e551cdb37d3e, https://bugzilla.samba.org/show_bug.cgi?id=11038

Andrew Bartlett abartlet at samba.org
Wed Oct 7 02:21:34 UTC 2015


On Thu, 2015-10-01 at 11:54 -0700, Jeremy Allison wrote:
> On Thu, Oct 01, 2015 at 08:02:47AM +0200, Andreas Schneider wrote:
> > On Wednesday 30 September 2015 12:51:41 Volker Lendecke wrote:
> > > On Wed, Sep 30, 2015 at 09:38:02PM +0200, Günther Deschner wrote:
> > > > Have you tried removing the fake prompter completely ?
> > > 
> > > According to the comment
> > > 
> > > /*
> > >   we use a prompter to avoid a crash bug in the kerberos libs
> > > when
> > >   dealing with empty passwords
> > >   this prompter is just a string copy ...
> > > */
> > > 
> > > we crash without it. This is not good.
> > 
> > But the fake prompter is only needed for heimdal? Can we remove it
> > for MIT 
> > Kerberos?
> 
> Probably. But that should be a patch on top of this one.
> Right now we have a working fix for a critical winbindd
> bug so the best thing to do is apply and get back-ported
> into release branches, and then we have time to work on
> a more elegant change for master.

It is quite possible/likely only needed for some quite old and now
unsupported Kerberos libs. Even with our old version of Heimdal in
-tree, things have moved on in the last decade :-)

Andrew Bartlett

-- 
Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba






More information about the samba-technical mailing list