svn rev #25833: trunk/src/lib/krb5/krb/
ghudson@MIT.EDU
ghudson at MIT.EDU
Fri Apr 27 13:04:24 EDT 2012
http://src.mit.edu/fisheye/changelog/krb5/?cs=25833
Commit By: ghudson
Log Message:
Ensure null termination of AFS salts
Use krb5int_copy_data_contents_add0 when copying a pa-pw-salt or
pa-afs3-salt value in pa_salt(). If it's an afs3-salt, we're going to
throw away the length and use strcspn in krb5int_des_string_to_key,
which isn't safe if the value is unterminated.
ticket: 2545
Changed Files:
U trunk/src/lib/krb5/krb/preauth2.c
Modified: trunk/src/lib/krb5/krb/preauth2.c
===================================================================
--- trunk/src/lib/krb5/krb/preauth2.c 2012-04-26 21:47:05 UTC (rev 25832)
+++ trunk/src/lib/krb5/krb/preauth2.c 2012-04-27 17:04:24 UTC (rev 25833)
@@ -565,7 +565,7 @@
tmp = padata2data(*in_padata);
krb5_free_data_contents(context, salt);
- retval = krb5int_copy_data_contents(context, &tmp, salt);
+ retval = krb5int_copy_data_contents_add0(context, &tmp, salt);
if (retval)
return retval;
More information about the cvs-krb5
mailing list