rpms/krb5
7
0
Fork 0
Code Issues Pull Requests Releases Activity
1,155 Commits 9 Branches 46 Tags 7.8 MiB
2484569caa
Commit Graph

934 Commits

Author SHA1 Message Date
Robbie Harwood
2484569caa Fix defcred leak in krb5 gss_inquire_cred() 2021-07-21 12:44:26 -04:00
Robbie Harwood
6a2eeb9666 Fix KDC null deref on bad encrypted challenge (CVE-2021-36222) 2021-07-12 13:11:12 -04:00
Robbie Harwood
af96dc0c6c Fix use-after-free during krad remote_shutdown() 2021-07-01 13:17:47 -04:00
Robbie Harwood
c5044b0741 MEMORY locking fix and static analysis pullup 2021-06-28 17:50:46 -04:00
Robbie Harwood
91bbbda93f Add the backward-compatible parts of openssl3 support 2021-06-21 13:16:44 -04:00
Robbie Harwood
4df0096f20 Fix three canonicalization cases for fallback 2021-06-09 10:55:13 -04:00
Robbie Harwood
65a1e5607c Fix doc build for Sphinx 4.0 2021-06-02 12:09:09 -04:00
Robbie Harwood
72e80d67ef Add all the sssd-kcm workarounds 2021-05-20 17:26:12 -04:00
Robbie Harwood
c4150c67d1 Fix context for previous backport 2021-05-20 13:59:39 -04:00
Robbie Harwood
904d264a41 Add KCM_OP_GET_CRED_LIST and KCM_OP_RETRIEVE support 2021-05-20 13:48:19 -04:00
Robbie Harwood
e9fb111a11 Suppress static analyzer warning in FIPS override 2021-05-04 15:02:53 -04:00
Robbie Harwood
c183c8de7d Fix the mess the mass rebuild made of Release 2021-03-30 14:36:09 -04:00
Zbigniew Jędrzejewski-Szmek
cf3e70c97c Rebuilt for updated systemd-rpm-macros 
See https://pagure.io/fesco/issue/2583.
 2021-03-02 16:13:34 +01:00
Robbie Harwood
1c03da79de Further test dependency fixes; no code changes 2021-03-01 16:49:32 -05:00
Robbie Harwood
d20ec5d3bc Make test dependencies contingent on skipcheck; no code changes 2021-03-01 21:27:49 +00:00
Robbie Harwood
3faaf11da7 New upstream version (1.19.1) 2021-02-18 16:51:47 -05:00
Robbie Harwood
00a0ac8abc Restore krb5_set_default_tgs_ktypes() 2021-02-17 16:12:41 -05:00
Robbie Harwood
d3ac4cf9b0 Hoist the KDC_RUN_DIR check 2021-02-15 15:54:54 -05:00
Robbie Harwood
35a4aa7b99 No code change; just coping with reverted autoconf 2021-02-05 20:39:13 +00:00
Robbie Harwood
90bc2e25b3 Cope with autoconf rollback 2021-02-05 15:33:20 -05:00
Robbie Harwood
d5839d0511 New upstream version (1.19) 2021-02-02 15:32:32 +00:00
Robbie Harwood
105082cb42 Hoist and add an option for disabling %check 2021-02-01 16:21:47 -05:00
Robbie Harwood
0dd40e4ff0 Support host-based GSS initiator names 2021-01-28 13:18:14 -05:00
Robbie Harwood
042ca4af99 Require krb5-pkinit from krb5-{server,workstation} 2021-01-28 16:37:37 +00:00
Robbie Harwood
54bf131a4a Fix up weird mass rebuild versioning 2021-01-28 16:16:22 +00:00
Robbie Harwood
ef09340be0 Add APIs for marshalling credentials 2021-01-28 10:56:02 -05:00
Robbie Harwood
327ebd0b26 Cope with new autotools behavior wrt runstatedir 2021-01-27 14:45:26 -05:00
Fedora Release Engineering
b23f8f6215 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-01-26 16:06:22 +00:00
Robbie Harwood
9fb5239517 New upstream version (1.19-beta2) 2021-01-12 12:45:35 -05:00
Robbie Harwood
0da55d6175 New upstream version (1.19-beta1) 2020-12-16 16:30:40 -05:00
Robbie Harwood
58924baeb4 Fix runstatedir configuration 
Why couldn't systemd just leave it alone?

Partially reverts ec1ab43ca2 .
 2020-12-16 11:20:57 -05:00
Robbie Harwood
ed80b08062 Add make to BuildRequires 
Drop cmake since we don't use it for anything
 2020-12-01 14:37:26 -05:00
Robbie Harwood
b783a5421c Document -k option in kvno(1) synopsis 2020-11-24 12:55:33 -05:00
Robbie Harwood
ab7a2a35c2 Upstream executable shared libraries patch 2020-11-20 11:43:18 -05:00
Robbie Harwood
dc8775d11d Fix build failure in -1 2020-11-18 13:33:37 -05:00
Robbie Harwood
5facc9df4d New upstream version (1.18.3) 2020-11-18 18:16:20 +00:00
Robbie Harwood
015255764a Sigh, date fix 2020-11-17 12:50:36 -05:00
Robbie Harwood
ec1ab43ca2 Migrate /var/run to /run, an exercise in pointlessness 
Resolves: #1898410
 2020-11-17 12:27:42 -05:00
Robbie Harwood
d2da394f67 Add recursion limit for ASN.1 indefinite lengths (CVE-2020-28196) 2020-11-05 12:09:39 -05:00
Robbie Harwood
bfdc7c0b7b Fix minor static analysis defects 2020-10-23 10:25:37 -04:00
Robbie Harwood
fced14e78a Fix build of previous 2020-10-21 11:49:22 -04:00
Robbie Harwood
7c8b50fca5 Cross-realm s4u fixes for samba (#1836630) 2020-10-21 11:24:24 -04:00
Tomas Mraz
da77b5dcf8 Drop unnecessary conflict with openssl-libs >= 3.0.0 
The requirement unnecessarily prevents temporary coexistence of
krb5-libs with new openssl library where the old openssl library
is coming from openssl1.1 compat package.
 2020-10-19 11:25:53 +02:00
Robbie Harwood
96c0dcc1c7 Unify kvno option documentation 2020-10-15 16:18:06 -04:00
Robbie Harwood
501e298072 Add md5 override to krad 2020-10-02 16:36:12 -04:00
Robbie Harwood
c06ba2920a Use systemctl reload to HUP the KDC during logrotate 
Resolves: #1877692
 2020-09-10 14:22:32 +00:00
Robbie Harwood
d7334ebf68 Fix input length checking in SPNEGO DER decoding 2020-09-09 17:47:18 -04:00
Robbie Harwood
1003328588 Mark crypto-polices snippet as missingok 
Resolves: #1868379
 2020-08-28 12:23:29 -04:00
Robbie Harwood
cd0b1d6ba6 Temporarily dns_canonicalize_hostname=fallback changes 
Hopefully unbreak IPA while we debug further
 2020-08-13 09:50:45 -04:00
Robbie Harwood
c59e4a1c67 Expand dns_canonicalize_hostname=fallback support 2020-08-07 19:03:02 -04:00