[krbdev.mit.edu #6564] s4u extensions integration broke test suite...

Ezra Peisach via RT rt-comment at krbdev.mit.edu
Sun Sep 13 13:17:10 EDT 2009 

During the des3-aes tests (gssclient tests)

Core dump in the kdc....  Looks like reply.padata is pointing to garbage...

(gdb) where
#0  krb5_free_pa_data (context=0x889cae8, val=0xfd13)
    at ../../../../src/lib/krb5/krb/kfree.c:394
#1  0x0804d791 in process_tgs_req (pkt=0xbfe84480, from=0xbfe84494,
    response=0xbfe8449c) at ../../src/kdc/do_tgs_req.c:1006
#2  0x0804bbe0 in dispatch (pkt=0xbfe84480, from=0xbfe84494,
    response=0xbfe8449c) at ../../src/kdc/dispatch.c:89
#3  0x0805afe6 in process_packet (conn=0x889f828, selflags=1)
    at ../../src/kdc/network.c:1238
#4  0x0805a3e3 in service_conn (selflags=<value optimized out>,
    conn=<value optimized out>) at ../../src/kdc/network.c:1564
#5  listen_and_process (selflags=<value optimized out>,
    conn=<value optimized out>) at ../../src/kdc/network.c:1655
#6  0x08058d0e in main (argc=5, argv=0xbfe84604) at ../../src/kdc/main.c

 From valgrind:


==23113== Conditional jump or move depends on uninitialised value(s)
==23113==    at 0x804D77B: process_tgs_req (do_tgs_req.c:1005)
==23113==    by 0x804BBDF: dispatch (dispatch.c:89)
==23113==    by 0x805AFE5: process_packet (network.c:1238)
==23113==    by 0x805A3E2: listen_and_process (network.c:1564)
==23113==    by 0x8058D0D: main (main.c:897)
==23113==
==23113== Conditional jump or move depends on uninitialised value(s)
==23113==    at 0x40CF879: krb5_free_pa_data (kfree.c:392)
==23113==    by 0x804D790: process_tgs_req (do_tgs_req.c:1006)
==23113==    by 0x804BBDF: dispatch (dispatch.c:89)
==23113==    by 0x805AFE5: process_packet (network.c:1238)
==23113==    by 0x805A3E2: listen_and_process (network.c:1564)
==23113==    by 0x8058D0D: main (main.c:897)
==23113==
==23113== Use of uninitialised value of size 4
==23113==    at 0x40CF87B: krb5_free_pa_data (kfree.c:394)
==23113==    by 0x804D790: process_tgs_req (do_tgs_req.c:1006)
==23113==    by 0x804BBDF: dispatch (dispatch.c:89)
==23113==    by 0x805AFE5: process_packet (network.c:1238)
==23113==    by 0x805A3E2: listen_and_process (network.c:1564)
==23113==    by 0x8058D0D: main (main.c:897)

More information about the krb5-bugs mailing list