Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-10214

Segfault possible when using groups in PAM user mapping plugin

    XMLWordPrintable

Details

    • 10.1.15

    Description

      I’ve been experiencing segfaults while testing group mapping with the PAM user mapping module. I’ve
      been using https://mariadb.com/blog/configuring-pam-group-mapping-mariadb as a guide and most of
      the configuration is similar to what is outlined there except that I have two groups “dba” and “dba_ro”.

      cat /etc/pam.d/mariadb
      auth           required        pam_unix.so        audit
      account        required        pam_unix.so        audit
      auth           required        pam_user_map.so
      

      cat /etc/security/user_map.conf
      @dba: dba
      @dba_ro: dba_ro
      

      With this configuration when attempting to authenticate with a user that is not in the “dba” group a
      segfault will occur as the loop at line 82 of pam_user_map.c never terminates. Even if the user is a member of the “dba_ro” group the crash will occur while matching
      line 1 of /etc/security/user_map.conf.

      Attachments

        Issue Links

          Activity

            People

              holyfoot Alexey Botchkov
              Weigel Mario
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.