[Bug 260801] heimdal site-local customization fails

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 29 Dec 2021 15:03:00 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=260801

            Bug ID: 260801
           Summary: heimdal site-local customization fails
           Product: Base System
           Version: 12.3-RELEASE
          Hardware: amd64
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: bin
          Assignee: bugs@FreeBSD.org
          Reporter: pmc@citylink.dinoex.sub.org

Created attachment 230541
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=230541&action=edit
patch for 1-5

heimdal site-local configuration fails for the following reasons:

1. The configuration option "allow.null-ticket-addresses = false"
   is broken.
2. Configuration of a (non-default) filepath location of the heimdal
   db is broken.
3. kadmind deletes their pidfile on fork().
4. kadmind executes setpgid() while being a session leader already.
   (This is not allowed by POSIX, and while I think the flaw is with
   the OpenGroup, the syscall implementation adheres to POSIX.)
5. daemons cannot properly run multiple instances because of hardcoded
   pidfile names.

Fix:

kdc/hprop.c             1.
kpasswd/kpasswd.c       1. 2.
lib/hdb/keytab.c        1. 2.
kadmin/kadm_conn.c      3. 4.
lib/roken/write_pid.c   3. 5.

-- 
You are receiving this mail because:
You are the assignee for the bug.