OpenAFS Master Repository branch, master, updated. openafs-devel-1_9_1-267-g915c9ec

Gerrit Code Review
Thu, 18 May 2023 12:17:10 -0400

The following commit has been merged in the master branch:
commit 915c9ec007810f99a5ea8be73426fc8882f615fd
Author: Mark Vitale <>
Date:   Fri May 12 21:25:36 2023 -0400

    rxkad: Free memory used to check rxkad response
    Since its introduction with commit 7e4e06b87a09 "Derive DES/fcrypt
    session key from other key types", rxkad_derive_des_key has failed to
    free the memory associated with its HMAC context struct.
    This results in a leak of at least 352 bytes for each rxkad challenge
    response processed by an OpenAFS server when using rxkad-kdf.
    Free the memory by calling HMAC_CTX_cleanup after each round of the
    Discovered via Solaris
    Change-Id: Ic9f130f7229c70e4eaa68ba1f0a213b4b23229cc
    Tested-by: BuildBot <>
    Reviewed-by: Andrew Deason <>
    Reviewed-by: Cheyenne Wills <>
    Reviewed-by: Benjamin Kaduk <>

 src/rxkad/ticket5.c | 1 +
 1 file changed, 1 insertion(+)

OpenAFS Master Repository