[Heimdal-source-changes] [heimdal/heimdal] d5044a: Improve gss_store_cred() for cred sets
GitHub
noreply at github.com
Tis Apr 14 23:43:39 CEST 2015
Branch: refs/heads/master
Home: https://github.com/heimdal/heimdal
Commit: d5044abac8e60e6b78b4237b51f3751fbd3a45c2
https://github.com/heimdal/heimdal/commit/d5044abac8e60e6b78b4237b51f3751fbd3a45c2
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M lib/gssapi/mech/gss_store_cred.c
Log Message:
-----------
Improve gss_store_cred() for cred sets
Commit: c5e91cf462f99ef369584dbd7d6734f598496836
https://github.com/heimdal/heimdal/commit/c5e91cf462f99ef369584dbd7d6734f598496836
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M lib/krb5/get_cred.c
Log Message:
-----------
Add debug messages to krb5_get_creds
Commit: febe23a3998142bc4cd4fd3febe3839b52ecbff9
https://github.com/heimdal/heimdal/commit/febe23a3998142bc4cd4fd3febe3839b52ecbff9
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M lib/krb5/libkrb5-exports.def.in
M lib/krb5/principal.c
M lib/krb5/version-script.map
Log Message:
-----------
Improve and export krb5_principal_set_comp_string
Commit: 4ae3e7d40a790adec68acc980ca2fed657d4b234
https://github.com/heimdal/heimdal/commit/4ae3e7d40a790adec68acc980ca2fed657d4b234
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M kuser/kgetcred.c
Log Message:
-----------
Fix leak in kgetcred
Commit: c2961ced3c9a908bdb67e5d7ed877f685d7f515f
https://github.com/heimdal/heimdal/commit/c2961ced3c9a908bdb67e5d7ed877f685d7f515f
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M kuser/kimpersonate.c
Log Message:
-----------
Fix leak in kimpersonate
Commit: 0306d70a91514d83b6d00373f9e46a8e9afc494c
https://github.com/heimdal/heimdal/commit/0306d70a91514d83b6d00373f9e46a8e9afc494c
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M kuser/kgetcred.1
M kuser/kgetcred.c
M lib/krb5/libkrb5-exports.def.in
M lib/krb5/log.c
M lib/krb5/version-script.map
Log Message:
-----------
Add --debug option to kgetcred
Commit: 50615d2a371827cefe103b914660b9e0d0467f5f
https://github.com/heimdal/heimdal/commit/50615d2a371827cefe103b914660b9e0d0467f5f
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M kuser/kgetcred.1
M kuser/kgetcred.c
Log Message:
-----------
Add --hostbased and --canonical kgetcred options
Commit: e695766d6598858c445d9f9369d246d6b147cafe
https://github.com/heimdal/heimdal/commit/e695766d6598858c445d9f9369d246d6b147cafe
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M kuser/kgetcred.1
M kuser/kgetcred.c
Log Message:
-----------
Add kgetcred --no-store and --cached-only options
These are useful for diagnostics and for exercising more krb5 get
credentials API options.
Commit: 6001e2adbcc438d3dfc2a88082d3fd2b2c5258a1
https://github.com/heimdal/heimdal/commit/6001e2adbcc438d3dfc2a88082d3fd2b2c5258a1
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M kuser/kgetcred.1
Log Message:
-----------
kgetcred.1 better describe referrals
Commit: 7e51f7817806cd7d4a578afb8125513ce135e2d8
https://github.com/heimdal/heimdal/commit/7e51f7817806cd7d4a578afb8125513ce135e2d8
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M lib/gssapi/krb5/acquire_cred.c
Log Message:
-----------
Simplify __gsskrb5_ccache_lifetime
Commit: f5a86add5c9b63a777a79d14da8daf3c7597b85b
https://github.com/heimdal/heimdal/commit/f5a86add5c9b63a777a79d14da8daf3c7597b85b
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-13 (Mon, 13 Apr 2015)
Changed paths:
M lib/krb5/cache.c
Log Message:
-----------
krb5_cc_get_lifetime() misses the TGT
Commit: 629eeb811a411d703fd6c72b7fcab74967c7a762
https://github.com/heimdal/heimdal/commit/629eeb811a411d703fd6c72b7fcab74967c7a762
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/cache.c
M lib/krb5/get_cred.c
M lib/krb5/krb5.h
Log Message:
-----------
Add start_realm cc config
Commit: f93947672d6569a3c50ef5fcc3404492ea79a905
https://github.com/heimdal/heimdal/commit/f93947672d6569a3c50ef5fcc3404492ea79a905
Author: Viktor Dukhovni <viktor at twosigma.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/gssapi/krb5/creds.c
Log Message:
-----------
Use start_realm cc config in export cred
Commit: f973a9f39736a775d94b8b779153c128310603a5
https://github.com/heimdal/heimdal/commit/f973a9f39736a775d94b8b779153c128310603a5
Author: Viktor Dukhovni <viktor at twosigma.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/cache.c
Log Message:
-----------
Use start_realm in cc lifetime
Commit: 5f91ef7242173e0bdb87e950dfa6212a8285b523
https://github.com/heimdal/heimdal/commit/5f91ef7242173e0bdb87e950dfa6212a8285b523
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/cache.c
Log Message:
-----------
Use krb5_timeofday in krb5_cc_get_lifetime()
Commit: a3b5dc2e3478b631c1f65bd2979b373599d232cc
https://github.com/heimdal/heimdal/commit/a3b5dc2e3478b631c1f65bd2979b373599d232cc
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/context.c
Log Message:
-----------
Update _krb5_homedir_access() docs
Commit: 617a82a0a5621675d52c6479607ae3f32a0c1df3
https://github.com/heimdal/heimdal/commit/617a82a0a5621675d52c6479607ae3f32a0c1df3
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/fcache.c
Log Message:
-----------
Fix ENOENT msg clobbering in fcache.c
By not returning the same error code as we were setting on the context,
the error message was subsequently lost.
Commit: 52b046c636bd04ef70e6ad73ef7b844d99a1417b
https://github.com/heimdal/heimdal/commit/52b046c636bd04ef70e6ad73ef7b844d99a1417b
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/roken/detach.c
Log Message:
-----------
Fix off-by-one in daemon detach
Commit: d09430d68bf5dcc83d165501ecafbe92b194f2b2
https://github.com/heimdal/heimdal/commit/d09430d68bf5dcc83d165501ecafbe92b194f2b2
Author: Viktor Dukhovni <viktor at twosigma.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/get_cred.c
Log Message:
-----------
Fetch forwardable TGT without GC_CACHED
Just in case it is not the start TGT, in which case it is generally,
but not always, already cached. Just in case get it again, if lost.
Commit: bd71a22e20999b18af2164621d5f2d5b4305d9f5
https://github.com/heimdal/heimdal/commit/bd71a22e20999b18af2164621d5f2d5b4305d9f5
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/cache.c
Log Message:
-----------
Fix trailing whitespace in cache.c
Commit: bfc78d11dcee20bec1a0fb2508b5bc6cb0eec4e0
https://github.com/heimdal/heimdal/commit/bfc78d11dcee20bec1a0fb2508b5bc6cb0eec4e0
Author: Viktor Dukhovni <viktor at twosigma.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/get_cred.c
Log Message:
-----------
Only use KDC offset when we have it
Commit: 7da08a658b99e1b3a927b873670ec98df442984b
https://github.com/heimdal/heimdal/commit/7da08a658b99e1b3a927b873670ec98df442984b
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/krb5/get_cred.c
Log Message:
-----------
Try capaths first, then referrals
When looking for a ticket, use the capath codepath first when we know
the service's realm: because we might have local policy as to how to get
there.
Then, if that doesn't work, try referrals. (For now unconditionally.)
Commit: 67af588bceca83275edef72eb9a8e0bd72e29da6
https://github.com/heimdal/heimdal/commit/67af588bceca83275edef72eb9a8e0bd72e29da6
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/gssapi/krb5/acquire_cred.c
Log Message:
-----------
Don't require NUL term. in gss_add_cred_with_pw
Commit: 9a515026b9237bc7e2aad49bf2bcd605a53d9ddb
https://github.com/heimdal/heimdal/commit/9a515026b9237bc7e2aad49bf2bcd605a53d9ddb
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/gssapi/krb5/acquire_cred.c
Log Message:
-----------
gss_add_cred() doesn't always output lifetime
Commit: 3bb33fa6e8171dcebb563bd1c75339b413c6a488
https://github.com/heimdal/heimdal/commit/3bb33fa6e8171dcebb563bd1c75339b413c6a488
Author: Viktor Dukhovni <viktor at twosigma.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/gssapi/krb5/acquire_cred.c
M lib/gssapi/krb5/copy_ccache.c
Log Message:
-----------
Fix cred handle lifetime/expiration confusion
In at least two instances the krb5 cred handle expiration time was misused
as a remaining lifetime. This is not surprising since the field name is
wrong ("lifetime" not "expiration"). This commit fixes the code, the next
commit will rename the field and change its type from OM_uint32 to time_t.
Commit: dee03d9beec8da40e429e99fc9a7383b2b2574be
https://github.com/heimdal/heimdal/commit/dee03d9beec8da40e429e99fc9a7383b2b2574be
Author: Viktor Dukhovni <viktor at twosigma.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/gssapi/krb5/acquire_cred.c
M lib/gssapi/krb5/add_cred.c
M lib/gssapi/krb5/copy_ccache.c
M lib/gssapi/krb5/gsskrb5_locl.h
M lib/gssapi/krb5/inquire_cred.c
Log Message:
-----------
Rename cred handle lifetime to endtime
And change type from OM_uint32 to time_t.
Commit: 20c1e6c9efd8bb23d56d1dba91a373c64b851f28
https://github.com/heimdal/heimdal/commit/20c1e6c9efd8bb23d56d1dba91a373c64b851f28
Author: Nicolas Williams <nico at cryptonector.com>
Date: 2015-04-14 (Tue, 14 Apr 2015)
Changed paths:
M lib/gssapi/krb5/accept_sec_context.c
M lib/gssapi/krb5/context_time.c
M lib/gssapi/krb5/export_sec_context.c
M lib/gssapi/krb5/gsskrb5_locl.h
M lib/gssapi/krb5/import_sec_context.c
M lib/gssapi/krb5/init_sec_context.c
M lib/gssapi/krb5/inquire_context.c
M lib/gssapi/krb5/inquire_sec_context_by_oid.c
Log Message:
-----------
Rename context handle lifetime to endtime
Compare: https://github.com/heimdal/heimdal/compare/e0dd26d963da...20c1e6c9efd8
More information about the Heimdal-source-changes
mailing list