Uploaded image for project: 'Qpid Proton'
  1. Qpid Proton
  2. PROTON-1380

Cyrus SASL accesses strings that have been freed

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Blocker
    • Resolution: Fixed
    • proton-0.16.0
    • proton-c-0.17.0
    • proton-c
    • None

    Description

      If a proton-c user calls pn_sasl_config_name or pn_sasl_config_path, the literal defaults are replaced with allocated duplicates of the supplied name or path. When the user's transport is eventually freed, these allocated strings are also freed (in pn_sasl_free).

      Cyrus SASL retains a global pointer to this freed string and references it the next time a transport is created. Since the SASL initialization only occurs once per process, the strings are not refreshed and the SASL library continues to refer to the freed string.

      There does not appear to be a workaround available for this issue.

      Attachments

        Issue Links

          Activity

            People

              astitcher Andrew Stitcher
              tross Ted Ross
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: