[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
GSSAPI buffer to small when used with Windows AD
From: |
DEEngert |
Subject: |
GSSAPI buffer to small when used with Windows AD |
Date: |
Thu, 18 Mar 2004 16:42:48 -0600 (CST) |
>Submitter-Id: net
>Originator: Douglas Engert
Douglas Engert
>Organization: net
>Confidential: no
>Synopsis: buf[1024] is too small to hold GSSAPI token
>Severity: serious
>Priority: medium
>Category: cvs
>Class: sw-bug
>Release: 1.12.6
>Environment:
System: SunOS xxx.anl.gov 5.7 Generic_106541-32 sun4u sparc SUNW,Ultra-5_10
Architecture: sun4
>Description:
Kerberos tickets obtained from a Microsoft AD may be quite large.
The buf[1024] in server.c is to small to receive a GSSAPI packet
with one of these tickets.
>How-To-Repeat:
>Fix:
Increase the size of the buffer.
--- ,server.c Wed Mar 3 07:53:05 2004
+++ server.c Thu Mar 18 13:30:41 2004
@@ -5966,7 +5966,7 @@
char hostname[MAXHOSTNAMELEN];
struct hostent *hp;
gss_buffer_desc tok_in, tok_out;
- char buf[1024];
+ char buf[65536];
OM_uint32 stat_min, ret;
gss_name_t server_name, client_name;
gss_cred_id_t server_creds;
- GSSAPI buffer to small when used with Windows AD,
DEEngert <=