[krbdev.mit.edu #8898] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Thu Apr 30 12:05:31 EDT 2020
Thu Apr 30 12:05:31 2020: Request 8898 was acted upon.
Transaction: Ticket created by ghudson at mit.edu
Queue: krb5
Subject: git commit
Owner: ghudson at mit.edu
Requestors:
Status: new
Ticket <URL: https://krbdev.mit.edu/rt/Ticket/Display.html?id=8898 >
Fix overzealous SPNEGO src_name/deleg_cred release
Commit 24b844714dea3e47b17511746b5df5b6ddf13d43 (ticket 8845) added
releases of sc->internal_name and sc->deleg_cred before calling the
underlying mech's gss_accept_sec_context(), to avoid a potential leak
if the mech reports a value multiple times. Commit
c2ca2f26eaf817a6a7ed42257c380437ab802bd9 (ticket 8851) added a branch
which calls negoex_accept() instead of calling directly into the
underlying mech. If negoex_accept() doesn't call into the mech on the
last acceptor leg, the src_name and deleg_cred values from the final
mech call are lost.
Move the releases to the non-NegoEx branch. negoex_accept() already
does its own releases when it calls into the mech.
Reported by Luke Howard.
https://github.com/krb5/krb5/commit/b2fe66fed560ae28917a4acae6f6c0f020156353
Author: Greg Hudson <ghudson at mit.edu>
Commit: b2fe66fed560ae28917a4acae6f6c0f020156353
Branch: master
src/lib/gssapi/spnego/spnego_mech.c | 4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
More information about the krb5-bugs
mailing list