[3877] in Kerberos
Re: It's gotta be easier than this
daemon@ATHENA.MIT.EDU (Paul Pomes)
Tue Sep 20 16:21:40 1994
To: kerberos@MIT.EDU
Date: 20 Sep 1994 17:26:35 GMT
From: p-pomes@mirage.cso.uiuc.edu (Paul Pomes)
Reply-To: P-Pomes@uiuc.edu
rmayfiel@netcom.netcom.com (Rich Mayfield) writes:
> krb5kdc: Permission denied in replay cache code while \
> expunging replay cache 'dfl:'
This I found to be a variable cleared too soon. The official patch is
different, but this will work until the next release:
*** /usr/local/src/security/krb5-b4.2/src/lib/krb5/rcache/rc_dfl.c Sun Jun 12 12:46:09 1994
--- rc_dfl.c Fri Aug 19 10:50:32 1994
***************
*** 543,553 ****
#else
struct authlist *q;
! char *name = t->name;
krb5_error_code retval;
krb5_rcache tmp;
krb5_deltat lifespan = t->lifespan; /* save original lifespan */
(void) krb5_rc_dfl_close_no_free(id);
retval = krb5_rc_dfl_resolve(id, name);
if (retval)
--- 543,554 ----
#else
struct authlist *q;
! char *name;
krb5_error_code retval;
krb5_rcache tmp;
krb5_deltat lifespan = t->lifespan; /* save original lifespan */
+ name = strdup(t->name);
(void) krb5_rc_dfl_close_no_free(id);
retval = krb5_rc_dfl_resolve(id, name);
if (retval)
--
Necessity is the argument of tyrants, it is the creed of slaves.
--William Pitt (1783)
