From noreply at github.com Fri Nov 6 22:40:18 2015 From: noreply at github.com (GitHub) Date: Fri, 06 Nov 2015 13:40:18 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 352a7e: Make the KDC use a multi-process model. Message-ID: <563d1e422f2db_32723faeb22152a06791@hookshot-fe5-cp1-prd.iad.github.net.mail> Branch: refs/heads/master Home: https://github.com/heimdal/heimdal Commit: 352a7e94a34c768b7b0f356afdcfdf0f31eefc91 https://github.com/heimdal/heimdal/commit/352a7e94a34c768b7b0f356afdcfdf0f31eefc91 Author: Roland C. Dowdeswell Date: 2015-11-06 (Fri, 06 Nov 2015) Changed paths: M kdc/connect.c M kdc/default_config.c M kdc/headers.h M kdc/kdc.h M kdc/kdc_locl.h M kdc/main.c Log Message: ----------- Make the KDC use a multi-process model. We now fork(2) a number of separate KDC processes rather than a single process. By default, the number is selected by asking how many CPUs the machine has. We also have a master process which monitors all of the children (which do the actual work) and it will restart kids who die for any reason. The children will die when the parent dies. In the case of MacOS X, we also move the bonjour code into another separate child as it creates threads and this is known to play rather poorly with fork(2). We could move this logic into a designated child at some point in the future. We slow down the spawning to one every 25ms to prevent instant crashes and restarts from consuming all available system time. This approach may want to be revisited in the future. From noreply at github.com Fri Nov 6 23:09:12 2015 From: noreply at github.com (GitHub) Date: Fri, 06 Nov 2015 14:09:12 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 3e6fff: include/Makefile.am: don't clean files that are di... Message-ID: <563d2508ce6b8_43b53ffa19fd52c047592@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/master Home: https://github.com/heimdal/heimdal Commit: 3e6fffed6053c02709ef180d13504691e37f4787 https://github.com/heimdal/heimdal/commit/3e6fffed6053c02709ef180d13504691e37f4787 Author: Roland C. Dowdeswell Date: 2015-11-06 (Fri, 06 Nov 2015) Changed paths: M include/Makefile.am Log Message: ----------- include/Makefile.am: don't clean files that are distributed. We stop cleaning crypto-headers.h and heim_threads.h. From noreply at github.com Tue Nov 24 15:53:09 2015 From: noreply at github.com (GitHub) Date: Tue, 24 Nov 2015 06:53:09 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 6fbe67: hcrypto: Default to CommonCrypto on Apple OSes Message-ID: <565479d54d35c_484e3fba73c052c0603f5@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/master Home: https://github.com/heimdal/heimdal Commit: 6fbe672451be28a66952b13657fd5d5760a899f6 https://github.com/heimdal/heimdal/commit/6fbe672451be28a66952b13657fd5d5760a899f6 Author: Jeffrey Altman Date: 2015-11-24 (Tue, 24 Nov 2015) Changed paths: M lib/hcrypto/evp.c Log Message: ----------- hcrypto: Default to CommonCrypto on Apple OSes When __APPLE__ is defined and HCRYPTO_DEF_PROVIDER is not defined, define HCRYPTO_DEF_PROVIDER to be "cc" so that Apple's CommonCrypto implementations are used instead of the built-in "hcrypto" implementations. Change-Id: I393e5fc3f6c3b9339c96db58d926ff8ea1867cbb From noreply at github.com Fri Nov 27 13:48:41 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 04:48:41 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] be2495: PKCS#11 backend for hcrypto Message-ID: <565851296b31b_14eb3fe3b19b72b8430a4@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: be249526fa9ce09b557f294ab4067b81131501f2 https://github.com/heimdal/heimdal/commit/be249526fa9ce09b557f294ab4067b81131501f2 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M cf/crypto.m4 M configure.ac M kdc/connect.c M lib/base/baselocl.h M lib/hcrypto/Makefile.am M lib/hcrypto/NTMakefile M lib/hcrypto/evp-cc.c M lib/hcrypto/evp-crypt.c M lib/hcrypto/evp-hcrypto.c A lib/hcrypto/evp-pkcs11.c A lib/hcrypto/evp-pkcs11.h M lib/hcrypto/evp-wincng.c M lib/hcrypto/evp.c M lib/hcrypto/libhcrypto-exports.def A lib/hcrypto/pkcs11.h M lib/hcrypto/test_cipher.c M lib/hcrypto/version-script.map M lib/hx509/Makefile.am M lib/hx509/NTMakefile M lib/hx509/ks_p11.c R lib/hx509/ref/pkcs11.h M lib/hx509/softp11.c M lib/hx509/test_soft_pkcs11.c M lib/libedit/config.h.in M lib/libedit/src/el_term.h M lib/libedit/src/sys.h Log Message: ----------- PKCS#11 backend for hcrypto Commit: 41710f9e21bdd4d5d52ce518433016a28c363ae8 https://github.com/heimdal/heimdal/commit/41710f9e21bdd4d5d52ce518433016a28c363ae8 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M cf/crypto.m4 M lib/base/baselocl.h M lib/hcrypto/evp-pkcs11.c M lib/hcrypto/evp.c M lib/hcrypto/test_cipher.c Log Message: ----------- define Solaris PKCS#11 in code, not autoconf Compare: https://github.com/heimdal/heimdal/compare/be249526fa9c^...41710f9e21bd From noreply at github.com Fri Nov 27 14:08:07 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 05:08:07 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 743238: pull in hcrypto/pkcs11.h even if building with Ope... Message-ID: <565855b742ac1_6c433fb4e45432a0132d0@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 743238187fceef3f15fefc5380ad71762be45fc1 https://github.com/heimdal/heimdal/commit/743238187fceef3f15fefc5380ad71762be45fc1 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/hx509/Makefile.am Log Message: ----------- pull in hcrypto/pkcs11.h even if building with OpenSSL From noreply at github.com Fri Nov 27 14:26:32 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 05:26:32 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 93d73b: move pkcs11.h back to hx509/ref/pkcs11.h Message-ID: <56585a083ee76_54033ff1679872c01712f8@hookshot-fe5-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 93d73b782bbb375467984ca5efaa341a44d5e333 https://github.com/heimdal/heimdal/commit/93d73b782bbb375467984ca5efaa341a44d5e333 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/hcrypto/Makefile.am R lib/hcrypto/pkcs11.h M lib/hx509/Makefile.am M lib/hx509/NTMakefile M lib/hx509/ks_p11.c A lib/hx509/ref/pkcs11.h M lib/hx509/softp11.c M lib/hx509/test_soft_pkcs11.c Log Message: ----------- move pkcs11.h back to hx509/ref/pkcs11.h this is because hcrypto is a drop-in replacement for OpenSSL's libcrypto; it is confusing if it advertises APIs that are not in OpenSSL From noreply at github.com Fri Nov 27 15:50:24 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 06:50:24 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 055e44: initial cut of draft-ietf-kitten-aes-cts-hmac-sha2... Message-ID: <56586db01435a_4db93fc33d2f129c825aa@hookshot-fe2-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: 055e44b8f9412895b10aea8e3bf3eaf51cf5fbf8 https://github.com/heimdal/heimdal/commit/055e44b8f9412895b10aea8e3bf3eaf51cf5fbf8 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M kdc/connect.c M kdc/kerberos5.c M lib/asn1/krb5.asn1 M lib/hcrypto/evp-cc.c M lib/hcrypto/evp-cc.h M lib/hcrypto/evp.h M lib/hcrypto/libhcrypto-exports.def M lib/hcrypto/pkcs5.c M lib/hcrypto/test_pkcs5.c M lib/hcrypto/version-script.map M lib/krb5/Makefile.am M lib/krb5/aes-test.c A lib/krb5/crypto-aes-sha1.c A lib/krb5/crypto-aes-sha2.c R lib/krb5/crypto-aes.c M lib/krb5/crypto-algs.c M lib/krb5/crypto.c M lib/krb5/crypto.h M lib/krb5/derived-key-test.c M lib/krb5/krb5.h M lib/krb5/libkrb5-exports.def.in A lib/krb5/salt-aes-sha1.c A lib/krb5/salt-aes-sha2.c R lib/krb5/salt-aes.c A lib/krb5/sp800-108-kdf.c M lib/krb5/test_crypto.c M lib/krb5/test_crypto_wrapping.c M lib/krb5/test_rfc3961.c M lib/krb5/version-script.map Log Message: ----------- initial cut of draft-ietf-kitten-aes-cts-hmac-sha2-06 From noreply at github.com Fri Nov 27 15:57:33 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 06:57:33 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 124405: unbreak test_pkcs5 Message-ID: <56586f5d87869_6fc43fe6aef7329c1331a9@hookshot-fe4-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: 124405fb226cd2f4caad3379ef1223676e7f509e https://github.com/heimdal/heimdal/commit/124405fb226cd2f4caad3379ef1223676e7f509e Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/test_pkcs5.c Log Message: ----------- unbreak test_pkcs5 From noreply at github.com Fri Nov 27 16:41:37 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 07:41:37 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 1c1592: remove trailing space Message-ID: <565879b17d90d_79d13fcde66b52bc1226f7@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: 1c1592858bb6cddd1f9e6f68840c9d5d4e94aa09 https://github.com/heimdal/heimdal/commit/1c1592858bb6cddd1f9e6f68840c9d5d4e94aa09 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/krb5/aes-test.c Log Message: ----------- remove trailing space Commit: ec0893eededa1b1d6d817805d5089f5b234923ce https://github.com/heimdal/heimdal/commit/ec0893eededa1b1d6d817805d5089f5b234923ce Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/krb5/sp800-108-kdf.c Log Message: ----------- use _krb5_put_int Compare: https://github.com/heimdal/heimdal/compare/124405fb226c...ec0893eededa From noreply at github.com Fri Nov 27 16:48:31 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 07:48:31 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 9d64da: refactor/cleanup Message-ID: <56587b4fe2795_4c603fbed1c452a09382c@hookshot-fe5-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: 9d64dad9603604dc7eeddbc3680a77f93e878fa7 https://github.com/heimdal/heimdal/commit/9d64dad9603604dc7eeddbc3680a77f93e878fa7 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/krb5/crypto.c Log Message: ----------- refactor/cleanup From noreply at github.com Sat Nov 28 00:26:27 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 15:26:27 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] a1e247: lib/base: cleanup baselocl.h includes Message-ID: <5658e6a354984_30323ffbbd6612c020212f@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: a1e247e5a4999fbfde5eac324549377db141f81b https://github.com/heimdal/heimdal/commit/a1e247e5a4999fbfde5eac324549377db141f81b Author: Jeffrey Altman Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/base/baselocl.h Log Message: ----------- lib/base: cleanup baselocl.h includes baselocl.h includes roken.h which must be included at the top of the header. Once included it is no longer necessary to separately include headers that roken.h includes. Change-Id: I142411341117337059f767d8e73040c42c50a745 Commit: eadb28a1e0f596a8b39b6b686e4ff6474075eccd https://github.com/heimdal/heimdal/commit/eadb28a1e0f596a8b39b6b686e4ff6474075eccd Author: Jeffrey Altman Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- hcrypto: cleanup evp-pkcs11.c includes baselocl.h includes heimbase.h and roken.h so it is not necessary to separately include heimbase.h and headers included by roken.h. Change-Id: I4f29df8335b889f0996df759e58f709c9c626c6d Commit: 56c5771a7294ff169e4a1bea4b3e685d44042eee https://github.com/heimdal/heimdal/commit/56c5771a7294ff169e4a1bea4b3e685d44042eee Author: Jeffrey Altman Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/NTMakefile Log Message: ----------- hcrypto: fix build of evp-pkcs11.c on Windows Fix the Windows makefile so that evp-pkcs11.c can be successfully built. Change-Id: I012d6ce5c7a541bc7a1faf58bed871a1b79fd0c2 Compare: https://github.com/heimdal/heimdal/compare/93d73b782bbb...56c5771a7294 From noreply at github.com Sat Nov 28 00:35:39 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 15:35:39 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 280176: use temporary numbers for aes-cts-sha2 Message-ID: <5658e8cbadbd3_26253f803c3092a0493a3@hookshot-fe4-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: 280176eaf02e02ce5da5d80dd324b93d2243c296 https://github.com/heimdal/heimdal/commit/280176eaf02e02ce5da5d80dd324b93d2243c296 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/asn1/krb5.asn1 Log Message: ----------- use temporary numbers for aes-cts-sha2 From noreply at github.com Sat Nov 28 00:47:52 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 15:47:52 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 2a34fa: In draft -07, PRF will be untruncated HMAC Message-ID: <5658eba870ca1_67d3fc5779372a01148c4@hookshot-fe4-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: 2a34fa25b7c5dc08d60e40a627381b2fa8b9a189 https://github.com/heimdal/heimdal/commit/2a34fa25b7c5dc08d60e40a627381b2fa8b9a189 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/krb5/crypto-aes-sha2.c Log Message: ----------- In draft -07, PRF will be untruncated HMAC From noreply at github.com Sat Nov 28 01:06:14 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 16:06:14 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] d35fd4: use memset_s Message-ID: <5658eff6d0829_e2e3fd25594129c1758f@hookshot-fe6-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/hcrypto-memset_s Home: https://github.com/heimdal/heimdal Commit: d35fd4f58065be881960a696d57abf822f98a061 https://github.com/heimdal/heimdal/commit/d35fd4f58065be881960a696d57abf822f98a061 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/bn.c M lib/hcrypto/dh.c M lib/hcrypto/dsa.c M lib/hcrypto/engine.c M lib/hcrypto/evp.c M lib/hcrypto/hmac.c M lib/hcrypto/rsa.c Log Message: ----------- use memset_s From noreply at github.com Sat Nov 28 01:08:56 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 16:08:56 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] ace9a8: use memset_s in new code Message-ID: <5658f0986cb83_64ca3f8eb0f192c048016@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: ace9a8112819985b31d8e101723eb479a90cb944 https://github.com/heimdal/heimdal/commit/ace9a8112819985b31d8e101723eb479a90cb944 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/krb5/crypto.c Log Message: ----------- use memset_s in new code From noreply at github.com Sat Nov 28 08:48:08 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 23:48:08 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 38f737: use volatile uint_t for atomic type Message-ID: <56595c3894d06_26283feb25b312bc68589@hookshot-fe4-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 38f737c7ea01c41ca856cd821f476872c323a710 https://github.com/heimdal/heimdal/commit/38f737c7ea01c41ca856cd821f476872c323a710 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/base/baselocl.h Log Message: ----------- use volatile uint_t for atomic type From noreply at github.com Sat Nov 28 08:48:51 2015 From: noreply at github.com (GitHub) Date: Fri, 27 Nov 2015 23:48:51 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 9af015: cpp safety Message-ID: <56595c63abf40_1bac3ff8619e72a04571c@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 9af01547938fc44cb29258faf074652a02c63114 https://github.com/heimdal/heimdal/commit/9af01547938fc44cb29258faf074652a02c63114 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/base/baselocl.h Log Message: ----------- cpp safety From noreply at github.com Sat Nov 28 09:00:34 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 00:00:34 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 17bc66: untested AIX atomic functions Message-ID: <56595f2218d6e_64ca3f8eb0f192c050061@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 17bc661d61ea809b88e69668153da5277c617c75 https://github.com/heimdal/heimdal/commit/17bc661d61ea809b88e69668153da5277c617c75 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/base/baselocl.h Log Message: ----------- untested AIX atomic functions From noreply at github.com Sat Nov 28 14:09:11 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 05:09:11 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] db4017: remove volatile from heim_base_atomic_type Message-ID: <5659a77753e6e_55f13fbb4616529c20131d@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: db40171c74d66e50c3ca57c4fbede3fd5f3e0f85 https://github.com/heimdal/heimdal/commit/db40171c74d66e50c3ca57c4fbede3fd5f3e0f85 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/base/baselocl.h Log Message: ----------- remove volatile from heim_base_atomic_type From noreply at github.com Sat Nov 28 14:37:22 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 05:37:22 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] bfe12c: cache result of p11_mech_available_p() Message-ID: <5659ae12dee9d_3c8d3f81901432b816328e@hookshot-fe2-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: bfe12c5b097b56cc17689b2237a08c145ee616e9 https://github.com/heimdal/heimdal/commit/bfe12c5b097b56cc17689b2237a08c145ee616e9 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- cache result of p11_mech_available_p() remove a level of function indirection so we actually cache whether PKCS#11 is available; the previous code was wrong From noreply at github.com Sat Nov 28 14:41:40 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 05:41:40 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 3fe3ad: PKCS#11 backend for hcrypto Message-ID: <5659af14ec10d_3ded3faad155529c844fe@hookshot-fe5-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 3fe3ad4c17d4498b9960d7057cb49daa35703b68 https://github.com/heimdal/heimdal/commit/3fe3ad4c17d4498b9960d7057cb49daa35703b68 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M cf/crypto.m4 M configure.ac M kdc/connect.c M lib/base/baselocl.h M lib/hcrypto/Makefile.am M lib/hcrypto/NTMakefile M lib/hcrypto/evp-cc.c M lib/hcrypto/evp-crypt.c M lib/hcrypto/evp-hcrypto.c A lib/hcrypto/evp-pkcs11.c A lib/hcrypto/evp-pkcs11.h M lib/hcrypto/evp-wincng.c M lib/hcrypto/evp.c M lib/hcrypto/libhcrypto-exports.def M lib/hcrypto/test_cipher.c M lib/hcrypto/version-script.map M lib/hx509/ref/pkcs11.h M lib/libedit/config.h.in M lib/libedit/src/el_term.h M lib/libedit/src/sys.h Log Message: ----------- PKCS#11 backend for hcrypto From noreply at github.com Sat Nov 28 15:17:42 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 06:17:42 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] ad35f2: pass NULL to determine digest length, more portabl... Message-ID: <5659b786502bf_564b3f80845e529c861f3@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: ad35f229b0302652af45c1d419b990e9d639b6b4 https://github.com/heimdal/heimdal/commit/ad35f229b0302652af45c1d419b990e9d639b6b4 Author: Luke Howard Date: 2015-11-27 (Fri, 27 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- pass NULL to determine digest length, more portable (works with OpenCryptoki on Linux) From noreply at github.com Sat Nov 28 15:19:37 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 06:19:37 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 6d9d64: cast away unused return value (fix warning) Message-ID: <5659b7f948e01_3ee3fc924cb72bc450ec@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 6d9d64bdf87a96c213165c3c17121e982ef46b7f https://github.com/heimdal/heimdal/commit/6d9d64bdf87a96c213165c3c17121e982ef46b7f Author: Luke Howard Date: 2015-11-29 (Sun, 29 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- cast away unused return value (fix warning) Commit: 3cec41b9830edf35a2a9d28b77b406848d12a318 https://github.com/heimdal/heimdal/commit/3cec41b9830edf35a2a9d28b77b406848d12a318 Author: Luke Howard Date: 2015-11-29 (Sun, 29 Nov 2015) Changed paths: M cf/crypto.m4 Log Message: ----------- don't use OpenSSL libcrypto if PKCS#11 explicitly specified Commit: 66caf3fea219fd2f9a7a254a27d5d3d3cfb94687 https://github.com/heimdal/heimdal/commit/66caf3fea219fd2f9a7a254a27d5d3d3cfb94687 Author: Luke Howard Date: 2015-11-29 (Sun, 29 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- Merge branch 'lukeh/pkcs11-hcrypto' of github.com:heimdal/heimdal into lukeh/pkcs11-hcrypto Compare: https://github.com/heimdal/heimdal/compare/ad35f229b030...66caf3fea219 From noreply at github.com Sun Nov 29 03:58:57 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 18:58:57 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 206508: Define __EXTENSIONS__ only for >= Solaris 11 Message-ID: <565a69f1307d2_31da3fdce2cc12b868718@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 206508f4004e182f5010ba9a4bb0fa0a0f311692 https://github.com/heimdal/heimdal/commit/206508f4004e182f5010ba9a4bb0fa0a0f311692 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M cf/sunos.m4 M configure.ac Log Message: ----------- Define __EXTENSIONS__ only for >= Solaris 11 Commit: cfe2af8c5f62728c53de2a701e0370b41eb9f999 https://github.com/heimdal/heimdal/commit/cfe2af8c5f62728c53de2a701e0370b41eb9f999 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/Makefile.am M lib/hcrypto/NTMakefile M lib/hcrypto/evp-pkcs11.c M lib/hx509/Makefile.am M lib/hx509/NTMakefile M lib/hx509/ks_p11.c M lib/hx509/softp11.c M lib/hx509/test_soft_pkcs11.c Log Message: ----------- review comment: explicitly pkcs11.h from ref/ I'm not sure I really agree with this (see previous precedent in hx509) but including as it was suggested in review Commit: 114349b972e2984d1c025725720654b47f236c04 https://github.com/heimdal/heimdal/commit/114349b972e2984d1c025725720654b47f236c04 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/Makefile.am M lib/hcrypto/NTMakefile M lib/hcrypto/evp-pkcs11.c Log Message: ----------- use heim_base_once_f to initialize PKCS#11 library Commit: 700a757852025ebb6c41122a85bc585be9119744 https://github.com/heimdal/heimdal/commit/700a757852025ebb6c41122a85bc585be9119744 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- use heim_base_once_f for wrapper initialization Commit: 184fa49e6aa1e5a10c9c996fb57b6e8c92705172 https://github.com/heimdal/heimdal/commit/184fa49e6aa1e5a10c9c996fb57b6e8c92705172 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- load PKCS#11 with RTLD_NODELETE Commit: 6edcd8be04aaff0434ef240de73d2540bc660fb9 https://github.com/heimdal/heimdal/commit/6edcd8be04aaff0434ef240de73d2540bc660fb9 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/evp-pkcs11.c Log Message: ----------- make a note about PKCS#11 slot order Commit: 606193aa7e0075e784357ab52f2cba608bd81635 https://github.com/heimdal/heimdal/commit/606193aa7e0075e784357ab52f2cba608bd81635 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/libhcrypto-exports.def Log Message: ----------- export PKCS#11 hcrypto on Windows Compare: https://github.com/heimdal/heimdal/compare/66caf3fea219...606193aa7e00 From noreply at github.com Sun Nov 29 04:15:20 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 19:15:20 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] c89b44: no longer need lib/base in include path Message-ID: <565a6dc8de605_66273fc0b383b2c01089e5@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: c89b44965656eaff64e9e80fdeb2bdf89845ec09 https://github.com/heimdal/heimdal/commit/c89b44965656eaff64e9e80fdeb2bdf89845ec09 Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/Makefile.am M lib/hcrypto/NTMakefile M lib/hcrypto/evp-pkcs11.c Log Message: ----------- no longer need lib/base in include path From noreply at github.com Sun Nov 29 06:47:44 2015 From: noreply at github.com (GitHub) Date: Sat, 28 Nov 2015 21:47:44 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 13d323: bulk crypto tests for PKCS#11 Message-ID: <565a9180ddba0_33953f958f01d2b81330b@hookshot-fe5-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 13d323a5ede3a16b109e05d74bdddd343cf474fe https://github.com/heimdal/heimdal/commit/13d323a5ede3a16b109e05d74bdddd343cf474fe Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/test_bulk.c Log Message: ----------- bulk crypto tests for PKCS#11 From noreply at github.com Sun Nov 29 13:24:15 2015 From: noreply at github.com (GitHub) Date: Sun, 29 Nov 2015 04:24:15 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 078aeb: update test_bulk usage for pkcs11 Message-ID: <565aee6fe9b0d_1a883fed756c52bc569d7@hookshot-fe3-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/pkcs11-hcrypto Home: https://github.com/heimdal/heimdal Commit: 078aeb3d4b9d8d7d5163c7306e7552b65e56d1ba https://github.com/heimdal/heimdal/commit/078aeb3d4b9d8d7d5163c7306e7552b65e56d1ba Author: Luke Howard Date: 2015-11-28 (Sat, 28 Nov 2015) Changed paths: M lib/hcrypto/test_bulk.c Log Message: ----------- update test_bulk usage for pkcs11 From noreply at github.com Sun Nov 29 18:15:54 2015 From: noreply at github.com (GitHub) Date: Sun, 29 Nov 2015 09:15:54 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 4735fa: base: Windows implementation of heim_base_once Message-ID: <565b32ca173bc_57af3f9e79d152c015008b@hookshot-fe1-cp1-prd.iad.github.net.mail> Branch: refs/heads/master Home: https://github.com/heimdal/heimdal Commit: 4735faba597ba40fe09498e999839655877a63cc https://github.com/heimdal/heimdal/commit/4735faba597ba40fe09498e999839655877a63cc Author: Jeffrey Altman Date: 2015-11-29 (Sun, 29 Nov 2015) Changed paths: M lib/base/heimbase.c M lib/base/heimbase.h Log Message: ----------- base: Windows implementation of heim_base_once Provide a Windows implementation of heim_base_once that relies upon InterlockedCompareExchange() and SwitchToThread(). Change-Id: I9cdbda796d1a27fe1e17be63f287b10132858d7f From noreply at github.com Mon Nov 30 06:51:05 2015 From: noreply at github.com (GitHub) Date: Sun, 29 Nov 2015 21:51:05 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] cc0e92: base: correct Windows heim_base_once_f semantics Message-ID: <565be3c979cfc_13f63ffa384db29c13502b@hookshot-fe6-cp1-prd.iad.github.net.mail> Branch: refs/heads/master Home: https://github.com/heimdal/heimdal Commit: cc0e92a3c359cb34079b8e5b258ceef813ea684a https://github.com/heimdal/heimdal/commit/cc0e92a3c359cb34079b8e5b258ceef813ea684a Author: Nicolas Williams Date: 2015-11-30 (Mon, 30 Nov 2015) Changed paths: M lib/base/heimbase.c M lib/base/heimbase.h Log Message: ----------- base: correct Windows heim_base_once_f semantics As implemented by Jeffrey Altman heim_base_once_f() is a variant of the "double-checked gate lock pattern". Full memory barriers must be used when determining whether or not to call SwitchToThread(). Change-Id: I2f8446a56c50a37c921d6e993433c9a3f7488f50 From noreply at github.com Mon Nov 30 07:25:47 2015 From: noreply at github.com (GitHub) Date: Sun, 29 Nov 2015 22:25:47 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] ae0211: initial cut of draft-ietf-kitten-aes-cts-hmac-sha2... Message-ID: <565bebebed138_74003fc290c5f2a05437b@hookshot-fe4-cp1-prd.iad.github.net.mail> Branch: refs/heads/lukeh/aes-cts-hmac-sha2 Home: https://github.com/heimdal/heimdal Commit: ae0211829af24bf7de407d85f428402a0436cc2c https://github.com/heimdal/heimdal/commit/ae0211829af24bf7de407d85f428402a0436cc2c Author: Luke Howard Date: 2015-11-30 (Mon, 30 Nov 2015) Changed paths: M kdc/connect.c M kdc/kerberos5.c M lib/asn1/krb5.asn1 M lib/hcrypto/evp-cc.c M lib/hcrypto/evp-cc.h M lib/hcrypto/evp.h M lib/hcrypto/libhcrypto-exports.def M lib/hcrypto/pkcs5.c M lib/hcrypto/test_pkcs5.c M lib/hcrypto/version-script.map M lib/krb5/Makefile.am M lib/krb5/aes-test.c A lib/krb5/crypto-aes-sha1.c A lib/krb5/crypto-aes-sha2.c R lib/krb5/crypto-aes.c M lib/krb5/crypto-algs.c M lib/krb5/crypto.c M lib/krb5/crypto.h M lib/krb5/derived-key-test.c M lib/krb5/krb5.h M lib/krb5/libkrb5-exports.def.in A lib/krb5/salt-aes-sha1.c A lib/krb5/salt-aes-sha2.c R lib/krb5/salt-aes.c A lib/krb5/sp800-108-kdf.c M lib/krb5/test_crypto.c M lib/krb5/test_crypto_wrapping.c M lib/krb5/test_rfc3961.c M lib/krb5/version-script.map Log Message: ----------- initial cut of draft-ietf-kitten-aes-cts-hmac-sha2-06 Commit: 86f58807ea123d8b817368fdb5420ea7d4dfa7d4 https://github.com/heimdal/heimdal/commit/86f58807ea123d8b817368fdb5420ea7d4dfa7d4 Author: Luke Howard Date: 2015-11-30 (Mon, 30 Nov 2015) Changed paths: M lib/krb5/crypto-aes-sha2.c Log Message: ----------- In draft -07, PRF will be untruncated HMAC Compare: https://github.com/heimdal/heimdal/compare/ace9a8112819...86f58807ea12 From noreply at github.com Mon Nov 30 07:35:16 2015 From: noreply at github.com (GitHub) Date: Sun, 29 Nov 2015 22:35:16 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 9e359a: base: Windows heim_base_once_t cleanup Message-ID: <565bee24e2b65_f6e3f93dd18729c12635f@hookshot-fe6-cp1-prd.iad.github.net.mail> Branch: refs/heads/master Home: https://github.com/heimdal/heimdal Commit: 9e359ac98f503ec7da0725defc21d43d7974a3a5 https://github.com/heimdal/heimdal/commit/9e359ac98f503ec7da0725defc21d43d7974a3a5 Author: Luke Howard Date: 2015-11-30 (Mon, 30 Nov 2015) Changed paths: M lib/base/heimbase.c M lib/base/heimbase.h Log Message: ----------- base: Windows heim_base_once_t cleanup heim_base_once_t can just be a LONG on Windows, the structure is not needed From noreply at github.com Mon Nov 30 21:25:56 2015 From: noreply at github.com (GitHub) Date: Mon, 30 Nov 2015 12:25:56 -0800 Subject: [Heimdal-source-changes] [heimdal/heimdal] 2cac8c: Use pthread_once() when available Message-ID: <565cb0d47ed1f_45d13fbc319bb2c0971fa@hookshot-fe5-cp1-prd.iad.github.net.mail> Branch: refs/heads/master Home: https://github.com/heimdal/heimdal Commit: 2cac8ca703997e141e9b7e0343bb50f8bbea95cb https://github.com/heimdal/heimdal/commit/2cac8ca703997e141e9b7e0343bb50f8bbea95cb Author: Nicolas Williams Date: 2015-11-30 (Mon, 30 Nov 2015) Changed paths: M lib/base/heimbase.c M lib/base/heimbase.h Log Message: ----------- Use pthread_once() when available