RT/krbdev.mit.edu: Ticket #1497 Memory leak/improper data storage in serializer of krb5

RT/krbdev.mit.edu: Ticket #1497 Memory leak/improper data storage in serializer of krb5_context

Signed in as guest.
[Logout]

[Home]

[Search]

[Configuration]

[Display]

[History]

[Basics]

[Dates]

[People]

[Links]

[Jumbo]

The Basics

Id
1497

Status
resolved

Worked
0 min

Priority
0/0

Queue
krb5

Keyword Selections

Component
Version_reported
Version_Fixed	1.4
Target_Version
Tags

Relationships

Depends on:

Depended on by:

Parents:

Children:

Refers to:

Referred to by:

Dates

Created:	Fri May 16 14:06:52 2003
Starts:	Not set
Started:	Fri May 16 21:51:55 2003
Last Contact:	Fri May 16 21:51:58 2003
Due:	Not set
Updated:	Mon Nov 15 22:21:56 2004 by tlyu

People

Owner
raeburn
Requestors
epeisach@mit.edu
Cc

AdminCc

More about Ezra Peisach

Comments about this user:
No comment entered about this user
This user's 25 highest priority tickets:

467: AFS salt type array overflow problems (new)
879: krb4 services will not properly function if there are more than one des3 key in the keytab (new)
214: There is no special error for a missing keytab file (open)
1261: Creation of shared libraries ignore --with-ldopts (new)
2355: krb5_change_set_password should either have prototype of be declared static (new)
2357: gss_krb5int_unseal_token_v3() could use better call signature (open)
3195: asn.1 encoding of kvno does not follow rfc4120 (new)
3196: asn.1 encoding of nonce differs from rfc4120 (signedness) (new)
3821: krb5-1.5 alpha - should library version numbers be bumped? (new)
3838: static-only builds no longer possible (open)
4489: IRIX build w/ GCC fails to use export list (new)
5130: Race condition in utils/support/threads.c if one thread calls exit.... (new)
5693: Problems using Intel C compiler on trunk builds (new)
6369: lib/rpc should have way to register with secure rpcbind using unix domain socket (new)
6453: remove dead code (open)

History

Display mode: [Brief headers] [Full headers]

Fri May 16 14:06:53 2003	epeisach - Ticket created
Subject: Memory leak/improper data storage in serializer of krb5_context From: Ezra Peisach <epeisach@MIT.EDU> To: krb5-bugs@MIT.EDU Date: 16 May 2003 13:59:47 -0400 Now that the os_context is directly part of the krb5_context structure - (as opposed to a pointer to the os_context), there appears to be a memory leak in the serailizer library... lib/krb5/ser_ctx.c: krb5_context_internalize allocates memory for the krb5_context structure. About line 175, krb5_internalize_opaque called with a pointer to the os_context structure in the krb5_context. This then gets to krb5_oscontext_internalize - which allocates the memory for the krb5_os_context. This pointer is then stored in the pointer passed in from krb5_context_internalize.... Hmm - on second thought - this is simply wrong... It is overwriting the structure with a pointer - so the code is even more broken.... Anyways - krb5_context_internalize should pass a pointer to a krb5_os_context *, and then copy the data back into the krb5_context... Ezra		Download (untitled) 859b
Fri May 16 19:58:35 2003	raeburn - Taken
Fri May 16 20:04:44 2003	raeburn - Correspondence added
My bad ... I changed the pointer in krb5_context to a directly incorporated member, and overlooked this allocation point. Thanks for catching it. I'll get a fix in soon.		Download (untitled) 171b
Fri May 16 21:51:56 2003	raeburn - Status changed from new to open
Fri May 16 21:51:56 2003	raeburn - Correspondence added
From: raeburn@mit.edu Subject: CVS Commit * ser_ctx.c (krb5_context_internalize): Copy read-in OS context data into krb5_context and free up the newly allocated OS context. To generate a diff of this commit: cvs diff -r5.394 -r5.395 krb5/src/lib/krb5/krb/ChangeLog cvs diff -r5.15 -r5.16 krb5/src/lib/krb5/krb/ser_ctx.c		Download (untitled) 285b
Thu Jun 5 19:53:05 2003	raeburn - Status changed from open to resolved
Thu Jun 5 19:53:05 2003	raeburn - Comments added
I've run some purify tests, I think this is okay now.		Download (untitled) 53b
Mon Nov 15 22:21:55 2004	tlyu - Version_Fixed 1.4 added