[krbdev.mit.edu #3612] krb5_gss_canicalize_name calls back through glue

The RT System itself via RT rt-comment at krbdev.mit.edu
Wed Apr 5 15:22:32 EDT 2006


>From krb5-bugs-incoming-bounces at PCH.mit.edu  Wed Apr  5 15:22:28 2006
Received: from pch.mit.edu (PCH.MIT.EDU [18.7.21.90]) by krbdev.mit.edu (8.9.3p2) with ESMTP
	id PAA06680; Wed, 5 Apr 2006 15:22:28 -0400 (EDT)
Received: from pch.mit.edu (pch.mit.edu [127.0.0.1])
	by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k35JLu9x021429
	for <krb5-send-pr at krbdev.mit.edu>; Wed, 5 Apr 2006 15:21:56 -0400
Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU
	[18.7.7.76])
	by pch.mit.edu (8.13.6/8.12.8) with ESMTP id k35JLsMN021422
	for <krb5-bugs-incoming at PCH.mit.edu>; Wed, 5 Apr 2006 15:21:54 -0400
Received: from citi.umich.edu (citi.umich.edu [141.211.133.111])
	by fort-point-station.mit.edu (8.13.6/8.9.2) with ESMTP id
	k35JJkp4024883
	for <krb5-bugs at mit.edu>; Wed, 5 Apr 2006 15:19:46 -0400 (EDT)
Received: from rock.citi.umich.edu (rock.citi.umich.edu [141.211.133.90])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by citi.umich.edu (Postfix) with ESMTP id DB9E01BAF1
	for <krb5-bugs at mit.edu>; Wed,  5 Apr 2006 15:19:45 -0400 (EDT)
Received: (from kwc at localhost)
	by rock.citi.umich.edu (8.13.1/8.13.1/Submit) id k35JJjs9031056;
	Wed, 5 Apr 2006 15:19:45 -0400
Date: Wed, 5 Apr 2006 15:19:45 -0400
Message-Id: <200604051919.k35JJjs9031056 at rock.citi.umich.edu>
To: krb5-bugs at mit.edu
Subject: krb5_gss_canonicalize_name calls back through glue
From: kwc at citi.umich.edu
X-send-pr-version: 3.99
X-Spam-Score: -1.638
X-Spam-Flag: NO
X-Scanned-By: MIMEDefang 2.42
X-BeenThere: krb5-bugs-incoming at mailman.mit.edu
X-Mailman-Version: 2.1.6
Precedence: list
Reply-To: kwc at citi.umich.edu
Sender: krb5-bugs-incoming-bounces at PCH.mit.edu
Errors-To: krb5-bugs-incoming-bounces at PCH.mit.edu


>Submitter-Id:	net
>Originator:	Kevin Coffman (krb5)
>Organization:
	University of Michigan -- CITI
>Confidential:	no
>Synopsis:	krb5_gss_canicalize_name calls back through glue
>Severity:	non-critical
>Priority:	medium
>Category:	krb5-libs
>Class:		sw-bug
>Release:	1.4.3
>Environment:
System: Linux rock.citi.umich.edu 2.6.16 #2 Tue Apr 4 11:59:44 EDT 2006 i686 i686 i386 GNU/Linux
Architecture: i686

>Description:
	krb5_gss_canonicalize_name() returns the result of gss_duplicate_name().
	In a multi-mechanism mechglue environment, this winds up calling back
	through the glue layer instead of calling krb5_gss_duplicate_name()
	directly.  In this case, a krb5_principal pointer is interpreted
	as a gss_union_name_t pointer in the glue layer.
>How-To-Repeat:
	
>Fix:

--- canon_name.c        2006-04-05 14:33:53.000000000 -0400
+++ /usr/local/src/krb5/krb5-1.4.2-keyring/src/lib/gssapi/krb5/canon_name.c    2006-03-31 17:40:30.000000000 -0500
@@ -40,5 +40,5 @@ OM_uint32 krb5_gss_canonicalize_name(OM_
        return(GSS_S_BAD_MECH);
     }
 
-    return(gss_duplicate_name(minor_status, input_name, output_name));
+    return(krb5_gss_duplicate_name(minor_status, input_name, output_name));
 }




More information about the krb5-bugs mailing list