[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: unlink without check in lib/krb5/fcache.c in fcc_initialize

To: Love <lha@stacken.kth.se>
Subject: Re: unlink without check in lib/krb5/fcache.c in fcc_initialize
From: Balazs GAL <balsa@rit.bme.hu>
Date: 29 Jan 2003 13:41:45 +0100
Cc: heimdal-discuss <heimdal-discuss@sics.se>
In-Reply-To: <amel6wwknx.fsf@nutcracker.stacken.kth.se>
References: <1043800823.12865.259.camel@balcsi> <amel6wwknx.fsf@nutcracker.stacken.kth.se>
Sender: owner-heimdal-discuss@sics.se

2003-01-29, sze keltezéssel Love ezt írta:
> Balazs GAL <balsa@rit.bme.hu> writes:
> 
> > Hi!
> >
> > I think it is potentialy dangerous to call
> > unlink in fcc_initialize without any check. Why not call
> > the erase_file function in lib/krb5/fcache.c?
> 
> I'm reading mit-krb5-1.2.6, and it does unlinks the file too.
> 
> the macro MAYBE_OPEN uses krb5_fcc_open_file, krb5_fcc_open_file will do
> that if FCC_OPEN_AND_ERASE is set.

a 
krc = krb5_cc_resolve(context, v5_path, &ccache);
if (krc == KRB5_SUCCESS) {
      krc = krb5_cc_initialize(context, ccache,
                               stash->v5_creds.client);
}
semms, that doesn't unlink it. So I think the default value of
data->mode is FCC_OPEN_RDWR.
 
> Why do you think it would be dangerous ?

Sorry sorry , I was tired. It isn't.

balsa

References:
- unlink without check in lib/krb5/fcache.c in fcc_initialize
  - From: Balazs GAL <balsa@rit.bme.hu>

Prev by Date: unlink without check in lib/krb5/fcache.c in fcc_initialize
Prev by thread: unlink without check in lib/krb5/fcache.c in fcc_initialize
Next by thread: unlink without check in lib/krb5/fcache.c in fcc_initialize
Index(es):
- Date
- Thread