[16655] in Kerberos-V5-bugs
[krbdev.mit.edu #8938] git commit
daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Tue Nov 3 13:15:45 2020
From: "Greg Hudson via RT" <rt@krbdev.mit.edu>
In-Reply-To:
Message-ID: <rt-4.4.4-37022-1604427316-869.8938-5-0@mit.edu>
To: "AdminCc of krbdev.mit.edu Ticket #8938":;
Date: Tue, 03 Nov 2020 13:15:16 -0500
MIME-Version: 1.0
Reply-To: rt@krbdev.mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
<URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=8938 >
Fix Leash crash when ticket autorenewal fails
CLeashView::RenewTicket() falls back to an ImportTicket or InitTicket
operation if ticket renewal fails. A 2004 commit (from the old
pismere repository) added code to heuristically determine whether
Leash's cache was imported by comparing the MSLSA cache principal name
to ticketinfo.Krb5.principal. Commit
9bc411e72fce5bed3ed00ae5b09f8c239309bae0 broke this code by removing
the call to initialize ticketinfo.Krb5 and by making
ticketinfo.Krb5.principal ephemeral. The strcmp() call now crashes
the process with a null dereference.
Fix the crash by removing the heuristic detection of imported tickets,
using the current value of m_importedTickets (which should be correct
unless Leash was restarted after the tickets were obtained) to decide
whether to import or initialize tickets.
(cherry picked from commit 7fc4cdae79d0689afed32f9bcfeb28f410a9d79c)
https://github.com/krb5/krb5/commit/bca389add3d2f2b2460920295c383dbeb4152625
Author: Greg Hudson <ghudson@mit.edu>
Commit: bca389add3d2f2b2460920295c383dbeb4152625
Branch: krb5-1.17
src/windows/leash/LeashView.cpp | 27 ---------------------------
1 files changed, 0 insertions(+), 27 deletions(-)
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
