[Heimdal-source-changes] [heimdal/heimdal] 8b2c49: sunpro c defines __SUNPRO_C not __SUNPRO_CC
Jeffrey Altman
noreply at github.com
Tors May 16 00:19:51 CEST 2019
Branch: refs/tags/heimdal-7.6.0
Home: https://github.com/heimdal/heimdal
Commit: 8b2c4985384bee6a95ae3a06bcbaaff6fb5063d6
https://github.com/heimdal/heimdal/commit/8b2c4985384bee6a95ae3a06bcbaaff6fb5063d6
Author: Daria Phoebe Brashear <dariaphoebe at auristor.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M include/heim_threads.h
Log Message:
-----------
sunpro c defines __SUNPRO_C not __SUNPRO_CC
CC is the c++ compiler; C is the c compiler. use the correct define
Commit: 4e2db841a28ec3054c39acdce0dc7dc35b2e0120
https://github.com/heimdal/heimdal/commit/4e2db841a28ec3054c39acdce0dc7dc35b2e0120
Author: Daria Phoebe Brashear <dariaphoebe at auristor.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/libedit/src/makelist
Log Message:
-----------
libedit: makelist should default to awk, but not force it
solaris needs gawk; we should allow the makefile to override awk
with gawk (or whatever else)
Commit: 552cbb3df302106dca0682aa0853ff48d5936859
https://github.com/heimdal/heimdal/commit/552cbb3df302106dca0682aa0853ff48d5936859
Author: Quanah Gibson-Mount <quanah at symas.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/libedit/src/vis.h
Log Message:
-----------
Fixes https://github.com/heimdal/heimdal/issues/294
Commit: 0b6af62fd935d228381a4538fbe3a8f98ee285ce
https://github.com/heimdal/heimdal/commit/0b6af62fd935d228381a4538fbe3a8f98ee285ce
Author: Quanah Gibson-Mount <quanah at symas.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M appl/dceutils/k5dcecon.c
M kuser/klist.c
M lib/gssapi/krb5/test_sequence.c
M lib/hx509/cms.c
M lib/hx509/print.c
M lib/kdfs/k5dfspag.c
M tests/can/check-can.in
M tests/db/add-modify-delete.in
M tests/db/check-aliases.in
M tests/db/loaddump-db.in
M tests/gss/check-basic.in
M tests/gss/check-context.in
M tests/gss/check-gssmask.in
M tests/gss/check-ntlm.in
M tests/gss/check-spnego.in
M tests/kdc/check-canon.in
M tests/kdc/check-cc.in
M tests/kdc/check-delegation.in
M tests/kdc/check-des.in
M tests/kdc/check-digest.in
M tests/kdc/check-fast.in
M tests/kdc/check-hdb-mitdb.in
M tests/kdc/check-iprop.in
M tests/kdc/check-kadmin.in
M tests/kdc/check-kdc.in
M tests/kdc/check-keys.in
M tests/kdc/check-kinit.in
M tests/kdc/check-kpasswdd.in
M tests/kdc/check-pkinit.in
M tests/kdc/check-referral.in
M tests/kdc/check-tester.in
M tests/kdc/check-uu.in
M tests/ldap/check-ldap.in
M tests/plugin/check-pac.in
Log Message:
-----------
Minor typo/grammar fixes
(cherry picked from commit 7c16ce34570ef8b255f2ad1bc3f8fb3b019df84f)
Commit: 56f9911670986e8e3fba4063d1bae05d1bc82170
https://github.com/heimdal/heimdal/commit/56f9911670986e8e3fba4063d1bae05d1bc82170
Author: David Mulder <David.Mulder at software.dell.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-pkcs11.c
Log Message:
-----------
solaris 8 sparc defines _LP64 to empty, causing build failure
(cherry picked from commit f132d2040dbc326b8f3c8b3970001a966e58ade1)
Commit: f2ee12e91deece93540d1240d516e80d6305bf0e
https://github.com/heimdal/heimdal/commit/f2ee12e91deece93540d1240d516e80d6305bf0e
Author: Quanah Gibson-Mount <quanah at symas.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M kdc/connect.c
Log Message:
-----------
Fixes https://github.com/heimdal/heimdal/issues/310, use PF_UNIX instead
of PF_LOCAL
(cherry picked from commit e7879208e47f60bf88f6a2dad00fb77075843f2c)
Commit: edcdb0bae5a6e95522a95ef68826ab0f68d76a7f
https://github.com/heimdal/heimdal/commit/edcdb0bae5a6e95522a95ef68826ab0f68d76a7f
Author: Luke Howard <lukeh at padl.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-pkcs11.c
M lib/hcrypto/evp.h
Log Message:
-----------
Fix PKCS#11 hcrypto backend regression (#314, #315, #316, #317)
81c778e broke the PKCS#11 hcrypto backend broke for many cases as it did
not support cipherstate resetting. (Prior to 81c778e, which was to fix #194,
the PKCS#11 backend did not support cipherstate chaining across invocations.)
hcrypto backends that maintain cipherstate independently of the hcrypto
context IV field need to set EVP_CIPH_ALWAYS_CALL_INIT to avoid the two
diverging. Their init function should support resetting the cipherstate
independently of key scheduling.
(cherry picked from commit a88d00660efc0de15514f0957a51954478e31f45)
Commit: 9c859ac64fba8e59d27af0aca3efca7b79a7b4a8
https://github.com/heimdal/heimdal/commit/9c859ac64fba8e59d27af0aca3efca7b79a7b4a8
Author: Luke Howard <lukeh at padl.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-pkcs11.c
Log Message:
-----------
hcrypto PKCS#11 backend: allow digest update with NULL (#378)
Some callers of EVP_DigestUpdate (such as libntlm) pass NULL as the
data argument. PKCS#11 returns CKR_ARGUMENTS_BAD which may poison
the context. Pass an empty string to C_DigestUpdate work around this.
(cherry picked from commit 590be3d7dadb8e17a15261bce9275f37f6dfc917)
Commit: fdfa1f225eb843ca2a40f2da71292f4d11c60811
https://github.com/heimdal/heimdal/commit/fdfa1f225eb843ca2a40f2da71292f4d11c60811
Author: Luke Howard <lukeh at padl.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-pkcs11.c
Log Message:
-----------
hcrypto PKCS#11 backend: allow digest update with NULL (#378)
In the PKCS#11 backend, add an assertion check to p11_md_update()
to validate that the data length is zero if the data is NULL.
(cherry picked from commit 6a1bb953230a2095a9ef7b9f1e979cf519ac616b)
Commit: c2bcabb86c8ac0d7cbd69fb06c80d8b3856bf63e
https://github.com/heimdal/heimdal/commit/c2bcabb86c8ac0d7cbd69fb06c80d8b3856bf63e
Author: Luke Howard <lukeh at padl.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-pkcs11.c
Log Message:
-----------
hcrypto PKCS#11 backend: don't leak sessions on digest reinit
Clients of the EVP API can reinitialize message digest contexts
without destroying them. The PKCS#11 backend assumed they were
only used once, and was leaking session handles upon reinitialization.
This fix disposes of any existing PKCS#11 message digest context
in the initialization method.
(cherry picked from commit 9518f2965b4d0daef0eda733c31c6c26ccae20a4)
Commit: 9e76f25322ed2decef2807107e1e88f596305072
https://github.com/heimdal/heimdal/commit/9e76f25322ed2decef2807107e1e88f596305072
Author: Luke Howard <lukeh at padl.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-wincng.c
Log Message:
-----------
hcrypto WinCNG backend: don't leak handles on digest reinit
Similar fix to 9518f296, but for the WinCNG EVP backend.
(cherry picked from commit bd0b6f8c2b8663e372b713769b554984b2d929ae)
Commit: 613cb65e9ef6881167a1dd2a299800959649eb24
https://github.com/heimdal/heimdal/commit/613cb65e9ef6881167a1dd2a299800959649eb24
Author: Luke Howard <lukeh at padl.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-wincng.c
Log Message:
-----------
hcrypto WinCNG backend: don't leak handles on crypto reinit
Similar fix to a88d0066, but for the WinCNG EVP backend. However this
is just a fix for leaking handles if the same EVP context is used with
a new key; there is no functionality issue as cipherstate is maintained
directly in the EVP context, not internally by WinCNG.
(cherry picked from commit 3224a282a65bfcabfb730112b53a89f95341f8b3)
Commit: 5995db43564f31537c52c823851bf2b565543cc7
https://github.com/heimdal/heimdal/commit/5995db43564f31537c52c823851bf2b565543cc7
Author: Luke Howard <lukeh at padl.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M lib/hcrypto/evp-pkcs11.c
Log Message:
-----------
hcrypto PKCS#11 backend: Call C_Initialize() on every hcrypto call
This is required as the PKCS#11 library needs to be reinitialized after
forking. This was causing a problem with ipropd.
This fix appears to incur a repeatable 10ms performance penalty on aes-test.
Caching the initialization status using a once control and invalidating it
on fork provided no measurable performance benefit on Solaris 11. Other
approaches would not be thread-safe or would involve more intrusive code
changes, such as exposing heimbase's atomics.
(cherry picked from commit 934d5e09bf3ba0774d303da53446e5ff94daae01)
Change-Id: I47566373f43eab3cb30a24ffbe37bbcd309a5f3e
Commit: bbafe725f10b6bfd60e4d411ba08719b632e3043
https://github.com/heimdal/heimdal/commit/bbafe725f10b6bfd60e4d411ba08719b632e3043
Author: Jeffrey Altman <jaltman at secure-endpoints.com>
Date: 2019-05-15 (Wed, 15 May 2019)
Changed paths:
M NEWS
Log Message:
-----------
NEWS: further updates to 7.6.0
Change-Id: I57dd3c4d403a62dc1dd6252afee474f700ebc09b
Compare: https://github.com/heimdal/heimdal/compare/d0a558f918c9...bbafe725f10b
More information about the Heimdal-source-changes
mailing list