[krbdev.mit.edu #8726] Directly dereference the pointer certname which may be NULL in parse_fs_options()

Greg Hudson via RT rt-comment at KRBDEV-PROD-APP-1.mit.edu
Fri Aug 10 11:02:30 EDT 2018

Previous message: [krbdev.mit.edu #8726] Directly dereference the pointer certname which may be NULL in parse_fs_options()
Next message: [krbdev.mit.edu #8727] Directly dereference the pointer svalue which may be NULL in kadm5_get_config_params()
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

parse_fs_options() checks for an empty input, so may be assuming that 
strtok_r() won't return null the first time.  I found experimentally 
that it does so if the input is "," (the delimiter).  So we can make 
this code perform a null deref with:

  pkinit_identities = FILE:,

Previous message: [krbdev.mit.edu #8726] Directly dereference the pointer certname which may be NULL in parse_fs_options()
Next message: [krbdev.mit.edu #8727] Directly dereference the pointer svalue which may be NULL in kadm5_get_config_params()
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the krb5-bugs mailing list