Bug#629558: marked as done (krb5-kdc: kdb_ldap plugin crashes during kinit "user@DOMAIn" with wrong case for "DOMAIn")

Tue, 27 Dec 2011 04:34:42 -0800 

Your message dated Tue, 27 Dec 2011 07:30:22 -0500 (EST)
with message-id <[email protected]>
and subject line Fixed
has caused the Debian Bug report #629558,
regarding krb5-kdc: kdb_ldap plugin crashes during kinit "user@DOMAIn" with 
wrong case for "DOMAIn"
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
629558: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629558
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: krb5-kdc-ldap
Severity: normal
Tags: patch

Subject: krb5-kdc: kdb_ldap plugin crashes during kinit "user@DOMAIn" with 
wrong case for "DOMAIn"
Package: krb5-kdc
Version: 1.9+dfsg-1+debug01
Severity: normal


At src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c:108, inside the
function "krb5_ldap_get_principal()":

If "is_principal_in_realm()" fails, the code does not properly initialize
the variable "st" (IE: with KRB5_KDB_NOENTRY or something) before calling
krb5_set_error_message().

This can happen if the realm is "EXAMPLE.COM" and somebody types:
  kinit [email protected] (IE: case is not quite right).

As a result, the krb5_ldap_get_principal() function returns 0 but leaves
the "client" pointer set to NULL.

When it returns out to src/kdc/do_as_req.c:211, the process_as_req() code
assumes that it succeeded, and promptly dereferences "client", causing a
crash.

The fix is to add a single line "st = KRB5_KDB_NOENTRY" into the file
ldap_principal2.c after this line:

    if (is_principal_in_realm(ldap_context, searchfor) != 0) {

Cheers,
Kyle Moffett

P.S: Out of curiousity, is there some reason why there are not packages
for krb5-kdc-dbg and krb5-admin-server-dbg, etc?  That would make this
kind of troubleshooting much easier in the future.

-- System Information:
Debian Release: wheezy/sid
  APT prefers testing
  APT policy: (700, 'testing'), (600, 'unstable'), (500, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.38-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages krb5-kdc depends on:
ii  debconf [debconf-2.0] 1.5.38             Debian configuration management sy
ii  krb5-config           2.2                Configuration files for Kerberos V
ii  krb5-user             1.9+dfsg-1+debug01 Basic programs to authenticate usi
ii  libc6                 2.11.2-11          Embedded GNU C Library: Shared lib
ii  libcomerr2            1.41.12-2          common error description library
ii  libgssapi-krb5-2      1.9+dfsg-1+debug01 MIT Kerberos runtime libraries - k
ii  libgssrpc4            1.9+dfsg-1+debug01 MIT Kerberos runtime libraries - G
ii  libk5crypto3          1.9+dfsg-1+debug01 MIT Kerberos runtime libraries - C
ii  libkadm5clnt-mit8     1.9+dfsg-1+debug01 MIT Kerberos runtime libraries - A
ii  libkadm5srv-mit8      1.9+dfsg-1+debug01 MIT Kerberos runtime libraries - K
ii  libkdb5-5             1.9+dfsg-1+debug01 MIT Kerberos runtime libraries - K
ii  libkeyutils1          1.4-4              Linux Key Management Utilities (li
ii  libkrb5-3             1.9+dfsg-1+debug01 MIT Kerberos runtime libraries
ii  libkrb5support0       1.9+dfsg-1+debug01 MIT Kerberos runtime libraries - S
ii  lsb-base              3.2-27             Linux Standard Base 3.2 init scrip

krb5-kdc recommends no packages.

Versions of packages krb5-kdc suggests:
ii  krb5-admin-server     1.9+dfsg-1+debug01 MIT Kerberos master server (kadmin
ii  krb5-kdc-ldap         1.9+dfsg-1+debug01 MIT Kerberos key server (KDC) LDAP
pn  openbsd-inetd | inet- <none>             (no description available)

-- debconf information excluded

-- System Information:
Debian Release: wheezy/sid
  APT prefers testing
  APT policy: (700, 'testing'), (700, 'stable'), (600, 'unstable'), (500, 
'stable-updates'), (500, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

--- End Message ---
--- Begin Message --- 
source: krb5
source-version: 1.10+dfsg~alpha1-6

Apparently the changelog entry for this upload got lost somehow.

--- End Message ---

Reply via email to