rpms
/
krb5
7
0
Fork 0
Code Issues Pull Requests Releases Activity

Commit Graph

  • 635a422817 - correct a bug in the fix for #754001 so that the file creation context is consistently reset Nalin Dahyabhai 2011-11-30 15:03:45 -0500
  • a45a82724d - require libverto-module-base at build- and runtime so that tests which use verto can work properly Nalin Dahyabhai 2011-11-15 13:32:43 -0500
  • 1110ccd873 - bump to 1.10 alpha 1 Nalin Dahyabhai 2011-11-15 12:45:44 -0500
  • a8e279c6ee - get the 'make check' target to build in the gss-kernel-lib subdir Nalin Dahyabhai 2011-11-14 16:41:13 -0500
  • efdfc3a244 update for 1.10 Nalin Dahyabhai 2011-11-09 18:44:22 -0500
  • 6d42ba9cb1 update for 1.10 Nalin Dahyabhai 2011-11-09 18:44:01 -0500
  • be0f417bc2 we shouldn't need this any more, per RT#6893 Nalin Dahyabhai 2011-11-09 18:25:44 -0500
  • 18b089b01f update for 1.10 Nalin Dahyabhai 2011-11-09 18:20:14 -0500
  • 74f66f3e49 dependency libs aren't output any more Nalin Dahyabhai 2011-11-09 17:15:32 -0500
  • 530ff94e09 update, adding the default location for KRB5_KDC_PROFILE Nalin Dahyabhai 2011-11-09 16:47:29 -0500
  • dc853050a1 update for 1.10 Nalin Dahyabhai 2011-11-09 16:21:31 -0500
  • 0fde11f889 update for 1.10; we don't need to prune out CFLAGS any more Nalin Dahyabhai 2011-11-09 15:26:34 -0500
  • 2e2a9f645f update, move /bin before /usr/sbin to keep up with login Nalin Dahyabhai 2011-11-09 15:17:06 -0500
  • 8ef1736cb6 update for 1.10 Nalin Dahyabhai 2011-11-09 15:09:41 -0500
  • 19826e3133 update for 1.10 Nalin Dahyabhai 2011-11-09 15:07:52 -0500
  • 440e28a51c update Nalin Dahyabhai 2011-11-09 14:53:27 -0500
  • 17a1f736bd we'll need this until the next upstream refresh Nalin Dahyabhai 2011-11-09 14:39:29 -0500
  • 17be63590c 1.10 incorporates this fix Nalin Dahyabhai 2011-11-09 14:35:36 -0500
  • 2a0db84775 don't need this backport any more Nalin Dahyabhai 2011-11-09 14:35:19 -0500
  • 0709f21db5 don't need this backport any more Nalin Dahyabhai 2011-11-09 14:29:15 -0500
  • d0a0c0540c don't need this backport any more Nalin Dahyabhai 2011-11-09 14:28:50 -0500
  • b0718da54f don't need the backported patches (poll.patch, poll2.patch) and upstream rewrote things so that poll3 doesn't apply Nalin Dahyabhai 2011-11-09 14:28:04 -0500
  • 9f7716f718 don't need these backports any more Nalin Dahyabhai 2011-11-09 14:27:35 -0500
  • 260fd6d3e4 don't need this backport any more Nalin Dahyabhai 2011-11-09 14:26:52 -0500
  • 00adb00d24 don't need this backport any more Nalin Dahyabhai 2011-11-09 14:23:33 -0500
  • eed21c996f RT#6915 fix applied upstream Nalin Dahyabhai 2011-11-09 14:23:06 -0500
  • 9848f42acf - don't need this backport any more Nalin Dahyabhai 2011-11-09 14:22:20 -0500
  • d250463584 RT#6851 fix applied upstream Nalin Dahyabhai 2011-11-09 14:21:36 -0500
  • 39cc62dcc1 - Rebuilt for glibc bug#747377 Dennis Gilmore 2011-10-26 19:09:40 -0500
  • af8b546790 - apply upstream patch to fix a null pointer dereference with the LDAP kdb backend (CVE-2011-1527, #744125), an assertion failure with multiple kdb backends (CVE-2011-1528), and a null pointer dereference with multiple kdb backends (CVE-2011-1529) (#737711) Nalin Dahyabhai 2011-10-18 14:28:08 -0400
  • 73b7dd3ece - pull in patch from trunk to rename krb5int_pac_sign() to krb5_pac_sign() and make it public (#745533) Nalin Dahyabhai 2011-10-13 15:31:36 -0400
  • 28837545d5 - handle a harder-to-trigger assertion failure that starts cropping up when we exit the transmit loop on time (#739853) Nalin Dahyabhai 2011-10-07 16:29:28 -0400
  • 098a308f7e - kadmin.service: fix #723723 again - kadmin.service,krb5kdc.service: remove optional use of $KRB5REALM in command lines, because systemd parsing doesn't handle alternate value shell variable syntax - kprop.service: add missing Type=forking so that systemd doesn't assume simple - kprop.service: expect the ACL configuration to be there, not absent Nalin Dahyabhai 2011-10-07 15:10:35 -0400
  • e645180a9a hardcode pid file path as option to krb5kdc.service Tom "spot" Callaway 2011-10-02 15:05:51 +0200
  • 3545dd2571 fix typo Tom "spot" Callaway 2011-09-30 12:20:58 +0200
  • 82129e3a0d convert to systemd Tom "spot" Callaway 2011-09-19 14:45:57 -0400
  • 207fa55d00 - pull in upstream patch for RT#6952, confusion following referrals for cross-realm auth (#734341) Nalin Dahyabhai 2011-09-06 00:19:38 -0400
  • a26dd7c42c - switch to the upstream patch for #727829 Nalin Dahyabhai 2011-09-01 09:29:29 -0400
  • 57d5eabb48 - bump the release number Nalin Dahyabhai 2011-08-31 13:33:23 -0400
  • db0e796a50 - handle an assertion failure that starts cropping up when the patch for using poll (#701446) meets servers that aren't running KDCs or against which the connection fails for other reasons (#727829, #734172) Nalin Dahyabhai 2011-08-31 13:31:58 -0400
  • 0ad36e9c38 - override the default build rules to not delete temporary y.tab.c files, so that they can be packaged, allowing debuginfo files which point to them do so usefully (#729044) Nalin Dahyabhai 2011-08-08 18:39:55 -0400
  • ad0dcf5042 - pull in a patch to fix losing track of the replay cache FD, from SVN by way of Kevin Coffman Nalin Dahyabhai 2011-07-22 16:57:35 -0400
  • 2202e378de - build shared libraries with partial RELRO support (#723995) - filter out potentially multiple instances of -Wl,-z,relro from krb5-config output, now that it's in the buildroot's default LDFLAGS Nalin Dahyabhai 2011-07-22 16:29:06 -0400
  • 94ead682ba - prune 1.9 sources Nalin Dahyabhai 2011-07-22 15:38:33 -0400
  • a0e423054a - kadmind.init: drop the attempt to detect no-database-present errors (#723723) Nalin Dahyabhai 2011-07-20 17:58:20 -0400
  • 4e66f1237b - backport RT#6905: use poll() so that we can use higher descriptor numbers when the client is talking to a KDC Nalin Dahyabhai 2011-07-19 14:44:10 -0400
  • ba9d039a3a - have a bug number for this now Nalin Dahyabhai 2011-06-28 14:08:13 -0400
  • da69bf39fa - pull a fix from SVN to use AI_ADDRCONFIG more often (RT#6923) Nalin Dahyabhai 2011-06-23 16:07:40 -0400
  • 4a5ca5b2d3 - pull a fix from SVN to try to avoid triggering a PTR lookup in getaddrinfo() during krb5_sname_to_principal(), and to let getaddrinfo() decide whether or not to ask for an IPv6 address based on the set of configured interfaces (RT#6922) Nalin Dahyabhai 2011-06-23 16:05:54 -0400
  • 23ef754340 - fix that bug ID Nalin Dahyabhai 2011-06-21 18:38:01 -0400
  • 092982212a - apply upstream patch by way of Burt Holzman to fall back to a non-referral method in cases where we might be derailed by a KDC that rejects the canonicalize option (for example, those from the RHEL 2.1 or 3 era) (#713518) Nalin Dahyabhai 2011-06-20 13:34:21 -0400
  • e1fdb93038 - don't burn a release number Nalin Dahyabhai 2011-06-14 14:44:36 -0400
  • 17c9104b1d - pull a fix from SVN to get libgssrpc clients (e.g. kadmin) authenticating using the old protocol over IPv4 again (RT#6920) Nalin Dahyabhai 2011-06-14 14:25:28 -0400
  • 6a7a118058 - incorporate a fix to teach the file labeling bits about when replay caches are expunged (#576093) Nalin Dahyabhai 2011-06-14 14:15:55 -0400
  • 20266fd9d7 switch to the upstream patch for #707145 Nalin Dahyabhai 2011-05-26 10:55:11 -0400
  • e14f89fa17 klist: don't trip over referral entries when invoked with -s (#707145, RT#6915) Nalin Dahyabhai 2011-05-25 16:55:39 -0400
  • 7368cf9d38 - fixup URL in a comment - when built with NSS, require 3.12.10 rather than 3.12.9 Nalin Dahyabhai 2011-05-06 10:09:53 -0400
  • ac127d5263 - update to 1.9.1: - drop no-longer-needed patches for CVE-2010-4022, CVE-2011-0281, CVE-2011-0282, CVE-2011-0283, CVE-2011-0284, CVE-2011-0285 Nalin Dahyabhai 2011-05-05 19:03:10 -0400
  • d2ffb0c7c5 add the bug ID for that last fix Nalin Dahyabhai 2011-04-13 17:21:33 -0400
  • 301c9d3ae2 - kadmind: add upstream patch to fix free() on an invalid pointer (MITKRB5-SA-2011-004, CVE-2011-0285) Nalin Dahyabhai 2011-04-13 15:38:22 -0400
  • 5ad8efcad5 - don't discard the error code from an error message received in response to a change-password request (#658871, RT#6893) Nalin Dahyabhai 2011-04-04 19:04:05 -0400
  • 2ee39c5e61 - override INSTALL_SETUID at build-time so that ksu is installed into the buildroot with the right permissions (part of #225974) Nalin Dahyabhai 2011-04-01 15:52:29 -0400
  • 27e969332f - backport change from SVN to fix a computed-value-not-used warning in kpropd (#684065) Nalin Dahyabhai 2011-03-18 13:23:22 -0400
  • 41bc7a0e62 - turn off NSS as the backend for libk5crypto for now to work around its DES string2key not working (#679012) - add revised upstream patch to fix double-free in KDC while returning typed-data with errors (CVE-2011-0284, #674325) Nalin Dahyabhai 2011-03-15 14:25:01 -0400
  • cbdf0e37a6 - throw in a not-applied-by-default patch to try to make pkinit debugging into a run-time boolean option named "pkinit_debug" Nalin Dahyabhai 2011-02-17 11:31:49 -0500
  • b77e5a0e35 turn on NSS as the backend for libk5crypto, adding nss-devel as a build dependency when that switch is flipped Nalin Dahyabhai 2011-02-16 19:05:39 -0500
  • 08f510b379 - krb5kdc init script: prototype some changes to do a quick spot-check of the TGS and kadmind keys and warn if there aren't any non-weak keys on file for them (to flush out parts of #651466) Nalin Dahyabhai 2011-02-09 15:25:17 -0500
  • 62cb58fe6f reference the raw hide bug ID for CVE-2011-0283 in the changelog Nalin Dahyabhai 2011-02-08 16:38:16 -0500
  • be633bbbb2 - add upstream patches to fix standalone kpropd exiting if the per-client child process exits with an error (MITKRB5-SA-2011-001), a hang or crash in the KDC when using the LDAP kdb backend, and an uninitialized pointer use in the KDC (MITKRB5-SA-2011-002) (CVE-2010-4022, #664009, CVE-2011-0281, #668719, CVE-2011-0282, #668726, CVE-2011-0283, #670567) Nalin Dahyabhai 2011-02-08 14:37:19 -0500
  • 4fe1ed04f8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild Dennis Gilmore 2011-02-07 21:09:16 -0600
  • 9fed313d79 fix a compile error in the SELinux labeling patch when -DDEBUG is used (Sumit Bose) Nalin Dahyabhai 2011-02-07 11:24:03 -0500
  • 293e1a6e51 - properly advertise that the kpropd init script now supports force-reload (Zbysek Mraz #630587) Nalin Dahyabhai 2011-02-01 10:38:05 -0500
  • 3442cb8a33 - pkinit: when verifying signed data, use the CMS APIs for better interoperability (#636985, RT#6851) Nalin Dahyabhai 2011-01-26 13:59:56 -0500
  • 8c3bae0303 update to 1.9 final Nalin Dahyabhai 2010-12-22 17:22:08 -0500
  • 09a9ac8a63 - fix link flags and permissions on shared libraries (ausil) Nalin Dahyabhai 2010-12-20 15:20:01 -0500
  • 0207b5b4fc - fix link flags and permissions on shared libraries (ausil) Nalin Dahyabhai 2010-12-20 15:19:23 -0500
  • ce5e3836b2 - update to 1.9 beta 3 Nalin Dahyabhai 2010-12-16 14:43:53 -0500
  • 78ee0957ae - update to 1.9 beta 3 Nalin Dahyabhai 2010-12-16 14:43:36 -0500
  • 3ea0e361a2 Merge branch 'master-f15-1.9' of ssh://pkgs.fedoraproject.org/krb5 into master-f15-1.9 Nalin Dahyabhai 2010-12-06 17:02:02 -0500
  • 695c21dd42 - update to beta 2 Nalin Dahyabhai 2010-12-06 16:53:51 -0500
  • 478f86fe1e add tweaks for initial whitespace that cause 389-ds to choke on the schema ldif Nalin Dahyabhai 2010-11-30 11:46:12 -0500
  • eb90866aa9 - drop not-needed-since-1.8 build dependency on rsh (ssorce) Nalin Dahyabhai 2010-11-09 10:30:57 -0500
  • b9f9657a15 - if WITH_NSS is set, built with --with-crypto-impl=nss (requires NSS 3.12.9) Nalin Dahyabhai 2010-11-05 15:41:19 -0400
  • 678164812e - add 1.9-beta1 sources Nalin Dahyabhai 2010-11-05 15:21:49 -0400
  • 3c41ea7400 - drop 1.8.3 sources Nalin Dahyabhai 2010-11-05 15:19:30 -0400
  • 66b6f44b6c - initial jump to 1.9 beta 1 Nalin Dahyabhai 2010-11-05 15:18:45 -0400
  • 4ddc28e6c6 - fix included in 1.9 Nalin Dahyabhai 2010-11-05 15:09:31 -0400
  • 96c33d14c4 - fix included in 1.9 Nalin Dahyabhai 2010-11-05 15:09:04 -0400
  • 82a9da834d - fix included in 1.9 Nalin Dahyabhai 2010-11-05 15:07:40 -0400
  • 7655a00cac - fix included in 1.9 Nalin Dahyabhai 2010-11-05 15:06:39 -0400
  • f3166d601b - fix included in 1.9 Nalin Dahyabhai 2010-11-05 15:06:01 -0400
  • 426053212c - update to apply to 1.9 Nalin Dahyabhai 2010-11-05 15:03:55 -0400
  • 256e37e476 - update to match current context in krb5.conf(5) Nalin Dahyabhai 2010-11-05 15:00:13 -0400
  • 20bd607a02 - fix context for applying to krb5.conf(5) Nalin Dahyabhai 2010-11-05 14:59:48 -0400
  • 5faba5957f - right, renamed the patch Nalin Dahyabhai 2010-11-30 14:28:42 -0500
  • ee3bb042af Merge branch 'master-f15-1.9' of ssh://pkgs.fedoraproject.org/krb5 into master-f15-1.9 Nalin Dahyabhai 2010-11-30 14:23:45 -0500
  • 483e8c5bce go with the final patch Nalin Dahyabhai 2010-11-30 14:22:30 -0500
  • 786702d87a add upstream patch to fix various issues from MITKRB5-SA-2010-007 Nalin Dahyabhai 2010-11-30 12:00:23 -0500
  • b5f2ca0389 add tweaks for initial whitespace that cause 389-ds to choke on the schema ldif Nalin Dahyabhai 2010-11-30 11:46:12 -0500
  • 3515095a61 - drop not-needed-since-1.8 build dependency on rsh (ssorce) Nalin Dahyabhai 2010-11-09 10:30:57 -0500