Red Hat Bugzilla – Bug 34363
Segmentation fault if krb5_init_context fails
Last modified: 2007-04-18 12:32:30 EDT
From Bugzilla Helper:
User-Agent: Mozilla/4.76 [en] (X11; U; Linux 2.2.16_public-3.dcs.9 i686)
The pam_krb5 module doesn't initialise a number of variables which causes
it to segmentation fault if those variables are defined to a value other
than '0' by the compiler, or if krb5_init_context doesn't succeed.
In particular, config isn't initialised unless init_context() succeeds, so
can cause a seg fault when the DEBUG macro is run. In some portions of the
code 'ret' isn't initialised
either, so if it has a value other than 0, and init_context() succeeds
Steps to Reproduce:
1. su to root
2. su to any other user.
Actual Results: segmentation fault
Expected Results: No segmentation fault
This occurs both with the pam_krb5 shipped with RedHat 6.2, and with the
latest one in Rawhide. I'm also using a later set of Kerberos libraries
than 6.2 ships with, but
this error is due to faults in the code.
I neglected to add that I've got a patch for this, which I'm currently testing.
Created attachment 14445 [details]
Patch to fix this against 1.26
These should already be fixed in 1.30, which was pushed out as a bug-fix (for 7,
where changes in 1.2.2 were breaking pam_krb5's creation of credential caches).
Please reopen this bug ID if you find that there are problems with this version.