Gecko [ nbspublicschool.com ]

Name	Size	Permission
Linux-PAM_ADG.html	8.41 KB	-rw-r--r--
Linux-PAM_MWG.html	8.59 KB	-rw-r--r--
adg-author.html	3.02 KB	-rw-r--r--
adg-copyright.html	3.54 KB	-rw-r--r--
adg-example.html	3.59 KB	-rw-r--r--
adg-files.html	2.18 KB	-rw-r--r--
adg-glossary.html	3.21 KB	-rw-r--r--
adg-interface-by-app-expected....	61.01 KB	-rw-r--r--
adg-interface-of-app-expected....	8.26 KB	-rw-r--r--
adg-interface-programming-note...	2.55 KB	-rw-r--r--
adg-interface.html	4.9 KB	-rw-r--r--
adg-introduction-description.h...	3.29 KB	-rw-r--r--
adg-introduction-synopsis.html	2.62 KB	-rw-r--r--
adg-introduction.html	2.01 KB	-rw-r--r--
adg-libpam-functions.html	13.13 KB	-rw-r--r--
adg-libpam_misc.html	3.34 KB	-rw-r--r--
adg-overview.html	8.16 KB	-rw-r--r--
adg-porting.html	4.2 KB	-rw-r--r--
adg-security-conv-function.htm...	2.29 KB	-rw-r--r--
adg-security-library-calls.htm...	3.13 KB	-rw-r--r--
adg-security-resources.html	2.83 KB	-rw-r--r--
adg-security-service-name.html	4.43 KB	-rw-r--r--
adg-security-user-identity.htm...	5.38 KB	-rw-r--r--
adg-security.html	3.73 KB	-rw-r--r--
adg-see-also.html	2.16 KB	-rw-r--r--
mwg-author.html	3 KB	-rw-r--r--
mwg-copyright.html	3.52 KB	-rw-r--r--
mwg-example.html	1.96 KB	-rw-r--r--
mwg-expected-by-module-item.ht...	45.36 KB	-rw-r--r--
mwg-expected-by-module-other.h...	8.15 KB	-rw-r--r--
mwg-expected-by-module.html	4.02 KB	-rw-r--r--
mwg-expected-of-module-acct.ht...	6.05 KB	-rw-r--r--
mwg-expected-of-module-auth.ht...	10.73 KB	-rw-r--r--
mwg-expected-of-module-chautht...	7.8 KB	-rw-r--r--
mwg-expected-of-module-overvie...	6.28 KB	-rw-r--r--
mwg-expected-of-module-session...	6.98 KB	-rw-r--r--
mwg-expected-of-module.html	4.27 KB	-rw-r--r--
mwg-introduction-description.h...	3.88 KB	-rw-r--r--
mwg-introduction-synopsis.html	1.98 KB	-rw-r--r--
mwg-introduction.html	1.98 KB	-rw-r--r--
mwg-see-also.html	2.18 KB	-rw-r--r--
mwg-see-options.html	2.92 KB	-rw-r--r--
mwg-see-programming-libs.html	2.94 KB	-rw-r--r--
mwg-see-programming-sec.html	8.92 KB	-rw-r--r--
mwg-see-programming-syslog.htm...	4.63 KB	-rw-r--r--
mwg-see-programming.html	3 KB	-rw-r--r--

Code Editor : adg-security-library-calls.html

<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"><title>4.1. Care about standard library calls</title><meta name="generator" content="DocBook XSL Stylesheets V1.78.1"><link rel="home" href="Linux-PAM_ADG.html" title="The Linux-PAM Application Developers' Guide"><link rel="up" href="adg-security.html" title="Chapter 4.  Security issues of Linux-PAM"><link rel="prev" href="adg-security.html" title="Chapter 4.  Security issues of Linux-PAM"><link rel="next" href="adg-security-service-name.html" title="4.2. Choice of a service name"></head><body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><div class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="3" align="center">4.1. Care about standard library calls</th></tr><tr><td width="20%" align="left"><a accesskey="p" href="adg-security.html">Prev</a> </td><th width="60%" align="center">Chapter 4. 
      Security issues of <span class="emphasis"><em>Linux-PAM</em></span>
    </th><td width="20%" align="right"> <a accesskey="n" href="adg-security-service-name.html">Next</a></td></tr></table><hr></div><div class="section"><div class="titlepage"><div><div><h2 class="title" style="clear: both"><a name="adg-security-library-calls"></a>4.1. Care about standard library calls</h2></div></div></div><p>
        In general, writers of authorization-granting applications should
        assume that each module is likely to call any or
        <span class="emphasis"><em>all</em></span> 'libc' functions. For 'libc' functions
        that return pointers to static/dynamically allocated structures
        (ie. the library allocates the memory and the user is not expected
        to '<code class="function">free()</code>' it) any module call to this
        function is likely to corrupt a pointer previously
        obtained by the application. The application programmer should
        either re-call such a 'libc' function after a call to the
        <span class="emphasis"><em>Linux-PAM</em></span> library, or copy the
        structure contents to some safe area of memory before passing
        control to the <span class="emphasis"><em>Linux-PAM</em></span> library.
      </p><p>
        Two important function classes that fall into this category are
        <span class="citerefentry"><span class="refentrytitle">getpwnam</span>(3)</span> and <span class="citerefentry"><span class="refentrytitle">syslog</span>(3)</span>.
      </p></div><div class="navfooter"><hr><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="adg-security.html">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="adg-security.html">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="adg-security-service-name.html">Next</a></td></tr><tr><td width="40%" align="left" valign="top">Chapter 4. 
      Security issues of <span class="emphasis"><em>Linux-PAM</em></span>
     </td><td width="20%" align="center"><a accesskey="h" href="Linux-PAM_ADG.html">Home</a></td><td width="40%" align="right" valign="top"> 4.2. Choice of a service name</td></tr></table></div></body></html>

${this.title}

Code Editor : adg-security-library-calls.html