setpag() sometimes fails to create a session keyring
Bug #723481 reported by
Anders Kaseorg
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openafs (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
AFS PAM modules can call setpag() as root, regardless of the UID being authenticated, which causes a session keyring to be created using root’s quota. On heavily loaded systems, this can fail when the quota runs out.
This was fixed upstream by http://
tags: | added: patch |
To post a comment you must log in.
Anders Kaseorg <email address hidden> writes:
> AFS PAM modules can call setpag() as root, regardless of the UID being
> authenticated, which causes a session keyring to be created using root’s
> quota. On heavily loaded systems, this can fail when the quota runs
> out.
> This was fixed upstream by git.openafs. org/?p= openafs. git;a=commitdif f;h=c4537f0442a c7ecbf8c946de45 004992e17d535f
> http://
Is this different from a27015099a1dc1e 41001e4a4946848 f958c6a09b, which is
already in the 1.4 packages?
-- www.eyrie. org/~eagle/>
Russ Allbery (<email address hidden>) <http://