Russ Allbery writes:
It was a type error on 64-bit systems in the keyring decoding code.
This
patch will fix the problem. I'll push a WebAuth 4.2.1 release with
this
fix.
Entirely my fault; I didn't run the test suite on a 64-bit system. :/
--- a/lib/keyring.c
+++ b/lib/keyring.c
@@ -347,7 +347,7 @@ decode(struct webauth_context *ctx, char *input,
size_t length,
uint32_t key_type;
char name[32];
void *key_data;
- uint32_t key_len;
+ size_t key_len;
struct webauth_key *key;
DECODE_TIME_N(A_CREATION_TIME, i, "key creation", &creation);
Yep, that fixed it! No more errors from Apache at startup, and the
wa_keyring
utility can read our keyring file now. And we can access webauth-
protected pages
on this server again.
Thanks for the quick patch!
-- Kai
