Missing krbPrincipalKey attributes cause segfaults in libkdb5 with LDAP backend
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
krb5 (Ubuntu) |
New
|
High
|
Unassigned |
Bug Description
Running 11.10 (Oneiric). Additional specifications in tags. This appears to apply to libkdb5-5 version 1.9.1+dfsg-
I have copied a working LDAP-backed KDC configuration from a 64-bit EC2 instance into a 32-bit EC2 instance (the binaries are installed fresh). When I attempt to launch either the KDC or kadmin.local, the process terminates with a segfault. A kernel record in the syslog shows that there was a segfault in libkdb5.so.5.0 (for either process).
I have a sinking suspicion that there is a binary incompatibility in the stash file. I'd appreciate any advice on converting it if that is possible.
ProblemType: Bug
DistroRelease: Ubuntu 11.10
Package: libkdb5-5 1.9.1+dfsg-
ProcVersionSign
Uname: Linux 3.0.0-14-virtual i686
ApportVersion: 1.23-0ubuntu4
Architecture: i386
Date: Thu Feb 9 20:49:19 2012
Ec2AMI: ami-a500d0cc
Ec2AMIManifest: (unknown)
Ec2Availability
Ec2InstanceType: m1.small
Ec2Kernel: aki-805ea7e9
Ec2Ramdisk: unavailable
ProcEnviron:
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: krb5
UpgradeStatus: No upgrade log present (probably fresh install)
Changed in krb5 (Ubuntu): | |
importance: | Undecided → High |
summary: |
- KDC (krb5-kdc-ldap) and kadmin.local segfault in libkdb5.so.5.0. + Missing krbPrincipalKey attributes cause segfaults in libkdb5 with LDAP + backend |
Old stash files are in fact byte order and probably but I'm not sure
word size dependent. Look at the add_mkey command to kdb5_util. I
think if you add a new master key and write it out to a new keytab
format stash file then all should be well.
If the database was created with 1.9.1 then I would not expect this
problem in the first place.