krb5/krb5-1.10-crashfix.patch

RT #7081

diff --git a/src/kdc/do_as_req.c b/src/kdc/do_as_req.c
index 5e69653..4651b72 100644
--- a/src/kdc/do_as_req.c
+++ b/src/kdc/do_as_req.c
@@ -102,6 +102,7 @@ struct as_req_state {
     loop_respond_fn respond;
     void *arg;
 
+    krb5_principal_data client_princ;
     krb5_enc_tkt_part enc_tkt_reply;
     krb5_enc_kdc_rep_part reply_encpart;
     krb5_ticket ticket_reply;
@@ -458,7 +459,6 @@ process_as_req(krb5_kdc_req *request, krb5_data *req_pkt,
     krb5_error_code errcode;
     krb5_timestamp rtime;
     unsigned int s_flags = 0;
-    krb5_principal_data client_princ;
     krb5_data encoded_req_body;
     krb5_enctype useenctype;
     struct as_req_state *state;
@@ -680,13 +680,13 @@ process_as_req(krb5_kdc_req *request, krb5_data *req_pkt,
 
     state->enc_tkt_reply.session = &state->session_key;
     if (isflagset(state->c_flags, KRB5_KDB_FLAG_CANONICALIZE)) {
-        client_princ = *(state->client->princ);
+        state->client_princ = *(state->client->princ);
     } else {
-        client_princ = *(state->request->client);
+        state->client_princ = *(state->request->client);
         /* The realm is always canonicalized */
-        client_princ.realm = state->client->princ->realm;
+        state->client_princ.realm = state->client->princ->realm;
     }
-    state->enc_tkt_reply.client = &client_princ;
+    state->enc_tkt_reply.client = &state->client_princ;
     state->enc_tkt_reply.transited.tr_type = KRB5_DOMAIN_X500_COMPRESS;
     state->enc_tkt_reply.transited.tr_contents = empty_string;
- note the RT number 2012-01-30 17:51:02 +00:00			`RT #7081`

add upstream crashfix patch 2012-01-26 16:58:18 +00:00			`diff --git a/src/kdc/do_as_req.c b/src/kdc/do_as_req.c`
			`index 5e69653..4651b72 100644`
			`--- a/src/kdc/do_as_req.c`
			`+++ b/src/kdc/do_as_req.c`
			`@@ -102,6 +102,7 @@ struct as_req_state {`
			`loop_respond_fn respond;`
			`void *arg;`

			`+ krb5_principal_data client_princ;`
			`krb5_enc_tkt_part enc_tkt_reply;`
			`krb5_enc_kdc_rep_part reply_encpart;`
			`krb5_ticket ticket_reply;`
			`@@ -458,7 +459,6 @@ process_as_req(krb5_kdc_req request, krb5_data req_pkt,`
			`krb5_error_code errcode;`
			`krb5_timestamp rtime;`
			`unsigned int s_flags = 0;`
			`- krb5_principal_data client_princ;`
			`krb5_data encoded_req_body;`
			`krb5_enctype useenctype;`
			`struct as_req_state *state;`
			`@@ -680,13 +680,13 @@ process_as_req(krb5_kdc_req request, krb5_data req_pkt,`

			`state->enc_tkt_reply.session = &state->session_key;`
			`if (isflagset(state->c_flags, KRB5_KDB_FLAG_CANONICALIZE)) {`
			`- client_princ = *(state->client->princ);`
			`+ state->client_princ = *(state->client->princ);`
			`} else {`
			`- client_princ = *(state->request->client);`
			`+ state->client_princ = *(state->request->client);`
			`/* The realm is always canonicalized */`
			`- client_princ.realm = state->client->princ->realm;`
			`+ state->client_princ.realm = state->client->princ->realm;`
			`}`
			`- state->enc_tkt_reply.client = &client_princ;`
			`+ state->enc_tkt_reply.client = &state->client_princ;`
			`state->enc_tkt_reply.transited.tr_type = KRB5_DOMAIN_X500_COMPRESS;`
			`state->enc_tkt_reply.transited.tr_contents = empty_string;`