Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-10214

Segfault possible when using groups in PAM user mapping plugin

    Details

    • Sprint:
      10.1.15

      Description

      I’ve been experiencing segfaults while testing group mapping with the PAM user mapping module. I’ve
      been using https://mariadb.com/blog/configuring-pam-group-mapping-mariadb as a guide and most of
      the configuration is similar to what is outlined there except that I have two groups “dba” and “dba_ro”.

      cat /etc/pam.d/mariadb
      auth           required        pam_unix.so        audit
      account        required        pam_unix.so        audit
      auth           required        pam_user_map.so
      

      cat /etc/security/user_map.conf
      @dba: dba
      @dba_ro: dba_ro
      

      With this configuration when attempting to authenticate with a user that is not in the “dba” group a
      segfault will occur as the loop at line 82 of pam_user_map.c never terminates. Even if the user is a member of the “dba_ro” group the crash will occur while matching
      line 1 of /etc/security/user_map.conf.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                holyfoot Alexey Botchkov
                Reporter:
                Weigel Mario
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: