[jira] [Resolved] (ZOOKEEPER-4342) Robustify C client against errors during SASL negotiation

Enrico Olivelli (Jira) Wed, 25 Aug 2021 05:16:04 -0700


     [ 
https://issues.apache.org/jira/browse/ZOOKEEPER-4342?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Enrico Olivelli resolved ZOOKEEPER-4342.
----------------------------------------
    Fix Version/s: 3.7.1
                   3.8.0
       Resolution: Fixed

> Robustify C client against errors during SASL negotiation
> ---------------------------------------------------------
>
>                 Key: ZOOKEEPER-4342
>                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-4342
>             Project: ZooKeeper
>          Issue Type: Bug
>          Components: c client
>    Affects Versions: 3.7.0, 3.8.0
>            Reporter: Damien Diederen
>            Assignee: Damien Diederen
>            Priority: Blocker
>              Labels: pull-request-available
>             Fix For: 3.8.0, 3.7.1
>
>          Time Spent: 1h 10m
>  Remaining Estimate: 0h
>
> 1. The current client is ignoring the error field of the response header, and 
> only considering SASL-level errors when processing a SASL response.
> 2. Such errors cause a double-free of the input buffer, which crashes the 
> application.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Resolved] (ZOOKEEPER-4342) Robustify C client against errors during SASL negotiation

Reply via email to