[Bug 235582] rpc_svc_gss / nfsd kernel panic
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sat Feb 9 00:06:09 UTC 2019
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=235582
--- Comment #6 from Rick Macklem <rmacklem at FreeBSD.org> ---
Created attachment 201858
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=201858&action=edit
fix srv side rpcsec_gss to handle NULL client principal name
This patch modifies the server side RPCSEC_GSS so that it handles
the case where gss_accept_sec_context() works for a client's token
and returns GSS_S_COMPLETE but the client principal name is NULL.
I have no idea what this means w.r.t. Kerberos, but since a principal
name that cannot be found in the password database is authenticated as
the user "nobody", this patch does the same for the case of "no prinicpal
name".
It is untested, but hopefully Peter can test it?
(It assumes that the crash was caused by client->cl_cname == NULL.)
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-fs
mailing list