krb_check_auth clears the return value for the schedule parameter with a memset. This prevents callers from using the key schedule, which breaks code

ticket: 1730 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@15770 dc483132-0cff-0310-8789-dd5450dbe970
author: Alexandra Ellwood <lxs@mit.edu> 2003-08-15 19:54:14 +0000
committer: Alexandra Ellwood <lxs@mit.edu> 2003-08-15 19:54:14 +0000
commit: 42dee60a3c9b4623f3ad2de318b50e5f2f045768 (patch)
tree: 92aa346805477f2723e90bcb798a4c49727f4536 /src
parent: a441ac99b7d17dd8934bcd7f2989ef8e7927f87e (diff)
2 files changed, 6 insertions, 1 deletions
diff --git a/src/lib/krb4/ChangeLog b/src/lib/krb4/ChangeLog
index c3bcc973e..82a8d2b81 100644
--- a/src/lib/krb4/ChangeLog
+++ b/src/lib/krb4/ChangeLog
@@ -1,3 +1,9 @@
+2003-08-15  Alexandra Ellwood  <lxs@mit.edu>
+
+        * mk_auth.c: krb_check_auth clears the return value for the 
+        schedule parameter with a memset.  This prevents callers 
+        from using the key schedule, which breaks code.
+
 2003-08-06  Alexandra Ellwood  <lxs@mit.edu>
 
         * configure.in: Don't assume all darwin boxes are powerpc.
diff --git a/src/lib/krb4/mk_auth.c b/src/lib/krb4/mk_auth.c
index 9159ce177..cf85ea2f8 100644
--- a/src/lib/krb4/mk_auth.c
+++ b/src/lib/krb4/mk_auth.c
@@ -230,7 +230,6 @@ krb_check_auth (buf, checksum, msg_data, session, schedule, laddr, faddr)
 	return KFAILURE;
     cc = krb_rd_priv(buf->dat, (unsigned KRB4_32)buf->length, schedule,
 		     (C_Block *)session, faddr, laddr, msg_data);
-    memset(schedule, 0, sizeof(schedule));
     if (cc)
 	return cc;
author	Alexandra Ellwood <lxs@mit.edu>	2003-08-15 19:54:14 +0000
committer	Alexandra Ellwood <lxs@mit.edu>	2003-08-15 19:54:14 +0000
commit	42dee60a3c9b4623f3ad2de318b50e5f2f045768 (patch)
tree	92aa346805477f2723e90bcb798a4c49727f4536 /src
parent	a441ac99b7d17dd8934bcd7f2989ef8e7927f87e (diff)