Patch to server list initialization for FreeRADIUS client lib 1.1.6

Alan DeKok aland at
Wed Apr 28 16:26:05 CEST 2010

Scott Neugroschl wrote:
> In lib/config.c, in set_option_srv(), when the serverlist is allocated, the
> allocated memory
> currently isn't zeroed.  This shouldn't be a problem, as we only search up
> to serv->max, but
> in rc_find_server(), we check to see if {acct,auth}servers->secret[i] is
> NULL.  If we don't
> zero out the SERVER structure upon allocation, this value could be non-zero,
> and the test for
> NULL could fail, leading to segfault.
> The attached patch to lib/config.c addresses this issue by zeroing out the
> SERVER structure
> upon allocation.

  Added, thanks.

  Alan DeKok.

More information about the Freeradius-Devel mailing list