Date: Wed, 13 Nov 2002 09:46:15 -0800 (PST) From: Jacques Vidrine <nectar@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/lib/libpam/modules/pam_krb5 pam_krb5.c Message-ID: <200211131746.gADHkF68049244@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
nectar 2002/11/13 09:46:15 PST
Modified files:
lib/libpam/modules/pam_krb5 pam_krb5.c
Log:
The pam_krb5 module stored a reference to a krb5_ccache structure as
PAM module state (created in pam_sm_authenticate and referenced later
in pam_sm_setcred and pam_sm_acct_mgmt). However, the krb5_ccache
structure shares some data members with the krb5_context structure
that was used in its creation. Since a new krb5_context is created
and destroyed at each PAM entry point, this inevitably caused the
krb5_ccache structure to reference free'd memory.
Now instead of storing a pointer to the krb5_ccache structure,
we store the name of the cache (e.g. `MEMORY:0x123CACHE') in
pam_sm_authenticate, and resolve the name in the other entry points.
This bug was uncovered by phkmalloc's free'd memory scrubbing.
Approved by: re (jhb)
Revision Changes Path
1.11 +42 -20 src/lib/libpam/modules/pam_krb5/pam_krb5.c
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200211131746.gADHkF68049244>