Potential bug using TCP for kinit to KDC communication

Carson Gaspar carson at taltos.org
Tue Apr 3 16:50:59 EDT 2012


On 4/2/12 9:23 AM, Greg Hudson wrote:

> was set in cm_add_fd().  So, poll() is saying that a read on the TCP
> socket wouldn't block, implying that there is either data to be read or
> a socket error to be processed, neither of which happens during a
> successful exchange.

While the KDC may never send initial data, in general the correct test 
for an async TCP connect error is (readable and (not writable)). 
Otherwise you have a race condition (assuming the server may ever write 
data before the client does).

-- 
Carson


More information about the Kerberos mailing list