Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
For bugs related to Red Hat Enterprise Linux 5 product line. The current stable release is 5.10. For Red Hat Enterprise Linux 6 and above, please visit Red Hat JIRA https://issues.redhat.com/secure/CreateIssue!default.jspa?pid=12332745 to report new issues.

Bug 852195

Summary: Poll loop in krb5_get_credentials in saslauthd
Product: Red Hat Enterprise Linux 5 Reporter: Jonathan Reams <jr3074>
Component: krb5Assignee: Nalin Dahyabhai <nalin>
Status: CLOSED INSUFFICIENT_DATA QA Contact: BaseOS QE Security Team <qe-baseos-security>
Severity: high Docs Contact:
Priority: unspecified    
Version: 5.8CC: dpal, jplans, jr3074, lmiksik, selsky
Target Milestone: rc   
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-01-07 15:56:18 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1049888    
Attachments:
Description Flags
Core dump of saslauthd stuck in poll loop none

Description Jonathan Reams 2012-08-27 20:07:23 UTC 
Created attachment 607342 [details]
Core dump of saslauthd stuck in poll loop

Description of problem:

Saslauthd periodically ends up in a tight loop inside krb5_get_credentials, with the kerberos libraries continuously calling poll and getting an error on one of the file descriptors back. lsof is unable to decode what the file descriptor is. Eventually all saslauthd processes are deadlocked, and nothing can authenticate. When strace'd, a saslauthd process is just doing this:

poll([{fd=9, events=POLLIN}, {fd=10, events=POLLIN}, {fd=12, events=POLLIN|POLLOUT}], 3, -5521820) = 1 ([{fd=12, revents=POLLIN|POLLERR|POLLHUP}])
poll([{fd=9, events=POLLIN}, {fd=10, events=POLLIN}, {fd=12, events=POLLIN|POLLOUT}], 3, -5521820) = 1 ([{fd=12, revents=POLLIN|POLLERR|POLLHUP}])
poll([{fd=9, events=POLLIN}, {fd=10, events=POLLIN}, {fd=12, events=POLLIN|POLLOUT}], 3, -5521820) = 1 ([{fd=12, revents=POLLIN|POLLERR|POLLHUP}])
poll([{fd=9, events=POLLIN}, {fd=10, events=POLLIN}, {fd=12, events=POLLIN|POLLOUT}], 3, -5521820) = 1 ([{fd=12, revents=POLLIN|POLLERR|POLLHUP}])
poll([{fd=9, events=POLLIN}, {fd=10, events=POLLIN}, {fd=12, events=POLLIN|POLLOUT}], 3, -5521820) = 1 ([{fd=12, revents=POLLIN|POLLERR|POLLHUP}])

Version-Release number of selected component (if applicable):

krb5-libs-1.6.1-70.el5
cyrus-sasl-2.1.22-5.el5_4.3

How reproducible:

This occurs periodically as our users authenticate, but we have not found the trigger that causes the failure. It can take as long as a few hours or as short as a few minutes for the problem to manifest. 

Since we cannot find the cause, the next few questions are unanswered.

Steps to Reproduce:
1.
2.
3.
  
Actual results:


Expected results:


Additional info:

Attached is the core dump of a saslauthd process with the issue.
Comment 1 Dmitri Pal 2013-11-08 00:38:53 UTC 
Is there any consistent reproducer?
If not we might have to close it as INSUFFICIENT DATA.
Comment 2 Nalin Dahyabhai 2014-01-07 15:56:18 UTC 
Marking as closed due to insufficient data.
Comment 3 Red Hat Bugzilla 2023-09-14 01:36:55 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days