[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Smbk5pwd and Heimdal 0.7 not playing nice?

To: <heimdal-discuss@sics.se>
Subject: Smbk5pwd and Heimdal 0.7 not playing nice?
From: "Perry Nguyen" <pfnguyen@best.com>
Date: Sun, 31 Jul 2005 22:55:33 -0700
Sender: owner-heimdal-discuss@sics.se
thread-index: AcWWXaEalJBtWST7RfirDqrMUyiiug==

Hi list,

I've recently installed Heimdal 0.7 fresh along with smbk5pwd, but I cannot
get smbk5pwd to load (sigsegv in slapd).  I am able to successfully init the
realm and a test key into LDAP using kadmin -l.  I've also run
/usr/heimdal/bin/kstash to get a key stored into /var/heimdal/m-key, and the
permissions are usable such that the user running slapd can read it.

Here are some details:

Slapd installed from fedoracore4 (also tried openldap 2.3.4)
I can run the kdc and kinit successfully.

Is there a compatibility problem with the newer versions of Heimdal?  When
did the rename of master_key_set to hdb_master_key_set occur?  Does anything
else need to be changed for smbk5pwd to work with the latest versions of
Heimdal krb5?

When compiling smbk5pwd.c, there was an error which I fixed with the
following diff:

--- smbk5pwd.c~ 2005-06-08 14:50:16.000000000 -0700
+++ smbk5pwd.c  2005-07-30 23:53:19.000000000 -0700
@@ -264,7 +264,7 @@
                ent.keys.val = &ekey;
                decode_Key((unsigned char *) a->a_vals[0].bv_val,
                        (size_t) a->a_vals[0].bv_len, &ent.keys.val[0], &l);
-               if ( db->master_key_set )
+               if ( db->hdb_master_key_set )
                        hdb_unseal_keys( context, db, &ent );

                krb5_string_to_key_salt( context, ekey.key.keytype,
cred->bv_val,

Backtrace output from gdb:

line 19 (pidfile                /var/run/slapd.pid)
line 20 (argsfile       /var/run/slapd.args)
line 23 (modulepath      /etc/openldap/modules-2.3)
line 25 (moduleload      smbk5pwd.la)
loaded module smbk5pwd.la

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread -1208486208 (LWP 10954)]
0x0077eaa2 in pthread_mutex_lock () from /lib/libpthread.so.0
(gdb) bt
#0  0x0077eaa2 in pthread_mutex_lock () from /lib/libpthread.so.0
#1  0x002285d6 in krb5_clear_error_string (context=0x8c50d48)
    at error_string.c:53
#2  0x00228632 in krb5_vset_error_string (context=0x8c50d48,
    fmt=0x2444ec "encryption type %d not supported",
    args=0xbfd871c8 " z B\223v\"") at error_string.c:78
#3  0x002286cd in krb5_set_error_string (context=0x8c50d48,
    fmt=0x2444ec "encryption type %d not supported") at error_string.c:69
#4  0x00227721 in krb5_crypto_init (context=0x8c50d48, key=0x8c51350,
    etype=1122794212, crypto=0x8c51360) at crypto.c:3996
#5  0x00290732 in hdb_read_master_key (context=0x8c50d48,
    filename=0x8c50370 "/var/heimdal/m-key", mkey=0xbfd873c8) at mkey.c:133
#6  0x00290c84 in hdb_set_master_keyfile (context=0x8c50d48, db=0x8c510b8,
    keyfile=0x8c50370 "/var/heimdal/m-key") at mkey.c:544
#7  0x0095f841 in kadm5_s_init_with_context (context=Variable "context" is
not available.
) at init_s.c:63
#8  0x004f3df5 in smbk5pwd_init () at smbk5pwd.c:526
#9  0x004f3f02 in init_module (argc=0, argv=0x0) at smbk5pwd.c:561
#10 0x080a2319 in module_load (file_name=0x8c340b0 "smbk5pwd.la", argc=0,
    argv=0x0) at module.c:170
#11 0x0805bd93 in config_generic (c=0x8c304f8) at bconfig.c:1175
#12 0x08062cc0 in config_set_vals (Conf=0x8172738, c=0x8c304f8) at
config.c:250

Some strace output of the slapd process:

open("/var/heimdal/m-key", O_RDONLY|O_LARGEFILE) = 8
fstat64(8, {st_mode=S_IFREG|0644, st_size=130, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0xb7
fca000
read(8, "\5\2\0\0\0<\0\2\0\tGOFTI.COM\0\1K\0\1M\0\0\0\1B\354z"..., 4096) =
130
fstat64(8, {st_mode=S_IFREG|0644, st_size=130, ...}) = 0
_llseek(8, 0, [0], SEEK_SET)            = 0
read(8, "\5\2\0\0\0<\0\2\0\tGOFTI.COM\0\1K\0\1M\0\0\0\1B\354z"..., 4096) =
130
close(8)                                = 0
munmap(0xb7fca000, 4096)                = 0
open("/var/heimdal/m-key", O_RDONLY|O_LARGEFILE) = 8
fcntl64(8, F_SETLKW64, {type=F_RDLCK, whence=SEEK_SET, start=0, len=0},
0xbfdd31
34) = 0
read(8, "\5\2\0\0\0<\0\2\0\tGOFTI.COM\0\1K\0\1M\0\0\0\1B\354z"..., 8192) =
130
_llseek(8, 0, [130], SEEK_CUR)          = 0
_llseek(8, 130, [130], SEEK_SET)        = 0
_llseek(8, 130, [130], SEEK_SET)        = 0
_llseek(8, 130, [130], SEEK_SET)        = 0
--- SIGSEGV (Segmentation fault) @ 0 (0) ---
+++ killed by SIGSEGV +++

Thanks.

-- 
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.338 / Virus Database: 267.9.7/60 - Release Date: 7/28/2005

Follow-Ups:
- Re: Smbk5pwd and Heimdal 0.7 not playing nice?
  - From: Love Hörnquist Åstrand <lha@kth.se>

Next by Date: Re: Smbk5pwd and Heimdal 0.7 not playing nice?
Next by thread: Re: Smbk5pwd and Heimdal 0.7 not playing nice?
Index(es):
- Date
- Thread