Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.427 (Entity 5.427) From: tlyu@mit.edu Subject: git commit X-RT-Original-Encoding: iso-8859-1 Content-Length: 823 Fix uncommon null dereference in PKINIT client crypto_retrieve_cert_sans() is allowed to set its princs output to NULL, although the OpenSSL implementation rarely does. Fix the TRACE_PKINIT_CLIENT_SAN_KDCCERT_PRINC for loop to allow this like other parts of the function do, and also get rid of the unnecessary princptr variable by using an integer index like other parts of the function. Based on a patch from Daniel Deptula. (cherry picked from commit 47b37b9e13ca1456ba6710f31bc41012d050dd07) https://github.com/krb5/krb5/commit/a2acda434a9b7f8285964079e4e242fea14ef164 Author: Greg Hudson Committer: Tom Yu Commit: a2acda434a9b7f8285964079e4e242fea14ef164 Branch: krb5-1.12 src/plugins/preauth/pkinit/pkinit_clnt.c | 6 +++--- 1 files changed, 3 insertions(+), 3 deletions(-)