[MDEV-10214] Segfault possible when using groups in PAM user mapping plugin - Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 10.1.14
Fix Version/s: 10.1.16
Component/s: Plugin - pam
Labels:
Environment:
Ubuntu 14.04.3 LTS

Sprint:
10.1.15

Description

I’ve been experiencing segfaults while testing group mapping with the PAM user mapping module. I’ve
been using https://mariadb.com/blog/configuring-pam-group-mapping-mariadb as a guide and most of
the configuration is similar to what is outlined there except that I have two groups “dba” and “dba_ro”.

cat /etc/pam.d/mariadb

auth           required        pam_unix.so        audit

account        required        pam_unix.so        audit

auth           required        pam_user_map.so

cat /etc/security/user_map.conf

@dba: dba

@dba_ro: dba_ro

With this configuration when attempting to authenticate with a user that is not in the “dba” group a
segfault will occur as the loop at line 82 of pam_user_map.c never terminates. Even if the user is a member of the “dba_ro” group the crash will occur while matching
line 1 of /etc/security/user_map.conf.

Attachments

Issue Links

links to

GitHub Pull Request #183

Activity

People

Assignee:: Alexey Botchkov

Reporter:: Mario

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2016-06-12 10:59

Updated:: 2016-06-24 14:11

Resolved:: 2016-06-24 14:11

Git Integration

Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.