dc483132-0cff-0310-8789-dd5450dbe970
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11054 dc483132-0cff-0310-8789-dd5450dbe970
|
|
revealed a bug. if extra fields are present in a SEQUENCE, they
are not ignored and skipped. This caused the decoder to get out
of sync.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11052 dc483132-0cff-0310-8789-dd5450dbe970
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@11021 dc483132-0cff-0310-8789-dd5450dbe970
|
|
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10918 dc483132-0cff-0310-8789-dd5450dbe970
|
|
deleting a node would corrupt the linked list.
(profile_add_node): Fix another linked list corruption
problem where an insertion into the middle of the linked
list didn't update a previous link. [krb5-libs/615]
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10917 dc483132-0cff-0310-8789-dd5450dbe970
|
|
was previously being set to the value of code rather than to the
boolean expression (code == 631), which it had been previously.
The bug resulted in all replies from the server being parsed as
krb_safe messages even when they were krb_priv messages.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10916 dc483132-0cff-0310-8789-dd5450dbe970
|
|
set, because it expects a valid file descriptor [krb5-appl/359].
Also, remove mistakenly duplicated comment above the function.
* krlogin.c (main): Apply ghudson's patch so that rlogin -a
no longer dumps core. [krb5-appl/612]
* login.c: Replace strcpy with strncpy in places. Add nul
termination to some existing invocations of strncpy.
[pullups from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10915 dc483132-0cff-0310-8789-dd5450dbe970
|
|
trans->length == 0.
* chk_trans.c (krb5_check_transited_list): Fix use of an
uninitialized variable; apparently the code was depending
on the stack garbage being non-zero(!)
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10914 dc483132-0cff-0310-8789-dd5450dbe970
|
|
string printed uses 4 digit years.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10573 dc483132-0cff-0310-8789-dd5450dbe970
|
|
be able to properly parse Y2K dates.
* t_kerb.c: Add ability to test krb5_string_to_timestamp
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10565 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* log.c (krb_new_log, krb_log):
* klog.c (klog): Print the year using 4 digits to avoid Y2K issues.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10564 dc483132-0cff-0310-8789-dd5450dbe970
|
|
Y2K issues.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10563 dc483132-0cff-0310-8789-dd5450dbe970
|
|
entries to avoid Y2K issues.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10562 dc483132-0cff-0310-8789-dd5450dbe970
|
|
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10561 dc483132-0cff-0310-8789-dd5450dbe970
|
|
* get_in_tkt.c (krb5_get_in_tkt): Add missing argument to call to
make_preauth_list to avoid stack smashing. Pointed out by lxs.
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10546 dc483132-0cff-0310-8789-dd5450dbe970
|
|
from gmtime() to avoid overruns.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10542 dc483132-0cff-0310-8789-dd5450dbe970
|
|
values are returned from gmtime().
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10541 dc483132-0cff-0310-8789-dd5450dbe970
|
|
glob characters were found, because the caller will always free
the storage.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10540 dc483132-0cff-0310-8789-dd5450dbe970
|
|
changes in ftpd.c.
* ftpd.c (receive_data):
(send_data): Add support for sigsetjmp().
(main): Use sigaction() if we can to avoid SysV lossage.
(send_file_list): Oops missed a sigsetjmp() call.
(send_data): Add call to secure_flush() to send a zero length
buffer when aborting.
(send_file_list): Add call to secure_flush() to send a zero length
buffer when aborting.
* ftpcmd.y (PBSZ): Remove restriction on shrinking buffer size.
* ftpcmd.y (getline): Don't syslog passwords! (or newlines)
* ftpcmd.y: Add production "nonguest" to catch things that
anonymous users aren't supposed to do. Replace "check_login" with
"nonguest" in a few places to prevent w4r3z d00dz from being
lame with world-writable incoming directories.
[pullups from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10538 dc483132-0cff-0310-8789-dd5450dbe970
|
|
secure_putbuf: if the transfer is aborted, the SIGURG handler will
longjmp out, so the line after the secure_putbuf will never get
executed, so nout would never be reset and the next transfer
would overrun ucbuf.
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10537 dc483132-0cff-0310-8789-dd5450dbe970
|
|
entries, as they confuse last on some systems. [pty/569]
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10523 dc483132-0cff-0310-8789-dd5450dbe970
|
|
PTY_LOGIN_PROCESS types on BSD-ish systems. [pty/531]
[pullup from trunk]
git-svn-id: svn://anonsvn.mit.edu/krb5/branches/V1_0_BRANCH@10519 dc483132-0cff-0310-8789-dd5450dbe970
|