Commit Graph

932 Commits

Author SHA1 Message Date
christos 990290ead6 kill extra ) 2014-05-12 18:46:27 +00:00
christos e1a6c348ed CID 1011266: Unchecked returns 2014-05-12 15:34:23 +00:00
christos 1e811e3015 CID 745411: Fix memory leak 2014-05-12 15:27:36 +00:00
christos 53c5be254e CID 745439: Fix memory leak 2014-05-12 15:25:49 +00:00
christos c3e31f67e9 CID 745319: Checking the wrong variable for NULL. 2014-05-12 15:21:46 +00:00
christos 23e7e0b50d CID 745290: check return of fcntl 2014-05-12 15:20:41 +00:00
pettai dbaf52c0db update VERSION 2014-04-29 23:18:53 +00:00
pettai c07133c8ad Fix a merge miss 2014-04-25 00:26:16 +00:00
pettai efd5c8c1c2 remove duplicate resolve_free_handle(handle); 2014-04-24 14:49:43 +00:00
pettai 5a3d3c7618 Update build framework for latest heimdal-1-5-branch
Ok'ed and reviewed by elric@
2014-04-24 13:50:53 +00:00
pettai 9641b56ec0 Import latest heimdal-1-5-branch, merge conflicts
Ok'ed and reviewed by elric@
2014-04-24 13:45:33 +00:00
pettai 4f77a4588e Import latest heimdal-1-5-branch from git
Ok'ed + reviewed by elric@
2014-04-24 12:45:26 +00:00
pettai debf61b4d2 heimdal's git (master/origin) has moved to github 2014-04-22 14:07:31 +00:00
joerg 8b6ddbe40e Append to CPPFLAGS.${src}, don't overwrite it. 2014-04-15 10:02:21 +00:00
christos 645afb65f7 Fix use after free:
https://rt.openssl.org/Ticket/Display.html?id=2167&user=guest&pass=guest
https://rt.openssl.org/Ticket/Display.html?id=3265&user=guest&pass=guest
2014-04-13 13:14:15 +00:00
christos 061dc74bd9 merge/regen 2014-04-08 02:18:13 +00:00
christos 057199e66c import latest openssl to fix the heartbleed vulnerability 2014-04-08 01:59:07 +00:00
apb 180c1ed3d9 Run the mkpc script using ${HOST_SH} 2014-04-07 17:40:49 +00:00
christos e2877366be PR/48718: Juergen Hannken-Illjes: Heimdal leaks file descriptors
Add missing call to free the resolve handle on success.
XXX: pullup 6
2014-04-06 14:36:35 +00:00
pettai 1ddcbc4271 fix small nit + missing step 2014-04-06 11:24:25 +00:00
tron 0bf30a01f8 Add fix for CVE-2014-0076 taken from OpenSSL GIT repository:
Fix for the attack described in the paper "Recovering OpenSSL
ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack"
by Yuval Yarom and Naomi Benger. Details can be obtained from:
http://eprint.iacr.org/2014/140
2014-04-02 20:27:28 +00:00
christos dcd0e19d19 add glue and man 2014-04-01 21:38:44 +00:00
christos eac602f603 add kvno 2014-04-01 21:38:26 +00:00
apb 4840a75dea sizeof(array - 1) decays to sizeof(pointer), but (sizeof(array) - 1)
was actually wanted.

The effect of this bug is that only a few bytes of the hostname are mixed
into the random seed, instead of using the entire hostname.
2014-03-27 16:26:22 +00:00
apb ae56564c55 Fix sizeof errors in memset calls in heimdal. 2014-03-27 16:10:45 +00:00
christos 6c197e6572 bump for previous 2014-03-21 16:59:14 +00:00
wiz 035466f565 Add d1_meth.c to build to fix problems with missing symbol DTLSv1_method.
Addresses asterisk build problems, idea for fix from martin.
2014-03-21 13:07:57 +00:00
riastradh 6cb10275d0 Merge riastradh-drm2 to HEAD. 2014-03-18 18:20:35 +00:00
joerg 84c4c059a1 It's nonliteral format strings it should not warn about. 2014-03-13 12:54:49 +00:00
martin 3f5160ac62 Older gcc does not support -Wno-format-literal 2014-03-13 08:13:21 +00:00
agc 99d1495f9e Turn off literal format string warnings for one file
A better fix is coming
2014-03-12 06:38:56 +00:00
agc 58fcf20a86 Add portability definitions in case they're not already defined
XXX - these need to be consolidated in one single header
2014-03-11 17:48:31 +00:00
agc 5cda552c66 cast arguments to the correct type for format strings 2014-03-11 17:38:48 +00:00
joerg e0282860c8 Annotate format strings. Remove string constant in front of real format
string.
2014-03-11 17:21:05 +00:00
joerg 75578d8a5c Mark assertion handler as dead. 2014-03-11 17:20:23 +00:00
agc a01b2fe1d8 fix typo in previous commit 2014-03-10 17:00:53 +00:00
christos 736fcb9065 fix unused 2014-03-09 07:01:42 +00:00
christos 31641c3398 WARNS=6 is impossible for this code :-) 2014-03-09 07:00:52 +00:00
christos 76cc06c46c proper include 2014-03-09 06:57:58 +00:00
agc c741b30f89 get rid of the old reachover directory 2014-03-09 00:41:41 +00:00
agc ac7f7113d1 Put hkpd in the right place in the reachover infrastructure 2014-03-09 00:40:30 +00:00
agc 9624f25caf Move hkpc and hkpd into the correct place in the reachover insfrastructure 2014-03-09 00:39:31 +00:00
agc da39824b72 Move netpgpkeys into the correct place in the reachover insfrastructure 2014-03-09 00:33:50 +00:00
agc 394c4afedd Install the binary in the correct location 2014-03-09 00:27:54 +00:00
agc 9e49a71f17 Move the netpgp directory (for the executable) under the bin reachover
directory
2014-03-09 00:24:47 +00:00
agc 6ea7b9ad15 Clean up the reachover infrastructure - the programs now live under the
bin subdirectory
2014-03-09 00:18:29 +00:00
agc e6b8b580e4 Add the config.h file as part of the reachover infrastructure 2014-03-09 00:17:28 +00:00
agc 25f78d9123 Bring over the standalone netpgpverify sources from
pkgsrc/security/netpgpverify.

No functional change.
2014-03-09 00:15:45 +00:00
joerg a369f38ac1 Disable abs() checking, a lot of computations get implicit truncations
or use unsigned values.
2014-03-04 21:08:08 +00:00
agc ed05b112a5 check the correct field in the structure in dsa_verify - pointed out by
joerg - thanks!
2014-03-04 17:29:06 +00:00