-
Notifications
You must be signed in to change notification settings - Fork 45
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Segfault in display_as #79
Comments
Debugging note: When calling |
This doesn't seem to be our fault -- the problem seems to be that krb5 doesn't do a A workaround here is tricky -- we shouldn't prevent Furthermore, testing seems to indicate that for a mechanism name (canonical name), We should put in a patch to MIT krb5, but in the mean time, I'm open to suggestions. |
Let's patch MIT, and go from there. I'd really like to not have to care about this issue in our codebase, and if they can include the fix in an incremental that would be ideal. |
I'll try to get to writing a patch later this week |
Relevant: krb5/krb5#320 |
We really don't want to have to do a version check in the main code, so I think we're stuck with writing something to the effect of "unless you're on 1.13.3+ or you can guarantee that your name was actually created with a name_type (you can't just check name_type for reasons specified above), do not use |
This commit warns about the potential issues (segfaults with krb5 < 1.13.3 and incorrect behavior with canonicalized names) in the inline docs for `display_as`. Fixes #79
This commit warns about the potential issues (segfaults with krb5 < 1.13.3 and incorrect behavior with canonicalized names) in the inline docs for `display_as`. Fixes #79
I'm hopefully using the correct type this time but still getting segfault. Also seems to happen with other name types.
Reproducer:
python -c 'import gssapi as g;n=g.Name("x");n.display_as(g.NameType.kerberos_principal)'
Stack:
#0 0x00007fffef31a46f in gss_display_name_ext () from /lib64/libgssapi_krb5.so.2
#1 0x00007fffeb29416d in __pyx_pw_6gssapi_3raw_11ext_rfc6680_1display_name_ext ()
from /usr/lib64/python2.7/site-packages/gssapi/raw/ext_rfc6680.so
#2 0x00007ffff7af28be in PyEval_EvalFrameEx () from /lib64/libpython2.7.so.1.0
#3 0x00007ffff7af2666 in PyEval_EvalFrameEx () from /lib64/libpython2.7.so.1.0
#4 0x00007ffff7af36b4 in PyEval_EvalCodeEx () from /lib64/libpython2.7.so.1.0
#5 0x00007ffff7af37d9 in PyEval_EvalCode () from /lib64/libpython2.7.so.1.0
#6 0x00007ffff7b0cbdf in run_mod () from /lib64/libpython2.7.so.1.0
#7 0x00007ffff7b0da54 in PyRun_StringFlags () from /lib64/libpython2.7.so.1.0
#8 0x00007ffff7b0f36b in PyRun_SimpleStringFlags () from /lib64/libpython2.7.so.1.0
#9 0x00007ffff7b20b80 in Py_Main () from /lib64/libpython2.7.so.1.0
#10 0x00007ffff6d3f630 in __libc_start_main () from /lib64/libc.so.6
#11 0x0000555555554839 in _start ()
Version info:
Running freshly installed Fedora Rawhide.
python-gssapi-1.1.2-1.fc24.x86_64
krb5-libs-1.13.2-6.fc23.x86_64
The text was updated successfully, but these errors were encountered: