kgssapi(4): Fix string overrun in Kerberos principal construction

'buf.value' was previously treated as a nul-terminated string, but only
allocated with strlen() space. Rectify this.

Reported by: Coverity
CID: 1007639
Sponsored by: EMC / Isilon Storage Division