Your message dated Wed, 5 Jul 2017 14:18:09 +0200
with message-id <[email protected]>
and subject line Bug#669688: courier-authlib: does not call pam_end
has caused the Debian Bug report #669688,
regarding courier-authlib: does not call pam_end
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
669688: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=669688
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: courier-authlib
Version: 0.63.0-4
Severity: normal
Note that I don't use Courier myself. I found this bug while
investigating a problem reported against libpam-krb5.
authpam.c makes for rather surreal reading. There's a large comment
that explains a complex and thorough philosophy for how the PAM code
is supposed to work, but then all the code that implements that is
removed with #if 0 and the actual code does something much simpler.
Unfortunately, while the comment and the other code was written by
someone who understands PAM library issues and complexity, the code
that's actually run never calls pam_end. This means that any external
resources allocated by the PAM module, such as the Kerberos ticket
cache created by pam-krb5, are never released.
The #if 0 code does the right thing, but as long as the code works the
way it does now, a call to:
pam_end(pamh, retval);
needs to be inserted after the call to dopam() in the p == 0 block.
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 3.1.0-1-686-pae (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages courier-authlib depends on:
ii expect <none>
ii libc6 2.13-27
ii libgdbm3 1.8.3-10
ii libltdl7 2.4.2-1
ii libpam0g 1.1.3-7
courier-authlib recommends no packages.
courier-authlib suggests no packages.
--- End Message ---
--- Begin Message ---
Control: fixed -1 0.66.0
Hi,
looking at courier-authlib's authpam.c as of today, I think this issue
has been fixed upstream in the meantime. The git repo only yields this
commit here:
Author: Sam Varshavchik <[email protected]>
Date: Tue Aug 20 21:38:40 2013 -0400
Initial checkin
So the fix must have landed before 0.66.0, released Sept 2013. I'm
therefore closing this old issue.
Kind Regards
Markus Wanner
signature.asc
Description: OpenPGP digital signature
--- End Message ---
