christos
990290ead6
kill extra )
2014-05-12 18:46:27 +00:00
christos
e1a6c348ed
CID 1011266: Unchecked returns
2014-05-12 15:34:23 +00:00
christos
1e811e3015
CID 745411: Fix memory leak
2014-05-12 15:27:36 +00:00
christos
53c5be254e
CID 745439: Fix memory leak
2014-05-12 15:25:49 +00:00
christos
c3e31f67e9
CID 745319: Checking the wrong variable for NULL.
2014-05-12 15:21:46 +00:00
christos
23e7e0b50d
CID 745290: check return of fcntl
2014-05-12 15:20:41 +00:00
pettai
dbaf52c0db
update VERSION
2014-04-29 23:18:53 +00:00
pettai
c07133c8ad
Fix a merge miss
2014-04-25 00:26:16 +00:00
pettai
efd5c8c1c2
remove duplicate resolve_free_handle(handle);
2014-04-24 14:49:43 +00:00
pettai
5a3d3c7618
Update build framework for latest heimdal-1-5-branch
...
Ok'ed and reviewed by elric@
2014-04-24 13:50:53 +00:00
pettai
9641b56ec0
Import latest heimdal-1-5-branch, merge conflicts
...
Ok'ed and reviewed by elric@
2014-04-24 13:45:33 +00:00
pettai
4f77a4588e
Import latest heimdal-1-5-branch from git
...
Ok'ed + reviewed by elric@
2014-04-24 12:45:26 +00:00
pettai
debf61b4d2
heimdal's git (master/origin) has moved to github
2014-04-22 14:07:31 +00:00
joerg
8b6ddbe40e
Append to CPPFLAGS.${src}, don't overwrite it.
2014-04-15 10:02:21 +00:00
christos
645afb65f7
Fix use after free:
...
https://rt.openssl.org/Ticket/Display.html?id=2167&user=guest&pass=guest
https://rt.openssl.org/Ticket/Display.html?id=3265&user=guest&pass=guest
2014-04-13 13:14:15 +00:00
christos
061dc74bd9
merge/regen
2014-04-08 02:18:13 +00:00
christos
057199e66c
import latest openssl to fix the heartbleed vulnerability
2014-04-08 01:59:07 +00:00
apb
180c1ed3d9
Run the mkpc script using ${HOST_SH}
2014-04-07 17:40:49 +00:00
christos
e2877366be
PR/48718: Juergen Hannken-Illjes: Heimdal leaks file descriptors
...
Add missing call to free the resolve handle on success.
XXX: pullup 6
2014-04-06 14:36:35 +00:00
pettai
1ddcbc4271
fix small nit + missing step
2014-04-06 11:24:25 +00:00
tron
0bf30a01f8
Add fix for CVE-2014-0076 taken from OpenSSL GIT repository:
...
Fix for the attack described in the paper "Recovering OpenSSL
ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack"
by Yuval Yarom and Naomi Benger. Details can be obtained from:
http://eprint.iacr.org/2014/140
2014-04-02 20:27:28 +00:00
christos
dcd0e19d19
add glue and man
2014-04-01 21:38:44 +00:00
christos
eac602f603
add kvno
2014-04-01 21:38:26 +00:00
apb
4840a75dea
sizeof(array - 1) decays to sizeof(pointer), but (sizeof(array) - 1)
...
was actually wanted.
The effect of this bug is that only a few bytes of the hostname are mixed
into the random seed, instead of using the entire hostname.
2014-03-27 16:26:22 +00:00
apb
ae56564c55
Fix sizeof errors in memset calls in heimdal.
2014-03-27 16:10:45 +00:00
christos
6c197e6572
bump for previous
2014-03-21 16:59:14 +00:00
wiz
035466f565
Add d1_meth.c to build to fix problems with missing symbol DTLSv1_method.
...
Addresses asterisk build problems, idea for fix from martin.
2014-03-21 13:07:57 +00:00
riastradh
6cb10275d0
Merge riastradh-drm2 to HEAD.
2014-03-18 18:20:35 +00:00
joerg
84c4c059a1
It's nonliteral format strings it should not warn about.
2014-03-13 12:54:49 +00:00
martin
3f5160ac62
Older gcc does not support -Wno-format-literal
2014-03-13 08:13:21 +00:00
agc
99d1495f9e
Turn off literal format string warnings for one file
...
A better fix is coming
2014-03-12 06:38:56 +00:00
agc
58fcf20a86
Add portability definitions in case they're not already defined
...
XXX - these need to be consolidated in one single header
2014-03-11 17:48:31 +00:00
agc
5cda552c66
cast arguments to the correct type for format strings
2014-03-11 17:38:48 +00:00
joerg
e0282860c8
Annotate format strings. Remove string constant in front of real format
...
string.
2014-03-11 17:21:05 +00:00
joerg
75578d8a5c
Mark assertion handler as dead.
2014-03-11 17:20:23 +00:00
agc
a01b2fe1d8
fix typo in previous commit
2014-03-10 17:00:53 +00:00
christos
736fcb9065
fix unused
2014-03-09 07:01:42 +00:00
christos
31641c3398
WARNS=6 is impossible for this code :-)
2014-03-09 07:00:52 +00:00
christos
76cc06c46c
proper include
2014-03-09 06:57:58 +00:00
agc
c741b30f89
get rid of the old reachover directory
2014-03-09 00:41:41 +00:00
agc
ac7f7113d1
Put hkpd in the right place in the reachover infrastructure
2014-03-09 00:40:30 +00:00
agc
9624f25caf
Move hkpc and hkpd into the correct place in the reachover insfrastructure
2014-03-09 00:39:31 +00:00
agc
da39824b72
Move netpgpkeys into the correct place in the reachover insfrastructure
2014-03-09 00:33:50 +00:00
agc
394c4afedd
Install the binary in the correct location
2014-03-09 00:27:54 +00:00
agc
9e49a71f17
Move the netpgp directory (for the executable) under the bin reachover
...
directory
2014-03-09 00:24:47 +00:00
agc
6ea7b9ad15
Clean up the reachover infrastructure - the programs now live under the
...
bin subdirectory
2014-03-09 00:18:29 +00:00
agc
e6b8b580e4
Add the config.h file as part of the reachover infrastructure
2014-03-09 00:17:28 +00:00
agc
25f78d9123
Bring over the standalone netpgpverify sources from
...
pkgsrc/security/netpgpverify.
No functional change.
2014-03-09 00:15:45 +00:00
joerg
a369f38ac1
Disable abs() checking, a lot of computations get implicit truncations
...
or use unsigned values.
2014-03-04 21:08:08 +00:00
agc
ed05b112a5
check the correct field in the structure in dsa_verify - pointed out by
...
joerg - thanks!
2014-03-04 17:29:06 +00:00