Skip Menu |
 

Download (untitled) / with headers
text/plain 3.2KiB
From ratliff@austin.ibm.com Wed Nov 14 18:48:45 2001
Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.72.0.53])
by rt-11.mit.edu (8.9.3/8.9.3) with ESMTP id SAA10143
for <bugs@RT-11.mit.edu>; Wed, 14 Nov 2001 18:48:44 -0500 (EST)
Received: from mg02.austin.ibm.com (mg02.austin.ibm.com [192.35.232.12])
by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id SAA26399
for <krb5-bugs@mit.edu>; Wed, 14 Nov 2001 18:48:43 -0500 (EST)
Received: from austin.ibm.com (netmail2.austin.ibm.com [9.3.7.139])
by mg02.austin.ibm.com (AIX4.3/8.9.3/8.9.3) with ESMTP id RAA25906
for <krb5-bugs@mit.edu>; Wed, 14 Nov 2001 17:56:26 -0600
Received: from spiff.austin.ibm.com (spiff.austin.ibm.com [9.53.216.123])
by austin.ibm.com (AIX4.3/8.9.3/8.9.3) with ESMTP id RAA36076
for <krb5-bugs@mit.edu>; Wed, 14 Nov 2001 17:48:42 -0600
Received: by spiff.austin.ibm.com (Postfix, from userid 501)
id 4156B82ADE; Wed, 14 Nov 2001 17:48:34 -0600 (CST)
Message-Id: <20011114234834.4156B82ADE@spiff.austin.ibm.com>
Date: Wed, 14 Nov 2001 17:48:34 -0600 (CST)
From: ratliff@austin.ibm.com
Reply-To: ratliff@austin.ibm.com
To: krb5-bugs@mit.edu
Cc: ratliff@austin.ibm.com
Subject: bug in accept_sec_context.c
X-Send-Pr-Version: 3.99

Show quoted text
>Number: 1015
>Category: krb5-libs
>Synopsis: bug in TREAD_STR macro call in accept_sec_context.c
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: krb5-unassigned
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Wed Nov 14 18:49:01 EST 2001
>Last-Modified:
>Originator: Emily Ratliff
>Organization:
IBM Linux Technology Center, Security
Show quoted text
>Release: krb5-current-20011110
>Environment:

System: Linux spiff.austin.ibm.com 2.2.17-21mdk #1 Thu Oct 5 13:16:08 CEST 2000 i686 unknown
Architecture: i686

Show quoted text
>Description:
You have made several improvements to handling forwarded creds in
krb5_gss_accept_sec_context() in accept_sec_context.c. One small
problem remains. The call to the TREAD_STR macro sends bigend
as the third parameter, but the third parameter should be the
expected length of the string or option.length.
Also, in making your changes you separated the comment on line 485
from the code that it is commenting on - that TREAD_STR macro call.
I've included a patch to fix the buglet and move the comment back
down to in front of the call to TREAD_STR.
Thanks!
Emily
Show quoted text
>How-To-Repeat:

Show quoted text
>Fix:

diff -ur src.orig/lib/gssapi/krb5/accept_sec_context.c src/lib/gssapi/krb5/accept_sec_context.c
--- src.orig/lib/gssapi/krb5/accept_sec_context.c Wed Nov 14 17:07:03 2001
+++ src/lib/gssapi/krb5/accept_sec_context.c Wed Nov 14 17:25:42 2001
@@ -482,16 +482,16 @@

i -= 4;

- /* have to use ptr2, since option.data is wrong type and
- macro uses ptr as both lvalue and rvalue */
-
if (i < option.length || option.length < 0) {
code = KG_BAD_LENGTH;
major_status = GSS_S_FAILURE;
goto fail;
}

- TREAD_STR(ptr, ptr2, bigend);
+ /* have to use ptr2, since option.data is wrong type and
+ macro uses ptr as both lvalue and rvalue */
+
+ TREAD_STR(ptr, ptr2, option.length);
option.data = (char *) ptr2;

i -= option.length;
Show quoted text
>Audit-Trail:
>Unformatted:
Download (untitled) / with headers
text/plain 2.5KiB
From dsr@lnscu5.lns.cornell.edu Fri Feb 22 14:04:41 2002
Received: from fort-point-station.mit.edu (FORT-POINT-STATION.MIT.EDU [18.7.7.76])
by rt-11.mit.edu (8.9.3/8.9.3) with ESMTP id OAA20665
for <bugs@RT-11.mit.edu>; Fri, 22 Feb 2002 14:04:40 -0500 (EST)
Received: from lnscu5.lns.cornell.edu (lnscu5.lns.cornell.edu [128.84.44.111])
by fort-point-station.mit.edu (8.9.2/8.9.2) with ESMTP id OAA26190
for <krb5-bugs@mit.edu>; Fri, 22 Feb 2002 14:04:40 -0500 (EST)
Received: from lnscu6.lns.cornell.edu (lnscu6.lns.cornell.edu [128.84.45.151])
by lnscu5.lns.cornell.edu (8.12.1/8.12.1) with ESMTP id g1MJ4do2011739
for <krb5-bugs@mit.edu>; Fri, 22 Feb 2002 14:04:40 -0500 (EST)
Received: by lnscu6.lns.cornell.edu (8.8.8/1.1.22.3/15Feb00-0854AM)
id OAA0000019458; Fri, 22 Feb 2002 14:04:39 -0500 (EST)
Message-Id: <200202221904.OAA0000019458@lnscu6.lns.cornell.edu>
Date: Fri, 22 Feb 2002 14:04:39 -0500 (EST)
From: Dan Riley <dsr@mail.lns.cornell.edu>
Reply-To: dsr@mail.lns.cornell.edu
To: krb5-bugs@mit.edu
Subject: error in option processing of krb5_gss_accept_sec_context
X-Send-Pr-Version: 3.99

Show quoted text
>Number: 1060
>Category: krb5-libs
>Synopsis: incorrect arg to TREAD_STR in option processing
>Confidential: no
>Severity: non-critical
>Priority: medium
>Responsible: krb5-unassigned
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Fri Feb 22 14:05:01 EST 2002
>Last-Modified:
>Originator: Dan Riley
>Organization:
LNS, Cornell U.
Show quoted text
>Release: krb5-1.2.3
>Environment:
System: OSF1 lnscu6.lns.cornell.edu V4.0 1229 alpha
Machine: alpha
Show quoted text
>Description:
krb5_gss_accept_sec_context has an argument error that should bite
if it there is more than one option to process.
Show quoted text
>How-To-Repeat:
>Fix:

diff -ur krb5-1.2.3/src/lib/gssapi/krb5/accept_sec_context.c krb5/lib/gssapi/krb5/accept_sec_context.c
--- krb5-1.2.3/src/lib/gssapi/krb5/accept_sec_context.c Wed Jan 9 17:27:43 2002
+++ krb5/lib/gssapi/krb5/accept_sec_context.c Thu Dec 6 15:29:41 2001
@@ -456,16 +456,16 @@

i -= 4;

- /* have to use ptr2, since option.data is wrong type and
- macro uses ptr as both lvalue and rvalue */
-
if (i < option.length || option.length < 0) {
code = KG_BAD_LENGTH;
major_status = GSS_S_FAILURE;
goto fail;
}

- TREAD_STR(ptr, ptr2, bigend);
+ /* have to use ptr2, since option.data is wrong type and
+ macro uses ptr as both lvalue and rvalue */
+
+ TREAD_STR(ptr, ptr2, option.length);
option.data = (char FAR *) ptr2;

i -= option.length;
Show quoted text
>Audit-Trail:
>Unformatted:
From: tlyu@mit.edu
Subject: CVS Commit
* accept_sec_context.c (krb5_gss_accept_sec_context): Call
TREAD_STR with correct arguments. Patch from Emily Ratliff.


To generate a diff of this commit:



cvs diff -r1.224 -r1.225 krb5/src/lib/gssapi/krb5/ChangeLog
cvs diff -r1.79 -r1.80
krb5/src/lib/gssapi/krb5/accept_sec_context.c
From: tlyu@mit.edu
Subject: CVS Commit
pullup from trunk


To generate a diff of this commit:



cvs diff -r1.218.2.6 -r1.218.2.7 krb5/src/lib/gssapi/krb5/ChangeLog
cvs diff -r1.77.2.2 -r1.77.2.3
krb5/src/lib/gssapi/krb5/accept_sec_context.c