[Heimdal-source-changes] [heimdal/heimdal] c43cf1: use memset_s
Nico Williams
noreply at github.com
Ons May 22 19:24:33 CEST 2019
Branch: refs/heads/jaltman/heimdal-7.x-pullups
Home: https://github.com/heimdal/heimdal
Commit: c43cf121b7b76bd86f9670748f92a98a74e590bd
https://github.com/heimdal/heimdal/commit/c43cf121b7b76bd86f9670748f92a98a74e590bd
Author: Jeffrey Altman <jaltman at secure-endpoints.com>
Date: 2019-05-22 (Wed, 22 May 2019)
Changed paths:
M appl/su/su.c
M kadmin/cpw.c
M kadmin/random_password.c
M kuser/kinit.c
M lib/gssapi/krb5/arcfour.c
M lib/gssapi/krb5/get_mic.c
M lib/gssapi/krb5/verify_mic.c
M lib/gssapi/ntlm/init_sec_context.c
M lib/hcrypto/md2.c
M lib/hcrypto/rand-fortuna.c
M lib/hdb/mkey.c
M lib/hx509/ks_file.c
M lib/krb5/crypto-arcfour.c
M lib/krb5/crypto-des-common.c
M lib/krb5/crypto-pk.c
M lib/krb5/deprecated.c
M lib/krb5/init_creds_pw.c
M lib/krb5/kcm.c
M lib/krb5/salt-des.c
M lib/krb5/salt-des3.c
M lib/ntlm/ntlm.c
Log Message:
-----------
use memset_s
lib roken includes support for memset_s() but it was not applied
to the Heimdal source tree.
Change-Id: I8362ec97a9be50205bb2d398e65b629b88ce1acd
(cherry picked from commit 93518bfab4e495bf4130be354464965e48a786c0)
Commit: 071864decf30bd0b696c86972c7996f6c583df56
https://github.com/heimdal/heimdal/commit/071864decf30bd0b696c86972c7996f6c583df56
Author: Jeffrey Altman <jaltman at secure-endpoints.com>
Date: 2019-05-22 (Wed, 22 May 2019)
Changed paths:
M kadmin/random_password.c
M lib/krb5/salt-des3.c
Log Message:
-----------
fix calls to memset_s
In random_password() and DES3_string_to_key(), do not call
memset_s() with the sizeof a pointer.
Change-Id: I7dd49b9f717e1cb5c262f2d375d2b85be82cd2db
(cherry picked from commit 029d32580a3b04550ff736d8878d331dcfca864f)
Commit: 85c914f5517967e7a9ea09f4883e8cc11e8c35c0
https://github.com/heimdal/heimdal/commit/85c914f5517967e7a9ea09f4883e8cc11e8c35c0
Author: Nicolas Williams <nico at twosigma.com>
Date: 2019-05-22 (Wed, 22 May 2019)
Changed paths:
M lib/hdb/hdb-sqlite.c
Log Message:
-----------
Set def page size for HDB SQLite3 backend to 8KB
(cherry picked from commit e3cc7dfb94826aa709a617fb8e59ab07db584f92)
Commit: 288d4f31284231f1c60152c36b7586b536ffd2f3
https://github.com/heimdal/heimdal/commit/288d4f31284231f1c60152c36b7586b536ffd2f3
Author: Nicolas Williams <nico at twosigma.com>
Date: 2019-05-22 (Wed, 22 May 2019)
Changed paths:
M lib/hdb/db.c
M lib/hdb/db3.c
M lib/hdb/hdb-ldap.c
M lib/hdb/hdb-mdb.c
M lib/hdb/hdb-mitdb.c
M lib/hdb/hdb-sqlite.c
M lib/hdb/hdb.h
Log Message:
-----------
Add hdb_set_sync() method
(cherry picked from commit 5bcbe2125b18160f6ad348b15f8036ffedc15770)
Commit: ede3e55b0d24fe6ace329685738ec111de202226
https://github.com/heimdal/heimdal/commit/ede3e55b0d24fe6ace329685738ec111de202226
Author: Nicolas Williams <nico at twosigma.com>
Date: 2019-05-22 (Wed, 22 May 2019)
Changed paths:
M lib/kadm5/ipropd_slave.c
Log Message:
-----------
Disable sync during iprop receive_everything()
Doing an fsync per-record when receiving the complete HDB is a performance
disaster. Among other things, if the HDB is very large, then one slave
receving a full HDB can cause other slaves to timeout and, if HDB write
activity is high enough to cause iprop log truncation, then also need full
syncs, which leads to a cycle of full syncs for all slaves until HDB write
activity drops.
Allowing the iprop log to be larger helps, but improving receive_everything()
performance helps even more.
(cherry picked from commit 305dc816525f461f9bfe640d87f671f53f0e0fc6)
Commit: 3c32a615b339032fd3e75cc570a5b95ad3e2eea6
https://github.com/heimdal/heimdal/commit/3c32a615b339032fd3e75cc570a5b95ad3e2eea6
Author: Nicolas Williams <nico at twosigma.com>
Date: 2019-05-22 (Wed, 22 May 2019)
Changed paths:
M kadmin/load.c
Log Message:
-----------
Disable sync during kadmin load
(cherry picked from commit 7d5f8bb051ca84592d1196bf5d5522da5a50f9d6)
Change-Id: I1fb60d697a4f80be1336dd0980f0758eb6436bbb
Compare: https://github.com/heimdal/heimdal/compare/0286ef3626b7...3c32a615b339
More information about the Heimdal-source-changes
mailing list