[krbdev.mit.edu #5595] Problems with kpasswd and an IPv6 enviroment
Ken Raeburn via RT
rt-comment at krbdev.mit.edu
Wed Jan 9 17:01:28 EST 2008
Some brief analysis, because I was prodded to look at it:
changepw.c has code that assumes the local socket address will be an IPv4 address, so the
address saved to put into the krb-priv message (in a required field) will be an IPv4 address,
containing 4 bytes snarfed from within the IPv6 sockaddr structure. Also, other code makes the
same assumption about the remote address. However, nothing in the address-lookup code
restricts us to IPv6 servers, so rather than complain that we can't find an IPv4 server, we send an
IPv6 server a broken request.
More information about the krb5-bugs
mailing list