[2781] in Kerberos-V5-bugs
Re: krb5-libs/467: AFS string_to_key bounds problems...
daemon@ATHENA.MIT.EDU (Theodore Y. Ts'o)
Fri Aug 29 22:31:49 1997
Date: Fri, 29 Aug 1997 22:29:55 -0400
From: "Theodore Y. Ts'o" <tytso@MIT.EDU>
To: krb5-bugs@MIT.EDU, epeisach@MIT.EDU
Cc: krb5-unassigned@RT-11.MIT.EDU, gnats-admin@RT-11.MIT.EDU,
krb5-prs@RT-11.MIT.EDU
In-Reply-To: epeisach@MIT.EDU's message of Fri, 29 Aug 1997 21:32:02 -0400,
<199708300132.VAA13687@rt-11.MIT.EDU>
Date: Fri, 29 Aug 1997 21:31:47 -0400
From: epeisach@MIT.EDU
mit_afs_string_to_key assigns the realm to the salt->data portion.
It then wants to use strlen on the field to determine
the length of the realm.
I haven't yet had a chance to look at the relevant code yet, but --- is
there a good reason why mit_afs_string_to_key doesn't use salt->length
to determine the lentgh of the realm?
- Ted
