Skip Menu |
 

From: ghudson@mit.edu
Subject: git commit

Fix uncommon null dereference in PKINIT client

crypto_retrieve_cert_sans() is allowed to set its princs output to
NULL, although the OpenSSL implementation rarely does. Fix the
TRACE_PKINIT_CLIENT_SAN_KDCCERT_PRINC for loop to allow this like other
parts of the function do, and also get rid of the unnecessary princptr
variable by using an integer index like other parts of the function.

Based on a patch from Daniel Deptula.

https://github.com/krb5/krb5/commit/47b37b9e13ca1456ba6710f31bc41012d050dd07
Author: Greg Hudson <ghudson@mit.edu>
Commit: 47b37b9e13ca1456ba6710f31bc41012d050dd07
Branch: master
src/plugins/preauth/pkinit/pkinit_clnt.c | 6 +++---
1 files changed, 3 insertions(+), 3 deletions(-)
From: tlyu@mit.edu
Subject: git commit

Fix uncommon null dereference in PKINIT client

crypto_retrieve_cert_sans() is allowed to set its princs output to
NULL, although the OpenSSL implementation rarely does. Fix the
TRACE_PKINIT_CLIENT_SAN_KDCCERT_PRINC for loop to allow this like other
parts of the function do, and also get rid of the unnecessary princptr
variable by using an integer index like other parts of the function.

Based on a patch from Daniel Deptula.

(cherry picked from commit 47b37b9e13ca1456ba6710f31bc41012d050dd07)

https://github.com/krb5/krb5/commit/fd58e67b5778642dc882c3f5a256f0cbff669a0e
Author: Greg Hudson <ghudson@mit.edu>
Committer: Tom Yu <tlyu@mit.edu>
Commit: fd58e67b5778642dc882c3f5a256f0cbff669a0e
Branch: krb5-1.13
src/plugins/preauth/pkinit/pkinit_clnt.c | 6 +++---
1 files changed, 3 insertions(+), 3 deletions(-)