Date: Wed, 13 Nov 2002 09:46:15 -0800 (PST) From: Jacques Vidrine <nectar@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/lib/libpam/modules/pam_krb5 pam_krb5.c Message-ID: <200211131746.gADHkF68049244@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
nectar 2002/11/13 09:46:15 PST Modified files: lib/libpam/modules/pam_krb5 pam_krb5.c Log: The pam_krb5 module stored a reference to a krb5_ccache structure as PAM module state (created in pam_sm_authenticate and referenced later in pam_sm_setcred and pam_sm_acct_mgmt). However, the krb5_ccache structure shares some data members with the krb5_context structure that was used in its creation. Since a new krb5_context is created and destroyed at each PAM entry point, this inevitably caused the krb5_ccache structure to reference free'd memory. Now instead of storing a pointer to the krb5_ccache structure, we store the name of the cache (e.g. `MEMORY:0x123CACHE') in pam_sm_authenticate, and resolve the name in the other entry points. This bug was uncovered by phkmalloc's free'd memory scrubbing. Approved by: re (jhb) Revision Changes Path 1.11 +42 -20 src/lib/libpam/modules/pam_krb5/pam_krb5.c To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200211131746.gADHkF68049244>