2009-002-patch.txt fails 'make check' in 'tests/asn.1' for krb-1.5.4

Mark T. Valites mvalites at buffalo.edu
Thu May 21 13:30:19 EDT 2009 

I recently tried to update our MIT krb5-1.5.4 install with the patches for 
the last two security advisories.

The 2009-001-patch.txt & 2009-002-patch.txt patches apply cleanly against 
the krb5-1.5.4 source & compile, but fail for 'make test'. The errors 
appear to be coming from 'tests/asn.1' & contain some of the content 
within the 2009-002-patch.txt patch. The tail end of the 'make test' 
output is below.

Has anyone else had luck patching 1.5.4 or have any suggestions for 
addressing this?

-Mark

making check in tests/asn.1...
KRB5_CONFIG=./../../config-files/krb5.conf ; \
         export KRB5_CONFIG ;\
         LD_LIBRARY_PATH=`echo -L../../lib | sed -e "s/-L//g" -e "s/ /:/g"`; export LD_LIBRARY_PATH; ./krb5_decode_test
OK: authenticator
OK: authenticator(80 -> seq-number 0xffffff80)
OK: authenticator(FF -> seq-number 0xffffffff)
OK: authenticator(00FF -> seq-number 0xff)
OK: authenticator(00FFFFFFFF -> seq-number 0xffffffff)
OK: authenticator(7FFFFFFF -> seq-number 0x7fffffff)
OK: authenticator(FFFFFFFF -> seq-number 0xffffffff)
OK: authenticator(optionals empty)
OK: authenticator(optionals NULL)
OK: ticket
OK: ticket(+ trailing [4] INTEGER
OK: ticket(indefinite lengths)
OK: ticket(indefinite lengths + trailing [4] INTEGER)
OK: encryption_key
OK: encryption_key(+ trailing [2] INTEGER)
OK: encryption_key(+ trailing [2] SEQUENCE {[0] INTEGER})
OK: encryption_key(indefinite lengths)
OK: encryption_key(indefinite lengths + trailing [2] INTEGER)
OK: encryption_key(indefinite lengths + trailing [2] SEQUENCE {[0] INTEGER})
OK: encryption_key(indefinite lengths + trailing SEQUENCE {[0] INTEGER})
OK: encryption_key(enctype = -1)
OK: encryption_key(enctype = -255)
OK: encryption_key(enctype = 255)
OK: encryption_key(enctype = -2147483648)
OK: encryption_key(enctype = 2147483647)
OK: enc_tkt_part
OK: enc_tkt_part(optionals NULL)
OK: enc_tkt_part(optionals NULL + bitstring enlarged to 38 bits)
OK: enc_tkt_part(optionals NULL + bitstring enlarged to 40 bits)
OK: enc_tkt_part(optionals NULL + bitstring reduced to 29 bits)
OK: enc_tkt_part(optionals NULL + bitstring reduced to 24 bits)
OK: enc_kdc_rep_part(compat_lr_type)
OK: enc_kdc_rep_part
OK: enc_kdc_rep_part(optionals NULL)(compat lr_type)
OK: enc_kdc_rep_part(optionals NULL)
OK: as_rep
OK: as_rep(indefinite lengths)
OK: as_rep(optionals NULL)
OK: tgs_rep
OK: tgs_rep(optionals NULL)
OK: ap_req
OK: ap_rep
OK: ap_rep_enc_part
OK: ap_rep_enc_part(optionals NULL)
OK: ap_rep_enc_part(optionals NULL + expect ASN1_OVERRUN for inconsistent length of timestamp)
*** Error code 139
make: Fatal error: Command failed for target `check'
Current working directory /opt/src/krb5-1.5.4/src/tests/asn.1
*** Error code 1
make: Fatal error: Command failed for target `check-recurse'
Current working directory /opt/src/krb5-1.5.4/src/tests
*** Error code 1
make: Fatal error: Command failed for target `check-recurse'

-- 
Mark T. Valites
Senior Systems Administrator
Enterprise Infrastructure Services
University at Buffalo

More information about the Kerberos mailing list