- markus@cvs.openbsd.org 2001/06/11 10:18:24

     [session.c]
     reset pointer to NULL after xfree(); report from solar@openwall.com

1 files changed, 9 insertions, 2 deletions

diff --git a/session.c b/session.c
index 9f472a22b..4dfca3575 100644
--- a/session.c
+++ b/session.c
@@ -33,7 +33,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: session.c,v 1.83 2001/06/07 22:25:02 markus Exp $");
+RCSID("$OpenBSD: session.c,v 1.84 2001/06/11 10:18:24 markus Exp $");
 
 #include "ssh.h"
 #include "ssh1.h"
@@ -364,6 +364,8 @@ do_authenticated1(Authctxt *authctxt)
                         if (!success) {
                                 xfree(s->auth_proto);
                                 xfree(s->auth_data);
+                                s->auth_proto = NULL;
+                                s->auth_data = NULL;
                         }
                         break;
 
@@ -1047,7 +1049,7 @@ do_child(Session *s, const char *command)
         extern char **environ;
         struct stat st;
         char *argv[10];
-        int do_xauth = s->auth_proto != NULL && s->auth_data != NULL;
+        int do_xauth;
 #ifdef WITH_IRIX_PROJECT
         prid_t projid;
 #endif /* WITH_IRIX_PROJECT */
@@ -1059,6 +1061,9 @@ do_child(Session *s, const char *command)
 #endif /* WITH_IRIX_ARRAY */
 #endif /* WITH_IRIX_JOBS */
 
+        do_xauth =
+            s->display != NULL && s->auth_proto != NULL && s->auth_data != NULL;
+
         /* remove hostkey from the child's memory */
         destroy_sensitive_data();
 
@@ -1731,6 +1736,8 @@ session_x11_req(Session *s)
         if (!success) {
                 xfree(s->auth_proto);
                 xfree(s->auth_data);
+                s->auth_proto = NULL;
+                s->auth_data = NULL;
         }
         return success;
 }