Content-Type: text/plain Content-Disposition: inline Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.411 (Entity 5.404) X-RT-Original-Encoding: iso-8859-1 Content-Length: 6091 From mb@byteworks.ch Tue Apr 10 19:20:11 2001 Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by rt-11.mit.edu (8.9.3/8.9.3) with ESMTP id TAA20483 for ; Tue, 10 Apr 2001 19:20:10 -0400 (EDT) Received: from skunk.byteworks.ch (skunk-virt-2.byteworks.ch [212.215.123.33] (may be forged)) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id TAA28799 for ; Tue, 10 Apr 2001 19:20:10 -0400 (EDT) Received: from roadrunner (taz.byteworks.ch [212.215.31.78] (may be forged)) by skunk.byteworks.ch (8.9.3/8.9.3) with ESMTP id BAA24427 for ; Wed, 11 Apr 2001 01:16:08 +0200 Message-Id: <002d01c0c214$d531f790$4e1fd7d4@roadrunner> Date: Wed, 11 Apr 2001 01:20:29 +0200 From: "Michael Bischof" To: Subject: BUG? >Number: 941 >Category: krb5-misc >Synopsis: BUG? >Confidential: yes >Severity: serious >Priority: medium >Responsible: tlyu >State: open >Class: sw-bug >Submitter-Id: unknown >Arrival-Date: Tue Apr 10 19:21:00 EDT 2001 >Last-Modified: Thu Apr 19 21:44:27 EDT 2001 >Originator: "Michael Bischof" >Organization: >Release: krb5-1.2.2 >Environment: Solaris 8 >Description: Hello, I had problems get MIT Kerberos 1.2.2 and pam_krb5 working under Solaris 8. Everything worked fine except that I couldn't lock the screen under CDE. After some debugging I found out that the pam_krb5 module called the kerberos function << krb5_init_context >> and that this function doesnt return... I used << truss >> to find out some more details: 2061: access("/etc/krb5.conf", 2) Err#13 EACCES=0A= 2061: fstat64(12, 0xFE20B0A0) =3D 0=0A= 2061: ioctl(12, TCGETA, 0xFE20B02C) Err#25 ENOTTY=0A= 2061: read(12, " #\n # / e t c / k r b".., 8192) =3D 688=0A= 2061: read(12, 0x000BDE0C, 8192) =3D 0=0A= 2061: llseek(12, 0, SEEK_CUR) =3D 688=0A= 2061: close(12) =3D 0=0A= 2061: stat("/usr/local/etc/krb5.conf", 0xFE20B288) Err#2 ENOENT=0A= 2061: getpid() =3D 2061 [2047]=0A= 2061: stat("/etc/krb5.conf", 0xFE20B2F8) =3D 0=0A= 2061: stat("/usr/local/etc/krb5.conf", 0xFE20B2F8) Err#2 ENOENT=0A= 2061: Incurred fault #6, FLTBOUNDS %pc =3D 0xFE57CF44=0A= 2061: siginfo: SIGSEGV SEGV_MAPERR addr=3D0x00000014=0A= 2061: Received signal #11, SIGSEGV [caught]=0A= 2061: siginfo: SIGSEGV SEGV_MAPERR addr=3D0x00000014=0A= 2061: sigprocmask(SIG_SETMASK, 0xFEDEF010, 0x00000000) =3D 0=0A= 2061: sigaction(SIGSEGV, 0xFE20AEA8, 0x00000000) =3D 0=0A= 2061: sigprocmask(SIG_SETMASK, 0xFEDFADE0, 0x00000000) =3D 0=0A= 2061: setcontext(0xFE20AD68)=0A= 2061: Incurred fault #6, FLTBOUNDS %pc =3D 0xFE57CF44=0A= 2061: siginfo: SIGSEGV SEGV_MAPERR addr=3D0x00000014=0A= 2061: Received signal #11, SIGSEGV [default]=0A= 2061: siginfo: SIGSEGV SEGV_MAPERR addr=3D0x00000014=0A= 2061: *** process killed ***=0A= As you can see, the process crashes while executing stat("/usr/local/etc/krb5.conf", ...) After changing the directive DEFAULT_PROFILE_PATH to "/etc/krb5.conf" in the file .../stock/osconf.h Everything worked fine! So I'm not sure, but I think this is a bug?! Please ask if you have any questions. I used: - MIT Kerberos 1.2.2 - Solaris 8 with latest recommended patches - pam_krb5 1.0 (http://www.fcusack.com/) - gcc 2.95.2 Regards, Michael. >How-To-Repeat: >Fix: >Audit-Trail: From: Tom Yu To: "Michael Bischof" Cc: Subject: Re: pending/941: BUG? Date: 10 Apr 2001 20:51:56 -0400 >>>>> "mb" == Michael Bischof writes: mb> Everything worked fine except that I couldn't lock the screen mb> under CDE. After some debugging I found out that the pam_krb5 mb> module called the kerberos function << krb5_init_context >> and mb> that this function doesnt return... mb> I used << truss >> to find out some more details: [...] mb> As you can see, the process crashes while executing mb> stat("/usr/local/etc/krb5.conf", ...) Are you certain of this? The stat() call does return, and it's not clear that the SEGV occurs due to that failure. Getting a stack trace would be useful. Also, what are the file modes for /etc/krb5.conf and/or /usr/local/etc/krb5.conf? mb> So I'm not sure, but I think this is a bug?! If you could get a stack trace, that would be quite helpful. Do programs such as kinit, klist, and kdestroy function properly? ---Tom From: "Michael Bischof" To: "Tom Yu" Cc: Subject: Re: pending/941: BUG? Date: Wed, 11 Apr 2001 09:50:42 +0200 > mb> Everything worked fine except that I couldn't lock the screen > mb> under CDE. After some debugging I found out that the pam_krb5 > mb> module called the kerberos function << krb5_init_context >> and > mb> that this function doesnt return... > > mb> I used << truss >> to find out some more details: > > [...] > > mb> As you can see, the process crashes while executing > mb> stat("/usr/local/etc/krb5.conf", ...) > > Are you certain of this? The stat() call does return, and it's not > clear that the SEGV occurs due to that failure. Getting a stack trace > would be useful. Also, what are the file modes for /etc/krb5.conf > and/or /usr/local/etc/krb5.conf? No, I'm not sure... but It has something to do with the file /usr/local/etc/krb5.conf... If I copy the file /etc/krb5.conf to /usr/local/etc/krb5.conf then its working. Filepermissions: 0644 root other > > mb> So I'm not sure, but I think this is a bug?! > > If you could get a stack trace, that would be quite helpful. Do > programs such as kinit, klist, and kdestroy function properly? Yes, the rest is working perfectly! BTW: How can I produce a stack tracke? > > ---Tom > Responsible-Changed-From-To: gnats-admin->tlyu Responsible-Changed-By: raeburn Responsible-Changed-When: Thu Apr 19 21:43:41 2001 Responsible-Changed-Why: Tom's already exchanging mail with the user. >Unformatted: