Page MenuHomeFreeBSD
Differential D51829

pam_ksu: Fix crash when no ticket is present
ClosedPublic
Actions

Authored by ivy on Aug 8 2025, 4:17 PM.
Tags
None
Referenced Files
Unknown Object (File)
Fri, Nov 28, 2:36 PM
Unknown Object (File)
Tue, Nov 25, 6:08 AM
Unknown Object (File)
Tue, Nov 25, 4:01 AM
Unknown Object (File)
Sat, Nov 22, 11:50 AM
Unknown Object (File)
Tue, Nov 18, 12:27 AM
Unknown Object (File)
Thu, Nov 6, 4:05 AM
Unknown Object (File)
Nov 3 2025, 9:54 PM
Unknown Object (File)
Oct 14 2025, 5:00 AM
View All 43 Files
Subscribers
des
imp
philip

Details

Reviewers
jhb
des
philip
cy
Group Reviewers
krb5
Commits
rG9503ed0dfdbd: pam_ksu: Fix crash when no ticket is present
Summary

When building with MIT Kerberos, pam_ksu crashes if the user doesn't
have a ticket because default_principal is never populated in
get_su_principal().

Change the compatibility function to use krb5_build_principal_alloc_va
instead, and make its interface compatible with the equivalent Heimdal
function.

Despite what the comment says, we do free the default principal later
in get_su_principal() so this shouldn't cause any leaks.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

ivy created this revision.Aug 8 2025, 4:17 PM
Herald added a subscriber: imp. · View Herald TranscriptAug 8 2025, 4:17 PM
ivy requested review of this revision.Aug 8 2025, 4:17 PM
Harbormaster completed remote builds in B66115: Diff 160069.Aug 8 2025, 4:17 PM
jhb accepted this revision.Aug 8 2025, 4:19 PM
This revision is now accepted and ready to land.Aug 8 2025, 4:19 PM
ivy updated this revision to Diff 160070.Aug 8 2025, 4:19 PM

remove unneeded prototype for krb5_build_principal_va

This revision now requires review to proceed.Aug 8 2025, 4:19 PM
Harbormaster completed remote builds in B66116: Diff 160070.Aug 8 2025, 4:19 PM
philip added a subscriber: philip.Aug 8 2025, 4:20 PM
des added a subscriber: des.Aug 8 2025, 5:07 PM

Note that we still have Heimdal and the option to use it, and I don't see a krb5_free_principal() call anywhere in your patch...

ivy added a comment.Aug 8 2025, 5:08 PM
In D51829#1184019, @des wrote:

Note that we still have Heimdal and the option to use it, and I don't see a krb5_free_principal() call anywhere in your patch...

line 270 is:

	krb5_free_principal(context, default_principal);

i am not an expert on the krb5 API but this seems to do what we want.

des added a comment.Aug 8 2025, 7:11 PM

ah so the comment is bogus...

des accepted this revision.Aug 8 2025, 9:31 PM

I don't know if this works with Heimdal, but I have verified that it builds, so I think we're good to go.

This revision is now accepted and ready to land.Aug 8 2025, 9:31 PM
philip accepted this revision.Aug 9 2025, 4:25 AM

I tested this in the FreeBSD.org cluster and it works. Many thanks!

cy accepted this revision.Aug 9 2025, 5:22 AM
Closed by commit rG9503ed0dfdbd: pam_ksu: Fix crash when no ticket is present (authored by ivy). · Explain WhyAug 9 2025, 6:17 AM
This revision was automatically updated to reflect the committed changes.
ivy added a commit: rG9503ed0dfdbd: pam_ksu: Fix crash when no ticket is present.

Revision Contents
Changeset List

PathSize
lib/
libpam/
modules/
pam_ksu/
31 lines

Diff 160104

View Options

lib/libpam/modules/pam_ksu/pam_ksu.c

Loading...