saslauthd+kerberos infinite loop inside sendto_kdc.c at function service_fds

Dan White dwhite at olp.net
Wed Sep 18 13:49:03 EDT 2013


On 09/18/13 18:29 +0100, Rodrigo Nuno Bragança da Cunha wrote:
>Hi!
>
>I'm using saslauthd (cyrus-sasl2_2.1.25.dfsg1-6+deb7u1) with kerberos
>authentication in a debian wheezy (krb5_1.10.1+dfsg-5+deb7u1) and the
>deamon (actually one of the processes only) sometimes goes into infinite
>loop, ceasing to answer requests, apparently inside the kerberos
>library. This situation requires a saslauthd restart to
>resolve.
>
>I'm not sure this is a saslauthd bug, or a kerberos bug... but anyway,
>you can see the full details in the bug report I filled with debian,
>including stack traces, etc...
>
>http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=723144
>
>Since from the end-user perspective this is a saslauthd issue, I
>thought I should report this to you and wait for your advice before
>reporting to another team, kerberos perhaps?

As a work around, you could try using saslauthd's pam backend with a krb5
pam module.

-- 
Dan White


More information about the Cyrus-sasl mailing list