[krbdev.mit.edu #1525] API (inadvertant?) change

Sam Hartman via RT rt-comment at krbdev.mit.edu
Sun May 25 23:53:09 EDT 2003

Previous message: [krbdev.mit.edu #1525] API (inadvertant?) change in krb5_get_in_tkt_with_password leads to memory leaks
Next message: [krbdev.mit.edu #1528] -DKRB5_DEPRECATE=1 must be added to src\config\win-pre.in
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]


I think that stashing the pointers in krb5_get_in_tkt_with_* is the
right solution.

Avoiding the memset may break some applications that pass in garbage a
 credential, as might avoiding memsetting the client and server.

Rolling back the change to krb5_get_in_tkt would require that we
handle the AES issue some other way.

Previous message: [krbdev.mit.edu #1525] API (inadvertant?) change in krb5_get_in_tkt_with_password leads to memory leaks
Next message: [krbdev.mit.edu #1528] -DKRB5_DEPRECATE=1 must be added to src\config\win-pre.in
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the krb5-bugs mailing list