[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: krb5_init_get_creds_password crash in 0.5.1

To: "'Love'" <lha@stacken.kth.se>
Subject: RE: krb5_init_get_creds_password crash in 0.5.1
From: "Howard Chu" <hyc@highlandsun.com>
Date: Thu, 20 Mar 2003 09:31:07 -0800
Cc: <heimdal-discuss@sics.se>
Importance: Normal
In-Reply-To: <amptomufff.fsf@nutcracker.stacken.kth.se>
Sender: owner-heimdal-discuss@sics.se

> -----Original Message-----
> From: Love [mailto:lha@stacken.kth.se]

> "Howard Chu" <hyc@highlandsun.com> writes:

> I don't think its valid to call the krb5_get_init_creds_password() with
> password == NULL && prompter == NULL. So, how can this ever happen ?

You're probably right, but I think it's better for the app to get a "FAILED"
result code than a SEGV if this does happen. So far I have not seen it
happen; the patch below is the important one. It costs very little to make
this routine more idiot-proof, though.

> > @@ -456,6 +459,9 @@
> >
> >             if (in_tkt_service != NULL
> >                 && strcmp (in_tkt_service, "kadmin/changepw") == 0)
> > +               goto out;
> > +
> > +           if (!prompter)
> >                 goto out;
> >
> >             ret = change_password (context,
>
> This I can agree with. I'll fix it. Thanks
>
> Love
>

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

References:
- Re: krb5_init_get_creds_password crash in 0.5.1
  - From: Love <lha@stacken.kth.se>

Prev by Date: Re: kinit and old credentials
Next by Date: RE: kinit and old credentials
Prev by thread: Re: krb5_init_get_creds_password crash in 0.5.1
Next by thread: Heimdal telnet PAM, Kerberos SSH for Windows
Index(es):
- Date
- Thread