oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

bx509d: Fix warnings

Browse Source
This commit is contained in:
Nicolas Williams
2021-06-29 17:01:53 -05:00
parent 23190a3f5e
commit 5dcad4635b
4 changed files with 59 additions and 28 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
kdc/cjwt_token_validator.c
View File

@@ -107,13 +107,13 @@ get_issuer_pubkeys(krb5_context context,
if (!previous->length && !current->length && !next->length)
krb5_set_error_message(context, save_ret,
"Could not read jwk issuer public key files");
if (current->length == next->length &&
if (current->length && current->length == next->length &&
memcmp(current->data, next->data, next->length) == 0) {
free(next->data);
next->data = 0;
next->length = 0;
}
if (current->length == previous->length &&
if (current->length && current->length == previous->length &&
memcmp(current->data, previous->data, previous->length) == 0) {
free(previous->data);
previous->data = 0;
@@ -255,6 +255,11 @@ validate(void *ctx,
tokstr = NULL;
switch (ret) {
case 0:
if (jwt == NULL) {
krb5_set_error_message(context, EINVAL, "JWT validation failed");
free(defrealm);
return EPERM;
}
if (jwt->header.alg == alg_none) {
krb5_set_error_message(context, EINVAL, "JWT signature algorithm "
"not supported");