RT RT/krbdev.mit.edu: Ticket #3746 krb5_cc_gen_new memory implementation doesn't create a new ccache Signed in as guest.
[Logout]

[Home] [Search] [Configuration]

[Display] [History] [Basics] [Dates] [People] [Links] [Jumbo]

 
 

 The Basics  
Id
3746
Status
resolved
Worked
0 min
Priority
0/0
Queue
krb5
 

 Keyword Selections  
Component
  • krb5-libs
Version_reported
  • 1.4.4
Version_Fixed
  • 1.5
Target_Version
  • 1.5
Tags
 

 Relationships  
Depends on:
Depended on by:
Parents:
Children:

Refers to:
Referred to by:
 
 Dates  
Created: Wed May 10 14:56:12 2006
Starts: Not set
Started: Not set
Last Contact: Not set
Due: Not set
Updated: Tue May 23 15:19:03 2006 by tlyu
 

 People  
Owner
 lxs
Requestors
 lxs@mit.edu, ramasamy
Cc
 
AdminCc
 
 

 More about Alexandra Ellwood  
Comments about this user:
No comment entered about this user
This user's 25 highest priority tickets:
 
 More about ramasamy  
Comments about this user:
No comment entered about this user
This user's 25 highest priority tickets:
 

History   Display mode: [Brief headers] [Full headers]
      Wed May 10 14:56:13 2006  lxs - Ticket created    
      
Subject: krb5_cc_gen_new memory implementation doesn't create a new ccache

krb5_cc_gen_new memory implementation doesn't actually create a new ccache.  Because
of this
there are race conditions in a variety of places in the library which expect this
function to create
a new temporary ccache.  These include krb5_verify_init_creds(),
gss_accept_sec_context() and
the KLL API.

Note that since the function was broken before the callers must be modified so that
they
actually destroy the newly created ccache.  They couldn't do this before since that
would have
made the race conditions worse.

Download (untitled) 522b
      Wed May 10 17:48:58 2006  lxs - Status changed from open to resolved    
      Wed May 10 17:48:58 2006  lxs - Correspondence added    
      
From: lxs@mit.edu
Subject: CVS Commit

Fixed the krb5_cc_gen_new memory ccache implementation and updated
krb5_verify_init_creds() and rd_and_store_for_creds() to use the
API properly (possible now that it's been fixed).

Commit By: lxs



Revision: 17997
Changed Files:
U   trunk/src/lib/gssapi/krb5/accept_sec_context.c
U   trunk/src/lib/krb5/ccache/cc_memory.c
U   trunk/src/lib/krb5/krb/vfy_increds.c

Download (untitled) 367b
      Wed May 10 18:39:25 2006  lxs - Correspondence added    
      
From: lxs@mit.edu
Subject: CVS Commit

Updated KLL's krb524 support to use a memory ccache correctly now that
krb5_cc_gen_new has been fixed.

Commit By: lxs



Revision: 6001
Changed Files:
U   trunk/KerberosFramework/KerberosLogin/Sources/KerberosLogin/KLTicketManagement.c

Download (untitled) 237b
      Fri May 12 21:11:10 2006  tlyu - Comments added    
      
Subject: Fix bug in r17997

[forgot to put ticket number in commit]

Commit By: tlyu
Log Message:
Use unsigned char rather than u_int8_t in random_string().



Changed Files:
U   trunk/src/lib/krb5/ccache/cc_memory.c

Download (untitled) 189b
      Tue May 23 15:19:03 2006  tlyu - Version_Fixed 1.5 added    
      Fri Apr 11 08:15:53 2008  guest - Ticket 5937: Ticket created    
      
Subject: memory leak when credential delegation

Memory leaks when credential delegation is used.

Function krb5_mcc_generate_new in ./ccache/cc_memory.c  leaks memory.
The local id variable "krb5_ccache lid" is neither freed nor assigned
back to calling function. It is reported as leak in valgrind in version
1.4.1

Download (untitled) 270b
      Thu May 22 17:00:50 2008  raeburn - Ticket 5937: Status changed from new to resolved    
      Thu May 22 17:00:50 2008  raeburn - Ticket 5937: Comments added    
      
Fixed by lxs in rev 17997, for the 1.5 releases.

Download (untitled) 48b
      Thu May 22 17:01:28 2008  raeburn - Ticket 5937: Ticket 5937 MergedInto ticket 3746.